solaris-memleak.txt

/ $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp $ raptorpeek.c - Solaris fifofs IPEEK kernel memory leak Copyright c 2007 Marco Ivaldi Lame integer signedness error in FIFO filesystems named pipes on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory...

Panda Security cpoint.sys Kernel Memory Corruption

A vulnerability in the 'Cpoint.sys' kernel driver shipped with Panda Antivirus+ Firewall 2008 and Panda Internet Security 2008 fails to sufficiently validate IOCTL requests before processing them. A local attacker may be able to leverage this issue to execute arbitrary code with kernel privileges...

Solaris 8/9/10 - 'fifofs I_PEEK' Local Kernel Memory Leak

/ $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp $ raptorpeek.c - Solaris fifofs IPEEK kernel memory leak Copyright c 2007 Marco Ivaldi Lame integer signedness error in FIFO filesystems named pipes on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory...

Panda Internet SecurityAntiVirus+Firewall 2008 - CPoint.sys Memory Corruption

Panda Internet SecurityAntiVirus+Firewall 2008 - CPoint.sys Memory Corruption source: https://www.securityfocus.com/bid/28150/info Panda Internet Security/Antivirus+Firewall 2008 is prone to a vulnerability that allows local attackers to corrupt kernel memory. This vulnerability occurs because th...

Panda Internet Security/AntiVirus+Firewall 2008 - 'CPoint.sys' Memory Corruption

source: https://www.securityfocus.com/bid/28150/info Panda Internet Security/Antivirus+Firewall 2008 is prone to a vulnerability that allows local attackers to corrupt kernel memory. This vulnerability occurs because the application fails to sufficiently validate IOCTL requests. Local users may...

DSA-1503-2 kernel-source-2.4.27 - several vulnerabilities

Bulletin has no description...

Memory corruption

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

Debian DSA-1503-1 : kernel-source-2.4.27 - several vulnerabilities

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2004-2731 infamous41md reported multiple integer...

Debian DSA-1505-1 : alsa-driver - kernel memory leak

Takashi Iwai supplied a fix for a memory leak in the sndpagealloc module. Local users could exploit this issue to obtain sensitive information from the kernel CVE-2007-4571 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

DESlock+ <= 3.2.6 (list) Local Kernel Memory Leak PoC

No description provided by source. / deslock-list-leak.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel mem leak POC by mu-b - Fri 21 Dec 2007 - Tested on: DLMFENC.sys 1.0.0.26 kernel pool memory leak by continually allocating link list structures and never freeing them. Th...

DESlock+ 3.2.6 - LIST Local Kernel Memory Leak

DESlock+ 3.2.6 - LIST Local Kernel Memory Leak / deslock-list-leak.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; static void...

DESlock+ <= 3.2.6 (list) Local Kernel Memory Leak PoC

Exploit for unknown platform in category local exploits ===================================================== DESlock+ DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void...

DESlock+ &lt; 3.2.6 - &#039;LIST&#039; Local Kernel Memory Leak

/ deslock-list-leak.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; static void xormaskreq struct ioctlreq req DWORD i, pid; PCHAR ptr...

Debian Security Advisory DSA 1494-1 (linux-2.6)

The remote host is missing an update to linux-2.6 announced via advisory DSA 1494-1. OpenVAS Vulnerability Test $Id: deb14941.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1494-1 linux-2.6 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Debian Security Advisory DSA 1494-1 (linux-2.6)

The remote host is missing an update to linux-2.6 announced via advisory DSA 1494-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Cross site request forgery (csrf)

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request...

CVE-2008-0779

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request...

CVE-2008-0779

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request...