run posix cpu timers software vulnerabilities
vulnerabilities.aspcode.net
Searching run posix cpu timers software vulnerabilities
The OS/2 or POSIX subsystem in NT is enabled.
subsystem
|
enabled
|
POSIX
|
OS/2
|
The OS/2 or POSIX subsystem in NT is enabled.
Buffer overflow in Computalynx CMail POP3 mail
Computalynx
|
overflow
|
server
|
Buffer
|
CMail
|
mail
|
POP3
|
Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command.
The timer implementation in QNX RTOS 6.1.0 allo
implementation
|
timer
|
RTOS
|
QNX
|
The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick.
Next Generation POSIX Threading (NGPT) 1.9.0 us
Generation
|
Threading
|
POSIX
|
Next
|
Next Generation POSIX Threading (NGPT) 1.9.0 uses a filesystem-based shared memory entry, which allows local users to cause a denial of service or in threaded processes or spoof files via unknown methods.
run-mailcap in mime-support 3.22 and earlier al
mime-support
|
run-mailcap
|
run-mailcap in mime-support 3.22 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Elm ME+ 2.4 before PL109S, when installed setgi
unspecified
|
privileges
|
installed
|
operating
|
support
|
vectors
|
certain
|
allows
|
PL109S
|
setgid
|
modify
|
system
|
before
|
group
|
files
|
users
|
POSIX
|
lacks
|
saved
|
local
|
mail
|
read
|
Elm
|
ME+
|
via
|
Elm ME+ 2.4 before PL109S, when installed setgid mail and the operating system lacks POSIX saved ID support, allows local users to read and modify certain files with the privileges of the mail group via unspecified vectors.
Race condition in the can_open function in Elm
privileges
|
operating
|
installed
|
condition
|
can_open
|
function
|
certain
|
support
|
allows
|
modify
|
system
|
setgid
|
files
|
group
|
users
|
local
|
lacks
|
POSIX
|
saved
|
Race
|
mail
|
read
|
Elm
|
ME+
|
Race condition in the can_open function in Elm ME+ 2.4, when installed setgid mail and the operating system lacks POSIX saved ID support, allows local users to read and modify certain files with the privileges of the mail group.
The POSIX component of Microsoft Windows NT and
Microsoft
|
component
|
Windows
|
POSIX
|
The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.
The POSIX Capability Linux Security Module (LSM
Capability
|
Security
|
Module
|
POSIX
|
Linux
|
The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 does not properly handle the credentials of a process that is launched before the module is loaded, which allows local users to gain privileges.
Certain system calls in Apple Mac OS X 10.4.1 d
Certain
|
system
|
Apple
|
calls
|
Mac
|
Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce the permissions of certain directories without the POSIX read bit set, but with the execute bits set for group or other, which allows local users to list files in otherwise restricted directories.
AFP Server for Mac OS X 10.4.1, when using an A
Server
|
Mac
|
AFP
|
AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permissions for that ACL.
The xntpd ntp (ntpd) daemon before 4.2.0b, when
xntpd
|
ntp
|
The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.
Exec in Linux kernel 2.6 does not properly clea
multi-threaded
|
posix-timers
|
environments
|
specified
|
resource
|
multiple
|
properly
|
results
|
service
|
number
|
denial
|
kernel
|
single
|
local
|
using
|
quota
|
cause
|
users
|
which
|
clear
|
Linux
|
allow
|
large
|
could
|
does
|
Exec
|
than
|
leak
|
user
|
more
|
not
|
Exec in Linux kernel 2.6 does not properly clear posix-timers in multi-threaded environments, which results in a resource leak and could allow a large number of multiple local users to cause a denial of service by using more posix-timers than specified by the quota for a single user.
Cisco IOS 12.0 to 12.4 might allow remote attac
Cisco
|
IOS
|
Cisco IOS 12.0 to 12.4 might allow remote attackers to execute arbitrary code via a heap-based buffer overflow in system timers. NOTE: this issue does not correspond to a specific vulnerability, rather a general weakness that only increases the feasibility of exploitation of any vulnerabilities that might exist. Such design-level weaknesses normally are not included in CVE, so perhaps this issue should be REJECTed.
Direct code injection vulnerability in Task Man
vulnerability
|
injection
|
Invision
|
Manager
|
Direct
|
Board
|
Power
|
code
|
Task
|
Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote attackers to execute arbitrary code by referencing the file in "Task PHP File To Run" field and selecting "Run Task Now".
A locking problem in POSIX timer cleanup handli
handling
|
cleanup
|
problem
|
locking
|
kernel
|
Linux
|
timer
|
POSIX
|
exit
|
A locking problem in POSIX timer cleanup handling on exit in Linux kernel 2.6.10 to 2.6.14, when running on SMP systems, allows local users to cause a denial of service (deadlock) involving process CPU timers.
ufs_vnops.c in FreeBSD 6.1 allows local users t
unspecified
|
ufs_vnopsc
|
ftruncate
|
function
|
calling
|
service
|
defined
|
FreeBSD
|
allows
|
denial
|
users
|
which
|
POSIX
|
cause
|
local
|
VDIR
|
VLNK
|
type
|
file
|
VREG
|
not
|
ufs_vnops.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by calling the ftruncate function on a file type that is not VREG, VLNK or VDIR, which is not defined in POSIX.
Acer Notebook LunchApp.APlunch ActiveX control
LunchAppAPlunch
|
attackers
|
arbitrary
|
Notebook
|
commands
|
execute
|
ActiveX
|
control
|
calling
|
method
|
allows
|
remote
|
Acer
|
Run
|
Acer Notebook LunchApp.APlunch ActiveX control allows remote attackers to execute arbitrary commands by calling the Run method.
Buffer overflow in the POSIX Threads library (l
overflow
|
Threads
|
library
|
Buffer
|
POSIX
|
Buffer overflow in the POSIX Threads library (libpthread) on HP Tru64 UNIX 4.0F PK8, 4.0G PK4, and 5.1A PK6 allows local users to gain root privileges via a long PTHREAD_CONFIG environment variable.
The sys_timer_create function in posix-timers.c
sys_timer_create
|
posix-timersc
|
function
|
service
|
allows
|
denial
|
kernel
|
cause
|
users
|
Linux
|
local
|
26x
|
The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process' memory.
Software vulnerabilities results 1 to 20 of 385
Page:
1
2
3
4
5
...
20
►