5122 matches found
openSUSE Security Update : mpv (openSUSE-2018-173)
This update for mpv fixes the following issues : MPV was updated to version 0.27.2 Security issues fixed : - CVE-2018-6360: Additional fix for where mpv allowed remote attackers to execute arbitrary code via a crafted website, because it read HTML documents containing VIDEO elements, and accepts...
Out-of-bounds memory read vulnerability in multiple Adobe products (CNVD-2018-05022)
Acrobat DC Continuous Track and so on are the products of the United States Ordoby Adobe.Acrobat DC Continuous Track is a desktop version of the continuous update of PDF solutions.Reader DC Continuous Track is a continuous update of the PDF reading tool. string literal parser is one of the string...
COM Port Redirection: How to map a client COM port to a server COM port
LPT and COM port settings are configurable via Studio in XenApp / XenDesktop 7.9 or newer. In versions 7.0 through 7.8, these settings were only configurable using the registry. For more information, see Port redirection policies in Citrix Documentation. Client COM port mapping allows devices...
Can't delete replica when it is being processed.
Challenge Replication job fails with error: Can't delete replica when it is being processed. Cause If a replication job failed before the replica VM is fully created, the job may fail attempting to delete the VM as part of an undo operation on the failed run. Solution This issue can generally be...
Walt Disney Per-Face Texture Mapping faceInfoSize Code Execution Vulnerability
Summary An exploitable out of bounds write vulnerability exists in version 2.2 of the Per Face Texture mapping application known as PTEX. The vulnerability is present in the reading of a file without proper parameter checking. The value read in, is not verified to be valid and its use can lead to...
GTScan - The Nmap Scanner for Telco
The Nmap Scanner for Telco. With the current focus on telecom security, there used tools in day to day IT side penetration testing should be extended to telecom as well. From here came the motivation for an nmap-like scanner but for telco The current security interconnect security controls might...
Fedora 27 : xen (2017-c432db2971)
xen: various flaws 1501391 multiple MSI mapping issues on x86 XSA-237 DMOP map/unmap missing argument checks XSA-238 hypervisor stack leak in x86 I/O intercept code XSA-239 Unlimited recursion in linear pagetable de-typing XSA-240 Stale TLB entry due to page type release race XSA-241 page type...
UBUNTU-CVE-2017-15127
A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs mapping could trigger a local denial of service BUG...
DEBIAN-CVE-2017-15127
A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs mapping could trigger a local denial of service BUG...
CVE-2017-15127
A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs mapping could trigger a local denial of service BUG...
[OST]French Canadian Keyboard not mapping properly to VDA from Mac
French Canadian special accent characters not displaying correctly when accessing a Windows 7 VDA from a Macclient device with Receiver for OSX 12.4. On a Mac with a French Canadian keyboard, the circumflex character ^ is not mapped as expected with Receiver Macversion 12 connecting to a Windows ...
EAP-7: Wrong privileges on multiple property files
It was found that properties based files of the management and the application realm configuration that contain user to role mapping are world readable allowing access to users and roles information to all the users logged in to the system...
EAP-7: Wrong privileges on multiple property files
It was found that properties based files of the management and the application realm configuration that contain user to role mapping are world readable allowing access to users and roles information to all the users logged in to the system...
mapping-solutions.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-477819 Description| Value ---|--- Affected Website:| mapping-solutions.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated...
Sony Playstation 4 4.05 FW - Local Kernel Exploit
Exploit for bsd platform in category local exploits PS4 4.05 Kernel Exploit --- Summary In this project you will find a full implementation of the "namedobj" kernel exploit for the PlayStation 4 on 4.05. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level...
Sony Playstation 4 (PS4) 4.05 - Jailbreak WebKit NamedObj Kernel Loader
Sony Playstation 4 PS4 4.05 - Jailbreak WebKit NamedObj Kernel Loader PS4 4.05 Kernel Exploit --- Summary In this project you will find a full implementation of the "namedobj" kernel exploit for the PlayStation 4 on 4.05. It will allow you to run arbitrary code as kernel, to allow jailbreaking an...
EAP-7: Wrong privileges on multiple property files
It was found that properties based files of the management and the application realm configuration that contain user to role mapping are world readable allowing access to users and roles information to all the users logged in to the system...
EAP-7: Wrong privileges on multiple property files
It was found that properties based files of the management and the application realm configuration that contain user to role mapping are world readable allowing access to users and roles information to all the users logged in to the system...
CVE-2017-8867
Elemental Path's CogniToys Dino smart toys through firmware version 0.0.794 use AES-128 with ECB mode to encrypt voice traffic between the device and remote server, allowing a malicious user to map encrypted traffic to a particular AES key index and gaining further access to eavesdrop on...
WordPress: code.wordpress.net subdomain Takeover
Hy Wordpress sec i found as it is posible to takeover this domain http://code.wordpress.net when you navigate it you will get this error msg: Warning! Domain mapping upgrade for this domain not found. Please log in and go to the Domains Upgrades page of your blog to use this domain. $ host...