53 matches found
EUVD-2018-17314
Malware in sbrugna...
EUVD-2016-6186
Malware in sbrugna...
EUVD-2016-6187
Malware in sbrugna...
K16349: Linux kernel vulnerability CVE-2009-0676
Security Advisory Description Description The sockgetsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SOBSDCOMPAT getsockopt reques...
K20226900: F5 WebSafe Dashboard vulnerability CVE-2018-5545
Security Advisory Description A malicious, authenticated user can execute code on the F5 WebSafe Alert Server by using a maliciously crafted payload. CVE-2018-5545 Impact F5 WebSafe Alert Server An attacker with an authenticated account may be able to perform a malicious remote code execution on...
K55922302: XSS in F5 WebSafe Dashboard vulnerability CVE-2016-5236
Security Advisory Description Cross-Site-Scripting XSS vulnerabilities in F5 WebSafe Dashboard allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature. CVE-2016-5236 Impact An attacker with a privileged account may be able to inje...
K16882: OpenLDAP vulnerability CVE-2013-4449
Security Advisory Description Description The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service slapd crash by unbinding immediately after a search request, which triggers rwmconndestroy to free the...
K16318: OpenSSL vulnerability CVE-2015-0287
Security Advisory Description The ASN1itemexd2i function in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service invalid wri...
K48572812: XSS vulnerability in F5 WebSafe Dashboard CVE-2016-5235
Security Advisory Description A Cross Site Scripting XSS vulnerability in F5 WebSafe Dashboard allows an unauthenticated user to inject HTML via a crafted alert. CVE-2016-5235 Impact The F5 WebSafe Dashboard may allow modification by unauthorized users. Security Advisory Status F5 Product...
K19784568: TMM vulnerability CVE-2016-5023
Security Advisory Description Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 through 11.5.4, 11.6.0 HF5 through HF7, and 12.0.0, when configured with a TCP profile, allow remote attackers to cause a denial of service Traffic Management Microkernel...
CVE-2016-5235
A Cross Site Scripting XSS vulnerability in versions of F5 WebSafe Dashboard 3.9.x and earlier, aka F5 WebSafe Alert Server, allows an unauthenticated user to inject HTML via a crafted alert...
CVE-2016-5236
Cross-Site-Scripting XSS vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature...
CVE-2016-5235
A Cross Site Scripting XSS vulnerability in versions of F5 WebSafe Dashboard 3.9.x and earlier, aka F5 WebSafe Alert Server, allows an unauthenticated user to inject HTML via a crafted alert...
CVE-2016-5236
Cross-Site-Scripting XSS vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature...
Cross site scripting
Cross-Site-Scripting XSS vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature...
Cross site scripting
A Cross Site Scripting XSS vulnerability in versions of F5 WebSafe Dashboard 3.9.x and earlier, aka F5 WebSafe Alert Server, allows an unauthenticated user to inject HTML via a crafted alert...
CVE-2016-5236
Cross-Site-Scripting XSS vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature...
CVE-2016-5236
CVE-2016-5236 affects F5 WebSafe Dashboard (3.9.5 and earlier). The vulnerability is a Cross-Site Scripting (XSS) flaw that enables a privileged authenticated user to inject arbitrary script/HTML when creating a new user, account, or signature. The F5 advisory lists vulnerable products/features a...
CVE-2016-5235
Summary of CVE-2016-5235 (F5 WebSafe Dashboard XSS) The vulnerability affects the F5 WebSafe Dashboard (WebSafe Alert Server) and is triggered by an unauthenticated user who can inject HTML via a crafted alert in versions 3.9.x and earlier. The advisory confirms an XSS flaw that can be exploited ...
CVE-2016-5235
A Cross Site Scripting XSS vulnerability in versions of F5 WebSafe Dashboard 3.9.x and earlier, aka F5 WebSafe Alert Server, allows an unauthenticated user to inject HTML via a crafted alert...