276 matches found
USN-2932-1: Linux kernel (Vivid HWE) vulnerabilities
Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges...
PonyOS 0.4.99-mlp - Multiple Vulnerabilities
Advisory: PonyOS Security Issues John Cartwright Introduction ------------ Like countless others, I was pretty excited about PonyOS yesterday April 1st 2013 and decided to give it a go. After wasting a lot of time nyan'ing, I knew this was the future of desktop OSes. However, I wondered how secur...
RedHat Update for kernel RHSA-2011:0007-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2011:0007-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Design/Logic Flaw
XNU 1228.9.59 and earlier on Apple Mac OS X 10.5.6 and earlier does not properly restrict interaction between user space and the HFS IOCTL handler, which allows local users to overwrite kernel memory and gain privileges by attaching an HFS+ disk image and performing certain steps involving...
CVE-2009-1235
XNU 1228.9.59 and earlier on Apple Mac OS X 10.5.6 and earlier does not properly restrict interaction between user space and the HFS IOCTL handler, which allows local users to overwrite kernel memory and gain privileges by attaching an HFS+ disk image and performing certain steps involving...
Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC
No description provided by source. Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation PoC. by b1@ckeYe The vulnerability is caused due to the IOCTL handler of the "tmactmon.sys" driver improperly processing user space parameters. This exploit execute arbitrary code in...
Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC
Exploit for unknown platform in category local exploits ================================================================ Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC ================================================================ Trend Micro Internet Security Pro 2009...
Trend Micro Internet Security Pro 2009 - Priviliege Escalation
Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation PoC. by b1@ckeYe The vulnerability is caused due to the IOCTL handler of the "tmactmon.sys" driver improperly processing user space parameters. This exploit execute arbitrary code in kernel space via a specially crafted...
[Suspected Spam][PT-2009-11] SlySoft Multiple Products ElbyCDIO.sys Denial of Service
---------------------------------------------------------------------- PT-2009-11 Positive Technologies Security Advisory SlySoft Multiple Products ElbyCDIO.sys Denial of Service ---------------------------------------------------------------------- --- Affected Software SlySoft AnyDVD version...
CVE-2007-4591
vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service host operating system crash and possibly gain privileges by sending a small file buffer size value to the FsSetVolumeInformation IOCTL handler with an FsSetFileInformation subcode...
Buffer overflow
Buffer underflow in redlight.sys in BufferZone 2.1 and 2.5 allows local users to cause a denial of service crash and possibly execute arbitrary code by sending a small buffer size value to the FsSetVolumeInformation IOCTL handler code with a FsSetDirectoryInformation subcode containing a large...
Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation
The version of Kaspersky Anti-Virus installed on the remote host allows a local attacker to execute arbitrary code with kernel privileges by passing a specially crafted Irp structure to an IOCTL handler used by the KLIN and KLICK device drivers. By leveraging this flaw, a local attacker may be ab...
CVE-2005-1589
The pktioctl function in the pktcdvd block device ioctl handler pktcdvd.c in Linux kernel 2.6.12-rc4 and earlier calls the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space and allows local users...
CVE-2005-1589
The pktioctl function in the pktcdvd block device ioctl handler pktcdvd.c in Linux kernel 2.6.12-rc4 and earlier calls the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space and allows local users...
Linux kernel pktcdvd privilege escalation
Rawdevice ioctl handler parameters are not checked...