Lucene search
K

28 matches found

Cvelist
Cvelist
added 2015/03/02 11:0 a.m.31 views

CVE-2014-9644

The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a parenthesized module template expression in the salgname field, as demonstrated by the vfataes expression, a different vulnerability than...

5.8AI score0.00552EPSS
Exploits0References19
OSV
OSV
added 2015/01/27 9:8 p.m.6 views

MGASA-2015-0041 Updated busybox packages fix CVE-2014-9645

Updated busybox packages fix security vulnerability: The modprobe command in busybox before 1.23.0 uses the basename of the module argument as the module to load, allowing arbitrary modules, even when some kernel subsystems try to prevent this CVE-2014-9645...

5.5CVSS7.1AI score0.00635EPSS
Exploits2References3
OSV
OSV
added 2014/04/23 3:55 p.m.2 views

DEBIAN-CVE-2014-0472

The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."...

5.1CVSS7.2AI score0.05603EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.54 views

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2015)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-2015 advisory. - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge:...

7.8CVSS7.2AI score0.03411EPSS
Exploits8References15
Cvelist
Cvelist
added 2013/03/01 11:0 a.m.25 views

CVE-2011-1019

The devload function in net/core/dev.c in the Linux kernel before 2.6.38 allows local users to bypass an intended CAPSYSMODULE capability requirement and load arbitrary modules by leveraging the CAPNETADMIN capability...

6.9AI score0.00443EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2006/03/21 12:0 a.m.30 views

Mandrake Linux Security Advisory : xorg-x11 (MDKSA-2006:056)

Versions of Xorg 6.9.0 and greater have a bug in xf86Init.c, which allows non-root users to use the -modulepath, -logfile and -configure options. This allows loading of arbitrary modules which will execute as the root user, as well as a local DoS by overwriting system files. Updated packages have...

7.2CVSS6.6AI score0.01099EPSS
Exploits4References1
Cvelist
Cvelist
added 2003/08/02 4:0 a.m.25 views

CVE-2003-0641

WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess function, as demonstrated using 1 a DLL injection attack, 2 ZwSetSystemInformation, and 3 API hooking in OpenProcess...

6.7AI score0.00364EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2001/02/02 12:0 a.m.4 views

PT-2001-1319 · Gtk · Gtk+ Library

Name of the Vulnerable Software and Affected Versions: GTK+ library affected versions not specified Description: The issue allows local users to specify arbitrary modules via the GTK MODULES environmental variable. This could potentially allow local users to gain privileges if GTK+ is used by a...

7.2CVSS6.4AI score0.0122EPSS
Exploits1References7
Rows per page
Query Builder