2024 matches found
Fedora 12 : libHX-3.6-1.fc12 / pam_mount-2.5-1.fc12 (2010-13155)
Update to libHX 3.6 fixing a buffer overflow in HXsplit: http://libhx.gi t.sourceforge.net/git/gitweb.cgi?p=libhx/libhx;a=commitdiff;h=904a46f9 0d pammount v2.5 August 10 2010 =============================== Changes: - mount.crypt: fix incorrect processing of binary files in keyfile passthrough -...
Joomla component SimpleDownload Local File Inclusion
No description provided by source. A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php cod...
Joomla Simple Downloader 0.9.5 Local File Inclusion / Command Execution
--Description-- A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php code via Local File...
Joomla component SimpleDownload Local File Inclusion
--Description-- A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php code via Local File...
Linux Daemons with Broken Links to Executables
By examining the '/proc' filesystem on the remote Linux host, Nessus has identified at least one currently-running daemon for which the link to the corresponding executable is broken. This can occur when the executable associated with a daemon is replaced on disk but the daemon itself has not bee...
kernel: fs: pipe.c null pointer dereference
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
PHP 5.3.x < 5.3.1 Multiple Vulnerabilities
Binary data 801090.prm...
kernel: fs: pipe.c null pointer dereference
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
kernel: fs: pipe.c null pointer dereference
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
No description provided by source. while : ; do echo y ; sleep 1 ; | while read ; do echo z$REPLY; done ; & PID=$! OUT=$ps -efl | grep 'sleep 1' | grep -v grep | read PID REST ; echo $PID; OUT="$OUT%% " DELAY=$RANDOM 1000 / 32768 usleep $DELAY 1000 + RANDOM % 1000 echo n /proc/$OUT/fd/1 Trigger...
Race condition
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
CVE-2009-3547
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
CVE-2009-3547
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
kernel: fs: pipe.c null pointer dereference
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
kernel: fs: pipe.c null pointer dereference
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
kernel: fs: pipe.c null pointer dereference
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...
kernel: /proc/$pid/maps visible during initial setuid ELF loading
The mmformaps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read 1 maps and 2 smaps files under proc/ via vectors related to ELF loading, a setuid process, and a race condition...
PT-2009-5837
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.32-rc6 Description The issue is related to multiple race conditions in the fs/pipe.c file of the Linux kernel. This can be exploited by local users to cause a denial of service, resulting in a NULL pointer...
proc File Descriptors Directory Permissions bypass
Exploit for unknown platform in category local exploits ================================================== proc File Descriptors Directory Permissions bypass ================================================== Title: proc File Descriptors Directory Permissions bypass CVE-ID: OSVDB-ID: Author: Pave...
proc File Descriptors Directory Permissions bypass
No description provided by source. Hi! This is forward from lkml, so no, I did not invent this hole. Unfortunately, I do not think lkml sees this as a security hole, so... Jamie Lokier said: a the current permission model under /proc/PID/fd has a security hole which Jamie is worried about I belie...