Nexus 5 Android 5.0 - Local Privilege Escalation

Nexus 5 Android 5.0 - Local Privilege Escalation / CVE-2014-4322 exploit for Nexus Android 5.0 author: retme [email protected] website: retme.net The exploit must be excuted as system privilege and specific SELinux context. If exploit successed,you will gain root privilege and "kernel" SELinux...

CVE-2014-4380

The IOHIDFamily kernel extension in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code in the kernel's context via a crafted application...

Linux Kernel 2.2.x.2.3.x/2.4.x/2.5.x/2.6.x ELF Core Dump Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13589/info The Linux kernel is susceptible to a local buffer-overflow vulnerability when attempting to create ELF coredumps. This issue is due to an integer-overflow flaw that results in a kernel buffer overflow during a...

FreeBSD : FreeBSD -- Insufficient credential checks in network ioctl(2) (4d87d357-202c-11e3-be06-000c29ee3065)

Problem Description : As is commonly the case, the IPv6 and ATM network layer ioctl request handlers are written in such a way that an unrecognized request is passed on unmodified to the link layer, which will either handle it or return an error code. Network interface drivers, however, assume th...

Apple Mac OSX 10.6.x - HFS Subsystem Information Disclosure

Apple Mac OSX 10.6.x - HFS Subsystem Information Disclosure // source: https://www.securityfocus.com/bid/46982/info Apple Mac OS X is prone to a local information-disclosure vulnerability because of an integer-overflow error in the HFS subsystem. A local attacker can exploit this issue to obtain...

Microsoft Windows WmiTraceMessageVa Local Kernel Vulnerability

This vulnerability allows local attackers to execute arbitrary code from the context of kernelspace on vulnerable installations of Microsoft Windows. The ability to make a system call is required in order to exploit this vulnerability. The specific flaw exists within the kernel's support for Trac...

SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 1754 / 1760)

Indications Everyone using the Linux Kernel on x8664 architecture should update. Contraindications None. Problem description The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.42 fixing various bugs and security issues. The following security issues were fixed : - A underflow in the e1000...

FreeBSd race conditions (pipe)

Race conditions in pipes close call allow code execution in kernel context...

CVE-2009-0875

Race condition in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv94, allows local users to cause a denial of service process hang, or possibly bypass file permissions or gain kernel-context privileges, via vectors involving the time at which control is...

CVE-2009-0874

Multiple unspecified vulnerabilities in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv94, allow local users to cause a denial of service process hang, or possibly bypass file permissions or gain kernel-context privileges, via vectors including ones relat...

Design/Logic Flaw

Multiple unspecified vulnerabilities in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv94, allow local users to cause a denial of service process hang, or possibly bypass file permissions or gain kernel-context privileges, via vectors including ones relat...

Race condition

Race condition in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv94, allows local users to cause a denial of service process hang, or possibly bypass file permissions or gain kernel-context privileges, via vectors involving the time at which control is...

CVE-2009-0875

Race condition in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv94, allows local users to cause a denial of service process hang, or possibly bypass file permissions or gain kernel-context privileges, via vectors involving the time at which control is...

CVE-2009-0874

CVE-2009-0874 concerns multiple unspecified vulnerabilities in the Doors subsystem of the kernel on Solaris 8–10 and OpenSolaris before snv_94. The flaws enable local users to cause a denial of service (process hang) and, potentially, bypass file permissions or gain kernel-context privileges. Doc...

Microsoft Windows privilege escalation

Code execution in kernel context...

Buffer overflow

Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service system crash and possibly execute arbitrary code in the kernel context via crafted arguments to 1 IOCTL functions in the Firewall module or 2 SSDT hook handler functions in the Registry module...

CVE-2008-0366

CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service system crash and possibly execute arbitrary code in the kernel context via crafted arguments...

CVE-2008-0365

Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service system crash and possibly execute arbitrary code in the kernel context via crafted arguments to 1 IOCTL functions in the Firewall module or 2 SSDT hook handler functions in the Registry module...

CVE-2008-0365

Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service system crash and possibly execute arbitrary code in the kernel context via crafted arguments to 1 IOCTL functions in the Firewall module or 2 SSDT hook handler functions in the Registry module...

CVE-2008-0366

CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service system crash and possibly execute arbitrary code in the kernel context via crafted arguments...