Lucene search
K

9746 matches found

RedHat Linux
RedHat Linux
added 2011/06/21 11:44 p.m.6 views

kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace

net/ipv4/netfilter/iptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.0041EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2011/06/13 12:0 a.m.62 views

Ubuntu 10.04 LTS : linux, linux-ec2 vulnerabilities (USN-1141-1)

Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...

9.8CVSS7.1AI score0.04177EPSS
Exploits25References39
OpenVAS
OpenVAS
added 2011/06/01 12:0 a.m.17 views

Nmap NSE net: imap-capabilities

Retrieves IMAP email server capabilities. IMAP4rev1 capabilities are defined in RFC 3501. The CAPABILITY command allows a client to ask a server what commands it supports and possibly any site-specific policy. OpenVAS Vulnerability Test $Id: gbnmapimapcapabilitiesnet.nasl 5505 2017-03-07 10:00:18...

0.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.4 views

kernel: ebtables stack infoleak

The doreplace function in net/bridge/netfilter/ebtables.c in the Linux kernel before 2.6.39 does not ensure that a certain name field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAPNETADMIN capability ...

2.1CVSS7.1AI score0.00353EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.6 views

kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace

net/ipv6/netfilter/ip6tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.00404EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2011/05/28 12:0 a.m.19 views

Slackware 10.2 / 11.0 : bind 10.2/11.0 recompile (SSA:2009-015-01)

Updated bind packages are available for Slackware 10.2 and 11.0 to address a load problem. It was reported that the initial build of these updates complained that the Linux capability module was not present and would refuse to load. It was determined that the packages which were compiled on 10.2...

5.5AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2011/05/19 11:46 a.m.6 views

kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace

net/ipv4/netfilter/iptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.0041EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2011/05/19 12:0 a.m.8 views

PT-2011-2919 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to the IPv6 implementation in the Linux kernel, where the net/ipv6/netfilter/ip6 tables.c file does not properly null-terminate string data in certain structure members...

9CVSS5.6AI score0.03922EPSS
Exploits7References46
Positive Technologies
Positive Technologies
added 2011/05/19 12:0 a.m.9 views

PT-2011-2917 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue allows local users to obtain potentially sensitive information from kernel memory. This is achieved by leveraging the CAP NET ADMIN capability to issue a crafted request, and then...

9CVSS5.7AI score0.03922EPSS
Exploits7References47
RedHat Linux
RedHat Linux
added 2011/05/10 6:7 p.m.11 views

kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN

The devload function in net/core/dev.c in the Linux kernel before 2.6.38 allows local users to bypass an intended CAPSYSMODULE capability requirement and load arbitrary modules by leveraging the CAPNETADMIN capability...

1.9CVSS5.9AI score0.00443EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.6 views

kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace

net/ipv4/netfilter/iptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.0041EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.5 views

kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace

net/ipv6/netfilter/ip6tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.00404EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.11 views

kernel: ebtables stack infoleak

The doreplace function in net/bridge/netfilter/ebtables.c in the Linux kernel before 2.6.39 does not ensure that a certain name field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAPNETADMIN capability ...

2.1CVSS7.1AI score0.00353EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.6 views

kernel: ipv4: netfilter: arp_tables: fix infoleak to userspace

net/ipv4/netfilter/arptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.0041EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2011/05/10 12:0 a.m.5 views

PT-2013-1385 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.38 Description: The issue allows local users to bypass an intended capability requirement, enabling them to load arbitrary modules. This is achieved by leveraging the CAP NET ADMIN capability in the dev load...

7.8CVSS6.4AI score0.03411EPSS
Exploits8References28
RedHat Linux
RedHat Linux
added 2011/04/08 2:53 a.m.6 views

kernel: heap contents leak for CAP_NET_ADMIN via ethtool ioctl

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability for an ethtool ioctl call...

5.5CVSS6.1AI score0.004EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/03/10 8:1 p.m.5 views

kernel: heap contents leak for CAP_NET_ADMIN via ethtool ioctl

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability for an ethtool ioctl call...

5.5CVSS6.1AI score0.004EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2011/03/10 12:0 a.m.40 views

CVE-2011-1019

The devload function in net/core/dev.c in the Linux kernel before 2.6.38 allows local users to bypass an intended CAPSYSMODULE capability requirement and load arbitrary modules by leveraging the CAPNETADMIN capability...

1.9CVSS6AI score0.00443EPSS
Exploits3References8
RedHat Linux
RedHat Linux
added 2011/02/16 3:9 p.m.7 views

kernel: heap contents leak for CAP_NET_ADMIN via ethtool ioctl

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability for an ethtool ioctl call...

5.5CVSS6.1AI score0.004EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2011/02/16 12:0 a.m.5 views

PT-2011-1619 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.36 Description: The issue allows local users to obtain potentially sensitive information from kernel heap memory. This is possible by leveraging the CAP NET ADMIN capability for an ethtool ioctl call, due to...

7.8CVSS5.9AI score0.03922EPSS
Exploits8References64
Rows per page
Query Builder