» 2016 » 5월

CVE-2016-4351 (email_encryption_gateway)

Posted on 2016년 5월 6일2016년 5월 10일 by admin

CVE-2016-4351 (email_encryption_gateway)

SQL injection vulnerability in the authentication functionality in Trend Micro Email Encryption Gateway (TMEEG) 5.5 before build 1107 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Source: CVE-2016-4351 (email_encryption_gateway)

CVE-2016-4351

Posted on 2016년 5월 6일2016년 5월 6일 by admin

CVE-2016-4351

Source: CVE-2016-4351

CVE-2016-4008

Posted on 2016년 5월 6일2016년 5월 6일 by admin

CVE-2016-4008

The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1_DECODE_FLAG_STRICT_DER flag, allows remote attackers to cause a denial of service (infinite recursion) via a crafted certificate.

Source: CVE-2016-4008

CVE-2016-3718 (imagemagick)

Posted on 2016년 5월 6일2016년 5월 10일 by admin

CVE-2016-3718 (imagemagick)

The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted image.

Source: CVE-2016-3718 (imagemagick)

CVE-2016-3718

Posted on 2016년 5월 6일2016년 5월 6일 by admin

CVE-2016-3718

The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted image.

Source: CVE-2016-3718