CVE-2016-2779

runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer...

CVE-2017-5495

All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are configured with their telnet CLI enabled, anyone who can connect to the TCP port...

UBUNTU-CVE-2016-10124

An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...

NVIDIA Windows GPU Display Driver Input Validation Vulnerability (CNVD-2016-12901)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A security vulnerability exists in the kernel mode layer nvlddmkm.sys processor of DxgDdiEscape in all versions of the NVIDIA Windows GPU Display Driver, which arises from the...

CVE-2016-8809

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x70001b2 where the size of an input buffer is not validated, leading to denial ...

Microsoft Windows - GDI+ EMR_EXTTEXTOUTA / EMR_POLYTEXTOUTA Heap Buffer Overflow (MS16-097)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=828 The Microsoft GDI+ implementation of the EMF format supports records corresponding to the ExtTextOutA and PolyTextOutA API functions. Both CEmfPlusEnumState::ExtTextOutA and CEmfPlusEnumState::PolyTextOutA handlers suffer from ...

OpenAFS Denial of Service Vulnerability - Windows

OpenAFS is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openafs:openafs";...

The vulnerabilities of the information protection systems Secret Net and Secret Net Studio allow attackers to bypass the DSE protection mechanisms and increase their privileges.

The vulnerability of the kernel driver sncc0.sys of the Secret Net information protection system and Secret Net Studio relates to the transfer of pointers from the user-mode application to the kernel driver through the IOCTL input buffer in the Sub180009D50 function. Exploiting this vulnerability...

CVE-2016-0718

Expat allows context-dependent attackers to cause a denial of service crash or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow...

CVE-2015-8312

Off-by-one error in afspioctl.c in OpenAFS before 1.6.16 might allow local users to cause a denial of service memory overwrite and system crash via a pioctl with an input buffer size of 4096 bytes...

DLA-218-1 xorg-server - security update

Bulletin has no description...

Sophos Cyberoam diagnose Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sophos Cyberoam. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the diagnose...

(0Day) Embarcadero ER/Studio Data Architect TSVisualization ActiveX loadExtensionFactory Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Embarcadero ER/Studio Data Architect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Microsoft Windows 2000 Telnet Username DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2838/info Due to a flaw in the implementation of the telnet service, it is possible for a remote client to perform a denial of service attack against a host. If approximately 4300 characters already exist in the input...

602Pro Lan Suite 2000a Long HTTP Request Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2543/info A denial of service vulnerability exists in versions of 602Pro Lan Suite. A remote attacker may connect to port 80 of the vulnerable host. Via this connection, the attacker submits a long request composed of at...

Fedora 19 : xorg-x11-server-1.14.0-6.fc19 (2013-5883)

Fix input buffer size to flush evdev events before enabling a device CVE-2013-1940 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora 18 : xorg-x11-server-1.13.3-3.fc18 (2013-5928)

Fix input buffer size to flush evdev events before enabling a device CVE-2013-1940 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Debian DSA-2548-1 : tor - several vulnerabilities

Several vulnerabilities have been discovered in Tor, an online privacy tool. - CVE-2012-3518 Avoid an uninitialised memory read when reading a vote or consensus document that has an unrecognized flavour name. This could lead to a remote crash, resulting in denial of service. - CVE-2012-3519 Try t...

DSA-2346-1 proftpd-dfsg - several

Bulletin has no description...

PT-2010-3516 · Microsoft · Windows +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to an integer overflow in the TCP/IP stack, allowing local users to gain privileges. It is also described as an elevation of privilege vulnerability in...