5122 matches found
Biosense Webster Carto 3 System Vulnerabilities
1. EXECUTIVE SUMMARY Biosense Webster Inc. BWI, a Johnson & Johnson company, has produced a software update that applies operating system patches and anti-virus signature updates to close known vulnerabilities in the operating system of the CARTO 3 System, a 3D cardiovascular mapping platform...
Facebook Graph Metadata Crosswalk Mapping Proof Of Concept
!/usr/bin/perl Facebook 'Graph' metadata crosswalk mapping PoC 2018 Todor Donev https://ethical-hacker.org/ https://facebook.com/ethicalhackerorg Description: Criminal hacker CRACKER can take advantage of this weakness by creating a specialized database to manipulate facebook users with fake news...
Facebook Graph Phone Number Metadata Crosswalk Mapping Proof Of Concept
!/usr/bin/perl Facebook 'Graph' Phone Number metadata crosswalk mapping PoC 2018 Todor Donev https://ethical-hacker.org/ https://facebook.com/ethicalhackerorg Description: Criminal hacker CRACKER can take advantage of this weakness by creating a specialized database to manipulate facebook users...
Privilege escalation
An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory, aka "Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012,...
CVE-2018-2403
Under certain conditions, SAP Disclosure Management 10.1 allows an attacker to access information which would otherwise be restricted. It is possible for an authorized user to get SAP Disclosure Management to point a specific chapter type to a chapter the user has not been given access to...
KLA11221 Multiple vulnerabilities in Microsoft Windows
Multiple serious vulnerabilities have been found in Microsoft Windows . Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, cause denial of service and possibly to bypass security restrictions. Below is a complete list of...
DEBIAN-CVE-2018-9275
In checkusertoken in util.c in the Yubico PAM module aka pamyubico 2.18 through 2.25, successful logins can leak file descriptors to the auth mapping file, which can lead to information disclosure serial number of a device and/or DoS reaching the maximum number of file descriptors...
UBUNTU-CVE-2018-9275
In checkusertoken in util.c in the Yubico PAM module aka pamyubico 2.18 through 2.25, successful logins can leak file descriptors to the auth mapping file, which can lead to information disclosure serial number of a device and/or DoS reaching the maximum number of file descriptors...
The vulnerability of the Mapping::DoubleHash::clear function in the Sam2p image conversion utility allows a attacker to cause a service failure or exert other effects.
The vulnerability of the Mapping::DoubleHash::clear function in the Sam2p image conversion utility is caused by the operation being performed outside the buffer’s memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures or other adverse effects...
[SECURITY] Fedora 28 Update: kst-2.0.8-20.fc28
Kst is a real-time data viewing and plotting tool with basic data analysis functionality. Kst contains many powerful built-in features and is expandable with plugins and extensions. Main features of kst include: Robust plotting of live "streaming" data. Powerful keyboard and mouse plot...
SUSE-SU-2018:0678-1 Security update for xen
This update for xen fixes several issues. These security issues were fixed: - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative execution, aka 'Spectre' and 'Meltdown' attacks bsc1074562, bsc1068032 - CVE-2018-5683: The vgadrawtext function...
DEBIAN-CVE-2018-7740
The resvmaprelease function in mm/hugetlb.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service BUG via a crafted application that makes mmap system calls and has a large pgoff argument to the remapfilepages system call...
CVE-2017-6282
NVIDIA Tegra kernel driver contains a vulnerability in NVMAP where an attacker has the ability to write an arbitrary value to an arbitrary location which may lead to an escalation of privileges. This issue is rated as high...
CVE-2017-18208
The madvisewillneed function in the Linux kernel allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...
Keyboards Fail to Map in ICA Sessions From Non-Windows Receivers such as Mac, Linux and HTML5
After an in-place upgrade of Remote PC VDA's from version 5.6.400 to 7.6.300 keyboards would fail to map in ICA sessions from non-Windows Receivers such as Mac, Linux, and HTML5...
Xen gnttab_map_frame() Function Missing Mapping Check Upgrade Guest-to-host DoS (XSA-255)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches we...
Code injection
The madvisewillneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...
CVE-2017-18208
The madvisewillneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...
DEBIAN-CVE-2017-18208
The madvisewillneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...
CVE-2017-18208
CVE-2017-18208 affects the Linux kernel prior to 4.14.4. The vulnerability lies in the MADVISE_WILLNEED handling in mm/madvise.c, where triggering MADVISE_WILLNEED for a DAX mapping allows a local attacker to cause a denial of service via an infinite loop. The issue is local in scope and is tied ...