10 matches found
EUVD-2008-0610
Malware in sbrugna...
Privilege Escalation
kernel is vulnerable to privilege escalation. The vulnerability exists in the vmsplicetopipe function because the userspace pointer is not properly validated.which allows an attacker to gain access to sensitive information...
Linux Kernel vmsplice_to_pipe()本地权限提升漏洞
BUGTRAQ ID: 27801 CVECAN ID: CVE-2008-0600 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的实现上存在漏洞,本地攻击者可能利用此漏洞提升自己的权限。 Linux Kernel的fs/splice.c文件中的vmsplicetopipe没有正确地验证某些用户域指针,这允许本地攻击者通过特制的vmsplice系统调用获得root用户权限提升。 Linux kernel 2.6.17 - 2.6.24.1 厂商补丁: Debian ------...
SOL8425 - Linux Kernel Vulnerability - CVE-2008-0600
CVE-2008-0600 - Linux Kernel Multiple Memory Access Vulnerabilities. The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges through crafted arguments in a vmsplice syste...
Null pointer dereference
The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010...
CVE-2008-0600
The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010...
CVE-2008-0600
The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010...
CVE-2008-0600
CVE-2008-0600 affects the Linux kernel vmsplice_to_pipe flaw present in 2.6.17–2.6.24.1. It allows an unprivileged local user to gain root privileges via crafted vmsplice calls. Several Nessus advisories place this in the context of affected distributions (e.g., MiracleLinux, Oracle Linux/OracleV...
CVE-2008-0600
The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010...
kernel vmsplice_to_pipe flaw
The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010...