2017-01-20

 
RSS for product
CVE-2016-10143 TIKI Tikiwiki cms/groupware
 
A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a targeted system via a crafted pathname in a banner URL field.

 
RSS for product
CVE-2016-5012 Moodle Moodle
 
In Moodle 3.x, glossary search displays entries without checking user permissions to view them.

 
RSS for product
CVE-2016-5013 Moodle Moodle
 
In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam.

 
RSS for product
CVE-2016-5014 Moodle Moodle
 
In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course.

 
RSS for product
CVE-2016-7038 Moodle Moodle
 
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.

 
RSS for product
CVE-2016-8642 Moodle Moodle
 
In Moodle 2.x and 3.x, the question engine allows access to files that should not be available.

 
RSS for product
CVE-2016-8643 Moodle Moodle
 
In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services.

 
RSS for product
CVE-2016-8644 Moodle Moodle
 
In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.

 
RSS for product
CVE-2017-2576 Moodle Moodle
 
In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums.

 
RSS for product
CVE-2017-2578 Moodle Moodle
 
In Moodle 3.x, there is XSS in the assignment submission page.

 
RSS for product
CVE-2017-5541 Symphony-cms Symphony cms
 
Directory traversal vulnerability in template/usererror.missing_extension.php in Symphony CMS before 2.6.10 allows remote attackers to rename arbitrary files via a .. (dot dot) in the existing-folder and new-folder parameters.

 
RSS for product
CVE-2017-5542 Symphony-cms Symphony cms
 
Cross-site scripting (XSS) vulnerability in template/usererror.missing_extension.php in Symphony CMS before 2.6.10 allows remote attackers to inject arbitrary web script or HTML via the existing-folder parameter.

 
RSS for product
CVE-2017-5543 Intelliants Subrion cms
 
includes/classes/ia.core.users.php in Subrion CMS 4.0.5 allows remote attackers to conduct PHP Object Injection attacks via crafted serialized data in a salt cookie in a login request.

 
RSS for product
CVE-2014-2045 Viprinet Multichannel vpn router ...
 
Multiple cross-site scripting (XSS) vulnerabilities in the 'old' and 'new' interfaces in Viprinet Multichannel VPN Router 300 allow remote attackers to inject arbitrary web script or HTML via the username when (1) logging in or (2) creating an account in old interface, (3) username when creating an account in the new interface, (4) hostname in the old interface, (5) inspect parameter in the config module, (6) commands parameter in the atcommands tool, or (7) host parameter in the ping tool.

 
RSS for product
CVE-2014-9754 Viprinet Multichannel vpn router ...
 
The hardware VPN client in Viprinet MultichannelVPN Router 300 verison 2013070830/2013080900 does not validate the remote VPN endpoint identity (through the checking of the endpoint's SSL key) before initiating the exchange, which allows an attacker to perform a Man in the Middle attack.

 
RSS for product
CVE-2014-9755 Viprinet Multichannel vpn router ...
 
The hardware VPN client in Viprinet MultichannelVPN Router 300 verison 2013070830/2013080900 does not validate the remote VPN endpoint identity (through the checking of the endpoint's SSL key) before initiating the exchange, which allows remote attackers to perform a replay attack.

 
RSS for product
CVE-2016-5316 Opensuse project Opensuse
 
Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

 
RSS for product
CVE-2016-5317 Opensuse project Opensuse
 
Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack (crash) via a crafted TIFF file.

 
RSS for product
CVE-2016-5318 Libtiff Libtiff
 
Stack-based buffer overflow in the _TIFFVGetField function in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted tiff.

 
RSS for product
CVE-2016-5319 Libtiff Libtiff
 
Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted bmp file.

 
RSS for product
CVE-2016-5321 Novell Opensuse
 
The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers tocause a denial of service (invalid read and crash) via a crafted tiff image.

 
RSS for product
CVE-2016-5323 Opensuse project Opensuse
 
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.

 
RSS for product
CVE-2016-6253 Netbsd Netbsd
 
mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.

 
RSS for product
CVE-2016-9435 W3m project W3M
 
The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <dd> tags.

 
RSS for product
CVE-2016-9436 W3m project W3M
 
parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a <i> tag.

 


Copyright 2017, cxsecurity.com