Feed aggregator

Bugtraq: ESA-2014-071: RSA Archer® GRC Platform Multiple Vulnerabilities

ESA-2014-071: RSA Archer® GRC Platform Multiple Vulnerabilities
Categories:

Bugtraq: [CVE-2014-0232] Apache OFBiz Cross-site scripting (XSS) vulnerability

[CVE-2014-0232] Apache OFBiz Cross-site scripting (XSS) vulnerability
Categories:

Bugtraq: ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities

ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities
Categories:

Bugtraq: ESA-2014-067: EMC Documentum D2 Privilege Escalation Vulnerability

ESA-2014-067: EMC Documentum D2 Privilege Escalation Vulnerability
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

next-20140820: linux-next

Linux Kernel Updates - 3 hours 29 min ago
Version:next-20140820 (linux-next) Released:2014-08-19

Bugtraq: ESA-2014-059: EMC Documentum Multiple Cross-Site Scripting Vulnerabilities

ESA-2014-059: EMC Documentum Multiple Cross-Site Scripting Vulnerabilities
Categories:

ESA-2014-071: RSA Archer® GRC Platform Multiple Vulnerab ilities

BugTraq Latest Security Advisories - 4 hours 57 min ago

Posted by Security Alert on Aug 19

ESA-2014-071: RSA Archer® GRC Platform Multiple Vulnerabilities

EMC Identifier: ESA-2014-071

CVE Identifier: CVE-2014-2517, CVE-2014-2505, CVE-2014-0640, CVE-2014-0641

Severity Rating: CVSS v2 Base Score: See below for individual scores

Affected Products:
RSA Archer GRC Platform version 5.x

Summary:
RSA Archer GRC Platform 5.5 SP1 contains fixes for multiple security vulnerabilities that could potentially be
exploited by malicious...
Categories:

[CVE-2014-0232] Apache OFBiz Cross-site scripting (XSS) vulnerability

BugTraq Latest Security Advisories - 12 hours 33 min ago

Posted by Jacopo Cappellato on Aug 19

CVE-2014-0232: Apache OFBiz Cross-site scripting (XSS) vulnerability

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Apache OFBiz 11.04.01 to 11.04.04
Apache OFBiz 12.04.01 to 11.04.03
The unsupported Apache OFBiz 09.04.x, 10.04.x versions may be also affected

Description:
Result and error messages returned by some OFBiz services could be a vector for XSS attacks.

Mitigation:
11.04.x users should upgrade to...
Categories:

ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities

BugTraq Latest Security Advisories - 12 hours 44 min ago

Posted by Security Alert on Aug 19

ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities

EMC Identifier: ESA-2014-079

CVE Identifier: See below for individual CVEs

Severity Rating: CVSS v2 Base Score: See below for individual CVSS score for each CVE

Affected products:
• All EMC Documentum Content Server versions of 7.1 prior to P07
• All EMC Documentum Content Server versions of 7.0
• All EMC Documentum Content Server versions of 6.7...
Categories:

Bugtraq: ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities

ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities
Categories:

Bugtraq: [SECURITY] [DSA 3006-1] xen security update

[SECURITY] [DSA 3006-1] xen security update
Categories:

ESA-2014-067: EMC Documentum D2 Privilege Escalation Vulnerability

BugTraq Latest Security Advisories - 12 hours 54 min ago

Posted by Security Alert on Aug 19

ESA-2014-067: EMC Documentum D2 Privilege Escalation Vulnerability

EMC Identifier: ESA-2014-067

CVE Identifier: CVE-2014-2515

Severity: CVSSv2 Base Score: 8.5 (AV:N/AC:M/Au:S/C:C/I:C/A:C)

Affected products:
• EMC Documentum D2 3.1 and patch versions
• EMC Documentum D2 3.1SP1 and patch versions
• EMC Documentum D2 4.0 and patch versions
• EMC Documentum D2 4.1 and patch versions
• EMC Documentum D2 4.2...
Categories:

ESA-2014-059: EMC Documentum Multiple Cross-Site Scripting Vulnerabilities

BugTraq Latest Security Advisories - 13 hours 4 min ago

Posted by Security Alert on Aug 19

ESA-2014-059: EMC Documentum Multiple Cross-Site Scripting Vulnerabilities

EMC Identifier: ESA-2014-059

CVE Identifier: CVE-2014-2511

Severity Rating: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

Affected products:
• EMC WebTop 6.7 SP1, 6.7 SP2
• EMC Documentum Administrator 6.7 SP1, 6.7 SP2, 7.0, 7.1.
• EMC Records Client 6.7 SP1, 6.7 SP2
• EMC Digital Assets Manager 6.5SP5, 6.5SP6
• EMC Web...
Categories:

ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities

BugTraq Latest Security Advisories - 13 hours 15 min ago

Posted by Security Alert on Aug 19

ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities

EMC Identifier: ESA-2014-073

CVE Identifier: CVE-2014-2518

Severity Rating: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

Affected products:
• EMC Documentum Webtop Versions prior 6.7SP1 P28
• EMC Documentum Webtop Versions prior 6.7SP2 P15
• EMC Documentum Administrator Versions prior 6.7 SP1 P28
• EMC Documentum...
Categories:

Bugtraq: Outlook.com for Android fails to validate server certificates

Outlook.com for Android fails to validate server certificates
Categories:

Bugtraq: CVE-2014-5289 - Kolibri WebServer 2.0 Vulnerable to RCE via Overly Long POST Request

CVE-2014-5289 - Kolibri WebServer 2.0 Vulnerable to RCE via Overly Long POST Request
Categories:

Bugtraq: Beginners error: Apple's iCloudServices for Windows run rogue program C:\Program.exe (and some more)

Beginners error: Apple's iCloudServices for Windows run rogue program C:\Program.exe (and some more)
Categories:

Vuln: Cisco ASR 5000 Series Software CVE-2014-3331 Denial of Service Vulnerability

Cisco ASR 5000 Series Software CVE-2014-3331 Denial of Service Vulnerability
Categories:

Vuln: MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability
Categories: