Security News

CVE-2018-0501

National Vulnerability Database - Mon, 08/20/2018 - 20:29
The mirror:// method implementation in Advanced Package Tool (APT) 1.6.x before 1.6.4 and 1.7.x before 1.7.0~alpha3 mishandles gpg signature verification for the InRelease file of a fallback mirror, aka mirrorfail.
Categories: Security News

CVE-2018-12579

National Vulnerability Database - Mon, 08/20/2018 - 18:29
An issue was discovered in OXID eShop Enterprise Edition before 5.3.8, 6.0.x before 6.0.3, and 6.1.x before 6.1.0; Professional Edition before 4.10.8, 5.x and 6.0.x before 6.0.3, and 6.1.x before 6.1.0; and Community Edition before 4.10.8, 5.x and 6.0.x before 6.0.3, and 6.1.x before 6.1.0. An attacker could gain access to the admin panel or a customer account when using the password reset function. To do so, it is required to own a domain name similar to the one the victim uses for their e-mail accounts.
Categories: Security News

CVE-2018-14020

National Vulnerability Database - Mon, 08/20/2018 - 18:29
An issue was discovered in the Paymorrow module 1.0.0 before 1.0.2 and 2.0.0 before 2.0.1 for OXID eShop. An attacker can bypass delivery-address change detection if the payment module doesn't use eShop's checkout procedure properly. To do so, the attacker must change the delivery address to one that is not verified by the Paymorrow module.
Categories: Security News

CVE-2018-14023

National Vulnerability Database - Mon, 08/20/2018 - 18:29
Open Whisper Signal (aka Signal-Desktop) before 1.15.0-beta.10 allows information leakage.
Categories: Security News

CVE-2018-1394

National Vulnerability Database - Mon, 08/20/2018 - 17:29
Multiple IBM Rational products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138425.
Categories: Security News

CVE-2018-1517

National Vulnerability Database - Mon, 08/20/2018 - 17:29
A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.
Categories: Security News

CVE-2018-1656

National Vulnerability Database - Mon, 08/20/2018 - 17:29
The IBM Java Runtime Environment's Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.
Categories: Security News

CVE-2015-5160

National Vulnerability Database - Mon, 08/20/2018 - 17:29
libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local users to obtain sensitive information via a process listing.
Categories: Security News

CVE-2015-5243

National Vulnerability Database - Mon, 08/20/2018 - 17:29
phpWhois allows remote attackers to execute arbitrary code via a crafted whois record.
Categories: Security News

CVE-2016-7048

National Vulnerability Database - Mon, 08/20/2018 - 17:29
The interactive installer in PostgreSQL before 9.3.15, 9.4.x before 9.4.10, and 9.5.x before 9.5.5 might allow remote attackers to execute arbitrary code by leveraging use of HTTP to download software.
Categories: Security News

CVE-2017-16744

National Vulnerability Database - Mon, 08/20/2018 - 17:29
A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.
Categories: Security News

CVE-2017-16748

National Vulnerability Database - Mon, 08/20/2018 - 17:29
An attacker can log into the local Niagara platform (Niagara AX Framework Versions 3.8 and prior or Niagara 4 Framework Versions 4.4 and prior) using a disabled account name and a blank password, granting the attacker administrator access to the Niagara system.
Categories: Security News

CVE-2017-1753

National Vulnerability Database - Mon, 08/20/2018 - 17:29
Multiple IBM Rational products are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 135655.
Categories: Security News

CVE-2018-14078

National Vulnerability Database - Mon, 08/20/2018 - 16:29
Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to reset the admin password via the /ConfigWizard/ChangePwd.esp?2admin URL (Attackers can login using the "admin" username with password "admin" after a successful attack).
Categories: Security News

CVE-2018-14079

National Vulnerability Database - Mon, 08/20/2018 - 16:29
Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to obtain sensitive information via /Status/SystemStatusRpm.esp.
Categories: Security News

CVE-2018-1000221

National Vulnerability Database - Mon, 08/20/2018 - 16:29
pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote() that can result in dequote() function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to have been fixed in 1.5.3.
Categories: Security News

CVE-2018-1000222

National Vulnerability Database - Mon, 08/20/2018 - 16:29
Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.
Categories: Security News

CVE-2018-1000223

National Vulnerability Database - Mon, 08/20/2018 - 16:29
soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility.
Categories: Security News

CVE-2018-1000224

National Vulnerability Database - Mon, 08/20/2018 - 16:29
Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization vulnerability in (De)Serialization functions (core/io/marshalls.cpp) that can result in DoS (packet of death), possible leak of uninitialized memory. This attack appear to be exploitable via A malformed packet is received over the network by a Godot application that uses built-in serialization (e.g. game server, or game client). Could be triggered by multiplayer opponent. This vulnerability appears to have been fixed in 2.1.5, 3.0.6, master branch after commit feaf03421dda0213382b51aff07bd5a96b29487b.
Categories: Security News

CVE-2018-1000225

National Vulnerability Database - Mon, 08/20/2018 - 16:29
Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Cross Site Scripting (XSS) vulnerability in cobbler-web that can result in Privilege escalation to admin.. This attack appear to be exploitable via "network connectivity". Sending unauthenticated JavaScript payload to the Cobbler XMLRPC API (/cobbler-api).
Categories: Security News

Pages