CVE-2002-0839

The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service process kill or possibly other behaviors that would not normally be allowed, by modifying the...

Bug in QPopper (All Versions?)

Description: When sending a string that has 2048+ characters in it, the in.qpopper or popper process will begin to use massive amounts of CPU and will not stop until it is manually killed. Versions Affected: I tested this on 4.0.1 and 4.0.3. 4.0.2 is probably vulnerable also. Older versions may...

CVE-2001-1343

wsmail.cgi in WebStore 400/400CS 4.14 allows remote authenticated WebStore administrators to execute arbitrary code via shell metacharacters in the kill parameter...

CVE-2001-0040

The CVE concerns apcupsd, where during startup the daemon creates /var/run/apcupsd.pid with world-writable permissions (mode 666). This allows a local attacker to overwrite the PID file with arbitrary process IDs, causing legitimate processes to be killed when apcupsd restarts or stops. The Mandr...

CVE-2000-0998

Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function...

CVE-2000-0998

Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function...

CVE-2000-0998

CVE-2000-0998 describes a format-string vulnerability in the top program that allows local attackers to gain root privileges via the kill or renice functions. The connected documents confirm the vulnerability description but do not provide concrete exploitation details, affected product versions,...

Локальный DoS против RH Linux

Команда kill -9 -1 pid приводит к полному зависанию оконного менеджера...

CVE-1999-0780

CVE-1999-0780 affects KDE klock. The vulnerability allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file. The available connected documents confirm this specific behavior and do not provide additional technical details (e.g., root cause, affected versi...

CVE-1999-0425

CVE-1999-0425 affects Netscape 4.5 where the TalkBack feature can be exploited by a local user to kill an arbitrary process of another user when Netscape crashes. The issue is documented across multiple sources (NVD entry, Red Hat advisory, CVE records, and PT-SECURITY report) with the core descr...

redhat.su.ghost.bug.txt

Date: Wed, 16 Jun 1999 13:47:52 +0200 From: Roman Ramirez Reply-To: [email protected] Organization: Intercomputer, S.A. To: [email protected] Hello: I think I have found some kind of bug in "su" in Redhat linux versions tested on Redhat 5.2 y Redhat 6.0 The problem seems to be when you...

PT-1999-1109 · Netscape · Netscape

Name of the Vulnerable Software and Affected Versions: Netscape version 4.5 Description: A local user can kill an arbitrary process of another user whose Netscape crashes due to the talkback feature in Netscape. Recommendations: For Netscape version 4.5, consider disabling the talkback feature to...