CVE-2016-10517

networking.c in Redis before 3.2.7 allows "Cross Protocol Scripting" because it lacks a check for POST and Host: strings, which are not valid in the Redis protocol but commonly occur when an attack triggers an HTTP request to the Redis TCP port. Mitigation This issue can be mitigated by configuri...

Android Qualcomm Networking Subsystem Elevation of Privilege Vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA.Qualcomm Networking The Qualcomm Networking subsystem is a networking subsystem developed by Qualcomm Incorporated...

Multiple Moxa Nport Products Information Disclosure Vulnerabilities

Moxa NPort 5110, 5130 and 5150 are Moxa's serial communication servers for connecting industrial serial devices to a network. An information disclosure vulnerability exists in several Moxa Nport products, where an attacker could exploit a vulnerability in the Ethernet frame stuffing process to...

Do you believe in Serendipity?

In December 2016, after a month of mountain bike racing and touring in Nepal, I commenced the Executive Program in General Management at MIT. The first term was at Sloan School of Management in Cambridge and for the first time in my life, I finally could relate to studying. In fact, I was even...

Cisco Training Courses: Prepare for CCNA, CCNP Networking Certifications

As governments and enterprises migrate toward controller-based architectures, the role of a core network engineer are evolving and more important than ever. There is a growing number of jobs in Networking, but if you lack behind, you need to pass some certification exams to enter into this indust...

Immunity Canvas: JBOSS6_JMXINVOKERSERVLET_DESERIALIZE

Name| jboss6jmxinvokerservletdeserialize ---|--- CVE| CVE-2015-7501 Exploit Pack| CANVAS Description| jboss6jmxinvokerservletdeserialize Notes| CVE Name: CVE-2015-7501 VENDOR: Red Hat NOTES: IMPORTANT NOTE: Any instance of this application running Apache Commons Collections version prior to 3.0...

Ubuntu 16.04 LTS : OpenJDK 8 vulnerabilities (USN-3473-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3473-1 advisory. It was discovered that the Smart Card IO subsystem in OpenJDK did not properly maintain state. An attacker could use this to specially construct an...

USN-3473-1: OpenJDK 8 vulnerabilities

It was discovered that the Smart Card IO subsystem in OpenJDK did not properly maintain state. An attacker could use this to specially construct an untrusted Java application or applet to gain access to a smart card, bypassing sandbox restrictions. CVE-2017-10274 Gaston Traberg discovered that th...

chromium-browser: stack buffer overflow in quic

A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server...

Android Security Bulletin—November 2017Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2017-11-06 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners were...

Cloud WAF Versus On-Premises WAF

“The Times They Are a Changin’”, Bob Dylan knew it in 1964 and what was true then is even move true today. There continues to be ongoing debate on web application firewalls WAFs, specifically which is better for the enterprise—on-premises solutions or those in the ever-changing cloud. When...

USN-3469-1 linux, linux-aws, linux-gke, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities

Anthony Perard discovered that the Xen virtual block driver did not properly initialize some data structures before passing them to user space. A local attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. CVE-2017-10911 Bo Zhang discovered tha...

Cesanta Mongoose MQTT SUBSCRIBE Command Denial Of Service

Summary An exploitable NULL pointer dereference vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. An MQTT SUBSCRIBE packet can cause a NULL pointer dereference leading to server crash and denial of service. An attacker needs to send a specially crafted MQTT...

CVE-2017-5066

Insufficient consistency checks in signature handling in the networking stack in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to incorrectly accept a badly formed X.509 certificate via a crafted HTML page...

Design/Logic Flaw

Insufficient consistency checks in signature handling in the networking stack in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to incorrectly accept a badly formed X.509 certificate via a crafted HTML page...

UBUNTU-CVE-2017-5066

Insufficient consistency checks in signature handling in the networking stack in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to incorrectly accept a badly formed X.509 certificate via a crafted HTML page...

CVE-2017-5066

CVE-2017-5066 : Google Chrome (Mac/Windows/Linux) affected up to 58.0.3029.81 and Android up to 58.0.3029.83. The root cause is insufficient consistency checks in the networking stack’s signature handling, allowing a remote attacker to incorrectly accept a badly formed X.509 certificate via a cra...

CVE-2017-5066

Removed by vendor...

The vulnerability of the Network Address Translation (NAT) mechanism implemented in the Cisco IOS operating system allows a hacker to cause a service failure and restart the device.

The vulnerability of the Network Address Translation NAT mechanism implemented by the Cisco IOS operating system is related to resource management errors incorrect translation of H.323 messages through the application-level gateway, using the Registration, Admission, and Status RAS protocol...

Virtuozzo 7 : readykernel-patch (VZA-2017-097)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Linux networking subsystem where a local attacker with CAPNETADMIN capabilities could cause ...