timer software vulnerabilities
vulnerabilities.aspcode.net
Searching timer software vulnerabilities
The timer implementation in QNX RTOS 6.1.0 allo
implementation
|
timer
|
RTOS
|
QNX
|
The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick.
Multiple TCP implementations with Protection Ag
implementations
|
Protection
|
Sequence
|
Multiple
|
Numbers
|
Wrapped
|
Against
|
TCP
|
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.
Race condition in ip_vs_conn_flush in Linux 2.6
ip_vs_conn_flush
|
condition
|
before
|
Linux
|
Race
|
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service (null dereference) by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is acquired.
A locking problem in POSIX timer cleanup handli
handling
|
cleanup
|
problem
|
locking
|
kernel
|
Linux
|
timer
|
POSIX
|
exit
|
A locking problem in POSIX timer cleanup handling on exit in Linux kernel 2.6.10 to 2.6.14, when running on SMP systems, allows local users to cause a denial of service (deadlock) involving process CPU timers.
Race condition in run_posix_cpu_timers in Linux
run_posix_cpu_timers
|
condition
|
kernel
|
before
|
Linux
|
Race
|
Race condition in run_posix_cpu_timers in Linux kernel before 2.6.16.21 allows local users to cause a denial of service (BUG_ON crash) by causing one CPU to attach a timer to a process that is exiting.
Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird
Firefox
|
Mozilla
|
before
|
Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via simultaneous XPCOM events, which causes a timer object to be deleted in a way that triggers memory corruption.
The sys_timer_create function in posix-timers.c
sys_timer_create
|
posix-timersc
|
function
|
service
|
allows
|
denial
|
kernel
|
cause
|
users
|
Linux
|
local
|
26x
|
The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process' memory.
Race condition in the msxml3 module in Microsof
Microsoft
|
condition
|
attackers
|
Internet
|
Explorer
|
service
|
remote
|
denial
|
msxml3
|
module
|
allows
|
cause
|
Race
|
Race condition in the msxml3 module in Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) via many nested tags in an XML document in an IFRAME, when synchronous document rendering is frequently disrupted with asynchronous events, as demonstrated using a JavaScript timer, which can trigger null pointer dereferences or memory corruption.
Mozilla Firefox does not properly manage a dela
confirmation
|
confirming
|
execution
|
attackers
|
properly
|
Firefox
|
Mozilla
|
dialogs
|
"dialog
|
refocus
|
remote
|
action
|
unsafe
|
manage
|
users
|
timer
|
delay
|
might
|
which
|
trick
|
allow
|
bug"
|
does
|
file
|
used
|
into
|
such
|
aka
|
not
|
Mozilla Firefox does not properly manage a delay timer used in confirmation dialogs, which might allow remote attackers to trick users into confirming an unsafe action, such as remote file execution, aka the "dialog refocus bug."
Software vulnerabilities results 1 to 10 of 10
Page:
1