Lucene search
+L

66 matches found

RedHat Linux
RedHat Linux
added 2017/03/21 9:6 a.m.6 views

kernel: net: Out of bounds stack read in memcpy_fromiovec

A flaw was found in the Linux networking subsystem where a local attacker with CAPNETADMIN capabilities could cause an out-of-bounds memory access by creating a smaller-than-expected ICMP header and sending to its destination via sendto...

7.6CVSS6.8AI score0.02341EPSS
Exploits0References4
OSV
OSV
added 2016/11/28 3:59 a.m.4 views

DEBIAN-CVE-2016-8645

The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted application that makes sendto system calls, related to net/ipv4/tcpipv4.c and net/ipv6/tcpipv6.c...

5.5CVSS7.1AI score0.00465EPSS
Exploits0References1
Prion
Prion
added 2016/11/28 3:59 a.m.23 views

Code injection

The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted application that makes sendto system calls, related to net/ipv4/tcpipv4.c and net/ipv6/tcpipv6.c...

4.9CVSS6.3AI score0.00465EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2016/11/27 12:0 a.m.3 views

UBUNTU-CVE-2016-8645

The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted application that makes sendto system calls, related to net/ipv4/tcpipv4.c and net/ipv6/tcpipv6.c...

5.5CVSS6.7AI score0.00465EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2016/11/22 12:0 a.m.8 views

PT-2016-7537 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.8.10 Description: The issue is related to the mishandling of skb truncation in the TCP stack, which can be exploited by local users to cause a denial of service, resulting in a system crash. This can be achiev...

10CVSS7AI score0.24299EPSS
Exploits110References681
NVD
NVD
added 2016/05/02 10:59 a.m.25 views

CVE-2015-2686

net/socket.c in the Linux kernel 3.19 before 3.19.3 does not validate certain range data for 1 sendto and 2 recvfrom system calls, which allows local users to gain privileges by leveraging a subsystem that uses the copyfromiter function in the ioviter interface, as demonstrated by the Bluetooth...

7.8CVSS7.5AI score0.00385EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2016/05/02 10:59 a.m.28 views

CVE-2015-2686

net/socket.c in the Linux kernel 3.19 before 3.19.3 does not validate certain range data for 1 sendto and 2 recvfrom system calls, which allows local users to gain privileges by leveraging a subsystem that uses the copyfromiter function in the ioviter interface, as demonstrated by the Bluetooth...

7.8CVSS7AI score0.00385EPSS
Exploits0References1
OSV
OSV
added 2016/05/02 10:59 a.m.3 views

UBUNTU-CVE-2015-2686

net/socket.c in the Linux kernel 3.19 before 3.19.3 does not validate certain range data for 1 sendto and 2 recvfrom system calls, which allows local users to gain privileges by leveraging a subsystem that uses the copyfromiter function in the ioviter interface, as demonstrated by the Bluetooth...

7.8CVSS7AI score0.00385EPSS
Exploits0References2
CVE
CVE
added 2016/05/02 10:0 a.m.77 views

CVE-2015-2686

The CVE-2015-2686 issue affects the Linux kernel 3.19.x, specifically before 3.19.3. It arises from not validating certain range data for sendto/recvfrom in net/socket.c, enabling a local privilege escalation via a subsystem using the copy_from_iter function in the iov_iter interface, with the Bl...

7.8CVSS7.4AI score0.00385EPSS
Exploits0References10Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

MaxWebPortal 1.3x Personal Message SendTo Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/9625/info It has been reported that MaxWebPortal may be prone to multiple vulnerabilities due to insufficient sanitization of user-supplied input. The specific issues include cross-site scripting, HTML injection and SQL...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2011/10/30 8:44 a.m.15 views

Torsocks 1.2 Released - Socks friendly ssh and irssi with Tor

Torsocks 1.2 Released - Socks friendly ssh and irssi with Tor Torsocks is an application for Linux, BSD and Mac OSX that allows you to use network applications such as ssh and irssi with Tor. Torsocks allows you to use most socks-friendly applications in a safe way with Tor. It ensures that DNS...

6.8AI score
Exploits0
NVD
NVD
added 2011/01/07 12:0 p.m.24 views

CVE-2010-4160

Multiple integer overflows in the 1 pppol2tpsendmsg function in net/l2tp/l2tpppp.c, and the 2 l2tpipsendmsg function in net/l2tp/l2tpip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service heap memory corruption and pani...

6.9CVSS8.2AI score0.00529EPSS
Exploits3References28
Prion
Prion
added 2011/01/07 12:0 p.m.27 views

Integer overflow

Multiple integer overflows in the 1 pppol2tpsendmsg function in net/l2tp/l2tpppp.c, and the 2 l2tpipsendmsg function in net/l2tp/l2tpip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service heap memory corruption and pani...

6.9CVSS7.3AI score0.00529EPSS
Exploits3References28Affected Software5
Cvelist
Cvelist
added 2011/01/07 11:0 a.m.33 views

CVE-2010-4160

Multiple integer overflows in the 1 pppol2tpsendmsg function in net/l2tp/l2tpppp.c, and the 2 l2tpipsendmsg function in net/l2tp/l2tpip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service heap memory corruption and pani...

7.6AI score0.00529EPSS
Exploits3References28
Positive Technologies
Positive Technologies
added 2011/01/07 12:0 a.m.5 views

PT-2011-1465 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.36.2 Description: The issue is related to multiple integer overflows in the PPPoL2TP and IPoL2TP implementations. Specifically, the pppol2tp sendmsg function in net/l2tp/l2tp ppp.c and the l2tp ip sendmsg...

7.9CVSS6.6AI score0.03533EPSS
Exploits41References157
UbuntuCve
UbuntuCve
added 2011/01/07 12:0 a.m.35 views

CVE-2010-4160

Multiple integer overflows in the 1 pppol2tpsendmsg function in net/l2tp/l2tpppp.c, and the 2 l2tpipsendmsg function in net/l2tp/l2tpip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service heap memory corruption and pani...

6.9CVSS5.9AI score0.00529EPSS
Exploits3References11
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.15 views

Mandriva Update for nautilus-sendto MDVA-2010:233 (nautilus-sendto)

Check for the Version of nautilus-sendto OpenVAS Vulnerability Test Mandriva Update for nautilus-sendto MDVA-2010:233 nautilus-sendto Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute i...

0.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.13 views

Mandriva Update for nautilus-sendto MDVA-2010:233 (nautilus-sendto)

Check for the Version of nautilus-sendto OpenVAS Vulnerability Test Mandriva Update for nautilus-sendto MDVA-2010:233 nautilus-sendto Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute i...

7.1AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.13 views

MDVA-2010:233 : nautilus-sendto

nautilus-sendto would crash on startup. This update was rebuilt with the right linking flags corrects the problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. Thi...

7AI score
Exploits0References1
Exploit DB
Exploit DB
added 2009/08/25 12:0 a.m.39 views

Linux Kernel 2.6.31-rc7 - 'AF_LLC getsockname' 5-Byte Stack Disclosure

/ llc-getsockname-leak.c Linux Kernel http://jon.oberheide.org Information: http://git.kernel.org/linus/28e9fc592cb8c7a43e4d3147b38be6032a0e81bc sllcarphrd member of sockaddrllc might not be changed. Zero sllc before copying to the above layer's structure. Notes: Bug is present in include include...

7.4AI score
Exploits0
Rows per page
Query Builder