10267 matches found
Java RMI Services Default Configuration Remote Loading
Added: 07/29/2011 Background The Java Remote Method Invocation RMI system allows an object running in one Java virtual machine to invoke methods on an object running in another Java virtual machine. RMI provides for remote communication between programs written in the Java programming language...
Java RMI Services Default Configuration Remote Loading
Added: 07/29/2011 Background The Java Remote Method Invocation RMI system allows an object running in one Java virtual machine to invoke methods on an object running in another Java virtual machine. RMI provides for remote communication between programs written in the Java programming language...
Java RMI Services Default Configuration Remote Loading
Added: 07/29/2011 Background The Java Remote Method Invocation RMI system allows an object running in one Java virtual machine to invoke methods on an object running in another Java virtual machine. RMI provides for remote communication between programs written in the Java programming language...
Java RMI Services Default Configuration Remote Loading
Added: 07/29/2011 Background The Java Remote Method Invocation RMI system allows an object running in one Java virtual machine to invoke methods on an object running in another Java virtual machine. RMI provides for remote communication between programs written in the Java programming language...
RHEL 5 : systemtap (RHSA-2011:1089)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1089 advisory. SystemTap is an instrumentation system for systems running the Linux kernel. The system allows developers to write scripts to collect data on the...
systemtap: signed module loading race condition
The insertmodule function in runtime/staprun/staprunfuncs.c in the systemtap runtime tool staprun in SystemTap before 1.6 does not properly validate a module when loading it, which allows local users to gain privileges via a race condition between the signature validation and the module...
Foxit Reader < 5.0.2.0718 Multiple Vulnerabilities
The version of Foxit Reader installed on the remote Windows host is prior to 5.0.2.0718. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in how dynamic-link library DLL files are located and loaded, specifically files dwmapi.dll, dwrite.dll, and msdrm.dll. The application...
Foxit Reader ActiveX Control Buffer Overflow and Insecure Library Loading Vulnerabilities
Two vulnerabilities have been discovered in Foxit Reader, which can be exploited by malicious people to compromise a user's system. 1 A boundary error in the FoxitReaderOCX ActiveX control when processing the "OpenFile" method can be exploited to cause a heap-based buffer overflow via an overly...
Foxit Reader Insecure Library Loading
Vulnerability title: Foxit Reader Insecure Library Loading CVSS Risk Rating: 2.9 Low Product: Foxit Reader Application Vendor: Foxit Vendor URL: http://www.foxitsoftware.com Public disclosure date: 7/21/2011 Discovered by: Jose Hernandez and Solutionary Engineering Research Team SERT Solutionary...
rgmanager: insecure library loading vulnerability
The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
Oracle Java Runtime Environment Insecure File Loading
A code execution vulnerability has been reported in Oracle's Java Runtime Environment. The vulnerability is due to a design flaw in the way that Java Runtime Environment loads configuration files. Attackers can exploit this vulnerability to set JVM options. Successful exploitation of this...
Java RMI Server Insecure Default Configuration Java Code Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Java RMI Server Insecure Default...
Java RMI - Server Insecure Default Configuration Java Code Execution (Metasploit)
$Id: javarmiserver.rb 13186 2011-07-15 20:44:08Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
Microsoft Visio insecure DLL loading
Unsafe DLL loading on associated files opening...
kernel: netns vs proto registration ordering
net/ipv4/ipgre.c in the Linux kernel before 2.6.34, when ipgre is configured as a module, allows remote attackers to cause a denial of service OOPS by sending a packet during module loading...
kernel: netns vs proto registration ordering
The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service OOPS by sending a packet during module loading...
PT-2012-1535 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.34 Description: The issue affects the tunnels implementation in the Linux kernel, allowing remote attackers to cause a denial of service by sending a packet during module loading when tunnel functionality is...
Fedora Update for gdk-pixbuf2 FEDORA-2011-8672
Check for the Version of gdk-pixbuf2 OpenVAS Vulnerability Test Fedora Update for gdk-pixbuf2 FEDORA-2011-8672 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
PT-2012-1534 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.34 Description: The issue affects the Linux kernel, specifically the ip gre module. It allows remote attackers to cause a denial of service by sending a packet during module loading, resulting in an OOPS...
XnView < 1.98.1 Insecure Executable Loading
The version of XnView installed on the remote Windows host is earlier than 1.98.1. As such, it reportedly uses unsafe methods for determining how to load executables. Specifically, there is an issue with the file search path, which could result in the insecure loading of executables when using th...