UBUNTU-CVE-2016-5275

Buffer overflow in the mozilla::gfx::FilterSupport::ComputeSourceNeededRegions function in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code by leveraging improper interaction between empty filters and CANVAS element rendering...

CVE-2016-4573

Fortinet FortiSwitch FSW-108D-POE, FSW-124D, FSW-124D-POE, FSW-224D-POE, FSW-224D-FPOE, FSW-248D-POE, FSW-248D-FPOE, FSW-424D, FSW-424D-POE, FSW-424D-FPOE, FSW-448D, FSW-448D-POE, FSW-448D-FPOE, FSW-524D, FSW-524D-FPOE, FSW-548D, FSW-548D-FPOE, FSW-1024D, FSW-1048D, FSW-3032D, and FSW-R-112D-POE...

Authentication flaw

Fortinet FortiSwitch FSW-108D-POE, FSW-124D, FSW-124D-POE, FSW-224D-POE, FSW-224D-FPOE, FSW-248D-POE, FSW-248D-FPOE, FSW-424D, FSW-424D-POE, FSW-424D-FPOE, FSW-448D, FSW-448D-POE, FSW-448D-FPOE, FSW-524D, FSW-524D-FPOE, FSW-548D, FSW-548D-FPOE, FSW-1024D, FSW-1048D, FSW-3032D, and FSW-R-112D-POE...

CVE-2016-4573

Fortinet FortiSwitch FSW-108D-POE, FSW-124D, FSW-124D-POE, FSW-224D-POE, FSW-224D-FPOE, FSW-248D-POE, FSW-248D-FPOE, FSW-424D, FSW-424D-POE, FSW-424D-FPOE, FSW-448D, FSW-448D-POE, FSW-448D-FPOE, FSW-524D, FSW-524D-FPOE, FSW-548D, FSW-548D-FPOE, FSW-1024D, FSW-1048D, FSW-3032D, and FSW-R-112D-POE...

CVE-2016-4573

Fortinet FortiSwitch devices (FSW-108D/124D/224D/248D/424D/448D/524D/548D/1024D/1048D/3032D/FSW-R-112D-POE, and related FortiLink models) in FortiLink managed mode may expose an authentication bypass on the rest_admin account after upgrading to 3.4.1. The issue requires specific conditions: Forti...

OWASP Directory Access scanner

OWASP Directory Access scanner This application scans the site directories and find all possible ways to login, empty directories and entry points. Scans conducted in the dictionary that is included in this application. This software is written for informational purposes and is an open source...

Unsafe Query Generation Risk in Active Record

There is a vulnerability when Active Record is used in conjunction with JSON parameter parsing. This vulnerability is similar to CVE-2012-2660, CVE-2012-2694 and CVE-2013-0155. Impact ------ Due to the way Active Record interprets parameters in combination with the way that JSON parameters are...

chromium-browser: Address bar spoofing

Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp...

CVE-2016-5141

Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp...

UBUNTU-CVE-2016-5141

Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp...

Ruby: Attacker can smuggle a malicious domain in a URI object.

Simple example: userprovidedredirecturi = "http:////malware.com/real/path" eviluri = URI.parseuserprovidedredirecturi eviluri.host = nil eviluri.tos = "http://malware.com/real/path" In many common URI-validation scenarios, the target system will likely parse a user provided URI, and then check th...

Google Chrome Address Bar Spoofing Vulnerability

Google Chrome is a web browsing tool developed by Google. Google Chrome suffers from an address bar spoofing vulnerability. Allows an attacker to spoof the address bar via a vector of temporary URLs involving an initially empty document...

swfstrings swf_GetBits function 't-data' denial of service vulnerability

SWFTools is a set of software tools for SWF manipulation and creation of utility authoring. swfstrings is a text parsing tool. swftools0.9.2 and previous versions of swfstrings program swfGetBits function 't-data' is empty, resulting in access to the contents of the null pointer, triggering a...

DEBIAN-CVE-2016-5008

libvirt before 2.0.0 improperly disables password checking when the password on a VNC server is set to an empty string, which allows remote attackers to bypass authentication and establish a VNC session by connecting to the server...

UBUNTU-CVE-2016-5008

libvirt before 2.0.0 improperly disables password checking when the password on a VNC server is set to an empty string, which allows remote attackers to bypass authentication and establish a VNC session by connecting to the server...

DEBIAN-CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

Command injection

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

UBUNTU-CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

The vulnerability of the Wireshark Network Protocol Analyzer software allows a remote attacker to compromise the accessibility of protected information.

A vulnerability exists in the dissecthiptlv function in the epan/dissectors/packet-hip.c file of the HIP dissector in Wireshark, due to incorrect handling of an empty tree structure. Exploiting this vulnerability allows malicious individuals operating remotely to cause a service failure lockup by...

The vulnerability of the Wireshark Network Protocol Analyzer software allows a remote attacker to compromise the accessibility of protected information.

A vulnerability exists in the SnifferDecompress function in the wireshark/Wireshark DOS sniffer processing module, located in the wiretap/ngsniffer.c file. This vulnerability arises due to improper handling of empty input data. Exploiting this vulnerability allows malicious individuals operating...