Feed aggregator

Bugtraq: D-Link and TRENDnet 'ncc2' service - multiple vulnerabilities

Security Focus Latest Security Advisories - February 26, 2015 - 1:30pm
D-Link and TRENDnet 'ncc2' service - multiple vulnerabilities
Categories:

[SECURITY] [DSA 3176-1] request-tracker4 security update

BugTraq Latest Security Advisories - February 26, 2015 - 1:18pm

Posted by Salvatore Bonaccorso on Feb 26

-------------------------------------------------------------------------
Debian Security Advisory DSA-3176-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
February 26, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : request-tracker4
CVE ID : CVE-2014-9472...
Categories:

Wireless File Transfer Pro Android - Multiple CSRF Vulnerabilities

BugTraq Latest Security Advisories - February 26, 2015 - 11:16am

Posted by Vulnerability Lab on Feb 26

Document Title:
===============
Wireless File Transfer Pro Android - CSRF Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1437

Release Date:
=============
2015-02-25

Vulnerability Laboratory ID (VL-ID):
====================================
1437

Common Vulnerability Scoring System:
====================================
2.3

Product & Service Introduction:...
Categories:

Data Source: Scopus CMS - SQL Injection Web Vulnerability

BugTraq Latest Security Advisories - February 26, 2015 - 11:06am

Posted by Vulnerability Lab on Feb 26

Document Title:
===============
Data Source: Scopus CMS - SQL Injection Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1436

Release Date:
=============
2015-02-25

Vulnerability Laboratory ID (VL-ID):
====================================
1436

Common Vulnerability Scoring System:
====================================
8.9

Abstract Advisory Information:...
Categories:

Bugtraq: [security bulletin] HPSBUX03244 SSRT101885 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites

Security Focus Latest Security Advisories - February 26, 2015 - 11:00am
[security bulletin] HPSBUX03244 SSRT101885 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites
Categories:

Bugtraq: [SECURITY] [DSA 3175-1] kfreebsd-9 security update

Security Focus Latest Security Advisories - February 26, 2015 - 11:00am
[SECURITY] [DSA 3175-1] kfreebsd-9 security update
Categories:

Bugtraq: [security bulletin] HPSBUX03162 SSRT101885 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites

Security Focus Latest Security Advisories - February 26, 2015 - 11:00am
[security bulletin] HPSBUX03162 SSRT101885 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites
Categories:

Bugtraq: [SECURITY] [DSA 3174-1] iceweasel security update

Security Focus Latest Security Advisories - February 26, 2015 - 11:00am
[SECURITY] [DSA 3174-1] iceweasel security update
Categories:

DSS TFTP 1.0 Server - Path Traversal Vulnerability

BugTraq Latest Security Advisories - February 26, 2015 - 10:56am

Posted by Vulnerability Lab on Feb 26

Document Title:
===============
DSS TFTP 1.0 Server - Path Traversal Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1440

Release Date:
=============
2015-02-26

Vulnerability Laboratory ID (VL-ID):
====================================
1440

Common Vulnerability Scoring System:
====================================
6.2

Product & Service Introduction:
===============================...
Categories:

D-Link and TRENDnet 'ncc2' service - multiple vulnerabilities

BugTraq Latest Security Advisories - February 26, 2015 - 10:47am

Posted by Peter Adkins on Feb 26

Discovered by:
----
Peter Adkins <peter.adkins () kernelpicnic net>

Access:
----
Local network; unauthenticated access.
Remote network; unauthenticated access*.
Remote network; 'drive-by' via CSRF.

Tracking and identifiers:
----
CVE - Mitre contacted; not yet allocated.

Platforms / Firmware confirmed affected:
----
D-Link DIR-820L (Rev A) - v1.02B10
D-Link DIR-820L (Rev A) - v1.05B03
D-Link DIR-820L (Rev B) - v2.01b02
TRENDnet...
Categories:

[slackware-security] mozilla-firefox (SSA:2015-056-01)

BugTraq Latest Security Advisories - February 26, 2015 - 10:36am

Posted by Slackware Security Team on Feb 26

[slackware-security] mozilla-firefox (SSA:2015-056-01)

New mozilla-firefox packages are available for Slackware 14.1 and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mozilla-firefox-31.5.0esr-i486-1_slack14.1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...
Categories:

[slackware-security] mozilla-thunderbird (SSA:2015-056-02)

BugTraq Latest Security Advisories - February 26, 2015 - 10:27am

Posted by Slackware Security Team on Feb 26

[slackware-security] mozilla-thunderbird (SSA:2015-056-02)

New mozilla-thunderbird packages are available for Slackware 14.1 and -current
to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mozilla-thunderbird-31.5.0-i486-1_slack14.1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...
Categories:

[security bulletin] HPSBUX03273 SSRT101951 rev.1 - HP-UX running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities

BugTraq Latest Security Advisories - February 26, 2015 - 10:18am

Posted by security-alert on Feb 26

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04580241

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04580241
Version: 1

HPSBUX03273 SSRT101951 rev.1 - HP-UX running Java6, Remote Unauthorized
Access, Disclosure of Information, and Other Vulnerabilities

NOTICE: The information in this Security Bulletin should be acted upon as...
Categories:

[security bulletin] HPSBUX03244 SSRT101885 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites

BugTraq Latest Security Advisories - February 26, 2015 - 10:07am

Posted by security-alert on Feb 26

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04556853

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04556853
Version: 2

HPSBUX03244 SSRT101885 rev.2 - HP-UX Running OpenSSL, Remote Denial of
Service (DoS) and Other Vulnerabilites

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release...
Categories:

[SECURITY] [DSA 3175-1] kfreebsd-9 security update

BugTraq Latest Security Advisories - February 26, 2015 - 9:57am

Posted by Moritz Muehlenhoff on Feb 26

-------------------------------------------------------------------------
Debian Security Advisory DSA-3175-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
February 25, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : kfreebsd-9
CVE ID : CVE-2015-1414

Mateusz...
Categories:

[security bulletin] HPSBUX03162 SSRT101885 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites

BugTraq Latest Security Advisories - February 26, 2015 - 9:47am

Posted by security-alert on Feb 26

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04556853

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04556853
Version: 1

HPSBUX03162 SSRT101885 rev.1 - HP-UX Running OpenSSL, Remote Denial of
Service (DoS) and Other Vulnerabilites

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release...
Categories:

Bugtraq: TangoBB 1.5.0-A3 XSS Vulnerability

Security Focus Latest Security Advisories - February 26, 2015 - 9:45am
TangoBB 1.5.0-A3 XSS Vulnerability
Categories:

Bugtraq: EnanoCMS 1.1.8pl1 XSS Vulnerability

Security Focus Latest Security Advisories - February 26, 2015 - 9:45am
EnanoCMS 1.1.8pl1 XSS Vulnerability
Categories:

Bugtraq: [security bulletin] HPSBMU03260 rev.1 - HP System Management Homepage running OpenSSL on Linux and Windows, Remote Disclosure of Information

Security Focus Latest Security Advisories - February 26, 2015 - 9:45am
[security bulletin] HPSBMU03260 rev.1 - HP System Management Homepage running OpenSSL on Linux and Windows, Remote Disclosure of Information
Categories:

Bugtraq: [Onapsis Security Advisory 2015-005] SAP Business Objects Unauthorized Audit Information Access via CORBA

Security Focus Latest Security Advisories - February 26, 2015 - 9:45am
[Onapsis Security Advisory 2015-005] SAP Business Objects Unauthorized Audit Information Access via CORBA
Categories: