11189 matches found
Debian: Security Advisory (DSA-4139-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Description of the security update for Excel 2013: March 13, 2018
Description of the security update for Excel 2013: March 13, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...
Google Chrome Multiple Security Vulnerabilities (Mar 2018) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Issue: Unable to map the network drive via SDWAN from Windows 10 Clients
Symptoms: – Below Errors might be seen when Client at Branch office tries to map the Network Drives from Win 10 machines. Errors: – SMB3 acceleration is disabled/unsupported on the partner unit – Signed Session. Reason: Secure Connection to the peer unit does not exist. To configure secure partne...
Vulnerability of the Server:Security:Privileges component of the MySQL database management system, which allows a hacker to cause a service failure
The vulnerability of the Server:Security:Privileges component of the MySQL database management system is related to security configuration errors. Exploiting this vulnerability may allow a malicious actor to cause service interruptions by modifying system data remotely...
CVE-2018-7264
The Pictview image processing library embedded in the ActivePDF toolkit through 2018.1.0.18321 is prone to multiple out of bounds write and sign errors, allowing a remote attacker to execute arbitrary code on vulnerable applications using the ActivePDF Toolkit to process untrusted images...
CVE-2018-7264
The Pictview image processing library embedded in the ActivePDF toolkit through 2018.1.0.18321 is prone to multiple out of bounds write and sign errors, allowing a remote attacker to execute arbitrary code on vulnerable applications using the ActivePDF Toolkit to process untrusted images...
Protobuf-Inspector - Tool To Reverse-Engineer Protocol Buffers With Unknown Definition
Simple program that can parse Google Protobuf encoded blobs version 2 or 3 without knowing their accompanying definition. It will print a nice, colored representation of their contents. Example: As you can see, the field names are obviously lost, together with some high-level details such as:...
ActivePDF Toolkit Code Execution
ActivePDF Toolkit 8.1.0 multiple RCE Introduction ============ The ActivePDF Toolkit is a Windows library which enhances business processes to stamp, stitch, merge, form-fill, add digital signatures, barcodes to PDF. Both .NET and native APIs are provided. Amongst many other operations, this...
Code injection
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors...
CVE-2018-7329
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors...
CVE-2018-7329
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors...
Kernel update: Virtuozzo ReadyKernel patch 44.0 for Virtuozzo 7.0.1 and 7.0.3
The cumulative Virtuozzo ReadyKernel patch was updated with stability fixes. The patch applies to Virtuozzo kernels 3.10.0-327.42.0.vz7.18.7 Virtuozzo 7.0.1 and 3.10.0-327.42.0.vz7.20.18 Virtuozzo 7.0.3. Vulnerability id: PSBM-80340 Hard lockups happened when the kernel was processing SAK Secure...
The vulnerability of the DetectEngineContentInspection component in the Suricata intrusion detection and prevention system allows a intruder to trigger a service failure.
The vulnerability of the DetectEngineContentInspection component in the Suricata intrusion detection and prevention system is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to trigger a service failure by using specially crafted network traffic,...
CVE-2017-17300
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
CVE-2017-17300
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
CVE-2017-17290
The Light Directory Access Protocol LDAP clients of Huawei TE60 with software V600R006C00, ViewPoint 9030 with software V100R011C02, V100R011C03 have a resource management errors vulnerability. An unauthenticated, remote attacker may make the LDAP server not respond to the client's request by...
Input validation
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
CVE-2017-17300
The CVE-2017-17300 entry describes a numeric errors vulnerability affecting Huawei routing switches, including S12700, S5700, S6700, S7700, and S9700 series (V200R00xC00). An unauthenticated, remote attacker can send specially crafted TCP messages with the keychain authentication option; improper...
CVE-2017-17300
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...