Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27657 of 28407

CVE-2016-6201

Posted by Cyberthreat Blog | Jul 3, 2017 | CVE Notifications |

Cross-site scripting (XSS) vulnerability in Ektron Content Management System (CMS) before 9.1.0.184 SP3 (9.1.0.184.3.127) allows remote attackers to inject arbitrary web script or HTML via the ContType parameter in a...

CVE-2016-3997

Posted by Cyberthreat Blog | Jul 3, 2017 | CVE Notifications |

NetApp Clustered Data ONTAP allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service by leveraging failure to enable SMB signing enforcement in its default state.

CVE-2017-10799

Posted by Cyberthreat Blog | Jul 2, 2017 | CVE Notifications |

When GraphicsMagick 1.3.25 processes a DPX image (with metadata indicating a large width) in coders/dpx.c, a denial of service (OOM) can occur in ReadDPXImage().

CVE-2017-10800

Posted by Cyberthreat Blog | Jul 2, 2017 | CVE Notifications |

When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it can lead to a denial of service (OOM) in ReadMATImage() if the size specified for a MAT Object is larger than the actual amount of data.

CVE-2017-10798

Posted by Cyberthreat Blog | Jul 2, 2017 | CVE Notifications |

In ObjectPlanet Opinio before 7.6.4, there is XSS.

Author: Cyberthreat Blog

CVE-2016-6201

CVE-2016-3997

CVE-2017-10799

CVE-2017-10800

CVE-2017-10798