lundi 14 octobre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

ISC BIND up to 9.15.0 dispatch.c Malformed Packet race condition

A vulnerability was found in ISC BIND up to 9.15.0. It has been classified as problematic. This affects an unknown code block of the file dispatch.c. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

ISC BIND up to 9.11.6-S1 EDNS Client Subnet Response Assertion unknown vulnerability

A vulnerability was found in ISC BIND up to 9.11.6-S1 and classified as critical. Affected by this issue is an unknown code of the component EDNS Client Subnet Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

ISC BIND up to 9.11.5-S5 nxdomain Redirect Assertion unknown vulnerability

A vulnerability has been found in ISC BIND up to 9.11.5-S5 and classified as critical. Affected by this vulnerability is an unknown part of the component nxdomain Redirect Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

ISC BIND up to 9.12.4/9.13.x/9.14.0 nxdomain Redirect query.c Assertion unknown vulnerability

A vulnerability, which was classified as problematic, was found in ISC BIND up to 9.12.4/9.13.x/9.14.0. Affected is some unknown functionality of the file query.c of the component nxdomain Redirect Handler. There is no information about possible...
Auteur: VulDB

ISC BIND Zone Transfer unknown vulnerability [CVE-2019-6465]

A vulnerability, which was classified as problematic, has been found in ISC BIND up to 9.10.8-P1/9.11.5-P2/9.11.5-S3/9.12.3-P2/9.13.6. This issue affects an unknown functionality of the component Zone Transfer Handler. Upgrading eliminates this...
Auteur: VulDB

NVIDIA Shield TV Experience up to 8.0.0 Boot Image Code Execution

A vulnerability classified as critical was found in NVIDIA Shield TV Experience up to 8.0.0. This vulnerability affects an unknown function of the component Boot Image. Upgrading to version 8.0.1 eliminates this vulnerability.
Auteur: VulDB

NVIDIA Shield TV Experience up to 8.0.0 Tegra Bootloader Code Execution memory corruption

A vulnerability classified as critical has been found in NVIDIA Shield TV Experience up to 8.0.0. This affects some unknown processing of the component Tegra Bootloader. Upgrading to version 8.0.1 eliminates this vulnerability.
Auteur: VulDB

SnapManager for Oracle up to 3.4.2 information disclosure [CVE-2019-5507]

A vulnerability was found in SnapManager for Oracle up to 3.4.2. It has been rated as problematic. Affected by this issue is an unknown code block. Applying the patch 3.4.2P1 is able to eliminate this problem.
Auteur: VulDB

Clustered Data ONTAP 9.0 Hostname Verification Man-in-the-Middle weak authentication

A vulnerability was found in Clustered Data ONTAP 9.0. It has been declared as critical. Affected by this vulnerability is an unknown code of the component Hostname Verification. There is no information about possible countermeasures known. It...
Auteur: VulDB

NitroPDF Use-After-Free memory corruption [CVE-2019-5053]

A vulnerability was found in NitroPDF (version unknown). It has been classified as critical. Affected is an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

NitroPDF 12.12.1.522 PDF File Heap-based memory corruption

A vulnerability was found in NitroPDF 12.12.1.522 and classified as critical. This issue affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

NitroPDF 12.12.1.522 PDF File Heap-based memory corruption

A vulnerability has been found in NitroPDF 12.12.1.522 and classified as critical. This vulnerability affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

NitroPDF CharProcs Parser PDF File Handler Use-After-Free memory corruption

A vulnerability, which was classified as critical, was found in NitroPDF (the affected version unknown). This affects an unknown function of the component CharProcs Parser. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

NitroPDF 12.12.1.522 JPEG2000 File PDF Document Heap-based memory corruption

A vulnerability, which was classified as critical, has been found in NitroPDF 12.12.1.522. Affected by this issue is some unknown processing of the component JPEG2000 File Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

NitroPDF 12.12.1.522 JPEG2000 File PDF Document Heap-based memory corruption

A vulnerability classified as critical was found in NitroPDF 12.12.1.522. Affected by this vulnerability is an unknown code block of the component JPEG2000 File Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM Spectrum Scale up to 4.2.3.17/5.0.3.2 Parameter privilege escalation

A vulnerability classified as critical has been found in IBM Spectrum Scale up to 4.2.3.17/5.0.3.2. Affected is an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

IBM Maximo Asset Management 7.6.1.1 Error Message information disclosure

A vulnerability was found in IBM Maximo Asset Management 7.6.1.1 (Asset Management Software). It has been rated as problematic. This issue affects an unknown part of the component Error Message Handler. There is no information about possible...
Auteur: VulDB

Dell EMC privilege escalation [CVE-2019-3765]

A vulnerability was found in Dell EMC Avamar Server and Integrated Data Protection Appliance (Backup Software) (the affected version is unknown). It has been declared as critical. This vulnerability affects some unknown functionality. There is no...
Auteur: VulDB

McAfee Endpoint Security up to 10.6.1 Configuration Tool privilege escalation

A vulnerability was found in McAfee Endpoint Security up to 10.6.1. It has been classified as critical. This affects an unknown functionality of the component Configuration Tool. Applying a patch is able to eliminate this problem.
Auteur: VulDB

McAfee Endpoint Security 10.6.1 Installer EPSetup.exe privilege escalation

A vulnerability was found in McAfee Endpoint Security 10.6.1 and classified as critical. Affected by this issue is an unknown function of the file EPSetup.exe of the component Installer. There is no information about possible countermeasures...
Auteur: VulDB

File Sharing Wizard 1.5.0 26-8-2008 Structured Exception memory corruption

A vulnerability has been found in File Sharing Wizard 1.5.0 26-8-2008 and classified as critical. Affected by this vulnerability is some unknown processing of the component Structured Exception Handler. There is no information about possible...
Auteur: VulDB

tinylcy Vino up to 2017-12-15 vn_get_string Long URL denial of service

A vulnerability, which was classified as problematic, was found in tinylcy Vino up to 2017-12-15. Affected is the function vn_get_string. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Exiv2 0.27.2 types.cpp Exiv2::getULong denial of service

A vulnerability, which was classified as problematic, has been found in Exiv2 0.27.2. This issue affects the function Exiv2::getULong of the file types.cpp. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

libyal liblnk 20191006 liblnk_location_information.c network_share_name_offset memory corruption

A vulnerability classified as critical was found in libyal liblnk 20191006. This vulnerability affects the function network_share_name_offset of the file liblnk_location_information.c. There is no information about possible countermeasures known....
Auteur: VulDB

Shack Forms Pro Extension up to 4.0.31 on Joomla File Attachment directory traversal

A vulnerability classified as critical has been found in Shack Forms Pro Extension up to 4.0.31 on Joomla. This affects some unknown functionality of the component File Attachment Handler. Upgrading to version 4.0.32 eliminates this vulnerability.
Auteur: VulDB
First234567891011Last

Événements SSI

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS