Feed aggregator

[SECURITY] [DSA 3203-1] tor security update

BugTraq Latest Security Advisories - March 23, 2015 - 8:16am

Posted by Sebastien Delafond on Mar 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-3203-1 security () debian org
http://www.debian.org/security/ Sebastien Delafond
March 22, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tor

Several denial-of-service issues have been discovered...
Categories:

[SECURITY] [DSA 3202-1] mono security update

BugTraq Latest Security Advisories - March 23, 2015 - 8:06am

Posted by Sebastien Delafond on Mar 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-3202-1 security () debian org
http://www.debian.org/security/ Sebastien Delafond
March 22, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : mono
CVE ID : CVE-2015-2318 CVE-2015-2319...
Categories:

[SECURITY] [DSA 3201-1] iceweasel security update

BugTraq Latest Security Advisories - March 23, 2015 - 7:59am

Posted by Salvatore Bonaccorso on Mar 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-3201-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
March 22, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : iceweasel
CVE ID : CVE-2015-0817 CVE-2015-0818...
Categories:

Stored XSS Vulnerability In Manage Engine Device Expert

BugTraq Latest Security Advisories - March 23, 2015 - 7:49am

Posted by kingkaustubh on Mar 23

===============================================================================
Stored XSS Vulnerability In Manage Engine Device Expert
===============================================================================

. contents:: Table Of Content

Overview
========

* Title :Stored XSS Vulnerability In Manage Engine Device Expert
* Author: Kaustubh G. Padwad
* Plugin Homepage: http://www.manageengine.com/products/device-expert/
* Severity: HIGH
*...
Categories:

CSRF to add admin user Vulnerability In Manage Engine Device Expert

BugTraq Latest Security Advisories - March 23, 2015 - 7:41am

Posted by kingkaustubh on Mar 23

===============================================================================
CSRF to add admin user Vulnerability In Manage Engine Device Expert
===============================================================================

. contents:: Table Of Content

Overview
========

* Title : CSRF to add admin user Vulnerability In Manage Engine Device Expert
* Author: Kaustubh G. Padwad
* Plugin Homepage:...
Categories:

Cross-Site Request Forgery (CSRF) Vulnerability in ManageEngine Network Configuration

BugTraq Latest Security Advisories - March 23, 2015 - 7:32am

Posted by kingkaustubh on Mar 23

Title:- Cross-Site Request Forgery (CSRF) Vulnerability in ManageEngine Network Configuration Management
Author: Kaustubh G. Padwad
Vendor: ZOHO Corp
Product: ManageEngine Network Configuration Manager
Tested Version: : Network Configuration Manager Build 11000
Severity: HIGH

About the Product:
==================

Network Configuration Manager is a web–based, multi vendor network change, configuration and compliance management
(NCCCM)...
Categories:

Reflected XSS Vulnerability in XSS In Manage Engine Device Expert

BugTraq Latest Security Advisories - March 23, 2015 - 7:23am

Posted by kingkaustubh on Mar 23

===============================================================================
Reflected XSS Vulnerability in XSS In Manage Engine Device Expert
===============================================================================

. contents:: Table Of Content

Overview
========

* Title :Reflected XSS Vulnerability in XSS In Manage Engine Device Expert
* Author: Kaustubh G. Padwad
* Plugin Homepage:...
Categories:

CSRF/Stored XSS Vulnerability in AB Google Map Travel (AB-MAP) Wordpress Plugin

BugTraq Latest Security Advisories - March 23, 2015 - 7:16am

Posted by kingkaustubh on Mar 23

===============================================================================
CSRF/Stored XSS Vulnerability in AB Google Map Travel (AB-MAP) Wordpress Plugin
===============================================================================

. contents:: Table Of Content

Overview
========

* Title :Stored XSS Vulnerability in AB Google Map Travel (AB-MAP) Wordpress Plugin
* Author: Kaustubh G. Padwad
* Plugin Homepage:...
Categories:

[SECURITY] [DSA 3200-1] drupal7 security update

BugTraq Latest Security Advisories - March 23, 2015 - 7:08am

Posted by Moritz Muehlenhoff on Mar 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-3200-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
March 20, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : drupal7
CVE ID : CVE-2015-2559

Multiple...
Categories:

Bugtraq: Viber for Android exposes insecure Javascript interface

Security Focus Latest Security Advisories - March 23, 2015 - 6:45am
Viber for Android exposes insecure Javascript interface
Categories:

Bugtraq: [SECURITY] [DSA 3199-1] xerces-c security update

Security Focus Latest Security Advisories - March 23, 2015 - 6:45am
[SECURITY] [DSA 3199-1] xerces-c security update
Categories:

Bugtraq: [SECURITY] [DSA 3198-1] php5 security update

Security Focus Latest Security Advisories - March 23, 2015 - 6:45am
[SECURITY] [DSA 3198-1] php5 security update
Categories:

Bugtraq: FreeBSD Security Advisory FreeBSD-SA-15:06.openssl [REVISED]

Security Focus Latest Security Advisories - March 23, 2015 - 6:45am
FreeBSD Security Advisory FreeBSD-SA-15:06.openssl [REVISED]
Categories:

next-20150323: linux-next

Linux Kernel Updates - March 23, 2015 - 3:31am
Version:next-20150323 (linux-next) Released:2015-03-23

4.0-rc5: mainline

Linux Kernel Updates - March 22, 2015 - 6:50pm
Version:4.0-rc5 (mainline) Released:2015-03-22 Source:linux-4.0-rc5.tar.xz PGP Signature:linux-4.0-rc5.tar.sign Patch:patch-4.0-rc5.xz

Viber for Android exposes insecure Javascript interface

BugTraq Latest Security Advisories - March 20, 2015 - 2:36pm

Posted by Securify B.V. on Mar 20

------------------------------------------------------------------------
Viber for Android exposes insecure Javascript interface
------------------------------------------------------------------------
Yorick Koster, April 2014

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
It was discovered that Viber's Sticker Market is affected by...
Categories: