741 matches found
CVE-2008-2710
Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...
Integer overflow
Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...
CVE-2008-2710
CVE-2008-2710 affects Sun Solaris 10 and OpenSolaris prior to SNV_92. The kernel component involved is ip_set_srcfilter in uts/common/inet/ip/ip_multi.c, where a signedness issue can trigger an out-of-bounds write via an SIOCSIPMSFILTER IOCTL with a large imsf->imsf_numsrc, enabling local user...
CVE-2008-2710
Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...
CVE-2008-1950
Integer signedness error in the gnutlsciphertext2compressed function in lib/gnutlscipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service buffer over-read and crash via a certain integer value in the Random field in an encrypted Client Hello message withi...
CVE-2008-1950
Integer signedness error in the gnutlsciphertext2compressed function in lib/gnutlscipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service buffer over-read and crash via a certain integer value in the Random field in an encrypted Client Hello message withi...
CVE-2008-1950
Integer signedness error in the gnutlsciphertext2compressed function in lib/gnutlscipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service buffer over-read and crash via a certain integer value in the Random field in an encrypted Client Hello message withi...
CVE-2008-1803
Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...
CVE-2008-1803
Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...
CVE-2008-1803
Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...
CVE-2008-1803
CVE-2008-1803 affects rdesktop 1.5.0, describing an integer signedness error in xrealloc() that can cause a heap-based overflow and remote code execution. The connected advisories confirm related fixes in multiple distributions (e.g., RHSA-2008-0575; CentOS CES A-2008:0575; Ubuntu USN-646-1), ind...
CVE-2008-1842
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager OV NNM 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service daemon crash or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a...
CVE-2008-1842
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager OV NNM 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service daemon crash or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a...
CVE-2008-1721
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow...
python -- Integer Signedness Error in zlib Module
Justin Ferguson reports: Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow...
CVE-2008-0307
Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption...
CVE-2008-0307
Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption...
CVE-2008-0307
CVE-2008-0307 corresponds to an integer signedness error in SAP MaxDB’s vserver component that can let remote attackers execute arbitrary code by triggering heap corruption. Affected version cited: MaxDB 7.6.0.37 (and possibly others). Exploitation is described as requiring a TCP connection to th...
CVE-2008-0307
Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption...
Solaris 8/9/10 fifofs I_PEEK Local Kernel memory Leak Exploit
No description provided by source. / $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp $ raptorpeek.c - Solaris fifofs IPEEK kernel memory leak Copyright c 2007 Marco Ivaldi [email protected] Lame integer signedness error in FIFO filesystems named pipes on Sun ...