Navarino Infinity Blind SQL Injection / Session Fixation

There is also a blog post about that on: https://medium.com/@evstykas/pwning-ships-vsat-for-fun-and-profit-ba0fe9f42fb3 Vulnerability Security Advisory ======================================================================= title: Multiple vulnerabilities product: All Navarino infinity products...

EulerOS 2.0 SP1 : libsndfile (EulerOS-SA-2017-1243)

According to the versions of the libsndfile package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out of bounds read in the function d2alawarray in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure,...

EulerOS 2.0 SP2 : libsndfile (EulerOS-SA-2017-1244)

According to the versions of the libsndfile package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out of bounds read in the function d2alawarray in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure,...

CVE-2017-14246

An out of bounds read in the function d2ulawarray in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...

libsndfile d2alaw_array() function out-of-bounds read vulnerability

Libsndfile is a C library for reading and writing files containing sampled sounds e.g. MS Windows WAV and Apple/SGI AIFF formats through a standard library interface. An out-of-bounds read vulnerability in the d2alawarray function in alaw.c in Libsndfile could lead to a remote denial-of-service...

libsndfile d2ulaw_array() function out-of-bounds read vulnerability (CNVD-2017-34008)

Libsndfile is a C library for reading and writing files containing sampled sounds e.g. MS Windows WAV and Apple/SGI AIFF formats through a standard library interface. An out-of-bounds read vulnerability exists in the d2ulawarray function in ulaw.c in Libsndfile, which can be exploited by a remote...

DEBIAN-CVE-2017-14246

An out of bounds read in the function d2ulawarray in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...

DEBIAN-CVE-2017-14245

An out of bounds read in the function d2alawarray in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...

CVE-2017-14246

An out of bounds read in the function d2ulawarray in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...

UBUNTU-CVE-2017-14246

An out of bounds read in the function d2ulawarray in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...

UBUNTU-CVE-2017-7781

An error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates where it can yield a result "POINTATINFINITY" when it should not. A man-in-the-middle attacker could use this to interfere with a connection, resulting in an attacked party computing an...

PT-2017-2282 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 4.11.5 Linux Kernel versions 2.6.23 through 4.11.5 Description: The issue is related to the implementation of the Stack Guard-Page mechanism in the Linux Kernel, which does not properly check the values of...

CVE-2017-6551

Pexip Infinity before 14.2 allows remote attackers to cause a denial of service service restart or execute arbitrary code via vectors related to Conferencing Nodes...

Code injection

Pexip Infinity before 14.2 allows remote attackers to cause a denial of service service restart or execute arbitrary code via vectors related to Conferencing Nodes...

CVE-2017-6551

Pexip Infinity before 14.2 allows remote attackers to cause a denial of service service restart or execute arbitrary code via vectors related to Conferencing Nodes...

CVE-2017-6551

Pexip Infinity before 14.2 allows remote attackers to cause a denial of service service restart or execute arbitrary code via vectors related to Conferencing Nodes...

CVE-2017-6551

CVE-2017-6551 : The provided records indicate that Pexip Infinity, versions prior to 14.2, is affected by a vulnerability in Conferencing Nodes that can be remotely triggered to cause a denial of service (service restart) or to execute arbitrary code. The exact vulnerable component or root cause ...

Pexip Infinity Remote Code Execution Vulnerability

Pexip Infinity is a virtual videoconferencing cloud collaboration platform from Pexip Norway. The platform works with standard protocol H.323, SIP based videoconferencing endpoints and videoconferencing infrastructures and is characterized by WAN bandwidth savings. A security vulnerability exists...

krasnodar.infinity-promo.ru Open Redirect vulnerability

Vulnerable URL: http://krasnodar.infinity-promo.ru/www/www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 18:41 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 1690009 VIP website...

Fedora 24 : 2:docker (2016-6ef52e1fc3)

Resolves: 1340519 - add TasksMax=infinity ---- built docker @projectatomic/fedora-1.10.3 commit f476348 ---- built docker @projectatomic/fedora-1.10.3 commit f476348 ---- built docker @projectatomic/fedora-1.10.3 commit 4158ccc ---- Resolves: 1335649 - enable Red Hat subscription use in Docker...