44 matches found
qemu: insufficient parameter validation during ram load
It was found that certain values that were read when loading RAM during migration were not validated. A user able to alter the savevm data either on the disk or over the wire during migration could use either of these flaws to corrupt QEMU process memory on the destination host, which could...
DEBIAN-CVE-2014-7840
The hostfromstreamoffset function in archinit.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted 1 offset or 2 length value in savevm data...
Havij 1.10 Cross Site Scripting
Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Software Link: http://itsecteam.com/files/Havij%201.10.rar Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By :...
Havij 1.10 - Persistent Cross-Site Scripting
Havij 1.10 - Persistent Cross-Site Scripting Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By : Hkhexon...