Unknown vulnerability in the libraries for the PGX32 frame buffer in Solaris 2.5.1 and 2.6 through 9 allows local users to gain root access. Date published : 2005-02-08 http://www.securityfocus.com/bid/9076 http://www.ciac.org/ciac/bulletins/o-029.shtml
The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary...
Unknown vulnerability in CDE Print Viewer (dtprintinfo) for Sun Solaris 2.6 through 9 may allow local users to execute arbitrary code. Date published : 2005-02-08 http://www.auscert.org.au/render.html?it=3675 http://www.securityfocus.com/bid/9170
The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. Date published : 2005-02-08 http://www.auscert.org.au/render.html?it=3688 http://www.securityfocus.com/bid/9199
Buffer overflow in the nss_ldap.so.1 library for Sun Solaris 8 and 9 may allow local users to gain root access via a long hostname in an LDAP lookup. Date published : 2005-02-08 http://www.auscert.org.au/render.html?it=3224 http://www.securityfocus.com/bid/7064
The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles...
Unknown vulnerability in the tcsetattr function for Sun Solaris for SPARC 2.6, 7, and 8 allows local users to cause a denial of service (system hang). Date published : 2005-02-08 http://www.auscert.org.au/render.html?it=3806 http://www.securityfocus.com/bid/9548
Windows Media Player 9 allows remote attackers to execute arbitrary code via a PNG file containing large (1) width or (2) height values, aka the "PNG Processing Vulnerability." Date published : 2005-02-08 http://www.us-cert.gov/cas/techalerts/TA05-039A.html http://www.kb.cert.org/vuls/id/259890
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments. Date published : 2005-02-08 http://www.securityfocus.com/bid/12474 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.13/SCOSA-2005.13.txt
Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2)...
Format string vulnerability in auditselect on IBM AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via format string specifiers in a command line argument. Date published : 2005-02-08 http://www-1.ibm.com/support/docview.wss?uid=isg1IY67472 http://www-1.ibm.com/support/docview.wss?uid=isg1IY67519
Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header. Date...
The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when creating user accounts that are configured for password aging, creates the accounts with a blank password, which allows remote or local attackers...
Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier may allow attackers to execute arbitrary code via (1) a large number of variables in a SQL statement being handled by the read_sql_construct function,...