Lucene search
K

699 matches found

Saint
Saint
added 2006/03/28 12:0 a.m.34 views

Internet Explorer createTextRange memory corruption

Added: 03/28/2006 CVE: CVE-2006-1359 BID: 17196 OSVDB: 24050 Background The createTextRange dynamic HTML method creates a text range object for an HTML element. Problem A flaw in the handling of unexpected createTextRange method calls by certain HTML objects could result in command execution...

9.3CVSS6AI score0.68068EPSS
Exploits11
0day.today
0day.today
added 2005/11/16 12:0 a.m.35 views

MS Windows 2k UPNP (getdevicelist) Memory Leak DoS Exploit

Exploit for unknown platform in category dos / poc ========================================================== MS Windows 2k UPNP getdevicelist Memory Leak DoS Exploit ========================================================== / Author: Winny Thomas Nevis Labs, Pune, INDIA Details: While working o...

7AI score
Exploits0
UbuntuCve
UbuntuCve
added 2005/10/25 6:2 p.m.27 views

CVE-2005-2708

The searchbinaryhandler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service panic, as demonstrated by running a process using the bash ulimi...

2.1CVSS6AI score0.00518EPSS
Exploits1References1
CVE
CVE
added 2005/06/21 4:0 a.m.49 views

CVE-2002-1667

CVE-2002-1667 concerns the FreeBSD virtual memory subsystem. Affected: FreeBSD 4.5-RELEASE and earlier. Description: during page invalidation, the VM subsystem does not properly verify the existence of a VM object, allowing local users to trigger a crash (DoS) by calling msync on an unaccessed me...

2.1CVSS6.6AI score0.00295EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2005/06/21 4:0 a.m.25 views

CVE-2002-1667

The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service crash by calling msync on an unaccessed memory map created with MAPANON and MAPNOSYNC flags...

6.2AI score0.00295EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2005/05/11 4:0 a.m.26 views

CVE-2005-1515

Removed by vendor...

5CVSS7.4AI score0.06516EPSS
Exploits2
FreeBSD
FreeBSD
added 2005/05/06 12:0 a.m.34 views

qmail -- 64 bit integer overflows with possible remote code execution on large SMTP requests

Georgi Guninski writes: There are several issues with qmail on 64 bit platforms - classical integer overflow, pointer with signed index and signedness problem not counting the memory consumtion dos, which just helps. Update: the problem with the signed index is exploitable on Freebsd 5.4 amd64 wi...

9.8CVSS3.7AI score0.10789EPSS
Exploits6References2
FreeBSD
FreeBSD
added 2005/05/06 12:0 a.m.31 views

qmail -- 64 bit integer overflows with possible remote code execution on large SMTP requests

Georgi Guninski writes: There are several issues with qmail on 64 bit platforms - classical integer overflow, pointer with signed index and signedness problem not counting the memory consumtion dos, which just helps. Update: the problem with the signed index is exploitable on Freebsd 5.4 amd64 wi...

9.8CVSS3.7AI score0.10789EPSS
Exploits6References2
RedHat Linux
RedHat Linux
added 2005/02/18 5:20 p.m.6 views

security flaw

Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...

6.2CVSS6.2AI score0.02893EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2005/01/18 11:52 p.m.3 views

security flaw

Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...

6.2CVSS6.2AI score0.02893EPSS
Exploits2References4
Cvelist
Cvelist
added 2004/08/04 4:0 a.m.21 views

CVE-2004-0766

NGSEC StackDefender 2.0 allows attackers to cause a denial of service system crash via an invalid address for the BaseAddress parameter to the hooks for the 1 ZwAllocateVirtualMemory or 2 ZwProtectVirtualMemory functions...

6.6AI score0.01027EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.19 views

SuSE-SA:2004:001: Linux Kernel

The remote host is missing the patch for the advisory SuSE-SA:2004:001 Linux Kernel. The domremap function of the Linux Kernel is used to manage move, resize Virtual Memory Areas VMAs. By exploiting an incorrect bounds check in domremap during the remapping of memory it is possible to create a VM...

5.6AI score
Exploits0
FreeBSD
FreeBSD
added 2004/04/24 12:0 a.m.37 views

buffer cache invalidation implementation issues

Programming errors in the implementation of the msync2 system call involving the MSINVALIDATE operation lead to cache consistency problems between the virtual memory system and on-disk contents. In some situations, a user with read access to a file may be able to prevent changes to that file from...

3.6CVSS6.2AI score0.00331EPSS
Exploits0
CERT
CERT
added 2004/03/09 12:0 a.m.35 views

Linux kernel do_mremap() call creates virtual memory area of 0 bytes in length

Overview There is a vulnerability in the Linux kernel memory management routines that allows local users to gain superuser privileges. Description The Linux kernel contains a vulnerability in the domremap call that allows software to create a virtual memory area VMA with a length of 0 bytes. This...

6.3AI score
Exploits0References8
RedHat Linux
RedHat Linux
added 2004/01/07 6:20 p.m.5 views

security flaw

The mremap system call domremap in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing a remapping of a virtual memory area VMA to create...

7.2CVSS5.8AI score0.01233EPSS
Exploits3References4
securityvulns
securityvulns
added 2003/12/02 12:0 a.m.30 views

Linux kernel do_brk() privilege escalation

Function may be used for allocation virtual memory exceeding user accessible memory limit, givin access to kernel internal structures...

3.8AI score
Exploits0References2Affected Software1
NVD
NVD
added 2002/12/31 5:0 a.m.18 views

CVE-2002-1667

The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service crash by calling msync on an unaccessed memory map created with MAPANON and MAPNOSYNC flags...

2.1CVSS6.2AI score0.00295EPSS
Exploits0References2
FreeBSD Advisory
FreeBSD Advisory
added 2002/04/18 12:0 a.m.5 views

FreeBSD-SA-02:22.mmap

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:22.mmap Security Advisory FreeBSD, Inc. Topic: mmap/msync denial of service Category: core Module: net Announced: 2002-04-18 Credits: Harry Newton Matt Dillon Affects: Al...

5.7AI score
Exploits0
securityvulns
securityvulns
added 2000/10/04 12:0 a.m.36 views

Linux news 4.10.00

Linux 2.2.18pre15 Alan Cox выпустил новую pre-версию следующего стабильного ядра Linux 2.2.18pre15. Эта версия уже почти готова к выходу, остаются неисправленные проблемы в архитектурно-зависимой части для PPC, Sparc и S/390, проблемы с драйвером megaraid и некоторые другие. Подробнее:...

7.2AI score
Exploits0
Rows per page
Query Builder