OpenJDK: insufficient thread consistency checks in ObjectInputStream (Serialization, 8129952)

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization...

PHP < 5.5.28, 5.6.x < 5.6.12 DoS Vulnerability (Jul 2016) - Windows

PHP is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

Fedora 22 : webkitgtk4 (2016-f5107c318e)

This update addresses the following vulnerabilities : - CVE-2016-1857, CVE-2016-1856 Additional fixes : - Improved the detection of supported MIME types supported by the media player. - Fix web process crash when playing adaptive streaming media. - Change the volume while thumb slider is dragged,...

PHP 5.5.x < 5.5.37 / 5.6.x < 5.6.23 / 7.0.x < 7.0.8 Multiple Vulnerabilities

Binary data 9393.prm...

MS16-032 Secondary Logon Handle Privilege Escalation

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/payloadgenerator' require 'msf/core/exploit/powershell' require 'rex' class MetasploitModule 'MS16-032 Secondary Logon Handle Privile...

The vulnerability of the Firefox browser, which allows a remote attacker to execute arbitrary code or trigger a service denial-of-service attack.

The vulnerability of the Firefox browser in the OMTC component lies in the incorrect invocation of the memset function when interacting with the mozilla::layers::BufferTextureClient::AllocateForSurface function. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability that allows for increased privilege levels is related to improper handling by the Windows kernel driver of window descriptors for objects belonging to the thread. If this vulnerability is exploited successfully, a malicious individual will be able to execute arbitrary code in th...

The vulnerability of the MySQL database management system allows unauthorized users, after passing authentication, to affect the accessibility of data.

The vulnerability of the Oracle MySQL database management system, related to the MySQL Server component within Oracle MySQL, allows unauthorized users who have been authenticated to affect data accessibility by using a sub-component called Thread Pooling...

The vulnerability of Google Chrome browser allows a malicious actor to trigger a service failure.

The Google Chrome browser contains a vulnerability related to the use of memory after it is freed in the ChildThread::Shutdown function in the content/child/childthread.cc API file system. This vulnerability allows a malicious actor to cause a service failure or otherwise affect the system by usi...

Vulnerability of the Windows operating system, allowing for an increase in privilege levels

The vulnerability that allows for increased privilege levels is related to the improper use of the Windows kernel mode driver’s window descriptors for objects in memory that belong to the thread. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated...

DEBIAN-CVE-2016-5828

The startthread function in arch/powerpc/kernel/process.c in the Linux kernel through 4.6.3 on powerpc platforms mishandles transactional state, which allows local users to cause a denial of service invalid process state or TM Bad Thing exception, and system crash or possibly have unspecified oth...

UBUNTU-CVE-2016-5828

The startthread function in arch/powerpc/kernel/process.c in the Linux kernel through 4.6.3 on powerpc platforms mishandles transactional state, which allows local users to cause a denial of service invalid process state or TM Bad Thing exception, and system crash or possibly have unspecified oth...

Bruteforce BitCoin Wallet

The purpose of this program is to try to find the password of an encrypted Peercoin or Bitcoin, Litecoin, etc… wallet file i.e. wallet.dat. It can be used in two ways: try all the possible passwords given a charset try all the passwords in a file There is a command line option to specify the numb...

Google Android - &#039;/system/bin/sdcard&#039; Stack Buffer Overflow (PoC)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=798 Android: Stack-buffer-overflow in /system/bin/sdcard There's an integer overflow issue in getnodepathlocked, which results in a buffer overflow. For all of the calling paths, this is going to overflow a stack buffer in the pare...

Oracle MySQL Multiple Unspecified Vulnerabilities - 18 (Jun 2016) - Linux

Oracle MySQL is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql";...

DLA-499-1 php5 - security update

Bulletin has no description...

PHP Denial of Service Vulnerability (CNVD-2016-03580)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. A...

CVE-2015-8878

main/phpopentemporaryfile.c in PHP before 5.5.28 and 5.6.x before 5.6.12 does not ensure thread safety, which allows remote attackers to cause a denial of service race condition and heap memory corruption by leveraging an application that performs many temporary-file accesses...

Race condition

main/phpopentemporaryfile.c in PHP before 5.5.28 and 5.6.x before 5.6.12 does not ensure thread safety, which allows remote attackers to cause a denial of service race condition and heap memory corruption by leveraging an application that performs many temporary-file accesses...

CVE-2015-8878

main/phpopentemporaryfile.c in PHP before 5.5.28 and 5.6.x before 5.6.12 does not ensure thread safety, which allows remote attackers to cause a denial of service race condition and heap memory corruption by leveraging an application that performs many temporary-file accesses...