Thursday, November 21, 2024
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Information Disclosure

Independent Securiteam 

SSD Advisory – GraphicsMagick Multiple Vulnerabilities

admin , ,

Credit to Author: SSD / Maor Schwartz| Date: Tue, 31 Oct 2017 17:25:29 +0000

Vulnerabilities summary The following advisory describes two (2) vulnerabilities found in GraphicsMagick. GraphicsMagick is “The swiss army knife of image processing. Comprised of 267K physical lines (according to David A. Wheeler’s SLOCCount) of source code in the base package (or 1,225K including 3rd party libraries) it provides a robust and efficient collection of tools and … Continue reading SSD Advisory – GraphicsMagick Multiple Vulnerabilities

Read more
Independent Securiteam 

SSD Advisory – K7 Total Security Device Driver Arbitrary Memory Read

admin ,

Credit to Author: SSD / Maor Schwartz| Date: Mon, 23 Oct 2017 10:31:38 +0000

Vulnerability Summary The following advisory describes an Crash found in K7 Total Security. Credit An independent security researcher, has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program Vendor response K7 has released patches to address this vulnerability – K7TotalSecurity version 15.1.0.305 Vulnerability details User controlled input to K7Sentry device is not sufficiently sanitized, … Continue reading SSD Advisory – K7 Total Security Device Driver Arbitrary Memory Read

Read more
Independent Securiteam 

SSD Advisory – Geneko Routers Information Disclosure

admin , ,

Credit to Author: SSD / Maor Schwartz| Date: Mon, 23 Oct 2017 10:26:40 +0000

Vulnerability Summary The following advisory describes an information disclosure vulnerability found in Geneko Routers version 3.18.21 Geneko GWG is “compact and cost effective communications solution that provides cellular capabilities for fixed and mobile applications such as data acquisition, smart metering, remote monitoring and management. GWG supports a variety of radio bands options on 2G, 3G … Continue reading SSD Advisory – Geneko Routers Information Disclosure

Read more
Independent Securiteam 

SSD Advisory – Microsoft Office SMB Information Disclosure

admin ,

Credit to Author: SSD / Maor Schwartz| Date: Sun, 15 Oct 2017 05:41:56 +0000

Vulnerability Summary The following advisory describes an information disclosure found in Microsoft Office versions 2010, 2013, and 2016. Microsoft Office is: “Whether you’re working or playing, Microsoft is here to help. We’re the company that created Microsoft Office, including Office 365 Home, Office 365 Personal, Office Home & Student 2016, Office Home & Business 2016, … Continue reading SSD Advisory – Microsoft Office SMB Information Disclosure

Read more
Independent Securiteam 

SSD Advisory – QNAP HelpDesk SQL Injection

admin , ,

Credit to Author: SSD / Maor Schwartz| Date: Mon, 09 Oct 2017 14:26:28 +0000

Vulnerability Summary The following advisory describes a SQL injection found in QTS Helpdesk versions 1.1.12 and earlier. QNAP helpdesk: “Starting from QTS 4.2.2 you can use the built-in Helpdesk app to directly submit help requests to QNAP from your NAS. To do so, ensure your NAS can reach the Internet, open Helpdesk from the App … Continue reading SSD Advisory – QNAP HelpDesk SQL Injection

Read more
Independent Securiteam 

SSD Advisory – Tiandy IP cameras Sensitive Information Disclosure

admin , ,

Credit to Author: SSD / Maor Schwartz| Date: Tue, 03 Oct 2017 12:18:28 +0000

Vulnerability Summary The following advisory describes sensitive information Disclosure found in Tiandy IP cameras version 5.56.17.120 Tianjin Tiandy Digital Technology Co., Ltd ( Tiandy Tech) is “one of top 10 leading CCTV manufacturer in China and a global supplier of advanced video surveillance solutions.” Credit An independent security researcher, Netfairy, has reported this vulnerability to … Continue reading SSD Advisory – Tiandy IP cameras Sensitive Information Disclosure

Read more
Independent Securiteam 

SSD Advisory – FLIR Systems Multiple Vulnerabilities

admin , , ,

Credit to Author: SSD / Maor Schwartz| Date: Sun, 24 Sep 2017 09:26:54 +0000

Vulnerabilities Summary The following advisory describes 5 (five) vulnerabilities found in FLIR Systems FLIR Thermal/Infrared Camera FC-Series S, FC-Series ID, PT-Series. FLIR – “Best-in-class thermal cameras with on-board analytics for high-performance intrusion detection. The new FC-Series ID combines best-in-class thermal image detail and high-performance edge perimeter analytics together in a single device that delivers optimal … Continue reading SSD Advisory – FLIR Systems Multiple Vulnerabilities

Read more
Independent Securiteam 

SSD Advisory – WiseGiga NAS Multiple Vulnerabilities

admin , , , ,

Credit to Author: SSD / Maor Schwartz| Date: Tue, 05 Sep 2017 11:11:02 +0000

Vulnerabilities summary The following advisory describes five (5) vulnerabilities and default accounts / passwords found in WiseGiga NAS devices. WiseGiga is a Korean company selling NAS products. The vulnerabilities found in WiseGiga NAS are: Pre-Authentication Local File Inclusion (4 different vulnerabilities) Post-Authentication Local File Inclusion Remote Command Execution as root Remote Command Execution as root … Continue reading SSD Advisory – WiseGiga NAS Multiple Vulnerabilities

Read more