BugTraq Mode:
(Page 11 of 1617)  < Prev  6 7 8 9 10 11 12 13 14 15 16  Next >
[ MDVSA-2015:231 ] perl-XML-LibXML 2015-05-07
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:231
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[SYSS-2015-018] BullGuard Premium Protection - Authentication Bypass 2015-05-07
matthias deeg syss de
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Advisory ID: SYSS-2015-018
Product: BullGuard Premium Protection
Vendor: BullGuard Ltd.
Affected Version(s): 15.0.297
Tested Version(s): 15.0.297
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-28

[ more ]  [ reply ]
[SYSS-2015-019] BullGuard Antivirus - Authentication Bypass 2015-05-07
matthias deeg syss de
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Advisory ID: SYSS-2015-019
Product: BullGuard Antivirus
Vendor: BullGuard Ltd.
Affected Version(s): 15.0.297
Tested Version(s): 15.0.297
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk L

[ more ]  [ reply ]
[SYSS-2015-017] BullGuard Internet Security - Authentication Bypass 2015-05-07
matthias deeg syss de
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Advisory ID: SYSS-2015-017
Product: BullGuard Internet Security
Vendor: BullGuard Ltd.
Affected Version(s): 15.0.297
Tested Version(s): 15.0.297
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288

[ more ]  [ reply ]
F5 ASM JSON Profile Bypass 2015-05-06
Peter Lapp (lappsec gmail com)
Details
=======

Product: F5 BIG-IP Application Security Manager (ASM)
Vulnerability: Bypass
Author: Peter Lapp, lappsec () gmail com
CVE: None assigned
Vulnerable Versions: Confirmed 11.4.0, 11.4.1. Should apply to all releases.
Fixed Version: None

Summary
=======

The F5 ASM is a web applicatio

[ more ]  [ reply ]
APPLE-SA-2015-05-06-1 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 2015-05-06
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2015-05-06-1 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6

Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 are now available and
address the following:

WebKit
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5,
and OS X Yosemite v

[ more ]  [ reply ]
[SE-2014-02] Some additional GAE Java security sandbox bypasses 2015-05-06
Security Explorations (contact security-explorations com)

Hello All,

Security Explorations released technical details and POC codes for
additional security vulnerabilities found in Google App Engine for
Java. All relevant materials can be found at our SE-2014-02 project
details page:

http://www.security-explorations.com/en/SE-2014-02-details.html

The a

[ more ]  [ reply ]
Alienvault OSSIM/USM Multiple Vulnerabilities 2015-05-06
Peter Lapp (lappsec gmail com)
Details
=======

Product: Alienvault OSSIM/USM
Vulnerability: Multiple Vulnerabilities (XSS, SQLi, Command Execution)
Author: Peter Lapp, lappsec (at) gmail (dot) com [email concealed]
CVE: None assigned
Vulnerable Versions: Tested on 4.14, 4.15, and 5.0. It likely affects
all previous versions as well.
Fixed Version: No fix ha

[ more ]  [ reply ]
[SECURITY] [DSA 3252-1] sqlite3 security update 2015-05-06
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3252-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
May 06, 2015

[ more ]  [ reply ]
CSRF/XSS In Ultimate Profile Builder by CMSLive Wordpress Plugin 2015-05-06
kingkaustubh me com
================================================================
CSRF/Stored XSS Vulnerability in Ultimate profile Builder Plugin
================================================================

. contents:: Table Of Content

Overview
========

* Title :CSRF and Stored XSS Vulnerability in Ultima

[ more ]  [ reply ]
CSRF/XSS In ClickBank ads Wordpress Plugin 2015-05-06
kingkaustubh me com
================================================================
CSRF/Stored XSS Vulnerability in ClickBank Ads V 1.7 Plugin
================================================================

. contents:: Table Of Content

Overview
========

* Title :CSRF and Stored XSS Vulnerability in ClickBank A

[ more ]  [ reply ]
CSRF/XSS In Manage Engine Asset Explorer 2015-05-06
kingkaustubh me com
========================================================================
=======
CSRF/Stored XSS Vulnerability in Manage Engine Asset Explorer
========================================================================
=======

. contents:: Table Of Content

Overview
========

* Title :CSRF/Stored XSS v

[ more ]  [ reply ]
CSRF/XSSIn Ad_InSerter Wordpress 2015-05-06
kingkaustubh me com
================================================================
CSRF/Stored XSS Vulnerability in Ad Inserter Plugin
================================================================

. contents:: Table Of Content

Overview
========

* Title :CSRF and Stored XSS Vulnerability in Ad Inserter Wordpre

[ more ]  [ reply ]
CSRF/XSS In Embed ArticlesWordpress Plugin 2015-05-06
kingkaustubh me com
======================================================
CSRF/Stored XSS Vulnerability in embed articles Plugin
======================================================

. contents:: Table Of Content

Overview
========

* Title :CSRF and Stored XSS Vulnerability in embed-articles Wordpress Plugin
* Au

[ more ]  [ reply ]
Cisco Security Advisory: Cisco UCS Central Software Arbitrary Command Execution Vulnerability 2015-05-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco UCS Central Software Arbitrary Command Execution Vulnerability

Advisory ID: cisco-sa-20150506-ucsc

Revision 1.0

For Public Release 2015 May 6 16:00 UTC (GMT)

+---------------------------------------------------------

[ more ]  [ reply ]
Advisory: Filezilla FTP server is vulnerable to FTP PORT bounce 2015-05-06
Amit Klein (aksecurity gmail com)
Dear list

A security advisory for Filezilla FTP server versions 0.8.0-0.9.50 is
available at http://www.securitygalore.com/site3/filezilla_ftp_server_advisory
A new version of Filezilla FTP server (0.9.51) is available for
immediate download at
https://filezilla-project.org/download.php?type=server

[ more ]  [ reply ]
TORNADO Computer Trading CMS - SQL Injection Vulnerability 2015-05-06
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
TORNADO Computer Trading CMS - SQL Injection Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1489

Release Date:
=============
2015-05-05

Vulnerability Laboratory ID (VL-ID):
============================

[ more ]  [ reply ]
PDF Converter & Editor 2.1 iOS - File Include Vulnerability 2015-05-06
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PDF Converter & Editor 2.1 iOS - File Include Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1480

Release Date:
=============
2015-05-06

Vulnerability Laboratory ID (VL-ID):
===========================

[ more ]  [ reply ]
[ MDVSA-2015:230 ] squid 2015-05-06
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:230
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:229 ] net-snmp 2015-05-06
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:229
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:228 ] nodejs 2015-05-06
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:228
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Arbitrary Variable Overwrite in eShop WordPress Plugin 2015-05-06
High-Tech Bridge Security Research (advisory htbridge ch)
Advisory ID: HTB23255
Product: eShop WordPress plugin
Vendor: Rich Pedley
Vulnerable Version(s): 6.3.11 and probably prior
Tested Version: 6.3.11
Advisory Publication: April 15, 2015 [without technical details]
Vendor Notification: April 15, 2015
Public Disclosure: May 6, 2015
Vulnerability Typ

[ more ]  [ reply ]
[SECURITY] CVE-2014-0230: Apache Tomcat DoS 2015-05-05
Mark Thomas (markt apache org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

CVE-2014-0230 Denial of Service

Severity: Low

Vendor: The Apache Software Foundation

Versions Affected:
- - Apache Tomcat 8.0.0-RC1 to 8.0.8
- - Apache Tomcat 7.0.0 to 7.0.54
- - Apache Tomcat 6.0.0 to 6.0.43

Description:
When a response for a req

[ more ]  [ reply ]
F5 BIG-IQ Enumeration of users and Information Disclosure 2015-05-05
jplopezy gmail com

Hi,

I'm testing BIG-IQ v 0.0.7028,( no the last HF but i don't see the bug fix in the HF1) the new mngmt of F5 BIG-IP, i see that you are loggout and join to the next link

LINK : (where $user is the user)

https://127.0.0.1/mgmt/shared/authz/users/$user/

When i open this link and try some diff

[ more ]  [ reply ]
[SECURITY] [DSA 3251-1] dnsmasq security update 2015-05-05
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3251-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
May 05, 2015

[ more ]  [ reply ]
[ MDVSA-2015:227 ] mariadb 2015-05-05
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:227
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability 2015-05-05
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1354

Security Bulletin FortiGuard: http://www.fortiguard.com/advisory/FG-IR-15-005/

[ more ]  [ reply ]
vPhoto-Album v4.2 iOS - File Include Web Vulnerability 2015-05-05
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
vPhoto-Album v4.2 iOS - File Include Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1477

Release Date:
=============
2015-05-05

Vulnerability Laboratory ID (VL-ID):
================================

[ more ]  [ reply ]
[CVE-2014-8146/8147] - ICU heap and integer overflows / I-C-U-FAIL 2015-05-05
Pedro Ribeiro (pedrib gmail com)
tl;dr heap and integer overflows in ICU, many packages affected,
unknown if these can be exploited or not - everyone names vulns
nowadays, so I name these I-C-U-FAIL.

Hi,

I have found two vulnerabilities in the ICU library while fuzzing
LibreOffice, full details in the advisory below.
Disclosure o

[ more ]  [ reply ]
[SECURITY] [DSA 3250-1] wordpress security update 2015-05-04
Alessandro Ghedini (ghedo debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3250-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Alessandro Ghedini
May 04, 2015

[ more ]  [ reply ]
(Page 11 of 1617)  < Prev  6 7 8 9 10 11 12 13 14 15 16  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus