Feed aggregator

Bugtraq: Barracuda Networks Spam&Virus Firewall v5.1.3 - Client Side Cross Site Vulnerability

Barracuda Networks Spam&Virus Firewall v5.1.3 - Client Side Cross Site Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 2991-1] modsecurity-apache security update

[SECURITY] [DSA 2991-1] modsecurity-apache security update
Categories:

Bugtraq: [SECURITY] [DSA 2990-1] cups security update

[SECURITY] [DSA 2990-1] cups security update
Categories:

Bugtraq: [security bulletin] HPSBGN02936 rev.1 - HP and H3C VPN Firewall Module Products, Remote Denial of Service (DoS)

[security bulletin] HPSBGN02936 rev.1 - HP and H3C VPN Firewall Module Products, Remote Denial of Service (DoS)
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

3.15.7: stable

Linux Kernel Updates - 3 hours 18 min ago
Version:3.15.7 (stable) Released:2014-07-28 Source:linux-3.15.7.tar.xz PGP Signature:linux-3.15.7.tar.sign Patch:patch-3.15.7.xz (Incremental) ChangeLog:ChangeLog-3.15.7

3.14.14: longterm

Linux Kernel Updates - 3 hours 19 min ago
Version:3.14.14 (longterm) Released:2014-07-28 Source:linux-3.14.14.tar.xz PGP Signature:linux-3.14.14.tar.sign Patch:patch-3.14.14.xz (Incremental) ChangeLog:ChangeLog-3.14.14

3.10.50: longterm

Linux Kernel Updates - 3 hours 25 min ago
Version:3.10.50 (longterm) Released:2014-07-28 Source:linux-3.10.50.tar.xz PGP Signature:linux-3.10.50.tar.sign Patch:patch-3.10.50.xz (Incremental) ChangeLog:ChangeLog-3.10.50

3.4.100: longterm

Linux Kernel Updates - 4 hours 19 min ago
Version:3.4.100 (longterm) Released:2014-07-28 Source:linux-3.4.100.tar.xz PGP Signature:linux-3.4.100.tar.sign Patch:patch-3.4.100.xz (Incremental) ChangeLog:ChangeLog-3.4.100

next-20140728: linux-next

Linux Kernel Updates - 7 hours 4 min ago
Version:next-20140728 (linux-next) Released:2014-07-28

Barracuda Networks Spam&Virus Firewall v5.1.3 - Client Side Cross Site Vulnerability

BugTraq Latest Security Advisories - 7 hours 33 min ago

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Barracuda Networks Spam&Virus Firewall v5.1.3 - Client Side Cross Site Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1118

Barracuda Networks Security ID (BNSEC): BNSEC-1052
https://www.barracuda.com/support/knowledgebase/501600000013lYI

Solution #00006606
BNSEC-01052: Non-persistent XSS in Barracuda Spam and Virus Firewall v5.1.3

Release Date:...
Categories:

[SECURITY] [DSA 2991-1] modsecurity-apache security update

BugTraq Latest Security Advisories - 7 hours 42 min ago

Posted by Salvatore Bonaccorso on Jul 28

-------------------------------------------------------------------------
Debian Security Advisory DSA-2991-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
July 27, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : modsecurity-apache
CVE ID : CVE-2013-5705

Martin...
Categories:

[SECURITY] [DSA 2990-1] cups security update

BugTraq Latest Security Advisories - 7 hours 53 min ago

Posted by Salvatore Bonaccorso on Jul 28

-------------------------------------------------------------------------
Debian Security Advisory DSA-2990-1 security () debian org
http://www.debian.org/security/ Salvatore Bonaccorso
July 27, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : cups
CVE ID : CVE-2014-3537 CVE-2014-5029...
Categories:

[security bulletin] HPSBGN02936 rev.1 - HP and H3C VPN Firewall Module Products, Remote Denial of Service (DoS)

BugTraq Latest Security Advisories - 8 hours 17 sec ago

Posted by security-alert on Jul 28

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03993467

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03993467
Version: 1

HPSBGN02936 rev.1 - HP and H3C VPN Firewall Module Products, Remote Denial of
Service (DoS)

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-07-25...
Categories:

Web Encryption Extension security update

Posted by Ralf Senderek on Jul 28

Revision: 1.0
Last Updated: 25 July 2014
First Published: 25 July 2014

Summary:
A security issue was found in the Web Encryption Extension.

Authenticated users are able to modify the content of https request
fields to insert code into the pipeline mechanism of PHP.

Severity: High

Affected Software Versions:

All versions of the Web Encryption Extension prior to version 3.0

Impact:...
Categories:

Re: [FD] Beginner's error: import function of Windows Mail executes rogue program C:\Program.exe with credentials of other account

BugTraq Latest Security Advisories - 8 hours 19 min ago

Posted by Stefan Kanthak on Jul 28

Gynvael Coldwind wrote:

Correct.
If only Microsoft would educate its users to exercise STRICT user
separation and use different accounts for administration and daily work.

This is where and why UAC chimes in (which answers your question below):
Joe Average uses the administrative account created during Windows setup,
but UAC strips the administrator rights.
Microsoft "sells" UAC as "Joe Average works with standard user...
Categories:

Bugtraq: Barracuda Networks Firewall 6.1.5 - Filter Bypass & Persistent Vulnerabilities

Barracuda Networks Firewall 6.1.5 - Filter Bypass & Persistent Vulnerabilities
Categories:

Bugtraq: Easy file sharing web server - persist XSS in forum msgs

Easy file sharing web server - persist XSS in forum msgs
Categories:

Bugtraq: [SECURITY] [DSA 2989-1] apache2 security update

[SECURITY] [DSA 2989-1] apache2 security update
Categories:

Bugtraq: Security advisory for Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14

Security advisory for Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14
Categories: