OSVDB: Open Sourced Vulnerability Database

Browse Database

Browsing Vulnerabilities Disclosed in January of 1992

OSVDB ID	Disclosure Date	Title
15267 [CLOSE] OSVDB ID : 15267 - Disclosed: 1992-01-24 Description: Unknown / Incomplete	1992-01-24	SunOS binmail mailbox Race Condition Arbitrary File Creation
84725 [CLOSE] OSVDB ID : 84725 - Disclosed: 1992-01-08 Description: UNIX and SysV R4 contain a flaw that is triggered by sadc having root privileges. This may allow an attacker to create arbitrary files that contain escalated privileges.	1992-01-08	UNIX SysV R4 sadc Arbitrary Privileged File Creation
84724 [CLOSE] OSVDB ID : 84724 - Disclosed: 1992-01-08 Description: A/UX contains a flaw that is triggered by sadc having root privileges. This may allow an attacker to create arbitrary files that contain escalated privileges.	1992-01-08	A/UX sadc Arbitrary Privileged File Creation
17063 [CLOSE] OSVDB ID : 17063 - Disclosed: 1992-01-08 Description: Unknown / Incomplete	1992-01-08	SCO Unix sadc Arbitrary Privileged File Creation
11449 [CLOSE] OSVDB ID : 11449 - Disclosed: 1992-01-01 Description: (Description Provided by CVE) : The rwho/rwhod service is running, which exposes machine status and user information.	1992-01-01	rwho/rwhod Service Remote Information Disclosure
11451 [CLOSE] OSVDB ID : 11451 - Disclosed: 1992-01-01 Description: The finger service provides information about local users in response to queries from remote systems. This information can include login ids (account names), home directory, the type of local shell, the last time the user logged in, and the remote system the user logged in from. This information can be used for further more focused attacks.	1992-01-01	finger Service Remote Information Disclosure
14727 [CLOSE] OSVDB ID : 14727 - Disclosed: 1992-01-01 Description: KBBS contains a flaw that may allow a regular user to spoof the system operator (SYSOP) email. The issue is due to the bulletin board accepting white space in user names. This may allow a user to create a name that appears to be the same as the system operator (ie: "John Doe " instead of "John Doe"). Email from such a user may appear to be from the legitimate SYSOP and convince other users to execute commands or perform actions they would not otherwise do.	1992-01-01	KBBS Padded Name SYSOP Spoofing
14728 [CLOSE] OSVDB ID : 14728 - Disclosed: 1992-01-01 Description: By default, Oblivion/2 installs with a default password. The SYSOP account has a password of "SYSOP" which is publicly known and documented. This allows attackers to trivially access the program or system.	1992-01-01	Oblivion/2 BBS Default SYSOP Password
14729 [CLOSE] OSVDB ID : 14729 - Disclosed: 1992-01-01 Description: PCBoard contains a flaw that may allow a user to gain elevated privileges. The issue is due to the system not properly sanitizing input to the OP (Open door) command. If the system allows parameters such as /SYSOP, /DEBUG, or /SEC:255, these parameters can be invoked via the OPEN command to gain privileges.	1992-01-01	PCBoard BBS OP Command Privilege Escalation

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.