62 matches found
CVE-2019-6273
downloadfile in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to download arbitrary files...
CVE-2019-6272
GL-AR300M-Lite devices (firmware 2.27) are affected by CVE-2019-6272 due to a vulnerability in login_cgi that enables authenticated command injection, potentially allowing arbitrary code execution. The issue is triggered after an attacker with prior login access sends crafted requests to login_cg...
CVE-2019-6272
Command injection vulnerability in logincgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to execute arbitrary code...
GL-AR300M-Lite Arbitrary File Download Vulnerability
The GL-AR300M-Lite is a smart wireless router. An arbitrary file download vulnerability exists in GL-AR300M-Lite version 2.27, which can be exploited by attackers to download arbitrary files...
GL-AR300M-Lite Path Traversal Vulnerability
The GL-AR300M-Lite is a smart wireless router. A directory traversal vulnerability exists in GL-AR300M-Lite version 2.27. An attacker can exploit this vulnerability to have an indeterminate impact via a directory traversal sequence...
GL-AR300M-Lite 2.27 - (Authenticated) Command Injection Arbitrary File Download Directory Traversal
GL-AR300M-Lite 2.27 - Authenticated Command Injection Arbitrary File Download Directory Traversal Exploit Title: GL-AR300M-Lite Authenticated Command injection - Arbitrary file download - Directory Traversal Date: 15/1/2019 Exploit Author: Pasquale Turi aka boombyte Vendor Homepage:...
GL-AR300M-Lite 2.27 - (Authenticated) Command Injection / Arbitrary File Download / Directory Traversal
Exploit Title: GL-AR300M-Lite Authenticated Command injection - Arbitrary file download - Directory Traversal Date: 15/1/2019 Exploit Author: Pasquale Turi aka boombyte Vendor Homepage: https://www.gl-inet.com/ Software Link: https://www.gl-inet.com/products/gl-ar300m/ Version: Firmware version...
S3QL Replay Attack Vulnerability
S3QL is a file system for storing online data. The system supports Amazon S3, SFTP servers, and more. A security vulnerability exists in the 'checksumbasicmapping' function in S3QL versions prior to 2.27. An attacker can exploit the vulnerability to display an old version of the metadata database...
Buffer overflow
An AVX-512-optimized implementation of the mempcpy function in the GNU C Library aka glibc or libc6 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in mempcpyavx512novzeroupper...
CVE-2017-18269
An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S in the GNU C Library aka glibc or libc6 2.21 through 2.27 does not correctly perform the overlapping memory check if the source memory range spans the middle of the address space, resulting in...
glibc: Buffer overflow during unescaping of user names with the ~ operator
The glob function in glob.c in the GNU C Library aka glibc or libc6 before 2.27 contains a buffer overflow during unescaping of user names with the operator...
PT-2018-2775 · Gnu +5 · Glibc +5
Name of the Vulnerable Software and Affected Versions: glibc versions 2.27 and earlier Description: The issue is caused by an integer overflow in the mempcpy function of the glibc library, which provides system calls and basic functions. This overflow can occur when processing very long pathname...
CVE-2017-14178
In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions...
GNU C Library 'glob' function heap buffer overflow vulnerability
The GNU C Library a.k.a. glibc, libc6 is an open-source, free C language compiler released under the LGPL license. A heap buffer overflow vulnerability exists in the glob.c file 'glob' function in versions of GNU C Library prior to 2.27. A remote attacker could exploit this vulnerability to execu...
Heap overflow
The GNU C Library aka glibc or libc6 before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the operator followed by a long string...
SoundTap 2.27 - Code Execution Vulnerability
Document Title: =============== SoundTap 2.27 - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1650 Release Date: ============= 2015-11-22 Vulnerability Laboratory ID VL-ID: ==================================== 1650 Common...
Vertrigoserv 2.27 Local Privilege Escalation Exploit
Exploit for windows platform in category local exploits 0day.today 2018-04-02...
IBM Open Admin Tool 2.27 Cross Site Scripting
“XSS in IBM Open Admin Tool OAT2.27installwindows.exe” Product version tested : OAT v2.27 Vendore has been informed : July 27, 2010 They fix the vulnerability on : March 2011 Fixed version: OAT v2.72 Credit : sumit kumar soni [email protected] Product Link:...
Moderate: Red Hat Security Advisory: perl security update
Updated perl packages that fix two security issues are now available for Red Hat Enterprise Linux 3 and 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
CVE-2008-4475
ibackup 2.27 allows local users to overwrite arbitrary files via a symlink attack on temporary files...