Linux Distros Unpatched Vulnerability : CVE-2017-1000126

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - exiv2 0.26 contains a Stack out of bounds read in webp parser CVE-2017-1000126 Note that Nessus relies on the presence of the package as reported by the vendor...

RHEL 6 : exiv2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - exiv2: integer overflow in the LoaderExifJpeg class in preview.cpp CVE-2018-12265 - Buffer overflow in th...

SUSE: Security Advisory (SUSE-SU-2020:0921-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for exiv2 (openSUSE-SU-2020:0482-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED15 / SLES15 Security Update : exiv2 (SUSE-SU-2020:0921-1)

This update for exiv2 fixes the following issues : exiv2 was updated to latest 0.26 branch, fixing bugs and security issues : CVE-2017-1000126: Fixed an out of bounds read in webp parser bsc1068873. CVE-2017-9239: Fixed a segmentation fault in TiffImageEntry::doWriteImage function bsc1040973...

SUSE-SU-2020:0921-1 Security update for exiv2

This update for exiv2 fixes the following issues: exiv2 was updated to latest 0.26 branch, fixing bugs and security issues: - CVE-2017-1000126: Fixed an out of bounds read in webp parser bsc1068873. - CVE-2017-9239: Fixed a segmentation fault in TiffImageEntry::doWriteImage function bsc1040973. -...

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2144)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-1000126

Ajenti Web Panel v2 has an information disclosure vulnerability in the source code at line 176 that can enable enumeration of users/systems and exfiltration of data from /etc/ajenti/config.yml. Exploitation is described as feasible over network connectivity to the web application. The connected R...

CVE-2017-1000126

exiv2 0.26 contains a Stack out of bounds read in webp parser...

CVE-2017-1000126

exiv2 0.26 contains a Stack out of bounds read in webp parser...

CVE-2017-1000126

exiv2 0.26 contains a Stack out of bounds read in webp parser...

CVE-2017-1000126

CVE-2017-1000126 affects exiv2 0.26 with a Stack out-of-bounds read in the WebP parser. Public advisories (openSUSE, Red Hat/Nessus plugins) confirm Exiv2 0.26 as vulnerable. The issue is fixed in newer exiv2 releases (openSUSE/SLE updates reference the 0.26 line being updated to address this). I...

CVE-2016-1000126

Reflected XSS in wordpress plugin admin-font-editor v1.8...

CVE-2016-1000126

Reflected XSS in wordpress plugin admin-font-editor v1.8...

CVE-2016-1000126

CVE-2016-1000126 is a reflected Cross-Site Scripting vulnerability affecting the WordPress plugin Admin Font Editor (versions 1.8 and earlier). The connected nuclei template confirms the issue is a reflected XSS in the plugin, enabling an attacker to execute arbitrary JavaScript in a victim’s bro...