Fast Breakfast App Upgrade Checked for Design Logic Flaws

Fast Breakfast App is a mobile service that can help you buy breakfast. A design logic vulnerability exists in the upgrade check of Fast Breakfast APP. Due to lax upgrade request checking in Fast Breakfast APP, attackers are allowed to exploit the vulnerability to install malicious programs...

Microsoft Edge Scripting Engine Information Disclosure Vulnerability

Microsoft Edge is the web browser built into the Windows 10 version. An information leakage vulnerability exists when Microsoft Edge fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise a user's system...

QEMU 'Transmit(tx) Queue' Handling Information Disclosure Vulnerability

QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. An information disclosure vulnerability exists in the QEMU 'Transmittx Queue' processing, which allows attackers to exploit the vulnerability to obtain sensitive...

Google Android Elevation of Privilege Vulnerability

Google Android is a mobile operating system based on the Linux open kernel led and developed by Google and the Open Handset Alliance. Google Android is vulnerable to an elevation of privilege vulnerability, which can be exploited by attackers to elevate privileges within the scope of using the...

libarchive TAR Parser Memory Disclosure Vulnerability

libarchive is a multi-format archive and compression library. A security vulnerability exists in libarchive's TAR parser that can be exploited by attackers to cause a memory leak...

Juniper Junos OS Denial of Service Vulnerability (CNVD-2016-00388)

Juniper Networks is a network communications equipment company that supplies IP networking and information security solutions. A denial of service vulnerability exists in Juniper Junos OS, which can be exploited by attackers to cause a denial of service...

Linux kernel denial of service vulnerability (CNVD-2015-07909)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the Linux kernel, which allows attackers to exploit this vulnerability to deny service to legitimate users...

Untangle NGFW Information Disclosure Vulnerability

Untangle NGFW is a set of firewall platforms from the US company Untangle. The platform supports web filtering, virus blocking and spam blocking. An information disclosure vulnerability exists in Untangle NGFW, which allows attackers to exploit the vulnerability to gain access to sensitive...

Red Hat PolicyKit Denial of Service Vulnerability

Red Hat PolicyKit a.k.a. Polkit is a tool from Red Hat, Inc. for privilege control of applications on Unix-compatible systems. The tool provides a central framework for authorizing general applications to do privileged work on modern desktops. A denial of service vulnerability exists in Red Hat...

SAP Sybase Adaptive Server Enterprise SQL Injection Vulnerability

SAP Sybase Adaptive Server Enterprise is a relational database management system. A SQL injection vulnerability in SAP Sybase Adaptive Server Enterprise allows remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to manipulate or obtain database data...

The vulnerability of the CentOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the samba-dc-4.1.1 package for the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited...

Wesnoth File Information Disclosure Vulnerability

The Battle For Wesnoth is an open source, cross-platform, free-to-play turn-based strategy game. A file information disclosure vulnerability exists in Wesnoth. This vulnerability can be exploited by attackers to obtain sensitive information...

phpMyAdmin Information Disclosure Vulnerability

phpmyadmin is an online management tool for MySQL databases. Its main functions include creating data tables online, running SQL statements, searching and querying data, and importing and exporting data. An information disclosure vulnerability exists in phpMyAdmin, which allows attackers to explo...

PostgreSQL 'constraint-violation' information disclosure vulnerability

PostgreSQL is an object-relational database management system that supports an extended subset of SQL standards. The PostgreSQL constraint-violation error message discloses sensitive information and allows attackers to exploit the vulnerability to obtain sensitive information...

CA Total Defense Suite UnassignAdminRoles Stored Procedure SQL Injection Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of CA Total Defense Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UnassignAdminRoles stored procedure, accessed via the management.asmx...

openSUSE Security Update : ipsec-tools (ipsec-tools-223)

Remote attackers could exploit memory leaks in the 'racoon' daemon to crash it CVE-2008-3651, CVE-2008-3652 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ipsec-tools-223. The text descriptio...

Microsoft DirectShow Remote Code Execution Vulnerability (961373)

This host is missing a critical security update according to Microsoft Bulletin MS09-028. OpenVAS Vulnerability Test $Id: secpodms09-028.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft DirectShow Remote Code Execution Vulnerability 971633 Authors: Nikita MR Copyright c 2009 SecPod,...

ClamAV Multiple Vulnerabilities (Linux)

This host has ClamAV installed and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbclamavmultvulnapr09lin.nasl 4865 2016-12-28 16:16:43Z teissa $ ClamAV Multiple Vulnerabilities Linux Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH,...