85 matches found
CVE-2019-4512
CVE-2019-4512 affects IBM Maximo Asset Management 7.6.1.1. The vulnerability arises from an error message that leaks sensitive information, enabling information disclosure. The IBM Security Bulletin lists affected products (core Maximo Asset Management 7.6.1.1 and related Industry Solutions/Contr...
CVE-2017-4512
CVE-2017-4512 entry is rejected/not used; this ID does not represent an active vulnerability.
CVE-2017-4512
...
Authentication flaw
Authentication Bypass in Trend Micro Control Manager 6.0 causes Information Disclosure when authentication validation is not done for functionality that can change debug logging level. Formerly ZDI-CAN-4512...
CVE-2017-11387
CVE-2017-11387 concerns Trend Micro Control Manager 6.0 where an authentication bypass allows information disclosure by manipulating functionality that changes debug logging level. The issue arises because authentication validation is not performed for that capability, enabling remote attackers t...
CVE-2016-4512
Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 and earlier allows remote attackers to execute arbitrary code via a long packet...
CVE-2016-4512
The CVE-2016-4512 issue affects Eaton ELCSoft ELCSimulator (infecting the ELCSimulator.exe) in ELCSoft versions 2.4.01 and earlier. The root cause is a stack-based buffer overflow when processing network TCP input, allowing remote attackers to execute arbitrary code with the process’s privileges ...
openSUSE: Security Advisory for seamonkey (openSUSE-SU-2015:1681-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2012-1418)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-4512
CVE-2015-4512: In Mozilla Firefox before 41.0 on Linux, gfx/2d/DataSurfaceHelpers.cpp may misuse Cairo when creating a 32‑bit color surface and displaying it as a 16‑bit surface, enabling out‑of‑bounds reads and potential information disclosure or denial of service via a crafted CANVAS trigger. A...
Ubuntu 14.04 LTS : Ubufox update (USN-2743-2)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2743-2 advisory. USN-2743-1 fixed vulnerabilities in Firefox. This update provides the corresponding update for Ubufox. Tenable has extracted the preceding description block...
ipa security and bug fix update
3.0.0-47.el6 - Resolves: 1220788 - Some IPA schema files are not RFC 4512 compliant 3.0.0-46.el6 - Use tls version range in NSSHTTPS initialization - Resolves: 1154687 - POODLE: force using safe ciphers non-SSLv3 in IPA client and server - Resolves: 1012224 - host certificate not issued to client...
Konqueror 4.7.3 Memory Corruption
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Nth Dimension Security Advisory NDSA20121010 Date: 10th October 2012 Author: Tim Brown mailto:[email protected] URL: http://www.nth-dimension.org.uk/ / http://www.machine.org.uk/ Product: Konqueror 4.7.3...
Debian DSA-2906-1 : linux-2.6 - privilege escalation/denial of service/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-0343 George Kargiotakis reported an issue in the tempora...
Debian Security Advisory DSA 2906-1 (linux-2.6 - privilege escalation/denial of service/information leak)
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-0343 George Kargiotakis reported an issue in the temporary...
[ MDVSA-2013:291 ] kernel
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:291 http://www.mandriva.com/en/support/security/ Package : kernel Date : December 17, 2013 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been found and corrected in the Linu...
Mandriva Linux Security Advisory : kernel (MDVSA-2013:291)
Multiple vulnerabilities has been found and corrected in the Linux kernel : The Linux kernel before 3.12.2 does not properly use the getdumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted...
CVE-2013-4512
Buffer overflow in the exitcodeprocwrite function in arch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other impact by leveraging root privileges for a write operation...
UBUNTU-CVE-2013-4512
Buffer overflow in the exitcodeprocwrite function in arch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other impact by leveraging root privileges for a write operation...
CVE-2013-4512
CVE-2013-4512 describes a buffer overflow in the Linux kernel's user-mode Linux port, specifically in the write method of /proc/exitcode (exitcode_proc_write) in arch/um/kernel/exitcode.c, exploitable by local attackers with sufficient privileges. The vulnerability exists in kernels prior to 3.12...