D-Link Webcam Hack Turns IoT Device into Backdoor

Connecting a webcam to your home or office network might seem like a harmless thing, but researchers have figured out how to turn that connected device into a backdoor. Researchers at Vectra Networks today released a report demonstrating how a $30 D-Link webcam can be abused by attackers and turn...

MS16-006: Security Update for Silverlight to Address Remote Code Execution (3126036)

The version of Microsoft Silverlight installed on the remote Windows host is affected by a remote code execution vulnerability due to a flaw that allows strings to be decoded by a malicious decoder that returns negative offsets. An unauthenticated, remote attacker can exploit this vulnerability, ...

SAP Hostcontrol remote DOS

Application: SAP NetWeaver AS Java Versions Affected: SAP NetWeaver AS Java 7.0 – 7.5 Vendor URL: SAP Bug: DoS Reported: 01.11.2016 Vendor response: 02.11.2016 Date of Public Advisory: 13.06.2017 Reference: SAP Security Note 2389181 Authors: Mathieu Geli ERPScan VULNERABILITY INFORMATION Class: D...

netcf remote denial of service vulnerability

netcf is a library for configuring network interfaces. A remote denial of service vulnerability exists in netcf. An attacker could exploit this vulnerability to crash an application and deny service to legitimate users...

WordPress Plugin Pinpoint Booking System SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platforms developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.Pinpoint Booking System is one of the plugins used to create a booking or reservation system in a WordPress site. A SQL...

Lithium Forum - Client Side POST Inject Vulnerability

Document Title: =============== Lithium Forum - Client Side POST Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1519 Release Date: ============= 2015-12-22 Vulnerability Laboratory ID VL-ID: ==================================== 1519...

python-rdomanager-oscplugin: NeutronMetadataProxySharedSecret parameter uses default value

It was discovered that Director's NeutronMetadataProxySharedSecret parameter remained specified at the default value of 'unset'. This value is used by OpenStack Networking to sign instance headers; if unchanged, an attacker knowing the shared secret could use this flaw to spoof OpenStack Networki...

Apple iOS URL Forgery Vulnerability

Apple iOS is an operating system developed by Apple for use in cell phones and other devices. A security vulnerability exists in Apple iOS that allows attackers to exploit a vulnerability to build malicious web pages that can be spoofed URLs by tricking users into parsing them...

Microsoft Windows Library Loading Remote Code Execution Vulnerability (CNVD-2015-08040)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A remote code execution vulnerability exists in Microsoft Windows that originates from a program failing to properly validate input before loading a library. An attacker could exploit the vulnerability ...

Red Hat JBoss Portal Security Bypass Vulnerability

Red Hat JBoss Portal is an open source and standards-compliant portal platform from Red Hat Red Hat. The platform can build , layout of a portal Web interface for publishing , managing content and customizing the user experience. A security vulnerability exists in the Red Hat JBoss Portal 6.x...

grep: heap buffer overrun

A heap-based buffer overflow flaw was found in the way grep processed certain pattern and text combinations. An attacker able to trick a user into running grep on specially crafted input could use this flaw to crash grep or, potentially, read from uninitialized memory...

Magento Bug Bounty #22 - (Profile) Persistent Vulnerability

Document Title: =============== Magento Bug Bounty 22 - Profile Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1636 Magento Security ID: APPSEC-1121 Release Date: ============= 2015-11-06 Vulnerability Laboratory ID VL-ID:...

Air Drive Plus v2.4 iOS - File Upload Vulnerability

Document Title: =============== Air Drive Plus v2.4 iOS - File Upload Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1597 Release Date: ============= 2015-09-21 Vulnerability Laboratory ID VL-ID: ==================================== 1597...

EMC Documentum Content Server: arbitrary code execution (incomplete fix in CVE-2015-4532)

Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed For detailed description see http://seclists.org/bugtraq/2015/Jul/51 New behavior introduced in CVE-2015-4532: API ?,c,execute domethod WITH METHOD='dmbptransition', ARGUMENTS=' repo repo...

EMC Documentum Content Server Code Execution Vulnerability

EMC Documentum Content Server suffers from an arbitrary code execution vulnerability. Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed For detailed description see http://seclists.org/bugtraq/2015/Jul/51 New behavior introduced in...

EMC Documentum Content Server Code Execution

Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed For detailed description see http://seclists.org/bugtraq/2015/Jul/51 New behavior introduced in CVE-2015-4532: API ?,c,execute domethod WITH METHOD='dmbptransition', ARGUMENTS=' repo repo...

zf-oauth2 security bypass vulnerability

OAuth is an open web standard for authorization that is widely used around the world and is currently in version 2.0. A security bypass vulnerability exists in zf-oauth2, which can be exploited by an attacker to bypass security restrictions and perform unauthorized operations...

Microsoft SQL Server Remote Code Execution Vulnerability (CNVD-2015-04706)

Microsoft SQL Server is the United States Microsoft Microsoft company develops and maintains a set of applications in the Microsoft Windows system under the large commercial database system. A remote code execution vulnerability exists when Microsoft SQL Server fails to properly handle internal...

RubyGems BSON Denial of Service Vulnerability

RubyGems or gems for short is a Ruby packaging system for packaging Ruby components. A denial of service vulnerability exists in RubyGems BSON. This vulnerability allows attackers to launch denial of service attacks...

Unity Web Player Zero-Day Vulnerability Disclosed

Some detail has been disclosed about a zero-day vulnerability in the Unity Web Player browser plugin that can allow an attacker to use a victim’s credentials to read messages or otherwise abuse their access to online services. The partial disclosure was made after nearly six months of bug-report...