Lucene search
K

143 matches found

0day.today
0day.today
added 2017/10/25 12:0 a.m.34 views

Windows NTLM Auth Hash Disclosure / Denial Of Service Vulnerabilities

Under certain circumstances a shared folder on Windows can be abused remotely to obtain the user credentials and to freeze the machine. Hello, I want to share some information with the people on the list. On May 24, I found a problem with NTLM auth on Windows. Under certain circumstances a shared...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2017/10/25 12:0 a.m.30 views

Windows NTLM Auth Hash Disclosure / Denial Of Service

Hello, I want to share some information with the people on the list. On May 24, I found a problem with NTLM auth on Windows. Under certain circumstances a shared folder on Windows can be abused remotely to obtain the user credentials and to freeze the machine. This was already reported to MSRC on...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2017/07/17 12:0 a.m.4 views

PT-2017-18855 · Owncloud · Owncloud Server

Name of the Vulnerable Software and Affected Versions: ownCloud Server versions prior to 10.0.2 Description: An attacker with normal user privileges can potentially delete shared folders in ownCloud Server. Recommendations: For versions prior to 10.0.2, update to version 10.0.2 or later to resolv...

6.5CVSS6.3AI score0.00998EPSS
Exploits1References5
CNVD
CNVD
added 2017/07/06 12:0 a.m.4 views

ownCloud Remote Elevation of Privilege Vulnerability

ownCloud is a free and open source personal cloud storage solution from the German company ownCloud, which provides file management, music storage, calendaring and other features. ownCloud server is a server version. There is a security vulnerability in ownCloud Server. An attacker can utilize th...

6.5CVSS6.8AI score0.00998EPSS
Exploits1References1
0day.today
0day.today
added 2017/06/05 12:0 a.m.23 views

Parallels Desktop - Virtual Machine Escape Vulnerability

Exploit for windows platform in category local exploits + Title: Parallels Desktop - Virtual Machine Escape + Product: Parallels + Vendor: http://www.parallels.com/products/desktop/ + Affected Versions: All Version Author : Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Ma...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2017/06/05 12:0 a.m.15 views

Parallels Desktop - Virtual Machine Escape

Parallels Desktop - Virtual Machine Escape + Title: Parallels Desktop - Virtual Machine Escape + Product: Parallels + Vendor: http://www.parallels.com/products/desktop/ + Affected Versions: All Version Author : Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/06/05 12:0 a.m.51 views

Parallels Desktop - Virtual Machine Escape

Title: Parallels Desktop - Virtual Machine Escape + Product: Parallels + Vendor: http://www.parallels.com/products/desktop/ + Affected Versions: All Version Author : Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail : meatrezadotes , reza.esparghamatgmaildotcom Website :...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2017/06/03 12:0 a.m.22 views

Parallels Desktop 12.2.0 Virtual Machine Escape

Title:A Parallels Desktop - Virtual Machine Escape + Product: Parallels + Vendor: http://www.parallels.com/products/desktop/ + Affected Versions: All Version Author : Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail : meatrezadotes , reza.esparghamatgmaildotcom Website...

0.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2017/05/15 12:0 a.m.11 views

The vulnerability of the Oracle VM VirtualBox virtual machine, which allows a hacker to trigger a service failure

The vulnerability of the Oracle VM VirtualBox virtual machine’s Shared Folder sub-component is related to access control deficiencies. Exploiting this vulnerability can allow an attacker, operating locally, to cause the system to freeze or crash by accessing infrastructure resources...

3.6CVSS7.6AI score0.01459EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/05/09 6:35 a.m.8 views

MGASA-2017-0135 Updated virtualbox packages fixes security vulnerabilities

This update provides virtualbox 5.1.22 maintenance release and resolves at least the following security issues: A vulnerability in the core subcomponent of virtualbox allows high privilegied attacker unauthorized read access to a subset of VirtualBox accessible data CVE-2017-3513. A vulnerability...

8.8CVSS7.9AI score0.02912EPSS
Exploits10References3
CNVD
CNVD
added 2017/04/28 12:0 a.m.2 views

Oracle VM VirtualBox Remote Vulnerability (CNVD-2017-06471)

Oracle Virtualization is a set of virtualization solutions from Oracle Corporation, of which Oracle VM VirtualBox is a virtual machine component. A security vulnerability exists in the Shared Folder subcomponent of the Oracle VM VirtualBox component of Oracle Virtualization. An attacker could...

8.4CVSS6.6AI score0.01459EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2017/04/25 12:0 a.m.66 views

Oracle VirtualBox Guest Additions 5.1.18 - Unprivileged Windows User-Mode Guest Code Double-Free

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1227 We have discovered a heap double-free vulnerability in the latest version of VirtualBox 5.1.18, with Guest Additions and more specifically shared folders enabled in the guest operating system. The heap memory corruption take...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2017/04/25 12:0 a.m.30 views

Oracle VirtualBox Security Bypass Vulnerability - 01 (Apr 2017) - Mac OS X

Oracle VirtualBox is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.7AI score0.00353EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2017/04/25 12:0 a.m.33 views

Oracle VirtualBox Security Bypass Vulnerability - 01 (Apr 2017) - Windows

Oracle VirtualBox is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.7AI score0.00353EPSS
Exploits1References2
OSV
OSV
added 2017/04/24 7:59 p.m.1 views

CVE-2017-3587

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Shared Folder. Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

8.4CVSS5.8AI score0.01459EPSS
Exploits0References4
OSV
OSV
added 2017/04/24 7:59 p.m.2 views

CVE-2017-3538

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Shared Folder. Supported versions that are affected are Prior to 5.0.34 and Prior to 5.1.16. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

7.5CVSS5.8AI score0.00353EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2017/04/24 7:59 p.m.33 views

CVE-2017-3538

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Shared Folder. Supported versions that are affected are Prior to 5.0.34 and Prior to 5.1.16. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

7.5CVSS7.1AI score0.00353EPSS
Exploits1References1
OSV
OSV
added 2017/04/24 7:59 p.m.3 views

UBUNTU-CVE-2017-3587

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Shared Folder. Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

8.4CVSS7.2AI score0.01459EPSS
Exploits0References3
OSV
OSV
added 2017/04/24 7:59 p.m.3 views

UBUNTU-CVE-2017-3538

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Shared Folder. Supported versions that are affected are Prior to 5.0.34 and Prior to 5.1.16. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

7.5CVSS7.1AI score0.00353EPSS
Exploits1References2
Prion
Prion
added 2017/04/24 7:59 p.m.22 views

Design/Logic Flaw

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Shared Folder. Supported versions that are affected are Prior to 5.0.34 and Prior to 5.1.16. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

6.3CVSS7.3AI score0.00353EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder