Feed aggregator

Vuln: McAfee Network Data Loss Prevention Logs Local Information Disclosure Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
McAfee Network Data Loss Prevention Logs Local Information Disclosure Vulnerability
Categories:

Vuln: McAfee Network Data Loss Prevention Local Security Bypass Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
McAfee Network Data Loss Prevention Local Security Bypass Vulnerability
Categories:

Vuln: McAfee Network Data Loss Prevention 'Domain' Field Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
McAfee Network Data Loss Prevention 'Domain' Field Local Denial of Service Vulnerability
Categories:

Vuln: McAfee Network Data Loss Prevention Local Information Disclosure Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
McAfee Network Data Loss Prevention Local Information Disclosure Vulnerability
Categories:

Vuln: DokuWiki Information Disclosure Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
DokuWiki Information Disclosure Vulnerability
Categories:

Vuln: DokuWiki LDAP and AD Authentication Multiple Security Bypass Vulnerabilities

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
DokuWiki LDAP and AD Authentication Multiple Security Bypass Vulnerabilities
Categories:

Vuln: IBM Tivoli Monitoring Agent CVE-2013-5467 Unspecified Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
IBM Tivoli Monitoring Agent CVE-2013-5467 Unspecified Local Privilege Escalation Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-3508 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
OpenSSL CVE-2014-3508 Information Disclosure Vulnerability
Categories:

Vuln: OpenSSL DTLS CVE-2014-3505 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
OpenSSL DTLS CVE-2014-3505 Remote Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel KVM CVE-2014-3645 Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
Linux Kernel KVM CVE-2014-3645 Denial of Service Vulnerability
Categories:

Vuln: OpenSSL DTLS CVE-2014-3510 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 11:00pm
OpenSSL DTLS CVE-2014-3510 Remote Denial of Service Vulnerability
Categories:

CVE-2014-8399 SQL Injection in NuevoLabs flash player for clipshare

BugTraq Latest Security Advisories - October 29, 2014 - 12:54pm

Posted by research on Oct 29

Nuevolabs Nuevoplayer for clipshare SQL Injection
=======================================================================

:: ADVISORY SUMMARY ::
Title: Nuevolabs Nuevoplayer for clipshare Sql Injection
Vendor: NUEVOLABS (www.nuevolabs.com)
Product: NUEVOPLAYER for clipshare
Credits: Cory Marsh - protectlogic.com
Discovery: 2014-10-10
Release: 2014-10-28

Nueovplayer is a popular flash video player with integration into multiple...
Categories:

SEC Consult SA-20141029-1 :: Persistent cross site scripting in Confluence RefinedWiki Original Theme

BugTraq Latest Security Advisories - October 29, 2014 - 12:44pm

Posted by SEC Consult Vulnerability Lab on Oct 29

SEC Consult Vulnerability Lab Security Advisory < 20141029-1 >
=======================================================================
title: Persistent cross site scripting
product: Confluence RefinedWiki Original Theme
vulnerable version: 3.x - 4.0.x
fixed version: 4.0.12
impact: high
homepage: http://www.refinedwiki.com/
found: 2014-08-07
by: Manuel...
Categories:

SEC Consult SA-20141029-0 :: Multiple critical vulnerabilities in Vizensoft Admin Panel

BugTraq Latest Security Advisories - October 29, 2014 - 12:36pm

Posted by SEC Consult Vulnerability Lab on Oct 29

SEC Consult Vulnerability Lab Security Advisory < 20141029-0 >
=======================================================================
title: Multiple critical vulnerabilities
product: Vizensoft Admin Panel
vulnerable version: 2014
fixed version: -
impact: critical
homepage: http://www.vizensoft.com
found: 2014-07-10
by: A. Antukh, A. Baranov...
Categories:

Multiple vulnerabilities in EspoCRM

BugTraq Latest Security Advisories - October 29, 2014 - 12:26pm

Posted by High-Tech Bridge Security Research on Oct 29

Advisory ID: HTB23238
Product: EspoCRM
Vendor: http://www.espocrm.com
Vulnerable Version(s): 2.5.2 and probably prior
Tested Version: 2.5.2
Advisory Publication: October 8, 2014 [without technical details]
Vendor Notification: October 8, 2014
Vendor Patch: October 10, 2014
Public Disclosure: October 29, 2014
Vulnerability Type: PHP File Inclusion [CWE-98], Improper Access Control [CWE-284], Cross-Site Scripting [CWE-79]
CVE References:...
Categories:

[ MDVSA-2014:212 ] wget

BugTraq Latest Security Advisories - October 29, 2014 - 12:16pm

Posted by security on Oct 29

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:212
http://www.mandriva.com/en/support/security/
_______________________________________________________________________

Package : wget
Date : October 29, 2014
Affected: Business Server 1.0
_______________________________________________________________________

Problem Description:

Updated...
Categories:

Bugtraq: phpfusion (Search Page) Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 29, 2014 - 12:15pm
phpfusion (Search Page) Denial of Service Vulnerability
Categories:

Bugtraq: IEEE Technically Co-sponsored - Third International Conference on Digital Information, Networking, and Wireless Communications || RUSSIA

Security Focus Latest Security Advisories - October 29, 2014 - 12:15pm
IEEE Technically Co-sponsored - Third International Conference on Digital Information, Networking, and Wireless Communications || RUSSIA
Categories:

Bugtraq: [security bulletin] HPSBST03160 rev.1 - HP XP Command View Advanced Edition running Apache Struts, Remote Execution of Arbitrary Code

Security Focus Latest Security Advisories - October 29, 2014 - 12:15pm
[security bulletin] HPSBST03160 rev.1 - HP XP Command View Advanced Edition running Apache Struts, Remote Execution of Arbitrary Code
Categories:

Bugtraq: [ MDVSA-2014:210 ] mariadb

Security Focus Latest Security Advisories - October 29, 2014 - 12:15pm
[ MDVSA-2014:210 ] mariadb
Categories: