Searching platform software vulnerabilities

SUSE Linux Enterprise Server 9 on the S/390 pla

instruction | privileged | Enterprise | privileges | properly | platform | certain | allows | handle | Server | Linux | users | local | which | S/390 | gain | root | does | SUSE | not |

SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local users to gain root privileges.


The web management interface for Mitel 3300 Int

management | interface | Mitel | web |

The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 generates easily predictable web session IDs, which allows remote attackers to hijack other sessions via the parentsessionid cookie.


The web management interface for Mitel 3300 Int

management | interface | Mitel | web |

The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large number of active sessions, which exceeds ICP's maximum.


The firmware for Intelligent Platform Managemen

Intelligent | Management | Interface | firmware | Platform |

The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled.


The Linux kernel before 2.6.11 on the Itanium I

before | kernel | Linux |

The Linux kernel before 2.6.11 on the Itanium IA64 platform has certain "ptrace corner cases" that allow local users to cause a denial of service (crash) via crafted syscalls, possibly related to MCA/INIT, a different vulnerability than CVE-2005-1761.


ptrace in Linux kernel 2.6.8.1 does not properl

kernel | ptrace | Linux |

ptrace in Linux kernel 2.6.8.1 does not properly verify addresses on the amd64 platform, which allows local users to cause a denial of service (kernel crash).


The ptrace call in the Linux kernel 2.6.8.1 and

kernel | ptrace | Linux | call |

The ptrace call in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform allows local users to cause a denial of service (kernel crash) via a "non-canonical" address.


syscall in the Linux kernel 2.6.8.1 and 2.6.10

syscall | kernel | Linux |

syscall in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform, when running in 32-bit compatibility mode, allows local users to cause a denial of service (kernel hang) via crafted arguments.


Java Web Start in Java 2 Platform Standard Edit

Platform | Standard | Edition | Start | Java | Web |

Java Web Start in Java 2 Platform Standard Edition (J2SE) 5.0 and 5.0 Update 1 allows applications to assign permissions to themselves and gain privileges.


Unspecified vulnerability in Java 2 Platform, S

vulnerability | Unspecified | Platform | Standard | Edition | Java |

Unspecified vulnerability in Java 2 Platform, Standard Edition (J2SE) 5.0 and 5.0 Update 1 and J2SE 1.4.2 up to 1.4.2_07, as used in multiple products and platforms including (1) HP-UX and (2) APC PowerChute, allows applications to assign permissions to themselves and gain privileges.


The syscall32_setup_pages function in syscall32

syscall32_setup_pages | syscall32c | function | kernel | Linux |

The syscall32_setup_pages function in syscall32.c for Linux kernel 2.6.12 and later, on the 64-bit x86 platform, does not check the return value of the insert_vm_struct function, which allows local users to trigger a memory leak via a 32-bit application with crafted ELF headers.


BEA WebLogic Server and WebLogic Express 8.1 an

administrative | inadvertently | URLResource | differences | Application | sensitivity | protection | platforms | migration | operating | platform | WebLogic | Express | across | during | Server | system | local | cause | users | pages | which | might | lose | warn | case | user | BEA | not | Web |

BEA WebLogic Server and WebLogic Express 8.1 and 7.0, during a migration across operating system platforms, do not warn the administrative user about platform differences in URLResource case sensitivity, which might cause local users to inadvertently lose protection of Web Application pages.


Unspecified vulnerability in Sun Java System Ap

vulnerability | Application | Unspecified | attackers | Platform | Standard | earlier | Edition | remote | allows | source | obtain | Update | System | Server | 2004Q2 | pages | code | Java | Sun |

Unspecified vulnerability in Sun Java System Application Server 7 Standard and Platform Edition 6 and earlier, and 2004Q2 Standard and Platform Edition Update 2 and earlier, allows remote attackers to obtain the source code for Java Server pages (JSP) via unknown vectors.


Unspecified vulnerability in Sun Solaris 9 and

vulnerability | Unspecified | privileges | platform | service | Solaris | denial | allows | local | cause | users | gain | Sun | x86 |

Unspecified vulnerability in Sun Solaris 9 and 10 for the x86 platform allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors, possibly involving functions from the mm driver.


Unspecified vulnerability in the kernel process

vulnerability | Unspecified | processing | platform | running | service | Solaris | allows | denial | kernel | 64-bit | cause | users | local | mode | bit |

Unspecified vulnerability in the kernel processing in Solaris 10 64 bit platform, when running in 64-bit mode, allows local users to cause a denial of service (system panic) via unknown attack vectors.


F-Secure Anti-Virus 2003 through 2006 and other

Anti-Virus | F-Secure |

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename.


Unspecified vulnerability in BEA WebLogic Platf

vulnerability | Unspecified | Platform | WebLogic | through | JRockit | Server | BEA | SP5 |

Unspecified vulnerability in BEA WebLogic Platform and Server 8.1 through 8.1 SP5, and JRockit 1.4.2 R4.5 and earlier, allows attackers to gain privileges via unspecified vectors, related to an "overflow condition," probably a buffer overflow.


The Huawei Versatile Routing Platform 1.43 2500

Versatile | Platform | Routing | Huawei |

The Huawei Versatile Routing Platform 1.43 2500E-003 firmware on the Quidway R1600 Router, and possibly other models, allows remote attackers to cause a denial of service (device crash) via a long show arp command.


Unspecified vulnerability in the kernel in Red

vulnerability | Unspecified | Enterprise | kernel | Linux | Red | Hat |

Unspecified vulnerability in the kernel in Red Hat Enterprise Linux (RHEL) 4 on the x86_64 platform allows local users to cause a denial of service (OOPS) via unspecified vectors related to the get_gate_vma function and the fuser command.


Unspecified vulnerability in the ata disk drive

vulnerability | Unspecified | platform | Solaris | before | driver | disk | ata | Sun | x86 |

Unspecified vulnerability in the ata disk driver in Sun Solaris 10 on the x86 platform before Tuesday, August 21, 2007 allows local users to cause a denial of service (system panic) via an unspecified ioctl function, aka Bug 6433124.


Software vulnerabilities results 1 to 20 of 37     
Page: 12