Searching privilege software vulnerabilities

Digital Unix Networker program nsralist has a b

Networker | privilege | nsralist | overflow | Digital | program | allows | obtain | buffer | users | local | which | root | Unix | has |

Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege.


SVGAlib zgv 3.0-7 and earlier allows local user

privilege | earlier | SVGAlib | allows | access | users | local | 30-7 | leak | gain | root | zgv | via |

SVGAlib zgv 3.0-7 and earlier allows local users to gain root access via a privilege leak of the iopl(3) privileges to child processes.


Microsoft Site Server 3.0 prior to SP4 installs

LDAP_Anonymous | LdapPassword_1 | attackers | Microsoft | privilege | password | locally" | installs | default | allows | Server | remote | prior | which | "Log | Site | user | SP4 |

Microsoft Site Server 3.0 prior to SP4 installs a default user, LDAP_Anonymous, with a default password of LdapPassword_1, which allows remote attackers the "Log on locally" privilege.


Stack-based buffer overflow in the bsd_queue()

Stack-based | overflow | buffer |

Stack-based buffer overflow in the bsd_queue() function for lpq on Solaris 2.6 and 7 allows local users to gain root privilege.


The SSH1 PAM challenge response authentication

authentication | challenge | response | OpenSSH | SSH1 | PAM |

The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the result of the authentication attempt, which can allow remote attackers to gain privileges.


Windows XP allows local users to execute arbitr

eventtriggersexe | Vulnerability" | command-line | Management | privilege | Scheduler | arbitrary | elevated | "Windows | programs | creating | service | Windows | execute | through | allows | level | users | local | tool | task | aka |

Windows XP allows local users to execute arbitrary programs by creating a task at an elevated privilege level through the eventtriggers.exe command-line tool or the Task Scheduler service, aka "Windows Management Vulnerability."


Unknown vulnerability in the privilege system i

vulnerability | privilege | Unknown | Drupal | system |

Unknown vulnerability in the privilege system in Drupal 4.4.0 through 4.6.0, when public registration is enabled, allows remote attackers to gain privileges, due to an "input check" that "is not implemented properly."


suid.cgi scripts in F-Secure (1) Internet Gatek

F-Secure | scripts | suidcgi |

suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege.


nfs2acl.c in the Linux kernel 2.6.14.4 does not

nfs2aclc | kernel | Linux |

nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs for readonly mounted NFS filesystems.


Unspecified vulnerability in the "privilege man

vulnerability | management" | Unspecified | "privilege | Solaris | service | feature | denial | allows | cause | local | users | Sun |

Unspecified vulnerability in the "privilege management" feature of Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors that trigger a null dereference in the secpolicy_fs_common function.


Certain privileged UI code in Mozilla Firefox a

Thunderbird | privileged | Firefox | Mozilla | Certain | before | code |

Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended.


Untrusted search path vulnerability in Winlogon

vulnerability | Untrusted | Microsoft | Winlogon | Windows | search | path |

Untrusted search path vulnerability in Winlogon in Microsoft Windows 2000 SP4, when SafeDllSearchMode is disabled, allows local users to gain privileges via a malicious DLL in the UserProfile directory, aka "User Profile Elevation of Privilege Vulnerability."


Mozilla Firefox before 1.5.0.5, Thunderbird bef

Firefox | Mozilla | before |

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context.


generaloptions.php in Paul Tarjan Stanford Conf

generaloptionsphp | Conference | Research | Stanford | Tarjan | Forum | Paul |

generaloptions.php in Paul Tarjan Stanford Conference And Research Forum (SCARF) before Tuesday, February 27, 2007 does not require the admin privilege, which allows remote attackers to reconfigure the application or its user accounts.


Apache Derby before 10.2.1.6 does not determine

before | Apache | Derby |

Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements in SQL authorization mode.


Unspecified vulnerability in phpMyFAQ 1.6.9 and

vulnerability | Unspecified | phpMyFAQ |

Unspecified vulnerability in phpMyFAQ 1.6.9 and earlier, when register_globals is enabled, allows remote attackers to "gain the privilege for uploading files on the server."


MySQL before 4.1.23, 5.0.x before 5.0.42, and 5

before | MySQL |

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.


Buffer overflow in the doBrowserAction function

doBrowserAction | function | overflow | FreeWRL | Buffer |

Buffer overflow in the doBrowserAction function in FreeWRL 1.19.3 allows local users to execute arbitrary code via a crafted BROWSER environment variable. NOTE: it is not clear whether this issue crosses privilege boundaries.


ircu 2.10.12.01 through 2.10.12.04 does not rem

ircu |

ircu 2.10.12.01 through 2.10.12.04 does not remove ops privilege after a join from a server with an older timestamp (TS), which allows remote attackers to gain control of a channel during a split.


Race condition in ircu 2.10.12.01 through 2.10.

condition | ircu | Race |

Race condition in ircu 2.10.12.01 through 2.10.12.05 allows remote attackers to set a new Apass during a netburst by arranging for ops privilege to be granted before the mode arrives.


Software vulnerabilities results 1 to 20 of 98     
Page: 12345