Lucene search
K

731 matches found

Ubuntu
Ubuntu
added 2006/01/06 6:13 p.m.37 views

USN-238-1: Blender vulnerability

Kurt Fitzner discovered that the NBD network block device server did not correctly verify the maximum size of request packets. By sending specially crafted large request packets, a remote attacker who is allowed to access the server could exploit this to execute arbitrary code with root privilege...

5.1CVSS5.5AI score0.03788EPSS
Exploits0
Ubuntu
Ubuntu
added 2006/01/06 6:11 p.m.147 views

USN-237-1: nbd vulnerability

Kurt Fitzner discovered that the NBD network block device server did not correctly verify the maximum size of request packets. By sending specially crafted large request packets, a remote attacker who is allowed to access the server could exploit this to execute arbitrary code with root privilege...

5.1CVSS5.5AI score0.03788EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/12/30 12:0 a.m.20 views

GLSA-200512-14 : NBD Tools: Buffer overflow in NBD server

The remote host is affected by the vulnerability described in GLSA-200512-14 NBD Tools: Buffer overflow in NBD server Kurt Fitzner discovered that the NBD server allocates a request buffer that fails to take into account the size of the reply header. Impact : A remote attacker could send a...

7.5CVSS6.3AI score0.05988EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/12/24 12:0 a.m.31 views

Network Block Device (NBD) Server Request Handling Remote Overflow

The version of the Network Block Device NBD server installed on the remote host does not properly check the size of read requests before filling a dynamically-allocated buffer. Using a specially crafted read request, an attacker can overwrite this buffer, which could crash the affected server or...

7.5CVSS5.9AI score0.05988EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2005/12/23 12:0 a.m.22 views

NBD Tools: Buffer overflow in NBD server

Background The NBD Tools are the Network Block Device utilities allowing one to use remote block devices over a TCP/IP network. It includes a userland NBD server. Description Kurt Fitzner discovered that the NBD server allocates a request buffer that fails to take into account the size of the rep...

7.5CVSS7.2AI score0.05988EPSS
Exploits0
Cvelist
Cvelist
added 2005/12/22 9:0 p.m.19 views

CVE-2005-3534

Buffer overflow in the Network Block Device nbd server 2.7.5 and earlier, and 2.8.0 through 2.8.2, allows remote attackers to execute arbitrary code via a large request, which is written past the end of the buffer because nbd does not account for memory taken by the reply header...

7.7AI score0.05988EPSS
Exploits0References16
CVE
CVE
added 2005/12/22 9:0 p.m.65 views

CVE-2005-3534

CVE-2005-3534 describes a buffer overflow in the NBD (Network Block Device) server (nbd) that could allow remote code execution via a large request. Affected are nbd server versions 2.7.5 and earlier, and 2.8.0 through 2.8.2, with the issue caused by writing past the end of memory allocated for t...

7.5CVSS7.7AI score0.05988EPSS
Exploits0References16Affected Software1
Debian
Debian
added 2005/12/21 2:5 p.m.22 views

[SECURITY] [DSA 924-1] New nbd packages fix potential arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 924-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2005 http://www.debian.org/security/faq -...

5.1CVSS0.5AI score0.03788EPSS
Exploits0
Debian
Debian
added 2005/12/21 2:5 p.m.21 views

[SECURITY] [DSA 924-1] New nbd packages fix potential arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 924-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2005 http://www.debian.org/security/faq -...

5.1CVSS6.6AI score0.03788EPSS
Exploits0
securityvulns
securityvulns
added 2005/12/21 12:0 a.m.52 views

[Full-disclosure] [SECURITY] [DSA 924-1] New nbd packages fix potential arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 924-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2005 http://www.debian.org/security/faq -...

5.1CVSS0.4AI score0.03788EPSS
Exploits0
OSV
OSV
added 2005/12/21 12:0 a.m.13 views

DSA-924-1 nbd - buffer overflow

Bulletin has no description...

7.5CVSS6AI score0.05988EPSS
Exploits0
Rows per page
Query Builder