|
|
Colapse all |
Post message
CVE-2015-3938 Remote Permanent LoV (Loss of View) in Mitsubishi Melsec FX3G-24M PLC 2015-09-29 Ralf Spenneberg \(OpenSource Security\) (funktionskonto spenneberg net) Remote privesc and RCE in Kaseya Virtual System Administrator 2015-09-29 Pedro Ribeiro (pedrib gmail com) Hi, I have found 3 vulnerabilities in Kaseya's flagship product: - unauthenticated remote code execution (CVE-2015-6922 / ZDI-15-449) - unauthenticated remote privilege escalation (CVE-2015-6922 / ZDI-15-448) - authenticated remote code execution (CVE-2015-6589 / ZDI-15-450) Kaseya VSA is an IT ma [ more ] [ reply ] Vtiger CRM Authenticated Remote Code Execution (CVE-2015-6000) 2015-09-28 Benjamin Daniel Mussler (sec ml fl7 de) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Vtiger CRM Authenticated Remote Code Execution (CVE-2015-6000) <http://b.fl7.de/2015/09/vtiger-crm-authenticated-rce-cve-2015-6000.html > 1. Summary 2. Vulnerability Details 3. Exploitation / Proof of Concept 4. Timeline 5. See Also ########## 1. Summa [ more ] [ reply ] Photos in Wifi v1.0.1 iOS - Arbitrary File Upload Vulnerability 2015-09-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Photos in Wifi v1.0.1 iOS - Arbitrary File Upload Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1600 Release Date: ============= 2015-09-28 Vulnerability Laboratory ID (VL-ID): ======================= [ more ] [ reply ] NodeBB v0.8.2 - Client Side Cross Site Web Vulnerability 2015-09-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== NodeBB v0.8.2 - Client Side Cross Site Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1600 Release Date: ============= 2015-09-24 Vulnerability Laboratory ID (VL-ID): ============================== [ more ] [ reply ] WinRAR SFX v5.21 - Remote Code Execution Vulnerability 2015-09-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== WinRAR SFX v5.21 - Remote Code Execution Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1608 Video: https://www.youtube.com/watch?v=fo0l0oT4468 Release Date: ============= 2015-09-28 Vulnerability Lab [ more ] [ reply ] Flowdock API Bug Bounty #3 - (Invite) Persistent Web Vulnerability 2015-09-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Flowdock API Bug Bounty #3 - (Invite) Persistent Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1574 Release Date: ============= 2015-09-24 Vulnerability Laboratory ID (VL-ID): ==================== [ more ] [ reply ] My.WiFi USB Drive v1.0 iOS - File Include Vulnerability 2015-09-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== My.WiFi USB Drive v1.0 iOS - File Include Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1589 Release Date: ============= 2015-09-24 Vulnerability Laboratory ID (VL-ID): =============================== [ more ] [ reply ] Subject mail: CVE-2015-7320 - Multiple Reflective XSS in Appointment Booking Calendar 1.1.7 WordPress plugin 2015-09-26 ibemed gmail com Vulnerability title: Multiple Reflective XSS in Appointment Booking Calendar 1.1.7 WordPress plugin CVE: CVE-2015-7320 Vendor: WordPress DWBooster Product: Appointment Booking Calendar Affected version: 1.1.7 Fixed version: 1.1.8 Reported by: Ibéria Medeiros Vulnerability Details: ================= [ more ] [ reply ] CVE-2015-7320 - Multiple Reflective XSS in Appointment Booking Calendar 1.1.7 WordPress plugin 2015-09-26 ibemed gmail com Vulnerability title: Multiple Reflective XSS in Appointment Booking Calendar 1.1.7 WordPress plugin CVE: CVE-2015-7320 Vendor: WordPress DWBooster Product: Appointment Booking Calendar Affected version: 1.1.7 Fixed version: 1.1.8 Reported by: Ibéria Medeiros Vulnerability Details: ================= [ more ] [ reply ] CVE-2015-7319 - SQL Injection in Appointment Booking Calendar 1.1.7 WordPress plugin 2015-09-26 ibemed gmail com Vulnerability title: SQL Injection in Appointment Booking Calendar 1.1.7 WordPress plugin CVE: CVE-2015-7319 Vendor: WordPress DWBooster Product: Appointment Booking Calendar Affected version: 1.1.7 Fixed version: 1.1.8 Reported by: Ibéria Medeiros Vulnerability Details: ===================== It wa [ more ] [ reply ] IconLover v5.4.5 - Stack Buffer Overflow Vulnerability 2015-09-28 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== IconLover v5.4.5 - Stack Buffer Overflow Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1609 Release Date: ============= 2015-09-28 Vulnerability Laboratory ID (VL-ID): ================================ [ more ] [ reply ] Git-1.9.5 ssh-agent.exe Buffer Overflow 2015-09-28 apparitionsec gmail com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/AS-GIT-SSH-AGENT-BUFF-OVERFLO W.txt Vendor: ================================ git-scm.com Product: ================================ Git-1.9.5-preview20150319.exe github.com/msys [ more ] [ reply ] Git-1.9.5 ssh-agent.exe Buffer Overflow 2015-09-26 apparitionsec gmail com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/AS-GIT-SSH-AGENT-BUFF-OVERFLO W.txt Vendor: ================================ git-scm.com Product: ================================ Git-1.9.5-preview20150319.exe github.com/msys [ more ] [ reply ] [security bulletin] HPSBHF03513 rev.1 - HP PCs and Workstations running Windows and Linux with NVidia Graphics Driver, Local Denial of Service (DoS), Elevation of Privilege 2015-09-25 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04815468 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04815468 Version: 1 HPSBHF03513 r [ more ] [ reply ] [SECURITY] [DSA 3368-1] cyrus-sasl2 security update 2015-09-25 Salvatore Bonaccorso (carnil debian org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------ - Debian Security Advisory DSA-3368-1 security (at) debian (dot) org [email concealed] https://www.debian.org/security/ Salvatore Bonaccorso September 25, 2015 [ more ] [ reply ] CVE-2015-5075 - Cross-Site Request Forgery In X2Engine Inc. X2Engine 2015-09-25 Portcullis Advisories (advisories portcullis-security com) Vulnerability title: Cross-Site Request Forgery In X2Engine Inc. X2Engine CVE: CVE-2015-5075 Vendor: X2Engine Inc. Product: X2Engine Affected version: 4.2 Fixed version: 5.2 Reported by: Simone Quatrini Details: It was discovered that no protection against Cross-site Request Forgery attacks was imp [ more ] [ reply ] CVE-2015-5074 - Arbitrary File Upload In X2Engine Inc. X2Engine 2015-09-25 Portcullis Advisories (advisories portcullis-security com) Vulnerability title: Arbitrary File Upload In X2Engine Inc. X2Engine CVE: CVE-2015-5074 Vendor: X2Engine Inc. Product: X2Engine Affected version: 4.2 Fixed version: 5.2 Reported by: Simone Quatrini Details: It was discovered that authenticated users were able to upload files of any type providing t [ more ] [ reply ] CVE-2015-5076 - Vulnerability title: Reflective XSS In X2Engine Inc. X2Engine 2015-09-25 Portcullis Advisories (advisories portcullis-security com) Vulnerability title: Reflective XSS In X2Engine Inc. X2Engine CVE: CVE-2015-5076 Vendor: X2Engine Inc. Product: X2Engine Affected version: 4.2 Fixed version: 5.2 Reported by: Simone Quatrini Details: It was discovered that the web application was vulnerable to reflective Cross-Site Scripting where [ more ] [ reply ] Insecure application-coupling in Good Authentication Delegation [MZ-15-03] 2015-09-25 modzero (security modzero ch) Hi, we decided to publish this advisory without coordination with the vendor (GOOD Technology) as they were not cooperative (again). There is a blog-posting about why we decided to not proceed with Responsible Disclosure this time: http://www.modzero.ch/modlog/archives/2015/09/24/on_responsible_ [ more ] [ reply ] FortiManager v5.2.2 Multiple XSS Vulnerabilities 2015-09-25 apparitionsec gmail com [+] Credits: hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/AS-FORTIMANAGER-XSS-0924.txt Vendor: ================================ www.fortinet.com Product: ================================ FortiManager v5.2.2 FortiManager is a central [ more ] [ reply ] Re: CVE-2015-5204: HTTP header injection vulnerability in Apache Cordova File Transfer Plugin for Android 2015-09-24 Shazron (shazron apache org) CVE-2015-5204: HTTP header injection vulnerability in Apache Cordova File Transfer Plugin for Android Severity: Medium Vendor: The Apache Software Foundation Versions Affected: Cordova Android File Transfer Plugin (1.2.1 and below) Description: Android applications built with the Cordova fr [ more ] [ reply ] BMC-2015-0006: File inclusion vulnerability in "BIRT Engine" servlet used in BMC Remedy AR Reporting 2015-09-23 appsec (appsec bmc com) ------------------------------------------------------------------------ File inclusion vulnerability in "BIRT Engine" servlet used in BMC Remedy AR Reporting BMC Identifier: BMC-2015-0006 CVE Identifier: CVE-2015-5072 ------------------------------------------------------------------------ By BM [ more ] [ reply ] BMC-2015-0005: File inclusion vulnerability in "BIRT Viewer" servlet used in BMC Remedy AR Reporting 2015-09-23 appsec (appsec bmc com) ------------------------------------------------------------------------ File inclusion vulnerability in "BIRT Viewer" servlet used in BMC Remedy AR Reporting BMC Identifier: BMC-2015-0005 CVE Identifier: CVE-2015-5071 ------------------------------------------------------------------------ By BM [ more ] [ reply ] [SECURITY] [DSA 3366-1] rpcbind security update 2015-09-23 Salvatore Bonaccorso (carnil debian org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------ - Debian Security Advisory DSA-3366-1 security (at) debian (dot) org [email concealed] https://www.debian.org/security/ Salvatore Bonaccorso September 23, 2015 [ more ] [ reply ] Cisco AnyConnect elevation of privileges via DMG install script 2015-09-23 Securify B.V. (lists securify nl) ------------------------------------------------------------------------ Cisco AnyConnect elevation of privileges via DMG install script ------------------------------------------------------------------------ Yorick Koster, July 2015 ---------------------------------------------------------------- [ more ] [ reply ] ESA-2015-142: RSA Archer® GRC Platform Multiple Vulnerabilities 2015-09-23 Security Alert (Security_Alert emc com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-142: RSA Archer® GRC Platform Multiple Vulnerabilities EMC Identifier: ESA-2015-142 CVE Identifier: CVE-2015-4541, CVE-2015-4542, CVE-2015-4543 Severity Rating: CVSS v2 Base Score: View details below for individual CVSS v2 scores [ more ] [ reply ] Cisco Security Advisory: Cisco IOS XE Software Network Address Translation Denial of Service Vulnerability 2015-09-23 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco IOS XE Software Network Address Translation Denial of Service Vulnerability Advisory ID: cisco-sa-20150923-iosxe Revision 1.0 For Public Release 2015 September 23 16:00 UTC (GMT) +------------------------------------------------------------- [ more ] [ reply ] |
|
Privacy Statement |
Date: September 29th, 2015
CVE: CVE-2015-3938
CVSS: 5 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Title: Mitsubishi ICS FX3G-24M Permanent Communication Denial of Service
Severity: Critical.
The TCP/IP communication of the Mitsubishi Melsec FX3G-24 is
[ more ] [ reply ]