Archiv pro měsíc: Únor 2016 Linux Kernel Pptp_bind() And Pptp_connect() Validation Flaw Lets Local Users View Portions Of System Memory On The Target System Vulnerabilities

The (1) pptp_bind and (2) pptp_connect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application. Xen XSA-159 Denying Service To Legitimate Users Vulnerabilities

The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) , related to XENMEM_exchange error handling. Multiple Cross-Site Scripting (XSS) In Titan Framework Vulnerabilities

Multiple cross-site scripting (XSS) vulnerabilities in the Titan Framework plugin before 1.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) t parameter to iframe-googlefont-preview.php or the (2) text parameter to iframe-font-preview.php. Cisco Unified Computing System 6200 Series Lets Remote Users Consume Excessive CPU Resources On The Target System Vulnerabilities

Cisco Unified Computing System (UCS) 2.2(3f)A on Fabric Interconnect 6200 devices allows remote attackers to cause a denial of service (CPU consumption or device outage) via a SYN flood on the SSH port during the booting process. Libxml2 Out Of Bounds Read Multiple Information Disclosure Vulnerabilities

The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read. Blue Coat ProxySG Open Redirect Flaw In Coaching Page Lets Remote Users Redirect The Target User’s Browser To An Arbitrary Site Vulnerabilities

Open redirect vulnerability in Blue Coat ProxySG 6.5 before and 6.6 and Advanced Secure Gateway (ASG) 6.6 might allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a base64-encoded URL in conjunction with a "clear text" one in a coaching page.