kernel: proc: /proc/<pid>/mem mem_write insufficient permission checking

The memwrite function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc//mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper...

kernel: proc: /proc/<pid>/mem mem_write insufficient permission checking

The memwrite function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc//mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper...

MS11-0 9 2--Arbitary Memoray Write 2 NULL bytes!- Vulnerability warning-the black bar safety net

The day received a few e ZDI vulnerability announcement message, wherein a is MS11-0 9 2. Due to the recent File format vulnerability more interested in, so it PatchDiff2 than a little patch file. Than after 贼心 does not change the need to see that there is no ready-made POC. GOOGLE had a...

ARC Informatique PcVue HMI/SCADA ActiveX Vulnerabilities

Overview This Advisory is a follow-up to the Alert, “ICS-ALERT-11-271-01 - ARC Informatique PcVue HMI/SCADA ActiveX Vulnerabilities.” ICS-CERT is aware of publicly and privately disclosed reports of four vulnerabilities in ARC Informatique’s PcVue application. These vulnerabilities include:...

CentOS Update for seamonkey CESA-2011:0473 centos4 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for seamonkey CESA-2011:0473 centos4 i386

Check for the Version of seamonkey OpenVAS Vulnerability Test CentOS Update for seamonkey CESA-2011:0473 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

CentOS Update for firefox CESA-2011:0471 centos4 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Opera Browser 'SELECT' HTML Tag Remote Memory Corruption Vulnerability (Windows)

The host is installed with Opera browser and is prone to memory corruption vulnerability. OpenVAS Vulnerability Test $Id: gboperamemcorrvulnwin.nasl 7044 2017-09-01 11:50:59Z teissa $ Opera Browser 'SELECT' HTML Tag Remote Memory Corruption Vulnerability Windows Authors: Madhuri D Copyright:...

TSSA-2011-02 - Opera : SELECT SIZE Arbitrary null write

--------------------------------------------------------------------------- - - Opera : SELECT SIZE Arbitrary null write - - --------------------------------------------------------------------------- -- Vulnerability Summary: Date Published: 03/05/2011 Last Update: 03/05/2011 Advisory ID:...

Design/Logic Flaw

The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service application crash or...

kernel: drm/radeon/kms: check AA resolve registers on r300

The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do not properly validate data related to the AA resolve registers, which allows local users to write to arbitrary memory locations associated with 1 Video RAM aka VRAM or 2 the Graphics Translation Table GTT via crafted values...

RedHat Update for firefox RHSA-2011:0471-01

Check for the Version of firefox OpenVAS Vulnerability Test RedHat Update for firefox RHSA-2011:0471-01 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS 4 / 5 : firefox (CESA-2011:0471)

Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

CentOS 4 : seamonkey (CESA-2011:0473)

Updated SeaMonkey packages that fix several security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

Critical: Red Hat Security Advisory: thunderbird security update

An updated thunderbird package that fixes several security issues is now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Critical: Red Hat Security Advisory: thunderbird security update

An updated thunderbird package that fixes several security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity rating...

Mozilla OOM condition arbitrary memory write (MFSA 2011-12)

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...

Critical: Red Hat Security Advisory: seamonkey security update

Updated seamonkey packages that fix several security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

DEBIAN-CVE-2011-1553

Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory write, a different...

CVE-2011-1553

Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory write, a different...