Lucene search
K

7920 matches found

Prion
Prion
added 2016/02/24 3:59 a.m.22 views

Design/Logic Flaw

Untrusted search path vulnerability in Flexera InstallShield through 2015 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executable file...

7.2CVSS6.7AI score0.00503EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2016/02/24 12:0 a.m.4 views

PT-2016-3439

Name of the Vulnerable Software and Affected Versions Flexera InstallShield through 2015 SP1 AVEVA Edge InstallShield affected versions not specified Description The issue is related to an untrusted search path vulnerability that allows local users to gain privileges via a Trojan horse DLL in the...

7.8CVSS7.8AI score0.00503EPSS
Exploits0References11
Hacker One
Hacker One
added 2016/02/18 1:23 p.m.20 views

Gratipay: SPF/DKIM/DMARC for grtp.co

Hello Security Team, I Was Checking The SPF Record For https://grtp.co/ at http://www.kitterman.com/spf/validate.html No valid SPF record found of either type TXT or type SPF. Kindly Fix it Asap! Thanks!...

7.1AI score
Exploits0
OSV
OSV
added 2016/02/16 5:34 p.m.12 views

SUSE-SU-2016:0481-1 Security update for dhcp

This update for dhcp fixes the following issues: - CVE-2015-8605: A remote attacker could have used badly formed packets with an invalid IPv4 UDP length field to cause a DHCP server, client, or relay program to terminate abnormally bsc961305 The following bugs were fixed: - bsc936923: Improper...

6.5CVSS6.5AI score0.7645EPSS
Exploits0References9
n0where
n0where
added 2016/02/11 5:38 p.m.948 views

Damn Vulnerable Web Services: DVWS

Damn Vulnerable Web Services is a vulnerable testing environment that can be used to learn real world web service vulnerabilities. The aim of this project is to aid security professionals in testing their skills and tools in a legal environment. This application is designed to understand the...

Exploits0References2
CNVD
CNVD
added 2016/02/08 12:0 a.m.4 views

Android Setup Wizard elevation of privilege vulnerability (CNVD-2016-00872)

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. A security vulnerability exists in Android Setup Wizard, which allows attackers to exploit the vulnerability to elevate privileges...

6.6CVSS6.8AI score0.0018EPSS
Exploits0References1
CNVD
CNVD
added 2016/02/08 12:0 a.m.5 views

Android Setup Wizard elevation of privilege vulnerability (CNVD-2016-00871)

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. A security vulnerability exists in Android Setup Wizard, which allows an attacker to exploit the vulnerability to elevate privileges...

6.6CVSS6.8AI score0.0018EPSS
Exploits0References1
NVD
NVD
added 2016/02/07 1:59 a.m.17 views

CVE-2016-0813

packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.x before 2016-02-01 does not properly check for device provisioning, which allows physically proximate attackers to bypass the Factory Reset Protection...

6.6CVSS6.1AI score0.0018EPSS
Exploits0References2
OSV
OSV
added 2016/02/07 1:59 a.m.5 views

CVE-2016-0812

The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...

6.1CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2016/02/07 1:59 a.m.30 views

CVE-2016-0812

The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...

6.6CVSS6.1AI score0.0018EPSS
Exploits0References2
Prion
Prion
added 2016/02/07 1:59 a.m.22 views

Design/Logic Flaw

The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...

6.6CVSS7AI score0.0018EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2016/02/07 1:59 a.m.30 views

CVE-2016-0812

The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...

6.6CVSS6.7AI score0.0018EPSS
Exploits0References3
OSV
OSV
added 2016/02/07 1:59 a.m.3 views

UBUNTU-CVE-2016-0812

The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...

6.1CVSS6.7AI score0.0018EPSS
Exploits0References4
Cvelist
Cvelist
added 2016/02/07 1:0 a.m.23 views

CVE-2016-0813

packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.x before 2016-02-01 does not properly check for device provisioning, which allows physically proximate attackers to bypass the Factory Reset Protection...

6.4AI score0.0018EPSS
Exploits0References2
CVE
CVE
added 2016/02/07 1:0 a.m.46 views

CVE-2016-0813

CVE-2016-0813 concerns the Android Setup Wizard: AlternateRecentsComponent.java in Setup Wizard on Android 5.1.x before 5.1.1 LMY49G and 6.x before 2016-02-01 does not properly check device provisioning, allowing physically proximate attackers to bypass Factory Reset Protection and delete data vi...

6.6CVSS6.6AI score0.0018EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2016/02/07 1:0 a.m.47 views

CVE-2016-0812

The CVE-2016-0812 entry concerns the Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and Android 6.0 before 2016-02-01. The vulnerability arises from the interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java, where setup completion is not ...

6.6CVSS6.6AI score0.0018EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/02/07 1:0 a.m.31 views

CVE-2016-0812

The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindowManager.java in Setup Wizard in Android 5.1.x before 5.1.1 LMY49G and 6.0 before 2016-02-01 does not properly check for setup completion, which allows physically proximate attackers to bypass the...

6.4AI score0.0018EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2016/02/01 8:26 p.m.57 views

Google Patches Critical Remotely-exploitable Flaws in Latest Android Update

Google has released the February Security Update for Android that patches multiple security vulnerabilities discovered in the latest version of Android operating system. In total, there were five "critical" security vulnerabilities fixed in the release along with four "high" severity and one mere...

10CVSS9.9AI score0.33367EPSS
Exploits4
Mageia
Mageia
added 2016/01/29 11:2 a.m.47 views

Updated lxc packages fix security vulnerability

A directory traversal flaw while lxc-start in lxc before 1.0.8 in initially setting up the mounts for a container CVE-2015-1335...

7.2CVSS8.5AI score0.00459EPSS
Exploits0References2
Citrix
Citrix
added 2016/01/19 12:0 a.m.7 views

Streamed VM Setup Wizard Fails to Create VMs When Specifying an ESX Datacenter as the Hypervisor

Streamed VM Setup Wizard fails to create VMs when specifying an ESX datacenter as the hypervisor. The wizard completes but reports 0 of 5 VMs created. A CDF trace during the failure will report an exception in PVSDllHypervisorPlatform - "the resource vim.dvs.DistributedVirtualPort is not...

7AI score
Exploits0
Rows per page
Query Builder