BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 46 min 5 sec ago

Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

10 hours 49 min ago

Posted by Cisco Systems Product Security Incident Response Team on Feb 10

Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

Advisory ID: cisco-sa-20160210-asa-ike

Revision 1.0

For Public Release 2016 February 10 16:00 GMT (UTC)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the Internet Key Exchange (IKE) version 1 (v1) and IKE version 2 (v2) code of Cisco ASA Software
could allow an unauthenticated, remote...
Categories:

Remote Code Execution in Exponent

15 hours 7 min ago

Posted by High-Tech Bridge Security Research on Feb 10

Advisory ID: HTB23290
Product: Exponent
Vendor: http://www.exponentcms.org/
Vulnerable Version(s): 2.3.7 and probably prior
Tested Version: 2.3.7
Advisory Publication: January 13, 2016 [without technical details]
Vendor Notification: January 13, 2016
Vendor Patch: January 23, 2016
Public Disclosure: February 3, 2016
Vulnerability Type: Code Injection [CWE-94]
CVE Reference: CVE-2016-2242
Risk Level: Critical
CVSSv3 Base Score: 10...
Categories:

Apache Sling Framework v2.3.6 - Information Disclosure Vulnerability

15 hours 15 min ago

Posted by Vulnerability Lab on Feb 10

Document Title:
===============
Apache Sling Framework v2.3.6 - Information Disclosure Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1536

Adobe Bulletin: https://helpx.adobe.com/security/products/experience-manager/apsb16-05.html

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0956

Vulnerability Magazine:...
Categories:

MyScript Memo v3.0 iOS - (Mail) Persistent Vulnerability

16 hours 48 min ago

Posted by Vulnerability Lab on Feb 10

Document Title:
===============
MyScript Memo v3.0 iOS - (Mail) Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1706

Release Date:
=============
2016-02-10

Vulnerability Laboratory ID (VL-ID):
====================================
1706

Common Vulnerability Scoring System:
====================================
3.6

Product & Service Introduction:...
Categories:

File Sharing Manager v1.0 iOS - Multiple Web Vulnerabilities

16 hours 56 min ago

Posted by Vulnerability Lab on Feb 10

Document Title:
===============
File Sharing Manager v1.0 iOS - Multiple Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1715

Release Date:
=============
2016-02-09

Vulnerability Laboratory ID (VL-ID):
====================================
1715

Common Vulnerability Scoring System:
====================================
7.2

Product & Service Introduction:...
Categories:

Getdpd Bug Bounty #6 - (Import - FTP) Persistent Vulnerability

17 hours 4 min ago

Posted by Vulnerability Lab on Feb 10

Document Title:
===============
Getdpd Bug Bounty #6 - (Import) Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1718

Release Date:
=============
2016-02-09

Vulnerability Laboratory ID (VL-ID):
====================================
1718

Common Vulnerability Scoring System:
====================================
4.4

Product & Service Introduction:...
Categories:

VP2016-001: Remote Command Execution in File Replication Pro

17 hours 13 min ago

Posted by Vantage Point Security on Feb 10

Vantage Point Security Advisory 2016-001
================================

Title: File Replication Pro Remote Command Execution
Vendor: File Replication Pro
Vendor URL: http://www.filereplicationpro.com/
Versions affected: =< 7.2.0
Severity: High
Vendor notified: Yes
Reported: 29 October 2015
Public release: 10 February 2016
Author: Jerold Hoong and the VP team <jerold[at]vantagepoint[dot]sg>
Permalink:

Summary:
--------
File...
Categories:

SEC Consult SA-20160210-0 :: Yeager CMS Multiple Vulnerabilities

18 hours 53 min ago

Posted by SEC Consult Vulnerability Lab on Feb 10

SEC Consult Vulnerability Lab Security Advisory < 20160210-0 >
=======================================================================
title: Multiple Vulnerabilities
product: Yeager CMS
vulnerable version: 1.2.1
fixed version: 1.3
CVE number: CVE-2015-7567, CVE-2015-7568, CVE-2015-7569, CVE-2015-7570
,
CVE-2015-7571, CVE-2015-7572
impact: Critical...
Categories:

ManageEngine Eventlog Analyzer Privilege Escalation v10.8

21 hours 29 min ago

Posted by graphx on Feb 09

# ManageEngine EventLog Analyzer v10.8
# Date: 2/9/2016
# Exploit Author: @GraphX
# Vendor Homepage: http://www.manageengine.com
# Version: 10.8

1 Description:
It is possible for a remote authenticated attacker using an unprivileged
account to gain access to the admin account via parameter manipulation
using the account settings tab and the browser developers console. By
changing the userName field to be the name of the admin user, an attacker...
Categories:

dotDefender Firewall CSRF

21 hours 36 min ago

Posted by hyp3rlinx on Feb 09

[+] Credits: hyp3rlinx

[+] Website: hyp3rlinx.altervista.org

[+] Source:
http://hyp3rlinx.altervista.org/advisories/DOT-DEFENDER-CSRF.txt

Vendor:
==================
www.applicure.com

Product:
=====================
dotDefender Firewall
Versions: 5.00.12865 / 5.13-13282

dotDefender is a Web application firewall (WAF) for preventing hacking
attacks like XSS, SQL Injections, CSRF etc...
that provides Apache and IIS Server Security across...
Categories:

