141 matches found
samba: Uninitialized memory exposure
A flaw was found in the way Samba created responses for certain authenticated client requests when a shadow-copy VFS module was enabled. An attacker able to send an authenticated request could use this flaw to disclose limited portions of memory per each request...
SlimFTPd <= 3.15 Remote Buffer Overflow Exploit
No description provided by source. / SlimFTPd = 3.15, Remote Buffer Overflow Exploit v0.1. Bind a shellcode to the port 101. Full disclosure and exploit by class101 at DFind.kd-team.com & n3ws at EFnet 10 november 2004 Thanx to HDMoore and Metasploit.com for their kickass ASM work...
Solaris 10 (x86) : 119907-22 (deprecated)
GNOME 2.6.0x86: Virtual File System Framework patch. Date this patch was last updated by Sun : Jul/17/17 This plugin has been deprecated and either replaced with individual 119907 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
DEBIAN-CVE-2013-4475
Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfsstreamsdepot or vfsstreamsxattr is enabled, allows remote attackers to bypass intended file restrictions by leveraging ACL differences between a file and an associated alternate data stream ADS...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix a number of security issues are now available for Red Hat Enterprise Linux 2.1 running on 32-bit architectures. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix a number of security issues are now available for Red Hat Enterprise Linux 2.1 running on 64-bit architectures. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the...
Linux kernel local filesystem DoS
The 1 reallookup and 2 lookuphash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted aka SDEAD directory, which allows local users to cause a denial of service "overflow" of the UBIFS orphan area via a...
Linux kernel local filesystem DoS
The 1 reallookup and 2 lookuphash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted aka SDEAD directory, which allows local users to cause a denial of service "overflow" of the UBIFS orphan area via a...
Linux kernel local filesystem DoS
The 1 reallookup and 2 lookuphash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted aka SDEAD directory, which allows local users to cause a denial of service "overflow" of the UBIFS orphan area via a...
kernel: filesystem corruption by unprivileged user via directory truncation
VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the accmode variable, which might allow local users to bypass intended permissions and remove directories...
kernel: filesystem corruption by unprivileged user via directory truncation
VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the accmode variable, which might allow local users to bypass intended permissions and remove directories...
Buffer overflow in CIFS VFS
Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function...
CVE-2004-0494
Multiple extfs backend scripts for GNOME virtual file system VFS before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI...
CVE-2004-0494
Multiple extfs backend scripts for GNOME virtual file system VFS before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI...
FreeBSD : gnomevfs -- unsafe URI handling (60)
The following package needs to be updated: gnomevfs2 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg7884d56ff7a111d89837000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
CVE-2004-0494
Multiple extfs backend scripts for GNOME virtual file system VFS before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI...
CVE-2003-0599
Unknown vulnerability in the Virtual File System VFS capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web document root...
[SECURITY] [DSA-365-1] New phpgroupware package fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 365-1 [email protected] http://www.debian.org/security/ Matt Zimmerman August 5th, 2003 http://www.debian.org/security/faq -...
DSA-365 phpgroupware - several vulnerabilities
Bulletin has no description...
CVE-2003-0599
Unknown vulnerability in the Virtual File System VFS capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web document root...