Larry W. Cashdollar

55 exploits Active since Feb 1999
EIP-2026-102940 EXPLOITDB text WORKING POC
Oracle Automated Service Manager 1.3 - Installation Privilege Escalation
CVE-2003-0497 EXPLOITDB text WORKING POC
Caché Database 5.x - Privilege Escalation
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs.
EIP-2026-102801 EXPLOITDB text WRITEUP
Centrify Deployment Manager 2.1.0.283 - Local Privilege Escalation
CVE-2000-0588 EXPLOITDB text WORKING POC
SawMill 5.0.21 - Unauthenticated Arbitrary File Read via rfcf Parameter
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands.
CVE-1999-1405 EXPLOITDB text WRITEUP
IBM AIX < 4.3.2 - Unprotected User Data Exposure via /tmp/ibmsupt Directory
snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.