3409 matches found
kernel security update
CentOS Errata and Security Advisory CESA-2006:0617 Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel...
CVE-2006-3825
The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication...
CVE-2006-3825
The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication...
CVE-2006-3825
CVE-2006-3825 affects Sun Solaris 10 before 2006-07-21, where the IPv4 implementation allows local users to select routes that differ from the routing table, potentially bypassing firewall rules or enabling unauthorized network communication. The issue is documented in NVD with a low-severity CVS...
CVE-2006-3202
The ip6savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service crash by creating an IPv4-mapped IPv6 socket with the...
CVE-2006-3202
The ip6savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service crash by creating an IPv4-mapped IPv6 socket with the...
Microsoft Windows XP2003 - IGMP v3 Denial of Service (MS06-007) (2)
Microsoft Windows XP2003 - IGMP v3 Denial of Service MS06-007 2 / MS06-007 Denial of Service POC exploit created by Firestorm, based on zloSend.exe win32 exploit http://www.securitylab.ru/poc/264136.php Tested on Windows XP SP2 as victim compiled/runned on Fedore Core 4 x86 FOR EDUCATIONAL PURPOS...
MS Windows XP/2003 (IGMP v3) Denial of Service Exploit (MS06-007) (2)
No description provided by source. / MS06-007 Denial of Service POC exploit created by Firestorm, based on zloSend.exe win32 exploit http://www.securitylab.ru/poc/264136.php Tested on Windows XP SP2 as victim compiled/runned on Fedore Core 4 x86 FOR EDUCATIONAL PURPOSE ONLY !!! / include stdio.h...
Design/Logic Flaw
net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...
CVE-2006-1343
net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...
CVE-2006-1342
net/ipv4/afinet.c in Linux kernel 2.4 does not clear sockaddrin.sinzero before returning IPv4 socket names from the 1 getsockname, 2 getpeername, and 3 accept functions, which allows local users to obtain portions of potentially sensitive memory...
Information disclosure
net/ipv4/afinet.c in Linux kernel 2.4 does not clear sockaddrin.sinzero before returning IPv4 socket names from the 1 getsockname, 2 getpeername, and 3 accept functions, which allows local users to obtain portions of potentially sensitive memory...
CVE-2006-1342
net/ipv4/afinet.c in Linux kernel 2.4 does not clear sockaddrin.sinzero before returning IPv4 socket names from the 1 getsockname, 2 getpeername, and 3 accept functions, which allows local users to obtain portions of potentially sensitive memory...
CVE-2006-1343
net/ipv4/netfilter/ipconntrackcore.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nfconntrackl3protoipv4.c in 2.6, does not clear sockaddrin.sinzero before returning IPv4 socket names from the getsockopt function with SOORIGINALDST, which allows local users to obtain portions of...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix a number of security issues as well as other bugs are now available for Red Hat Enterprise Linux 2.1 32 bit architectures This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the...
security flaw
The sysctl functionality sysctl.c in Linux kernel before 2.6.14.1 allows local users to cause a denial of service kernel oops and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function...
security flaw
The sysctl functionality sysctl.c in Linux kernel before 2.6.14.1 allows local users to cause a denial of service kernel oops and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function...
[SA18216] Linux Kernel Multiple Vulnerabilities
TITLE: Linux Kernel Multiple Vulnerabilities SECUNIA ADVISORY ID: SA18216 VERIFY ADVISORY: http://secunia.com/advisories/18216/ CRITICAL: Less critical IMPACT: Unknown, DoS WHERE: Local system OPERATING SYSTEM: Linux Kernel 2.6.x http://secunia.com/product/2719/ DESCRIPTION: Some vulnerabilities...
Cisco IOS IPv4 Packets Denial of Service (CVE-2003-0567)
...
security flaw
Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAPNETADMIN capability, which could allow local users to conduct unauthorized activities via 1 ipv4/ipsockglue.c and 2 ipv6/ipv6sockglue.c...