Subscribe, build a custom feed, or pitch a sponsorship at hello@acadenix.com
Latest intel// live feed
CVE-2016-10178 — Dlink Dwr-932b_firmware: An issue was discovered on the D-Link DWR-932B router.
An issue was discovered on the D-Link DWR-932B router. HELODBG on port 39889 (UDP) launches the "/sbin/telnetd -l /bin/sh" command. CVSSv3.1 9.8 (CRITICAL)
CVE-2016-10177 — Dlink Dwr-932b_firmware: An issue was discovered on the D-Link DWR-932B router.
An issue was discovered on the D-Link DWR-932B router. Undocumented TELNET and SSH services provide logins to admin with the password admin and root with the password 1234. CVSSv3.1 9.8 (CRITICAL)
CVE-2016-10176 — Netgear Wnr2000v5_firmware: The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the
The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the apply.cgi URL on the web server of the device. This special URL is handled by the embedded web server (uhttpd) and processed accordingly. The web server also contains another URL, apply_noauth.cgi, that allows an unauthenticated user to perform sensitive actions on the device. This functionality can be exploited to change the router settings (such as the answers to the password-r CVSSv3.1 9.8 (CRITICAL)
CVE-2016-10175 — Netgear Wnr2000v5_firmware: This serial number allows a user to obtain the administrator username and password, when
The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRS_netgear_success.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers to the password-recovery questions. CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5609 — S9y Serendipity: SQL injection vulnerability in include/functions_entries.inc.php in Serendipity 2.0.5 allows remote authenticated users to execute
SQL injection vulnerability in include/functions_entries.inc.php in Serendipity 2.0.5 allows remote authenticated users to execute arbitrary SQL commands via the cat parameter. CVSSv3.1 8.8 (HIGH)
CVE-2017-5486 — Tcpdump Tcpdump: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5485 — Tcpdump Tcpdump: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5484 — Tcpdump Tcpdump: The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5483 — Tcpdump Tcpdump: The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5482 — Tcpdump Tcpdump: The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575. CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5342 — Tcpdump Tcpdump: In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV
In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5341 — Tcpdump Tcpdump: The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print().
The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5205 — Tcpdump Tcpdump: The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print().
The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5204 — Tcpdump Tcpdump: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().
The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5203 — Tcpdump Tcpdump: The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2017-5202 — Tcpdump Tcpdump: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-8575 — Tcpdump Tcpdump: The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482. CVSSv3.1 9.8 (CRITICAL)
CVE-2016-8574 — Tcpdump Tcpdump: The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7993 — Tcpdump Tcpdump: A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in
A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7992 — Tcpdump Tcpdump: The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow
The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7986 — Tcpdump Tcpdump: The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple
The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions. CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7985 — Tcpdump Tcpdump: The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print().
The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7984 — Tcpdump Tcpdump: The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().
The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7983 — Tcpdump Tcpdump: The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print(). CVSSv3.1 9.8 (CRITICAL)
CVE-2016-7975 — Tcpdump Tcpdump: The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().
The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print(). CVSSv3.1 9.8 (CRITICAL)