Lucene search
K

1261 matches found

UbuntuCve
UbuntuCve
added 2013/11/12 12:0 a.m.37 views

CVE-2013-4511

Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the 1 au1100fbfbmmap function in...

6.9CVSS7.1AI score0.00596EPSS
Exploits1References16
OSV
OSV
added 2013/11/12 12:0 a.m.2 views

UBUNTU-CVE-2013-4511

Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the 1 au1100fbfbmmap function in...

6.9CVSS7AI score0.00596EPSS
Exploits1References17
OSV
OSV
added 2013/11/12 12:0 a.m.2 views

UBUNTU-CVE-2013-6763

The uiommapphysical function in drivers/uio/uio.c in the Linux kernel before 3.12 does not validate the size of a memory block, which allows local users to cause a denial of service memory corruption or possibly gain privileges via crafted mmap operations, a different vulnerability than...

6.9CVSS7AI score0.00633EPSS
Exploits1References20
Positive Technologies
Positive Technologies
added 2013/11/07 12:0 a.m.9 views

PT-2013-5051 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.12 Description: The issue is related to multiple integer overflows in Alchemy LCD frame-buffer drivers. Local users can create a read-write memory mapping for the entirety of kernel memory and gain privileges...

9.3CVSS7.5AI score0.34649EPSS
Exploits66References263
Metasploit
Metasploit
added 2013/10/09 9:3 p.m.77 views

Linux Kernel Sendpage Local Privilege Escalation

The Linux kernel failed to properly initialize some entries in the protoops struct for several protocols, leading to NULL being dereferenced and used as a function pointer. By using mmap2 to map page 0, an attacker can execute arbitrary code in the context of the kernel. Several public exploits...

7.8CVSS7.6AI score0.14749EPSS
Exploits17
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.37 views

Oracle Linux 5 : kernel (ELSA-2010-0504)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0504 advisory. - fs gfs2: fix permissions checking for setflags ioctl Steven Whitehouse 595580 595399 CVE-2010-1641 - misc keys: do not find already freed keyrings...

7.8CVSS7.5AI score0.21312EPSS
Exploits14References10
seebug.org
seebug.org
added 2013/07/05 12:0 a.m.70 views

FreeBSD 本地权限提升漏洞(CVE-2013-2171)

BUGTRAQ ID: 60615 CVECAN ID: CVE-2013-2171 FreeBSD是一种UNIX操作系统,是由经过BSD、386BSD和4.4BSD发展而来的Unix的一个重要分支 FreeBSD 9.0及其他版本的虚拟内存系统对权限检查不充分,注入debugger之类的跟踪进程可在未授权情况下修改被跟踪进程的地址空间,覆盖内核内存,造成权限提升或系统崩溃 0 FreeBSD = 9.0 厂商补丁: FreeBSD ------- FreeBSD已经为此发布了一个安全公告(FreeBSD-SA-13:06.mmap.asc)以及相应补丁:...

6.9CVSS0.3AI score0.06942EPSS
Exploits10
canvas
canvas
added 2013/07/02 3:43 a.m.65 views

Immunity Canvas: MAPTRACE

Name| maptrace ---|--- CVE| CVE-2013-2171 Exploit Pack| CANVAS Description| maptrace: MMAP/PTRACE privilege escalation Notes| CVE Name: CVE-2013-2171 VENDOR: Intel,FreeBSD Notes: Tested on FreeBSD 9.0-RC3 and FreeBSD 9.0-RELEASE AMD64 To test this exploit from CANVAS use the...

6.9CVSS6.3AI score0.06942EPSS
Exploits10
Prion
Prion
added 2013/07/02 3:43 a.m.17 views

Design/Logic Flaw

The vmmaplookup function in sys/vm/vmmap.c in the mmap implementation in the kernel in FreeBSD 9.0 through 9.1-RELEASE-p4 does not properly determine whether a task should have write access to a memory location, which allows local users to bypass filesystem write permissions and consequently gain...

6.9CVSS6.6AI score0.06942EPSS
Exploits10References3Affected Software1
CVE
CVE
added 2013/07/02 1:0 a.m.81 views

CVE-2013-2171

CVE-2013-2171 affects FreeBSD 9.0–9.1-RELEASE-p4 where vm_map_lookup in the mmap path may bypass write-permissions checks, enabling local privilege escalation via crafted mmap/ptrace usage. Exploitation details appear in public modules (Metasploit, CANVAS) and vendor advisories describe the fix i...

6.9CVSS6AI score0.06942EPSS
Exploits10References3Affected Software1
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.63 views

Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)

$ uname -a FreeBSD fbsd91x64 9.1-RELEASE FreeBSD 9.1-RELEASE 0 r243825: Tue Dec 4 09:23:10 UTC 2012 [email protected]:/usr/obj/usr/src/sys/GENERIC amd64 $ id uid=1001hunger gid=1002hunger groups=1002hunger $ gcc fbsd9lul.c -o fbsd9lul $ ./fbsd9lul FreeBSD 9.0,1 mmap/ptrace exploit by...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.78 views

FreeBSD mmap+ptrace vulnerability

It's possible to modify mmap memory mapped files via ptrace...

6.9CVSS2.9AI score0.06942EPSS
Exploits10References2Affected Software1
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.92 views

FreeBSD Security Advisory FreeBSD-SA-13:06.mmap [REVISED]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:06.mmap Security Advisory The FreeBSD Project Topic: Privilege escalation via mmap Category: core Module: kernel Announced: 2013-06-18 Credits: Konstantin...

6.9CVSS6.1AI score0.06942EPSS
Exploits10
Packet Storm
Packet Storm
added 2013/06/22 12:0 a.m.59 views

FreeBSD 9.0+ Privilege Escalation

/ CVE-2013-2171 FreeBSD 9.0+ Privilege escalation via mmap poc by SynQ, rdot.org, 6/2013 don't forget to cp /etc/crontab /tmp / include include include include include include include include char sc="\t\t\t\t\troot\t/tmp/bukeke\n"; void child int status; status = ptracePTTRACEME, 0, 0, 0; if...

6.9CVSS1AI score0.06942EPSS
Exploits10
Exploit DB
Exploit DB
added 2013/06/21 12:0 a.m.147 views

FreeBSD 9.0 < 9.1 - 'mmap/ptrace' Local Privilege Escalation

/ FreeBSD 9.0,1 mmap/ptrace exploit by Hunger Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... : Greetings to nohup, 2501, boldi, eax, johnnyb, kocka, op, pipacs, prof, sd, sghctoma, snq, spender, s2crew and others at hekkcamp: I hope we'll meet...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/06/20 12:0 a.m.54 views

FreeBSD mmap Privilege Escalation Exploit

This exploits performs privilege escalation leveraging the mmap vulnerability in FreeBSD 9.1 as described in FreeBSD-SA-13:06. / FreeBSD privilege escalation CVE-2013-2171 credits Konstantin Belousov & Alan Cox tested on FreeBSD 9.1 ref:...

6.9CVSS0.2AI score0.06942EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2013/06/19 12:0 a.m.30 views

FreeBSD : FreeBSD -- Privilege escalation via mmap (abef280d-d829-11e2-b71c-8c705af55518)

Due to insufficient permission checks in the virtual memory system, a tracing process such as a debugger may be able to modify portions of the traced process's address space to which the traced process itself does not have write access. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

6.9CVSS5.4AI score0.06942EPSS
Exploits10References2
FreeBSD
FreeBSD
added 2013/06/18 12:0 a.m.32 views

FreeBSD -- Privilege escalation via mmap

Due to insufficient permission checks in the virtual memory system, a tracing process such as a debugger may be able to modify portions of the traced process's address space to which the traced process itself does not have write access...

6.9CVSS6.3AI score0.06942EPSS
Exploits10
FreeBSD Advisory
FreeBSD Advisory
added 2013/06/18 12:0 a.m.16 views

FreeBSD-SA-13:06.mmap

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:06.mmap Security Advisory The FreeBSD Project Topic: Privilege escalation via mmap Category: core Module: kernel Announced: 2013-06-18 Credits: Konstantin...

6.9CVSS6AI score0.06942EPSS
Exploits10
android
android
added 2013/05/01 12:0 a.m.35 views

Qualcomm Gandalf camera driver

The camera driver provides several interfaces to user space clients. The user space clients communicate to the kernel via syscalls such as ioctl or mmap. The camera driver provides an uncontrolled mmap interface that allows an application with access to the device file to map physical memory...

7.2CVSS3.7AI score0.00889EPSS
Exploits0References3
Rows per page
Query Builder