BugTraq Mode:
(Page 11 of 1565)  < Prev  6 7 8 9 10 11 12 13 14 15 16  Next >
Osclass Security Advisory - LFI Vulnerability - CVE-2014-6308 2014-09-16
Onur Yilmaz (onur netsparker com)
Information
-----------
Advisory by Netsparker.
Name : LFI Vulnerability in OsClass
Affected Software : OsClass
Affected Versions: 3.4.1 and possibly below
Vendor Homepage : http://osclass.org/
Vulnerability Type : Local File Inclusion
Severity : Critical
CVE-ID: CVE-2014-6308
Netsparker Advisory Re

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:19.tcp 2014-09-16
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-14:19.tcp Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
ESA-2014-091: EMC Documentum Content Server Multiple Privilege Escalation Vulnerabilities 2014-09-15
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2014-091: EMC Documentum Content Server Multiple Privilege Escalation Vulnerabilities

EMC Identifier: ESA-2014-091

CVE Identifier: CVE-2014-4621, CVE-2014-4622

Severity Rating: CVSS v2 Base Score: See below for individual scores for eac

[ more ]  [ reply ]
Briefcase 4.0 iOS - Code Execution & File Include Vulnerability 2014-09-15
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Briefcase 4.0 iOS - Code Execution & File Include Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1319

Release Date:
=============
2014-09-11

Vulnerability Laboratory ID (VL-ID):
=======================

[ more ]  [ reply ]
Passwords^14 Norway - CFP 2014-09-15
Per Thorsheim (per thorsheim net)
CALL FOR PAPERS AND TUTORIALS

PASSWORDS'14
passwordscon.org

The 7th International Conference on Passwords
8-10 December 2014
Trondheim,Norway

The P

[ more ]  [ reply ]
Open-Xchange Security Advisory 2014-09-15 2014-09-15
Martin Heiland (martin heiland open-xchange com)
Product: OX App Suite
Vendor: Open-Xchange GmbH

Vulnerability type: Cross Site Scripting (CWE-80)
Vulnerable version: 7.6.0 and earlier
Vulnerable component: frontend
Fixed version: 7.4.2-rev33, 7.6.0-rev16
Report confidence: Confirmed
Solution status: Fixed by Vendor
Vendor notification: 2014-07-

[ more ]  [ reply ]
Multiple Vulnerabilities with Aztech Modem Routers 2014-09-14
Federick Joe P Fajardo (fjpfajardo ph ibm com)
PRODUCT DESCRIPTION

The Aztech ADSL family of modems/routes are shipped to residential and SOHO users that desires speed from 150-300mbps rate. This modem/router also supports IEEE802.11b/g/n as a Wireless LAN Access point. The vulnerable model numbers are: DSL5018EN (1T1R) (Shipped with Globe Tele

[ more ]  [ reply ]
Re: HttpFileServer 2.3.x Remote Command Execution 2014-09-14
danielelinguaglossa gmail com
A fix is now avaiable from vendor site

link: http://www.rejetto.com/hfs/download

[ more ]  [ reply ]
[security bulletin] HPSBOV03099 rev.1 - HP OpenVMS running OpenSSL, Remote Denial of Service (DoS) or Disclosure of Information 2014-09-12
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04426586

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04426586
Version: 1

HPSBOV03099 re

[ more ]  [ reply ]
HttpFileServer 2.3.x Remote Command Execution 2014-09-12
danielelinguaglossa gmail com
Affected software: http://sourceforge.net/projects/hfs/
Version : 2.3x
# Exploit Title: HttpFileServer 2.3.x Remote Command Execution
# Google Dork: intext:"httpfileserver 2.3"
# Date: 11-09-2014
# Remote: Yes
# Exploit Author: Daniele Linguaglossa
# Vendor Homepage: http://rejetto.com/
# Software L

[ more ]  [ reply ]
[SECURITY] [DSA 3024-1] gnupg security update 2014-09-11
Thijs Kinkhorst (thijs debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3024-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Thijs Kinkhorst
Septem

[ more ]  [ reply ]
[SECURITY] [DSA 3023-1] bind9 security update 2014-09-11
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3023-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
September 11, 2014

[ more ]  [ reply ]
NEW VMSA-2014-0009 VMware NSX and vCNS product updates address a critical information disclosure vulnerability 2014-09-11
VMware Security Response Center (security vmware com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------

VMware Security Advisory

Advisory ID: VMSA-2014-0009
Synopsis: VMware NSX and vCNS product updates address a critical
information disclosure v

[ more ]  [ reply ]
Call for Participation: Semantic Web Business and Innovation (SWBI2015) * Switzerland 2014-09-11
jackie sdiwc info
The International Conference on Semantic Web Business and Innovation
(SWBI2015)

The University of Applied Sciences and Arts Western Switzerland (HES-SO
Valais-Wallis)
October 7-9, 2015
http://sdiwc.net/conferences/swbi2015/

All registered papers will be included in SDIWC Digital Library.
=======

[ more ]  [ reply ]
ChatSecure IM v2.2.4 iOS - Persistent Web Vulnerability 2014-09-11
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
ChatSecure IM v2.2.4 iOS - Persistent Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1317

Release Date:
=============
2014-09-10

Vulnerability Laboratory ID (VL-ID):
===============================

[ more ]  [ reply ]
Photorange v1.0 iOS - File Include Web Vulnerability 2014-09-11
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Photorange v1.0 iOS - File Include Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1318

Release Date:
=============
2014-09-07

Vulnerability Laboratory ID (VL-ID):
==================================

[ more ]  [ reply ]
PhotoSync v2.2 iOS - Command Inject Web Vulnerability 2014-09-11
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PhotoSync v2.2 iOS - Command Inject Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1290

Release Date:
=============
2014-08-05

Vulnerability Laboratory ID (VL-ID):
=================================

[ more ]  [ reply ]
[SECURITY] [DSA 3021-2] file regression update 2014-09-10
Luciano Bello (luciano debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3021-2 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Luciano Bello
September 10, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 3022-1] curl security update 2014-09-10
Yves-Alexis Perez (corsac debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3022-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Yves-Alexis Perez
September 10, 2014

[ more ]  [ reply ]
[SECURITY] [DSA 3020-1] acpi-support security update 2014-09-10
Raphael Geissert (geissert debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3020-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Raphael Geissert
September 10, 2014

[ more ]  [ reply ]
[SECURITY] CVE-2013-4444 Remote Code Execution in Apache Tomcat 2014-09-10
Mark Thomas (markt apache org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CVE-2013-4444 Remote Code Execution

Severity: Important

Vendor: The Apache Software Foundation

Versions Affected:
- - Apache Tomcat 7.0.0 to 7.0.39

Description:
In very limited circumstances, it was possible for an attacker to upload
a malicious JSP

[ more ]  [ reply ]
[slackware-security] seamonkey (SSA:2014-252-01) 2014-09-09
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] seamonkey (SSA:2014-252-01)

New seamonkey packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packag

[ more ]  [ reply ]
[security bulletin] HPSBMU03075 rev.1 - HP Network Node Manager I (NNMi) for Windows and Linux, Remote Execution of Arbitrary Code 2014-09-09
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04378450

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04378450
Version: 1

HPSBMU03075 re

[ more ]  [ reply ]
NEW VMSA-2014-0008 VMware vSphere product updates to third party libraries 2014-09-09
VMware Security Response Center (security vmware com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------

VMware Security Advisory

Advisory ID: VMSA-2014-0008
Synopsis: VMware vSphere product updates to third party libraries
Issue date: 2014-09-09
Updated on:

[ more ]  [ reply ]
Re: Pro Chat Rooms v8.2.0 - Multiple Vulnerabilities 2014-09-09
sales prochatrooms com
Date: 12 Aug 2014

A software update for the Text Chat Room & Audio/Video Chat Room (v8.2.0) is now available to download in the Pro Chat
Rooms customer area that addresses this security issue.

We would like to express our thanks to Mike Manzotti @ Dionach Ltd who assisted us with this update.

[ more ]  [ reply ]
[SECURITY] [DSA 3021-1] file security update 2014-09-09
Luciano Bello (luciano debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3021-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Luciano Bello
September 09, 2014

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-14:18.openssl 2014-09-09
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-14:18.openssl Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
Cisco Security Advisory: Cisco Unified Computing System E-Series Blade Servers Cisco Integrated Management Controller SSH Denial of Service Vulnerability 2014-09-08
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Unified Computing System E-Series Blade Servers Cisco Integrated Management Controller SSH Denial of Service Vulnerability

Advisory ID: cisco-sa-20140908-ucse

Revision 1.0

For Public Release 2014 September 8 16:00 UTC (GMT)
+------------------

[ more ]  [ reply ]
IBM WebSphere Application Server (WAS) Integrated Solutions Console Login Page username Parameter Reflected XSS Security Vulnerability 2014-09-08
main gsmcnamara com
INFO:
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Aug 27 2014 12:00AM
Updated: Aug 27 2014 12:00AM
Credit: G. S. McNamara, CGI Federal Emerging Technologies Security Practice (ETSP)
Vulnerable: IBM WebSphere Application Server (WAS) Integrated Solutions Console 7.0.0.19

DIS

[ more ]  [ reply ]
[security bulletin] HPSBST03106 rev.1 - HP P2000 G3 MSA Array System running OpenSSL, Remote Unauthorized Access or Disclosure of Information 2014-09-08
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04438404

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04438404
Version: 1

HPSBST03106 r

[ more ]  [ reply ]
(Page 11 of 1565)  < Prev  6 7 8 9 10 11 12 13 14 15 16  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus