Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/01 12:0 a.m.30 views

Synology DiskStation Manager Netatalk Out-of-bounds Write (CVE-2018-1160)

Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsiopensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution. This plugin only works with Tenable.ot. Pleas...

10CVSS9.1AI score0.86539EPSS
Exploits10References12
Malwarebytes
Malwarebytes
added 2023/06/20 4:0 a.m.101 views

Update now! ASUS fixes nine security flaws

ASUS has released firmware updates for several router models fixing two critical and several other security issues. The new firmware with accumulated security updates is available for the models GT6, GT-AXE16000, GT-AX11000 PRO, GT-AXE11000, GT-AX6000, GT-AX11000, GS-AX5400, GS-AX3000, XT9, XT8,...

10CVSS10AI score0.86539EPSS
Exploits14
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2019-0061)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.86539EPSS
Exploits10References5
Openbugbounty
Openbugbounty
added 2020/01/11 5:20 p.m.11 views

moiatabroshura.bg Cross Site Scripting vulnerability

Security Researcher ImPRINCE Helped patch 122 vulnerabilities Received 3 Coordinated Disclosure badges , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting moiatabroshura.bg website and its users. Following coordinated and responsible...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2019/04/08 12:0 a.m.124 views

QNAP Netatalk 3.1.12 - Authentication Bypass

QNAP Netatalk 3.1.12 - Authentication Bypass Exploit Title: QNAP Netatalk Authentication Bypass Date: 12/20/2018 Original Exploit Author: Jacob Baines Modifications for QNAP devices: Mati Aharoni Vendor Homepage: http://netatalk.sourceforge.net/ Software Link:...

10CVSS0.4AI score0.86539EPSS
Exploits10
Packet Storm
Packet Storm
added 2019/04/05 12:0 a.m.231 views

QNAP Netatalk Authentication Bypass

Exploit Title: QNAP Netatalk Authentication Bypass Date: 12/20/2018 Original Exploit Author: Jacob Baines Modifications for QNAP devices: Mati Aharoni Vendor Homepage: http://netatalk.sourceforge.net/ Software Link: https://sourceforge.net/projects/netatalk/files/ Version: Before 3.1.12 CVE :...

10CVSS0.4AI score0.86539EPSS
Exploits10
Check Point Advisories
Check Point Advisories
added 2019/02/18 12:0 a.m.9 views

Netatalk Attention Quantum Out-of-bounds Write (CVE-2018-1160)

An out-of-bounds write vulnerability exists in Netatalk. This vulnerability is due to a missing bounds check. Successful exploitation could lead to arbitrary code execution with privileges of the root user...

10CVSS4.5AI score0.86539EPSS
Exploits10
Mageia
Mageia
added 2019/02/03 7:36 p.m.35 views

Updated netatalk packages fix security vulnerability

Jacob Baines discovered a flaw in the handling of the DSI Opensession command in Netatalk, allowing an unauthenticated user to execute arbitrary code with root privileges CVE-2018-1160...

10CVSS3.3AI score0.86539EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2018/12/31 12:0 a.m.35 views

openSUSE Security Update : netatalk (openSUSE-2018-1614)

This update for netatalk fixes the following issues : Security issue fixed : - CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI OPEN SESSION request, which allowed an unauthenticated to overwrite memory with data of their choice leading for arbitrary code execution with root...

10CVSS9.3AI score0.86539EPSS
Exploits10References3
OpenVAS
OpenVAS
added 2018/12/29 12:0 a.m.25 views

openSUSE: Security Advisory for netatalk (openSUSE-SU-2018:4287-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.6AI score0.86539EPSS
Exploits10References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/12/28 9:15 p.m.108 views

Security update for netatalk (important)

This update for netatalk fixes the following issues: Security issue fixed: - CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI OPEN SESSION request, which allowed an unauthenticated to overwrite memory with data of their choice leading for arbitrary code execution with root...

2.3AI score0.86539EPSS
Exploits10References1
Tenable Nessus
Tenable Nessus
added 2018/12/24 12:0 a.m.43 views

Slackware 14.0 / 14.1 / 14.2 / current : netatalk (SSA:2018-355-01)

New netatalk packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-355-01. The text itself is copyright C Slackware...

10CVSS8.6AI score0.86539EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2018/12/24 12:0 a.m.53 views

SUSE SLED12 Security Update : netatalk (SUSE-SU-2018:4217-1)

This update for netatalk fixes the following issues : Security issue fixed : CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI OPEN SESSION request, which allowed an unauthenticated to overwrite memory with data of their choice leading to arbitrary code execution with root...

10CVSS8.9AI score0.86539EPSS
Exploits10References5
0day.today
0day.today
added 2018/12/22 12:0 a.m.892 views

Netatalk < 3.1.12 - Authentication Bypass Exploit

Exploit Title: Netatalk Authentication Bypass Exploit Author: Jacob Baines Vendor Homepage: http://netatalk.sourceforge.net/ Software Link: https://sourceforge.net/projects/netatalk/files/ Version: Before 3.1.12 Tested on: Seagate NAS OS x8664 CVE : CVE-2018-1160 Advisory:...

10CVSS0.4AI score0.86539EPSS
Exploits10
OSV
OSV
added 2018/12/21 1:42 p.m.4 views

SUSE-SU-2018:4217-1 Security update for netatalk

This update for netatalk fixes the following issues: Security issue fixed: - CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI OPEN SESSION request, which allowed an unauthenticated to overwrite memory with data of their choice leading to arbitrary code execution with root...

10CVSS9.7AI score0.86539EPSS
Exploits10References3
OSV
OSV
added 2018/12/21 5:45 a.m.4 views

SUSE-SU-2018:4214-1 Security update for netatalk

This update for netatalk fixes the following issues: Security issue fixed: - CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI OPEN SESSION request, which allowed an unauthenticated to overwrite memory with data of their choice leading for arbitrary code execution with root...

10CVSS9.7AI score0.86539EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2018/12/21 12:0 a.m.45 views

Debian DSA-4356-1 : netatalk - security update

Jacob Baines discovered a flaw in the handling of the DSI Opensession command in Netatalk, an implementation of the AppleTalk Protocol Suite, allowing an unauthenticated user to execute arbitrary code with root privileges. C Tenable Network Security, Inc. The descriptive text and package checks i...

10CVSS9.2AI score0.86539EPSS
Exploits10References6
exploitpack
exploitpack
added 2018/12/21 12:0 a.m.166 views

Netatalk 3.1.12 - Authentication Bypass

Netatalk 3.1.12 - Authentication Bypass Exploit Title: Netatalk Authentication Bypass Date: 12/20/2018 Exploit Author: Jacob Baines Vendor Homepage: http://netatalk.sourceforge.net/ Software Link: https://sourceforge.net/projects/netatalk/files/ Version: Before 3.1.12 Tested on: Seagate NAS OS...

10CVSS0.3AI score0.86539EPSS
Exploits10
Circl
Circl
added 2018/12/21 12:0 a.m.19 views

CVE-2018-1160

creationtimestamp| type| source ---|---|--- 2018-12-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46048 2018-12-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46034 2019-04-08 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46675 2019-12-19...

10CVSS7.5AI score0.86539EPSS
Exploits10References10
Packet Storm
Packet Storm
added 2018/12/21 12:0 a.m.138 views

Netatalk Authentication Bypass

Exploit Title: Netatalk Authentication Bypass Date: 12/20/2018 Exploit Author: Jacob Baines Vendor Homepage: http://netatalk.sourceforge.net/ Software Link: https://sourceforge.net/projects/netatalk/files/ Version: Before 3.1.12 Tested on: Seagate NAS OS x8664 CVE : CVE-2018-1160 Advisory:...

0.4AI score0.86539EPSS
Exploits10
Rows per page
Query Builder