Security feature bypass

Unspecified vulnerability in the Virtual File System VFS in Sun Solaris 10 allows local users to cause a denial of service kernel memory consumption via unspecified vectors...

CVE-2007-5367

The CVE-2007-5367 entry concerns an unspecified vulnerability in the Virtual File System (VFS) of Sun Solaris 10. The initial description states local users can cause a denial of service by consuming kernel memory via unspecified vectors. The connected documents do not supply concrete technical d...

solaris-fifofs.txt

/ 10/2007: public release SPARC Solaris 8 without 109454-06 Solaris 9 without 117471-04 Solaris 10 without 127737-01 x86 Solaris 8 without 109455-06 Solaris 9 without 117472-04 Solaris 10 without 127738-01 Solaris fifofs IPEEK Kernel Memory Disclosure By qaaz / include include include include...

Solaris (SPARCx86) - fifofs I_PEEK Kernel Memory Disclosure

Solaris SPARCx86 - fifofs IPEEK Kernel Memory Disclosure / 10/2007: public release SPARC Solaris 8 without 109454-06 Solaris 9 without 117471-04 Solaris 10 without 127737-01 x86 Solaris 8 without 109455-06 Solaris 9 without 117472-04 Solaris 10 without 127738-01 Solaris fifofs IPEEK Kernel Memory...

Solaris (SPARC/x86) - fifofs I_PEEK Kernel Memory Disclosure

/ 10/2007: public release SPARC Solaris 8 without 109454-06 Solaris 9 without 117471-04 Solaris 10 without 127737-01 x86 Solaris 8 without 109455-06 Solaris 9 without 117472-04 Solaris 10 without 127738-01 Solaris fifofs IPEEK Kernel Memory Disclosure By qaaz / include include include include...

iDefense Security Advisory 10.02.07: Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability

Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability iDefense Security Advisory 10.02.07 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 02, 2007 I. BACKGROUND Solaris is a UNIX operating system developed by Sun Microsystems. More information can be found at the...

Code injection

The sndmemprocread function in sound/core/memalloc.c in the Advanced Linux Sound Architecture ALSA in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information kernel memory contents via a small count argument, as demonstrate...

kav/kis 6/7 vulnerabilities-vulnerability warning-the black bar safety net

Foreign famous Rootkit research site rootkit. com published an article: "Exploiting Kaspersky Antivirus 6.0-7.0" the author as EPXOFF/UG North,is famous for its anti-Rootkit tool Rootkit Unhooker,Process walker developers. The article said that Kaspersky Anti-virus software from 6. 0 to the curre...

CVE-2007-1865

The ipv6getsockoptsticky function in the kernel in Red Hat Enterprise Linux RHEL Beta 5.1.0 allows local users to obtain sensitive information kernel memory contents via a negative value of the len parameter. NOTE: this issue has been disputed in a bug comment, stating that "len is ignored when...

Buffer overflow

The ipv6getsockoptsticky function in the kernel in Red Hat Enterprise Linux RHEL Beta 5.1.0 allows local users to obtain sensitive information kernel memory contents via a negative value of the len parameter. NOTE: this issue has been disputed in a bug comment, stating that "len is ignored when...

CVE-2007-1865

The ipv6getsockoptsticky function in the kernel in Red Hat Enterprise Linux RHEL Beta 5.1.0 allows local users to obtain sensitive information kernel memory contents via a negative value of the len parameter. NOTE: this issue has been disputed in a bug comment, stating that "len is ignored when...

LTC36188-Don't allow the stack to grow into hugetlb reserved regions

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service OOPS via unspecified vectors...

Solaris 10 (SPARCx86) - sysinfo Kernel Memory Disclosure

Solaris 10 SPARCx86 - sysinfo Kernel Memory Disclosure / 07/2006: public release SPARC Solaris 10 without 118833-09 x86 Solaris 10 without 118855-06 Solaris sysinfo Kernel Memory Disclosure By qaaz / include include include include include include define PAGECOUNT 1000 int mainint argc, char argv...

USN-510-1: Linux kernel vulnerabilities

A flaw was discovered in the PPP over Ethernet implementation. Local attackers could manipulate ioctls and cause kernel memory consumption leading to a denial of service. CVE-2007-2525 An integer underflow was discovered in the cpuset filesystem. If mounted, local attackers could obtain kernel...

[Reversemode Advisory] CheckPoint ZoneLabs Vsdatant.sys multiple local privilege escalation vulnerabilities

CHECK POINT ZONE LABS PRODUCTS MULTIPLE LOCAL PRIVILEGE ESCALATION VULNERABILITIES Ruben Santamarta rubenatreversemodedotcom 08.20.2007 Affected Products: ZoneAlarm 7.0.362 Vsdatant.sys is exposed via “.vsdatant”. The permissive ACL allows everyone to invoke privileged IOCTLs implemented in the...

CVE-2007-4315

The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecified vectors, as demonstrated by "Purple Pill"...

CVE-2007-4315

The CVE-2007-4315 entry concerns the AMD ATI atidsmxx.sys driver (Windows Vista, version 3.0.502.0). The vulnerability description states a local privilege escalation via bypassing driver signing and writing to arbitrary kernel memory locations, enabling privilege gain through unspecified vectors...

CVE-2007-4315

The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecified vectors, as demonstrated by "Purple Pill"...

[USN-489-1] Linux kernel vulnerabilities

=========================================================== Ubuntu Security Notice USN-489-1 July 19, 2007 linux-source-2.6.15 vulnerability CVE-2006-4623, CVE-2006-7203, CVE-2007-0005, CVE-2007-1000, CVE-2007-1353, CVE-2007-1861, CVE-2007-2453, CVE-2007-2525, CVE-2007-2875, CVE-2007-2876,...

AVG antivirus privilege escalation

IOCTL 0x5348E004 allows unprivileged user to write kernel memory...