2672 matches found
RUSTSEC-2018-0019 Multiple memory safety issues
Affected versions contain multiple memory safety issues, such as: - Unsoundly coercing immutable references to mutable references - Unsoundly extending lifetimes of strings - Adding the Send marker trait to objects that cannot be safely sent between threads This may result in a variety of memory...
Multiple memory safety issues
Affected versions contain multiple memory safety issues, such as: - Unsoundly coercing immutable references to mutable references - Unsoundly extending lifetimes of strings - Adding the Send marker trait to objects that cannot be safely sent between threads This may result in a variety of memory...
totemomail Encryption Gateway Cross-Site Request Forgery Vulnerability
totemomail Encryption Gateway is a gateway for email encryption. A cross-site request forgery vulnerability exists in versions prior to totemomail Encryption Gateway 6.0.0Build371. A remote attacker can exploit this vulnerability to change user settings, send emails, or change contact information...
MMM mmm_agentd shell command injection vulnerability
MySQL Multi-Master Replication Manager MMM is a set of flexible scripts that performs monitoring/failover and management of MySQL master-master replication configurations. mmmagentd is an agent daemon that runs on each MySQL server and provides a simple set of remote services to the monitoring...
pythonidae.nl XSS vulnerability
Open Bug Bounty ID: OBB-617985 Description| Value ---|--- Affected Website:| pythonidae.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
openthread/ip6-send-fuzzer: Index-out-of-bounds in ot::RouterTable::Allocate
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5375666315853824 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerubsanopenthread Platform Id: linux Crash Type:...
lastore-daemon D-Bus - Privilege Escalation (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'lastore-daemon D-Bus Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Deepin Linux systems by using...
Microsoft Windows 10: Send file samples when further analysis is required
This policy setting configures behaviour of samples submission when opt-in for MAPS telemetry is set. Possible settings: - 0: Always prompt - 1: Send safe samples automatically - 2: Never send - 3: Send all samples automatically OpenVAS Vulnerability Test $Id:...
lastore-daemon D-Bus Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'lastore-daemon D-Bus Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Deepin Linux systems by using...
openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::KeyManager::SetMasterKey
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=4791101178249216 Project: openthread Fuzzer: aflopenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow...
Microsoft Office: Send Office Feedback
This test checks the setting for policy OpenVAS Vulnerability Test $Id: office2013sendofficefeedback.nasl 11843 2018-10-11 14:33:21Z emoss $ Check value for Send Office Feedback Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is fre...
CloudBees Jenkins Mailer Plugin Cross-Site Request Forgery Vulnerability
CloudBees Jenkins formerly known as Hudson Labs is a set of Java-based development of the United States CloudBees continuous integration tools , the tool is mainly used to monitor the order of repetitive work . Mailer Plugin is used in one of the e-mail plugin . A cross-site request forgery...
CVE-2018-8718
Cross-site request forgery CSRF vulnerability in the Mailer Plugin 1.20 for Jenkins 2.111 allows remote authenticated users to send unauthorized mail as an arbitrary user via a /descriptorByName/hudson.tasks.Mailer/sendTestMail request...
Ruby: Potential command injection in `Shell#[]` and `Shell#test`
As Shelltest and Shell use send when transferring to FileTest, private methods etc. can also be called. Therefore, command injection is possible when a crafted value is passed. ruby $ irb irbmain:001:0 ls xy ls: xy: No such file or directory = "" irbmain:002:0 require 'shell' = true irbmain:003:0...
openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::NetworkData::ServiceTlv::IsThreadEnterprise
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5472780666535936 Project: openthread Fuzzer: aflopenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow...
openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::NetworkData::ServiceTlv::GetServiceDataLength
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=6378629031264256 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...
Software Defined Radio Attack Tool: RFCrack
RFCrack is my personal RF test bench, it was developed for testing RF communications between any physical device that communicates over sub Ghz frequencies. IoT devices, Cars, Alarm Systems etc… Testing was done with the Yardstick One on OSX, but RFCrack should work fine in linux. Current support...
openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::NetworkData::ServerTlv::GetServer16
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5507424543834112 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...
openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::NetworkData::ServiceTlv::IsThreadEnterprise
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=6188652393660416 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...
openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::NetworkData::ServiceTlv::GetServiceDataLength
Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5433723441905664 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...