News aggregator

CVE-2018-7158

National Vulnerability Database - Thu, 05/17/2018 - 10:29
The `'path'` module in the Node.js 4.x release line contains a potential regular expression denial of service (ReDoS) vector. The code in question was replaced in Node.js 6.x and later so this vulnerability only impacts all versions of Node.js 4.x. The regular expression, `splitPathRe`, used within the `'path'` module for the various path parsing functions, including `path.dirname()`, `path.extname()` and `path.parse()` was structured in such a way as to allow an attacker to craft a string, that when passed through one of these functions, could take a significant amount of time to evaluate, potentially leading to a full denial of service.
Categories: Security News

CVE-2018-7159

National Vulnerability Database - Thu, 05/17/2018 - 10:29
The HTTP parser in all current versions of Node.js ignores spaces in the `Content-Length` header, allowing input such as `Content-Length: 1 2` to be interpreted as having a value of `12`. The HTTP specification does not allow for spaces in the `Content-Length` value and the Node.js HTTP parser has been brought into line on this particular difference. The security risk of this flaw to Node.js users is considered to be VERY LOW as it is difficult, and may be impossible, to craft an attack that makes use of this flaw in a way that could not already be achieved by supplying an incorrect value for `Content-Length`. Vulnerabilities may exist in user-code that make incorrect assumptions about the potential accuracy of this value compared to the actual length of the data supplied. Node.js users crafting lower-level HTTP utilities are advised to re-check the length of any input supplied after parsing is complete.
Categories: Security News

CVE-2018-7160

National Vulnerability Database - Thu, 05/17/2018 - 10:29
The Node.js inspector, in 6.x and later is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser on the same computer, or another computer with network access to the computer running the Node.js process. A malicious website could use a DNS rebinding attack to trick the web browser to bypass same-origin-policy checks and to allow HTTP connections to localhost or to hosts on the local network. If a Node.js process with the debug port active is running on localhost or on a host on the local network, the malicious website could connect to it as a debugger, and get full code execution access.
Categories: Security News

CVE-2017-15533

National Vulnerability Database - Thu, 05/17/2018 - 09:29
Symantec SSL Visibility (SSLV) 3.8.4FC, 3.10 prior to 3.10.4.1, 3.11, and 3.12 prior to 3.12.2.1 are vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. All affected SSLV versions act as weak oracles according the oracle classification used in the ROBOT research paper. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish multiple millions of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.
Categories: Security News

CVE-2017-18268

National Vulnerability Database - Thu, 05/17/2018 - 09:29
Symantec IntelligenceCenter 3.3 is vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish large numbers of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.
Categories: Security News

CVE-2018-11117

National Vulnerability Database - Thu, 05/17/2018 - 09:29
Services/Feeds/classes/class.ilExternalFeedItem.php in ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 has XSS via a link attribute.
Categories: Security News

CVE-2018-11118

National Vulnerability Database - Thu, 05/17/2018 - 09:29
The RSS subsystem in ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 has XSS via a URI to Services/Feeds/classes/class.ilExternalFeedItem.php.
Categories: Security News

CVE-2018-11119

National Vulnerability Database - Thu, 05/17/2018 - 09:29
ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 redirects a logged-in user to a third-party site via the return_to_url parameter.
Categories: Security News

CVE-2018-11120

National Vulnerability Database - Thu, 05/17/2018 - 09:29
Services/COPage/classes/class.ilPCSourceCode.php in ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 has XSS.
Categories: Security News

Bugtraq: [slackware-security] php (SSA:2018-136-02)

SecurityFocus Vulnerabilities - Thu, 05/17/2018 - 09:20
[slackware-security] php (SSA:2018-136-02)
Categories: Security News

Bugtraq: [slackware-security] curl (SSA:2018-136-01)

SecurityFocus Vulnerabilities - Thu, 05/17/2018 - 09:20
[slackware-security] curl (SSA:2018-136-01)
Categories: Security News

Bugtraq: [SECURITY] [DSA 4202-1] curl security update

SecurityFocus Vulnerabilities - Thu, 05/17/2018 - 09:20
[SECURITY] [DSA 4202-1] curl security update
Categories: Security News

Bugtraq: CVE-2018-11101: Signal-desktop HTML tag injection variant 2

SecurityFocus Vulnerabilities - Thu, 05/17/2018 - 09:20
CVE-2018-11101: Signal-desktop HTML tag injection variant 2
Categories: Security News

CVE-2018-10027

National Vulnerability Database - Thu, 05/17/2018 - 08:29
ESTsoft ALZip before 10.76 allows local users to execute arbitrary code via creating a malicious .DLL file and installing it in a specific directory: %PROGRAMFILES%\ESTsoft\ALZip\Formats, %PROGRAMFILES%\ESTsoft\ALZip\Coders, %PROGRAMFILES(X86)%\ESTsoft\ALZip\Formats, or %PROGRAMFILES(X86)%\ESTsoft\ALZip\Coders.
Categories: Security News

CVE-2018-11230

National Vulnerability Database - Thu, 05/17/2018 - 08:29
jbig2_add_page in jbig2enc.cc in libjbig2enc.a in jbig2enc 0.29 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted file.
Categories: Security News

CVE-2018-11224

National Vulnerability Database - Thu, 05/17/2018 - 00:29
An issue was discovered in Libav 12.3. A read access violation in the in_table_init16 function in libavcodec/aacsbr.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.
Categories: Security News

CVE-2018-11225

National Vulnerability Database - Thu, 05/17/2018 - 00:29
The dcputs function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact.
Categories: Security News

CVE-2018-11226

National Vulnerability Database - Thu, 05/17/2018 - 00:29
The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact.
Categories: Security News

Vuln: PHP CVE-2018-10545 Security Bypass Vulnerability

SecurityFocus Vulnerabilities - Thu, 05/17/2018 - 00:00
PHP CVE-2018-10545 Security Bypass Vulnerability
Categories: Security News

Vuln: PHP Multiple Security Vulnerabilities

SecurityFocus Vulnerabilities - Thu, 05/17/2018 - 00:00
PHP Multiple Security Vulnerabilities
Categories: Security News

Pages