4815 matches found
CVE-2007-1653
Affected product: GlowWorm FW. Vulnerable component/function: DNS packet parsing in TrueDNS. Root cause: DNS responses triggering infinite recursion leading to a kernel panic. Impact: Denial of service via remote attackers over network. Observed with certain responses (e.g., login.yahoo.com); no ...
CVE-2007-1653
GlowWorm FW before 1.5.3b4 allows remote attackers to cause a denial of service kernel panic via certain DNS responses that trigger infinite recursion in TrueDNS packet parsing, as originally observed with certain login.yahoo.com responses...
CVE-2007-0001
The file watch implementation in the audit subsystem auditctl -w in the Red Hat Enterprise Linux RHEL 4 kernel 2.6.9 allows local users to cause a denial of service kernel panic by replacing a watched file, which does not cause the watch on the old inode to be dropped...
security flaw
The file watch implementation in the audit subsystem auditctl -w in the Red Hat Enterprise Linux RHEL 4 kernel 2.6.9 allows local users to cause a denial of service kernel panic by replacing a watched file, which does not cause the watch on the old inode to be dropped...
Apple Airport Extreme fails to properly process 802.11 frames
Overview A vulnerability exists in the Apple AirPort Extreme wireless driver that may allow an attacker to crash a vulnerable system. Description The Apple AirPort Extreme adapter is an 802.11g compatible wireless adapter used in Apple OS X laptops and desktops. A flaw exists in the way AirPort...
Design/Logic Flaw
The dohfstruncate function in Mac OS X 10.4.8 allows context-dependent attackers to cause a denial of service kernel panic via a crafted HFS+ filesystem in a DMG image, which causes an access of an invalid vnode structure during file removal...
CVE-2007-0318
The CVE-2007-0318 entry affects Mac OS X 10.4.8 and arises from the do_hfs_truncate function. A crafted HFS+ filesystem in a DMG image can trigger an access of an invalid vnode structure during file removal, leading to a kernel panic (DoS). No explicit remediation is provided in the supplied docu...
Integer overflow
Integer overflow in the byteswapsbin function in bsd/ufs/ufs/ufsbyteorder.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service kernel panic by mounting a crafted Unix File System UFS DMG image, which triggers an invalid pointer dereference...
CVE-2007-0299
Integer overflow in the byteswapsbin function in bsd/ufs/ufs/ufsbyteorder.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service kernel panic by mounting a crafted Unix File System UFS DMG image, which triggers an invalid pointer dereference...
CVE-2007-0299
The CVE-2007-0299 vulnerability affects Apple Mac OS X 10.4.8 where the integer overflow in the byte_swap_sbin() function of the UFS DMG handling (ufs_byte_order.c) can be triggered by mounting a crafted DMG image. This may cause an invalid pointer dereference leading to a denial-of-service (kern...
Cross site scripting
The ufslookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service kernel panic and possibly corrupt other filesystems by mounting a crafted UNIX File System UFS DMG image that contains a corrupted directory entry struct direct, related to the...
CVE-2007-0267
The CVE-2007-0267 issue affects Mac OS X 10.4.8 and FreeBSD 6.1 kernels, where the ufs_lookup function can be triggered to cause a denial of service (kernel panic) and potentially corrupt other filesystems by mounting a crafted UFS DMG image containing a corrupted directory entry (struct direct) ...
CVE-2007-0236
Double free vulnerability in the ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service kernel panic and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow...
Double free
Double free vulnerability in the ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service kernel panic and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow...
CVE-2007-0236
Double free vulnerability in the ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service kernel panic and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow...
MOAB-13-01-2007: Apple DMG HFS+ do_hfs_truncate() Denial of Service Vulnerability
Summary A specially crafted HFS+ filesystem in a DMG image can cause the dohfstruncate function to panic the kernel denial of service, when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+...
MOAB-12-01-2007: Apple DMG UFS ufs_lookup() Denial of Service Vulnerability
Summary A specially crafted UFS filesystem in a DMG image can cause the ufslookup function to call ufsdirbad when a corrupted directory entry is being read, leading to a kernel panic denial of service. This issue can't lead to arbitrary code execution. Affected versions This issue has been verifi...
MOAB-11-01-2007: Apple DMG UFS byte_swap_sbin() Integer Overflow Vulnerability
Summary The byteswapsbin function, one of the UFS byte swapping routines this code isn't present in FreeBSD and it's Mac OS X XNU-specific; used for compatibility of filesystem streams between little and big-endian systems is affected by a integer overflow vulnerability, leading to an exploitable...
Ipswitch WS_FTP 2007 Professional - WSFTPURL.exe Local Memory Corruption
Ipswitch WSFTP 2007 Professional - WSFTPURL.exe Local Memory Corruption // source: https://www.securityfocus.com/bid/22062/info Ipswitch WSFTP 2007 Professional is prone to a local memory-corruption vulnerability. This issue occurs when the 'wsbho2k0.dll' library fails to handle specially crafted...
Mac OS X 10.4.8 AppleTalk ATPsndrsp() Heap Buffer Overflow PoC
Exploit for macOS platform in category dos / poc ============================================================== Mac OS X 10.4.8 AppleTalk ATPsndrsp Heap Buffer Overflow PoC ============================================================== / proof of concept for moab-14-01-2007 Copyright c 2006, LMH...