Feed aggregator

Bugtraq: WordPress 4.2 stored XSS

WordPress 4.2 stored XSS
Categories:

Bugtraq: [security bulletin] HPSBHF03272 rev.1 - HP Servers with NVidia GPU Computing Driver running Windows Server 2008, Elevation of Privilege

[security bulletin] HPSBHF03272 rev.1 - HP Servers with NVidia GPU Computing Driver running Windows Server 2008, Elevation of Privilege
Categories:

Bugtraq: [security bulletin] HPSBPI03315 rev.1 - HP Capture and Route Software, Remote Information Disclosure

[security bulletin] HPSBPI03315 rev.1 - HP Capture and Route Software, Remote Information Disclosure
Categories:

Bugtraq: [SECURITY] [DSA 3233-1] wpa security update

[SECURITY] [DSA 3233-1] wpa security update
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

[ MDVSA-2015:204 ] librsync

Posted by security on Apr 27

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:204
http://www.mandriva.com/en/support/security/
_______________________________________________________________________

Package : librsync
Date : April 27, 2015
Affected: Business Server 1.0
_______________________________________________________________________

Problem Description:

Updated...
Categories:

[SECURITY] [DSA 3238-1] chromium-browser security update

Posted by Michael Gilbert on Apr 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3238-1 security () debian org
http://www.debian.org/security/ Michael Gilbert
April 26, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chromium-browser
CVE ID : CVE-2015-1235...
Categories:

WordPress 4.2 stored XSS

Posted by Jouko Pynnonen on Apr 27

OVERVIEW
==========

Current versions of WordPress are vulnerable to a stored XSS. An
unauthenticated attacker can inject JavaScript in WordPress comments.
The script is triggered when the comment is viewed.

If triggered by a logged-in administrator, under default settings the
attacker can leverage the vulnerability to execute arbitrary code on
the server via the plugin and theme editors.

Alternatively the attacker could change the...
Categories:

[SECURITY] [DSA 3237-1] linux security update

Posted by Ben Hutchings on Apr 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3237-1 security () debian org
http://www.debian.org/security/ Ben Hutchings
April 26, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : linux
CVE ID : CVE-2014-8159 CVE-2014-9715...
Categories:

[SECURITY] [DSA 3236-1] libreoffice security update

Posted by Moritz Muehlenhoff on Apr 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3236-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
April 25, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libreoffice
CVE ID : CVE-2015-1774

It was...
Categories:

[SECURITY] [DSA 3235-1] openjdk-7 security update

Posted by Moritz Muehlenhoff on Apr 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3235-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
April 24, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openjdk-7
CVE ID : CVE-2015-0460 CVE-2015-0469...
Categories:

[SECURITY] [DSA 3234-1] openjdk-6 security update

Posted by Moritz Muehlenhoff on Apr 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3234-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
April 24, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openjdk-6
CVE ID : CVE-2015-0460 CVE-2015-0469...
Categories:

[security bulletin] HPSBHF03272 rev.1 - HP Servers with NVidia GPU Computing Driver running Windows Server 2008, Elevation of Privilege

Posted by security-alert on Apr 27

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04579346

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04579346
Version: 1

HPSBHF03272 rev.1 - HP Servers with NVidia GPU Computing Driver running
Windows Server 2008, Elevation of Privilege

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible....
Categories:

[security bulletin] HPSBPI03315 rev.1 - HP Capture and Route Software, Remote Information Disclosure

Posted by security-alert on Apr 27

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04633710

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04633710
Version: 1

HPSBPI03315 rev.1 - HP Capture and Route Software, Remote Information
Disclosure

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2015-04-24
Last...
Categories:

[SECURITY] [DSA 3233-1] wpa security update

Posted by Salvatore Bonaccorso on Apr 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3233-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
April 24, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : wpa
CVE ID : CVE-2015-1863
Debian Bug : 783148...
Categories:

Bugtraq: Incorrect handling of self signed certificates in OpenFire XMPP Server

Incorrect handling of self signed certificates in OpenFire XMPP Server
Categories:

Bugtraq: SSH Network Security Assessment utility - Zeppelin - -=[Advanced Information Security Corp]=-

SSH Network Security Assessment utility - Zeppelin - -=[Advanced Information Security Corp]=-
Categories:

Bugtraq: Zeppelin - SSH script - Advanced Information Security Corporation

Zeppelin - SSH script - Advanced Information Security Corporation
Categories:

Bugtraq: 4k ULTRA HIGH DEFINITION Satellite Security Research - DVB-S2X Security Evaluation Draft Notes

4k ULTRA HIGH DEFINITION Satellite Security Research - DVB-S2X Security Evaluation Draft Notes
Categories:

4k ULTRA HIGH DEFINITION Satellite Security Research - DVB-S2X Security Evaluation Draft Notes - Advanced Information Security Corporation

Posted by Nicholas Lemonias. on Apr 27

Author: Nicholas Lemonias

Advisory Date: 23/4/2015

4k Satellite Security Research - DVB-S2X Standard Evaluation Notes
# . . . . . . .
# . . . . . ______
# . . . ////////
# . . ________ . . ///////// . .
# . |.____. /\ .///////// .
#...
Categories: