347 matches found
Information disclosure
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memor...
DEBIAN-CVE-2018-20023
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memor...
CVE-2018-20022
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak...
CVE-2018-20023
CVE-2018-20023 affects LibVNCServer/LibVNCClient: CWE-665 Improper Initialization in the VNC Repeater client code can allow an attacker to read stack memory and disclose information. The issue is documented across multiple advisories (Debian/Ubuntu, Gentoo, Mageia, Red Hat) and is part of a broad...
UBUNTU-CVE-2018-20022
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak...
UBUNTU-CVE-2018-20023
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memor...
CVE-2018-20023
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memor...
Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2019-05536)
Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. Windows kernel is one of the Windows operating system kernels. An information disclosure vulnerability exists in the Microsoft Windows Kernel, which arises from a program's failure to properly...
CVE-2018-8408
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Window...
CVE-2018-9948
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
NVIDIA SHIELD TV Security Engine Deterministic Random Bit Generator Information Disclosure Vulnerability
NVIDIA SHIELD TV is a gaming console device from NVIDIA.Security Engine is one of the security engines.Deterministic Random Bit Generator DRBG is one of the... A security vulnerability exists in DRBG of Security Engine in NVIDIA SHIELD TV SE 6.2 and prior versions, which arises from the program...
Percona XtraBackup Information Disclosure Vulnerability
Percona XtraBackup is the U.S. Percona company's set of open source used to backup MySQL InnoDB database tools. An information disclosure vulnerability exists in xbcrypt in Percona XtraBackup versions prior to 2.3.6 and 2.4.x versions prior to 2.4.5, which stems from the program failing to proper...
CVE-2016-9756
arch/x86/kvm/emulate.c in the Linux kernel before 4.8.12 does not properly initialize Code Segment CS in certain error cases, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...
Juniper Junos FreeBSD libc db Information Disclosure (JSA10756)
According to its self-reported version number, the remote Juniper Junos device is affected by an information disclosure vulnerability in the underlying FreeBSD operating system libc db interface due to improper initialization of memory for Berkeley DB 1.85 database structures. A local attacker ca...
Linux kernel ext4 implementation denial of service vulnerability
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the ext4 implementation of Linux kernel versions prior to 2.6.34, which arises from a program's failure to properly track the initialization...
Mozilla Thunderbird < 31.1
The version of Thunderbird installed on the remote Windows host is prior to 31.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2014-69 advisory. - Apparent info leak caused by uninitialized memory with malformed GIFsCVE-2014-1564 CVE-2014-1564 Note that Nessus has not...
Kernel: Bluetooth: HCI & L2CAP information leaks
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the 1 L2CAP or 2 HCI implementation...
PT-2009-4929 · Microsoft · Windows Media Runtime
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Media Runtime affected versions not specified Description: The issue is related to the improper initialization of unspecified functions within compressed audio files. This allows remote attackers to execute arbitrary code vi...
PHP 5 < 5.2.7 Multiple Vulnerabilities
According to its banner, the version of PHP installed on the remote host is prior to 5.2.7. It is, therefore, affected by multiple vulnerabilities : - There is a buffer overflow flaw in the bundled PCRE library that allows a denial of service attack. CVE-2008-2371 - Multiple directory traversal...
CVE-2007-3668
Multiple unspecified vulnerabilities in NMSDVDXU.DLL in NuMedia NMSDVDX allow remote attackers to cause a denial of service via "improperly initialized" 1 LoadSegmentWord, 2 PartitionType, 3 SectorCount, and 4 BootFilePath variables...