Joyent SmartOS Hyprlofs FS IOCTL 32-bit File System Integer Overflow Privilege Escalation Vulnerability

Summary An exploitable integer overflow exists in the Joyent SmartOS OS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFSADDENTRIES when dealing with 32-bit file systems. An attacker can craft an input that can cause a kernel...

Joyent SmartOS Local Elevation of Privilege Vulnerability

Joyent SmartOS is a set of open source operating system from Joyent, USA. A local elevation of privilege vulnerability exists in Joyent SmartOS. A local attacker is allowed to exploit the vulnerability to gain elevated privileges...

Joyent SmartOS Local Information Disclosure Vulnerability (CNVD-2016-06912)

Joyent SmartOS is a set of open source operating system from Joyent, USA. A local information disclosure vulnerability exists in Joyent SmartOS. An attacker can exploit the vulnerability to obtain sensitive information that may be useful in launching further attacks...

Joyent SmartOS Local Information Disclosure Vulnerability (CNVD-2016-06913)

Joyent SmartOS is a set of open source operating system from Joyent, Inc. in the United States. A local information disclosure vulnerability exists in Joyent SmartOS. An attacker can exploit the vulnerability to obtain sensitive information that may be useful in launching further attacks...

Joyent SmartOS dtrace Information Disclosure Vulnerability

This vulnerability allows attackers to disclose sensitive information on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the dtrace...

Joyent SmartOS dtrace Information Disclosure Vulnerability

This vulnerability allows attackers to disclose sensitive information on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the dtrace...

Joyent SmartOS dtrace Zone Escape Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the dtrace...

Joyent SmartOS Local Information Disclosure Vulnerability

Joyent SmartOS is a set of open source operating system from Joyent, USA. A local information disclosure vulnerability exists in Joyent SmartOS. An attacker could exploit this vulnerability to obtain sensitive information...

Joyent SmartOS Local Lift Vulnerability

Joyent SmartOS is a set of open source operating system from Joyent, USA. A local elevation of privilege vulnerability exists in Joyent SmartOS. A local attacker can exploit this vulnerability to execute arbitrary code with elevated privileges...

Joyent SmartOS dtrace Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose information on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the dtrace implementation in SmartOS. A functi...

Joyent SmartOS dtrace Zone Escape Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the dtrace implementation in SmartOS. A meth...

Joyent SmartOS Local Information Disclosure Vulnerability

Joyent SmartOS is a set of open source operating system from Joyent, USA. A local information disclosure vulnerability exists in Joyent SmartOS, which can be exploited by attackers to obtain sensitive information...

Joyent SmartOS dtrace Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose information on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the dtrace implementation in SmartOS. A functi...

Joyent SmartOS has multiple vulnerabilities

Joyent SmartOS is a set of open source operating system from Joyent, USA. Joyent SmartOS has local boost, local information leakage leakage, and local integer overflow vulnerabilities that allow attackers to exploit vulnerabilities to obtain sensitive information, execute arbitrary code, and so o...

Joyent SmartOS Linux Zone Escape SS Exception Privilege Escalation Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Joyent SmartOS. An attacker must be logged in as a user on the system in order to execute the attack. The specific flaw exists within the handling of an SS Exception. The stack segment fault handling code...

Joyent SmartOS dtrace Zone Escape Integer Overflow Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the dtrace...

Joyent SmartOS dtrace Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose information on vulnerable installations of Joyent SmartOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the dtrace...

FreeBSD Ports: FreeBSD

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-0217

The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microso...

CVE-2012-0217

CVE-2012-0217 affects the x86-64 kernel sysret path across multiple platforms (Xen 4.1.2 and earlier, XenServer 6.0.2 and earlier, Solaris 11 and earlier, illumos before r13724, FreeBSD before 9.0-RELEASE-p3, NetBSD 6.0 Beta and earlier, Windows Server 2008 R2/R2 SP1/Windows 7 SP1, and others). T...