CVE-2011-2705

The SecureRandom.randombytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x before 1.9.2-p290 relies on PID values for initialization, which makes it easier for context-dependent attackers to predict the result string by leveraging knowledge of random strings obtained in an...

Ubuntu 10.10 : linux vulnerabilities (USN-1183-1)

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Neil Horman discovered that NFSv4 did not correctly handle...

CVE-2011-1160

The tpmopen function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors...

kernel security update

CentOS Errata and Security Advisory CESA-2011:0927 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scorin...

Ruby Random Number Generation Local Denial Of Service Vulnerability

The SecureRandom.randombytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x before 1.9.2-p290 relies on PID values for initialization, which makes it easier for context-dependent attackers to predict the result string by leveraging knowledge of random strings obtained in an...

Memory corruption

Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that 1 was not properly initialized or 2 is deleted, aka "Drag and Drop Memory Corruption Vulnerability."...

kernel security update

CentOS Errata and Security Advisory CESA-2011:0833 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scorin...

PHP168 V6.02 /member/post.php代码执行漏洞

PHP168整站是PHP领域当前功能最强大的建站系统，代码全部开源，可极其方便的进行二次开发，所有功能模块可以自由安装与删除，个人用户完全免费使用。 PHP168在某数组没有初试化,导致可以提交任意代码执行。 PHP168 V6.02 暂无 等待官方补丁...

Linux内核隧道初始化远程拒绝服务漏洞

Bugtraq ID: 47853 CVE ID：CVE-2011-1768 Linux是一款开放源代码的操作系统。 net/ipv6/ip6tunnel.c文件中IPv6隧道初始化函数包含如下代码： / 02 ip6tunnelinit - register protocol and reserve needed resources 03 04 Return: 0 on success 05 / 06 07 static int init ip6tunnelinitvoid 08 09 int err; 10 11 if xfrm6tunnelregister&ip4ip6handle...

CVE-2011-1824

CVE-2011-1824 affects Opera versions older than 10.61. The vulnerability arises in VEGAOpBitmap::AddLine when processing a SELECT element’s SIZE attribute, causing an uninitialized memory write that can crash the application or potentially allow arbitrary code execution. Exploitation involves lar...

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel-rt packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise MRG 1.3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

openSUSE Security Update : kernel (openSUSE-SU-2010:1047-1)

This security update of the openSUSE 11.1 kernel updates the kernel to 2.6.27.56 and fixes various security issues and other bugs. Following security issues were fixed by this update: CVE-2010-2963: A problem in the compat ioctl handling in video4linux allowed local attackers with a video device...

Buffer overflow

Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac obtain a certain length value from an uninitialized memory location, which allows remote attackers to trigger a buffer overflow and execute arbitrary code via a crafted Excel file, aka "Excel Data...

RealNetworks RealGames StubbyUtil.ProcessMgr.1 ActiveX Control (InstallerDlg.dll v2.6.0.445) Multiple Remote Commands Execution Vulnerabilities

RealNetworks RealGames StubbyUtil.ProcessMgr.1 ActiveX Control InstallerDlg.dll v2.6.0.445 Multiple Remote Commands Execution Vulnerabilities tested against Internet Explorer 9, Vista sp2 download url: http://www.gamehouse.com/ background: When choosing to play with theese online games ex. the ga...

RealNetworks RealPlayer CDDA URI Initialization Vulnerability

$Id: realplayercddauri.rb 12009 2011-03-17 15:42:28Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

RealNetworks RealPlayer CDDA URI Initialization Vulnerability

Exploit for windows platform in category remote exploits $Id: realplayercddauri.rb 12009 2011-03-17 15:42:28Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more informatio...

RealNetworks RealPlayer CDDA URI Initialization Vulnerability

This module exploits an initialization flaw within RealPlayer 11/11.1 and RealPlayer SP 1.0 - 1.1.4. An abnormally long CDDA URI causes an object initialization failure. However, this failure is improperly handled and uninitialized memory executed. This module requires Metasploit:...

RealNetworks RealPlayer - CDDA URI Initialization (Metasploit)

$Id: realplayercddauri.rb 12009 2011-03-17 15:42:28Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1086-1)

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4075 Dan Rosenberg discovered that the socket filters did not correctly...

Ubuntu Update for linux vulnerabilities USN-1080-1

Ubuntu Update for Linux kernel vulnerabilities USN-1080-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10801.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux vulnerabilities USN-1080-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...