7920 matches found
Design/Logic Flaw
Untrusted search path vulnerability in Flexera InstallShield through 2015 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executable file...
PT-2016-3439
Name of the Vulnerable Software and Affected Versions Flexera InstallShield through 2015 SP1 AVEVA Edge InstallShield affected versions not specified Description The issue is related to an untrusted search path vulnerability that allows local users to gain privileges via a Trojan horse DLL in the...
Gratipay: SPF/DKIM/DMARC for grtp.co
Hello Security Team, I Was Checking The SPF Record For https://grtp.co/ at http://www.kitterman.com/spf/validate.html No valid SPF record found of either type TXT or type SPF. Kindly Fix it Asap! Thanks!...
SUSE-SU-2016:0481-1 Security update for dhcp
This update for dhcp fixes the following issues: - CVE-2015-8605: A remote attacker could have used badly formed packets with an invalid IPv4 UDP length field to cause a DHCP server, client, or relay program to terminate abnormally bsc961305 The following bugs were fixed: - bsc936923: Improper...
Damn Vulnerable Web Services: DVWS
Damn Vulnerable Web Services is a vulnerable testing environment that can be used to learn real world web service vulnerabilities. The aim of this project is to aid security professionals in testing their skills and tools in a legal environment. This application is designed to understand the...
Android Setup Wizard elevation of privilege vulnerability (CNVD-2016-00872)
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. A security vulnerability exists in Android Setup Wizard, which allows attackers to exploit the vulnerability to elevate privileges...
Android Setup Wizard elevation of privilege vulnerability (CNVD-2016-00871)
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. A security vulnerability exists in Android Setup Wizard, which allows an attacker to exploit the vulnerability to elevate privileges...
CVE-2016-0813
packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.x before 2016-02-01 does not properly check for device provisioning, which allows physically proximate attackers to bypass the Factory Reset Protection...
CVE-2016-0812
The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...
CVE-2016-0812
The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...
Design/Logic Flaw
The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...
CVE-2016-0812
The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...
UBUNTU-CVE-2016-0812
The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...
CVE-2016-0813
packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.x before 2016-02-01 does not properly check for device provisioning, which allows physically proximate attackers to bypass the Factory Reset Protection...
CVE-2016-0813
CVE-2016-0813 concerns the Android Setup Wizard: AlternateRecentsComponent.java in Setup Wizard on Android 5.1.x before 5.1.1 LMY49G and 6.x before 2016-02-01 does not properly check device provisioning, allowing physically proximate attackers to bypass Factory Reset Protection and delete data vi...
CVE-2016-0812
The CVE-2016-0812 entry concerns the Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and Android 6.0 before 2016-02-01. The vulnerability arises from the interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java, where setup completion is not ...
CVE-2016-0812
The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...
Google Patches Critical Remotely-exploitable Flaws in Latest Android Update
Google has released the February Security Update for Android that patches multiple security vulnerabilities discovered in the latest version of Android operating system. In total, there were five "critical" security vulnerabilities fixed in the release along with four "high" severity and one mere...
Updated lxc packages fix security vulnerability
A directory traversal flaw while lxc-start in lxc before 1.0.8 in initially setting up the mounts for a container CVE-2015-1335...
Streamed VM Setup Wizard Fails to Create VMs When Specifying an ESX Datacenter as the Hypervisor
Streamed VM Setup Wizard fails to create VMs when specifying an ESX datacenter as the hypervisor. The wizard completes but reports 0 of 5 VMs created. A CDF trace during the failure will report an exception in PVSDllHypervisorPlatform - "the resource vim.dvs.DistributedVirtualPort is not...