Debian: Security Advisory (DSA-151)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Memory corruption

IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendor description of this issue is too vague to be certain that it is security-related...

Code injection

The kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to gain privileges by executing setuid or setgid programs in which the stdio, stderr, or stdout file descriptors are "in an unexpected state."...

Design/Logic Flaw

The chmdecompressstream function in libclamav/chmunpack.c in Clam AntiVirus ClamAV before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third part...

DEBIAN-CVE-2007-1745

The chmdecompressstream function in libclamav/chmunpack.c in Clam AntiVirus ClamAV before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third part...

CVE-2007-1745

The chmdecompressstream function in libclamav/chmunpack.c in Clam AntiVirus ClamAV before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third part...

CVE-2007-1745

CVE-2007-1745 affects ClamAV prior to 0.90.2, where the function chm_decompress_stream in libclamav/chmunpack.c leaks file descriptors when processing a crafted CHM file. The description from the initial document states the impact is unknown and does not specify a concrete exploit path or affecte...

CVE-2007-1745

The chmdecompressstream function in libclamav/chmunpack.c in Clam AntiVirus ClamAV before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third part...

NetSievben SSH library SFTP DoS

SFTP file descriptors leak...

Debian DSA-1263-1 : clamav - several vulnerabilities

Several remote vulnerabilities have been discovered in the Clam anti-virus toolkit, which may lead to denial of service. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-0897 It was discovered that malformed CAB archives may exhaust file descriptors,...

CVE-2007-0897

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service file descriptor consumption and failed scans via CAB archives with a cabinet header record length of zero, which causes a function to return...

DEBIAN-CVE-2007-0897

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service file descriptor consumption and failed scans via CAB archives with a cabinet header record length of zero, which causes a function to return...

CVE-2007-0897

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service file descriptor consumption and failed scans via CAB archives with a cabinet header record length of zero, which causes a function to return...

Design/Logic Flaw

Sun Solaris 9 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572...

Design/Logic Flaw

HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572...

Unzuthorized file access via file stdio decriptors in multiple Unix systems

By exhausting all file descriptors and closing stderr it's possible to causesituation called application will open new file with descriptor 2 and all stderr output will be redirected to file. In few systems it's enougth to close standard descriptor...

lighttpd -- Remote DOS in CRLF parsing

Lighttpd SA: If the connection aborts during parsing "\r\n\r\n" the server might get into a infinite loop and use 100% of the CPU time. lighttpd still responses to other requests. This can be repeated until either the server limit for concurrent connections or file descriptors is reached. The bug...

php-exec.txt

Hello, This is not a new problem see http://www.securityfocus.com/bid/9302. However, we also "discovered" this a few weeks ago and contacted Apache and PHP about it. According to Stefan Esser PHP its due to Apache's failure to open file descriptors with the close on exec flag. However, according ...

CVE-2003-1307

The modphp module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: th...

CVE-2003-1307

The modphp module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: th...