A null pointer dereference vulnerability was found in Wmem_map_lookup() function of Wireshark. This vulnerability can be triggered by a specially crafted packet which can cause a denial of service. The vulnerable code is located in epan/wmem/wmem_map.c:419:50.
A null pointer dereference vulnerability was discovered in Wireshark, a free and open-source packet analyzer. The vulnerability exists in the dissect_routing6_rpl() function of epan/dissectors/packet-ipv6.c, which is used to dissect IPv6 routing headers. A specially crafted packet can cause a null pointer dereference, resulting in a denial of service.
Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software is vulnerable to local file inclusion due to directory traversal attacks that can read sensitive files on a targeted system because of a lack of proper input validation of URLs in HTTP requests processed by an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request containing directory traversal character sequences to an affected device. A successful exploit could allow the attacker to view arbitrary files within the web services file system on the targeted device. The web services file system is enabled when the affected device is configured with either WebVPN or AnyConnect features. This vulnerability cannot be used to obtain access to ASA or FTD system files or underlying operating system (OS) files.
BIND installs as a service with an unquoted service path, to exploit a local attacker must place a malicious executable file named "Program.exe" in the path of the service, if the process runs under some account other than the attackers it can be used to exec code under a different set of privileges.
Remote attackers can abuse the Subscribe to Podcast feature of subsonic to store persistent XSS payloads if an authenticated user clicks a malicious link or visits an attacker controlled webpage.
subsonic import playlist feature is succeptible to XML External Entity attack. To exploit a User must be tricked to import a malicious .XSPF playlist file. The XXE injection can be used to target various hosts from the internal network to bypass Firewall or from the internet as XML External Entity is related to Server Side Request Forgery (SSRF) attacks.
Remote attackers can reset subsonic user account passwords if an authenticated user clicks a malicious link or visits an attacker controlled webpage. However, username must be known or guessed.
There is a security issue in the shared folder implementation in Parallels Desktop. The exploit uses a DLL called PrlToolsShellExt.dll and prl_tg Driver. It uses a very simple exploit with powershell to write an OSX Executable file in temp, open the temp in explorer, select the Temp active window, find the r3z4.command file, right click, goto 'Open on Mac' in the menu and click Enter.
Stack-based buffer overflow in dnstracer through 1.9 allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a command line with a long name argument that is mishandled in a strcpy call for argv[0]. An example threat model is a web application that launches dnstracer with an untrusted name string.
Linear eMerge E3-Series devices are vulnerable to local file inclusion.
Services By CQR