824 matches found
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the squashfs-modules-2.6-486 package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
Booting Kali Linux Live over HTTP
The basic premise involves using the Kali Live kernel and initrd for booting, while calling the Kali root filesystem through an HTTP URI. The initial boot process can take place over the network via PXE or a minimal USB/CD – while the remote root filesystem is a squashfs image served over HTTP vi...
Linux Kernel 2.6.x SquashFS Double Free Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20870/info The Linux kernel is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to crash the affected computer, denying service to legitimate users...
Unauthorized Access Backdoor found in D-Link router Firmware Code
A number of D-Link routers reportedly have an issue that makes them susceptible to unauthorized backdoor access. The researcher Craig, specialized on the embedded device hacking - demonstrated the presence of a backdoor within some DLink routers that allows an attacker to access the administratio...
[Capture the flag] Remaster Linux Live CD images for wargames
Remaster Linux Live CD images for the purpose of creating ready to use security wargames with pre-installed vulnerabilities to exploit. Requirements You will need the following in order to build the Live CD using the scripts in this project: Linux, with root access using sudo git make, gcc -- for...
Mandriva Linux Security Advisory : squashfs-tools (MDVSA-2013:128)
Updated squashfs-tools packages fix security vulnerabilities : remote arbitrary code execution via crafted list file CVE-2012-4024. integer overflow in queueinit may lead to arbitrary code execution CVE-2012-4025. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...
Fedora Update for squashfs-tools FEDORA-2012-19203
Check for the Version of squashfs-tools OpenVAS Vulnerability Test Fedora Update for squashfs-tools FEDORA-2012-19203 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...
Fedora Update for squashfs-tools FEDORA-2012-19227
Check for the Version of squashfs-tools OpenVAS Vulnerability Test Fedora Update for squashfs-tools FEDORA-2012-19227 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...
Fedora Update for squashfs-tools FEDORA-2012-19227
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for squashfs-tools FEDORA-2012-19203
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
[SECURITY] Fedora 17 Update: squashfs-tools-4.2-5.fc17
Squashfs is a highly compressed read-only filesystem for Linux. This packa ge contains the utilities for manipulating squashfs filesystems...
[SECURITY] Fedora 16 Update: squashfs-tools-4.2-5.fc16
Squashfs is a highly compressed read-only filesystem for Linux. This packa ge contains the utilities for manipulating squashfs filesystems...
Fedora 16 : squashfs-tools-4.2-5.fc16 (2012-19227)
Backported fixes for bz 842458 CVE-2012-4024 and bz 842460 CVE-2012-4025 Backported fix for bz 842458 CVE-2012-4024 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format ...
Fedora 17 : squashfs-tools-4.2-5.fc17 (2012-19203)
Backported fixes for bz 842458 CVE-2012-4024 and bz 842460 CVE-2012-4025 Backported fix for bz 842458 CVE-2012-4024 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format ...
[SECURITY] Fedora 18 Update: squashfs-tools-4.2-5.fc18
Squashfs is a highly compressed read-only filesystem for Linux. This packa ge contains the utilities for manipulating squashfs filesystems...
Fedora 18 : squashfs-tools-4.2-5.fc18 (2012-19056)
Backported fixes for bz 842458 CVE-2012-4024 and bz 842460 CVE-2012-4025 Backported fix for bz 842458 CVE-2012-4024 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format ...
CVE-2012-4025
Integer overflow in the queueinit function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted blocklog field in the superblock of a .sqsh file, leading to a heap-based buffer overflow...
CVE-2012-4024
Stack-based buffer overflow in the getcomponent function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted list file aka a crafted file for the -ef option. NOTE: probably in most cases, the list file is a trusted file...
CVE-2012-4024
Stack-based buffer overflow in the getcomponent function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted list file aka a crafted file for the -ef option. NOTE: probably in most cases, the list file is a trusted file...
DEBIAN-CVE-2012-4025
Integer overflow in the queueinit function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted blocklog field in the superblock of a .sqsh file, leading to a heap-based buffer overflow...