Tagged: application

VU#377260: Up.time agent for Windows contains multiple vulnerabilities 0

VU#377260: Up.time agent for Windows contains multiple vulnerabilities

Vulnerability Note VU#377260 Up.time agent for Windows contains multiple vulnerabilities Original Release date: 08 Dec 2015 | Last revised: 08 Dec 2015 Overview The Up.time client for Windows is vulnerable to an format string attack as well as a buffer overflow, and may allow unauthenticated users to perform certain commands. Description CWE-134 : Uncontrolled Format String – CVE-2015-2894 For version 6.0 and 7.2, an unauthenticated attacker on the network may send either the ” %n ” or ” %s ” format parameters will cause the application to crash. CWE-120 : Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) – CVE-2015-2895 For version 7.4, an unauthenticated attacker on the network sending commands with an input that is larger than 1024 bytes will crash the application.

More on Chris Roberts and Avionics Security 0

More on Chris Roberts and Avionics Security

Last month, I blogged about security researcher Chris Roberts being detained by the FBI after tweeting about avionics security while on a United flight: But to me, the fascinating part of this story is that a computer was monitoring the Twitter feed and understood the obscure references, alerted a person who figured out who wrote them, researched what flight he was on, and sent an FBI team to the Syracuse airport within a couple of hours. There’s some serious surveillance going on. We know a lot more of the back story from the FBI’s warrant application .

VU#377644: Ektron Content Management System (CMS) contains multiple vulnerabilities 0

VU#377644: Ektron Content Management System (CMS) contains multiple vulnerabilities

Vulnerability Note VU#377644 Ektron Content Management System (CMS) contains multiple vulnerabilities Original Release date: 05 Feb 2015 | Last revised: 05 Feb 2015 Overview Ektron Content Management System (CMS) versions 8.5, 8.7, and 9.1 contain a XXE and a resource injection vulnerability. Description CWE-611 : Improper Restriction of XML External Entity Reference (‘XXE’) – CVE-2015-0923 Ektron Content Management System version 8.5, 8.7, and 9.1 contain a XXE vulnerability in /Workarea/ServerControlWS.asmx.   The parameter xslt of the method ContentBlockEx allows a remote unauthenticated user to read arbitrary files