799 matches found
PT-2016-7166 · Adobe +3 · Flash Player +3
Name of the Vulnerable Software and Affected Versions: Adobe Flash Player affected versions not specified Description: The issue concerns a problem in Adobe Flash Player. No specific details about the nature of the issue, affected devices, or real-world incidents are provided. Recommendations: At...
pt-eps.co.id XSS vulnerability
Vulnerable URL: http://www.pt-eps.co.id/search.php Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 10:56 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 13979989 VIP website status:| No Check pt-eps.co.id SSL...
PT-2016-3244 · Apache +2 · Apache Xml-Rpc Library +2
Name of the Vulnerable Software and Affected Versions: Apache XML-RPC library version 3.1.3 Description: The issue allows remote attackers to execute arbitrary code via a crafted serialized Java object in an element. This is due to the library's failure to properly verify data from external...
CVE-2016-4514
Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy...
CVE-2016-4514
Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy...
Design/Logic Flaw
Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy...
CVE-2016-4514
The CVE-2016-4514 issue affects Moxa PT-7728 Series Switches (software 3.4 build 15081113). The vulnerability is improper authorization, enabling remote authenticated users to change switch configuration via vectors involving a local proxy, with remote exploitability reported by ICS-CERT/Tenable ...
CVE-2016-4514
Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy...
Moxa PT-7728 Unauthorized Access Vulnerability
Moxa PT-7728 is an Ethernet switch product from Moxa for managing industrial applications. A security vulnerability exists in the Moxa PT-7728 version 3.4 build 15081113, which originates from the program failing to properly perform authentication. A remote attacker could exploit the vulnerabilit...
Moxa PT-7728 Series Switch Improper Authorization Vulnerability
OVERVIEW Researcher Can Demirel of Biznet Bilisim has identified an improper authorization vulnerability in Moxa’s Industrial Ethernet Switch PT-7728 series. Moxa has produced an update to mitigate this vulnerability. Can Demirel has tested the update to validate that it resolves the vulnerabilit...
Ubuntu 15.10 - PT Chown Arbitrary PTs Access Via User Namespace Privilege Escalation
Ubuntu 15.10 - PT Chown Arbitrary PTs Access Via User Namespace Privilege Escalation Source: http://www.halfdog.net/Security/2015/PtChownArbitraryPtsAccessViaUserNamespace/ Introduction Problem description: With Ubuntu Wily and earlier, /usr/lib/ptchown was used to change ownership of slave pts...
Ubuntu < 15.10 - PT Chown Arbitrary PTs Access Via User Namespace Privilege Escalation
Source: http://www.halfdog.net/Security/2015/PtChownArbitraryPtsAccessViaUserNamespace/ Introduction Problem description: With Ubuntu Wily and earlier, /usr/lib/ptchown was used to change ownership of slave pts devices in /dev/pts to the same uid holding the master file descriptor for the slave...
pt-br.hattrick.org XSS vulnerability
Open Bug Bounty ID: OBB-126269 Description| Value ---|--- Affected Website:| pt-br.hattrick.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Xen 'pt-msi.c' Heap Memory Corruption Vulnerability
Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. Xen 'pt-msi.c' has a memory corruption vulnerability. An attacker is allowed to exploit this vulnerability to crash an application or execute arbitrary code...
PT-2015-2836 · Adobe +3 · Flash Player +4
Name of the Vulnerable Software and Affected Versions: Adobe Integrated Runtime versions affected versions not specified Adobe Flash Player versions affected versions not specified Description: The issue is related to the use of memory after it has been freed, which can be exploited by a remote...
The vulnerabilities of the microprogrammed Ethernet switches from Moxa, models PT-508, PT-7728, PT-7828, and MDS-G4012, allow attackers to cause malfunctions during maintenance operations.
The vulnerability of the microprogrammed Ethernet switches from Moxa, models PT-508, PT-7728, PT-7828, and MDS-G4012, is related to uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
IPUX CS7522CS2330CS2030 IP Camera - UltraHVCamX.ocx ActiveX Stack Buffer Overflow
IPUX CS7522CS2330CS2030 IP Camera - UltraHVCamX.ocx ActiveX Stack Buffer Overflow IPUX CS7522/CS2330/CS2030 IP Camera UltraHVCamX.ocx ActiveX Stack Buffer Overflow Vendor: Big Good Holdings Limited | Fitivision Technology Inc. Product web page: http://www.ipux.net | http://www.fitivision.com...
OracleVM 3.3 : glibc (OVMSA-2014-0017)
The remote OracleVM system is missing necessary patches to address critical security updates : - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, - Don't use alloca in addgetnetgrentX 1087789. - Adjust...
CVE-2014-6482
CVE-2014-6482 affects Oracle PeopleSoft Products with the PeopleTools component (8.53 and 8.54). The vulnerability is described as unspecified, allowing remote authenticated users to affect integrity via unknown vectors related to Updates Change Assistant. The connected documents provide the affe...
CVE-2014-4204
Technical details (affected product/component/versions, root cause, impact or remediation) are not publicly provided in the supplied documents for CVE-2014-4204. Monitor for updates.