Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27769 of 28129

CVE-2017-8848

Posted by Cyberthreat Blog | May 8, 2017 | CVE Notifications |

Allen Disk 1.6 has CSRF in setpass.php with an impact of changing a password.

CVE-2017-8842

Posted by Cyberthreat Blog | May 8, 2017 | CVE Notifications |

The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted archive.

CVE-2017-8844

Posted by Cyberthreat Blog | May 8, 2017 | CVE Notifications |

The read_1g function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted...

CVE-2017-8846

Posted by Cyberthreat Blog | May 8, 2017 | CVE Notifications |

The read_stream function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted archive.

CVE-2017-8843

Posted by Cyberthreat Blog | May 8, 2017 | CVE Notifications |

The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive.

Author: Cyberthreat Blog

CVE-2017-8848

CVE-2017-8842

CVE-2017-8844

CVE-2017-8846

CVE-2017-8843