Aggregator

A vulnerability, which was classified as problematic, has been found in Ipswitch Ipswitch Collaboration Suite up to <=2006.1. This issue affects some unknown processing of the file imap4d32.exe of the component IMAP Daemon. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2005-0707. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CVS. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to memory corruption. This vulnerability was named CVE-2005-0753. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel 2.4.33/2.6.8. It has been classified as problematic. This affects an unknown part. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2006-5871. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Red Hat Enterprise Linux 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the component ext3 File System. The manipulation leads to denial of service. This vulnerability is handled as CVE-2005-0757. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

Currently trending CVE - Hype Score: 14 - APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation locally. Successful exploitation of this vulnerability can potentially impact of integrity.

Currently trending CVE - Hype Score: 6 - In Tenable Nessus versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite arbitrary local system files with log content at SYSTEM privilege.

Currently trending CVE - Hype Score: 23 - An unauthorized remote attacker can bypass the authentication of the affected software package by misusing an incorrect type conversion. This leads to full compromise of the device

Currently trending CVE - Hype Score: 31 - A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, ...

Currently trending CVE - Hype Score: 6

Currently trending CVE - Hype Score: 12 - Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

Currently trending CVE - Hype Score: 36 - Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.

Currently trending CVE - Hype Score: 39 - Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Currently trending CVE - Hype Score: 20 - This issue was addressed with improved checks. This issue is fixed in watchOS 11.3.1, macOS Ventura 13.7.4, iOS 15.8.4 and iPadOS 15.8.4, iOS 16.7.11 and iPadOS 16.7.11, iPadOS 17.7.5, visionOS 2.3.1, macOS Sequoia 15.3.1, iOS 18.3.1 and iPadOS 18.3.1, macOS Sonoma 14.7.4. A ...

Currently trending CVE - Hype Score: 24 - A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time ...

虚拟化逃逸 Windows 内核提权

jackson的二次反序列化分析jackson 调用 getter 方法这条链子在平时 CTF 比赛中用的非常多，一个是因为 spring boot 框架自带 jackson 依赖，二是它反序列化没有黑名单。而一般遇到重写了 resolveClass 方法的黑名单，常用的是 jackson+SignedObject 二次反序列化进行绕过。SignedObject 二次反序列化该类是 java.se

A vulnerability classified as critical has been found in Symantec Veritas Backup Exec up to 9.0. Affected is an unknown function of the file beserver.exe of the component RPC Interface. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2005-0771. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Sun MySQL up to 4.1.9 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality of the component MS DOS Device Name. The manipulation leads to denial of service. This vulnerability is known as CVE-2005-0799. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to disable the affected component.

A vulnerability was found in Novell Mini FTP Server 2.3 and classified as problematic. Affected by this issue is some unknown functionality of the component Error Message Handler. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2005-0797. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Symantec Veritas Backup Exec up to 9.0. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument Password leads to stack-based buffer overflow. This vulnerability is handled as CVE-2005-0773. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to add further authentication.