BenTasker.co.uk

Home
Blog
Whitepapers
Documentation
Videos
Shop
Photography

Home / Blog / Security

Latest Posts

HLS Stream Creator V1.0
Nintendo Switch Joycon Analog Stick Replacement
Python3 - TypeError: encoding without a string argument
Improving Nextcloud's Thumbnail Response Time
Spamhaus still parties like it's 1999

This site should work without Javascript enabled. If you find something doesn't, please Contact Me.

Security

Spamhaus still parties like it's 1999	16 October 2019
Twitter Screws Up With Data It Shouldn't Hold	09 October 2019
The Curious Case of BitFi and Secret Persistence	16 July 2019
A guide to designing Account Security Mechanisms	26 March 2017
Don't Use Web2Tor/Tor2Web (especially Onion.cab)	04 March 2017
The State of Mobile Banking (in the UK)	21 June 2016
The DVLA is routinely sending sensitive details via email	28 December 2014
Understanding Password Storage	22 June 2014
My Own Little HeartBleed Headache	19 April 2014
Why You Shouldn't be using SHA1 or MD5 to Store Passwords	07 June 2013

Page 1 of 3

Start
Prev
1
2
3
Next
End

Recent CVEs

CVE-2011-0703 (debian_linux, gksu-polkit)
CVE-2011-2726 (debian_linux, drupal, enterprise_linux, fedora)
CVE-2011-3349 (lightdm)
CVE-2011-3350 (masqmail)
CVE-2011-3374 (apt, debian_linux)
CVE-2011-3583 (typo3)
CVE-2011-3584 (wec_discussion_forum)
CVE-2011-3596 (debian_linux, polipo)
CVE-2011-3630 (debian_linux, enterprise_linux, hardlink)
CVE-2011-3631 (debian_linux, enterprise_linux, hardlink)

Return to listing

CVE-2011-0703 (debian_linux, gksu-polkit)

In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session.

CVE-2011-2726 (debian_linux, drupal, enterprise_linux, fedora)

An access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability to attach File upload fields to any entity type in the system or has the ability to point individual File upload fields to the private file directory in comments, and the parent node is denied access, non-privileged users can still download the file attached to the comment if they know or guess its direct URL.

CVE-2011-3349 (lightdm)

lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.

CVE-2011-3350 (masqmail)

masqmail 0.2.21 through 0.2.30 improperly calls seteuid() in src/log.c and src/masqmail.c that results in improper privilege dropping.

CVE-2011-3374 (apt, debian_linux)

It was found that apt-key in apt, all versions, do not correctly validate gpg keys with the master keyring, leading to a potential man-in-the-middle attack.

CVE-2011-3583 (typo3)

It was found that Typo3 Core versions 4.5.0 - 4.5.5 uses prepared statements that, if the parameter values are not properly replaced, could lead to a SQL Injection vulnerability. This issue can only be exploited if two or more parameters are bound to the query and at least two come from user input.

CVE-2011-3584 (wec_discussion_forum)

The TYPO3 Core wec_discussion extension before 2.1.1 is vulnerable to SQL Injection due to improper sanitation of user-supplied input.

CVE-2011-3596 (debian_linux, polipo)

Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request.

CVE-2011-3630 (debian_linux, enterprise_linux, hardlink)

Hardlink before 0.1.2 suffer from multiple stack-based buffer overflow flaws because of the way directory trees with deeply nested directories are processed. A remote attacker could provide a specially-crafted directory tree, and trick the local user into consolidating it, leading to hardlink executable crash, or, potentially arbitrary code execution with the privileges of the user running the hardlink executable.

CVE-2011-3631 (debian_linux, enterprise_linux, hardlink)

Hardlink before 0.1.2 has multiple integer overflows leading to heap-based buffer overflows because of the way string lengths concatenation is done in the calculation of the required memory space to be used. A remote attacker could provide a specially-crafted directory tree and trick the local user into consolidating it, leading to hardlink executable crash or potentially arbitrary code execution with user privileges.

Latest Posts

HLS Stream Creator V1.0
Nintendo Switch Joycon Analog Stick Replacement
Python3 - TypeError: encoding without a string argument
Improving Nextcloud's Thumbnail Response Time
Spamhaus still parties like it's 1999

License Details
Privacy Policy
Cookies
Stored Data
Sitemap

Donations BTC: 14hJYqCNLi7yJH8QkUqB2VEg3jx4pXBN5X / https://paypal.me/BTasker

Based on a template by JoomSpirit, customised by B Tasker

JoomSpirit

About this template