BugTraq Mode:
(Page 4 of 1676)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
[slackware-security] imagemagick (SSA:2016-132-01) 2016-05-11
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] imagemagick (SSA:2016-132-01)

New imagemagick packages are available for Slackware 14.0, 14.1, and -current
to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/pa

[ more ]  [ reply ]
[security bulletin] HPSBUX03574 rev.1 - HPE HP-UX CIFS-Server (Samba), Remote Access Restriction Bypass, Authentication bypass, Denial of Service (DoS), Unauthorized Access to Files, Access Restriction Bypass, Unauthorized Information Disclosure 2016-05-10
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05115993

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05115993
Version: 1

HPSBUX03574 r

[ more ]  [ reply ]
[security bulletin] HPSBUX03596 rev.1 - HPE HP-UX running CIFS Server (Samba), Remote Access Restriction Bypass, Unauthorized Access 2016-05-10
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05121842

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05121842
Version: 1

HPSBUX03596 r

[ more ]  [ reply ]
[SECURITY] [DSA 3574-1] libarchive security update 2016-05-10
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3574-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 10, 2016

[ more ]  [ reply ]
Intuit QuickBooks 2007 - 2016 Arbitrary Code Execution 2016-05-10
support thegrideon com
+ Credits: Maxim Tomashevich from Thegrideon Software
+ Website: https://www.thegrideon.com/
+ Details: https://www.thegrideon.com/qb-internals-sql.html

Vendor:
---------------------
www.intuit.com
www.intuit.ca
www.intuit.co.uk

Product:
---------------------
QuickBooks Desktop
versions: 2007 - 2

[ more ]  [ reply ]
Trend Micro Direct Pass - Filter Bypass & Cross Site Scripting Vulnerability 2016-05-10
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Trend Micro Direct Pass - Filter Bypass & Cross Site Scripting Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1716

Trend Micro Security ID: 1-1-1039900197

Release Date:
=============
2016-05-01

Vulner

[ more ]  [ reply ]
Stanford University - Multiple SQL Injection Vulnerabilities 2016-05-10
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Stanford University - Multiple SQL Injection Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1829

Release Date:
=============
2016-05-09

Vulnerability Laboratory ID (VL-ID):
==========================

[ more ]  [ reply ]
Notes v4.5 iOS - Arbitrary File Upload Vulnerability 2016-05-10
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Notes v4.5 iOS - Arbitrary File Upload Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1832

Release Date:
=============
2016-04-25

Vulnerability Laboratory ID (VL-ID):
==================================

[ more ]  [ reply ]
Skype Manager - (Email Change) Filter Bypass Vulnerability 2016-05-10
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Skype Manager - (Email Change) Filter Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1672

MSRC Case 32353 TRK:0001002845

Release Date:
=============
2016-05-09

Vulnerability Laboratory ID (VL-I

[ more ]  [ reply ]
Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability 2016-05-10
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1839

Release Date:
=============
2016-04-29

Vulnerability Laboratory ID (VL-ID):
==========

[ more ]  [ reply ]
[security bulletin] HPSBUX03577 SSRT102172 rev.1 - HP-UX VxFS, Local Unauthorized Access to Files 2016-05-09
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05121749

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05121749
Version: 1

HPSBUX03577 S

[ more ]  [ reply ]
[SECURITY] [DSA 3573-1] qemu security update 2016-05-09
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3573-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 09, 2016

[ more ]  [ reply ]
[SECURITY] [DSA 3572-1] websvn security update 2016-05-09
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3572-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 09, 2016

[ more ]  [ reply ]
WordPress Plugin event-registration 6.02.02: SQL-Injection and persistent XSS 2016-05-09
mail michaelhelwig de
* Exploit Title: WordPress Plugin event-registration 6.02.02: SQL-Injection and persistent XSS
* Discovery Date: 2016/03/13
* Public Disclosure Date: 2016/05/09
* Exploit Author: Michael Helwig
* Contact: https://twitter.com/c0dmtr1x | https://codemetrix.net
* Vendor Homepage: http://wpeventregister

[ more ]  [ reply ]
[SECURITY] [DSA 3571-1] ikiwiki security update 2016-05-08
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3571-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
May 08, 2016

[ more ]  [ reply ]
ManageEngine Applications Manager Build No: 12700 Information Disclosure and Un-Authenticated SQL injection. 2016-05-06
Saif El-Sherei (saif sensepost com) (1 replies)
Heya,

Wanted to request CVE for the following issues, that have been fixed by the vendor, fix details are at: https://www.manageengine.com/products/applications_manager/release-notes
.html

[SPSA-2016-02/ManageEngine ApplicationsManager]------------------------------

SECURITY ADVISORY: SPSA-2016

[ more ]  [ reply ]
Re: NetCommWireless HSPA 3G10WVE Wireless Router Multiple vulnerabilities 2016-05-05
bhadresh patel helpag com
Hello Team,

Sorry for the typo in earlier draft.

The correct CVE IDs are both year 2015.

1) Unauthorized access of router's network troubleshooting page (ping.cgi) -- CVE-2015-6023
2) Command injection vulnerability on ping.cgi -- CVE-2015-6024

Regards,
-Bhadresh

[ more ]  [ reply ]
[security bulletin] HPSBMU03584 rev.1 - HPE Network Node Manager I (NNMi), Multiple Remote Vulnerabilities 2016-05-05
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05103564

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05103564
Version: 1

HPSBMU03584 r

[ more ]  [ reply ]
[SECURITY] [DSA 3570-1] mercurial security update 2016-05-05
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3570-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 05, 2016

[ more ]  [ reply ]
[SECURITY] [DSA 3569-1] openafs security update 2016-05-05
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3569-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 05, 2016

[ more ]  [ reply ]
[SECURITY] [DSA 3568-1] libtasn1-6 security update 2016-05-05
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3568-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 05, 2016

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-16:17.openssl 2016-05-04
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-16:17.openssl Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016 2016-05-04
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016

Advisory ID: cisco-sa-20160504-openssl

Revision 1.0

For Public Release 2016 May 04 19:30 GMT (UTC)

+-------------------------------------------------

[ more ]  [ reply ]
ESA-2016-051: Patch 14 for RSA® Authentication Manager 8.1 SP1 to Address Multiple Vulnerabilities 2016-05-04
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2016-051: Patch 14 for RSA® Authentication Manager 8.1 SP1 to Address Multiple Vulnerabilities

EMC Identifier: ESA-2016-051

CVE Identifier: CVE-2016-0900, CVE-2016-0901, CVE-2016-0902

Severity Rating: CVSSv3 Base Score: See below for in

[ more ]  [ reply ]
[SECURITY] [DSA 3567-1] libpam-sshauth security update 2016-05-04
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3567-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
May 04, 2016

[ more ]  [ reply ]
APPLE-SA-2016-05-03-1 Xcode 7.3.1 2016-05-04
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2016-05-03-1 Xcode 7.3.1

Xcode 7.3.1 is now available and addresses the following:

Git
Available for: OS X El Capitan v10.11 and later
Impact: A remote attacker may be able to execute arbitrary code
Description: A heap-based buffer overf

[ more ]  [ reply ]
Cisco Security Advisory: Cisco Adaptive Security Appliance with FirePOWER Services Kernel Logging Denial of Service Vulnerability 2016-05-04
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Adaptive Security Appliance with FirePOWER Services Kernel Logging Denial of Service Vulnerability

Advisory ID: cisco-sa-20160504-fpkern

Revision 1.0

For Public Release 2016 May 4 16:00 UTC (GMT)

+----------------------------------------------

[ more ]  [ reply ]
Cisco Security Advisory: Cisco TelePresence XML Application Programming Interface Authentication Bypass Vulnerability 2016-05-04
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco TelePresence XML Application Programming Interface Authentication Bypass Vulnerability

Advisory ID: cisco-sa-20160504-tpxml

Revision 1.0

For Public Release 2016 May 4 16:00 UTC (GMT)

+-----------------------------------------------------------

[ more ]  [ reply ]
Cisco Security Advisory: Cisco FirePOWER System Software Packet Processing Denial of Service Vulnerability 2016-05-04
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco FirePOWER System Software Packet Processing Denial of Service Vulnerability

Advisory ID: cisco-sa-20160504-firepower

Revision 1.0

For Public Release 2016 May 04 16:00 GMT (UTC)

+-------------------------------------

[ more ]  [ reply ]
(Page 4 of 1676)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus