News aggregator

CVE-2018-7184

National Vulnerability Database - Tue, 03/06/2018 - 15:29
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.
Categories: Security News

CVE-2018-7185

National Vulnerability Database - Tue, 03/06/2018 - 15:29
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.
Categories: Security News

CVE-2015-5377

National Vulnerability Database - Tue, 03/06/2018 - 15:29
** DISPUTED ** Elasticsearch before 1.6.1 allows remote attackers to execute arbitrary code via unspecified vectors involving the transport protocol. NOTE: ZDI appears to claim that CVE-2015-3253 and CVE-2015-5377 are the same vulnerability.
Categories: Security News

CVE-2017-15519

National Vulnerability Database - Tue, 03/06/2018 - 15:29
Versions of SnapCenter 2.0 through 3.0.1 allow unauthenticated remote attackers to view and modify backup related data via the Plug-in for NAS File Services. All users are urged to move to version 3.0.1 and perform the mitigation steps or upgrade to 4.0 following the product documentation.
Categories: Security News

CVE-2018-1343

National Vulnerability Database - Tue, 03/06/2018 - 15:29
PAM exposure enabling unauthenticated access to remote host
Categories: Security News

CVE-2018-5729

National Vulnerability Database - Tue, 03/06/2018 - 15:29
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module.
Categories: Security News

CVE-2018-5730

National Vulnerability Database - Tue, 03/06/2018 - 15:29
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership check by supplying both a "linkdn" and "containerdn" database argument, or by supplying a DN string which is a left extension of a container DN string but is not hierarchically within the container DN.
Categories: Security News

CVE-2018-6019

National Vulnerability Database - Tue, 03/06/2018 - 15:29
Samsung Display Solutions App before 3.02 for Android allows man-in-the-middle attackers to spoof B2B content by leveraging failure to use encryption during information transmission.
Categories: Security News

CVE-2018-6527

National Vulnerability Database - Tue, 03/06/2018 - 15:29
XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted deviceid parameter to soap.cgi.
Categories: Security News

CVE-2018-6528

National Vulnerability Database - Tue, 03/06/2018 - 15:29
XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted receiver parameter to soap.cgi.
Categories: Security News

CVE-2018-6529

National Vulnerability Database - Tue, 03/06/2018 - 15:29
XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted Treturn parameter to soap.cgi.
Categories: Security News

CVE-2018-6530

National Vulnerability Database - Tue, 03/06/2018 - 15:29
OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-65L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to execute arbitrary OS commands via the service parameter.
Categories: Security News

CVE-2018-7734

National Vulnerability Database - Tue, 03/06/2018 - 14:29
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users&section=cpanel&page=list request.
Categories: Security News

CVE-2018-7735

National Vulnerability Database - Tue, 03/06/2018 - 14:29
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata&section=cpanel&page=list_filetypes request.
Categories: Security News

CVE-2018-7728

National Vulnerability Database - Tue, 03/06/2018 - 13:29
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.
Categories: Security News

CVE-2018-7729

National Vulnerability Database - Tue, 03/06/2018 - 13:29
An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp.
Categories: Security News

CVE-2018-7730

National Vulnerability Database - Tue, 03/06/2018 - 13:29
An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.
Categories: Security News

CVE-2018-7731

National Vulnerability Database - Tue, 03/06/2018 - 13:29
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class.
Categories: Security News

CVE-2018-7732

National Vulnerability Database - Tue, 03/06/2018 - 13:29
An issue was discovered in YxtCMF 3.1. SQL Injection exists in ShitiController.class.php via the ids array parameter to exam/shiti/delshiti.html.
Categories: Security News

CVE-2018-7733

National Vulnerability Database - Tue, 03/06/2018 - 13:29
An issue was discovered in YxtCMF 3.1. RbacController.class.php has CSRF, as demonstrated by modifying an administrator account via index.php/admin/user/add_post.html.
Categories: Security News

Pages