Page 34 of 263 results (0.012 seconds)

CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 0

CVE-2013-4344 – qemu: buffer overflow in scsi_target_emulate_report_luns

https://notcve.org/view.php?id=CVE-2013-4344

Buffer overflow in the SCSI implementation in QEMU, as used in Xen, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command. Desbordamiento de buffer en la implementación SCSI de QEMU, tal como es usado en Xen, cuando un controlador SCSI tiene más de 256 dispositivos adjuntos, permite a usuarios locales obtener privilegios a través de un buffer de pequeña transferencia en un comando REPORT LUNS. • http://article.gmane.org/gmane.comp.emulators.qemu/237191 http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html http://osvdb.org/98028 http://rhn.redhat.com/errata/RHSA-2013-1553.html http://rhn.redhat.com/errata/RHSA-2013-1754.html http://www.openwall.com/lists/oss-security/2013/10/02/2 http://www.securityfocus.com/bid/62773 http://www.ubuntu.com/usn/USN-2092-1 https: • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 7.5EPSS: 1%CPEs: 64EXPL: 0

CVE-2013-2919

https://notcve.org/view.php?id=CVE-2013-2919

Google V8, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Google V8, tal como se utiliza en Google Chrome anterior a la versión 30.0.1599.66, permite a atacantes remotos causar una denegación de servicio (corrupción de memoria) o posiblemente tener otro impacto sin especificar a través de vectores desconocidos. • http://googlechromereleases.blogspot.com/2013/10/stable-channel-update.html http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html http://www.debian.org/security/2013/dsa-2785 https://code.google.com/p/chromium/issues/detail?id=282736 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18840 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 1.2EPSS: 0%CPEs: 5EXPL: 0

CVE-2013-2217

https://notcve.org/view.php?id=CVE-2013-2217

cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/. cache.py en Suds 0.4, cuando tempdir es establecido a None, permite a usuarios locales redirigir consultas SOAP y posiblemente tener otros efectos no especificados a través de un ataque de enlaces simbólicos sobre un archivo de caché con un nombre predecible en /tmp/suds. • http://lists.opensuse.org/opensuse-updates/2013-07/msg00062.html http://www.openwall.com/lists/oss-security/2013/06/27/8 http://www.ubuntu.com/usn/USN-2008-1 https://bugzilla.redhat.com/show_bug.cgi?id=978696 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 0

CVE-2013-4288 – polkit: unix-process subject for authorization is racy

https://notcve.org/view.php?id=CVE-2013-4288

Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck. Condición de carrera en PolicyKit (también conocida como polkit) permite a usuarios locales evadir restricciones PolicyKit intencionadas y obtener privilegios iniciando un proceso setuid o pkexec antes de que la comproboación de autorización se realice, relacionado con (1) la función de API polkit_unix_process_new, (2) la API dbus, o (3) la opción --process (unix-process) para autorizar a pkcheck. • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1002375 http://lists.opensuse.org/opensuse-updates/2013-10/msg00004.html http://lists.opensuse.org/opensuse-updates/2013-10/msg00005.html http://lists.opensuse.org/opensuse-updates/2013-10/msg00062.html http://lists.opensuse.org/opensuse-updates/2013-11/msg00000.html http://rhn.redhat.com/errata/RHSA-2013-1270.html http://rhn.redhat.com/errata/RHSA-2013-1460.html http://seclists.org/oss-sec/2013/q3/626 http://www.openwal • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 5.0EPSS: 94%CPEs: 42EXPL: 1

CVE-2013-4123 – Squid 3.3.5 - Denial of Service (PoC)

https://notcve.org/view.php?id=CVE-2013-4123

client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header. client_side_request.cc en Squid 3.2.x anteriores a 3.2.13 y 3.3.x anteriores a 3.3.8 permite a un atacante remoto causar una denegación de servicio a través de un número de puerto manipulado en una cabecera HTTP Host. • https://www.exploit-db.com/exploits/26886 http://lists.opensuse.org/opensuse-updates/2013-09/msg00024.html http://secunia.com/advisories/54142 http://secunia.com/advisories/54834 http://www.squid-cache.org/Advisories/SQUID-2013_3.txt http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11826.patch http://www.squid-cache.org/Versions/v3/3.3/changesets/squid-3.3-12591.patch • CWE-20: Improper Input Validation •