[SECURITY] Fedora 25 Update: wireshark-2.2.7-1.fc25

Metapackage with installs wireshark-cli and wireshark-qt...

Cisco IOS XR Software Privilege Escalation Vulnerability (cisco-sa-20170621-ios1)

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges to the root level. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Cisco IOS XR Software Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges to the root level. The vulnerability is due to incorrect permission settings on binary files in the affected software. An attacker could exploit this vulnerability by sending...

How do I Set Specific SSL Protocols on XenMobile Server 10.6

With our strong emphasis in security, the ability to specify the SSL protocols supported by XenMobile Server is critical to our customers to help them to control which SSL Protocols they allow to access XenMobile. With XenMobile Server 10.6, we introduce a new CLI option that allows the...

Cisco Elastic Services Controller Remote Command Execution Vulnerability

Cisco Elastic Services Controller is a cloud and systems management solution. A security vulnerability in the ConfD CLI for Cisco Elastic Services Controllers could allow an authenticated, remote attacker to run arbitrary commands as a Linux tomcat user on an affected system...

Cisco Elastic Services Controller Default Administrator Credentials Vulnerability

Cisco Elastic Services Controller is a cloud and systems management solution. Cisco Elastic Services Controllers has a security vulnerability in the ConfD CLI implementation that stems from the presence of a default, weak, hard-coded password for the admin user on the affected system. A remote...

CVE-2017-6689

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affected Releases: 2.29.76...

CVE-2017-6682

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to run arbitrary commands as the Linux tomcat user on an affected system. More Information: CSCvc76620. Known Affected Releases: 2.29.76...

CVE-2017-6689

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affected Releases: 2.29.76...

Design/Logic Flaw

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to run arbitrary commands as the Linux tomcat user on an affected system. More Information: CSCvc76620. Known Affected Releases: 2.29.76...

Default credentials

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affected Releases: 2.29.76...

Design/Logic Flaw

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to access sensitive information on an affected system. More Information: CSCvd29403. Known Affected Releases: 2.32...

CVE-2017-6682

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to run arbitrary commands as the Linux tomcat user on an affected system. More Information: CSCvc76620. Known Affected Releases: 2.29.76...

CVE-2017-6691

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to access sensitive information on an affected system. More Information: CSCvd29403. Known Affected Releases: 2.32...

CVE-2017-6691

CVE-2017-6691 affects Cisco Elastic Services Controller (ESC) and its ConfD CLI. The issue arises from improper permissions on certain files in the affected service, enabling an authenticated, remote attacker to access sensitive information on the system. Affected release noted: ESC 2.3(2). Cisco...

CVE-2017-6689

CVE-2017-6689 is a Cisco Elastic Services Controller vulnerability affecting the ConfD CLI, caused by a default, hard-coded admin password. An authenticated remote attacker could log in as admin (SSH port 2024) on affected systems. Known affected release: 2.2(9.76). Cisco advisory notes there are...

CVE-2017-6682

CVE-2017-6682 affects Cisco Elastic Services Controller (ESC) where the ConfD CLI allows an authenticated, remote attacker to run arbitrary commands as the Linux tomcat user due to insufficient sanitization of allowed ConfD CLI commands. Affected release noted: 2.2(9.76). The issue enables comman...

[ASA-201706-9] wireshark-cli: denial of service

Arch Linux Security Advisory ASA-201706-9 ========================================= Severity: Low Date : 2017-06-12 CVE-ID : CVE-2017-9343 CVE-2017-9344 CVE-2017-9345 CVE-2017-9346 CVE-2017-9347 CVE-2017-9348 CVE-2017-9349 CVE-2017-9350 CVE-2017-9351 CVE-2017-9352 CVE-2017-9353 CVE-2017-9354...

Cisco Elastic Services Controller Information Disclosure Vulnerability

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to access sensitive information on an affected system. The vulnerability is due to improper permissions that are set for certain files by the affected service. An attacker could...

CVE-2017-7515

poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service...