Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability

No description provided by source. Source: http://www.securityfocus.com/bid/44242/info / CVE-2010-2963 Arbitrary write memory write via v4l1 compat ioctl. Kees Cook [email protected] greets to drosenberg, spender, taviso / define GNUSOURCE include stdio.h include unistd.h include stdlib.h include...

Linux Kernel 2.6.36 - VIDIOCSMICROCODE IOCTL Local Memory Overwrite

Linux Kernel 2.6.36 - VIDIOCSMICROCODE IOCTL Local Memory Overwrite // source: https://www.securityfocus.com/bid/44242/info / CVE-2010-2963 Arbitrary write memory write via v4l1 compat ioctl. Kees Cook greets to drosenberg, spender, taviso / define GNUSOURCE include include include include includ...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2010-3058

CVE-2010-3058 affects IBM Tivoli Storage Manager (TSM) FastBack Mount service (FastBackMount.exe). The vulnerability is a memory corruption due to improper input validation when parsing crafted mount requests received on UDP port 30005 (and related TCP/UDP behavior noted in sources). Exploitation...

Adobe InDesign CS3 INDD File Handling Buffer Overflow

!/usr/bin/perl Adobe InDesign CS3 INDD File Handling Buffer Overflow Vulnerability Vendor: Adobe Systems Inc. Product Web Page: http://www.adobe.com Version tested: CS3 10.0 Summary: Adobe® InDesign® CS3 software provides precise control over typography and built-in creative tools for designing,...

Kingsoft WebShield privilege escalation

Kernel memory overwrite on IOCTL processing...

CVE-2010-1446

CVE-2010-1446 affects KGDB in the Linux kernel on PowerPC, where arch/powerpc/mm/fsl_booke_mmu.c does not perform a proper security check for access to a kernel page. Local users could overwrite arbitrary kernel memory. The vulnerability is noted across multiple advisories (e.g., Debian DSA-2053-...

[CAL-20100204-3]Adobe Shockwave Player Director File Parsing RCSL Pointer Overwrite

CAL-20100204-3Adobe Shockwave Player Director File Parsing RCSL Pointer Overwrite Affected Products ================= 11.5.2.602 ,11.5.6.606 and prior CVE ID: CVE-2010-1280 CAL ID: CAL-20100204-3 Vulnerability Details ===================== Code Audit Labs http://www.vulnhunt.com has discovered a...

Adobe Shockwave Player Director文件分析RCSL指针覆盖漏洞

CVE ID: CVE-2010-1280. Code Audit Labs http://www.vulnhunt.com 在Adobe’s Shockwave Player软件中 发现一个漏洞，该漏洞允许远程攻击者受害者的机器上任意执行代码。 触发该漏洞需要用户访问一个畸形的web页面。 该漏洞存在于当shockwave player分析Director文件时，错误的使用了文件中的一个变量，导致发生4字节的内存被重写。成功利用该漏洞，攻击者可远程控制受害者机器。 11.5.2.602 ,11.5.6.606 and prior 厂商补丁： adobe ---------...

Design/Logic Flaw

Sun Java System Web Server aka SJWS 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request that includes a long URI and many empty headers, related to an "overflow." NOTE: this might overlap...

CVE-2010-0360

Sun Java System Web Server aka SJWS 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request that includes a long URI and many empty headers, related to an "overflow." NOTE: this might overlap...

J 6.02.023 Array Overrun

J 6.02.023 Array Overrun code execution Author: Maksymilian Arciemowicz and sp3x http://SecurityReason.com Date: - Dis.: 07.05.2009 - Pub.: 08.01.2010 CVE: CVE-2009-0689 CWE: CWE-119 Risk: High Remote: Yes Affected Software: - J 6.02.023 Array Overrun code execution NOTE: Prior versions may also ...

Cyrus IMAPD pop3d popsubfolders USER Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Cyrus IMAPD pop3d...

Sunbird 0.9 Array Overrun

Sunbird 0.9 Array Overrun code execution Author: Maksymilian Arciemowicz and sp3x http://SecurityReason.com Date: - Dis.: 07.05.2009 - Pub.: 11.12.2009 CVE: CVE-2009-0689 CWE: CWE-199 Risk: High Remote: Yes Affected Software: - Sunbird 0.9 NOTE: Prior versions may also be affected. Original URL:...

Microsoft WINS Service Memory Overwrite

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft WI...

Opera 10.01 Remote Array Overrun

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Opera 10.01 Remote Array Overrun Arbitrary code execution Author: Maksymilian Arciemowicz and sp3x http://SecurityReason.com Date: - - Dis.: 07.05.2009 - - Pub.: 20.11.2009 CVE: CVE-2009-0689 Risk: High Remote: Yes Affected Software: - - Opera 10.01 -...

Opera 10.01 - Remote Array Overrun

Opera 10.01 - Remote Array Overrun From Full Disclosure: http://seclists.org/fulldisclosure/2009/Nov/223 Opera 10.01 Remote Array Overrun Arbitrary code execution Author: Maksymilian Arciemowicz and sp3x http://SecurityReason.com Date: - - Dis.: 07.05.2009 - - Pub.: 20.11.2009 CVE: CVE-2009-0689...

Opera 10.01 Remote Array Overrun

No description provided by source. From Full Disclosure: http://seclists.org/fulldisclosure/2009/Nov/223 Opera 10.01 Remote Array Overrun Arbitrary code execution Author: Maksymilian Arciemowicz and sp3x http://SecurityReason.com Date: - - Dis.: 07.05.2009 - - Pub.: 20.11.2009 CVE: CVE-2009-0689...

Memory corruption

IBM WebSphere MQ 6.x through 6.0.2.7, 7.0.0.0, 7.0.0.1, 7.0.0.2, and 7.0.1.0, when read ahead or asynchronous message consumption is enabled, allows attackers to have an unspecified impact via unknown vectors, related to a "memory overwrite" issue...

CVE-2009-3160

IBM WebSphere MQ 6.x through 6.0.2.7, 7.0.0.0, 7.0.0.1, 7.0.0.2, and 7.0.1.0, when read ahead or asynchronous message consumption is enabled, allows attackers to have an unspecified impact via unknown vectors, related to a "memory overwrite" issue...