Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27246 of 28220

CVE-2017-6005

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

Waves MaxxAudio, as installed on Dell laptops, adds a “WavesSysSvc” Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an...

CVE-2017-11631

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

dapur/app/app_user/controller/status.php in Fiyo CMS 2.0.7 has SQL injection via the id parameter.

CVE-2017-11639

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage() function in coders/cip.c, related to the GetPixelLuma function in...

CVE-2017-11638

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

GraphicsMagick 1.3.26 has a segmentation violation in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image, a different vulnerability than CVE-2017-11642.

CVE-2017-11637

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

GraphicsMagick 1.3.26 has a NULL pointer dereference in the WritePCLImage() function in coders/pcl.c during writes of monochrome images.

Author: Cyberthreat Blog

CVE-2017-6005

CVE-2017-11631

CVE-2017-11639

CVE-2017-11638

CVE-2017-11637