BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 52 min 31 sec ago

File Manager PRO v1.3 iOS - Multiple Web Vulnerabilities

February 3, 2016 - 8:52am

Posted by Vulnerability Lab on Feb 03

Document Title:
===============
File Manager PRO v1.3 iOS - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1704

Release Date:
=============
2016-02-03

Vulnerability Laboratory ID (VL-ID):
====================================
1704

Common Vulnerability Scoring System:
====================================
7.3

Product & Service Introduction:...
Categories:

SimpleView CRM - Client Side Open Redirect Vulnerability

February 3, 2016 - 8:38am

Posted by Vulnerability Lab on Feb 03

Document Title:
===============
SimpleView CRM - Client Side Open Redirect Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1668

Release Date:
=============
2016-02-02

Vulnerability Laboratory ID (VL-ID):
====================================
1668

Common Vulnerability Scoring System:
====================================
2.8

Product & Service Introduction:...
Categories:

Getdpd Bug Bounty #1 - (asm0option0) Persistent Web Vulnerability

February 3, 2016 - 8:20am

Posted by Vulnerability Lab on Feb 03

Document Title:
===============
Getdpd Bug Bounty #1 - (asm0option0) Persistent Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1464

ID: #14770

Release Date:
=============
2016-02-02

Vulnerability Laboratory ID (VL-ID):
====================================
1564

Common Vulnerability Scoring System:
====================================
3.6

Product & Service Introduction:...
Categories:

Compal ConnectBox Wireless - Passphrase Settings Filter Bypass Vulnerability

February 3, 2016 - 8:08am

Posted by Vulnerability Lab on Feb 03

Document Title:
===============
Compal ConnectBox Wireless - Passphrase Settings Filter Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1705

Release Date:
=============
2016-02-03

Vulnerability Laboratory ID (VL-ID):
====================================
1705

Common Vulnerability Scoring System:
====================================
5.8

Product & Service Introduction:...
Categories:

Mezzanine CMS 4.1.0 XSS

February 3, 2016 - 4:10am

Posted by hyp3rlinx on Feb 03

[+] Credits: hyp3rlinx

[+] Website: hyp3rlinx.altervista.org

[+] Source: http://hyp3rlinx.altervista.org/advisories/MEZZANINE-CMS-XSS.txt

Vendor:
===================
mezzanine.jupo.org

Product:
================
Mezzanine 4.1.0

Mezzanine is an open source CMS built using the python based Django framework.

Vulnerability Type:
===================
XSS

CVE Reference:
==============
N/A

Vulnerability Details:
=====================

XSS entry...
Categories:

Mezzanine CMS 4.1.0 Arbitrary File Upload

February 3, 2016 - 3:54am

Posted by hyp3rlinx on Feb 03

[+] Credits: hyp3rlinx

[+] Website: hyp3rlinx.altervista.org

[+] Source: http://hyp3rlinx.altervista.org/advisories/MEZZANINE-CMS-ARBITRARY-FILE-UPLOAD.txt

Vendor:
===================
mezzanine.jupo.org

Product:
================
Mezzanine 4.1.0

Mezzanine is an open source CMS built using the python based Django framework.

Vulnerability Type:
=====================
Arbitrary File Upload

CVE Reference:
==============
N/A

Vulnerability...
Categories:

ASUS RT-N56U Persistent XSS

February 3, 2016 - 3:39am

Posted by graphx on Feb 03

# Exploit Title: ASUS RT-N56U Persistent XSS
# Date: 2/2/2016
# Exploit Author: @GraphX
# Vendor Homepage: http://asus.com/
# Version: 3.0.0.4.374_239

1 Description:
It is possible for an authenticated attacker to bypass input sanitation in
the username input field of the Server Center page. An interception proxy
is not required with the use of the developer console and changing the
field value of the username after the third verification task...
Categories:

TimeClock - Multiple SQL Injections

February 3, 2016 - 3:24am

Posted by marcelabx on Feb 03

#############################
Exploit Title : Multiple SQL injections
Author:Marcela Benetrix
Date: 02/03/2016
version: 0.995 (older version may be vulnerable too)
software link:http://timeclock-software.net

#############################
Timeclock software

Timeclock-software.net's free software product will be a simple solution to allow your employees to record their time
in one central location for easy access....
Categories:

[SECURITY] [DSA 3465-1] openjdk-6 security update

February 3, 2016 - 3:14am

Posted by Moritz Muehlenhoff on Feb 03

-------------------------------------------------------------------------
Debian Security Advisory DSA-3465-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
February 02, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openjdk-6
CVE ID : CVE-2015-7575 CVE-2016-0402...
Categories:

MailPoet Newsletter 2.6.19 - Security Advisory - Reflected XSS

February 2, 2016 - 1:43pm

Posted by Onur Yilmaz on Feb 02

Information
--------------------
Advisory by Netsparker
Name: XSS Vulnerability in MailPoet Newsletters
Affected Software : MailPoet Newsletters
Affected Versions: v2.6.19 and possibly below
Vendor Homepage : http://www.mailpoet.com/
Vulnerability Type : Cross-site Scripting
Severity : Important
CVE-ID : TBA
Status : Fixed
Netsparker Advisory Reference : NS-16-001

Description
--------------------
By exploiting a Cross-site scripting...
Categories:

Re: VMWare Zimbra Mailer | DKIM longterm Mail Replay vulnerability

February 2, 2016 - 1:29pm

Posted by Phil Pearl on Feb 02

Following up inline...

Note: A quick search would show that Zimbra is, two parents, and more
than two years removed from VMware[1]. We're a part of Synacor[2] now.
[1] https://www.vmware.com/products/zimbra
[2] http://investor.synacor.com/releasedetail.cfm?ReleaseID=928079

It is also relevant to point out that Zimbra uses OpenDKIM with
Amavisd-new.

The issue(s) may be a bit more generic than this report seems to
indicate, or...
Categories:

A tale of openssl_seal(), PHP and Apache2handle

February 2, 2016 - 8:29am

Posted by s3810 on Feb 02

Hey folks,

The openssl_seal() [4] is prone to use uninitialized memory that can be
turned into a code execution. This document describes technical details of
our journey to hijack apache2 requests.

What the heck is openssl_seal()?

[...]
int openssl_seal ( string $data , string &$sealed_data , array &$env_keys , array $pub_key_ids [,
string $method = "RC4" ] )

openssl_seal() seals (encrypts) data by using the given...
Categories:

WebKitGTK+ Security Advisory WSA-2016-0001

February 2, 2016 - 12:33am

Posted by Carlos Alberto Lopez Perez on Feb 01

------------------------------------------------------------------------
WebKitGTK+ Security Advisory WSA-2016-0001
------------------------------------------------------------------------

Date reported : February 01, 2016
Advisory ID : WSA-2016-0001
Advisory URL : http://webkitgtk.org/security/WSA-2016-0001.html
CVE identifiers : CVE-2015-7096, CVE-2015-7098.

Several vulnerabilities were...
Categories: