Lucene search
+L

70 matches found

Cvelist
Cvelist
added 2020/04/20 7:25 a.m.28 views

CVE-2020-5569

An unquoted search path vulnerability exists in HDD Password tool for Windows version 1.20.6620 and earlier which is stored in CANVIO PREMIUM 3TBHD-MB30TY, HD-MA30TY, HD-MB30TS, HD-MA30TS, CANVIO PREMIUM 2TBHD-MB20TY, HD-MA20TY, HD-MB20TS, HD-MA20TS, CANVIO PREMIUM 1TBHD-MB10TY, HD-MA10TY,...

8.4AI score0.0036EPSS
Exploits0References2
CVE
CVE
added 2020/04/20 7:25 a.m.53 views

CVE-2020-5569

CVE-2020-5569 is an unquoted search path vulnerability in HDD Password tool for Windows (versions up to 1.20.6620) affecting CANVIO PREMIUM 3TB/2TB/1TB and CANVIO SLIM 1TB/500GB devices, where Windows services are registered with unquoted file paths. If a path with spaces is present, a malicious ...

8.4CVSS8.3AI score0.0036EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/04/20 12:0 a.m.86 views

JVN#13467854: Toshiba Electronic Devices & Storage software registers unquoted service paths

Some of Toshiba Electronic Devices & Storage software registers Windows services with unquoted file paths CWE-428. Impact When a registered path contains spaces, and a malicious executable is placed on a certain path, it may be executed with the privilege of the Windows service. Solution The...

8.4CVSS8.5AI score0.0036EPSS
Exploits0
Virtuozzo
Virtuozzo
added 2020/03/31 12:0 a.m.110 views

Product update: Virtuozzo 7.0 Update 13 (7.0.13-298)

The Update 13 for Virtuozzo 7.0 introduces new features and provides stability and usability bug fixes. It also introduces a new kernel 3.10.0-1062.12.1.vz7.131.10. Vulnerability id: PSBM-95072 'pstorage-target' files are left over after successful migrations of VMs on Virtuozzo Storage from...

7.1AI score
Exploits0
Prion
Prion
added 2018/09/18 6:29 p.m.22 views

Buffer overflow

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, while processing SETPASSPOINTLIST vendor command HDD does not make sure that the realm string that gets passed by upper-layer is NULL terminated. This may lead to buffer overflow as strlen is...

4.6CVSS7.7AI score0.00202EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2018/05/31 10:1 a.m.94 views

Attackers Can Use Sonic and Ultrasonic Signals to Crash Hard Drives

Researchers have demonstrated how sonic and ultrasonic signals inaudible to human can be used to cause physical damage to hard drives just by playing ultrasonic sounds through a target computer's own built-in speaker or by exploiting a speaker near the targeted device. Similar research was...

1.1AI score
Exploits0
ThreatPost
ThreatPost
added 2018/05/29 6:4 p.m.11 views

Sonic Tone Attacks Damage Hard Disk Drives, Crashes OS

Using sonic and ultrasonic soundwaves as a weapon, researchers can disrupt the read, write and storage functions of a hard disk drive HDD. The method can also be used to crash the host operating system, and in some cases damage targeted drives. Researchers said the attack can be performed by...

0.3AI score
Exploits0References2
Citrix
Citrix
added 2017/10/30 12:0 a.m.7 views

How To Replace Defective SSD/HDD of a NetScaler SD-WAN 4000 or 5000 Appliance

This article describes how to replace defective SSD/HDD of a NetScaler SD-WAN 4000 or 5000 appliance...

7AI score
Exploits0
OSV
OSV
added 2017/10/10 8:29 p.m.6 views

CVE-2017-11062

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, currently attributes are not validated in wlanhddcfg80211doacs which can potentially lead to a buffer overread...

