Memory corruption

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

Debian DSA-1503-1 : kernel-source-2.4.27 - several vulnerabilities

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2004-2731 infamous41md reported multiple integer...

Debian DSA-1505-1 : alsa-driver - kernel memory leak

Takashi Iwai supplied a fix for a memory leak in the sndpagealloc module. Local users could exploit this issue to obtain sensitive information from the kernel CVE-2007-4571 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

DESlock+ <= 3.2.6 (list) Local Kernel Memory Leak PoC

No description provided by source. / deslock-list-leak.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel mem leak POC by mu-b - Fri 21 Dec 2007 - Tested on: DLMFENC.sys 1.0.0.26 kernel pool memory leak by continually allocating link list structures and never freeing them. Th...

DESlock+ <= 3.2.6 (list) Local Kernel Memory Leak PoC

Exploit for unknown platform in category local exploits ===================================================== DESlock+ DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void...

DESlock+ 3.2.6 - LIST Local Kernel Memory Leak

DESlock+ 3.2.6 - LIST Local Kernel Memory Leak / deslock-list-leak.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; static void...

DESlock+ &lt; 3.2.6 - &#039;LIST&#039; Local Kernel Memory Leak

/ deslock-list-leak.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; static void xormaskreq struct ioctlreq req DWORD i, pid; PCHAR ptr...

Debian Security Advisory DSA 1494-1 (linux-2.6)

The remote host is missing an update to linux-2.6 announced via advisory DSA 1494-1. OpenVAS Vulnerability Test $Id: deb14941.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1494-1 linux-2.6 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Debian Security Advisory DSA 1494-1 (linux-2.6)

The remote host is missing an update to linux-2.6 announced via advisory DSA 1494-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Cross site request forgery (csrf)

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request...

CVE-2008-0779

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request...

CVE-2008-0779

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request...

CVE-2008-0779

The CVE-2008-0779 entry describes a local privilege-escalation flaw in the fortimon.sys device driver of Fortinet FortiClient Host Security (versions up to 3.0 MR5 Patch 3 and earlier). The vulnerability arises from improper initialization of the Driver’s DeviceExtension, enabling a local user to...

Null pointer dereference

The copyfromusermmapsem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations...

Null pointer dereference

The vmsplicetouser function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations...

CVE-2008-0010

The copyfromusermmapsem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations...

Debian DSA-1494-2 : linux-2.6 - missing access checks

The vmsplice system call did not properly verify address arguments passed by user space processes, which allowed local attackers to overwrite arbitrary kernel memory, gaining root privileges CVE-2008-0010, CVE-2008-0600 . In the vserver-enabled kernels, a missing access check on certain symlinks ...

DSA-1494-1 linux-2.6 - privilege escalation

Bulletin has no description...

CVE-2008-0007

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset...