OpenBSD 2.x/3.x - Local Malformed Binary Execution Denial of Service

// source: https://www.securityfocus.com/bid/8978/info The OpenBSD team has fixed a vulnerability in the OpenBSD kernel when handling certain executables. It appears that the problem lies in the lack of specific sanity checks on binary header values. As a result, a user who constructs a malformed...

CVE-2003-1061

Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service kernel panic, as demonstrated via the namefs function, pipe, and certain STREAMS routines...

CVE-2003-0576

Unknown vulnerability in the NFS daemon nfsd in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service kernel panic via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619...

CVE-2003-0619

Integer signedness error in the decodefh function of nfs3xdr.c in Linux kernel before 2.4.21 allows remote attackers to cause a denial of service kernel panic via a negative size value within XDR data of an NFSv3 procedure call...

CVE-2003-0576

CVE-2003-0576 is a remote DoS in SGI IRIX 6.5.x via the NFS daemon (nfsd) stemming from XDR decoding errors that cause kernel panics. The SGI advisory (CAN-2003-0576) states IRIX 6.5.19f and earlier are affected and recommends upgrading to IRIX 6.5.20 or applying the listed patches. The connected...

CVE-2003-0576

Unknown vulnerability in the NFS daemon nfsd in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service kernel panic via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619...

Denial of Service Vulnerability in NFS on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Denial of Service Vulnerability in NFS XDR decoding Number : 20030801-01-P Date : August 13, 2003 Reference: CVE 2003-0576 Reference: SGI BUG 894659 Fixed in : IRIX 6.5.20 or patches 5229, 5230, 5240, 5241, 5227, 5228 SGI provides...

CVE-2003-0653

The OSI networking kernel sys/netiso in NetBSD 1.6.1 and earlier does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote attackers to cause a denial of service kernel panic or crash via certain OSI packets...

CVE-2003-0619

Integer signedness error in the decodefh function of nfs3xdr.c in Linux kernel before 2.4.21 allows remote attackers to cause a denial of service kernel panic via a negative size value within XDR data of an NFSv3 procedure call...

Linux 2.4 NFSv3 knfsd Malformed GETATTR Request Remote DoS

The remote host is running knfsd, a kernel NFS daemon. There is a vulnerability in this version that may allow an attacker to cause a kernel panic on the remote host by sending a malformed GETATTR request with an invalid length field. C Tenable Network Security, Inc. include"compat.inc"; if...

Remote Linux Kernel < 2.4.21 DoS in XDR routine.

Hello all, I have discovered a signed/unsigned issue in a routine responsible for demarshalling XDR data for NFSv3 procedure calls. As far as I can tell, this bug has existed since NFSv3 support was integrated. It has been silently fixed in 2.4.21. The bug is in the decodefh routine of...

CVE-2003-1064

Solaris 8 with IPv6 enabled allows remote attackers to cause a denial of service kernel panic via a crafted IPv6 packet...

SGI IRIX vulnerable to DoS when user space program calls the PIOCSWATCH ioctl() function

Overview A vulnerability in the SGI IRIX PIOCSWATCH ioctl function may allow local attackers to crash the operating system. Description SGI states that PIOCSWATCH ioctl "establishes or clears a set of watched areas in the traced process." According to SGI Security Advisory 20030603-01-P, a local...

Nokia GGSN (IP650 Based) DoS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake Inc. www.atstake.com Security Advisory Advisory Name: Nokia GGSN IP650 Based DoS Release Date: 06/09/2003 Application: Nokia GGSN IP650 Based Platform: Nokia GGSN IP650 Based Severity: An attacker is able to cause GGSN to kernel panic Authors:...

CVE-2002-0831

Technical details about CVE-2002-0831 are not publicly available in the provided documents. Monitor for updates.

CVE-2002-1490

NetBSD 1.4 through 1.6 beta allows local users to cause a denial of service kernel panic via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by other processes...

CVE-2002-0831

The kqueue mechanism in FreeBSD 4.3 through 4.6 STABLE allows local users to cause a denial of service kernel panic via a pipe call in which one end is terminated and an EVFILTWRITE filter is registered for the other end...

CVE-2002-1674

procfs on FreeBSD before 4.5 allows local users to cause a denial of service kernel panic by removing a file that the fstatfs function refers to...

CVE-2002-1912

SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, which allows remote attackers to cause a denial of service null pointer exception and kernel panic via a large number of packets...

CVE-2002-2197

Unknown vulnerability in Sun Solaris 8.0 allows local users to cause a denial of service kernel panic via a program that uses /dev/poll, triggering a NULL pointer dereference...