Design/Logic Flaw

The ECNE chunk handling in Linux SCTP lksctp before 2.6.17 allows remote attackers to cause a denial of service kernel panic via an unexpected chunk when the session is in CLOSED state...

CVE-2006-2272

CVE-2006-2272 affects Linux SCTP (lksctp) in kernel versions before 2.6.17, allowing remote attackers to trigger a denial of service (kernel panic) via SCTP control chunks in fragmented packets. Public references in OpenVAS/Ubuntu/Fedora/Debian advisories confirm the issue and link it with other ...

CVE-2006-2271

The CVE-2006-2271 issue affects the Linux SCTP (lksctp) driver, exposing a vulnerability where the SCTP chunk handling can trigger a kernel panic when a remote peer sends unexpected chunks while the session is in CLOSED state. This has been addressed in upstream stable updates (e.g., Linux kernel...

Linux SCTP Functionality Multiple Remote DoS

There is a flaw in the Linux kernel on the remote host that causes a kernel panic when it receives an SCTP packet with a chunk data packet of length 0. An attacker can leverage this flaw to crash the remote host. Additionally, other types of crafted packets can cause a remote denial of service in...

Malformed ICMP Packets May Cause a Denial of Service (SCTP)

It is possible to crash the remote host by sending it malformed ICMP packets. Description : Linux Kernels older than version 2.6.13 contains a bug which may allow an attacker to cause a NULL pointer dereference by sending malformed ICMP packets, thus resulting in a kernel panic. This flaw is...

FreeBSD nfsd Malformed NFS Mount Request Remote DoS

The NFS server on the remote host appears to be one from FreeBSD that causes a kernel panic when it receives a malformed NFS mount request via TCP. An unauthenticated remote attacker can leverage this flaw to crash the remote host. C Tenable Network Security, Inc. include"compat.inc"; if...

FreeBSD bfsd DoS

Malcrafted NFS bind request to TCP/2049 causes kernel panic...

FreeBSD-SA-06:10.nfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:10.nfs Security Advisory The FreeBSD Project Topic: Remote denial of service in NFS server Category: core Module: sysnfsserver Announced: 2006-03-01 Credits:...

FreeBSD 6.0 - nfsd Remote Kernel Panic (Denial of Service)

FreeBSD 6.0 - nfsd Remote Kernel Panic Denial of Service !/usr/bin/perl Saw an advisory on Dailydave and wrote a little script to check my freebsd boxes kind of evil. /str0ke milw0rm.com ProtoVer NFS testsuite 1.0 uncovered remote kernel panic vulnerability in FreeBSD 6.0 kernel. Evgeny Legerov...

FreeBSD 6.0 (nfsd) Remote Kernel Panic Denial of Service Exploit

No description provided by source. !/usr/bin/perl Saw an advisory on Dailydave and wrote a little script to check my freebsd boxes kind of evil. /str0ke milw0rm.com ProtoVer NFS testsuite 1.0 uncovered remote kernel panic vulnerability in FreeBSD 6.0 kernel. Evgeny Legerov www.gleg.net use...

FreeBSD 6.0 - 'nfsd' Remote Kernel Panic (Denial of Service)

!/usr/bin/perl Saw an advisory on Dailydave and wrote a little script to check my freebsd boxes kind of evil. /str0ke milw0rm.com ProtoVer NFS testsuite 1.0 uncovered remote kernel panic vulnerability in FreeBSD 6.0 kernel. Evgeny Legerov www.gleg.net use IO::Socket; sub usage print "FreeBSD 6.0...

FreeBSD 6.0 (nfsd) Remote Kernel Panic Denial of Service Exploit

Exploit for bsd platform in category dos / poc ================================================================ FreeBSD 6.0 nfsd Remote Kernel Panic Denial of Service Exploit ================================================================ !/usr/bin/perl Saw an advisory on Dailydave and wrote a...

[SA19017] FreeBSD "nfsd" NFS Mount Request Denial of Service

TITLE: FreeBSD "nfsd" NFS Mount Request Denial of Service SECUNIA ADVISORY ID: SA19017 VERIFY ADVISORY: http://secunia.com/advisories/19017/ CRITICAL: Less critical IMPACT: DoS WHERE: From local network OPERATING SYSTEM: FreeBSD 6.x http://secunia.com/product/6778/ DESCRIPTION: Evgeny Legerov has...

security flaw

Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VMIO flag, which causes incorrect reference counts and may lead to a denial of service kernel panic when accessing freed kernel pages...

Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)

Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...

Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-38-1)

CAN-2004-0814 : Vitaly V. Bursov discovered a Denial of Service vulnerability in the 'serio' code; opening the same tty device twice and doing some particular operations on it caused a kernel panic and/or a system lockup. Fixing this vulnerability required a change in the Application Binary...

CVE-2002-2197

CVE-2002-2197 affects Sun Solaris 8.0. A local user can trigger a kernel panic by running a program that uses /dev/poll, causing a NULL pointer dereference in the kernel. The provided connected documents confirm the vulnerable component and the root cause (NULL pointer dereference via /dev/poll),...

security flaw

The iptrecent kernel module iptrecent.c in Linux kernel before 2.6.12, when running on 64-bit processors such as AMD64, allows remote attackers to cause a denial of service kernel panic via certain attacks such as SSH brute force, which leads to memset calls using a length based on the uint32t...

security flaw

Race condition in the ia32 compatibility code for the execve system call in Linux kernel 2.4 before 2.4.31 and 2.6 before 2.6.6 allows local users to cause a denial of service kernel panic and possibly execute arbitrary code via a concurrent thread that increments a pointer count after the nargs...

CVE-2005-1913

CVE-2005-1913 affects the Linux kernel up to version 2.6.12.1. The vulnerability occurs when a non group-leader thread executes a different program while an itimer is pending; the expiry signal is delivered to the old group-leader task, which no longer exists, causing a kernel panic (local DoS). ...