McAfee Total Protection Denial of Service Vulnerability

McAfee Total Protection is a suite of antivirus software.McAfee File Lock is a file locking software that provides data encryption protection.McPvDrv.sys is one of the drivers. A security vulnerability in McPvDrv.sys in McAfee File Lock for McAfee Total Protection allows a local attacker to explo...

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2886-1)

It was discovered that a use-after-free vulnerability existed in the AFUNIX implementation in the Linux kernel. A local attacker could use crafted epollctl calls to cause a denial of service system crash or expose sensitive information. CVE-2013-7446 It was discovered that the KVM implementation ...

DEBIAN-CVE-2016-1233

An unspecified udev rule in the Debian fuse package in jessie before 2.9.3-15+deb8u2, in stretch before 2.9.5-1, and in sid before 2.9.5-1 sets world-writable permissions for the /dev/cuse character device, which allows local users to gain privileges via a character device in /dev, related to an...

CVE-2016-1233

An unspecified udev rule in the Debian fuse package in jessie before 2.9.3-15+deb8u2, in stretch before 2.9.5-1, and in sid before 2.9.5-1 sets world-writable permissions for the /dev/cuse character device, which allows local users to gain privileges via a character device in /dev, related to an...

CVE-2016-1233

An unspecified udev rule in the Debian fuse package in jessie before 2.9.3-15+deb8u2, in stretch before 2.9.5-1, and in sid before 2.9.5-1 sets world-writable permissions for the /dev/cuse character device, which allows local users to gain privileges via a character device in /dev, related to an...

CVE-2016-1233

An unspecified udev rule in the Debian fuse package in jessie before 2.9.3-15+deb8u2, in stretch before 2.9.5-1, and in sid before 2.9.5-1 sets world-writable permissions for the /dev/cuse character device, which allows local users to gain privileges via a character device in /dev, related to an...

CVE-2016-1233

CVE-2016-1233 describes a privilege-escalation in the Debian fuse package: an unspecified udev rule makes the /dev/cuse device world-writable, enabling a local unprivileged user to create or interact with devices via ioctl and potentially modify memory of processes opening the device. Affected ar...

Linux Kernel prima WLAN Driver Heap Overflow

/ Coder: Shawn the R0ck, [email protected] Co-worker: Pray3r, [email protected] Compile: arm-linux-androideabi-gcc wextpoc.c --sysroot=$SYSROOT -pie ./a.out wlan0 Boom......shit happens as always;- / include include include include include include include include typedef unsigned char vU8t; defin...

Huawei Mate 7 - devhifi_misc Privilege Escalation

Huawei Mate 7 - devhifimisc Privilege Escalation / HuaWei Mate7 hifi driver Poc Writen by pray3r, / include include include include include include define HIFIMISCIOCTLWRITEPARAMS IOWR'A', 0x75, struct misciosyncparam struct misciosyncparam void parain; unsigned int parasizein; void paraout;...

Huawei Mate 7 - '/dev/hifi_misc' Privilege Escalation

/ HuaWei Mate7 hifi driver Poc Writen by pray3r, / include include include include include include define HIFIMISCIOCTLWRITEPARAMS IOWR'A', 0x75, struct misciosyncparam struct misciosyncparam void parain; unsigned int parasizein; void paraout; unsigned int parasizeout; ; int mainint arg, char arg...

CVE-2015-6856

Dell Pre-Boot Authentication Driver PBADRV.sys 1.0.1.5 allows local users to write to arbitrary physical memory locations and gain privileges via a 0x0022201c IOCTL call...

Authentication flaw

Dell Pre-Boot Authentication Driver PBADRV.sys 1.0.1.5 allows local users to write to arbitrary physical memory locations and gain privileges via a 0x0022201c IOCTL call...

DEBIAN-CVE-2015-7885

The dgncmgmtioctl function in drivers/staging/dgnc/dgncmgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application...

Dell Pre-Boot Authentication Driver Uncontrolled Write Vulnerability

The Dell Pre-Boot Authentication Driver PBADRV.sys contains a vulnerability that can be leveraged to enable an attacker to write arbitrary code. The 'OutputAddress' from the IOCTL call is not validated before it attempts to write to memory. The content of the write is a four-byte hex value that i...

Dell Authentication Driver Uncontrolled Write

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 KL-001-2015-008 : Dell Pre-Boot Authentication Driver Uncontrolled Write to Arbitrary Address Title: Dell Pre-Boot Authentication Driver Uncontrolled Write to Arbitrary Address Advisory ID: KL-001-2015-008 Publication Date: 2015.12.18 Publication UR...

Ubuntu 14.04 LTS : Linux kernel (Wily HWE) vulnerabilities (USN-2843-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2843-2 advisory. Jan Beulich discovered that the KVM svm hypervisor implementation in the Linux kernel did not properly catch Debug exceptions on AMD processors. An...

Ubuntu: Security Advisory (USN-2842-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Dell Pre-Boot Authentication Driver Uncontrolled Write to Arbitrary Address

Vulnerability Details Affected Vendor: Dell Affected Product: Pre-Boot Authentication Driver Affected Version: 1.0.1.5 Platform: Microsoft Windows XP SP3, Microsoft Windows 2003 SP2, Microsoft Windows 7 CWE Classification: CWE-20: Improper input validation Impact: Arbitrary Code Execution Attack...

USN-2843-2: Linux kernel (Wily HWE) vulnerabilities

Jan Beulich discovered that the KVM svm hypervisor implementation in the Linux kernel did not properly catch Debug exceptions on AMD processors. An attacker in a guest virtual machine could use this to cause a denial of service system crash in the host OS. CVE-2015-8104 郭永刚 discovered that the pp...

USN-2843-2 linux-lts-wily vulnerabilities

Jan Beulich discovered that the KVM svm hypervisor implementation in the Linux kernel did not properly catch Debug exceptions on AMD processors. An attacker in a guest virtual machine could use this to cause a denial of service system crash in the host OS. CVE-2015-8104 郭永刚 discovered that the pp...