CVE-2008-5076

htop 0.7 writes process names to a terminal without sanitizing non-printable characters, which might allow local users to hide processes, modify arbitrary files, or have unspecified other impact via a process name with "crazy control strings."...

PT-2008-6230 · Htop +1 · Htop +1

Name of the Vulnerable Software and Affected Versions: htop version 0.7 Description: The issue allows local users to potentially hide processes, modify arbitrary files, or have unspecified other impact by utilizing a process name that contains non-printable characters, referred to as "crazy contr...

Debian DSA-1638-1 : openssh - denial of service

It has been discovered that the signal handler implementing the login timeout in Debian's version of the OpenSSH server uses functions which are not async-signal-safe, leading to a denial of service vulnerability CVE-2008-4109 . The problem was originally corrected in OpenSSH 4.4p1 CVE-2006-5051 ...

freebsd/x86 kill all processes 12 bytes

No description provided by source. CoDed bY suN8Hclf DaRk-CodeRs Group productions, kid FreeBSD x86 kill all procesess 12 bytes shellcode Compile: nasm -f elf code.asm ld -e start -o code code.o Assembly code: ---------------------code.asm------------------- section .text global start start: xor...

freebsd/x86 - kill all processes 12 bytes

freebsd/x86 kill all processes 12 bytes. Shellcode exploit for freebsdx86 platform CoDed bY suN8Hclf DaRk-CodeRs Group productions, kid FreeBSD x86 kill all procesess 12 bytes shellcode Compile: nasm -f elf code.asm ld -e start -o code code.o Assembly code:...

Network daemons not managed by the package system

Some daemon processes on the remote host are associated with programs that have been installed manually. System administration best practice dictates that an operating system's native package management tools be used to manage software installation, updates, and removal whenever possible. TRUSTED...

Code injection

The Probe Builder Service aka PBOVISServer.exe in European Performance Systems EPS Probe Builder 2.2 before A.02.20.901, as used in HP OpenView Internet Services OVIS on Windows, allows remote attackers to kill arbitrary processes via a process ID number in an unspecified opcode...

CVE-2008-1667

The Probe Builder Service aka PBOVISServer.exe in European Performance Systems EPS Probe Builder 2.2 before A.02.20.901, as used in HP OpenView Internet Services OVIS on Windows, allows remote attackers to kill arbitrary processes via a process ID number in an unspecified opcode...

CVE-2008-1667

The CVE concerns HP OpenView Internet Services’ Probe Builder (EPS Probe Builder 2.2) on Windows where PBOVISServer.exe exposes an opcode allowing remote, unauthenticated termination of arbitrary processes by PID. Affected: EPS Probe Builder 2.2 prior to A.02.20.901 (used with HP OVIS). Impact: r...

CVE-2008-1667

The Probe Builder Service aka PBOVISServer.exe in European Performance Systems EPS Probe Builder 2.2 before A.02.20.901, as used in HP OpenView Internet Services OVIS on Windows, allows remote attackers to kill arbitrary processes via a process ID number in an unspecified opcode...

httpd scoreboard lack of PID protection

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

CVE-2008-2122

IBM Rational Build Forge 7.0.2 allows remote attackers to cause a denial of service CPU consumption via a port scan, which spawns multiple bfagent server processes that attempt to read data from closed sockets...

[SECURITY] Fedora 7 Update: perl-5.8.8-29.fc7

Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common...

[SECURITY] Fedora 8 Update: PolicyKit-0.6-2.fc8

PolicyKit is a toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes...

Hardcoded credentials

ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is not changed when it is set by a user, which allows remote attackers to gain privileges...

PT-2008-1001 · Zyxel +1 · Zywall Usg 300 +3

Name of the Vulnerable Software and Affected Versions: ZyXEL ZyWALL 1050 affected versions not specified ZyXEL ZyWALL USG 300 affected versions not specified Description: The issue is related to a hard-coded password for the Quagga and Zebra processes in the ZyXEL ZyWALL firewall/router operating...

RHEL 5 : kernel (RHSA-2008:0154)

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

kernel: denial of service with wedged processes

Unspecified versions of the Linux kernel allow local users to cause a denial of service unrecoverable zombie process via a program with certain instructions that prevent init from properly reaping a child whose parent has died...

[SECURITY] Fedora 8 Update: qemu-0.9.0-6.fc8

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...