OSVDB: Open Sourced Vulnerability Database

Browse Database

Browsing Vulnerabilities Disclosed in September of 1991

OSVDB ID	Disclosure Date	Title
8069 [CLOSE] OSVDB ID : 8069 - Disclosed: 1991-09-27 Description: TFTP is not running in a restricted directory allowing a remote attacker to access sensitive information such as password files.	1991-09-27	TFTP Unrestricted Directory Instance Arbitrary File Access
8741 [CLOSE] OSVDB ID : 8741 - Disclosed: 1991-09-19 Description: (Description Provided by CVE) : Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).	1991-09-19	SunOS Integer Multiplication Emulation Code Local Privilege Escalation (Divide-by-Zero)
88802 [CLOSE] OSVDB ID : 88802 - Disclosed: 1991-09-11 Description: BSD ships an rdist binary that contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against an unspecified file to cause a race condition which may allow them to modify their own permissions in order to gain escalated privileges via access to an arbitrary file.	1991-09-11	BSD rdist Symlink Race Condition Arbitrary File Permission Modification Local Privilege Escalation
88801 [CLOSE] OSVDB ID : 88801 - Disclosed: 1991-09-11 Description: Encore ships an rdist binary that contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against an unspecified file to cause a race condition which may allow them to modify their own permissions in order to gain escalated privileges via access to an arbitrary file.	1991-09-11	Encore rdist Symlink Race Condition Arbitrary File Permission Modification Local Privilege Escalation
88800 [CLOSE] OSVDB ID : 88800 - Disclosed: 1991-09-11 Description: CCI PowerNode ships an rdist binary that contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against an unspecified file to cause a race condition which may allow them to modify their own permissions in order to gain escalated privileges via access to an arbitrary file.	1991-09-11	CCI PowerNode rdist Symlink Race Condition Arbitrary File Permission Modification Local Privilege Escalation
88799 [CLOSE] OSVDB ID : 88799 - Disclosed: 1991-09-11 Description: IBM AIX ships an rdist binary that contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against an unspecified file to cause a race condition which may allow them to modify their own permissions in order to gain escalated privileges via access to an arbitrary file.	1991-09-11	IBM AIX rdist Symlink Race Condition Arbitrary File Permission Modification Local Privilege Escalation
88798 [CLOSE] OSVDB ID : 88798 - Disclosed: 1991-09-11 Description: SunOS ships an rdist binary that contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against an unspecified file to cause a race condition which may allow them to modify their own permissions in order to gain escalated privileges via access to an arbitrary file.	1991-09-11	SunOS rdist Symlink Race Condition Arbitrary File Permission Modification Local Privilege Escalation
9719 [CLOSE] OSVDB ID : 9719 - Disclosed: 1991-09-10 Description: (Description Provided by CVE) : The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files.	1991-09-10	NCSA Telnet Package FTP Enable Arbitrary File Modification

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.