CVE-2004-0657

Integer overflow in the NTP daemon NTPd before 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time...

CVE-2004-0657

Integer overflow in the NTP daemon NTPd before 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time...

DEBIAN-CVE-2004-0657

Integer overflow in the NTP daemon NTPd before 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time...

CVE-2004-0415

The CVE-2004-0415 issue affects the Linux kernel where 64-bit file offset pointers are not reliably converted to 32 bits, enabling a local unprivileged user to access portions of kernel memory. An attacker can leverage this through file I/O paths that manipulate 32/64-bit offset conversions, pote...

CVE-2004-0415

Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...

isec-0016-procleaks.txt

Synopsis: Linux kernel file offset pointer handling Product: Linux kernel Version: 2.4 up to to and including 2.4.26, 2.6 up to to and including 2.6.7 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0016-procleaks.txt CVE: CAN-2004-0415 Author: Paul Starzetz Date: Aug 04,...

Linux kernel file offset pointer races

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel file offset pointer handling Product: Linux kernel Version: 2.4 up to to and including 2.4.26, 2.6 up to to and including 2.6.7 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0016-procleaks.txt CVE:...

Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure

/ CAN-2004-0415 / gcc -O3 prockmemdump.c -o prockmemdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING, PRINTING, DISTRIBUTION, MODIFICATION WITHOUT PERMISSION OF THE AUTHOR IS...

Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure

Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure / CAN-2004-0415 / gcc -O3 prockmemdump.c -o prockmemdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...

Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit

Exploit for linux platform in category local exploits =================================================================== Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit =================================================================== / CAN-2004-0415 / gcc -O3 prockmemdump....

security flaw

Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix potential information leaks and a incorrect driver permission for Red Hat Enterprise Linux 2.1 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset...

CVE-2004-0657

Integer overflow in the NTP daemon NTPd before 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time...

Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit

Exploit for linux platform in category dos / poc ==================================================================== Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit ==================================================================== /...

security flaw

Portable Network Graphics PNG library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a buffer overflow attack on the row buffers...

CVE-2004-1925

Multiple SQL injection vulnerabilities in Tiki CMS/Groupware TikiWiki 1.8.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sortmode parameter in 1 tiki-usermenu.php, 2 tiki-listfilegallery.php, 3 tiki-directoryranking.php, 4 tiki-browsecategories.php, 5 tiki-index.ph...

NTP service vulnerable to internal overflow if date / time offset is greater than 34 years

Overview NTP Network TIme Protocol contains an integer overflow vulnerability that may lead to clients receiving an incorrect date/time offset. Description NTP Network Time Protocol is a method by which client machines can synchronize the local date and time with a reference server. The server wi...

CVE-2003-0075

Integer signedness error in the myFseek function of samplein.c for Blade encoder BladeEnc 0.94.2 and earlier allows remote attackers to execute arbitrary code via a negative offset value following a "fmt" wave chunk...

Ошибки в sendmail debug (signed/unsigned)

при использовании ключа -d используется знаковое число после присвоения ему беззнакового значения в качестве индекса массива, что позволяет адресовать отрицательное смещение...

CVE-2001-0515

Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offsettodata value...