Feed aggregator

Bugtraq: ntopng 1.2.0 XSS injection using monitored network traffic

Security Focus Latest Security Advisories - August 27, 2014 - 5:00am
ntopng 1.2.0 XSS injection using monitored network traffic
Categories:

Bugtraq: [security bulletin] HPSBMU03076 rev.2 - HP Systems Insight Manager (SIM) on Linux and Windows running OpenSSL, Multiple Vulnerabilities

Security Focus Latest Security Advisories - August 27, 2014 - 5:00am
[security bulletin] HPSBMU03076 rev.2 - HP Systems Insight Manager (SIM) on Linux and Windows running OpenSSL, Multiple Vulnerabilities
Categories:

Mathematica10.0.0 on Linux /tmp/MathLink vulnerability

BugTraq Latest Security Advisories - August 27, 2014 - 4:56am

Posted by paul . szabo on Aug 27

The problem reported for Mathematica is present still at version 10.0.0
for the GUI interface (the command-line interface may be "safe").

Cheers,

Paul Szabo psz () maths usyd edu au http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia

---

http://seclists.org/fulldisclosure/2010/May/176
http://seclists.org/fulldisclosure/2012/Apr/157...
Categories:

Encore Discovery Solution Multiple Vulnerability Disclosure

BugTraq Latest Security Advisories - August 27, 2014 - 4:45am

Posted by Romano, Christian on Aug 27

Product: Encore Discovery Solution
Vendor: Innovative Interfaces Inc
Vulnerable Version: 4.3
Tested Version: 4.3
Vendor Notification: June 19, 2014
Public Disclosure: August 26, 2014
Vulnerability Type: Open Redirect [CWE-601]
CVE Reference: CVE-2014-5127
Risk Level: Medium
CVSSv2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Discovered and Provided: CAaNES (Computational Analysis and Network
Enterprise Solutions)

Advisory Details:

Open Redirect...
Categories:

next-20140827: linux-next

Linux Kernel Updates - August 27, 2014 - 1:07am
Version:next-20140827 (linux-next) Released:2014-08-27

Vuln: Juniper Network and Security Manager CVE-2014-3411 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Juniper Network and Security Manager CVE-2014-3411 Remote Code Execution Vulnerability
Categories:

Vuln: Transport Gateway for Smart Call Home CVE-2014-3344 Multiple Cross Site Scripting Vulnerabilities

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Transport Gateway for Smart Call Home CVE-2014-3344 Multiple Cross Site Scripting Vulnerabilities
Categories:

Vuln: CSWorks LiveData Service CVE-2014-2351 SQL Injection Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
CSWorks LiveData Service CVE-2014-2351 SQL Injection Vulnerability
Categories:

Vuln: Huawei Campus Series Switches User Enumeration Weakness

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Huawei Campus Series Switches User Enumeration Weakness
Categories:

Vuln: Linux Kernel 'ISOFS' Stack-Based Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Linux Kernel 'ISOFS' Stack-Based Buffer Overflow Vulnerability
Categories:

Vuln: Django CVE-2014-0481 Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Django CVE-2014-0481 Denial of Service Vulnerability
Categories:

Vuln: Synchronizing Key Server CVE-2014-3207 Unspecified Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Synchronizing Key Server CVE-2014-3207 Unspecified Cross Site Scripting Vulnerability
Categories:

Vuln: Lua 'ldo.c' Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Lua 'ldo.c' Remote Code Execution Vulnerability
Categories:

Vuln: PHP Pear '/tmp/' Directory Insecure Temporary File Creation Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
PHP Pear '/tmp/' Directory Insecure Temporary File Creation Vulnerability
Categories:

Vuln: Wonderware Information Server CVE-2014-2381 Weak Encryption Security Weakness

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Wonderware Information Server CVE-2014-2381 Weak Encryption Security Weakness
Categories:

Vuln: Oracle Java SE CVE-2014-4216 Remote Security Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Oracle Java SE CVE-2014-4216 Remote Security Vulnerability
Categories:

Vuln: GNU glibc '__gconv_translit_find()' Function Memory Corruption Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
GNU glibc '__gconv_translit_find()' Function Memory Corruption Vulnerability
Categories:

Vuln: MediaWiki 'mediawiki.page.image.pagination.js' Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
MediaWiki 'mediawiki.page.image.pagination.js' Cross Site Scripting Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4221 Remote Security Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Oracle Java SE CVE-2014-4221 Remote Security Vulnerability
Categories:

Vuln: Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability

Security Focus Latest Security Advisories - August 26, 2014 - 11:00pm
Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability
Categories: