9977 matches found
CVE-2006-6275
CVE-2006-6275 documents a race condition in the Solaris kernel (versions 8–10) that allows local users to trigger a denial of service (panic) via unspecified attack vectors. The description hints at involvement of the exitlwps function and SIGKILL and /proc PCAGENT signals, but does not provide c...
CVE-2006-6130
Apple Mac OS X AppleTalk allows local users to cause a denial of service kernel panic by calling the AIOCREGLOCALZN ioctl command with a crafted data structure on an AppleTalk socket...
CVE-2006-6130
CVE-2006-6130 affects Apple Mac OS X AppleTalk. A local user can trigger a kernel panic by invoking the AIOCREGLOCALZN ioctl with a crafted data structure on an AppleTalk socket. The underlying cause, as stated in public records, is manipulation of the AppleTalk ioctl path leading to a denial of ...
Apple Mac OSX 10.4.x - AppleTalk AIOCRegLocalZN IOCTL Stack Buffer Overflow
// source: https://www.securityfocus.com/bid/21317/info Apple Mac OS X is prone to a local memory-corruption vulnerability. This issue occurs when the operating system fails to handle specially crafted arguments to an IOCTL call. Due to the nature of this issue, an attacker may be able to execute...
FreeBSD Remote NFS RPC Request Denial of Service
This module sends a specially-crafted NFS Mount request causing a kernel panic on host running FreeBSD 6.0. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FreeBSD Remote NFS RPC Request Denial...
Mac OS X fpathconf() DoS
fpathconf call for unsupported file type causes system panic...
MOKB-09-11-2006
Title: Mac OS X fpathconf syscall denial of service Warning - wet floor! Description: Failure to handle unknown file types by the Mac OS X kernel XNU fpathconf syscall causes a kernel panic, leading to an exploitable local denial of service by non-privileged users. The bug was fixed by FreeBSD on...
CVE-2006-5836
The fpathconf syscall function in bsd/kern/kerndescrip.c in the Darwin kernel XNU 8.8.1 in Apple Mac OS X allows local users to cause a denial of service kernel panic and possibly execute arbitrary code via a file descriptor with an unrecognized file type...
CVE-2006-5836
The CVE-2006-5836 entry concerns the Mac OS X kernel (Darwin/XNU) fpathconf() syscall in kern_descrip.c, affecting Darwin 8.8.1. The vulnerability allows an authenticated local attacker to trigger a kernel panic (DoS) via a file descriptor associated with an unrecognized file type (e.g., semaphor...
CVE-2006-5824
Integer overflow in the ffsrdextattr function in FreeBSD 6.1 allows local users to cause a denial of service kernel panic and trigger a heap-based buffer overflow via a crafted UFS filesystem, a different vulnerability than CVE-2006-5679. NOTE: a third party states that this issue does not cross...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 3 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...
Debian DSA-1070-1 : kernel-source-2.4.19 - several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2004-0427 A local denial of service vulnerability i...
CVE-2006-4516
CVE-2006-4516 affects FreeBSD 6.0-RELEASE. The kernel’s PT_LWPINFO ptrace handling has a signedness flaw: a large negative data value can bypass the signed check and be passed to copyout, causing memory corruption and kernel panic. Impact is a local denial-of-service condition. Described in iDefe...
CVE-2006-4516
Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service memory corruption and kernel panic via a PTLWPINFO ptrace command with a large negative data value that satisfies a signed maximum value check but is used in an unsigned copyout function call...
iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPINFO Denial of Service Vulnerability
FreeBSD ptrace PTLWPINFO Denial of Service Vulnerability iDefense Security Advisory 10.10.06 http://www.idefense.com/intelligence/vulnerabilities/ Oct 10, 2006 I. BACKGROUND FreeBSD is a modern operating system for x86, amd64, Alpha, IA-64, PC-98 and SPARC architectures. It's based on the UNIX...
CVE-2006-4997
CVE-2006-4997 involves the Linux kernel ATM subsystem (clip_mkip in net/atm/clip.c). The issue allows a remote attacker to trigger a denial of service (panic) by causing the ATM subsystem to dereference memory of socket buffers after they have been freed. This is triggered by memory access patter...
security flaw
The clipmkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service panic via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed freed pointer dereference...
CVE-2006-5013
Sun Solaris 10 before patch 118855-16 20060925, when run on x64 systems using IPv6, allows remote attackers to cause a denial of service kernel panic via crafted IPv6 packets...
iDefense Security Advisory 09.23.06: FreeBSD i386_set_ldt Integer Overflow Vulnerability
FreeBSD i386setldt Integer Overflow Vulnerability iDefense Security Advisory 09.23.06 http://www.idefense.com/intelligence/vulnerabilities/ Sep 23, 2006 I. BACKGROUND FreeBSD is a modern operating system for x86, amd64, Alpha, IA-64, PC-98 and SPARC architectures. It's based on the UNIX operating...
USN-346-1: Linux kernel vulnerabilities
A Denial of service vulnerability was reported in iptables' SCTP conntrack module. On computers which use this iptables module, a remote attacker could expoit this to trigger a kernel crash. CVE-2006-2934 A buffer overflow has been discovered in the dvdreadbca function. By inserting a specially...