RSS   Podatności dla 'OSH'   RSS

2005-12-10
 
CVE-2005-3533

 

 
Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename.

 
2005-11-20
 
CVE-2005-3346

 

 
Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LD_PRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv function call.

 


Copyright 2024, cxsecurity.com

 

Back to Top