1259 matches found
Linux kernel contains race condition via ptrace/procfs/execve
Overview Unprivileged local users can use the ptrace function to take advantage of a privileged program, while that program is performing a privileged operation, to gain privileged access. Description Ptrace is a function, which is often used for debugging, that allows one process to attach to...
CVE-2001-0317
The CVE covers a race condition in Linux kernel ptrace handling that lets an unprivileged local user attach to and modify a running setuid process to gain root. Affected: Linux kernel 2.2.x and 2.4.x (ptrace/procfs/execve paths cited). Root cause: race in ptrace usage during privileged operations...
CVE-2001-0317
Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by using ptrace to track and modify a running setuid process...
CVE-2001-0317
Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by using ptrace to track and modify a running setuid process...
Проблемы в linux kernel (sysctl и ptrace)
Отрицательное смещение в вызове sysctl позволеят обращаться к памяти ядра, кроме того через ptrace можно изменить выполнение setuid процесса. На intel-архитектурах кроме того возможет DoS...
Linux Kernel 2.2.18 (RedHat 6.2/7.0 / 2.2.14/2.2.18/2.2.18ow4) - ptrace/execve Race Condition Privilege Escalation (2)
/ source: https://www.securityfocus.com/bid/2529/info The Linux kernel is the core of all distributions of the Linux Operating System. It was originally written by Linus Torvalds, and is maintained by a community of developers. A problem in the Linux Kernel could make it possible for a local user...
Linux Kernel 2.2.18 (RedHat 6.27.0 2.2.142.2.182.2.18ow4) - ptraceexecve Race Condition Privilege Escalation (1)
Linux Kernel 2.2.18 RedHat 6.27.0 2.2.142.2.182.2.18ow4 - ptraceexecve Race Condition Privilege Escalation 1 / EDB Note: Updated exploit can be found here: https://www.exploit-db.com/exploits/20721/ source: https://www.securityfocus.com/bid/2529/info The Linux kernel is the core of all...
Linux Kernel 2.2.18 (RedHat 6.27.0 2.2.142.2.182.2.18ow4) - ptraceexecve Race Condition Privilege Escalation (2)
Linux Kernel 2.2.18 RedHat 6.27.0 2.2.142.2.182.2.18ow4 - ptraceexecve Race Condition Privilege Escalation 2 / source: https://www.securityfocus.com/bid/2529/info The Linux kernel is the core of all distributions of the Linux Operating System. It was originally written by Linus Torvalds, and is...
Linux Kernel 2.2.x - Non-Readable File Ptrace Local Information Leak
Linux Kernel 2.2.x - Non-Readable File Ptrace Local Information Leak source: https://www.securityfocus.com/bid/2044/info Ptrace is a unix system call that is used to analyze running processes, usually for breakpoint debugging. The linux implementation of ptrace in 2.2.x kernels and possibly earli...
Linux Kernel 2.2.x - Non-Readable File Ptrace Local Information Leak
source: https://www.securityfocus.com/bid/2044/info Ptrace is a unix system call that is used to analyze running processes, usually for breakpoint debugging. The linux implementation of ptrace in 2.2.x kernels and possibly earlier versions contains a vulnerability that may allow an attacker to ga...
CVE-2000-0157
CVE-2000-0157 concerns NetBSD on VAX where a ptrace-based flaw lets local users gain privileges by modifying the PSL contents during debugging. The description identifies the affected vector as a local privilege escalation via the ptrace interface, but the provided documents do not specify a vend...
CVE-2000-0157
NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process...
CVE-2000-0157
NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process...
CVE-1999-0694
Denial of service in AIX ptrace system call allows local users to crash the system...
CVE-1999-0694
Technical details about CVE-1999-0694 are not publicly available in the provided documents. Monitor for updates.
CVE-1999-1079
Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program...
PT-2013-6331 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.15.4 Description: The issue is related to the Linux kernel's handling of non-canonical values for the saved RIP address in system calls that do not use IRET. This can allow local users to leverage a race...
PT-2004-3714 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.4 and 2.6 kernel-image-2.4.27-3-686-smp kernel-image-2.4.27-3-k7-smp kernel-image-2.4.27-3-itanium-smp kernel-image-2.4.27-3-sparc64-smp kernel-image-2.4.27-3-sparc32-smp kernel-headers-2.4.27-3-686-smp...
PT-2007-7477 · Linux +1 · Linux +5
Name of the Vulnerable Software and Affected Versions: linux-headers-2.6.18-5 versions 2.6.18-5 linux-image-2.6.18-5 versions 2.6.18-5 linux-modules-2.6.18-5 versions 2.6.18-5 linux-support-2.6.18-5 versions 2.6.18-5 Description: The issue affects the Linux kernel and may lead to a denial of...