70 matches found
kernel: 64-bit Compatibility Mode Stack Pointer Underflow
The compatallocuserspace functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the...
kernel: 64-bit Compatibility Mode Stack Pointer Underflow
The compatallocuserspace functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the...
Weatimages - Directory Traversal / Local File Inclusion
Weatimages Directory Traversal&Local File Include Vulnerabilities By: e.wiZz! Script info: Site: http://nazarkin.name/projects/weatimages/download.php In the wild... index.php: ... //kill oneself if user trying to access resource with '/../' in path if strstrurldecode$SERVER'REQUESTURI', '/../'...
Ubuntu 6.10 : linux-source-2.6.17 vulnerabilities (USN-486-1)
The compatsysmount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode. CVE-2006-7203 The Omnikey CardMan 4040 driver cm4040cs did not limit the size of buffers passed to read and write. A local attacker could exploit this to execute...
oops in compat_sys_mount() when data pointer is NULL
The compatsysmount function in fs/compat.c in Linux kernel 2.6.20 and earlier allows local users to cause a denial of service NULL pointer dereference and oops by mounting a smbfs file system in compatibility mode "mount -t smbfs"...
oops in compat_sys_mount() when data pointer is NULL
The compatsysmount function in fs/compat.c in Linux kernel 2.6.20 and earlier allows local users to cause a denial of service NULL pointer dereference and oops by mounting a smbfs file system in compatibility mode "mount -t smbfs"...
Critical: Red Hat Security Advisory: sendmail security update
Updated sendmail packages to fix a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having critical security impact by the Red Hat Security Response Team. Sendmail is a Mail Transport Agent MTA used to send mail between machines. A flaw in the...
CVE-2006-1087
Direct static code injection vulnerability in the modifyconfig action in admin.php for PHP-Stats 0.1.9.1 and earlier allows remote authenticated administrators to execute arbitrary PHP code via the optionnewcompatibilitymode parameter, which is not filtered before being stored in config.php. NOTE...
CVE-2006-1087
Direct static code injection vulnerability in the modifyconfig action in admin.php for PHP-Stats 0.1.9.1 and earlier allows remote authenticated administrators to execute arbitrary PHP code via the optionnewcompatibilitymode parameter, which is not filtered before being stored in config.php. NOTE...
CVE-2005-1765
syscall in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform, when running in 32-bit compatibility mode, allows local users to cause a denial of service kernel hang via crafted arguments...