Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel, which stems from the fact that a cache created using an object size of less than 24 can cause the freelist pointer to write beyond s-objectsize,...

UBUNTU-CVE-2021-23518

The package cached-path-relative before 1.1.0 are vulnerable to Prototype Pollution via the cache variable that is set as instead of Object.createnull in the cachedPathRelative function, which allows access to the parent prototype properties when the object is used to create the cached relative...

CVE-2018-8005

When there are multiple ranges in a range request, Apache Traffic Server ATS will read the entire object from cache. This can cause performance problems with large objects in cache. This affects versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x users should upgra...

Intersystems Cache Remote Code Execution (via Default 'Minimal Security' Install)

------------------- 1 Overview Title: Intersystems Cache Remote Code Execution via Default 'Minimal Security' Install Product: Intersystems Cache Product URL: http://www.intersystems.com/cache/index.html Vendor: Intersystems Affected Versions: Tested on Cache for Windows x86-64 & i386 2009. thru...

Mozilla Firefox缓存对象历史枚举漏洞

Firefox是一款非常流行的开源WEB浏览器。 Firefox处理缓存对象时在实现上存在安全漏洞，远程攻击者可利用此漏洞枚举已浏览的站点，获取敏感信息 Mozilla Firefox 8.x 厂商补丁： Mozilla ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.mozilla.org/security/...

Microsoft Internet Explorer 缓存对象历史枚举漏洞

Microsoft Internet Explorer 是微软公司推出的一款网页浏览器。 Microsoft Internet Explorer处理缓存对象时在实现上存在安全漏洞，远程攻击者可利用此漏洞枚举已浏览的站点，获取敏感信息 Microsoft Internet Explorer 9.x Microsoft Internet Explorer 8.x Microsoft Internet Explorer 7.x Microsoft Internet Explorer 6.x 临时解决方法： 在浏览可疑站点时，启用 "InPrivate Browsing"；或不浏览可疑站点。...