22 matches found
CVE-2020-17398
This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
Virtuozzo Hybrid Server 7.5 Update 3 Hotfix 1 (7.5.3-396)
The Hotfix 1 for Virtuozzo Hybrid Server 7.5 Update 3 provides stability and usability bug fixes Vulnerability id: PSBM-139281 Optimized cache and memory usage while creating backups. Vulnerability id: PSBM-139170 The container backup process could hang when working with NFS backup storage...
CVE-2020-17402
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4 47270. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...
CVE-2020-17392
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
CVE-2020-17396
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
CVE-2020-17398
This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
Parallels Desktop Information Disclosure Vulnerability (CNVD-2020-46855)
Parallels Desktop is a virtual machine software that runs on Mac computers. An information disclosure vulnerability exists in prlhypervisor kext in versions prior to Parallels Desktop 15.1.4 47270. The vulnerability stems from a lack of proper validation of user-supplied data. An attacker could...
Parallels Desktop Information Disclosure Vulnerability
Parallels Desktop is a virtual machine software that runs on Mac computers. An information disclosure vulnerability exists in prlhypervisor kext in versions prior to Parallels Desktop 16.0.0 48916. The vulnerability can be exploited to obtain a memory address via a log file, which can be used in...
Parallels Desktop Out-of-Bounds Read Information Disclosure Vulnerability (CNVD-2020-46860)
Parallels Desktop is a virtual machine software that runs on Mac computers. An out-of-bounds read information disclosure vulnerability exists in prlhypervisor kext in versions prior to Parallels Desktop 16.0.0 48916. The vulnerability stems from a lack of proper validation of user-supplied data. ...
Parallels Desktop Integer Overflow Elevation of Privilege Vulnerability
Parallels Desktop is a virtual machine software that runs on Mac computers. An integer overflow elevation of privilege vulnerability exists in the prlhypervisor module in versions prior to Parallels Desktop 16.0.0 48916. The vulnerability stems from a lack of proper validation of user-supplied...
Parallels Desktop Out-of-Bounds Read Elevation of Privilege Vulnerability (CNVD-2020-46861)
Parallels Desktop is a virtual machine software that runs on Mac computers. An out-of-bounds read elevation of privilege vulnerability exists in prlhypervisor kext in versions prior to Parallels Desktop 16.0.0 48916. The vulnerability stems from a lack of proper validation of user-supplied data. ...
Virtuozzo 7 : anaconda / anaconda-core / anaconda-dracut / etc (VZA-2017-012)
According to the versions of the anaconda / anaconda-core / anaconda-dracut / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A flaw found in the way prl-vzvncserver parsed terminal escape sequences that could allow a remote...
Critical product security update: Virtuozzo 7.0 Update 3 Hotfix 1 (7.0.3-639)
The new packages for Virtuozzo 7.0.3 introducing security fixes as well as usability and stability bug fixes. Vulnerability id: PSBM-58281 A flaw found in the way prl-vzvncserver parsed terminal escape sequences that could allow a remote attacker authenticated with the VNC password or a user logg...
Leaked DNS Query Detection - ISATAP Request (IPv6)
Binary data 7203.pasl...
XLPD 3.0 - Remote DoS
No description provided by source. Application: XLPD 3.0 Remote DoS Platforms: Windows XP Professional SP2 crash: YES Exploitation: remote DoS Date: 2009-10-06 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details 3 The Code =============== 1 Introduction...
Novell Netware RPC XNFS xdrDecodeString Vulnerability
No description provided by source. !/usr/bin/ruby Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=24&Itemid=24 require 'socket' netwareserver = ARGV0 targetport = ARGV1 || 1234 beepbeep= \x1c\xd1\xef\xab + XID \x00\x00\x00\x00 + Message Type: Call 0...
IrfanView - .RLE Image Decompression Buffer Overflow
IrfanView - .RLE Image Decompression Buffer Overflow Application: IrfanView RLE Image Decompression Buffer Overflow Vulnerability Plateform: Windows Version: The vulnerabilities are confirmed in version 4.33. Other versions may also be affected. Exploitation: Remote code execution Secunia Number:...
XnView FlashPix Image Processing - Heap Overflow
Application: XnView FlashPix Image Processing Heap Overflow Platforms: Windows Secunia: SA47388 PRL: 2012-06 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3 Technical details 4 The Code...
Adobe Photoshop CS5 - '.gif' Remote Code Execution
Application: Adobe Photoshop CS5 GIF Remote Code Execution Platforms: Adobe Photoshop CS5 12.0 and 12.1 Exploitation: Remote code execution CVE Number: CVE-2011-2131 Adobe Vulnerability Identifier: APSB11-22 PRL: 2011-08 Author: Francis Provencher Protek Research Lab's Website:...
QuickHeal AntiVirus 2010 - Local Privilege Escalation
Application: QuickHeal antivirus 2010 Local Privilege Escalation Platforms: Windows Vista SP2 Exploitation: Local Privilege Escalation Date: 2009-12-16 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details 3 The Code N/A =============== 1 Introduction ===============...