6 matches found
Null pointer dereference
OpenBSD 4.2 allows local users to cause a denial of service kernel panic by calling the SIOCGIFRTLABEL IOCTL on an interface that does not have a route label, which triggers a NULL pointer dereference when the return value from the rtlabelid2name function is not checked...
openbsd-deref.txt
/ OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $ uname -mrsv OpenBSD 4.2 GENERIC375 i386 $ id uid=1000hunger gid=1000hunger...
OpenBSD 4.2 - rtlabel_id2name() Local Null Pointer Dereference Denial of Service
OpenBSD 4.2 - rtlabelid2name Local Null Pointer Dereference Denial of Service / OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $...
OpenBSD 4.2 - 'rtlabel_id2name()' Local Null Pointer Dereference Denial of Service
/ OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $ uname -mrsv OpenBSD 4.2 GENERIC375 i386 $ id uid=1000hunger gid=1000hunger...
OpenBSD 4.2 rtlabel_id2name() Local Null Pointer Dereference DoS
Exploit for bsd platform in category dos / poc ================================================================ OpenBSD 4.2 rtlabelid2name Local Null Pointer Dereference DoS ================================================================ / OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null...
OpenBSD rtlabel_id2name()本地拒绝服务漏洞
BUGTRAQ ID: 27252 OpenBSD是一款开放源代码Unix类操作系统。 OpenBSD中对ifconfig rtlabel的rtlabelid2name调用没有正确地验证返回值,如果没有分配标记或ID无效的话rtlabelid2name就可能返回空。本地攻击者可以通过在没有分配路由标记的接口上使用SIOCGIFRTLABEL ioctl导致内核忙碌。 OpenBSD 4.2 厂商补丁: OpenBSD ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...