[CLOSE] OSVDB ID : 20426 - Disclosed: 2005-10-12

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 58235 - Disclosed: 2009-09-15

Description:

(Description Provided by CVE) : The z90crypt_unlocked_ioctl function in the z90crypt driver in the Linux kernel 2.6.9 does not perform a capability check for the Z90QUIESCE operation, which allows local users to leverage euid 0 privileges to force a driver outage.

[CLOSE] OSVDB ID : 5941 - Disclosed: 1999-03-24

Description:

Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered when a 0-length IP fragment is received, if it is the first fragment in the list. A remote attacker can send several thousands 0-length packets to the target and will result in loss of availability.

[CLOSE] OSVDB ID : 19027 - Disclosed: 2005-08-19

Description:

(Description Provided by CVE) : The driver for compressed ISO file systems (zisofs) in the Linux kernel before 2.6.12.5 allows local users and remote attackers to cause a denial of service (kernel crash) via a crafted compressed ISO file system.

[CLOSE] OSVDB ID : 19028 - Disclosed: 2005-07-25

Description:

(Description Provided by CVE) : The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 returns the wrong value, which allows remote attackers to cause a denial of service (kernel crash) via a certain compressed file that leads to a null pointer dereference, a different vulnerbility than CVE-2005-2458.

[CLOSE] OSVDB ID : 19026 - Disclosed: 2005-07-25

Description:

(Description Provided by CVE) : inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 allows remote attackers to cause a denial of service (kernel crash) via a compressed file with "improper tables".

[CLOSE] OSVDB ID : 30215 - Disclosed: 2006-11-07

Description:

(Description Provided by CVE) : The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed filesystem that uses zlib compression that triggers memory corruption, as demonstrated using cramfs.

[CLOSE] OSVDB ID : 42614 - Disclosed: 2008-03-04

Description:

(Description Provided by CVE) : Format string vulnerability in the log_message function in lks.c in Linux Kiss Server 1.2, when background (daemon) mode is disabled, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in an invalid command.

[CLOSE] OSVDB ID : 57715 - Disclosed: 2000-08-10

Description:

(Description Provided by CVE) : String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attackers to gain root privileges.

[CLOSE] OSVDB ID : 1259 - Disclosed: 2000-03-16

Description:

(Description Provided by CVE) : Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges.

[CLOSE] OSVDB ID : 8219 - Disclosed: 1997-07-17

Description:

A local overflow exists in the 'ld-linux.so' dynamic linkers in some Linux distributions. By forcing an error while calling a dynamically linked setuid program with a long program name (argv[0]), a local attacker can overflow a buffer and execute arbitrary code on the system gaining root privileges.

[CLOSE] OSVDB ID : 8218 - Disclosed: 1997-07-17

Description:

A local overflow exists in the 'ld.so' dynamic linkers in some Linux distributions. By forcing an error while calling a dynamically linked setuid program with a long program name (argv[0]), a local attacker can overflow a buffer and execute arbitrary code on the system and use this vulnerability to gain root privileges on the system.

[CLOSE] OSVDB ID : 61460 - Disclosed: 1996-02-13

Description:

Linux is prone to an overflow condition. libc fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted NLSPATH variable, a local attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 30355 - Disclosed: 2006-03-27

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries in that directory.

[CLOSE] OSVDB ID : 30356 - Disclosed: 2006-03-27

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory.

[CLOSE] OSVDB ID : 1756 - Disclosed: 2001-01-31

Description:

(Description Provided by CVE) : Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.

[CLOSE] OSVDB ID : 1233 - Disclosed: 2000-02-26

Description:

(Description Provided by CVE) : Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.

[CLOSE] OSVDB ID : 13502 - Disclosed: 1999-09-28

Description:

(Description Provided by CVE) : mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges.

[CLOSE] OSVDB ID : 1641 - Disclosed: 2000-11-12

Description:

(Description Provided by CVE) : modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

[CLOSE] OSVDB ID : 6980 - Disclosed: 2000-02-03

Description:

A local overflow exists in some Linux distributions. The mount command fails to validate arguments resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 333 - Disclosed: 1995-07-12

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 30339 - Disclosed: 2006-08-24

Description:

(Description Provided by CVE) : ftpd in linux-ftpd 0.17, and possibly other versions, performs a chdir before setting the UID, which allows local users to bypass intended access restrictions by redirecting their home directory to a restricted directory.

[CLOSE] OSVDB ID : 30340 - Disclosed: 2006-08-24

Description:

(Description Provided by CVE) : ftpd in Linux Netkit (linux-ftpd) 0.17, and possibly other versions, does not check the return status of certain seteuid, setgid, and setuid calls, which might allow remote authenticated users to gain privileges if these calls fail in cases such as PAM failures or resource limits, a different vulnerability than CVE-2006-5778.

[CLOSE] OSVDB ID : 30923 - Disclosed: 2005-12-16

Description:

(Description Provided by CVE) : The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference) and a deadlock.

[CLOSE] OSVDB ID : 11279 - Disclosed: 1999-11-09

Description:

A remote overflow exists in NFS Server. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long pathname on a read-write mounted NFS directory, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 2317 - Disclosed: 2003-07-14

Description:

nfs-utils contains a flaw that allows a remote attacker to gain root privileges. The issue is due to a buffer overflow caused by an off-by-one error in the "xlog" function. If an attacker creates a specially crafted RPC request to the rpc.mountd daemon they may be able to execute arbitrary code.

[CLOSE] OSVDB ID : 22756 - Disclosed: 2006-01-26

Description:

(Description Provided by CVE) : Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks.

[CLOSE] OSVDB ID : 443 - Disclosed: 2000-07-16

Description:

The rpc.statd program contained in the nfs-utils package contains a flaw that may allow a malicious user to gain remote root access. The issue is triggered when raw user input is passed to the syslog() function. It is possible that the flaw may allow arbitrary code exectuion resulting in a loss of integrity.

[CLOSE] OSVDB ID : 11514 - Disclosed: 1995-09-05

Description:

(Description Provided by CVE) : Some configurations of NIS+ in Linux allowed attackers to log in as the user "+".

[CLOSE] OSVDB ID : 30508 - Disclosed: 2006-11-19

Description:

(Description Provided by CVE) : The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18, and possibly other versions, allows local users to cause a denial of service (CPU consumption) via a malformed NTFS file stream that triggers an infinite loop in the __find_get_block_slow function.