DP300,RP200,RSE6500,TE30,TE40,TE50,TE60,TX50,VP9660,ViewPoint 8660,ViewPoint 9030,Viewpoint 8660, Security Vulnerabilities

tor-consensus-checker NSE Script

Checks if a target is a known Tor node. The script works by querying the Tor directory authorities. Initially, the script stores all IPs of Tor nodes in a lookup table to reduce the number of requests and make lookups quicker. Script Arguments slaxml.debug See the documentation for the slaxml...

[SECURITY] Fedora 20 Update: xen-4.3.4-4.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

[SECURITY] Fedora 21 Update: xen-4.4.2-4.fc21

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

CVE-2015-3990

The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...

CVE-2015-3990

The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...

Design/Logic Flaw

The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...

CVE-2015-3990

The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...

SUSE SLES11 Security Update : xen (SUSE-SU-2014:1710-1)

xen was updated to fix 14 security issues : Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867). Missing privilege level checks in x86 HLT, LGDT, LIDT, and...

SUSE SLES11 Security Update : xen (SUSE-SU-2014:1732-1)

xen was updated to fix 10 security issues : Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867). Missing privilege level checks in x86 emulation of far ...

SUSE SLES10 Security Update : Xen (SUSE-SU-2014:1691-1)

Xen has been updated to fix six security issues : Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867). Missing privilege level checks in x86 emulation of...

Dell Sonicwall GMS Virtual Appliance Multiple Remote Code Execution Vulnerabilities

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Dell SonicWALL Global Management System (GMS) virtual appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within the GMS ViewPoint (GMSVP) web...

Fedora Update for xen FEDORA-2015-6583

The remote host is missing an update for...

Fedora Update for xen FEDORA-2015-6670

The remote host is missing an update for...

[SECURITY] Fedora 20 Update: xen-4.3.4-3.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

[SECURITY] Fedora 21 Update: xen-4.4.2-3.fc21

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

GLSA-201504-04 : Xen: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201504-04 (Xen: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact : A local attacker could possibly cause a Denial of...

Fedora Update for xen FEDORA-2015-5208

The remote host is missing an update for...

Fedora Update for xen FEDORA-2015-5402

The remote host is missing an update for...

[SECURITY] Fedora 20 Update: xen-4.3.4-2.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

[SECURITY] Fedora 21 Update: xen-4.4.2-2.fc21

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly cause a Denial of Service condition or obtain sensitive information. Workaround...

CVE-2015-2808

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...

Flash Player <= 16.0.0.296 Multiple Vulnerabilities (APSB15-04)

Versions of Adobe Flash player equal or prior to 16.0.0.296 are outdated and thus unpatched for the following vulnerabilities : Several use-after-free errors exist that allow arbitrary code execution. (CVE-2015-0313, CVE-2015-0315, CVE-2015-0320, CVE-2015-0322) Several memory corruption errors...

Fedora Update for xen FEDORA-2015-3944

The remote host is missing an update for...

[SECURITY] Fedora 21 Update: xen-4.4.1-16.fc21

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

[SECURITY] Fedora 20 Update: xen-4.3.3-12.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

Fedora Update for xen FEDORA-2015-3721

The remote host is missing an update for...

Security Advisory - Glibc Buffer Overflow Vulnerability

Huawei noticed that Qualys had disclosed the buffer overflow in the GNU C Library (glibc) on January 27th, 2015, Applications call various gethostbyname function are affected and attackers can exploit this vulnerability to perform remote code execution. (Vulnerability ID: HWPSIRT-2015-01045) This.....

openSUSE Security Update : xen (openSUSE-2015-129)

The XEN virtualization was updated to fix bugs and security issues : Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030: XSA-113: Guest effectable page reference...

Security update for xen (important)

The XEN virtualization was updated to fix bugs and security issues: Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030: XSA-113: Guest effectable page reference...

openSUSE Security Update : xen (openSUSE-2015-113)

The virtualization software XEN was updated to version 4.3.3 and also to fix bugs and security issues. Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030: XSA-113:...

openSUSE: Security Advisory for xen (openSUSE-SU-2015:0226-1)

The remote host is missing an update for...

Security update for xen (important)

The virtualization software XEN was updated to version 4.3.3 and also to fix bugs and security issues. Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030:...

Xen DoS

Invalid page reference...

[SECURITY] [DSA 3140-1] xen security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Debian Security Advisory DSA-3140-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2015 http://www.debian.org/security/faq Package : xen CVE...

Debian DSA-3140-1 : xen - security update

Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may ...

[SECURITY] [DSA 3140-1] xen security update

Debian Security Advisory DSA-3140-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2015 http://www.debian.org/security/faq Package : xen CVE ID : CVE-2014-8594 CVE-2014-8595...

Debian Security Advisory DSA 3140-1 (xen - security update)

Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in...

xen - security update

Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in...

Debian: Security Advisory (DSA-3140-1)

The remote host is missing an update for the...

ManageEngine Multiple Products Authenticated File Upload Exploit

This Metasploit module exploits a directory traversal vulnerability in ManageEngine ServiceDesk, AssetExplorer, SupportCenter and IT360 when uploading attachment files. The JSP that accepts the upload does not handle correctly '../' sequences, which can be abused to write in the file system....

ManageEngine Multiple Products Authenticated File Upload

...

ManageEngine (Multiple Products) - (Authenticated) Arbitrary File Upload (Metasploit)

...

Fedora Update for xen FEDORA-2015-0345

The remote host is missing an update for...

Fedora Update for xen FEDORA-2015-0331

The remote host is missing an update for...

[SECURITY] Fedora 20 Update: xen-4.3.3-9.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

[SECURITY] Fedora 21 Update: xen-4.4.1-12.fc21

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...

Security update for xen (important)

xen was updated to fix nine security issues. These security issues were fixed: - Guest affectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). - Insufficient bounding of "REP MOVS" to MMIO emulated inside the hypervisor (CVE-2014-8867). - Excessive...

Fedora Update for xen FEDORA-2014-15951

The remote host is missing an update for...

ManageEngine Multiple Products Authenticated File Upload

This module exploits a directory traversal vulnerability in ManageEngine ServiceDesk, AssetExplorer, SupportCenter and IT360 when uploading attachment files. The JSP that accepts the upload does not handle correctly '../' sequences, which can be abused to write to the file system. Authentication...