7 matches found
Cisco Nexus Dashboard Path Traversal Vulnerability
A vulnerability in the backup restore functionality of Cisco Nexus Dashboard could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. This vulnerability is due to insufficient validation of the contents of a backup file. An attacker with valid...
CVE-2017-2192
Untrusted search path vulnerability in RW-5100 tool to verify execution environment for Windows 7 version 1.1.0.0 and RW-5100 tool to verify execution environment for Windows 8.1 version 1.2.0.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
Code injection
The getbuildid function in elfutils.cpp in Debuggerd in Android 6.x before 2016-02-01 allows attackers to gain privileges via a crafted application that mishandles a Desc Size element in an ELF Note, aka internal bug 25187394...
CVE-2010-5231
CVE-2010-5231 describes an untrusted search path vulnerability in DivX Player 7.2.019 that allows local privilege escalation via a Trojan horse VersionCheckDLL.dll placed in the current working directory, demonstrated by a directory containing a .avi file. The root cause is an DLL search order is...
Code injection
Unspecified vulnerability in System Administration Manager SAM in EMS before A.04.20.11.0401 on HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors...
CVE-2009-3390
Multiple unspecified vulnerabilities in the 1 iscsiadm and 2 iscsitadm programs in Sun Solaris 10, and OpenSolaris snv28 through snv109, allow local users with certain RBAC execution profiles to gain privileges via unknown vectors related to the libima library...
CVE-2008-2613
Unspecified vulnerability in the Database Scheduler component in Oracle Database 10.2.0.4 and 11.1.0.6 has unknown impact and local attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this is an...