15 matches found
Design/Logic Flaw
The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, related to "integer rounding and...
CVE-2007-6754
The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, related to "integer rounding and...
CVE-2006-7252
CVE-2006-7252 affects the jemalloc allocator used by libc on FreeBSD 6.4 and NetBSD. The root cause is an integer overflow in calloc within libc/stdlib/malloc.c, which can allow a context-dependent attacker to trigger memory-related issues by supplying a large size value that leads to a 1-byte al...
FreeBSD 6.4 - Netgraph Privilege Escalation
FreeBSD 6.4 - Netgraph Privilege Escalation / FreeBSD include include include...
FreeBSD 6.4 Netgraph Privilege Escalation
/ FreeBSD include include include sys/...
CVE-2010-1938
Off-by-one error in the opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a long username, as...
FreeBSD 6.4 root shell exploit 0 day-vulnerability warning-the black bar safety net
The following code exploit the vulnerability to run in kernel-mode code if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits the vulnerability to run code in kernel mode, giving root she...
FreeBSD 6.4 pipeclose()/knlist_cleardel() race condition exploit
No description provided by source. if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits vulnerability to run code in kernel mode, giving root shell and escaping from jail. endif /...
FreeBSD 6.4 pipeclose()/knlist_cleardel() race condition exploit
FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits vulnerability to run code in kernel mode, giving root shell and escaping from jail. http://www.frasunek.com/pipe.txt The bug was fixed a...
FreeBSD 6.4 pipeclose()/knlist_cleardel() race condition exploit
Exploit for unknown platform in category local exploits ================================================================ FreeBSD 6.4 pipeclose/knlistcleardel race condition exploit ================================================================ Title: FreeBSD 6.4 pipeclose/knlistcleardel race...
FreeBSD 6.4 pipeclose()/knlist_cleardel() Race Condition
if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits vulnerability to run code in kernel mode, giving root shell and escaping from jail. endif / 29.08.2009, babcia padlina FreeBSD includ...
FreeBSD 6.4 - pipeclose()knlist_cleardel() Race Condition
FreeBSD 6.4 - pipecloseknlistcleardel Race Condition if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits vulnerability to run code in kernel mode, giving root shell and escaping from...
FreeBSD 6.4 - 'pipeclose()'/'knlist_cleardel()' Race Condition
if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits vulnerability to run code in kernel mode, giving root shell and escaping from jail. endif / 29.08.2009, babcia padlina FreeBSD includ...
CVE-2009-3527
CVE-2009-3527: Concrete details exist in connected docs. A race condition in FreeBSD 6.3/6.4’s Pipe (IPC) close function can lead to a use-after-free via kqueues, causing local denial of service (crash) or privilege gain through NULL pointer dereference/memory corruption. Affected software: FreeB...
CVE-2009-0689
Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x...