Linux Kernel on AMD64 Crafted syscall() Argument Local DoS

Network Security News – Tuesday, June 28, 2005 Events

Linux Kernel on AMD64 Crafted syscall() Argument Local DoS

Linux Kernel on AMD64 contains a flaw that may allow a local denial of service on while in 32-bit compatibility mode. The issue is due to an error in fault.c and can cause the kernel to crash when handling specially crafted syscall() arguments, and will result in loss of availability for the platform.. Read more at osvdb.org/17545

UBB.threads Search Function Forum[] Array SQL Injection

UBB.threads contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search function not properly sanitizing user-supplied input to the Forum[] arry. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/17534

Opera javascript: URL XSS

Opera contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not restrict the privileges of "javascript:" URLs when opened in new windows or frames. This could allow a user to create specially crafted HTML that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity or confidentiality.. Read more at osvdb.org/17543

Solaris x86 traceroute -g Parameter Local Overflow

A local overflow exists in Solaris x86 traceroute. The utility fails to properly handle multiple user-specified gateways resulting in a heap overflow. With a specially crafted request containing 10 -g parameters, an attacker may be able to execute arbitrary code resulting in a loss of integrity. The impact of exploitation is limited to raw socket access.. Read more at osvdb.org/17541

Clam AntiVirus Unspecified Quantum Decompressor DoS

ClamAV contains a flaw that may allow a remote denial of service. The issue is triggered when ClamAV is scanning a Quantum compressed archive with a window size less than 32KB, and will result in loss of availability for the service.. Read more at osvdb.org/17544

Asterisk Manager CLI Command Overflow

A remote overflow exists in Asterisk Manager Interface. The Asterisk Manager Interface fails to perform proper bounds checking on management command strings resulting in a buffer overflow. With a specially crafted request, an attacker can cause a remote buffer overflow, resulting in a loss of integrity.. Read more at osvdb.org/17457