Nvidia Display Driver Service Attack Escalates Privileges on Windows Machines

There’s nothing like a zero-day to ruin the holiday break, but that’s just what may be in store for engineers at Nvidia after a researcher discovered a new vulnerability in the Nvidia Display Driver Service. The flaw could hand over administrator privileges on Windows machines to an attacker. Pet...

Microsoft Internet Explorer 9 CTreeNode Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

APPLE-SA-2012-11-29-1 Apple TV 5.1.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-11-29-1 Apple TV 5.1.1 Apple TV 5.1.1 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation and later Impact: Compromised applications may be able to determine addresses in the kernel Description: ...

FreeBSD Ports: chromium

The remote host is missing an update to the system as announced in the referenced advisory. VID 209c068d-28be-11e2-9160-00262d5ed8ee OpenVAS Vulnerability Test $ Description: Auto generated from VID 209c068d-28be-11e2-9160-00262d5ed8ee Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Microsoft Office 2007 RTF Mismatch Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Google Chrome < 23.0.1271.64 Multiple Vulnerabilities

Binary data 800919.prm...

RedHat Update for kernel RHSA-2012:1426-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2012:1426-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Google Chrome Multiple Vulnerabilities - Nov2012 (Linux)

This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnnov12lin.nasl 5999 2017-04-21 09:02:32Z teissa $ Google Chrome Multiple Vulnerabilities - Nov2012 Linux Authors: Antu Sanadi Copyright: Copyright c 2012...

Google Chrome Multiple Vulnerabilities - Nov2012 (Windows)

This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnnov12win.nasl 5931 2017-04-11 09:02:04Z teissa $ Google Chrome Multiple Vulnerabilities - Nov2012 Windows Authors: Antu Sanadi Copyright: Copyright c 2012...

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2012:1426 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring...

CVE-2012-5121

Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to video layout...

Design/Logic Flaw

Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to video layout...

CVE-2012-5121

Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to video layout...

CVE-2012-5121

Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to video layout...

CVE-2012-5121

CVE-2012-5121 : A use-after-free vulnerability in Google Chrome prior to 23.0.1271.64 allows remote attackers to cause a denial of service (or possibly other impact) via vectors related to video layout. The CVSS v2 base score is 7.5 (Network attacker, no authentication, low attack complexity, par...

CVE-2012-5121

Removed by vendor...

PT-2013-1527 · Red Hat +3 · Fedora +4

Name of the Vulnerable Software and Affected Versions: Red Hat Enterprise Linux RHEL versions 5 and 6 Fedora versions 15 and 16 Description: The ExecShield feature in a certain Red Hat patch for the Linux kernel does not properly handle use of many shared libraries by a 32-bit executable file. Th...

BigAnt Server 2.52 Stack Overflow Vulnerability

BigAnt Server version 2.52 SP5 SEH stack overflow ROP-based exploit with ASLR and DEP bypass. Exploit Title: BigAnt Server 2.52 SP5 SEH Stack Overflow ROP-based exploit ASLR + DEP bypass Date: 03/11/2012 Exploit Author: Lorenzo Cantoni Vendor Homepage: http://www.bigantsoft.com/ Version: BigAnt...

Vm86 - Syscall Task Switch Kernel Panic (Denial of Service) Privilege Escalation

Vm86 - Syscall Task Switch Kernel Panic Denial of Service Privilege Escalation Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from...

CentOS Update for xulrunner CESA-2012:1361 centos6

Check for the Version of xulrunner OpenVAS Vulnerability Test CentOS Update for xulrunner CESA-2012:1361 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...