CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

Fedora 38 : xen (2023-d28433ead1)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-d28433ead1 advisory. x86 shadow paging arbitrary pointer dereference XSA-430, CVE-2022-42335 Tenable has extracted the preceding description block directly from the Fedora securi...

CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

DEBIAN-CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

CVE-2022-42335

CVE-2022-42335 is a Xen hypervisor vulnerability in shadow paging where a lax check in shadow page handling could allow a guest with a PCI device passed through to cause the hypervisor to dereference an arbitrary pointer partially under guest control when HAP is unavailable. This could lead to a ...

CVE-2020-10292

Visual Components owned by KUKA is a robotic simulator that allows simulating factories and robots in order toimprove planning and decision-making processes. Visual Components software requires a special license which can beobtained from a network license server. The network license server binds ...

Microsoft Windows Uninitialized Variable Local Privilege Elevation

This module exploits CVE-2019-1458, an arbitrary pointer dereference vulnerability within win32k which occurs due to an uninitalized variable, which allows user mode attackers to write a limited amount of controlled data to an attacker controlled address in kernel memory. By utilizing this...

Operation PowerFall: CVE-2020-0986 and variants

In August 2020, we published a blog post about Operation PowerFall. This targeted attack consisted of two zero-day exploits: a remote code execution exploit for Internet Explorer 11 and an elevation of privilege exploit targeting the latest builds of Windows 10. While we already described the...

FreeBSD : vlc -- arbitrary pointer dereference vulnerability (a0a4e24c-4760-11e5-9391-3c970e169bc2)

oCERT reports : The stable VLC version suffers from an arbitrary pointer dereference vulnerability. The vulnerability affects the 3GP file format parser, insufficient restrictions on a writable buffer can be exploited to execute arbitrary code via the heap memory. A specific 3GP file can be craft...

vlc -- arbitrary pointer dereference vulnerability

oCERT reports: The stable VLC version suffers from an arbitrary pointer dereference vulnerability. The vulnerability affects the 3GP file format parser, insufficient restrictions on a writable buffer can be exploited to execute arbitrary code via the heap memory. A specific 3GP file can be crafte...

SIEMENS Sipass Integrated 2.6 Ethernet Bus Arbitrary Pointer Dereference

No description provided by source...

CVE-2014-1759

CVE-2014-1759 affects Microsoft Publisher 2003 SP3 and Publisher 2007 SP3 via the pubconv.dll component. The root cause is an (uninitialized/incorrect) pointer dereference when parsing crafted .pub files, enabling remote code execution or causing application crash (DoS). The vulnerability is trac...

MS14-020: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (2950145)

The Publisher component of Microsoft Office installed on the remote host is affected by an arbitrary pointer dereference vulnerability. A remote attacker could exploit this issue by tricking a user into opening a specially crafted Publisher file. The attacker could then potentially run arbitrary...

SIEMENS Sipass Integrated 2.6 Ethernet Bus - Arbitrary Pointer Dereference

IOActive Security Advisory Title: SIEMENS Sipass Integrated 2.6 Ethernet Bus Arbitrary Pointer Dereference Severity: Critical Discovered by: Lucas Apa Date Reported: 09/11/12 CVE: TBD Siemens Advisory: SSA-938777 Introduction SIEMENS SiPass® Integrated is an extremely powerful and flexible access...

Novell Client/NetIdentity Agent Remote Arbitrary Pointer Dereference Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Netware. A valid IPC$ connection must be established in order to exploit this vulnerability. The specific flaw exists within xtagent.exe during the handling of RPC messages over the...

CORE-2008-0122: MPlayer arbitrary pointer dereference

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs MPlayer arbitrary pointer dereference Advisory Information Title: MPlayer arbitrary pointer dereference Advisory ID: CORE-2008-0122 Advisory URL:...

MPlayer arbitrary pointer dereference

Advisory ID Internal CORE-2008-0122 Advisory Information Title: MPlayer arbitrary pointer dereference Advisory ID: CORE-2008-0122 Advisory URL:https://www.coresecurity.com/core-labs/advisories/mplayer-advisorie Date published: 2008-02-04 Date of last update: 2008-01-30 Vendors contacted: MPlayer...

EEYE: CA BrightStor ArcServe Backup Server Arbitrary Pointer Dereference

CA BrightStor ARCserve Backup Server Arbitrary Pointer Dereference Release Date: October 11, 2007 Date Reported: June 18, 2007 Severity: High Remote Code Execution Vendor: Computer Associates CA Systems Affected: BrightStor ARCserve Backup 11.5 BrightStor ARCserve Backup 11.1 BrightStor ARCserve...