14 matches found
CVE-2019-5023
An exploitable vulnerability exists in the grsecurity PaX patch for the function readkmem, in PaX from version pax-linux-4.9.8-test1 to 4.9.24-test7, grsecurity official from version grsecurity-3.1-4.9.8-201702060653 to grsecurity-3.1-4.9.24-201704252333, grsecurity unofficial from version...
Design/Logic Flaw
An exploitable vulnerability exists in the grsecurity PaX patch for the function readkmem, in PaX from version pax-linux-4.9.8-test1 to 4.9.24-test7, grsecurity official from version grsecurity-3.1-4.9.8-201702060653 to grsecurity-3.1-4.9.24-201704252333, grsecurity unofficial from version...
CVE-2019-5023
An exploitable vulnerability exists in the grsecurity PaX patch for the function readkmem, in PaX from version pax-linux-4.9.8-test1 to 4.9.24-test7, grsecurity official from version grsecurity-3.1-4.9.8-201702060653 to grsecurity-3.1-4.9.24-201704252333, grsecurity unofficial from version...
SunOS <= 4.1.4 arp(8c) Memory Dump Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/291/info The version of arp8c which shipped with versions of SunOs 4.1.X could be used to dump system memory by using the -f flag. This flag causes the file filename to be read and multiple entries to be set in the ARP...
BubbleMon 1.x Kernel Memory File Descriptor Leakage Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5714/info It has been reported that BubbleMon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open fil...
Upclient 5.0 b7 Command Line Argument Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7703/info upclient has been reported prone to a buffer overflow vulnerability when handling command line arguments of excessive length. It is possible for a local attacker to seize control of the vulnerable application an...
AT Computing atsar_linux 1.4 File Manipulation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1048/info atsar is a linux load monitoring software package released under the GPL by AT Computing. atsadc is a setuid root binary that is included in the atsar package. atsadc is setuid because it obtains informatin via...
ASCPU 0.60 Kernel Memory File Descriptor Leakage Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5716/info It has been reported that ascpu is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file...
WMMon 1.0 b2 Memory Character File Open File Descriptor Read Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5718/info It has been reported that wmmon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file...
Linux Kernel 2.6.x chown() Group Ownership Alteration Exploit
No description provided by source. / $Id: raptorchown.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorchown.c - syschown missing DAC controls on Linux Copyright c 2004 Marco Ivaldi [email protected] Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of file...
CVE-2002-1826
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory...
CVE-2002-1826
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory...
CVE-1999-0426
CVE-1999-0426 affects Linux prior to 2.0.36 due to default permissions of the /dev/kmem character device, enabling IP spoofing. Root cause: /dev/kmem permissions allowed spoofing without additional privileges. Impact: network-based spoofing risk on affected systems. Mitigation: upgrade to Linux 2...
kmem.SuSE.txt
Date: Fri, 19 Mar 1999 22:45:29 -0800 From: Aleph One To: [email protected] Subject: The default permissions on /dev/kmem is insecure. SuSE Security Announcement Packages: devs- linux-2.0.35 and below Date: Thu Mar 18 10:22:11 CET 1999 Affected: SuSE 6.0 and below, other Linux distributions Su...