Lucene search
K

7647 matches found

securityvulns
securityvulns
added 2010/10/13 12:0 a.m.69 views

Microsoft Security Bulletin MS10-086 - Moderate Vulnerability in Windows Shared Cluster Disks Could Allow Tampering (2294255)

Microsoft Security Bulletin MS10-086 - Moderate Vulnerability in Windows Shared Cluster Disks Could Allow Tampering 2294255 Published: October 12, 2010 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Windows Server 2008 R2 whe...

7.5CVSS0.1AI score0.12992EPSS
Exploits1
securityvulns
securityvulns
added 2010/10/13 12:0 a.m.30 views

Microsoft Windows 2008 Shared Cluster Disks weak permissions

Everyone:Full Control permissions is granted on new disks by default...

2.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/10/13 12:0 a.m.39 views

MS10-086: Vulnerability in Windows Shared Cluster Disks Could Allow Tampering (2294255)

The remote Windows 2008 R2 host has a data tampering vulnerability. When the host is used as a shared failover cluster, the Failover Cluster Manager uses insecure default permissions when adding disks to a cluster. This allows unauthorized read, write, and delete access to the administrative shar...

7.5CVSS5.5AI score0.12992EPSS
Exploits1References2
Symantec
Symantec
added 2010/10/12 12:0 a.m.36 views

Microsoft Windows OpenType Font (OTF) Format Driver CVE-2010-2741 Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Attackers may exploit this issue to execute arbitrary code with kernel-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts...

7.2CVSS0.01792EPSS
Exploits1Affected Software2
OpenVAS
OpenVAS
added 2010/10/10 12:0 a.m.19 views

Debian Security Advisory DSA 2095-1 (lvm2)

The remote host is missing an update to lvm2 announced via advisory DSA 2095-1. OpenVAS Vulnerability Test $Id: deb20951.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2095-1 lvm2 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

4.6CVSS0.1AI score0.00495EPSS
Exploits1
OpenVAS
OpenVAS
added 2010/10/10 12:0 a.m.22 views

Debian: Security Advisory (DSA-2095-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS9.6AI score0.00495EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2010/10/06 5:31 p.m.57 views

USN-1001-1: LVM2 vulnerability

The cluster logical volume manager daemon clvmd in LVM2 did not correctly validate credentials. A local user could use this flaw to manipulate logical volumes without root privileges and cause a denial of service in the cluster...

4.6CVSS5.2AI score0.00495EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2010/09/27 12:0 a.m.16 views

Fedora 12 : lvm2-2.02.72-4.fc12 (2010-12250)

This update addresses a security problem when using the clustered LVM daemon clvmd from the package lvm2-cluster on systems where you have non-root users. The lvm2 package on its own is not vulnerable to this problem but if you are using lvm2-cluster you must update both together. Further details...

4.6CVSS5.4AI score0.00495EPSS
Exploits1References4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/09/15 4:46 a.m.2 views

Denial of Service (DoS) Vulnerability in JP1/Desktop Navigation Built-in Database

Overview When JP1/Desktop Navigation used in a cluster environment receives unexpected data, the built-in database process and unit abend, which may cause the management server service to fall into a denial of service DoS condition. Impact A remote attacker could cause a denial of service DoS...

7.8CVSS6.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/09/12 12:0 a.m.16 views

Fedora 13 : lvm2-2.02.73-2.fc13 / udisks-1.0.1-4.fc13 (2010-13708)

This update addresses a security problem when using the clustered LVM daemon clvmd from the package lvm2-cluster on systems where you have non-root users. The lvm2 package on its own is not vulnerable to this problem but if you are using lvm2-cluster you must update both together. Further details...

4.6CVSS5.4AI score0.00495EPSS
Exploits1References5
OSV
OSV
added 2010/08/05 1:22 p.m.1 views

DEBIAN-CVE-2010-2526

The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...

4.6CVSS6.8AI score0.00495EPSS
Exploits1References1
Prion
Prion
added 2010/08/05 1:22 p.m.10 views

Design/Logic Flaw

The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...

4.6CVSS7.4AI score0.00495EPSS
Exploits1References11Affected Software1
CVE
CVE
added 2010/08/04 9:0 p.m.89 views

CVE-2010-2526

CVE-2010-2526 affects the cluster logical volume manager daemon (clvmd) in LVM2-cluster (LVM2) before 2.02.72 . The issue arises because clvmd does not verify credentials of clients over its control socket, enabling local users to issue crafted commands that can cause the daemon to exit, or to ac...

4.6CVSS9AI score0.00495EPSS
Exploits1References11Affected Software1
Cvelist
Cvelist
added 2010/08/04 9:0 p.m.21 views

CVE-2010-2526

The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...

9.3AI score0.00495EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2010/07/30 12:0 a.m.29 views

CentOS 5 : lvm2-cluster (CESA-2010:0567)

An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

4.6CVSS5.5AI score0.00495EPSS
Exploits1References3
Cent OS
Cent OS
added 2010/07/29 1:37 p.m.59 views

lvm2 security update

CentOS Errata and Security Advisory CESA-2010:0567 An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS...

4.6CVSS5.7AI score0.00495EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2010/07/28 1:45 p.m.5 views

lvm2-cluster: insecurity when communicating between lvm2 and clvmd

The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...

4.6CVSS5.9AI score0.00495EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2010/07/28 1:45 p.m.31 views

Moderate: Red Hat Security Advisory: lvm2-cluster security update

An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Global File System for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...

4.6CVSS5.7AI score0.00495EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2010/07/28 1:28 p.m.30 views

Moderate: Red Hat Security Advisory: lvm2-cluster security update

An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

4.6CVSS5.7AI score0.00495EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2010/07/28 1:28 p.m.6 views

lvm2-cluster: insecurity when communicating between lvm2 and clvmd

The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...

4.6CVSS5.9AI score0.00495EPSS
Exploits1References4
Rows per page
Query Builder