Kaspersky Internet SecurityAnti-Virus - .cfg File Memory Corruption

Kaspersky Internet SecurityAnti-Virus - .cfg File Memory Corruption source: https://www.securityfocus.com/bid/51161/info Kaspersky Internet Security and Anti-Virus are prone to a local memory-corruption vulnerability. A local attacker can exploit this issue to cause the affected application to...

Linux系统kexec-tools mkdumprd工具信息泄露漏洞

BUGTRAQ ID: 50415 CVE ID: CVE-2011-3589 Linux是自由电脑操作系统内核。 Linux系统的mkdumprd工具在实现上存在本地信息泄露漏洞，本地攻击者可利用此漏洞获取敏感信息 Linux kernel 3.x Linux kernel 2.6.x RedHat Enterprise Linux Workstation 6 RedHat Enterprise Linux Server 6 RedHat Enterprise Linux HPC Node 6 RedHat Enterprise Linux Desktop 6 厂商补丁： Linux...

util-linux: umount may fail to remove /etc/mtab~ lock file

mount in util-linux 2.19 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

UBUNTU-CVE-2011-4110

The userupdate function in security/keys/userdefined.c in the Linux kernel 2.6 allows local users to cause a denial of service NULL pointer dereference and kernel oops via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."...

HP-UX系统管理器本地特权提升漏洞

Bugtraq ID: 50704 CVE ID：CVE-2011-4159 HP-UX是一款商业性质的操作系统。 HP-UX系统管理器SAM存在未明错误，本地攻击者可以利用漏洞提升特权。 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息： http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03089106...

Linux Kernel '/mm/oom_kill.c'整数溢出漏洞

Bugtraq ID: 50549 CVE ID：CVE-2011-4097 Linux是一款开放源代码的操作系统。 Linux Kernel在/mm/oomkill.c的实现上存在一个整数溢出漏洞，本地攻击者可利用此漏洞提升特权。此漏洞仅影响64位架构。 Linux kernel 3.0.4 Linux kernel 3.0.1 Linux kernel 2.6.x 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息： https://www.lkml.org/lkml/2011/10/31/138...

OpenPAM - pam_start() Local Privilege Escalation

OpenPAM - pamstart Local Privilege Escalation source: https://www.securityfocus.com/bid/50607/info OpenPAM is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to execute arbitrary code with superuser privileges. Successfully exploiting this issue will...

Linux Kernel可信数据报套接字（RDS）协议本地整数溢出漏洞

BUGTRAQ ID: 44549 CVE ID: CVE-2010-3865 Linux Kernel是linux 内核，其基础为linux平台，linux为C语言编写的内核，基于此内核又衍生出了具体的Red hat linux 、open suse linux等具体的操作系统，一套基于Linux内核的完整操作系统叫作Linux操作系统，或是GNU/Linux。 Linux Kernel在RDS协议的实现上存在安全漏洞，本地攻击者可利用此漏洞以提升的权限执行任意代码，使受影响内核崩溃。Red Hat Enterprise Linux 3, 4和Red Hat Enterprise...

Novell NetWare 6.5 Support Pack 1.1 Admin/Install Local Information Disclosure

According to the list of enumerated software packages, the version of Novel NetWare installed on the remote host may have an information disclosure vulnerability. Admin/install passwords are stored in the NIOUTPUT.TXT and NI.LOG installation log files. A local attacker could exploit this to gain...

Ubuntu: Security Advisory (USN-1211-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: nl80211: missing check for valid SSID size in scan operations

Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAPNETADMIN capability during scan operations with a long SSID value...

Apache Tomcat信息泄露漏洞(CVE-2011-2481)

BUGTRAQ ID: 49147 CVE ID: CVE-2011-2481 Tomcat是由Apache软件基金会下属的Jakarta项目开发的一个Servlet容器，按照Sun Microsystems提供的技术规范，实现了对Servlet和JavaServer Page（JSP）的支持，并提供了作为Web服务器的一些特有功能. Tomcat在实现上存在本地信息泄露漏洞，本地攻击者可利用此漏洞泄露敏感信息。 此漏洞源于Jsvc库中的错误，没有解除应用程序访问超级用户拥有的文件和目录。 Apache Group Tomcat 厂商补丁： Apache Group ----------...

VVMessenger v1.0.4170x.x - Denial of Service Vulnerabilities

Document Title: =============== VVMessenger v1.0.4170x.x - Denial of Service Vulnerabilities Release Date: ============= 2011-08-03 Vulnerability Laboratory ID VL-ID: ==================================== 120 Product & Service Introduction: =============================== V&V messenger is an insta...

USN-1167-1: Linux kernel vulnerabilities

Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernel's handling of IPv4 icmp packets. A remote user could exploit this to cause a denial of service. CVE-2011-1927 Goldwyn Rodrigues discovered that the OCFS2 filesystem did not correctly clear memory when writing certain file...

Linux Kernel Netfilter和Econet实现本地信息泄露漏洞

BUGTRAQ ID: 46919 CVE ID: CVE-2011-1170,CVE-2011-1171,CVE-2011-1172 Linux Kernel是Linux操作系统的内核。 Linux Kernel在Netfilter和Econet的实现上存在信息泄露漏洞，本地攻击者可利用此漏洞获取敏感信息。 struct aunhdr在x8664的'pad'和'handle'字段之间存在4个填充字节，在发送ah到网络之前，这些字节在变量ah中没有初始化，这可导致4字节内核栈信息泄露。 Linux kernel 2.6.x 厂商补丁： Linux -----...

CVE-2011-2170

Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors...

Design/Logic Flaw

Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors...

CVE-2011-2170

Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors...

CVE-2011-2170

CVE-2011-2170 affects Google Chrome OS prior to R12 0.12.433.38 Beta. When Guest mode is enabled, users can alter settings on the about:flags page, with impact described as unspecified and local attack vectors; no explicit exploitation path or affected versions beyond this line are detailed in th...

CVE-2011-1680

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...