Linux Distros Unpatched Vulnerability : CVE-2017-7889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mm subsystem in the Linux kernel through 3.2 does not properly enforce the CONFIGSTRICTDEVMEM protection mechanism, which allows local users to read or writ...

SUSE CVE-2004-0535

The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources...

Windows Kernel ATMFD.DLL out-of-bounds read due to malformed Name INDEX in the CFF table(CVE-2017-8483)

We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file, see below: --- DRIVERPAGEFAULTBEYONDENDOFALLOCATION d6 N bytes of memory was allocated and more than N bytes are being referenced. This cannot be protected by try-except. When...

Windows ATMFD.DLL Out-of-Bounds Read Due to Malformed Name INDEX in the CFF Table Exploit

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=386&can=1 We have encountered a number of Windows kernel crashes in the ATMFD.DLL OpenType driver while processing corrupted OTF font files, such as: ---...

Microsoft Windows - 'ATMFD.DLL' Out-of-Bounds Read Due to Malformed Name INDEX in the CFF Table

Source: https://code.google.com/p/google-security-research/issues/detail?id=386&can=1 We have encountered a number of Windows kernel crashes in the ATMFD.DLL OpenType driver while processing corrupted OTF font files, such as: --- DRIVERPAGEFAULTINFREEDSPECIALPOOL d5 Memory was referenced after it...

Mac OS X xnu <= 1228.3.13 (macfsstat) Local Kernel Memory Leak/DoS

No description provided by source. / xnu-macfsstat-leak.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.3.13 local kernel memory leak/DoS POC by mu-b - Sun 13 Apr 2008 - Tested on: Apple MACOS X 10.5.1 xnu-1228.0.21/RELEASEI386 Apple MACOS X 10.5.2 xnu-1228.3.131/RELEASEI386 -...

Solaris 10 sysinfo(2) - Local Kernel Memory Disclosure Exploit

No description provided by source. / $Id: raptorsysinfo.c,v 1.2 2006/08/22 13:47:54 raptor Exp $ raptorsysinfo.c - Solaris sysinfo2 kernel memory leak Copyright c 2006 Marco Ivaldi [email protected] systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count...

CVE-2010-2031

KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arbitrary kernel memory via a crafted request to IOCTL 0x830020d4 on the KAVSafe device...

Apple Mac OSX xnu 1228.3.13 - macfsstat Local Kernel Memory LeakDenial of Service

Apple Mac OSX xnu 1228.3.13 - macfsstat Local Kernel Memory LeakDenial of Service / xnu-macfsstat-leak.c Copyright c 2008 by Apple MACOS X xnu include include include include include include include define LEAKBUFBYTESa sizeof struct statfsa define LEAKMACBYTESa sizeof inta struct macgetfsstat ch...

Apple MACOS X xnu &lt;= 1228.x Local Kernel Memory Disclosure Exploit

No description provided by source. / xnu-getldt.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.x local kernel memory disclosure by mu-b - Wed 17 Dec 2008 - Tested on: Apple MACOS X 10.5.5 xnu-1228.8.201/RELEASEI386 props to christer who originally found the bug in FreeBSD...

DESlock+ 3.2.6 - LIST Local Kernel Memory Leak

DESlock+ 3.2.6 - LIST Local Kernel Memory Leak / deslock-list-leak.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; static void...

DESlock+ &lt; 3.2.6 - &#039;LIST&#039; Local Kernel Memory Leak

/ deslock-list-leak.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; static void xormaskreq struct ioctlreq req DWORD i, pid; PCHAR ptr...

Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit

No description provided by source. / $Id: raptorsysinfo.c,v 1.2 2006/08/22 13:47:54 raptor Exp $ raptorsysinfo.c - Solaris sysinfo2 kernel memory leak Copyright c 2006 Marco Ivaldi [email protected] systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count...

FreeBSD-SA-06:06.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:06.kmem Security Advisory The FreeBSD Project Topic: Local kernel memory disclosure Category: core Module: kernel Announced: 2006-01-25 Credits: Xin LI, Karl...

FreeBSD-SA-05:08.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-05:08.kmem Security Advisory The FreeBSD Project Topic: Local kernel memory disclosure Category: core Module: sys Announced: 2005-05-06 Credits: Christian S.J...