194 matches found
CVE-2011-1925
The CVE-2011-1925 issue affects nbd-server in Network Block Device, version 2.9.21. A remote attacker can trigger a denial-of-service via a NULL pointer dereference during negotiation, demonstrated by providing a name for a non-existent export. Public sources (SUSE, Gentoo GLSA, OSS/OpenVAS advis...
CVE-2011-1925
nbd-server.c in Network Block Device nbd-server 2.9.21 allows remote attackers to cause a denial of service NULL pointer dereference and crash by causing a negotiation failure, as demonstrated by specifying a name for a non-existent export...
[SECURITY] [DSA 2183-1] nbd security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2183-1 [email protected] http://www.debian.org/security/ Raphael Geissert March 04, 2011 http://www.debian.org/security/faq -...
CVE-2011-0530
Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device nbd before 2.9.20 might allow remote attackers to execute arbitrary code via a long request. NOTE: this issue exists because of a CVE-2005-3534 regression...
CVE-2011-0530
Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device nbd before 2.9.20 might allow remote attackers to execute arbitrary code via a long request. NOTE: this issue exists because of a CVE-2005-3534 regression...
CVE-2011-0530
Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device nbd before 2.9.20 might allow remote attackers to execute arbitrary code via a long request. NOTE: this issue exists because of a CVE-2005-3534 regression...
FreeBSD Ports: nbd-server
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: nbd-server
The remote host is missing an update to the system as announced in the referenced advisory. VID 43770b1c-72f6-11da-8c1d-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD : nbd-server -- buffer overflow vulnerability (43770b1c-72f6-11da-8c1d-000e0c2e438a)
Kurt Fitzner reports a buffer overflow vulnerability within nbd. This could potentially allow the execution of arbitrary code on the nbd server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML databa...
USN-238-1: Blender vulnerability
Kurt Fitzner discovered that the NBD network block device server did not correctly verify the maximum size of request packets. By sending specially crafted large request packets, a remote attacker who is allowed to access the server could exploit this to execute arbitrary code with root privilege...
Network Block Device (NBD) Server Request Handling Remote Overflow
The version of the Network Block Device NBD server installed on the remote host does not properly check the size of read requests before filling a dynamically-allocated buffer. Using a specially crafted read request, an attacker can overwrite this buffer, which could crash the affected server or...
NBD Tools: Buffer overflow in NBD server
Background The NBD Tools are the Network Block Device utilities allowing one to use remote block devices over a TCP/IP network. It includes a userland NBD server. Description Kurt Fitzner discovered that the NBD server allocates a request buffer that fails to take into account the size of the rep...
CVE-2005-3534
Buffer overflow in the Network Block Device nbd server 2.7.5 and earlier, and 2.8.0 through 2.8.2, allows remote attackers to execute arbitrary code via a large request, which is written past the end of the buffer because nbd does not account for memory taken by the reply header...
CVE-2005-3534
CVE-2005-3534 describes a buffer overflow in the NBD (Network Block Device) server (nbd) that could allow remote code execution via a large request. Affected are nbd server versions 2.7.5 and earlier, and 2.8.0 through 2.8.2, with the issue caused by writing past the end of memory allocated for t...