2460 matches found
VMSA-2013-0016:VMware ESXi and ESX unauthorized file access through vCenter Server and ESX
VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0016 VMware Security Advisory Synopsis: VMware ESXi and ESX unauthorized file access through vCenter Server and ESX VMware Security...
CVE-2013-4401
The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows attackers to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: some of these details are obtained fr...
XAMPP Local Write Access
Exploit Title: XAMPP All Version Local Write Access Vulnerability + Google Dork 1 : inurl:/xampp/lang.php + Google Dork 2 : inurl:/security/lang.php + Date: 15/10/2013 + Discovered By : Black.Hack3r + Exploit Author: IranianDarkCodersTeam + Vendor Homepage: http://www.apachefriends.org +...
FreeBSD : FreeBSD -- Cross-mount links between nullfs(5) mounts (b72bad1c-20ed-11e3-be06-000c29ee3065)
Problem Description : The nullfs5 implementation of the VOPLINK9 VFS operation does not check whether the source and target of the link are both in the same nullfs instance. It is therefore possible to create a hardlink from a location in one nullfs instance to a file in another, as long as the...
XAMPP 1.8.1 Local Write Access Vulnerability
============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...
XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access
XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access ============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Ba...
XAMPP 1.8.1 - 'lang.php?WriteIntoLocalDisk method' Local Write Access
============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...
XAMPP 1.8.1 Local Write Access Vulnerability
XAMPP version 1.8.1 allows an unprivileged user the ability to write to the local disk. It has been detected than an unprivileged user can write in the local disk and the local file "lang.tmp" can be modified in the remote machine. The injection is done through the page "/xampp/lang.php"...
XAMPP 1.8.1 Local Write Access
============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...
Wiz 5.0.3 User Mode Write Access Violation Vulnerability
Wiz version 5.0.3 suffers from a user mode write access violation vulnerability. Title: User Mode Write Access Violation in Wiz 5.0.3 Severity: Medium History: 16.Apr.2013 Vulnerability reported Authors: Josep Pi Rodriguez, Pedro Guillen Nuñez, Miguel Angel de Castro Simon Organization:...
Design/Logic Flaw
The vmmaplookup function in sys/vm/vmmap.c in the mmap implementation in the kernel in FreeBSD 9.0 through 9.1-RELEASE-p4 does not properly determine whether a task should have write access to a memory location, which allows local users to bypass filesystem write permissions and consequently gain...
Updated xen package fixes security issues
This update fixes the following security issues: XSA-52/CVE-2013-2076: Information leak on XSAVE/XRSTOR capable AMD CPUs XSA-53/CVE-2013-2077: Hypervisor crash due to missing exception recovery on XRSTOR XSA-54/CVE-2013-2078: Hypervisor crash due to missing exception recovery on XSETBV...
CVE-2013-3927
CVE-2013-3927 affects Siemens COMOS: 9.2 versions prior to 9.2.0.6.10 and 10.0 versions prior to 10.0.3.0.4. The vulnerability stems from the client library, where authenticated local users with read access can leverage the library to gain unintended write access to the COMOS database, enabling m...
FreeBSD -- Privilege escalation via mmap
Due to insufficient permission checks in the virtual memory system, a tracing process such as a debugger may be able to modify portions of the traced process's address space to which the traced process itself does not have write access...
Invensys Wonderware HMI Reports XSS and Write Access Violation Vulnerabilities
Overview Independent security researchers Billy Rios and Terry McCorkle have identified cross-site scripting XSS and write access violation vulnerabilities in the Invensys Wonderware HMI reports product. ICS-CERT has coordinated these two vulnerabilities with Invensys, which has produced a new...
Null pointer dereference
The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging the CAPSYSADMIN capability for write access to the 1 setftracepid or 2 setgraphfunction file...
Ubuntu Update for samba USN-1802-1
Check for the Version of samba OpenVAS Vulnerability Test $Id: gbubuntuUSN18021.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for samba USN-1802-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...
Ubuntu 12.04 LTS : samba vulnerability (USN-1802-1)
It was discovered that Samba incorrectly handled CIFS share attributes when SMB2 was used. A remote authenticated user could possibly gain write access to certain shares, bypassing the intended permissions. Note that Tenable Network Security has extracted the preceding description block directly...
CVE-2013-0798 : World read and write access to app_tmp directory on Android
Fourteenforty Research Institute, Inc. Security Advisory World read and write access to apptmp directory on Firefox for Android 2013/04/02 === Summary === World read and write access to apptmp directory on Firefox for Android allows replacing Firefox add-ons. === Severity === Middle === Affected...
CVE-2013-1766
CVE-2013-1766 affects libvirt (libvirtd) prior to version in Debian squeeze; the daemon would change ownership of device files to the kvm group, enabling local users to write to those devices via unspecified vectors. Impact described as local access to files/devices with potential for partial int...