Linux Kernel _sctp_make_chunk() Denial Of Service Vulnerability

Secunia Research has discovered a vulnerability in Linux Kernel, which can be exploited by malicious, local users to cause a DoS Denial of Service. An error in the "sctpmakechunk" function net/sctp/smmakechunk.c when handling SCTP packets length can be exploited to cause a kernel crash. The...

Libraw 0.18.5 Denial Of Service Vulnerability

Libraw version 0.8.15 suffers from a denial of service vulnerability. ====================================================================== LibRaw Multiple Denial of Service Vulnerabilities ====================================================================== Table of Contents Affected...

Debian DSA-3950-1 : libraw - security update

Hossein Lotfi and Jakub Jirasek from Secunia Research have discovered multiple vulnerabilities in LibRaw, a library for reading RAW images. An attacker could cause a memory corruption leading to a DoS Denial of Service with craft KDC or TIFF file. %NASLMINLEVEL 70300 C Tenable Network Security,...

[SECURITY] [DSA 3950-1] libraw security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3950-1 [email protected] https://www.debian.org/security/ Luciano Bello August 21, 2017 https://www.debian.org/security/faq -...

libsndfile 1.0.28 aiff_read_chanmap() Information Disclosure Vulnerability

A vulnerability in libsndfile 1.0.28, caused due to an error in the"aiffreadchanmap" function src/aiff.c, can be exploited tocause an out-of-bounds read memory access via a specially crafted AIFFfile. libsndfile "aiffreadchanmap" Information Disclosure Vulnerability Table of Contents Affected...

[SECURITY] [DSA 3861-1] libtasn1-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3861-1 [email protected] https://www.debian.org/security/ Sebastien Delafond May 24, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3861-1] libtasn1-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3861-1 [email protected] https://www.debian.org/security/ Sebastien Delafond May 24, 2017 https://www.debian.org/security/faq -...

libsndfile -- out-of-bounds read memory access

Laurent Delosieres, Secunia Research at Flexera Software reports: Secunia Research has discovered a vulnerability in libsndfile, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to an error in the "aiffreadchanmap" function...

The study found: the majority of software vulnerabilities are on the day there is a patch-vulnerability warning-the black bar safety net

Each year, the IT industry a number of manufacturers of a variety of software products in total will find a myriad of vulnerabilities. Software company Flexera Software's computer security research Department of Secunia Research annually publish the vulnerabilities of the assessment report. ! 2 0...

Microsoft Unicode Scripts Processor Arbitrary Code Execution Exploit

On the 8th December 2015, Microsoft released Security Bulletin MS15-130 to fix a vulnerability in Unicode Scripts Processor component found by Secunia Research. The vector for a successful exploitation is a specially crafted "True Type Font" TTF file, which typically can be embedded in e.g...

Secunia Research: Oracle Outside In ibpsd2.dll PSD File Processing Buffer Overflow Vulnerability

====================================================================== Secunia Research 16/04/2015 Oracle Outside In ibpsd2.dll PSD File Processing Buffer Overflow Vulnerability ====================================================================== Table of Contents Affected...

Secunia Research: Microsoft Windows GDI "MRSETDIBITSTODEVICE ::bPlay()" EMF Parsing Memory Corruption Vulnerability

====================================================================== Secunia Research 15/04/2015 Microsoft Windows GDI "MRSETDIBITSTODEVICE ::bPlay" EMF Parsing Memory Corruption Vulnerability ====================================================================== Table of Contents Affected...

Symantec Web Gateway 5.2.1 OS Command Injection Vilnerability

Symantec Web Gateway versions 5.2.1 and below suffer from a remote OS command injection vulnerability. ------------------------------------------------------------------------------ Symantec Web Gateway = 5.2.1 restore.php OS Command Injection Vulnerability...

VMTurbo Operations Manager 4.6 - 'vmtadmin.cgi' Remote Command Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'VMTurbo Operations Manager 4.6 vmtadmin.cgi Remote Command Execution', 'Description' = %q VMTurbo Operations Manager 4.6 and prior ar...

VMTurbo Operations Manager vmtadmin.cgi Remote Command Execution

VMTurbo Operations Manager 4.6 and prior are vulnerable to unauthenticated OS Command injection in the web interface. Use reverse payloads for the most reliable results. Since it is a blind OS command injection vulnerability, there is no output for the executed command when using the cmd generic...

InduSoft Web Studio ISSymbol.ocx InternationalSeparator() Heap Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Novell iPrint Client ActiveX Control call-back-url Buffer Overflow Exploit (meta)

No description provided by source. novelliprintcallbackurl.rb Novell iPrint Client ActiveX Control call-back-url Buffer Overflow exploit for the Metasploit Framework Exploit successfully tested on the following platforms: - Novell iPrint Client 5.40 on Internet Explorer 7, Windows XP SP3 - Novell...

HP Power Manager 'formExportDataLogs' Buffer Overflow

No description provided by source. $Id: hppowermanagerfilename.rb 14016 2011-10-20 17:40:21Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

DeluxeBB <= 1.06 (templatefolder) Remote File Include Vulnerabilities

No description provided by source. Secunia Research has discovered some vulnerabilities in DeluxeBB, which can be exploited by malicious people to conduct SQL injection attacks and compromise a vulnerable system. 1 Input passed to the templatefolder parameter in various scripts isn't properly...

Secunia Research: OpenPNE PHP Object Injection Vulnerability

====================================================================== Secunia Research 20/01/2014 OpenPNE PHP Object Injection Vulnerability ====================================================================== Table of Contents Affected...