3873 matches found
CVE-2005-0177
nlsascii.c in Linux before 2.6.8.1 uses an incorrect table size, which allows attackers to cause a denial of service kernel crash via a buffer overflow...
CVE-2005-0177
CVE-2005-0177 relates to the Linux kernel: nls_ascii.c incorrectly sized the translation table (128 vs 256), enabling a buffer overflow that can crash the kernel (DoS). Public references in Ubuntu/SUSE/NVD describe the same issue affecting Linux kernels up to 2.6.8.1, with fixes provided in newer...
CVE-2005-0449
The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service kernel crash or bypass firewall rules via crafted packets, which are not properly handled by the skbchecksumhelp function...
USN-82-1: Linux kernel vulnerabilities
CAN-2004-0176: Michael Kerrisk noticed an insufficient permission checking in the shmctl function. Any process was permitted to lock/unlock any System V shared memory segment that fell within the the RLIMITMEMLOCK limit that is the maximum size of shared memory that unprivileged users can acquire...
CVE-2004-1069
Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service kernel crash via SOCKSEQPACKET unix domain sockets, which are not properly handled in the sockdgramsendmsg function...
CVE-2004-1069
Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service kernel crash via SOCKSEQPACKET unix domain sockets, which are not properly handled in the sockdgramsendmsg function...
CVE-2004-1323
CVE-2004-1323 affects NetBSD prior to 2.0. The issue arises in the compat subsystem where multiple syscalls (notably xxx_sys_kill and xxx_sys_sigaction) can be misused by passing a large signal number, potentially triggering a kernel crash and denial of service. The available documents consistent...
CVE-2004-1305
CVE-2004-1305 refers to a denial-of-service vulnerability in the Windows kernel related to how animated cursor and icon formats are processed. The weakness, described in MS05-002 and related CERT advisories, can be triggered by specially crafted cursor/icon/ani files viewed via Web pages or email...
CVE-2004-1305
The Windows Animated Cursor ANI capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via 1 the frame number set to zero, which causes an invalid memory address to be used and leads to a kernel crash, or 2...
CVE-2004-1323
Multiple syscalls in the compat subsystem for NetBSD before 2.0 allow local users to cause a denial of service kernel crash via a large signal number to 1 xxxsyskill, 2 xxxsyssigaction, and possibly other translation functions...
CVE-2004-1334
Integer overflow in the ipoptionsget function in the Linux kernel before 2.6.10 allows local users to cause a denial of service kernel crash via a cmsglen that contains a -1, which leads to a buffer overflow...
PT-2004-2256 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.10 Description: The issue is related to an integer overflow in the ip options get function, which can be exploited by local users to cause a denial of service, resulting in a kernel crash. This is achieved b...
Kerio Personal Firewall 2.1.x4.x - Local Denial of Service
Kerio Personal Firewall 2.1.x4.x - Local Denial of Service source: https://www.securityfocus.com/bid/11859/info It is reported that the Kerio Personal Firewall KPF driver does not sufficiently sanitize API parameters that are received from API's that are hooked by KPF. When the KPF API hook handl...
Kerio Personal Firewall 2.1.x/4.x - Local Denial of Service
source: https://www.securityfocus.com/bid/11859/info It is reported that the Kerio Personal Firewall KPF driver does not sufficiently sanitize API parameters that are received from API's that are hooked by KPF. When the KPF API hook handles certain parameter data it will fail. Reports indicate th...
CVE-2004-1069
CVE-2004-1069 describes a race condition affecting SELinux-enabled Linux kernels in the 2.6.x series (through 2.6.9) when handling AF_UNIX network packets. Local attackers could cause a kernel DoS (kernel crash) via SOCK_SEQPACKET Unix domain sockets due to improper handling in sock_dgram_sendmsg...
CVE-2004-1069
Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service kernel crash via SOCKSEQPACKET unix domain sockets, which are not properly handled in the sockdgramsendmsg function...
Advisory 14/2004: Linux 2.x smbfs multiple remote vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 e-matters GmbH www.e-matters.de -= Security Advisory =- Advisory: Linux 2.x smbfs multiple remote vulnerabilities Release Date: 2004/11/17 Last Modified: 2004/11/17 Author: Stefan Esser [email protected] Application: Linux 2.4 = 2.4.27 Linux 2.6 =...
Linux iptables logging DoS
integer overflow causes kernel crash if logging is enabled...
Mandrake Linux Security Advisory : kernel (MDKSA-2004:062)
A vulnerability in the e1000 driver for the Linux kernel 2.4.26 and earlier was discovered by Chris Wright. The e1000 driver does not properly reset memory or restrict the maximum length of a data structure, which can allow a local user to read portions of kernel memory CVE-2004-0535. A...
Security Advisory : FreeBSD local DoS
Security Advisory : FreeBSD local DoS Systems affected: FreeBSD 5.1-RELEASE/Alpha. Other versions are probably vulnerable. FreeBSD 5.1-RELEASE/IA32 is not vulnerable. Not sure about other FreeBSD/arch but they could be vulnerable too. Risk: low Date: 23 June 2004 Legal notice: 1. This Advisory is...