Lucene search
+L

2084 matches found

Microsoft KB
Microsoft KB
added 2017/01/07 12:0 a.m.26 views

Update Rollup 6 for System Center 2012 R2 Orchestrator - Service Provider Foundation

Update Rollup 6 for System Center 2012 R2 Orchestrator - Service Provider Foundation Introduction This article describes the issues that are fixed in Update Rollup 6 for Microsoft System Center 2012 R2 Orchestrator - Service Provider Foundation. This article also contains the installation...

7.1AI score
Exploits0
OSV
OSV
added 2016/09/12 1:59 a.m.5 views

CVE-2016-6375

Cisco Wireless LAN Controller WLC devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service device reload by sending crafted Inter-Access Point Protocol IAPP packets and then sending a traffic stream metrics TSM...

5.3CVSS5.8AI score0.00617EPSS
Exploits0References3
CNVD
CNVD
added 2016/09/01 12:0 a.m.17 views

Cisco Wireless LAN Controller TSM SNMP Denial of Service Vulnerability

The Cisco Wireless LAN Controller WLC is responsible for system-wide wireless LAN functions such as security policy, intrusion protection, RF management, quality of service, and mobility. A security vulnerability exists in the Communication Stream Metrics TSM implemented in the Cisco Wireless LAN...

5.7CVSS6.7AI score0.00617EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/08/25 12:0 a.m.45 views

F5 Networks BIG-IP : TMM vulnerability (K19784568)

Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 through 11.5.4, 11.6.0 HF5 through HF7, and 12.0.0, when configured with a TCP profile, allow remote attackers to cause a denial of service Traffic Management Microkernel restart via crafted network...

7.5CVSS7.1AI score0.03046EPSS
Exploits0References2
CNVD
CNVD
added 2016/07/28 12:0 a.m.2 views

catdvi Denial of Service Vulnerability

Catdvi is a program that converts Turks Device Independent DVI files into readable text. Catdvi-0.14 and previous versions failed to handle the global variable tfmtbl correctly, resulting in uninitialized files being used without initialization when reading specially constructed files, causing nu...

6.9AI score
Exploits0
CERT
CERT
added 2016/04/25 12:0 a.m.30 views

Allround Automations PL/SQL Developer v11 performs updates over HTTP

Overview Allround Automations PL/SQL Developer version 11 checks for updates over HTTP and does not verify updates before executing commands, which may allow an attacker to execute arbitrary code. Description CWE-345: Insufficient Verification of Data Authenticity - CVE-2016-2346 According to the...

8.1CVSS8.4AI score0.00944EPSS
Exploits1References1
Veeam
Veeam
added 2016/04/15 12:0 a.m.13 views

Release Notes for Veeam Management Pack 8.0 Update 2

Challenge Release Notes for Veeam Management Pack 8.0 Update 2. Cause Please confirm you are running Veeam Management Pack 8.0 prior to installing this update. You can check this in Operations Manager console under Administration | Management Packs, the build number should be 8.0.0.2218 or later...

6.9AI score
Exploits0
CNVD
CNVD
added 2016/01/15 12:0 a.m.6 views

Denial of Service Vulnerability in Multiple F5 BIG-IP Products

F5 BIG-IP is an equipment product manufactured by F5 Network for application delivery services, mainly used for load balancing, service acceleration optimization and other purposes. A security vulnerability exists in several F5 BIG-IP products, which allows remote attackers to conduct...

4.3CVSS6.9AI score0.01516EPSS
Exploits0References1
Cvelist
Cvelist
added 2016/01/12 8:0 p.m.31 views

CVE-2015-7759

BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 12.0.0 before HF1, when the TCP profile for a virtual server is configured with Congestion Metrics Cache enabled, allow remote attackers to cause a denial of service Traffic Management Microkernel TMM restart via crafted ICMP...

4.2AI score0.01516EPSS
Exploits0References2
CVE
CVE
added 2016/01/12 8:0 p.m.72 views

CVE-2015-7759

CVE-2015-7759 affects BIG-IP 12.0.0 before HF1 across multiple modules (LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, PEM). The root cause is handling of TC P profiles with Congestion Metrics Cache enabled, which allows remote attackers to trigger a TMM restart via crafted ICMP packets rel...

4.3CVSS4.4AI score0.01516EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2016/01/08 12:0 a.m.35 views

F5 BIG-IP - F5 Path MTU Discovery vulnerability CVE-2015-7759

The remote host is missing a security patch. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...

4.3CVSS4.8AI score0.01516EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2016/01/07 12:0 a.m.46 views

SOL22843911 - F5 Path MTU Discovery vulnerability CVE-2015-7759

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

4.3CVSS1.1AI score0.01516EPSS
Exploits0References8
CERT
CERT
added 2015/10/21 12:0 a.m.25 views

HP Photosmart B210 printer SMB server buffer overflow vulnerability

Overview The HP Photosmart B210 printer utilizes an SMB server for managing the print queue. An invalid SMB packet may cause a denial of service condition, requiring the printer to be restarted. Description Fuzzing the first 296 bytes of an SMB packet may in some cases cause a denial of service...

7.7AI score
Exploits0References1
CERT
CERT
added 2015/07/20 12:0 a.m.21 views

N-Able RSMWinService contains hard coded security constants allowing decryption of domain administrator password

Overview SolarWinds N-Able N-Central is an agent-based enterprise support and management solution. N-Able N-Central contains several hard-coded encryption constants in the web interface that allow decryption of the password when combined. Description CWE-547: Use of Hard-coded, Security-relevant...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2015/07/10 1:13 p.m.9 views

Census Project Identifies Open Source Projects at Risk

Heartbleed may have brought on a major case of heartburn last April for system admins worldwide, but a positive offshoot of the biggest of the Internet-wide bugs was that it opened a lot of eyes to the lack of support afforded even ubiquitous open source software projects. Shortly after Heartblee...

7.6AI score
Exploits0References7
0day.today
0day.today
added 2015/06/04 12:0 a.m.64 views

JDownloader 2 Beta Directory Traversal Vulnerability

Exploit for multiple platform in category web applications =begin Exploit Title: JDownloader 2 Beta Directory Traversal Vulnerability Zip Extraction Date: 2015-06-02 Exploit Author: PizzaHatHacker Vendor Homepage: http://jdownloader.org/home/index Software Link:...

7.1AI score
Exploits0
OSV
OSV
added 2015/03/20 2:59 p.m.0 views

DEBIAN-CVE-2015-1804

The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly perform type conversion for metrics values, which allows remote authenticated users to cause a denial of service out-of-bounds memory access and possibly execute arbitrary co...

8.5CVSS9.1AI score0.04923EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2015/03/20 2:0 p.m.30 views

CVE-2015-1804

The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly perform type conversion for metrics values, which allows remote authenticated users to cause a denial of service out-of-bounds memory access and possibly execute arbitrary co...

8.5CVSS6.8AI score0.04923EPSS
Exploits0
myhack58
myhack58
added 2014/12/30 12:0 a.m.28 views

Steal Facebook user information: using Android same origin policy vulnerability a malicious application is found-vulnerability warning-the black bar safety net

A few months ago we studied the Android same origin policy(SOP)of vulnerability, however recently there has been a use of this vulnerability to Facebook user attack a malicious application, which utilizes code based on the disclosed Metasploit test code. myhack58 science: the same-origin policy...

1.5AI score
Exploits0
ThreatPost
ThreatPost
added 2014/12/22 9:25 a.m.10 views

How I Got Here: Andrew Jaquith

Dennis Fisher talks with Andrew Jaquith of SilverSky about his days running networks in the transportation industry, being there at the birth of @stake during his time at Cambridge Technology Partners, helping to kickstart the security metrics movement and what’s next for him. Download:...

3.4AI score
Exploits0References2
Rows per page
Query Builder