EasyCom PHP API Stack Buffer Overflow
Monthly Archives: March 2017
Bugtraq: Sawmill Enterprise v8.7.9 Pass The Hash Authentication Bypass
Sawmill Enterprise v8.7.9 Pass The Hash Authentication Bypass
RHEA-2017:0449-1: Red Hat Enterprise MRG Realtime 2.5 enhancement update
Red Hat Enterprise Linux: Updated Red Hat Enterprise MRG Realtime packages that add one enhancement are
now available for Red Hat Enterprise MRG 2.5.
RHBA-2017:0452-1: Red Hat OpenStack Platform 8 director Bug Fix Advisory
Red Hat Enterprise Linux: Updated packages that resolve various issues are now available for Red Hat
OpenStack Platform 8.0 director for RHEL 7.
RHBA-2017:0451-1: Red Hat OpenStack Platform 10 Bug Fix and Enhancement Advisory
Red Hat Enterprise Linux: Updated packages that resolve various issues are now available for Red Hat
OpenStack Platform 10.0 (Newton) for RHEL 7.
RHBA-2017:0450-1: Red Hat OpenStack Platform 9 director Bug Fix Advisory
Red Hat Enterprise Linux: Updated packages that resolve various issues are now available for Red Hat
OpenStack Platform 9.0 director for RHEL 7.
iBaseCMS 1.23 SQL Injection / File Upload
iBaseCMS version 1.23 suffers from file upload, remote code execution, and remote SQL injection vulnerabilities.
Red Hat Security Advisory 2017-0448-01
Red Hat Security Advisory 2017-0448-01 – Red Hat OpenShift Container Platform is the company’s cloud computing Platform-as-a-Service solution designed for on-premise or private cloud deployments. Ansible is a SSH-based configuration management, deployment, and task execution system. The openshift-ansible packages contain Ansible code and playbooks for installing and upgrading OpenShift Container Platform 3. Security Fix: An input validation vulnerability was found in Ansible’s handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server using the Ansible server privileges.
Alienvault OSSIM / USM 5.3.0 Authentication Bypass
Alienvault OSSIM / USM versions 5.3.0 and below suffer from an authentication bypass vulnerability.
WordPress 4.5.3 Press This Function CSRF / Denial Of Service
WordPress version 4.5.3 Press This Function suffers from a cross site request forgery vulnerability that can cause a denial of service condition.