USN-2513-1: Linux kernel vulnerabilities

A flaw was discovered in the Kernel Virtual Machine's KVM emulation of the SYSTENTER instruction when the guest OS does not initialize the SYSENTER MSRs. A guest OS user could exploit this flaw to cause a denial of service of the guest OS crash or potentially gain privileges on the guest OS...

Mozilla Firefox/Firefox ESR/Thunderbird DLL Load Arbitrary Code Execution Vulnerability

Mozilla Firefox/Thunderbird is a web browser/email client released by Mozilla. An arbitrary code execution vulnerability exists in the Mozilla Firefox/Firefox ESR/Thunderbird DLL loading, which can be exploited by an attacker to execute arbitrary code in the context of a user of an affected...

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA-2015-11 Miscellaneous memory safety hazards rv:36.0 / rv:31.5 MFSA-2015-12 Invoking Mozilla updater will load locally stored DLL files MFSA-2015-13 Appended period to hostnames can bypass HPKP and HSTS protections MFSA-2015-14 Malicious WebGL content crash when...

IBM Tivoli Storage Manager Elevation of Privilege Vulnerability

IBM Tivoli Storage Manager TSM Client is centralized, policy-based, enterprise-class, data backup and recovery software. A security vulnerability in the dsmtca file in IBM TSM's Client, which stems from the program's failure to properly restrict the loading of shared-library, can be exploited to...

What is HTTP/2 ? Next-Gen Protocol For Faster and Safer Internet

Good news for Internet folks! Get Ready as the entire web you know is about to change. The new and long-awaited version of HTTP took a major step toward becoming a reality on Wednesday – It is been officially finalized and approved. Mark Nottingham, chairman of the Internet Engineering Task Force...

Design/Logic Flaw

dsmtca in the client in IBM Tivoli Storage Manager TSM 6.3 before 6.3.2.3, 6.4 before 6.4.2.2, and 7.1 before 7.1.1.3 does not properly restrict shared-library loading, which allows local users to gain privileges via a crafted DSO file...

busybox restrictions bypass

Modules loading restrictions bypass...

SSRF vulnerability of the mining experience-the vulnerability warning-the black bar safety net

SSRF overview SSRFServer-Side Request Forgery:server side request forgery is a by the attacker structure is formed by the service terminal initiating the request of a security vulnerability. Under normal circumstances, the SSRF attack the target from outside the network cannot access the internal...

DEBIAN-CVE-2014-9657

The ttfaceloadhdmx function in truetype/ttpload.c in FreeType before 2.5.4 does not establish a minimum record size, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted TrueType font...

CVE-2014-9657

The ttfaceloadhdmx function in truetype/ttpload.c in FreeType before 2.5.4 does not establish a minimum record size, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted TrueType font...

Zend PHP Auto Loading Mechanism Local File Inclusion

This vulnerability is due to unexpected behavior of the Auto-Loading mechanism in the PHP language. Successful exploitation of this vulnerability could allow a remote attacker to include arbitrary files found on the server and could possibly lead to remote code execution...

USN-2458-3 firefox regression

USN-2458-1 fixed vulnerabilities in Firefox. This update introduced a regression which could make websites that use CSP fail to load under some circumstances. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Christian Holler, Patrick McManus, Christoph...

Sysmon v2.0 - System Activity Monitor for Windows

System Monitor Sysmon is a Windows system service and device driver that, once installed on a system, remains resident across system reboots to monitor and log system activity to the Windows event log. It provides detailed information about process creations, network connections, and changes to...

iOS 8.1.2 Mail.app Injection - Load remote content without user interaction

This exploit allows an attacker to load remote website inside iOS's native Mail.app without any user interaction other than opening the HTML e-mail message containing the payload. Example: After opening the malicious message: http://i.imgur.com/GPMqdOv.jpg iPhone http://i.imgur.com/zJ7W24N.jpg iP...

CorelCAD 'TD_Mgd_3.08_9.dll' DLL Loading Arbitrary Code Execution Vulnerability

CorelCAD is a 3D drawing software. An arbitrary code execution vulnerability exists in CorelCAD 'TDMgd3.089.dll' DLL loading due to CorelCAD failing to properly load the 'TDMgd3.089.dll' file. Allows an attacker to construct a malicious DLL file that loads arbitrary code in the context of the...

VideoStudio Pro X7 'u32ZLib.dll' DLL Loading Arbitrary Code Execution Vulnerability

VideoStudio Pro X7 is a video editing software. An arbitrary code execution vulnerability exists in VideoStudio Pro X7 'u32ZLib.dll' DLL loading due to VideoStudio Pro X7 failing to properly load the "u32ZLib.dll" file. This allows an attacker to construct a malicious DLL file to load arbitrary...

Corel Software DLL Hijacking Vulnerability Allows Hackers to Execute Malicious Code

Security researchers have disclosed local zero day DLL hijacking vulnerabilities in several applications developed by Corel Software that could allow an attacker to execute arbitrary commands on victims' computer, potentially affecting more than 100 million users. The security holes were publicly...

0-Days Exposed in Several Corel Applications

UPDATE–Researchers from Core Security have disclosed DLL hijacking vulnerabilities in several applications made by Corel Software after the vendor didn’t respond to Core’s notifications about the flaws. There are no patches available for the bugs, which can allow remote code execution. Corel sell...

UBUNTU-CVE-2014-9644

The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a parenthesized module template expression in the salgname field, as demonstrated by the vfataes expression, a different vulnerability than...

VulnCheck KEV: CVE-2014-0751

The CIMPLICITY Web-based access component, CimWebServer, does not check the location of shell files being loaded into the system. By modifying the source location, an attacker could send shell code to the CimWebServer which would deploy the nefarious files as part of any SCADA project. This...