BugTraq Mode:
(Page 5 of 1709)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
[security bulletin] HPESBUX03699 SSRT110304 rev.1 - HP-UX BIND, Multiple Remote Denial of Service (DoS) 2017-02-06
HPE Product Security Response Team (security-alert hpe com)
-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c053816
87

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05381687

Version: 1

HPESBUX03699 SS

[ more ]  [ reply ]
Teleopti WFM <= 7.1.0 Multiple Vulnerabilities 2017-02-06
Graph-X (graphx sigaint org)
#############################################################
# Advisory Title: Teleopti WFM (Multiple Vulnerabilities)
# Date: 2/4/2017
# Researcher: Graph-X ((email: graphx (at) sigaint (dot) org [email concealed]))
# Vendor Homepage: http://www.teleopti.com
# Version: <= 7.1.0
# CVE: is dead
################################

[ more ]  [ reply ]
[SECURITY] [DSA 3781-1] svgsalamander security update 2017-02-05
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3781-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
February 05, 2017

[ more ]  [ reply ]
ZoneMinder - multiple vulnerabilities 2017-02-05
john terabyteit com au
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

========================================================================
==
Product: ZoneMinder
Versions: Multiple versions - see inline
Vulnerabilities: File disclosure, XSS, CSRF, Auth bypass & Info disclosure
CVE-IDs: CVE-2017-5595, CVE-2017-5367, CVE

[ more ]  [ reply ]
[FOXMOLE SA 2016-07-05] ZoneMinder - Multiple Issues 2017-02-02
FOXMOLE Advisories (advisories foxmole com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

=== FOXMOLE - Security Advisory 2016-07-05 ===

Zoneminder multiple vulnerabilities
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Affected Versions
=================
Zoneminder 1.29,1.30

Issue Overview
==============
Vulnerability Type: SQL Injection, Cross S

[ more ]  [ reply ]
Ghostscript 9.20 Filename Command Execution 2017-02-02
apparitionsec gmail com (hyp3rlinx)
[+]#####################################################################
############################
[+] Credits: John Page AKA hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/GHOSTSCRIPT-FILENAME-COMMAND-
EXECUTION.txt
[+] ISR: ApparitionSec

[ more ]  [ reply ]
[security bulletin] HPSBST03588 rev 1. - HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS, Remote Arbitrary Command Execution 2017-02-01
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c053829
58

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05382958

Version: 1

HPSBST03588 rev 1.

[ more ]  [ reply ]
Cisco Security Advisory: Cisco Prime Home Authentication Bypass Vulnerability 2017-02-01
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Security Advisory: Cisco Prime Home Authentication Bypass Vulnerability

Advisory ID: cisco-sa-20170201-prime-home

Revision 1.0

For Public Release 2017 February 1 16:00 UTC (GMT)

+---------------------------------------------------------------

[ more ]  [ reply ]
ESA-2017-003: EMC Network Configuration Manager (NCM) Multiple Vulnerabilities 2017-02-01
EMC Product Security Response Center (Security_Alert emc com)

----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2017-003: EMC Network Configuration Manager (NCM) Multiple Vulnerabilities

EMC Identifier: ESA-2017-003

CVE Identifier: CVE-2017-2767, CVE-2017-2768

Severity Rating: CVSS v3 Base Score: See below for scores

Affected products:

EMC Sof

[ more ]  [ reply ]
[SECURITY] [DSA 3779-1] wordpress security update 2017-02-01
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3779-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
February 01, 2017

[ more ]  [ reply ]
[security bulletin] HPESBHF03700 rev.1 - HPE iMC PLAT, Remote Disclosure of Information, Denial of Service (DoS) 2017-01-31
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c053824
18

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05382418

Version: 1

HPESBHF03700 rev.1

[ more ]  [ reply ]
[SECURITY] [DSA 3778-1] ruby-archive-tar-minitar security update 2017-01-31
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3778-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
January 31, 2017

[ more ]  [ reply ]
[security bulletin] HPESBGN03696 rev.1 - HPE Helion Eucalyptus, Remote Escalation of Privilege 2017-01-31
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c053828
68

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05382868

Version: 1

HPESBGN03696 rev.1

[ more ]  [ reply ]
[security bulletin] HPSBHF03693 rev.1 - HPE iMC PLAT Network Products running Microsoft SQL Server, Remote Elevation of Privilege 2017-01-31
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c053827
40

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05382740

Version: 1

HPSBHF03693 rev.1

[ more ]  [ reply ]
ESA-2017-007: EMC Documentum eRoom Unverified Password Change Vulnerability 2017-01-31
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2017-007: EMC Documentum eRoom Unverified Password Change Vulnerability

EMC Identifier: ESA-2017-007

CVE Identifier: CVE-2017-2766

Severity Rating: CVSS v3 Base Score: 5.7 (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L)

Affected products:

EM

[ more ]  [ reply ]
ESA-2016-094: RSA BSAFE Micro Edition Suite Multiple Vulnerabilities 2017-01-31
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2016-094: RSA BSAFE® Micro Edition Suite Multiple Vulnerabilities

EMC Identifier: ESA-2016-094

CVE Identifier: CVE-2016-0923, CVE-2016-0924

Affected Products:

? RSA BSAFE Micro Edition Suite (MES) all 4.1.x versions prior to 4.1.5

[ more ]  [ reply ]
[REVIVE-SA-2017-001] Revive Adserver - Multiple vulnerabilities 2017-01-31
Matteo Beccati (matteo beccati com)
========================================================================

Revive Adserver Security Advisory REVIVE-SA-2017-001
========================================================================

http://www.revive-adserver.com/security/revive-sa-2017-001
======================

[ more ]  [ reply ]
[security bulletin] HPESBMU03701 rev.1 - HPE Smart Storage Administrator, Remote Arbitrary Code Execution 2017-01-30
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c053823
49

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05382349

Version: 1

HPESBMU03701 rev.1

[ more ]  [ reply ]
Secunia Research: libarchive "lha_read_file_header_1()" Out-Of-Bounds Memory Access Denial of Service Vulnerability 2017-01-30
Secunia Research (remove-vuln secunia com)
======================================================================

Secunia Research 2017/01/27

libarchive "lha_read_file_header_1()" Out-Of-Bounds Memory Access

Denial of Service Vulnerability

===============================================

[ more ]  [ reply ]
secuvera-SA-2017-01: Privilege escalation in an OPSI Managed Client environment ("rise of the machines") 2017-01-30
sbieber secuvera de
Affected Products
Tested with
OPSI Server 4.0.7.26
OPSI ClientAgent 4.0.7.10-1
(older releases have not been tested)
According to the vendor all server instances that use a python-opsi version lower
than 4.0.7.28-4 are affected

References
https://www.secuvera.de/advisori

[ more ]  [ reply ]
Persistent Cross-Site Scripting vulnerability in User Access Manager WordPress Plugin 2017-01-28
Summer of Pwnage (lists securify nl)
------------------------------------------------------------------------

Persistent Cross-Site Scripting vulnerability in User Access Manager
WordPress Plugin
------------------------------------------------------------------------

Burak Kelebek, July 2016

------------------------------------------

[ more ]  [ reply ]
Multiple blind SQL injection vulnerabilities in FormBuilder WordPress Plugin 2017-01-28
Summer of Pwnage (lists securify nl)
------------------------------------------------------------------------

Multiple blind SQL injection vulnerabilities in FormBuilder WordPress
Plugin
------------------------------------------------------------------------

Burak Kelebek, July 2016

---------------------------------------------------

[ more ]  [ reply ]
CVE-2017-3160: Gradle Distribution URL used by Cordova-Android does not use https by default 2017-01-27
bowserj gmail com
===================================================================
CVE-2017-3160: Gradle Distribution URL used by Cordova-Android does not use https by default

Severity: High

Vendor: The Apache Software Foundation

Versions Affected: Cordova Android (6.1.1 and below)

Description: After the Andro

[ more ]  [ reply ]
[SECURITY] [DSA 3773-1] openssl security update 2017-01-27
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3773-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
January 27, 2017

[ more ]  [ reply ]
ESA-2016-133: EMC Data Protection Advisor Path Traversal Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2016-133: EMC Data Protection Advisor Path Traversal Vulnerability

EMC Identifier: ESA-2016-133

CVE Identifier: CVE-2016-8211

Severity Rating: CVSS v3 Base Score: 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected products:

EMC

[ more ]  [ reply ]
ESA-2016-154: RSA BSAFE® Crypto-J Multiple Security Vulnerabilities 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2016-154: RSA BSAFE® Crypto-J Multiple Security Vulnerabilities

EMC Identifier: ESA-2016-154

CVE Identifier: CVE-2016-8212, CVE-2016-8217

Severity Rating: See below for scores for individual issues

Affected Products:

? RSA BSA

[ more ]  [ reply ]
ESA-2016-037: EMC PowerPath Management Appliance Information Disclosure Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2016-037: EMC PowerPath Management Appliance Information Disclosure Vulnerability

EMC Identifier: ESA-2016-037

CVE Identifier: CVE-2016-0890

Severity Rating: CVSS v3 Base Score: 6.4 (AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L)

Affected

[ more ]  [ reply ]
Secunia Research: Oracle Outside In VSDX Use-After-Free Vulnerability 2017-01-27
Secunia Research (remove-vuln secunia com)
======================================================================

Secunia Research 2016/01/18

Oracle Outside In VSDX Use-After-Free Vulnerability

======================================================================

Table of Contents

Affected Software...

[ more ]  [ reply ]
[slackware-security] mozilla-thunderbird (SSA:2017-026-01) 2017-01-27
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mozilla-thunderbird (SSA:2017-026-01)

New mozilla-thunderbird packages are available for Slackware 14.1, 14.2,
and -current to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+----------------------

[ more ]  [ reply ]
CA20170126-01: Security Notice for CA Common Services casrvc 2017-01-26
Kotas, Kevin J (Kevin Kotas ca com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

CA20170126-01: Security Notice for CA Common Services casrvc

Issued: January 26, 2017
Last Updated: January 26, 2017

CA Technologies support is alerting customers about a medium risk
vulnerability that may allow a local attacker to gain additional
p

[ more ]  [ reply ]
(Page 5 of 1709)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus