Elevation of Privilege Vulnerability in the syslog Component of Multiple Apple Products

Apple iOS, watchOS, macOS, and tvOS are all products of Apple Inc. Apple iOS is an operating system developed for mobile devices; tvOS is an operating system for smart televisions. syslog is one of the command-line syslog utility components that is used for a variety of tasks related to Apple's...

Mac OS X 10.x < 10.12.2 Multiple Vulnerabilities

Binary data 9840.prm...

macOS 10.12.x < 10.12.2 Multiple Vulnerabilities

The remote host is running a version of macOS that is 10.12.x prior to 10.12.2. It is, therefore, affected by multiple vulnerabilities in the following components : - apachemodphp - AppleGraphicsPowerManagement - Assets - Audio - Bluetooth - CoreCapture - CoreFoundation - CoreGraphics - CoreMedia...

Apple iOS < 10.2 Multiple Vulnerabilities

Binary data appleios102check.nbin...

geoip-attack-map - Cyber Security GeoIP Attack Map Visualization

This geoip attack map visualizer was developed to display network attacks on your organization in real time. The data server follows a syslog file, and parses out source IP, destination IP, source port, and destination port. Protocols are determined via common ports, and the visualizations vary i...

MySQL / MariaDB / PerconaDB Root Privilege Escalation

============================================= - Release date: 01.11.2016 - Discovered by: Dawid Golunski - Severity: High/Critical - CVE-2016-6664 / OCVE-2016-5617 - http://legalhackers.com ============================================= I. VULNERABILITY ------------------------- MySQL / MariaDB /...

CVE-2016-6653

The MariaDB auditplugin component in Pivotal Cloud Foundry PCF cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials...

CVE-2016-6653

The MariaDB auditplugin component in Pivotal Cloud Foundry PCF cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials...

Design/Logic Flaw

The MariaDB auditplugin component in Pivotal Cloud Foundry PCF cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials...

CVE-2016-6653

The MariaDB auditplugin component in Pivotal Cloud Foundry PCF cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials...

CVE-2016-6653

Summary of CVE-2016-6653 (MariaDB audit_plugin in CF cf-mysql-release 27/28) The MariaDB audit_plugin integrated into PCF cf-mysql-release versions 27 and 28 can emit audit logs to syslog. A bug causes those logs to include sensitive information, potentially exposing application data and cleartex...

CVE-2016-6653 MySQL Audit logs sent to Syslog | Cloud Foundry

CVE-2016-6653 MySQL Audit logs sent to Syslog High Vendor Cloud Foundry Foundation Versions Affected Cloud Foundry MySQL Release versions 271 and 282 Description MariaDB’s auditplugin, incorporated in cf-mysql-release starting with cf-mysql-release v27, allows the Operator to enable audit trails,...

CVE-2016-6142

SAP HANA DB 1.00.73.00.389160 NewDB100REL allows remote attackers to inject arbitrary audit trail fields into the SYSLOG via vectors related to the SQL protocol, aka SAP Security Note 2197459...

Code injection

SAP HANA DB 1.00.73.00.389160 NewDB100REL allows remote attackers to inject arbitrary audit trail fields into the SYSLOG via vectors related to the SQL protocol, aka SAP Security Note 2197459...

CVE-2016-6142

Vulnerability summary (CVE-2016-6142): SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) is susceptible to remote injection of arbitrary audit-trail fields into the SYSLOG via SQL protocol-related vectors (as described by SAP Security Note 2197459). Affected component is SAP HANA DB; root cause involv...

CVE-2016-6142

SAP HANA DB 1.00.73.00.389160 NewDB100REL allows remote attackers to inject arbitrary audit trail fields into the SYSLOG via vectors related to the SQL protocol, aka SAP Security Note 2197459...

SolarWinds Kiwi Syslog Server Service Path Privilege Elevation Vulnerability

SolarWinds Kiwi Syslog Server is a syslog server for IT administrators and network teams. SolarWinds Kiwi Syslog Server has a security vulnerability. It allows a local user to elevate privileges on the system to execute arbitrary code...

XenServer Syslog Rotation and Tuning

Disk space on XenServer's root partition is almost at or is at capacity perdf -h There are numerous compressed "gz" files in /var/log/ from Syslog rotation...

SolarWinds Kiwi Syslog Server Elevation of Privilege Vulnerability

SolarWinds network security management software products. The application can be installed on a windows system with the option to select the default security service. The default installation path "C:\Program Files x86" is selected when installing the 32-bit application, which may allow an...

SolarWinds Kiwi Syslog Server 9.5.1 - Unquoted Service Path Privilege Escalation

Exploit for windows platform in category local exploits Document Title: ================ SolarWinds Kiwi Syslog Server Unquoted Service Path Privilege Escalation Vulnerability Author: ======== Halil Dalabasmaz Release Date: ============== 29 SEP 2016 Product & Service Introduction:...