CVSS: 5.5EPSS: 0%CPEs: 238EXPL: 0CVE-2007-1592 – IPv6 oops triggerable by any user
https://notcve.org/view.php?id=CVE-2007-1592
22 Mar 2007 — net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service (OOPS) or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to that socket. El archivo net/ipv6/tcp_ipv6.c en el kernel de Linux versiones 2.6.x hasta 2.6.21-rc3, copia inadvertidamente el ipv6_fl_socklist desde un socket TCP de escucha hacia sockets de un proceso hijo, lo ... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=233478 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-1496 – Various NULL pointer dereferences in netfilter code
https://notcve.org/view.php?id=CVE-2007-1496
16 Mar 2007 — nfnetlink_log in netfilter in the Linux kernel before 2.6.20.3 allows attackers to cause a denial of service (crash) via unspecified vectors involving the (1) nfulnl_recv_config function, (2) using "multiple packets per netlink message", and (3) bridged packets, which trigger a NULL pointer dereference. nfnetlink_log en netfilter de the Linux kernel versiones anteriores a 2.6.20.3 permite a atacantes provocar una denegación de servicio (caída) mediante vectores sin especificar involucrando (1) la función nf... • http://secunia.com/advisories/24492 •
CVSS: 9.8EPSS: 12%CPEs: 1EXPL: 0CVE-2007-1497 – IPv6 fragments bypass in nf_conntrack netfilter code
https://notcve.org/view.php?id=CVE-2007-1497
16 Mar 2007 — nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments. nf_conntrack en netfilter en el kernel de Linux anterior a 2.6.20.3 no fija nfctinfo durante el nuevo re-ensamble de paquetes fragmentados, lo cual deja el valor por defecto como IP_CT_ESTABLISHED y permitiría a atacantes remotos evitar ciertas reglas d... • http://secunia.com/advisories/24492 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 2CVE-2007-1000 – Linux Kernel < 2.6.20.2 - 'IPv6_Getsockopt_Sticky' Memory Leak
https://notcve.org/view.php?id=CVE-2007-1000
12 Mar 2007 — The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference. La función ipv6_getsockopt_sticky en net/ipv6/ipv6_sockglue.c en el núcleo de Linux anterior a 2.6.20.2 permite a usuarios locales leer memoria del núcleo de su elección mediante determinadas llamadas getsockopt que disparan una referencia a NULL. • https://www.exploit-db.com/exploits/4172 •
CVSS: 5.5EPSS: 0%CPEs: 141EXPL: 1CVE-2007-1388 – Linux Kernel 2.6.x - IPv6_SockGlue.c Null Pointer Dereference Denial of Service
https://notcve.org/view.php?id=CVE-2007-1388
10 Mar 2007 — The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt with the IPV6_RTHDR option name and possibly a zero option length or invalid option value, which triggers a NULL pointer dereference. La función do_ipv6_setsockopt en el archivo net/ipv6/ipv6_sockglue.c en el kernel de Linux versiones anteriores a 2.6.20, y posiblemente otras versiones, permite a usuarios locales ... • https://www.exploit-db.com/exploits/29781 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 1CVE-2007-0005 – Linux Omnikey Cardman 4040 Driver - Local Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2007-0005
10 Mar 2007 — Multiple buffer overflows in the (1) read and (2) write handlers in the Omnikey CardMan 4040 driver in the Linux kernel before 2.6.21-rc3 allow local users to gain privileges. Múltiples desbordamientos de búfer en los manejadores de (1) lectura y (2) escritura en el controlador Omnikey CardMan 4040 en el kernel de Linux versiones anteriores a 2.6.21-rc3, permite a usuarios locales alcanzar privilegios. • https://www.exploit-db.com/exploits/3441 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 175EXPL: 0CVE-2007-1217 – Kernel: CAPI overflow
https://notcve.org/view.php?id=CVE-2007-1217
02 Mar 2007 — Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet. Desbordamiento de búfer en la función bufprint en capiutil.c en libcapi, como se usó en el kernel de Linux 2.6.9 a 2.6.20 y isdn4k-utils, permite a usuarios locales provocar denegación de servicio (caida) y posiblemente ganar privilegios a través de paquetes manipulados CAPI... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=408530 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 1CVE-2006-7051 – Linux Kernel 2.6.x - 'sys_timer_create()' Local Denial of Service
https://notcve.org/view.php?id=CVE-2006-7051
24 Feb 2007 — The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process' memory. La función sys_timer_create en posix-timers.c para Linux kernel 2.6.x permite a usuarios locales provocar denegación de servicio (consumo de memoria) y posiblemente ev... • https://www.exploit-db.com/exploits/1657 •
CVSS: 7.2EPSS: 0%CPEs: 34EXPL: 0CVE-2007-1086
https://notcve.org/view.php?id=CVE-2007-1086
23 Feb 2007 — Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access." Binarios no especificados en IBM DB2 8.x anterior a 8.1 FixPak 15 y 9.1 anterior a Fix Pack 2 permite a usuarios locales crear o modificar ficheros de su elección a través de entornos variables no especificados relacionados con "accesos de ficheros inseguros". • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=481 •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2007-1089
https://notcve.org/view.php?id=CVE-2007-1089
23 Feb 2007 — IBM DB2 Universal Database (UDB) 9.1 GA through 9.1 FP1 allows local users with table SELECT privileges to perform unauthorized UPDATE and DELETE SQL commands via unknown vectors. IBM DB2 Universal Database (UDB) 9.1 GA hasta 9.1 FP1 permite a usuarios locales con privilegios en la tabla SELECT realizar los comandos no autorizados SQL: UPDATE y DELETEa través de vectores desconocidos. • http://secunia.com/advisories/24283 •