BugTraq Mode:
(Page 4 of 1564)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
[security bulletin] HPSBGN03138 rev.1 - HP Operations Analytics running Bash Shell, Remote Code Execution 2014-10-13
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04475942

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04475942
Version: 1

HPSBGN03138 r

[ more ]  [ reply ]
[security bulletin] HPSBMU03133 rev.1 - HP Enterprise Maps Virtual Appliance running Bash Shell, Remote Code Execution 2014-10-13
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04475347

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04475347
Version: 1

HPSBMU03133 r

[ more ]  [ reply ]
Reminder: Passwords14 CFP + registration announcement 2014-10-13
Per Thorsheim (per thorsheim net)
The Passwords conference was launched in 2010 as a response to the lack
of robustness and usability of current personal authentication practices
and solutions. Annual participation has doubled over the past three
years. Venue: NTNU campus, Trondheim, Norway.

1. CFP
Our CFP closes on October 27. We

[ more ]  [ reply ]
PayPal Inc BB #96 - Persistent Tags Vulnerability 2014-10-13
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc BB #96 - Persistent Tags Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=954

PayPal Security UID: apf87gW

Release Date:
=============
2014-10-08

Vulnerability Laboratory ID (VL-ID):
========

[ more ]  [ reply ]
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability 2014-10-13
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=895

PayPal Security UID: Vxda0S

Video: http://www.vulnerability-lab.com/get_content.php?id=1338

View: https://ww

[ more ]  [ reply ]
PayPal Inc #86 iOS 4.6 - Validation & Design Vulnerability 2014-10-13
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PayPal Inc #86 iOS 4.6 - Validation & Design Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=915

PayPal Security UID: eff8aq

Release Date:
=============
2014-09-30

Vulnerability Laboratory ID (VL-ID):

[ more ]  [ reply ]
Call for Papers - WorldCIST'15 - Azores, 1 - 3 April 2015 2014-10-10
ML (marialemos72 gmail com)
------
WorldCIST'15 - 3rd World Conference on Information Systems and Technologies
Ponta Delgada, Azores *, Portugal
1 - 3 April 2015
http://www.aisti.eu/worldcist15/
------
* Azores is ranked as the second most beautiful archipelago in the world by National Geographic.
------------

SCOPE

The Wo

[ more ]  [ reply ]
CSP Bypass in android browser prior to 4.4 2014-10-10
evanjjohns gmail com
Hello. I hope this is the correct place to report this bug.

I've found a Content Security Policy bypass similar to the same and related to the same origin policy bypass in this CVE. This is a separate vulnerability, however.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6041

I've tested

[ more ]  [ reply ]
SAP Security Note 1908647 - Cross Site Flashing in BusinessObjects Explorer 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#######################################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#######################################################################
#
# Product: BusinessObjects Explorer
# Vendor: SAP A

[ more ]  [ reply ]
CSNC-2014-004 neuroML - Multiple Vulnerabilities 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#############################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#############################################################
#
# Product: neuroML
# Version: <=v1.8.1 (Confirmed: v1.8.1)
# Vendor: neuroML.org
# CSNC

[ more ]  [ reply ]
SAP Security Note 1908531 - XXE in BusinessObjects Explorer 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#######################################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#######################################################################
#
# Product: BusinessObjects Explorer
# Vendor: SAP A

[ more ]  [ reply ]
SAP Security Note 1908562 - Port scanning in BusinessObjects Explorer 2014-10-10
Alexandre Herzog (alexandre herzog csnc ch)
#######################################################################
#
# COMPASS SECURITY ADVISORY
# http://www.csnc.ch/en/downloads/advisories.html
#
#######################################################################
#
# Product: BusinessObjects Explorer
# Vendor: SAP A

[ more ]  [ reply ]
[security bulletin] HPSBST03122 rev.1 - HP StoreAll Operating System Software running Bash Shell, Remote Code Execution 2014-10-10
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04471532

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04471532
Version: 1

HPSBST03122 re

[ more ]  [ reply ]
[security bulletin] HPSBMU02895 SSRT101253 rev.4 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code 2014-10-09
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03822422

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03822422
Version: 4

HPSBMU02895 SS

[ more ]  [ reply ]
[security bulletin] HPSBHF03136 rev.1 - HP TippingPoint NGFW running OpenSSL, Remote Disclosure of Information 2014-10-09
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04475466

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04475466
Version: 1

HPSBHF03136 r

[ more ]  [ reply ]
[security bulletin] HPSBMU03110 rev.1 - HP Sprinter, Remote Execution of Code 2014-10-08
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04454636

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04454636
Version: 1

HPSBMU03110 re

[ more ]  [ reply ]
[security bulletin] HPSBMU03127 rev.1 - HP Operations Manager for UNIX, Remote Code Execution 2014-10-08
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04472866

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04472866
Version: 1

HPSBMU03127 r

[ more ]  [ reply ]
[SECURITY] [DSA 3048-1] apt security update 2014-10-08
Thijs Kinkhorst (thijs debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3048-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Thijs Kinkhorst
October 08, 2014

[ more ]  [ reply ]
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2014-10-08
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Multiple Vulnerabilities in Cisco ASA Software

Advisory ID: cisco-sa-20141008-asa

Revision 1.0

For Public Release 2014 October 8 16:00 UTC (GMT)

Summary
+======

Cisco Adaptive Security Appliance (ASA) Software is affected by the following vulnerab

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-032] SAP BusinessObjects Persistent Cross Site Scripting 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-032: SAP BusinessObjects Persistent Cross
Site Scripting

1. Impact on Business
=====================

By exploiting this vulnerability a remote unauthenticated attacker would
be able to attack other users of

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-031] SAP Business Objects Information Disclosure via CORBA 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-031: SAP Business Objects Information
Disclosure via CORBA

1. Impact on Business
=====================

By exploiting this vulnerability a remote unauthenticated attacker would
be able to obtain information

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-029] SAP Business Objects Information Disclosure 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-020: SAP Business Objects Information
Disclosure

1. Impact on Business
=====================

A malicious user can discover information relating to valid users
using a vulnerable Business Objects Enterpris

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-030] SAP Business Objects Denial of Service via CORBA 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-020: SAP Business Objects Denial of
Service via CORBA

1. Impact on Business
=====================

By exploiting this vulnerability a remote unauthenticated attacker would
be able to completely shut down t

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-033] SAP Business Warehouse Missing Authorization Check 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-033: SAP Business Warehouse Missing
Authorization Check

1. Impact on Business
=====================

By exploiting this vulnerability an authenticated attacker will be able
to abuse of functionality that sho

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-027] SAP HANA Multiple Reflected Cross Site Scripting Vulnerabilities 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-027: SAP HANA Multiple Reflected Cross
Site Scripting Vulnerabilities

1. Impact on Business
=====================

By exploiting this vulnerability a remote unauthenticated attacker would
be able to attack o

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-028] SAP HANA Web-based Development Workbench Code Injection 2014-10-08
Onapsis Research Labs (research onapsis com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Onapsis Security Advisory 2014-028: SAP HANA Web-based Development
Workbench Code Injection

1. Impact on Business
=====================

By exploiting this vulnerability a remote unauthenticated attacker would
be able to completely compr

[ more ]  [ reply ]
Two XSS in Contact Form DB WordPress plugin 2014-10-08
High-Tech Bridge Security Research (advisory htbridge com)
Advisory ID: HTB23233
Product: Contact Form DB WordPress plugin
Vendor: Michael Simpson
Vulnerable Version(s): 2.8.13 and probably prior
Tested Version: 2.8.13
Advisory Publication: September 17, 2014 [without technical details]
Vendor Notification: September 17, 2014
Vendor Patch: September 25,

[ more ]  [ reply ]
Reflected Cross-Site Scripting (XSS) in EWWW Image Optimizer WordPress Plugin 2014-10-08
High-Tech Bridge Security Research (advisory htbridge com)
Advisory ID: HTB23234
Product: EWWW Image Optimizer WordPress plugin
Vendor: Shane Bishop
Vulnerable Version(s): 2.0.1 and probably prior
Tested Version: 2.0.1
Advisory Publication: September 17, 2014 [without technical details]
Vendor Notification: September 17, 2014
Vendor Patch: September 24,

[ more ]  [ reply ]
Reflected Cross-Site Scripting (XSS) in Google Calendar Events WordPress Plugin 2014-10-08
High-Tech Bridge Security Research (advisory htbridge com)
Advisory ID: HTB23235
Product: Google Calendar Events WordPress plugin
Vendor: Phil Derksen
Vulnerable Version(s): 2.0.1 and probably prior
Tested Version: 2.0.1
Advisory Publication: September 17, 2014 [without technical details]
Vendor Notification: September 17, 2014
Vendor Patch: October 7, 2

[ more ]  [ reply ]
[SECURITY] [DSA 3047-1] rsyslog security update 2014-10-08
Luciano Bello (luciano debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3047-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Luciano Bello
October 08, 2014

[ more ]  [ reply ]
(Page 4 of 1564)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus