116 matches found
CVE-2017-2501
Apple CVE-2017-2501 describes a kernel race condition across iOS, macOS, tvOS, and watchOS that could allow a crafted app to execute arbitrary code with kernel privileges. Affected products include iOS 10.3.x (before 10.3.2), macOS 10.12.x (before 10.12.5), tvOS 10.2.x (before 10.2.1), and watchO...
CVE-2016-2501
The Qualcomm camera driver in Android before 2016-07-05 on Nexus 5X, 6, 6P, and 7 2013 devices allows attackers to gain privileges via a crafted application, aka Android internal bug 27890772 and Qualcomm internal bug CR1001092...
UBUNTU-CVE-2016-2501
The Qualcomm camera driver in Android before 2016-07-05 on Nexus 5X, 6, 6P, and 7 2013 devices allows attackers to gain privileges via a crafted application, aka Android internal bug 27890772 and Qualcomm internal bug CR1001092...
CVE-2016-2501
CVE-2016-2501 affects the Qualcomm camera driver in Android before 2016-07-05 on Nexus devices (5X/6/6P/7). The vulnerability enables elevation of privilege by a local attacker via a crafted app, due to issues in the Qualcomm camera driver (Android internal bug 27890772; Qualcomm internal bug CR1...
Oracle: Security Advisory (ELSA-2011-1105)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-2501
CVE-2015-2501 affects Microsoft Internet Explorer (IE) 9 (and IE7–IE11 per listed sources). The vulnerability is a remote memory-corruption flaw triggered by visiting a crafted web page, allowing remote code execution or, per some sources, denial of service. The primary concrete technical detail ...
Ubuntu: Security Advisory (USN-2501-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Sitecom WLM-2501 CSRF Vulnerabilities
No description provided by source. +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 Change Wireless Passphrase Date : 13-03-2012 Author : Ivano Binetti http://www.ivanobinetti.com...
Sitecom WLM-2501 new Multiple CSRF Vulnerabilities
No description provided by source. +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 new Multiple CSRF Vulnerabilities Date : 22-03-2012 Author : Ivano Binetti...
openSUSE Security Update : libpng14 (libpng14-4949)
This update of libpng14-14 fixes : - CVE-2011-2501: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Design Error CWE-DesignError - CVE-2011-2690: CVSS v2 Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P: Buffer Errors CWE-119 - CVE-2011-2691: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P: Othe...
openSUSE Security Update : libpng12 (libpng12-4947)
This update of libpng12-0 fixes : - CVE-2011-2501: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Design Error CWE-DesignError - CVE-2011-2690: CVSS v2 Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P: Buffer Errors CWE-119 - CVE-2011-2691: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P: Other...
openSUSE Security Update : libpng14 (libpng14-4949)
This update of libpng14-14 fixes : - CVE-2011-2501: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Design Error CWE-DesignError - CVE-2011-2690: CVSS v2 Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P: Buffer Errors CWE-119 - CVE-2011-2691: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P: Othe...
GDI PNG Heap Overflow - Ver2 (CVE-2009-2501)
A buffer overflow vulnerability has been reported in GDI+. An attacker could exploit this vulnerability via a crafted PNG image file. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle Linux 6 : libpng (ELSA-2011-1105)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1105 advisory. 2:1.2.46-1 - Update to libpng 1.2.46, includes fixes for CVE-2011-2501, CVE-2011-2690, CVE-2011-2691, CVE-2011-2692 Resolves: 721305 Tenable has...
CVE-2013-2501
CVE-2013-2501 affects the Terillion Reviews WordPress plugin, specifically versions before 1.2. The vulnerability is a reflected/stored XSS via the ProfileId field in the plugin’s UI, allowing remote attackers to inject arbitrary HTML/script. Impact is an XSS risk in sites running the affected pl...
CVE-2013-2501
Cross-site scripting XSS vulnerability in the Terillion Reviews plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ProfileId field...
WordPress Terillion Reviews Cross Site Scripting
CVE Assigned-CVE-2013-2501 Exploit Title : Stored XSS in Terillion Reviews Plugin Author: Aditya Balapure home: http://adityabalapure.blogspot.in/ Date: 08/03/13 Software link: http://wordpress.org/extend/plugins/terillion-reviews/ The Terillion Reviews Plugin in Wordpress...
CVE-2013-2501
creationtimestamp| type| source ---|---|--- 2013-03-08 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38373...
CVE-2012-1922
Multiple cross-site request forgery CSRF vulnerabilities in Sitecom WLM-2501 allow remote attackers to hijack the authentication of administrators for requests that modify settings for 1 Mac Filtering via admin/formFilter, 2 IP/Port Filtering via formFilter, 3 Port Forwarding via formPortFw, 4...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in Sitecom WLM-2501 allow remote attackers to hijack the authentication of administrators for requests that modify settings for 1 Mac Filtering via admin/formFilter, 2 IP/Port Filtering via formFilter, 3 Port Forwarding via formPortFw, 4...