Feed aggregator

Vuln: HP LoadRunner Virtual User Generator CVE-2013-4838 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - April 17, 2014 - 11:00pm
HP LoadRunner Virtual User Generator CVE-2013-4838 Remote Code Execution Vulnerability
Categories:

Vuln: Oracle Outside In Technology CVE-2013-5879 Local Security Vulnerability

Security Focus Latest Security Advisories - April 17, 2014 - 11:00pm
Oracle Outside In Technology CVE-2013-5879 Local Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-2398 Remote Security Vulnerability

Security Focus Latest Security Advisories - April 17, 2014 - 11:00pm
Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
Categories:

[security bulletin] HPSBMU02995 rev.3 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure

BugTraq Latest Security Advisories - April 17, 2014 - 1:48pm

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04236102

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04236102
Version: 3

HPSBMU02995 rev.3 - HP Software HP Service Manager, Asset Manager, UCMDB
Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation,
Diagnostics, LoadRunner, and Performance Center, running...
Categories:

[security bulletin] HPSBMU02998 rev.2 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information, Denial of Service (DoS)

BugTraq Latest Security Advisories - April 17, 2014 - 1:10pm

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04239372

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04239372
Version: 2

HPSBMU02998 rev.2 - HP System Management Homepage (SMH) running OpenSSL on
Linux and Windows, Remote Disclosure of Information, Denial of Service (DoS)

NOTICE: The information in this Security Bulletin should...
Categories:

Bugtraq: [security bulletin] HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code Execution, Disclosure of information

Security Focus Latest Security Advisories - April 17, 2014 - 12:30pm
[security bulletin] HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code Execution, Disclosure of information
Categories:

Bugtraq: D-Link DAP-1320 Wireless Range Extender Directory Traversal and XSS Vulnerabilities

Security Focus Latest Security Advisories - April 17, 2014 - 12:30pm
D-Link DAP-1320 Wireless Range Extender Directory Traversal and XSS Vulnerabilities
Categories:

[security bulletin] HPSBGN03010 rev.1 - HP Software Server Automation, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 10:17am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04250814

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04250814
Version: 1

HPSBGN03010 rev.1 - HP Software Server Automation, "HeartBleed" OpenSSL
Vulnerability, Remote Disclosure of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon...
Categories:

[ MDVSA-2014:079 ] json-c

BugTraq Latest Security Advisories - April 17, 2014 - 9:57am

Posted by security on Apr 17

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2014:079
http://www.mandriva.com/en/support/security/
_______________________________________________________________________

Package : json-c
Date : April 17, 2014
Affected: Business Server 1.0
_______________________________________________________________________

Problem Description:

Updated...
Categories:

D-Link DAP-1320 Wireless Range Extender Directory Traversal and XSS Vulnerabilities

BugTraq Latest Security Advisories - April 17, 2014 - 9:46am

Posted by kyle Lovett on Apr 17

D-Link's DAP-1320 Wireless Range Extender suffers from both a
directory traversal and a XSS vulnerability on all firmware versions.
(current v. 1.20B07)

---------------------------------------------------------------------------------------------------------------------
Directory Traversal
CWE-22: Path Traversal

The POST param 'html_response_page' of apply.cgi suffers from a
directory traversal vulnerability.

The following...
Categories:

[security bulletin] HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code Execution, Disclosure of information

BugTraq Latest Security Advisories - April 17, 2014 - 9:30am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03969437

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03969437
Version: 2

HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code
Execution, Disclosure of information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release...
Categories:

[security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution

BugTraq Latest Security Advisories - April 17, 2014 - 9:16am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04219959

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04219959
Version: 1

HPSBMU02987 rev.1 - HP Universal Configuration Management Database
Integration Service, Remote Code Execution

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release...
Categories:

[security bulletin] HPSBMU02988 rev.1 - HP Universal Configuration Management Database, Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 9:04am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04220407

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04220407
Version: 1

HPSBMU02988 rev.1 - HP Universal Configuration Management Database,
Disclosure of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date:...
Categories:

[security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 8:49am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04201408

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04201408
Version: 1

HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of
Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-04-17
Last...
Categories:

Bugtraq: [security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution

Security Focus Latest Security Advisories - April 17, 2014 - 8:45am
[security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution
Categories:

Bugtraq: [security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information

Security Focus Latest Security Advisories - April 17, 2014 - 8:45am
[security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information
Categories:

Bugtraq: [security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

Security Focus Latest Security Advisories - April 17, 2014 - 8:45am
[security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information
Categories:

[security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 8:30am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04248997

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04248997
Version: 1

HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL
Vulnerability, Remote Disclosure of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as...
Categories:

[security bulletin] HPSBMU02996 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access, Execution of Arbitrary Code

BugTraq Latest Security Advisories - April 17, 2014 - 8:14am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04026039

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04026039
Version: 1

HPSBMU02996 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux,
Solaris, and Windows, Remote Unauthorized Access, Execution of Arbitrary Code

NOTICE: The information in this Security Bulletin should be...
Categories:

Buggy insecure "security" software executes rogue binary during installation and uninstallation

BugTraq Latest Security Advisories - April 17, 2014 - 8:01am

Posted by Stefan Kanthak on Apr 17

Hi @ll,

the $*&#§ware by the name of "McAfee Security Scanner Plus" that Adobe dares
to push to unsuspecting users of Microsoft Windows trying to get flash player
from their main distribution page <hxxp://get.adobe.com/flashplayer/> was
developed, packaged and tested by people who obviously never heard of "long"
filenames which may contain spaces.

or <http://msdn.microsoft.com/library/cc144101.aspx>:

|...
Categories: