SUSE CVE-2004-0010

Stack-based buffer overflow in the ncplookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges...

SUSE CVE-2004-0109

Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry...

SUSE CVE-2004-0495

Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool...

SUSE CVE-2007-3720

The process scheduler in the Linux kernel 2.4 performs scheduling based on CPU billing gathered from periodic process sampling ticks, which allows local users to cause a denial of service CPU consumption by performing voluntary nanosecond sleeps that result in the process not being active during ...

Linux Kernel SMB Filesystem smb_receive Transaction2 - Ver2 (CVE-2004-0949)

Multiple vulnerabilities have been reported in the smbrecvtrans2 function call in the samba filesystem smbfs in Linux kernel 2.4 and 2.6. Successful exploitation of this vulnerability could allow a remote attacker to read arbitrary kernel information or raise a counter value to an arbitrary numbe...

Windows XP TCP Packet Fragmentation Handling Denial of Service Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/11258/info Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability. The issue is reported to present itself due to inefficiencies present when handling fragmented TC...

HP-UX 11,Linux kernel 2.4,Windows 2000/NT 4.0,IRIX 6.5 Small TCP MSS DoS

No description provided by source. source: http://www.securityfocus.com/bid/2997/info A potential denial of service vulnerability exists in several TCP stack implementations. TCP has a MSS maximum segment size option that is used by a TCP client to announce to a peer the maximum amount of TCP dat...

Linux Kernel <= 2.4.28 and <= 2.6.9 scm_send local DoS Exploit

No description provided by source. / Linux kernel 2.4 & 2.6 scmsend DoS Warning! this code will hang your machine gcc -O2 scmbang.c -o scmbang Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED AS IS AND WITHOUT ANY WARRANTY...

Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit [3]

Exploit for linux platform in category local exploits =========================================================== Linux Kernel 2.4/2.6 socksendpage Local Root Exploit 3 =========================================================== This third version features: Complete support for i386, x8664, ppc a...

Linux Kernel tc_fill_tclass()函数本地信息泄露漏洞

BUGTRAQ ID: 36304 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的net/sched/schapi.c文件中的tcfilltclass函数没有清除某些结构成员便将其返回给了用户空间，这可能导致泄漏3个字节的未初始化内核内存。 Linux kernel 2.6.x Linux kernel 2.4.x 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit (ppc)

Exploit for linux platform in category local exploits ============================================================= Linux Kernel 2.4/2.6 socksendpage Local Root Exploit ppc ============================================================= / Linux socksendpage NULL pointer dereference Copyright 2009...

Linux Kernel 2.4/2.6 sock_sendpage() ring0 Root Exploit (simple ver)

No description provided by source. / 0x82-CVE-2009-2692 Linux kernel 2.4/2.6 32bit socksendpage local ring0 root exploit simple ver Tested RedHat Linux 9.0, Fedora core 411, Whitebox 4, CentOS 4.x. -- Discovered by Tavis Ormandy and Julien Tinnes of the Google Security Team. spender and venglin's...

Enhanced CTorrent / dtorrent &quot;btFiles::BuildFromMI()&quot;缓冲区溢出漏洞

CNCAN ID：CNCAN-2009042102 Enhanced CTorrent是一款UNIX环境下的Bittorrent客户端。 Enhanced CTorrent存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 btfiles.cpp包含的"btFiles::BuildFromMI"函数存在边界错误，诱使用户打开特殊构建的torrent文件，可导致触发基于栈的缓冲区溢出，可能以应用程序权限执行任意指令。 Enhanced CTorrent 3.x 目前没有解决方案提供： http://sourceforge.net/projects/dtorrent/...

Linux Kernel 2.4 uselib() Privilege Elevation Exploit

No description provided by source. / Linux kernel 2.4 uselib privilege elevation exploit. original exploit source from http://isec.pl reference: http://isec.pl/vulnerabilities/isec-0021-uselib.txt I modified the Paul Starzetz's exploit, made it more possible to race successfully. The exploit stil...

CVE-2008-2137

The 1 sparcmmapcheck function in arch/sparc/kernel/syssparc.c and the 2 sparc64mmapcheck function in arch/sparc64/kernel/syssparc.c, in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3, omit some virtual-address range aka span checks when the mmap MAPFIXED bit is not set, which allows...

CVE-2008-2136

The CVE-2008-2136 entry affects the Linux kernel SIT driver: a memory leak in ipip6_rcv (net/ipv6/sit.c) can be triggered by network traffic to a SIT tunnel, due to improper skb handling (pskb_may_pull and kfree_skb) and skb reference count management. Vulnerable on Linux kernel 2.4 up to 2.4.36....

revenge_proftpd_ctrls_24.pl.txt

!/usr/bin/perl -w $Id: revengeproftpdctrls24.pl, v1.0 2007/02/18 19:24:22 revenge Exp $ ProFTPD v1.3.0/1.3.0a Controls Buffer Overflow Exploit Old style school sploit against gcc 3.x and linux kernel 2.4 Original Advisory : http://www.coresecurity.com/?action=item&id=1594 Exploitation condition -...

CVE-2006-6106

Multiple buffer overflows in the cmtprecvinteropmsg function in the Bluetooth driver net/bluetooth/cmtp/capi.c in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via CAPI...

Linux Kernel 2.4.x mremap() bound checking Root Exploit

No description provided by source. / Linux kernel mremap bound checking bug exploit. Bug found by Paul Starzetz paul isec pl Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...

CVE-2004-0138

The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service crash via a crafted ELF file with an interpreter with an invalid arch architecture, which triggers a BUG when an invalid VMA is unmapped...