Open Bugtraq


2017-03-27
Med.
Low
Low
2017-03-25
High
Med.
2017-03-24
High
High
High
Med.
High
High
Med.
Med.


The latest CVEs

2017-03-24
CVE-2017-5198 Solarwinds Log and event manager
SolarWinds LEM (aka SIEM) before 6.3.1 has an incorrect sudo configuration, which allows local users to obtain root access by editing /usr/local/contego/scripts/hostname.sh.

CVE-2017-5199 Solarwinds Log and event manager
The editbanner feature in SolarWinds LEM (aka SIEM) through 6.3.1 allows remote authenticated users to execute arbitrary code by editing /usr/local/contego/scripts/mgrconfig.pl.

CVE-2015-8556 QEMU QEMU
Local privilege escalation vulnerability in the Gentoo QEMU package before 2.5.0-r1.

CVE-2015-8678 Huawei Mate s firmware
The ION driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before C...

CVE-2016-10128 Libgit2 project Libgit2
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to have unspecified impact via a crafted non-flush packet.

CVE-2016-10129 Libgit2 project Libgit2
The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.

CVE-2016-10130 Libgit2 project Libgit2
The http_connect function in transports/http.c in libgit2 before 0.24.6 and 0.25.x before 0.25.1 might allow man-in-the-middle attackers to spoof servers by leveraging clobbering of the error variable.

CVE-2016-10132 Fedoraproject Fedora
regexp.c in Artifex Software, Inc. MuJS allows attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to regular expression compilation.

CVE-2016-10133 Artifex MUJS
Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc. MuJS allows attackers to have unspecified impact by leveraging an error when dropping extra arguments to lightweight functions.

CVE-2016-10144 Imagemagick Imagemagick
coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.


Dorks


2017-03-27
Low
Turk@Xtra
Low
Berandal | OWL SQUAD
2017-03-24
High
0N3R1D3R
Med.
Persian Hack Team
Med.
Deyaa Muhammad

Copyright 2017, cxsecurity.com