Microsoft Hyper-V DoS

Insufficient instruction set validation in virtual machine...

Microsoft Security Bulletin MS10-010 - Important Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)

Microsoft Security Bulletin MS10-010 - Important Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service 977894 Published: February 09, 2010 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Windows Server 200...

Microsoft Hyper-V Local Denial of Service Vulnerability

Description Microsoft Hyper-V is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. Technologies Affected Microsoft Windows Server 2008 for x64-based Systems Microsoft Windows Server 2008 for...

MS10-010: Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)

The remote host is affected by a denial of service flaw that exists in Hyper-V. A local attacker can leverage this to crash all the VMs on the remote host. To successfully exploit this vulnerability, an attacker would need an account on one of the remote VMs and be able to execute arbitrary code ...

SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 1212 / 1218 / 1219)

The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.29 fixing various bugs and security issues. The following security issues were fixed : - A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. CVE-2009-2692 - A kernel stack...

openSUSE Security Update : kernel (kernel-1214)

The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.29 fixing various bugs and security issues. Following security issues were fixed: CVE-2009-2692: A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. CVE-2009-2406: A kernel...

FreeBSD Security Advisory (FreeBSD-SA-05:09.htt.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:09.htt.asc ADV FreeBSD-SA-05:09.htt.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Security Advisory (FreeBSD-SA-05:09.htt.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:09.htt.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Hyper NIKKI System cross-site scripting vulnerability

Overview Hyper NIKKI System hns, web log software from the Hyper NIKKI System Project, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session...

Hyper NIKKI System allows unauthorized email submission

Overview Hyper NIKKI System hns is web log software from the Hyper NIKKI System Project. hns allows unauthorized email submission as it does not validate inputs properly. Impact An attacker could use the server to send unauthorized emails. In addition, when the server provides email service, the...

Hyper NIKKI System cross-site request forgery vulnerability

Overview Hyper NIKKI System hns, a weblog system from the Hyper NIKKI System Project, contains a cross-site request forgery CSRF vulnerability. Impact If a weblog administrator accesses a malicious web page, an attacker could add, alter, or delete the weblog text. If the weblog text is successful...

Hyper Estraier directory traversal/denial of service vulnerability

Overview Hyper Estraier, a full text search system, contains a vulnerability in the process of creating index files. Impact If a remote attacker sends a specially crafted file and a user saves it in a search target directory, the attacker could register a file not to be searched in an index when...

DEBIAN-CVE-2007-4575

HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...

CVE-2006-5774

Cross-site scripting XSS vulnerability in Hyper NIKKI System before 2.19.9 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2006-5774

Cross-site scripting XSS vulnerability in Hyper NIKKI System before 2.19.9 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2006-5774

Hyper NIKKI System (HNS) is affected by a cross-site scripting (XSS) vulnerability in versions before 2.19.9. The issue allows remote attackers to inject arbitrary web script or HTML via unknown vectors. The JVN entry describes an impact where an arbitrary script may be executed in the user’s bro...

JVN#88325166 Hyper NIKKI System cross-site scripting vulnerability

Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session hijacking. Solution Products Affected hns-2.190.8 hns-lite-2.190.8 and earlier...

CVE-2006-3671

Cross-site request forgery CSRF vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors...

CVE-2006-3671

Cross-site request forgery CSRF vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors...

CVE-2006-3671

Cross-site request forgery CSRF vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors...