BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 4 min 37 sec ago

BlackBoard LMS 9.1 SP14 - (Title) Persistent Vulnerability

January 11, 2017 - 8:19am

Posted by Vulnerability Lab on Jan 11

Document Title:
===============
BlackBoard LMS 9.1 SP14 - (Title) Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1901

Release Date:
=============
2017-01-10

Vulnerability Laboratory ID (VL-ID):
====================================
1901

Common Vulnerability Scoring System:
====================================
3.6

Product & Service Introduction:...
Categories:

Blackboard LMS 9.1 SP14 - (Profile) Persistent Vulnerability

January 11, 2017 - 8:07am

Posted by Vulnerability Lab on Jan 11

Document Title:
===============
Blackboard LMS 9.1 SP14 - (Profile) Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1900

Release Date:
=============
2017-01-09

Vulnerability Laboratory ID (VL-ID):
====================================
1900

Common Vulnerability Scoring System:
====================================
4.2

Product & Service Introduction:...
Categories:

FreeBSD Security Advisory FreeBSD-SA-17:01.openssh

January 11, 2017 - 2:49am

Posted by FreeBSD Security Advisories on Jan 10

=============================================================================
FreeBSD-SA-17:01.openssh Security Advisory
The FreeBSD Project

Topic: OpenSSH multiple vulnerabilities

Category: contrib
Module: OpenSSH
Announced: 2017-01-11
Affects: All supported versions of FreeBSD.
Corrected: 2017-01-11 05:56:40 UTC...
Categories:

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability

January 10, 2017 - 2:57pm

Posted by EMC Product Security Response Center on Jan 10

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability

EMC Identifier: ESA-2016-096
CVE Identifier: CVE-2016-0917
Severity Rating: CVSS v3 Base Score: 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected products:
EMC Software: EMC VNX2 Operating Environment for File versions prior to 8.1.9.155
EMC Software: EMC VNX1 Operating Environment for File versions prior to 7.1.80.3
EMC Software: EMC VNXe3200...
Categories:

Directadmin ControlPanel 1.50.1 denial of service Vulnerability

January 10, 2017 - 2:50pm

Posted by iedb . team on Jan 10

DirectAdmin Control Panel version 1.50.1 suffers from a denial of service vulnerability.

#################################

#
# @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@
# @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@
# @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@
# @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@...
Categories:

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability

January 10, 2017 - 2:40pm

Posted by EMC Product Security Response Center on Jan 10

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability

EMC Identifier: ESA-2016-096
CVE Identifier: CVE-2016-0917
Severity Rating: CVSS v3 Base Score: 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected products:
EMC Software: EMC VNX2 Operating Environment for File versions prior to 8.1.9.155
EMC Software: EMC VNX1 Operating Environment for File versions prior to 7.1.80.3
EMC Software: EMC VNXe3200...
Categories:

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability

January 10, 2017 - 2:29pm

Posted by EMC Product Security Response Center on Jan 10

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability

EMC Identifier: ESA-2016-096
CVE Identifier: CVE-2016-0917
Severity Rating: CVSS v3 Base Score: 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected products:
EMC Software: EMC VNX2 Operating Environment for File versions prior to 8.1.9.155
EMC Software: EMC VNX1 Operating Environment for File versions prior to 7.1.80.3
EMC Software: EMC VNXe3200...
Categories:

Directadmin ControlPanel 1.50.1 Cross-Site-Scripting Vulnerability

January 10, 2017 - 10:13am

Posted by iedb . team on Jan 10

DirectAdmin Control Panel version 1.50.1 suffers from a cross site scripting vulnerability.

#################################

#
# @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@
# @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@
# @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@
# @@@ @@@ @@@ @@ @@@ @@ @@@ @@@...
Categories: