QNAP myQNAPcloud Connect version 1.3.4.0317 suffers from a username / password denial of service vulnerability.
eef736e1170e46864d7d0a6fc2d89c8cUbuntu Security Notice 3950-1 - It was discovered that ZNC incorrectly handled certain invalid encodings. An authenticated remote user could use this issue to cause ZNC to crash, resulting in a denial of service, or possibly execute arbitrary code.
e044a6e5ad6e7b9d1ce9c6b7967e20e9Debian Linux Security Advisory 4433-1 - Several vulnerabilities have been discovered in the Rubygems included in the interpreter for the Ruby language, which may result in denial of service or the execution of arbitrary code.
cde89a6b98e0742a91f9ce6c76c269a6Ubuntu Security Notice 3918-4 - USN-3918-1 fixed vulnerabilities in Firefox. The update caused web compatibility and performance issues with some websites. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, denial of service via successive FTP authorization prompts or modal alerts, trick the user with confusing permission request prompts, obtain sensitive information, conduct social engineering attacks, or execute arbitrary code. A mechanism was discovered that removes some bounds checking for string, array, or typed array accesses if Spectre mitigations have been disabled. If a user were tricked in to opening a specially crafted website with Spectre mitigations disabled, an attacker could potentially exploit this to cause a denial of service, or execute arbitrary code. It was discovered that Upgrade-Insecure-Requests was incorrectly enforced for same-origin navigation. An attacker could potentially exploit this to conduct man-in-the-middle attacks. Various other issues were also addressed.
84b03fa22a51ba0b63c8c1a390101295DHCP Server version 2.5.2 suffers from a denial of service vulnerability.
3255794f28d7d8218082aed5dc8eebf5ASUS HG100 suffers from a denial of service vulnerability.
ea2e4abda8fc79168565125e50e6b8dfUbuntu Security Notice 3948-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
afdf0e0cecca2a8868662e6759e344deGentoo Linux Security Advisory 201904-15 - A vulnerability in libTIFF could lead to a Denial of Service condition. Versions less than 4.0.10 are affected.
1d39d697b1cd7298f90c10f0e8627b48PCHelpWare 2 version 1.0.0.5 Group denial of service exploit.
6505ba9bb5a677f32c8ad98d1bab48d8AdminExpress version 1.2.5 suffers from a Folder Path denial of service vulnerability.
61dccebfeb1d59a33ab2d2e064816db4PCHelpWare 2 version 1.0.0.5 SC denial of service exploit.
44390b4f8b4d7d4076fcb6aab958e245Debian Linux Security Advisory 4431-1 - Chris Coulson discovered several vulnerabilities in libssh2, a SSH2 client-side library, which could result in denial of service, information leaks or the execution of arbitrary code.
bea7798b5732080dad27f598640a90feUltraVNC Launcher version 1.2.2.4 suffers from a denial of service vulnerability.
d81c272d396097f6acdd3f84f3ff0404UltraVNC Viewer version 1.2.2.4 suffers from a denial of service vulnerability.
e23840b06d52e7eb04652daaae67ecccGentoo Linux Security Advisory 201904-14 - Multiple vulnerabilities have been found in GnuTLS, the worst of which could result in a Denial of Service condition. Versions less than 3.6.7 are affected.
f953632067b1668efe80bdea57cf6725Ubuntu Security Notice 3941-1 - Fady Othman discovered that Lua incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service.
7a76a3fdd8d0d4ddb3e175ea825d1a7dUbuntu Security Notice 3940-2 - USN-3940-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
44e84f0d153e37f4126f831876a60a3bGentoo Linux Security Advisory 201904-12 - Multiple vulnerabilities have been found in ClamAV, the worst of which could result in a Denial of Service condition. Versions less than 0.101.2 are affected.
fce183a1f782d7c3380b0d8e3dca9a41Ubuntu Security Notice 3940-1 - It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled scanning certain OLE2 files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
0db6dd212c93549f9c21296f9f33cb72Debian Linux Security Advisory 4425-1 - Kusano Kazuhiko discovered a buffer overflow vulnerability in the handling of Internationalized Resource Identifiers (IRI) in wget, a network utility to retrieve files from the web, which could result in the execution of arbitrary code or denial of service when recursively downloading from an untrusted server.
b1e8935c4405e703fd43b8d32ddb7066Uniqkey Password Manager version 1.14 suffers from a denial of service vulnerability.
f5b5e608fe48d040f19d405b6c32329cUbuntu Security Notice 3937-1 - Charles Fol discovered that the Apache HTTP Server incorrectly handled the scoreboard shared memory area. A remote attacker able to upload and run scripts could possibly use this issue to execute arbitrary code with root privileges. It was discovered that the Apache HTTP Server HTTP/2 module incorrectly handled certain requests. A remote attacker could possibly use this issue to cause the server to consume resources, leading to a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. Various other issues were also addressed.
4c5be938f6500ff73e08b36e651987a9Debian Linux Security Advisory 4423-1 - Multiple vulnerabilities were found in the PuTTY SSH client, which could result in denial of service and potentially the execution of arbitrary code. In addition, in some situations random numbers could potentially be re-used.
275bce06f569381caffe03f4077eb7f2Magic ISO Maker version 5.5 build 281 suffers from a denial of service vulnerability.
d41b73f334ba66052eaf185775b1a2cbUbuntu Security Notice 3933-1 - It was discovered that an information leak vulnerability existed in the Bluetooth implementation of the Linux kernel. An attacker within Bluetooth range could possibly expose sensitive information. It was discovered that the USB serial device driver in the Linux kernel did not properly validate baud rate settings when debugging is enabled. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
c6a1e9ef0ee7cd623c284d5d2c87b9a1
© 2019 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed