Lucene search
K

3773 matches found

Exploit DB
Exploit DB
added 2006/07/15 12:0 a.m.41 views

Rocks Clusters 4.1 - 'mount-loop' Local Privilege Escalation

!/bin/sh rocksmountdirty.sh: Rocks release =4.1 local root exploit make sure 'mount-loop' is in your path for this to work. coded by: [email protected] http://xavsec.blogspot.com echo "Rocks Clusters =4.1 mount-loop local root exploit by [email protected] http://xavsec.blogspot.com" echo...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/07/05 12:0 a.m.52 views

CentOS 4 : kernel (CESA-2006:0101)

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

7.8CVSS5.5AI score0.05357EPSS
Exploits17References20
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.33 views

CentOS 3 / 4 : util-linux / mount (CESA-2005:782)

Updated util-linux and mount packages that fix two security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux...

7.2CVSS5.5AI score0.00433EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2006/05/31 12:0 a.m.36 views

smbfs -- chroot escape

Problem Description smbfs does not properly sanitize paths containing a backslash character; in particular the directory name '..' is interpreted as the parent directory by the SMB/CIFS server, but smbfs handles it in the same manner as any other directory. Impact When inside a chroot environment...

6.4CVSS6.3AI score0.02751EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/05/19 12:0 a.m.53 views

Mandrake Linux Security Advisory : kernel (MDKSA-2006:086)

A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Prior to Linux kernel 2.6.16.5, the kernel does not properly handle uncanonical return addresses on Intel EM64T CPUs which causes the kernel exception handler to run on the user stack with the wrong GS...

7.8CVSS5.8AI score0.04342EPSS
Exploits0References9
securityvulns
securityvulns
added 2006/02/28 12:0 a.m.34 views

[SA19017] FreeBSD "nfsd" NFS Mount Request Denial of Service

TITLE: FreeBSD "nfsd" NFS Mount Request Denial of Service SECUNIA ADVISORY ID: SA19017 VERIFY ADVISORY: http://secunia.com/advisories/19017/ CRITICAL: Less critical IMPACT: DoS WHERE: From local network OPERATING SYSTEM: FreeBSD 6.x http://secunia.com/product/6778/ DESCRIPTION: Evgeny Legerov has...

0.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2006/02/27 7:6 p.m.18 views

CVE-2006-0900

nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a denial of service via a crafted NFS mount request, as demonstrated by the ProtoVer NFS test suite...

7.8CVSS6AI score0.64373EPSS
Exploits2References1
NVD
NVD
added 2006/02/27 7:6 p.m.12 views

CVE-2006-0900

nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a denial of service via a crafted NFS mount request, as demonstrated by the ProtoVer NFS test suite...

7.8CVSS6.2AI score0.64373EPSS
Exploits2References7
Cvelist
Cvelist
added 2006/02/27 7:0 p.m.29 views

CVE-2006-0900

nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a denial of service via a crafted NFS mount request, as demonstrated by the ProtoVer NFS test suite...

6.1AI score0.64373EPSS
Exploits2References7
CVE
CVE
added 2006/02/27 7:0 p.m.119 views

CVE-2006-0900

CVE-2006-0900 affects FreeBSD where the NFS server (nfsd) processing of TCP RPC messages can panic the kernel when it receives a zero-length payload. The vulnerability allows a remote attacker to crash the system via a crafted NFS mount/RPC sequence, as demonstrated by historical advisories and P...

7.8CVSS6AI score0.64373EPSS
Exploits2References7Affected Software1
Prion
Prion
added 2006/01/31 2:3 a.m.29 views

Buffer overflow

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks...

4.6CVSS7.7AI score0.00492EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2006/01/31 2:3 a.m.28 views

CVE-2006-0043

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks...

4.6CVSS6AI score0.00492EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/01/31 2:0 a.m.31 views

CVE-2006-0043

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks...

7.3AI score0.00492EPSS
Exploits0References9
CVE
CVE
added 2006/01/31 2:0 a.m.74 views

CVE-2006-0043

CVE-2006-0043 concerns a buffer overflow in the nfs-user-server path handling that Debian advisories (DSA-975-1) describe as remote and capable of arbitrary code execution via symlinks. Debian notes vulnerable packages in older releases (woody/sarge lineage) and provides fixes in the 2.2beta47- p...

4.6CVSS7.3AI score0.00492EPSS
Exploits0References9Affected Software1
RedHat Linux
RedHat Linux
added 2006/01/17 8:36 a.m.57 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

7.8CVSS5.8AI score0.05357EPSS
Exploits17References18
Tenable Nessus
Tenable Nessus
added 2006/01/17 12:0 a.m.53 views

RHEL 4 : kernel (RHSA-2006:0101)

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

7.8CVSS5.5AI score0.05357EPSS
Exploits17References35
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.23 views

Mandrake Linux Security Advisory : fuse (MDKSA-2005:216)

Thomas Beige found that fusermount failed to securely handle special characters specified in mount points, which could allow a local attacker to corrupt the contents of /etc/mtab by mounting over a maliciously-named directory using fusermount. This could potentially allow the attacker to set...

2.1CVSS5.4AI score0.00365EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2006/01/10 12:0 a.m.69 views

rt-sa-2005-15.txt

Advisory: BSD Securelevels: Circumventing protection of files flagged immutable By mounting an arbitrary filesystem, it is possible to mask files flagged immutable with any user-defined files. Details ======= Product: FreeBSD up to 6.0-STABLE and 7.0-CURRENT OpenBSD up to 3.8 DragonFly up to 1.2...

4.3CVSS6.7AI score0.00426EPSS
Exploits2
Cvelist
Cvelist
added 2005/12/04 11:0 a.m.17 views

CVE-2004-2610

mntdmount.c in mntd before 0.4.2 might allow local users to gain privileges via shell metacharacters in a remount option in the configuration file. NOTE: It is not clear whether this is a vulnerability because there is not necessarily any common usage in which privilege boundaries are crossed...

6.7AI score0.00441EPSS
Exploits1References4
OSV
OSV
added 2005/11/23 12:3 a.m.1 views

DEBIAN-CVE-2005-3531

fusermount in FUSE before 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose name contains certain special characters...

2.1CVSS6.6AI score0.00365EPSS
Exploits0References1
Rows per page
Query Builder