Siemens SIMATIC S7-300/1200/1500 CPU Denial of Service Vulnerability

Siemens SIMATIC S7-300, 1200 and 1500 CPUs are modular general-purpose controllers for the manufacturing industry from Siemens, Germany, and are widely used in tobacco, petrochemical, water and other important industrial control sites. A denial of service vulnerability exists in the Siemens SIMAT...

Classic kernel vulnerabilities debugging notes bis-vulnerability warning-the black bar safety net

Foreword The last time I sent an article yourself in a classic kernel Vulnerability CVE-2 0 1 4-4 1 1 3 struggling experience, and some debugging details of the share summary after feel the harvest a lot, and later an accidental opportunity, I saw the Baidu security Labs issued an article that is...

OpenSSL Denial of Service Vulnerability (CNVD-2016-11090)

OpenSSL is an open source capable of implementing the Secure Sockets Layer SSL v2/v3 and Secure Transport Layer TLS v1 protocols developed by the OpenSSL team as a general-purpose cryptographic library that supports a wide range of cryptographic algorithms including symmetric ciphers, hash...

CVE-2016-8812

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before GFE 3.1.0.52 contains a vulnerability in the kernel mode layer nvstreamkms.sys allowing a user to cause a stack buffer overflow with specially crafted executable paths, leading t...

CVE-2016-8810

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x100009a where a value passed from an user to the driver is used without...

Design/Logic Flaw

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x100009a where a value passed from an user to the driver is used without...

Design/Logic Flaw

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x5000027 where a pointer passed from an user to the driver is used without...

CVE-2016-8810

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x100009a where a value passed from an user to the driver is used without...

CVE-2016-5025

For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVAPI support layer causes a denial of service vulnerability blue screen crash within the NVIDIA Windows graphics drivers...

CVE-2016-4961

CVE-2016-4961 affects NVIDIA Quadro, NVS, and GeForce Windows drivers. The root cause is improper sanitization of parameters in the NVStreamKMS.sys API layer, causing a denial-of-service (blue-screen crash). Affected component is the NVStreamKMS.sys driver; impact is high for availability with lo...

CVE-2016-8811

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x7000170 where the size of an input buffer is not validated, leading to denial ...

gimp: Use-after-free vulnerabilities in the channel and layer properties parsing process

Multiple use-after-free vulnerabilities were found in GIMP in the channel and layer properties parsing process when loading XCF files. An attacker could create a specially crafted XCF file which could cause GIMP to crash...

Denial of Service Vulnerability in Zemana AntiMalware

Zemana AntiMalware is a cloud-based anti-malware scanner. Zemana AntiMalware suffers from a denial of service vulnerability. Due to Zemana antiMalware's driver zam32.sys fails to do a safe line validation of incoming pointers from the user layer. This allows an attacker to exploit the vulnerabili...

Important: Red Hat Security Advisory: kernel security and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 6.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

PT-2016-7515 · Libcsp · Libcsp

Name of the Vulnerable Software and Affected Versions: libcsp library versions 1.4 and earlier Description: The issue is related to a buffer overflow in the csp sfp recv fp function in csp sfp.c. This allows hostile components with network access to the SFP underlying network layers to execute...

Shotwell is vulnerable

Shotwell is a Linux-based photo management software for the GNOME desktop environment. A security vulnerability exists in Shotwell version 0.22.0. The program fails to validate TLS and SSL certificates. An attacker can exploit this vulnerability to conduct a man-in-the-middle attack...

Mail.ru: [allods.mail.ru] Cross-Site Request Forgery (Add-Item)

Hi, I found that there is no anti-csrf while adding an item for '/media.php' in allods.mail.ru, from 'https://allods.mail.ru/media.php?do=additem&section=2' since there was no anti-csrf token, there was still an extra layer of security for csrf which I had to bypass! More Details: The upload...

UBUNTU-CVE-2016-1000033

Shotwell version 0.22.0 and possibly other versions is vulnerable to a TLS/SSL certification validation flaw resulting in a potential for man in the middle attacks...

Remote Anonymous Denial of Service Vulnerability in OpenSSL (SSL Death Alert)

OpenSSL is an open source implementation of SSL used to implement strong encryption for network communications. OpenSSL is vulnerable to a remote anonymous denial of service vulnerability in that OpenSSL's implementation of the SSL/TLS protocol handshake allows a client to repeatedly send packets...

UBUNTU-CVE-2016-8610

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail...