883 matches found
CVE-2008-1144
The Marvell driver for the Netgear WN802T Wi-Fi access point with firmware 1.3.16 on the Marvell 88W8361P-BEM1 chipset does not properly parse EAPoL-Key packets, which allows remote authenticated users to cause a denial of service device reboot or hang or possibly execute arbitrary code via a...
i965 DRM allows insecure packets
The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager DRM to write to arbitrary memory locations and gain privileges via a crafted batchbuffer...
Multiple Linux kernel vulnerabilities
nfconntrackh323 NULL pointer dereference, invalid suid applications parent process termination signal handling, privilege escalation on Intel 965 chipset...
DSA-1356-1 linux-2.6 - several vulnerabilities
Bulletin has no description...
CVE-2007-3851
The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager DRM to write to arbitrary memory locations and gain privileges via a crafted batchbuffer...
ProCheckUp Security Advisory 2006.14
PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability This advisory has been published following consultation with UK NISCC http://www.niscc.gov.uk/ Date Found: 3rd November 2006 Date Public: 22nd January 2007 Vulnerable: Phones confirme...
Information disclosure
The admin web console implemented by the Centrality Communications aka Aredfox PA168 chipset and firmware 1.54 and earlier, as provided by various IP phones, does not require passwords or authentication tokens when using HTTP, which allows remote attackers to connect to existing superuser session...
CVE-2007-0528
The admin web console implemented by the Centrality Communications aka Aredfox PA168 chipset and firmware 1.54 and earlier, as provided by various IP phones, does not require passwords or authentication tokens when using HTTP, which allows remote attackers to connect to existing superuser session...
CVE-2007-0528
The CVE-2007-0528 entry describes an unauthenticated admin web console on Centrality Communications (aka Aredfox) PA168 chipset devices, firmware 1.54 and earlier. The HTTP interface does not require passwords or auth tokens, allowing remote attackers to connect to existing superuser sessions and...
CVE-2007-0528
The admin web console implemented by the Centrality Communications aka Aredfox PA168 chipset and firmware 1.54 and earlier, as provided by various IP phones, does not require passwords or authentication tokens when using HTTP, which allows remote attackers to connect to existing superuser session...
PA168 Chipset IP Phones Weak Session Management Exploit
No description provided by source. !/bin/bash PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability Author: Adrian Pastor adrian.pastor-AT-procheckup.com from ProCheckUp This advisory has been published following consultation with UK NIS...
PA168 Chipset IP Phones - Weak Session Management
!/bin/bash PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability Author: Adrian Pastor adrian.pastor-AT-procheckup.com from ProCheckUp This advisory has been published following consultation with UK NISCC http://www.niscc.gov.uk/ Date...
PA168 Chipset IP Phones Weak Session Management Exploit
Exploit for hardware platform in category remote exploits ======================================================= PA168 Chipset IP Phones Weak Session Management Exploit ======================================================= !/bin/bash PR06-14: IP Phones based on Centrality Communications/Aredfo...
PA168 Chipset IP Phones - Weak Session Management
PA168 Chipset IP Phones - Weak Session Management !/bin/bash PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability Author: Adrian Pastor adrian.pastor-AT-procheckup.com from ProCheckUp This advisory has been published following...
Vote! Pro 4.0 - Multiple PHP Code Execution Vulnerabilities
Vote! Pro 4.0 - Multiple PHP Code Execution Vulnerabilities source: https://www.securityfocus.com/bid/22191/info Multiple VoIP phones using the Aredfox PA168 Chipset are prone to a session-hijacking vulnerability due to a design error. An attacker can exploit this issue to gain administrative...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:086)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Prior to Linux kernel 2.6.16.5, the kernel does not properly handle uncanonical return addresses on Intel EM64T CPUs which causes the kernel exception handler to run on the user stack with the wrong GS...
Intel wireless service s24evmon.exe confidential information disclosure.
S24EvMon.exe is a service which is part at least of the Intel PROset/Wireless software. This application is provided by Intel in order to support intel Wireless Devices based on Spectrum 24 chipsets. This service uses a shared memory section which is created without the proper security descriptor...
Important: Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 3 Update 6
Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 3. This is the sixth regular update. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles t...
XFree86 security update
CentOS Errata and Security Advisory CESA-2005:501 Updated XFree86 packages that fix several integer overflows, various bugs, and add ATI RN50/ES1000 support are now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security...
conexant chipset ADSL modems unauthorized access
It's possible to manage device with built-in passord via TCP/254...