603 matches found
Important: Red Hat Security Advisory: openstack-nova security update
Updated openstack-nova packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...
openstack-nova: Host data leak through resize/migration
An information-exposure flaw was found in the OpenStack Compute nova resize and migrate functionality. An authenticated user could write a malicious qcow header to an ephemeral or root disk, referencing a block device as a backing file. With a subsequent resize or migration, file system content o...
CVE-2015-5514
Cross-site scripting XSS vulnerability in the Migrate module 7.x-2.x before 7.x-2.8 for Drupal, when the migrateui submodule is enabled, allows user-assisted remote attackers to inject arbitrary web script or HTML via a destination field label...
Cross site scripting
Cross-site scripting XSS vulnerability in the Migrate module 7.x-2.x before 7.x-2.8 for Drupal, when the migrateui submodule is enabled, allows user-assisted remote attackers to inject arbitrary web script or HTML via a destination field label...
CVE-2015-5514
Cross-site scripting XSS vulnerability in the Migrate module 7.x-2.x before 7.x-2.8 for Drupal, when the migrateui submodule is enabled, allows user-assisted remote attackers to inject arbitrary web script or HTML via a destination field label...
CVE-2015-5514
The CVE-2015-5514 issue affects the Drupal Migrate module (7.x-2.x) prior to 7.x-2.8, specifically when the migrate_ui submodule is enabled. The root cause is insufficient sanitization of destination field labels, enabling user-assisted remote attackers to inject arbitrary web script or HTML. Pra...
win32/xp [TR] sp3 MessageBox - shellcode 24 bytes
win32/xpTR sp3 MessageBox - 24Bytes Greetz : Bomberman&T-Rex Author : B3mB4m Proof : http://imgur.com/727ALiY I know there is nothing new.I wrote just to say "I am back" .. -Coming soon- arwin.c v2 .. Polymorphic shellcodes .. Win7,Win8,Win10 shellcodes .. RunPE & Migrate ? !!If bomberman allowed...
Fedora 22 : drupal7-migrate-2.8-1.fc22 (2015-11265)
7.x-2.8 See SA-CONTRIB-2015-130 Features and enhancements - Issue 2379289: migrate-import --update does not seem to work as expected, if map is not joinable, due to highwater field? - Issue 2403643: Migration::applyMappings unable to handle multifield subfields - Issue 2472045: Add language...
Fedora 21 : drupal7-migrate-2.8-1.fc21 (2015-11314)
7.x-2.8 See SA-CONTRIB-2015-130 Features and enhancements - Issue 2379289: migrate-import --update does not seem to work as expected, if map is not joinable, due to highwater field? - Issue 2403643: Migration::applyMappings unable to handle multifield subfields - Issue 2472045: Add language...
Fedora Update for drupal7-migrate FEDORA-2015-11314
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for drupal7-migrate FEDORA-2015-11265
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Drupal Migrate Module Cross-Site Scripting Vulnerability
Drupal is a free, open-source content management system developed in the PHP language.Migrate is a module used to port content from other CMSs to Drupal's framework. A cross-site scripting vulnerability exists in the Drupal Migrate module, which allows remote attackers to exploit the vulnerabilit...
Migrate - Less critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-130
This module enables you to manage migration processes through the administrative UI. The module doesn't sufficiently sanitize destination field labels thereby exposing a Cross Site Scripting vulnerability XSS. This vulnerability is mitigated by the fact that an attacker must have a role with...
PT-2014-8426 · Red Hat +4 · Libvirt +5
Name of the Vulnerable Software and Affected Versions: libvirt affected versions not specified Description: The issue is related to the qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions in qemu/qemu driver.c. These functions do not unlock the domain when an ACL check fails, allowing...
Fedora 20 : xen-4.3.3-6.fc20 (2014-15995)
Excessive checking in compatibility mode hypercall argument translation, Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor, fix segfaults and failures in xl migrate --debug Note that Tenable Network Security has extracted the preceding description block directly from the...
Project administrator is able to migrate Permission Scheme
panel:title=Atlassian status update as of 12th July 2018 Hello Customers, We’ve addressed this bug and the fix is available on all version of Jira Service Desk 3.9 and above. For more information please refer to the documentation here...
IDEAL Administration 2009 9.7 - Local Buffer Overflow Exploit
No description provided by source. !/usr/bin/env python IDEAL Administration 2009 v9.7 Local Buffer Overflow Exploit Found By: DrIDE Usage: Migrate - Open Migration Project - Bind Shell Download: www.pointdev.com Tested On: Windows XPSP3 windows/shellbindtcp - 696 bytes Encoder: x86/alphamixed...
IDEAL Administration 2011 11.4 - Local SEH Buffer Overflow Exploit
No description provided by source. !/usr/bin/env python IDEAL Administration 2011 v11.4 Local SEH Buffer Overflow Exploit Found By: DrIDE Usage: Migrate - Open Migration Project - Bind Shell Download: www.pointdev.com Tested On: Windows XPSP3 Notes: Another version, another exploit... come on guy...
F5 Networks ARX Data Manager Unsupported Version Detection
The remote host is running F5 Networks ARX Data Manager. According to the vendor, this product is no longer supported and security fixes will not be released. As a result, it is likely to contain security vulnerabilities. %NASLMINLEVEL 70300 C Tenable, Inc. include'deprecatednasllevel.inc';...
Fedora 19 : openstack-nova-2013.1.5-1.fc19 (2014-4188)
Update to stable/grizzly release 2013.1.5 - Keep XenAPI security groups through migrate and resize - CVE-2013-4497 - Secure directory permissions in snapshots - CVE-2013-7048 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisor...