712 matches found
The vulnerability of the software interface of the TimeZone component in the Android operating system allows a hacker to modify general resources.
The vulnerability of the TimeZone component’s software interface in the Android operating system arises from synchronization errors when using a common resource. Exploiting this vulnerability allows a remote attacker to modify the common resource...
The vulnerability of the DiskArbitration component in the Mac OS X operating system allows a hacker to execute arbitrary code in a privileged context.
The vulnerability of the DiskArbitration component in the Mac OS X operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code in privileged context racing condition through a...
The vulnerability of the embedded file system (EFS) of the Android operating system allows a hacker to simplify the process of decoding messages.
The vulnerability of the embedded file system EFS of the Android operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can enable a malicious actor to simplify the process of decoding messages remotely...
The vulnerability of the CAF repository in the Android operating system allows a hacker to cause the device to freeze.
The vulnerability of the CAF repository in the Android operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause the device to become unresponsive in a “hang” state by utilizing the...
Vulnerabilities of iOS and Mac OS X operating systems, allowing attackers to execute arbitrary code in a privileged context
The vulnerability of the Kernel component in iOS and Mac OS X operating systems arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code in a privileged context racing environment through a specially created...
The vulnerability of the X Window System graphical server allows a perpetrator to alter file access rights or cause a service failure.
The vulnerability of the LockServer function os/utils.c in the X Window System graphical server arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker acting locally to change file access rights to “444” or to cause a service failure by...
The vulnerability of the VFR function in the Cisco IOS operating system, caused by synchronization errors when using a shared resource, allows a violator to trigger a service failure.
The vulnerability of the VFR function in the Cisco IOS operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
The vulnerability of the OpenSSL library, which allows a hacker to trigger a service failure
The vulnerability of the ssl3getnewsessionticket function in the OpenSSL library is related to errors in shared access to a common resource. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures by manipulating the SessionTicket object...
The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure
The vulnerability of the PRE module in the Cisco IOS operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows a malicious actor to cause service failure by initiating frequent connections to devices via the IPv6 protocol...
Group Policy Script Execution From Shared Resource
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Group Policy Script Execution From Shared Resource', 'Description' = %q This is a general-purpose module for exploiting systems with...
Citrix Access Gateway LDAP authentication bypass
Overview An error with LDAP authentication in Citrix Access Gateway appliances may allow an attacker to successfully authenticate without providing correct login credentials. Description Citrix Access Gateway appliances use SSL VPN technology to give remote users secure access shared resources...
Re[2]: EXPLOIT: Buffer overflow in Explorer.exe on Windows XP SP1
hello bugtraq, From MSDN: ---cut--- DWORD GetPrivateProfileSection LPCTSTR lpAppName, LPTSTR lpReturnedString, DWORD nSize, LPCTSTR lpFileName ; skip nSize in Size of the buffer pointed to by the lpReturnedString parameter, in TCHARs. Windows 95/98/Me: The maximum buffer size is 32,767 characters...