Lucene search
K

2885 matches found

Cvelist
Cvelist
added 2006/11/14 10:0 p.m.45 views

CVE-2006-5461

Avahi before 0.6.15 does not verify the sender identity of netlink messages to ensure that they come from the kernel instead of another process, which allows local users to spoof network changes to Avahi...

5.7AI score0.00395EPSS
Exploits0References15
Ubuntu
Ubuntu
added 2006/11/11 1:46 a.m.50 views

USN-380-1: Avahi vulnerability

Steve Grubb discovered that netlink messages were not being checked for their sender identity. This could lead to local users manipulating the Avahi service...

2.1CVSS8.2AI score0.00395EPSS
Exploits0
securityvulns
securityvulns
added 2006/11/11 12:0 a.m.63 views

[Full-disclosure] [USN-380-1] Avahi vulnerability

=========================================================== Ubuntu Security Notice USN-380-1 November 11, 2006 avahi vulnerability CVE-2006-5461 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu...

2.1CVSS7.4AI score0.00395EPSS
Exploits0
securityvulns
securityvulns
added 2006/11/11 12:0 a.m.138 views

Avahi privilege escalation

Insufficient Netlink parameters validation allow to manipulate server parameters...

5.1AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.14 views

Solaris 9 (sparc) : 121332-01

PC NetLink 2.0 Server Adm fixes. Date this patch was last updated by Sun : Dec/02/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.21 views

Solaris 6 (sparc) : 113531-10

PC NetLink 2.0 server fixes. Date this patch was last updated by Sun : Feb/24/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.14 views

Solaris 9 (sparc) : 113531-10

PC NetLink 2.0 server fixes. Date this patch was last updated by Sun : Feb/24/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.22 views

Solaris 7 (sparc) : 121209-01

PC NetLink 2.0 Client GUI fixes. Date this patch was last updated by Sun : Dec/02/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.13 views

Solaris 8 (sparc) : 121332-01

PC NetLink 2.0 Server Adm fixes. Date this patch was last updated by Sun : Dec/02/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.10 views

Solaris 7 (sparc) : 121332-01

PC NetLink 2.0 Server Adm fixes. Date this patch was last updated by Sun : Dec/02/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.19 views

Solaris 8 (sparc) : 113531-10

PC NetLink 2.0 server fixes. Date this patch was last updated by Sun : Feb/24/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.10 views

Solaris 9 (sparc) : 121209-01

PC NetLink 2.0 Client GUI fixes. Date this patch was last updated by Sun : Dec/02/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Prion
Prion
added 2006/01/11 9:3 p.m.20 views

Code injection

The netlinkrcvskb function in afnetlink.c in Linux kernel 2.6.14 and 2.6.15 allows local users to cause a denial of service infinite loop via a nlmsglen field of 0...

4.9CVSS6.2AI score0.00379EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/01/09 11:0 a.m.24 views

CVE-2005-4635

The nlfibinput function in fibfrontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service invalid memory reference via malformed fiblookup netlink messages...

6.5AI score0.02889EPSS
Exploits0References7
securityvulns
securityvulns
added 2006/01/05 12:0 a.m.26 views

Linux kernel multiple vulnerabilities

TwinHan DST Frontend/Card buffer overflow,kernel/sysctl.c off-by-one, fiblookup netlink message memory corruption, setmempolicy DoS...

2.9AI score
Exploits0References1
NVD
NVD
added 2005/12/31 5:0 a.m.22 views

CVE-2005-4635

The nlfibinput function in fibfrontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service invalid memory reference via malformed fiblookup netlink messages...

5CVSS6.5AI score0.02889EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2005/12/31 5:0 a.m.28 views

CVE-2005-4635

The nlfibinput function in fibfrontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service invalid memory reference via malformed fiblookup netlink messages...

5CVSS6AI score0.02889EPSS
Exploits0References1
NVD
NVD
added 2005/12/28 11:3 a.m.13 views

CVE-2005-4552

The 1 slsmgr and 2 slsadmin programs in Sun Solaris PC NetLink 2.0 create temporary files insecurely, which allows local users to gain privileges...

7.2CVSS6.6AI score0.00387EPSS
Exploits0References11
CVE
CVE
added 2005/12/28 11:0 a.m.51 views

CVE-2005-4552

The CVE-2005-4552 entry applies to Sun Solaris PC NetLink 2.0, affecting the (1) slsmgr and (2) slsadmin programs. The root issue is insecure handling of temporary files, which allows local users to gain privileges. The description does not specify version ranges beyond PC NetLink 2.0, nor provid...

7.2CVSS7AI score0.00387EPSS
Exploits0References11Affected Software1
securityvulns
securityvulns
added 2005/12/26 12:0 a.m.20 views

Sun Solaris PC Netlink symbolic links problem

"/opt/lanman/sbin/slsmgr" and "/etc/init.d/slsadmin" symbolic links problem...

1.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder