CVE-2006-3468

Linux kernel 2.6.x, when using both NFS and EXT3, allows remote attackers to cause a denial of service file system panic via a crafted UDP packet with a V2 lookup procedure that specifies a bad file handle inode number, which triggers an error and causes an exported directory to be remounted...

CVE-2006-3468

Linux kernel 2.6.x, when using both NFS and EXT3, allows remote attackers to cause a denial of service file system panic via a crafted UDP packet with a V2 lookup procedure that specifies a bad file handle inode number, which triggers an error and causes an exported directory to be remounted...

Sudo version 1.6.8p9 now available, fixes security issue.

Sudo version 1.6.8, patchlevel 9 is now available, which fixes a race condition in Sudo's pathname validation. This is a security issue. Summary: A race condition in Sudo's command pathname handling prior to Sudo version 1.6.8p9 that could allow a user with Sudo privileges to run arbitrary...

HP-UX PHKL_23335 : HP-UX Filesystem Deadlock, Local Denial of Service (DoS) (HPSBUX00178 SSRT071361 rev.2)

s700800 11.11 solve inode deadlock with mmap and pagefault : filesystem deadlock causes the system hang. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHKL23335. The text itself is copyright C Hewlett-Packard...

PT-2003-2363

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 1.3.22 through 1.3.27 Description The issue allows remote attackers to obtain sensitive information. This can be achieved via the ETag header, which reveals the inode number, or the multipart MIME boundary, which...

CVE-2000-1144

Recourse ManTrap 1.6 sets up a chroot environment to hide the fact that it is running, but the inode number for the resulting "/" file system is higher than normal, which allows attackers to determine that they are in a chroot environment...

CVE-2000-1144

CVE-2000-1144 affects Recourse ManTrap 1.6. The issue is that the chroot'ed root (/) has an inode number higher than normal, enabling an attacker to determine that the process is running inside a chroot environment. The available sources describe the vulnerability as exposing chroot presence (loc...

CVE-2000-1144

Recourse ManTrap 1.6 sets up a chroot environment to hide the fact that it is running, but the inode number for the resulting "/" file system is higher than normal, which allows attackers to determine that they are in a chroot environment...

ManTrap 1.6.1 - Root Directory Inode Disclosure

ManTrap 1.6.1 - Root Directory Inode Disclosure / source: https://www.securityfocus.com/bid/1909/info ManTrap is a "honeypot" intrusion detection system designed to lure attackers into it for analysis. The honeypot is implemented as a chroot'ed Solaris environment, designed to look and feel real ...

ManTrap 1.6.1 - Root Directory Inode Disclosure

/ source: https://www.securityfocus.com/bid/1909/info ManTrap is a "honeypot" intrusion detection system designed to lure attackers into it for analysis. The honeypot is implemented as a chroot'ed Solaris environment, designed to look and feel real to an attacker who gains access to it. Chroot...

xperl.sh

Ok, I decided to describe it with details. a If you'll try to fool perl, forcing it to execute one file instead of another quite complicated condition, refer to source code, it generates such mail to administrator: From: Bastard Operator To: [email protected] User 500 tried to run dev 769 ino...

Linux Kernel 2.02.0.33 - i_count Overflow (PoC)

Linux Kernel 2.02.0.33 - icount Overflow PoC / source: https://www.securityfocus.com/bid/388/info The icount member in the Linux inode structure is an unsigned short integer. It can be overflowed by mapping a single file too many times, allowing for a local user to possibly gain root access on th...