84 matches found
CVE-2015-5484
Cross-site scripting XSS vulnerability in the Plotly plugin before 1.0.3 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via a post...
6pm (=0.1.0), @absolunet/nwayo-cli (>=1.0.0 <=3.6.1) +1376 more potentially affected by CVE-2019-5484 via bower (>=0.10.0 <=1.8.4)
bower NPM version =0.10.0, =1.0.0, =3.3.0, =0.1.20, =0.16.9, =0.0.4, =0.102.0, =2.0.0-beta.1, =0.0.1, =1.0.4, =1.0.2, =0.1.16, =1.0.0-alpha.0, =1.0.0-alpha.0, =1.0.0, =1.2.3 and more Source cves: CVE-2019-5484 Source advisory: OSV:GHSA-P6MR-PXG4-68HX...
CVE-2019-5484
CVE-2019-5484 – Bower path traversal . Affects Bower up to version 1.8.7; older releases permit writing files to arbitrary locations during extraction of a malicious package via the install command. Root cause is improper validation of extracted paths, enabling directory traversal and arbitrary f...
6pm (=0.1.0), @absolunet/nwayo-cli (>=1.0.0 <=3.6.1) +1330 more potentially affected by CVE-2019-5484 via bower (>=1.1.2 <=1.8.4)
bower NPM version =1.1.2, =1.0.0, =3.3.0, =0.1.20, =0.16.9, =0.0.4, =0.102.0, =2.0.0-beta.1, =0.0.1, =1.0.4, =1.0.2, =0.1.16, =1.0.0-alpha.0, =1.0.0-alpha.0, =1.0.0, =1.2.3 and more Source cves: CVE-2019-5484 Source advisory: SNYK:JS-BOWER-73627...
Photon OS 1.0: Tcpdump PHSA-2017-0004 (deprecated)
An update of tcpdump packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0004. The text itself is copyright C VMware, Inc...
Microhard Systems 3G/4G Cellular Ethernet And Serial Gateway Configuration Download
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Configuration Download Vendor: Microhard Systems Inc. Product web page: http://www.microhardcorp.com Affected version: IPn4G 1.1.0 build 1098 IPn3Gb 2.2.0 build 2160 IPn4Gb 1.1.6 build 1184-14 IPn4Gb 1.1.0 Rev 2 build 1090-2 IPn4Gb 1.1....
F5 Networks BIG-IP : tcpdump vulnerabilities (K31997425)
CVE-2017-5482 The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933print, a different vulnerability than CVE-2016-8575. CVE-2017-5483 The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1parse. CVE-2017-5484 The ATM parser in tcpdump before...
EulerOS 2.0 SP1 : tcpdump (EulerOS-SA-2017-1179)
According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker...
EulerOS 2.0 SP2 : tcpdump (EulerOS-SA-2017-1180)
According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker...
Scientific Linux Security Update : tcpdump on SL7.x x86_64 (20170801)
The following packages have been upgraded to a later upstream version: tcpdump 4.9.0. Security Fixes : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send special...
RedHat Update for tcpdump RHSA-2017:1871-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2008-5484
...
CVE-2008-5484
CVE-2008-5484 is rejected/not used and does not represent an active vulnerability entry.
CVE-2016-5484
The CVE-2016-5484 entry is rejected/not used and does not represent an active vulnerability entry.
CVE-2016-5484
...
SUSE SLES11 Security Update : tcpdump (SUSE-SU-2017:0656-1)
This update for tcpdump fixes the following issues: Security issues fixed bsc1020940 : - CVE-2016-7922: Corrected buffer overflow in AH parser print-ah.c:ahprint. - CVE-2016-7923: Corrected buffer overflow in ARP parser print-arp.c:arpprint. - CVE-2016-7925: Corrected buffer overflow in compresse...
Internet Bug Bounty: CVE-2017-5484 The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print()
Reported to the project maintainers in 2016. The function sigprint did receive a correct caplen parameter value but didn't use it correctly which could result in a read outside of buffer. Fixed by https://github.com/the-tcpdump-group/tcpdump/commit/5d214e36eed3565fbdc0f9b527bbc33a6bb63972...
CVE-2017-5484
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sigprint...
CVE-2017-5484
CVE-2017-5484 affects tcpdump prior to 4.9.0, specifically the ATM parser in print-atm.c:sig_print(). The vulnerability is a buffer overflow that could allow a remote attacker to execute arbitrary code or crash the application by sending overly long input. Affected software is tcpdump (pre-4.9.0)...
Oracle: Security Advisory (ELSA-2013-0189)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...