Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.25 views

Oracle: Security Advisory (ELSA-2009-0382)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.6AI score0.01172EPSS
Exploits7References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

libvirt_proxy <= 0.5.1 - Local Privilege Escalation Exploit

No description provided by source. / cve-2009-0036.c libvirtproxy = 0.5.1 Local Privilege Escalation Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in...

4.4CVSS0.01172EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.21 views

Oracle Linux 5 : libvirt (ELSA-2009-0382)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0382 advisory. - Add missing readonly checks for APIs CVE-2008-5086 Tenable has extracted the preceding description block directly from the Oracle Linux security...

7.2CVSS8.3AI score0.01172EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.40 views

RHEL 5 : libvirt (RHSA-2009:0382)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:0382 advisory. - libvirt: missing checks for read-only connection CVE-2008-5086 - libvirt: libvirtproxy buffer overflow CVE-2009-0036 Note that Nessus has...

7.2CVSS8.6AI score0.01172EPSS
Exploits7References7
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.24 views

Scientific Linux Security Update : libvirt on SL5.x i386/x86_64

The libvirtd daemon was discovered to not properly check user connection permissions before performing certain privileged actions, such as requesting migration of an unprivileged guest domain to another system. A local user able to establish a read-only connection to libvirtd could use this flaw ...

7.2CVSS8.8AI score0.01172EPSS
Exploits7References3
seebug.org
seebug.org
added 2009/04/28 12:0 a.m.29 views

libvirt_proxy &lt;= 0.5.1 Local Privilege Escalation Exploit

No description provided by source. / cve-2009-0036.c libvirtproxy = 0.5.1 Local Privilege Escalation Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in...

4.4CVSS0.1AI score0.01172EPSS
Exploits7
0day.today
0day.today
added 2009/04/27 12:0 a.m.50 views

libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits ========================================================= libvirtproxy /tmp/getuid.c gcc -shared /tmp/getuid.c -o /tmp/getuid.so echo "+ setting up /tmp/run" echo -e "!/bin/sh" /tmp/run echo -e "touch /tmp/success" /tmp/run echo -e "echo...

6.8AI score0.01172EPSS
Exploits7
OpenVAS
OpenVAS
added 2009/03/20 12:0 a.m.47 views

RedHat Security Advisory RHSA-2009:0382

The remote host is missing updates announced in advisory RHSA-2009:0382. libvirt is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. libvirt also provides tools for remotely managing virtualized systems. The libvirtd daemon was...

7.2CVSS0.2AI score0.01172EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2009/03/19 4:10 p.m.32 views

Moderate: Red Hat Security Advisory: libvirt security update

Updated libvirt packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Updated 5th May 2011 After installing this update and restarting the libvirtd service, the...

7.2CVSS6.9AI score0.01172EPSS
Exploits7References3
seebug.org
seebug.org
added 2009/02/13 12:0 a.m.36 views

libvirt libvirt_proxy.c文件本地栈溢出漏洞

BUGTRAQ ID: 33724 CVECAN ID: CVE-2009-0036 libvirt是一套免费、开源的C函数库,支持Linux下的主流虚拟化工具。 libvirt库的proxy/libvirtproxy.c文件中的proxyReadClientSocket函数没有正确地验证报文头,如果本地攻击者发送了特制的代理请求的话就可以触发栈溢出,导致以root用户权限执行任意代码。 libvirt 0.5.1 厂商补丁: libvirt ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

4.4CVSS0.4AI score0.01172EPSS
Exploits7
CVE
CVE
added 2009/02/11 8:0 p.m.86 views

CVE-2009-0036

CVE-2009-0036 affects libvirt_proxy 0.5.1: a buffer overflow in proxyReadClientSocket (proxy/libvirt_proxy.c) could allow a local user to gain root privileges by crafting the virProxyPacket header and then sending the remainder, due to uninitialized memory in a validation check. The public report...

4.4CVSS6.6AI score0.01172EPSS
Exploits7References10Affected Software1
Rows per page
Query Builder