News aggregator

CVE-2017-4931

National Vulnerability Database - Thu, 11/16/2017 - 16:29
VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add malicious data to an enrolled device's log files. Successful exploitation of this issue could result in an unsuspecting AWC user opening a CSV file which contains malicious content.
Categories: Security News

CVE-2017-4932

National Vulnerability Database - Thu, 11/16/2017 - 16:29
VMware AirWatch Launcher for Android prior to 3.2.2 contains a vulnerability that could allow an escalation of privilege from the launcher UI context menu to native UI functionality and privilege. Successful exploitation of this issue could result in an escalation of privilege.
Categories: Security News

CVE-2017-1086

National Vulnerability Database - Thu, 11/16/2017 - 15:29
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24, not all information in the struct ptrace_lwpinfo is relevant for the state of any thread, and the kernel does not fill the irrelevant bytes or short strings. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of information of the kernel stack of the thread is possible from the debugger. As a result, some bytes from the kernel stack of the thread using ptrace (PT_LWPINFO) call can be observed in userspace.
Categories: Security News

CVE-2017-1087

National Vulnerability Database - Thu, 11/16/2017 - 15:29
In FreeBSD 10.x before 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24 named paths are globally scoped, meaning a process located in one jail can read and modify the content of POSIX shared memory objects created by a process in another jail or the host system. As a result, a malicious user that has access to a jailed system is able to abuse shared memory by injecting malicious content in the shared memory region. This memory region might be executed by applications trusting the shared memory, like Squid. This issue could lead to a Denial of Service or local privilege escalation.
Categories: Security News

CVE-2017-1088

National Vulnerability Database - Thu, 11/16/2017 - 15:29
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24, the kernel does not properly clear the memory of the kld_file_stat structure before filling the data. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of information from the kernel stack is possible. As a result, some bytes from the kernel stack can be observed in userspace.
Categories: Security News

CVE-2017-16855

National Vulnerability Database - Thu, 11/16/2017 - 13:29
Ipsilon before 2.1.0 has a "SAML2 multi-session vulnerability."
Categories: Security News

CVE-2017-16846

National Vulnerability Database - Thu, 11/16/2017 - 12:29
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /manageApplications.do?method=AddSubGroup haid parameter.
Categories: Security News

CVE-2017-16847

National Vulnerability Database - Thu, 11/16/2017 - 12:29
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /showresource.do resourceid parameter in a showPlasmaView action.
Categories: Security News

CVE-2017-16848

National Vulnerability Database - Thu, 11/16/2017 - 12:29
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /manageConfMons.do groupname parameter.
Categories: Security News

CVE-2017-16849

National Vulnerability Database - Thu, 11/16/2017 - 12:29
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /MyPage.do?method=viewDashBoard forpage parameter.
Categories: Security News

CVE-2017-16850

National Vulnerability Database - Thu, 11/16/2017 - 12:29
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /showresource.do resourceid parameter in a getResourceProfiles action.
Categories: Security News

CVE-2017-16851

National Vulnerability Database - Thu, 11/16/2017 - 12:29
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /MyPage.do widgetid parameter.
Categories: Security News

CVE-2017-16852

National Vulnerability Database - Thu, 11/16/2017 - 12:29
shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic MetadataProvider plugin in Shibboleth Service Provider before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does not perform critical security checks such as signature verification, enforcement of validity periods, and other checks specific to deployments, aka SSPCPP-763.
Categories: Security News

CVE-2017-16853

National Vulnerability Database - Thu, 11/16/2017 - 12:29
The DynamicMetadataProvider class in saml/saml2/metadata/impl/DynamicMetadataProvider.cpp in OpenSAML-C in OpenSAML before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does not perform critical security checks such as signature verification, enforcement of validity periods, and other checks specific to deployments, aka CPPOST-105.
Categories: Security News

CVE-2017-15864

National Vulnerability Database - Thu, 11/16/2017 - 10:29
In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password.
Categories: Security News

CVE-2017-16560

National Vulnerability Database - Thu, 11/16/2017 - 10:29
SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user exits the application or if the application crashes.
Categories: Security News

CVE-2017-16777

National Vulnerability Database - Thu, 11/16/2017 - 10:29
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo helper in order to escalate to root.
Categories: Security News

CVE-2017-16844

National Vulnerability Database - Thu, 11/16/2017 - 10:29
Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a different vulnerability than CVE-2014-3618.
Categories: Security News

CVE-2017-5738

National Vulnerability Database - Thu, 11/16/2017 - 09:29
Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1.41.18 and 3.1.45.26 allows an attacker with network access to cause a denial of service and/or information disclosure.
Categories: Security News

CVE-2017-12337

National Vulnerability Database - Thu, 11/16/2017 - 02:29
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote attacker to gain unauthorized, elevated access to an affected device. The vulnerability occurs when a refresh upgrade (RU) or Prime Collaboration Deployment (PCD) migration is performed on an affected device. When a refresh upgrade or PCD migration is completed successfully, an engineering flag remains enabled and could allow root access to the device with a known password. If the vulnerable device is subsequently upgraded using the standard upgrade method to an Engineering Special Release, service update, or a new major release of the affected product, this vulnerability is remediated by that action. Note: Engineering Special Releases that are installed as COP files, as opposed to the standard upgrade method, do not remediate this vulnerability. An attacker who can access an affected device over SFTP while it is in a vulnerable state could gain root access to the device. This access could allow the attacker to compromise the affected system completely. Cisco Bug IDs: CSCvg22923, CSCvg55112, CSCvg55128, CSCvg55145, CSCvg58619, CSCvg64453, CSCvg64456, CSCvg64464, CSCvg64475, CSCvg68797.
Categories: Security News

Pages