Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-362

CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,400 vulnerabilities with CWE-362

Solaris 10 - Denial of Service via STREAMS Administrative Driver Race Condition

Linux kernel <2.6.25.2 - Code Injection

Linux kernel <2.6.24.6-2.6.25.1 - DoS

Solaris 10 - Arbitrary File Write via Symlink Attack on Debug Log

policyd-weight <0.1.14 beta-16 - Local File Modification

Apple Mac OS X 10.4.11 - Denial of Service and Privilege Escalation via World-Writable Directory Creation

Mac OS X 10.4.11 - Remote Code Execution via NSURLConnection Cache Race Condition

Apple Mac OS X 10.4.11 - Remote Code Execution via NSXML Error Handling Race Condition

Solaris 10 - Denial of Service via CPU Performance Counters Race Condition

Crystal Reports XI Release 2 - Buffer Overflow via Enterprise Tree ActiveX Control SelectedSession Method

CVE-2007-4774 MEDIUM

Linux Kernel < 2.4.35 - Race Condition via SIGCONT Signal Flooding

X.Org Xserver < 1.4.1 - Remote Code Execution via EVI or MIT-SHM Integer Overflow

OpenAFS 1.3.50-1.4.5 and 1.5.0-1.5.27 - Denial of Service via Callback Linked-List Race Condition

Apple Mac OS X 10.4.11 - Info Disclosure

Solaris 10 - Denial of Service via Fibre Channel Protocol Driver Race Condition

Solaris 8-10 - Denial of Service via RPC Kernel Module Race Condition

Rails 1.2.4 - Session Fixation via Incomplete Cookie Protection

Apple Mac OS X <10.4.11 - Info Disclosure

nss_ldap - Race Condition in LDAP Connection Handling

Aipo and Aipo ASP < 3.0.1.0 - Session Fixation

Solaris 8-10 - Denial of Service via Thread Context Handling Race Condition

Linux kernel <2.6.17.7 - DoS/Info Disclosure

ESET NOD32 Antivirus < 2.2289 - Remote Code Execution via CAB File Parsing

GD Graphics Library < 2.0.34 - Denial of Service via Race Condition in gdImageStringFTEx

Safari < 3.0.2 and iPhone OS < 1.0.1 - Race Condition Bypass via Page Update and HTTP Redirect

Previous Page 95 of 96 Next

Details

Vulnerabilities 2,400

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy