2218 matches found
CVE-2004-0569
The RPC Runtime Library for Microsoft Windows NT 4.0 allows remote attackers to read active memory or cause a denial of service system crash via a malicious message, possibly related to improper length values...
CVE-2004-0685
The CVE-2004-0685 issue affects Linux kernel 2.4 USB drivers that use copy_to_user on uninitialized structures, enabling local attackers to read memory not cleared from prior usage and potentially leak sensitive information. The description specifies local/partial impacts on confidentiality and i...
FreeBSD : SA-04:15.syscons
The remote host is running a version of FreeBSD which contains a flaw in the syscons console driver. There are boundary errors in the CONSSCRSHOT ioctls that may allow a local attacker to read portions of the kernel memory, which may contain sensitive information. C Tenable Network Security, Inc...
CVE-2002-1091
Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image with a zero width...
Mandrake Linux Security Advisory : xinetd (MDKSA-2003:056)
A vulnerability was discovered in xinetd where memory was allocated and never freed if a connection was refused for any reason. Because of this bug, an attacker could crash the xinetd server, making unavailable all of the services it controls. Other flaws were also discovered that could cause...
FreeBSD : SA-04:02.shmat
The remote host is running a version of the FreeBSD kernel which may be contains a programming error in the shmat2 system call which can let a local attacker to gain read or write access to a portion of the kernel memory which in turn might be used to elevate his privileges or gain access to...
CVE-2004-0135
The CVE-2004-0135 entry concerns the SGI IO system call SGI_IOPROBE in IRIX 6.5.20–6.5.24, which allows local users to gain privileges by reading and writing kernel memory. The vulnerability is confirmed in multiple sources: NVD/NVD entry already specifies the affected IRIX versions and the local...
Knox Arkeia Pro 5.1.12 Backup Remote Root Exploit
Exploit for linux platform in category remote exploits ================================================= Knox Arkeia Pro 5.1.12 Backup Remote Root Exploit ================================================= / Knox Arkiea arkiead local/remote root exploit. Portbind 5074 shellcode Tested on Redhat 8....
MidHosting FTP Daemon 1.0.1 - Shared Memory Local Denial of Service
MidHosting FTP Daemon 1.0.1 - Shared Memory Local Denial of Service source: https://www.securityfocus.com/bid/7956/info It has been reported that MidHosting FTP Daemon does not properly implement shared memory when the m flag -m is enabled. Because of this, an attacker could corrupt process memor...
MidHosting FTP Daemon 1.0.1 - Shared Memory Local Denial of Service
source: https://www.securityfocus.com/bid/7956/info It has been reported that MidHosting FTP Daemon does not properly implement shared memory when the m flag -m is enabled. Because of this, an attacker could corrupt process memory, causing the service to crash...
CVE-2003-0047
SSH2 clients for VanDyke 1 SecureCRT 4.0.2 and 3.4.7, 2 SecureFX 2.1.2 and 2.0.4, and 3 Entunnel 1.0.2 and earlier, do not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials...
CVE-2002-1940
LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME, writes portions of previously used memory after the import table, which could allow attackers to gain sensitive information. NOTE: it has been reported that this problem is due to the OS and not the application...
[SECURITY] [DSA 145-1] New tinyproxy packages fix security vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 145-1 [email protected] http://www.debian.org/security/ Martin Schulze August 7th, 2002 - -------------------------------------------------------------------------- Package : tinyproxy...
LBL Traceroute 1.4 a5 - Heap Corruption (2)
LBL Traceroute 1.4 a5 - Heap Corruption 2 // source: https://www.securityfocus.com/bid/1739/info Traceroute is a well-known network diagnostic tool used for analyzing the path on a network between two hosts. On unix systems, traceroute is typically installed setuid root because of its use of raw...
linux_segment_limit_bug.txt
Subject: Linux 2.0.37 segment limit bug To: [email protected] Hello, Linux 2.0.37 released last month introduces the support for more than 1 GB of physical memory on x86 which wasn't supported in earlier 2.0 kernels. It is now possible to increase the limit, at the expense of reducing the...
patch_for_ipc_vuln.txt
Subject: Re: KKIS19990914.004b: ShareDream - shared memory - ipc vulnerability To: [email protected] Attached is a trivial Linux-2.2.12 patch wich adds add a procfs entry for tuning the limit of shared memory allocable. /proc/sys/kernel/shmmax Max number of shared memory pages Attached is...
BSDLinux Kernel 2.3 (BSDOS 4.0 FreeBSD 3.2 NetBSD 1.4) - Shared Memory Denial of Service
BSDLinux Kernel 2.3 BSDOS 4.0 FreeBSD 3.2 NetBSD 1.4 - Shared Memory Denial of Service / source: https://www.securityfocus.com/bid/526/info Operating systems with a shared memory implementation based on or influenced by the 4.4BSD code may be vulnerable to a denial of service attack The problem...
BSD/Linux Kernel 2.3 (BSD/OS 4.0 / FreeBSD 3.2 / NetBSD 1.4) - Shared Memory Denial of Service
/ source: https://www.securityfocus.com/bid/526/info Operating systems with a shared memory implementation based on or influenced by the 4.4BSD code may be vulnerable to a denial of service attack The problem exists because you can mmap or shmget as much memory as you'd like bypassing rlimits. Wh...