Adult Tube Video Script suffers from a remote SQL injection vulnerability.
Monthly Archives: March 2017
CVE-2017-7262
The AMD Ryzen processor with AGESA microcode through 2017-01-27 allows local users to cause a denial of service (system hang) via an application that makes a long series of FMA3 instructions, as demonstrated by the Flops test suite.
Vuln: IBM WebSphere Portal CVE-2017-1120 Cross Site Scripting Vulnerability
IBM WebSphere Portal CVE-2017-1120 Cross Site Scripting Vulnerability
Vuln: NTP CVE-2017-6459 Local Denial of Service Vulnerability
NTP CVE-2017-6459 Local Denial of Service Vulnerability
Vuln: NTP CVE-2017-6452 Local Stack Based Buffer Overflow Vulnerability
NTP CVE-2017-6452 Local Stack Based Buffer Overflow Vulnerability
Vuln: IBM Kenexa LMS on Cloud CVE-2016-8935 Cross-Site Scripting Vulnerability
IBM Kenexa LMS on Cloud CVE-2016-8935 Cross-Site Scripting Vulnerability
CVE-2017-7261
The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.5 does not check for a zero value of certain levels data, which allows local users to cause a denial of service (ZERO_SIZE_PTR dereference, and GPF and possibly panic) via a crafted ioctl call for a /dev/dri/renderD* device.
CVE-2016-10270
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to “READ of size 8” and libtiff/tif_read.c:523:22.
CVE-2016-10269
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to “READ of size 512” and libtiff/tif_unix.c:340:2.
CVE-2016-10271
tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to “READ of size 1” and libtiff/tif_fax3.c:413:13.