Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 28181 of 28183

CVE-2017-7363

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS attack.

CVE-2017-7346

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

The vmw_gb_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows local users to cause a denial of service (system hang)...

CVE-2017-7253

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Use the default low-privilege credentials to list all users via a request to a certain URI. 2. Login to the IP camera with admin credentials so as to...

VU#342303: Pandora iOS app does not properly validate SSL certificates

Posted by Cyberthreat Blog | Mar 28, 2017 | CERT-Vulnerabilities |

Vulnerability Note VU#342303 <h2>Pandora iOS app does not properly validate SSL certificates</h2> <p class=”meta-text”>Original Release date: 28 Mar 2017 | Last revised: 13 Apr...

VU#600671: PCAUSA Rawether for Windows local privilege escalation

Posted by Cyberthreat Blog | Mar 20, 2017 | CERT-Vulnerabilities |

Vulnerability Note VU#600671 <h2>PCAUSA Rawether for Windows local privilege escalation</h2> <p class=”meta-text”>Original Release date: 21 Mar 2017 | Last revised: 21 Apr 2017</p><!–...

Author: Cyberthreat Blog

CVE-2017-7363

CVE-2017-7346

CVE-2017-7253

VU#342303: Pandora iOS app does not properly validate SSL certificates

VU#600671: PCAUSA Rawether for Windows local privilege escalation