EUVD-2014-4168

Malware in sbrugna...

Security Bulletin: Multiple vulnerabilities in freetype2 affect IBM Flex System Manager (FSM)

Summary Multiple vulnerabilities have been identified in freetype2 that is embedded in the FSM. This bulletin addresses these vulnerabilities. Vulnerability Details CVEID: CVE-2017-8287 DESCRIPTION: Freetype2 is vulnerable to a denial of service, caused by a heap-based buffer overflow in the...

Security Bulletin: A vulnerability in libxml2 affects IBM Flex System Manager (FSM) (CVE-2017-16932)

Summary A vulnerability has been identified in libxml2 that is embedded in FSM. This bulletin addresses that issue. Vulnerability Details CVEID: CVE-2017-16932 DESCRIPTION: Xmlsoft libxml2 is vulnerable to a denial of service, caused by an infinite recursion issue in parameter entities. By sendin...

Security Bulletin: A vulnerability in strongSwan affects IBM Flex System Manager (FSM) (CVE-2017-11185)

Summary A vulnerability has been discovered in strongSwan that is embedded in FSM. This bulletin addresses that issue. Vulnerability Details CVEID: CVE-2017-11185 DESCRIPTION: strongSwan is vulnerable to a denial of service, caused by a NULL pointer dereference in gmp plugin. By using a...

Security Bulletin: A vulnerability in glibc affects IBM Flex System Manager (FSM) (CVE-2017-1000366)

Summary A vulnerability has been discovered in glibc that is embedded in FSM. This bulletin addresses that issue. Vulnerability Details CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local attacker to execute arbitrary code on the system, caused by a vulnerability that allows specially...

Security Bulletin: A vulnerability in libgcrypt affects IBM Flex System Manager (FSM) (CVE-2017-7526)

Summary A vulnerability has been discovered in libgcrypt that is embedded in FSM. This bulletin addresses that issue. Vulnerability Details CVEID: CVE-2017-7526 DESCRIPTION: Libgcrypt could allow a remote attacker to obtain sensitive information, caused by a cache side-channel attack when using...

Solaris 10 (sparc) : 123893-77

Vulnerability in the Solaris component of Oracle Enterprise Manager Grid Control subcomponent: Common Agent Container Cacao. Supported versions that are affected are 2.3.1.0, 2.3.1.1, 2.3.1.2, 2.4.0.0, 2.4.1.0 and 2.4.2.0. Easily exploitable vulnerability allows successful authenticated network...

Solaris 10 (x86) : 123896-79

Vulnerability in the Solaris component of Oracle Enterprise Manager Grid Control subcomponent: Common Agent Container Cacao. Supported versions that are affected are 2.3.1.0, 2.3.1.1, 2.3.1.2, 2.4.0.0, 2.4.1.0 and 2.4.2.0. Easily exploitable vulnerability allows successful authenticated network...

Solaris 10 (x86) : 123896-77

Vulnerability in the Solaris component of Oracle Enterprise Manager Grid Control subcomponent: Common Agent Container Cacao. Supported versions that are affected are 2.3.1.0, 2.3.1.1, 2.3.1.2, 2.4.0.0, 2.4.1.0 and 2.4.2.0. Easily exploitable vulnerability allows successful authenticated network...

openSUSE Security Update : open-vm-tools (openSUSE-2017-385)

This update for open-vm-tools to 10.1.0 stable brings features, fixes bugs and security issues : - New vmware-namespace-cmd command line utility - GTK3 support - Common Agent Framework CAF - Guest authentication with xmlsec1 - Sub-command to push updated network information to the host on demand ...

SUSE SLES11 Security Update : open-vm-tools (SUSE-SU-2017:0705-1)

This update for open-vm-tools to 10.1.0 stable brings features, fixes bugs and security issues : - New vmware-namespace-cmd command line utility - GTK3 support - Common Agent Framework CAF - Guest authentication with xmlsec1 - Sub-command to push updated network information to the host on demand ...

SUSE SLED12 / SLES12 Security Update : open-vm-tools (SUSE-SU-2017:0702-1)

This update for open-vm-tools to 10.1.0 stable brings features, fixes bugs and security issues : - New vmware-namespace-cmd command line utility - GTK3 support - Common Agent Framework CAF - Guest authentication with xmlsec1 - Sub-command to push updated network information to the host on demand ...

CVE-2014-4239

Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Common Agent Container Cacao...

Design/Logic Flaw

Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Common Agent Container Cacao...

CVE-2014-4239

Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Common Agent Container Cacao...

CVE-2010-4274

resetdiragentkeys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership...

Code injection

resetdiragentkeys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership...

CVE-2010-4274

CVE-2010-4274 affects IBM Systems Director 6.2.0, where reset_diragent_keys in the Common agent has 754 permissions. Local users can potentially gain privileges by exploiting system group membership. The connected records reiterate the same description; no versioned fixes or explicit exploit deta...

CVE-2010-4274

resetdiragentkeys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership...