5315 matches found
Memory corruption
Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...
CVE-2014-2894
Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...
UBUNTU-CVE-2014-2894
Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...
PT-2014-4951 · Qemu +5 · Qemu +5
Name of the Vulnerable Software and Affected Versions: QEMU versions prior to 2.0 Description: The issue is caused by an off-by-one error in the cmd smart function in the smart self test in hw/ide/core.c. This error can be triggered by a SMART EXECUTE OFFLINE command, leading to a buffer underflo...
CVE-2014-1895
Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...
Buffer overflow
Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...
CVE-2014-2386
Multiple off-by-one errors in Icinga, possibly 1.10.2 and earlier, allow remote attackers to cause a denial of service crash via unspecified vectors to the 1 displaynavtable, 2 printexportlink, 3 pagenumselector, or 4 pagelimitselector function in cgi/cgiutils.c or 5 statuspagenumselector functio...
CVE-2014-2386
Multiple off-by-one errors in Icinga, possibly 1.10.2 and earlier, allow remote attackers to cause a denial of service crash via unspecified vectors to the 1 displaynavtable, 2 printexportlink, 3 pagenumselector, or 4 pagelimitselector function in cgi/cgiutils.c or 5 statuspagenumselector functio...
Stack overflow
Multiple off-by-one errors in Icinga, possibly 1.10.2 and earlier, allow remote attackers to cause a denial of service crash via unspecified vectors to the 1 displaynavtable, 2 printexportlink, 3 pagenumselector, or 4 pagelimitselector function in cgi/cgiutils.c or 5 statuspagenumselector functio...
CVE-2014-2386
Removed by vendor...
CVE-2014-2386
CVE-2014-2386 affects the Icinga monitoring system. The connected documents confirm multiple off-by-one/buffer overflow issues in the CGI helpers, specifically in files cgi/cgiutils.c (display_nav_table, print_export_link, page_num_selector, page_limit_selector) and cgi/status.c (status_page_num_...
Nagios core CGI Process_cgivars Off-By-One (CVE-2013-7108)
There exists an Off-By-One flaw in Nagios Core. The problem is caused by improper boundary check when validating the parameters passed to the application. A remote authenticated attacker could exploit this vulnerability by sending a request with a crafted long parameter value resulting in the CGI...
Fedora 19 : xen-4.2.3-15.fc19 (2014-2188)
three security fixes: integer overflow in several XSM/Flask hypercalls XSA-84 Off-by-one error in FLASKAVCCACHESTAT hypercall XSA-85 libvchan failure handling malicious ring indexes XSA-86 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
kernel: security and bugfix update (important)
The Linux kernel was updated to fix various bugs and security issues: - mm/page-writeback.c: do not count anon pages as dirtyable memory reclaim stalls. - mm/page-writeback.c: fix dirtybalancereserve subtraction from dirtyable memory reclaim stalls. - compatsysrecvmmsg X32 fix bnc860993...
CBI arrests Indian mastermind behind Hire-a-Hacker service on FBI tip-off
For the first time in history, Indian Law Enforcement Agency 'Central Bureau of Investigation' CBI has arrested a Cyber criminal after getting a tip-off from the US Federal Bureau of Investigation FBI. 33-Year-old Amit Vikram Tiwari, son of an Indian Army colonel and an engineering dropout, who...
[IPhone Analyzer] IPhone Forensics Tool
iPhone Analzyer allows you to forensically examine or recover date from in iOS device. It principally works by importing backups produced by iTunes or third party software, and providing you with a rich interface to explore, analyse and recover data in human readable formats. Because it works fro...
CVE-2013-7108
Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or cause a denial of service crash via a long string in the last key value in...
CVE-2013-7205
Off-by-one error in the processcgivars function in contrib/daemonchk.c in Nagios Core 3.5.1, 4.0.2, and earlier allows remote authenticated users to obtain sensitive information from process memory or cause a denial of service crash via a long string in the last key value in the variable list,...
CVE-2013-7108
Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or cause a denial of service crash via a long string in the last key value in...
CVE-2013-7108
Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or cause a denial of service crash via a long string in the last key value in...