125 matches found
CVE-2017-8668
The Volume Manager Extension Driver in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2 allows an attacker to run a specially crafted application and obtain kernel information, aka "Volume Manager Extension Driver Information...
Security update for the Volume Manager Extension driver information disclosure vulnerability in Windows Server 2012: August 8, 2017
Security update for the Volume Manager Extension driver information disclosure vulnerability in Windows Server 2012: August 8, 2017 Summary An information disclosure vulnerability exists when the Volume Manager Extension Driver component improperly provides kernel information. An attacker who...
August 8, 2017—KB4034672 (Security-only update)
August 8, 2017—KB4034672 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where a LUN connection that was received after the buffer allocation...
Volume Manager Extension Driver Information Disclosure Vulnerability
An information disclosure vulnerability exists when the Volume Manager Extension Driver component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an...
KLA11087 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...
KLA11846 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of...
Unable to Delete Differential Disks from LVM and ext3 Storages with Error Displayed on XenCenter
Unable to delete differential disks from Logical Volume Manager LVM or ext3 storages. The error message is displayed on XenCenter as "Vdidelete: EXCEPTION SR.SROSError, Failed to mark VDI hidden opterr=error 22 or attempt to mark VDI as hidden failed."...
The vulnerability of the Windows operating system, allowing a hacker to read arbitrary files on the disk
The vulnerability of the Volume Manager Driver in the Windows operating system is related to the lack of user verification when accessing the RemoteFX RDP USB function. Exploiting this vulnerability allows a malicious actor to read arbitrary files from the disk by making requests to RemoteFX...
The vulnerability of the Windows operating system, which allows a hacker to read arbitrary files from the disk
The vulnerability of the Volume Manager Driver in the Windows operating system is related to the lack of user verification when accessing the RemoteFX RDP USB function. Exploiting this vulnerability allows an attacker, acting locally, to read arbitrary files from the disk by making requests to...
Microsoft Windows RDP Driver Information Leakage Vulnerability
Microsoft Windows is a series of operating systems released by the American company Microsoft. An information leakage vulnerability exists in the Volume Manager Driver for Microsoft Windows, which originates when a USB disk mounted by the program using the Remote Desktop Protocol RDP is not...
CVE-2016-0190
Volume Manager Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT 8.1 does not properly check whether RemoteFX RDP USB disk accesses originate from the user who mounted a disk, which allows local users to read arbitrary files on these disks via RemoteFX requests, aka...
CVE-2016-0190
Volume Manager Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT 8.1 does not properly check whether RemoteFX RDP USB disk accesses originate from the user who mounted a disk, which allows local users to read arbitrary files on these disks via RemoteFX requests, aka...
MS16-067: Security Update for Volume Manager Driver (3155784)
The remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability due to a failure to correctly tie the session of the mounting user to the USB disk being mounted. This issue occurs when the USB disk is mounted over the Remote Desktop...
EMC Isilon OneFS privilege elevation Vulnerability(CVE-2 0 1 5-6 8 4 8)-vulnerability warning-the black bar safety net
CVECAN ID: CVE-2 0 1 5-6 8 4 8 EMC Isilon OneFS Operating System is a collection of File System, Volume Manager and data protection in one smart file system. EMC Isilon OneFS in the realization on the presence of Privilege escalation vulnerabilities, if the RFC 2 3 0 7 on the cluster is enabled a...
Veritas Software Volume Manager 3.0.2/3.0.3/3.0.4 File Permission Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1356/info A vulnerability exists in the Volume Manager product, versions 3.0.x, from Veritas Software. Volume Manager is a popular disk management package. Volume Manager running on Solaris platforms prior to Solaris 8 ar...
Google Android Vold Volume Manager Integer Wrap Root Exploit Privilege Escalation - Ver2 (CVE-2011-1823)
A privilege escalation vulnerability has been reported in Google Android Operating System. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
PYSEC-2012-41
OpenStack Compute Nova Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume PV content when reallocating for instances, which allows attackers to obtain sensitive information by reading the memory of the previous logical volume L...
Scientific Linux Security Update : lvm2-cluster,lvm2 for SL5
It was discovered that the cluster logical volume manager daemon clvmd did not verify the credentials of clients connecting to its control UNIX abstract socket, allowing local, unprivileged users to send control commands that were intended to only be available to the privileged root user. This...
DEBIAN-CVE-2011-4127
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
kernel: possible privilege escalation via SG_IO ioctl
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...