3633 matches found
Circle with Disney SSL TLS Man-in-the-Middle Attack Vulnerability (CNVD-2017-33184)
Circle with Disney is a set of network monitoring and management devices for monitoring children's online behavior from Circle Media, Inc. in the United States. An SSL TLS man-in-the-middle attack vulnerability exists in the remote control feature in Circle with Disney version 2.0.1. An attacker...
Linux Kernel 4.14.0-rc4+ - 'waitid()' Privilege Escalation(CVE-2017-5123)
This is a guest post by a young and talented Portuguese exploiter, Federico Bento. He won this year’s Pwnie for Epic Achievement exploiting TIOCSTI ioctl. Days ago he posted a video demonstrating an exploit for CVE-2017-5123 and luckly for you I managed to convince him to do a write-up about it. ...
Cross-site Scripting (XSS)
genix/cms is vulnerable to cross-site scripting XSS attacks. The library does not properly sanitize the Menu ID field ininc/lib/Control/Backend/menus.control.php , allowing a malicious user to inject and execute arbitrary web script through a page=menus request...
CVE-2017-13987
An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows an unauthorized user to download log files...
USN-3399-1 cvs vulnerability
Hank Leininger discovered that cvs did not properly handle SSH for remote repositories. A remote attacker could use this to construct a cvs repository that when accessed could run arbitrary code with the privileges of the user...
UBUNTU-CVE-2017-12836
CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."...
Siemens 300/400 Series PLC Remote Control Vulnerability
Programmable controller PLC is developed on the basis of relay control and computer control, and gradually developed into a new type of industrial automatic control device based on microprocessor and integrating modern technologies such as computer technology, automatic control technology and...
Televes COAXDATA GATEWAY 1Gbps Device Arbitrary Password Change Vulnerability
The Televes COAXDATA GATEWAY 1Gbps devices is a wireless router device from the Spanish company Televes. A security vulnerability exists in the Televes COAXDATA GATEWAY 1Gbps device that stems from a lack of access control and detection on the client side. An attacker could exploit the...
The vulnerability of the MySQL database management system allows malicious actors to compromise the confidentiality of information.
The vulnerability of the MySQL Server component of the MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality of information through network packets...
The vulnerability of Microsoft Edge browser allows a hacker to bypass existing access restrictions policies.
The vulnerability of Microsoft Edge is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor to bypass existing policies that restrict access to HTML elements in other browser windows...
Microsoft IE And Microsoft Edge Flash Player RCE Vulnerability (3201860)
This host is missing a critical security update according to Microsoft Bulletin MS16-128. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Improper access control
Access control vulnerability in Intel Security Data Loss Prevention Endpoint DLPe 9.4.200 and 9.3.600 allows authenticated users with Read-Write-Execute permissions to inject hook DLLs into other processes via pages in the target process memory get...
SAP GRC Access Control EAM Security Bypass Vulnerability
SAP GRC is a suite of governance, risk management and compliance solutions from SAP Germany. A security bypass vulnerability exists in SAP GRC. An attacker could use this vulnerability to bypass certain security restrictions and gain unauthorized access to the application...
CVE-2017-0311
NVIDIA GPU Display Driver R378 contains a vulnerability in the kernel mode layer handler where improper access control may lead to denial of service or possible escalation of privileges...
OLX: Combined attacks leading to stealing user's account
Hello, First: I have found out that when I register an account with the an email already used it doesn't tell anything but it sends a link to the registered email and when the user visits the link the password is changed without any further checking if the user was the one who asked for password...
Carlo Gavazzi Energy Meters - Login Brute Force, Extract Info and Dump Plant Database
This module scans for Carlo Gavazzi Energy Meters login portals, performs a login brute force attack, enumerates device firmware version, and attempt to extract the SMTP configuration. A valid, admin privileged user is required to extract the SMTP password. In some older firmware versions, the SM...
Design/Logic Flaw
A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system...
The vulnerability of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the MediaTek driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges through a specially created application...
The vulnerability of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the include/core/SkPostConfig.h function in the Skia graphics library of the Systemserver operating system in Android is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges including crashing the...
CVE-2015-8680
The CVE-2015-8680 entry describes an interface access control vulnerability in Huawei P8 and Mate S devices where the graphics driver can be manipulated by a crafted app with graphics permission to cause a denial of service (system crash) or gain privileges. Affected software includes Huawei mode...