PT-2008-4251 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.25.10 Description: The issue allows local users to cause a denial of service, potentially leading to a system crash, or possibly gain privileges. This is achieved through vectors involving NULL pointer...

[SECURITY] Fedora 8 Update: libetpan-0.54-1.fc8

The purpose of this mail library is to provide a portable, efficient middle ware for different kinds of mail access. When using the drivers interface, the interface is the same for all kinds of mail access, remote and local mailbo xes...

Ubuntu 6.06 LTS / 7.04 / 7.10 : linux-source-2.6.15/20/22 vulnerabilities (USN-618-1)

It was discovered that the ALSA /proc interface did not write the correct number of bytes when reporting memory allocations. A local attacker might be able to access sensitive kernel memory, leading to a loss of privacy. CVE-2007-4571 Multiple buffer overflows were discovered in the handling of...

Realtek HD Audio Codec Drivers Multiple Local Privilege Escalation Vulnerabilities

The remote host has Realtek HD Audio drivers for Windows Vista installed. The audio driver 'RTKVHDA.sys' is affected by multiple local privilege escalation issues. An attacker with local interactive access to the system may be able to exploit this issue and execute arbitrary code with SYSTEM leve...

Server side request forgery (ssrf)

Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys before 6.0.1.5605 on Windows Vista allow local users to create, write, and read registry keys via a crafted IOCTL request...

Integer overflow

Integer overflow in Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys before 6.0.1.5605 on Windows Vista allows local users to execute arbitrary code via a crafted IOCTL request...

CVE-2008-1931

Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys before 6.0.1.5605 on Windows Vista allow local users to create, write, and read registry keys via a crafted IOCTL request...

CVE-2008-1931

The CVE-2008-1931 issue affects Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys on Windows Vista. A crafted IOCTL request lets a local user create, write, and read registry keys, indicating a local privilege escalation vulnerability. The root cause is improper handling of IOCTLs by t...

CVE-2008-1932

CVE-2008-1932 affects Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys on Windows Vista. The root cause is an integer overflow triggered by a crafted IOCTL request, enabling a local user to execute arbitrary code . The vulnerability is described as a local privilege escalation in mult...

[SECURITY] Fedora 8 Update: dovecot-1.0.13-6.fc8

Dovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in either of maildir or mbox formats. The SQL drivers and authentication plugins are in their subpackages...

[SECURITY] Fedora 7 Update: kronolith-2.1.7-1.fc7

Kronolith is the Horde calendar application. It provides repeating events, all-day events, custom fields, keywords, and managing multiple users through Horde Authentication. The calendar API that Kronolith uses is abstracted; MCAL and SQL drivers are currently provided. The Horde Project writes w...

Design/Logic Flaw

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset...

CVE-2008-0007

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset...

Intel® LAN Driver Buffer Overflow Local Privilege Escalation

Summary: A software vulnerability exists in the specified PCI, PCI-X and PCIe Intel network component drivers that could allow unprivileged code executing on an affected system to perform a local privilege escalation. Description: This software vulnerability is due to a buffer overflow that could...

Debian Security Advisory DSA 332-1 (kernel-source-2.4.17, kernel-patch-2.4.17-mips)

The remote host is missing an update to kernel-source-2.4.17, kernel-patch-2.4.17-mips announced via advisory DSA 332-1. OpenVAS Vulnerability Test $Id: deb3321.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 332-1 Authors: Thomas Reinke Copyright: Copyrigh...

Debian: Security Advisory (DSA-1070-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Shameless drive to load the Law of(ZT)-vulnerability warning-the black bar safety net

| ! --- from : http : //www.debugman.com/read.php?tid=614 Method one: replace the win32k . sys In 2k3 the system under ZwSetSystemInformation banned user mode load the driver, only allows the SMSS . exe to load the win32k . sys. So we can use this features: 1. Injection SMSS . EXE 2. Open the...

RHEL 5 : kernel (RHSA-2007:0993)

Updated kernel packages that fix various security issues in the Red Hat Enterprise Linux 5 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating system. These ne...

Code injection

Speedfan.sys in Alfredo Milani Comparetti SpeedFan 4.33, when used on Microsoft Windows Vista x64, allows local users to read or write arbitrary MSRs, and gain privileges and load unsigned drivers, via the 1 IOCTLRDMSR 0x9C402438 and 2 IOCTLWRMSR 0x9C40243C IOCTLs to \Device\speedfan, as...

CVE-2007-5633

Speedfan.sys in Alfredo Milani Comparetti SpeedFan 4.33, when used on Microsoft Windows Vista x64, allows local users to read or write arbitrary MSRs, and gain privileges and load unsigned drivers, via the 1 IOCTLRDMSR 0x9C402438 and 2 IOCTLWRMSR 0x9C40243C IOCTLs to \Device\speedfan, as...