EUVD-2005-3178

Malware in sbrugna...

The vulnerability of the SSH-server software solution for monitoring the status of B&R APROL industrial systems allows a intruder to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the SSH-server software solution for monitoring the status of B&R APROL industrial systems is related to incomplete filtering of specific elements. Exploiting this vulnerability could allow an intruder to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the tcf_ct_handle_fragments() function in the net/sched/act_ct.c module of the net/sched/networking subsystem of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tcfcthandlefragments function in the net/sched/actct.c module of the net/sched/networking subsystem of the Linux operating system is related to insufficient checking of exceptional states. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the application software interface of the Cisco Nexus Dashboard Fabric Controller (NDFC) lies in the lack of authentication, which allows a malicious actor to influence the integrity and accessibility of the protected information.

The vulnerability of the application programming interface of the Cisco Nexus Dashboard platform for analyzing and automating operations in cloud computing data centers is related to the lack of authentication. Exploiting this vulnerability could allow a malicious actor to influence the integrity...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations beyond the buffer in memory, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the issue of operations occurring outside of the buffer in memory during object cloning. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibili...

The vulnerability of the bpf_link_free() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bpflinkfree function in the Linux operating system’s kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the qcom-geni-serial component in the Linux operating system allows for interference with the confidentiality and accessibility of protected information.

The vulnerability of the qcom-geni-serial component in the Linux operating system is related to it exceeding the buffer limits of the RX FIFO. Exploiting this vulnerability could allow an attacker to influence the confidentiality and accessibility of the protected information...

The vulnerability of the `bnx2fc_interface_put` function in the `fs/sysfs/group.c` component of the Linux kernel allows a attacker to compromise the accessibility of protected information.

The vulnerability of the bnx2fcinterfaceput function in the fs/sysfs/group.c component of the Linux kernel is related to the cleanup of the destroywork queue before calling bnx2fcinterfaceput. Exploiting this vulnerability could allow an attacker to influence the accessibility of protected...

The vulnerability of the H5Z__nbit_decompress_one_byte() function in the H5Znbit.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Znbitdecompressonebyte function in the H5Znbit.c file of the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the hid-thrustmaster component in the Linux operating system allows a hacker to manipulate the confidentiality and accessibility of the protected information.

The vulnerability of the hid-thrustmaster component in the Linux operating system is related to the absence of checks for the actual number of endpoints. Exploiting this vulnerability allows an attacker to compromise the confidentiality and accessibility of the protected information...

The vulnerability of the Suricata intrusion detection and prevention system, related to the use of memory after it is freed, allows an intruder to influence the integrity and accessibility of the protected information.

The vulnerability of the Suricata intrusion detection and prevention system lies in the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to influence the integrity and accessibility of the protected information...

The vulnerabilities of the `setsockopt` and `getsockopt` functions in the Linux operating system’s kernel allow attackers to influence the confidentiality, integrity, or accessibility of information.

The vulnerability of the setsockopt and getsockopt functions in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, or accessibility of...

The vulnerability of Google Chrome browser-based PDF processing components allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Google Chrome browser-based PDF processors relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information through a specially crafted HTML page...

The vulnerability of the vcs_read() function in the drivers/tty/vt/vc-screen.c module of the Linux kernel allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vcsread function in the drivers/tty/vt/vc-screen.c module of the Linux kernel is related to the use of previously freed memory due to concurrent access to resources race condition. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the Vim text editor lies in the fact that an operation can be performed outside the buffer, allowing an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Vim text editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

Microsoft Edge’s vulnerability, related to the use of memory after it is freed, allows attackers to compromise privacy, integrity, and accessibility of information.

The vulnerability of Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of information...

The vulnerability of the Jenkins automation server, related to deficiencies in the authentication mechanism, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Jenkins automation server is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to remotely influence the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Jenkins automation server, related to deficiencies in the authentication mechanism, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Jenkins automation server is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to remotely influence the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Autofill component in the Microsoft Edge browser allows attackers to compromise the confidentiality, integrity, and accessibility of information.

The vulnerability of the Autofill component in the Microsoft Edge browser is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of information...

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2020 are related to data type mixing errors. These vulnerabilities allow attackers to compromise the integrity, accessibility, and confidentiality of information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to data type mixing errors. Exploiting these...