RHEL 5 : kernel (RHSA-2009:1106)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:1106 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security fixes: several flaws were found in the way th...

Linux Kernel 2.6.x (Sparc64) - '/proc/iomem' Local Denial of Service

source: https://www.securityfocus.com/bid/35415/info The Linux kernel is prone to a local denial-of-service vulnerability that attackers can exploit to cause an affected computer to crash. This issue affects the Linux kernel 2.6.22-rc1 through 2.6.29 on the sparc64 architecture. The following...

Memcached stats maps命令信息泄露漏洞

BUGTRAQ ID: 34756 CVECAN ID: CVE-2009-1255 Memcached是一个开源的多平台数据库缓存软件。 如果远程攻击者连接到了memcached的TCP端口（默认11211）并发布了stats maps命令，Memcached就会直接将/proc/self/maps的输出管道传输给客户端。这可能导致泄漏所分配内存区域的地址。 Danga Interactive memcached 1.2.7 MemcacheDB MemcacheDB 1.2 Danga Interactive -----------------...

memcached -- memcached stats maps Information Disclosure Weakness

Secunia reports: A weakness has been reported in memcached, which can be exploited by malicious people to disclose system information. The weakness is caused due to the application disclosing the content of /proc/self/maps if a stats maps command is received. This can be exploited to disclose e.g...

Mandriva Linux Security Advisory : libxslt (MDVSA-2008:151)

A buffer overflow vulnerability in libxslt could be exploited via an XSL style sheet file with a long XLST transformation match condition, which could possibly lead to the execution of arbitrary code CVE-2008-1767. The updated packages have been patched to correct this issue. %NASLMINLEVEL 70300 ...

Linux Kernel /proc/net/udp本地拒绝服务漏洞

BUGTRAQ ID: 34329 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的net/ipv4/udp.c文件中的udpgetnext函数在试图解锁仍未锁定的spinlock时存在错误，如果从/proc/net/udp/读取了0字节就会导致系统崩溃。 Linux kernel 2.6.x Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.29-git8.bz2...

CVE-2009-1243

net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain incorrect circumstances, which allows local users to cause a denial of service panic by reading zero bytes from the /proc/net/udp file and unspecified other files, related to the "udp seqfile infrastructure."...

Ubuntu Update for libgtop2 vulnerability USN-407-1

Ubuntu Update for Linux kernel vulnerabilities USN-407-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4071.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for libgtop2 vulnerability USN-407-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

CVE-2009-0477

Technical details for CVE-2009-0477 are not publicly available in the provided documents. Monitor for updates from official sources for affected versions, impact, and remediation.

Linux Kernel 'atm module' Local Denial of Service

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service kernel infinite loop by making two calls to svclisten for the same socket, and then reading a /proc/net/atm/vc file, related to corruption of the vcc table...

Linux Kernel 'atm module' Local Denial of Service

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service kernel infinite loop by making two calls to svclisten for the same socket, and then reading a /proc/net/atm/vc file, related to corruption of the vcc table...

Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service

Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service / cve-2008-5079.c Linux Kernel http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5079: net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service kernel infinite loop b...

Linux Kernel <= 2.6.27.8 ATMSVC Local Denial of Service Exploit

Exploit for linux platform in category dos / poc =============================================================== Linux Kernel http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5079: net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a...

CVE-2008-5079

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service kernel infinite loop by making two calls to svclisten for the same socket, and then reading a /proc/net/atm/vc file, related to corruption of the vcc table...

CVE-2008-5079

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service kernel infinite loop by making two calls to svclisten for the same socket, and then reading a /proc/net/atm/vc file, related to corruption of the vcc table...

kernel security and bug fix update

2.6.9-78.0.8.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...

Ho' Detector (Promiscuous mode detector shellcode) 56 bytes

No description provided by source. / ▐▄∙ ▄ ▄▄▄ . ▐ ▄ ∙ ▌ ▄ ·. ▄∙ ▄▌ ▄▄▄▄▄ ▄▄▄· █▌█▌■ ▀▄.▀· ∙█▌▐█ ■ ·██ ▐███■ █■██▌ ∙██ ▐█ ▀█ ·██· ▐▀▀■▄ ▐█▐▐▌ ▄█▀▄ ▐█ ▌▐▌▐█· █▌▐█▌ ▐█.■ ▄█▀▀█ ■▐█·█▌ ▐█▄▄▌ ██▐█▌ ▐█▌.▐▌ ██ ██▌▐█▌ ▐█▄█▌ ▐█▌· ▐█ ■▐▌ ∙▀▀ ▀▀ ▀▀▀ ▀▀ █■ ▀█▄▀■ ▀▀ █■▀▀▀ ▀▀▀ ▀▀▀ ▀ ▀ Ho' Detector Promiscuous...

Ho' Detector Promiscuous mode detector shellcode 56 bytes

Ho' Detector Promiscuous mode detector shellcode 56 bytes. Shellcode exploit for linx86 platform / ▐▄∙ ▄ ▄▄▄ . ▐ ▄ ∙ ▌ ▄ ·. ▄∙ ▄▌ ▄▄▄▄▄ ▄▄▄· █▌█▌■▀▄.▀· ∙█▌▐█ ■·██ ▐███■█■██▌ ∙██ ▐█...

Gentoo Security Advisory GLSA 200407-16 (Kernel)

The remote host is missing updates announced in advisory GLSA 200407-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

linux/x86 setuid(0) . setgid(0) . aslr_off 79 bytes

No description provided by source. / Linux/x86 Fedora 8 setuid0 + setgid0 + execve"echo 0 /proc/sys/kernel/randomizevaspace" by LiquidWorm 2008 c www.zeroscience.org liquidworm at gmail.com 79 bytes. / char sc = "\x6a\x17" // push $0x17 "\x58" // pop %eax "\x31\xdb" // xor %ebx, %ebx "\xcd\x80" /...