|
|
Colapse all |
Post message
[RT-SA-2015-008] WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs 2017-08-22 RedTeam Pentesting GmbH (release redteam-pentesting de) [RT-SA-2015-009] WebClientPrint Processor 2.0: Remote Code Execution via Updates 2017-08-22 RedTeam Pentesting GmbH (release redteam-pentesting de) Advisory: WebClientPrint Processor 2.0: Remote Code Execution via Updates RedTeam Pentesting discovered that rogue updates trigger a remote code execution vulnerability in WebClientPrint Processor (WCPP). These updates may be distributed through specially crafted websites and are processed without [ more ] [ reply ] [RT-SA-2015-010] WebClientPrint Processor 2.0: Unauthorised Proxy Modification 2017-08-22 RedTeam Pentesting GmbH (release redteam-pentesting de) Advisory: WebClientPrint Processor 2.0: Unauthorised Proxy Modification RedTeam Pentesting discovered that attackers can configure a proxy host and port to be used when fetching print jobs with WebClientPrint Processor (WCPP). This proxy setting may be distributed via specially crafted websites and [ more ] [ reply ] [RT-SA-2015-011] WebClientPrint Processor 2.0: No Validation of TLS Certificates 2017-08-22 RedTeam Pentesting GmbH (release redteam-pentesting de) Advisory: WebClientPrint Processor 2.0: No Validation of TLS Certificates RedTeam Pentesting discovered that WebClientPrint Processor (WCPP) does not validate TLS certificates when initiating HTTPS connections. Thus, a man-in-the-middle attacker may intercept and/or modify HTTPS traffic in transit. [ more ] [ reply ] Microsoft Resnet - DNS Configuration Web Vulnerability 2017-08-16 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Microsoft Resnet - DNS Configuration Web Vulnerability References (Source): ==================== https://www.vulnerability-lab.com/get_content.php?id=2087 Acknowledgements: https://technet.microsoft.com/en-us/security/cc308589.aspx Release Date: ============= 201 [ more ] [ reply ] FreeBSD <= 10.3 jail SHM hole 2017-08-16 WhiteWinterWolf (bugtraq lists whitewinterwolf com) AFFECTED PRODUCTS This issue affects FreeBSD from 7.0 to 10.3 included. DESCRIPTION FreeBSD jail incompletely protects the access to the IPC primitives. The 'allow.sysvipc' setting only affects IPC queues, leaving other IPC objects unprotected, making them reachable system-wide independently of [ more ] [ reply ] CVE-2017-9802: Apache Sling XSS vulnerability 2017-08-14 Robert Munteanu (rombert apache org) CVE-2017-9802: Apache Sling XSS vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache Sling Servlets Post 2.3.20 Description: The Javascript method Sling.evalString() uses the javascript `eval` function to parse input strings, which allows for XSS att [ more ] [ reply ] [CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability 2017-08-14 x62x65x6e gmail com # Vulnerability type: Multiple Stored Cross Site Scripting # Vendor: Quali # Product: CloudShell # Affected version: v7.1.0.6508 (Patch 6) # Patched version: v8 and up # Credit: Benjamin Lee # CVE ID: CVE-2017-9767 ========================================================== # Overview Quali CloudS [ more ] [ reply ] [slackware-security] mercurial (SSA:2017-223-03) 2017-08-11 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] mercurial (SSA:2017-223-03) New mercurial packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/ [ more ] [ reply ] [SECURITY] [DSA 3936-1] postgresql-9.6 security update 2017-08-10 Moritz Muehlenhoff (jmm debian org) [SECURITY] [DSA 3935-1] postgresql-9.4 security update 2017-08-10 Moritz Muehlenhoff (jmm debian org) [security bulletin] HPESB3P03762 rev.1 - HPE C Switch Software using Cisco Prime Data Center Network Manager (DCNM), Remote Code Execution 2017-08-10 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesb3p 03762en_us SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: hpesb3p03762en_us Version: 1 HP [ more ] [ reply ] [ANN] Apache Struts: S2-049 Security Bulletin update 2017-08-10 Lukasz Lenart (lukaszlenart apache org) This is an update of the recently announced Security Bulletin S2-049 - http://struts.apache.org/docs/s2-049.html The bulletin was extended with an additional information when the potential vulnerability can be present in your application. Please re-read the mentioned bulletin and apply required act [ more ] [ reply ] [SECURITY][ANNOUNCE] Apache Subversion 1.9.7 released 2017-08-10 Daniel Shahaf (danielsh apache org) I'm happy to announce the release of Apache Subversion 1.9.7. Please choose the mirror closest to you by visiting: http://subversion.apache.org/download.cgi?update=201708081800#recommende d-release This is a stable security release of the Apache Subversion open source version control system. I [ more ] [ reply ] [SECURITY] [DSA 3929-1] libsoup2.4 security update 2017-08-10 Salvatore Bonaccorso (carnil debian org) [slackware-security] curl (SSA:2017-221-01) 2017-08-09 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] curl (SSA:2017-221-01) New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ [ more ] [ reply ] [slackware-security] mozilla-firefox (SSA:2017-221-02) 2017-08-09 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] mozilla-firefox (SSA:2017-221-02) New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/p [ more ] [ reply ] DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities 2017-08-07 DefenseCode (defensecode defensecode com) Re: [oss-security] [CVE-2017-7533] kernel: inotify: a race between inotify_handle_event() and sys_rename() 2017-08-05 Brad Spengler (spender grsecurity net) This bothers me, and since nobody else has bothered to ask, I'll chime in: Can someone please clear up this timeline for me? We have: (nearly a month ago) 7/7/2017 Silent upstream fix for vulnerability, no stable cc, no backports performed, no distro fixes. Possibly before this, possibly after (p [ more ] [ reply ] [SECURITY] [DSA 3926-1] chromium-browser security update 2017-08-04 Michael Gilbert (mgilbert debian org) |
|
Privacy Statement |
RedTeam Pentesting discovered that malicious print jobs can be used to
trigger a remote code execution vulnerability in WebClientPrint
Processor (WCPP). These print jobs may be distributed via specially
crafted websites an
[ more ] [ reply ]