Feed aggregator

Bugtraq: MapsUpdateTask Task DLL side loading vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 11:00pm
MapsUpdateTask Task DLL side loading vulnerability
Categories:

Duplicator Wordpress Plugin - Source Code And Database Dump Via CSRF Vulnerability

BugTraq Latest Security Advisories - February 11, 2016 - 1:28am

Posted by Ratio Sec on Feb 10

-----------------------------------------------------------------------------------------------
RatioSec Research Security Advisory RS-2016-002
-----------------------------------------------------------------------------------------------

Duplicator Wordpress Plugin Code And Database Dump Via CSRF Vulnerability
-----------------------------------------------------------------------------------------------

Product: Duplicator WordPress Plugin...
Categories:

Re: [FD] [CVE-2016-0602, CVE-2016-0603] Executable installers are vulnerable^WEVIL (case 24): Oracle Java 6/7/8 SE and VirtualBox

BugTraq Latest Security Advisories - February 11, 2016 - 1:21am

Posted by Jason Hellenthal on Feb 10

In 2019 you say huh. Damn future tellers !!! I need to get one of those !!!
Categories:

Re: OLE DB Provider for Oracle multiple DLL side loading vulnerabilities

BugTraq Latest Security Advisories - February 11, 2016 - 1:13am

Posted by Securify B.V. on Feb 10

------------------------------------------------------------------------
Fix
------------------------------------------------------------------------
Microsoft released MS16-014 that fixes this vulnerability.
Categories:

MapsUpdateTask Task DLL side loading vulnerability

BugTraq Latest Security Advisories - February 11, 2016 - 1:07am

Posted by Securify B.V. on Feb 10

------------------------------------------------------------------------
MapsUpdateTask Task DLL side loading vulnerability
------------------------------------------------------------------------
Yorick Koster, November 2015

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A DLL side loading vulnerability was found in the MapsUpdateTask...
Categories:

Bugtraq: Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 1:00am
Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability
Categories:

Bugtraq: Remote Code Execution in Exponent

Security Focus Latest Security Advisories - February 11, 2016 - 1:00am
Remote Code Execution in Exponent
Categories:

Bugtraq: Apache Sling Framework v2.3.6 - Information Disclosure Vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 1:00am
Apache Sling Framework v2.3.6 - Information Disclosure Vulnerability
Categories:

Bugtraq: Getdpd Bug Bounty #6 - (Import - FTP) Persistent Vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 1:00am
Getdpd Bug Bounty #6 - (Import - FTP) Persistent Vulnerability
Categories:

BDA MPEG2 Transport Information Filter DLL side loading vulnerability

BugTraq Latest Security Advisories - February 11, 2016 - 12:59am

Posted by Securify B.V. on Feb 10

------------------------------------------------------------------------
BDA MPEG2 Transport Information Filter DLL side loading vulnerability
------------------------------------------------------------------------
Yorick Koster, September 2015

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A DLL side loading vulnerability was found in...
Categories:

NPS Datastore server DLL side loading vulnerability

BugTraq Latest Security Advisories - February 11, 2016 - 12:52am

Posted by Securify B.V. on Feb 10

------------------------------------------------------------------------
NPS Datastore server DLL side loading vulnerability
------------------------------------------------------------------------
Yorick Koster, September 2015

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A DLL side loading vulnerability was found in the NPS Datastore...
Categories:

next-20160211: linux-next

Linux Kernel Updates - February 11, 2016 - 12:12am
Version:next-20160211 (linux-next) Released:2016-02-11

Vuln: Oracle Java SE CVE-2015-2625 Remote Security Vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 12:00am
Oracle Java SE CVE-2015-2625 Remote Security Vulnerability
Categories:

Vuln: Linux Kernel CVE-2015-7990 Incomplete Fix Null Pointer Deference Denial of Service Vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 12:00am
Linux Kernel CVE-2015-7990 Incomplete Fix Null Pointer Deference Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel 'btrfs/inode.c' Information Disclosure Vulnerability

Security Focus Latest Security Advisories - February 11, 2016 - 12:00am
Linux Kernel 'btrfs/inode.c' Information Disclosure Vulnerability
Categories:

Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

BugTraq Latest Security Advisories - February 10, 2016 - 12:56pm

Posted by Cisco Systems Product Security Incident Response Team on Feb 10

Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

Advisory ID: cisco-sa-20160210-asa-ike

Revision 1.0

For Public Release 2016 February 10 16:00 GMT (UTC)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the Internet Key Exchange (IKE) version 1 (v1) and IKE version 2 (v2) code of Cisco ASA Software
could allow an unauthenticated, remote...
Categories:

Bugtraq: MyScript Memo v3.0 iOS - (Mail) Persistent Vulnerability

Security Focus Latest Security Advisories - February 10, 2016 - 11:00am
MyScript Memo v3.0 iOS - (Mail) Persistent Vulnerability
Categories:

Remote Code Execution in Exponent

BugTraq Latest Security Advisories - February 10, 2016 - 8:38am

Posted by High-Tech Bridge Security Research on Feb 10

Advisory ID: HTB23290
Product: Exponent
Vendor: http://www.exponentcms.org/
Vulnerable Version(s): 2.3.7 and probably prior
Tested Version: 2.3.7
Advisory Publication: January 13, 2016 [without technical details]
Vendor Notification: January 13, 2016
Vendor Patch: January 23, 2016
Public Disclosure: February 3, 2016
Vulnerability Type: Code Injection [CWE-94]
CVE Reference: CVE-2016-2242
Risk Level: Critical
CVSSv3 Base Score: 10...
Categories:

Apache Sling Framework v2.3.6 - Information Disclosure Vulnerability

BugTraq Latest Security Advisories - February 10, 2016 - 8:30am

Posted by Vulnerability Lab on Feb 10

Document Title:
===============
Apache Sling Framework v2.3.6 - Information Disclosure Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1536

Adobe Bulletin: https://helpx.adobe.com/security/products/experience-manager/apsb16-05.html

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0956

Vulnerability Magazine:...
Categories:

Bugtraq: File Sharing Manager v1.0 iOS - Multiple Web Vulnerabilities

Security Focus Latest Security Advisories - February 10, 2016 - 7:00am
File Sharing Manager v1.0 iOS - Multiple Web Vulnerabilities
Categories: