110 matches found
CVE-2017-9647
A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti 2014-2016 QX60 Hybrid, Infiniti 2014-2015...
Design/Logic Flaw
An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti...
CVE-2017-9633
An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti...
Stack overflow
A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti 2014-2016 QX60 Hybrid, Infiniti 2014-2015...
CVE-2017-9647
A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti 2014-2016 QX60 Hybrid, Infiniti 2014-2015...
CVE-2017-9647
CVE-2017-9647 is a stack-based buffer overflow in Continental AG’s Infineon S-Gold 2 (PMB 8876) cellular baseband used in 2G TCUs. The flaw occurs in processing AT commands and could allow arbitrary code execution on the TCU baseband processor when an attacker has a physical connection to the TCU...
CVE-2017-9633
An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti...
CVE-2017-9633
The CVE-2017-9633 entry documents a TMSI-related vulnerability in Continental AG Infineon S-Gold 2 (PMB 8876) used in telematics control units (TCUs) across multiple vehicles (BMW, Ford, Infiniti, Nissan models from 2009–2016). The issue is an Improper Restriction of Operations within the Bounds ...
Ford, BMW, Infiniti and Nissan TCU presence of a vulnerability, can be remote intrusion-vulnerability warning-the black bar safety net
! Three researchers found that Ford, BMW, Infiniti and Nissan Automatic Transmission Control UnitTCUin the presence of a vulnerability, these TCU are made by Continental AG production. Vulnerability causes The three researchers from McAfee, respectively, is Mickey Shkatov, Jesse, Michael and...
August 4, 2017 – Morning Cyber Coffee Headlines – “Gerald R. Ford ” Edition
Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 4, 2017 - Headlines Why can't films and TV accurately portray hackers? -...
ridefox.com XSS vulnerability
Open Bug Bounty ID: OBB-258448 Description| Value ---|--- Affected Website:| ridefox.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ford-diermeier-muenchen.de XSS vulnerability
Vulnerable URL: http://www.ford-diermeier-muenchen.de/suche?term=test%22%3E%3Cimg+src%3Dx+onerror%3Dalert%28%27OPENBUGBOUNTY%27%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
Ford Prosys - External URLs, KeyStore usage, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Ford Prosys published at the 'play' market has multiple vulnerabilities...
Ford Carsharing - Customized SSL, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Ford Carsharing published at the 'play' market has multiple vulnerabilities...
showroom.ford.com XSS vulnerability
Vulnerable URL: http://www.showroom.ford.com/FDShowroom.jsp?=1〈=';alert'OPENBUGBOUNTY';...
grapponeford.com XSS vulnerability
Vulnerable URL: http://www.grapponeford.com/used-vehicles/action=imajaxcall=getresults=%22%3E%3Cscript%3Ealert%28%2Fxssposed%2F%29%3C%2Fscript%3E=1allfilters=false&postid=5 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Ale...
ordertracking.ford.com XSS vulnerability
Vulnerable URL:...
shop.ford.com XSS vulnerability
Vulnerable URL:...
wwwprod-couk.engine.ford.com XSS vulnerability
Vulnerable URL: http://wwwprod-couk.engine.ford.com/cs/ContentServer?pagename=UKENENGInE/LayoutDLBing=UKENENGInE=Page=1204903584770=morpeth=FF%27;alert%28/OPENBUGBOUNTY/%29;//=UKEN Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS...
ford.fr XSS vulnerability
Vulnerable URL: http://www.ford.fr/cs/ContentServer?pagename=UKENENGInE/LayoutDLBing=UKENENGInE=Page=1204903584770=morpeth=FF%27;alert%28/OPENBUGBOUNTY/%29;//=UKEN Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 11:10 GMT Vulnerability type:| X...