Mozilla: Use-after-free when using multiple WebRTC data channels (MFSA 2016-25)

Use-after-free vulnerability in the mozilla::DataChannelConnection::Close function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of WebRTC data-channel connections...

UBUNTU-CVE-2016-1962

Use-after-free vulnerability in the mozilla::DataChannelConnection::Close function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of WebRTC data-channel connections...

UBUNTU-CVE-2016-2548

sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service system crash via a crafted ioctl call, related to the 1 sndtimerclose and 2 sndtimerstop functions...

DEBIAN-CVE-2016-2330

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...

ALPINE-CVE-2016-2330

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...

HOME SPOT CUBE vulnerable to cross-site scripting

Overview HOME SPOT CUBE provided by KDDI CORPORATION is a wireless LAN router. HOME SPOT CUBE contains a cross-site scripting vulnerability. Masaki Yoshikawa of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

F5 Networks BIG-IP : Linux kernel vulnerability (K17462)

arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...

TCP Bindshell with Password Prompt - 162 bytes

TCP Bindshell with Password Prompt - 162 bytes. Shellcode exploit for linux platform /--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact:...

x86_64 Linux bind TCP port shellcode

x8664 Linux bind TCP port shellcode. Shellcode exploit for linx86-64 platform /--------------------------------------------------------------------------------------------------------------------- / Exploit Title: bindshell TCP Author: Scorpion Copyright: c 2016 iQube. http://iQube.io Release Dat...

Microsoft Silverlight RCE Vulnerability

Microsoft Silverlight is a development platform from Microsoft. The platform can build interactive applications for the Web, desktop and mobile devices. A security vulnerability exists in Microsoft Silverlight, which arises from the program's failure to properly handle certain open and close...

Oracle Linux 7 : curl (ELSA-2015-2159)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2159 advisory. - require credentials to match for NTLM re-use CVE-2015-3143 - close Negotiate connections when done CVE-2015-3148 - reject CRLFs in URLs passed to pro...

openSUSE Security Update : cyrus-imapd (openSUSE-2015-606)

This update provides version 2.4.18 of cyrus-imapd - Security fix: handle urlfetch range starting outside message range - A bunch of cleanups and fixes to compiling - A bunch of sieve cleanups - Enhanced SSL/TLS configuration options - Disable use of SSLv2/SSLv3 - Allow SQL backend for mboxlist a...

RHEL6: NFS4 CLOSE repeats with NFS4ERR_ADMIN_REVOKED (10047) error

No description provided...

VK.com: Able to intercept app Traffic after choosing up the Secured Connection using SSL (HTTPS)

Install the app Login with Valid credentials Settings - Choose Secured connection HTTPS Close the app Set the proxy and Open the app verify that Connection isn't Secured and able to intercept PFA POC Expected Result : Secured layer & SSL PINING should be applied successfully...

DEBIAN-CVE-2015-2830

arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...

CVE-2015-2830

arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...

Adobe Acrobat Pro Close page action Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling o...

Linux kernel int80 32-Bit Emulation Security Bypass Vulnerability

Linux kernel is an open source operating system. Linux kernel handles 'fork' and 'close' system calls int80 entries with emulated 32-bit processes incorrectly, allowing a local attacker to exploit the vulnerability to bypass specific sandboxing restrictions and perform malicious operations...

UBUNTU-CVE-2015-2830

arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...

chromium-browser: use-after-free in Views

Use-after-free vulnerability in the ZoomBubbleView::Close function in browser/ui/views/locationbar/zoombubbleview.cc in the Views implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted docume...