OSVDB: Open Sourced Vulnerability Database

Browse Database

Browsing Vulnerabilities Disclosed in December of 1993

OSVDB ID	Disclosure Date	Title
14738 [CLOSE] OSVDB ID : 14738 - Disclosed: 1993-12-25 Description: By default, ViSiON-X BBS installs with a default password. The SYSOP account has a password of "SYSOP" which is publicly known and documented. This allows attackers to trivially access the program or system.	1993-12-25	ViSiON-X Default SYSOP Password
19783 [CLOSE] OSVDB ID : 19783 - Disclosed: 1993-12-16 Description: (Description Provided by CVE) : The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.	1993-12-16	SunOS /sbin/rcS fsck Failure Privilege Escalation
19784 [CLOSE] OSVDB ID : 19784 - Disclosed: 1993-12-16 Description: (Description Provided by CVE) : The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.	1993-12-16	SunOS /sbin/mountall fsck Failure Privilege Escalation
5899 [CLOSE] OSVDB ID : 5899 - Disclosed: 1993-12-15 Description: SunOS contains a flaw in loadmodule that may allow a malicious local user to gain unauthorized root privileges. The issue is due to the way the loadmodule program fails to sanitize the path environment variable. Sun attempted to patch this by clearing the IFS variable but it can still be exploited by setting the IFS variable twice. This flaw may lead to a loss of Confidentiality and Integrity.	1993-12-15	SunOS loadmodule Double IFS Privilege Escalation
5860 [CLOSE] OSVDB ID : 5860 - Disclosed: 1993-12-15 Description: SunOS version 4.1.x contains a flaw in loadmodule that may allow a malicious local user to gain unauthorized root privileges. The issue is due to the way the loadmodule program fails to sanitize the path environment variable. This flaw may lead to a loss of Confidentiality and Integrity.	1993-12-15	SunOS loadmodule Path Environment Privilege Escalation
16454 [CLOSE] OSVDB ID : 16454 - Disclosed: 1993-12-12 Description: (Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in shop.cgi in Remote Cart allows remote attackers to inject arbitrary web script or HTML via the (1) merchant or (2) demo parameters.	1993-12-12	Sendmail mail from: Piped Command Execution
5861 [CLOSE] OSVDB ID : 5861 - Disclosed: 1993-12-01 Description: Sun Microsystems SunOS contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an error in the modload program related to environment variables occurs. This flaw may lead to an escliation of user privledges.	1993-12-01	SunOS modload Root Privilege Escalation

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.