Lucene search
K

2024 matches found

Tenable Nessus
Tenable Nessus
added 2010/09/04 12:0 a.m.18 views

Fedora 12 : libHX-3.6-1.fc12 / pam_mount-2.5-1.fc12 (2010-13155)

Update to libHX 3.6 fixing a buffer overflow in HXsplit: http://libhx.gi t.sourceforge.net/git/gitweb.cgi?p=libhx/libhx;a=commitdiff;h=904a46f9 0d pammount v2.5 August 10 2010 =============================== Changes: - mount.crypt: fix incorrect processing of binary files in keyfile passthrough -...

10CVSS5.8AI score0.05506EPSS
Exploits0References5
seebug.org
seebug.org
added 2010/06/03 12:0 a.m.24 views

Joomla component SimpleDownload Local File Inclusion

No description provided by source. A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php cod...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/05/19 12:0 a.m.26 views

Joomla Simple Downloader 0.9.5 Local File Inclusion / Command Execution

--Description-- A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php code via Local File...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2010/05/18 12:0 a.m.54 views

Joomla component SimpleDownload Local File Inclusion

--Description-- A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php code via Local File...

1.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/02/17 12:0 a.m.1978 views

Linux Daemons with Broken Links to Executables

By examining the '/proc' filesystem on the remote Linux host, Nessus has identified at least one currently-running daemon for which the link to the corresponding executable is broken. This can occur when the executable associated with a daemon is replaced on disk but the daemon itself has not bee...

5.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2009/12/15 5:2 p.m.4 views

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.3AI score0.0489EPSS
Exploits7References4
Tenable Nessus
Tenable Nessus
added 2009/11/25 12:0 a.m.13 views

PHP 5.3.x < 5.3.1 Multiple Vulnerabilities

Binary data 801090.prm...

7.5CVSS7.3AI score0.11341EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2009/11/17 3:23 p.m.6 views

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.3AI score0.0489EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2009/11/17 3:23 p.m.6 views

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.3AI score0.0489EPSS
Exploits7References4
seebug.org
seebug.org
added 2009/11/12 12:0 a.m.22 views

Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability

No description provided by source. while : ; do echo y ; sleep 1 ; | while read ; do echo z$REPLY; done ; & PID=$! OUT=$ps -efl | grep 'sleep 1' | grep -v grep | read PID REST ; echo $PID; OUT="$OUT%% " DELAY=$RANDOM 1000 / 32768 usleep $DELAY 1000 + RANDOM % 1000 echo n /proc/$OUT/fd/1 Trigger...

7.1AI score
Exploits0
Prion
Prion
added 2009/11/04 3:30 p.m.33 views

Race condition

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

6.9CVSS6.5AI score0.0489EPSS
Exploits7References29Affected Software14
NVD
NVD
added 2009/11/04 3:30 p.m.21 views

CVE-2009-3547

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS6.8AI score0.0489EPSS
Exploits7References29
UbuntuCve
UbuntuCve
added 2009/11/04 12:0 a.m.44 views

CVE-2009-3547

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.2AI score0.0489EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2009/11/03 9:56 p.m.4 views

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.3AI score0.0489EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2009/11/03 7:5 p.m.6 views

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.3AI score0.0489EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2009/11/03 6:21 p.m.4 views

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

7CVSS7.3AI score0.0489EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2009/11/03 6:21 p.m.5 views

kernel: /proc/$pid/maps visible during initial setuid ELF loading

The mmformaps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read 1 maps and 2 smaps files under proc/ via vectors related to ELF loading, a setuid process, and a race condition...

2.1CVSS5.8AI score0.00393EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2009/11/03 12:0 a.m.4 views

PT-2009-5837

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.32-rc6 Description The issue is related to multiple race conditions in the fs/pipe.c file of the Linux kernel. This can be exploited by local users to cause a denial of service, resulting in a NULL pointer...

7CVSS6.9AI score0.0489EPSS
Exploits7References36
0day.today
0day.today
added 2009/10/23 12:0 a.m.19 views

proc File Descriptors Directory Permissions bypass

Exploit for unknown platform in category local exploits ================================================== proc File Descriptors Directory Permissions bypass ================================================== Title: proc File Descriptors Directory Permissions bypass CVE-ID: OSVDB-ID: Author: Pave...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2009/10/23 12:0 a.m.13 views

proc File Descriptors Directory Permissions bypass

No description provided by source. Hi! This is forward from lkml, so no, I did not invent this hole. Unfortunately, I do not think lkml sees this as a security hole, so... Jamie Lokier said: a the current permission model under /proc/PID/fd has a security hole which Jamie is worried about I belie...

7.1AI score
Exploits0
Rows per page
Query Builder