699 matches found
Internet Explorer createTextRange memory corruption
Added: 03/28/2006 CVE: CVE-2006-1359 BID: 17196 OSVDB: 24050 Background The createTextRange dynamic HTML method creates a text range object for an HTML element. Problem A flaw in the handling of unexpected createTextRange method calls by certain HTML objects could result in command execution...
MS Windows 2k UPNP (getdevicelist) Memory Leak DoS Exploit
Exploit for unknown platform in category dos / poc ========================================================== MS Windows 2k UPNP getdevicelist Memory Leak DoS Exploit ========================================================== / Author: Winny Thomas Nevis Labs, Pune, INDIA Details: While working o...
CVE-2005-2708
The searchbinaryhandler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service panic, as demonstrated by running a process using the bash ulimi...
CVE-2002-1667
CVE-2002-1667 concerns the FreeBSD virtual memory subsystem. Affected: FreeBSD 4.5-RELEASE and earlier. Description: during page invalidation, the VM subsystem does not properly verify the existence of a VM object, allowing local users to trigger a crash (DoS) by calling msync on an unaccessed me...
CVE-2002-1667
The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service crash by calling msync on an unaccessed memory map created with MAPANON and MAPNOSYNC flags...
CVE-2005-1515
Removed by vendor...
qmail -- 64 bit integer overflows with possible remote code execution on large SMTP requests
Georgi Guninski writes: There are several issues with qmail on 64 bit platforms - classical integer overflow, pointer with signed index and signedness problem not counting the memory consumtion dos, which just helps. Update: the problem with the signed index is exploitable on Freebsd 5.4 amd64 wi...
qmail -- 64 bit integer overflows with possible remote code execution on large SMTP requests
Georgi Guninski writes: There are several issues with qmail on 64 bit platforms - classical integer overflow, pointer with signed index and signedness problem not counting the memory consumtion dos, which just helps. Update: the problem with the signed index is exploitable on Freebsd 5.4 amd64 wi...
security flaw
Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...
security flaw
Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...
CVE-2004-0766
NGSEC StackDefender 2.0 allows attackers to cause a denial of service system crash via an invalid address for the BaseAddress parameter to the hooks for the 1 ZwAllocateVirtualMemory or 2 ZwProtectVirtualMemory functions...
SuSE-SA:2004:001: Linux Kernel
The remote host is missing the patch for the advisory SuSE-SA:2004:001 Linux Kernel. The domremap function of the Linux Kernel is used to manage move, resize Virtual Memory Areas VMAs. By exploiting an incorrect bounds check in domremap during the remapping of memory it is possible to create a VM...
buffer cache invalidation implementation issues
Programming errors in the implementation of the msync2 system call involving the MSINVALIDATE operation lead to cache consistency problems between the virtual memory system and on-disk contents. In some situations, a user with read access to a file may be able to prevent changes to that file from...
Linux kernel do_mremap() call creates virtual memory area of 0 bytes in length
Overview There is a vulnerability in the Linux kernel memory management routines that allows local users to gain superuser privileges. Description The Linux kernel contains a vulnerability in the domremap call that allows software to create a virtual memory area VMA with a length of 0 bytes. This...
security flaw
The mremap system call domremap in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing a remapping of a virtual memory area VMA to create...
Linux kernel do_brk() privilege escalation
Function may be used for allocation virtual memory exceeding user accessible memory limit, givin access to kernel internal structures...
CVE-2002-1667
The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service crash by calling msync on an unaccessed memory map created with MAPANON and MAPNOSYNC flags...
FreeBSD-SA-02:22.mmap
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:22.mmap Security Advisory FreeBSD, Inc. Topic: mmap/msync denial of service Category: core Module: net Announced: 2002-04-18 Credits: Harry Newton Matt Dillon Affects: Al...
Linux news 4.10.00
Linux 2.2.18pre15 Alan Cox выпустил новую pre-версию следующего стабильного ядра Linux 2.2.18pre15. Эта версия уже почти готова к выходу, остаются неисправленные проблемы в архитектурно-зависимой части для PPC, Sparc и S/390, проблемы с драйвером megaraid и некоторые другие. Подробнее:...