6481 matches found
[Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-04:17.procfs
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:17.procfs Security Advisory The FreeBSD Project Topic: Kernel memory disclosure in procfs and linprocfs Category: core Module: sys Announced: 2004-12-01 Credit...
FreeBSD procfs information leak
Kernel memory disclosure, DoS...
[SA13352] FreeBSD procfs/linprocfs Process Argument Vector Handling Vulnerability
TITLE: FreeBSD procfs/linprocfs Process Argument Vector Handling Vulnerability SECUNIA ADVISORY ID: SA13352 VERIFY ADVISORY: http://secunia.com/advisories/13352/ CRITICAL: Less critical IMPACT: Exposure of system information, Exposure of sensitive information, DoS WHERE: Local system OPERATING...
FreeBSD-SA-04:17.procfs
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:17.procfs Security Advisory The FreeBSD Project Topic: Kernel memory disclosure in procfs and linprocfs Category: core Module: sys Announced: 2004-12-01...
CVE-2004-0415
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...
CVE-2004-0415
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...
Advisory 14/2004: Linux 2.x smbfs multiple remote vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 e-matters GmbH www.e-matters.de -= Security Advisory =- Advisory: Linux 2.x smbfs multiple remote vulnerabilities Release Date: 2004/11/17 Last Modified: 2004/11/17 Author: Stefan Esser [email protected] Application: Linux 2.4 = 2.4.27 Linux 2.6 =...
CVE-2004-0208
The Virtual DOS Machine VDM subsystem of Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to access kernel memory and gain privileges via a malicious program that modified some system structures in a way that is not properly validated by privileged...
CVE-2004-0208
CVE-2004-0208 is a local privilege-elevation vulnerability in the Windows kernel/VDM subsystem. The Windows Virtual DOS Machine (VDM) component could allow an authenticated, locally logged-on attacker to gain kernel privileges by executing code in memory areas not properly validated when handling...
FreeBSD syscons fails to properly validate input in "CONS_SCRSHOT" ioctl
Overview The FreeBSD syscons CONSSCRSHOT ioctl does not sufficiently validate input for the function's arguments. This may cause the disclosure of arbitrary portions of kernel memory that may contain sensitive information. Description Syscons is the default console driver for FreeBSD. It provides...
FreeBSD Security Advisory FreeBSD-SA-04:15.syscons
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:15.syscons Security Advisory The FreeBSD Project Topic: Boundary checking errors in syscons Category: core Module: sysdevsyscons Announced: 2004-10-04 Credits:...
FreeBSD-SA-04:15.syscons
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:15.syscons Security Advisory The FreeBSD Project Topic: Boundary checking errors in syscons Category: core Module: sysdevsyscons Announced: 2004-10-04 Credits:...
FreeBSD : SA-04:15.syscons
The remote host is running a version of FreeBSD which contains a flaw in the syscons console driver. There are boundary errors in the CONSSCRSHOT ioctls that may allow a local attacker to read portions of the kernel memory, which may contain sensitive information. C Tenable Network Security, Inc...
Debian DSA-442-1 : linux-kernel-2.4.17-s390 - several vulnerabilities
Several security related problems have been fixed in the Linux kernel 2.4.17 used for the S/390 architecture, mostly by backporting fixes from 2.4.18 and incorporating recent security fixes. The corrections are listed below with the identification from the Common Vulnerabilities and Exposures CVE...
CVE-2004-0114
The CVE-2004-0114 issue is a reference-count bug in SHMAT (System V Shared Memory) on FreeBSD/NetBSD/OpenBSD where shmat(2) increments the vm_object reference count and then calls vm_map_find; if vm_map_find fails, the reference count is not decremented. This can allow local attackers to gain rea...
CVE-2002-1420
Integer signedness error in select on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data copying operation...
CVE-2002-1420
OpenBSD 3.1 and earlier are affected by a local privilege escalation due to an integer signedness error in select(2): a negative size value passes the boundary check as signed but is then used as unsigned during a data copy, allowing a local user to overwrite kernel memory. Impact: local code/ker...
CVE-2004-0114
The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vmmapfind function fails, which could allow local users to gain read or...
CVE-2001-1391
CVE-2001-1391 is an off-by-one vulnerability in the CPIA driver of the Linux kernel prior to 2.2.19 that allows a local user to write into kernel memory. The issue is documented in multiple advisories (Mandrake MDKSA-2001:037, Debian DSA-047-1) and is described as a problem in the CPIA driver’s b...
Mandrake Linux Security Advisory : kernel (MDKSA-2004:087)
A race condition was discovered in the 64bit file offset handling by Paul Starzetz from iSEC. The file offset pointer fpos is changed during reading, writing, and seeking through a file in order to point to the current position of a file. The value conversion between both the 32bit and 64bit API ...