unprivileged software vulnerabilities
vulnerabilities.aspcode.net
Searching unprivileged software vulnerabilities
CDE screen lock program (screenlock) on Solaris
program
|
screen
|
lock
|
CDE
|
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x
through
|
ptrace
|
Linux
|
22x
|
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.
Microsoft SQL Server 7.0 and 2000 installs with
Microsoft
|
Server
|
SQL
|
Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt.
Unknown vulnerability in rpc.mountd SGI IRIX 6.
vulnerability
|
rpcmountd
|
Unknown
|
IRIX
|
SGI
|
Unknown vulnerability in rpc.mountd SGI IRIX 6.5.18 through 6.5.22 allows remote attackers to mount from unprivileged ports even with the -n option disabled.
Sygate Security Agent (SSA) in Sygate Secure En
Security
|
Sygate
|
Agent
|
Sygate Security Agent (SSA) in Sygate Secure Enterprise 3.5 through 4.1 does not prevent the security policy from being updated by unprivileged users, which allows local users to modify the policy by exporting the policy file, changing it, and importing it back into SSA.
Heap-based buffer overflow in WinHex 12.05 SR-1
Heap-based
|
overflow
|
WinHex
|
buffer
|
Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow attackers to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vulnerability.
PostgreSQL 7.3.x through 8.0.x gives public EXE
vulnerability"
|
unprivileged
|
PostgreSQL
|
conversion
|
"Character
|
malicious
|
functions
|
character
|
unknown
|
EXECUTE
|
through
|
certain
|
impact
|
values
|
access
|
public
|
allows
|
those
|
which
|
gives
|
users
|
call
|
73x
|
80x
|
aka
|
PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character conversion vulnerability."
Unspecified vulnerability in the sshd Privilege
authentication
|
vulnerability
|
verification
|
Unspecified
|
Separation
|
successful
|
attackers
|
Privilege
|
Monitor
|
OpenSSH
|
bypass
|
causes
|
before
|
weaker
|
might
|
allow
|
which
|
sshd
|
been
|
has
|
Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass authentication. NOTE: as of Wednesday, November 08, 2006, it is believed that this issue is only exploitable by leveraging vulnerabilities in the unprivileged process, which are not known to exist.
Software vulnerabilities results 1 to 9 of 9
Page:
1