131 matches found
Turning an OBD-II reader into a USB / NFC attack tool
One of my favourite sorts of hardware hacking is making a device do something it was never intended for. It's creative, disruptive, and fun. Everyone has their own way of going about things. Different methodologies, habits, and skill sets mean that approaches will be diverse. This is how I work...
EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1475)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denia...
Toshiba VFAS3-4037PCE ASD Drive Detection
Binary data 757958.prm...
Toshiba VFAS3-4220PCE ASD Drive Detection
Binary data 757964.prm...
Toshiba VFAS3-4055PCE ASD Drive Detection
Binary data 757959.prm...
Toshiba VFAS3-4004PCE AS3 UL Type 12/IP55 Adjustable Speed Drive Detection
Binary data 757954.prm...
Toshiba VFAS3-4550PCE ASD Drive Detection
Binary data 757968.prm...
Toshiba VFAS3-4750PCE ASD Drive Detection
Binary data 757969.prm...
Toshiba VFAS3-4075PCE ASD Drive Detection
Binary data 757960.prm...
Toshiba VFAS3-4450PCE ASD Drive Detection
Binary data 757967.prm...
Fedora 29 : cairo (2018-3a195026f5)
This update lowers amount of color artefacts around glyphs when subpixel rendering is enabled for text by using freetype's default LCD filter. It also fixes a crash caused by using of wrong function for freeing of memory CVE-2018-19876. Note that Tenable Network Security has extracted the precedi...
Side-Channel Attack Allows Remote Listener to ‘Hear’ On-Screen Images
A stealthy side-channel tactic for digital surveillance has been uncovered, which allows an attacker to “hear” on-screen images. According to a team of academic researchers from Columbia University, the University of Michigan, University of Pennsylvania and Tel Aviv University, inaudible acoustic...
Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3360-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3360-1 advisory. It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive...
USN-3360-1: Linux kernel vulnerabilities
It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 It was discovered that the Linux kernel did not properly restrict access to /proc/iomem. A local attacker...
Ubuntu 16.10 : linux, linux-raspi2 vulnerabilities (USN-3359-1)
It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 Dmitry Vyukov, Andrey Konovalov, Florian Westphal, and Eric Dumazet discovered that the netfiler subsyste...
USN-3359-1: Linux kernel vulnerabilities
It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 Dmitry Vyukov, Andrey Konovalov, Florian Westphal, and Eric Dumazet discovered that the netfiler subsyste...
CVE-2013-4511
Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the 1 au1100fbfbmmap function in...
Design/Logic Flaw
The OLE Point of Sale OPOS drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSLineDisplay.ocx for Retail RP7 VFD Customer Display monitors, Retail Integrated 2x20 Display monitors, Retail Integrated 2x20 Complex...
CVE-2014-7889
HP OPOS OPOSLineDisplay.ocx in HP Point of Sale Windows PCs (before v1.13.003) is vulnerable to remote code execution due to an unspecified flaw in the Open method of OPOSLineDisplay.ocx. The HP Security Bulletin and ZDI advisory tie CVE-2014-7889 to remote code execution via OPOSLineDisplay.ocx ...
Kernel: HID: memory corruption via OOB write
A buffer overflow flaw was found in the way the Minibox PicoLCD driver handled Human Interface Device HID reports with an invalid size. An attacker with physical access to the system could use this flaw to crash the system or, potentially, escalate their privileges on the system...