PT-2019-18716 · Green Hills +1 · Integrity Rtos +1

Name of the Vulnerable Software and Affected Versions: Green Hills INTEGRITY RTOS version 5.0.4 Description: An issue in the Interpeak IPCOMShell TELNET server allows an attacker to forge a path containing format string modifiers when using the pwd command. This results in an information leak of...

Green Hills INTEGRITY RTOS Memory Address Information Leakage Vulnerability

INTEGRITY is a real-time operating system RTOS from Green Hills Software. A memory address information leakage vulnerability exists in the Interpeak IPCOMShell TELNET server in Green Hills INTEGRITY RTOS 5.0.4. The vulnerability stems from an undocumented shell command "prompt" that sets the prom...

The vulnerability of the snprintf function in the file system GlusterFS allows a attacker to cause a service failure.

The vulnerability of the snprintf function in the GlusterFS file system is related to the use of an uncontrolled format string. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures...

Format string

A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH username variable...

CVE-2018-1352

A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH username variable...

CVE-2018-1352

A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH username variable...

CVE-2018-1352

CVE-2018-1352 : Fortinet FortiOS 5.6.0 is affected by a format-string vulnerability in the SSH username handling that can enable remote code execution or commands, potentially causing memory corruption. The vulnerability is tied to the SSH username variable and is described in Fortinet’s FG-IR-18...

CVE-2018-1352

A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH username variable...

CVE-2018-1352

A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH username variable...

Information Disclosure

rh-ruby24-ruby is vulnerable to information disclosure attacks. The vulnerability exists as Ruby before 2.4.2, 2.3.5, and 2.2.8 is vulnerable to a malicious format string which contains a precious specifier with a huge minus value. Such situation can lead to a buffer overrun, resulting in a heap...

Arbitrary Code Execution

openjdk is vulnerable to arbitrary code execution attacks. The vulnerability exists as a format string flaw was discovered in the Hotspot component event logger in OpenJDK. An untrusted Java application or applet could use this flaw to crash the Java Virtual Machine or, potentially, execute...

Denial Of Service (Dos)

perl-DBD-Pg is vulnerable to denial of service. A format string vulnerability in dbdimp.c in DBD::Pg allows remote attackers to crash the process, or potentially execute arbitrary code, via a malicious database warning to the pgwarn function or DBD statement to the dbdstprepare function...

Remote Code Execution (RCE)

glibc is vulnerable to remote code execution RCE attacks. The vulnerability exists as the vfprintf function in stdio-common/vfprintf.c in GNU C Library aka glibc 2.5, 2.12, and probably other versions does not "properly restrict the use of" the alloca function when allocating the SPECS array, whi...

Protect

There is a format string vulnerability in the SSH username handling when connecting to FortiOS 5.6.0, that may lead to memory corruption...

Junos OS: Multiple vulnerabilities in libxml2 (JSA10916)

According to its self-reported version number, the remote Juniper Junos device is affected by a Multiple vulnerabilities in libxml2: - Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.CVE-2016-4448 - Th...

PHP 5.6.x < 5.6.20 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.20. It is, therefore, affected by multiple vulnerabilities : - A buffer over-write condition exists in the finfoopen function due to improper validation of magic files. An unauthenticated, remote...

PHP 7.0.x < 7.0.1 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.1. It is, therefore, affected by multiple vulnerabilities : - A use-after-free error exists in the collatorsortwithsortkeys function due to improper clearing of pointers when destroying an array. An...

PHP 7.0.x < 7.0.5 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.5. It is, therefore, affected by multiple vulnerabilities : - A buffer over-write condition exists in the finfoopen function due to improper validation of magic files. An unauthenticated, remote...

SUSE SLED15 / SLES15 Security Update : udisks2 (SUSE-SU-2018:3278-1)

This update for udisks2 fixes the following issues : Following security issues was fixed : CVE-2018-17336: A format string vulnerability in udiskslog bsc1109406 The update package also includes non-security fixes. See advisory for details. Note that Tenable Network Security has extracted the...

Updated jhead package fixes security vulnerabilities

The ProcessGpsInfo function may have allowed a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAGGPSALT handling CVE-2018-16554. The ProcessGpsInfo...