1563 matches found
Mandrake Linux Security Advisory : kernel (MDKSA-2003:074)
Multiple vulnerabilities were discovered and fixed in the Linux kernel. - CVE-2003-0001: Multiple ethernet network card drivers do not pad frames with null bytes which allows remote attackers to obtain information from previous packets or kernel memory by using special malformed packets. -...
DSA-442 linux-kernel-2.4.17-s390 - several vulnerabilities
Bulletin has no description...
CVE-2003-1474
slashem-tty in the FreeBSD Ports Collection is installed with write permissions for the games group, which allows local users with group games privileges to modify slashem-tty and execute arbitrary code as other users, as demonstrated using a separate vulnerability in LTris...
Multiple bugs in linux kernel
new kernel version fixes DoS in TCP/IP stack by isuing amount of packets with same hash value and privelege escalation in ioperm call. mxcsr CPU state modification, TTY level DoS, multiple etherleaks...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages for Red Hat Enterprise Linux are now available which address several security vulnerabilities. The Linux kernel handles the basic functions of the operating system. Several security issues have been found that affect the Linux kernel: Al Viro found a security issue in the...
CVE-2003-0247
Unknown vulnerability in the TTY layer of the Linux kernel 2.4 allows attackers to cause a denial of service "kernel oops"...
CVE-2003-0247
CVE-2003-0247: Affects the Linux kernel 2.4 series in the TTY layer, enabling a denial-of-service via a kernel oops. Public docs reference Debian/Red Hat advisories and OpenVAS entries noting missing updates to kernel patches (e.g., 2.4.18-powerpc, 2.4.17-mips) as remediation. The connected docs ...
CVE-2003-0247
Unknown vulnerability in the TTY layer of the Linux kernel 2.4 allows attackers to cause a denial of service "kernel oops"...
CVE-2002-0824
CVE-2002-0824 affects BSD pppd, where a symlink attack on a file specified as a tty device allows local users to change permissions of arbitrary files. The description states this is a local privilege/subversion of permissions vulnerability, but the connected documents do not provide additional t...
Solaris 2.x /usr/sbin/wall Advisory
Affected Operating Systems: Solaris 2.x-9 Possibly others derived from AT&T source code. Affected Program: /usr/sbin/wall Synopsis: Wall is a setgid tty program that broadcasts a message to every user currently logged into the system. It can also receive messages from remote hosts, via RPC...
Symbolic link problem in pppd
It's possible to change file permisions via symbolic link by using it as a tty device...
CVE-2002-0333
Directory traversal vulnerability in xtell xtelld 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument...
CVE-2002-0327
Buffer overflow in Century Software TERM allows local users to gain root privileges via a long tty argument to the callin program...
CVE-2002-0333
Directory traversal vulnerability in xtell xtelld 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument...
CVE-1999-1341
Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged users to forge IP packets via the TIOCSETD option on tty devices...
CVE-2001-1555
ptchmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users' terminals by modifying the ACL of a TTY...
Security Advisory 2001-014: dump(8) exposes 'tty' group
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-014 ================================= Topic: dump8 exposes 'tty' group Version: NetBSD-current: source prior to August 8, 2001 NetBSD 1.5.1: affected NetBSD 1.5: affected NetBSD 1.4.x: all affected Severity: local users can gain tty...
Проблема с dump в NetBSD (privelege escalation)
При вызове внешней программы указанной пользователем не сбрасывается egid tty...
Дырка в write в Solaris
Переполнение буфера в аргументе командной строки дает возможность получить egid tty...
CVE-2000-1108
cons.saver in Midnight Commander mc 4.5.42 and earlier does not properly verify if an output file descriptor is a TTY, which allows local users to corrupt files by creating a symbolic link to the target file, calling mc, and specifying that link as a TTY argument...