The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the CPU performance module of Qualcomm ARM’s Android operating system is related to deficiencies in access control for certain functions. Exploiting this vulnerability can allow a local attacker to enhance their privileges through a specially created application...

[SECURITY] Fedora 23 Update: rubygem-actionpack-4.2.3-5.fc23

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 22 Update: rubygem-actionpack-4.2.0-3.fc22

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Siemens SIMATIC S7-1500 Denial of Service Vulnerability (CNVD-2016-00931)

The Siemens SIMATIC S7-1500 is a controller family with a modular structure. A denial of service vulnerability exists in Siemens SIMATIC S7-1500 versions prior to 1.8.3 when processing specially crafted TCP packets. An attacker can exploit the vulnerability to cause the CPU to automatically reboo...

Cross Platform ELF Analysis: ELF Parser

ELF Parser attempts to move ELF malware analysis forward by quickly providing basic information and static analysis of the binary. The end goal of ELF Parser is to indicate to the analyst if it thinks the binary is malicious / dangerous and if so why. Load Any Executable ELF ELF Parser supports...

Huawei ALE and GEM-703L Joint Photographic Experts Group Processing Unit Denial of Service Vulnerability

The Huawei ALE smartphone and GEM-703L smartphone are smartphones from Huawei, China.Joint Photographic Experts Group Processing Unit JPU is one of the drivers.... A security vulnerability in the JPU driver for the Huawei ALE smartphone and GEM-703L smartphone allows remote attackers to gain syst...

How to Configure PVS vDisk Update Management Using SCCM

This article explains how to configure PVS vDisk Update Management using SCCM.It is assumed that SCCM is installed and configured. It is highly advised to designate an OU for the PVS auto update client and limit SCCM access to this OU only...

Huawei ALE and GEM-703L Joint Photographic Experts Group Processing Unit Denial of Service Vulnerability

The Huawei ALE smartphone and the GEM-703L smartphone are both smartphones from Huawei, China.Joint Photographic Experts Group Processing Unit JPU is one of the drivers.... A security vulnerability exists in the JPU driver of the Huawei ALE and GEM-703L smartphones. A remote attacker could exploi...

DEBIAN-CVE-2015-8712

The dissecthsdschchannelinfo function in epan/dissectors/packet-umtsfp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not validate the number of PDUs, which allows remote attackers to cause a denial of service application crash via a crafted packet...

UBUNTU-CVE-2015-8712

The dissecthsdschchannelinfo function in epan/dissectors/packet-umtsfp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not validate the number of PDUs, which allows remote attackers to cause a denial of service application crash via a crafted packet...

Pacom RTU/1000 CCU/EMCS Encryption Weak Password Vulnerability

The Pacom 1000 CCU and RTU are both products of the Swedish company Pacom. The former is a set of network security panels for controlling, monitoring and maintaining remote sites and the latter is a set of security panels for controlling access control alarm systems. A security vulnerability exis...

Qemu: net: pcnet: buffer overflow in non-loopback mode

A buffer overflow flaw was found in the way QEMU's AMD PC-Net II emulation validated certain received packets from a remote host in non-loopback mode. A remote, unprivileged attacker could potentially use this flaw to execute arbitrary code on the host with the privileges of the QEMU process. Not...

Qemu: net: pcnet: buffer overflow in non-loopback mode

A buffer overflow flaw was found in the way QEMU's AMD PC-Net II emulation validated certain received packets from a remote host in non-loopback mode. A remote, unprivileged attacker could potentially use this flaw to execute arbitrary code on the host with the privileges of the QEMU process. Not...

Scientific Linux Security Update : NetworkManager on SL7.x x86_64 (20151119)

It was discovered that NetworkManager would set device MTUs based on MTU values received in IPv6 RAs Router Advertisements, without sanity checking the MTU value first. A remote attacker could exploit this flaw to create a denial of service attack, by sending a specially crafted IPv6 RA packet to...

[SECURITY] Fedora 23 Update: rubygem-flexmock-2.0.2-1.fc23

FlexMock is a simple, but flexible, mock object library for Ruby unit testing...

Huawei VP9660 Multi-Point Control Unit Detection (SNMP)

SNMP based detection of Huawei VP9660 Multi-Point Control Unit MCU. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei VP9660 Multi-Point Control Unit Multiple Vulnerabilities (huawei-sa-20151111-01-vp9660)

Huawei VP9660 Multi-Point Control Unit is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

UBUNTU-CVE-2015-7512

Buffer overflow in the pcnetreceive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service guest OS crash or execute arbitrary code via a large packet...

Design/Logic Flaw

The built-in web server in Huawei VP9660 multi-point control unit with software before V200R001C30SPC700 allows remote administrators to obtain sensitive information or cause a denial of service via a crafted message...

CVE-2015-8227

Huawei VP9660 Multi-Point Control Unit (firmware before V200R001C30SPC700) is affected by CVE-2015-8227. The built-in web server fails to validate certain crafted messages, enabling remote administrators to log in with elevated access to obtain sensitive information or cause a denial of service. ...