SGI IRIX vulnerable to DoS when user space program calls the PIOCSWATCH ioctl() function

Overview A vulnerability in the SGI IRIX PIOCSWATCH ioctl function may allow local attackers to crash the operating system. Description SGI states that PIOCSWATCH ioctl "establishes or clears a set of watched areas in the traced process." According to SGI Security Advisory 20030603-01-P, a local...

Nokia GGSN (IP650 Based) DoS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake Inc. www.atstake.com Security Advisory Advisory Name: Nokia GGSN IP650 Based DoS Release Date: 06/09/2003 Application: Nokia GGSN IP650 Based Platform: Nokia GGSN IP650 Based Severity: An attacker is able to cause GGSN to kernel panic Authors:...

CVE-2002-0831

Technical details about CVE-2002-0831 are not publicly available in the provided documents. Monitor for updates.

CVE-2002-0831

The kqueue mechanism in FreeBSD 4.3 through 4.6 STABLE allows local users to cause a denial of service kernel panic via a pipe call in which one end is terminated and an EVFILTWRITE filter is registered for the other end...

CVE-2002-1490

NetBSD 1.4 through 1.6 beta allows local users to cause a denial of service kernel panic via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by other processes...

CVE-2002-2197

Unknown vulnerability in Sun Solaris 8.0 allows local users to cause a denial of service kernel panic via a program that uses /dev/poll, triggering a NULL pointer dereference...

CVE-2002-1674

procfs on FreeBSD before 4.5 allows local users to cause a denial of service kernel panic by removing a file that the fstatfs function refers to...

CVE-2002-1912

SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, which allows remote attackers to cause a denial of service null pointer exception and kernel panic via a large number of packets...

CVE-2002-1586

Solaris 2.5.1 through 9 allows local users to cause a denial of service kernel panic by setting the sdstruiowrq variable in the struioget function to null, which triggers a null dereference...

[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 201-1 [email protected] http://www.debian.org/security/ Martin Schulze December 2nd, 2002 http://www.debian.org/security/faq -...

[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 201-1 [email protected] http://www.debian.org/security/ Martin Schulze December 2nd, 2002 http://www.debian.org/security/faq -...

[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 201-1 [email protected] http://www.debian.org/security/ Martin Schulze December 2nd, 2002 http://www.debian.org/security/faq -...

DSA-201 freeswan - denial of service

Bulletin has no description...

CVE-2002-0666

IPSEC implementations including 1 FreeS/WAN and 2 KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service kernel panic via spoofed, short Encapsulating Security Payload ESP packets, which result in integer signedness errors...

CVE-2002-0666

CVE-2002-0666 affects multiple IPsec implementations (notably FreeS/WAN and KAME). The root cause is incorrect calculation of the authentication data length for very small ESP datagrams, which can result in an unsigned integer overflow and cause a kernel panic (remote denial of service). The NVD/...

NetBSD Security Advisory 2002-016: Insufficient length check in ESP authentication data

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-016 ================================= Topic: Insufficient length check in ESP authentication data Version: NetBSD-current: source prior to August 23, 2002 NetBSD-1.6 beta: source prior to August 23, 2002 NetBSD-1.5.3: affected...

Multiple IPsec implementations do not adequately validate authentication data

Overview IPsec implementations from multiple vendors do not adequately validate the authentication data in IPsec packets, exposing vulnerable systems to a denial of service. Description For background: RFC 2401 Security Architecture for the Internet Protocol RFC 2402 IP Authentication Header RFC...

CVE-2002-0831

The kqueue mechanism in FreeBSD 4.3 through 4.6 STABLE allows local users to cause a denial of service kernel panic via a pipe call in which one end is terminated and an EVFILTWRITE filter is registered for the other end...

Security Advisory FreeBSD-SA-02:37.kqueue

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:37.kqueue Security Advisory The FreeBSD Project Topic: local users can panic the system using the kqueue mechanism Category: core Module: kqueue Announced: 2002-08-05...

HP-UX kernel specifies incorrect arguments for setrlimit()

Overview A problem exists in some versions of the HP-UX kernel allowing an intruder to cause kernel panics. Description Certain versions of HP-UX setrlimit system call contain a vulnerability that permits an intruder to cause kernel panics or compromise the system. Quoting from HP Security Bullet...