Lucene search
K

60 matches found

ThreatPost
ThreatPost
added 2017/12/05 4:4 p.m.10 views

TeamViewer Rushes Fix for Permissions Bug

Remote support software company TeamViewer said Tuesday it issued a hotfix for a bug that allows users sharing a desktop session to gain control of the other’s computer without permission. The bug was first publicized by a Reddit user “xpl0yt” on Monday who linked to a proof-of-concept example of...

1AI score
Exploits0References3
Citrix
Citrix
added 2017/08/29 12:0 a.m.7 views

Resources with names ending with the Published Desktop name not showing up in Receiver

This article is intended for Citrix administrators and technical teams only.Non-admin users must contact their company’s Help Desk/IT support team and can refer toCTX297149for more information Resources with names ending with the published desktop name not showing up in Receiver For passthrough...

6.8AI score
Exploits0
Prion
Prion
added 2015/08/15 12:59 a.m.26 views

Spoofing

Remote Desktop Session Host RDSH in Remote Desktop Protocol RDP through 8.1 in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly verify certificates, which allows...

4.3CVSS6.7AI score0.02223EPSS
Exploits0References2Affected Software4
Microsoft KB
Microsoft KB
added 2015/08/11 12:0 a.m.102 views

MS15-082: Vulnerabilities in RDP could allow remote code execution: August 11, 2015

Resolves vulnerabilities in Windows that could allow remote code execution if an attacker first places a specially crafted dynamic link library DLL file in the target user’s current working directory and then convinces the user to open an RDP file or to launch a program that is designed to load a...

9.3CVSS6.8AI score0.25274EPSS
Exploits0
Mageia
Mageia
added 2014/09/09 9:34 a.m.46 views

Updated gtk+3.0 packages fix CVE-2014-1949

Updated gtk+3.0 packages fix security vulnerability: Clemens Fries reported that, when using Cinnamon, it was possible to bypass the screensaver lock. An attacker with physical access to the machine could use this flaw to take over the locked desktop session CVE-2014-1949. This was fixed by...

7.2CVSS6.2AI score0.00331EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2011/05/16 7:26 p.m.35 views

USN-1132-1: apturl vulnerability

It was discovered that apturl incorrectly handled certain long URLs. If a user were tricked into opening a very long URL, an attacker could cause their desktop session to crash, leading to a denial of service...

5.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.14 views

Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1

Ubuntu Update for Linux kernel vulnerabilities USN-688-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6881.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

7.4AI score
Exploits0References2
Ubuntu
Ubuntu
added 2008/12/09 12:56 a.m.57 views

USN-688-1: Compiz vulnerability

It was discovered that the Expo plugin for Compiz did not correctly restrict the screensaver window from being moved with the mouse. A local attacker could use the mouse to move the screensaver off the screen and gain access to the locked desktop session underneath. Default installs of Ubuntu wer...

6.2CVSS5.2AI score0.00414EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.9 views

FreeBSD Ports: xtrlock

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.6CVSS6.6AI score0.00382EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.13 views

Debian Security Advisory DSA 649-1 (xtrlock)

The remote host is missing an update to xtrlock announced via advisory DSA 649-1. OpenVAS Vulnerability Test $Id: deb6491.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 649-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

4.6CVSS0.1AI score0.00382EPSS
Exploits0
NVD
NVD
added 2005/05/02 4:0 a.m.28 views

CVE-2005-0078

The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session...

4.6CVSS6AI score0.00379EPSS
Exploits0References4
OSV
OSV
added 2005/05/02 4:0 a.m.1 views

DEBIAN-CVE-2005-0079

Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...

4.6CVSS6.3AI score0.00382EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.19 views

CVE-2005-0079

Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...

4.6CVSS5.9AI score0.00382EPSS
Exploits0References1
NVD
NVD
added 2005/05/02 4:0 a.m.11 views

CVE-2005-0079

Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...

4.6CVSS6.2AI score0.00382EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/02/10 4:43 p.m.5 views

security flaw

The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session...

4.6CVSS5.8AI score0.00379EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/01/29 5:0 a.m.31 views

CVE-2005-0078

The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session...

6AI score0.00379EPSS
Exploits0References4
CVE
CVE
added 2005/01/29 5:0 a.m.76 views

CVE-2005-0078

CVE-2005-0078 affects KDE screensaver (kscreensaver) prior to KDE 3.0.5. The issue stems from not properly checking the return value of a function call, enabling a local attacker with physical access to cause a crash and potentially take over a locked desktop session. Public sources note upstream...

4.6CVSS6AI score0.00379EPSS
Exploits0References4Affected Software5
Cvelist
Cvelist
added 2005/01/29 5:0 a.m.22 views

CVE-2005-0079

Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...

6.1AI score0.00382EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2005/01/25 12:0 a.m.20 views

Debian DSA-649-1 : xtrlock - buffer overflow

A buffer overflow has been discovered in xtrlock, a minimal X display lock program which can be exploited by a malicious local attacker to crash the lock program and take over the desktop session. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

4.6CVSS5.5AI score0.00382EPSS
Exploits0References4
OSV
OSV
added 2005/01/20 12:0 a.m.14 views

DSA-649-1 xtrlock - buffer overflow

Bulletin has no description...

4.6CVSS6.1AI score0.00382EPSS
Exploits0
Rows per page
Query Builder