CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In February 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
301 CVE-2018-6641 416 Exec Code 2018-02-28 2021-05-27
7.5
None Remote Low Not required Partial Partial Partial
An Arbitrary Free (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. Crafted input can overwrite a structure, leading to a function call with an invalid parameter, and a subsequent free of important data such as a function pointer or list pointer. This is fixed in 6.9d.
302 CVE-2018-6640 787 Exec Code Overflow 2018-02-28 2021-05-27
7.5
None Remote Low Not required Partial Partial Partial
A Heap Overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. Crafted input can modify the next pointer of a linked list. This is fixed in 6.9d.
303 CVE-2018-6639 787 Exec Code 2018-02-28 2021-05-27
7.5
None Remote Low Not required Partial Partial Partial
An out-of-bounds write (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. A size used by memmove is read from the input file. This is fixed in 6.9d.
304 CVE-2018-6638 787 Exec Code Overflow 2018-02-28 2021-05-27
7.5
None Remote Low Not required Partial Partial Partial
A stack-based buffer overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. This occurs in a function call in which the first argument is a corrupted offset value and the second argument is a stack buffer. This is fixed in 6.9d.
305 CVE-2018-6635 326 Bypass 2018-02-05 2019-10-03
6.0
None Remote Medium ??? Partial Partial Partial
System Manager in Avaya Aura before 7.1.2 does not properly use SSL in conjunction with authentication, which allows remote attackers to bypass intended Remote Method Invocation (RMI) restrictions, aka SMGR-26896.
306 CVE-2018-6633 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000038.
307 CVE-2018-6632 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000110.
308 CVE-2018-6631 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110009.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000170.
309 CVE-2018-6630 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x8000014c.
310 CVE-2018-6629 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000118.
311 CVE-2018-6628 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x8000010c.
312 CVE-2018-6627 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In WatchDog Anti-Malware 2.74.186.150, the driver file (ZAMGUARD32.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80002054.
313 CVE-2018-6626 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000035.
314 CVE-2018-6625 20 DoS 2018-02-05 2018-02-22
6.1
None Local Low Not required Partial Partial Complete
In WatchDog Anti-Malware 2.74.186.150, the driver file (ZAMGUARD32.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x80002010.
315 CVE-2018-6624 425 Bypass 2018-02-05 2019-10-03
7.5
None Remote Low Not required Partial Partial Partial
OMRON NS devices 1.1 through 1.3 allow remote attackers to bypass authentication via a direct request to the .html file for a specific screen, as demonstrated by monitor.html.
316 CVE-2018-6621 125 DoS 2018-02-05 2021-03-02
4.3
None Remote Medium Not required None None Partial
The decode_frame function in libavcodec/utvideodec.c in FFmpeg through 3.2 allows remote attackers to cause a denial of service (out of array read) via a crafted AVI file.
317 CVE-2018-6620 284 2018-02-04 2018-02-27
5.0
None Remote Low Not required None Partial None
Odoo does not require authentication to be configured for a Backup Database action.
318 CVE-2018-6616 400 DoS 2018-02-04 2021-02-03
4.3
None Remote Medium Not required None None Partial
In OpenJPEG 2.3.0, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.
319 CVE-2018-6612 125 2018-02-04 2020-08-24
4.3
None Remote Medium Not required None None Partial
An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing a malicious JPEG file, which may allow a remote attacker to cause a denial-of-service attack or unspecified other impact.
320 CVE-2018-6611 125 2018-02-04 2020-10-15
6.8
None Remote Medium Not required Partial Partial Partial
soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.
321 CVE-2018-6610 200 +Info 2018-02-05 2018-03-01
5.0
None Remote Low Not required Partial None None
Information Leakage exists in the jLike 1.0 component for Joomla! via a task=getUserByCommentId request.
322 CVE-2018-6609 89 Sql 2018-02-05 2018-03-01
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JSP Tickets 1.1 component for Joomla! via the ticketcode parameter in a ticketlist edit action, or the id parameter in a statuslist (or prioritylist) edit action.
323 CVE-2018-6606 732 2018-02-04 2019-10-03
4.6
None Local Low Not required Partial Partial Partial
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by sending IOCTL 0x80002010 and then using IOCTL 0x8000204C to \\.\ZemanaAntiMalware to elevate privileges.
324 CVE-2018-6605 89 Sql 2018-02-05 2018-02-28
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request.
325 CVE-2018-6604 89 Sql 2018-02-05 2018-02-28
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the Zh YandexMap 6.2.1.0 component for Joomla! via the id parameter in a task=getPlacemarkDetails request.
326 CVE-2018-6603 79 XSS Http R.Spl. 2018-02-07 2020-08-24
4.3
None Remote Medium Not required None Partial None
Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie.
327 CVE-2018-6596 200 +Info 2018-02-03 2018-03-02
6.4
None Remote Low Not required Partial Partial None
webhooks/base.py in Anymail (aka django-anymail) before 1.2.1 is prone to a timing attack vulnerability on the WEBHOOK_AUTHORIZATION secret, which allows remote attackers to post arbitrary e-mail tracking events.
328 CVE-2018-6594 326 +Info 2018-02-03 2020-07-31
5.0
None Remote Low Not required Partial None None
lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The Decisional Diffie-Hellman (DDH) assumption does not hold for PyCrypto's ElGamal implementation.
329 CVE-2018-6593 732 2018-02-03 2019-10-03
4.6
None Local Low Not required Partial Partial Partial
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by connecting to the filter communication port and then using IOCTL 0x8000204C to \\.\ZemanaAntiMalware to elevate privileges.
330 CVE-2018-6592 404 2018-02-19 2019-10-03
4.6
None Local Low Not required Partial Partial Partial
Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage.
331 CVE-2018-6591 200 +Info 2018-02-19 2018-07-20
5.0
None Remote Low Not required Partial None None
Converse.js and Inverse.js through 3.3 allow remote attackers to obtain sensitive information because it is too difficult to determine whether safe publication of private data was configured or even intended. For example, users might have an expectation that chatroom bookmarks are private, but the various interacting software components do not necessarily make that happen.
332 CVE-2018-6585 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filter_creator or filter_events_cat parameter.
333 CVE-2018-6584 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request.
334 CVE-2018-6583 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the Timetable Responsive Schedule 1.5 component for Joomla! via a view=event&alias= request.
335 CVE-2018-6582 89 Sql 2018-02-05 2018-02-28
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request.
336 CVE-2018-6581 89 Sql 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JMS Music 1.1.1 component for Joomla! via a search with the keyword, artist, or username parameter.
337 CVE-2018-6580 434 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request.
338 CVE-2018-6579 89 Sql 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JEXTN Reverse Auction 3.1.0 component for Joomla! via a view=products&uid= request.
339 CVE-2018-6578 89 Sql 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JE PayperVideo 3.0.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request.
340 CVE-2018-6577 89 Sql 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JEXTN Membership 3.1.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request.
341 CVE-2018-6576 89 Sql 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter.
342 CVE-2018-6575 89 Sql 2018-02-02 2018-02-14
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JEXTN Classified 1.0.0 component for Joomla! via a view=boutique&sid= request.
343 CVE-2018-6574 94 Exec Code 2018-02-07 2019-10-03
4.6
None Local Low Not required Partial Partial Partial
Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.
344 CVE-2018-6569 287 2018-02-06 2018-03-13
10.0
None Remote Low Not required Complete Complete Complete
West Wind Web Server 6.x does not require authentication for /ADMIN.ASP.
345 CVE-2018-6561 79 XSS 2018-02-02 2018-02-15
4.3
None Remote Medium Not required None Partial None
dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.
346 CVE-2018-6560 436 2018-02-02 2019-10-03
4.6
None Local Low Not required Partial Partial Partial
In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x before 0.10.3, crafted D-Bus messages to the host can be used to break out of the sandbox, because whitespace handling in the proxy is not identical to whitespace handling in the daemon.
347 CVE-2018-6551 787 2018-02-02 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
The malloc implementation in the GNU C Library (aka glibc or libc6), from version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not properly handle malloc calls with arguments close to SIZE_MAX and could return a pointer to a heap region that is smaller than requested, eventually leading to heap corruption.
348 CVE-2018-6550 79 XSS 2018-02-02 2018-02-14
3.5
None Remote Medium ??? None Partial None
Monstra CMS through 3.0.4 has XSS in the title function in plugins/box/pages/pages.plugin.php via a page title to admin/index.php.
349 CVE-2018-6548 416 2018-02-02 2018-02-21
7.5
None Remote Low Not required Partial Partial Partial
A use-after-free issue was discovered in libwebm through 2018-02-02. If a Vp9HeaderParser was initialized once before, its property frame_ would not be changed because of code in vp9parser::Vp9HeaderParser::SetFrame. Its frame_ could be freed while the corresponding pointer would not be updated, leading to a dangling pointer. This is related to the function OutputCluster in webm_info.cc.
350 CVE-2018-6545 79 XSS 2018-02-02 2018-02-14
4.3
None Remote Medium Not required None Partial None
Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site Scripting (XSS) vulnerability, as demonstrated by human.aspx. Attackers can leverage this vulnerability to send malicious messages to other users in order to steal session cookies and launch client-side attacks.
Total number of vulnerabilities : 1328   Page : 1 2 3 4 5 6 7 (This Page)8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.