4438 matches found
CVE-2016-5555
Unspecified vulnerability in the OJVM component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality, integrity, and availability via unknown vectors...
CFME: bypass authorization by altering VM ID
It was found that the CloudForms did not properly apply permissions controls to VM IDs passed by users. A remote, authenticated attacker could use this flaw to execute arbitrary VMs on systems managed by CloudForms if they know the ID of the VM...
Unspecified Vulnerability in Oracle Database Server OJVM Component (CNVD-2016-09796)
Oracle Database Server is the United States Oracle Oracle company's set of relational database management system. OJVM Oracle Java Virtual Machine is one of the execution of Java byte code virtual machine components. A local security vulnerability exists in the OJVM component of Oracle Database...
The vulnerability of the Mac OS X operating system, which allows a perpetrator to obtain confidential information
The vulnerability of the mDNSResponder component in the Mac OS X operating system is related to the use of DNS proxies to listen to all interfaces when using VMnet.framework. Exploiting this vulnerability allows a malicious actor to obtain confidential information by sending DNS requests to...
Error: "xenopsd internal error: Unix.Unix_error(Unix.ENODEV, "write", "") importing VM on XenServer
After exporting a VM into an xva format and trying to import the VM, VM import is successful, but when trying to start the VM, it fails with the following error in the /var/log/xensource.log xenopsd internal error: Unix.UnixerrorUnix.ENODEV, "write", ""...
Set the device_id param on virtual machine
How to set the deviceid param on virtual machine...
How to Capture a Network Trace from a XenServer Physical Interface, Virtual Bridge, and VM Virtual Interface
This article describes how to capture a network trace from a XenServer physical interface, Virtual Bridge, and Virtual Machine Virtual Interface...
kvm security update
83-276.0.1.el511 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch 83-275.el511 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359723 - Resolves: bz1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via...
Malware Evades Detection with Novel Technique
Researchers have found a new strain of document-based macro malware that evades discovery by lying dormant when it detects a security researcher’s test environment. The malware, according to researcher Caleb Fenton with security firm SentinelOne, evades detection simply by counting the number of...
Error: "Object with type VM vbd.hdb does not exist in xenopsd" during VM Migration
When trying to migrate virtual machine, it fails with following error Error: "Object with type VM vbd.hdb does not exist in xenopsd"...
Multiple VMware Workstation Product Heap Buffer Overflow Vulnerabilities
VMWare Workstation is a suite of desktop virtual computer software. A heap buffer overflow vulnerability exists in the Windows-based Virtual Machine in VMware Workstation, which can be exploited by an attacker on a Windows platform to crash an application or execute arbitrary code...
VMSA-2016-0014:VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues
VMSA-2016-0014.1 VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2016-0014.1 VMware Security Advisory Severity: Critical VMware Security Advisory Synopsis: VMware ESXi, Workstation, Fusion, an...
UBUNTU-CVE-2016-7156
The pvscsiconvertsglist function in hw/scsi/vmwpvscsi.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash by leveraging an incorrect cast...
Microsoft Azure Cloud Security Auditing: Azurite
Microsoft Azure Cloud Security Auditing Auditing Cloud services has become an essential task and significant effort is required to assess the security of the available resources. Azurite was developed to assist penetration testers and auditors during the enumeration and reconnaissance activities...
Cloud Security Series: 360GearTeam again found QEMU multiple vulnerabilities-vulnerability warning-the black bar safety net
! 2 0 1 6 years and 8 months or so, the odd Tiger 3 6 0 to the QEMU official report a number of QEMU vulnerabilities in. They allow an attacker to attack a virtual machine or the host machine itself, causing a denial of service or arbitrary code execution. 360GearTeamoriginal 3 6 0 cloud security...
Facebook HHVM has multiple vulnerabilities (CNVD-2016-06542)
Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. An integer overflow vulnerability and a denial of service vulnerability exists in Facebook HHVM. An attacker can exploit this vulnerability to...
Facebook HHVM has multiple vulnerabilities
Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. An integer overflow vulnerability and a denial of service vulnerability exist in Facebook HHVM. An attacker could exploit these vulnerabilities ...
Facebook HHVM has multiple vulnerabilities (CNVD-2016-06546)
Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. An integer overflow vulnerability and a denial of service vulnerability exist in Facebook HHVM. An attacker can exploit these vulnerabilities to...
Facebook HHVM has multiple vulnerabilities (CNVD-2016-06544)
Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. An integer overflow vulnerability and a denial of service vulnerability exist in Facebook HHVM. An attacker can exploit these vulnerabilities to...
Facebook HHVM has multiple vulnerabilities (CNVD-2016-06545)
Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. An integer overflow vulnerability and a denial of service vulnerability exist in Facebook HHVM. An attacker could exploit these vulnerabilities ...