2017-03-30

 
RSS for product
CVE-2016-10305
 
Trango Apex <= 2.1.1, ApexLynx < 2.0, ApexOrion < 2.0, ApexPlus <= 3.2.0, Giga <= 2.6.1, GigaLynx < 2.0, GigaOrion < 2.0, GigaPlus <= 3.2.3, GigaPro <= 1.4.1, StrataLink < 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software update package on a Trango FTP server. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it.

 
RSS for product
CVE-2016-10306
 
Trango Altum AC600 devices have a built-in, hidden root account, with a default password of abcd1234. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it.

 
RSS for product
CVE-2016-10307
 
Trango ApexLynx 2.0, ApexOrion 2.0, GigaLynx 2.0, GigaOrion 2.0, and StrataLink 3.0 devices have a built-in, hidden root account, with a default password for which the MD5 hash value is public (but the cleartext value is perhaps not yet public). This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it.

 
RSS for product
CVE-2016-10308
 
Siklu EtherHaul radios before 3.7.1 and 6.x before 6.9.0 have a built-in, hidden root account, with an unchangeable password that is the same across all devices. This account is accessible via both SSH and the device's web interface and grants access to the underlying embedded Linux OS on the device, allowing full control over it.

 
RSS for product
CVE-2016-10309
 
In the GUI of Ceragon FibeAir IP-10 (before 7.2.0) devices, a remote attacker can bypass authentication by adding an ALBATROSS cookie with the value 0-4-11 to their browser.

 
RSS for product
CVE-2017-7290
 
SQL injection vulnerability in XOOPS 2.5.7.2 and other versions before 2.5.8.1 allows remote authenticated administrators to execute arbitrary SQL commands via the url parameter to findusers.php. An example attack uses "into outfile" to create a backdoor program.

 
RSS for product
CVE-2017-7318
 
Siklu EtherHaul devices before 7.4.0 are vulnerable to a remote command execution (RCE) vulnerability. This vulnerability allows a remote attacker to execute commands and retrieve information such as usernames and plaintext passwords from the device with no authentication.

 
RSS for product
CVE-2017-7320
 
setup/controllers/language.php in MODX Revolution 2.5.4-pl and earlier does not properly constrain the language parameter, which allows remote attackers to conduct Cookie-Bombing attacks and cause a denial of service (cookie quota exhaustion), or conduct HTTP Response Splitting attacks with resultant XSS, via an invalid parameter value.

 
RSS for product
CVE-2017-7321
 
setup/controllers/welcome.php in MODX Revolution 2.5.4-pl and earlier allows remote attackers to execute arbitrary PHP code via the config_key parameter to the setup/index.php?action=welcome URI.

 
RSS for product
CVE-2017-7322
 
The (1) update and (2) package-installation features in MODX Revolution 2.5.4-pl and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and trigger the execution of arbitrary code via a crafted certificate.

 
RSS for product
CVE-2017-7323
 
The (1) update and (2) package-installation features in MODX Revolution 2.5.4-pl and earlier use http://rest.modx.com by default, which allows man-in-the-middle attackers to spoof servers and trigger the execution of arbitrary code by leveraging the lack of the HTTPS protection mechanism.

 
RSS for product
CVE-2017-7324
 
setup/templates/findcore.php in MODX Revolution 2.5.4-pl and earlier allows remote attackers to execute arbitrary PHP code via the core_path parameter.

 
RSS for product
CVE-2014-9804
 
vision.c in ImageMagick allows remote attackers to cause a denial of service (infinite loop) via vectors related to "too many object."

 
RSS for product
CVE-2014-9805
 
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.

 
RSS for product
CVE-2014-9806
 
ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.

 
RSS for product
CVE-2014-9807
 
The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.

 
RSS for product
CVE-2014-9808
 
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.

 
RSS for product
CVE-2014-9809
 
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.

 
RSS for product
CVE-2014-9810
 
The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.

 
RSS for product
CVE-2014-9811
 
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.

 
RSS for product
CVE-2014-9812
 
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.

 
RSS for product
CVE-2014-9813
 
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.

 
RSS for product
CVE-2014-9814
 
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.

 
RSS for product
CVE-2014-9815
 
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.

 
RSS for product
CVE-2014-9816
 
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.

 


Copyright 2017, cxsecurity.com