An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object to the interface to execute code on vulnerable hosts.
3b706831a95e7ec9767cb60c343331abe8d92f1382ece3a3f50c5943e25d0275Red Hat Security Advisory 2018-2373-01 - The redhat-certification package provides partners with a unified web-based user interface to certify their products for use on Red Hat Infrastructure. It can currently be used in the latest releases of Red Hat Certified Cloud and Service Provider Certification, Red Hat OpenStack Certification and Red Hat Hardware Certification Programs. Issues addressed include writeable and downloadable file vulnerabilities.
9286e36fffceb1c677171034038eb15e4450446f75085006ffa42eea1ff46f8cUbuntu Security Notice 3735-1 - It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. An attacker could use this to potentially construct a class that caused a denial of service.
88098eb2769aa29c5b05bc76ffd635e41b709a1a965dcbc9845ba3c2f8157986Ubuntu Security Notice 3734-1 - It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. An attacker could use this to possibly construct a class that caused a denial of service.
bb380bc9bd6794014bc42935ea322678f818d0e369b2a8ac75f873e796ce81ceThe sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer, as demonstrated by a CDROMREADMODE2 ioctl call. Wen Xu discovered that the ext4 file system implementation in the Linux kernel did not properly initialize the crc32c checksum driver. A local attacker could use this to cause a denial of service (system crash). Various other issues were also addressed.
6d29a3871da9b808e2bd7ade9a1b925586a3080e72b541f756696fbbcbc48d00Whitepaper called Machine Learning - Learning Cybersecurity.
80ab2d27c57df335948cf2475c2f2b380fa6654de6e16605d2716820f2744441Zimbra version 8.6.0_GA_1153 build 20141215151110 suffers from a cross site scripting vulnerability.
d898daadf582a38f3d9ad96d88ffd82042540818e7916f7cfa0ad3420b97b593MyBB Thank You and Like plugins version 3.0.0 suffer from a cross site scripting vulnerability.
9f8ed059bdad53cf73659afc51b4db7b6e1308aa78b94aeaba28b79575e80b16MyBB Like plugin version 3.0.0 suffers from a cross site scripting vulnerability.
205938e419ef1c26633a234631c5fb2a4b49187196b7d2070ee656ba6ed11684iSmartViewPro version 1.5 suffers from a password-related buffer overflow vulnerability.
e11709d3e6b552807ded752408169d7193adc3a860bd36ec0bcb911930970da1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed