Lucene search
+L

7306 matches found

Cvelist
Cvelist
added 2007/05/02 7:0 p.m.35 views

CVE-2007-1069

The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of service Windows virtual machine crash by triggering certain general protection faults GPF...

6.3AI score0.01983EPSS
Exploits0References11
OSV
OSV
added 2007/05/01 12:0 a.m.41 views

DSA-1284-1 qemu

Bulletin has no description...

7.2CVSS6.8AI score0.00607EPSS
Exploits0
seebug.org
seebug.org
added 2007/03/14 12:0 a.m.48 views

PHP ext/filter函数去除空格远程缓冲区溢出漏洞

PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP在内存管理的代码实现上存在漏洞,远程攻击者可能利用此漏洞在某些特定系统平台下执行任意指令。 PHP的堆内存管理器会存储用户所请求的控制信息。当使用FILTERVALIDATEINT过滤器时,首先要对入站的用户输入数据执行去除空格操作,由以下宏完成: define PHPFILTERTRIMDEFAULTp, len, end \ while p == ' ' || p == '\t' || p == '\r' || p == '\v' \ p++; \ len--; \ \ start = p; \ e...

7.1AI score
Exploits0
Fedora
Fedora
added 2007/02/26 10:3 p.m.41 views

[SECURITY] Fedora Core 5 Update: nspr-4.6.5-0.5.0.fc5

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

6.8CVSS1.4AI score0.5036EPSS
Exploits0
Ubuntu
Ubuntu
added 2007/01/16 2:42 a.m.57 views

USN-408-1: krb5 vulnerability

The server-side portion of Kerberos' RPC library had a memory management flaw which allowed users of that library to call a function pointer located in unallocated memory. By doing specially crafted calls to the kadmind server, a remote attacker could exploit this to execute arbitrary code with...

9.3CVSS8.4AI score0.07926EPSS
Exploits0
securityvulns
securityvulns
added 2007/01/09 12:0 a.m.57 views

MITKRB5-SA-2006-003: kadmind (via GSS-API lib) frees uninitialized pointers

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MIT krb5 Security Advisory 2006-003 Original release: 2007-01-09 Last update: 2007-01-09 Topic: kadmind via GSS-API mechglue frees uninitialized pointers Severity: CRITICAL CVE: CVE-2006-6144 CERT: VU831452 SUMMARY ======= The Kerberos administration...

5CVSS9.8AI score0.05216EPSS
Exploits0
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.15 views

Linux Kernel 2.4.x mremap() bound checking Root Exploit

No description provided by source. / Linux kernel mremap bound checking bug exploit. Bug found by Paul Starzetz paul isec pl Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2006/01/19 4:3 p.m.8 views

security flaw

The searchbinaryhandler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service panic, as demonstrated by running a process using the bash ulimi...

2.1CVSS5.9AI score0.00518EPSS
Exploits1References4
exploitpack
exploitpack
added 2005/12/13 12:0 a.m.8 views

Linux Kernel 2.6.x - INVALIDATE_INODE_PAGES2 Local Integer Overflow

Linux Kernel 2.6.x - INVALIDATEINODEPAGES2 Local Integer Overflow / source: https://www.securityfocus.com/bid/15846/info Linux kernel is prone to a local integer-overflow vulnerability. A successful attack can result in a kernel crash. Arbitrary code execution may be possible as well, but this ha...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2005/10/13 12:0 a.m.141 views

Ethernet frame padding information leakage

Incorrect memory managment causes ethernet fame padding bytes may contain sensitive information...

5CVSS1.9AI score0.73006EPSS
Exploits15References6Affected Software1
CERT
CERT
added 2005/10/11 12:0 a.m.73 views

Microsoft COM+ contains a memory management flaw

Overview Microsoft COM+ contains a vulnerability due to a memory management flaw that may allow an attacker to take complete control of an affected system. Description Microsoft gives the following definition of COM+: COM+ is the next step in the evolution of the Microsoft Component Object Model...

