Lucene search
K

5610 matches found

Exploit DB
Exploit DB
added 2015/06/01 12:0 a.m.23 views

Linux Kernel (PonyOS 3.0) - ELF Loader Local Privilege Escalation

Exploit Title: PonyOS = 3.0 ELF loader privilege escalation Google Dork: if applicable Date: 29th May 2015 Exploit Author: Hacker Fantastic Vendor Homepage: www.ponyos.org Software Link: download link if available Version: 3.0 Tested on: 3.0 CVE : N/A Source:...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2015/05/05 12:0 a.m.90 views

[USN-2590-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-2590-1 April 30, 2015 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.9CVSS0.4AI score0.03052EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/05/01 12:0 a.m.66 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2588-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2588-1 advisory. A stack overflow was discovered in the the microcode loader for the intel x86 platform. A local attacker could exploit this flaw to cause a denial of...

6.9CVSS7.2AI score0.03052EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/05/01 12:0 a.m.42 views

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2587-1)

A stack overflow was discovered in the the microcode loader for the intel x86 platform. A local attacker could exploit this flaw to cause a denial of service kernel crash or to potentially execute code with kernel privileges. CVE-2015-2666 It was discovered that the Linux kernel's IPv6 networking...

6.9CVSS7AI score0.03052EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/05/01 12:0 a.m.51 views

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-2589-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2589-1 advisory. Jan Beulich discovered the Xen virtual machine subsystem of the Linux kernel did not properly restrict access to PCI command registers. A local guest use...

6.9CVSS7.1AI score0.03052EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2015/05/01 12:0 a.m.329 views

Ubuntu 14.10 : linux vulnerabilities (USN-2590-1)

Jan Beulich discovered the Xen virtual machine subsystem of the Linux kernel did not properly restrict access to PCI command registers. A local guest user could exploit this flaw to cause a denial of service host crash. CVE-2015-2150 A stack overflow was discovered in the the microcode loader for...

6.9CVSS7AI score0.03052EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2015/05/01 12:0 a.m.43 views

Ubuntu: Security Advisory (USN-2589-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.1AI score0.03052EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2015/04/30 8:34 a.m.96 views

USN-2590-1: Linux kernel vulnerabilities

Jan Beulich discovered the Xen virtual machine subsystem of the Linux kernel did not properly restrict access to PCI command registers. A local guest user could exploit this flaw to cause a denial of service host crash. CVE-2015-2150 A stack overflow was discovered in the the microcode loader for...

6.9CVSS6.9AI score0.03052EPSS
Exploits1
Ubuntu
Ubuntu
added 2015/04/30 8:31 a.m.63 views

USN-2589-1: Linux kernel (Utopic HWE) vulnerabilities

Jan Beulich discovered the Xen virtual machine subsystem of the Linux kernel did not properly restrict access to PCI command registers. A local guest user could exploit this flaw to cause a denial of service host crash. CVE-2015-2150 A stack overflow was discovered in the the microcode loader for...

6.9CVSS6.9AI score0.03052EPSS
Exploits1
Ubuntu
Ubuntu
added 2015/04/30 8:17 a.m.89 views

USN-2588-1: Linux kernel vulnerabilities

A stack overflow was discovered in the the microcode loader for the intel x86 platform. A local attacker could exploit this flaw to cause a denial of service kernel crash or to potentially execute code with kernel privileges. CVE-2015-2666 It was discovered that the Linux kernel's IPv6 networking...

6.9CVSS6.9AI score0.03052EPSS
Exploits1
OSV
OSV
added 2015/04/30 8:17 a.m.3 views

USN-2588-1 linux vulnerabilities

A stack overflow was discovered in the the microcode loader for the intel x86 platform. A local attacker could exploit this flaw to cause a denial of service kernel crash or to potentially execute code with kernel privileges. CVE-2015-2666 It was discovered that the Linux kernel's IPv6 networking...

6.9CVSS6.9AI score0.03052EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2015/04/30 8:12 a.m.84 views

USN-2587-1: Linux kernel (Trusty HWE) vulnerabilities

A stack overflow was discovered in the the microcode loader for the intel x86 platform. A local attacker could exploit this flaw to cause a denial of service kernel crash or to potentially execute code with kernel privileges. CVE-2015-2666 It was discovered that the Linux kernel's IPv6 networking...

6.9CVSS6.9AI score0.03052EPSS
Exploits1
exploitpack
exploitpack
added 2015/04/21 12:0 a.m.60 views

Apple Mac OSX - Local Denial of Service

Apple Mac OSX - Local Denial of Service / 2015, Maxime Villard, CVE-2015-1100 Local DoS caused by a missing limit check in the fat loader of the Mac OS X Kernel. $ gcc -o Mac-OS-XFat-DoS Mac-OS-XFat-DoS.c $ ./Mac-OS-XFat-DoS BINARY-NAME Obtained from: http://m00nbsd.net/garbage/Mac-OS-XFat-DoS.c...

5.4CVSS7.3AI score0.0104EPSS
Exploits3
Exploit DB
Exploit DB
added 2015/04/21 12:0 a.m.44 views

Apple Mac OSX - Local Denial of Service

/ 2015, Maxime Villard, CVE-2015-1100 Local DoS caused by a missing limit check in the fat loader of the Mac OS X Kernel. $ gcc -o Mac-OS-XFat-DoS Mac-OS-XFat-DoS.c $ ./Mac-OS-XFat-DoS BINARY-NAME Obtained from: http://m00nbsd.net/garbage/Mac-OS-XFat-DoS.c Analysis:...

5.4CVSS7.5AI score0.0104EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2015/04/01 1:17 p.m.5 views

Mozilla: resource: // documents can load privileged pages (MFSA 2015-33)

A flaw was found in the way documents were loaded via resource URLs in, for example, Mozilla's PDF.js PDF file viewer. An attacker could use this flaw to bypass certain restrictions and under certain conditions even execute arbitrary code with the privileges of the user running Firefox...

5CVSS7.6AI score0.67135EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2015/03/17 5:58 p.m.3 views

freetype: integer overflow in tt_face_load_font_dir() leading to out-of-bounds read

sfnt/ttload.c in FreeType before 2.5.4 proceeds with offset+length calculations without restricting the values, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via a crafted SFNT table...

6.8CVSS6AI score0.03487EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/03/05 12:7 p.m.4 views

tboot: argument measurement vulnerability for GRUB2+ELF kernels

Trusted Boot tboot before 1.8.2 has a 'loader.c' Security Bypass Vulnerability...

5.5CVSS6.1AI score0.00386EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/03/05 12:0 a.m.261 views

Fedora 20 : php-5.5.22-1.fc20 (2015-2328)

19 Feb 2015, PHP 5.5.22 Core : - Fixed bug 67068 getClosure returns somethings that's not a closure. Danack at basereality dot com - Fixed bug 68925 Mitigation for CVE-2015-0235 ' GHOST: glibc gethostbyname buffer overflow. Stas - Fixed bug 68942 Use after free vulnerability in unserialize with...

10CVSS7.7AI score0.94859EPSS
Exploits38References1
RedHat Linux
RedHat Linux
added 2015/02/24 1:44 p.m.5 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/24 1:20 p.m.3 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
Rows per page
Query Builder