Safebreach adsivory: Node.js HTTP Response Splitting (CVE-2016-2216)

21 hours 43 min ago

Posted by Amit Klein on Feb 09

Dear list

Safebreach just published an advisory on HTTP Response Splitting
vulnerability in Node.js:
http://info.safebreach.com/hubfs/Node-js-Response-Splitting.pdf

The advisory is accompanied by a blog post:
http://blog.safebreach.com/2016/02/09/http-response-splitting-in-node-js-root-cause-analysis/

Node.js has fixed versions ready to download, see:
https://nodejs.org/en/blog/vulnerability/february-2016-security-releases/

Thanks,
-Amit
Categories:

ESA-2016-010 EMC Documentum xCP Security Update for Multiple Vulnerabilities

21 hours 52 min ago

Posted by Security Alert on Feb 09

ESA-2016-010 EMC Documentum xCP Security Update for Multiple Vulnerabilities

EMC Identifier: ESA-2016-010

CVE Identifier: CVE-2016-0881, CVE-2016-0882

Severity Rating: CVSS v3 Base Score: Please refer the Details section for individual scores

Affected products:
• EMC Documentum xCP 2.1
• EMC Documentum xCP 2.2

Summary:
EMC Documentum xCP contains fixes for multiple security vulnerabilities that could potentially be...
Categories:

Privilege escalation Vulnerability in ManageEngine Network Configuration Management

February 9, 2016 - 12:39pm

Posted by kingkaustubh on Feb 09

===================================================================================
Privilege escalation Vulnerability in ManageEngine Network Configuration Management
===================================================================================

. contents:: Table Of Content

Overview
========

Title:- Privilege escalation Vulnerability in ManageEngine Network Configuration Management
Author: Kaustubh G. Padwad
Vendor: ZOHO Corp
Product:...
Categories:

[slackware-security] curl (SSA:2016-039-01)

February 9, 2016 - 7:56am

Posted by Slackware Security Team on Feb 09

[slackware-security] curl (SSA:2016-039-01)

New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
and -current to fix a security issue.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/curl-7.47.1-i486-1_slack14.1.txz: Upgraded.
This update fixes a security issue where NTLM credentials are not checked
for proxy connection reuse. The effects of this flaw is that...
Categories:

[slackware-security] libsndfile (SSA:2016-039-02)

February 9, 2016 - 7:47am

Posted by Slackware Security Team on Feb 09

[slackware-security] libsndfile (SSA:2016-039-02)

New libsndfile packages are available for Slackware 13.37, 14.0, 14.1,
and -current to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/flac-1.3.1-i486-1_slack14.1.txz: Upgraded.
This update is needed by the latest version of libsndfile.
patches/packages/libsndfile-1.0.26-i486-1_slack14.1.txz: Upgraded.
This release...
Categories:

[SECURITY] [DSA 3472-1] wordpress security update

February 9, 2016 - 7:39am

Posted by Salvatore Bonaccorso on Feb 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-3472-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
February 08, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : wordpress
CVE ID : CVE-2016-2221 CVE-2016-2222...
Categories:

[SECURITY] [DSA 3470-1] qemu-kvm security update

February 9, 2016 - 7:33am

Posted by Sebastien Delafond on Feb 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-3470-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
February 08, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : qemu-kvm
CVE ID : CVE-2015-7295 CVE-2015-7504...
Categories:

[SECURITY] [DSA 3469-1] qemu security update

February 9, 2016 - 7:25am

Posted by Sebastien Delafond on Feb 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-3469-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
February 08, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : qemu
CVE ID : CVE-2015-7295 CVE-2015-7504...
Categories:

[SECURITY] [DSA 3471-1] qemu security update

February 9, 2016 - 7:17am

Posted by Sebastien Delafond on Feb 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-3471-1 security () debian org
https://www.debian.org/security/ Sebastien Delafond
February 08, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : qemu
CVE ID : CVE-2015-7295 CVE-2015-7504...
Categories:

WordPress WP User Frontend Plugin [Unrestricted File Upload]

February 8, 2016 - 9:29am

Posted by Panagiotis Vagenas on Feb 08

* Exploit Title: WordPress WP User Frontend Plugin [Unrestricted File
Upload]
* Discovery Date: 2016-02-04
* Public Disclosure: 2016-02-08
* Exploit Author: Panagiotis Vagenas
* Contact: https://twitter.com/panVagenas
* Vendor Homepage: https://wedevs.com
* Software Link: https://wordpress.org/plugins/wp-user-frontend
* Version: 3.4.6
* Tested on: WordPress 4.4.2
* Category: WebApps, WordPress

Description
-----------

WordPress plugin _WP User...
Categories: