Colapse all |
Post message
[slackware-security] mozilla-firefox (SSA:2016-117-01) 2016-04-27 Slackware Security Team (security slackware com) [SECURITY] [DSA 3557-1] mysql-5.5 security update 2016-04-26 Salvatore Bonaccorso (carnil debian org) Sophos XG Firewall (SF01V) - Persistent Web Vulnerability 2016-04-26 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Sophos XG Firewall (SF01V) - Persistent Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1734 ID: 5740075 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID (VL-ID): ================ [ more ] [ reply ] VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability 2016-04-26 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1828 Release Date: ============= 2016-04-26 Vulnerability Laboratory ID (VL-ID): ============================= [ more ] [ reply ] Trend Micro (Account) - Email Spoofing Web Vulnerability 2016-04-26 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Trend Micro (Account) - Email Spoofing Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1693 Trend Micro ID: 1-1-1035655030 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID (VL-ID) [ more ] [ reply ] [security bulletin] HPSBGN03582 rev.1 - HPE Helion CloudSystem using glibc, Remote Code Execution, Denial of Service (DoS) 2016-04-25 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05098877 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05098877 Version: 1 HPSBGN03582 r [ more ] [ reply ] Negin Group CMS - (v) Multiple Web Vulnerabilities 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Negin Group CMS - (v) Multiple Web Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1831 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID (VL-ID): ==================================== [ more ] [ reply ] Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1820 Release Date: ============= 2016-04-19 Vulnerability Laboratory ID (VL-ID): ========================= [ more ] [ reply ] Cyberoam Central Console v02.03.1 - Multiple Persistent Vulnerabilities 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Cyberoam Central Console v02.03.1 - Multiple Persistent Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1721 Cyberoam Ticket ID: #1001314 Case ID: CCC-4208 Release Date: ============= 2016-04-18 Vuln [ more ] [ reply ] UBNT Bug Bounty #2 - XML External Entity Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== UBNT Bug Bounty #2 - XML External Entity Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1466 Release Date: ============= 2016-04-14 Vulnerability Laboratory ID (VL-ID): ================================ [ more ] [ reply ] Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1769 Release Date: ============= 2016-04-08 Vulnerability Laboratory ID (VL-ID): ===================== [ more ] [ reply ] C & C++ for OS - Filter Bypass & Persistent Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== C & C++ for OS - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1825 Release Date: ============= 2016-04-14 Vulnerability Laboratory ID (VL-ID): ============================= [ more ] [ reply ] Telisca IPS Lock 2 Vulnerability 2016-04-25 karim reda Fakhir (karim fakhir gmail com) a vulnerability in IPS LOCK , below is the description : # Exploit Title: TELISCA IPS LOCK ABUSE # Date: 13/01/2016 # Software Link: http://www.telisca.com/products/ip-phone-apps/ipslock/ # Exploit Author: Fakhir Karim Reda # Contact: karim.fakhir (at) gmail (dot) com [email concealed] # Metasploit module : https://www.rapid [ more ] [ reply ] Unlimited Pop-Ups WordPress Plugin XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Unlimited Pop-Ups WordPress Plugin #Exploit Author : Rahul Pratap Singh #Version : 1.4.3 #Home page Link : http://codecanyon.net/item/unlimited-popups-wordpress-plugin/8575498 #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 [ more ] [ reply ] Easy Social Share Buttons for WordPress XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product :Easy Social Share Buttons for WordPress #Exploit Author : Rahul Pratap Singh #Version :3.2.5 #Home page Link : http://codecanyon.net/item/easy-social-share-buttons-for-wordpress/63944 76 #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulprat [ more ] [ reply ] Google SEO Pressor Snippet Plugin XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Google SEO Pressor Snippet Plugin #Exploit Author : Rahul Pratap Singh #Version :1.2.6 #Home page Link : https://wordpress.org/plugins/google-seo-author-snippets/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4 [ more ] [ reply ] Echosign Plugin for WordPress XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Echosign Plugin #Exploit Author : Rahul Pratap Singh #Version :1.1 #Home page Link : https://wordpress.org/plugins/echosign/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vulnerability: ----------- [ more ] [ reply ] Tweet-wheel XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product :Tweet-wheel #Exploit Author : Rahul Pratap Singh #Version :1.0.3.2 #Home page Link : https://wordpress.org/plugins/tweet-wheel/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vulnerability: --------- [ more ] [ reply ] CM-AD-Changer XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : cm-ad-changer #Exploit Author : Rahul Pratap Singh #Version :1.7.2 #Home page Link : https://wordpress.org/plugins/cm-ad-changer/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vulnerability: ------ [ more ] [ reply ] Persian-woocommerce-sms XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product :Persian-woocommerce-sms #Exploit Author : Rahul Pratap Singh #Version :3.3.2 #Home page Link : https://wordpress.org/plugins/persian-woocommerce-sms/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vul [ more ] [ reply ] Remote Code Execution in Shopware <5.1.5 (CVE-2016-3109) 2016-04-23 david vieira-kurz immobilienscout24 de CREDITS ======== This issue has been identified by David Vieira-Kurz of Immobilien Scout GmbH. CVE ==== CVE-2016-3109 AFFECTED PRODUCT ================== Shopware < 5.1.5 : https://en.shopware.com/ IMPACT ======= This issue has been triaged with the highest severity (CRITICAL) by the Shopware mai [ more ] [ reply ] [security bulletin] HPSBMU03573 rev.1 - HPE System Management Homepage (SMH), Remote Disclosure of Information 2016-04-22 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05096953 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05096953 Version: 1 HPSBMU03573 [ more ] [ reply ] [security bulletin] HPSBGN03580 rev.1 - HP Data Protector, Remote Code Execution, Remote Unauthorized Disclosure of Information 2016-04-22 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05085988 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05085988 Version: 1 HPSBGN03580 [ more ] [ reply ] SEC Consult SA-20160422-1 :: Multiple vulnerabilities in Digitalstrom Konfigurator 2016-04-22 SEC Consult Vulnerability Lab (research sec-consult com) SEC Consult SA-20160422-0 :: Insecure credential storage in my devolo Android app 2016-04-22 SEC Consult Vulnerability Lab (research sec-consult com) CVE-2016-3074: libgd: signedness vulnerability 2016-04-21 Hans Jerry Illikainen (hji dyntopia com) Overview ======== libgd [1] is an open-source image library. It is perhaps primarily used by the PHP project. It has been bundled with the default installation of PHP since version 4.3 [2]. A signedness vulnerability (CVE-2016-3074) exist in libgd 2.1.1 which may result in a heap overflow when p [ more ] [ reply ] exploit CVE-2016-2203 2016-04-21 karim reda Fakhir (karim fakhir gmail com) # Exploit Title: Symantec Brightmail ldap credential Grabber # Date: 18/04/2016 # Exploit Author: Fakhir Karim Reda # Vendor Homepage: https://www.symantec.com/security_response/securityupdates/detail.jsp?fi d=security_advisory&pvid=security_advisory&year&suid=20160418_00 # Version: 10.6.0-7 and earl [ more ] [ reply ] OpenTSDB RCE 2016-04-21 gsoc gsoc se The paramenter wxh needs some sanitation before being used by opentsdb. See example url: http://opentsdb.com:4242/q?start=2016/04/13-10:21:00&ignore=2&m=sum:jmxd ata.cpu&o=&yrange=[0:]&key=out%20right%20top&wxh=1900x770%60id%60&style= linespoint&png Results in RCE unfortunately More parameters: [ more ] [ reply ] Webutler CMS 3.2 - Cross-Site Request Forgery 2016-04-21 displaymyname gmail com *# Exploit Title: Webutler CMS Cross-Site Request Forgery* *# Date: 18 April 2016* *# Exploit Author: Keerati T. (Post)* *# Vendor Homepage: http://webutler.de/en <http://webutler.de/en>* *# Software Link: http://webutler.de/download/webutler_v3.2.zip <http://webutler.de/download/webutler_v3.2.zip>* [ more ] [ reply ] Cisco Security Advisory: Multiple Cisco Products libSRTP Denial of Service Vulnerability 2016-04-20 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple Cisco Products libSRTP Denial of Service Vulnerability Advisory ID: cisco-sa-20160420-libsrtp Revision 1.0 For Public Release 2016 April 20 16:00 UTC (GMT) +--------------------------------------------------------------------- Summary ==== [ more ] [ reply ] Cisco Security Advisory: Cisco Adaptive Security Appliance Software DHCPv6 Relay Denial of Service Vulnerability 2016-04-20 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco Adaptive Security Appliance Software DHCPv6 Relay Denial of Service Vulnerability Advisory ID: cisco-sa-20160420-asa-dhcpv6 Revision 1.0 For Public Release 2016 April 20 16:00 GMT (UTC) +---------------------------- [ more ] [ reply ] Cisco Security Advisory: Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability 2016-04-20 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability Advisory ID: cisco-sa-20160420-htrd Revision 1.0 For Public Release 2016 April 20 16:00 GMT (UTC) +----------------------------------------------- [ more ] [ reply ] Cisco Security Advisory: Cisco Wireless LAN Controller Denial of Service Vulnerability 2016-04-20 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco Wireless LAN Controller Denial of Service Vulnerability Advisory ID: cisco-sa-20160420-bdos Revision 1.0 For Public Release 2016 April 20 16:00 GMT (UTC) +------------------------------------------------------------ [ more ] [ reply ] Cisco Security Advisory: Cisco Wireless LAN Controller Management Interface Denial of Service Vulnerability 2016-04-20 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco Wireless LAN Controller Management Interface Denial of Service Vulnerability Advisory ID: cisco-sa-20160420-wlc Revision 1.0 For Public Release 2016 April 20 16:00 GMT (UTC) +---------------------------------------- [ more ] [ reply ] RCE via CSRF in phpMyFAQ 2016-04-20 High-Tech Bridge Security Research (advisory htbridge ch) Advisory ID: HTB23300 Product: phpMyFAQ Vendor: http://www.phpmyfaq.de Vulnerable Version(s): 2.8.26, 2.9.0-RC2 and probably prior Tested Version: 2.8.26, 2.9.0-RC2 Advisory Publication: March 30, 2016 [without technical details] Vendor Notification: March 30, 2016 Vendor Patch: April 11, 2016 [ more ] [ reply ] *.Shell.com Port 443 DROWN decryption attack 2016-04-20 shell shell com Login: https://prom3.shell.com/(S(qxq1noy1f4gl4g45kbggia45))/Common/Login.aspx Vulnerability An attacker can decrypt traffic and get login and passwords Signatures 584e3a64196dc662286922fc82fa915f1ee0cc46ab5400c347f529ab4eb46c67 prom3.shell.com d50be93e35266af753e288af8f4f3eb96986187264a44c6c [ more ] [ reply ] PHPBack v1.3.0 SQL Injection 2016-04-20 apparitionsec gmail com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/PHPBACK-v1.3.0-SQL-INJECTION. txt Vendor: ================ www.phpback.org Product: ================ PHPBack v1.3.0 Vulnerability Type: =================== SQL Injection [ more ] [ reply ] [security bulletin] HPSBMU03575 rev.1 - HP Smart Update Manager (SUM), Remote Denial of Service (DoS), Disclosure of Information 2016-04-19 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05086877 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05086877 Version: 1 HPSBMU03575 r [ more ] [ reply ] ESA-2016-039: EMC ViPR SRM Multiple Cross-Site Request Forgery Vulnerabilities 2016-04-19 Security Alert (Security_Alert emc com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ESA-2016-039: EMC ViPR SRM Multiple Cross-Site Request Forgery Vulnerabilities CVE Identifier: CVE-2016-0891 EMC Identifier: ESA-2016-039 Severity Rating: CVSS Base Score 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) Affected products: EMC ViPR SRM [ more ] [ reply ] Multiple Reflected XSS vulnerabilities in Oliver (formerly Webshare) v1.3.1 2016-04-19 research (at) rv3lab (dot) org [email concealed] (research rv3lab org) ################################################### 01. ### Advisory Information ### Title: Multiple Reflected XSS vulnerabilities in Oliver (formerly Webshare) v1.3.1 Date published: 2016-15-04 Date of last update: 2014-03-04 Vendors contacted: Oliver (formerly Webshare) v1.3.1 Discovered by: Rv [ more ] [ reply ] [ERPSCAN-16-004] SAP NetWeaver 7.4 (Pmitest servlet) â?? XSS vulnerability 2016-04-19 ERPScan inc (erpscan online gmail com) Application: SAP NetWeaver Versions Affected: SAP NetWeaver J2EE Engine 7.40 Vendor URL: http://SAP.com Bugs: Cross-Site Scripting Sent: 01.09.2015 Reported: 01.09.2015 Vendor response: 02.09.2015 Date of Public Advisory: 12.01.2016 Reference: SAP Security Note 2234918 Author: Vahagn Vardanyan (ER [ more ] [ reply ] [ERPSCAN-16-005] SAP HANA hdbxsengine JSON â?? DoS vulnerability 2016-04-19 ERPScan inc (erpscan online gmail com) Application: SAP HANA Versions Affected: SAP HANA Vendor URL: http://SAP.com Bugs: DoS Sent: 28.09.2015 Reported: 28.09.2015 Vendor response: 29.09.2015 Date of Public Advisory: 12.01.2016 Reference: SAP Security Note 2241978 Author: Mathieu Geli (ERPScan) Description 1. ADVISORY INFORMATION [ more ] [ reply ] Executable installers are vulnerable^WEVIL (case 33): GData's installers allow escalation of privilege 2016-04-18 Stefan Kanthak (stefan kanthak nexgo de) Hi @ll, the executable installers of G-Data's "security" products for Windows, available from <https://www.gdata.de/downloads>, allow escalation of privilege! The downloadable executables are self-extractors containing the real executable installer as resource: they create the subdirectory %T [ more ] [ reply ] [security bulletin] HPSBST03576 rev.2 - HP P9000, XP7 Command View Advanced Edition (CVAE) Suite including Device Manager and Tiered Storage Manager using Java Deserialization, Remote Arbitrary Code Execution 2016-04-18 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05085438 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05085438 Version: 2 HPSBST03576 r [ more ] [ reply ] [security bulletin] HPSBGN03555 rev.1 - HPE Vertica Analytics, Management Console, Remote Disclosure of Sensitive information, Execution of Arbitrary Code with Root Privileges 2016-04-18 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05085303 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05085303 Version: 1 HPSBGN03555 r [ more ] [ reply ] CVE-2016-4021: pgpdump 0.29 - Endless loop parsing specially crafted input (SYSS-2016-030) 2016-04-18 klaus eisentraut syss de -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2016-030 Product: pgpdump Maintainer: Kazu Yamamoto Affected Version(s): 0.29 Tested Version(s): 0.29 Vulnerability Type: Improper Input Validation (CWE-20) Risk Level: Low Solution Status: Fixed (in 0.30) Maintainer Notification: 2 [ more ] [ reply ] Ahrare Andeysheh Cms Multiple Vulnerabilities 2016-04-16 iesb team gmail com Xss and sqli and poc on ahrare andeysheh cms to all versions ################################# # # @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ # @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ # @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ # @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ # @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@ [ more ] [ reply ] [CVE-2016-3996]KNOX clipboard data disclosure KNOX 1.0 - KNOX 2.3 / Android 2016-04-16 urikanonov gmail com Subject: [CVE-2016-3996]KNOX clipboard data disclosure KNOX 1.0 - KNOX 2.3 / Android Vulnerability Description ========================= The vulnerability allows disclosure of Clipboard data of Samsung KNOX 1.0 and 2.3 containers. On KNOX-enabled devices there exists a proprietary service called [ more ] [ reply ] [slackware-security] samba (SSA:2016-106-02) 2016-04-15 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] samba (SSA:2016-106-02) New samba packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/samba [ more ] [ reply ] [slackware-security] mozilla-thunderbird (SSA:2016-106-01) 2016-04-15 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] mozilla-thunderbird (SSA:2016-106-01) New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ p [ more ] [ reply ] Microsoft Internet Explorer 11 MSHTML.DLL Remote Binary Planting Vulnerability 2016-04-15 Sandro Poppi (spoppi sec gmail com) Abstract -------- Microsoft Internet Explorer 11 MSHTML.DLL Remote Binary Planting Vulnerability Affected Version: MSHTML.DLL 11.0.9600.18231 and probably below on Windows 7 SP1 Vendor Homepage: http://www.microsoft.com Severity: high Status: fixed CVE-ID: CVE-2016-0160 Description ----------- Micr [ more ] [ reply ] [ERPSCAN-16-003] SAP NetWeaver 7.4 - cryptographic issues 2016-04-15 ERPScan inc (erpscan online gmail com) Application: SAP NetWeaver Versions Affected: SAP NetWeaver J2EE Engine 7.40 Vendor URL: http://SAP.com Bugs: cryptographic issues Sent: 01.09.2015 Reported: 01.09.2015 Vendor response: 02.09.2015 Date of Public Advisory: 12.01.2016 Reference: SAP Security Note 2191290 Author: Vahagn Varda [ more ] [ reply ] [ERPSCAN-16-002] SAP HANA - log injection and no size restriction 2016-04-15 ERPScan inc (erpscan online gmail com) [ERPSCAN-16-001] SAP NetWeaver 7.4 - XSS vulnerability 2016-04-15 ERPScan inc (erpscan online gmail com) Application:SAP NetWeaver Versions Affected: SAP NetWeaver J2EE Engine 7.40 Vendor URL: http://SAP.com Bugs: Cross-Site Scripting Sent: 01.09.2015 Vendor response: 02.09.2015 Date of Public Advisory: 12.01.2016 Reference: SAP Security Note 2206793 Author: Vahagn Vardanyan (ERPScan) Description [ more ] [ reply ] [SECURITY] [DSA 3549-1] chromium-browser security update 2016-04-15 Michael Gilbert (mgilbert debian org) AST-2016-005: TCP denial of service in PJProject 2016-04-14 Asterisk Security Team (security asterisk org) AST-2016-004: Long Contact URIs in REGISTER requests can crash Asterisk 2016-04-14 Asterisk Security Team (security asterisk org) NEW VMSA-2016-0004 VMware product updates address a critical security issue in the VMware Client Integration Plugin 2016-04-14 VMware Security Response Center (security vmware com) ESA-2016-036: EMC Unisphere for VMAX Virtual Appliance Arbitrary File Upload Vulnerability 2016-04-14 Security Alert (Security_Alert emc com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2016-036: EMC Unisphere for VMAX Virtual Appliance Arbitrary File Upload Vulnerability EMC Identifier: ESA-2016-036 CVE Identifier: CVE-2016-0889 Severity Rating: CVSS v3 Base Score: 7.7 (AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H) Affected pr [ more ] [ reply ] Securing Android Applications from Screen Capture 2016-04-14 research nightwatchcybersecurity com Original here: https://blog.nightwatchcybersecurity.com/research-securing-android-appli cations-from-screen-capture-8dce2c8e21d#.bw2qwe213 Research: Securing Android Applications from Screen Capture Summary ? TL, DR Apps on Android and some platform services are able to capture other ap [ more ] [ reply ] Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability 2016-04-14 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1821 Release Date: ============= 2016-04-14 Vulnerability Laboratory ID (VL-ID): ========================= [ more ] [ reply ] Cisco Security Advisory:Cisco Unified Computing System Central Software Arbitrary Command Execution Vulnerability 2016-04-13 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco Unified Computing System Central Software Arbitrary Command Execution Vulnerability Advisory ID: cisco-sa-20160413-ucs Revision 1.0 Published: 2016 April 13 16:00 GMT +------------------------------------------------ [ more ] [ reply ] Webline CMS (2016Q2) - SQL Injection Vulnerability 2016-04-13 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Webline CMS (2016Q2) - SQL Injection Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1823 Release Date: ============= 2016-04-13 Vulnerability Laboratory ID (VL-ID): =================================== [ more ] [ reply ] [SE-2012-01] Yet another broken security fix in IBM Java 7/8 2016-04-12 Security Explorations (contact security-explorations com) Hello All, We discovered that yet another fix for a security vulnerability in IBM Java (Issue 70 [1] assigned CVE-2013-5456) we reported to the company in 2013 hasn't been fixed properly. Again, the actual root cause of the issue hasn't been addressed at all. There were no security checks introdu [ more ] [ reply ] CAM UnZip v5.1 Archive Directory Traversal 2016-04-12 hyp3rlinx lycos com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/CAMUNZIP-ARCHIVE-PATH-TRAVERS AL.txt Vendor: ================= www.camunzip.com Product: ============== CAM UnZip v5.1 Vulnerability Type: ====================== Archive Pa [ more ] [ reply ] .NET Framework 4.6 allows side loading of Windows API Set DLL 2016-04-12 Securify B.V. (lists securify nl) ------------------------------------------------------------------------ .NET Framework 4.6 allows side loading of Windows API Set DLL ------------------------------------------------------------------------ Yorick Koster, February 2016 -------------------------------------------------------------- [ more ] [ reply ] Open redirect on Google.com 2016-04-12 research nightwatchcybersecurity com Overview An open redirect is operating at www.google.com Details Google?s main website provides a subsite for displaying mobile-optimized pages published using a special subset of HTML called AMP. While this works for mobile devices, for non-mobile devices, this redirects to the original site, thus [ more ] [ reply ] Wordpress Robo Gallery v2.0.14 - Code Execution Vulnerability 2016-04-12 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Wordpress Robo Gallery v2.0.14 - Code Execution Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1822 Release Date: ============= 2016-04-12 Vulnerability Laboratory ID (VL-ID): ========================= [ more ] [ reply ] ESA-2016-013: RSA BSAFE® Micro Edition Suite, Crypto-C Micro Edition, Crypto-J, SSL-J and SSL-C Lenstra?s Attack Vulnerability 2016-04-11 Security Alert (Security_Alert emc com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2016-013: RSA BSAFE® Micro Edition Suite, Crypto-C Micro Edition, Crypto-J, SSL-J and SSL-C Lenstra?s Attack Vulnerability EMC Identifier: ESA-2016-013 CVE Identifier: CVE-2016-0887 Severity Rating: CVSS v3 Base Score: 5.9 (AV:N/AC:H/P [ more ] [ reply ] Blind SQL injections in CivicRM 2016-04-11 Simon Waters \(Surevine\) (simon waters surevine com) CivicRM extends common CMS platforms (WordPress, Drupal) with a module to manage Civic campaigns, tracking donors, amounts, and campaign CRM type activity. I tested the WordPress integration of CivicRM 4.7b3 which was found to have blind SQL Injections that allow authenticated users to download arb [ more ] [ reply ] [Multiple CVE]: RCE, info disclosure, HQL injection and stored XSS in Novell Service Desk 7.1.0 2016-04-10 Pedro Ribeiro (pedrib gmail com) Hi, Novell Service Desk (now rebranded as Micro Focus Service Desk) 7.1.0 and below has a number of critical vulnerabilities that allow remote code execution, information disclosure, etc, by authenticated users. Check the full advisory below for details. Novell / Micro Focus have documented these v [ more ] [ reply ] OpenCart json_decode function Remote PHP Code Execution 2016-04-09 r3s34rch3r yahoo com ## # OpenCart json_decode function Remote PHP Code Execution # # Author: Naser Farhadi # Twitter: @naserfarhadi # # Date: 9 April 2016 # Version: 2.1.0.2 to 2.2.0.0 (Latest version) # Vendor Homepage: http://www.opencart.com/ # # Vulnerability: # ------------ # /upload/system/helper/json.php # $matc [ more ] [ reply ] WPN-XM Serverstack v0.8.6 CSRF - MySQL / PHP.INI Hijacking 2016-04-09 hyp3rlinx lycos com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/WPNXM-CSRF.txt Vendor: =========== wpn-xm.org Product: ============================================== WPN-XM Serverstack for Windows - Version 0.8.6 WPN-XM is a free and op [ more ] [ reply ] WPN-XM Serverstack v0.8.6 CSRF - MySQL / PHP.INI Hijacking 2016-04-09 hyp3rlinx lycos com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/WPNXM-CSRF.txt Vendor: =========== wpn-xm.org Product: ============================================== WPN-XM Serverstack for Windows - Version 0.8.6 WPN-XM is a free and op [ more ] [ reply ] CSRF - MySQL / PHP.INI Hijacking 2016-04-09 hyp3rlinx lycos com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/WPNXM-CSRF.txt Vendor: =========== wpn-xm.org Product: ============================================== WPN-XM Serverstack for Windows - Version 0.8.6 WPN-XM is a free and op [ more ] [ reply ] WPN-XM Serverstack v0.8.6 XSS 2016-04-09 hyp3rlinx lycos com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/WPNXM-XSS.txt Vendor: =========== wpn-xm.org Product: ======== WPN-XM Serverstack for Windows - Version 0.8.6 WPN-XM is a free and open-source web server solution stack for [ more ] [ reply ] CVE-2016-2170: Apache OFBiz information disclosure vulnerability 2016-04-08 jleroux (at) apache (dot) org [email concealed] (jleroux apache org) ========================================== CVE-2016-2170: Apache OFBiz information disclosure vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache OFBiz 13.07.02 and 13.07.01 Apache OFBiz 12.04.05 and earlier releases in the series (12.04.*) The unsup [ more ] [ reply ] CVE-2015-3268: Apache OFBiz information disclosure vulnerability 2016-04-08 jleroux (at) apache (dot) org [email concealed] (jleroux apache org) CVE-2015-3268: Apache OFBiz information disclosure vulnerability ========================================== Severity: Moderate Vendor: The Apache Software Foundation Versions Affected: Apache OFBiz 13.07.02 and 13.07.01 Apache OFBiz 12.04.05 and earlier releases in the series (12.04.*) The unsupp [ more ] [ reply ] JAWS Weak Service Permissions leads to Privilege Escalation 2016-04-08 Heimbuecher003 connect wcsu edu JAWS Weak Service Permissions leads to Privilege Escalation Vendor Website : http://www.freedomscientific.com/Products/Blindness/JAWS INDEX =============================================== 1. Background 2. Description 3. CVSS 3.0 Base Metrics 4. Affected Products 5. Vulnerability 6. Solution 7. Cr [ more ] [ reply ] AccelSite Content Manager v1.0 - SQL Injection Vulnerability 2016-04-08 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== AccelSite Content Manager v1.0 - SQL Injection Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1817 Release Date: ============= 2016-04-07 Vulnerability Laboratory ID (VL-ID): ======================== [ more ] [ reply ] |
Privacy Statement |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[slackware-security] mozilla-firefox (SSA:2016-117-01)
New mozilla-firefox packages are available for Slackware 14.1 and -current to
fix security issues.
Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/p
[ more ] [ reply ]