CVE-2015-5834

CVE-2015-5834 involves the IOAcceleratorFamily in iOS prior to version 9. A crafted app could cause a disclosure of the kernel memory layout. The root cause is a memory-disclosure path in IOAcceleratorFamily that was addressed by improved bounds checking. The impact is limited to information expo...

CVE-2015-5842

CVE-2015-5842 affects Apple’s XNU kernel (macOS/iOS) where an uninitialized kernel data structure could allow a local attacker to determine kernel memory layout. The connected Nessus/NASL entries confirm the root cause as a kernel memory-layout disclosure and note that the issue was mitigated by ...

Debian Security Advisory DSA 3357-1 (vzctl - security update)

It was discovered that vzctl, a set of control tools for the OpenVZ server virtualisation solution, determined the storage layout of containers based on the presence of an XML file inside the container. An attacker with local root privileges in a simfs-based container could gain control over...

DSA-3357-1 vzctl - security update

Bulletin has no description...

MS15-097: Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (3089656)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in the Windows Adobe Type Manager Library due to improper handling of specially crafted OpenType fonts. An authenticated, remote attacker...

The vulnerability in the Internet Explorer browser allows a hacker to bypass the ASLR protection mechanism.

The vulnerability of the Internet Explorer browser is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism by using a specially crafted website...

QEMU Programmable Interrupt Timer Controller Heap Overflow Exploit

Exploit for multiple platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=419c4 The programmable interrupt timer PIT controller in QEMU does not correctly validate the channel number when performing IO writes to the device controller, allowing...

Apple OS X AppleGraphicsControl Information Disclosure Vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A security vulnerability in Apple OS X AppleGraphicsControl allows applications to exploit the vulnerability to obtain kernel memory layout information...

Microsoft Internet Explorer Table Handling Arbitrary Code Execution (CVE-2015-2502)

A vulnerability exists in the way Microsoft Internet Explorer handles the layout cache of tables. This vulnerability can be used to corrupt arbitrary memory and can lead to arbitrary code execution...

Memory corruption

AppleGraphicsControl in Apple OS X before 10.10.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app...

CVE-2015-3780

The Bluetooth subsystem in Apple OS X before 10.10.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app...

CVE-2015-3766

The kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly restrict the machportspaceinfo interface, which allows attackers to obtain sensitive memory-layout information via a crafted app...

Memory corruption

The Bluetooth subsystem in Apple OS X before 10.10.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app...

Design/Logic Flaw

The kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly restrict the machportspaceinfo interface, which allows attackers to obtain sensitive memory-layout information via a crafted app...

CVE-2015-5768

AppleGraphicsControl in Apple OS X before 10.10.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app...

CVE-2015-3766

The kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly restrict the machportspaceinfo interface, which allows attackers to obtain sensitive memory-layout information via a crafted app...

Microsoft XML Core Services Information Disclosure Vulnerability

Microsoft XML Core Services MSXML is the United States Microsoft Microsoft company's set of services including SDK software development kit, which is mainly used for the implementation or development of applications designed by XML. An information disclosure vulnerability exists in Microsoft XML...

ICU: missing boundary checks in layout engine (OpenJDK 2D, 8071715)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

Microsoft Internet Explorer ASLR Security Bypass Vulnerability (CNVD-2015-05229)

Microsoft Internet Explorer is a commonly used browser. A security bypass vulnerability exists in Microsoft Internet Explorer. An attacker can exploit the vulnerability to bypass the ASLR security feature by making it easier to predict memory offsets that specify call stack specific instructions...

Microsoft MSXML generate-id Information Disclosure Vulnerability

This vulnerability allows remote attackers to gain information about the layout of memory on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...