Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

arp protocol vulnerabilities and exploits

(subscribe to this query)
2.1
CVSSv2
CVE-2011-0711
The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel prior to 2.6.38-rc6-git3 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FSGEOMETRY_V1 ioctl call.
Linux Linux Kernel 2.6.38Linux Linux KernelRedhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Server Aus 5.6Redhat Enterprise Linux Server Eus 5.6
3.6
CVSSv2
CVE-2011-1182
kernel/signal.c in the Linux kernel prior to 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.
Linux Linux KernelRedhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux 5.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Eus 5.6Redhat Enterprise Linux Aus 5.6
4.9
CVSSv2
CVE-2011-1748
The raw_release function in net/can/raw.c in the Linux kernel prior to 2.6.39-rc6 does not properly validate a socket data structure, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted release o...
Linux Linux Kernel 2.6.39Linux Linux Kernel
5.6
CVSSv2
CVE-2011-1776
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel prior to 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate malicious users to cause a denial of service (heap-based buff...
Linux Linux KernelRedhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Server Aus 5.6Redhat Enterprise Linux Server Eus 5.6
7.8
CVSSv2
CVE-2011-1093
The dccp_rcv_state_process function in net/dccp/input.c in the Datagram Congestion Control Protocol (DCCP) implementation in the Linux kernel prior to 2.6.38 does not properly handle packets for a CLOSED endpoint, which allows remote malicious users to cause a denial of service (...
Linux Linux KernelRedhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Eus 5.6Redhat Enterprise Linux Aus 5.6
2.1
CVSSv2
CVE-2011-0726
The do_task_stat function in fs/proc/array.c in the Linux kernel prior to 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the start_code and end_code fields in the /proc/#####/stat file fo...
Linux Linux Kernel 2.6.27.29Linux Linux Kernel 2.6.27.12Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.38Linux Linux Kernel 2.6.20.6Linux Linux Kernel 2.6.32.5Linux Linux Kernel 2.6.28Linux Linux Kernel 2.6.4Linux Linux Kernel 2.6.35Linux Linux Kernel 2.6.17Linux Linux Kernel 2.6.20.9Linux Linux Kernel 2.6.26Linux Linux Kernel 2.6.21Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.33.7Linux Linux Kernel 2.6.23.4Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.16.16Linux Linux Kernel 2.6.20Linux Linux Kernel 2.6.18.7Linux Linux Kernel 2.6.17.12Linux Linux Kernel 2.6.16.39
4.9
CVSSv2
CVE-2011-1090
The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel prior to 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.
Linux Linux Kernel 2.6.27.29Linux Linux Kernel 2.6.27.12Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.38Linux Linux Kernel 2.6.20.6Linux Linux Kernel 2.6.32.5Linux Linux Kernel 2.6.28Linux Linux Kernel 2.6.4Linux Linux Kernel 2.6.35Linux Linux Kernel 2.6.17Linux Linux Kernel 2.6.20.9Linux Linux Kernel 2.6.26Linux Linux Kernel 2.6.21Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.33.7Linux Linux Kernel 2.6.23.4Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.16.16Linux Linux Kernel 2.6.20Linux Linux Kernel 2.6.18.7Linux Linux Kernel 2.6.17.12Linux Linux Kernel 2.6.16.39
2.1
CVSSv2
CVE-2011-1163
The osf_partition function in fs/partitions/osf.c in the Linux kernel prior to 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table...
Linux Linux KernelSuse Linux Enterprise Server 10Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Server Aus 5.6Redhat Enterprise Linux Eus 5.6
7.2
CVSSv2
CVE-2011-1477
Multiple array index errors in sound/oss/opl3.c in the Linux kernel prior to 2.6.39 allow local users to cause a denial of service (heap memory corruption) or possibly gain privileges by leveraging write access to /dev/sequencer.
Linux Linux KernelSuse Linux Enterprise Desktop 10
4.9
CVSSv2
CVE-2011-1598
The bcm_release function in net/can/bcm.c in the Linux kernel prior to 2.6.39-rc6 does not properly validate a socket data structure, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted release o...
Linux Linux Kernel 2.6.39Linux Linux Kernel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook