Searching volume software vulnerabilities

Buffer overflow in Volume Manager daemon (vold)

overflow | Manager | daemon | Buffer | Volume |

Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2.5.1 through 8 allows local users to execute arbitrary code via unknown attack vectors.


Unknown vulnerability in Apple File Service (AF

vulnerability | Service | Unknown | Apple | File |

Unknown vulnerability in Apple File Service (AFP Server) for Mac OS X Server, when sharing files on a UFS or re-shared NFS volume, allows remote attackers to overwrite arbitrary files.


Finder in Mac OS X 10.2.8 and earlier sets glob

Finder | Mac |

Finder in Mac OS X 10.2.8 and earlier sets global read/write/execute permissions on directories when they are dragged (copied) from a mounted volume such as a disk image (DMG), which could cause the directories to have less restrictive permissions than intended.


The default protocol helper for the disk: URI o

protocol | default | helper |

The default protocol helper for the disk: URI on Mac OS X 10.3.3 and 10.2.8 allows remote attackers to write arbitrary files by causing a disk image file (.dmg) to be mounted as a disk volume.


AFP Server on Mac OS X 10.3.x to 10.3.5, when a

Server | 103x | Mac | AFP |

AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets.


webadmin-apache.conf in Novell Web Manager of N

webadmin-apacheconf | inconsistent | uppercase | lowercase | attackers | directory | NetWare | Manager | control | WEB-INF | allows | remote | Novell | bypass | folder | access | volume | Alias | which | uses | Web | tag |

webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase directory tag for a volume, which allows remote attackers to bypass access control to the WEB-INF folder.


Multiple buffer overflows in unace 1.2b allow a

arbitrary | attackers | overflows | Multiple | execute | buffer | unace | allow | code | via | 12b |

Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via (1) 2 overflows in ACE archives, (2) a long command line argument, or (3) certain "Ready for next volume" messages.


AFP Server for Mac OS X 10.4.1, when using an A

Server | Mac | AFP |

AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permissions for that ACL.


Stack-based buffer overflow in a shared library

Stack-based | overflow | library | Manager | buffer | daemon | Volume | shared | used |

Stack-based buffer overflow in a shared library as used by the Volume Manager daemon (vmd) in VERITAS NetBackup Enterprise Server 5.0 MP1 to MP5 and 5.1 up to MP3A allows remote attackers to execute arbitrary code via a crafted packet.


Stack-based buffer overflow in the volume manag

Stack-based | overflow | manager | daemon | buffer | volume |

Stack-based buffer overflow in the volume manager daemon (vmd) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbitrary code via unknown vectors.


Finder 10.4.6 on Apple Mac OS X 10.4.8 allows u

Finder |

Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption.


TrueCrypt before 4.3, when set-euid mode is use

TrueCrypt | set-euid | service | allows | denial | before | users | cause | Linux | local | mode | used |

TrueCrypt before 4.3, when set-euid mode is used on Linux, allows local users to cause a denial of service (filesystem unavailability) by dismounting a volume mounted by a different user.


The administrative service in Symantec Veritas

administrative | Replicator | Symantec | service | Veritas | Volume |

The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer.


TrueCrypt 4.3, when installed setuid root, allo

installed | TrueCrypt | service | denial | allows | setuid | cause | local | users | root |

TrueCrypt 4.3, when installed setuid root, allows local users to cause a denial of service (filesystem unavailability) or gain privileges by mounting a crafted TrueCrypt volume, as demonstrated using (1) /usr/bin or (2) another user's home directory, a different issue than CVE-2007-1589.


Guidance Software EnCase 6.2 and 6.5 does not p

CVE-2007-4035 | examination | partitions | attackers | properly | Software | Guidance | certain | related | prevent | remote | EnCase | handle | volume | issue | which | might | allow | more | does | than | data | not |

Guidance Software EnCase 6.2 and 6.5 does not properly handle a volume with more than 25 partitions, which might allow remote attackers to prevent examination of certain data, a related issue to CVE-2007-4035.


Software vulnerabilities results 1 to 16 of 16     
Page: 1