BugTraq Latest Security Advisories
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 35 min 29 sec ago
Posted by Apple Product Security on Sep 20APPLE-SA-2016-09-20-2 Safari 10
Safari 10 is now available and addresses the following:
Available for: OS X Yosemite v10.10.5, OS X El Capitan v10.11.6,
and macOS 10.12 Sierra
Impact: Enabling the Safari Reader feature on a maliciously crafted
webpage may lead to universal cross site scripting
Description: Multiple validation issues were addressed through
improved input sanitization.
CVE-2016-4618 : an anonymous researcher...
Posted by EMC Product Security Response Center on Sep 20ESA-2016-093: RSA® Adaptive Authentication (On-Premise) Cross-Site Scripting Vulnerability
EMC Identifier: ESA-2016-093
CVE Identifier: CVE-2016-0925
Severity Rating: CVSS v3 Score: 5.4 (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)
RSA Adaptive Authentication (On-Premise) versions earlier than 7.3 (exclusive)
RSA Adaptive Authentication (On-Premise) version 7.3 and later
Posted by EMC Product Security Response Center on Sep 19ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability
EMC Identifier: ESA-2016-096
CVE Identifier: CVE-2016-0917
Severity Rating: CVSS v3 Base Score: 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
EMC Software: EMC VNX2 File OE versions prior to 18.104.22.168
EMC Software: EMC VNX1 File OE versions prior to 22.214.171.124
EMC Software: EMC VNXe (all supported versions)
EMC Software: EMC Celerra...
Posted by EMC Product Security Response Center on Sep 19ESA-2016-065: EMC Avamar Data Store and Avamar Virtual Edition Multiple Vulnerabilities
EMC Identifier: ESA-2016-065
CVE Identifier: CVE-2016-0903, CVE-2016-0904, CVE-2016-0905, CVE-2016-0920, CVE-2016-0921
Severity Rating: See below for individual scores for each CVE
EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) versions prior to 7.3.0
EMC Avamar Data Store (ADS) and Avamar Virtual...