Feed aggregator

FreeBSD Security Advisory FreeBSD-SA-14:30.unbound

BugTraq Latest Security Advisories - December 17, 2014 - 6:10am

Posted by FreeBSD Security Advisories on Dec 17

=============================================================================
FreeBSD-SA-14:30.unbound Security Advisory
The FreeBSD Project

Topic: unbound remote denial of service vulnerability

Category: contrib
Module: unbound
Announced: 2014-12-17
Affects: FreeBSD 10.0-RELEASE and later
Credits: Florian Maury...
Categories:

[REVIVE-SA-2014-002] Revive Adserver 3.0.6 and 3.1.0 fix multiple vulnerabilities

BugTraq Latest Security Advisories - December 17, 2014 - 6:00am

Posted by Matteo Beccati on Dec 17

========================================================================
Revive Adserver Security Advisory REVIVE-SA-2014-002
------------------------------------------------------------------------
http://www.revive-adserver.com/security/revive-sa-2014-002
------------------------------------------------------------------------
CVE-IDs: CVE-2014-8793, CVE-2014-8875
Date: 2014-12-17
Risk Level:...
Categories:

Bugtraq: [security bulletin] HPSBOV03225 rev.1 - HP OpenVMS running POP, Remote Denial of Service (DoS)

Security Focus Latest Security Advisories - December 17, 2014 - 5:30am
[security bulletin] HPSBOV03225 rev.1 - HP OpenVMS running POP, Remote Denial of Service (DoS)
Categories:

Bugtraq: [security bulletin] HPSBMU03221 rev.1 - HP Connect-IT running SSLv3, Remote Disclosure of Information

Security Focus Latest Security Advisories - December 17, 2014 - 5:30am
[security bulletin] HPSBMU03221 rev.1 - HP Connect-IT running SSLv3, Remote Disclosure of Information
Categories:

[security bulletin] HPSBMU03217 rev.1 - HP Vertica Analytics Platform running Bash Shell, Remote Code Execution

BugTraq Latest Security Advisories - December 17, 2014 - 12:53am

Posted by security-alert on Dec 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04512907

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04512907
Version: 1

HPSBMU03217 rev.1 - HP Vertica Analytics Platform running Bash Shell, Remote
Code Execution

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-12-16...
Categories:

[security bulletin] HPSBOV03226 rev.1 - HP TCP/IP Services for OpenVMS, BIND 9 Resolver, Multiple Remote Vulnerabilities

BugTraq Latest Security Advisories - December 17, 2014 - 12:44am

Posted by security-alert on Dec 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04530690

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04530690
Version: 1

HPSBOV03226 rev.1 - HP TCP/IP Services for OpenVMS, BIND 9 Resolver, Multiple
Remote Vulnerabilities

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date:...
Categories:

[security bulletin] HPSBOV03225 rev.1 - HP OpenVMS running POP, Remote Denial of Service (DoS)

BugTraq Latest Security Advisories - December 17, 2014 - 12:34am

Posted by security-alert on Dec 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04530570

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04530570
Version: 1

HPSBOV03225 rev.1 - HP OpenVMS running POP, Remote Denial of Service (DoS)

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-12-16
Last Updated:...
Categories:

Bugtraq: RelateIQ Bug Bounty #1 - Persistent Signup Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:30am
RelateIQ Bug Bounty #1 - Persistent Signup Vulnerability
Categories:

Bugtraq: Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:30am
Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability
Categories:

Bugtraq: Elefant CMS v1.3.9 - Persistent Name Update Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:30am
Elefant CMS v1.3.9 - Persistent Name Update Vulnerability
Categories:

[security bulletin] HPSBMU03221 rev.1 - HP Connect-IT running SSLv3, Remote Disclosure of Information

BugTraq Latest Security Advisories - December 17, 2014 - 12:27am

Posted by security-alert on Dec 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04518605

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04518605
Version: 1

HPSBMU03221 rev.1 - HP Connect-IT running SSLv3, Remote Disclosure of
Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-12-16
Last...
Categories:

RelateIQ Bug Bounty #1 - Persistent Signup Vulnerability

BugTraq Latest Security Advisories - December 17, 2014 - 12:18am

Posted by Vulnerability Lab on Dec 17

Document Title:
===============
RelateIQ Bug Bounty #1 - Persistent Signup Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1320

Video: http://www.vulnerability-lab.com/get_content.php?id=1332

Release Date:
=============
2014-12-02

Vulnerability Laboratory ID (VL-ID):
====================================
1320

Common Vulnerability Scoring System:
====================================...
Categories:

Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability

BugTraq Latest Security Advisories - December 17, 2014 - 12:09am

Posted by Vulnerability Lab on Dec 17

Document Title:
===============
Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability

References (Source):
====================
http://vulnerability-lab.com/get_content.php?id=1362

Release Date:
=============
2014-12-04

Vulnerability Laboratory ID (VL-ID):
====================================
1362

Common Vulnerability Scoring System:
====================================
2.4

Product & Service Introduction:...
Categories:

Elefant CMS v1.3.9 - Persistent Name Update Vulnerability

BugTraq Latest Security Advisories - December 17, 2014 - 12:00am

Posted by Vulnerability Lab on Dec 17

Document Title:
===============
Elefant CMS v1.3.9 - Persistent Name Update Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1365

Release Date:
=============
2014-12-03

Vulnerability Laboratory ID (VL-ID):
====================================
1365

Common Vulnerability Scoring System:
====================================
3.9

Product & Service Introduction:...
Categories:

Vuln: BalaBit IT Security syslog-ng PCRE Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
BalaBit IT Security syslog-ng PCRE Denial of Service Vulnerability
Categories:

Vuln: PEAR Installer Multiple Insecure Temporary File Creation Vulnerabilities

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
PEAR Installer Multiple Insecure Temporary File Creation Vulnerabilities
Categories:

Vuln: libsoup SoupServer Directory Traversal Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
libsoup SoupServer Directory Traversal Vulnerability
Categories:

Vuln: Linux Kernel 'ISOFS' Stack-Based Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
Linux Kernel 'ISOFS' Stack-Based Buffer Overflow Vulnerability
Categories:

Vuln: Oracle MySQL Server CVE-2014-6507 Remote Security Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
Oracle MySQL Server CVE-2014-6507 Remote Security Vulnerability
Categories:

Vuln: Python 'ZipExtFile._read2()' Method Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
Python 'ZipExtFile._read2()' Method Denial of Service Vulnerability
Categories: