| OSVDB ID | Disclosure Date | Title |
|---|
|
17071
Description:
Unknown / Incomplete
|
1994-12-19
|
expreserve File Check Race Condition Arbitrary Privileged File Creation
|
|
5743
Description:
pcnfs.d contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered during normal operation when file permissions are changed on a symbolic link to a restricted directory. The impact is that directories can become world writable.
|
1994-12-19
|
Multiple Unix Vendor rpc.pcnfsd Multiple Function su_popen() Arbitrary Remote Command Execution
|
|
45579
Description:
Unknown / Incomplete
|
1994-12-14
|
MacGuffin Cipher Differential Cryptanalysis Weakness
|
|
84068
Description:
Ultrix contains a flaw related to /usr/etc/dlogind. No further details have been provided.
|
1994-12-14
|
Ultrix /usr/etc/dlogind Unspecified Issue
|
|
84067
Description:
Ultrix contains a flaw related to /usr/etc/telnetd. No further details have been provided.
|
1994-12-14
|
Ultrix /usr/etc/telnetd Unspecified Issue
|
|
84066
Description:
OSF contains an unspecified flaw related to /usr/shlib/libsecurity.so. No further details have been provided.
|
1994-12-14
|
OSF /usr/shlib/libsecurity.so Unspecified Issue
|
|
84065
Description:
Ultrix and OSF contain a flaw related to /usr/ucb/lpr. No further details have been provided.
|
1994-12-14
|
Ultrix/OSF /usr/ucb/lpr Unspecified Issue
|
|
84064
Description:
OSF contains an unspecified flaw related to /usr/bin/binmail. No further details have been provided.
|
1994-12-14
|
OSF /usr/bin/binmail Unspecified Issue
|
|
84063
Description:
Ultrix and OSF contain a flaw related to /usr/etc/comsat. No further details have been provided.
|
1994-12-14
|
Ultrix/OSF /usr/etc/comsat Unspecified Issue
|
|
17095
Description:
Unknown / Incomplete
|
1994-12-13
|
SunOS cmdtool tty Ownership Issue
|
|
17096
Description:
Unknown / Incomplete
|
1994-12-13
|
SunOS shelltool tty Ownership Issue
|
|
17097
Description:
Unknown / Incomplete
|
1994-12-13
|
SunOS script tty Ownership Issue
|
|
11517
Description:
A command execution flaw exists in rpc.ypupdated. The update daemon fails to validate data passed to a MAP UPDATE request. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
1994-12-12
|
Multiple Vendor rpc.ypupdated NIS YP Map Update Arbitrary Remote Command Execution
|
|
17070
Description:
Unknown / Incomplete
|
1994-12-07
|
Multiple Unix login/rlogin -h wtmp Spoofing
|
|
45917
Description:
Unknown / Incomplete
|
1994-12-06
|
MMB Cipher Unspecified Key Schedule Weakness
|
|
17178
Description:
Unknown / Incomplete
|
1994-12-06
|
Solaris wsinfo Unspecified Overflow
|
|
17060
Description:
Unknown / Incomplete
|
1994-12-05
|
SunOS xterm tty Ownership Issue
|
|
17068
Description:
Unknown / Incomplete
|
1994-12-03
|
SunOS HSFS pathconf Local DoS
|
|
8797
Description:
(Description Provided by CVE) : Unspecified vulnerability in pt_chmod in SCO UNIX 4.2 and earlier allows local users to gain root access.
|
1994-11-30
|
SCO UNIX pt_chmod Local Privilege Escalation
|
|
6789
Description:
(Description Provided by CVE) : Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access.
|
1994-11-30
|
SCO UNIX at IFS Variable Local Privilege Escalation
|
|
9604
Description:
(Description Provided by CVE) : Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gain privileges.
|
1994-11-30
|
HP-UX Support Watch Local Privilege Escalation
|
|
11086
Description:
(Description Provided by CVE) : Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service.
|
1994-11-28
|
OpenVMS DECnet/OSI Unspecified Privilege Escalation
|
|
17062
Description:
Unknown / Incomplete
|
1994-11-26
|
SunOS binmail mailbox Lock File Race Condition Privilege Escalation
|
|
84069
Description:
Ultrix contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a race condition occurs in binmail when an inbox is saved with root privileges in a temporary file, allowing a local attacker to gain escalated root privileges.
