Lucene search
K

414 matches found

NVD
NVD
added 2007/10/29 9:46 p.m.29 views

CVE-2007-5544

IBM Lotus Notes before 6.5.6, and 7.x before 7.0.3; and Domino before 6.5.5 FP3, and 7.x before 7.0.2 FP1; uses weak permissions Everyone:Full Control for memory mapped files shared memory in IPC, which allows local users to obtain sensitive information, or inject Lotus Script or other character...

7.8CVSS7.3AI score0.0027EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2007/10/25 12:0 a.m.90 views

IBM Lotus Notes / Domino Client Memory Mapped Files Privilege Escalation

The version of Lotus Notes installed on the remote Windows host fails to adequately protect certain memory mapped files used by the application for inter-process communications. In a shared user environment, a local user may be able to leverage this issue to read from these files, leading to...

7.8CVSS7.4AI score0.0027EPSS
Exploits1References3
securityvulns
securityvulns
added 2007/10/24 12:0 a.m.80 views

IBM Lotus Notes multiple security vulnerabilities

Buffer overflow on viewing of different attachment types, information leak between local users thorugh memory mapped files...

9.3CVSS4.1AI score0.05033EPSS
Exploits11References4Affected Software2
securityvulns
securityvulns
added 2007/10/23 12:0 a.m.88 views

SYMSA-2007-013: Lotus Notes Memory Mapped Files Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Vulnerability Research http://www.symantec.com/research Security Advisory Advisory ID: SYMSA-2007-013 Advisory Title: Lotus Notes Memory Mapped Files Vulnerability Author: Ollie Whitehouse / [email protected] Release Date: 23-10-20...

6.2CVSS0.1AI score0.0027EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2006/05/24 9:31 a.m.5 views

security flaw

Linux kernel before 2.6.13 allows local users to cause a denial of service crash via a dio transfer from the sg driver to memory mapped mmap IO space...

4.9CVSS5.8AI score0.00441EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2004/08/27 12:0 a.m.25 views

AIX 5.2 : IY46784

The remote host is missing AIX Critical Security Patch number IY46784 Possible data error using memory mapped I/O in cachefs. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.25 views

RHEL 2.1 : kernel (RHSA-2003:147)

These updated kernel packages address security vulnerabilites, including two possible data corruption scenarios. In addition, a number of drivers have been updated, improvements made to system performance, and various issues have been resolved. The Linux kernel handles the basic functions of the...

5CVSS5.5AI score0.04276EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2003/05/29 12:0 a.m.42 views

(RHSA-2003:147) kernel security update

The Linux kernel handles the basic functions of the operating system. Two potential data corruption scenarios have been identified. These scenarios can occur under heavy, complex I/O loads. The first scenario only occurs while performing memory mapped file I/O, where the file is simultaneously...

5CVSS6.4AI score0.04276EPSS
Exploits0
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.32 views

CVE-2000-0006

strace allows local users to read arbitrary files via memory mapped file names...

6.3AI score0.00279EPSS
Exploits0References2
CVE
CVE
added 2002/03/09 5:0 a.m.213 views

CVE-2000-0006

CVE-2000-0006 affects the strace utility. The issue allows local users to read arbitrary files via memory-mapped file names. The connected records identify strace as the affected component and describe the vulnerability as a local-read exposure through mmap-based file-name handling. No explicit e...

2.6CVSS6.3AI score0.00279EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2002/03/09 5:0 a.m.60 views

CVE-2000-0006

strace allows local users to read arbitrary files via memory mapped file names...

2.6CVSS7AI score0.00279EPSS
Exploits0References2
OSV
OSV
added 1999/12/25 5:0 a.m.16 views

AZL-35286 CVE-2000-0006 affecting package strace 6.8-1

strace allows local users to read arbitrary files via memory mapped file names...

2.6CVSS5.8AI score0.00279EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 1999/12/25 12:0 a.m.8 views

PT-1999-1815

Name of the Vulnerable Software and Affected Versions: strace affected versions not specified Description: The issue allows local users to read arbitrary files via memory mapped file names. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

2.6CVSS6AI score0.00279EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 1970/01/01 12:0 a.m.3 views

PT-2005-5602 · Suse +2 · Opensuse +3

Name of the Vulnerable Software and Affected Versions: openSUSE affected versions not specified Linux kernel before 2.6.13 kernel-patch-2.4.27-s390 Description: The issue involves multiple vulnerabilities in various packages of the openSUSE operating system, which can lead to a breach of...

9CVSS6.4AI score0.20561EPSS
Exploits14References393
Rows per page
Query Builder