Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 28360 of 28407

CVE-2017-7380

Posted by Cyberthreat Blog | Apr 3, 2017 | CVE Notifications |

The doc/PdfPage.cpp:614:20 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

CVE-2017-7382

Posted by Cyberthreat Blog | Apr 3, 2017 | CVE Notifications |

The PdfFontFactory.cpp:200:88 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

CVE-2017-1001000

Posted by Cyberthreat Blog | Apr 2, 2017 | CVE Notifications |

The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows remote attackers to modify...

CVE-2016-6177

Posted by Cyberthreat Blog | Apr 2, 2017 | CVE Notifications |

The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated attacker may send massive abnormal Network File System (NFS) packets, causing an anomaly in specific disk arrays.

CVE-2016-8272

Posted by Cyberthreat Blog | Apr 2, 2017 | CVE Notifications |

Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user’s proxy password, causing information leaks.

Author: Cyberthreat Blog

CVE-2017-7380

CVE-2017-7382

CVE-2017-1001000

CVE-2016-6177

CVE-2016-8272