Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
  home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of SLES

SLES vulnerability: multiple vulnerabilities
An attacker can use several vulnerabilities of Firefox, Thunderbird and SeaMonkey.

SLES vulnerability: privilege escalation via env_reset
When env_reset is disabled, an attacker can use the LD_PRELOAD environment variable on the sudo command line, in order to escalate his privileges.

SLES vulnerability: memory corruption via cifs_iovec_write
A local attacker can generate a memory corruption in the cifs_iovec_write() function of the Linux kernel, in order to trigger a denial of service, and possibly to execute code.

SLES vulnerability: integer overflow of XSM/Flask
An attacker can generate an integer overflow in XSM/Flask of Xen, in order to trigger a denial of service, and possibly to execute code.

SLES vulnerability: denial of service via Apache Commons FileUpload
An attacker can use a long Content-Type header, to generate an infinite loop in Apache Commons FileUpload or Apache Tomcat, in order to trigger a denial of service.

Display other vulnerabilities of SLES described by Vigil@nce...

Display information about SLES:



















Copyright 1999-2014 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française