Security News

CVE-2018-5520

National Vulnerability Database - Wed, 05/02/2018 - 09:29
On an F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.1, or 11.2.1-11.6.3.1 system configured in Appliance mode, the TMOS Shell (tmsh) may allow an administrative user to use the dig utility to gain unauthorized access to file system resources.
Categories: Security News

CVE-2018-10544

National Vulnerability Database - Wed, 05/02/2018 - 03:29
Meross MSS110 devices through 1.1.24 contain an unauthenticated admin.htm administrative interface.
Categories: Security News

CVE-2018-10642

National Vulnerability Database - Wed, 05/02/2018 - 03:29
Command injection vulnerability in Combodo iTop 2.4.1 allows remote authenticated administrators to execute arbitrary commands by changing the platform configuration, because web/env-production/itop-config/config.php contains a function called TestConfig() that calls the vulnerable function eval().
Categories: Security News

CVE-2018-10645

National Vulnerability Database - Wed, 05/02/2018 - 03:29
Golden Frog VyprVPN 2.12.1.8015 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "VyprVPN" service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. The "SetProperty" method allows an attacker to configure the "AdditionalOpenVpnParameters" property and control the OpenVPN command line. Using the OpenVPN "plugin" parameter, an attacker may specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user. This attack may be conducted using "VyprVPN Free" account credentials and the VyprVPN Desktop Client.
Categories: Security News

CVE-2018-10646

National Vulnerability Database - Wed, 05/02/2018 - 03:29
CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "CG6Service" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "ConnectToVpnServer" method accepts a "connectionParams" argument that provides attacker control of the OpenVPN command line. An attacker can specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user.
Categories: Security News

CVE-2018-10647

National Vulnerability Database - Wed, 05/02/2018 - 03:29
SaferVPN 4.2.5 for Windows suffers from a SYSTEM privilege escalation vulnerability in its "SaferVPN.Service" service. The "SaferVPN.Service" service executes "openvpn.exe" using OpenVPN config files located within the current user's %LOCALAPPDATA%\SaferVPN\OvpnConfig directory. An authenticated attacker may modify these configuration files to specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user.
Categories: Security News

CVE-2018-6401

National Vulnerability Database - Wed, 05/02/2018 - 03:29
Meross MSS110 devices before 1.1.24 contain a TELNET listener providing access for an undocumented admin account with a blank password.
Categories: Security News

Vuln: GNU glibc 'getanswer_r()' Function Infinite Loop Denial of Service Vulnerability

SecurityFocus Vulnerabilities - Wed, 05/02/2018 - 00:00
GNU glibc 'getanswer_r()' Function Infinite Loop Denial of Service Vulnerability
Categories: Security News

Vuln: PHP CVE-2018-10547 Incomplete Fix Cross Site Scripting Vulnerability

SecurityFocus Vulnerabilities - Wed, 05/02/2018 - 00:00
PHP CVE-2018-10547 Incomplete Fix Cross Site Scripting Vulnerability
Categories: Security News

Bugtraq: CVE-2016-6811: Apache Hadoop Privilege escalation vulnerability

SecurityFocus Vulnerabilities - Tue, 05/01/2018 - 22:20
CVE-2016-6811: Apache Hadoop Privilege escalation vulnerability
Categories: Security News

Bugtraq: [slackware-security] mozilla-firefox (SSA:2018-120-02)

SecurityFocus Vulnerabilities - Tue, 05/01/2018 - 22:20
[slackware-security] mozilla-firefox (SSA:2018-120-02)
Categories: Security News

Bugtraq: [slackware-security] libwmf (SSA:2018-120-01)

SecurityFocus Vulnerabilities - Tue, 05/01/2018 - 22:20
[slackware-security] libwmf (SSA:2018-120-01)
Categories: Security News

CVE-2018-6242

National Vulnerability Database - Tue, 05/01/2018 - 16:29
Some NVIDIA Tegra mobile processors released prior to 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode (RCM). An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to execute unverified code.
Categories: Security News

CVE-2016-10036

National Vulnerability Database - Tue, 05/01/2018 - 15:29
Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory before 4.16 allows remote attackers to (1) deploy an arbitrary servlet application and execute arbitrary code by uploading a war file or (2) possibly write to arbitrary files and cause a denial of service by uploading an HTML file.
Categories: Security News

CVE-2018-10255

National Vulnerability Database - Tue, 05/01/2018 - 15:29
A CSV Injection vulnerability was discovered in clustercoding Blog Master Pro v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
Categories: Security News

CVE-2018-10256

National Vulnerability Database - Tue, 05/01/2018 - 15:29
A SQL Injection vulnerability was discovered in HRSALE The Ultimate HRM v1.0.2 that allows a user with low level privileges to directly modify the SQL query.
Categories: Security News

CVE-2018-10257

National Vulnerability Database - Tue, 05/01/2018 - 15:29
A CSV Injection vulnerability was discovered in HRSALE The Ultimate HRM v1.0.2 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
Categories: Security News

CVE-2018-10258

National Vulnerability Database - Tue, 05/01/2018 - 15:29
A CSV Injection vulnerability was discovered in Shopy Point of Sale v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
Categories: Security News

CVE-2018-10259

National Vulnerability Database - Tue, 05/01/2018 - 15:29
An Authenticated Stored XSS vulnerability was found in HRSALE The Ultimate HRM v1.0.2, exploitable by a low privileged user.
Categories: Security News

CVE-2018-10260

National Vulnerability Database - Tue, 05/01/2018 - 15:29
A Local File Inclusion vulnerability was found in HRSALE The Ultimate HRM v1.0.2, exploitable by a low privileged user.
Categories: Security News

Pages