Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 3 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

Debian DSA-1082-1 : kernel-source-2.4.17 - several vulnerabilities

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2004-0427 A local denial of service vulnerability i...

Debian DSA-1070-1 : kernel-source-2.4.19 - several vulnerabilities

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2004-0427 A local denial of service vulnerability i...

CVE-2006-4927

The a NAVENG NAVENG.SYS and b NAVEX15 NAVEX15.SYS device drivers 20061.3.0.12 and later, as used in Symantec AntiVirus and security products, allow local users to gain privileges by overwriting critical system addresses using a crafted Irp to the IOCTL functions 1 0x222AD3, 2 0x222AD7, and 3...

Symantec products fail to properly limit device driver access to kernel memory

Overview Certain device drivers included with Symantec products fail to properly verify address space within the "IOCTL" handlers. Description Symantec provides Anti-Virus and Internet Security products that are designed to protect users. According to Symantec Security Response SYM06-020:A...

CVE-2006-4927

CVE-2006-4927 concerns local privilege escalation in Symantec AntiVirus products due to improper address-space validation in NAVENG.SYS and NAVEX15.SYS device drivers. The vulnerability stems from processing IOCTLs 0x222AD3, 0x222AD7, and 0x222ADB, where a crafted IRP could overwrite a user-suppl...

CVE-2006-5153

The 1 fwdrv.sys and 2 khips.sys drivers in Sunbelt Kerio Personal Firewall 4.3.268 and earlier do not validate arguments passed through to SSDT functions, including NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, and NtSetInformationFile, which allows local users to caus...

CVE-2006-5153

The CVE concerns Sunbelt Kerio Personal Firewall 4.3.268 and earlier, where two drivers, fwdrv.sys and khips.sys, fail to validate arguments passed to SSDT functions (NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, NtSetInformationFile). This lack of validation allows lo...

Kerio Multiple insufficient argument validation of hooked SSDT function Vulnerability

Hello, I would like to inform you about a vulnerability in Sunbelt Kerio Personal Firewall. Description: Sunbelt Kerio Personal Firewall hooks many functions in SSDT and in at least six cases it fails to validate arguments that come from user mode. User calls to NtCreateFile, NtDeleteFile,...

Kerio Multiple insufficient argument validation of hooked SSDT function Vulnerability

Hello, I would like to inform you about a vulnerability in Sunbelt Kerio Personal Firewall. Description: Sunbelt Kerio Personal Firewall hooks many functions in SSDT and in at least six cases it fails to validate arguments that come from user mode. User calls to NtCreateFile, NtDeleteFile,...

CVE-2006-4976

The Date Library in John Lim ADOdb Library for PHP allows remote attackers to obtain sensitive information via a direct request for 1 server.php, 2 adodb-errorpear.inc.php, 3 adodb-iterator.inc.php, 4 adodb-pear.inc.php, 5 adodb-perf.inc.php, 6 adodb-xmlschema.inc.php, and 7 adodb.inc.php; files ...

Apple AirPort wireless drivers vulnerable to integer overflow

Overview An integer overflow exists in the Apple AirPort wireless drivers. Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code, or create a denial-of-service condition. Description According to Apple,An integer overflow exists in the AirPort wireless...

Apple AirPort wireless drivers fails to properly handle scan cache updates

Overview An heap buffer overflow exists in the Apple AirPort wireless driver. Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code, or cause a denial-of-service condition. Description Apple AirPort drivers contain a heap buffer overflow in the code that...

CentOS 4 : kernel (CESA-2006:0575)

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating system...

RHEL 4 : kernel (RHSA-2006:0575)

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating system...

Intel Centrino wireless network drivers fail to properly handle malformed frames

Overview Microsoft Windows drivers for Intel Centrino wireless adapters fail to properly handle malformed frames. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code. Description The Microsoft Windows drivers for Intel Centrino 2200BG and 2915ABG PRO wireless...

CVE-2006-3992

Unspecified vulnerability in the Centrino 1 w22n50.sys, 2 w22n51.sys, 3 w29n50.sys, and 4 w29n51.sys Microsoft Windows drivers for Intel 2200BG and 2915ABG PRO/Wireless Network Connection before 10.5 with driver 9.0.4.16 allows remote attackers to execute arbitrary code via certain frames that...

CVE-2006-3992

Unspecified vulnerability in the Centrino 1 w22n50.sys, 2 w22n51.sys, 3 w29n50.sys, and 4 w29n51.sys Microsoft Windows drivers for Intel 2200BG and 2915ABG PRO/Wireless Network Connection before 10.5 with driver 9.0.4.16 allows remote attackers to execute arbitrary code via certain frames that...

CVE-2006-3992

The CVE concerns Intel Centrino wireless drivers (2200BG/2915ABG PRO/Wireless Network Connection) for Windows, specifically the w22n50.sys, w22n51.sys, w29n50.sys, and w29n51.sys components. A remote attacker can trigger memory corruption by sending crafted frames, leading to arbitrary code execu...

CentOS 3 : kernel (CESA-2006:0437)

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 3. This is the eighth regular update. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles...