Oracle Java Runtime NTLM Authentication Information Leakage Vulnerability

This vulnerability allows remote attackers to leak authentication details on vulnerable installations of the Oracle Java Runtime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of NTLM...

FreeBSD Local Denial Of Service

Exploit Title: FreeBSD local denial of service - forced reboot Date: 28. January 2011 Author: Kingcope Software Link: http://www.freebsd.org Operating System: FreeBSD Tested on: 8.0-RELEASE This source code when compiled and executed will reboot at least FreeBSD 8.0-RELEASE because of a null...

FreeBSD 8.0 - Local Forced Reboot (Denial of Service)

FreeBSD 8.0 - Local Forced Reboot Denial of Service / Exploit Title: FreeBSD local denial of service - forced reboot Date: 28. January 2011 Author: Kingcope Software Link: http://www.freebsd.org Operating System: FreeBSD Tested on: 8.0-RELEASE This source code when compiled and executed will rebo...

Star outside the virtual machine system(stars outside the virtual machine provided the right to"0day")-vulnerability warning-the black bar safety net

Star outside the virtual machine has been considered to be BT, in fact I feel is still very good, at least he supported the aspx. Find the existing implementation of Directory General 9 9% can spike him, win Server Permissions. The star outside the executable directory to the latest version:...

VMware Tools update OS Command Injection

Exploit for multiple platform in category remote exploits ======================================== VMware Tools update OS Command Injection ======================================== 1. Advisory Information Advisory ID: BONSAI-2010-0110 Date published: Thu Dec 9, 2010 Vendors contacted: VMware...

VMware Tools Update OS Command Injection

VMware Tools update OS Command Injection ======================================== 1. Advisory Information Advisory ID: BONSAI-2010-0110 Date published: Thu Dec 9, 2010 Vendors contacted: VMware Release mode: Coordinated release 2. Vulnerability Information Class: Injection Remotely Exploitable: Y...

VMware Tools - Update OS Command Injection

VMware Tools update OS Command Injection ======================================== 1. Advisory Information Advisory ID: BONSAI-2010-0110 Date published: Thu Dec 9, 2010 Vendors contacted: VMware Release mode: Coordinated release 2. Vulnerability Information Class: Injection Remotely Exploitable: Y...

kvm: invalid selector in fs/gs causes kernel panic

The KVM implementation in the Linux kernel before 2.6.36 does not properly reload the FS and GS segment registers, which allows host OS users to cause a denial of service host OS crash via a KVMRUN ioctl call in conjunction with a modified Local Descriptor Table LDT...

SuSE 11 Security Update : Xen (SAT Patch Number 2230)

Collective Xen/201004 Update, containing fixes for the following issues : - pygrub, reiserfs: Fix on-disk structure definition bnc537370 - Xen on SLES 11 does not boot - endless loop in ATA detection bnc561912 - xend leaks memory bnc564750 - Keyboard Caps Lock key works abnormal under SLES11 xen...

Oracle Database Multiple Vulnerabilities (October 2010 CPU)

The remote Oracle database server is missing the October 2010 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Enterprise Manager Console - Java Virtual Machine - Change Data Capture - OLAP - Job Queue - XDK - Core RDBMS - Perl...

OpenJDK kerberos vulnerability (6958060)

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

[security bulletin] HPSBMA02598 SSRT100314 rev.2 - HP Insight Control Virtual Machine Management for Windows, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Cross Site Request Forgery (CSRF)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02560655 Version: 2 HPSBMA02598 SSRT100314 rev.2 - HP Insight Control Virtual Machine Management for Windows, Remote Cross Site Scripting XSS, Denial of Service DoS, Cross Site Request Forgery CS...

CVE-2010-3988

Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass intended access restrictions and cause a denial of service via unknown vectors...

CVE-2010-3989

Cross-site request forgery CSRF vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass intended access restrictions and cause a denial of service via unknown vectors...

CVE-2010-3988

HP Insight Control Virtual Machine Management for Windows prior to v6.2 contains a Denial of Service vulnerability (CVE-2010-3988) that can be triggered remotely, as noted in HP security bulletin and CVE records. The vulnerability affects HP Insight Control VM Management before 6.2 and was addres...

CVE-2010-3989

HP Insight Control Virtual Machine Management for Windows is affected by CVE-2010-3989: a CSRF vulnerability allows remote attackers to hijack user sessions in installations prior to version 6.2. The issue affects HP Insight Control VM management before 6.2, with the payload described in HP secur...

CVE-2010-2419

Unspecified vulnerability in the Java Virtual Machine component in Oracle Database Server 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in the Java Virtual Machine component in Oracle Database Server 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...