7 matches found
cdmedia.gr Cross Site Scripting vulnerability OBB-3158748
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2021-28200
The CD media configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service...
CVE-2021-28200 ASUS BMC's firmware: buffer overflow - CD media configuration function
The CD media configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service...
ASUS BMC Firmware 安全特征问题漏洞
ASUS BMC Firmware is a firmware from Asus China. A security signature issue vulnerability exists in the ASUS BMC Firmware Web management page, which originates from a buffer overflow vulnerability caused by the CD media configuration function not validating the length of a user-entered string. A...
Ubuntu Update for update-manager USN-1284-2
Ubuntu Update for Linux kernel vulnerabilities USN-1284-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN12842.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for update-manager USN-1284-2 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.n...
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : update-manager regression (USN-1284-2)
USN-1284-1 fixed vulnerabilities in Update Manager. One of the fixes introduced a regression for Kubuntu users attempting to upgrade to a newer Ubuntu release. This update fixes the problem. We apologize for the inconvenience. David Black discovered that Update Manager incorrectly extracted the...
USN-1284-1: Update Manager vulnerabilities
David Black discovered that Update Manager incorrectly extracted the downloaded upgrade tarball before verifying its GPG signature. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could potentially be used to replace arbitrary files. CVE-2011-3152 David Black...