Monthly Archive: September 2017

In sam2p 0.49.3, there is an invalid read of size 2 in the parse_rgb function in in_xpm.cpp. However, this can also cause a write to an illegal address. Date published : 2017-09-22 https://github.com/pts/sam2p/issues/14

Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an invalid read of size 1 in the Image::Indexed::sortPal function in image.cpp. However, this also causes memory corruption because...

Proxy command injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations. Date published : 2017-09-22 http://www.securityfocus.com/bid/100969 https://success.trendmicro.com/solution/1118224

Authentication bypass vulnerability in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allows attackers to access a specific part of the console using a blank password. Date published : 2017-09-22 https://success.trendmicro.com/solution/1118224 http://www.zerodayinitiative.com/advisories/ZDI-17-767

Unrestricted file uploads in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations. Date published : 2017-09-22 http://www.securityfocus.com/bid/100970 https://success.trendmicro.com/solution/1118224

SQL Injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations. Date published : 2017-09-22 http://www.securityfocus.com/bid/100966 https://success.trendmicro.com/solution/1118224

Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code...

Command injection vulnerability in Trend Micro Smart Protection Server (Standalone) 3.1 and 3.2 server administration UI allows attackers with authenticated access to execute arbitrary code on vulnerable installations. Date published : 2017-09-22 http://www.securityfocus.com/bid/100461 https://success.trendmicro.com/solution/1117933

The knife bootstrap command in chef Infra client before version 15.4.45 leaks the validator.pem private RSA key to /var/log/messages. Date published : 2017-09-21 https://github.com/chef/chef/issues/3871 https://discourse.chef.io/t/chef-infra-client-15-4-45-released/16081

ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable. Date published : 2017-09-21 https://bugzilla.redhat.com/attachment.cgi?id=1075511 https://bugzilla.redhat.com/show_bug.cgi?id=1264790

Cross-site scripting (XSS) vulnerability in IPython 3.x before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving JSON error messages and the /api/contents path. Date published : 2017-09-21 http://www.securityfocus.com/bid/75328...

Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LD_PRELOAD path. Date published...

Multiple cross-site scripting (XSS) vulnerabilities in NodeBB before 0.7 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javascript: or (2) data: URLs. Date published : 2017-09-21 http://www.securityfocus.com/bid/71824...

The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp. Date published : 2017-09-21 http://www.securityfocus.com/bid/72848 http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10052