BugTraq Mode:
(Page 5 of 1528)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
[SECURITY] [DSA 2890-1] libspring-java security update 2014-03-29
Florian Weimer (fw deneb enyo de)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2890-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Florian Weimer
March 29, 2014

[ more ]  [ reply ]
[slackware-security] openssh (SSA:2014-086-06) 2014-03-28
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] openssh (SSA:2014-086-06)

New openssh packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
and -current to fix a security issue.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------

[ more ]  [ reply ]
[slackware-security] mozilla-firefox (SSA:2014-086-03) 2014-03-28
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mozilla-firefox (SSA:2014-086-03)

New mozilla-firefox packages are available for Slackware 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/

[ more ]  [ reply ]
[slackware-security] mozilla-nss (SSA:2014-086-04) 2014-03-28
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mozilla-nss (SSA:2014-086-04)

New mozilla-nss packages are available for Slackware 14.0, 14.1, and -current to
fix a security issue.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/p

[ more ]  [ reply ]
[slackware-security] mozilla-thunderbird (SSA:2014-086-05) 2014-03-28
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mozilla-thunderbird (SSA:2014-086-05)

New mozilla-thunderbird packages are available for Slackware 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+

[ more ]  [ reply ]
Deutsche Telekom CERT Advisory [DTC-A-20140324-002] update140328 - vulnerabilities in check_mk 2014-03-28
CERT telekom de
Deutsche Telekom CERT Advisory [DTC-A-20140324-002] update140328

Summary:
Several vulnerabilities were found in check_mk version 1.2.2p2.

Update to original advisory:
Corrected: vulnerability 5 and 6 (not 4 and 5) are currently not fixed.

The vulnerabilities are:
1 - Reflected Cross-Site Script

[ more ]  [ reply ]
iStArtApp FileXChange v6.2 iOS - Multiple Web Vulnerabilities 2014-03-28
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
iStArtApp FileXChange v6.2 iOS - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1237

Release Date:
=============
2014-03-26

Vulnerability Laboratory ID (VL-ID):
=========================

[ more ]  [ reply ]
[RT-SA-2014-002] rexx Recruitment: Cross-Site Scripting in User Registration 2014-03-27
RedTeam Pentesting GmbH (release redteam-pentesting de)
Advisory: rexx Recruitment Cross-Site Scripting in User Registration

RedTeam Pentesting discovered a cross-site scripting (XSS) vulnerability
in rexx Recruitment's user registration page during a penetration test.
If attackers can persuade users to click on a prepared link or
redirected them to suc

[ more ]  [ reply ]
[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update 2014-03-27
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2888-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
March 27, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 2887-1] ruby-actionmailer-3.2 security update 2014-03-27
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2887-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
March 27, 2014

[ more ]  [ reply ]
[security bulletin] HPSBST02968 rev.2 - HP StoreOnce, Remote Unauthorized Access 2014-03-27
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04126368

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04126368
Version: 2

HPSBST02968 re

[ more ]  [ reply ]
ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1230

Release Date:
=============
2014-03-25

Vulnerability Laboratory ID (VL-ID):
=================================

[ more ]  [ reply ]
ES746 DELL Support-Bulletin - EMS Vulnerability Resolved 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
ES746 DELL Support-Bulletin - EMS Vulnerability Resolved

References:
===========
http://www.vulnerability-lab.com/get_content.php?id=1241

Download: http://www.vulnerability-lab.com/resources/bulletins/Support-Bulletin_Em
ail-Security_Scripting_Vulnerability__Resolve

[ more ]  [ reply ]
My Photo Wifi Share & PS 1.1 iOS - Local Command Injection Vulnerability 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
My Photo Wifi Share & PS 1.1 iOS - Local Command Injection Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1232

Release Date:
=============
2014-03-24

Vulnerability Laboratory ID (VL-ID):
==============

[ more ]  [ reply ]
SEC Consult SA-20140328-0 :: Multiple vulnerabilities in Symantec LiveUpdate Administrator 2014-03-28
SEC Consult Vulnerability Lab (research sec-consult com)
SEC Consult Vulnerability Lab Security Advisory < 20140328-0 >
=======================================================================
title: Multiple critical vulnerabilities
product: Symantec LiveUpdate Administrator
vulnerable version: <= 2.3.2.99
fixed version: 2

[ more ]  [ reply ]
Easy FileManager 1.1 iOS - Multiple Web Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Easy FileManager 1.1 iOS - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1234

Release Date:
=============
2014-03-25

Vulnerability Laboratory ID (VL-ID):
===============================

[ more ]  [ reply ]
Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1233

Release Date:
=============
2014-03-21

Vulnerability Laboratory ID (VL-ID):
========================

[ more ]  [ reply ]
FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1231

Release Date:
=============
2014-03-20

Vulnerability Laboratory ID (VL-ID):
=============================

[ more ]  [ reply ]
Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1229

Release Date:
=============
2014-03-19

Vulnerability Laboratory ID (VL-ID):
==============================

[ more ]  [ reply ]
Dell SonicWall EMail Security Appliance Application v7.4.5 - Multiple Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Dell SonicWall EMail Security Appliance Application v7.4.5 - Multiple Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1191

Dell (SonicWall) Security Bulletin: http://www.sonicwall.com/us/shared/download/

[ more ]  [ reply ]
[SECURITY] [DSA 2889-1] postfixadmin security update 2014-03-28
Thijs Kinkhorst (thijs debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2889-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Thijs Kinkhorst
March 28, 2014

[ more ]  [ reply ]
[oCERT-2014-003] LibYAML input sanitization errors 2014-03-26
Andrea Barisani (lcars ocert org)

#2014-003 LibYAML input sanitization errors

Description:

The LibYAML project is an open source YAML 1.1 parser and emitter written in
C.

The library is affected by a heap-based buffer overflow which can lead to
arbitrary code execution. The vulnerability is caused by lack of proper
expansion for

[ more ]  [ reply ]
ESA-2014-016: EMC VPLEX Multiple Vulnerabilities 2014-03-26
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2014-016: EMC VPLEX Multiple Vulnerabilities

EMC Identifier: ESA-2014-016

CVE Identifier: See below for individual CVEs

Severity Rating: CVSS v2 Base Score: See below for individual CVSS scores

Affected products:

All versions from

[ more ]  [ reply ]
[SECURITY] [DSA 2886-1] libxalan2-java security update 2014-03-26
Florian Weimer (fw deneb enyo de)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2886-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Florian Weimer
March 26, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 2885-1] libyaml-libyaml-perl security update 2014-03-26
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2885-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
March 26, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 2884-1] libyaml security update 2014-03-26
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2884-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
March 26, 2014

[ more ]  [ reply ]
Firefox for Android Profile Directory Derandomization and Data Exfiltration (CVE-2014-1484, CVE-2014-1506, CVE-2014-1515, CVE-2014-1516) 2014-03-26
Roee Hay (roeeh il ibm com)
Hi,

We have recently discovered a series of vulnerabilities in Firefox for Android
that allows a malicious application to successfully derandomize
the Firefox profile directory name in a practical amount of time
and then leak sensitive data (such as cookies and cached
information) which reside in t

[ more ]  [ reply ]
Cisco Security Advisory: Cisco IOS Software Crafted IPv6 Packet Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco IOS Software Crafted IPv6 Packet Denial of Service Vulnerability

Advisory ID: cisco-sa-20140326-ipv6

Revision 1.0

For Public Release 2014 March 26 16:00 UTC (GMT)

Summary
=======

A vulnerability in the implementation of the IP version 6 (IPv

[ more ]  [ reply ]
Cisco Security Advisory: Cisco IOS Software SSL VPN Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco IOS Software SSL VPN Denial of Service Vulnerability

Advisory ID: cisco-sa-20140326-ios-sslvpn

Revision 1.0

For Public Release 2014 March 26 16:00 UTC (GMT)

Summary
=======

A vulnerability in the Secure Sockets Layer (SSL) VPN subsystem of C

[ more ]  [ reply ]
Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco IOS Software Network Address Translation Vulnerabilities

Advisory ID: cisco-sa-20140326-nat

Revision 1.0

For Public Release 2014 March 26 16:00 UTC (GMT)

Summary

The Cisco IOS Software implementation of the Network Address Translation (NAT)

[ more ]  [ reply ]
(Page 5 of 1528)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus