Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27322 of 28220

CVE-2017-10980

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

An FR-GV-203 issue in FreeRADIUS 2.x before 2.2.10 allows “DHCP – Memory leak in decode_tlv()” and a denial of service.

CVE-2017-10982

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows “DHCP – Buffer over-read in fr_dhcp_decode_options()” and a denial of service.

CVE-2017-10979

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

An FR-GV-202 issue in FreeRADIUS 2.x before 2.2.10 allows “Write overflow in rad_coalesce()” – this allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code.

CVE-2017-2642

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

Moodle 3.x has user fullname disclosure on the user preferences page.

CVE-2017-10978

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows “Read / write overflow in make_secret()” and a denial of service.

Author: Cyberthreat Blog

CVE-2017-10980

CVE-2017-10982

CVE-2017-10979

CVE-2017-2642

CVE-2017-10978