Lucene search
K

180 matches found

securityvulns
securityvulns
added 2015/09/15 12:0 a.m.93 views

[security bulletin] HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization Bypass

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04762372 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04762372 Version: 2 HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization...

4CVSS0.5AI score0.0184EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.261 views

OracleVM 2.1 : kernel (OVMSA-2008-2005)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix utrace deadengine ops race - fix ptraceattach leak - CVE-2007-5093: kernel PWC driver DoS - CVE-2007-6282: IPSec ESP kernel panics - CVE-2007-6712: kernel: infinite loop in highres timers kernel...

7.8CVSS7.3AI score0.04934EPSS
Exploits10References15
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.43 views

openSUSE Security Update : flash-player (openSUSE-SU-2011:0897-1)

The update to Flash-Player 10.3.188.5 fixes various security issues : - CVE-2011-2130: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2134: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2135: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2136: CVSS v...

10CVSS6.2AI score0.82258EPSS
Exploits18References15
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.30 views

openSUSE Security Update : flash-player (openSUSE-SU-2011:0897-1)

The update to Flash-Player 10.3.188.5 fixes various security issues : - CVE-2011-2130: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2134: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2135: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2136: CVSS v...

10CVSS6.2AI score0.82258EPSS
Exploits18References15
CVE
CVE
added 2014/05/08 10:0 a.m.50 views

CVE-2014-2136

CVE-2014-2136 affects Cisco WebEx ARF/WRF Players. The vulnerability is a buffer overflow in ARF/WRF parsing (ARF: T27 LD before SP32 EP16, T28 before T28.12, T29 before T29.2) that could allow remote code execution or memory corruption resulting in a denial of service when processing a crafted A...

9.3CVSS8.2AI score0.03794EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2014/05/08 10:0 a.m.26 views

CVE-2014-2136

Buffer overflow in Cisco Advanced Recording Format ARF player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted .arf file, aka Bug IDs CSCui72223,...

8AI score0.03794EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2014/03/12 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-2136-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.3AI score0.10209EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.31 views

Amazon Linux AMI : kernel (ALAS-2012-83)

It was found that the datalen parameter of the sockallocsendpskb function in the Linux kernel's networking implementation was not validated before use. A local user with access to a TUN/TAP virtual interface could use this flaw to crash the system or, potentially, escalate their privileges. Note...

7.2CVSS5.3AI score0.00583EPSS
Exploits2References2
CVE
CVE
added 2013/08/19 11:0 p.m.58 views

CVE-2013-2136

Apache CloudStack UI contains multiple cross-site scripting (XSS) vulnerabilities in versions up to 4.1.0, allowing authenticated/remote attackers to inject arbitrary script or HTML via fields in Zone, Network, Instance, global settings, and other UI inputs. The issue is fixed by upgrading to Clo...

4.3CVSS5.8AI score0.04051EPSS
Exploits1References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.61 views

Oracle Linux 5 : kernel (ELSA-2012-0690-1)

From Red Hat Security Advisory 2012:0690 : Updated kernel packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVS...

7.2CVSS5.3AI score0.00583EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.258 views

Oracle Linux 5 : kernel (ELSA-2008-0612)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0612 advisory. - tty add NULL pointer checks Aristeu Rozanski 453425 453154 CVE-2008-2812 - net sctp: make sure sctpaddr does not overflow David S. Miller 452482 4524...

7.8CVSS7.3AI score0.04934EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.62 views

Oracle Linux 6 : kernel (ELSA-2012-0862)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0862 advisory. - security fix compile error in commoncap.c Eric Paris 806726 CVE-2012-2123 - security fcaps: clear the same personality flags as suid when fcaps are...

7.8CVSS7.2AI score0.00795EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2013/01/25 12:0 a.m.71 views

SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 6453 / 6457)

The SUSE Linux Enterprise 11 SP2 kernel was updated to 3.0.34, fixing a lot of bugs and security issues. The update from Linux kernel 3.0.31 to 3.0.34 also fixes various bugs not listed here. The following security issues have been fixed : - Local attackers could trigger an overflow in...

7.2CVSS6.9AI score0.00979EPSS
Exploits6References43
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.40 views

RHEL 5 : kernel (RHSA-2012:1087)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:1087 advisory. - kernel: net: insufficient datalen validation in sockallocsendpskb CVE-2012-2136 Note that Nessus has not tested for this issue but has instead reli...

7.2CVSS5.5AI score0.00583EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2012/10/11 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-1598-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.8AI score0.00583EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2012/08/17 12:0 a.m.54 views

Ubuntu Update for linux-lts-backport-natty USN-1538-1

Ubuntu Update for Linux kernel vulnerabilities USN-1538-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN15381.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux-lts-backport-natty USN-1538-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

7.2CVSS7.5AI score0.00583EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2012/08/17 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-1539-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS7.3AI score0.08738EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2012/08/17 12:0 a.m.48 views

Ubuntu: Security Advisory (USN-1538-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.4AI score0.00583EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2012/08/17 12:0 a.m.39 views

Ubuntu Update for linux-lts-backport-oneiric USN-1539-1

Ubuntu Update for Linux kernel vulnerabilities USN-1539-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN15391.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux-lts-backport-oneiric USN-1539-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

7.6CVSS0.4AI score0.08738EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2012/08/15 12:0 a.m.44 views

Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1538-1)

An error was discovered in the Linux kernel's network TUN/TAP device implementation. A local user with access to the TUN/TAP interface which is not available to unprivileged users until granted by a root user could exploit this flaw to crash the system or potential gain administrative privileges...

7.2CVSS6.5AI score0.00583EPSS
Exploits3References4
Rows per page
Query Builder