|
[[-irix
6.3-]] |
|
|
[-local-] |
[-description-] |
[-author-] |
df.c |
command line parsing
buffer overflow |
lsd |
dmplay.c |
command line parsing
buffer overflow |
lsd |
gmemusage.sh |
gmemusage libc system()
function vulnerability |
lsd |
gr_osview.c |
-D command line parsing
buffer overflow |
lsd |
libxt.c / libxt2.c |
libXt.so library buffer
overflow vulnerability |
lsd |
login.c |
command line parsing
buffer overflow |
lsd |
mail.c |
mail LOGNAME environment
buffer overflow |
lsd |
netprint |
bad system() call allows
priveledge lp gain |
yuri volobuev |
ordist.c |
command line parsing
buffer overflow |
lsd |
perm.c |
permissions enviroment
overflow |
dcrh |
printers.c |
-xrm argument overflow |
dcrh |
pset.c / pset2.c |
pset -s argument overflow |
[multiple] |
rlogin.c |
term environment buffer
overflow vulnerability |
lsd |
serialport.sh |
race conditions with
suid administration scripts |
unknown |
xlock.c |
command line parsing
buffer overflow |
lsd |
xterm.c |
command line parsing
buffer overflow |
dcrh |
|
|
|
[-remote-] |
[-description-] |
[-author-] |
arrayd.c |
arrayd service authentication
vulnerability |
lsd |
handler |
handle.cgi allows remote
command execution |
unknown |
pfdispaly |
allows users to view
files remotely |
j.a. gutierrez |
rpc.ttdbserver.c
/ rpc_ttdbserverd.c |
rpc.ttdbserverd daemon
buffer overflow vulnerability |
[multiple] |
telnetd.c |
format strings vulnerability |
lsd |
webdist-cgi |
webdest.cgi allows remote
command execution |
unknown |
|
[-dos-] |
[-description-] |
[-author-] |
truncate.c |
does'nt check privileges
correctly before truncating files |
lsd |
|