CVE-2017-14137
ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has a issue where memory allocation is excessive because it depends only on a length field in a header.
Read MoreAuthor: Cyberthreat Blog
It is a resume – Part 2, (Mon, Sep 4th)
In part 2, we are going to take a closed look at the image in object 3. First we dump the stream and look at the beginning and end: FF D8 is the Start Of Image Marker of a JPEG image. FF D9 is the Eod Of Image Marked of a JPEG...
Read MoreCVE-2017-14123
Zoho ManageEngine Firewall Analyzer 12200 has an unrestricted File Upload vulnerability in the “Group Chat” section. Any user can upload files with any extensions. By uploading a PHP file to the server, an attacker...
Read MoreCVE-2017-14126
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
Read MoreCVE-2017-14127
Command Injection in the Ping Module in the Web Interface on Technicolor TD5336 OI_Fw_v7 devices allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the pingAddr parameter to...
Read More