69 matches found
CVE-2018-7973
CVE-2018-7973 is rejected/not used and does not represent an active vulnerability entry.
CVE-2018-7973
...
Photon OS 1.0: Tcpdump PHSA-2017-0004 (deprecated)
An update of tcpdump packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0004. The text itself is copyright C VMware, Inc...
Schneider Electric U.motion Builder nfcserver.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability exists in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the sessionid HTTP request parameter in requests made to nfcserver.php.A remote, unauthenticated user can exploit this vulnerability by sending a crafted HTTP reque...
CVE-2017-7973
Schneider Electric U.motion Builder software (versions 1.2.1 and prior) is affected by CVE-2017-7973, a SQL injection vulnerability. The issue arises from insufficient input validation in various HTTP endpoints (e.g., track_import_export.php, nfcserver.php, localize.php, loadtemplate.php) that al...
CVE-2017-7973
A SQL injection vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can use calls to various paths allowing performance of arbitrary SQL commands against the underlying database...
EulerOS 2.0 SP2 : tcpdump (EulerOS-SA-2017-1180)
According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker...
EulerOS 2.0 SP1 : tcpdump (EulerOS-SA-2017-1179)
According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker...
Scientific Linux Security Update : tcpdump on SL7.x x86_64 (20170801)
The following packages have been upgraded to a later upstream version: tcpdump 4.9.0. Security Fixes : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send special...
RedHat Update for tcpdump RHSA-2017:1871-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Schneider Electric U.motion Builder localize.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability has been reported in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the username HTTP request parameter in requests made to localize.php. A remote, unauthenticated user can exploit this vulnerability by sending a crafted...
Schneider Electric U.motion Builder track_import_export.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability exists in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the objectid HTTP parameter of the trackimportexport.php request. A remote, unauthenticated user can exploit this vulnerability by sending a crafted HTTP request to...
Schneider Electric U.motion Builder loadtemplate.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability exists in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the tpl HTTP parameter of the loadtemplate.php request. A remote, unauthenticated user can exploit this vulnerability by sending a crafted HTTP request to the...
SUSE SLES11 Security Update : tcpdump (SUSE-SU-2017:0656-1)
This update for tcpdump fixes the following issues: Security issues fixed bsc1020940 : - CVE-2016-7922: Corrected buffer overflow in AH parser print-ah.c:ahprint. - CVE-2016-7923: Corrected buffer overflow in ARP parser print-arp.c:arpprint. - CVE-2016-7925: Corrected buffer overflow in compresse...
CVE-2016-7973
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...
CVE-2015-7973
NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network...
CVE-2015-7973
NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network...
CVE-2015-7973
NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network...
DEBIAN-CVE-2016-7973
The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions...
CVE-2016-7973
The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions...