130 matches found
K10417: BIG-IP ASM and PSM remote buffer overflow exploit
Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...
K8939: SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044
Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...
K12650: PHP vulnerability CVE-2010-4645
Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...
K16882: OpenLDAP vulnerability CVE-2013-4449
Security Advisory Description Description The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service slapd crash by unbinding immediately after a search request, which triggers rwmconndestroy to free the...
K15746: Linux kernel vulnerability CVE-2012-4542
Security Advisory Description Description block/scsiioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SGIO ioctl call that leverages overlapping...
K16318: OpenSSL vulnerability CVE-2015-0287
Security Advisory Description The ASN1itemexd2i function in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service invalid wri...
SUSE CVE-2017-5848
The gstpsdemuxparsepsm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service invalid memory read and crash via vectors involving PSM parsing...
K14317: OpenSSH J-PAKE vulnerability CVE-2010-4478
OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate. F5 products do not include J-PAKE in the OpenSSH programs a...
K19784568: TMM vulnerability CVE-2016-5023
Security Advisory Description Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 through 11.5.4, 11.6.0 HF5 through HF7, and 12.0.0, when configured with a TCP profile, allow remote attackers to cause a denial of service Traffic Management Microkernel...
psm-surgut.ru Cross Site Scripting vulnerability OBB-3057383
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Security Bulletin: Buffer Overflow Vulnerability in IBM DB2 SQL/PSM Stored Procedure Infrastructure (CVE-2012-4826).
Abstract Vulnerability in IBM DB2 could allow an authenticated user to cause a stack-based buffer overflow and possibly attain remote code execution. Content VULNERABILITY DETAILS CVE ID: CVE-2012-4826 DESCRIPTION: The IBM DB2 products listed below contain a security vulnerability that could allo...
Ubuntu: Security Advisory (USN-361-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability in the implementation of the Resource Manager PSM Service Extension (PsmServiceExtHost.dll) on Microsoft Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Resource Manager PSM Service Extension PsmServiceExtHost.dll implementation on Microsoft Windows operating systems is related to incorrect access control. Exploiting this vulnerability could allow an attacker to increase their privileges...
Microsoft Windows and Windows Server Elevation of Privilege Vulnerability (CNVD-2021-34482)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the Explorer PSM Service Extension in...
CVE-2021-28320
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability...
Privilege escalation
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability...
CVE-2021-28320 Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
...
CVE-2021-28320
Technical details about CVE-2021-28320 (affected components, exploitability, or fixes) are not provided in the supplied documents. Monitor for updates from official advisories (MSRC/Microsoft security guides) for specifics and remediation.
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
...
KLA12139 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of...