8 matches found
CVE-2024-20370
A vulnerability in the Cisco FXOS CLI feature on specific hardware platforms for Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to elevate their administrative privileges to root. The attacker would need...
Mysterious malware that re-installs itself infected over 45,000 Android Phones
Over the past few months, hundreds of Android users have been complaining online of a new piece of mysterious malware that hides on the infected devices and can reportedly reinstall itself even after users delete it, or factory reset their devices. Dubbed Xhelper , the malware has already infecte...
Denial Of Service (DoS)
Linux kernel is vulnerable to denial of service. A use-after-free UAF vulnerability in dogetmempolicy function in mm/mempolicy.c allows an attacker to cause a denial of service condition via malicious system calls...
SAP Mobile .healthcare.emr.v2 - Unauthorized access
Application: SAP EMR Unwired com.sap.mobile.healthcare.emr.v2, SAP Clinical Task Tracker com.sap.mobile.healthcare.ctt Vendor URL: http://www.sap.com Bugs: Unauthorized access Reported: 20.04.2013 Vendor response: 21.04.2013 Date of Public Advisory: 15.02.2015 Reference: SAP Security Note 2117079...
CVE-2006-5744
Multiple SQL injection vulnerabilities in Highwall Enterprise and Highwall Endpoint 4.0.2.11045 management interface allow remote attackers to execute arbitrary SQL commands via an Access Point with a crafted SSID, and via unspecified vectors related to a malicious system operator...
CVE-2006-5744
The CVE-2006-5744 entry concerns Highwall Enterprise and Highwall Endpoint, version 4.0.2.11045, with the management interface vulnerable to multiple SQL injection flaws. The root cause is the inability to properly validate inputs in the management interface, enabling remote attackers to execute ...
CVE-2006-5744
Multiple SQL injection vulnerabilities in Highwall Enterprise and Highwall Endpoint 4.0.2.11045 management interface allow remote attackers to execute arbitrary SQL commands via an Access Point with a crafted SSID, and via unspecified vectors related to a malicious system operator...
AT Computing atsar_linux 1.4 - File Manipulation
source: https://www.securityfocus.com/bid/1048/info atsar is a linux load monitoring software package released under the GPL by AT Computing. atsadc is a setuid root binary that is included in the atsar package. atsadc is setuid because it obtains informatin via /dev/kmem. atsadc will accept as a...