Dell EMC Data Protection Advisor contains a database account with a hardcoded password that could potentially be exploited by malicious users to compromise the affected system. Versions prior to 6.3 Patch 159 and versions prior to 6.4 Patch 110 are affected.
5a9e83b3a0095cc39669b172670d29f7a2040acff176d21f4aa2f9d6f4892ef9Bacula-Web versions prior to 8.0.0-RC2 suffer from multiple remote SQL injection vulnerabilities.
77043a2dcfa151f7fe0f8c3f052608c70747138af38e99dc5a32b5f94cd6cc92Tuleap version 9.17.99.189 suffers from a remote SQL injection vulnerability.
abf9dc4b10bde4c99485e7fd62c3f706e483fa73c4cc8059c6f456ee999381d5Panda Global Security version 17.0.1 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through the use of an insecurely created named pipe.
3d04c6e271055eec4d1aa92ac83833674c1a67f99b109e56f8a5e20b0657c1bbWPS Free Office version 10.2.0.5978 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through the use of an insecurely created named pipe.
c726a3ffc2e0ebcee4706b8c4cc4efd98cbc07f06fc328c4119cc99a075637d8Panda Global Security version 17.0.1 suffers from an unquoted service path vulnerability.
a37401042aaaf5b89120d5341ecc73667a314c3f1c2710299cdb63084dbc6730BitDefender Total Security 2018 suffers from an insecure pipe permissions vulnerability.
5b0a04c6449fd3adc498761971bf2ed128212f0cd92b50399240823900c8701c10-Strike Network Monitor version 5.4 suffers from an unquoted service path vulnerability.
8dfa49d5016d1165f8756d8212657613e17b3e5bd6375e9110fc70ff67d13c79Hola VPN version 1.79.859 suffers from an insecure service permission vulnerability.
97d50e71ec932cfebd95d3d91e748263c0691d6267fea62ef47606869a2527c5Ubuntu Security Notice 3592-2 - USN-3592-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled parsing certain PDF files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
d95dda82c97ffa745c7ee0d02694ef3dc4464091da45bf508bcd463b5fa03b92Ubuntu Security Notice 3593-1 - It was discovered that Zsh incorrectly handled certain environment variables. An attacker could possibly use this issue to gain privileged access to the system. This issue only affected Ubuntu 14.04 LTS. It was discovered that Zsh incorrectly handled certain inputs. An attacker could possibly use this to execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. Various other issues were also addressed.
84acebd4d29c3cd2686c174023ec9665be0db2b8567e0c54f82df6013a15303eRedTeam Pentesting discovered an arbitrary redirect vulnerability in the redirect mechanism of the application lifecycle management platform Tuleap. Versions prior to 9.17.99.93 are affected.
4ee245fc410a2b477c410f689faaa169f5218c550f09341b6b468f1cddf894a7Ubuntu Security Notice 3592-1 - It was discovered that ClamAV incorrectly handled parsing certain PDF files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. Hanno BAPck discovered that ClamAV incorrectly handled parsing certain XAR files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
5257934bc63f4443ea752a3894f1aca11c781da1dd62e1150dfb4c50e2d9259bFreeBSD Security Advisory - Due to a lack of strict checking, an attacker from a trusted host can send a specially constructed IP packet that may lead to a system crash. Additionally, a use-after-free vulnerability in the AH handling code could cause unpredictable results. Access to out of bounds or freed mbuf data can lead to a kernel panic or other unpredictable results.
02557d3745596458d681afac356f3a0f1a4cdf77f10b2fbd04151675a9fadeb9Debian Linux Security Advisory 4133-1 - Several vulnerabilities have been discovered in the ISC DHCP client, relay and server.
c58ee2bf8108db3389764cac6cd30a9da1198010a531df96cc285fd0d9113f86
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed