CVE-2019-5524

VMware Workstation 14.x before 14.1.6 and Fusion 10.x before 10.1.6 contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code on the host...

CVE-2019-5524

CVE-2019-5524 is an out-of-bounds write in the e1000 virtual network adapter that may allow a guest to execute code on the host. Affected products per provided docs: VMware Workstation 14.x (prior to 14.1.6) and VMware Fusion 10.x (prior to 10.1.6). The issue originates from the e1000 implementat...

CVE-2019-5524

VMware Workstation 14.x before 14.1.6 and Fusion 10.x before 10.1.6 contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code on the host...

VMware Workstation 14.x < 14.1.7 / 15.x < 15.0.4 Multiple Vulnerabilities (VMSA-2019-0005)

The version of VMware Workstation installed on the remote host is 14.x prior to 14.1.4 or 15.x prior to 15.0.1. It is, therefore, affected by multiple vulnerabilities, including: - An out-of-bounds read/write vulnerability and a Time-of-check Time-of-use TOCTOU vulnerability in the virtual USB 1....

Design/Logic Flaw

VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may lead to an information leak from host to guest...

CVE-2018-6982

CVE-2018-6982 affects VMware ESXi 6.5 and 6.7 (and related VMware products) due to uninitialized stack memory usage in the vmxnet3 virtual network adapter, which may leak information from host to guest when vmxnet3 is enabled. The Connected documents corroborate that ESXi 6.7 requires ESXi670-201...

CVE-2018-6981

VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG, VMware ESXi 6.0 without ESXi600-201811401-BG, VMware Workstation 15, VMware Workstation 14.1.3 or below, VMware Fusion 11, VMware Fusion 10.1.3 or below contain uninitialized stack memory usage in the...

VMware ESXi, Workstation and Fusion Uninitialized Stack Memory Usage Vulnerability

VMware ESXi, Workstation, and Fusion are all products of VMware, Inc. VMware ESXi is a server virtualization platform that can be installed directly on physical servers; VMware Workstation is a suite of virtual machine software; and Fusion is a suite of virtual machine software that is designed t...

Description of the System Center Virtual Machine Manager 2008 R2 hotfix rollup package: February 8, 2011

Description of the System Center Virtual Machine Manager 2008 R2 hotfix rollup package: February 8, 2011 INTRODUCTION This article describes the Microsoft System Center Virtual Machine Manager SCVMM 2008 R2 issues that are resolved in the hotfix rollup package that was released on February 8, 201...

Product update: Virtuozzo 7.0 Update 5 Hotfix 2 (7.0.5-642)

The Hotfix 2 for Virtuozzo 7.0 Update 5 provides stability and usability bug fixes. Vulnerability id: PSBM-70653 Unable to connect network adapter to a running VM. Vulnerability id: PSBM-70557 Ghost file limit was ignored when migrating containers. Vulnerability id: PSBM-70551 plooptrim could ent...

September 12, 2017—KB4038788 (OS Build 15063.608)

September 12, 2017—KB4038788 OS Build 15063.608 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where the color profiles do not revert to the user-specified settings after...

Microsoft Windows Kernel - IOCTL 0x120007 NsiGetParameter nsiproxynetio Pool Memory Disclosure

Microsoft Windows Kernel - IOCTL 0x120007 NsiGetParameter nsiproxynetio Pool Memory Disclosure / We have discovered that the handler of the 0x120007 IOCTL in nsiproxy.sys \.\Nsi device discloses portions of uninitialized pool memory to user-mode clients, likely due to output structure alignment...

Oracle VM VirtualBox - virtio-net Guest-to-Host Out-of-Bounds Write

Oracle VM VirtualBox - virtio-net Guest-to-Host Out-of-Bounds Write Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1136 This is a vulnerability that affects VirtualBox VMs that use a virtio network adapter which is a non-standard configuration. It permits the guest kernel to...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Update Rollup 2 for Microsoft Azure Hyper-V Recovery Manager Provider

Update Rollup 2 for Microsoft Azure Hyper-V Recovery Manager Provider This article describes the fixes that are included in Update Rollup 2 for Microsoft Azure Hyper-V Recovery Manager Provider. Update Rollup 2 for Microsoft Azure Hyper-V recovery Manager Provider version: 3.3.160.1 applies to al...

Citrix ReceiverReceiver Desktop Lock 4.5 - Authentication Bypass

Citrix ReceiverReceiver Desktop Lock 4.5 - Authentication Bypass thel3l Title: Citrix Receiver/Receiver Desktop Lock 4.5 Incorrect Access Control CVE: CVE-2016-9111 Date of Discovery: October 27 2016 Exploit Author: Rithwik Jayasimha Author Homepage/Contact: https://thel3l.me Vendor Name: Citrix...

The vulnerability of the Zyxel ZLD operating system, which allows a malicious individual to trigger a service failure.

The Zyxel ZyWALL USG 300 network firewall/routing system contains a vulnerability that, if exploited by a malicious actor, can cause malfunctions in the network adapter. This vulnerability allows a remote attacker to trigger malfunctions by sending a specially crafted ARP packet...

WifiChannelMonitor - Monitor APs and Wifi clients on selected channel (Monitor Mode) for Window

WifiChannelMonitor is a utility for Windows that captures wifi traffic on the channel you choose, using Microsoft Network Monitor capture driver in monitor mode, and displays extensive information about access points and the wifi clients connected to them. WifiChannelMonitor also allows you to vi...

Intel Network Adapter Diagnostic Driver Remote Code Execution Vulnerability

Intel Network Adapter Diagnostic Driver is a set of network adapter diagnostic tools from Intel USA. A remote code execution vulnerability exists in Intel Network Adapter Diagnostic Driver. An attacker could use this vulnerability to execute arbitrary code in the context of the kernel space, whic...

UBUNTU-CVE-2015-8744

QEMU aka Quick Emulator built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to crash issue. It occurs when a guest sends a Layer-2 packet smaller than 22 bytes. A privileged CAPSYSRAWIO guest user could use this flaw to crash the QEMU process instance resulting in DoS...