Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27248 of 28220

CVE-2017-11644

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadMATImage() function in coders/mat.c.

CVE-2017-11630

Posted by Cyberthreat Blog | Jul 26, 2017 | CVE Notifications |

dapurappsapp_configcontrollerbackuper.php in Fiyo CMS 2.0.7 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter in a type=database request, a different vulnerability than...

Malspam pushing Emotet malware, (Wed, Jul 26th)

Posted by Cyberthreat Blog | Jul 25, 2017 | SANS ISC Bulletins |

Introduction On Tuesday 2017-07-25, we were contacted by a reader through our contact page. He sent us a Microsoft Word document, and he included the following message: Received a typical phishing email pointing to the site:...

CVE-2017-11628

Posted by Cyberthreat Blog | Jul 25, 2017 | CVE Notifications |

In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, a stack-based buffer overflow in the zend_ini_do_op() function in Zend/zend_ini_parser.c could cause a denial of service or potentially allow executing code. NOTE:...

CVE-2017-11627

Posted by Cyberthreat Blog | Jul 25, 2017 | CVE Notifications |

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an “infinite...

Author: Cyberthreat Blog

CVE-2017-11644

CVE-2017-11630

Malspam pushing Emotet malware, (Wed, Jul 26th)

CVE-2017-11628

CVE-2017-11627