Security News

CVE-2018-10539

National Vulnerability Database - Sun, 04/29/2018 - 11:29
An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytes_to_copy calculation and subsequent malloc call, leading to insufficient memory allocation.
Categories: Security News

CVE-2018-10540

National Vulnerability Database - Sun, 04/29/2018 - 11:29
An issue was discovered in WavPack 5.1.0 and earlier for W64 input. Out-of-bounds writes can occur because ParseWave64HeaderConfig in wave64.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytes_to_copy calculation and subsequent malloc call, leading to insufficient memory allocation.
Categories: Security News

CVE-2018-10528

National Vulnerability Database - Sat, 04/28/2018 - 23:29
An issue was discovered in LibRaw 0.18.9. There is a stack-based buffer overflow in the utf2char function in libraw_cxx.cpp.
Categories: Security News

CVE-2018-10529

National Vulnerability Database - Sat, 04/28/2018 - 23:29
An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds read affecting the X3F property table list implementation in libraw_x3f.cpp and libraw_cxx.cpp.
Categories: Security News

CVE-2018-10527

National Vulnerability Database - Sat, 04/28/2018 - 12:29
EasyCMS 1.3 is prone to Stored XSS when posting an article; four fields are affected: title, keyword, abstract, and content, as demonstrated by the /admin/index/index.html#listarticle URI.
Categories: Security News

CVE-2018-10468

National Vulnerability Database - Sat, 04/28/2018 - 09:29
The transferFrom function of a smart contract implementation for Useless Ethereum Token (UET), an Ethereum ERC20 token, allows attackers to steal assets (e.g., transfer all victims' balances into their account) because certain computations involving _value are incorrect, as exploited in the wild starting in December 2017, aka the "transferFlaw" issue.
Categories: Security News

CVE-2017-18263

National Vulnerability Database - Fri, 04/27/2018 - 21:29
Seagate Media Server in Seagate Personal Cloud before 4.3.18.4 has directory traversal in getPhotoPlaylistPhotos.psp via a parameter named url.
Categories: Security News

Bugtraq: [slackware-security] openvpn (SSA:2018-116-01)

SecurityFocus Vulnerabilities - Fri, 04/27/2018 - 19:20
[slackware-security] openvpn (SSA:2018-116-01)
Categories: Security News

Bugtraq: [HITB-Announce] HITBGSEC2018 CFP - Final Call

SecurityFocus Vulnerabilities - Fri, 04/27/2018 - 19:20
[HITB-Announce] HITBGSEC2018 CFP - Final Call
Categories: Security News

Bugtraq: [SECURITY] [DSA 4180-1] drupal7 security update

SecurityFocus Vulnerabilities - Fri, 04/27/2018 - 19:20
[SECURITY] [DSA 4180-1] drupal7 security update
Categories: Security News

Bugtraq: Secunia Research: Oracle Outside In Technology Use-After-Free Vulnerability

SecurityFocus Vulnerabilities - Fri, 04/27/2018 - 19:20
Secunia Research: Oracle Outside In Technology Use-After-Free Vulnerability
Categories: Security News

CVE-2018-10515

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "file unpack" operation in the admin dashboard contains a remote code execution vulnerability exploitable by an admin user because a .php file can be present in the extracted ZIP archive.
Categories: Security News

CVE-2018-10516

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "file rename" operation in the admin dashboard contains a sensitive information disclosure vulnerability, exploitable by an admin user, that can cause DoS by moving config.php to the upload/ directory.
Categories: Security News

CVE-2018-10517

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "module import" operation in the admin dashboard contains a remote code execution vulnerability, exploitable by an admin user, because an XML Package can contain base64-encoded PHP code in a data element.
Categories: Security News

CVE-2018-10518

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "file delete" operation in the admin dashboard contains an arbitrary file deletion vulnerability that can cause DoS, exploitable by an admin user, because the attacker can remove all lib/ files in all directories.
Categories: Security News

CVE-2018-10519

National Vulnerability Database - Fri, 04/27/2018 - 14:29
CMS Made Simple (CMSMS) 2.2.7 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, because files in the tmp/ directory are accessible through HTTP requests. NOTE: this vulnerability exists because of an incorrect fix for CVE-2018-10084.
Categories: Security News

CVE-2018-10520

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "module remove" operation in the admin dashboard contains an arbitrary file deletion vulnerability that can cause DoS, exploitable by an admin user, because the attacker can remove all lib/ files in all directories.
Categories: Security News

CVE-2018-10521

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "file move" operation in the admin dashboard contains an arbitrary file movement vulnerability that can cause DoS, exploitable by an admin user, because config.php can be moved into an incorrect directory.
Categories: Security News

CVE-2018-10522

National Vulnerability Database - Fri, 04/27/2018 - 14:29
In CMS Made Simple (CMSMS) through 2.2.7, the "file view" operation in the admin dashboard contains a sensitive information disclosure vulnerability, exploitable by ordinary users, because the product exposes unrestricted access to the PHP file_get_contents function.
Categories: Security News

CVE-2018-10523

National Vulnerability Database - Fri, 04/27/2018 - 14:29
CMS Made Simple (CMSMS) through 2.2.7 contains a physical path leakage Vulnerability via /modules/DesignManager/action.ajax_get_templates.php, /modules/DesignManager/action.ajax_get_stylesheets.php, /modules/FileManager/dunzip.php, or /modules/FileManager/untgz.php.
Categories: Security News

Pages