watercloud

17 exploits Active since Jan 2001
CVE-2002-0991 NOMISEC WORKING POC
HP CIFS/9000 Client <= A.01.06 - Local Buffer Overflow via Long Command Parameters
Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.
CVE-2002-0991 EXPLOITDB c WORKING POC
HP CIFS/9000 Client <= A.01.06 - Local Buffer Overflow via Long Command Parameters
Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.
CVE-2003-1359 EXPLOITDB bash WORKING POC
HP-UX 10.0-11.22 - Local Buffer Overflow via stmkfont Command Line Argument
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
CVE-2003-0090 EXPLOITDB c WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0844. Reason: This candidate is a duplicate of CVE-2000-0844. Notes: All CVE users should reference CVE-2000-0844 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2003-0090 EXPLOITDB c WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0844. Reason: This candidate is a duplicate of CVE-2000-0844. Notes: All CVE users should reference CVE-2000-0844 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2003-0089 EXPLOITDB c WORKING POC
HP-UX B.11.00 and B.11.11 - Buffer Overflow via LANG Environment Variable
Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify.
CVE-2001-0979 EXPLOITDB c WORKING POC
HP-UX 11.0 - Buffer Overflow via Long Command Line Argument
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument.
EIP-2026-102149 EXPLOITDB perl WORKING POC
HP-UX 7-11 - X Font Server Local Buffer Overflow
CVE-2003-0090 EXPLOITDB c WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0844. Reason: This candidate is a duplicate of CVE-2000-0844. Notes: All CVE users should reference CVE-2000-0844 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2004-0544 EXPLOITDB perl WORKING POC
IBM AIX 5.1-5.2 - Local Privilege Escalation via LVM putlvcb/getlvcb Buffer Overflow
Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands.
CVE-2001-1080 EXPLOITDB bash WORKING POC
AIX 4.3.x-5.1 - Privilege Escalation
diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program.
EIP-2026-100007 EXPLOITDB text WORKING POC
AIX 5.1 Bellmail - Local Race Condition
CVE-2004-2312 EXPLOITDB perl WORKING POC
IBM AIX 4.3.3 - Local Privilege Escalation via GNU make CC Argument Buffer Overflow
Buffer overflow in GNU make for IBM AIX 4.3.3, when installed setgid, allows local users to gain privileges via a long CC argument.
CVE-2002-1468 EXPLOITDB perl WORKING POC
IBM AIX 4.3.3 - Local Buffer Overflow in errpt
Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root.
CVE-2002-0747 EXPLOITDB perl WORKING POC
IBM AIX 4.3.3 - Buffer Overflow in lsmcode
Buffer overflow in lsmcode in AIX 4.3.3.
CVE-2000-1121 EXPLOITDB bash WORKING POC
IBM AIX - Buffer Overflow via enq Command -M Argument
Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument.
CVE-2004-2697 EXPLOITDB perl WORKING POC
IBM AIX - Privilege Escalation via Symlink Attack on Inventory Scout Daemon Log File
The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink attack on a command line argument (log file). NOTE: this might be related to CVE-2006-5002.