BugTraq Mode:
(Page 3 of 1563)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Paypal Inc MultiOrderShipping API - Filter Bypass & Persistent XML Vulnerability 2014-10-14
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Paypal Inc MultiOrderShipping API - Filter Bypass & Persistent XML Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1129

PayPal Security UID: TM13a2uL

Release Date:
=============
2014-10-14

Vulnerabilit

[ more ]  [ reply ]
Indeed Job Search 2.5 iOS API - Multiple Vulnerabilities 2014-10-14
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Indeed Job Search 2.5 iOS API - Multiple Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1303

Release Date:
=============
2014-10-13

Vulnerability Laboratory ID (VL-ID):
==============================

[ more ]  [ reply ]
PayPal Inc #90 PDF Mailer - Buffer Overflow Vulnerability 2014-10-14
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc #90 PDF Mailer - Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=940
http://www.vulnerability-lab.com/get_content.php?id=1274

Release Date:
=============
2014-10-02

Vulnerabil

[ more ]  [ reply ]
PayPal Inc BB #98 MOS - Persistent Settings Vulnerability 2014-10-14
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc BB #98 MOS - Persistent Settings Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=983

Release Date:
=============
2014-10-13

Vulnerability Laboratory ID (VL-ID):
==============================

[ more ]  [ reply ]
[SECURITY] [DSA 3049-1] wireshark security update 2014-10-14
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3049-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
October 14, 2014

[ more ]  [ reply ]
[SE-2014-01] Breaking Oracle Database through Java exploits (details) 2014-10-14
Security Explorations (contact security-explorations com)

Hello All,

Oracle Oct 2014 CPU addresses 22 security issues affecting Java VM
implementation embedded in Oracle Database software.

We have published details of the fixed issues and a description of
some privilege elevation techniques abusing a complete Java security
sandbox bypass condition for g

[ more ]  [ reply ]
two browser mem disclosure bugs (CVE-2014-1580 and CVE-something-or-other) 2014-10-14
Michal Zalewski (lcamtuf coredump cx)
First of all, CVE-2014-1580 (MSFA 2014-78) is a bug that caused
Firefox prior to version 33 (released today) to leak bits of
uninitialized memory when rendering certain types of truncated images
onto <canvas>.

Mozilla's advisory is here:
https://www.mozilla.org/security/announce/2014/mfsa2014-78.ht

[ more ]  [ reply ]
LiveZilla 5.3.0.7 Security Issue 2014-10-14
sourav infosec gmail com
I had reported few xss issues on LiveZilla 5.3.0.7 . They fixed it properly and informed me. Now latest build is 5.3.0.8 / 2014-09-25.

http://changelog.livezilla.net/

Can you help me regarding CVE. I can send you the vulnerability details.

[ more ]  [ reply ]
[security bulletin] HPSBUX03139 SSRT101608 rev.1 - HP-UX running System Management Homepage (SMH), Remote Cross-Site Request Forgery 2014-10-13
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04476799

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04476799
Version: 1

HPSBUX03139 SS

[ more ]  [ reply ]
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified Communications Domain Manager 2014-10-13
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Multiple Vulnerabilities in Cisco Unified Communications Domain Manager

Advisory ID: cisco-sa-20140702-cucdm

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cis
co-sa-20140702-cucdm

Revision 3.0

Last Updated 2014 October 13 15:5

[ more ]  [ reply ]
[security bulletin] HPSBGN03138 rev.1 - HP Operations Analytics running Bash Shell, Remote Code Execution 2014-10-13
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04475942

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04475942
Version: 1

HPSBGN03138 r

[ more ]  [ reply ]
[security bulletin] HPSBMU03133 rev.1 - HP Enterprise Maps Virtual Appliance running Bash Shell, Remote Code Execution 2014-10-13
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04475347

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04475347
Version: 1

HPSBMU03133 r

[ more ]  [ reply ]
Reminder: Passwords14 CFP + registration announcement 2014-10-13
Per Thorsheim (per thorsheim net)
The Passwords conference was launched in 2010 as a response to the lack
of robustness and usability of current personal authentication practices
and solutions. Annual participation has doubled over the past three
years. Venue: NTNU campus, Trondheim, Norway.

1. CFP
Our CFP closes on October 27. We

[ more ]  [ reply ]
PayPal Inc BB #96 - Persistent Tags Vulnerability 2014-10-13
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc BB #96 - Persistent Tags Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=954

PayPal Security UID: apf87gW

Release Date:
=============
2014-10-08

Vulnerability Laboratory ID (VL-ID):
========

[ more ]  [ reply ]
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability 2014-10-13
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=895

PayPal Security UID: Vxda0S

Video: http://www.vulnerability-lab.com/get_content.php?id=1338

View: https://ww

[ more ]  [ reply ]
PayPal Inc #86 iOS 4.6 - Validation & Design Vulnerability 2014-10-13
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc #86 iOS 4.6 - Validation & Design Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=915

PayPal Security UID: eff8aq

Release Date:
=============
2014-09-30

Vulnerability Laboratory ID (VL-ID):

[ more ]  [ reply ]
Call for Papers - WorldCIST'15 - Azores, 1 - 3 April 2015 2014-10-10
ML (marialemos72 gmail com)
------
WorldCIST'15 - 3rd World Conference on Information Systems and Technologies
Ponta Delgada, Azores *, Portugal
1 - 3 April 2015
http://www.aisti.eu/worldcist15/
------
* Azores is ranked as the second most beautiful archipelago in the world by National Geographic.
------------

SCOPE

The Wo

[ more ]  [ reply ]
CSP Bypass in android browser prior to 4.4 2014-10-10
evanjjohns gmail com
Hello. I hope this is the correct place to report this bug.

I've found a Content Security Policy bypass similar to the same and related to the same origin policy bypass in this CVE. This is a separate vulnerability, however.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6041

I've tested

[ more ]  [ reply ]
SAP Security Note 1908647 - Cross Site Flashing in BusinessObjects Explorer 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#######################################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#######################################################################
#
# Product: BusinessObjects Explorer
# Vendor: SAP A

[ more ]  [ reply ]
CSNC-2014-004 neuroML - Multiple Vulnerabilities 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#############################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#############################################################
#
# Product: neuroML
# Version: <=v1.8.1 (Confirmed: v1.8.1)
# Vendor: neuroML.org
# CSNC

[ more ]  [ reply ]
SAP Security Note 1908531 - XXE in BusinessObjects Explorer 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#######################################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#######################################################################
#
# Product: BusinessObjects Explorer
# Vendor: SAP A

[ more ]  [ reply ]
SAP Security Note 1908562 - Port scanning in BusinessObjects Explorer 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#######################################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#######################################################################
#
# Product: BusinessObjects Explorer
# Vendor: SAP A

[ more ]  [ reply ]
[security bulletin] HPSBST03122 rev.1 - HP StoreAll Operating System Software running Bash Shell, Remote Code Execution 2014-10-10
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04471532

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04471532
Version: 1

HPSBST03122 re

[ more ]  [ reply ]
[security bulletin] HPSBMU02895 SSRT101253 rev.4 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code 2014-10-09
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03822422

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03822422
Version: 4

HPSBMU02895 SS

[ more ]  [ reply ]
[security bulletin] HPSBHF03136 rev.1 - HP TippingPoint NGFW running OpenSSL, Remote Disclosure of Information 2014-10-09
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04475466

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04475466
Version: 1

HPSBHF03136 r

[ more ]  [ reply ]
[security bulletin] HPSBMU03110 rev.1 - HP Sprinter, Remote Execution of Code 2014-10-08
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04454636

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04454636
Version: 1

HPSBMU03110 re

[ more ]  [ reply ]
[security bulletin] HPSBMU03127 rev.1 - HP Operations Manager for UNIX, Remote Code Execution 2014-10-08
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04472866

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04472866
Version: 1

HPSBMU03127 r

[ more ]  [ reply ]
[SECURITY] [DSA 3048-1] apt security update 2014-10-08
Thijs Kinkhorst (thijs debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3048-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Thijs Kinkhorst
October 08, 2014

[ more ]  [ reply ]
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2014-10-08
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Multiple Vulnerabilities in Cisco ASA Software

Advisory ID: cisco-sa-20141008-asa

Revision 1.0

For Public Release 2014 October 8 16:00 UTC (GMT)

Summary
+======

Cisco Adaptive Security Appliance (ASA) Software is affected by the following vulnerab

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-032] SAP BusinessObjects Persistent Cross Site Scripting 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-032: SAP BusinessObjects Persistent Cross
Site Scripting

1. Impact on Business
=====================

By exploiting this vulnerability a remote unauthenticated attacker would
be able to attack other users of

[ more ]  [ reply ]
(Page 3 of 1563)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus