CVE-2010-2793

Race condition in the SPICE aka spice-activex plug-in for Internet Explorer in Red Hat Enterprise Virtualization RHEV Manager before 2.2.4 allows local users to create a certain named pipe, and consequently gain privileges, via vectors involving knowledge of the name of this named pipe, in...

spice activex/spicec named pipe races

Race condition in the SPICE aka spice-activex plug-in for Internet Explorer in Red Hat Enterprise Virtualization RHEV Manager before 2.2.4 allows local users to create a certain named pipe, and consequently gain privileges, via vectors involving knowledge of the name of this named pipe, in...

VulnCheck KEV: CVE-2008-0600

The vmsplicetopipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010...

CVE-2010-2554

The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 has incorrect ACLs on its registry keys, which allows local users to gain privileges via vectors involving a named pipe and impersonation, aka "Tracing Registry Key ACL...

MS07-029 Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB)

This module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. This modul...

Debian: Security Advisory (DSA-2066-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 12 : samba-3.4.5-55.fc12 (2010-1218)

Tue Jan 26 2010 Guenther Deschner - 3.4.5-55 - Security Release, fixes CVE-2009-3297 - resolves: 532940 - Tue Jan 26 2010 Guenther Deschner - 3.4.5-54 - Fix crash in pdbedit - resolves: 541267 - Tue Jan 19 2010 Guenther Deschner - 3.4.5-53 - Update to 3.4.5 - Thu Jan 14 2010 Guenther Deschner -...

Wireshark SMB PIPE Dissector Denial of Service Vulnerability - Windows

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

Wireshark SMB PIPE Dissector Denial of Service Vulnerability (Windows)

This host is installed with Wireshark and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodwiresharksmbpipedissectordosvulnwin.nasl 5401 2017-02-23 09:46:07Z teissa $ Wireshark SMB PIPE Dissector Denial of Service Vulnerability Windows Authors: Antu Sanadi...

SMB Session Pipe Auditor

Determine what named pipes are accessible over SMB This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Session Pipe Auditor', 'Description' = 'Determine what named pipes are accessible over SMB...

DEBIAN-CVE-2010-2285

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

CVE-2010-2285

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

CVE-2010-2285

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

CVE-2010-2285

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

Null pointer dereference

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

CVE-2010-2285

The CVE-2010-2285 issue affects Wireshark’s SMB PIPE dissector. A remote attacker could trigger a NULL pointer dereference in versions 0.8.20–1.0.13 and 1.2.0–1.2.8, leading to denial of service. The vulnerability is tied to the SMB PIPE dissector’s handling (root cause described as a NULL pointe...

CVE-2010-2285

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

CVE-2010-2285

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service NULL pointer dereference via unknown vectors...

CVE-2010-1906

tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \.\pipe\RepairServicepipecompany named pipe, which allows remote authenticated users to execute arbitrary code by...

Code injection

tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \.\pipe\RepairServicepipecompany named pipe, which allows remote authenticated users to execute arbitrary code by...