Lucene search
K

5121 matches found

CNVD
CNVD
added 2016/06/13 12:0 a.m.4 views

HPE Discovery and Dependency Mapping Inventory Arbitrary Command Execution Vulnerability

HPE Discovery and Dependency Mapping Inventory DDMi is a Hewlett Packard Enterprise HPE solution for automating the discovery and logging of client device information to help IT departments manage and control costs and risks. Apache Commons Collections ACC is a U.S. Apache Apache Software...

8.8CVSS7.7AI score0.02371EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2016/06/10 12:0 a.m.35 views

Apple Mac OSX Kernel - Null Pointer Dereference in AppleMuxControl.kext

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=783 The method AppleGraphicsControlClient::checkArguments does actually appear to test whether the pointer at this+0xd8 is non-null, but uses it anyway : We can race external methods which call this with another thread calling...

7AI score
Exploits0
OSV
OSV
added 2016/06/08 3:0 p.m.3 views

CVE-2016-4369

HPE Discovery and Dependency Mapping Inventory DDMi 9.30, 9.31, 9.32, 9.32 update 1, 9.32 update 2, and 9.32 update 3 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library...

8.8CVSS6AI score
Exploits0References1
OSV
OSV
added 2016/06/07 2:6 p.m.2 views

UBUNTU-CVE-2015-5723

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...

7.8CVSS7.4AI score0.00381EPSS
Exploits0References3
OSV
OSV
added 2016/06/02 12:56 p.m.5 views

SUSE-RU-2016:1479-1 Recommended update for samba

This update for Samba provides the following fixes: - Fix libads' record session expiry for spnego sasl binds. bsc979268 - Fix NTSTATUSACCESSDENIED when accessing windows public share. - Only validate MIC if 'map to guest' is not being used. - NetAPP SMB servers don't negotiate NTLMSSPSIGN...

5.9CVSS6.6AI score0.08305EPSS
Exploits0References4
exploitpack
exploitpack
added 2016/05/29 12:0 a.m.27 views

FreeBSD Kernel (FreeBSD 10.2 x64) - sendmsg Kernel Heap Overflow (PoC)

FreeBSD Kernel FreeBSD 10.2 x64 - sendmsg Kernel Heap Overflow PoC include include include include include include include include include include void atagetxportvoid; int kprintfconst char fmt, ...; char ostype; void resolvechar name struct kldsymlookup ksym; ksym.version = sizeofksym;...

0.1AI score
Exploits0
NVD
NVD
added 2016/05/18 2:59 p.m.22 views

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.4CVSS8.3AI score0.00547EPSS
Exploits0References5
OSV
OSV
added 2016/05/18 2:59 p.m.9 views

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.4CVSS8.7AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2016/05/18 2:59 p.m.22 views

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.4CVSS7.2AI score0.00547EPSS
Exploits0References2
OSV
OSV
added 2016/05/18 2:59 p.m.1 views

UBUNTU-CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.4CVSS7.3AI score0.00547EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/05/18 2:0 p.m.22 views

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.3AI score0.00547EPSS
Exploits0References5
CVE
CVE
added 2016/05/18 2:0 p.m.74 views

CVE-2016-4480

CVE-2016-4480 affects Xen 4.6.x and earlier. The vulnerability in arch/x86/mm/guest_walk.c mishandles the PS bit in L3/L4 Page Tables, potentially enabling local guest OS users to gain privileges via a crafted memory mapping. Exploitation is local with low complexity; impact is privilege escalati...

8.4CVSS8.2AI score0.00547EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2016/05/18 2:0 p.m.27 views

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.4CVSS4.8AI score0.00547EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2016/05/17 2:18 p.m.30 views

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

8.4CVSS4.8AI score0.00547EPSS
Exploits0References2
CNVD
CNVD
added 2016/05/12 12:0 a.m.5 views

Microsoft Windows DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows DirectX graphics kernel subsystem dxgkrnl.sys, which arises from a program that fails to properly handle objects in memory and...

7.8CVSS6.7AI score0.01497EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/05/10 6:43 p.m.4 views

kernel: kvm: reporting emulation failures to userspace

It was found that reporting emulation failures to user space could lead to either a local CVE-2014-7842 or a L2-L1 CVE-2010-5313 denial of service. In the case of a local denial of service, an attacker must have access to the MMIO area or be able to access an I/O port. Please note that on certain...

4.9CVSS6.6AI score0.00325EPSS
Exploits0References4
0day.today
0day.today
added 2016/05/09 12:0 a.m.48 views

ASUS Memory Mapping Driver (ASMMAP/ASMMAP64) - Physical Memory Read/Write

Exploit for windows platform in category dos / poc / Source: http://rol.im/asux/ ASUS Memory Mapping Driver ASMMAP/ASMMAP64: Physical Memory Read/Write PoC by slipstream/RoL - https://twitter.com/TheWack0lian - http://rol.im/chat/ The ASUS "Generic Function Service" includes a couple of drivers,...

7AI score
Exploits0
exploitpack
exploitpack
added 2016/05/09 12:0 a.m.42 views

ASUS Memory Mapping Driver (ASMMAPASMMAP64) - Physical Memory ReadWrite

ASUS Memory Mapping Driver ASMMAPASMMAP64 - Physical Memory ReadWrite / Source: http://rol.im/asux/ ASUS Memory Mapping Driver ASMMAP/ASMMAP64: Physical Memory Read/Write PoC by slipstream/RoL - https://twitter.com/TheWack0lian - http://rol.im/chat/ The ASUS "Generic Function Service" includes a...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/05/09 12:0 a.m.81 views

ASUS Memory Mapping Driver (ASMMAP/ASMMAP64) - Physical Memory Read/Write

/ Source: http://rol.im/asux/ ASUS Memory Mapping Driver ASMMAP/ASMMAP64: Physical Memory Read/Write PoC by slipstream/RoL - https://twitter.com/TheWack0lian - http://rol.im/chat/ The ASUS "Generic Function Service" includes a couple of drivers, ASMMAP.sys / ASMMAP64.sys, the version resources...

7.4AI score
Exploits0
Cent OS
Cent OS
added 2016/05/04 3:7 a.m.89 views

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2016:0715 An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.2CVSS6.5AI score0.00624EPSS
Exploits0References7
Rows per page
Query Builder