58 matches found
Xen Hypervisor I/O Intercept Code Hypervisor Stack Guest-to-Host Information Disclosure (XSA-239)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an unspecified flaw in the hvmemuldoio function in arch/x86/hvm/emulate.c that is triggered as an internal structure may contain data from an uninitialized hypervisor stack slot. This may...
livejournal.com XSS vulnerability
Vulnerable URL: http://www.livejournal.com/update.bml?repost= Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 239 VIP website status:| Yes Check livejournal.com SSL connection:| Grade: B Coordinated Disclosure...
HP SiteScope Log Analysis Tool Remote Privilege Escalation (credentialed check)
The HP SiteScope application installed on the remote host is affected by a privilege escalation vulnerability due to a failure to restrict the log path within the Log Analysis Tool. A remote, authenticated attacker can exploit this flaw to read the 'users.config' file, allowing an attacker to...
openSUSE Security Update : vorbis-tools (openSUSE-2015-239)
vorbis-tools was updated to fix division by zero and integer overflow by crafted WAV files CVE-2014-9638, CVE-2014-9639, bnc914439, bnc914441. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Amazon Linux AMI : mod24_fcgid (ALAS-2013-239)
Heap-based buffer overflow in the fcgidheaderbucketread function in fcgidbucket.c in the modfcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors. C Tenable Network Security, Inc. The descriptive text and package checks in...
HP Intelligent Management BIMS DownloadServlet Directory Traversal
This module exploits a lack of authentication and a directory traversal in HP Intelligent Management, specifically in the DownloadServlet from the BIMS component, in order to retrieve arbitrary files with SYSTEM privileges. This module has been tested successfully on HP Intelligent Management...
Mandrake Security Advisory MDVSA-2009:239 (openssl)
The remote host is missing an update to openssl announced via advisory MDVSA-2009:239. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Design/Logic Flaw
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 use the rand library function to generate a certain recovery key, which makes it easier for local users to determine this key via a brute-force attack...
Design/Logic Flaw
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create an undocumented recovery key and store it in the ENCK variable in flash memory, which allows local users to bypass the passphrase requirement and decrypt the hard drive by reading this variable,...
CVE-2009-3279
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create a LUKS partition by using the AES-256 cipher in plain CBC mode, which allows local users to obtain sensitive information via a watermark attack...
Information disclosure
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create a LUKS partition by using the AES-256 cipher in plain CBC mode, which allows local users to obtain sensitive information via a watermark attack...
CVE-2009-3200
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create an undocumented recovery key and store it in the ENCK variable in flash memory, which allows local users to bypass the passphrase requirement and decrypt the hard drive by reading this variable,...
CVE-2009-3278
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 use the rand library function to generate a certain recovery key, which makes it easier for local users to determine this key via a brute-force attack...
CVE-2009-3279
CVE-2009-3279 (and related CVE-2009-3200) affects QNAP TS-239 Pro/TS-639 Pro firmwares 2.1.7 0613, 3.1.0 0627, 3.1.1 0815: it creates a LUKS partition using AES-256 in plain CBC, enabling local users to obtain sensitive information via a watermark attack; an undocumented recovery key stored in fl...
CVE-2009-3278
The CVE-2009-3278 entry concerns the QNAP TS-239 Pro and TS-639 Pro (firmware 2.1.7 0613, 3.1.0 0627, 3.1.1 0815). The vulnerability stems from using the rand library function to generate a recovery key, which makes it easier for local users to brute-force and determine this key. The connected do...
CVE-2009-3200
The CVE-2009-3200 entry describes a vulnerability in QNAP TS-239 Pro and TS-639 Pro devices running firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815. An undocumented recovery key is created and stored in the ENCK variable in flash memory, allowing local users to bypass the passphrase and decrypt t...
Advisory: Crypto backdoor in Qnap storage devices (CVE-2009-3200)
Title: Crypto backdoor in Qnap storage devices Date: 18 September 2009 URL: http://www.baseline-security.de/downloads/BSC-QnapCryptoBackdoor-CVE-2009-3200.txt Vendor: QNAP Systems Products verified: TS-239 Pro, TS-639 Pro Products unverified: SS-439 Pro, TS-439 Pro, TS-439U-SP/RP, TS-509 Pro,...
Mandriva Linux Security Advisory : clamav (MDVSA-2008:239)
Ilja van Sprundel found that ClamAV contained a denial of service vulnerability in how it handled processing JPEG files, due to it not limiting the recursion depth when processing JPEG thumbnails CVE-2008-5314. Other bugs have also been corrected in 0.94.2 which is being provided with this update...