BugTraq Mode:
(Page 5 of 1729)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Symantec Endpoint Protection (SEP) v12.1 Tamper-protection Bypass CVE-2017-6331 (hyp3rlinx) 2017-11-13
apparitionsec gmail com
[+] Credits: John Page a.k.a hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/CVE-2017-6331-SYMANTEC-ENDPOI
NT-PROTECTION-TAMPER-PROTECTION-BYPASS.txt
[+] ISR: ApparitionSec

Vendor:
=======
www.symantec.com

Product:
==========

[ more ]  [ reply ]
[SECURITY] [DSA 4032-1] imagemagick security update 2017-11-12
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4032-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 12, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4031-1] ruby2.3 security update 2017-11-11
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4031-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
November 11, 2017

[ more ]  [ reply ]
Bypassable authentication in SingTel / Aztech DSL8900GR(AC) router 2017-11-11
cort accelerateworkshop com
Credit: Cort
Date: 5 Aug 2017
CVE: Not assigned
Vendor: Aztech (https://www.aztech.com) / SingTel (https://www.singtel.com/)
Product: Aztech DSL8900GR(AC) router
Versions Affected: firmware 340.6.1-007 (latest available as of 9 Nov 2017)
CVSS v3 Base Score: 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)

[ more ]  [ reply ]
[SECURITY] [DSA 4006-2] mupdf security update 2017-11-10
Luciano Bello (luciano debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4006-2 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/
November 10, 2017

[ more ]  [ reply ]
Advisory X41-2017-006: Multiple Vulnerabilities in PSFTPd Windows FTP Server 2017-11-10
X41 D-Sec GmbH Advisories (advisories x41-dsec de)

X41 D-Sec GmbH Security Advisory: X41-2017-006

Multiple Vulnerabilities in PSFTPd Windows FTP Server
=====================================================

Overview
--------
Confirmed Affected Versions: 10.0.4 Build 729
Confirmed Patched Versions: None
Vendor: Sergei Pleis Softwareentwicklung
Vend

[ more ]  [ reply ]
WebKitGTK+ Security Advisory WSA-2017-0009 2017-11-10
Carlos Alberto Lopez Perez (clopez igalia com)
------------------------------------------------------------------------

WebKitGTK+ Security Advisory WSA-2017-0009
------------------------------------------------------------------------

Date reported : November 10, 2017
Advisory ID : WSA-2017-0009
Adviso

[ more ]  [ reply ]
[RT-SA-2016-008] XML External Entity Expansion in Ladon Webservice 2017-11-09
RedTeam Pentesting GmbH (release redteam-pentesting de)
Advisory: XML External Entity Expansion in Ladon Webservice

Attackers who can send SOAP messages to a Ladon webservice via the HTTP
interface of the Ladon webservice can exploit an XML external entity expansion
vulnerability and read local files, forge server side requests or overload the
service w

[ more ]  [ reply ]
[SECURITY] [DSA 4029-1] postgresql-common security update 2017-11-09
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4029-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 09, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4028-1] postgresql-9.6 security update 2017-11-09
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4028-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 09, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4027-1] postgresql-9.4 security update 2017-11-09
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4027-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 09, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4026-1] bchunk security update 2017-11-09
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4026-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
November 09, 2017

[ more ]  [ reply ]
Datto Windows Agent 1.0.5.0 Remote Command Execution [CVE-2017-16673][CVE-2017-16674] 2017-11-09
brainn gmail com
Credits
=======
Brian Vincent, Michael Brumlow

Software
========
Datto Windows Agent

Vulnerability Details
=====================
Discovered: Aug 25, 2017
Type: Remote code execution as LocalSystem
Severity: Critical

Description
===========

CVE-2017-16673
Software: Datto Backup Agent for Windows,

[ more ]  [ reply ]
AST-2017-009: Buffer overflow in pjproject header parsing can cause crash in Asterisk 2017-11-08
Asterisk Security Team (security asterisk org)
Asterisk Project Security Advisory - AST-2017-009

Product Asterisk
Summary Buffer overflow in pjproject header parsing can
cause crash in Asterisk

[ more ]  [ reply ]
AST-2017-010: Buffer overflow in CDR's set user 2017-11-08
Asterisk Security Team (security asterisk org)
Asterisk Project Security Advisory - AST-2017-010

Product Asterisk
Summary Buffer overflow in CDR's set user
Nature of Advisory Buffer Overflow

[ more ]  [ reply ]
AST-2017-011: Memory leak in pjsip session resource 2017-11-08
Asterisk Security Team (security asterisk org)
Asterisk Project Security Advisory - AST-2017-011

Product Asterisk
Summary Memory leak in pjsip session resource
Nature of Advisory Memory leak

[ more ]  [ reply ]
[SECURITY] [DSA 4025-1] libpam4j security update 2017-11-08
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4025-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 08, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4021-1] otrs2 security update 2017-11-07
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4021-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 07, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4020-1] chromium-browser security update 2017-11-07
Michael Gilbert (mgilbert debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4020-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Michael Gilbert
November 05, 2017

[ more ]  [ reply ]
CVE-2017-9096 iText XML External Entity Vulnerability 2017-11-06
Advisories (advisories compass-security com)
##################################################################
#
# COMPASS SECURITY ADVISORY
# https://www.compass-security.com/en/research/advisories/
#
##################################################################
#
# Product: iText PDF Library
# Vendor: iText Group
# CVE ID: CVE-2017-909

[ more ]  [ reply ]
Call for papers - WorldCIST'18 - Naples, Italy - Extended deadline: November 22 2017-11-05
ML (marialemos72 gmail com)

* Proceedings by Springer

** Extended versions of best selected papers will be published in JCR/SCI/SSCI journals

------------------------------------------------------------------------
---------------------------
WorldCist'18 - 6th World Conference on Information Systems and Technologies

[ more ]  [ reply ]
Webmin v1.850 Remote Code Execution (hyp3rlinx / apparitionsec) 2017-11-05
apparitionsec gmail com
[+] SSD Beyond Security: https://blogs.securiteam.com/index.php/archives/3430
[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/WEBMIN-v1.850-REMOTE-COMMAND-
EXECUTION.txt
[+] ISR: ApparitionSec

Vulner

[ more ]  [ reply ]
[SECURITY] [DSA 4019-1] imagemagick security update 2017-11-05
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4019-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 05, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 4016-1] irssi security update 2017-11-03
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4016-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
November 03, 2017

[ more ]  [ reply ]
KL-001-2017-022 : Splunk Local Privilege Escalation 2017-11-03
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-022 : Splunk Local Privilege Escalation

Title: Splunk Local Privilege Escalation
Advisory ID: KL-001-2017-022
Publication Date: 2017.11.03
Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-022.txt

1. Vulnerability Details

Affected Vendor: Splunk
Af

[ more ]  [ reply ]
[SECURITY] [DSA 4015-1] openjdk-8 security update 2017-11-02
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-4015-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
November 02, 2017

[ more ]  [ reply ]
APPLE-SA-2017-10-31-6 iTunes 12.7.1 for Windows 2017-10-31
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2017-10-31-6 iTunes 12.7.1 for Windows

iTunes 12.7.1 for Windows is now available and addresses the
following:

WebKit
Available for: Windows 7 and later
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution

[ more ]  [ reply ]
APPLE-SA-2017-10-31-11 Additional information for APPLE-SA-2017-09-20-3 tvOS 11 2017-10-31
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2017-10-31-11
Additional information for APPLE-SA-2017-09-20-3 tvOS 11

tvOS 11 addresses the following:

802.1X
Available for: Apple TV (4th generation)
Impact: An attacker may be able to exploit weaknesses in TLS 1.0
Description: A protocol

[ more ]  [ reply ]
APPLE-SA-2017-10-31-2 macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, Security Update 2017-004 El Capitan 2017-10-31
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2017-10-31-2 macOS High Sierra 10.13.1,
Security Update 2017-001 Sierra, Security Update 2017-004 El Capitan

macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, Security
Update 2017-004 El Capitan are now available and address the
fo

[ more ]  [ reply ]
APPLE-SA-2017-10-31-12 Additional information for APPLE-SA-2017-09-25-9 macOS Server 5.4 2017-10-31
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2017-10-31-12
Additional information for APPLE-SA-2017-09-25-9 macOS Server 5.4

macOS Server 5.4 addresses the following:

FreeRadius
Available for: macOS High Sierra 10.13
Impact: Multiple issues in FreeRADIUS
Description: Multiple issues

[ more ]  [ reply ]
(Page 5 of 1729)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus