| OSVDB ID | Disclosure Date | Title |
|---|
|
15454
Description:
Unknown / Incomplete
|
1988-12-09
|
Sendmail Double rcpt to: Arbitrary Remote File Modification
|
|
203
Description:
(Description Provided by CVE) : In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.
|
1988-12-04
|
SunOS Sendmail mail from/rcpt to Pipe Arbitrary Command Execution
|
|
2293
Description:
Unknown / Incomplete
|
1988-12-02
|
SunOS uuclean Unauthorized Pending UUCP Transfer Deletion
|
|
3646
Description:
Unknown / Incomplete
|
1988-12-01
|
Berkeley ftpd Unspecified Remote Issue
|
|
2174
Description:
Unknown / Incomplete
|
1988-12-01
|
SunOS uucico Remote Information Disclosure
|
|
5849
Description:
A local overflow exists in BSD. The passwd program fails to check bounds on a long shell or GECOS field causing a buffer overflow. With a specially crafted request, an attacker can change the flow of execution to gain root privileges, which will result in a loss of integrity.
|
1988-12-01
|
BSD passwd Multiple Field Local Overflow
|
|
57858
Description:
Unknown / Incomplete
|
1988-11-18
|
mapsh Crafted Map Entry Local Privilege Escalation
|
|
3647
Description:
Unknown / Incomplete
|
1988-11-17
|
SCO Xenix uucp Directory Permission Weakness Remote Shell Access
|
|
57857
Description:
Unknown / Incomplete
|
1988-11-11
|
SunOS /bin/rmail -fsender Argument Arbitrary Command Execution
|
|
195
Description:
Sendmail contains a flaw that may allow a remote attacker to execute commands without authentication. The issue is triggered when an attacker connects to the SMTP service (port 25), and issues the 'DEBUG' command. If enable, this may allow an attacker to pipe arbitrary commands that will be executed under the same privileges as Sendmail.
|
1988-11-07
|
Sendmail DEBUG Arbitrary Remote Command Execution
|
|
57856
Description:
Unknown / Incomplete
|
1988-11-07
|
SunOS ftpd Local Privilege Escalation
|
|
1538
Description:
Unknown / Incomplete
|
1988-11-07
|
VAX/VMS fingerd Remote Overflow
|
|
73
Description:
Multiple FTP daemons contains a flaw that may allow a remote attacker to gain access to unauthorized privileges. The issue is triggered when issuing a specially crafted request to the CWD ~root command, which may allow a remote attacker to gain access to root privileges, resulting in a loss of integrity.
|
1988-11-01
|
Multiple FTP CWD ~root Command Privilege Escalation
|
|
19985
Description:
Unknown / Incomplete
|
1988-06-06
|
ARC Compressionless Archive Encryption Failure
|
|
45096
Description:
Unknown / Incomplete
|
1988-05-26
|
FEAL-4 Algorithm Differential Cryptanalytic Chosen-plaintext Attack Cryptanalysis Weakness
|
|
3324
Description:
SunOS contains a flaw that allows a hostile user with console access to gain root privileges. If a user has a valid login to the machine (even with restricted shell), they can take advantage of the unprotected memory of a SunOS system. By taking note of the u.u_cred elements of the user structure, it will provide the required memory addresses for the user to edit the active memory via the PROM monitor. By changing the current UID of the running process and restoring the session, any active shell's privileges can be upgraded to root level privileges.
|
1988-04-01
|
SunOS u.u_cred Console Memory Edit
|
|
17840
Description:
SunOS contains a flaw that may allow a local unprivileged user to gain root privielges. The issue is due to the 'sync' account containing no password, allowing anyone to access it without authentication. Further, by supplying a custom sync library when logging into the account, the system will execute arbitrary commands under the 'sync' privileged ID, usually with root equivilent privileges.
|
1988-01-01
|
SunOS buglib.so sync Account Local Privilege Escalation
|
|
17839
Description:
SunOS contains a flaw related to the default unpassworded 'sync' account that may allow local and remote users to carry out unintended activities. First, local users may use the account to obscure their entry in the 'who' output. This may make it difficult for administrators to track user activity or notice suspicious behavior. Second, if the 'root' account is set to use / as a home directory, the 'sync' account (which defaults to / for home directory) may execute start up files before running the /bin/sync command as intended. This may allow an unprivileged local/remote attacker to execute programs unexpectedly, and potentially gain access to the system through other means such as breaking out of interactive processes. Third, a remote user may be able to use the account to see the local 'motd' (message of the day) file which could disclose sensitive system information.
|
1988-01-01
|
SunOS Unpassworded sync Account Multiple Issues
|
|
296
Description:
Unknown / Incomplete
|
1988-01-01
|
Unisys 5000/80 ilp -z Parameter Privilege Escalation
|
