7306 matches found
CVE-2007-1069
The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of service Windows virtual machine crash by triggering certain general protection faults GPF...
DSA-1284-1 qemu
Bulletin has no description...
PHP ext/filter函数去除空格远程缓冲区溢出漏洞
PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP在内存管理的代码实现上存在漏洞,远程攻击者可能利用此漏洞在某些特定系统平台下执行任意指令。 PHP的堆内存管理器会存储用户所请求的控制信息。当使用FILTERVALIDATEINT过滤器时,首先要对入站的用户输入数据执行去除空格操作,由以下宏完成: define PHPFILTERTRIMDEFAULTp, len, end \ while p == ' ' || p == '\t' || p == '\r' || p == '\v' \ p++; \ len--; \ \ start = p; \ e...
[SECURITY] Fedora Core 5 Update: nspr-4.6.5-0.5.0.fc5
NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...
USN-408-1: krb5 vulnerability
The server-side portion of Kerberos' RPC library had a memory management flaw which allowed users of that library to call a function pointer located in unallocated memory. By doing specially crafted calls to the kadmind server, a remote attacker could exploit this to execute arbitrary code with...
MITKRB5-SA-2006-003: kadmind (via GSS-API lib) frees uninitialized pointers
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MIT krb5 Security Advisory 2006-003 Original release: 2007-01-09 Last update: 2007-01-09 Topic: kadmind via GSS-API mechglue frees uninitialized pointers Severity: CRITICAL CVE: CVE-2006-6144 CERT: VU831452 SUMMARY ======= The Kerberos administration...
Linux Kernel 2.4.x mremap() bound checking Root Exploit
No description provided by source. / Linux kernel mremap bound checking bug exploit. Bug found by Paul Starzetz paul isec pl Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...
security flaw
The searchbinaryhandler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service panic, as demonstrated by running a process using the bash ulimi...
Linux Kernel 2.6.x - INVALIDATE_INODE_PAGES2 Local Integer Overflow
Linux Kernel 2.6.x - INVALIDATEINODEPAGES2 Local Integer Overflow / source: https://www.securityfocus.com/bid/15846/info Linux kernel is prone to a local integer-overflow vulnerability. A successful attack can result in a kernel crash. Arbitrary code execution may be possible as well, but this ha...
Ethernet frame padding information leakage
Incorrect memory managment causes ethernet fame padding bytes may contain sensitive information...
Microsoft COM+ contains a memory management flaw
Overview Microsoft COM+ contains a vulnerability due to a memory management flaw that may allow an attacker to take complete control of an affected system. Description Microsoft gives the following definition of COM+: COM+ is the next step in the evolution of the Microsoft Component Object Model...
CVE-2002-1667
CVE-2002-1667 concerns the FreeBSD virtual memory subsystem. Affected: FreeBSD 4.5-RELEASE and earlier. Description: during page invalidation, the VM subsystem does not properly verify the existence of a VM object, allowing local users to trigger a crash (DoS) by calling msync on an unaccessed me...
Snmppd - SNMP Proxy Daemon Remote Format String
Snmppd - SNMP Proxy Daemon Remote Format String / Snmppd SNMP proxy daemon format string exploit cybertronicatgmxdotnet 04/29/2005 buffer space is 1024 bytes MAXSNMPPDOIDLEN defined in snmppd-0.4.5/snmppd.h Apr 29 16:01:31 ctronic snmppd6274: fd 5: Request:...
CVE-2005-0553
Race condition in the memory management routines in the DHTML object processor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail, aka "DHTML Object Memory Corruption Vulnerability"...
CVE-2005-0553
The CVE-2005-0553 issue is a race condition in the DHTML object processor of Internet Explorer (IE) versions 5.01, 5.5, and 6 that can enable remote code execution when a user visits a crafted web page or HTML email. The root cause involves race conditions in processing of DHTML objects (e.g., Co...
Linux Kernel 2.4.x2.6.x - uselib() Local Privilege Escalation (3)
Linux Kernel 2.4.x2.6.x - uselib Local Privilege Escalation 3 / pwned.c - linux 2.4 and 2.6 sysuselib local root exploit. PRIVATE. it's not the best one, the ldt approach is definitively better. discovered may 2004. no longer private because lorian/cliph/ihaquer can lick my balls. c 2004 sd...
Linux Kernel 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit
Exploit for linux platform in category local exploits ====================================================================== Linux Kernel 2.4.x / 2.6.x uselib Local Privilege Escalation Exploit ====================================================================== / pwned.c - linux 2.4 and 2.6...
Linux Kernel 2.4.x/2.6.x - 'uselib()' Local Privilege Escalation (3)
/ pwned.c - linux 2.4 and 2.6 sysuselib local root exploit. PRIVATE. it's not the best one, the ldt approach is definitively better. discovered may 2004. no longer private because lorian/cliph/ihaquer can lick my balls. c 2004 sd requieres cca 1gb on fs. / / first create fake vma structs. let's...
SUSE-SA:2005:010: kernel
The remote host is missing the patch for the advisory SUSE-SA:2005:010 kernel. The previous kernel security update for the SUSE Linux 9.1 and the SUSE Linux Enterprise Server 9 based products caused problems with the NVidia driver for users with NVidia graphics cards. Stricter checking in the...
CVE-2005-0176
The CVE-2005-0176 issue affects the Linux kernel (2.6.9 and earlier) where shmctl-based locking of System V shared memory could be misused by local unprivileged users to unlock memory from other processes. This could cause sensitive memory contents to be swapped to disk and read by others after r...