7.5CVSS6AI score0.00514EPSS
Exploits0References2
Virtuozzo
Virtuozzo
added 2017/05/29 12:0 a.m.19 views

Product update: Virtuozzo 7.0 Update 4 Hotfix 1 (7.0.4-1091)

The new update for Virtuozzo 7.0.4 provides stability and usability bug fixes. Vulnerability id: PSBM-66625, PSBM-66445 guest.fs counters were reported in kilobytes for containers and in bytes for virtual machines. Vulnerability id: PSBM-66556 Backup location changed to default after update to...

2.7AI score
Exploits0
Virtuozzo
Virtuozzo
added 2017/03/06 12:0 a.m.27 views

Product update: Virtuozzo Automator 7 Update 1

The new packages for Virtuozzo Automator 7 introducing new features as well as usability and stability bug fixes. Vulnerability id: PVA-36535 Fixed collection of CPU statistics in VA MN. Vulnerability id: PVA-36516 Changing container's private area in the host settings in VA MN resulted in deleti...

0.4AI score
Exploits0
Citrix
Citrix
added 2016/12/23 12:0 a.m.11 views

Any Write cache mode which involves the Target Device local HDD reverts to server side caching

When trying to configure the write cache, any selection that involves the local HDD of the target device would fail. Cache on device ram - works Cache on server - works Ram with overflow - fails to server Cache on Device HD - fails to server...

7.2AI score
Exploits0
0day.today
0day.today
added 2016/10/20 12:0 a.m.22 views

Lenovo RapidBoot HDD Acelerator 1.00.0802 Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot HDD Accelerator service is...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2016/10/20 12:0 a.m.27 views

Lenovo RapidBoot HDD Acelerator 1.00.0802 Privilege Escalation

Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot HDD Accelerator service is installed with an unquoted service path. This enables a loca...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2016/10/19 12:0 a.m.17 views

Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation

Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2016/10/19 12:0 a.m.37 views

Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation

Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot HDD Accelerator service is installed with an unquoted service path. This enables a loca...

7.4AI score
Exploits0
CNVD
CNVD
added 2016/10/13 12:0 a.m.7 views

Android Qualcomm Wi-Fi Driver Information Disclosure Vulnerability

Android on Nexus 5X and Android One is a Linux-based open source operating system for the Nexus 5X and Android One smartphones developed by Google and the Open Handset Alliance OHA, of which the Qualcomm Wi-Fi driver is a wireless driver component. Qualcomm Wi-Fi driver is one of the wireless...

7.8CVSS6.4AI score0.00546EPSS
Exploits0References1
CNVD
CNVD
added 2016/10/13 12:0 a.m.6 views

Android Qualcomm Wi-Fi Driver Buffer Overflow Vulnerability

Android on Nexus 5X and Android One is a Linux-based open source operating system for the Nexus 5X and Android One smartphones developed by Google and the Open Handset Alliance OHA, of which the Qualcomm Wi-Fi driver is a wireless driver component. Qualcomm Wi-Fi driver is one of the wireless...

9.3CVSS7AI score0.00704EPSS
Exploits0References1
Prion
Prion
added 2016/10/10 10:59 a.m.18 views

Command injection

CORE/HDD/src/wlanhddmain.c in the Qualcomm Wi-Fi driver in Android before 2016-10-05 on Nexus 5X devices allows attackers to gain privileges via a crafted application that sends a SENDACTIONFRAME command, aka Android internal bug 28061823 and Qualcomm internal bug CR 1001449...

9.3CVSS7.2AI score0.00513EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2016/10/10 10:0 a.m.53 views

CVE-2016-6675

This CVE (CVE-2016-6675) is a buffer/size difference (off-by-one) vulnerability in the Qualcomm Wi‑Fi driver’s CORE/HDD wlan_hdd_hostapd.c. Affected devices include Android on Nexus 5X and Android One, with exploitation via a crafted application that invokes the linkspeed ioctl, enabling local pr...

9.3CVSS7.9AI score0.00704EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder