9 matches found
SUSE CVE-2011-1089
The addmntent function in the GNU C Library aka glibc or libc6 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local users to trigger corruption of this file, as demonstrated by writes from a process with a small...
SUSE CVE-2011-1675
mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMITFSIZE value, a related issue to CVE-2011-1089...
SUSE CVE-2011-1678
smbfs in Samba 3.5.8 and earlier attempts to use 1 mount.cifs to append to the /etc/mtab file and 2 umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process wi...
nfs-utils: mount.nfs fails to anticipate RLIMIT_FSIZE
The nfsaddmntent function in support/nfs/nfsmntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMITFSIZE value,...
glibc: Suid mount helpers fail to anticipate RLIMIT_FSIZE
The addmntent function in the GNU C Library aka glibc or libc6 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local users to trigger corruption of this file, as demonstrated by writes from a process with a small...
nfs-utils: mount.nfs fails to anticipate RLIMIT_FSIZE
The nfsaddmntent function in support/nfs/nfsmntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMITFSIZE value,...
CVE-2011-1679
ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small...
UBUNTU-CVE-2011-1681
vmware-hgfsmounter in VMware Open Virtual Machine Tools aka open-vm-tools 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small...
DeepBurner pro 1.9.0.228 - .dbr file Buffer Overflow (Universal)
DeepBurner pro 1.9.0.228 - .dbr file Buffer Overflow Universal / Deepburner pro 1.9.0.228 dbr file buffer overflow exploituniversal This is buffer: header 253 bytes + junk+ next seh + seh addr + tail 957 bytes dbr/dbi file Date: 29.01.2010 Dicovery Credits: fl0 fl0w Exploit Credits : fl0 fl0w...