5122 matches found
PT-2017-4077 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 2.6.38 through 4.14 Description: The issue is related to the touch pmd function in the Linux Kernel, which can be exploited due to incorrect synchronization when using a shared resource. This can allow an attacker to...
Citrix *Client Folder Redirection* (CFR) is not *Folder Redirection*
Client Folder Redirection, Folder Redirection and Special Folder Redirection are not the same. Client Folder Redirection CFR provides access to client-side folders in an ICA session while not having to redirect complete client-side drives. Support throughClient Drive Mapping CDM has enabled...
Multiple SUSE Products SuSEfirewall2 Package Security Bypass Vulnerability
SUSE Linux Enterprise SLE Desktop and others are products of SUSE Corporation, U.S.A. SUSE Linux Enterprise SLE Desktop is an enterprise Linux desktop edition system.SLE Server is a server edition Linux system. SuSEfirewall2 package is one of the packages with network data filtering. A security...
CVE-2017-11073
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/athpktlog/cld to user space...
Code injection
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/athpktlog/cld to user space...
CVE-2017-11073
CVE-2017-11073 is a Qualcomm Networking subsystem vulnerability affecting Android on MSM/CAF/Linux kernel builds. The qcacld pktlog allows a local attacker to map memory to user space via /proc/ath_pktlog/cld, enabling potentially exposure or modification of memory. Public details specify LOCAL a...
CVE-2017-11073
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/athpktlog/cld to user space...
Faraday v2.7 - Collaborative Penetration Test and Vulnerability Management Platform
Faraday is the Integrated Multiuser Risk Environment you have alwasy been looking for! It maps and leverages all the data you generate in real time , letting you track and understand your audits. Our dashboard for CISOs and managers uncovers the risks and impacts and risks being assessed by the...
Design/Logic Flaw
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "APFS" component. It does not properly restrict the DMA mapping time of FileVault decryption buffers, which allows attackers to read cleartext APFS data via a crafted Thunderbolt adapter...
CVE-2017-13786
APFS DMA mapping timing vulnerability in macOS with versions before 10.13.1. The issue allows reading cleartext APFS data via a crafted Thunderbolt adapter due to insufficient restriction of DMA mapping time for FileVault decryption buffers. Apple’s security update 10.13.1 (and related Sierra/El ...
CVE-2017-13786
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "APFS" component. It does not properly restrict the DMA mapping time of FileVault decryption buffers, which allows attackers to read cleartext APFS data via a crafted Thunderbolt adapter...
Striker - Offensive Information And Vulnerability Scanner
Striker is an offensive information and vulnerability scanner. Features Just supply a domain name to Striker and it will automatically do the following for you: Check and Bypass Cloudflare Retrieve Server and Powered by Headers Fingerprint the operating system of Web Server Detect CMS 197+ CMSs a...
Xen Hypervisor Translated Guest Self-linear Shadow Mapping Handling Guest-to-Host Privilege Escalation (XSA-243)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an unspecified flaw in mm/shadow/multi.c that is triggered during the handling of self-linear shadow mappings with translated guests. This may allow an attacker on the guest to cause a...
CVE-2017-15590
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...
ALPINE-CVE-2017-15590
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...
CVE-2017-15590
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...
CVE-2017-15590
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...
Denial of service
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...
CVE-2017-15590
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...
DEBIAN-CVE-2017-15590
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...