Searching race software vulnerabilities

A race condition in Linux 2.2.1 allows local us

condition | Linux | race |

A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files.


slapd in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earli

OpenLDAP2 | slapd |

slapd in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows local users to overwrite arbitrary files via a race condition during the creation of a log file for rejected replication requests.


stunnel 4.0.3 and earlier allows attackers to c

stunnel |

stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.


Race condition in exec in OpenBSD 4.0 and earli

condition | OpenBSD | earlier | NetBSD | Race | exec |

Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.


The code for writing reg files in Samba before

writing | before | Samba | files | code | reg |

The code for writing reg files in Samba before 2.2.8 allows local users to overwrite arbitrary files via a race condition involving chown.


Race condition in SDBINST for SAP database 7.3.

condition | database | SDBINST | Race | SAP |

Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.


A race condition in the way env_start and env_e

fs/proc/basec | initialized | env_start | condition | pointers | service | env_end | allows | system | execve | denial | cause | local | users | Linux | race | call | used | way |

A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash).


Unknown vulnerability in Solaris 2.6 through 9

vulnerability | through | service | Unknown | Solaris | denial | causes |

Unknown vulnerability in Solaris 2.6 through 9 causes a denial of service (system panic) via "a rare race condition" or an attack by local users.


Race condition in Solaris 2.6 through 9 allows

condition | through | Solaris | service | denial | allows | cause | local | users | Race |

Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines.


Race condition in SSH Tectia Server 4.0.3 and 4

condition | Tectia | Server | Race | SSH |

Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the password change plugin (ssh-passwd-plugin) is enabled, allows local users to obtain the server's private key.


Multiple signal handler race conditions in luke

conditions | lukemftpd | Multiple | handler | signal | race |

Multiple signal handler race conditions in lukemftpd (aka tnftpd before Tuesday, August 10, 2004) allow remote authenticated attackers to cause a denial of service or execute arbitrary code.


Race condition in Linux kernel 2.6 allows local

/proc//cmdline | environment | condition | variables | spawning | another | process | kernel | allows | still | Linux | local | users | Race | read | via |

Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline.


A race condition in nessus-adduser in Nessus 2.

nessus-adduser | condition | Nessus | race |

A race condition in nessus-adduser in Nessus 2.0.11 and possibly earlier versions, if the TMPDIR environment variable is not set, allows local users to gain privileges.


Race condition in the Radeon DRI driver for Lin

condition | kernel | driver | Radeon | Linux | Race | DRI |

Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root.


Race condition in rpdump in Pine 4.62 and earli

condition | rpdump | Pine | Race |

Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack.


Race condition in sandbox before 1.2.11 allows

condition | sandbox | before | Race |

Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files via symlink attack on sandboxpids.tmp.


Race condition in the do_add_counters function

do_add_counters | condition | netfilter | function | kernel | Linux | Race |

Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent with allocated memory, which leads to a buffer over-read in IPT_ENTRY_ITERATE.


Race condition in phfont in QNX Neutrino RTOS 6

condition | Neutrino | phfont | RTOS | Race | QNX |

Race condition in phfont in QNX Neutrino RTOS 6.2.1 allows local users to execute arbitrary code via unspecified manipulations of the PHFONT and PHOTON2_PATH environment variables.


Undercover.app/Contents/Resources/uc in Rixstep

Undercoverapp/Contents/Resources/uc | Undercover | overwrite | arbitrary | condition | probably | related | Rixstep | allows | users | local | files | race |

Undercover.app/Contents/Resources/uc in Rixstep Undercover allows local users to overwrite arbitrary files, probably related to a race condition.


Race condition in the TCP subsystem for Solaris

attackers | subsystem | condition | Solaris | service | denial | remote | allows | cause | Race | TCP |

Race condition in the TCP subsystem for Solaris 10 allows remote attackers to cause a denial of service (system panic) via unknown vectors.


Software vulnerabilities results 1 to 20 of 127     
Page: 12345...7