Computer Security
[EN] securityvulns.ru no-pyccku


FastCGI buffer overflow
Published:04.05.2015
Source:
SecurityVulns ID:14421
Type:library
Threat Level:
5/10
Description:Buffer overflow on fd_set structure handling.
Affected:FASTCGI : libfcgi 2.4
CVE:CVE-2012-6687 (FastCGI (aka fcgi and libfcgi) 2.4.0 allows remote attackers to cause a denial of service (segmentation fault and crash) via a large number of connections.)
Original documentdocumentMANDRIVA, [ MDVSA-2015:226 ] fcgi (04.05.2015)

Cherokee authentication bypass
Published:04.05.2015
Source:
SecurityVulns ID:14422
Type:remote
Threat Level:
6/10
Description:LDAP authentication allows to authenticate with empty password.
Affected:CHEROKEE : Cherokee 1.2
CVE:CVE-2014-4668 (The cherokee_validator_ldap_check function in validator_ldap.c in Cherokee 1.2.103 and earlier, when LDAP is used, does not properly consider unauthenticated-bind semantics, which allows remote attackers to bypass authentication via an empty password.)
Original documentdocumentMANDRIVA, [ MDVSA-2015:225 ] cherokee (04.05.2015)

XML::LibXML information leakage
Published:04.05.2015
Source:
SecurityVulns ID:14424
Type:remote
Threat Level:
5/10
Description:Information disclosure on expand_entities.
Affected:LIBXML : libxml-perl 2.0
CVE:CVE-2015-3451 (The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via a crafted XML data to the (1) new or (2) load_xml function.)
Original documentdocumentUBUNTU, [USN-2592-1] XML::LibXML vulnerability (04.05.2015)

Ruby SSL checks bypass
Published:04.05.2015
Source:
SecurityVulns ID:14425
Type:library
Threat Level:
5/10
Description:Invalid hostname matching limplementation.
Affected:RUBY : ruby 1.8
 RUBY : ruby 2.0
CVE:CVE-2015-1855
Original documentdocumentMANDRIVA, [ MDVSA-2015:224 ] ruby (04.05.2015)

DirectFB security vulnerabilities
Published:04.05.2015
Source:
SecurityVulns ID:14426
Type:library
Threat Level:
5/10
Description:Signess errors, buffer overflow, memory corruption.
Affected:DIRECTFB : DirectFB 1.4
CVE:CVE-2014-2978 (The Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers an out-of-bounds write.)
 CVE-2014-2977 (Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow.)
Original documentdocumentMANDRIVA, [ MDVSA-2015:223 ] directfb (04.05.2015)

ClamAV multiple security vulnerabilities
Published:04.05.2015
Source:
SecurityVulns ID:14427
Type:library
Threat Level:
7/10
Description:DoS conditions, buffer overflow, memory corruption.
Affected:CLAMAV : ClamAV 0.98
CVE:CVE-2015-2668 (ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted xz archive file.)
 CVE-2015-2305 (Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.)
 CVE-2015-2222 (ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted petite packed file.)
 CVE-2015-2221 (ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted y0da cryptor file.)
 CVE-2015-2170 (The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted file.)
Original documentdocumentMANDRIVA, [ MDVSA-2015:221 ] clamav (04.05.2015)

EMC Autostart data injection
Published:04.05.2015
Source:
SecurityVulns ID:14428
Type:remote
Threat Level:
7/10
Description:Commands injection is possible.
Affected:EMC : EMC AutoStart 5.5
CVE:CVE-2015-0538 (ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to execute arbitrary commands via crafted packets.)
Original documentdocumentEMC, ESA-2015-084: EMC AutoStart Packet Injection Vulnerability (04.05.2015)

EMC SourceOne DoS
Published:04.05.2015
Source:
SecurityVulns ID:14429
Type:remote
Threat Level:
5/10
Description:Management account lockout is possible.
Affected:EMC : SourceOne Email Management 7.2
CVE:CVE-2015-0531 (EMC SourceOne Email Management before 7.2 does not have a lockout mechanism for invalid login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.)
Original documentdocumentEMC, ESA-2015-077: EMC SourceOne Email Management Account Lockout (04.05.2015)

dnsmasq uninitialized memory dereference
updated since 04.05.2015
Published:05.05.2015
Source:
SecurityVulns ID:14423
Type:remote
Threat Level:
5/10
Description:Uninitilized memory dereference on DNS request parsing.
Affected:DNSMASQ : dnsmasq 2.73
CVE:CVE-2015-3294 (The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.)
Original documentdocumentn.sampanis_(at)_obrela.com, Dnsmasq 2.72 Unchecked returned value (05.05.2015)
 documentUBUNTU, [USN-2593-1] Dnsmasq vulnerability (04.05.2015)

Different iOS / Android applications vulnerabilities
updated since 04.05.2015
Published:25.10.2015
Source:
SecurityVulns ID:14430
Type:remote
Threat Level:
5/10
Description:Information leaks, code execution, protection bypass, etc.
Affected:AVIRA : Avira Mobile Security 1.5
 WIRELESSPHOTOTRA : Wireless Photo Transfer 3.0
 OYO : OYO File Manager 1.1
 UDID : UDID+ 2.5
 WIFIDRIVECR : WiFi Drive CR 1.0
 PHOTOSINWIFI : Photos in Wifi 1.0
 PHOTOWEBSITE : PhotoWebsite 3.1
 GRINDR : GRINDR 2.1
 SEVDESK : SevDesk 1.1
 IPASSWORDMANAGER : iPasswordManager 2.6
 MOBILEDRIVEHD : Mobile Drive HD 1.8
 WIRELESSDRIVETRA : Wireless File Transfer Pro 5.9
 GRINDR : GRINDR 2.1
 PDFCONVERTEREDIT : PDF Converter & Editor 2.1
 HIDISK : HiDisk 2.4
 DEVICEINSPECTOR : Device Inspector 1.5
 UDID : UDID 1.0
 PHOTOMANAGERPRO : Photo Manager Pro 4.4
 ICLASSSCHEDULE : iClassSchedule 1.6
 APACHE : Cordova 4.0
 WIFIDRIVEPRO : WiFi Drive Pro 1.2
 WEBROOT : SecureAnywhere Business Mobile Protection 1.10
 AIRDRIVEPLUS : Air Drive Plus 2.4
 MYWIFIUSBDRIVE : My.WiFi USB Drive 1.0
 APACHE : Cordova Android File Transfer Plugin 1.2
 ALBUMSTREAMER : Album Streamer 2.0
 EISBAR : Eisbar SCADA 2.1
 VPHOTOALBUM : vPhoto-Album 4.2
CVE:CVE-2015-5204 (CRLF injection vulnerability in the Apache Cordova File Transfer Plugin (cordova-plugin-file-transfer) for Android before 1.3.0 allows remote attackers to inject arbitrary headers via CRLF sequences in the filename of an uploaded file.)
 CVE-2015-1835
Original documentdocumentAPACHE, Re: CVE-2015-5204: HTTP header injection vulnerability in Apache Cordova File Transfer Plugin for Android (25.10.2015)
 documentVulnerability Lab, Photos in Wifi v1.0.1 iOS - Arbitrary File Upload Vulnerability (25.10.2015)
 documentVulnerability Lab, My.WiFi USB Drive v1.0 iOS - File Include Vulnerability (25.10.2015)
 documentVulnerability Lab, WiFi Drive CR v1.0 iOS - Persistent Filename Dir List Vulnerability (25.10.2015)
 documentVulnerability Lab, UDID v1.0 iOS - Persistent Mail Encode Vulnerability (25.10.2015)
 documentVulnerability Lab, Air Drive Plus v2.4 iOS - Arbitrary File Upload Vulnerability (25.10.2015)
 documentDavid Coomber, Webroot SecureAnywhere Mobile Protection - MITM SSL Certificate Vulnerability (14.09.2015)
 documentDavid Coomber, Avira Mobile Security iOS Application - Cleartext Credentials Vulnerability (14.09.2015)
 documentVulnerability Lab, Device Inspector v1.5 iOS - Command Inject Vulnerabilities (24.08.2015)
 documentVulnerability Lab, AirDroid ID - Client Side JSONP Callback Vulnerability (24.08.2015)
 documentVulnerability Lab, UDID+ v2.5 iOS - Mail Command Inject Vulnerability (24.08.2015)
 documentDirk-Willem van Gulik, CVE-2015-1835: ... (01.06.2015)
 documentVulnerability Lab, Wireless Photo Transfer v3.0 iOS - File Include Vulnerability (01.06.2015)
 documentVulnerability Lab, iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability (01.06.2015)
 documentVulnerability Lab, OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities (01.06.2015)
 documentVulnerability Lab, HiDisk 2.4 iOS - (currentFolderPath) Persistent Vulnerability (01.06.2015)
 documentVulnerability Lab, Eisbar SCADA (All Versions - iOS, Android & W8) - Persistent UI Vulnerability (01.06.2015)
 documentDavid Coomber, Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability (01.06.2015)
 documentVulnerability Lab, PDF Converter & Editor 2.1 iOS - File Include Vulnerability (11.05.2015)
 documentVulnerability Lab, vPhoto-Album v4.2 iOS - File Include Web Vulnerability (11.05.2015)
 documentVulnerability Lab, Album Streamer v2.0 iOS - Directory Traversal Vulnerability (10.05.2015)
 documentVulnerability Lab, Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability (10.05.2015)
 documentVulnerability Lab, Mobile Drive HD v1.8 - File Include Web Vulnerability (05.05.2015)
 documentVulnerability Lab, Wireless File Transfer Pro Android - Multiple CSRF Vulnerabilities (05.05.2015)
 documentVulnerability Lab, Photo Manager Pro 4.4.0 iOS - Code Execution Vulnerability (04.05.2015)
 documentVulnerability Lab, Photo Manager Pro v4.4.0 iOS - File Include Vulnerability (04.05.2015)
 documentVulnerability Lab, Wifi Drive Pro v1.2 iOS - File Include Web Vulnerability (04.05.2015)
 documentVulnerability Lab, iPassword Manager v2.6 iOS - Persistent Vulnerabilities (04.05.2015)
 documentVulnerability Lab, SevDesk v1.1 iOS - Persistent Dashboard Vulnerability (04.05.2015)
 documentVulnerability Lab, Grindr v2.1.1 iOS Bounty #1 - (Session) Auth Bypass Vulnerabilities (04.05.2015)
 documentVulnerability Lab, Grindr v2.1.1 iOS - (eMail) Session Vulnerability (04.05.2015)
 documentVulnerability Lab, Grindr 2.1.1 iOS Bug Bounty #2 - Denial of Service Software Vulnerability (04.05.2015)
 documentVulnerability Lab, PhotoWebsite v3.1 iOS - File Include Web Vulnerability (04.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod