Feed aggregator

[HITB-Announce] #HITB2015AMS Call for Papers 1st Round is Closing in 10 Days

BugTraq Latest Security Advisories - January 23, 2015 - 3:32am

Posted by Hafez Kamal on Jan 23

Hi guys - Happy New Year!

Just a reminder that the first selection round for submissions to HITB
Security Conference 2015 in Amsterdam is closing at the end of January!
That's T - 10 days and counting!!!

===

Date: 26th - 29th May 2015
Venue: De Beurs van Berlage
Event Website: http://conference.hitb.org/hitbsecconf2015ams/

---

HITBSecConf is a deep-knowledge, highly technical conference and we're
looking for material which is new,...
Categories:

next-20150123: linux-next

Linux Kernel Updates - January 23, 2015 - 2:07am
Version:next-20150123 (linux-next) Released:2015-01-23

Bugtraq: PhotoSync 1.1.3 Android - Command Inject Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 2:00am
PhotoSync 1.1.3 Android - Command Inject Vulnerability
Categories:

Bugtraq: Program-O v2.4.6 - Multiple Web Vulnerabilities

Security Focus Latest Security Advisories - January 23, 2015 - 2:00am
Program-O v2.4.6 - Multiple Web Vulnerabilities
Categories:

Bugtraq: CVE-2015-1180-xss-eventsentry

Security Focus Latest Security Advisories - January 23, 2015 - 2:00am
CVE-2015-1180-xss-eventsentry
Categories:

Bugtraq: CVE-2015-1179-xss-mango-automation-scada

Security Focus Latest Security Advisories - January 23, 2015 - 2:00am
CVE-2015-1179-xss-mango-automation-scada
Categories:

Vuln: Oracle MySQL Server CVE-2015-0374 Remote Security Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle MySQL Server CVE-2015-0374 Remote Security Vulnerability
Categories:

Vuln: Info-ZIP UnZip Out of Bounds Denial of Service Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Info-ZIP UnZip Out of Bounds Denial of Service Vulnerability
Categories:

Vuln: Samba CVE-2014-8143 Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Samba CVE-2014-8143 Privilege Escalation Vulnerability
Categories:

Vuln: Oracle MySQL Server CVE-2015-0382 Remote Security Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle MySQL Server CVE-2015-0382 Remote Security Vulnerability
Categories:

Vuln: Oracle MySQL Server CVE-2015-0381 Remote Security Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle MySQL Server CVE-2015-0381 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-6601 Remote Java SE Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle Java SE CVE-2014-6601 Remote Java SE Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2015-0407 Remote Java SE Vulnerability

Security Focus Latest Security Advisories - January 23, 2015 - 12:00am
Oracle Java SE CVE-2015-0407 Remote Java SE Vulnerability
Categories:

PhotoSync 1.1.3 Android - Command Inject Vulnerability

BugTraq Latest Security Advisories - January 22, 2015 - 12:10pm

Posted by Vulnerability Lab on Jan 22

Document Title:
===============
PhotoSync 1.1.3 Android - Command Inject Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1410

Release Date:
=============
2015-01-21

Vulnerability Laboratory ID (VL-ID):
====================================
1410

Common Vulnerability Scoring System:
====================================
5.2

Product & Service Introduction:...
Categories:

Program-O v2.4.6 - Multiple Web Vulnerabilities

BugTraq Latest Security Advisories - January 22, 2015 - 12:01pm

Posted by Vulnerability Lab on Jan 22

Document Title:
===============
Program-O v2.4.6 - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1414

Release Date:
=============
2015-01-21

Vulnerability Laboratory ID (VL-ID):
====================================
1414

Common Vulnerability Scoring System:
====================================
6.3

Product & Service Introduction:
===============================...
Categories:

CVE-2015-1180-xss-eventsentry

BugTraq Latest Security Advisories - January 22, 2015 - 9:40am

Posted by Sudhanshu Chauhan on Jan 22

CVE-2015-1180-xss-eventsentry

Information
----------------
Advisory by Octogence.
Name: Reflected XSS Vulnerability in EventSentry Web Reports Interface
Affected Software : EventSentry
Affected Versions: 3.1.0 and possibly below
Vendor Homepage : http://eventsentry.com/
Vulnerability Type : Cross-site Scripting
Severity : High
CVE ID: CVE-2015-1180

Impact
----------
An attacker can craft a URL with malicious JavaScript code which
executes in...
Categories:

CVE-2015-1179-xss-mango-automation-scada

BugTraq Latest Security Advisories - January 22, 2015 - 9:32am

Posted by Sudhanshu Chauhan on Jan 22

CVE-2015-1179-xss-mango-automation-scada

Information
-----------------
Advisory by Octogence.
Name: Reflected XSS Vulnerability in Mango Automation SCADA/HMI software
Affected Software : Mango Automation
Affected Versions: 2.4.0 and possibly below
Vendor Homepage : http://infiniteautomation.com/
Vulnerability Type : Cross-site Scripting
Severity : High
CVE ID: CVE-2015-1179

Impact
----------
An attacker can craft a URL with malicious JavaScript...
Categories:

CVE-2015-1178-xss-x-cart-ecommerce

BugTraq Latest Security Advisories - January 22, 2015 - 9:23am

Posted by Sudhanshu Chauhan on Jan 22

CVE-2015-1178-xss-x-cart-ecommerce

Information
----------------
Advisory by Octogence.
Name: Reflected XSS Vulnerability in X-CART e-Commerce software
Affected Software : X-Cart
Affected Versions: 5.1.8 and possibly below
Vendor Homepage : https://www.x-cart.com
Vulnerability Type : Cross-site Scripting
Severity : High
CVE ID: CVE-2015-1178

Impact
----------
An attacker can craft a URL with malicious JavaScript code which
executes in the...
Categories: