1001 matches found
USN-1319-1: Linux kernel (OMAP4) vulnerabilities
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. CVE-2011-1162 Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel...
Ubuntu Update for linux-fsl-imx51 USN-1318-1
Ubuntu Update for Linux kernel vulnerabilities USN-1318-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13181.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux-fsl-imx51 USN-1318-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-1318-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-1319-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1319-1 : linux-ti-omap4 vulnerabilities
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. CVE-2011-1162 Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel...
USN-1318-1: Linux kernel (FSL-IMX51) vulnerabilities
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. CVE-2011-1162 Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel...
kernel: keys: NULL pointer deref in the user-defined key type
The userupdate function in security/keys/userdefined.c in the Linux kernel 2.6 allows local users to cause a denial of service NULL pointer dereference and kernel oops via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."...
PT-2011-4849 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel version 2.6 Description: The issue is related to the user update function in the Linux kernel, which allows local users to cause a denial of service. This can be achieved through vectors related to a user-defined key and updating...
CVE-2011-4110
The userupdate function in security/keys/userdefined.c in the Linux kernel 2.6 allows local users to cause a denial of service NULL pointer dereference and kernel oops via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."...
MySQL User-Defined Functions Multiple Vulnerabilities
User-defined functions in MySQL can allow a database user to cause binary libraries on the host to be loaded. The insert privilege on the table 'mysql.func' is required for a user to create user-defined functions. When running on Windows and possibly other operating systems, MySQL is potentially...
CVE-2011-1572
Directory traversal vulnerability in the Admin Defined Commands ADC feature in gitolite before 1.5.9.1 allows remote attackers to execute arbitrary commands via .. dot dot sequences in admin-defined commands...
Directory traversal
Directory traversal vulnerability in the Admin Defined Commands ADC feature in gitolite before 1.5.9.1 allows remote attackers to execute arbitrary commands via .. dot dot sequences in admin-defined commands...
CVE-2011-1572
Directory traversal vulnerability in the Admin Defined Commands ADC feature in gitolite before 1.5.9.1 allows remote attackers to execute arbitrary commands via .. dot dot sequences in admin-defined commands...
CVE-2011-1572
CVE-2011-1572 affects gitolite’s Admin Defined Commands (ADC) feature up to version 1.5.9.1. The vulnerability is a directory traversal that enables remote attackers to execute arbitrary commands by crafting .. sequences in admin-defined commands. This is the described risk; multiple OpenVAS/Debi...
John the Ripper 1.7.8-jumbo-7 Released
John the Ripper 1.7.8-jumbo-7 Released Change Log : Support for encrypted pkzip archives has been added, testing millions of candidate passwords per second. JimF This is in addition to WinZip/AES archives, support for which was added in prior -jumbo updates. Support for Mac OS X 10.7 Lion salted...
ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability
ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-243 July 27, 2011 -- CVE ID: CVE-2011-0232 -- CVSS: 9, AV:N/AC:L/Au:N/C:C/I:P/A:P -- Affected Vendors: WebKit -- Affected Products: WebKit -- TippingPointTM IPS...
CVE-2011-2885
IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service application crash via the sample .doc document that incorporates a user-defined toolbar...
Code injection
IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service application crash via the sample .doc document that incorporates a user-defined toolbar...
Oracle MySQL for Microsoft Windows Payload Execution
$Id: mysqlpayload.rb 11899 2011-03-08 22:42:26Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Fedora 15 : gitolite-1.5.8-3.fc15 (2011-1616)
Dylan Alex Simon discovered and reported a directory traversal flaw in the way Gitolite restricted access to admin defined commands 'ADC'. An authenticated attacker could execute arbitrary code with privileges of Gitolite server user using specially crafted command name. The flaw does not affect...