Vulnerability & Exploit Database

Displaying all 7 entries

Results for: CVE-2018-4059 Back to search

Debian: CVE-2018-4059: coturn -- security update Vulnerability

  • Severity: 4
  • Published: January 28, 2019

An exploitable unsafe default configuration vulnerability exists in the TURN server function of coTURN prior to version 4.5.0.9. By default, the TURN server runs an unauthenticated telnet admin portal on the loopback interface. This can provide administrator access to the TURN server configuration, which can lead to additional attacks. A...

Ubuntu: USN-3842-1 (CVE-2018-4700): CUPS vulnerability Vulnerability

  • Severity: 4
  • Published: December 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3842-1:

Jann Horn discovered that CUPS incorrectly handled session cookie

randomness. A remote attacker could possibly use this issue to pe...

SUSE: CVE-2018-4700: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-4700:

This CVE is addressed in the SUSE advisories SUSE-SU-2018:4059-1, SUSE-SU-2018:4089-1, openSUSE-SU-2018:4105-1, openSUSE-SU-2018:4141-...

Huawei EulerOS: CVE-2017-16612: libXcursor security update Vulnerability

  • Severity: 5
  • Published: December 01, 2017

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

Huawei EulerOS: CVE-2017-16612: libXcursor security update Vulnerability

  • Severity: 5
  • Published: December 01, 2017

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.

SUSE: CVE-2017-16612: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: November 29, 2017

libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in cursor/xcursor.c in Wayland through 1.14.0.