5899 matches found
CVE-2006-5751
Integer overflow in the getfdbentries function in net/bridge/brioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request...
CVE-2006-5751
Integer overflow in the getfdbentries function in net/bridge/brioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request...
CVE-2006-5751
Integer overflow in the getfdbentries function in net/bridge/brioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request...
CVE-2006-6130
Apple Mac OS X AppleTalk allows local users to cause a denial of service kernel panic by calling the AIOCREGLOCALZN ioctl command with a crafted data structure on an AppleTalk socket...
Apple Mac OSX 10.4.x - AppleTalk AIOCRegLocalZN IOCTL Stack Buffer Overflow
// source: https://www.securityfocus.com/bid/21317/info Apple Mac OS X is prone to a local memory-corruption vulnerability. This issue occurs when the operating system fails to handle specially crafted arguments to an IOCTL call. Due to the nature of this issue, an attacker may be able to execute...
Symantec AntiVirus IOCTL内核权限提升漏洞
Symantec AntiVirus是非常流行的杀毒解决方案。 Symantec AntiVirus的NAVEX15.SYS和NAVENG.SYS设备驱动的IOCTL处理器没有充分地验证地址空间,允许攻击者使用常数的双字值覆盖任意内存。 如果攻击者能够向0x222AD3、0x222AD7和0x222ADB IOCTL处理器发送特制的I/O请求报文的话,就会导致以内核权限执行任意指令。 Symantec AntiVirus 所有版本 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.symantec.com/...
Microsoft Windows SMB驱动本地权限提升漏洞(MS06-030)
Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft客户端缓存(CSCDLL.DLL)和Microsoft服务器消息块重新定向器驱动(MRXSMB.SYS)代码中存在漏洞,本地攻击者可能利用此漏洞提升权限获取机器的完全控制。...
CVE-2006-5550
The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto...
CVE-2006-5550
The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto...
CVE-2006-5550
The CVE concerns the kernel of FreeBSD 6.1 and OpenBSD 4.0 where local users can cause a denial of service through certain ioctl requests to /dev/crypto. The connected sources confirm the affected OS versions and the attack vector (local, via ioctl on /dev/crypto) but do not provide technical roo...
Kaspersky Labs Anti-Virus IOCTL本地权限提升漏洞
Kaspersky Antivirus是非常流行的杀毒软件。 Kaspersky在处理某种类型的IOCTL操作时存在漏洞,本地攻击者可能利用此漏洞提升自己的权限。 Kaspersky的KLIN和KLICK设备驱动在处理IOCTL 0x80052110操作时没有正确地验证地址空间。攻击者可以向受影响的IOCTL处理器发送特制的Irp结构,通过CALL指令导致驱动执行任意代码。 Kaspersky Labs Kaspersky Antivirus 6.0.0.303 临时解决方法: 关闭registerglobals。 厂商补丁: Kaspersky Labs --------------...
[Reversemode Advisory] Kaspersky Anti-Virus Privilege Escalation
Hi, Kaspersky Products are prone to a local privilege escalation. Unprivileged users can exploit this flaw in order to execute arbitrary code with Kernel privileges. Kaspersky implements its NDIS-TDI Hooking Engine using two drivers, which rely on an internal system of plugins. Plugin registering...
Debian DSA-1018-2 : kernel-source-2.4.27 - several vulnerabilities
The original update lacked recompiled ALSA modules against the new kernel ABI. Furthermore, kernel-latest-2.4-sparc now correctly depends on the updated packages. For completeness we're providing the original problem description : Several local and remote vulnerabilities have been discovered in t...
CVE-2006-4927
The a NAVENG NAVENG.SYS and b NAVEX15 NAVEX15.SYS device drivers 20061.3.0.12 and later, as used in Symantec AntiVirus and security products, allow local users to gain privileges by overwriting critical system addresses using a crafted Irp to the IOCTL functions 1 0x222AD3, 2 0x222AD7, and 3...
Symantec products fail to properly limit device driver access to kernel memory
Overview Certain device drivers included with Symantec products fail to properly verify address space within the "IOCTL" handlers. Description Symantec provides Anti-Virus and Internet Security products that are designed to protect users. According to Symantec Security Response SYM06-020:A...
CVE-2006-4927
The a NAVENG NAVENG.SYS and b NAVEX15 NAVEX15.SYS device drivers 20061.3.0.12 and later, as used in Symantec AntiVirus and security products, allow local users to gain privileges by overwriting critical system addresses using a crafted Irp to the IOCTL functions 1 0x222AD3, 2 0x222AD7, and 3...
[Full-disclosure] iDefense Security Advisory 10.05.06: Symantec AntiVirus IOCTL Kernel Privilege Escalation Vulnerability
Symantec AntiVirus IOCTL Kernel Privilege Escalation Vulnerability iDefense Security Advisory 10.05.06 http://www.idefense.com/intelligence/vulnerabilities/ Oct 05, 2006 I. BACKGROUND Symantec has a wide range of Anti-Virus and Internet Security products that are designed to protect users from...
Low: Red Hat Bug Fix Advisory: perl bug fix update
Updated perl packages that fix various bugs are now available. Perl is a high-level programming language with roots in C, sed, awk and shell scripting. This update addresses the following issues: - perl operation in UTF-8 enabled locales - handling an alarm signal while a waitpid is in progress -...
Patching system services at runtime
Patching system services at runtime Although KAV appears to use a filesystem filter, the standard Windows mechanism for intercepting accesses to files specifically designed for applications like anti-virus software, the implementors also used a series of API-level function hooks to intercept...
CVE-2006-2205
The audiowrite function in NetBSD 3.0 allows local users to cause a denial of service kernel crash by using the audiosetinfo ioctl to change the sample rate of an audio device...