vserver software vulnerabilities
vulnerabilities.aspcode.net
Searching vserver software vulnerabilities
Multiple race conditions in Linux-VServer 1.22
Linux-VServer
|
conditions
|
Multiple
|
race
|
Multiple race conditions in Linux-VServer 1.22 with Linux kernel 2.4.23 and SMP allow local users to cause a denial of service (kernel oops) via unknown attack vectors related to the (1) s_info and (2) ip_info data structures and the (a) forget_original_parent, (b) goodness, (c) schedule, (d) update_process_times, and (e) vc_new_s_context functions.
Linux-VServer 1.24 allows local users with root
Linux-VServer
|
Linux-VServer 1.24 allows local users with root privileges on a virtual server to gain access to the filesystem outside the virtual server via a modified chroot-again exploit using the chmod command.
Linux VServer 1.27 and earlier, 1.3.9 and earli
VServer
|
Linux
|
Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions across all virtual and host servers, which allows local users with the ability to set permissions in /proc to obtain system information or cause a denial of service on other virtual servers or the host server.
The Linux 2.4 kernel patch in kernel-patch-vser
kernel-patch-vserver
|
kernel
|
before
|
Linux
|
patch
|
The Linux 2.4 kernel patch in kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux does not correctly set the "chroot barrier" with util-vserver, which allows attackers to access files on the host system that are outside of the vserver.
util-vserver before 0.30.208-1 with kernel-patc
kernel-patch-vserver
|
util-vserver
|
030208-1
|
before
|
util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities.
vserver in util-vserver 0.30.209 executes a com
util-vserver
|
vserver
|
vserver in util-vserver 0.30.209 executes a command as root when the suexec userid parameter is invalid and non-numeric, which might cause local users to inadvertently execute dangerous commands as root.
Virtual Private Server (Vserver) 2.0.x before 2
Private
|
Virtual
|
Server
|
Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabilities (ccaps) that allow local guest users to perform operations that were only intended to be allowed by the guest-root.
Software vulnerabilities results 1 to 8 of 8
Page:
1