exploits , vulnerabilities , articles , Slackware /etc/group missing results in root access Vulnerability

Title	Slackware /etc/group missing results in root access Vulnerability
Published	1998-07-13-12:00AM
Updated	1999-06-01-12:00AM
Class	Access Validation Error
CVE	CAN-1999-1434
Remote	Yes
Local	Yes
Credit	This vulnerability was found by Richard Thomas <rthomas@sy.net> and was posted to the Bugtraq mailing list on July 13, 1998.
Vulnerable	Slackware Linux 3.5 Slackware Linux 3.4 Slackware Linux 3.3 Slackware Linux 3.2 Slackware Linux 3.1
Not Vulnerable
Code	Remove /etc/group and log in as a valid user. /etc/group must entirely not exist -- mode 000 is not sufficient.
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-16 Horde Application Framework Administration Interface Cross-Site Scripting Vulnerability
• 2009-12-16 Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
• 2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
• 2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
• 2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
• 2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
• 2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
• 2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
• 2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
• 2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 21:21:08 +0000