Feed aggregator

Vuln: OpenSAML-Java ParserPool and Decrypter XML External Entity Injection Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
OpenSAML-Java ParserPool and Decrypter XML External Entity Injection Vulnerability
Categories:

Vuln: phpMyAdmin CVE-2014-9219 Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
phpMyAdmin CVE-2014-9219 Cross Site Scripting Vulnerability
Categories:

Vuln: phpMyAdmin Long Password Handling Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
phpMyAdmin Long Password Handling Denial of Service Vulnerability
Categories:

Vuln: ISC BIND 9 DNS Resource Records Handling CVE-2012-4244 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
ISC BIND 9 DNS Resource Records Handling CVE-2012-4244 Remote Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel 'fs/udf/inode.c' Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
Linux Kernel 'fs/udf/inode.c' Local Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-3673 Denial of Service Vulnerability

Security Focus Latest Security Advisories - December 17, 2014 - 12:00am
Linux Kernel CVE-2014-3673 Denial of Service Vulnerability
Categories:

next-20141217: linux-next

Linux Kernel Updates - December 16, 2014 - 11:57pm
Version:next-20141217 (linux-next) Released:2014-12-17

Fuzzylime v3.03b CMS - CS Cross Scripting Vulnerability

BugTraq Latest Security Advisories - December 16, 2014 - 11:51pm

Posted by Vulnerability Lab on Dec 17

Document Title:
===============
Fuzzylime v3.03b CMS - CS Cross Scripting Vulnerability

References (Source):
====================
http://vulnerability-lab.com/get_content.php?id=1357

Release Date:
=============
2014-12-02

Vulnerability Laboratory ID (VL-ID):
====================================
1357

Common Vulnerability Scoring System:
====================================
2.4

Product & Service Introduction:...
Categories:

iWifi for Chat v1.1 iOS - Denial of Service Vulnerability

BugTraq Latest Security Advisories - December 16, 2014 - 11:42pm

Posted by Vulnerability Lab on Dec 17

Document Title:
===============
iWifi for Chat v1.1 iOS - Denial of Service Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1375

Release Date:
=============
2014-12-16

Vulnerability Laboratory ID (VL-ID):
====================================
1376

Common Vulnerability Scoring System:
====================================
4.6

Product & Service Introduction:...
Categories:

Bugtraq: [SECURITY] [DSA 3105-1] heirloom-mailx security update

Security Focus Latest Security Advisories - December 16, 2014 - 11:15pm
[SECURITY] [DSA 3105-1] heirloom-mailx security update
Categories:

Bugtraq: [SECURITY] [DSA 3104-1] bsd-mailx security update

Security Focus Latest Security Advisories - December 16, 2014 - 11:15pm
[SECURITY] [DSA 3104-1] bsd-mailx security update
Categories:

Bugtraq: W3TotalFail: W3 Total Cache v 0.9.4 CSRF Vulnerability that Leads to Full Deface

Security Focus Latest Security Advisories - December 16, 2014 - 11:15pm
W3TotalFail: W3 Total Cache v 0.9.4 CSRF Vulnerability that Leads to Full Deface
Categories:

Bugtraq: [Onapsis Security Advisory 2014-034] SAP Business Objects Search Token Privilege Escalation via CORBA

Security Focus Latest Security Advisories - December 16, 2014 - 11:15pm
[Onapsis Security Advisory 2014-034] SAP Business Objects Search Token Privilege Escalation via CORBA
Categories:

[SECURITY] [DSA 3105-1] heirloom-mailx security update

BugTraq Latest Security Advisories - December 16, 2014 - 1:49pm

Posted by Florian Weimer on Dec 16

-------------------------------------------------------------------------
Debian Security Advisory DSA-3105-1 security () debian org
http://www.debian.org/security/ Florian Weimer
December 16, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : heirloom-mailx
CVE ID : CVE-2004-2771 CVE-2014-7844...
Categories:

[SECURITY] [DSA 3104-1] bsd-mailx security update

BugTraq Latest Security Advisories - December 16, 2014 - 1:41pm

Posted by Florian Weimer on Dec 16

-------------------------------------------------------------------------
Debian Security Advisory DSA-3104-1 security () debian org
http://www.debian.org/security/ Florian Weimer
December 16, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : bsd-mailx
CVE ID : CVE-2014-7844

It was discovered...
Categories:

Bugtraq: "Ettercap 8.0 - 8.1" multiple vulnerabilities

Security Focus Latest Security Advisories - December 16, 2014 - 1:30pm
"Ettercap 8.0 - 8.1" multiple vulnerabilities
Categories:

Bugtraq: [SE-2014-02] Google App Engine Java security sandbox bypasses (status update)

Security Focus Latest Security Advisories - December 16, 2014 - 1:30pm
[SE-2014-02] Google App Engine Java security sandbox bypasses (status update)
Categories:

W3TotalFail: W3 Total Cache v 0.9.4 CSRF Vulnerability that Leads to Full Deface

BugTraq Latest Security Advisories - December 16, 2014 - 12:57pm

Posted by Mazin Ahmed on Dec 16

####
# Title: W3TotalFail: W3 Total Cache v 0.9.4 CSRF Vulnerability that Leads to Full Deface
# Author: Mazin Ahmed
##
# Date of Discovering: October 6th, 2014
# Date of Reporting to the Vendor: October 7th, 2014
# Date of Releasing a Patch: December 9th, 2014
##
# Vulnerability Type: Cross-Site Request Forgery (CSRF) - CWE-352
##
# Vendor Homepage: https://www.w3-edge.com/
##
# Affected Version: 0.9.4, previous versions might be vulnerable as...
Categories:

3.18.1: stable

Linux Kernel Updates - December 16, 2014 - 12:39pm
Version:3.18.1 (stable) Released:2014-12-16 Source:linux-3.18.1.tar.xz PGP Signature:linux-3.18.1.tar.sign Patch:patch-3.18.1.xz ChangeLog:ChangeLog-3.18.1

3.17.7: stable

Linux Kernel Updates - December 16, 2014 - 12:37pm
Version:3.17.7 (stable) Released:2014-12-16 Source:linux-3.17.7.tar.xz PGP Signature:linux-3.17.7.tar.sign Patch:patch-3.17.7.xz (Incremental) ChangeLog:ChangeLog-3.17.7