In Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, the "PING" (aka tag_ipPing) feature within the web interface allows performing command injection, via the "pip" parameter. Date published : 2017-07-21 https://iscouncil.blogspot.com/2017/07/command-injection-in-green-packet-dx.html
Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb has a default password of admin for the admin account. Date published : 2017-07-21 https://iscouncil.blogspot.com/2017/07/authentication-bypass-in-green-packet.html
Cross-Site Scripting (XSS) exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, as demonstrated by the action parameter to ajax.cgi. Date published : 2017-07-21 https://iscouncil.blogspot.com/2017/07/green-packet-dx-350-vulnerable-to-cross.html
Cross-Site Request Forgery (CSRF) exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, as demonstrated by a request to ajax.cgi that enables UPnP. Date published : 2017-07-21 https://iscouncil.blogspot.com/2017/07/green-packet-dx-350-vulnerable-to-csrf.html
Cross-site request forgery (CSRF) vulnerability in subsonic 6.1.1 allows remote attackers with knowledge of the target username to hijack the authentication of users for requests that change passwords via a crafted request to userSettings.view....
The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket....
rubygem-safemode, as used in Foreman, versions 1.3.2 and earlier are vulnerable to bypassing safe mode limitations via special Ruby syntax. This can lead to deletion of objects for which the user does not have...
Cygwin versions 1.7.2 up to and including 1.8.0 are vulnerable to buffer overflow vulnerability in wcsxfrm/wcsxfrm_l functions resulting into denial-of-service by crashing the process or potential hijack of the process running with administrative privileges...
rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution. Date published : 2017-07-21 https://security.gentoo.org/glsa/201805-11 http://seclists.org/oss-sec/2017/q2/643
WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors. Date published : 2017-07-21 https://jvn.jp/en/jp/JVN77412145/index.html https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors. Date published : 2017-07-21 https://jvn.jp/en/jp/JVN14151222/index.html https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors. Date published : 2017-07-21 https://jvn.jp/en/jp/JVN14151222/index.html https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
Cross-site scripting vulnerability in WMR-433 firmware Ver.1.02 and earlier, WMR-433W firmware Ver.1.40 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2017-07-21 http://buffalo.jp/support_s/s20170606.html https://jvn.jp/en/jp/JVN48413726/index.html
Cross-site request forgery (CSRF) vulnerability in WMR-433 firmware Ver.1.02 and earlier, WMR-433W firmware Ver.1.40 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. Date published : 2017-07-21 http://buffalo.jp/support_s/s20170606.html https://jvn.jp/en/jp/JVN48413726/index.html