BugTraq Mode:
(Page 249 of 1747)  < Prev  244 245 246 247 248 249 250 251 252 253 254  Next >
[security bulletin] HPSBMU02932 rev.1 - HP Application LifeCycle Management, ALM client component, Remote Execution of Arbitrary Code 2013-10-31
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03969433

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03969433
Version: 1

HPSBMU02932 re

[ more ]  [ reply ]
[security bulletin] HPSBMU02872 SSRT101185 rev.3 - HP Service Manager, Remote Disclosure of Information, Cross Site Scripting(XSS) 2013-10-31
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03748875

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03748875
Version: 3

HPSBMU02872 SS

[ more ]  [ reply ]
[security bulletin] HPSBMU02874 SSRT101184 rev.2 - HP Service Manager, Java Runtime Environment (JRE) Security Update 2013-10-31
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03748879

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03748879
Version: 2

HPSBMU02874 SS

[ more ]  [ reply ]
[SECURITY] [DSA 2789-1] strongswan security update 2013-11-01
Yves-Alexis Perez (corsac debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2789-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Yves-Alexis Perez
November 01, 2013

[ more ]  [ reply ]
[security bulletin] HPSBMU02933 rev.1 - HP SiteScope, issueSiebelCmd SOAP Request, Remote Code Execution 2013-10-31
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03969435

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03969435
Version: 1

HPSBMU02933 re

[ more ]  [ reply ]
[ MDVSA-2013:264 ] firefox 2013-10-31
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:264
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[SECURITY] [DSA 2788-1] iceweasel security update 2013-10-31
Raphael Geissert (geissert debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2788-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Raphael Geissert
October 31, 2013

[ more ]  [ reply ]
nullcon Goa V First Speaker list and CFP closes soon 2013-10-30
nullcon (nullcon nullcon net)
Dear Hackers and Hackeranis,

Tool tip: Did u know nullcon goa V is on V day?
Show a friendly gesture this V day, spread love not malware :)

Loads of action packed events happening at nullcon goa as we turn five
but first things first, the first speaker list(in no specific order):

1. Keynote: Jeff

[ more ]  [ reply ]
[CVE-2013-4484] DoS vulnerability in Varnish HTTP cache 2013-10-30
Poul-Henning Kamp (phk critter freebsd dk)


Summary
=======

Varnish Cache with certain configurations is vulnerable to a denial
of service attack.

Three lines of VCL code solves the problem.

This issue was discovered by Ilia Sharov, Yandex.

This has been assigned CVE-2013-4484.

Details
=======

If Varnish receives a certain illegal req

[ more ]  [ reply ]
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS XE Software for 1000 Series Aggregation Services Routers 2013-10-30
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS XE Software for 1000 Series Aggregation Services Routers

Advisory ID: cisco-sa-20131030-asr1000

Revision 1.0

For Public Release 2013 October 30 16:00 UTC (GMT)

+----------------------

[ more ]  [ reply ]
Unicorn Router WB-3300NR CSRF (Factory Reset/DNS Change) 2013-10-30
jsibley1 gmail com
# Exploit Title: Unicorn Router WB-3300NR CSRF (Factory Reset/DNS Change)
# Exploit Author: absane
# Blog: http://blog.noobroot.com
# Discovery date: October 29th 2013
# Vendor Homepage: http://www.eunicorn.co.kr/kimsboard7/_product.php?inc=wb-3300nr
# Tested on:

[ more ]  [ reply ]
ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability 2013-10-29
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability

EMC Identifier: ESA-2013-074

CVE Identifier: CVE-2013-3287

Severity Rating: CVSS v2 Base Score: 6.6 (AV:L/AC:M/Au:S/C:C/I:C/A:C)

Affected products

? EMC Uni

[ more ]  [ reply ]
Apache PHP Remote Exploit - apache-magika.c 2013-10-29
king cope (isowarez isowarez isowarez googlemail com)
(see attachment)

Signed,
Kingcope
/* Apache Magica by Kingcope */

/* gcc apache-magika.c -o apache-magika -lssl */

/* This is a code execution bug in the combination of Apache and PHP.

On Debian and Ubuntu the vulnerability is present in the default install

of the php5-cgi package. When the php

[ more ]  [ reply ]
[ MDVSA-2013:263 ] roundcubemail 2013-10-29
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:263
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Olat CMS 7.8.0.1 - Persistent Calender Web Vulnerability 2013-10-29
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Olat CMS 7.8.0.1 - Persistent Calender Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1125

Release Date:
=============
2013-10-27

Vulnerability Laboratory ID (VL-ID):
==============================

[ more ]  [ reply ]
GTX CMS 2013 Optima - Multiple Web Vulnerabilities 2013-10-29
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
GTX CMS 2013 Optima - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1124

Release Date:
=============
2013-10-29

Vulnerability Laboratory ID (VL-ID):
====================================

[ more ]  [ reply ]
ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability 2013-10-29
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability

EMC Identifier: ESA-2013-072

EMC Identifier: NW152441

CVE Identifier: CVE-2013-3285

Severity Rating: CVSS v2 Base Score: 6.8 (AV:L/AC:L/Au:S/C:C/I:C/A:C)

Affected

[ more ]  [ reply ]
CVE-2013-5694 Blind SQL Injection in Ops View 2013-10-28
J. Oquendo (sil e-fensive net)
CVE-2013-5694 Blind SQL Injection in Ops View
Version(s): Opsview pre 4.4.1
Author: J. Oquendo (joquendo at e-fensive dot net)

I. ADVISORY

Title: Blind SQL Injection in OpsView
Date published: 2013-10-28
Vendor contacted: 2013-09-04

II. BACKGROUND

Opsview is a systems management software built

[ more ]  [ reply ]
[PSA-2013-1022-1] Microsoft Silverlight Invalid Typecast / MemoryDisclosure 2013-10-28
bugtraq packetstormsecurity org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

+-----------------------------------------------------------------------
-------+
| Packet Storm Advisory 2013-1022-1 |
| http://packetstormsecurity.com/ |
+---------

[ more ]  [ reply ]
[ MDVSA-2013:262 ] python-pycrypto 2013-10-28
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:262
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2013:261 ] dropbear 2013-10-28
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:261
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2013:259 ] x11-server 2013-10-28
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:259
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Stem Innovation â??IZONâ?? Hard-coded Credentials (CVE-2013-6236) 2013-10-29
Mark Stanislav (mstanislav duosecurity com)
Stem Innovation â??IZONâ?? Hard-coded Credentials (CVE-2013-6236)
Mark Stanislav - mstanislav (at) duosecurity (dot) com [email concealed]

I. DESCRIPTION
---------------------------------------
Stem Innovation's IP camera called â??IZONâ?? utilizes numerous hard-coded credentials within its Linux distribution and also the hid

[ more ]  [ reply ]
[ MDVSA-2013:260 ] x11-server 2013-10-28
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:260
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2013:258 ] icu 2013-10-28
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2013:258
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
CVE-2013-5695 Multilple Cross Site Scripting (XSS) Attacks in Ops View 2013-10-28
J. Oquendo (sil e-fensive net)
CVE-2013-5695 Multilple Cross Site Scripting (XSS) Attacks in Ops View
Version(s): Opsview pre 4.4.1
Author: J. Oquendo (joquendo at e-fensive dot net)

I. ADVISORY

Title: Multilple Cross Site Scripting (XSS) Attacks in Ops View
Date published: 2013-10-28
Vendor contacted: 2013-09-04

II. BACKGRO

[ more ]  [ reply ]
ILIAS eLearning 4.3.4 & 4.4 CMS - Persistent Notes Web Vulnerability 2013-10-28
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
ILIAS eLearning 4.3.4 & 4.4 CMS - Persistent Notes Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1122

Release Date:
=============
2013-10-27

Vulnerability Laboratory ID (VL-ID):
==================

[ more ]  [ reply ]
Re: Call for Papers, 2014 Symposium on Protocols and Rules for Security (SPRS2014) 2013-10-28
Brandon Butterworth (brandon rd bbc co uk)
> <td style="PADDING-BOTTOM: 5px; LINE-HEIGHT: 22px;
> PADDING-LEFT: 5px; PADDING-RIGHT: 5px; FONT-FAMILY: Times New
> Roman; COLOR: #2b2b2b; FONT-SIZE: 19px; PADDING-TOP: 5px"
> align="left"><p style="line-height:23px;font-size:20px;">Dear
> Colleagues,</p> <p>We would like to cordially invite

[ more ]  [ reply ]
[PT-2013-46] Local File Include in Nagios Looking Glass 2013-10-28
noreply ptsecurity ru
-----------------------------------------------------------
(PT-2013-46) Positive Technologies Security Advisory
Local File Include in Nagios Looking Glass
-----------------------------------------------------------

---[ Vulnerable software ]

Nagios Looking Glass
Version: 1.1.0 beta 2 an

[ more ]  [ reply ]
[scip_Advisory 10847] MobileIron 4.5.4 Device Registration regpin Cross Site Scripting 2013-10-28
Marc Ruef (maru scip ch)
MobileIron 4.5.4 Device Registration regpin Cross Site Scripting

scip AG Vulnerability ID 10847 (10/28/2013)
http://www.scip.ch/en/?vuldb.10847

I. INTRODUCTION

MobileIron is a commercial solution to provide secure access to mobile users in corporate environments.

More information is available on

[ more ]  [ reply ]
(Page 249 of 1747)  < Prev  244 245 246 247 248 249 250 251 252 253 254  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus