Microsoft SMB NT Trans2 Request Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to trigger a denial of service condition on vulnerable installations of Microsoft Windows; remote code execution is also theoretically possible. User interaction is not required to exploit this vulnerability. The specific flaw exists in the processing of...

kernel security update

CentOS Errata and Security Advisory CESA-2008:0972 Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel...

Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit

No description provided by source. include sys/socket.h include sys/un.h include unistd.h include assert.h include err.h include stdlib.h static int ownchildint us int pid; int s2; struct msghdr mh; char crap1024; struct iovec iov; struct cmsghdr c; int fd; int rc; pid = fork; if pid == -1 err1,...

Linux Kernel < 2.4.36.9/2.6.27.5 - Unix Sockets Local Kernel Panic (Denial of Service)

include include include include include include static int ownchildint us int pid; int s2; struct msghdr mh; char crap1024; struct iovec iov; struct cmsghdr c; int fd; int rc; pid = fork; if pid == -1 err1, "fork"; if pid closeus1; return pid; closeus0; memset&mh, 0, sizeofmh; iov.iovbase = "a";...

Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit

Exploit for linux platform in category dos / poc ======================================================================== Linux Kernel include include include include include static int ownchildint us int pid; int s2; struct msghdr mh; char crap1024; struct iovec iov; struct cmsghdr c; int fd; in...

Linux Kernel 2.4.36.92.6.27.5 - Unix Sockets Local Kernel Panic (Denial of Service)

Linux Kernel 2.4.36.92.6.27.5 - Unix Sockets Local Kernel Panic Denial of Service include include include include include include static int ownchildint us int pid; int s2; struct msghdr mh; char crap1024; struct iovec iov; struct cmsghdr c; int fd; int rc; pid = fork; if pid == -1 err1, "fork"; ...

openSUSE 10 Security Update : kernel (kernel-5700)

The openSUSE 10.3 kernel was update to 2.6.22.19. This includes bugs and security fixes. CVE-2008-4576: Fixed a crash in SCTP INIT-ACK, on mismatch between SCTP AUTH availability. This might be exploited remotely for a denial of service crash attack. CVE-2008-3528: The ext234 filesystem code fail...

CVE-2008-4160

CVE-2008-4160 affects the UFS module in Solaris 8–10 and OpenSolaris. The vulnerability is a local denial of service caused by a NULL pointer dereference in the Solaris ACL implementation, leading to a kernel panic. Connected advisories reference Solaris patch updates: 139483-05 (SunOS 5.10 SPARC...

CVE-2007-0001

The file watch implementation in the audit subsystem auditctl -w in the Red Hat Enterprise Linux RHEL 4 kernel 2.6.9 allows local users to cause a denial of service kernel panic by replacing a watched file, which does not cause the watch on the old inode to be dropped...

Debian DSA-1636-1 : linux-2.6.24 - denial of service/information leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or leak sensitive data. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3272 Tobias Klein reported a locally exploitable data leak in the...

FreeBSD Security Advisory (FreeBSD-SA-06:10.nfs.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:10.nfs.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Cisco Security Advisory: Cisco Intrusion Prevention System Jumbo Frame Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Intrusion Prevention System Jumbo Frame Denial of Service Advisory ID: cisco-sa-20080618-ips Revision 1.0 For Public Release 2008 June 18 1600 UTC GMT +--------------------------------------------------------------------...

RHEL 4 : kernel (RHSA-2008:0237)

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

IPSec ESP kernel panics

The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service crash via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV...

kernel asynchronous IO on a FIFO kernel panic

Linux kernel before 2.4.21 allows local users to cause a denial of service kernel panic via asynchronous input or output on a FIFO special file...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

CVE-2008-1514

arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2.6.27-rc6, on s390 platforms allows local users to cause a denial of service kernel panic via the user-area-padding test from the ptrace testsuite in 31-bit mode, which triggers an invalid dereference...

CVE-2008-1514

CVE-2008-1514 affects the Linux kernel on IBM System z (s390) where a local user can cause a kernel panic via the 31‑bit ptrace padding test. The issue is in arch/s390/kernel/ptrace.c and occurs in kernels from 2.6.9 and in versions older than 2.6.27-rc6. The vulnerability arises from an invalid ...

CVE-2008-1471

The CVE-2008-1471 issue affects Panda Security products using the cpoint.sys kernel driver (Panda Internet Security 2008 and Antivirus+ Firewall 2008). A crafted IOCTL request can trigger an out-of-bounds write in kernel memory, enabling a local attacker to cause a denial of service (system crash...

CVE-2008-1471

The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service system crash or kernel panic, overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory...