Security News

CVE-2017-8408

National Vulnerability Database - Tue, 07/02/2019 - 12:15
An issue was discovered on D-Link DCS-1130 devices. The device provides a user with the capability of setting a SMB folder for the video clippings recorded by the device. It seems that the GET parameters passed in this request (to test if SMB credentials and hostname sent to the device work properly) result in being passed as commands to a "system" API in the function and thus result in command injection on the device. If the firmware version is dissected using binwalk tool, we obtain a cramfs-root archive which contains the filesystem set up on the device that contains all the binaries. The binary "cgibox" is the one that has the vulnerable function "sub_7EAFC" that receives the values sent by the GET request. If we open this binary in IDA-pro we will notice that this follows a ARM little endian format. The function sub_7EAFC in IDA pro is identified to be receiving the values sent in the GET request and the value set in GET parameter "user" is extracted in function sub_7E49C which is then passed to the vulnerable system API call.
Categories: Security News

CVE-2019-4087

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to specifically crafted communication exchanges. By sending an overly long request, a remote attacker could overflow a buffer and execute arbitrary code on the system with instance id privileges or cause the server or storage agent to crash. IBM X-Force ID: 157510.
Categories: Security News

CVE-2019-4088

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents could allow a local attacker to gain elevated privileges on the system, caused by loading a specially crafted library loaded by the dsmqsan module. By setting up such a library, a local attacker could exploit this vulnerability to gain root privileges on the vulnerable system. IBM X-Force ID: 157511.
Categories: Security News

CVE-2019-4129

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote attacker to obtain sensitive information, caused by an error message containing a stack trace. By creating an error with a stack trace, an attacker could exploit this vulnerability to potentially obtain details on the Operations Center architecture. IBM X-Force ID: 158279.
Categories: Security News

CVE-2019-4134

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158281.
Categories: Security News

CVE-2019-4140

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Tivoli Storage Manager Server (IBM Spectrum Protect 7.1 and 8.1) could allow a local user to replace existing databases by restoring old data. IBM X-Force ID: 158336.
Categories: Security News

CVE-2019-4260

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Daeja ViewONE Professional, Standard & Virtual 5.0 through 5.0.5 could allow an unauthorized user to download server files resulting in sensitive information disclosure. IBM X-Force ID: 160012.
Categories: Security News

CVE-2019-4292

National Vulnerability Database - Tue, 07/02/2019 - 11:15
IBM Security Guardium 10.5 could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable web server. IBM X-Force ID: 160698.
Categories: Security News

CVE-2019-13148 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the UDP Ports To Open in Add Gaming Rule.
Categories: Security News

CVE-2019-13149 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the key passwd in Routing RIP Settings.
Categories: Security News

CVE-2019-13150 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication). The command injection exists in the key ip_addr.
Categories: Security News

CVE-2019-13151 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the action set_sta_enrollee_pin_5g and the key wps_sta_enrollee_pin.
Categories: Security News

CVE-2019-13152 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the IP Address in Add Gaming Rule.
Categories: Security News

CVE-2019-13153 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the Private Port in Add Virtual Server.
Categories: Security News

CVE-2019-13154 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the TCP Ports To Open in Add Gaming Rule.
Categories: Security News

CVE-2019-13155 (tew-827dru_firmware)

National Vulnerability Database - Tue, 07/02/2019 - 09:15
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the IP Address in Add Virtual Server.
Categories: Security News

Vuln: Schneider Electric Modicon Controllers CVE-2019-6819 Denial of Service Vulnerability

SecurityFocus Vulnerabilities - Tue, 07/02/2019 - 00:00
Schneider Electric Modicon Controllers CVE-2019-6819 Denial of Service Vulnerability
Categories: Security News

Vuln: Quest KACE Systems Management Appliance CVE-2019-10973 Security Bypass Vulnerability

SecurityFocus Vulnerabilities - Tue, 07/02/2019 - 00:00
Quest KACE Systems Management Appliance CVE-2019-10973 Security Bypass Vulnerability
Categories: Security News

CVE-2019-13147

National Vulnerability Database - Mon, 07/01/2019 - 20:15
In Audio File Library (aka audiofile) 0.3.6, there exists one NULL pointer dereference bug in ulaw2linear_buf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file.
Categories: Security News

Inside the MSRC – Building your own security incident response process

Security Research & Defense - Mon, 07/01/2019 - 20:05
This is the third and last in a series of posts that looks at how Microsoft responds to elevated threats to customers through the Microsoft Security Response Center’s (MSRC) Software and Services Incident Response Plan (SSIRP). Our previous posts discussed how Microsoft protects customers against elevated threats and the anatomy of a SSIRP incident. In …

Inside the MSRC – Building your own security incident response process Read More »

Categories: Security News

Pages