News aggregator

CVE-2018-0820

National Vulnerability Database - Wed, 02/14/2018 - 21:29
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Kernel Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0742, CVE-2018-0756, CVE-2018-0809 and CVE-2018-0843.
Categories: Security News

CVE-2018-0821

National Vulnerability Database - Wed, 02/14/2018 - 21:29
AppContainer in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way constrained impersonations are handled, aka "Windows AppContainer Elevation Of Privilege Vulnerability".
Categories: Security News

CVE-2018-0822

National Vulnerability Database - Wed, 02/14/2018 - 21:29
NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability".
Categories: Security News

CVE-2018-0823

National Vulnerability Database - Wed, 02/14/2018 - 21:29
The Named Pipe File System in Windows 10 version 1709 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Named Pipe File System handles objects, aka "Named Pipe File System Elevation of Privilege Vulnerability".
Categories: Security News

CVE-2017-13273

National Vulnerability Database - Wed, 02/14/2018 - 21:29
In xt_qtaguid.c, there is a race condition due to insufficient locking. This could lead to local elevation of privileges with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-65853158.
Categories: Security News

CVE-2017-18188

National Vulnerability Database - Wed, 02/14/2018 - 15:29
OpenRC opentmpfiles through 0.1.3, when the fs.protected_hardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run.
Categories: Security News

Bugtraq: Defense in depth -- the Microsoft way (part 52): HTTP used to distribute (security) updates, not HTTPS

SecurityFocus Vulnerabilities - Wed, 02/14/2018 - 15:20
Defense in depth -- the Microsoft way (part 52): HTTP used to distribute (security) updates, not HTTPS
Categories: Security News

Bugtraq: [security bulletin] MFSBGN03800 rev.1 - Micro Focus Performance Center, Remote Arbitrary Code Execution or Remote Arbitrary File Modification

SecurityFocus Vulnerabilities - Wed, 02/14/2018 - 15:20
[security bulletin] MFSBGN03800 rev.1 - Micro Focus Performance Center, Remote Arbitrary Code Execution or Remote Arbitrary File Modification
Categories: Security News

CVE-2017-6229

National Vulnerability Database - Wed, 02/14/2018 - 14:29
Ruckus Networks Unleashed AP firmware releases before 200.6.10.1.x and Ruckus Networks Zone Director firmware releases 10.1.0.0.x, 9.10.2.0.x, 9.12.3.0.x, 9.13.3.0.x, 10.0.1.0.x or before contain authenticated Root Command Injection in the CLI that could allow authenticated valid users to execute privileged commands on the respective systems.
Categories: Security News

CVE-2017-6230

National Vulnerability Database - Wed, 02/14/2018 - 14:29
Ruckus Networks Solo APs firmware releases R110.x or before and Ruckus Networks SZ managed APs firmware releases R5.x or before contain authenticated Root Command Injection in the web-GUI that could allow authenticated valid users to execute privileged commands on the respective systems.
Categories: Security News

CVE-2018-7039

National Vulnerability Database - Wed, 02/14/2018 - 14:29
CCN-lite 2.0.0 Beta allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because the ccnl_ndntlv_prependBlob function in ccnl-pkt-ndntlv.c can be called with wrong arguments. Specifically, there is an incorrect integer data type causing a negative third argument in some cases of crafted TLV data with inconsistent length information.
Categories: Security News

CVE-2017-18187

National Vulnerability Database - Wed, 02/14/2018 - 12:29
In ARM mbed TLS before 2.7.0, there is a bounds-check bypass through an integer overflow in PSK identity parsing in the ssl_parse_client_psk_identity() function in library/ssl_srv.c.
Categories: Security News

CVE-2018-7034

National Vulnerability Database - Wed, 02/14/2018 - 11:29
TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php.
Categories: Security News

CVE-2017-1499

National Vulnerability Database - Wed, 02/14/2018 - 10:29
IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker to include arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable Web server. IBM X-Force ID: 129106.
Categories: Security News

CVE-2017-1682

National Vulnerability Database - Wed, 02/14/2018 - 10:29
IBM Connections 4.0, 4.5, 5.0, 5.5, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 134004.
Categories: Security News

CVE-2018-7032

National Vulnerability Database - Wed, 02/14/2018 - 10:29
webcheckout in myrepos through 1.20171231 does not sanitize URLs that are passed to git clone, allowing a malicious website operator or a MitM attacker to take advantage of it for arbitrary code execution, as demonstrated by an "ext::sh -c" attack or an option injection attack.
Categories: Security News

CVE-2018-1287

National Vulnerability Database - Wed, 02/14/2018 - 09:29
In Apache JMeter 2.X and 3.X, when using Distributed Test only (RMI based), jmeter server binds RMI Registry to wildcard host. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
Categories: Security News

CVE-2018-2383

National Vulnerability Database - Wed, 02/14/2018 - 07:29
Reflected cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.
Categories: Security News

CVE-2018-2384

National Vulnerability Database - Wed, 02/14/2018 - 07:29
Under certain conditions a malicious user provoking a Null Pointer dereference can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services.
Categories: Security News

CVE-2018-2385

National Vulnerability Database - Wed, 02/14/2018 - 07:29
Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services.
Categories: Security News

Pages