CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

DEBIAN-CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

ALPINE-CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

UBUNTU-CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

Cross site request forgery (csrf)

RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions applied to a RESTful request...

CVE-2016-10086

RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions applied to a RESTful request...

Advanced Desktop Locker 6.0.0 - Lock Screen Bypass Vulnerability

Exploit for windows platform in category local exploits Exploit Title : Advanced Desktop Locker Locker Bypass Date: 8 - 1 - 2017 Software Link: http://www.encrypt4all.com/products/advanced-desktop-locker-information.php Sofrware Version : 6.0.0 Exploit Author: Squnity | Sir.matrix Contact:...

Advanced Desktop Locker 6.0.0 Bypass

Exploit Title : Advanced Desktop Locker Locker Bypass Date: 8 - 1 - 2017 Software Link: http://www.encrypt4all.com/products/advanced-desktop-locker-information.php Sofrware Version : 6.0.0 Exploit Author: Squnity | Sir.matrix Contact: [email protected] Website: https://www.squnity.com Category...

Advanced Desktop Locker 6.0.0 - Lock Screen Bypass

Advanced Desktop Locker 6.0.0 - Lock Screen Bypass Exploit Title : Advanced Desktop Locker Locker Bypass Date: 8 - 1 - 2017 Software Link: http://www.encrypt4all.com/products/advanced-desktop-locker-information.php Sofrware Version : 6.0.0 Exploit Author: Squnity | Sir.matrix Contact:...

Advanced Desktop Locker 6.0.0 - Lock Screen Bypass

Exploit Title : Advanced Desktop Locker Locker Bypass Date: 8 - 1 - 2017 Software Link: http://www.encrypt4all.com/products/advanced-desktop-locker-information.php Sofrware Version : 6.0.0 Exploit Author: Squnity | Sir.matrix Contact: [email protected] Website: https://www.squnity.com Category...

MS14-054: Vulnerability in Windows Task Scheduler could allow elevation of privilege: September 9, 2014

MS14-054: Vulnerability in Windows Task Scheduler could allow elevation of privilege: September 9, 2014 INTRODUCTION Microsoft has released security bulletin MS14-054. To learn more about this security bulletin: Home users: https://www.microsoft.com/security/pc-security/updates.aspxSkip the...

DEBIAN-CVE-2016-1922

QEMU aka Quick Emulator built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'currentcpu' remains null, which leads to the null pointer dereference. A user or...

Microsoft Task Scheduler Elevation of Privilege (MS16-130: CVE-2016-7222)

An elevation of privilege vulnerability exists in the Windows Task Scheduler. A locally authenticated attacker can exploit this vulnerability by using Windows Task Scheduler to schedule a new task with a malicious UNC path...

SUSE SLES11 Security Update : xen (SUSE-SU-2016:3273-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2016-9637: ioport array overflow allowing a malicious guest administrator can escalate their privilege to that of the host bsc1011652 - CVE-2016-9386: x86 null segments were not always treated as unusable allowing ...

x86: Mishandling of SYSCALL singlestep during emulation

ISSUE DESCRIPTION The typical behaviour of singlestepping exceptions is determined at the start of the instruction, with a DB trap being raised at the end of the instruction. SYSCALL and SYSRET, although we don't implement it behave differently because the typical behaviour allows userspace to...

SUSE-SU-2016:3083-1 Security update for xen

This update for xen to version 4.5.5 fixes several issues. These security issues were fixed: - CVE-2016-9637: ioport array overflow allowing a malicious guest administrator can escalate their privilege to that of the host bsc1011652 - CVE-2016-9386: x86 null segments were not always treated as...

Debian DSA-3729-1 : xen - security update

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-7777 XSA-190 Jan Beulich from SUSE discovered that Xen does not properly honor CR0.TS and CR0.EM for x86 HVM guests, potentially...

Debian Security Advisory DSA 3729-1 (xen - security update)

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-7777 XSA-190 Jan Beulich from SUSE discovered that Xen does not properly honor CR0.TS and CR0.EM for x86 HVM guests, potentially allowi...