BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 51 min 7 sec ago

Swagger Editor v2.9.9 "description" Key DOM-based Cross-Site Scripting

8 hours 23 min ago

Posted by Julien Ahrens on May 03

Swagger Editor v2.9.9 "description" Key DOM-based Cross-Site Scripting

RCE Security Advisory
https://www.rcesecurity.com

1. ADVISORY INFORMATION
=======================
Product: Swagger Editor
Vendor URL: https://github.com/swagger-api/swagger-editor
Type: Cross-Site Scripting [CWE-79]
Date found: 2015-04-07
Date published: 2016-05-03
CVSSv3 Score: 6.3 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
CVE: -...
Categories:

LSE Leading Security Experts GmbH - LSE-2016-02-03 - OXID eShop Path Traversal Vulnerability

8 hours 44 min ago

Posted by LSE-Advisories on May 03

=== LSE Leading Security Experts GmbH - Security Advisory 2016-02-03 ===

OXID eShop Path Traversal Vulnerability
------------------------------------------------------------------------

Affected Versions
=================
Community Edition 4.9.7

Issue Overview
==============
Vulnerability Type: path traversal, privilege escalation
Version: Tested in Community Edition 4.9.7
Technical Risk: high
Likelihood of Exploitation: medium
Vendor: OXID...
Categories:

[SECURITY] [DSA 3566-1] openssl security update

8 hours 57 min ago

Posted by Alessandro Ghedini on May 03

-------------------------------------------------------------------------
Debian Security Advisory DSA-3566-1 security () debian org
https://www.debian.org/security/ Alessandro Ghedini
May 03, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openssl
CVE ID : CVE-2016-2105 CVE-2016-2106...
Categories:

NetCommWireless HSPA 3G10WVE Wireless Router Multiple vulnerabilities

9 hours 8 min ago

Posted by bhadresh . patel on May 03

Title:
====

NetCommWireless HSPA 3G10WVE Wireless Router – Multiple vulnerabilities

Credit:
======

Name: Bhadresh Patel
Company/affiliation: HelpAG
Website: www.helpag.com

CVE:
=====

CVE-2015-6023, CVE-2016-6024

Date:
====

03-05-2016 (dd/mm/yyyy)

Vendor:
======

NetComm Wireless is a leading developer and supplier of high performance communication devices that connect businesses
and people to the internet.

Products and services:...
Categories:

CVE-2016-4338: Zabbix Agent 3.0.1 mysql.size shell command injection

16 hours 16 min ago

Posted by Timo Juhani Lindfors on May 03

CVE-2016-4338: Zabbix Agent 3.0.1 mysql.size shell command injection
--------------------------------------------------------------------

Affected products
=================

At least Zabbix Agent 1:3.0.1-1+wheezy from
http://repo.zabbix.com/zabbix/3.0/debian is vulnerable. Other versions
were not tested.

Background
==========

"Zabbix agent is deployed on a monitoring target to actively monitor
local resources and applications (hard...
Categories:

[slackware-security] mercurial (SSA:2016-123-01)

22 hours 58 min ago

Posted by Slackware Security Team on May 02

[slackware-security] mercurial (SSA:2016-123-01)

New mercurial packages are available for Slackware 13.0, 13.1, 13.37, 14.0,
14.1, and -current to fix a security issue.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mercurial-3.8.1-i486-1_slack14.1.txz: Upgraded.
This update fixes possible arbitrary code execution when converting Git
repos. Mercurial prior to 3.8 allowed arbitrary...
Categories:

ESA-2016-041: RSA Data Loss Prevention Multiple Vulnerabilities

May 2, 2016 - 1:56pm

Posted by Security Alert on May 02

ESA-2016-041: RSA Data Loss Prevention Multiple Vulnerabilities

EMC Identifier: ESA-2016-041

CVE Identifier: CVE-2016-0892, CVE-2016-0893, CVE-2016-0894, CVE-2016-0895

Severity Rating: CVSSv3 Base Score : Please view details below for individual CVE scores

Affected Products:

· RSA Data Loss Prevention 9.6.SP2 P4
· RSA Data Loss Prevention 9.6 SP2 P3
· RSA Data Loss Prevention 9.6 SP2 P2
· RSA Data Loss...
Categories:

[SECURITY] [DSA 3565-1] botan1.10 security update

May 2, 2016 - 10:42am

Posted by Sebastien Delafond on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3565-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
May 02, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : botan1.10
CVE ID : CVE-2015-5726 CVE-2015-5727...
Categories:

[SECURITY] [DSA 3564-1] chromium-browser security update

May 2, 2016 - 10:33am

Posted by Michael Gilbert on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3564-1 security () debian org
https://www.debian.org/security/ Michael Gilbert
May 02, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chromium-browser
CVE ID : CVE-2016-1660...
Categories:

