Feed aggregator

Vuln: libxml2 CVE-2015-8710 Out-of-bounds Memory Access Vulnerability

Security Focus Latest Security Advisories - December 31, 2016 - 12:00am
libxml2 CVE-2015-8710 Out-of-bounds Memory Access Vulnerability
Categories:

Vuln: JasPer 'jas_matrix_create()' Function Integer Overflow Vulnerability

Security Focus Latest Security Advisories - December 24, 2016 - 12:00am
JasPer 'jas_matrix_create()' Function Integer Overflow Vulnerability
Categories:

Vuln: Autodesk Design Review CVE-2015-8571 Remote Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - December 8, 2016 - 12:00am
Autodesk Design Review CVE-2015-8571 Remote Buffer Overflow Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3609-1] tomcat8 security update

[SECURITY] [DSA 3609-1] tomcat8 security update
Categories:

Bugtraq: [SECURITY] [DSA 3608-1] libreoffice security update

[SECURITY] [DSA 3608-1] libreoffice security update
Categories:

Bugtraq: Cisco Security Advisory: Cisco Prime Infrastructure and Evolved Programmable Network Manager Authentication Bypass API Vulnerability

Cisco Security Advisory: Cisco Prime Infrastructure and Evolved Programmable Network Manager Authentication Bypass API Vulnerability
Categories:

Bugtraq: Cisco Security Advisory: Cisco Prime Collaboration Provisioning Lightweight Directory Access Protocol Authentication Bypass Vulnerability

Cisco Security Advisory: Cisco Prime Collaboration Provisioning Lightweight Directory Access Protocol Authentication Bypass Vulnerability
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

[SECURITY] [DSA 3608-1] libreoffice security update

BugTraq Latest Security Advisories - 5 hours 19 min ago

Posted by Moritz Muehlenhoff on Jun 29

-------------------------------------------------------------------------
Debian Security Advisory DSA-3608-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
June 29, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libreoffice
CVE ID : CVE-2016-4324

Aleksandar...
Categories:

[SECURITY] [DSA 3609-1] tomcat8 security update

BugTraq Latest Security Advisories - 5 hours 29 min ago

Posted by Moritz Muehlenhoff on Jun 29

-------------------------------------------------------------------------
Debian Security Advisory DSA-3609-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
June 29, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tomcat8
CVE ID : CVE-2015-5174 CVE-2015-5345...
Categories:

Bugtraq: Cisco Security Advisory: Cisco Firepower System Software Static Credential Vulnerability

Cisco Security Advisory: Cisco Firepower System Software Static Credential Vulnerability
Categories:

Bugtraq: CVE-2016-4463: Apache Xerces-C XML Parser Crashes on Malformed DTD

CVE-2016-4463: Apache Xerces-C XML Parser Crashes on Malformed DTD
Categories:

Cisco Security Advisory: Cisco Prime Infrastructure and Evolved Programmable Network Manager Authentication Bypass API Vulnerability

BugTraq Latest Security Advisories - 8 hours 29 min ago

Posted by Cisco Systems Product Security Incident Response Team on Jun 29

Cisco Prime Infrastructure and Evolved Programmable Network Manager Authentication Bypass API Vulnerability

Advisory ID: cisco-sa-20160629-piauthbypass

Revision 1.0

For Public Release 2016 June 29 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the application programming interface (API) of Cisco Prime Infrastructure and Cisco Evolved
Programmable Network Manager...
Categories:

Cisco Security Advisory: Cisco Prime Collaboration Provisioning Lightweight Directory Access Protocol Authentication Bypass Vulnerability

BugTraq Latest Security Advisories - 8 hours 42 min ago

Posted by Cisco Systems Product Security Incident Response Team on Jun 29

Cisco Prime Collaboration Provisioning Lightweight Directory Access Protocol Authentication Bypass Vulnerability

Advisory ID: cisco-sa-20160629-cpcpauthbypass

Revision 1.0

For Public Release 2016 June 29 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the Lightweight Directory Access Protocol (LDAP) authentication for Cisco Prime Collaboration
Provisioning could...
Categories:

Cisco Security Advisory: Cisco Firepower System Software Static Credential Vulnerability

BugTraq Latest Security Advisories - 8 hours 52 min ago

Posted by Cisco Systems Product Security Incident Response Team on Jun 29

Cisco Firepower System Software Static Credential Vulnerability

Advisory ID: cisco-sa-20160629-fp

Revision 1.0

For Public Release 2016 June 29 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in Cisco Firepower System Software could allow an unauthenticated, remote attacker to log in to the
device with a default account. This account does not have full administrator...
Categories:

Bugtraq: Symantec SEPM v12.1 Multiple Vulnerabilities

Symantec SEPM v12.1 Multiple Vulnerabilities
Categories:

Bugtraq: KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution

KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution
Categories:

Bugtraq: [KIS-2016-10] Concrete5 <= 5.7.3.1 (Application::dispatch) Local File Inclusion Vulnerability

[KIS-2016-10] Concrete5 <= 5.7.3.1 (Application::dispatch) Local File Inclusion Vulnerability
Categories:

Bugtraq: [KIS-2016-09] Concrete5 <= 5.7.3.1 Multiple Stored Cross-Site Scripting Vulnerabilities

[KIS-2016-09] Concrete5 <= 5.7.3.1 Multiple Stored Cross-Site Scripting Vulnerabilities
Categories:

CVE-2016-4463: Apache Xerces-C XML Parser Crashes on Malformed DTD

BugTraq Latest Security Advisories - 9 hours 58 min ago

Posted by Cantor, Scott on Jun 29

CVE-2016-4463: Apache Xerces-C XML Parser Crashes on Malformed DTD

Severity: Important

Vendor: The Apache Software Foundation

Versions Affected: Apache Xerces-C XML Parser library versions
prior to V3.1.4

Description: The Xerces-C XML parser fails to successfully parse a
DTD that is deeply nested, and this causes a stack overflow, which
makes a denial of service attack against many applications possible
by an unauthenticated attacker....
Categories: