Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27609 of 28129

CVE-2017-9292

Posted by Cyberthreat Blog | May 29, 2017 | CVE Notifications |

Lansweeper before 6.0.0.65 has XSS in an image retrieval URI, aka Bug 542782.

CVE-2017-9148

Posted by Cyberthreat Blog | May 29, 2017 | CVE Notifications |

The TLS session cache in FreeRADIUS before 3.0.14 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers (such as malicious 802.1X supplicants) to bypass authentication via PEAP or...

CVE-2017-9261

Posted by Cyberthreat Blog | May 28, 2017 | CVE Notifications |

In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.

CVE-2017-9262

Posted by Cyberthreat Blog | May 28, 2017 | CVE Notifications |

In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.

CVE-2017-9264

Posted by Cyberthreat Blog | May 28, 2017 | CVE Notifications |

In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS) 2.6.1, there is a buffer over-read while parsing malformed TCP, UDP, and IPv6 packets in the functions extract_l3_ipv6, extract_l4_tcp, and extract_l4_udp...

Author: Cyberthreat Blog

CVE-2017-9292

CVE-2017-9148

CVE-2017-9261

CVE-2017-9262

CVE-2017-9264