BugTraq Mode:
(Page 2 of 1565)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
NEW VMSA-2014-0011 VMware vSphere Data Protection product update addresses a critical information disclosure vulnerability 2014-10-24
VMware Security Response Center (security vmware com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------

VMware Security Advisory

Advisory ID: VMSA-2014-0011
Synopsis: VMware vSphere Data Protection product update addresses a
critical information

[ more ]  [ reply ]
iTunes 12.0.1 for Windows: still COMPLETELY outdated and VULNERABLE 3rd party libraries 2014-10-24
Stefan Kanthak (stefan kanthak nexgo de)
Hi @ll,

the just released iTunes 12.0.1 for Windows still (cf.
<http://seclists.org/fulldisclosure/2014/Jul/30>) comes
with COMPLETELY outdated and VULNERAEBLE 3rd party libraries
(as part of AppleMobileDeviceSupport.msi):

* libeay32.dll and ssleay32.dll 0.9.8d

are more than SEVEN years old a

[ more ]  [ reply ]
Still beginner's errors (and outdated 3rd party components) in QuickTime 7.7.6 and iTunes 12.0.1 2014-10-24
Stefan Kanthak (stefan kanthak nexgo de)
Hi @ll,

the just released QuickTime 7.7.6 and iTunes 12.0.1 for Windows still
have quite some of the beginners errors I documented in
<http://seclists.org/fulldisclosure/2014/Aug/33> and
<http://seclists.org/fulldisclosure/2014/Aug/44>

QuickTime 7.7.6:

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\Media\

[ more ]  [ reply ]
[ MDVSA-2014:209 ] java-1.7.0-openjdk 2014-10-24
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:209
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2014:208 ] phpmyadmin 2014-10-24
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:208
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2014:207 ] ejabberd 2014-10-24
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:207
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2014:206 ] ctags 2014-10-24
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:206
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[slackware-security] glibc (SSA:2014-296-01) 2014-10-24
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] glibc (SSA:2014-296-01)

New glibc packages are available for Slackware 14.1 and -current to fix
security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/glibc-2.17-i

[ more ]  [ reply ]
[KIS-2014-12] TestLink <= 1.9.12 (database.class.php) Path Disclosure Weakness 2014-10-23
Egidio Romano (research karmainsecurity com)
----------------------------------------------------------------
TestLink <= 1.9.12 (database.class.php) Path Disclosure Weakness
----------------------------------------------------------------

[-] Software Link:

http://testlink.org/

[-] Affected Versions:

Version 1.9.12 and prior versions.

[ more ]  [ reply ]
[KIS-2014-11] TestLink <= 1.9.12 (execSetResults.php) PHP Object Injection Vulnerability 2014-10-23
Egidio Romano (research karmainsecurity com)
------------------------------------------------------------------------
--
TestLink <= 1.9.12 (execSetResults.php) PHP Object Injection Vulnerability
------------------------------------------------------------------------
--

[-] Software Link:

http://testlink.org/

[-] Affected Versions:

Versio

[ more ]  [ reply ]
[SECURITY] [DSA 3055-1] pidgin security update 2014-10-23
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3055-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
October 23, 2014

[ more ]  [ reply ]
OpenBSD <= 5.5 Local Kernel Panic 2014-10-23
Alejandro Hernandez (alejandro hernandez ioactive co uk)
OpenBSD <= 5.5 (All architectures) is prone to a local DoS condition by triggering a kernel panic through a malformed ELF executable.

A patch has been released to address this issue. See "013 Reliability Fix" at:
http://www.openbsd.org/errata55.html#013_kernexec

More details and PoC code:
http:/

[ more ]  [ reply ]
[ MDVSA-2014:203 ] openssl 2014-10-23
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:203
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2014:204 ] libxml2 2014-10-23
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:204
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
File Manager v4.2.10 iOS - Code Execution Vulnerability 2014-10-23
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
File Manager v4.2.10 iOS - Code Execution Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1343

Release Date:
=============
2014-10-21

Vulnerability Laboratory ID (VL-ID):
===============================

[ more ]  [ reply ]
Dell SonicWall GMS v7.2.x - Persistent Web Vulnerability 2014-10-23
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Dell SonicWall GMS v7.2.x - Persistent Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1222

Release Date:
=============
2014-10-21

Vulnerability Laboratory ID (VL-ID):
==============================

[ more ]  [ reply ]
[ MDVSA-2014:205 ] lua 2014-10-24
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:205
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
APPLE-SA-2014-10-22-1 QuickTime 7.7.6 2014-10-22
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2014-10-22-1 QuickTime 7.7.6

QuickTime 7.7.6 is now available and addresses the following:

QuickTime
Available for: Windows 7, Vista, XP SP2 or later
Impact: Playing a maliciously crafted movie file may lead to an
unexpected application ter

[ more ]  [ reply ]
[slackware-security] pidgin (SSA:2014-296-02) 2014-10-24
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] pidgin (SSA:2014-296-02)

New pidgin packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
and -current to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
p

[ more ]  [ reply ]
[ MDVSA-2014:202 ] php 2014-10-23
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:202
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
ESA-2014-096: EMC Avamar Sensitive Information Disclosure Vulnerability 2014-10-22
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2014-096: EMC Avamar Sensitive Information Disclosure Vulnerability

EMC Identifier: ESA-2014-096

CVE Identifier: CVE-2014-4624

Severity Rating: 7.6 (AV:N/AC:H/Au:N/C:C/I:C/A:C)

Affected products:

? EMC Avamar Data Store (ADS) and A

[ more ]  [ reply ]
ESA-2014-094: EMC Avamar Weak Password Storage Vulnerability 2014-10-22
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2014-094: EMC Avamar Weak Password Storage Vulnerability

EMC Identifier: ESA-2014-094

CVE Identifier: CVE-2014-4623

Severity Rating: 6.6 (AV:L/AC:M/Au:S/C:C/I:C/A:C)

Affected products:

? EMC Avamar Data Store (ADS) GEN4(S) and A

[ more ]  [ reply ]
ESA-2014-087: EMC NetWorker Module for MEDITECH (NMMEDI) Information Disclosure Vulnerability 2014-10-22
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2014-087: EMC NetWorker Module for MEDITECH (NMMEDI) Information Disclosure Vulnerability

EMC Identifier: ESA-2014-087

CVE Identifier: CVE-2014-4620

Severity Rating: CVSS v2 Base Score: 7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)

Affected product

[ more ]  [ reply ]
File Manager v4.2.10 iOS - Code Execution Vulnerability 2014-10-22
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
File Manager v4.2.10 iOS - Code Execution Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1343

Release Date:
=============
2014-10-21

Vulnerability Laboratory ID (VL-ID):
===============================

[ more ]  [ reply ]
iFunBox Free v1.1 iOS - File Include Vulnerability 2014-10-22
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
iFunBox Free v1.1 iOS - File Include Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1344

Release Date:
=============
2014-10-20

Vulnerability Laboratory ID (VL-ID):
====================================

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:23.openssl 2014-10-21
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

========================================================================
=====
FreeBSD-SA-14:23.openssl Security Advisory
The FreeBSD Project

Topic: Op

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:21.routed 2014-10-21
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

========================================================================
=====
FreeBSD-SA-14:21.routed Security Advisory
The FreeBSD Project

Topic: routed(8)

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:20.rtsold 2014-10-21
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

========================================================================
=====
FreeBSD-SA-14:20.rtsold Security Advisory
The FreeBSD Project

Topic: rt

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:22.namei 2014-10-21
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

========================================================================
=====
FreeBSD-SA-14:22.namei Security Advisory
The FreeBSD Project

Topic: me

[ more ]  [ reply ]
CFP The 12th International Joint Conference on e-business and Telecommunications ICETE 2015 2014-10-21
icete secretariat insticc org
Conference name:
The 12th International Joint Conference on e-business and Telecommunications ? ICETE 2015

Venue:
Colmar, Alsace, France

Event date:
20 ? 22 July, 2015

Regular Papers

Paper Submission: March 3, 2015
Authors Notification: April 28, 2015
Camera Ready and Registration: May 12, 2

[ more ]  [ reply ]
(Page 2 of 1565)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus