BugTraq Mode:
(Page 5 of 1603)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
APPLE-SA-2015-04-08-1 Safari 8.0.5, Safari 7.1.5, and Safari 6.2.5 2015-04-08
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2015-04-08-1 Safari 8.0.5, Safari 7.1.5, and Safari 6.2.5

Safari 8.0.5, Safari 7.1.5, and Safari 6.2.5 are now available and
address the following:

Safari
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5,
and OS X Yosemite v

[ more ]  [ reply ]
Cisco Security Advisory: Cisco ASA FirePOWER Services and Cisco ASA CX Services Crafted Packets Denial of Service Vulnerability 2015-04-08
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco ASA FirePOWER Services and Cisco ASA CX Services Crafted Packets Denial of Service Vulnerability

Advisory ID: cisco-sa-20150408-cxfp

Revision 1.0

For Public Release 2015 April 8 16:00 UTC (GMT)

+-----------------------------------------------

[ more ]  [ reply ]
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2015-04-08
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Multiple Vulnerabilities in Cisco ASA Software

Advisory ID: cisco-sa-20150408-asa

Revision 1.0

For Public Release 2015 April 8 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

Cisco Adaptive S

[ more ]  [ reply ]
[HITB-Announce] HITB GSEC 2015 Singapore - Call for Papers 2015-04-08
Hafez Kamal (aphesz hackinthebox org)
The Call for Papers for the inaugural Hack In The Box GSEC conference in
Singapore is now open.

Call for Papers: http://gsec.hitb.org/call-for-papers/
Event Website: http://gsec.hitb.org/sg2015/

HITB GSEC is a three-day security conference limited to 111 attendees
who vote on the final agenda of t

[ more ]  [ reply ]
[CVE-2015-2926] XSS vuln in phpTrafficA 2015-04-08
Daniël Geerts (dgeerts nikhef nl)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Product: phpTrafficA
Product page: http://soft.zoneo.net/phpTrafficA/
Affected versions: Up to and including 2.3 (latest as of writing).

Description:
The user agent string provided by the browser is not sanitized nor
escaped when handled. This strin

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-15:04.igmp [REVISED] 2015-04-07
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-15:04.igmp Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
[security bulletin] HPSBHF03310 rev.1 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code 2015-04-07
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04629160

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04629160
Version: 1

HPSBHF03310 re

[ more ]  [ reply ]
FreeBSD 10.x ZFS encryption.key disclosure (CVE-2015-1415) 2015-04-07
Pierre Kim (pierre kim sec gmail com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

## Advisory Information

Title: FreeBSD 10.x ZFS encryption.key disclosure (CVE-2015-1415)
Advisory URL: https://pierrekim.github.io/advisories/CVE-2015-1415.txt.asc
Date published: 2015-04-07
Vendors contacted: FreeBSD
Release mode: Coordinated relea

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-15:07.ntp 2015-04-07
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-15:07.ntp Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-15:09.ipv6 2015-04-07
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-15:09.ipv6 Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-15:08.bsdinstall 2015-04-07
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-15:08.bsdinstall Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
CA20150407-01: Security Notice for CA Spectrum 2015-04-07
Kotas, Kevin J (Kevin Kotas ca com)
-----BEGIN PGP SIGNED MESSAGE-----

CA20150407-01: Security Notice for CA Spectrum

Issued: April 7, 2015

CA Technologies Support is alerting customers to multiple potential
risks with CA Spectrum. Two vulnerabilities exist that can
potentially allow a remote authenticated attacker to gain sensitiv

[ more ]  [ reply ]
Reflected Cross-Site Scripting vulnerability in asdoc generated documentation 2015-04-07
Securify B.V. (lists securify nl)
------------------------------------------------------------------------

Reflected Cross-Site Scripting vulnerability in asdoc generated
documentation
------------------------------------------------------------------------

Radjnies Bhansingh, March 2014

--------------------------------------------

[ more ]  [ reply ]
[SECURITY] [DSA 3057-2] libxml2 regression update 2015-04-07
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3057-2 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
April 07, 2015

[ more ]  [ reply ]
CVE-2015-1773 Apache Flex reflected XSS vulnerability 2015-04-07
Tom Chiverton (tomc apache org)
CVE-2015-1773 Apache Flex reflected XSS vulnerability

Severity: Low

Vendor: The Apache Software Foundation

Versions Affected:
All versions of Apache Flex before 4.14.1

Description:
The asdoc tool produced JavaScript code that was vulnerable to a reflected XSS attack. A request with a specially c

[ more ]  [ reply ]
[CVE-2015-0779]: Novell ZenWorks Configuration Management remote code execution 2015-04-07
Pedro Ribeiro (pedrib gmail com)
Hi,

I've found a reported an unrestricted file upload vulnerability in
Novell ZenWorks Configuration Management which can be abused to
achieve remote code execution.

The full advisory text is below, and can also be obtained from my repo
[1]. A Metasploit module has been submitted and should hopefu

[ more ]  [ reply ]
[ MDVSA-2015:196 ] cups-filters 2015-04-07
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:196
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:195 ] python-django 2015-04-07
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:195
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:193 ] libtasn1 2015-04-07
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:193
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[security bulletin] HPSBGN03306 rev.1 - HP IceWall SSO MCRP, SSO Dfw, and SSO Agent running OpenSSL, Remote Denial of Service (DoS) 2015-04-07
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04626468

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04626468
Version: 1

HPSBGN03306 re

[ more ]  [ reply ]
[SECURITY] [DSA 3216-1] tor security update 2015-04-06
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3216-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
April 06, 2015

[ more ]  [ reply ]
[security bulletin] HPSBMU03296 rev.1 - HP BladeSystem c-Class Onboard Administrator running OpenSSL, Remote Denial of Service (DoS) 2015-04-06
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04599440

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04599440
Version: 1

HPSBMU03296 r

[ more ]  [ reply ]
[SECURITY] [DSA 3215-1] libgd2 security update 2015-04-06
Alessandro Ghedini (ghedo debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3215-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Alessandro Ghedini
April 06, 2015

[ more ]  [ reply ]
[SECURITY] [DSA 3214-1] mailman security update 2015-04-06
Thijs Kinkhorst (thijs debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3214-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Thijs Kinkhorst
April 06, 2015

[ more ]  [ reply ]
[SECURITY] [DSA 3213-1] arj security update 2015-04-06
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3213-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
April 06, 2015

[ more ]  [ reply ]
Security Audit Notes = Kerberos (krb5-1.13) issues - Advanced Information Security Corp 2015-04-06
Nicholas Lemonias. (lem nikolas googlemail com)
-=[Advanced Information Security Corp]=-

Nicholas Lemonias
Report Date: 3/4/2015
Email: lem.nikolas (at) gmail (dot) com [email concealed]

Introduction
==============
During a source-code audit of the krb5-1.13 stable release (15 October 2014)
implementation for linux; conducted internally by the Advanced
Informati

[ more ]  [ reply ]
Security Audit Notes - Kerberos Security Issues (krb5-1.13 stable) - Advanced Information Security Corp. 2015-04-06
lem nikolas gmail com
-=[Advanced Information Security Corp]=-

Nicholas Lemonias
Report Date: 3/4/2015
Email: lem.nikolas (at) gmail (dot) com [email concealed]

Introduction
==============
During a source-code audit of the krb5-1.13 stable release (15 October 2014)
implementation for linux; conducted internally by the Advanced

[ more ]  [ reply ]
HotExBilling Manager Cross-site scripting (XSS) vulnerability 2015-04-05
bhadresh patel helpag com
Title:
====

HotExBilling Manager ? Cross-site scripting (XSS) vulnerability

Credit:
======

Name: Bhadresh Patel
Company/affiliation: HelpAG
Website: www.helpag.com

CVE:
=====

CVE-2015-2781

Date:
====

12-03-2015 (dd/mm/yyyy)

Vendor:
======

Hotspot Express has been in the billing solution bus

[ more ]  [ reply ]
[ MDVSA-2015:192 ] subversion 2015-04-03
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:192
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17 2015-04-03
Larry W. Cashdollar (larry0 me com)
Title: Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17
Author: Larry W. Cashdollar, @_larry0
Date: 2015-03-29
Download Site: https://wordpress.org/plugins/videowhisper-video-presentation/
Vendor: http://www.videowhisper.com/
Vendor Notified: 2015-03-29,

[ more ]  [ reply ]
(Page 5 of 1603)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus