CVE-2010-1035

Multiple unspecified vulnerabilities in HP Virtual Machine Manager VMM before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors...

CVE-2010-1035

Affected product : HP Virtual Machine Manager (VMM) for Windows prior to 6.0. Vulnerability summary : Multiple unspecified vulnerabilities could allow a remote authenticated user to execute arbitrary code. The HP/SEC bulletin confirms remote access and privilege escalation implications, with a ba...

VMware WebAccess Cross Site Scripting vulnerability (Windows)

This host is installed with VMWare Server and is prone to Cross site scripting Vulnerability. OpenVAS Vulnerability Test $Id: gbvmwareserverwebaccessxssvulnwin.nasl 6518 2017-07-04 13:49:06Z cfischer $ VMware WebAccess Cross Site Scripting Vulnerability Windows Authors: Antu Sanadi Copyright:...

VMware WebAccess 1.0 XSS Vulnerability - Linux

VMWare Server is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

VMSA-2010-0007:VMware hosted products, vCenter Server and ESX patches resolve multiple security issues

VMSA-2010-0007.1 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0007.1 VMware Security Advisory Synopsis: VMware hosted products, vCenter Server and ESX patches resolve multiple...

Privilege escalation

The memory-management implementation in the Virtual Machine Monitor aka VMM or hypervisor in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allo...

CVE-2010-1225

The memory-management implementation in the Virtual Machine Monitor aka VMM or hypervisor in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allo...

CVE-2010-1225

The memory-management implementation in the Virtual Machine Monitor aka VMM or hypervisor in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allo...

Cross site scripting

Cross-site scripting XSS vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5, and the Server Console in VMware Server 1.0, allows remote attackers to inject arbitrary web script or HTML via the name of a virtual machine...

kvm: emulator privilege escalation segment selector check

The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not properly restrict writing of segment selectors to segment registers, which might allow guest OS users to cause a denial of service guest OS crash or gain privileges on the guest OS by leveraging...

Microsoft Virtual PC Hypervisor Virtual Machine Bypass Vulnerability

Exploit for windows platform in category local exploits ===================================================================================== Microsoft Virtual PC Hypervisor Virtual Machine Monitor Security Bypass Vulnerability...

Microsoft Hyper-V DoS

Insufficient instruction set validation in virtual machine...

kvm: emulator privilege escalation IOPL/CPL level check

The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not use the Current Privilege Level CPL and I/O Privilege Level IOPL to restrict instruction execution, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the...

kvm: cat /dev/port in guest cause the host hang

The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not properly use the pitstate data structure, which allows guest OS users to cause a denial of service host OS crash or hang by attempting to read the /dev/port file...

kvm: emulator privilege escalation

The x86 emulator in KVM 83 does not use the Current Privilege Level CPL and I/O Privilege Level IOPL in determining the memory access available to CPL3 code, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the guest OS by leveraging access to a 1 IO...

Linux Kernel 2.6.x - KVM pit_ioport_read() Local Denial of Service

Linux Kernel 2.6.x - KVM pitioportread Local Denial of Service source: https://www.securityfocus.com/bid/38038/info The Linux kernel is prone to a local denial-of-service vulnerability that affects the Kernel-based Virtual Machine KVM. Attackers with local access to a guest operating system can...

CentOS 5 : kernel (CESA-2007:0347)

Updated kernel packages that fix security issues and bugs in the Red Hat Enterprise Linux 5 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating system. These n...

NetBIOS Information Discovery

Discover host information through NetBIOS This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetBIOS Information Discovery', 'Description' = 'Discover host information through NetBIOS', 'Author' =...

Important: Red Hat Security Advisory: rhev-hypervisor security and bug fix update

An updated rhev-hypervisor package that fixes security issues and several bugs is now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The rhev-hypervisor package provides a Red Hat Enterprise Virtualization RHEV Hypervisor ISO disk...

PT-2009-6214 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.32-rc8-next-20091125 Description: The issue is related to the x86 emulator in the KVM subsystem of the Linux kernel. It allows guest OS users to cause a denial of service, specifically increased scheduling...