olaf kirch vulnerabilities and exploits

(subscribe to this query)

usr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) prior to 2.0-865 uses a semaphore with insecure permissions (world-writable/world-readable) for managing log messages using shared memory, which allows local users to cause a denial of service (hang) by grabbing the semaph...

Redhat Open Iscsi

usr/mgmt_ipc.c in iscsid in open-iscsi (iscsi-initiator-utils) prior to 2.0-865 checks the client's UID on the listening AF_LOCAL socket instead of the new connection, which allows remote malicious users to access the management interface and cause a denial of service (iscsi...

Redhat Enterprise Linux 5.0

Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x prior to 3.0.4, allow (1) local and possibly remote malicious users to execute arbitrary code via the "lisa" daemon, and (2) remote malicious users to execute arbitrary code via a certain "...

Kde Kde 2.2 Kde Kde 2.2.1 Kde Kde 2.2.2 Kde Kde 3.0 Kde Kde 2.1.1 Kde Kde 2.1.2 Kde Kde 3.0.3 Kde Kde 2.1 Kde Kde 3.0.1 Kde Kde 3.0.2

arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions prior to 2.6.27-rc6, on s390 platforms allows local users to cause a denial of service (kernel panic) via the user-area-padding test from the ptrace testsuite in 31-bit mode, which triggers an invalid dereference...

The sbni_ioctl function in drivers/net/wan/sbni.c in the wan subsystem in the Linux kernel 2.6.26.3 does not check for the CAP_NET_ADMIN capability before processing a (1) SIOCDEVRESINSTATS, (2) SIOCDEVSHWSTATE, (3) SIOCDEVENSLAVE, or (4) SIOCDEVEMANSIPATE ioctl request, which al...

Linux Linux Kernel 2.6.26.3

The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel prior to 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel ...

1 EDB exploit

The sctp_auth_ep_set_hmacs function in net/sctp/auth.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel prior to 2.6.26.4, when the SCTP-AUTH extension is enabled, does not verify that the identifier index is within the bounds established by S...

The i915 driver in (1) drivers/char/drm/i915_dma.c in the Linux kernel 2.6.24 on Debian GNU/Linux and (2) sys/dev/pci/drm/i915_drv.c in OpenBSD does not restrict the DRM_I915_HWS_ADDR ioctl to the Direct Rendering Manager (DRM) master, which allows local users to cause a denial o...

Linux Linux Kernel 2.6.24

X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1 does not drop privileges before calling programs such as xkbcomp using popen, which could allow local users to gain privileges.

Caldera Unixware 7.1.1 Caldera Openunix 8.0

1 EDB exploit

Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

Paul Vixie Vixie Cron 3.0 Pl1 Redhat Linux 5.1 Redhat Linux 5.2 Redhat Linux 6.0 Redhat Linux 4.0 Redhat Linux 4.2 Caldera Openlinux 2.2 Debian Debian Linux 2.1 Debian Debian Linux 2.2 Redhat Linux 4.1 Redhat Linux 5.0

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook