VU#790507: Oracle Solaris vulnerable to arbitrary code execution via /proc/self
The process file system(/proc)in Oracle Solaris 11 and Solaris 10 provides a self/alias that refers to the current executing process’s PID …
CERT
VU#129209: LLVMs Arm stack protection feature can be rendered ineffective
The Stack Protection feature provided in the LLVM Arm backend protects against buffer overflows by adding a cookie value between local …
VU#905115: Multiple TCP Selective Acknowledgement (SACK) and Maximum Segment Size (MSS) networking vulnerabilities may cause denial-of-service conditions in Linux and FreeBSD kernels
CVE-2019-11477:SACK Panic(Linux>=2.6.29). A sequence of specifically crafted selective acknowledgements(SACK)may trigger an integer …
VU#576688: Microsoft Windows RDP can bypass the Windows lock screen
In Windows a session can be locked,which presents the user with a screen that requires authentication to continue using the session. …
VU#576688: Microsoft windows RDP Network Level Authentication can bypass the Windows lock screen
Microsoft Windows Remote Desktop supports a feature called Network Level Authentication(NLA),which moves the authentication aspect of a …
VU#576688: Microsoft windows RDP Network Level Authenticaion can bypass the Windows lock screen
Microsoft Windows Remote Desktop supports a feature called Network Level Authentication(NLA),which moves the authentication aspect of a …
VU#877837: Multiple vulnerabilities in Quest Kace System Management Appliance
CVE-2018-5404:The Quest Kace System Management(K1000)Appliance allows an authenticated,remote attacker with least privileges(‘User Console …
VU#877837: Multiple vulnerabilities in Quest Kace K1000 Appliance
CVE-2018-5404:The Quest Kace K1000 Appliance allows an authenticated,remote attacker with least privileges(‘User Console Only’ role)to …
VU#877837: Multiple vulnerabilities in Quest (Dell) Kace K1000 Appliance
CVE-2018-5404:The Dell Kace K1000 Appliance allows an authenticated,remote attacker with least privileges(‘User Console Only’ role)to …
VU#119704: Microsoft Windows Task Scheduler SetJobFileSecurityByName privilege escalation vulnerability
Task Scheduler is a set of Microsoft Windows components that allows for the execution of scheduled tasks. The front-end components of Task …