[SECURITY] [DSA 3563-1] poppler security update

May 2, 2016 - 7:19am

Posted by Moritz Muehlenhoff on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3563-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
May 01, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : poppler
CVE ID : CVE-2015-8868

It was discovered...
Categories:

[SECURITY] [DSA 3562-1] tardiff security update

May 2, 2016 - 5:34am

Posted by Salvatore Bonaccorso on May 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-3562-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
May 01, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tardiff
CVE ID : CVE-2015-0857 CVE-2015-0858...
Categories:

Exploit-DB Captcha Bypass

May 2, 2016 - 5:25am

Posted by Rahul Pratap Singh on May 02

## FULL DISCLOSURE

#Exploit Author : Rahul Pratap Singh
#Home page Link : https://www.exploit-db.com/
#Website : https://0x62626262.wordpress.com
#Linkedin : https://in.linkedin.com/in/rahulpratapsingh94
#Date : 1/5/2016

----------------------------------------
Description:
----------------------------------------
Exploit-DB implemented a weak captcha which could be cracked easily.

----------------------------------------
POC:...
Categories:

[slackware-security] subversion (SSA:2016-121-01)

May 2, 2016 - 3:08am

Posted by Slackware Security Team on May 02

[slackware-security] subversion (SSA:2016-121-01)

New subversion packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/subversion-1.7.22-i486-2_slack14.1.txz: Rebuilt.
This update patches two security issues:
CVE-2016-2167: svnserve/sasl may authenticate users using the wrong realm.
CVE-2016-2168:...
Categories:

[slackware-security] php (SSA:2016-120-02)

May 2, 2016 - 3:00am

Posted by Slackware Security Team on May 02

[slackware-security] php (SSA:2016-120-02)

New php packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/php-5.6.21-i486-1_slack14.1.txz: Upgraded.
This release fixes bugs and security issues.
For more information, see:
http://php.net/ChangeLog-5.php#5.6.21...
Categories:

[slackware-security] ntp (SSA:2016-120-01)

May 2, 2016 - 2:52am

Posted by Slackware Security Team on May 02

[slackware-security] ntp (SSA:2016-120-01)

New ntp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
and -current to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/ntp-4.2.8p7-i486-1_slack14.1.txz: Upgraded.
This release patches several low and medium severity security issues:
CVE-2016-1551: Refclock impersonation vulnerability, AKA:...
Categories:

[security bulletin] HPSBGN03547 rev.3 - HPE Helion Eucalyptus Node Controller and other Helion Eucalyptus Components using glibc, Remote Arbitrary Code Execution

May 2, 2016 - 2:41am

Posted by security-alert on May 02

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n
a-c04989404

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04989404
Version: 3

HPSBGN03547 rev.3 - HPE Helion Eucalyptus Node Controller and other Helion
Eucalyptus Components using glibc, Remote Arbitrary Code Execution

NOTICE: The information in this Security Bulletin should be acted...
Categories:

[SECURITY] [DSA 3561-1] subversion security update

April 29, 2016 - 8:44am

Posted by Salvatore Bonaccorso on Apr 29

-------------------------------------------------------------------------
Debian Security Advisory DSA-3561-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
April 29, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : subversion
CVE ID : CVE-2016-2167 CVE-2016-2168...
Categories:

SQL Injection in GLPI

April 29, 2016 - 5:54am

Posted by High-Tech Bridge Security Research on Apr 29

Advisory ID: HTB23301
Product: GLPI
Vendor: INDEPNET
Vulnerable Version(s): 0.90.2 and probably prior
Tested Version: 0.90.2
Advisory Publication: April 8, 2016 [without technical details]
Vendor Notification: April 8, 2016
Vendor Patch: April 11, 2016
Public Disclosure: April 29, 2016
Vulnerability Type: SQL Injection [CWE-89]
Risk Level: High
CVSSv3 Base Score: 7.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L]
Solution Status: Fixed by...
Categories:

Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability

April 29, 2016 - 5:43am

Posted by Vulnerability Lab on Apr 29

Document Title:
===============
Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1839

Release Date:
=============
2016-04-29

Vulnerability Laboratory ID (VL-ID):
====================================
1839

Common Vulnerability Scoring System:
====================================
3.3

Product & Service Introduction:...
Categories:

Mozilla doesn't care for upstream security fixes, and doesn't bother to send own security fixes upstream

April 29, 2016 - 1:34am

Posted by Stefan Kanthak on Apr 28

Hi @ll

despite better knowledge and MULTIPLE bug/vulnerability reports
(see <https://bugzilla.mozilla.org/show_bug.cgi?id=811557>,
<https://bugzilla.mozilla.org/show_bug.cgi?id=809373>,
<https://bugzilla.mozilla.org/show_bug.cgi?id=579593>, ...)
Mozilla continues to ship Firefox and Thunderbird for Windows with
a vulnerable executable installer.

Proof of concept/demonstration:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1. visit <...
Categories: