Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 29 min 18 sec ago

Bugtraq: Executable installers are vulnerable^WEVIL (case 25): WinRAR's installer and self-extractors allow arbitrary (remote) code execution and escalation of privilege

February 8, 2016 - 7:00am
Executable installers are vulnerable^WEVIL (case 25): WinRAR's installer and self-extractors allow arbitrary (remote) code execution and escalation of privilege
Categories:

Bugtraq: CFP: SIN 2016 - 9th International Conference on Security of Information and Networks

February 8, 2016 - 7:00am
CFP: SIN 2016 - 9th International Conference on Security of Information and Networks
Categories:

Bugtraq: [SECURITY] [DSA 3468-1] polarssl security update

February 8, 2016 - 3:00am
[SECURITY] [DSA 3468-1] polarssl security update
Categories:

Bugtraq: [CVE-2016-0602, CVE-2016-0603] Executable installers are vulnerable^WEVIL (case 24): Oracle Java 6/7/8 SE and VirtualBox

February 8, 2016 - 1:00am
[CVE-2016-0602, CVE-2016-0603] Executable installers are vulnerable^WEVIL (case 24): Oracle Java 6/7/8 SE and VirtualBox
Categories:

Bugtraq: [security bulletin] HPSBGN03434 rev.1 - HP Continuous Delivery Automation using Java Deserialization, Remote Arbitrary Code Execution

February 8, 2016 - 1:00am
[security bulletin] HPSBGN03434 rev.1 - HP Continuous Delivery Automation using Java Deserialization, Remote Arbitrary Code Execution
Categories:

Bugtraq: [security bulletin] HPSBHF03431 rev.2 - HPE Network Switches, local Bypass of Security Restrictions, Indirect Vulnerabilities

February 8, 2016 - 1:00am
[security bulletin] HPSBHF03431 rev.2 - HPE Network Switches, local Bypass of Security Restrictions, Indirect Vulnerabilities
Categories:

Bugtraq: CVE-2015-3252: Apache CloudStack VNC authentication issue

February 8, 2016 - 1:00am
CVE-2015-3252: Apache CloudStack VNC authentication issue
Categories:

Bugtraq: CVE-2015-3251: Apache CloudStack VM Credential Exposure

February 7, 2016 - 11:00pm
CVE-2015-3251: Apache CloudStack VM Credential Exposure
Categories:

Bugtraq: [SECURITY] [DSA 3466-1] krb5 security update

February 7, 2016 - 11:00pm
[SECURITY] [DSA 3466-1] krb5 security update
Categories:

Bugtraq: WordPress User Meta Manager Plugin [Blind SQLI]

February 7, 2016 - 11:00pm
WordPress User Meta Manager Plugin [Blind SQLI]
Categories:

Bugtraq: WordPress User Meta Manager Plugin [Privilege Escalation]

February 5, 2016 - 2:00am
WordPress User Meta Manager Plugin [Privilege Escalation]
Categories:

Bugtraq: Apple iOS v9.1, 9.2 & 9.2.1 - Application Update Loop Pass Code Bypass

February 5, 2016 - 2:00am
Apple iOS v9.1, 9.2 & 9.2.1 - Application Update Loop Pass Code Bypass
Categories:

Bugtraq: AST-2016-003: Remote crash vulnerability when receiving UDPTL FAX data.

February 5, 2016 - 2:00am
AST-2016-003: Remote crash vulnerability when receiving UDPTL FAX data.
Categories: