238 matches found
CVE-2015-8213
The getformat function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRETKEY...
The vulnerability of the Mac OS X operating system, which allows a hacker to manipulate timestamps
The vulnerability of the Mac OS X operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to forge timestamps due to errors in restricting access to the date and time settings panel...
Code injection
Apple OS X before 10.10.5 does not properly restrict access to the Date & Time preferences pane, which allows local users to spoof the time by visiting this pane...
CVE-2015-3757
CVE-2015-3757 affects Apple OS X up to macOS Yosemite, specifically OS X before 10.10.5. The Date & Time preference pane could be accessed locally to spoof system time, enabling a local user to alter time settings via that pane. Connected sources confirm this is addressed by Apple’s OS X 10.10.5 ...
CVE-2015-3757
Apple OS X before 10.10.5 does not properly restrict access to the Date & Time preferences pane, which allows local users to spoof the time by visiting this pane...
php: use after free vulnerability in unserialize() with DateTimeZone
A use-after-free flaw was found in the unserialize function of PHP's DateTimeZone implementation. A malicious script author could possibly use this flaw to disclose certain portions of server memory...
php: use after free vulnerability in unserialize() with DateTimeZone
A use-after-free flaw was found in the unserialize function of PHP's DateTimeZone implementation. A malicious script author could possibly use this flaw to disclose certain portions of server memory...
The vulnerability of the Red Hat Enterprise Linux operating system, which allows a remote attacker to compromise the accessibility of protected information
The vulnerability of the boost-date-time-1.41.0 package of the Red Hat Enterprise Linux operating system can lead to a violation of the accessibility of protected information. This vulnerability can be exploited remotely...
The vulnerability of the CentOS operating system, which allows a malicious attacker to compromise the accessibility of protected information
The vulnerability of the boost-date-time-1.41.0 package on the CentOS operating system can lead to a violation of the accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...
PHP Date Time Object Unserialize Memory Corruption (CVE-2015-0273)
A code execution vulnerability has been reported in PHP. The vulnerability is due to a use-after-free error when handling serialized Date/Time objects within the unserialize function. A remote attacker can exploit the vulnerability by sending crafted serialized data to a web application running a...
PHP Memory Error Referencing Remote Code Execution Vulnerability
PHP is a popular web programming language. PHP unserialize handles DateTimeZone with a memory error referencing a remote code execution vulnerability, which allows attackers to exploit the vulnerability to crash the application or execute arbitrary code...
[SECURITY] Fedora 20 Update: drupal7-date-2.8-1.fc20
This Drupal module contains both a flexible date/time field type and a Date API that other modules can use...
[SECURITY] Fedora 19 Update: drupal7-date-2.8-1.fc19
This Drupal module contains both a flexible date/time field type and a Date API that other modules can use...
Novell iPrint Client ActiveX Control Date/Time Buffer Overflow
No description provided by source. $Id: novelliprintdatetime.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...
PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow
No description provided by source. From: Maksymilian Arciemowicz cxib securityreason com Date: Fri, 10 Dec 2010 14:43:32 +0100 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow Author: Maksymilian Arciemowicz http://securityreason.com/...
Ubuntu Date and Time Indicator privilege escalation
It's possible to run applications as greeter user...
RedHat Update for postgresql RHSA-2014:0249-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.2 Security Update : OpenJDK 1.6 (SAT Patch Number 8598)
OpenJDK 1.6 was updated to the new Icedtea release 1.12.7, which includes many fixes for bugs and security issues : - S8006900, CVE-2013-3829: Add new date/time capability - S8008589: Better MBean permission validation - S8011071, CVE-2013-5780: Better crypto provider handling - S8011081,...
Mac OS X Sudo Password Bypass
This module gains a session with root permissions on versions of OS X with sudo binary vulnerable to CVE-2013-1775. Tested working on Mac OS 10.7-10.8.4, and possibly lower versions. If your session belongs to a user with Administrative Privileges the user is in the sudoers file and is in the...
[File Time Changer] Command-line Tool to quickly change the Date/Time stamp of the file
File Time Changer is the Free Command-line tool to quickly change the Date/Time stamp of the file. It also allows you to view the current date/time of the file before modifying it. You can view or modify all the 3 types of timestamp for the file, Creation Time Last Access Time Last Modified Time...