7921 matches found
Google Chrome (Fedora 25 Ubuntu 16.04) - tracker-extract gnome-video-thumbnailer + totem Drive-By Download
Google Chrome Fedora 25 Ubuntu 16.04 - tracker-extract gnome-video-thumbnailer + totem Drive-By Download Source: https://scarybeastsecurity.blogspot.com/2016/12/redux-compromising-linux-using-snes.html Overview Full reliable 0day drive-by exploit against Fedora 25 + Google Chrome, by breaking out...
Apple iCloud Setup Remote Code Execution Vulnerability
Apple iCloud is a cloud service from Apple USA that supports storage of music, photos, apps, contacts, etc. iCloud Setup is one of the installation components. A remote code execution vulnerability exists in Apple iCloud Setup version 6.0. An attacker can exploit this vulnerability to execute...
VMware vCenter Server 5.5.x < 5.5u3e / 6.0.x < 6.0u2a Multiple XXE Vulnerabilities (VMSA-2016-0022)
The version of VMware vCenter Server installed on the remote host is 5.5.x prior to 5.5u3e or 6.0.x prior to 6.0u2a. It is, therefore, affected by multiple XML external entity XXE vulnerabilities : - Multiple XML external entity XXE vulnerabilities exist in the Log Browser, the Distributed Switch...
Oracle Linux 7 : postgresql (ELSA-2016-2606)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-2606 advisory. 9.2.18-1 - update to 9.2.18 per release notes http://www.postgresql.org/docs/9.2/static/release-9-2-18.html...
geoip-attack-map - Cyber Security GeoIP Attack Map Visualization
This geoip attack map visualizer was developed to display network attacks on your organization in real time. The data server follows a syslog file, and parses out source IP, destination IP, source port, and destination port. Protocols are determined via common ports, and the visualizations vary i...
Boot Signal fails while reboot and shutdown signal works properly
The machines created from Streaming VM setup wizard are unable to boot when boot signal is sent from the PVS console. If we send the reboot or shutdown signal it reboots or shuts down the machines...
The vulnerability of the SELinux security mechanism, which allows a perpetrator to circumvent existing access restrictions
The vulnerability of the SELinux security mechanism is related to code errors. Exploiting this vulnerability can allow an attacker, who operates locally, to gain access to memory with write and execute privileges by manipulating system calls such as iosetup, ioctxalloc, and aiosetupring...
Open-Xchange: Stored XSS in Template Documents
Steps to reproduce: Setup: Edit My Contact Data: - first name: ' onmouseover=alert1 data-first=' - last name: anything 1. Create a new text document, and make sure it is saved. 2. Click Review, check "Track Changes". 3. Make another edit, it should show coloured now as it is tracked. 4. Click Fil...
SUSE SLED12 / SLES12 Security Update : kdump (SUSE-SU-2016:2553-1)
This update for kdump provides several fixes and enhancements : - Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is changed. bsc943214 - Add a separate systemd service to rebuild kdumprd at boot. bsc943214 - Improve network setup in the kdump environment by reading configuration from wicked ...
openSUSE Security Update : kdump (openSUSE-2016-1215)
This update for kdump provides several fixes and enhancements : - Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is changed. bsc943214 - Add a separate systemd service to rebuild kdumprd at boot. bsc943214 - Improve network setup in the kdump environment by reading configuration from wicked ...
D-Link DWR-932B LET Router WPS PIN Generator Vulnerability
The D-Link DWR-932B LET is a wireless router. A vulnerability exists in the WPS PIN generator of the D-Link DWR-932B LET router. Since a user can temporarily generate a new WPS PIN via the router's web management interface, an attacker can exploit the vulnerability to use the PIN to access a...
SUSE-SU-2016:2553-1 Security update for kdump
This update for kdump provides several fixes and enhancements: - Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is changed. bsc943214 - Add a separate systemd service to rebuild kdumprd at boot. bsc943214 - Improve network setup in the kdump environment by reading configuration from wicked b...
OpenSSL 1.0.2 < 1.0.2i Multiple Vulnerabilities
The version of OpenSSL installed on the remote host is prior to 1.0.2i. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.2i advisory. - Multiple memory leaks in t1lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to...
org.ovirt.engine-root: engine-setup logs contained information for extracting admin password
A flaw was found in RHEV Manager, where it wrote sensitive data to the engine-setup log file. A local attacker could exploit this flaw to view sensitive information such as encryption keys and certificates which could then be used to steal other sensitive information such as passwords...
CVE-2016-6536
The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...
Design/Logic Flaw
The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...
PT-2016-3140 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.7.7 Description: The issue is related to the aio mount function in fs/aio.c, which does not properly restrict execute access. This allows a local attacker to bypass intended SELinux W^X policy restrictions and...
Cisco EPC 3925 - Multiple Vulnerabilities
Exploit for asp platform in category web applications Title: Cisco EPC 3925 Multiple Vulnerabilities Vendor: http://www.cisco.com/ Vulnerable Versions: Cisco EPC3925 EuroDocsis 3.0 2-PORT Voice Gateway Date: 15.09.2016 Author: Patryk Bogdan ======== Vulnerability list: 1. HTTP Response Injection...
Cisco EPC 3925 XSS / CSRF / HTTP Response Injection / DoS
Title: Cisco EPC 3925 Multiple Vulnerabilities Vendor: http://www.cisco.com/ Vulnerable Versions: Cisco EPC3925 EuroDocsis 3.0 2-PORT Voice Gateway Date: 15.09.2016 Author: Patryk Bogdan ======== Vulnerability list: 1. HTTP Response Injection via 'Lang' Cookie 2. DoS via 'Lang' Cookie 3. DoS in...
swarm - A Modular Distributed Penetration Testing Tool
Swarm is an open source modular distributed penetration testing Tool that use distributed task queue to implement communication in the master-slave mode system and use MongoDB for data storage. It consists of a distributed framework and function modules. The function module can be an entirely new...