Security News

CVE-2018-19661

National Vulnerability Database - Thu, 11/29/2018 - 03:29
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
Categories: Security News

CVE-2018-19662

National Vulnerability Database - Thu, 11/29/2018 - 03:29
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.
Categories: Security News

CVE-2018-19664

National Vulnerability Database - Thu, 11/29/2018 - 03:29
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
Categories: Security News

CVE-2018-19666

National Vulnerability Database - Thu, 11/29/2018 - 03:29
The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.
Categories: Security News

CVE-2018-19655

National Vulnerability Database - Thu, 11/29/2018 - 00:29
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
Categories: Security News

CVE-2018-19654

National Vulnerability Database - Thu, 11/29/2018 - 00:29
An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. There is a discrepancy in username checking between a component that does string validation, and a component that is supposed to query a MySQL database. Thus, it is possible to register a new account with a duplicate username, as demonstrated by use of the test%c2 string when a test account already exists.
Categories: Security News

Vuln: QEMU CVE-2018-19665 Integer Overflow Vulnerability

SecurityFocus Vulnerabilities - Thu, 11/29/2018 - 00:00
QEMU CVE-2018-19665 Integer Overflow Vulnerability
Categories: Security News

Vuln: Joomla Event Booking Extension 'com_eventbooking' Arbitrary File Download Vulnerability

SecurityFocus Vulnerabilities - Thu, 11/29/2018 - 00:00
Joomla Event Booking Extension 'com_eventbooking' Arbitrary File Download Vulnerability
Categories: Security News

Vuln: Linux Kernel 'cdrom_ioctl_select_disc()' Local Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Thu, 11/29/2018 - 00:00
Linux Kernel 'cdrom_ioctl_select_disc()' Local Information Disclosure Vulnerability
Categories: Security News

CVE-2018-19622

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.
Categories: Security News

CVE-2018-19623

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
Categories: Security News

CVE-2018-19624

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.
Categories: Security News

CVE-2018-19625

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.
Categories: Security News

CVE-2018-19626

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.
Categories: Security News

CVE-2018-19627

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
Categories: Security News

CVE-2018-19628

National Vulnerability Database - Wed, 11/28/2018 - 23:29
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.
Categories: Security News

CVE-2018-17930

National Vulnerability Database - Wed, 11/28/2018 - 18:29
A stack-based buffer overflow vulnerability has been identified in Teledyne DALSA Sherlock Version 7.2.7.4 and prior, which may allow remote code execution.
Categories: Security News

CVE-2018-18203

National Vulnerability Database - Wed, 11/28/2018 - 18:29
A vulnerability in the update mechanism of Subaru StarLink Harman head units 2017, 2018, and 2019 may give an attacker (with physical access to the vehicle's USB ports) the ability to rewrite the firmware of the head unit. This occurs because the device accepts modified QNX6 filesystem images (as long as the attacker obtains access to certain Harman decryption/encryption code) as a consequence of a bug where unsigned images pass a validity check. An attacker could potentially install persistent malicious head unit firmware and execute arbitrary code as the root user.
Categories: Security News

CVE-2018-19370

National Vulnerability Database - Wed, 11/28/2018 - 17:29
A Race condition vulnerability in unzip_file in admin/import/class-import-settings.php in the Yoast SEO (wordpress-seo) plugin before 9.2.0 for WordPress allows an SEO Manager to perform command execution on the Operating System via a ZIP import.
Categories: Security News

CVE-2018-19651

National Vulnerability Database - Wed, 11/28/2018 - 17:29
admin/functions/remote.php in Interspire Email Marketer through 6.1.6 has Server Side Request Forgery (SSRF) via a what=importurl&url= request with an http or https URL. This also allows reading local files with a file: URL.
Categories: Security News

Pages