2551 matches found
Cisco Unified Communications Manager Arbitrary File Read/Write Vulnerability
A vulnerability in a command-line utility of Cisco Unified Communications Manager Cisco Unified CM could allow an authenticated, local attacker to read or write data to arbitrary locations on the filesystem. The vulnerability is due to insufficient input validation. An attacker could exploit this...
CVE-2013-4511
CVE-2013-4511 concerns multiple integer overflows in the Linux kernel’s Alchemy LCD frame-buffer drivers (au1100fb_fb_mmap and au1200fb_fb_mmap). The issue allows a local attacker to craft mmap operations to create a read-write mapping of kernel memory, enabling privilege escalation. The descript...
FreeBSD Security Advisory FreeBSD-SA-13:13.nullfs
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:13.nullfs Security Advisory The FreeBSD Project Topic: Cross-mount links between nullfs5 mounts Category: core Module: nullfs Announced: 2013-09-10 Credits:...
Modbus Client Utility
This module allows reading and writing data to a PLC using the Modbus protocol. This module is based on the 'modiconstop.rb' Basecamp module from DigitalBond, as well as the mbtget perl script. This module requires Metasploit: https://metasploit.com/download Current source:...
RHEL 6 : mesa (RHSA-2013:0897)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0897 advisory. - Mesa: Memory corruption OOB read/write on intel drivers CVE-2013-1872 - Mesa: Multiple integer overflows leading to heap-based bufer...
CVE-2013-2596
Integer overflow in the fbmmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges,...
PonyOS 0.4.99-mlp - Multiple Vulnerabilities
Exploit for linux platform in category local exploits Introduction ------------ Like countless others, I was pretty excited about PonyOS yesterday April 1st 2013 and decided to give it a go. After wasting a lot of time nyan'ing, I knew this was the future of desktop OSes. However, I wondered how...
PonyOS 0.4.99-mlp - Multiple Vulnerabilities
Advisory: PonyOS Security Issues John Cartwright Introduction ------------ Like countless others, I was pretty excited about PonyOS yesterday April 1st 2013 and decided to give it a go. After wasting a lot of time nyan'ing, I knew this was the future of desktop OSes. However, I wondered how secur...
PonyOS 0.4.99-mlp Privilege Escalation
Advisory: PonyOS Security Issues John Cartwright Introduction ------------ Like countless others, I was pretty excited about PonyOS yesterday April 1st 2013 and decided to give it a go. After wasting a lot of time nyan'ing, I knew this was the future of desktop OSes. However, I wondered how secur...
CVE-2011-4127
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
CVE-2012-0946
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges...
CVE-2012-0946
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges...
Ubuntu 11.10 : linux vulnerabilities (USN-1405-1)
Paolo Bonzini discovered a flaw in Linux's handling of the SGIO ioctl command. A local user, or user in a VM could exploit this flaw to bypass restrictions and gain read/write access to all data on the affected block device. CVE-2011-4127 A flaw was found in the Linux kernel's ext4 file system wh...
Non Compliant Scada Modbus Read Write Reg Response
...
Ubuntu: Security Advisory (USN-1388-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
kernel: possible privilege escalation via SG_IO ioctl
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
UBUNTU-CVE-2011-4127
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
PT-2011-4852 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.2.2 Description: The issue allows local users to bypass intended restrictions on disk read and write operations. This is achieved by sending a SCSI command to either a partition block device or an LVM volume,...
Serv-U FTP Jail Break
Exploit for windows platform in category remote exploits I m better than TESO! CONFIDENTIAL SOURCE MATERIALS! ---------------------------------------------------- Serv-U FTP Server Jail Break 0day Discovered By Kingcope Year 2011 ---------------------------------------------------- Affected: 220...
GCI Trader MetaTrader v4.2.x - Null Pointer Vulnerability
Document Title: =============== GCI Trader MetaTrader v4.2.x - Null Pointer Vulnerability Release Date: ============= 2011-08-08 Vulnerability Laboratory ID VL-ID: ==================================== 111 Product & Service Introduction: =============================== Marktführende Software im...