The vulnerability in the Crash Report component of the sigsegvHandler function in the debug.c file of the Redis database management system allows a attacker to cause a service failure.

The vulnerability of the Crash Report component of the sigsegvHandler function in the debug.c file of the Redis database management system is related to improper cleanup or release of resources. Exploiting this vulnerability may allow an attacker to cause a service failure...

CVE-2022-28170

CVE-2022-28170 affects Brocade Fabric OS Web Application services, exposing stored passwords in debug statements across multiple firmware lines (before v9.1.0, v9.0.1e, v8.2.3c, v7.4.2j). The underlying issue is that server and user credentials are logged in debug output, enabling a local attacke...

All Vulnerabilities for pbc.wa.edu.au Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| pbc.wa.edu.au ---|--- Open Bug Bounty...

All Vulnerabilities for pakenhamsc.vic.edu.au Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| pakenhamsc.vic.edu.au ---|--- Open Bug...

Security Bulletin: IBM Verify Gateway PAM components include a leftover debug file (CVE-2020-4371)

Summary The IBM Verify Gateway IVG PAM components include a leftover header file in their installation packages. The file was needed for debugging during development and shouldn't be part of the delivered PAM components. As of v1.0.1 of IVG for AIX PAM, and v1.0.2 of IVG for Linux PAM, the file h...

PT-2021-11829 · Cacti +4 · Cacti +4

Name of the Vulnerable Software and Affected Versions: Cacti versions 1.2.x through 1.2.16 Description: A SQL injection issue in data debug.php allows remote authenticated attackers to execute arbitrary SQL commands via the site id parameter, potentially leading to remote code execution...

WordPress WP-Planet Cross-Site Scripting Vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WP-Planet is one of the plugins used in it. WordPress WP-Planet 0.1 and earlier versions of the rss.class/scripts/magpiedebug.php...

The vulnerability of the hiddebugevents_read() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the hiddebugeventsread function in the hid/hid-debug.c driver in the Linux kernel leads to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2019-12210

In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debugfile, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it...

DEBIAN-CVE-2019-12210

In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debugfile, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it...

UBUNTU-CVE-2019-12210

In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debugfile, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it...

PHPRAP Server-Side Request Forgery Vulnerability

PHPRAP is a PHP lightweight open source API interface document management system . A server-side request forgery vulnerability exists in the application/home/controller/debug.php file in PHPRAP versions 1.0.4 through 1.0.8. This vulnerability can be exploited to perform server-side request forger...

CVE-2017-18261

CVE-2017-18261 : The issue is in the Linux kernel, specifically the arch_timer_reg_read_stable macro in arch/arm64/include/asm/arch_timer.h, with versions before 4.13. It allows a local user to trigger a denial of service (infinite recursion) by writing to a file under /sys/kernel/debug in certai...

CVE-2015-4965

maximouiweb/webmodule/webclient/utility/merlin.jsp in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX004, and 7.6.0 before 7.6.0.1 IFIX002; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX004 and 7.6.0 before 7.6.0.1 IFIX002 for SmartCloud Control Desk; and Maximo Ass...

CDRTools 2.0 RSCSI Debug File Arbitrary Local File Manipulation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8328/info It has been reported that the rscsi utility may provide for the modification of ownership and the corruption of arbitrary attacker specified files. It has been reported that a local attacker may invoke the rscsi...

[Nield v0.5.0] Network Interface Events Logging Daemon

nieldNetwork Interface Events Logging Daemon is a tool that receives notifications from the kernel through the netlink socket, and generates logs related to interfaces, neighbor cache ARP,NDP, IP address IPv4,IPv6, routing, FIB rules, traffic control.It can be configured using command-line option...

PT-2012-1502 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.0 Description: The issue allows local users with root privileges to modify arbitrary kernel memory locations by writing to the /sys/kernel/debug/acpi/custom method file. This is due to an incomplete fix for a...

DEBIAN-CVE-2007-1444

netserver in netperf 2.4.3 allows local users to overwrite arbitrary files via a symlink attack on /tmp/netperf.debug...

liblesstif <= 2-0.93.94-4mdk (DEBUG_FILE) Local Root Exploit

No description provided by source. !/bin/sh echo echo "mtink libXm local root exploit" echo " [email protected] " echo umask 000 export DEBUGFILE="/etc/ld.so.preload" cat /tmp/lib.c EOF include unistd.h void initvoid if getuid!=0 && geteuid==0 setuid0; unlink"/etc/ld.so.preload"; execl"/bin/bash",...

CVE-2006-3859

IBM Informix Dynamic Server IDS allows remote authenticated users to create and overwrite arbitrary files via the 1 LOTOFILE and 2 trltracefileset functions, and the 3 "SET DEBUG FILE" commands...