Apple OS X eSCL Message Handling Vulnerability

Apple OS X is an operating system developed by Apple Inc. Apple OS X suffers from a security vulnerability in the handling of eSCL messages that allows remote users who can listen to the network to extract load information...

Apple OS X Address Book Handling Vulnerability

Apple OS X is an operating system developed by Apple Inc. A security vulnerability in the Apple OS X address book handling environment variable allows local users to exploit the vulnerability to inject arbitrary code into the jinx to load the address book architecture...

Python for Windows may insecurely load dynamic libraries

Overview Python for Windows contains an issue with the DLL search path, which may lead to insecurely loading a DLL called readline.pyd. Takashi Yoshikawa of Mitsui Bussan Secure Directions reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Earl...

IRCCloud: Inadequate input validation on API endpoint leading to self denial of service and increased system load.

Summary A security researcher discovered an API payload that would send invalid data to their own user process, which would repeatedly fail to be handled correctly. This error handling loop prevented further access to their user account. Details The payload was a JSON object containing an empty...

JasPer 'jasper_image_stop_load()' function denial of service vulnerability

JasPer is an open source implementation of the JPEG-2000 codec . A security vulnerability in the JasPer 'jasperimagestopload' function for processing JPG files allows attackers to exploit the vulnerability to crash the application...

RHEL 6 / 7 : haproxy 1.5 (RHSA-2015:1741)

An updated haproxy package that fixes one security issue is now available for Red Hat Enterprise Linux 6 and 7. HAProxy provides high availability, load balancing, and proxying for TCP and HTTP-based applications. An implementation error related to the memory management of request and responses w...

Photon vulnerable to URL whitelist bypass

Overview Photon provided by Newphoria Corporation Inc. is an application for Android built using "applican". Photon contains an issue where an arbitrary page may be loaded if the application is launched using the URL-scheme. Kenta Suefusa and Tomonori Shiomi of Sprout Inc. reported this...

Reversi vulnerable to URL whitelist bypass

Overview Reversi provided by Newphoria Corporation Inc. is an application for both iOS or Android built using "applican". Reversi contains an issue where an arbitrary page may be loaded if the application is launched using the URL-scheme. Kenta Suefusa and Tomonori Shiomi of Sprout Inc. reported...

IBM WebSphere Portal Denial of Service Vulnerability (CNVD-2015-06033)

IBM WebSphere Portal is a suite of enterprise portal software from IBM. The software creates a platform that connects an organization internally and externally, allowing employees, customers and suppliers to access internal data through the platform. A denial of service vulnerability exists in IB...

PHP 5.5.9 - zend_executor_globals CGIMode FPM WriteProcMemFile Disable Functions Bypass Load Dynamic Library

PHP 5.5.9 - zendexecutorglobals CGIMode FPM WriteProcMemFile Disable Functions Bypass Load Dynamic Library ?php // EDB Note: Paper https://www.exploit-db.com/docs/english/38104-shoot-zendexecutorglobals-to-bypass-php-disablefunctions.pdf errorreporting0x66778899; settimelimit0x41424344;...

PHP 5.5.9 - zend_executor_globals CGIMode FPM WriteProcMemFile disable_functions Bypass Load Dynamic Library

PHP 5.5.9 - zendexecutorglobals CGIMode FPM WriteProcMemFile disablefunctions Bypass Load Dynamic Library ?php // EDB Note: Paper https://www.exploit-db.com/docs/english/38104-shoot-zendexecutorglobals-to-bypass-php-disablefunctions.pdf errorreporting0x66778899; settimelimit0x41424344;...

CentOS Update for haproxy CESA-2015:1741 centos7

Check the version of haproxy SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882283";...

CentOS Update for haproxy CESA-2015:1741 centos6

Check the version of haproxy SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882282";...

The vulnerability of the Business Process Manager system allows a perpetrator to circumvent access restrictions related to document loading/saving.

The vulnerability of the Business Process Manager system’s automation functionality is related to deficiencies in restricting access to certain functions. Exploiting this vulnerability could allow a malicious actor to circumvent access restrictions associated with document loading/saving when the...

Schneider Electric Modicon PLC File Containment Vulnerability

Modicon PLCs are programmable controller products used in industries such as dams, energy, food and agriculture, and more. Modicon PLCs are implemented with a file inclusion vulnerability that can be exploited by an attacker to construct a specific URL that can be used to load Java script through...

VulnCheck KEV: CVE-2015-9415

The bj-lazy-load plugin before 1.0 for WordPress has Remote File Inclusion...

WordPress Lazy Load Plugin <= 0.7.5 - Remote File Inclusion

This vulnerability allows any visitor to upload any kind of file in your website. Solution Update the plugin...

WordPress BJ Lazy Load Plugin <= 0.7.5 - Remote File Inclusion

This vulnerability allows any visitor to upload any kind of file in your website. Solution Update the plugin...

Security Advisory - No Authentication Vulnerability on the Serial Port of the UAP2105

The UAP2105 serves as a radio access device in the uBro solutions. As one of the AP series products developed on the basis of 3GPP R99/R4/R5/R6 FDD, the UAP2105 complies with the R8 HNB standard and provides Small Office and Home Office SOHO and home users with improved indoor coverage. With the...

BJ Lazy Load <= 0.7.5 - Remote File Inclusion (Timthumb)

The BJ Lazy Load WordPress plugin was affected by a Remote File Inclusion Timthumb security vulnerability...