CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2016/01/06 12:0 a.m.•73 views

Debian DSA-3434-1 : linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leak. - CVE-2015-7513 It was discovered that a local user permitted to use the x86 KVM subsystem could configure the PIT emulation to cause a denial of servic...

8.2CVSS6.4AI score0.0123EPSS

Exploits2References30

Debian•added 2016/01/05 7:18 p.m.•51 views

[SECURITY] [DSA 3434-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3434-1 [email protected] https://www.debian.org/security/ Ben Hutchings January 05, 2016 https://www.debian.org/security/faq -...

8.2CVSS7.9AI score0.0123EPSS

Exploits2

Fedora•added 2016/01/04 7:58 p.m.•39 views

[SECURITY] Fedora 22 Update: bouncycastle-1.50-8.fc22

The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. The package is organized so that it contains a light-weight API suitable for use in any environment including the newly released J2ME with the additional infrastructure to conform the algorithms to the JCE...

5CVSS1.4AI score0.0482EPSS

n0where•added 2016/01/04 4:4 p.m.•27 views

DHCP IP exhaustion attack: DHCPwn

DHCPwn is a tool used for testing DHCP IP exhaustion attacks. It can also be used to sniff local DHCP traffic. The DHCP protocol is connectionless and implemented via UDP. These two characteristics allow this attack to be performed. Since there is no actual connection being made between the clien...

0.2AI score

Exploits0References1

UbuntuCve•added 2015/12/28 12:0 a.m.•55 views

CVE-2015-8543

The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service NULL function pointer dereference and system crash or possibly gain...

7CVSS6.8AI score0.0123EPSS

Exploits0References12

Fedora•added 2015/12/19 6:28 p.m.•32 views

[SECURITY] Fedora 23 Update: bind99-9.9.8-1.P2.fc23

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. This package set contains only export version of BIND libraries, that are used for building ISC DHCP...

5CVSS3.1AI score0.5469EPSS

exploitpack•added 2015/12/18 12:0 a.m.•13 views

Google Chrome - Renderer Process to Browser Process Privilege Escalation

Google Chrome - Renderer Process to Browser Process Privilege Escalation Source: https://code.google.com/p/google-security-research/issues/detail?id=664 There is an overflow in the ui::PlatformCursor WebCursor::GetPlatformCursor method. In...

1.3AI score

0day.today•added 2015/12/18 12:0 a.m.•62 views

Google Chrome - Renderer Process to Browser Process Privilege Escalation

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=664 There is an overflow in the ui::PlatformCursor WebCursor::GetPlatformCursor method. In src/content/common/cursors/webcursoraurax11.cc&q=webcursoraurax11.cc, there is...

7.5CVSS8.6AI score0.05497EPSS

Tenable Nessus•added 2015/12/18 12:0 a.m.•59 views

Ubuntu 14.04 LTS : Linux kernel (Wily HWE) vulnerabilities (USN-2843-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2843-2 advisory. Jan Beulich discovered that the KVM svm hypervisor implementation in the Linux kernel did not properly catch Debug exceptions on AMD processors. An...

10CVSS6.5AI score0.02481EPSS

Exploits1References6

OpenVAS•added 2015/12/18 12:0 a.m.•49 views

Ubuntu: Security Advisory (USN-2842-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2015/12/18 12:0 a.m.•44 views

Ubuntu: Security Advisory (USN-2841-1)

OpenVAS•added 2015/12/18 12:0 a.m.•45 views

Ubuntu: Security Advisory (USN-2841-2)

OpenVAS•added 2015/12/18 12:0 a.m.•54 views

Ubuntu: Security Advisory (USN-2842-2)

OpenVAS•added 2015/12/18 12:0 a.m.•30 views

Mozilla Firefox Multiple Vulnerabilities (Dec 2015) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

10CVSS7.8AI score0.06058EPSS

Exploits1References5

Ubuntu•added 2015/12/17 7:24 p.m.•76 views

USN-2843-2: Linux kernel (Wily HWE) vulnerabilities

Jan Beulich discovered that the KVM svm hypervisor implementation in the Linux kernel did not properly catch Debug exceptions on AMD processors. An attacker in a guest virtual machine could use this to cause a denial of service system crash in the host OS. CVE-2015-8104 郭永刚 discovered that the pp...

10CVSS6.3AI score0.02481EPSS

Ubuntu•added 2015/12/17 8:34 a.m.•93 views

USN-2844-1: Linux kernel (Utopic HWE) vulnerabilities

Ubuntu•added 2015/12/17 8:16 a.m.•92 views

USN-2843-1: Linux kernel vulnerabilities

10CVSS6.3AI score0.02481EPSS