Security News

CVE-2017-18194

National Vulnerability Database - Thu, 02/22/2018 - 11:29
SQL injection vulnerability in users/signup.php in the "signup" component in HamayeshNegar CMS allows a remote attacker to execute arbitrary SQL commands via the "utype" parameter.
Categories: Security News

CVE-2017-5249

National Vulnerability Database - Thu, 02/22/2018 - 11:29
In version 6.1.0.19 and prior of Wink Labs's Wink - Smart Home Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.
Categories: Security News

CVE-2017-5250

National Vulnerability Database - Thu, 02/22/2018 - 11:29
In version 1.9.7 and prior of Insteon's Insteon for Hub Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.
Categories: Security News

CVE-2017-5251

National Vulnerability Database - Thu, 02/22/2018 - 11:29
In version 1012 and prior of Insteon's Insteon Hub, the radio transmissions used for communication between the hub and connected devices are not encrypted.
Categories: Security News

CVE-2017-18193

National Vulnerability Database - Thu, 02/22/2018 - 10:29
fs/f2fs/extent_cache.c in the Linux kernel before 4.13 mishandles extent trees, which allows local users to cause a denial of service (BUG) via an application with multiple threads.
Categories: Security News

CVE-2018-7313

National Vulnerability Database - Thu, 02/22/2018 - 09:29
SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter.
Categories: Security News

Bugtraq: SEC Consult SA-20180221-0 :: Hijacking of arbitrary miSafes Mi-Cam video baby monitors

SecurityFocus Vulnerabilities - Wed, 02/21/2018 - 21:20
SEC Consult SA-20180221-0 :: Hijacking of arbitrary miSafes Mi-Cam video baby monitors
Categories: Security News

Bugtraq: Sharutils 4.15.2 Heap-Buffer-Overflow

SecurityFocus Vulnerabilities - Wed, 02/21/2018 - 21:20
Sharutils 4.15.2 Heap-Buffer-Overflow
Categories: Security News

Bugtraq: Sharutils 4.15.2 Heap-Buffer-Overflow

SecurityFocus Vulnerabilities - Wed, 02/21/2018 - 21:20
Sharutils 4.15.2 Heap-Buffer-Overflow
Categories: Security News

Bugtraq: Multiple Persistent Cross-Site Scripting Vulnerabilities in Quarx CMS

SecurityFocus Vulnerabilities - Wed, 02/21/2018 - 21:20
Multiple Persistent Cross-Site Scripting Vulnerabilities in Quarx CMS
Categories: Security News

CVE-2018-7284

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. When processing a SUBSCRIBE request, the res_pjsip_pubsub module stores the accepted formats present in the Accept headers of the request. This code did not limit the number of headers it processed, despite having a fixed limit of 32. If more than 32 Accept headers were present, the code would write outside of its memory and cause a crash.
Categories: Security News

CVE-2018-7285

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A NULL pointer access issue was discovered in Asterisk through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored internally. When an RTP packet was received, this registry would be consulted if the payload number was not found in the negotiated SDP. This registry was incorrectly consulted for all packets, even those which are dynamic. If the payload number resulted in a codec of a different type than the RTP stream (for example, the payload number resulted in a video codec but the stream carried audio), a crash could occur if no stream of that type had been negotiated. This was due to the code incorrectly assuming that a stream of that type would always exist.
Categories: Security News

CVE-2018-7286

National Vulnerability Database - Wed, 02/21/2018 - 19:29
An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a number of SIP INVITE messages on a TCP or TLS connection and then suddenly closing the connection.
Categories: Security News

CVE-2018-7287

National Vulnerability Database - Wed, 02/21/2018 - 19:29
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of size 0 are mishandled (with a busy loop).
Categories: Security News

CVE-2018-0121

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the authentication functionality of the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrator privileges on an affected system. The vulnerability is due to improper security restrictions that are imposed by the web-based service portal of the affected software. An attacker could exploit this vulnerability by submitting an empty password value to an affected portal when prompted to enter an administrative password for the portal. A successful exploit could allow the attacker to bypass authentication and gain administrator privileges for the web-based service portal of the affected software. This vulnerability affects Cisco Elastic Services Controller Software Release 3.0.0. Cisco Bug IDs: CSCvg29809.
Categories: Security News

CVE-2018-0124

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation during application configuration. An attacker could exploit this vulnerability by using a known insecure key value to bypass security protections by sending arbitrary requests using the insecure key to a targeted application. An exploit could allow the attacker to execute arbitrary code. This vulnerability affects Cisco Unified Communications Domain Manager releases prior to 11.5(2). Cisco Bug IDs: CSCuv67964.
Categories: Security News

CVE-2018-0130

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the use of JSON web tokens by the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to gain administrative access to an affected system. The vulnerability is due to the presence of static default credentials for the web-based service portal of the affected software. An attacker could exploit this vulnerability by extracting the credentials from an image of the affected software and using those credentials to generate a valid administrative session token for the web-based service portal of any other installation of the affected software. A successful exploit could allow the attacker to gain administrative access to the web-based service portal of an affected system. This vulnerability affects Cisco Elastic Services Controller Software Release 3.0.0. Cisco Bug IDs: CSCvg30884.
Categories: Security News

CVE-2018-0139

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the Interactive Voice Response (IVR) management connection interface for Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote attacker to cause the IVR connection to disconnect, creating a system-wide denial of service (DoS) condition. The vulnerability is due to improper handling of a TCP connection request when the IVR connection is already established. An attacker could exploit this vulnerability by initiating a crafted connection to the IP address of the targeted CVP device. An exploit could allow the attacker to disconnect the IVR to CVP connection, creating a DoS condition that prevents the CVP from accepting new, incoming calls while the IVR automatically attempts to re-establish the connection to the CVP. This vulnerability affects Cisco Unified Customer Voice Portal (CVP) Software Release 11.5(1). Cisco Bug IDs: CSCve70560.
Categories: Security News

CVE-2018-0145

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or allow the attacker to access sensitive browser-based information on the affected system. Cisco Bug IDs: CSCvg45105.
Categories: Security News

CVE-2018-0146

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to improper CSRF protection by the affected application. An attacker could exploit this vulnerability by persuading a user of the affected application to click a malicious link. A successful exploit could allow the attacker to submit arbitrary requests and take unauthorized actions on behalf of the user. Cisco Bug IDs: CSCvg45114.
Categories: Security News

Pages