215 matches found
CVE-2011-1898
Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to generate MSI interrupts by writing to the interrupt injection registers."...
CVE-2011-1898
Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to generate MSI interrupts by writing to the interrupt injection registers."...
CVE-2011-1898
CVE-2011-1898 affects Xen (versions 4.1 before 4.1.1 and 4.0 before 4.0.2). When using PCI passthrough on Intel VT-d chipsets that lack interrupt remapping, a guest OS user can gain host OS privileges by using DMA to generate MSI interrupts via the interrupt injection registers. The provided docu...
CVE-2011-1898
Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to generate MSI interrupts by writing to the interrupt injection registers."...
VT-d (PCI passthrough) MSI trap injection
ISSUE DESCRIPTION Intel VT-d chipsets without interrupt remapping do not prevent a guest which owns a PCI device from using DMA to generate MSI interrupts by writing to the interrupt injection registers. This can be exploited to inject traps and gain control of the host. VULNERABLE SYSTEMS You ar...
CentOS 5 : kernel (CESA-2010:0398)
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Fedora Update for mutt FEDORA-2007-0001
Check for the Version of mutt OpenVAS Vulnerability Test Fedora Update for mutt FEDORA-2007-0001 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for mutt FEDORA-2007-540
Check for the Version of mutt OpenVAS Vulnerability Test Fedora Update for mutt FEDORA-2007-540 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Linux Kernel "do_mremap" Local Proof of Concept II
No description provided by source. / Proof of concept code for testing domremap Linux kernel bug. It is based on the code by Christophe Devine and Julien Tinnes posted on Bugtraq mailing list on 5 Jan 2004 but it's safer since it avoids any kernel data corruption. The following test was done...
ms07-009-sploit.txt
//------------------Replace with your code-----------------------// var Shellcode =...
Windows kernel GDI structures privilege escalation
It's possible to remap read-only share memory section in write mode...
CVE-2003-0985
The mremap system call domremap in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing a remapping of a virtual memory area VMA to create...
Linux Kernel ""do_mremap"" Local Proof of Concept II
No description provided by source. / Proof of concept code for testing domremap Linux kernel bug. It is based on the code by Christophe Devine and Julien Tinnes posted on Bugtraq mailing list on 5 Jan 2004 but it's safer since it avoids any kernel data corruption. The following test was done...
Linux Kernel 2.4.232.6.0 - do_mremap() Bound Checking Validator (2)
Linux Kernel 2.4.232.6.0 - domremap Bound Checking Validator 2 / EDB Note: This will just "test" the vulnerability. EDB Note: An exploit version can be found here https://www.exploit-db.com/exploits/145/ / / Proof of concept code for testing domremap Linux kernel bug. It is based on the code by...
Linux Kernel "do_mremap" Local Proof of Concept II
Exploit for linux platform in category local exploits ================================================== Linux Kernel "domremap" Local Proof of Concept II ================================================== / Proof of concept code for testing domremap Linux kernel bug. It is based on the code by...