News aggregator

CVE-2018-6928

National Vulnerability Database - Tue, 02/13/2018 - 12:29
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
Categories: Security News

CVE-2018-6948

National Vulnerability Database - Tue, 02/13/2018 - 12:29
In CCN-lite 2, the function ccnl_prefix_to_str_detailed can cause a buffer overflow, when writing a prefix to the buffer buf. The maximal size of the prefix is CCNL_MAX_PREFIX_SIZE; the buffer has the size CCNL_MAX_PREFIX_SIZE. However, when NFN is enabled, additional characters are written to the buffer (e.g., the "NFN" and "R2C" tags). Therefore, sending an NFN-R2C packet with a prefix of size CCNL_MAX_PREFIX_SIZE can cause an overflow of buf inside ccnl_prefix_to_str_detailed.
Categories: Security News

CVE-2018-0487

National Vulnerability Database - Tue, 02/13/2018 - 10:29
ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session.
Categories: Security News

CVE-2018-0488

National Vulnerability Database - Tue, 02/13/2018 - 10:29
ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0, when the truncated HMAC extension and CBC are used, allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption) via a crafted application packet within a TLS or DTLS session.
Categories: Security News

CVE-2018-6911

National Vulnerability Database - Tue, 02/13/2018 - 09:29
The VBWinExec function in Node\AspVBObj.dll in Advantech WebAccess 8.3.0 allows remote attackers to execute arbitrary OS commands via a single argument (aka the command parameter).
Categories: Security News

CVE-2018-6292

National Vulnerability Database - Tue, 02/13/2018 - 08:29
Remote Code Execution in Saperion Web Client version 7.5.2 83166.
Categories: Security News

CVE-2018-6293

National Vulnerability Database - Tue, 02/13/2018 - 08:29
Arbitrary File Read in Saperion Web Client version 7.5.2 83166.
Categories: Security News

CVE-2018-1297

National Vulnerability Database - Tue, 02/13/2018 - 07:29
When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
Categories: Security News

CVE-2018-6930

National Vulnerability Database - Tue, 02/13/2018 - 00:29
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file.
Categories: Security News

CVE-2018-6942

National Vulnerability Database - Tue, 02/13/2018 - 00:29
An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.
Categories: Security News

Vuln: Microsoft Windows StructuredQuery CVE-2018-0825 Remote Code Execution Vulnerability

SecurityFocus Vulnerabilities - Tue, 02/13/2018 - 00:00
Microsoft Windows StructuredQuery CVE-2018-0825 Remote Code Execution Vulnerability
Categories: Security News

Vuln: Microsoft Windows Named Pipe File System CVE-2018-0823 Local Privilege Escalation Vulnerability

SecurityFocus Vulnerabilities - Tue, 02/13/2018 - 00:00
Microsoft Windows Named Pipe File System CVE-2018-0823 Local Privilege Escalation Vulnerability
Categories: Security News

CVE-2017-9963

National Vulnerability Database - Mon, 02/12/2018 - 18:29
A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack.
Categories: Security News

CVE-2017-9967

National Vulnerability Database - Mon, 02/12/2018 - 18:29
A security misconfiguration vulnerability exists in Schneider Electric's IGSS SCADA Software versions 12 and prior. Security configuration settings such as Address Space Layout Randomization (ASLR) and Data Execution prevention (DEP) were not properly configured resulting in weak security.
Categories: Security News

CVE-2017-9968

National Vulnerability Database - Mon, 02/12/2018 - 18:29
A security misconfiguration vulnerability exists in Schneider Electric's IGSS Mobile application versions 3.01 and prior in which a lack of certificate pinning during the TLS/SSL connection establishing process can result in a man-in-the-middle attack.
Categories: Security News

CVE-2017-9969

National Vulnerability Database - Mon, 02/12/2018 - 18:29
An information disclosure vulnerability exists in Schneider Electric's IGSS Mobile application version 3.01 and prior. Passwords are stored in clear text in the configuration which can result in exposure of sensitive information.
Categories: Security News

CVE-2017-9970

National Vulnerability Database - Mon, 02/12/2018 - 18:29
A remote code execution vulnerability exists in Schneider Electric's StruxureOn Gateway versions 1.1.3 and prior. Uploading a zip which contains carefully crafted metadata allows for the file to be uploaded to any directory on the host machine information which could lead to remote code execution.
Categories: Security News

CVE-2017-17722

National Vulnerability Database - Mon, 02/12/2018 - 17:29
In Exiv2 0.26, there is a reachable assertion in the readHeader function in bigtiffimage.cpp, which will lead to a remote denial of service attack via a crafted TIFF file.
Categories: Security News

CVE-2017-17723

National Vulnerability Database - Mon, 02/12/2018 - 17:29
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 function in image.cpp. Remote attackers can exploit this vulnerability to disclose memory data or cause a denial of service via a crafted TIFF file.
Categories: Security News

CVE-2017-17724

National Vulnerability Database - Mon, 02/12/2018 - 17:29
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file.
Categories: Security News

Pages