1366 matches found
security flaw
The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service process kill or possibly other behaviors that would not normally be allowed, by modifying the...
[SECURITY] [DSA 187-1] New Apache packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 187-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2002 http://www.debian.org/security/faq -...
CVE-2002-0839
The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service process kill or possibly other behaviors that would not normally be allowed, by modifying the...
CVE-2002-0839
The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service process kill or possibly other behaviors that would not normally be allowed, by modifying the...
iDEFENSE Security Advisory 10.03.2002: Apache 1.3.x shared memory scoreboard vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.03.2002 Apache 1.3.x shared memory scoreboard vulnerabilities 16:00 GMT, October 3, 2002 I. BACKGROUND The Apache Software Foundation's HTTP Server is an effort to develop and maintain an open-source HTTP server for moder...
Multiple bugs in XFree86
User's directory in search path for shared libraries for suid applications, shared memory acces via MIT-SHM...
PT-2002-1855 · Apache · Apache Http Server
Name of the Vulnerable Software and Affected Versions: Apache versions 1.3.x through 1.3.26 Description: The issue concerns the shared memory scoreboard in the HTTP daemon, which allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root. This can result in a denial...
CVE-2001-1397
The System V SYS5 shared memory implementation for Linux kernel before 2.2.19 could allow attackers to modify recently freed memory...
CVE-2001-1397
CVE-2001-1397 affects the System V shared memory implementation in the Linux kernel before version 2.2.19. The issue allows attackers to modify recently freed memory within SYSV shared memory. Public sources consistently describe this as a kernel memory handling flaw rather than a user-space vuln...
Moderate: Red Hat Security Advisory: mm security update
Updated mm packages are now available for Red Hat Linux Advanced Server. This update addresses possible vulnerabilities in how the MM library opens temporary files. The MM library provides an abstraction layer which allows related processes to easily share data. On systems where shared memory or...
DSA-137 mm - insecure temporary files
Bulletin has no description...
MM 1.0.x/1.1.x - Shared Memory Library Temporary File Privilege Escalation
// source: https://www.securityfocus.com/bid/5352/info The MM Shared Memory library is reported to be prone to a race condition with regards to temporary files which may enable a local attacker to gain elevated privileges. This issue may reportedly be exploited by an attacker with shell access as...
MM 1.0.x1.1.x - Shared Memory Library Temporary File Privilege Escalation
MM 1.0.x1.1.x - Shared Memory Library Temporary File Privilege Escalation // source: https://www.securityfocus.com/bid/5352/info The MM Shared Memory library is reported to be prone to a race condition with regards to temporary files which may enable a local attacker to gain elevated privileges...
Open Unix X-Server MIT-SHM module shared memory access
It's possible to gain read/write access to any shared memory segment...
Security Update: [CSSA-2002-SCO.14] Open UNIX 8.0.0 UnixWare 7.1.1 : X server allows access to any shared memory on the system
To: [email protected] [email protected] [email protected] Caldera International, Inc. Security Advisory Subject: Open UNIX 8.0.0 UnixWare 7.1.1 : X server allows access to any shared memory on the system Advisory number: CSSA-2002-SCO.14 Issue date: 2002 April 08 Cross...
CVE-2002-0164
Vulnerability in the MIT-SHM extension of the X server on Linux XFree86 4.2.1 and earlier allows local users to read and write arbitrary shared memory, possibly to cause a denial of service or gain privileges...
CVE-2002-0164
Vulnerability in the MIT-SHM extension of the X server on Linux XFree86 4.2.1 and earlier allows local users to read and write arbitrary shared memory, possibly to cause a denial of service or gain privileges...
Apache Httpd < 1.3.27 : Shared memory permissions lead to local privilege escalation
The permissions of the shared memory used for the scoreboard allows an attacker who can execute under the Apache UID to send a signal to any process as root or cause a local denial of service attack...
CVE-1999-1518
Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits e.g., as specified with rlimits using mmap or shmget to allocate memory and cause page faults...
CVE-1999-1518
The CVE-1999-1518 entry describes that operating systems with BSD 4.4–style shared memory implementations allow a user to perform a denial-of-service and bypass memory limits by using mmap or shmget to allocate memory and trigger page faults. The impact stated is partial availability; no specific...