|
|
Colapse all |
Post message
[security bulletin] HPSBUX02825 SSRT100974 rev.1 - HP-UX Running Java, Remote Indirect Vulnerabilities 2012-10-29 security-alert hp com Call for Papers: DIMVA 2013 2012-10-29 Collin Mulliner (crm ccs neu edu) Call for Papers: DIMVA 2013 =========================== 10th International Conference on Detection of Intrusions and Malware & Vulnerability Assessment Berlin, Germany July 18-19 2013 http://www.dimva.org/dimva2013 About DIMVA ----------- The annual DIMVA conference serves as a premier forum fo [ more ] [ reply ] EMC Avamar Client for VMware Sensitive Information Disclosure Vulnerability 2012-10-26 Security Alert (Security_Alert emc com) Exploit - EasyITSP by Lemens Telephone Systems 2.0.2 2012-10-26 MichaÅ? BÅ?aszczak (blaszczakm gmail com) <?php error_reporting(0); $arguments = getopt("a:b:c:"); $url = $arguments['a']; $id_pod =$arguments['b']; $id_end =$arguments['c']; if(count($arguments)!=3) { echo '## Exploit - EasyITSP by Lemens Telephone Systems 2.0.2  '."\n"; echo '## Discovery users with passwords  '."\n"; echo '## [ more ] [ reply ] [slackware-security] mozilla-firefox (SSA:2012-300-01) 2012-10-27 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] mozilla-firefox (SSA:2012-300-01) New mozilla-firefox packages are available for Slackware 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+ [ more ] [ reply ] [SECURITY] [DSA 2567-1] request-tracker3.8 security update 2012-10-26 Florian Weimer (fw deneb enyo de) Inventory 1.0 Multiple XSS Vulnerabilities 2012-10-26 Thomas Richards (g13net gmail com) # Exploit Title: Inventory 1.0 Multiple XSS Vulnerabilities # Date: 10/19/12 # Author: G13 # Twitter: @g13net # Software Site: https://github.com/farevalod/inventory # Version: 1.0 # Category: webapp (php) # dc585 ##### ToC ##### 0x01 Description 0x02 XSS 0x03 Vendor Notification ##### 0x01 Descr [ more ] [ reply ] Inventory 1.0 Multiple SQL Vulnerabilities 2012-10-26 Thomas Richards (g13net gmail com) # Exploit Title: Inventory 1.0 Multiple SQL Vulnerabilities # Date: 10/19/12 # Author: G13 # Twitter: @g13net # Software Site: https://github.com/farevalod/inventory # Version: 1.0 # Category: webapp (php) # dc585 ##### ToC ##### 0x01 Description 0x02 SQL Injection 0x03 Vendor Notification ##### [ more ] [ reply ] [security bulletin] HPSBHF02819 SSRT100920 rev.2 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information 2012-10-25 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03515685 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03515685 Version: 2 HPSBHF02819 SS [ more ] [ reply ] [SECURITY] [DSA 2562-1] cups-pk-helper security update 2012-10-23 Thijs Kinkhorst (thijs debian org) HP/H3C and Huawei SNMP Weak Access to Critical Data 2012-10-23 Kurt Grutzmacher (grutz jingojango net) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP/H3C and Huawei SNMP Weak Access to Critical Data =================================================== http://grutztopia.jingojango.net/2012/10/hph3c-and-huawei-snmp-weak-acce ss-to.html Overview - - -------- HP/H3C and Huawei networking equipment s [ more ] [ reply ] [waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin 2012-10-24 come2waraxe yahoo com [waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin ======================================================================== ===================== Author: Janek Vind "waraxe" Date: 24. October 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory- [ more ] [ reply ] VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability 2012-10-23 VUPEN Security Research (advisories vupen com) VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- Java is a programming language and computing platform released by Sun Microsystems (now Oracl [ more ] [ reply ] VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability 2012-10-23 VUPEN Security Research (advisories vupen com) VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- Java is a programming language and computing platform released by Sun Microsystems (now Oracle) [ more ] [ reply ] VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063) 2012-10-23 VUPEN Security Research (advisories vupen com) VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063) Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included [ more ] [ reply ] VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063) 2012-10-23 VUPEN Security Research (advisories vupen com) VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063) Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as part [ more ] [ reply ] [security bulletin] HPSBUX02824 SSRT100970 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code, and Other Vulnerabilities 2012-10-22 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03533078 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03533078 Version: 1 HPSBUX02824 SS [ more ] [ reply ] DC4420 - London DEFCON - October meet - tomorrow, Tuesday 23rd October. 2012-10-22 alien DC4420 (alien dc4420 org) It's that time again.. :) Tomorrow, Tuesday night :) Please welcome Kuan Hon who has lots of lovely academic letters and is a Solicitor in England & Wales and also a New York Attorney (non-practising) who will be talking about : "Cloud Security: Some Present and Future Legal Headaches" https:// [ more ] [ reply ] VaM Shop Cross-Site Scripting and Blind SQL Injection Vulnerabilities 2012-10-21 sec team cyberservices com Product: VaM Shop Vendor: Vamsoft ( http://vamshop.ru/ ) Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit: Security Effect Team(http://seceffect.tumblr.com/) Vulnerability Details: 1. Blind SQL injection in s [ more ] [ reply ] |
|
Privacy Statement |
Hash: SHA1
Note: the current version of the following document is available here:
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03538957
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03538957
Version: 1
HPSBUX02825 SS
[ more ] [ reply ]