CVE-2007-2529

Integer signedness error in the acl facl system call in Solaris 10 before 20070507 allows local users to cause a denial of service kernel panic and possibly gain privileges via a certain argument, related to ACESETACL...

CVE-2007-2529

CVE-2007-2529 affects Solaris 10 (before 20070507) with an integer signedness error in the acl (facl) system call. The underlying issue is a signedness bug in ACE_SETACL handling, enabling local users to trigger a denial of service (kernel panic) and potentially escalate privileges. Publicly docu...

CVE-2007-1861

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

CVE-2007-1861

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

CVE-2007-1861

CVE-2007-1861 affects the Linux kernel prior to 2.6.20.8. The nl_fib_lookup function in net/ipv4/fib_frontend.c can be triggered by NETLINK_FIB_LOOKUP replies, causing infinite recursion and a stack overflow that leads to a kernel panic (denial of service). Open sources in the connected data conf...

CVE-2007-1861

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

Mandrake Linux Security Advisory : madwifi-source (MDKSA-2007:082)

The athratesample function in the athrate/sample/sample.c sample code in MadWifi before 0.9.3 allows remote attackers to cause a denial of service failed KASSERT and system crash by moving a connected system to a location with low signal strength, and possibly other vectors related to a race...

CVE-2006-7177

MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service system crash via unspecified vectors that lead to a kernel panic in the ieee80211input function, related to "packets coming from a 'malicious' WinXP system."...

CVE-2006-7177

MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service system crash via unspecified vectors that lead to a kernel panic in the ieee80211input function, related to "packets coming from a 'malicious' WinXP system."...

CVE-2006-7177

MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service system crash via unspecified vectors that lead to a kernel panic in the ieee80211input function, related to "packets coming from a 'malicious' WinXP system."...

Code injection

GlowWorm FW before 1.5.3b4 allows remote attackers to cause a denial of service kernel panic via certain DNS responses that trigger infinite recursion in TrueDNS packet parsing, as originally observed with certain login.yahoo.com responses...

CVE-2007-1653

GlowWorm FW before 1.5.3b4 allows remote attackers to cause a denial of service kernel panic via certain DNS responses that trigger infinite recursion in TrueDNS packet parsing, as originally observed with certain login.yahoo.com responses...

CVE-2007-1653

Affected product: GlowWorm FW. Vulnerable component/function: DNS packet parsing in TrueDNS. Root cause: DNS responses triggering infinite recursion leading to a kernel panic. Impact: Denial of service via remote attackers over network. Observed with certain responses (e.g., login.yahoo.com); no ...

CVE-2007-1653

GlowWorm FW before 1.5.3b4 allows remote attackers to cause a denial of service kernel panic via certain DNS responses that trigger infinite recursion in TrueDNS packet parsing, as originally observed with certain login.yahoo.com responses...

CVE-2007-0001

The file watch implementation in the audit subsystem auditctl -w in the Red Hat Enterprise Linux RHEL 4 kernel 2.6.9 allows local users to cause a denial of service kernel panic by replacing a watched file, which does not cause the watch on the old inode to be dropped...

security flaw

The file watch implementation in the audit subsystem auditctl -w in the Red Hat Enterprise Linux RHEL 4 kernel 2.6.9 allows local users to cause a denial of service kernel panic by replacing a watched file, which does not cause the watch on the old inode to be dropped...

Apple Airport Extreme fails to properly process 802.11 frames

Overview A vulnerability exists in the Apple AirPort Extreme wireless driver that may allow an attacker to crash a vulnerable system. Description The Apple AirPort Extreme adapter is an 802.11g compatible wireless adapter used in Apple OS X laptops and desktops. A flaw exists in the way AirPort...

Design/Logic Flaw

The dohfstruncate function in Mac OS X 10.4.8 allows context-dependent attackers to cause a denial of service kernel panic via a crafted HFS+ filesystem in a DMG image, which causes an access of an invalid vnode structure during file removal...

CVE-2007-0318

The CVE-2007-0318 entry affects Mac OS X 10.4.8 and arises from the do_hfs_truncate function. A crafted HFS+ filesystem in a DMG image can trigger an access of an invalid vnode structure during file removal, leading to a kernel panic (DoS). No explicit remediation is provided in the supplied docu...

Integer overflow

Integer overflow in the byteswapsbin function in bsd/ufs/ufs/ufsbyteorder.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service kernel panic by mounting a crafted Unix File System UFS DMG image, which triggers an invalid pointer dereference...