Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2009/01/13 12:0 a.m.17 views

Debian Security Advisory DSA 1699-1 (zaptel)

The remote host is missing an update to zaptel announced via advisory DSA 1699-1. OpenVAS Vulnerability Test $Id: deb16991.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1699-1 zaptel Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

7.2CVSS0.1AI score0.0047EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2009/01/12 12:0 a.m.15 views

Debian DSA-1699-1 : zaptel - array index error

An array index error in zaptel, a set of drivers for telephony hardware, could allow users to crash the system or escalate their privileges by overwriting kernel memory CVE-2008-5396 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

7.2CVSS5.4AI score0.0047EPSS
Exploits2References6
Debian
Debian
added 2009/01/11 12:1 p.m.16 views

[SECURITY] [DSA 1699-1] New zaptel packages fix privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1699-1 [email protected] http://www.debian.org/security/ Florian Weimer January 11, 2009 http://www.debian.org/security/faq -...

7.2CVSS6.3AI score0.0047EPSS
Exploits2
OSV
OSV
added 2009/01/11 12:0 a.m.17 views

DSA-1699-1 zaptel - privilege escalation

Bulletin has no description...

7.2CVSS6.1AI score0.0047EPSS
Exploits2
Prion
Prion
added 2008/12/26 9:30 p.m.11 views

Design/Logic Flaw

Array index error in the dahdi/tor2.c driver in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to an incorrect tor2 patch for CVE-2008-5396 that uses the wrong variable in a range check...

7.2CVSS6.2AI score0.0047EPSS
Exploits2References6Affected Software1
UbuntuCve
UbuntuCve
added 2008/12/09 12:30 a.m.25 views

CVE-2008-5396

Array index error in the 1 torisa.c and 2 dahdi/tor2.c drivers in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to missing validation of the sync field associated with the ZTSPANCONFIG...

7.2CVSS5.9AI score0.00348EPSS
Exploits1References1
CVE
CVE
added 2008/12/09 12:0 a.m.50 views

CVE-2008-5396

CVE-2008-5396 is an array index error in Zaptel (DAHDI) drivers, affecting Zaptel versions up to 1.4.11 and earlier. The flaw resides in the torisa.c and tor2.c code paths that handle the ZT_SPANCONFIG ioctl, allowing local users in the dialout group to overwrite kernel memory by writing to /dev/...

7.2CVSS5.8AI score0.00348EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder