BugTraq Mode:
(Page 5 of 1570)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small Business RV Series Routers 2014-11-05
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small
Business RV Series Routers

Advisory ID: cisco-sa-20141105-rv

Revision 1.0

For Public Release 2014 November 5 16:00 UTC (GMT)

+-------------------------------

[ more ]  [ reply ]
ESA-2014-135: RSA® Web Threat Detection SQL Injection Vulnerability 2014-11-05
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2014-135: RSA® Web Threat Detection SQL Injection Vulnerability

EMC Identifier: ESA-2014-135

CVE Identifier: CVE-2014-4627

Severity Rating: CVSS v2 Base Score: 9 (AV:N/AC:L/Au:S/C:C/I:C/A:C)

Affected Products:

RSA Web Th

[ more ]  [ reply ]
WordPress Wordfence Firewall 5.1.2 Cross Site Scripting 2014-11-05
bhati contact gmail com
WordPress Wordfence Firewall plugin version 5.1.2 suffers from a cross site scripting vulnerability.
===============================================

Product: Wordfence Firewall Plugin For Wordpress
Vendor: Wordfence
Vulnerable Version(s): 5.1.2
Tested Version: 5.1.2
Advisory Publication: June 30,

[ more ]  [ reply ]
Arbitrary File Upload in HelpDEZk 2014-11-05
High-Tech Bridge Security Research (advisory htbridge com)
Advisory ID: HTB23239
Product: HelpDEZk
Vendor: HelpDEZk
Vulnerable Version(s): 1.0.1 and probably prior
Tested Version: 1.0.1
Advisory Publication: October 15, 2014 [without technical details]
Vendor Notification: October 15, 2014
Public Disclosure: November 5, 2014
Vulnerability Type: Unrestri

[ more ]  [ reply ]
Two Reflected Cross-Site Scripting (XSS) Vulnerabilities in Forma Lms 2014-11-05
High-Tech Bridge Security Research (advisory htbridge com)
Advisory ID: HTB23226
Product: Forma Lms
Vendor: http://www.formalms.org/
Vulnerable Version(s): 1.2.1 and probably prior
Tested Version: 1.2.1
Advisory Publication: August 6, 2014 [without technical details]
Vendor Notification: August 6, 2014
Vendor Patch: November 4, 2014
Public Disclosure: N

[ more ]  [ reply ]
Wordpress bulletproof-security <=.51 multiple vulnerabilities 2014-11-05
Pietro Oliva (pietroliva gmail com)
Vulnerability title: Wordpress bulletproof-security <=.51 multiple
vulnerabilities
Author: Pietro Oliva
CVE: CVE-2014-7958, CVE-2014-7959, CVE-2014-8749
Vendor: AITpro
Product: bulletproof-security
Affected version: bulletproof-security <= .51
Vulnerabilities fixed in version: .51.1

Details:

xss

[ more ]  [ reply ]
CVE-2014-6616 Softing FG-100 Webui XSS 2014-11-05
Ingmar Rosenhagen (ingmar rosenhagen csnc de)
#############################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#############################################################
#
# Product: Softing FG-100 PB
# Vendor: Softing AG (www.softing.com)
# CVD ID: CVE-20

[ more ]  [ reply ]
CVE-2014-6617 Softing FG-100 Backdoor Account 2014-11-05
Ingmar Rosenhagen (ingmar rosenhagen csnc de)
#############################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#############################################################
#
# Product: Softing FG-100 PB
# Vendor: Softing AG (www.softing.com)
# CVD ID: CVE-20

[ more ]  [ reply ]
KL-001-2014-004 : VMWare vmx86.sys Arbitrary Kernel Read 2014-11-05
KoreLogic Disclosures (disclosures korelogic com)
Title: VMWare vmx86.sys Arbitrary Kernel Read
Advisory ID: KL-001-2014-004
Publication Date: 2014.11.04
Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-004.txt

1. Vulnerability Details

Affected Vendor: VMWare
Affected Product: Workstation
Affected Versio

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:26.ftp 2014-11-05
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-14:26.ftp Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:25.setlogin 2014-11-05
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-14:25.setlogin Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:24.sshd 2014-11-05
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-14:24.sshd Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
[security bulletin] HPSBUX03162 SSRT101767 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack 2014-11-04
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04492722

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04492722
Version: 2

HPSBUX03162 SS

[ more ]  [ reply ]
Reflected Cross-Site Scripting (XSS) in Flash Version of Flowplayer 2014-11-04
subs itguard info
Description:
The flash file accept its configuration via a JSON object. This object can be passed directly or via a file.
The old version of this flash file was vulnerable because of loading insecure external flash files. The latest version and the previous ones are also vulnerable because of lack o

[ more ]  [ reply ]
Call for Papers - WorldCIST'15 - Best papers published in JCR/SCI journals 2014-11-04
ML (marialemos72 gmail com)
------
WorldCIST'15 - 3rd World Conference on Information Systems and Technologies
Ponta Delgada, Azores *, Portugal
1 - 3 April 2015
http://www.aisti.eu/worldcist15/
------
* Azores is ranked as the second most beautiful archipelago in the world by National Geographic.
------------

SCOPE

The Wo

[ more ]  [ reply ]
[SECURITY] [DSA 3064-1] php5 security update 2014-11-04
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3064-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
November 04, 2014

[ more ]  [ reply ]
[Appcheck-NG] Unpatched Vulnerabilities in Magento E-Commerce Platform 2014-11-04
AppCheck_Advisories (advisories appcheck-ng com)
On April 8th 2014, AppCheck reported several Cross Site Scripting Vulnerabilities in the Magento e-commerce platform via the eBay bug bounty program. eBay responded to inform us that the vulnerabilities had already been reported.

However, since more than 6 months have passed and no fix is yet avail

[ more ]  [ reply ]
[slackware-security] php (SSA:2014-307-03) 2014-11-04
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] php (SSA:2014-307-03)

New php packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/php-5.4.3

[ more ]  [ reply ]
[slackware-security] mozilla-firefox (SSA:2014-307-02) 2014-11-04
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mozilla-firefox (SSA:2014-307-02)

New mozilla-firefox packages are available for Slackware 14.1 and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/p

[ more ]  [ reply ]
[slackware-security] mariadb (SSA:2014-307-01) 2014-11-04
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mariadb (SSA:2014-307-01)

New mariadb packages are available for Slackware 14.1 and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mariadb-

[ more ]  [ reply ]
[slackware-security] seamonkey (SSA:2014-307-04) 2014-11-04
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] seamonkey (SSA:2014-307-04)

New seamonkey packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packag

[ more ]  [ reply ]
Modx CMS CSRF Bypass & XSS Vulnerabilities 2014-11-03
bhati contact gmail com
Public Disclosure -
http://hacktivity.websecgeeks.com/modx-csrf-and-xss/
===========================================
Product: MODX Revolution
Severity: Critical
Versions: 2.0.0?2.2.14
Vulnerability type: CSRF & XSS
Report date: 2014-Jul-10
Fixed date: 2014-Jul-15

Description
A significant vulnerab

[ more ]  [ reply ]
Ahrareandeysheh CMS Cross-Site Scripting Vulnerability 2014-11-03
iedb team gmail com
Ahrareandeysheh CMS All version suffers from a Cross-Site Scripting Vulnerability

#################################

#
# @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@
# @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@
# @@@ @@@

[ more ]  [ reply ]
CFP: Fourth World Congress - SEMCMI2015 - Malaysia 2014-11-03
Conference Updates (jackie sdiwc info)
The International Conference on Software Engineering, Mobile Computing
and Media Informatics (SEMCMI2015)
- Part of The Fourth World Congress on Computing and Information
Technology (WCIT) -

Asia Pacific University of Technology and Innovation (APU)
Kuala Lumpur, Malaysia
September 29 - October 1

[ more ]  [ reply ]
[SECURITY] [DSA 3062-1] wget security update 2014-11-02
Luciano Bello (luciano debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3062-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Luciano Bello
November 01, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 3063-1] quassel security update 2014-11-02
Luciano Bello (luciano debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3063-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Luciano Bello
November 02, 2014

[ more ]  [ reply ]
PARSADEV CMS Cross-Site Scripting Vulnerability 2014-11-01
iedb team gmail com
PARSADEV CMS All version suffers from a Cross-Site Scripting Vulnerability

#################################

#
# @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@
# @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@
# @@@ @@@

[ more ]  [ reply ]
"Aircrack-ng 1.2 Beta 3" multiple vulnerabilities 2014-11-01
n sampanis obrela com
"Aircrack-ng 1.2 Beta 3" multiple vulnerabilities

Description:
--------------------------------
Four vulnerabilities exist on aircrack-ng <= 1.2 Beta 3 which allow remote/local code execution, privilege escalation and denial of service. Specifically, the following vulnerabilities were identified

[ more ]  [ reply ]
[SECURITY] [DSA 3061-1] icedove security update 2014-10-31
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3061-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
October 31, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 3060-1] linux security update 2014-10-31
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3060-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
October 31, 2014

[ more ]  [ reply ]
(Page 5 of 1570)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus