News aggregator

CVE-2017-15865

National Vulnerability Database - Wed, 11/08/2017 - 15:29
bgpd in FRRouting (FRR) before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes because of a mishandled attribute length, aka RN-690 (CM-18492).
Categories: Security News

CVE-2017-15085

National Vulnerability Database - Wed, 11/08/2017 - 14:29
It was discovered that the fix for CVE-2017-12150 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6.
Categories: Security News

CVE-2017-15086

National Vulnerability Database - Wed, 11/08/2017 - 14:29
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6.
Categories: Security News

CVE-2017-15087

National Vulnerability Database - Wed, 11/08/2017 - 14:29
It was discovered that the fix for CVE-2017-12163 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6.
Categories: Security News

Bugtraq: [SECURITY] [DSA 4021-1] otrs2 security update

SecurityFocus Vulnerabilities - Wed, 11/08/2017 - 14:20
[SECURITY] [DSA 4021-1] otrs2 security update
Categories: Security News

CVE-2017-16667

National Vulnerability Database - Wed, 11/08/2017 - 13:29
backintime (aka Back in Time) before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft an unreadable file with a specific name to run arbitrary shell commands.
Categories: Security News

CVE-2017-16665

National Vulnerability Database - Wed, 11/08/2017 - 12:29
RemObjects Remoting SDK 9 1.0.0.0 for Delphi is vulnerable to a reflected Cross Site Scripting (XSS) attack via the service parameter to the /soap URI, triggering an invalid attempt to generate WSDL.
Categories: Security News

CVE-2015-3933

National Vulnerability Database - Wed, 11/08/2017 - 11:29
Multiple SQL injection vulnerabilities in inc/lib/User.class.php in MetalGenix GeniXCMS before 0.0.3-patch allow remote attackers to execute arbitrary SQL commands via the (1) email parameter or (2) userid parameter to register.php.
Categories: Security News

CVE-2017-9096

National Vulnerability Database - Wed, 11/08/2017 - 11:29
The XML parsers in iText before 5.5.12 and 7.x before 7.0.3 do not disable external entities, which might allow remote attackers to conduct XML external entity (XXE) attacks via a crafted PDF.
Categories: Security News

CVE-2017-12824

National Vulnerability Database - Wed, 11/08/2017 - 09:29
Special crafted InPage document leads to arbitrary code execution in InPage reader.
Categories: Security News

CVE-2017-14360

National Vulnerability Database - Wed, 11/08/2017 - 09:29
A potential security vulnerability has been identified in HPE Content Manager Workgroup Service v9.00. The vulnerability could be remotely exploited to allow Denial of Service (DoS).
Categories: Security News

CVE-2017-16663

National Vulnerability Database - Wed, 11/08/2017 - 01:29
In sam2p 0.49.4, there are integer overflows (with resultant heap-based buffer overflows) in input-bmp.ci in the function ReadImage, because "width * height" multiplications occur unsafely.
Categories: Security News

CVE-2017-16659

National Vulnerability Database - Wed, 11/08/2017 - 00:29
The Gentoo mail-filter/assp package 1.9.8.13030 and earlier allows local users to gain privileges by leveraging access to the assp user account to install a Trojan horse /usr/share/assp/assp.pl script.
Categories: Security News

CVE-2017-16660

National Vulnerability Database - Wed, 11/08/2017 - 00:29
Cacti 1.1.27 allows remote authenticated administrators to conduct Remote Code Execution attacks by placing the Log Path under the web root, and then making a remote_agent.php request containing PHP code in a Client-ip header.
Categories: Security News

CVE-2017-16661

National Vulnerability Database - Wed, 11/08/2017 - 00:29
Cacti 1.1.27 allows remote authenticated administrators to read arbitrary files by placing the Log Path into a private directory, and then making a clog.php?filename= request, as demonstrated by filename=passwd (with a Log Path under /etc) to read /etc/passwd.
Categories: Security News

Vuln: Apache Tomcat CVE-2017-5648 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Wed, 11/08/2017 - 00:00
Apache Tomcat CVE-2017-5648 Information Disclosure Vulnerability
Categories: Security News

Vuln: Apache Tomcat CVE-2017-12617 Incomplete Fix Remote Code Execution Vulnerability

SecurityFocus Vulnerabilities - Wed, 11/08/2017 - 00:00
Apache Tomcat CVE-2017-12617 Incomplete Fix Remote Code Execution Vulnerability
Categories: Security News

Vuln: Apache Tomcat CVE-2017-12616 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Wed, 11/08/2017 - 00:00
Apache Tomcat CVE-2017-12616 Information Disclosure Vulnerability
Categories: Security News

CVE-2017-16615

National Vulnerability Database - Tue, 11/07/2017 - 22:29
An exploitable vulnerability exists in the YAML parsing functionality in the parse_yaml_query method in parser.py in MLAlchemy before 0.2.2. When processing YAML-Based queries for data, a YAML parser can execute arbitrary Python commands resulting in command execution because load is used where safe_load should have been used. An attacker can insert Python into loaded YAML to trigger this vulnerability.
Categories: Security News

CVE-2017-16616

National Vulnerability Database - Tue, 11/07/2017 - 22:29
An exploitable vulnerability exists in the YAML parsing functionality in the YAMLParser method in Interfaces.py in PyAnyAPI before 0.6.1. A YAML parser can execute arbitrary Python commands resulting in command execution because load is used where safe_load should have been used. An attacker can insert Python into loaded YAML to trigger this vulnerability.
Categories: Security News

Pages