60 matches found
TeamViewer Rushes Fix for Permissions Bug
Remote support software company TeamViewer said Tuesday it issued a hotfix for a bug that allows users sharing a desktop session to gain control of the other’s computer without permission. The bug was first publicized by a Reddit user “xpl0yt” on Monday who linked to a proof-of-concept example of...
Resources with names ending with the Published Desktop name not showing up in Receiver
This article is intended for Citrix administrators and technical teams only.Non-admin users must contact their company’s Help Desk/IT support team and can refer toCTX297149for more information Resources with names ending with the published desktop name not showing up in Receiver For passthrough...
Spoofing
Remote Desktop Session Host RDSH in Remote Desktop Protocol RDP through 8.1 in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly verify certificates, which allows...
MS15-082: Vulnerabilities in RDP could allow remote code execution: August 11, 2015
Resolves vulnerabilities in Windows that could allow remote code execution if an attacker first places a specially crafted dynamic link library DLL file in the target user’s current working directory and then convinces the user to open an RDP file or to launch a program that is designed to load a...
Updated gtk+3.0 packages fix CVE-2014-1949
Updated gtk+3.0 packages fix security vulnerability: Clemens Fries reported that, when using Cinnamon, it was possible to bypass the screensaver lock. An attacker with physical access to the machine could use this flaw to take over the locked desktop session CVE-2014-1949. This was fixed by...
USN-1132-1: apturl vulnerability
It was discovered that apturl incorrectly handled certain long URLs. If a user were tricked into opening a very long URL, an attacker could cause their desktop session to crash, leading to a denial of service...
Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1
Ubuntu Update for Linux kernel vulnerabilities USN-688-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6881.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
USN-688-1: Compiz vulnerability
It was discovered that the Expo plugin for Compiz did not correctly restrict the screensaver window from being moved with the mouse. A local attacker could use the mouse to move the screensaver off the screen and gain access to the locked desktop session underneath. Default installs of Ubuntu wer...
FreeBSD Ports: xtrlock
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian Security Advisory DSA 649-1 (xtrlock)
The remote host is missing an update to xtrlock announced via advisory DSA 649-1. OpenVAS Vulnerability Test $Id: deb6491.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 649-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
CVE-2005-0078
The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session...
DEBIAN-CVE-2005-0079
Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...
CVE-2005-0079
Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...
CVE-2005-0079
Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...
security flaw
The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session...
CVE-2005-0078
The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session...
CVE-2005-0078
CVE-2005-0078 affects KDE screensaver (kscreensaver) prior to KDE 3.0.5. The issue stems from not properly checking the return value of a function call, enabling a local attacker with physical access to cause a crash and potentially take over a locked desktop session. Public sources note upstream...
CVE-2005-0079
Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service application crash and hijack the desktop session...
Debian DSA-649-1 : xtrlock - buffer overflow
A buffer overflow has been discovered in xtrlock, a minimal X display lock program which can be exploited by a malicious local attacker to crash the lock program and take over the desktop session. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
DSA-649-1 xtrlock - buffer overflow
Bulletin has no description...