Feed aggregator

Vuln: MantisBT Null Byte Poisoning LDAP Authentication Bypass Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
MantisBT Null Byte Poisoning LDAP Authentication Bypass Vulnerability
Categories:

Vuln: SolarWinds Storage Manager 'AuthenticationFilter' Class Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
SolarWinds Storage Manager 'AuthenticationFilter' Class Remote Code Execution Vulnerability
Categories:

Vuln: ImageMagick PSD Image File Handling CVE-2014-1947 Remote Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
ImageMagick PSD Image File Handling CVE-2014-1947 Remote Buffer Overflow Vulnerability
Categories:

Vuln: Jasig Multiple CAS Clients CVE-2014-4172 Security Bypass Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
Jasig Multiple CAS Clients CVE-2014-4172 Security Bypass Vulnerability
Categories:

Vuln: IBM RLKS Administration and Reporting Tool CVE-2014-3079 Authorization Bypass Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
IBM RLKS Administration and Reporting Tool CVE-2014-3079 Authorization Bypass Vulnerability
Categories:

Vuln: IBM V7000 Unified CVE-2014-4811 Security Bypass Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
IBM V7000 Unified CVE-2014-4811 Security Bypass Vulnerability
Categories:

Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1710 Arbitrary Code Execution Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1710 Arbitrary Code Execution Vulnerability
Categories:

Vuln: Apache Tomcat CVE-2014-0099 Request Processing Information Disclosure Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
Apache Tomcat CVE-2014-0099 Request Processing Information Disclosure Vulnerability
Categories:

Vuln: GNU glibc 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
GNU glibc 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability
Categories:

Vuln: Mozilla Firefox/Thunderbird CVE-2014-1562 Multiple Memory Corruption Vulnerabilities

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
Mozilla Firefox/Thunderbird CVE-2014-1562 Multiple Memory Corruption Vulnerabilities
Categories:

Vuln: OpenSSL DTLS CVE-2014-3505 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
OpenSSL DTLS CVE-2014-3505 Remote Denial of Service Vulnerability
Categories:

Vuln: Procmail Formail Utility 'formisc.c' Heap Overflow Vulnerability

Security Focus Latest Security Advisories - September 14, 2014 - 11:00pm
Procmail Formail Utility 'formisc.c' Heap Overflow Vulnerability
Categories:

3.17-rc5: mainline

Linux Kernel Updates - September 14, 2014 - 7:50pm
Version:3.17-rc5 (mainline) Released:2014-09-15 Source:linux-3.17-rc5.tar.xz PGP Signature:linux-3.17-rc5.tar.sign Patch:patch-3.17-rc5.xz

Vuln: Mozilla Firefox/Thunderbird CVE-2014-1557 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - September 13, 2014 - 11:00pm
Mozilla Firefox/Thunderbird CVE-2014-1557 Remote Code Execution Vulnerability
Categories:

3.2.63: longterm

Linux Kernel Updates - September 13, 2014 - 5:41pm
Version:3.2.63 (longterm) Released:2014-09-13 Source:linux-3.2.63.tar.xz PGP Signature:linux-3.2.63.tar.sign Patch:patch-3.2.63.xz (Incremental) ChangeLog:ChangeLog-3.2.63

HttpFileServer 2.3.x Remote Command Execution

BugTraq Latest Security Advisories - September 12, 2014 - 11:26am

Posted by danielelinguaglossa on Sep 12

Affected software: http://sourceforge.net/projects/hfs/
Version : 2.3x
# Exploit Title: HttpFileServer 2.3.x Remote Command Execution
# Google Dork: intext:"httpfileserver 2.3"
# Date: 11-09-2014
# Remote: Yes
# Exploit Author: Daniele Linguaglossa
# Vendor Homepage: http://rejetto.com/
# Software Link: http://sourceforge.net/projects/hfs/
# Version: 2.3.x
# Tested on: Windows Server 2008 , Windows 8, Windows 7
# CVE : CVE-2014-6287...
Categories:

next-20140912: linux-next

Linux Kernel Updates - September 12, 2014 - 2:33am
Version:next-20140912 (linux-next) Released:2014-09-12