OSVDB: Open Sourced Vulnerability Database

Browse Database

Browsing Vulnerabilities Disclosed in August of 1995

OSVDB ID	Disclosure Date	Title
85083 [CLOSE] OSVDB ID : 85083 - Disclosed: 1995-08-27 Description: The SAFER K-64 encryption algorithm has been compromised through a real-world, practical, low-cost attack. Using consumer-grade hardware, the SAFER K-64 key schedule is vulnerable to a related-key chosen plaintext attack. By comparing enough plaintext data that is matched to its corresponding cipher text, the encryption keys can be derived through cryptanalysis. Such an attack could potentially compromise the entire encryption scheme, giving the attacker access to sensitive data.	1995-08-27	SAFER K-64 Algorithm Key Schedule Related-key Chosen Plaintext Attack Compromise
400 [CLOSE] OSVDB ID : 400 - Disclosed: 1995-08-24 Description: Unknown / Incomplete	1995-08-24	lsof .lsof_dev_cache Privilege Escalation
357 [CLOSE] OSVDB ID : 357 - Disclosed: 1995-08-23 Description: Unknown / Incomplete	1995-08-23	Multiple IP Firewall Fragmented Packet Flag Overwrite
356 [CLOSE] OSVDB ID : 356 - Disclosed: 1995-08-17 Description: Unknown / Incomplete	1995-08-17	SunOS ptrace Arbitrary Memory Content Disclosure
8346 [CLOSE] OSVDB ID : 8346 - Disclosed: 1995-08-14 Description: The ps program in Sun Solaris contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when the program creates the 'ps_data' file with root permission in the /tmp directory, which is world-writeable. It is possible that the flaw may allow a malicious user to create a symlink from a malicious file, which could be overwritten when the application is executed resulting in a loss of integrity.	1995-08-14	Solaris ps Command Symlink Arbitrary File Overwrite
355 [CLOSE] OSVDB ID : 355 - Disclosed: 1995-08-11 Description: Unknown / Incomplete	1995-08-11	RiscOS rshd File Descriptor RO Arbitrary File Disclosure
348 [CLOSE] OSVDB ID : 348 - Disclosed: 1995-08-05 Description: Unknown / Incomplete	1995-08-05	Simple CGI Email Handler Unspecified Tilde Escape Issue
18057 [CLOSE] OSVDB ID : 18057 - Disclosed: 1995-08-02 Description: Unknown / Incomplete	1995-08-02	Matt Wright FormMail Arbitrary Command Execution
18056 [CLOSE] OSVDB ID : 18056 - Disclosed: 1995-08-02 Description: Unknown / Incomplete	1995-08-02	Matt Wright Guestbook CGI Arbitrary Command Execution
66 [CLOSE] OSVDB ID : 66 - Disclosed: 1995-08-02 Description: (Description Provided by CVE) : FormMail CGI program allows remote execution of commands.	1995-08-02	Matt Wright FormMail CGI (formmail.cgi) Arbitrary Mail Relay
11727 [CLOSE] OSVDB ID : 11727 - Disclosed: 1995-08-01 Description: (Description Provided by CVE) : Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.	1995-08-01	syslog Shared Libraries Remote Overflow
9903 [CLOSE] OSVDB ID : 9903 - Disclosed: 1995-08-01 Description: (Description Provided by CVE) : The ghostscript command with the -dSAFER option allows remote attackers to execute commands.	1995-08-01	GNU Ghostscript -dSAFER Allows Command Execution
1877 [CLOSE] OSVDB ID : 1877 - Disclosed: 1995-08-01 Description: Unknown / Incomplete	1995-08-01	Sendmail Control File Descriptor Race Condition

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.