Brock Tellier

31 exploits Active since Dec 1998
CVE-1999-0828 EXPLOITDB c WORKING POC
UnixWare - Arbitrary File Read via pkg Commands
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
EIP-2026-114707 EXPLOITDB c WORKING POC
SCO Open Server 5.0.5 - cancel Buffer Overflow
CVE-1999-0864 EXPLOITDB bash WORKING POC
UnixWare - Local Privilege Escalation
UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file.
CVE-1999-0836 EXPLOITDB perl WORKING POC
UnixWare - Arbitrary File Write via Symlink Attack
UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.
CVE-1999-0866 EXPLOITDB c WORKING POC
UnixWare - Local Buffer Overflow in xauto
Buffer overflow in UnixWare xauto program allows local users to gain root privilege.
CVE-1999-0979 EXPLOITDB c WORKING POC
SCO UnixWare - Privilege Escalation
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.
CVE-1999-0825 EXPLOITDB text WORKING POC
UnixWare - Unprotected Mail Spoofing via Default /var/mail Permissions
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.
CVE-1999-0828 EXPLOITDB text WORKING POC
UnixWare - Arbitrary File Read via pkg Commands
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
CVE-1999-0828 EXPLOITDB c WORKING POC
UnixWare - Arbitrary File Read via pkg Commands
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
CVE-1999-0988 EXPLOITDB c WORKING POC
UnixWare pkgtrans - Info Disclosure
UnixWare pkgtrans allows local users to read arbitrary files via a symlink attack.
CVE-2000-0026 EXPLOITDB c WORKING POC
Windowmaker Wmmon - Buffer Overflow
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.
CVE-2000-0032 EXPLOITDB text WORKING POC
Solaris - Denial of Service via Malformed DMI Database File
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
CVE-1999-1014 EXPLOITDB c WORKING POC
Solaris 2.7 - Local Privilege Escalation via Mail Command -m Argument
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
CVE-1999-1340 EXPLOITDB c WORKING POC
hylafax 4.0.2 - Local Buffer Overflow via Long -m Argument
Buffer overflow in faxalter in hylafax 4.0.2 allows local users to gain privileges via a long -m command line argument.
CVE-2000-0027 EXPLOITDB c WORKING POC
IBM Network Station Manager NetStation - Privilege Escalation
IBM Network Station Manager NetStation allows local users to gain privileges via a symlink attack.
CVE-1999-0744 EXPLOITDB c WORKING POC
Netscape Enterprise Server and FastTrack Server - Buffer Overflow via Long HTTP GET Request
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.
CVE-1999-0893 EXPLOITDB text WORKING POC
SCO OpenServer - Local Privilege Escalation
userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack.
CVE-1999-0888 EXPLOITDB bash WORKING POC
Oracle Intelligent Agent - Privilege Escalation
dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.
CVE-1999-1008 EXPLOITDB c WORKING POC
xsoldier - Privilege Escalation via Long Argument
xsoldier program allows local users to gain root access via a long argument.
CVE-2000-0035 EXPLOITDB text WORKING POC
Majordomo < 1.94.4 - Local Privilege Escalation via Resend Command Shell Metacharacters
resend command in Majordomo allows local users to gain privileges via shell metacharacters.
CVE-1999-1534 EXPLOITDB c WORKING POC
Knox Software Arkeia - Buffer Overflow via HOME Environment Variable
Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environmental variable.
CVE-1999-1477 EXPLOITDB bash WORKING POC
GNOME Libraries 1.0.8 - Buffer Overflow via Long --espeaker Argument
Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack.
EIP-2026-102987 EXPLOITDB c WORKING POC
SCO Open Server 5.0.5 - X Library Buffer Overflow (1)
CVE-2000-0362 EXPLOITDB bash WORKING POC
SUSE Linux cdwtools - Local Buffer Overflow
Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.
CVE-1999-1008 EXPLOITDB c WORKING POC
xsoldier - Privilege Escalation via Long Argument
xsoldier program allows local users to gain root access via a long argument.