Lucene search
K

115 matches found

Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.41 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3386-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3386-1 advisory. Andrey Konovalov discovered a race condition in the UDP Fragmentation Offload UFO code in the Linux kernel. A local attacker could use this to cause a...

7.8CVSS7.3AI score0.20797EPSS
Exploits19References3
OpenVAS
OpenVAS
added 2017/08/11 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-3385-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.20797EPSS
Exploits19References2
OpenVAS
OpenVAS
added 2017/08/11 12:0 a.m.278 views

Ubuntu: Security Advisory (USN-3384-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.20797EPSS
Exploits19References2
OpenVAS
OpenVAS
added 2017/08/11 12:0 a.m.51 views

Ubuntu: Security Advisory (USN-3385-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.20797EPSS
Exploits19References2
Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.44 views

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3384-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3384-2 advisory. USN-3384-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04. This update provides the corresponding updates for the Linux Hardware Enablement H...

7.8CVSS7.3AI score0.20797EPSS
Exploits19References3
Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.38 views

Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3384-1)

Andrey Konovalov discovered a race condition in the UDP Fragmentation Offload UFO code in the Linux kernel. A local attacker could use this to cause a denial of service or execute arbitrary code. CVE-2017-1000112 Andrey Konovalov discovered a race condition in AFPACKET socket option handling code...

7.8CVSS7.1AI score0.20797EPSS
Exploits19References3
seebug.org
seebug.org
added 2017/05/27 12:0 a.m.57 views

Apple iOS / MacOS Netagent Kernel Memory Disclosure(CVE-2017-2507)

iOS/MacOS kernel memory disclosure due to lack of bounds checking in netagent socket option handling netagentctlsetopt is the setsockopt handler for netagent control sockets. Options of type NETAGENTOPTIONTYPEREGISTER are handled by netagenthandleregistersetopt. Here's the code: static errnot...

4.3CVSS7.4AI score0.00931EPSS
Exploits1
exploitpack
exploitpack
added 2017/05/23 12:0 a.m.12 views

Apple macOSiOS Kernel - Memory Disclosure Due to Lack of Bounds Checking in netagent Socket Option Handling

Apple macOSiOS Kernel - Memory Disclosure Due to Lack of Bounds Checking in netagent Socket Option Handling / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1140 netagentctlsetopt is the setsockopt handler for netagent control sockets. Options of type NETAGENTOPTIONTYPEREGISTER...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/04/12 10:51 a.m.6 views

kernel: Signed overflow for SO_{SND|RCV}BUFFORCE

A flaw was found in the Linux kernel's implementation of setsockopt for the SOSND|RCVBUFFORCE setsockopt system call. Users with non-namespace CAPNETADMIN are able to trigger this call and create a situation in which the sockets sendbuff data size could be negative. This could adversely affect...

7.8CVSS6.8AI score0.01566EPSS
Exploits8References4
OSV
OSV
added 2017/01/11 8:7 a.m.4 views

USN-3169-2 linux-lts-xenial vulnerabilities

USN-3169-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Dmitry Vyukov discovered that the KVM implementation in the Linux kernel did not...

7.8CVSS6.7AI score0.01566EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2016/06/24 12:0 a.m.142 views

RHEL 7 : kernel (RHSA-2016:1277)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.4AI score0.00483EPSS
Exploits0References5
exploitpack
exploitpack
added 2015/01/05 11:45 a.m.23 views

Sitecom-MD-25x

Exploit Title: Sitecom MD-253 and MD-254 Network Storage Reverse Shell Exploit Date: 09/11/12 Exploit Author: Mattijs van Ommeren mattijs at alcyon dot nl Vendor Homepage: http://www.sitecom.com Software Link: http://www.sitecom.com/download/5012/SitecomNas.2.4.17.bin Version: 2.4.17 and below...

0.1AI score
Exploits0
Cent OS
Cent OS
added 2014/12/17 12:13 p.m.108 views

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2014:1997 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System...

7.8CVSS6.6AI score0.08579EPSS
Exploits15References7
RedHat Linux
RedHat Linux
added 2014/07/23 4:4 p.m.53 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix two security issues are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

6.9CVSS6.5AI score0.02324EPSS
Exploits12References3
RedHat Linux
RedHat Linux
added 2014/03/11 5:7 p.m.13 views

Kernel: net: memory corruption with UDP_CORK and UFO

The Linux kernel before 3.12, when UDP Fragmentation Offload UFO is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service memory corruption and system crash or possibly gain privileges via a crafted application that uses the UDPCORK...

6.9CVSS7.2AI score0.00589EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/01/28 5:38 p.m.7 views

Kernel: net: memory corruption with UDP_CORK and UFO

The Linux kernel before 3.12, when UDP Fragmentation Offload UFO is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service memory corruption and system crash or possibly gain privileges via a crafted application that uses the UDPCORK...

6.9CVSS7.2AI score0.00589EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2013/11/19 12:0 a.m.3 views

PT-2013-5083 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.33 Description: The issue is related to multiple stack-based buffer overflows in the Linux kernel. These overflows occur in the ip vs ctl.c file when CONFIG IP VS is used, allowing local users with the CAP N...

7CVSS6.6AI score0.00654EPSS
Exploits0References21
OSV
OSV
added 2013/07/29 1:59 p.m.1 views

DEBIAN-CVE-2013-4163

The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...

4.7CVSS5.8AI score0.00524EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.52 views

Oracle Linux 6 : kernel (ELSA-2011-0283)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0283 advisory. - net tcp: Increase TCPMAXSEG socket option minimum to TCPMINMSS Frantisek Hrbata 652510 652511 CVE-2010-4165 - perf perfevents: Fix perfcountermmap ho...

4.9CVSS5.7AI score0.01355EPSS
Exploits18References4
Tenable Nessus
Tenable Nessus
added 2013/03/01 12:0 a.m.31 views

Scientific Linux Security Update : dnsmasq on SL6.x i386/x86_64 (20130221)

It was discovered that dnsmasq, when used in combination with certain libvirtd configurations, could incorrectly process network packets from network interfaces that were intended to be prohibited. A remote, unauthenticated attacker could exploit this flaw to cause a denial of service via DNS...

5CVSS6.9AI score0.05028EPSS
Exploits0References2
Rows per page
Query Builder