Lucene search
+L

5737 matches found

securityvulns
securityvulns
added 2005/05/12 12:0 a.m.61 views

Linux kernel ELF core dump privilege elevation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, since it became clear from the discussion in January about the uselib vulnerability, that the Linux community prefers full, non-embargoed disclosure of kernel bugs, I release full details right now. However to follows at least some of the...

7.2CVSS6.1AI score0.01774EPSS
Exploits1
exploitpack
exploitpack
added 2005/05/03 12:0 a.m.43 views

Subversion 0.3.71.0.0 - Remote Buffer Overflow

Subversion 0.3.71.0.0 - Remote Buffer Overflow / hoagiesubversion.c Remote exploit against Subversion-Servers. Author: greuff Tested on Subversion 1.0.0 and 0.37 Algorithm: This is a two-stage exploit. The first stage overflows a buffer on the stack and leaves us 60 bytes of machine code to be...

0.8AI score
Exploits0
NVD
NVD
added 2005/05/02 4:0 a.m.22 views

CVE-2005-0975

Integer signedness error in the parsemachfile function in the mach-o loader machloader.c for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service CPU consumption via a crafted mach-o header...

2.1CVSS6.1AI score0.00507EPSS
Exploits1References10
Cvelist
Cvelist
added 2005/04/22 4:0 a.m.32 views

CVE-2005-0975

Integer signedness error in the parsemachfile function in the mach-o loader machloader.c for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service CPU consumption via a crafted mach-o header...

6.1AI score0.00507EPSS
Exploits1References10
CVE
CVE
added 2005/04/22 4:0 a.m.56 views

CVE-2005-0975

CVE-2005-0975 describes an integer signedness error in the Darwin kernel’s mach-o loader (mach_loader.c) used by Mac OS X 10.3.7 and earlier versions (before 10.3.9). The vulnerability allows local users to cause a denial of service (CPU consumption) by presenting a crafted mach-o header. The pro...

2.1CVSS6.2AI score0.00507EPSS
Exploits1References10Affected Software3
Positive Technologies
Positive Technologies
added 2005/04/19 12:0 a.m.4 views

PT-2005-2197 · Ariadne · Ariadne Cms

Name of the Vulnerable Software and Affected Versions: Ariadne CMS version 2.4 Description: The issue concerns a PHP remote code injection vulnerability in loader.php, allegedly allowing remote attackers to execute arbitrary PHP code by modifying the ariadne parameter to reference a URL on a remo...

7.5CVSS8.5AI score0.02523EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2005/04/01 6:14 p.m.72 views

USN-103-1: Linux kernel vulnerabilities

Mathieu Lafon discovered an information leak in the ext2 file system driver. When a new directory was created, the ext2 block written to disk was not initialized, so that previous memory contents which could contain sensitive data like passwords became visible on the raw device. This is...

7.2CVSS6.7AI score0.13429EPSS
Exploits2
NVD
NVD
added 2005/01/10 5:0 a.m.21 views

CVE-2004-1071

The binfmtelf loader binfmtelf.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code...

7.2CVSS6.5AI score0.00508EPSS
Exploits0References19
OSV
OSV
added 2004/12/31 5:0 a.m.3 views

DEBIAN-CVE-2004-0802

Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817...

5.1CVSS8AI score0.0343EPSS
Exploits0References1
OSV
OSV
added 2004/12/31 5:0 a.m.13 views

CVE-2004-0802

Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817...

7.6AI score
Exploits0References9
RedHat Linux
RedHat Linux
added 2004/12/13 8:17 p.m.58 views

Important: Red Hat Security Advisory: Updated Itanium kernel packages resolve security issues

Updated Itanium kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 2.1. This is the sixth regular update. The Linux kernel handles the basic functions of the operating system. This is the sixth regular Itanium kernel update to Red Hat...

7.2CVSS6AI score0.04156EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2004/12/13 8:6 p.m.63 views

Important: Red Hat Security Advisory: Updated kernel packages fix security vulnerability

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 2.1. This is the sixth regular update. The Linux kernel handles the basic functions of the operating system. This is the sixth regular kernel update to Red Hat Enterprise Linux...

7.2CVSS6AI score0.04156EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2004/12/02 10:13 a.m.3 views

security flaw

The binfmtelf loader binfmtelf.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATHMAX to be used, leading to buffer overflows that allow local users to cause a denial of service...

7.2CVSS6.2AI score0.00558EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2004/12/02 10:13 a.m.7 views

security flaw

The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service crash via a crafted ELF file with an interpreter with an invalid arch architecture, which triggers a BUG when an invalid VMA is unmapped...

4.9CVSS5.8AI score0.00427EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2004/11/12 12:0 a.m.45 views

binfmt_elf.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel binfmtelf loader vulnerabilities Product: Linux kernel Version: 2.4 up to to and including 2.4.27, 2.6 up to to and including 2.6.8 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0017-binfmtelf.txt CVE:...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/11/11 12:0 a.m.44 views

Linux ELF loader vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel binfmtelf loader vulnerabilities Product: Linux kernel Version: 2.4 up to to and including 2.4.27, 2.6 up to to and including 2.6.8 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0017-binfmtelf.txt CVE:...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/10/21 12:0 a.m.30 views

RHEL 3 : ImageMagick (RHSA-2004:480)

Updated ImageMagick packages that fix a BMP loader vulnerability are now available. ImageMagickTM is an image display and manipulation tool for the X Window System. A heap overflow flaw has been discovered in the ImageMagick image handler. An attacker could create a carefully crafted BMP file in...

7.5CVSS5.8AI score0.05512EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.48 views

Debian DSA-276-1 : linux-kernel-s390 - local privilege escalation

The kernel module loader in Linux 2.2 and Linux 2.4 kernels has a flaw in ptrace. This hole allows local users to obtain root privileges by using ptrace to attach to a child process that is spawned by the kernel. Remote exploitation of this hole is not possible. This advisory only covers kernel...

7.2CVSS5.4AI score0.01584EPSS
Exploits5References2
CVE
CVE
added 2004/09/24 4:0 a.m.84 views

CVE-2004-0802

CVE-2004-0802 affects imlib2’s BMP loader and is caused by a buffer overflow in the BMP loading path. The vulnerability allows remote attackers to execute arbitrary code by delivering a specially crafted BMP image, and it is confined to imlib2 versions before 1.1.2 (distinct from CVE-2004-0817). ...

5.1CVSS7.5AI score0.0343EPSS
Exploits0References8Affected Software5
Debian CVE
Debian CVE
added 2004/09/24 4:0 a.m.45 views

CVE-2004-0802

Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817...

5.1CVSS7.5AI score0.0343EPSS
Exploits0
Rows per page
Query Builder