High Vulnerabilities から
| Primary Vendor -- Product | Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| adobe -- digital_editions | Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4263. | 2016-09-26 | 10.0 | CVE-2016-6980 BID CONFIRM |
| apple -- apple_tv | libxml2 in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document. | 2016-09-25 | 10.0 | CVE-2016-4658 APPLE APPLE APPLE APPLE CONFIRM CONFIRM CONFIRM CONFIRM |
| apple -- mac_os_x | The Apache HTTP Server in Apple OS X before 10.12 and OS X Server before 5.2 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted CGI client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue, a related issue to CVE-2016-5387. | 2016-09-25 | 7.5 | CVE-2016-4694 APPLE APPLE CONFIRM CONFIRM |
| apple -- iphone_os | AppleMobileFileIntegrity in Apple iOS before 10 and OS X before 10.12 mishandles process entitlement and Team ID values in the task port inheritance policy, which allows attackers to execute arbitrary code in a privileged context via a crafted app. | 2016-09-25 | 9.3 | CVE-2016-4698 APPLE APPLE CONFIRM CONFIRM |
| apple -- safari | WebKit in Apple iOS before 10 and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4731. | 2016-09-25 | 9.3 | CVE-2016-4729 APPLE APPLE CONFIRM CONFIRM |
| citrix -- linux_virtual_delivery_agent | Citrix Linux Virtual Delivery Agent (aka VDA, formerly Linux Virtual Desktop) before 1.4.0 allows local users to gain root privileges via unspecified vectors. | 2016-09-26 | 7.2 | CVE-2016-6276 CONFIRM BID |
| hp -- network_automation | HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. | 2016-09-29 | 7.5 | CVE-2016-4385 CONFIRM |
| huawei -- anyoffice_secureapp | Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service (application crash) via a crafted compressed email attachment. | 2016-09-26 | 7.1 | CVE-2016-6826 CONFIRM |
| huawei -- honor6_firmware | The video driver in Huawei Mate S smartphones with software CRR-TL00 before CRR-TL00C01B362, CRR-UL20 before CRR-UL20C00B362, CRR-CL00 before CRR-CL00C92B362, and CRR-CL20 before CRR-CL20C92B362; P8 smartphones with software GRA-TL00 before GRA-TL00C01B366, GRA-UL00 before GRA-UL00C00B366, GRA-UL10 before GRA-UL10C00B366, and GRA-CL00 before GRA-CL00C92B366; and Honor 6 and Honor 6 Plus smartphones with software before 6.9.16 allows attackers to cause a denial of service (device reboot) via a crafted application. | 2016-09-26 | 7.1 | CVE-2016-8279 CONFIRM |
| iperf_project -- iperf | The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow. | 2016-09-26 | 7.5 | CVE-2016-4303 MISC SUSE SUSE CONFIRM MISC CONFIRM CONFIRM |
| isc -- bind | buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. 日本語情報はこちら ↓ ・ISC BIND 9 サービス運用妨害の脆弱性 (CVE-2016-2776) に関する注意喚起 (10/05) http://www.jpcert.or.jp/at/2016/at160037.html 警察庁も、攻撃を観測した、 修正版にバージョンアップすれば良い とのこと | 2016-09-28 | 7.8 | CVE-2016-2776 CONFIRM |
| libgd -- libgd | Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted imagewebp and imagedestroy calls. | 2016-09-28 | 7.5 | CVE-2016-7568 CONFIRM CONFIRM CONFIRM CONFIRM |
| openssl -- openssl | Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions. | 2016-09-26 | 7.8 | CVE-2016-6304 CONFIRM CONFIRM |
| openssl -- openssl | statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service (memory consumption) via crafted DTLS messages. | 2016-09-26 | 7.1 | CVE-2016-6308 CONFIRM CONFIRM |
| openssl -- openssl | statem/statem.c in OpenSSL 1.1.0a does not consider memory-block movement after a realloc call, which allows remote attackers to cause a denial of service (use-after-free) or possibly execute arbitrary code via a crafted TLS session. 日本語情報はこちら ↓ ・OpenSSL の脆弱性 (CVE-2016-6309) に関する注意喚起 (9/28) http://www.jpcert.or.jp/at/2016/at160038.html バージョンアップすればよいとのこと | 2016-09-26 | 10.0 | CVE-2016-6309 CONFIRM CONFIRM |
| powerdns -- authoritative_server | PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response. | 2016-09-26 | 7.1 | CVE-2016-6172 SUSE MLIST CONFIRM CONFIRM CONFIRM CONFIRM MISC MLIST |
| redhat -- jboss_operations_network | The server in Red Hat JBoss Operations Network (JON), when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted HTTP request, related to message deserialization. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-3737. | 2016-09-27 | 9.0 | CVE-2016-6330 BID CONFIRM |
| sap -- trex | An unspecified function in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands via unknown vectors, aka SAP Security Note 2203591. | 2016-09-27 | 10.0 | CVE-2016-6137 MISC MISC FULLDISC FULLDISC |
No comments:
Post a Comment