CVE-2002-1125

FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and earlier, including 1 asmon, 2 ascpu, 3 bubblemon, 4 wmmon, and 5 wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory...

CVE-2002-1125

FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and earlier, including 1 asmon, 2 ascpu, 3 bubblemon, 4 wmmon, and 5 wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory...

BubbleMon 1.x Kernel - Memory File Descriptor Leakage

BubbleMon 1.x Kernel - Memory File Descriptor Leakage source: https://www.securityfocus.com/bid/5714/info It has been reported that BubbleMon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to...

WMNet2 1.0 6 - Kernel Memory File Descriptor Leakage

source: https://www.securityfocus.com/bid/5719/info It has been reported that wmnet2 is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file descriptors for /dev/mem and...

ASCPU 0.60 Kernel - Memory File Descriptor Leakage

source: https://www.securityfocus.com/bid/5716/info It has been reported that ascpu is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file descriptors for /dev/mem and /dev/km...

WMNet2 1.0 6 - Kernel Memory File Descriptor Leakage

WMNet2 1.0 6 - Kernel Memory File Descriptor Leakage source: https://www.securityfocus.com/bid/5719/info It has been reported that wmnet2 is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to...

ASCPU 0.60 Kernel - Memory File Descriptor Leakage

ASCPU 0.60 Kernel - Memory File Descriptor Leakage source: https://www.securityfocus.com/bid/5716/info It has been reported that ascpu is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit...

WMMon 1.0 b2 - Memory Character File Open File Descriptor Read

WMMon 1.0 b2 - Memory Character File Open File Descriptor Read source: https://www.securityfocus.com/bid/5718/info It has been reported that wmmon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attacker...

FreeBSD-SA-02:39.libkvm

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:39.libkvm Security Advisory The FreeBSD Project Topic: Applications using libkvm may leak sensitive descriptors Category: core Module: libkvm Announced: 2002-09-16...

BubbleMon 1.x Kernel - Memory File Descriptor Leakage

source: https://www.securityfocus.com/bid/5714/info It has been reported that BubbleMon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file descriptors for /dev/mem and...

Microsoft Windows 2000 vulnerable to DoS via malformed packets sent to port 445/tcp

Overview The default configuration of Microsoft Windows 2000 does not properly handle malformed packets received on TCP port 445. As a result, Windows may cease to function normally upon receipt of malformed packets on this port. Description Microsoft LAN Manager LANMAN is enabled by default on...

WMMon 1.0 b2 - Memory Character File Open File Descriptor Read

source: https://www.securityfocus.com/bid/5718/info It has been reported that wmmon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file descriptors for /dev/mem and /dev/km...

CVE-2002-0973

The CVE-2002-0973 entry describes an integer signedness error in FreeBSD 4.6.1 RELEASE-p10 and earlier affecting the (1) accept, (2) getsockname, (3) getpeername system calls, and (4) vesa FBIO_GETPALETTE ioctl. This vulnerability can allow attackers to access sensitive kernel memory by supplying...

CVE-2002-0973

Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and earlier may allow attackers to access sensitive kernel memory via large negative values to the 1 accept, 2 getsockname, and 3 getpeername system calls, and the 4 vesa FBIOGETPALETTE ioctl...

Signed/unsigned conversion bug in OpenBSD select() call

By passing negative argument to select function it's possible to overwrite the fragment of kernel memory...

OpenBSD Security Advisory: Select Boundary Condition

OpenBSD Security Advisory adv.select Original Release Date: 2002-08-11 1. Systems affected: All versions of OpenBSD. 2. Overview: Insufficient boundary checks in the select call allow an attacker to overwrite kernel memory and execute arbitrary code in kernel context. Traditionally, the size...

CVE-2001-1166

linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that process...

Protection bypass for linux grsecurity

It's possible to modify kernel memory by using memory mapping...

Grsecurity Kernel Patch 1.9.4 (Linux Kernel) - Memory Protection

Grsecurity Kernel Patch 1.9.4 Linux Kernel - Memory Protection source: https://www.securityfocus.com/bid/4762/info An attacker with root access may be able to write to kernel memory in spite of the security patch provided by grsecurity. The patch operates by redirecting the write system call, whe...

KPMG-2002011: Windows 2000 microsoft-ds Denial of Service

-------------------------------------------------------------------- -=Windows 2000 microsoft-ds Denial of Service=- courtesy of KPMG Denmark BUG-ID: 2002011 Released: 17th Apr 2002 -------------------------------------------------------------------- Problem: ======== The default LANMAN registry...