|
1994-11-26
|
Ultrix binmail tempfile Race Condition Local Privilege Escalation
|
|
17061
Description:
Unknown / Incomplete
|
1994-11-26
|
SunOS binmail tempfile Race Condition Local Privilege Escalation
|
|
8798
Description:
(Description Provided by CVE) : Vulnerability in prwarn in SCO UNIX 4.2 and earlier allows local users to gain root access.
|
1994-11-12
|
SCO UNIX prwarn Unspecified Arbitrary Privileged File Creation
|
|
44958
Description:
Unknown / Incomplete
|
1994-10-30
|
Intel Pentium Processors Floating Point Unit Calculation Weakness
|
|
18727
Description:
Older AIX releases, and potentially other Unix flavors may contain a flaw related to user ID (UID) processing that allows for privilege escalation. In some cases, various daemons or services fail to properly check the bounds of UIDs resulting in an overflow. With a specially crafted UID, an attacker can assume root privileges regardless of the root UID mapping. For NFS servers, this may be abused to 'wrap' your UID around past 65535, so that the effective UID processed becomes '0' or 'root', resulting in full access to the exported file system.
|
1994-10-22
|
IBM AIX Negative UID Privilege Escalation
|
|
17201
Description:
FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user executes a setuid program that utilizes the standard C library access() function. As access() will only verify that a user can access a given pathname, its use creates a race condition. This flaw may lead to a loss of integrity.
|
1994-10-20
|
FreeBSD access() Function Race Condition
|
|
3103
Description:
Retrospect Remote Control Panel has a flaw that potentially allows a remote attacker to initialize a system, download every file and de-initialize the system. The flaw is due to the installation of the software not fully configuring the server. Once installed, Remote will wait for the server to download a security code and serial number. If this is not done, it leaves the server open to any remote user who has a copy of the software to perform the same actions not taken by the administrator.
|
1994-10-18
|
Retrospect Remote Control Panel Un-initilization
|
|
11725
Description:
Unknown / Incomplete
|
1994-10-15
|
Elvis elvprsv IFS Variable Local Privilege Escalation
|
|
17059
Description:
Unknown / Incomplete
|
1994-10-14
|
Solaris crash kmem Local Privilege Escalation
|
|
17098
Description:
Unknown / Incomplete
|
1994-10-14
|
Eric Raymond pcspkr Kernel Panic Local DoS
|
|
53015
Description:
At least one version of ircII (2.2.9) located on the cs-pub.bu.edu FTP site were found to contain a backdoor. It is believed the code in ctcp.c allowed a CTCP JUPE or CTCP GROK command to execute arbitrary commands on the client host. This could allow an attacker to gain remote access to the host.
|
1994-10-11
|
ircII on cs-pub.bu.edu Trojaned Distribution
|
|
17057
Description:
Unknown / Incomplete
|
1994-10-09
|
smail .forward Arbitrary Local File Creation
|
|
17056
Description:
Unknown / Incomplete
|
1994-10-06
|
smail -D Parameter Arbitrary Privileged File Creation
|
|
17189
Description:
Unknown / Incomplete
|
1994-10-02
|
SunOS / Solaris /dev/mouse ucred Local Privilege Escalation
|
|
17053
Description:
Smail contains a flaw that may allow a malicious user to access abitrary file. The issue is triggered when a local attacker links their .forward file to a privileged file on the system (such as /etc/shadow). Once linked, connecting to the SMTP port and issuing the 'debug' command along with a few other crafted commands will allow the user to display the contents of the privileged file.
|
1994-09-27
|
smail debug Mode .forward Arbitrary Privileged File Local Access
|
|
59340
Description:
(Description Provided by CVE) : The Logon box of a Windows NT system displays the name of the last user who logged in.
|
1994-09-21
|
Microsoft Windows NT Logon Box Account Name Disclosure
|
|
9600
Description:
(Description Provided by CVE) : Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges.
|
1994-09-21
|
HP-UX Message Catalog CORE-DIAG Fileset Local Privilege Escalation
|
