Lucene search
+L

2612 matches found

zdt
zdt
added 2013/06/03 12:0 a.m.51 views

Windows NT - Windows 8 EPATHOBJ Local Ring 0 Exploit

Exploit for windows platform in category local exploits ifndef WIN32NOSTATUS define WIN32NOSTATUS endif include include include include include ifdef WIN32NOSTATUS undef WIN32NOSTATUS endif include pragma commentlib, "gdi32" pragma commentlib, "kernel32" pragma commentlib, "user32" pragma...

6.8AI score
Exploits0
redhat
redhat
added 2013/04/16 6:55 p.m.6 views

kernel: xen: Linux netback DoS via malicious guest ring.

The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service loop by triggering ring pointer corruption...

5.2CVSS6.8AI score0.00988EPSS
Exploits1References4
kitploit
kitploit
added 2013/03/18 2:58 a.m.13 views

[Converter v0.7] Analyzing and Deobfuscating Malicious Scripts

Malicious Java applets have been making news for awhile so I thought I would update Converter to include some new features to help with deobfuscating them. This is a list of changes made to this version: + Replaced Binary-to/from-Text with Binary-to/from-Hex to make it more useful + Added Filter...

7.3AI score
Exploits0
nvd
nvd
added 2013/03/07 5:4 a.m.18 views

CVE-2013-0215

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service daemon crash and host-control outage, or memory consumption or obtain sensitive control-plane data by...

4.3CVSS6.4AI score0.0059EPSS
Exploits0References5
attackerkb
attackerkb
added 2013/03/07 5:4 a.m.5 views

CVE-2013-0215

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service daemon crash and host-control outage, or memory consumption or obtain sensitive control-plane data by...

4.3CVSS5.5AI score0.0059EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2013/03/07 12:0 a.m.7 views

PT-2013-2161 · Xen · Xen

Name of the Vulnerable Software and Affected Versions: Xen versions 4.1.x through 4.2.x Xen version xen-unstable Description: The issue allows guest OS users with administrative access to cause a denial of service, resulting in a daemon crash and host-control outage, or memory consumption. It als...

4.3CVSS6.2AI score0.0059EPSS
Exploits0References6
oraclelinux
oraclelinux
added 2013/02/27 12:0 a.m.71 views

Oracle Linux 6 kernel security and bugfix update

2.6.32-358.el6 - fs Fix sget race with failing mount Eric Sandeen 883276 2.6.32-357.el6 - virt xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests Andrew Jones 896050 CVE-2013-0190 - block sgio: use different default filters for each device class Paolo Bonzini 875361...

6.6CVSS7.7AI score0.00882EPSS
Exploits2
osv
osv
added 2013/02/18 4:41 a.m.6 views

CVE-2013-0216

The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service loop by triggering ring pointer corruption...

6AI score
Exploits0References10
osv
osv
added 2013/02/18 4:41 a.m.2 views

DEBIAN-CVE-2013-0216

The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service loop by triggering ring pointer corruption...

5.2CVSS7.9AI score0.00988EPSS
Exploits1References1
nvd
nvd
added 2013/02/18 4:41 a.m.16 views

CVE-2013-0216

The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service loop by triggering ring pointer corruption...

5.2CVSS6AI score0.00988EPSS
Exploits1References9
cvelist
cvelist
added 2013/02/18 2:0 a.m.20 views

CVE-2013-0216

The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service loop by triggering ring pointer corruption...

5.8AI score0.00988EPSS
Exploits1References9
osv
osv
added 2013/02/17 12:0 a.m.5 views

UBUNTU-CVE-2013-0216

The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service loop by triggering ring pointer corruption...

5.2CVSS6.8AI score0.00988EPSS
Exploits1References9
xen
xen
added 2013/02/05 12:0 p.m.66 views

oxenstored incorrect handling of certain Xenbus ring states

ISSUE DESCRIPTION The oxenstored daemon the ocaml version of the xenstore daemon does not correctly handle unusual or malicious contents in the xenstore ring. A malicious guest can exploit this to cause oxenstored to read past the end of the ring and very likely crash or to allocate large amounts...

4.3CVSS1.2AI score0.0059EPSS
Exploits0
threatpost
threatpost
added 2013/01/19 2:4 a.m.8 views

Google Looking Into Hardware to Help Kill the Password

Google is looking at a number of hardware-based authentication mechanisms to bypass one of security’s biggest vulnerabilities: the written password. Wired Magazine got an advanced look at a report submitted by a Google security team for IEEE Security & Privacy Magazine that discusses alternatives...

7.7AI score
Exploits0References1
threatpost
threatpost
added 2012/10/24 6:13 p.m.9 views

Operation High Roller Banked on Fast-Flux Botnet to Steal Millions

A fraud ring that attacked financial transfer systems in an attempt to get at wealthy high-end banking customers used a complicated web of malware and compromised servers in several countries to walk off with an estimated $78 million earlier this year. While the attacks targeted financial systems...

0.5AI score
Exploits0References6
exploitpack
exploitpack
added 2012/10/19 12:0 a.m.38 views

Vm86 - Syscall Task Switch Kernel Panic (Denial of Service) Privilege Escalation

Vm86 - Syscall Task Switch Kernel Panic Denial of Service Privilege Escalation Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from...

0.7AI score
Exploits0
threatpost
threatpost
added 2012/06/26 6:40 p.m.5 views

New Fraud Ring 'Operation High Roller' Targets the Rich

A recent fraud ring through which attackers raided high-value bank accounts, nicknamed Operation High Roller .PDF, employed attacks that were quick, required no human interaction and have already affected several tiers of credit unions, regional banks and large global banks, over the last several...

0.5AI score
Exploits0References7
ubuntucve
ubuntucve
added 2012/05/24 11:55 p.m.36 views

CVE-2011-4080

The sysrqsysctlhandler function in kernel/sysctl.c in the Linux kernel before 2.6.39 does not require the CAPSYSADMIN capability to modify the dmesgrestrict value, which allows local users to bypass intended access restrictions and read the kernel ring buffer by leveraging root privileges, as...

4CVSS6AI score0.00349EPSS
Exploits0References2
nessus
nessus
added 2012/05/17 12:0 a.m.66 views

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7811)

This Linux kernel update fixes various security issues and bugs in the SUSE Linux Enterprise 10 SP4 kernel. The following security issues have been fixed : - A USB string descriptor overflow in the auerwald USB driver was fixed, which could be used by physically proximate attackers to cause a...

8.8CVSS7.2AI score0.0206EPSS
Exploits4References10
redhat
redhat
added 2012/04/17 6:54 p.m.5 views

kernel: sysctl: restrict write access to dmesg_restrict

The sysrqsysctlhandler function in kernel/sysctl.c in the Linux kernel before 2.6.39 does not require the CAPSYSADMIN capability to modify the dmesgrestrict value, which allows local users to bypass intended access restrictions and read the kernel ring buffer by leveraging root privileges, as...

4CVSS5.9AI score0.00349EPSS
Exploits0References4
Rows per page
Query Builder