Feed aggregator

Vuln: Microsoft Excel CVE-2017-11877 Security Bypass Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
Microsoft Excel CVE-2017-11877 Security Bypass Vulnerability
Categories:

Vuln: Microsoft Windows CVE-2017-11832 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
Microsoft Windows CVE-2017-11832 Information Disclosure Vulnerability
Categories:

Vuln: Microsoft Windows Kernel CVE-2017-11853 Local Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
Microsoft Windows Kernel CVE-2017-11853 Local Information Disclosure Vulnerability
Categories:

Vuln: SAP NetWeaver XML External Entity Injection Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
SAP NetWeaver XML External Entity Injection Vulnerability
Categories:

Vuln: SAP TranslationSupport Application XML External Entity Injection Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
SAP TranslationSupport Application XML External Entity Injection Vulnerability
Categories:

Vuln: SWFTools 'swfbits.c' Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
SWFTools 'swfbits.c' Remote Denial of Service Vulnerability
Categories:

Vuln: TYPO3 CAB FAL Search Extension Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
TYPO3 CAB FAL Search Extension Cross Site Scripting Vulnerability
Categories:

Vuln: ManageEngine ServiceDesk CVE-2017-11512 Arbitrary File Download Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
ManageEngine ServiceDesk CVE-2017-11512 Arbitrary File Download Vulnerability
Categories:

Vuln: PHPUnit CVE-2017-9841 Arbitrary Code Execution Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
PHPUnit CVE-2017-9841 Arbitrary Code Execution Vulnerability
Categories:

Vuln: Apache Tomcat CVE-2017-5648 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
Apache Tomcat CVE-2017-5648 Information Disclosure Vulnerability
Categories:

Vuln: Apache Tomcat CVE-2017-12617 Incomplete Fix Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - November 14, 2017 - 12:00am
Apache Tomcat CVE-2017-12617 Incomplete Fix Remote Code Execution Vulnerability
Categories:

Symantec Endpoint Protection (SEP) v12.1 Tamper-protection Bypass CVE-2017-6331 (hyp3rlinx)

BugTraq Latest Security Advisories - November 13, 2017 - 11:26pm

Posted by apparitionsec on Nov 13

[+] Credits: John Page a.k.a hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/CVE-2017-6331-SYMANTEC-ENDPOINT-PROTECTION-TAMPER-PROTECTION-BYPASS.txt
[+] ISR: ApparitionSec

Vendor:
=======
www.symantec.com

Product:
===========
Symantec Endpoint Protection
v12.1.6 (12.1 RU6 MP5)
Symantec 12.1.7004.6500

Vulnerability Type:
===================
Tamper-Protection Bypass
Denial...
Categories:

[SECURITY] [DSA 4032-1] imagemagick security update

BugTraq Latest Security Advisories - November 13, 2017 - 11:19pm

Posted by Moritz Muehlenhoff on Nov 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4032-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
November 12, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : imagemagick
CVE ID : CVE-2017-12983 CVE-2017-13134...
Categories:

[SECURITY] [DSA 4031-1] ruby2.3 security update

BugTraq Latest Security Advisories - November 13, 2017 - 11:08pm

Posted by Salvatore Bonaccorso on Nov 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4031-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
November 11, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : ruby2.3
CVE ID : CVE-2017-0898 CVE-2017-0903...
Categories:

Bypassable authentication in SingTel / Aztech DSL8900GR(AC) router

BugTraq Latest Security Advisories - November 13, 2017 - 11:01pm

Posted by cort on Nov 13

Credit: Cort
Date: 5 Aug 2017
CVE: Not assigned
Vendor: Aztech (https://www.aztech.com) / SingTel (https://www.singtel.com/)
Product: Aztech DSL8900GR(AC) router
Versions Affected: firmware 340.6.1-007 (latest available as of 9 Nov 2017)
CVSS v3 Base Score: 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
Fix: Not available.

Introduction
===
The Aztech DSL8900GR(AC) router is distributed by SingTel (largest ISP in Singapore) with their business...
Categories:

Bugtraq: [SECURITY] [DSA 4029-1] postgresql-common security update

Security Focus Latest Security Advisories - November 13, 2017 - 11:00pm
[SECURITY] [DSA 4029-1] postgresql-common security update
Categories:

Bugtraq: [SECURITY] [DSA 4028-1] postgresql-9.6 security update

Security Focus Latest Security Advisories - November 13, 2017 - 11:00pm
[SECURITY] [DSA 4028-1] postgresql-9.6 security update
Categories:

Bugtraq: [SECURITY] [DSA 4027-1] postgresql-9.4 security update

Security Focus Latest Security Advisories - November 13, 2017 - 11:00pm
[SECURITY] [DSA 4027-1] postgresql-9.4 security update
Categories:

Bugtraq: Datto Windows Agent 1.0.5.0 Remote Command Execution [CVE-2017-16673][CVE-2017-16674]

Security Focus Latest Security Advisories - November 13, 2017 - 11:00pm
Datto Windows Agent 1.0.5.0 Remote Command Execution [CVE-2017-16673][CVE-2017-16674]
Categories:

[SECURITY] [DSA 4006-2] mupdf security update

BugTraq Latest Security Advisories - November 13, 2017 - 10:53pm

Posted by Luciano Bello on Nov 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4006-2 security () debian org
https://www.debian.org/security/
November 10, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : mupdf
CVE ID : CVE-2017-15587
Debian Bug :...
Categories: