Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1 matches found

seebug.org
seebug.orgadded 2008/12/30 12:0 a.m.40 views

zaptel多个驱动数组索引漏洞

BUGTRAQ ID: 32575 CVECAN ID: CVE-2008-5396,CVE-2008-5744 zaptel软件包是用于配置Zapata电话内核驱动的用户工具。 由于对ZTSPANCONFIG ioctl相关的sync字段缺少检查,导致Zaptel中的torisa.c驱动的torisaspanconfig函数和dahdi/tor2.c驱动的tor2spanconfig函数存在数组索引错误。dialout组中的本地用户可以通过写入/dev/zap/ctl覆盖内核内存中的整数值,导致拒绝服务或获得权限提升。 Diginum Zaptel 1.4.x Diginum Zapt...

7.2CVSS0.00043EPSS
Exploits2
Rows per page
Query Builder