22 matches found
EUVD-2016-2679
Malware in sbrugna...
EUVD-2016-2668
Malware in sbrugna...
EUVD-2015-7843
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-1584
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of Unity8 a running but not active application on a large-screen device could talk with Maliit and consume keyboard input. CVE-2016-1584 Note th...
Canonical Unity8 Information Disclosure Vulnerability
Canonical Unity8 is a graphical user interface for the GNOME desktop environment developed by Canonical in the UK. An information disclosure vulnerability exists in Canonical Unity8. The vulnerability can be exploited by an attacker to initiate MTP services via the emergency dialer...
CVE-2015-7946
Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed in 8.11+16.04.20160111.1-0ubuntu1 and 8.11+15.04.20160122-0ubuntu1...
UBUNTU-CVE-2015-7946
Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed in 8.11+16.04.20160111.1-0ubuntu1 and 8.11+15.04.20160122-0ubuntu1...
Information disclosure
Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed in 8.11+16.04.20160111.1-0ubuntu1 and 8.11+15.04.20160122-0ubuntu1...
CVE-2015-7946
Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed in 8.11+16.04.20160111.1-0ubuntu1 and 8.11+15.04.20160122-0ubuntu1...
CVE-2015-7946 MTP service exposed during emergency dialer
Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed in 8.11+16.04.20160111.1-0ubuntu1 and 8.11+15.04.20160122-0ubuntu1...
CVE-2015-7946
CVE-2015-7946 describes an Information Exposure vulnerability in Unity8 used on Ubuntu Phone (and possibly elsewhere) that allows an attacker to enable the MTP service by opening the emergency dialer. The issue is confirmed as a vulnerability in Unity8’s handling of the emergency dialer and is mi...
CVE-2016-1584
In all versions of Unity8 a running but not active application on a large-screen device could talk with Maliit and consume keyboard input...
CVE-2016-1573
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope...
CVE-2016-1573
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope...
Input validation
In all versions of Unity8 a running but not active application on a large-screen device could talk with Maliit and consume keyboard input...
Code injection
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope...
CVE-2016-1584
In all versions of Unity8 a running but not active application on a large-screen device could talk with Maliit and consume keyboard input...
CVE-2016-1573
CVE-2016-1573 affects Unity8 before 8.11+16.04.20160122-0ubuntu1. The vulnerability arises from plugins/Dash/CardCreator.js where a specially crafted fallback art property supplied by a scope can cause code execution. In the CVE context, this allows arbitrary QML code execution within the unity8-...
CVE-2016-1584
CVE-2016-1584 concerns Unity8 on large-screen devices where a running but non-active application could communicate with Maliit and consume keyboard input. The connected sources confirm this is a vulnerability in the Unity8/converged application lifecycle, allowing background apps to interact with...
CVE-2016-1573 Using a specially crafted fallback art property, scopes can execute arbitrary QML code in context of unity8-dash
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope...