798 matches found
CVE-2004-0494
CVE-2004-0494 affects GNOME VFS extfs backend scripts in GNOME VFS prior to 1.0.1, allowing remote attackers to perform unauthorized actions via a gnome-vfs URI. Connected documents confirm affected packages include gnome-vfs, gnome-vfs2 and gnome-vfs2-doc, with vendor advisories: RHSA-2004:373 (...
CVE-2004-0494
Removed by vendor...
RHEL 2.1 / 3 : gnome-vfs (RHSA-2004:373)
Updated GNOME VFS packages that remove potential extfs-related vulnerabilities are now available. GNOME VFS is the GNOME virtual file system. It provides a modular architecture and ships with several modules that implement support for file systems, HTTP, FTP, and others. The extfs backends make i...
Low: Red Hat Security Advisory: gnome-vfs security update
Updated GNOME VFS packages that remove potential extfs-related vulnerabilities are now available. GNOME VFS is the GNOME virtual file system. It provides a modular architecture and ships with several modules that implement support for file systems, HTTP, FTP, and others. The extfs backends make i...
DEBIAN-CVE-2003-1023
Stack-based buffer overflow in vfssresolvesymlink of vfs/direntry.c for Midnight Commander mc 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion...
CVE-2003-0599
CVE-2003-0599 concerns phpGroupWare (0.9.16preRC and all versions before 0.9.14.004). The vulnerability lies in the Virtual File System (VFS) capability, with the root cause described as the VFS path being under the web document root, and implications are stated as unknown. The advisory lists a h...
CVE-2001-1047
OpenBSD kernel VFS is impacted by a race condition that can lead to a local denial of service (kernel panic). The vulnerability arises when (1) a pipe is created in one thread and another thread closes/sets a descriptor to NULL, or (2) dup2 is used on a descriptor in one process and it is later s...
Проблемы в работе с файловыми дескрипторами в OpenBSD (VFS races)
Наличие вызова блокирующей функции между проверкой файлового дескриптора и операцией над ним, позволяет провести операцию над закрытым дескриптором, если дескриптор был закрыт в другом потоке приложения...
Locally exploitable races in OpenBSD VFS
my apologies if it ends up submitted twice Let's start with the trivial: good old aliasing bugs. Example 1: dup2 vs. close. Relevant file: kern/kerndescrip.c sysdup2p, v, retval struct proc p; void v; registert retval; snip if uintold = fdp-fdnfiles || fdp-fdofilesold == NULL || uintnew =...
CVE-1999-0912
FreeBSD VFS cache vfscache allows local users to cause a denial of service by opening a large number of files...
CVE-1999-0912
CVE-1999-0912 affects FreeBSD VFS cache (vfs_cache). The vulnerability lets local users cause a denial of service by opening a large number of files. Documents consistently describe this as a local denial-of-service issue in the FreeBSD VFS cache; no concrete patch/version details are provided in...
CVE-1999-0446
Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS...
CVE-1999-0446
CVE-1999-0446 affects NetBSD 1.3.3 and earlier. A local user can trigger a denial of service by creating an unusual symbolic link with the ln command, exploiting a bug in the VFS subsystem. The connected Red Hat and CVE records corroborate the local DoS impact. The available documents do not spec...
FreeBSD_DoS.txt
Resending once, since it's been 10.5 days... Here's an interesting denial-of-service attack against FreeBSD =3.0 systems. It abuses a flaw in the new' FreeBSD vfscache.c; it has no way to purge entries unless the vnode' e.g. the file they point to is removed from memory -- which generally doesn't...
CVE-1999-0912
FreeBSD VFS cache vfscache allows local users to cause a denial of service by opening a large number of files...
FreeBSD 3.03.13.2 - vfs_cache Denial of Service
FreeBSD 3.03.13.2 - vfscache Denial of Service // source: https://www.securityfocus.com/bid/653/info A vulnerability exists in FreeBSD's new VFS cache introduced in version 3.0 that allows a local and possibly remote user to force the kernel to consume large quantities of wired memory thus creati...
FreeBSD 3.0/3.1/3.2 - 'vfs_cache' Denial of Service
// source: https://www.securityfocus.com/bid/653/info A vulnerability exists in FreeBSD's new VFS cache introduced in version 3.0 that allows a local and possibly remote user to force the kernel to consume large quantities of wired memory thus creating a denial of service condition. The new VFS...
CVE-1999-0446
Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS...