CVE-2017-15519

Versions of SnapCenter 2.0 through 3.0.1 allow unauthenticated remote attackers to view and modify backup related data via the Plug-in for NAS File Services. All users are urged to move to version 3.0.1 and perform the mitigation steps or upgrade to 4.0 following the product documentation...

Updated TiMidity++ packages fix security vulnerabilities

The insertnotesteps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted mid file. NOTE: a crash might be relevant when using the --background option CVE-2017-11546. The resamplegauss function in...

CVE-2018-7286

creationtimestamp| type| source ---|---|--- 2018-02-27 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44181...

NEW: Vulnerability and Assessment Scanning for Your AWS Cloud Databases

Scuba is a free and easy-to-use tool that uncovers hidden security risks. Scuba is frequently updated with content from Imperva’s Defense Center researchers. With Scuba you can: Scan enterprise databases for vulnerabilities and misconfigurations Identify risks to your databases Get recommendation...

CVE-2018-6227

creationtimestamp| type| source ---|---|--- 2018-02-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44166...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0017

An update of 'libtasn1', 'libtiff', 'dnsmasq' packages of Photon OS has been released...

Amazon Linux AMI : tomcat8 (ALAS-2018-959)

Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration As part of the fix for bug 61201, the documentation for Apache Tomcat included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was not correc...

Low: tomcat8

Issue Overview: Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration As part of the fix for bug 61201, the documentation for Apache Tomcat included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The updat...

CVE-2018-5987

creationtimestamp| type| source ---|---|--- 2018-02-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44131...

Joomla! Component File Download Tracker 3.0 - SQL Injection

Joomla! Component File Download Tracker 3.0 - SQL Injection Exploit Title: Joomla! Component File Download Tracker 3.0 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://techsolsystem.com/ Software Link:...

Joomla! Component File Download Tracker 3.0 - SQL Injection

Exploit Title: Joomla! Component File Download Tracker 3.0 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://techsolsystem.com/ Software Link: https://extensions.joomla.org/extensions/extension/directory-a-documentation/downloads/file-download-tracker/ Version: 3.0 Category:...

Kenna Security: Connectors and REST API

In the last post about Kenna Security cloud service I mentioned their main features for analyzing data from different vulnerability scanners. Now let's see how to import Tenable Nessus scan results in Kenna. Here you can see the list of connectors for all supported products: Three connectors for...

CVE-2018-1201

creationtimestamp| type| source ---|---|--- 2018-02-14 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44039...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0016

An update of 'linux', 'curl', 'binutils', 'postgresql', 'libtiff' packages of Photon OS has been released...

COM Port Redirection: How to map a client COM port to a server COM port

LPT and COM port settings are configurable via Studio in XenApp / XenDesktop 7.9 or newer. In versions 7.0 through 7.8, these settings were only configurable using the registry. For more information, see Port redirection policies in Citrix Documentation. Client COM port mapping allows devices...

Amazon Linux AMI : tomcat7 (ALAS-2018-947)

Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration : As part of the fix for bug 61201, the documentation for Apache Tomcat included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was not...

Apache Tomcat 8.5.16 < 8.5.24

The version of Tomcat installed on the remote host is prior to 8.5.24. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.24security-8 advisory. - As part of the fix for bug 61201, the documentation for Apache Tomcat 9.0.0.M22 to 9.0.1, 8.5.16 to 8.5.23,...

Apache Tomcat 9.0.0.M22 < 9.0.2

The version of Tomcat installed on the remote host is prior to 9.0.2. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat9.0.2security-9 advisory. - As part of the fix for bug 61201, the documentation for Apache Tomcat 9.0.0.M22 to 9.0.1, 8.5.16 to 8.5.23, 8.0.4...

Apple Downplays Impact of iBoot Source Code Leak

Apple is responding to reports the leak of its iBoot source code is a serious security blow to iOS devices. In statement released Thursday it confirmed the leak, but emphasized the source code is three years old and would have no impact on iOS device security. “Old source code from three years ag...

Incorrect Documentation

Apache Tomcat contains incorrect documentation. The library's default documentation's CGI search algorithm was incorrect, and could have caused the outcome of scripts to be incorrect when executed...