CVE-2015-2070

SQL injection vulnerability in eTouch SamePage Enterprise Edition 4.4.0.0.239 allows remote attackers to execute arbitrary SQL commands via the catId parameter to cm/blogrss/feed...

CVE-2015-2071

Directory traversal vulnerability in cm/newui/blog/export.jsp in eTouch SamePage Enterprise Edition 4.4.0.0.239 allows remote authenticated users to read arbitrary files via a .. dot dot in the filepath parameter...

CVE-2015-2071

CVE-2015-2071 affects ETouch Systems SamePage Enterprise Edition 4.4.0.0.239. A directory traversal flaw exists in cm/newui/blog/export.jsp that allows remote authenticated users to read arbitrary files via a .. sequence in the filepath parameter. Connected CNVD/NVD entries corroborate the same v...

CVE-2015-2070

The CVE-2015-2070 entry covers a SQL injection in eTouch SamePage Enterprise Edition 4.4.0.0.239, exploitable via the catId parameter to cm/blogrss/feed, allowing remote SQL commands. The OpenVAS record confirms an active check for eTouch SamePage

eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities

eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities eTouch SamePage v4.4.0.0.239 multiple vulnerabilities http://www.etouch.net/products/samepage/index.html Enterprise trial was installed in an Ubuntu virtual machine with MySQL. By default, the listening port is 18080. Required on the Ubuntu...

eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities

eTouch SamePage v4.4.0.0.239 multiple vulnerabilities http://www.etouch.net/products/samepage/index.html Enterprise trial was installed in an Ubuntu virtual machine with MySQL. By default, the listening port is 18080. Required on the Ubuntu machine to install the SamePage binary successfully: sud...

eTouch Samepage 4.4.0.0.239 SQL Injection / File Read Vulnerabilities

Exploit for php platform in category web applications Couldn’t find anyone to contact regarding this, so dropping it. eTouch SamePage v4.4.0.0.239 multiple vulnerabilities http://www.etouch.net/products/samepage/index.html Enterprise trial was installed in an Ubuntu virtual machine with MySQL. By...

eTouch Samepage 4.4.0.0.239 SQL Injection / File Read

Couldn’t find anyone to contact regarding this, so dropping it. eTouch SamePage v4.4.0.0.239 multiple vulnerabilities http://www.etouch.net/products/samepage/index.html Enterprise trial was installed in an Ubuntu virtual machine with MySQL. By default, the listening port is 18080. Required on the...

CVE-2011-2183

Race condition in the scangetnextrmapitem function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging KSM is enabled, allows local users to cause a denial of service NULL pointer dereference or possibly have unspecified other impact via a crafted application...

UBUNTU-CVE-2011-2183

Race condition in the scangetnextrmapitem function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging KSM is enabled, allows local users to cause a denial of service NULL pointer dereference or possibly have unspecified other impact via a crafted application...

kernel: ksm: race between ksmd and exiting task

Race condition in the scangetnextrmapitem function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging KSM is enabled, allows local users to cause a denial of service NULL pointer dereference or possibly have unspecified other impact via a crafted application...

kernel: ksm: race between ksmd and exiting task

Race condition in the scangetnextrmapitem function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging KSM is enabled, allows local users to cause a denial of service NULL pointer dereference or possibly have unspecified other impact via a crafted application...

PT-2011-3669 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39.3 Description: A race condition exists in the scan get next rmap item function in mm/ksm.c when Kernel SamePage Merging KSM is enabled. This issue allows local users to cause a denial of service,...