FreeBSD-SA-03:17.procfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:17.procfs Security Advisory The FreeBSD Project Topic: kernel memory disclosure via procfs Category: core Module: sys Announced: 2003-10-03 Credits: Joost Pol...

Multiple NetBSD bugs

DoS, kernel memory reading...

*BSD ibcs2 information leak

statfs call with large argument length allows to read kernel memory content...

NetBSD Security Advisory 2003-013: Kernel memory disclosure via ibcs2

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-013 ================================= Topic: Kernel memory disclosure via ibcs2 Version: NetBSD-current: source prior to August 7, 2002 NetBSD 1.6.1: not affected NetBSD 1.6: not affected NetBSD-1.5.3: affected NetBSD-1.5.2: affecte...

NetBSD Security Advisory 2003-014: Insufficient argument checking in sysctl(2)

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-014 ================================= Topic: Insufficient argument checking in sysctl2 Version: NetBSD-current: source prior to August 25, 2003 NetBSD 1.6.1: affected NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affecte...

OpenBSD integer overflow

integer overflow in semget allows root to write kernel memory...

CVE-2003-0642

WatchGuard ServerLock for Windows 2000 before SL 2.0.4 allows local users to access kernel memory via a symlink attack on \Device\PhysicalMemory...

Kernel memory disclosure via ibcs2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:10.ibcs2 Security Advisory The FreeBSD Project Topic: Kernel memory disclosure via ibcs2 Category: core Module: sys Announced: 2003-08-10 Credits: David Rhodus...

FreeBSD-SA-03:10.ibcs2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:10.ibcs2 Security Advisory The FreeBSD Project Topic: Kernel memory disclosure via ibcs2 Category: core Module: sys Announced: 2003-08-10 Credits: David Rhodus...

CVE-2003-0642

WatchGuard ServerLock for Windows 2000 before SL 2.0.4 allows local users to access kernel memory via a symlink attack on \Device\PhysicalMemory...

Linux Kernel IP Stack ICMP Error Response Arbitrary Memory Information Disclosure

The remote host is vulnerable to an 'icmp leak' of potentially confidential data. That is, when the host generates an ICMP error packet other than 'destination unreachable', the error packet is supposed to only contain the original message or a portion of the original message. Due to a bug in the...

NuxAcid#002 - Buffer Overflow in UpClient

+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= NUX-ACID ADVISORY 002 Advisory name : Local Buffer Overflow in upclient Risk : Medium exploit grants kmem rights Date : 27.05.2003 Application : upclient Versions Vulnerable : UpClient 5.0b7, possible others Vendor : Carst...

CVE-2003-1072

Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service kernel memory consumption...

CVE-2002-1420

Integer signedness error in select on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data copying operation...

CVE-2003-0001

The CVE-2003-0001 issue, known as Etherleak, is an information-disclosure vulnerability caused by NIC/device drivers not padding Ethernet frames with null bytes, allowing an adjacent attacker to glimpse memory content from previously transmitted packets. Connected documents show this vulnerabilit...

Etherleak: Ethernet frame padding information leakage (A010603-1)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Etherleak: Ethernet frame padding information leakage Release Date: 01/06/2003 Application: Ethernet device driver software Platform: Multiple Severity: Information disclosure Authors: Ofir...

CVE-2002-2127

Integrity Protection Driver IPD 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink...

CVE-2002-2180

The setitimer2 system call in OpenBSD 2.0 through 3.1 does not properly check certain arguments, which allows local users to write to kernel memory and possibly gain root privileges, possibly via an integer signedness error...

Microsoft Security Bulletin MS02-063: Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks (Q329834)

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks Q329834 Date: 30 October 2002 Software: Windows 2000, Windows XP Impact: Denial of Service Max Risk:...

CVE-2002-0973

Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and earlier may allow attackers to access sensitive kernel memory via large negative values to the 1 accept, 2 getsockname, and 3 getpeername system calls, and the 4 vesa FBIOGETPALETTE ioctl...