Oracle VM VirtualBox < 3.2.22 / 4.0.24 / 4.1.32 / 4.2.24 / 4.3.8 Multiple Memory Corruption

The remote host contains a version of Oracle VM VirtualBox that is 3.2.x prior to 3.2.22, 4.0.24, 4.1.32, 4.2.24 or 4.3.8. It is, therefore, potentially affected by the following vulnerabilities : - An input validation error exists in the function 'crNetRecvReadback' in the file...

VUPEN Security Research - Google Chrome &quot;Clipboard::WriteData&#40;&#41;&quot; Function Sandbox Escape &#40;Pwn2Own&#41;

VUPEN Security Research - Google Chrome Clipboard Format Processing Sandbox Escape Pwn2Own Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Google Chrome is a freeware web browser developed by Google. Chrome version 28 and beyond uses the WebK...

Google Chrome < 33.0.1750.149 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is a version prior to 33.0.1750.149. It is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to 'speech' and 'web database' processing. CVE-2014-1700, CVE-2014-1702 - An input validation error...

Cisco Jabber for Windows 9.x < 9.2(2) 'Send Screen Capture' File Write

The version of Cisco Jabber for Windows installed on the remote host is 9.x prior to 9.22. It is, therefore, affected by an input validation error related to the 'Send Screen Capture' functionality that could allow a remote attacker to traverse directories, write arbitrary files and possibly...

Synology DiskStation Manager < 4.3-3776 Update 2 Multiple Vulnerabilities

According to its version number, the Synology DiskStation Manager installed on the remote host is a version prior to 4.3-3776 Update 2. It is, therefore, potentially affected by the following vulnerabilities : - An input validation error exists in the 'externaldevices.cgi' script that allows any...

Computer Associates BrightStor ARCServe BackUp xdr_handle_t Code Execution - Ver2 (CVE-2007-1785)

A code execution vulnerability has been reported in BrightStor ARCserve Backup service. The vulnerability is due to an input validation error within mediasvr. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Flash Player <= 11.7.700.252 / 11.9.900.152 Multiple Vulnerabilities (APSB13-28)

According to its version, the instance of Flash Player installed on the remote Windows host is equal or prior to 11.7.700.252 / 11.8.x or 11.9.x equal or prior to 11.9.900.152. It is, therefore, potentially affected by the following vulnerabilities : - A type-confusion error exists that could all...

Microsoft Windows Kernel Privilege Escalation Vulnerability (2914368)

This host is missing an important security update according to Microsoft Bulletin MS14-002 OpenVAS Vulnerability Test $Id: gbmicrosoftsecurityadvisory2914486.nasl 6115 2017-05-12 09:03:25Z teissa $ Microsoft Windows Kernel Privilege Escalation Vulnerability 2914368 Authors: Shashi Kiran N Updated...

Microsoft Windows Kernel Privilege Escalation Vulnerability (2914368)

This host is missing an important security update according to Microsoft Bulletin MS14-002 SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

ESXi 5.1 < Build 911593 Multiple Vulnerabilities (remote check)

The remote VMware ESXi 5.1 host is affected by the following security vulnerabilities : - An input validation error exists in the function 'pngsettext2' in the libpng library that could allow memory corruption and arbitrary code execution. CVE-2011-3048 - A privilege escalation vulnerability exis...

HP System Management Homepage ginkgosnmp.inc Command Injection

According to the web server's banner, the version of HP System Management Homepage SMH hosted on the remote web server is earlier than 7.2.2 and is, therefore, reportedly affected by a command injection vulnerability. An input validation error exists in the file 'ginkgosnmp.inc' related to the la...

HP LoadRunner lrFileIOService ActiveX Control Input Validation Error (CVE-2013-2370)

An input validation error has been reported in HP LoadRunner...

Chasys Draw IES BMP Buffer Overflow (CVE-2013-3928)

A buffer overflow vulnerability has been reported in Chasys Draw IES. The vulnerability is due to an image parsing input validation error in Chasys Draw IES when parsing a file in BMP format. A remote attacker could trigger this issue via a specially crafted BMP file. Successful exploitation will...

Thunderbird 17.x through 23.x Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird is a version prior to 24.0. It is, therefore, potentially affected by the following vulnerabilities : - Memory issues exist in the browser engine that could allow for denial of service or arbitrary code execution. CVE-2013-1718, CVE-2013-1719 - The HTML5 Tree...

Mozilla Thunderbird 17.x through 23.x Multiple Vulnerabilities

The installed version of Thunderbird is 17.x or later but prior to 24. It is, therefore, potentially affected the following vulnerabilities: - Memory issues exist in the browser engine that could allow for denial of service or arbitrary code execution. CVE-2013-1718, CVE-2013-1719 - The HTML5 Tre...

HP LoadRunner lrFileIOService ActiveX Control WriteFileBinary Input Validation Error

Added: 08/29/2013 CVE: CVE-2013-2370 BID: 61441 OSVDB: 95640 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the lrFileIOService ActiveX control. Problem HP LoadRunner before 11.52 is vulnerable to remote code execution. The lrFileIOService ActiveX...

HP LoadRunner lrFileIOService ActiveX Control WriteFileBinary Input Validation Error

Added: 08/29/2013 CVE: CVE-2013-2370 BID: 61441 OSVDB: 95640 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the lrFileIOService ActiveX control. Problem HP LoadRunner before 11.52 is vulnerable to remote code execution. The lrFileIOService ActiveX...

Google Chrome < 29.0.1547.57 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is a version prior to 29.0.1547.57. It is, therefore, affected by multiple vulnerabilities : - Various unspecified errors exist. No further details have been provided. CVE-2013-2887 - An input validation error exists related to incomplete...

Web Servers Malicious HTTP Request Directory Traversal (CVE-2005-3299; CVE-2014-7174; CVE-2022-1476; CVE-2022-29806)

There exists a directory traversal vulnerability On different web servers. The vulnerability is due to an input validation error in a web server that does not properly sanitize the parameters in request body for the directory traversal patterns. Successful exploitation allows unauthenticated remo...

CORE-2013-0708 - Hikvision IP Cameras Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Hikvision IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Hikvision IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0708 Advisory URL:...