Fedora 8 : kvm-60-2.fc8 (2008-1993)

Ian Jackson discovered that accesses beyond end of qemu emulated disk devices can result in accesses to emulator's virtual memory space accesses and thus can allow user with sufficient privilege in guest root, as this would need modification to kernel's driver to break out of VM...

Hack of the classic tutorial of buffer overflow and decryption(a)-vulnerability warning-the black bar safety net

The buffer overflow weakness was born in the 7 0's. Morris Worm8 0'scan be considered their first public application. From the 9 0's, related document, such as the famous Aleph1's”Smashing the Stack for Fun and Profit”and code has been on the Internet disclosed. This article is about some need to...

CentOS 4 : kernel (CESA-2006:0493)

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

Memory corruption

The virtual memory implementation in Linux kernel 2.6.x allows local users to cause a denial of service panic by running lsof a large number of times in a way that produces a heavy system load...

CVE-2006-1862

The CVE-2006-1862 vulnerability affects the Linux kernel 2.6.x virtual memory implementation. It enables a local user to cause a denial of service (panic) by repeatedly running lsof, which can generate a heavy system load. Related advisories (RHSA-2006:0493 / CESA-2006:0493) document this issue a...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

Hacker attack techniques Summary: The Sniffer listens on the law-vulnerability and early warning-the black bar safety net

One, write the purpose of this article Our forum friends keep posting ask yourself there is no poisoning, is black, or installed some software or do the wrong system settings after the system shows weird errors, but also afraid to re-install the system. System Restore function and defectivesome...

FreeBSD : openvpn -- denial of service: malicious authenticated 'tap' client can deplete server virtual memory (1986449a-8b74-40fa-b7cc-0d8def8aad65)

James Yonan reports : A malicious authenticated client in 'dev tap' ethernet bridging mode could theoretically flood the server with packets appearing to come from hundreds of thousands of different MAC addresses, causing the OpenVPN process to deplete system virtual memory as it expands its...

Internet Explorer createTextRange memory corruption

Added: 03/28/2006 CVE: CVE-2006-1359 BID: 17196 OSVDB: 24050 Background The createTextRange dynamic HTML method creates a text range object for an HTML element. Problem A flaw in the handling of unexpected createTextRange method calls by certain HTML objects could result in command execution...

MS Windows 2k UPNP (getdevicelist) Memory Leak DoS Exploit

Exploit for unknown platform in category dos / poc ========================================================== MS Windows 2k UPNP getdevicelist Memory Leak DoS Exploit ========================================================== / Author: Winny Thomas Nevis Labs, Pune, INDIA Details: While working o...

CVE-2005-2708

The searchbinaryhandler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service panic, as demonstrated by running a process using the bash ulimi...

CVE-2002-1667

The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service crash by calling msync on an unaccessed memory map created with MAPANON and MAPNOSYNC flags...

CVE-2002-1667

CVE-2002-1667 concerns the FreeBSD virtual memory subsystem. Affected: FreeBSD 4.5-RELEASE and earlier. Description: during page invalidation, the VM subsystem does not properly verify the existence of a VM object, allowing local users to trigger a crash (DoS) by calling msync on an unaccessed me...

CVE-2005-1515

Removed by vendor...

qmail -- 64 bit integer overflows with possible remote code execution on large SMTP requests

Georgi Guninski writes: There are several issues with qmail on 64 bit platforms - classical integer overflow, pointer with signed index and signedness problem not counting the memory consumtion dos, which just helps. Update: the problem with the signed index is exploitable on Freebsd 5.4 amd64 wi...

qmail -- 64 bit integer overflows with possible remote code execution on large SMTP requests

Georgi Guninski writes: There are several issues with qmail on 64 bit platforms - classical integer overflow, pointer with signed index and signedness problem not counting the memory consumtion dos, which just helps. Update: the problem with the signed index is exploitable on Freebsd 5.4 amd64 wi...

security flaw

Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...

security flaw

Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...

CVE-2004-0766

NGSEC StackDefender 2.0 allows attackers to cause a denial of service system crash via an invalid address for the BaseAddress parameter to the hooks for the 1 ZwAllocateVirtualMemory or 2 ZwProtectVirtualMemory functions...

SuSE-SA:2004:001: Linux Kernel

The remote host is missing the patch for the advisory SuSE-SA:2004:001 Linux Kernel. The domremap function of the Linux Kernel is used to manage move, resize Virtual Memory Areas VMAs. By exploiting an incorrect bounds check in domremap during the remapping of memory it is possible to create a VM...