Xen: x86 Mismatched Mapcache Metadata (XSA-494)

Some shadow paging errors paths will switch the page-tables without updating the currently running vCPU reference. This causes a mismatch between the loaded page-tables and the mapcache metadata which can lead to corruption of the mapcache. This can result in privilege escalation, Denial of Servi...

Huawei EulerOS: Security Advisory for nss (EulerOS-SA-2025-1962)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-45490)

The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45490 advisory. - An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for...

Johnson Controls Metasys

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Johnson Controls Equipment: Metasys Servers, Engines, and Tools Vulnerability: Improper Privilege Management 2. RISK EVALUATION Successful exploitation of this vulnerability could give an authenticated...

Sydent DoS (via resource exhaustion) due to improper input validation

Impact Missing input validation of some parameters on the endpoints used to confirm third-party identifiers could cause excessive use of disk space and memory leading to resource exhaustion. Patches Fixed by 3175fd3. For more information If you have any questions or comments about this advisory,...

Apache Tomcat Denial Of Service Vulnerability (Jun 2015) - Windows

Apache Tomcat is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat";...

MDVA-2009:094 : dansguardian

There was a bug with the dansguardian build where the path to /var/lib/dansguardian was wrongly set to /var/dansguardian. The libclamav support has been disabled because of too frequent changes in the clamav API, the preferred way to use clamav is to use clamd. This update fixes these problems...

mybb.pl.txt

!/usr/bin/perl -w SQL Injection Exploit for MyBulletinBoard MyBB .?/ && print "+ User ID is: $1\n"; print "- Unable to retrieve User ID\n" if!$1; $page = m/.?/ && print "+ MD5 hash of password is: $1\n"; print "- Unable to retrieve hash of password\n" if!$1;...

Security Update: [CSSA-2001-SCO.38] OpenServer: lpstat buffer overflow

To: [email protected] [email protected] [email protected] Caldera International, Inc. Security Advisory Subject: OpenServer: lpstat buffer overflow Advisory number: CSSA-2001-SCO.38 Issue date: 2001 December 7 Cross reference: sse072 1. Problem Description Even with sse072,...

@stake Advisory: Windows 2000 .ASX Buffer Overrun (A112300-1)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake Inc. www.atstake.com Security Advisory Advisory Name: Windows 2000 .ASX Buffer Overrun Release Date: 11/23/2000 Application: Microsoft Windows Explorer with Microsoft Media Player v6.xx and Microsoft Media Player v7.xx. Platform: Windows 2000 S...

Cisco Catalyst Supervisor Remote Reload DoS

The remote host appears to be a Cisco Catalyst switch. This device runs an undocumented TCP service. Sending a carriage return to this port causes the switch to immediately reset. A remote attacker could repeatedly exploit this to disable the switch. C Tenable Network Security, Inc...