3863 matches found
EulerOS Virtualization 2.5.3 : samba (EulerOS-SA-2019-1273)
According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference flaw was found in Samba RPC external printer service. An attacker could use this flaw to cause the...
EulerOS 2.0 SP5 : samba (EulerOS-SA-2019-1150)
According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - samba: Insufficient input validation in libsmbclient CVE-2018-10858 - samba: NULL pointer dereference in printer server process CVE-2018-1050 Not...
HP LaserJet P3015 Printers 6.7.0.x Authentication Bypass
Exploit Title : HP LaserJet P3015 Printers 6.7.0.x Bypass Missing Authentication Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 31/03/2019 Vendor Homepage : hp.com Software Information Link :...
EulerOS 2.0 SP2 : samba (EulerOS-SA-2019-1125)
According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - samba: Insufficient input validation in libsmbclient CVE-2018-10858 - samba: NULL pointer dereference in printer server process CVE-2018-1050 Not...
CVE-2018-5923
In HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, solution application signature checking may allow potential execution of arbitrary code...
CVE-2018-5923
CVE-2018-5923 affects HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise printers, where solution application signature checking may allow arbitrary code execution. The NVD entry documents a high/critical impact (AV:N/AC:L/PR:N/UI:N/S:U, with P/C/I/A ...
OPENSUSE-SU-2019:0265-1 Security update for libqt5-qtbase
This update for libqt5-qtbase provides the following fixes: Security issues fixed: - CVE-2018-15518: Fixed double free in QXmlStreamReader bsc1118595 - CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler bsc1118596 Non-security issues fixed: - Fix dynamic loading of libGL...
CVE-2018-17487
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
CVE-2018-17488
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and accessing the print badge screen, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
CVE-2018-17487
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
CVE-2018-17488
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and accessing the print badge screen, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
Command injection
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
Command injection
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and accessing the print badge screen, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
CVE-2018-17488
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and accessing the print badge screen, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
CVE-2018-17488
CVE-2018-17488 affects Lobby Track Desktop. A local attacker could gain elevated privileges due to an error in the printer dialog that enables breaking out of kiosk mode when visiting the kiosk and accessing the print badge screen; exploitation would occur via the command line. The primary source...
CVE-2018-17487
Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could exploit this vulnerability using the command line to break out of kiosk mode...
CVE-2018-20106
In yast2-printer up to and including version 4.0.2 the SMB printer settings don't escape characters in passwords properly. If a password with backticks or simliar characters is supplied this allows for executing code as root. This requires tricking root to enter such a password in yast...
Code injection
In yast2-printer up to and including version 4.0.2 the SMB printer settings don't escape characters in passwords properly. If a password with backticks or simliar characters is supplied this allows for executing code as root. This requires tricking root to enter such a password in yast...
CVE-2018-20106 SMB printer settings don't escape characters in passwords properly
In yast2-printer up to and including version 4.0.2 the SMB printer settings don't escape characters in passwords properly. If a password with backticks or simliar characters is supplied this allows for executing code as root. This requires tricking root to enter such a password in yast...
CVE-2018-20106
CVE-2018-20106 affects YaST yast2-printer (