Searching su wrapper software vulnerabilities

Buffer overflow in Linux su command gives root

overflow | command | access | Buffer | local | users | Linux | gives | root |

Buffer overflow in Linux su command gives root access to local users.


Buffer overflow in SCO su program allows local

username | overflow | program | access | allows | Buffer | users | local | long | gain | root | SCO | via |

Buffer overflow in SCO su program allows local users to gain root access via a long username.


The Red Hat Linux su program does not log faile

attackers | password | guessing | process | guesses | conduct | program | allows | before | killed | failed | Linux | which | local | force | brute | times | does | log | Red | not | out | Hat |

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.


The wrapper program in mailman 2.0beta3 and 2.0

privileges | untrusted | properly | cleanse | strings | mailman | program | wrapper | 20beta3 | 20beta4 | allows | format | local | users | which | gain | does | not |

The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges.


Multiple buffer overflows in HP Tru64 UNIX 5.1a

privileges | overflows | Multiple | buffer | allow | local | Tru64 | users | UNIX | root | gain | via | 50a | 51a | 40f | 40g |

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.


/bin/su in QNX realtime operating system (RTOS)

operating | realtime | /bin/su | system | QNX |

/bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal.


Format string vulnerability in tsm for the bos.

bosrtesecurity | vulnerability | privileges | specifiers | attackers | username | contains | fileset | passwd | string | Format | remote | allows | local | login | users | gain | root | tsm | AIX | via |

Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers.


SuSEconfig.javarunt in the javarunt package on

SuSEconfigjavarunt | java_wrapper | arbitrary | overwrite | temporary | javarunt | symlink | package | attack | allows | files | 73Pro | Linux | local | users | file | SuSE | via |

SuSEconfig.javarunt in the javarunt package on SuSE Linux 7.3Pro allows local users to overwrite arbitrary files via a symlink attack on the .java_wrapper temporary file.


Format string vulnerability in wrapper.c in CVS

vulnerability | wrapperc | through | Format | string | 112x | CVS |

Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.


Multiple buffer overflows in QNX Neutrino RTOS

overflows | Neutrino | Multiple | buffer | RTOS | QNX |

Multiple buffer overflows in QNX Neutrino RTOS 6.2.0 allow local users to execute arbitrary code via a long first argument to the (1) su or (2) passwd commands.


Unspecified vulnerability in su in HP HP-UX B.1

vulnerability | Unspecified | netgroup | feature | allows | access | local | users | using | HP-UX | B1111 | LDAP | gain |

Unspecified vulnerability in su in HP HP-UX B.11.11, when using the LDAP netgroup feature, allows local users to gain unspecified access.


Cross-site scripting (XSS) vulnerability in CGI

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in CGI wrapper for IP Calculator (IPCalc) 0.40 allows remote attackers to inject arbitrary web script or HTML via the URI (REQUEST_URI environment variable), which is used in the actionurl variable.


Stack-based buffer overflow in the DoModal func

Stack-based | function | overflow | Wrapper | ActiveX | control | DoModal | buffer | Dialog | Module |

Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control (DlgWrapper.dll) before 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote attackers to execute arbitrary code via a long (1) FileName or (2) Filter argument.


Stack-based buffer overflow in the zip:// URL w

Stack-based | overflow | buffer |

Stack-based buffer overflow in the zip:// URL wrapper in PECL ZIP 1.8.3 and earlier, as bundled with PHP 5.2.0 and 5.2.1, allows remote attackers to execute arbitrary code via a long zip:// URL, as demonstrated by actively triggering URL access from a remote PHP interpreter via avatar upload or blog pingback.


The zip:// URL wrapper provided by the PECL zip


The zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, does not implement safemode or open_basedir checks, which allows remote attackers to read ZIP archives located outside of the intended directories.


The compress.bzip2:// URL wrapper provided by t


The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before 5.2.2, does not implement safemode or open_basedir checks, which allows remote attackers to read bzip2 archives located outside of the intended directories.


Cross-site scripting (XSS) vulnerability in Sim

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in Simple CGI Wrapper (scgiwrap) in cPanel before 10.9.1, and 11.x before 11.4.19-R14378, allows remote attackers to inject arbitrary web script or HTML via the URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.


Simple CGI Wrapper (scgiwrap) in cPanel before

Wrapper | Simple | CGI |

Simple CGI Wrapper (scgiwrap) in cPanel before 10.9.1, and 11.x before 11.4.19-R14378, allows remote attackers to obtain sensitive information via a direct request, which reveals the path in an error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.


CerbNG for FreeBSD 4.8 does not properly implem

protection | attempting | "incorrect | implement | properly | related | unknown | wrapper | prevent | FreeBSD | allows | impact | CerbNG | system | pages" | write | users | which | races | local | call | have | does | not |

CerbNG for FreeBSD 4.8 does not properly implement VM protection when attempting to prevent system call wrapper races, which allows local users to have an unknown impact related to an "incorrect write protection of pages".


Untrusted search path vulnerability in the wrap

vulnerability | Untrusted | wrapper | scripts | search | path |

Untrusted search path vulnerability in the wrapper scripts for the (1) rug, (2) zen-updater, (3) zen-installer, and (4) zen-remover programs on SUSE Linux 10.1 and Enterprise 10 allows local users to gain privileges via modified (a) LD_LIBRARY_PATH and (b) MONO_GAC_PREFIX environment variables.


Software vulnerabilities results 1 to 20 of 24     
Page: 12