ptrace software vulnerabilities

Searching ptrace software vulnerabilities

Vulnerability in ptrace in AIX 4.3 allows local

Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program.

ptrace in Linux 2.2.x through 2.2.19, and 2.4.x

ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.

ptrace on HP-UX 11.00 through 11.11 allows loca

ptrace | HP-UX |

ptrace on HP-UX 11.00 through 11.11 allows local users to cause a denial of service (data page fault panic) via "an incorrect reference to thread register state."

ptrace in the QNX realtime operating system (RT

ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.

The kernel module loader in Linux kernel 2.2.x

The kernel module loader in Linux kernel 2.2.x before 2.2.25, and 2.4.x before 2.4.21, allows local users to gain root privileges by using ptrace to attach to a child process that is spawned by the kernel.

Unspecified vulnerability in the ptrace MIPS as

Unspecified vulnerability in the ptrace MIPS assembly code in Linux kernel 2.4 before 2.4.17 allows local users to gain privileges via unknown vectors.

The Linux kernel before 2.6.11 on the Itanium I

before | kernel | Linux |

The Linux kernel before 2.6.11 on the Itanium IA64 platform has certain "ptrace corner cases" that allow local users to cause a denial of service (crash) via crafted syscalls, possibly related to MCA/INIT, a different vulnerability than CVE-2005-1761.

ptrace in Linux kernel 2.6.8.1 does not properl

kernel | ptrace | Linux |

ptrace in Linux kernel 2.6.8.1 does not properly verify addresses on the amd64 platform, which allows local users to cause a denial of service (kernel crash).

Linux kernel 2.6 and 2.4 on the IA64 architectu

Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and the restore_sigcontext function.

The ptrace call in the Linux kernel 2.6.8.1 and

kernel | ptrace | Linux | call |

The ptrace call in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform allows local users to cause a denial of service (kernel crash) via a "non-canonical" address.

Buffer overflow in ptrace in the Linux Kernel f

Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory.

Unspecified vulnerability in ptrace in SCO Unix

Unspecified vulnerability in ptrace in SCO UnixWare 7.1.3 and 7.1.4 allows local users to gain privileges via unspecified vectors.

The ptrace functionality (ptrace.c) in Linux ke

functionality | ptrace |

The ptrace functionality (ptrace.c) in Linux kernel 2.6 before 2.6.14.2, using CLONE_THREAD, does not use the thread group ID to check whether it is attaching to itself, which allows local users to cause a denial of service (crash).

The auto-reap of child processes in Linux kerne

The auto-reap of child processes in Linux kernel 2.6 before 2.6.15 includes processes with ptrace attached, which leads to a dangling ptrace reference and allows local users to cause a denial of service (crash) and gain root privileges.

Multiple unspecified vulnerabilities in Drivers

Multiple unspecified vulnerabilities in Driverse before 0.56b have unknown impact and attack vectors, related to (1) a "ptrace exploit" and (2) "some other potential security problems."

Linux kernel 2.6.16-rc2 and earlier, when runni

Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace tasks that perform single steps, which can cause corruption of the DEBUG_STACK stack during the do_debug function call.

Integer signedness error in FreeBSD 6.0-RELEASE

Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service (memory corruption and kernel panic) via a PT_LWPINFO ptrace command with a large negative data value that satisfies a signed maximum value check but is used in an unsigned copyout function call.

The NetBSD-current kernel before 20061028 does

NetBSD-current | before | kernel |

The NetBSD-current kernel before Saturday, October 28, 2006 does not properly perform bounds checking of an unspecified userspace parameter in the ptrace system call during a PT_DUMPCORE request, which allows local users to have an unknown impact.

Unspecified vulnerability in ptrace in NetBSD-c

Unspecified vulnerability in ptrace in NetBSD-current before Friday, October 27, 2006, NetBSD 3.0 and 3.0.1 before Friday, October 27, 2006, and NetBSD 2.x before Sunday, November 19, 2006 allows local users to read kernel memory and obtain sensitive information via certain manipulations of a PT_LWPINFO request, which leads to a memory leak and information leak.

The Linux kernel 2.6.20 and 2.6.21 does not pro

kernel | Linux |

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain code that makes ptrace PTRACE_SETREGS and PTRACE_SINGLESTEP requests, related to the TRACE_IRQS_ON function, and possibly related to the arch_ptrace function.

Software vulnerabilities results 1 to 20 of 22

Page: 12 ►

ptrace software vulnerabilities

vulnerabilities.aspcode.net

Searching ptrace software vulnerabilities