Monthly Archive: June 2019

A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insufficient input validation during...

** DISPUTED ** In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where...

Pydio Cells before 1.5.0, when supplied with a Name field in an unexpected Unicode format, fails to handle this and includes the database column/table name as pert of the error message, exposing sensitive information....

Pydio Cells before 1.5.0 does incomplete cleanup of a user’s data upon deletion. This allows a new user, holding the same User ID as a deleted user, to restore the deleted user’s data. Date...

Pydio Cells before 1.5.0 fails to neutralize ‘../’ elements, allowing an attacker with minimum privilege to Upload files to, and Delete files/folders from, an unprivileged directory, leading to Privilege escalation. Date published : 2019-06-19...

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. Date published : 2019-06-19 https://seclists.org/bugtraq/2019/Jul/22 https://seclists.org/bugtraq/2019/Aug/4

Delta Electronics DeviceNet Builder 2.04 has a User Mode Write AV starting at ntdll!RtlQueueWorkItem+0x00000000000005e3. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-devicenet-builder.html

Delta Electronics DeviceNet Builder 2.04 has a User Mode Write AV starting at image00400000+0x000000000017a45e. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-devicenet-builder.html

Edraw Max 7.9.3 has a Read Access Violation at the Instruction Pointer after a call from ObjectModule!Paint::Clear+0x0000000000000074. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-edraw-max.html

Edraw Max 7.9.3 has Heap Corruption starting at ntdll!RtlpNtMakeTemporaryKey+0x0000000000001a77. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-edraw-max.html

In Alternate Pic View 2.600, the Exception Handler Chain is Corrupted starting at PicViewer!PerfgrapFinalize+0x00000000000b916d. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-alternate-pic-view.html

Alternate Pic View 2.600 has a Read Access Violation at the Instruction Pointer after a call from PicViewer!PerfgrapFinalize+0x00000000000a9a1b. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-alternate-pic-view.html

Alternate Pic View 2.600 has a User Mode Write AV starting at PicViewer!PerfgrapFinalize+0x00000000000a8868. Date published : 2019-06-19 https://code610.blogspot.com/2019/05/crashing-alternate-pic-view.html

RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insert_one call. Date published : 2019-06-19 https://www.exploit-db.com/exploits/46992