160 matches found
The vulnerability of the xfrm_replay_verify_len function in the Linux operating system allows a hacker to trigger a service failure or gain superuser privileges.
The vulnerability of the xfrmreplayverifylen function in the Linux operating system arises due to the lack of verification of the XFRMMSGNEWAE size after updates. Exploiting this vulnerability can allow a local attacker to gain superuser privileges or cause service failures...
UBUNTU-CVE-2017-7184
The xfrmreplayverifylen function in net/xfrm/xfrmuser.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRMMSGNEWAE update, which allows local users to obtain root privileges or cause a denial of service heap-based out-of-bounds access by leveraging the CAPNETADMI...
Oracle Linux 6 : kernel (ELSA-2017-0307)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-0307 advisory. - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes Frederic Sowa 1424626 1424628 CVE-2017-6074 - net sctp: validate chunk len before...
DOM-Based Cross-Site Scripting Vulnerability in the Advanced Management Module (AMM) - Lenovo Support US
No description provided...
Oracle Linux 7 : kernel (ELSA-2017-0086)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-0086 advisory. - net sctp: validate chunk len before actually using it Hangbin Liu 1399458 1399459 CVE-2016-9555 - net sctp: rename WORDTRUNC/ROUND macros Hangbin Liu...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3651)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3651 advisory. - sctp: validate chunk len before actually using it Marcelo Ricardo Leitner Orabug: 25142879 CVE-2016-9555 Tenable has extracted the preceding...
Unbreakable Enterprise kernel security update
2.6.39-400.293.1 - logging errors that get masked to EIO inside drivers/block/loop.c Manjunath Patil Orabug: 21962821 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23518650 - bio allocation failure due to biogetnrvecs Darrick J. Wong Orabug: 23852442 - mlx4:...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3648)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3648 advisory. - mpi: Fix NULL ptr dereference in mpipowm ver 3 Andrey Ryabinin Orabug: 25154096 CVE-2016-8650 CVE-2016-8650 - sctp: validate chunk len before...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.22 - ocfs2: fix trans extend while free cached blocks Junxiao Bi Orabug: 25136991 - ocfs2: fix trans extend while flush truncate log Junxiao Bi Orabug: 25136991 - ocfs2: extend enough credits for freeing one truncate record while replaying truncate records Xue jiufei Orabug...
GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow ("GHOST")
Lenovo Security Advisory: LEN-2015-007 Potential Impact: Execution of Arbitrary Code Severity: High Summary: A vulnerability has been found in the GNU C Library glibc nsshostnamedigitsdots function that allows both local and remote users to cause a buffer overflow in network function calls...
Tien Len - Southern Poker - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Tien Len - Southern Poker published at the 'play' market has multiple vulnerabilities...
git -- integer overflow
Debian reports: integer overflow due to a loop which adds more to "len"...
Python 2.7 check_multiply_size() Integer Overflow Vulnerability
Several functions within the imageop module are vulnerable to exploitable buffer overflows due to unsafe arithmetic in checkmultiplysize. The problem exists because the check to confirm that size == product / y / x does not take remainders into account. Title: Python 2.7 checkmultiplysize Integer...
DEBIAN-CVE-2015-3885
Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...
Integer overflow
Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...
CVE-2015-3885
Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...
Hashcat-Utils - Set of small utilities that are useful in advanced password cracking
Hashcat-utils are a set of small utilities that are useful in advanced password cracking. They all are packed into multiple stand-alone binaries. All of these utils are designed to execute only one specific function. Since they all work with STDIN and STDOUT you can group them into chains. The...
CVE-2013-4541
The usbdevicepostload function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setuplen or setupindex value...
UBUNTU-CVE-2011-4330
Stack-based buffer overflow in the hfsmac2asc function in fs/hfs/trans.c in the Linux kernel 2.6 allows local users to cause a denial of service crash and possibly execute arbitrary code via an HFS image with a crafted len field...
HTML Email Creator 2.1b668 - html Local Overwrite (SEH)
/ :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered and Exploited by dun HTML Email Creator or or 520 | | NOPs jmp 11 pop-pop-ret NOPs shellcode NOPs 56 4 4 40 343 73 Greetz: suN8Hclf, str0ke...