Skip to content

Home Early Warning System Issues
Issues
Apache Solr Zero-Day Vulnerability
Tuesday, 17 October 2017 12:00

A vulnerability was reported in Apache Solr. No security update was available at the time of this entry. It is advised that users follow the mitigations provided in the report.

 
Microsoft Windows WAV File Uninitialized Pointer Denial of Service Vulnerability
Tuesday, 10 October 2017 12:00

A vulnerability was reported in Microsoft Windows when processing WAV audio files. Attackers may be able to cause a denial of service condition through a special craft webpage or file. No solution was available at the time of this entry. The only salient mitigation strategy is to restrict interaction with the application to trusted files.

 
iOS Devices Transmit Exchange Server Credentials Without Any Encryption
Monday, 18 September 2017 12:00

A vulnerability has been found in iOS. An attack may be able to perform man-in-the-middle attack and obtain user credentials.
No update was available at the time of this entry. Before an update is released, users can temporarily block port 80 on the firewall to prevent exchange client on iOS from sending their credentials in clear text.

 
Dlink 850L and MyDlink Cloud Protocol Multiple Vulnerabilities
Tuesday, 12 September 2017 12:00

Multiple vulnerabilities have been found in Dlink 850L and MyDlink Cloud Protocol. Attackers may be able to forged the firmware images, conduct XSS attacks, and obtain admin password. No solution was available at the time of this entry.

 
Multiple Vulnerabilities in Delta Industrial Automation PMSoft, ISPSoft, and WPLSoft
Monday, 28 August 2017 12:30

ZDI has released multiple 0-day vulnerabilities in the following Delta Industrial Automation products.
ZDI-17-707/ZDI-17-706:
Delta Industrial Automation PMSoft Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-705/ZDI-17-704/ZDI-17-703/ZDI-17-702/ZDI-17-697:
Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-701/ZDI-17-700:
Delta Industrial Automation WPLSoft dvp File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-699:
Delta Industrial Automation WPLSoft dvp File Parsing Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-698
Delta Industrial Automation WPLSoft File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

 
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>

Page 1 of 139
[YOUR IP : 54.83.81.52: 49288] ...   [YOUR BROWSER: CCBot/2.0 (http://commoncrawl.org/faq/)] ...