FreeBSD libc db functions information leak

Uninitialized memory data can be written to database file...

FreeBSD Security Advisory FreeBSD-SA-09:07.libc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:07.libc Security Advisory The FreeBSD Project Topic: Information leak in db3 Category: core Module: libc Announced: 2009-04-22 Credits: Jaakko Heinonen, Xin LI...

Integer overflow

Integer overflow in the ftsbuild function in fts.c in libc in 1 OpenBSD 4.4 and earlier and 2 Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service application crash via a deep directory tree, related to the ftslevel structure member, as...

CVE-2009-0537

CVE-2009-0537 involves an integer overflow in libc’s fts_build() within the fts.c implementation. The root cause is a signed short (fts_level) overflow when traversing very deep directory trees, which can crash an affected program (e.g., du, rm, chmod, chgrp on OpenBSD; SearchIndexer.exe on Windo...

CVE-2009-0537

Integer overflow in the ftsbuild function in fts.c in libc in 1 OpenBSD 4.4 and earlier and 2 Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service application crash via a deep directory tree, related to the ftslevel structure member, as...

libc fts_* functions vulnerabilities

Invalid exceptional conditions processing on long path...

Multiple Vendors libc:fts_*() Local Denial of Service Exploit

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 libc:fts:multiple vendors, Denial-of-service Author: Maksymilian Arciemowicz SecurityReason.com Date: - - Dis.: 21.10.2008 - - Pub.: 04.03.2009 CVE: CVE-2009-0537 We are going informing all vendors, about this proble...

Multiple Vendors libc:fts_*() Local Denial of Service Exploit

Exploit for bsd platform in category dos / poc ============================================================= Multiple Vendors libc:fts Local Denial of Service Exploit ============================================================= -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 libc:fts:multiple...

Fedora Update for galeon FEDORA-2008-2682

Check for the Version of galeon OpenVAS Vulnerability Test Fedora Update for galeon FEDORA-2008-2682 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

FreeBSD 7.1 - libc Berkley DB Interface Uninitialized Memory Local Information Disclosure

FreeBSD 7.1 - libc Berkley DB Interface Uninitialized Memory Local Information Disclosure // source: https://www.securityfocus.com/bid/34666/info FreeBSD is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead ...

Sun Solaris C库未明权限提升漏洞

BUGTRAQ ID: 13856 Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Sun Solaris C库中存在未经的权限提升漏洞，起因是C库libc3LIB和libproject3LIB中的未明安全问题。本地攻击者可以利用这个漏洞提升权限，完全控制受影响的系统。 Sun Solaris 10 Sun --- Sun已经为此发布了一个安全公告（Sun-Alert-101740）以及相应补丁: Sun-Alert-101740：Solaris 10 Security Issue With C Library libc3LIB and libproject3LIB...

FreeBSD Security Advisory (FreeBSD-SA-08:02.libc.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-08:02.libc.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

HP-UX PHCO_38048 : HP-UX Using libc, Remote Denial of Service (DoS) (HPSBUX02355 SSRT080023 rev.2)

s700800 11.31 libc cumulative patch : A potential security vulnerability has been identified in HP-UX using libc. This vulnerability could be exploited remotely to create a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this...

Code injection

Unspecified vulnerability in libc on HP HP-UX B.11.23 and B.11.31 allows remote attackers to cause a denial of service via unknown vectors...

CVE-2008-1664

Unspecified vulnerability in libc on HP HP-UX B.11.23 and B.11.31 allows remote attackers to cause a denial of service via unknown vectors...

CVE-2008-1664

CVE-2008-1664 affects HP-UX libc on HP-UX B.11.23 and B.11.31, enabling remote denial-of-service via unspecified vectors. The vulnerability is described as a remote DoS in libc, with patch-based remediation referenced in HP advisories (PHCO_38048, PHCO_38273) and related HPSBUX/SSRT entries (HPSB...

OpenVMS fingerd remote stack overflow

sup bugtraq. Since a group of lads are giving a talk on Hacking OpenVMS at defcon I figured I'd release a vulnerability in the OpenVMS finger service part of the MultiNet package to give people a few days to figure out an exploit before the methods are documented for us by the guys giving the tal...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

Solaris Runtime Linker (ld.so.1) Buffer Overflow Exploit (SPARC version)

No description provided by source. / ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard overflow and return into li...

Debian DSA-1603-1 : bind9 - DNS cache poisoning

Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting. This update changes Debian's BIND 9 packages to implement the recommended...