Lucene search
K

125 matches found

Cvelist
Cvelist
added 2017/08/08 9:0 p.m.27 views

CVE-2017-8668

The Volume Manager Extension Driver in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2 allows an attacker to run a specially crafted application and obtain kernel information, aka "Volume Manager Extension Driver Information...

6.2AI score0.02426EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2017/08/08 7:0 a.m.45 views

Security update for the Volume Manager Extension driver information disclosure vulnerability in Windows Server 2012: August 8, 2017

Security update for the Volume Manager Extension driver information disclosure vulnerability in Windows Server 2012: August 8, 2017 Summary An information disclosure vulnerability exists when the Volume Manager Extension Driver component improperly provides kernel information. An attacker who...

5.5CVSS6.3AI score0.02426EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2017/08/08 7:0 a.m.48 views

August 8, 2017—KB4034672 (Security-only update)

August 8, 2017—KB4034672 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where a LUN connection that was received after the buffer allocation...

9.3CVSS7AI score0.55415EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2017/08/08 7:0 a.m.37 views

Volume Manager Extension Driver Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Volume Manager Extension Driver component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an...

5.5CVSS1.6AI score0.02426EPSS
Exploits0
Kaspersky
Kaspersky
added 2017/08/08 12:0 a.m.102 views

KLA11087 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...

9.3CVSS9.4AI score0.55415EPSS
Exploits0References40
Kaspersky
Kaspersky
added 2017/08/08 12:0 a.m.58 views

KLA11846 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of...

9.3CVSS9.6AI score0.72116EPSS
Exploits11References39
Citrix
Citrix
added 2016/10/27 12:0 a.m.6 views

Unable to Delete Differential Disks from LVM and ext3 Storages with Error Displayed on XenCenter

Unable to delete differential disks from Logical Volume Manager LVM or ext3 storages. The error message is displayed on XenCenter as "Vdidelete: EXCEPTION SR.SROSError, Failed to mark VDI hidden opterr=error 22 or attempt to mark VDI as hidden failed."...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/05/31 12:0 a.m.8 views

The vulnerability of the Windows operating system, allowing a hacker to read arbitrary files on the disk

The vulnerability of the Volume Manager Driver in the Windows operating system is related to the lack of user verification when accessing the RemoteFX RDP USB function. Exploiting this vulnerability allows a malicious actor to read arbitrary files from the disk by making requests to RemoteFX...

2.1CVSS6.4AI score0.02342EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/05/31 12:0 a.m.8 views

The vulnerability of the Windows operating system, which allows a hacker to read arbitrary files from the disk

The vulnerability of the Volume Manager Driver in the Windows operating system is related to the lack of user verification when accessing the RemoteFX RDP USB function. Exploiting this vulnerability allows an attacker, acting locally, to read arbitrary files from the disk by making requests to...

9.3CVSS7.7AI score0.18331EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2016/05/12 12:0 a.m.4 views

Microsoft Windows RDP Driver Information Leakage Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information leakage vulnerability exists in the Volume Manager Driver for Microsoft Windows, which originates when a USB disk mounted by the program using the Remote Desktop Protocol RDP is not...

5.5CVSS6.5AI score0.02342EPSS
Exploits0References1
OSV
OSV
added 2016/05/11 1:59 a.m.4 views

CVE-2016-0190

Volume Manager Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT 8.1 does not properly check whether RemoteFX RDP USB disk accesses originate from the user who mounted a disk, which allows local users to read arbitrary files on these disks via RemoteFX requests, aka...

5.5CVSS5.9AI score0.02342EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/05/11 1:0 a.m.29 views

CVE-2016-0190

Volume Manager Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT 8.1 does not properly check whether RemoteFX RDP USB disk accesses originate from the user who mounted a disk, which allows local users to read arbitrary files on these disks via RemoteFX requests, aka...

5.5AI score0.02342EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/05/10 12:0 a.m.51 views

MS16-067: Security Update for Volume Manager Driver (3155784)

The remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability due to a failure to correctly tie the session of the mounting user to the USB disk being mounted. This issue occurs when the USB disk is mounted over the Remote Desktop...

5.5CVSS6.3AI score0.02342EPSS
Exploits0References2
myhack58
myhack58
added 2015/11/28 12:0 a.m.16 views

EMC Isilon OneFS privilege elevation Vulnerability(CVE-2 0 1 5-6 8 4 8)-vulnerability warning-the black bar safety net

CVECAN ID: CVE-2 0 1 5-6 8 4 8 EMC Isilon OneFS Operating System is a collection of File System, Volume Manager and data protection in one smart file system. EMC Isilon OneFS in the realization on the presence of Privilege escalation vulnerabilities, if the RFC 2 3 0 7 on the cluster is enabled a...

1.6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.42 views

Veritas Software Volume Manager 3.0.2/3.0.3/3.0.4 File Permission Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1356/info A vulnerability exists in the Volume Manager product, versions 3.0.x, from Veritas Software. Volume Manager is a popular disk management package. Volume Manager running on Solaris platforms prior to Solaris 8 ar...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/04/16 12:0 a.m.26 views

Google Android Vold Volume Manager Integer Wrap Root Exploit Privilege Escalation - Ver2 (CVE-2011-1823)

A privilege escalation vulnerability has been reported in Google Android Operating System. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

7.2CVSS6.7AI score0.41634EPSS
Exploits1
PyPA
PyPA
added 2012/12/26 10:55 p.m.7 views

PYSEC-2012-41

OpenStack Compute Nova Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume PV content when reallocating for instances, which allows attackers to obtain sensitive information by reading the memory of the previous logical volume L...

4.3CVSS6.3AI score0.01994EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.18 views

Scientific Linux Security Update : lvm2-cluster,lvm2 for SL5

It was discovered that the cluster logical volume manager daemon clvmd did not verify the credentials of clients connecting to its control UNIX abstract socket, allowing local, unprivileged users to send control commands that were intended to only be available to the privileged root user. This...

4.6CVSS5.4AI score0.00495EPSS
Exploits1References2
OSV
OSV
added 2012/07/03 4:40 p.m.4 views

DEBIAN-CVE-2011-4127

The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...

4.6CVSS6.7AI score0.00566EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2012/03/06 5:37 p.m.7 views

kernel: possible privilege escalation via SG_IO ioctl

The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...

4.6CVSS6.2AI score0.00566EPSS
Exploits2References4
Rows per page
Query Builder