CVE-2003-1062

Unknown vulnerability in the sysinfo system call for Solaris for SPARC 2.6 through 9, and Solaris for x86 2.6, 7, and 8, allows local users to read kernel memory...

CVE-2005-0180

Multiple integer signedness errors in the sgscsiioctl function in scsiioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copyfromuser and copytouser functions...

CVE-2005-0180

CVE-2005-0180 involves multiple signedness errors in sg_scsi_ioctl (scsi_ioctl.c) of Linux 2.6.x. The flaw lets a local user read or modify kernel memory by passing negative integers to the ioctl, bypassing a maximum-length check before copy_from_user/copy_to_user. Connected advisories (e.g., Man...

Multiple VMware ESX Server problems

Web interface format string bugs and protection bypass, kernel memory access...

CVE-2004-1066

The cmdline pseudofiles in 1 procfs on FreeBSD 4.8 through 5.3, and 2 linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service panic or read portions of kernel memory. NOTE: this candidate might be SPLIT into 2...

CVE-2004-1066

The cmdline pseudofiles in 1 procfs on FreeBSD 4.8 through 5.3, and 2 linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service panic or read portions of kernel memory. NOTE: this candidate might be SPLIT into 2...

CVE-2004-1151

Multiple buffer overflows in the 1 sys32nisyscall and 2 sys32vm86warning functions in sysia32.c for Linux 2.6.x may allow local attackers to modify kernel memory and gain privileges...

Fedora Core 2 : kernel-2.6.9-1.11_FC2 (2004-581)

A large change over previous kernels has been made. The 4G:4G memory split patch has been dropped, and Fedora kernels now revert back to the upstream 3G:1G kernel/userspace split. A number of security fixes are present in this update. CVE-2004-1016: Paul Starzetz discovered a buffer overflow...

CVE-2004-0919

The syscons CONSSCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via 1 negative coordinates or 2 large coordinates...

CVE-2004-0919

The syscons CONSSCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via 1 negative coordinates or 2 large coordinates...

CVE-2004-2339

Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel and read or write kernel memory via the NtSystemDebugControl function, which does not verify its pointer arguments. Note: this issue has been disputed, since...

PT-2004-3233 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000, XP, and possibly 2003 Description: The issue allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel and read or write kernel memory via the NtSystemDebugControl function,...

[SA13443] OpenBSD isakmpd Denial of Service Vulnerability

TITLE: OpenBSD isakmpd Denial of Service Vulnerability SECUNIA ADVISORY ID: SA13443 VERIFY ADVISORY: http://secunia.com/advisories/13443/ CRITICAL: Not critical IMPACT: DoS WHERE: Local system OPERATING SYSTEM: OpenBSD 3.x http://secunia.com/product/100/ DESCRIPTION: A vulnerability has been...

Debian top - Format String

source: https://www.securityfocus.com/bid/1895/info top is a program used to display system usage statistics in real time written by GoupSys Consulting but shipped by default as a core component with many operating systems. On BSD systems, top is installed setgid kmem so that it may read process...

Debian top - Format String

Debian top - Format String source: https://www.securityfocus.com/bid/1895/info top is a program used to display system usage statistics in real time written by GoupSys Consulting but shipped by default as a core component with many operating systems. On BSD systems, top is installed setgid kmem s...

CVE-2004-1151

Multiple buffer overflows in the 1 sys32nisyscall and 2 sys32vm86warning functions in sysia32.c for Linux 2.6.x may allow local attackers to modify kernel memory and gain privileges...

CVE-2004-0496

Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool...

CVE-2004-0602

The binary compatibility mode for FreeBSD 4.x and 5.x does not properly handle certain Linux system calls, which could allow local users to access kernel memory to gain privileges or cause a system panic...

CVE-2004-1066

The CVE-2004-1066 issue affects FreeBSD’s procfs (procfs(5)) and linprocfs (linprocfs(5)) on FreeBSD 4.x/5.x. The vulnerability arises from dereferencing a processor argument vector without proper validation when reading /proc/curproc/cmdline (procfs) or /proc/self/cmdline (linprocfs). Impact is ...

CVE-2004-1066

The cmdline pseudofiles in 1 procfs on FreeBSD 4.8 through 5.3, and 2 linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service panic or read portions of kernel memory. NOTE: this candidate might be SPLIT into 2...