Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27913 of 28407

CVE-2015-6817

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

PgBouncer 1.6.x before 1.6.1, when configured with auth_user, allows remote attackers to gain login access as auth_user via an unknown username.

CVE-2016-1876

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

The backend service process in Lenovo Solution Center (aka LSC) before 3.3.0002 allows local users to gain SYSTEM privileges via unspecified vectors.

CVE-2015-8477

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

Cross-site scripting (XSS) vulnerability in Redmine before 2.6.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving flash message rendering.

CVE-2016-9842

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

CVE-2017-5870

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

Multiple cross-site scripting (XSS) vulnerabilities in ViMbAdmin 3.0.15 allow remote attackers to inject arbitrary web script or HTML via the (1) domain or (2) transport parameter to domain/add; the (3) name parameter to...

Author: Cyberthreat Blog

CVE-2015-6817

CVE-2016-1876

CVE-2015-8477

CVE-2016-9842

CVE-2017-5870