Deprecated: Hook wp_smush_should_skip_parse is deprecated since version 3.16.1! Use wp_smush_should_skip_lazy_load instead. in /srv/www/cyberthreat.blog/wordpress/wp-includes/functions.php on line 6121

Deprecated: Hook wp_smush_should_skip_parse is deprecated since version 3.16.1! Use wp_smush_should_skip_lazy_load instead. in /srv/www/cyberthreat.blog/wordpress/wp-includes/functions.php on line 6121

Author: Cyberthreat Blog

CVE-2017-7283

An authenticated user of Unitrends Enterprise Backup before 9.1.2 can execute arbitrary OS commands by sending a specially crafted filename to the /api/restore/download-files endpoint, related to the downloadFiles function in...

Read More

CVE-2017-7978

Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain sensitive information by reading a world-readable log file after an unexpected reboot. The Samsung ID is SVE-2017-8290.

Read More

CVE-2017-7979

The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denial of service (uninitialized...

Read More

CVE-2017-7964

Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote attackers to conduct DNS hijacking attacks by reconfiguring the built-in dnshijacker process.

Read More

CVE-2017-7975

Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted JBIG2 file, leading to a...

Read More