DEBIAN-CVE-2018-1312

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

CVE-2018-1312

CVE-2018-1312 affects Apache httpd 2.2.0–2.4.29 where nonce generation for HTTP Digest authentication was not seeded with a proper pseudo-random seed. This allowed replay across servers in a common Digest configuration. Public advisories (CentOS, Debian, Arch Linux, ALT Linux) fix confirmed in ve...

UBUNTU-CVE-2018-1312

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

PT-2018-1820 · Apache +5 · Apache Httpd +6

Name of the Vulnerable Software and Affected Versions: Apache httpd versions 2.2.0 through 2.4.29 Description: The issue is related to the generation of an HTTP Digest authentication challenge, where the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed...

CVE-2014-1457

Open Web Analytics OWA before 1.5.6 improperly generates random nonce values, which makes it easier for remote attackers to bypass a CSRF protection mechanism by leveraging knowledge of an OWA user name...

CVE-2014-1457

Open Web Analytics (OWA) before 1.5.6 is affected by CVE-2014-1457: it generates nonces for CSRF protection in a way that can be bypassed by knowledge of an OWA user name. Affects the OWA component responsible for CSRF defense; root cause is nonce generation not sufficiently random. Impact is par...

CVE-2014-1457

Open Web Analytics OWA before 1.5.6 improperly generates random nonce values, which makes it easier for remote attackers to bypass a CSRF protection mechanism by leveraging knowledge of an OWA user name...

CVE-2018-6480

A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a failure of the nonce feature which, for example, helped with loop prevention. ccnlfwdhandleInterest assumes that the union member s is of type ccnlpktdetailndntlvs. However, if the type is in fact stru...

Type confusion

A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a failure of the nonce feature which, for example, helped with loop prevention. ccnlfwdhandleInterest assumes that the union member s is of type ccnlpktdetailndntlvs. However, if the type is in fact stru...

CVE-2018-6480

A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a failure of the nonce feature which, for example, helped with loop prevention. ccnlfwdhandleInterest assumes that the union member s is of type ccnlpktdetailndntlvs. However, if the type is in fact stru...

CVE-2018-6480

CVE-2018-6480 describes a type confusion in CCN-lite 2. The bug occurs in ccnl_fwd_handleInterest, which assumes the union member s is of type ccnl_pktdetail_ndntlv_s; if the actual type is ccnl_pktdetail_ccntlv_s or ccnl_pktdetail_iottlv_s, the code may access uninitialized memory or data that i...

CVE-2018-6480

A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a failure of the nonce feature which, for example, helped with loop prevention. ccnlfwdhandleInterest assumes that the union member s is of type ccnlpktdetailndntlvs. However, if the type is in fact stru...

Insecure Nonce Generation

github.com/rfjakob/gocryptfs is vulnerable to insecure nonce generation. The library does not randomly generate the nonce, allowing a malicious user to figure out the block write order...

Timing Attack

github.com/hashicorp/vault is vulnerable to timing attacks. The application is vulnerable because they do not compare nonces in constant-time, which allows attackers to use the timing of the request to progressively identify a valid nonce...

Smooth Slider <= 2.8.6 - Authenticated SQL Injection

During the security analysis, ThunderScan discovered SQL injection vulnerability in Smooth Slider WordPress plugin. The easiest way to reproduce the vulnerability is to visit the provided URL while being logged in as administrator or another user that is authorized to access the plugin settings...

WordPress Clean Up Optimizer 4.0.0 SQL Injection Vulnerability

WordPress Clean Up Optimizer plugin versions 4.0.0 and below suffer from a remote SQL injection vulnerability. Advisory Title: WordPress Clean Up Optimizer Plugin Security Vulnerability Advisory URL: http://www.defensecode.com/advisories.php Software: WordPress Clean Up Optimizer plugin Language:...

PEPPERL+FUCHS/ecom instruments WLAN Capable Devices using the WPA2 Protocol

CVSS v3 8.1 ATTENTION: Low skill level is needed to exploit. Public exploits are available. Vendor: PEPPERL+FUCHS/ecom instruments Equipment: WLAN capable devices using the WPA2 Protocol Vulnerabilities: Reusing a Nonce AFFECTED PRODUCTS PEPPERL+FUCHS/ecom instruments reports that these...

PHOENIX CONTACT WLAN Capable Devices using the WPA2 Protocol

CVSS v3 6.8 ATTENTION: Public exploits are available. Vendor: PHOENIX CONTACT Equipment: WLAN capable devices using the WPA2 Protocol Vulnerabilities: Reusing a Nonce AFFECTED PRODUCTS PHOENIX CONTACT reports that these vulnerabilities affect all versions of the following WLAN capable devices usi...

tchimberaid.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-399555 Description| Value ---|--- Affected Website:| tchimberaid.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...

downtownmarion.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-399481 Description| Value ---|--- Affected Website:| downtownmarion.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...