Vuldb Updates

A vulnerability was found in phpSiteBackup 0.1. It has been rated as critical. This issue affects some unknown processing in the library lib/pcltar.lib.php. The manipulation of the argument g_pcltar_lib_dir leads to code injection. The identification of this vulnerability is CVE-2007-2199. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as very critical was found in Apple macOS up to 10.13.1. Affected by this vulnerability is an unknown functionality of the component tcpdump. The manipulation leads to memory corruption. This vulnerability is known as CVE-2017-13016. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in tcpdump up to 4.9.1. It has been rated as critical. This issue affects the function esis_print of the file print-isoclns.c of the component ISO ES-IS Parser. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2017-13016. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in MyBB 1.2.5. This issue affects some unknown processing of the file calendar.php. The manipulation of the argument day leads to sql injection. The identification of this vulnerability is CVE-2007-2211. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in AccuSoft ImageGear. It has been classified as critical. This affects an unknown part. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2007-2209. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Corel Paint Shop Pro 15.1.2.0. This affects an unknown part in the library igcore15d.dll of the file clp. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2007-2209. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Mytx tx Smart 7.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-5959. The attack needs to be initiated within the local network. There is no exploit available.

A vulnerability was found in ChatBox Chat Rooms 2.5. It has been classified as critical. Affected is an unknown function of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is traded as CVE-2014-5958. The attack needs to be done within the local network. There is no exploit available.

A vulnerability was found in Webinsta FM Manager up to 0.1.4. It has been classified as critical. This affects an unknown part of the file admin/login.php. The manipulation of the argument absolute_path leads to file inclusion. This vulnerability is uniquely identified as CVE-2007-2181. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in RCA Digital Cable Modem Dcm425. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper input validation. This vulnerability is known as CVE-2010-1544. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Linkyungame Alien War Survivors 1.3.1. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-5957. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability, which was classified as very critical, was found in Tenda A5s -/3.02.05 Cn. This affects an unknown part. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2014-5246. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in XnView 1.90.3. It has been classified as critical. This affects an unknown part of the component XPM File Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2007-2194. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to disable the affected component.

A vulnerability classified as very critical has been found in Acd Systems Photo Editor 9.0. This affects an unknown part. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2007-2193. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Maran PHP Forum. It has been declared as critical. This vulnerability affects unknown code of the file forum_write.php of the component File Upload. The manipulation of the argument page leads to memory corruption. This vulnerability was named CVE-2007-2182. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Insite Inmail. Affected is an unknown function of the file inmail.pl. The manipulation of the argument acao leads to basic cross site scripting. This vulnerability is traded as CVE-2004-1196. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as very critical has been found in Apple macOS up to 10.13.1. Affected is an unknown function of the component tcpdump. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2017-13015. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Fortinet FortiOS 5.4.0/5.5.0/5.6.0. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2017-3131. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in PHP-Ring Webring System 0.9. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument ring leads to sql injection. The identification of this vulnerability is CVE-2007-2183. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in VPlayer VPlayer Video Player 3.2.6. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-5956. Access to the local network is required for this attack. There is no exploit available.