FastCGI buffer overflow

Buffer overflow on fdset structure handling...

Updated fcgi packages fix CVE-2012-6687

Updated fcgi packages fix security vulnerability: FCGI does not perform range checks for file descriptors before use of the FDSET macro. This FDSET macro could allow for more than 1024 total file descriptors to be monitored in the closing state. This may allow remote attackers to cause a denial o...

openSUSE Security Update : nss-pam-ldapd (openSUSE-SU-2013:0522-2)

nss-pam-ldap was updated to fix a FDSET overflow, happening when more than 1024 filedescriptors are opened. CVE-2013-0288 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-240. The...

Stack overflow

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

nss-pam-ldapd security update

0.7.5-18.1 - Apply upstream r1926 to resolve FDSET array index error - Resolves: rhbz915361...

nss-pam-ldapd fd_set overflow

FDSET structure overflow...

CVE-2011-0719

Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FDSET macro, which allows remote attackers to cause a denial of service stack memory corruption, and infinite loop or daemon crash by opening a large number of...

Memory corruption

Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FDSET macro, which allows remote attackers to cause a denial of service stack memory corruption, and infinite loop or daemon crash by opening a large number of...

Samba unsafe fd_set usage

Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FDSET macro, which allows remote attackers to cause a denial of service stack memory corruption, and infinite loop or daemon crash by opening a large number of...

Mandriva Linux Security Advisory : samba (MDVSA-2011:038)

A vulnerability has been found and corrected in samba : All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FDSET macro were not present allowing stack corruption. This can cause the Samba cod...

Samba fd_set array overflow

Memory corruption by setting large number of connections...

Samba -- Denial of service - memory corruption

The Samba team reports: Samba is vulnerable to a denial of service, caused by a memory corruption error related to missing range checks on file descriptors being used in the "FDSET" macro. By performing a select on a bad file descriptor set, a remote attacker could exploit this vulnerability to...

tcpreen buffer overflows

FDSET buffer overflow on large number of incvoming connections...

CVE-2007-6562

Multiple stack-based buffer overflows in the use of FDSET in TCPreen before 1.4.4 allow remote attackers to cause a denial of service via multiple concurrent connections, which result in overflows in the 1 SocketAddress::Connect function in libsolve/sockprot.cpp and 2 monitorbridge function in...

CVE-2007-6562

Multiple stack-based buffer overflows in the use of FDSET in TCPreen before 1.4.4 allow remote attackers to cause a denial of service via multiple concurrent connections, which result in overflows in the 1 SocketAddress::Connect function in libsolve/sockprot.cpp and 2 monitorbridge function in...

CVE-2007-6562

TCPreen is affected prior to version 1.4.4. The vulnerability arises from multiple stack-based overflows in FD_SET handling that enable remote denial of service through many concurrent connections. Reported vulnerable components include SocketAddress::Connect (libsolve/sockprot.cpp) and monitor_b...

TCPreen FD_SET()函数远程栈溢出漏洞

BUGTRAQ ID: 27018 TCPreen是用于监控和分析客户端与服务器之间传输数据的工具。 TCPreen的libsolve/sockprot.cpp文件中在调用SocketAddress::Connect中的FDSET时存在栈溢出漏洞，在某些配置中如果远程攻击者创建了多个并行连接的话，就可以触发这个溢出，导致执行任意指令。 Rémi Denis-Courmont TCPreen 1.4.3 Rémi Denis-Courmont TCPreen 1.4.2 Rémi Denis-Courmont TCPreen 1.4.1 Rémi Denis-Courmont TCPree...

FreeBSD : fd_set -- bitmap index overflow in multiple applications (4c005a5e-2541-4d95-80a0-00c76919aa66)

3APA3A reports : If programmer fails to check socket number before using select or fdset macros, it's possible to overwrite memory behind fdset structure. Very few select based application actually check FDSETSIZE value. ... Depending on vulnerable application it's possible to overwrite portions ...

multiple applications fd_set structure bitmap array index overflow

Issue: Multiple applications fdset structure bitmap array index overflow Type: remote Date: December, 12 2004 Original URL: http://www.security.nnov.ru/advisiories/sockets.asp Author: 3APA3A URL: http://www.security.nnov.ru/ Affected: gnugk 2.2.0 confirmed, fixed by vendor gnugk is OpenH323...

Multiple applications fd_set structure bitmap array index overflow

Issue: Multiple applications fdset structure bitmap array index overflow Type: remote Date: December, 12 2004 Original URL: http://www.security.nnov.ru/advisiories/sockets.asp Author: 3APA3A URL: http://www.security.nnov.ru/ Affected: gnugk 2.2.0 confirmed, fixed by vendor gnugk is OpenH323...