3S-Smart Software Solutions CODESYS GatewayService Buffer Overflow Vulnerability

3S-Smart Software Solutions CODESYS GatewayService is a gateway service for use in CODESYS products from 3S-Smart Software Solutions, Germany. A buffer overflow vulnerability exists in the Name Service Client feature in 3S-Smart Software Solutions CODESYS GatewayService version 3.5.13.20, which c...

Design/Logic Flaw

All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" or above then the string obtained from the client, after a failed character conversion, is printed. Such strings can be provided during the NTLMSSP...

EulerOS Virtualization for ARM 64 3.0.5.0 : wpa_supplicant (EulerOS-SA-2020-1073)

According to the versions of the wpasupplicant package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - hostapd before 2.10 and wpasupplicant before 2.10 allow an incorrect indication of disconnection in certain...

CVE-2012-6136

tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes...

CVE-2012-6136

tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes...

SUSE-SU-2019:2330-1 Security update for mariadb, mariadb-connector-c

This update for mariadb and mariadb-connector-c fixes the following issues: mariadb: - Update to version 10.2.25 bsc1136035 - CVE-2019-2628: Fixed a remote denial of service by an privileged attacker bsc1136035. - CVE-2019-2627: Fixed another remote denial of service by an privileged attacker...

CVE-2019-2389 Process termination via PID file manipulation

Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the MongoDB process via SysV init. This issue affects MongoDB Server v4.0 versions prior to 4.0.11;...

CVE-2019-10724

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected products and versions: Legion Y520TZ370 6.0.1.8642, AIO310-20IAP 6.0.1.8642, AIO510-22ISH 6.0.1.8642...

CVE-2019-10724

The CVE-2019-10724 issue affects Dolby DAX2 API system services and allows a low-privileged user to terminate arbitrary higher-privilege processes. Affected products/versions include Lenovo laptops/desktops listed with Dolby driver 6.0.1.8642 (and related builds). CVSS data indicate NETWORK acces...

Microsoft Windows 10 AppXSvc Deployment Service - Arbitrary File Deletion

Microsoft Windows 10 AppXSvc Deployment Service - Arbitrary File Deletion / Author : Abdelhamid Naceri Discovered On : 13/08/2019 Description : An Elevation Of Privileges Exist when the microsoft AppXSvc Deployment Service Cannot Properly Handle The Folder Junction lead to an arbitrary file...

wildfly: Race condition on PID file allows for termination of arbitrary processes by local users

A flaw was discovered in wildfly that would allow local users, who are able to execute init.d script, to terminate arbitrary processes on the system. An attacker could exploit this by modifying the PID file in /var/run/jboss-eap/ allowing the init.d script to terminate any process as root...

F5 BIG-IP Application Security Manager Resource Management Error Vulnerability

F5 BIG-IP Application Security Manager ASM is a Web Application Firewall WAF from F5 USA that provides secure remote access, protects email, and simplifies Web access control while enhancing network and application performance. A resource management error vulnerability exists in F5 BIG-IP...

Buffer overflow

The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenticated attacker. This overflow is handled, but terminates the process. An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer, causing an exception that...

CVE-2019-7231

The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenticated attacker. This overflow is handled, but terminates the process. An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer, causing an exception that...

CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

Null pointer dereference

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

FreeBSD -- EAP-pwd message reassembly issue with unexpected fragment

Problem Description: EAP-pwd implementation in hostapd EAP server and wpasupplicant EAP peer does not to validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to NULL pointer dereference. See...

OPENSUSE-SU-2019:0293-1 Security update for supportutils

This update for supportutils fixes the following issues: Security issues fixed: - CVE-2018-19640: Fixed an issue where users could kill arbitrary processes bsc1118463. - CVE-2018-19638: Fixed an issue where users could overwrite arbitrary log files bsc1118460. - CVE-2018-19639: Fixed a code...

HID Global EasyLobby Solo Access Control Error Vulnerability (CNVD-2019-12473)

HID Global EasyLobby Solo is a suite of Secure Visitor Management SVM software from HID Global, USA. A security vulnerability exists in HID Global EasyLobby Solo version 11.0.4563. A local attacker can exploit the vulnerability by accessing the self-service server and task manager to terminate...