7 matches found
Debian Security Advisory DSA 1699-1 (zaptel)
The remote host is missing an update to zaptel announced via advisory DSA 1699-1. OpenVAS Vulnerability Test $Id: deb16991.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1699-1 zaptel Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian DSA-1699-1 : zaptel - array index error
An array index error in zaptel, a set of drivers for telephony hardware, could allow users to crash the system or escalate their privileges by overwriting kernel memory CVE-2008-5396 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 1699-1] New zaptel packages fix privilege escalation
------------------------------------------------------------------------ Debian Security Advisory DSA-1699-1 [email protected] http://www.debian.org/security/ Florian Weimer January 11, 2009 http://www.debian.org/security/faq -...
DSA-1699-1 zaptel - privilege escalation
Bulletin has no description...
Design/Logic Flaw
Array index error in the dahdi/tor2.c driver in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to an incorrect tor2 patch for CVE-2008-5396 that uses the wrong variable in a range check...
CVE-2008-5396
Array index error in the 1 torisa.c and 2 dahdi/tor2.c drivers in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to missing validation of the sync field associated with the ZTSPANCONFIG...
CVE-2008-5396
CVE-2008-5396 is an array index error in Zaptel (DAHDI) drivers, affecting Zaptel versions up to 1.4.11 and earlier. The flaw resides in the torisa.c and tor2.c code paths that handle the ZT_SPANCONFIG ioctl, allowing local users in the dialout group to overwrite kernel memory by writing to /dev/...