pt chmod software vulnerabilities

Searching pt chmod software vulnerabilities

pt_chmod in Solaris 8 does not call fdetach to

pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users' terminals by modifying the ACL of a TTY.

The open_exec function in the execve functional

functionality | open_exec | function | execve |

The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.

cPanel 9.9.1-RELEASE-3 allows remote authentica

cPanel 9.9.1-RELEASE-3 allows remote authenticated users to chmod arbitrary files via a symlink attack on the _private directory, which is created when Front Page extensions are enabled.

Linux-VServer 1.24 allows local users with root

Linux-VServer |

Linux-VServer 1.24 allows local users with root privileges on a virtual server to gain access to the filesystem outside the virtual server via a modified chroot-again exploit using the chmod command.

Stack-based buffer overflow in the site chmod c

Stack-based buffer overflow in the site chmod command in Serv-U FTP Server before 4.2 allows remote attackers to execute arbitrary code via a long filename.

Serv-U FTP Server 4.1 (possibly 4.0) allows rem

Server | Serv-U | FTP |

Serv-U FTP Server 4.1 (possibly 4.0) allows remote attackers to cause a denial of service (application crash) via a SITE CHMOD command with a "\\...\" followed by a short string, causing partial memory corruption, a different vulnerability than CVE-2004-2111.

Exponent CMS 0.96.3 and later versions performs

Exponent | CMS |

Exponent CMS 0.96.3 and later versions performs a chmod on uploaded files to give them execute permissions, which allows remote attackers to execute arbitrary code.

Orbicule Undercover allows attackers with physi

Orbicule Undercover allows attackers with physical or root access to disable the protection by using the chmod command to change the permissions of the /private/etc/uc.app/Contents/MacOS/uc file, which prevents the service from being started in LaunchDaemon.

The elf_load_file function in NetBSD 2.0 throug

The elf_load_file function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service (kernel crash) via an ELF interpreter that does not have a PT_LOAD section in its header, which triggers a null dereference.

Directory traversal vulnerability in newpost.ph

Directory traversal vulnerability in newpost.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the id parameter, as demonstrated by injecting a Perl CGI script using "[NR]" sequences in the message parameter, then calling close.php with modified id and t_id parameters to chmod the script. NOTE: this issue might be resultant from dynamic variable evaluation.

vmware-config.pl in VMware for Linux, ESX Serve

vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key.

Integer signedness error in FreeBSD 6.0-RELEASE

Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service (memory corruption and kernel panic) via a PT_LWPINFO ptrace command with a large negative data value that satisfies a signed maximum value check but is used in an unsigned copyout function call.

Cross-site scripting (XSS) vulnerability in sea

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in search.php in PT News 1.7.8 allows remote attackers to inject arbitrary web script or HTML via the pgname parameter.

Race condition in the Xsession script, as used

Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before Sunday, February 12, 2006, X.Org before Saturday, February 25, 2006, and Solaris 8 through 10 before Friday, October 06, 2006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.

The NetBSD-current kernel before 20061028 does

NetBSD-current | before | kernel |

The NetBSD-current kernel before Saturday, October 28, 2006 does not properly perform bounds checking of an unspecified userspace parameter in the ptrace system call during a PT_DUMPCORE request, which allows local users to have an unknown impact.

Unspecified vulnerability in ptrace in NetBSD-c

Unspecified vulnerability in ptrace in NetBSD-current before Friday, October 27, 2006, NetBSD 3.0 and 3.0.1 before Friday, October 27, 2006, and NetBSD 2.x before Sunday, November 19, 2006 allows local users to read kernel memory and obtain sensitive information via certain manipulations of a PT_LWPINFO request, which leads to a memory leak and information leak.

Multiple PHP file inclusion vulnerabilities in

Multiple PHP file inclusion vulnerabilities in src/admin/pt_upload.php in Pagetool 1.07 allow remote attackers to execute arbitrary PHP code via (1) a local filename or FTP/share URI in the config_file parameter or (2) a URL in the ptconf[src] parameter.

Linux kernel 2.6.x before 2.6.20 allows local u

before | kernel | Linux | 26x |

Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter (PT_INTERP) functionality and triggering a core dump, a variant of CVE-2004-1073.

Software vulnerabilities results 1 to 19 of 19

Page: 1

pt chmod software vulnerabilities

vulnerabilities.aspcode.net

Searching pt chmod software vulnerabilities