CVE-2007-5633

Speedfan.sys in Alfredo Milani Comparetti SpeedFan 4.33, when used on Microsoft Windows Vista x64, allows local users to read or write arbitrary MSRs, and gain privileges and load unsigned drivers, via the 1 IOCTLRDMSR 0x9C402438 and 2 IOCTLWRMSR 0x9C40243C IOCTLs to \Device\speedfan, as...

CVE-2007-5633

CVE-2007-5633 is a local-elevation vulnerability in SpeedFan (speedfan.sys) used on Windows Vista x64. The issue allows a local attacker to read/write MSRs and load unsigned drivers via IOCTL_RDMSR 0x9C402438 and IOCTL_WRMSR 0x9C40243C to \Device\speedfan (MSR_LSTAR shown in examples). The provid...

SuSE Security Update: Kernel Update for SUSE Linux 10.1 (kernel-4193)

This kernel update brings the kernel to the one shipped with SLES 10 Service Pack 1 and also fixes the following security problems: - CVE-2007-2242: The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers IPV6RTHDRTYPE0 that create network...

[SECURITY] Fedora Core 6 Update: hplip-1.7.4a-3.fc6

The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals...

Linux Madwifi wireless drivers DoS

Assert on oversized "extended supported rates" beacon frame...

[SECURITY] Fedora 7 Update: hplip-1.7.4a-6.fc7

The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals...

Solaris 9 (x86) : 115554-26

SunOS 5.9x86: USB Drivers and Framework Patch. Date this patch was last updated by Sun : Jun/22/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

NVIDIA Linux drivers DoS

Invalid value sent to device may cause hardware damage...

GLSA-200708-14 : NVIDIA drivers: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200708-14 NVIDIA drivers: Denial of Service Gregory Shikhman discovered that the default Gentoo setup of NVIDIA drivers creates the /dev/nvidia with insecure file permissions. Impact : A local attacker could send arbitrary values...

NVIDIA drivers: Denial of service

Background The NVIDIA drivers provide support for NVIDIA graphic boards. Description Gregory Shikhman discovered that the default Gentoo setup of NVIDIA drivers creates the /dev/nvidia with insecure file permissions. Impact A local attacker could send arbitrary values into the devices, possibly...

Atheros wireless network drivers may fail to properly handle malformed frames

Overview Atheros wireless drivers fail to properly handle malformed wireless frames. This vulnerability may allow a remote, unauthenticated attacker to create a denial-of-service condition. Description Some versions of the Microsoft Windows drivers for Atheros 802.11 a/b/g wireless adapters fail ...

CVE-2007-3532

NVIDIA drivers nvidia-drivers before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service crash or physical video...

Information disclosure

NVIDIA drivers nvidia-drivers before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service crash or physical video...

CVE-2007-3532

NVIDIA drivers nvidia-drivers before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service crash or physical video...

CVE-2007-3532

CVE-2007-3532 affects NVIDIA drivers (nvidia-drivers) prior to 1.0.7185, 1.0.9639, and 100.14.11 when used in Gentoo Linux and possibly other distributions. The vulnerability arises because the default driver setup creates /dev/nvidia* device files with insecure permissions, enabling a local atta...

CVE-2007-3532

NVIDIA drivers nvidia-drivers before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service crash or physical video...

csc-sqlxss.txt

--- Comersus Shop Cart 7.07 SQL Injection & XSS Comersus is an active server pages asp software for running shopping stores, integrated with the rest of your web site. Comersus ASP Cart is free and IT CAN BE used for commercial purposes. An attacker may leverage this issue to have arbitrary scrip...

Design/Logic Flaw

Unspecified vulnerability in drivers/crypto/geode-aes.c in GEODE-AES in the Linux kernel before 2.6.21.3 allows attackers to obtain sensitive information via unspecified vectors...

CVE-2007-1859

XScreenSaver 4.10, when using a remote directory service for credentials, does not properly handle the results from the getpwuid function in drivers/lock.c when there is no network connectivity, which causes XScreenSaver to crash and unlock the screen and allows local users to bypass authenticati...

[VulnWatch] Microsoft Windows Vista Slideshow Unspecified Blue Screen Of Death Vulnerability

It seems that Vista has some problems with ATI drivers. It was already reported that file atikmdag.sys can cause BSoD after leaving the game http://leovilletownsquare.com/fusionbb/showtopic.php?tid/17600/. Today user with nickname Olo contacted my and by making some tests we where able to determi...