139 matches found
CVE-2019-14565
Insufficient initialization in IntelR SGX SDK Windows versions 2.4.100.51291 and earlier, and Linux versions 2.6.100.51363 and earlier, may allow an authenticated user to enable information disclosure, escalation of privilege or denial of service via local access...
PT-2019-4014 · Palo Alto · Palo Alto Globalprotect Agent For Macos +1
Name of the Vulnerable Software and Affected Versions: Palo Alto GlobalProtect Agent for Linux versions 5.0.4 and earlier Palo Alto GlobalProtect Agent for Linux versions 4.1.12 and earlier Palo Alto GlobalProtect Agent for MacOS versions 5.0.4 and earlier Palo Alto GlobalProtect Agent for MacOS...
UBUNTU-CVE-2019-10639
The Linux kernel 4.x starting from 4.1 and 5.x before 5.0.8 allows Information Exposure partial kernel address disclosure, leading to a KASLR bypass. Specifically, it is possible to extract the KASLR kernel image offset using the IP ID values the kernel produces for connection-less protocols e.g....
CVE-2018-6704
Privilege escalation vulnerability in McAfee Agent MA for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions...
CVE-2017-17543
Users' VPN authentication credentials are unsafely encrypted in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2335 and below versions, due to the use of a static encryption key and weak...
kernel: Race condition in sound system can lead to denial of service
In the Linux kernel versions 4.12, 3.10, 2.6, and possibly earlier, a race condition vulnerability exists in the sound system allowing for a potential deadlock and memory corruption due to use-after-free condition and thus denial of service. Due to the nature of the flaw, privilege escalation...
NetScaler Gateway Endpoint Analysis Supported Operating System and Browsers
Q: What are the operating systems and Web browsers required for NetScaler Gateway Endpoint Analysis plug-in? A : To use the Endpoint Analysis Plug-in, the following software is required on the user device: Operating System| Supported Browsers ---|--- Mac OS X 10.9 and later| Safari 7.1 or...
CVE-2017-5182
Remote Manager in Open Enterprise Server OES allows unauthenticated remote attackers to read any arbitrary file, via a specially crafted URL, that allows complete directory traversal and total information disclosure. This vulnerability is present on all versions of OES for linux, it applies to...
KLA10892 Code execution vulnerability in Adobe Flash Player
Use-after-free vulnerability was found in Adobe Flash Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, install...
PT-2016-7214 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.8.2 Description: The issue concerns the filesystem implementation in the Linux kernel, which preserves the setgid bit during a setxattr call. This allows local users to gain group privileges by leveraging the...
UBUNTU-CVE-2015-8639
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute...
UBUNTU-CVE-2015-8551
The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of service NULL pointer dereference and host OS crash by leveraging a system with access to a...
UBUNTU-CVE-2015-8067
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...
UBUNTU-CVE-2014-0578
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow remote attackers to bypass the Same Origin Policy v...
flash-plugin: multiple code execution issues fixed in APSB15-16
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers to execute arbitrary code by leveraging a...
CVE-2014-2613
Unspecified vulnerability in HP Release Control 9.x before 9.13 p3 and 9.2x before RC 9.21.0003 p1 on Windows and 9.2x before RC 9.21.0002 p1 on Linux allows remote authenticated users to gain privileges via unknown vectors...
Check_MK Arbitrary File Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 === LSE Leading Security Experts GmbH - Security Advisory LSE-2014-05-21 === CheckMK - Arbitrary File Disclosure Vulnerability - -------------------------------------------------- Affected Versions ================= Linux versions of CheckMK equal or...
CVE-2014-2580
The netback driver in Xen, when using certain Linux versions that do not allow sleeping in softirq context, allows local guest administrators to cause a denial of service "scheduling while atomic" error and host crash via a malformed packet, which causes a mutex to be taken when trying to disable...
CVE-2014-2580
The netback driver in Xen, when using certain Linux versions that do not allow sleeping in softirq context, allows local guest administrators to cause a denial of service "scheduling while atomic" error and host crash via a malformed packet, which causes a mutex to be taken when trying to disable...
PT-2014-3667 · Adobe +3 · Air Sdk & Compiler +6
Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions prior to 11.7.700.269 Adobe Flash Player versions 11.8.x through 12.0.x before 12.0.0.70 Adobe Flash Player version prior to 11.2.202.341 on Linux Adobe AIR version prior to 4.0.0.1628 on Android Adobe AIR SDK...