Searching architecture software vulnerabilities

Hitachi Super-H architecture in NetBSD 1.5 and

architecture | Super-H | Hitachi | NetBSD |

Hitachi Super-H architecture in NetBSD 1.5 and 1.4.1 allows a local user to gain privileges via modified Status Register contents, which are not properly handled by (1) the sigreturn system call or (2) the process_write_regs kernel routine.


Common Cryptographic Architecture (CCA) in IBM

Cryptographic | Architecture | Common |

Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the system and Combine_Key_Parts permissions, to steal DES and 3DES keys by using a brute force attack to create a 3DES exporter key.


Citrix Independent Computing Architecture (ICA)

Architecture | Independent | Computing | Citrix |

Citrix Independent Computing Architecture (ICA) Client for Windows 6.1 allows remote malicious web sites to execute arbitrary code via a .ICA file, which is downloaded and automatically executed by the client.


Certain operations in Linux kernel before 2.2.1

operations | Certain | kernel | before | Linux |

Certain operations in Linux kernel before 2.2.19 on the x86 architecture copy the wrong number of bytes, which might allow attackers to modify memory, aka "User access asm bug on x86."


geteuid in Itanium Architecture (IA) running on

Architecture | Itanium | geteuid |

geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges.


Various routines for the ppc64 architecture on

architecture | routines | Various | kernel | prior | ppc64 | Linux |

Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copy_from_user function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to cause a denial of service.


Multiple buffer overflows in the mySAP.com arch

architecture | attackers | arbitrary | overflows | Multiple | mySAPcom | execute | header | buffer | remote | allow | HTTP | Host | long | code | SAP | via |

Multiple buffer overflows in the mySAP.com architecture for SAP allow remote attackers to execute arbitrary code via a long HTTP Host header to (1) Message Server, (2) Web Dispatcher, or (3) Application Server.


The ELF loader in Linux kernel 2.4 before 2.4.2

kernel | loader | before | Linux | ELF |

The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service (crash) via a crafted ELF file with an interpreter with an invalid arch (architecture), which triggers a BUG() when an invalid VMA is unmapped.


Linux kernel 2.6 and 2.4 on the IA64 architectu

architecture | service | allows | denial | kernel | cause | Linux | local | users | IA64 |

Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and the restore_sigcontext function.


The mprotect code (mprotect.c) in Linux 2.6 on

mprotect | code |

The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying PTE protections.


AngelineCMS 0.6.5 and earlier allow remote atta

AngelineCMS |

AngelineCMS 0.6.5 and earlier allow remote attackers to obtain sensitive information via a direct request for (1) adodb-access.inc.php, (2) adodb-ado.inc.php, (3) adodb-ado_access.inc, (4) adodb-ado_mssql.inc.php, (5) adodb-borland_ibase, (6) adodb-csv.inc.php, (7) adodb-db2.inc.php, (8) adodb-fbsql.inc.php, (9) adodb-firebird.inc.php, (10) adodb-ibase.inc.php, (11) adodb-informix.inc.php, (12) adodb-informix72.inc, (13) adodb-mssql.inc.php, (14) adodb-mssqlpo.inc.php, (15) adodb-mysql.inc.php, (16) adodb-mysqlt.inc.php, (17) adodb-oci8.inc.php, (18) adodb-oci805.inc.php, (19) adodb-oci8po.inc.php, and (20) adodb-odbc.inc.php, which reveal the path in various error messages; and via a direct request for the (21) lib/system/ directory and (22) possibly other lib/ directories, which provide a directory listing and "architecture view."


Heap-based buffer overflow in the IMA_SECURE_De

IMA_SECURE_DecryptData1 | ImaSystemdll | Presentation | Architecture | Independent | Management | Heap-based | arbitrary | attackers | MetaFrame | requests | overflow | function | execute | Server | Citrix | buffer | allows | remote | code | via |

Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with invalid size values that trigger the overflow during decryption.


The Independent Management Architecture (IMA) s

Architecture | Independent | Management |

The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception.


The sendmsg function in NetBSD-current before 2

NetBSD-current | function | sendmsg | before |

The sendmsg function in NetBSD-current before Monday, October 23, 2006, NetBSD 3.0 and 3.0.1 before Tuesday, October 24, 2006, and NetBSD 2.x before Sunday, October 29, 2006, when run on a 64-bit architecture, allows attackers to cause a denial of service (kernel panic) via an invalid msg_controllen parameter to the sendit function.


Multiple unspecified vulnerabilities in Oracle

vulnerabilities | Applications | unspecified | E-Business | Multiple | 11510CU2 | unknown | vectors | related | attack | Oracle | impact | Suite | have |

Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors related to (1) Application Object Library (APPS01), (2) Human Resources (APPS03), (3) Payables (APPS04), (4) Trading Community Architecture (APPS05), and (5) Web Applications Desktop Integrator (APPS06).


The snd_mem_proc_read function in sound/core/me

sound/core/memallocc | snd_mem_proc_read | Architecture | Advanced | function | Sound | Linux |

The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information (kernel memory contents) via a small count argument, as demonstrated by multiple reads of /proc/driver/snd-page-alloc.


The IA32 system call emulation functionality in

functionality | emulation | kernel | system | before | Linux | call | IA32 | 26x | 24x |

The IA32 system call emulation functionality in Linux kernel 2.4.x and 2.6.x before 2.6.22.7, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used, which might allow local users to gain privileges by triggering an out-of-bounds access to the system call table using the %RAX register.


Software vulnerabilities results 1 to 18 of 18     
Page: 1