7.5CVSS7AI score0.56856EPSS
Exploits0References6
CVE
CVE
added 2005/06/21 4:0 a.m.50 views

CVE-2002-1667

CVE-2002-1667 concerns the FreeBSD virtual memory subsystem. Affected: FreeBSD 4.5-RELEASE and earlier. Description: during page invalidation, the VM subsystem does not properly verify the existence of a VM object, allowing local users to trigger a crash (DoS) by calling msync on an unaccessed me...

2.1CVSS6.6AI score0.00295EPSS
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2005/04/29 12:0 a.m.19 views

Snmppd - SNMP Proxy Daemon Remote Format String

Snmppd - SNMP Proxy Daemon Remote Format String / Snmppd SNMP proxy daemon format string exploit cybertronicatgmxdotnet 04/29/2005 buffer space is 1024 bytes MAXSNMPPDOIDLEN defined in snmppd-0.4.5/snmppd.h Apr 29 16:01:31 ctronic snmppd6274: fd 5: Request:...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2005/04/13 4:0 a.m.37 views

CVE-2005-0553

Race condition in the memory management routines in the DHTML object processor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail, aka "DHTML Object Memory Corruption Vulnerability"...

7.7AI score0.50604EPSS
Exploits5References11
CVE
CVE
added 2005/04/13 4:0 a.m.93 views

CVE-2005-0553

The CVE-2005-0553 issue is a race condition in the DHTML object processor of Internet Explorer (IE) versions 5.01, 5.5, and 6 that can enable remote code execution when a user visits a crafted web page or HTML email. The root cause involves race conditions in processing of DHTML objects (e.g., Co...

5.1CVSS7.6AI score0.50604EPSS
Exploits5References11Affected Software2
exploitpack
exploitpack
added 2005/03/22 12:0 a.m.26 views

Linux Kernel 2.4.x2.6.x - uselib() Local Privilege Escalation (3)

Linux Kernel 2.4.x2.6.x - uselib Local Privilege Escalation 3 / pwned.c - linux 2.4 and 2.6 sysuselib local root exploit. PRIVATE. it's not the best one, the ldt approach is definitively better. discovered may 2004. no longer private because lorian/cliph/ihaquer can lick my balls. c 2004 sd...

0.8AI score
Exploits0
0day.today
0day.today
added 2005/03/22 12:0 a.m.59 views

Linux Kernel 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits ====================================================================== Linux Kernel 2.4.x / 2.6.x uselib Local Privilege Escalation Exploit ====================================================================== / pwned.c - linux 2.4 and 2.6...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2005/03/22 12:0 a.m.179 views

Linux Kernel 2.4.x/2.6.x - 'uselib()' Local Privilege Escalation (3)

/ pwned.c - linux 2.4 and 2.6 sysuselib local root exploit. PRIVATE. it's not the best one, the ldt approach is definitively better. discovered may 2004. no longer private because lorian/cliph/ihaquer can lick my balls. c 2004 sd requieres cca 1gb on fs. / / first create fake vma structs. let's...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/03/01 12:0 a.m.13 views

SUSE-SA:2005:010: kernel

The remote host is missing the patch for the advisory SUSE-SA:2005:010 kernel. The previous kernel security update for the SUSE Linux 9.1 and the SUSE Linux Enterprise Server 9 based products caused problems with the NVidia driver for users with NVidia graphics cards. Stricter checking in the...

5.6AI score
Exploits0
CVE
CVE
added 2005/02/16 5:0 a.m.70 views

CVE-2005-0176

The CVE-2005-0176 issue affects the Linux kernel (2.6.9 and earlier) where shmctl-based locking of System V shared memory could be misused by local unprivileged users to unlock memory from other processes. This could cause sensitive memory contents to be swapped to disk and read by others after r...

5CVSS5.8AI score0.02218EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder