rsh software vulnerabilities
vulnerabilities.aspcode.net
Searching rsh software vulnerabilities
rsh daemon (rshd) generates different error mes
daemon
|
rsh
|
rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system.
dump in Red Hat Linux 6.2 trusts the pathname s
environmental
|
privileges
|
specified
|
modifying
|
variable
|
pathname
|
program
|
allows
|
trusts
|
obtain
|
Trojan
|
point
|
horse
|
users
|
which
|
Linux
|
local
|
dump
|
root
|
Red
|
RSH
|
Hat
|
dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
restore 0.4b15 and earlier in Red Hat Linux 6.2
environmental
|
privileges
|
modifying
|
specified
|
pathname
|
variable
|
restore
|
earlier
|
program
|
allows
|
obtain
|
trusts
|
Trojan
|
04b15
|
horse
|
point
|
which
|
Linux
|
local
|
users
|
root
|
Hat
|
Red
|
RSH
|
restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
Buffer overflow in rsh on AIX 4.2.0.0 may allow
overflow
|
Buffer
|
AIX
|
rsh
|
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root priveleges via a long command line argument.
Buffer overflow in rsh on AIX 4.2.0.0 may allow
overflow
|
Buffer
|
AIX
|
rsh
|
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument.
Vulnerability in OpenBSD 3.0, when using YP wit
Vulnerability
|
netgroups
|
password
|
database
|
OpenBSD
|
causes
|
using
|
Vulnerability in OpenBSD 3.0, when using YP with netgroups in the password database, causes (1) rexec or (2) rsh to run another user's shell, or (3) atrun to change to a different user's directory, possibly due to memory allocation failures or an incorrect call to auth_approval().
cdrecord in the cdrtools package before 2.01, w
cdrtools
|
cdrecord
|
package
|
before
|
cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before executing a program specified in the RSH environment variable, which allows local users to gain privileges.
Star before 1.5_alpha46 does not drop the effec
15_alpha46
|
effective
|
before
|
drop
|
user
|
Star
|
does
|
not
|
Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program.
rsh utility in Sun Grid Engine (SGE) before 6.0
utility
|
Engine
|
Grid
|
rsh
|
Sun
|
rsh utility in Sun Grid Engine (SGE) before 6.0u7_1 allows local users to gain privileges and execute arbitrary code via unspecified vectors, possibly involving command line arguments.
Unspecified vulnerability in rsh in Sun Microsy
vulnerability
|
Microsystems
|
Unspecified
|
Engine
|
before
|
Grid
|
rsh
|
Sun
|
Unspecified vulnerability in rsh in Sun Microsystems Sun Grid Engine 5.3 before Monday, March 27, 2006 and N1 Grid Engine 6.0 before Monday, March 27, 2006 allows local users to gain root privileges.
Buffer overflow in bos.rte.libc in IBM AIX 5.2
"r-commands"
|
bosrtelibc
|
including
|
arbitrary
|
possibly
|
overflow
|
execute
|
Buffer
|
allows
|
local
|
users
|
code
|
IBM
|
AIX
|
via
|
Buffer overflow in bos.rte.libc in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via the "r-commands", possibly including (1) rdist, (2) rsh, (3) rcp, (4) rsync, and (5) rlogin.
Stack-based buffer overflow in Mike Dubman Wind
Stack-based
|
overflow
|
Windows
|
Dubman
|
buffer
|
daemon
|
Mike
|
RSH
|
Stack-based buffer overflow in Mike Dubman Windows RSH daemon (rshd) 1.7 allows remote attackers to execute arbitrary code via a long string to the shell port (514/tcp). NOTE: this might overlap CVE-2007-4006.
Buffer overflow in Mike Dubman Windows RSH daem
overflow
|
Windows
|
daemon
|
Dubman
|
Buffer
|
Mike
|
RSH
|
Buffer overflow in Mike Dubman Windows RSH daemon (rshd) 1.7 has unknown impact and remote attack vectors, aka ZD-00000034. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionable advisories. A CVE has been assigned for tracking purposes, but duplicates with other CVEs are difficult to determine.
Software vulnerabilities results 1 to 14 of 14
Page:
1