EUVD-2017-9741

Malware in sbrugna...

CVE-2017-18651

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is an Integer Overflow in processMSetTokenTUIPasswd during handling of a trusted application, leading to memory corruption. The Samsung IDs are SVE-2017-9008 and SVE-2017-9009 October 2017...

Security Bulletin: A vulnerability in IBM Java SDK affects IBM Tivoli System Automation Application Manager (CVE-2017-10356)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 used by IBM Tivoli System Automation Application Manager. IBM Tivoli System Automation Application Manager has addressed the applicable CVEs. These issues were also addressed by WebSphere Application Server...

Security Bulletin: Multiple vulnerabilities in WebSphere Application Server affect IBM Business Process Manager (BPM), WebSphere Process Server (WPS), WebSphere Enterprise Service Bus, and WebSphere Lombardi Edition (WLE) (Java CPU October 2017)

Summary WebSphere Application Server is shipped as a component of IBM Business Process Manager, WebSphere Process Server, WebSphere Enterprise Service Bus, and WebSphere Lombardi Edition. WebSphere Application Server Liberty is shipped as a component of the optional BPM component Process Federati...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2017-10356, CVE-2018-2579, CVE-2018-2588, CVE-2018-2602, CVE-2018-2603, CVE-2018-2633, CVE-2018-2618)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped and used by IBM Spectrum Control formerly Tivoli Storage Productivity Center. These issues were disclosed as part of the IBM Java SDK updates for October 2017 and January 2018. U UPDATED 5/17/2018 to a...

CVE-2017-18651

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is an Integer Overflow in processMSetTokenTUIPasswd during handling of a trusted application, leading to memory corruption. The Samsung IDs are SVE-2017-9008 and SVE-2017-9009 October 2017...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with N7.x software. There is a WifiStateMachine IllegalArgumentException and reboot if a malformed wpasupplicant.conf is read. The Samsung ID is SVE-2017-9828 October 2017...

CVE-2017-18650

An issue was discovered on Samsung mobile devices with N7.x software. There is a WifiStateMachine IllegalArgumentException and reboot if a malformed wpasupplicant.conf is read. The Samsung ID is SVE-2017-9828 October 2017...

CVE-2017-18651

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is an Integer Overflow in processMSetTokenTUIPasswd during handling of a trusted application, leading to memory corruption. The Samsung IDs are SVE-2017-9008 and SVE-2017-9009 October 2017...

MySQL 5.7.x < 5.7.20 Multiple Vulnerabilities (October 2017 CPU)

Binary data 700624.prm...

MySQL 5.6.x < 5.6.38 Multiple Vulnerabilities (October 2017 CPU)

Binary data 700619.prm...

MySQL 5.5.x < 5.5.58 Multiple Vulnerabilities (October 2017 CPU)

Binary data 700613.prm...

azure-umqtt-c denial of service vulnerability

azure-umqtt-c is a generic library build for the MQTT protocol. A denial of service vulnerability exists in versions of azure-umqtt-c prior to 2017 October 6. An attacker could exploit this vulnerability to cause a denial of service...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Fabric Manager

Summary There are multiple vulnerabilities in IBMR SDK JavaTM Technology Edition, Version 7 used by IBM Fabric Manager. These issues were disclosed as part of the IBM Java SDK updates in October 2017. Vulnerability Details Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology...

Security Bulletin: Multiple vulnerabilities in Java SDK affect IBM b-type SAN directors and switches.

Summary There are multiple vulnerabilities in SDK Java™ Technology Edition used by IBM b-type SAN directors and switches. These issues were disclosed as part of the Java SDK updates in October 2017. Vulnerability Details CVEID: CVE-2017-10356 DESCRIPTION: An unspecified vulnerability related to t...

Security Bulletin: Multiple Vulnerabilities in IBM Java SDK affect WebSphere Application Server shipped with Tivoli Netcool Performance Manager October 2017 CPU

Summary IBM WebSphere Application Server is shipped as a component of IBM Tivoli Netcool Performance Manager. There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version that is used by Tivoli Netcool Performance Manager . These issues were disclosed as part of the IBM Java S...

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect IBM Security Key Lifecycle Manager October 2017 CPU

Summary There are multiple vulnerabiltities in the IBM® SDK Java™ Technology Edition that is shipped with IBM WebSphere Application Server. IBM WebSphere Application Server is shipped with IBM Security Key Lifecycle Manager. These issues were disclosed as part of the IBM Java SDK updates in Octob...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime IBM affect IBM Decision Optimization Center and IBM ILOG ODM Enterprise

Summary There are multiple vulnerabilities in IBM® SDK Java™ and IBM® Runtime Environment Java™ Versions 6 and 7 used by IBM Decision Optimization Center. These issues were disclosed as part of the IBM Java SDK updates in October 2017. Vulnerability Details If you run your own Java code using the...

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affects WebSphere Application Server October 2017 CPU that is bundled with IBM WebSphere Application Server Patterns and IBM WebSphere Application Server for Cloud.

Summary There are multiple vulnerabiltities in the IBM® SDK Java™ Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in October 2017. Vulnerability Details For information on the IBM Java SDK that is now bundled with...

WhatsApp 2.17.52 - Memory Corruption Exploit

Exploit for iOS platform in category dos / poc !/usr/bin/env python -- coding: utf-8 -- Found this and more exploits on my open source security project: http://www.exploitpack.com Exploit Author: Juan Sacco at KPN Red Team - http://www.kpn.com Date and time of release: 11 October 2017 Tested on:...