Lucene search
K

176 matches found

exploitpack
exploitpack
added 2007/03/27 12:0 a.m.9 views

Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure (1)

Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure 1 / Linux Kernel DCCP Memory Disclosure Vulnerability Synopsis: The Linux kernel is susceptible to a locally exploitable flaw which may allow local users to steal data from the kernel memory. Vulnerable Systems: Linux Kernel Versions: =...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/27 12:0 a.m.26 views

Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure (1)

/ Linux Kernel DCCP Memory Disclosure Vulnerability Synopsis: The Linux kernel is susceptible to a locally exploitable flaw which may allow local users to steal data from the kernel memory. Vulnerable Systems: Linux Kernel Versions: = 2.6.20 with DCCP support enabled. Kernel versions 2.6.20 lack...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/03/27 12:0 a.m.69 views

Linux kernel DCCP information leak

Integer overflow in getsockopt for SOLDCCP gives ability to read content of kernel memory...

7.2CVSS3.4AI score0.00773EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2007/03/12 11:19 p.m.25 views

Design/Logic Flaw

The ipv6getsockoptsticky function in net/ipv6/ipv6sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference...

7.2CVSS6.1AI score0.011EPSS
Exploits7References26Affected Software1
UbuntuCve
UbuntuCve
added 2007/03/12 11:19 p.m.31 views

CVE-2007-1000

The ipv6getsockoptsticky function in net/ipv6/ipv6sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference...

7.2CVSS6AI score0.011EPSS
Exploits7References3
Cvelist
Cvelist
added 2007/03/12 11:0 p.m.25 views

CVE-2007-1000

The ipv6getsockoptsticky function in net/ipv6/ipv6sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference...

5.8AI score0.011EPSS
Exploits7References26
CVE
CVE
added 2007/03/12 11:0 p.m.76 views

CVE-2007-1000

The CVE-2007-1000 issue affects the Linux kernel up to version 2.6.20.2, where the ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c can trigger a NULL dereference through certain getsockopt calls, allowing local users to read arbitrary kernel memory. The vulnerability stems from a NULL...

7.2CVSS5.7AI score0.011EPSS
Exploits7References26Affected Software1
securityvulns
securityvulns
added 2007/03/12 12:0 a.m.44 views

Linux setsockopt / getsockopt IPv6 DoS

IPV6RTHDR option with invalid value causes system crash...

7.2CVSS2AI score0.011EPSS
Exploits7Affected Software1
RedHat Linux
RedHat Linux
added 2006/08/10 7:31 p.m.6 views

security flaw

net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...

2.1CVSS5.8AI score0.0042EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/07/20 1:17 p.m.4 views

security flaw

net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...

2.1CVSS5.8AI score0.0042EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/05/04 12:0 a.m.76 views

[Full-disclosure] [USN-281-1] Linux kernel vulnerabilities

=========================================================== Ubuntu Security Notice USN-281-1 May 04, 2006 linux-source-2.6.10, linux-source-2.6.12 vulnerabilities CVE-2006-0557, CVE-2006-1052, CVE-2006-1055, CVE-2006-1066, CVE-2006-1242, CVE-2006-1343, CVE-2006-1368, CVE-2006-1525...

10CVSS6.7AI score0.0601EPSS
Exploits0
NVD
NVD
added 2006/03/21 6:2 p.m.20 views

CVE-2006-1343

net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...

2.1CVSS7AI score0.0042EPSS
Exploits0References37
Cvelist
Cvelist
added 2006/03/21 6:0 p.m.21 views

CVE-2006-1343

net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...

7AI score0.0042EPSS
Exploits0References37
securityvulns
securityvulns
added 2005/06/20 12:0 a.m.32 views

OpenBSD ip_ctloutput() DoS

Error in the "ipctloutput" function can be exploited by using the "getsockopt" to retrieve IPsec credentials for a socket...

2.5AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2002/08/31 4:0 a.m.34 views

CVE-2001-1394

Signedness error in 1 getsockopt and 2 setsockopt for Linux kernel before 2.2.19 allows local users to cause a denial of service...

5.2AI score0.004EPSS
Exploits0References10
NVD
NVD
added 2001/04/17 4:0 a.m.18 views

CVE-2001-1394

Signedness error in 1 getsockopt and 2 setsockopt for Linux kernel before 2.2.19 allows local users to cause a denial of service...

2.1CVSS5.2AI score0.004EPSS
Exploits0References10
Rows per page
Query Builder