Feed aggregator

Vuln: Python JSON Module '_json.c' Local Information Disclosure Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Python JSON Module '_json.c' Local Information Disclosure Vulnerability
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0537 Unspecified Security Bypass Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Adobe Flash Player and AIR CVE-2014-0537 Unspecified Security Bypass Vulnerability
Categories:

Vuln: Debian rawstudio Package 'rs_filter_graph()' Function Insecure Temporary File Handling Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Debian rawstudio Package 'rs_filter_graph()' Function Insecure Temporary File Handling Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4223 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-4223 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-0453 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-2401 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-2401 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-0448 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-0448 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-0455 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-0455 Remote Code Execution Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4216 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-4216 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4266 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-4266 Remote Security Vulnerability
Categories:

SEC Consult SA-20140716-3 :: Multiple critical vulnerabilities in Bitdefender GravityZone

BugTraq Latest Security Advisories - July 16, 2014 - 10:59am

Posted by SEC Consult Vulnerability Lab on Jul 16

SEC Consult Vulnerability Lab Security Advisory < 20140716-3 >
=======================================================================
title: Multiple critical vulnerabilities
product: Bitdefender GravityZone
vulnerable version: <5.1.11.432
fixed version: >=5.1.11.432
impact: critical
homepage: http://www.bitdefender.com
found: 2014-05-22
by:...
Categories:

SEC Consult SA-20140716-2 :: Multiple vulnerabilities in Citrix NetScaler Application Delivery Controller and Citrix NetScaler Gateway

BugTraq Latest Security Advisories - July 16, 2014 - 10:49am

Posted by SEC Consult Vulnerability Lab on Jul 16

SEC Consult Vulnerability Lab Security Advisory < 20140716-2 >
=======================================================================
title: Multiple vulnerabilities
product: Citrix NetScaler Application Delivery Controller
Citrix NetScaler Gateway
vulnerable version: <9.3-62.4
<10.1-126.12
fixed version: >=9.3-62.4...
Categories:

SEC Consult SA-20140716-1 :: Remote Code Execution via CSRF in OpenVPN Access Server "Desktop Client"

BugTraq Latest Security Advisories - July 16, 2014 - 10:38am

Posted by SEC Consult Vulnerability Lab on Jul 16

SEC Consult Vulnerability Lab Security Advisory < 20140716-1 >
=======================================================================
title: Remote Code Execution via CSRF
product: OpenVPN Access Server "Desktop Client"
vulnerable version: all
fixed version: not available
impact: critical
homepage: http://www.openvpn.net
found: 2014-05-12
by:...
Categories:

Reflected Cross-Site Scripting (XSS) in e107

BugTraq Latest Security Advisories - July 16, 2014 - 10:27am

Posted by High-Tech Bridge Security Research on Jul 16

Advisory ID: HTB23220
Product: e107
Vendor: e107
Vulnerable Version(s): 2.0 alpha2 and probably prior
Tested Version: 2.0 alpha2
Advisory Publication: June 18, 2014 [without technical details]
Vendor Notification: June 18, 2014
Vendor Patch: June 27, 2014
Public Disclosure: July 16, 2014
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2014-4734
Risk Level: Low
CVSSv2 Base Score: 2.6 (AV:N/AC:H/Au:N/C:N/I:P/A:N)
Solution...
Categories:

VUPEN Security Research - Microsoft Windows "DirectShow" Privilege Escalation Vulnerability (Pwn2Own 2014)

BugTraq Latest Security Advisories - July 16, 2014 - 10:17am

Posted by VUPEN Security Research on Jul 16

VUPEN Security Research - Microsoft Windows "DirectShow" Local Privilege
Escalation Vulnerability (Pwn2Own 2014)

Website : http://www.vupen.com

Twitter : http://twitter.com/vupen

I. BACKGROUND
---------------------

"Microsoft Windows is a series of software operating systems and
graphical user interfaces produced by Microsoft. Windows had
approximately 90% of the market share of the client operating
systems." (Wikipedia)...
Categories:

Bugtraq: VUPEN Security Research - Microsoft Internet Explorer "ShowSaveFileDialog()" Sandbox Bypass (Pwn2Own 2014)

Security Focus Latest Security Advisories - July 16, 2014 - 10:15am
VUPEN Security Research - Microsoft Internet Explorer "ShowSaveFileDialog()" Sandbox Bypass (Pwn2Own 2014)
Categories:

Bugtraq: VUPEN Security Research - Microsoft Internet Explorer "Request" Object Confusion Sandbox Bypass (Pwn2Own 2014)

Security Focus Latest Security Advisories - July 16, 2014 - 10:15am
VUPEN Security Research - Microsoft Internet Explorer "Request" Object Confusion Sandbox Bypass (Pwn2Own 2014)
Categories:

Bugtraq: VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption (Pwn2Own 2014)

Security Focus Latest Security Advisories - July 16, 2014 - 10:15am
VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption (Pwn2Own 2014)
Categories:

VUPEN Security Research - Microsoft Internet Explorer "ShowSaveFileDialog()" Sandbox Bypass (Pwn2Own 2014)

BugTraq Latest Security Advisories - July 16, 2014 - 10:09am

Posted by VUPEN Security Research on Jul 16

VUPEN Security Research - Microsoft Internet Explorer
"ShowSaveFileDialog()" Protected Mode Sandbox Bypass (Pwn2Own 2014)

Website : http://www.vupen.com

Twitter : http://twitter.com/vupen

I. BACKGROUND
---------------------

"Microsoft Internet Explorer is a web browser developed by Microsoft and
included as part of the Microsoft Windows line of operating systems with
more than 60% of the worldwide usage share of web...
Categories:

VUPEN Security Research - Microsoft Internet Explorer "Request" Object Confusion Sandbox Bypass (Pwn2Own 2014)

BugTraq Latest Security Advisories - July 16, 2014 - 10:00am

Posted by VUPEN Security Research on Jul 16

VUPEN Security Research - Microsoft Internet Explorer "Request" Object
Confusion Sandbox Bypass (Pwn2Own 2014)

Website : http://www.vupen.com

Twitter : http://twitter.com/vupen

I. BACKGROUND
---------------------

"Microsoft Internet Explorer is a web browser developed by Microsoft and
included as part of the Microsoft Windows line of operating systems with
more than 60% of the worldwide usage share of web browsers."...
Categories: