BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 1 hour 5 min ago

SEC Consult SA-20181009-0 :: Remote Code Execution via XMeye P2P Cloud in Xiongmai IP Cameras, NVRs and DVRs incl. 3rd party OEM devices (CVE-2018-17915, CVE-2018-17917, CVE-2018-17919)

October 9, 2018 - 9:15am

Posted by SEC Consult Vulnerability Lab on Oct 09

SEC Consult also published a blog post regarding the identified security issues
with further background information:

Blog: https://r.sec-consult.com/xmeye

SEC Consult Vulnerability Lab Security Advisory < 20181009-0 >
=======================================================================
title: Remote Code Execution via XMeye P2P Cloud
product: Xiongmai IP Cameras, NVRs and DVRs
incl. 3rd...
Categories:

Responsive Filemanager 9.8.1 Reflected Cross Site Scripting (XSS)

October 9, 2018 - 8:18am

Posted by yavuz atlas on Oct 09

I. VULNERABILITY
-------------------------
Responsive Filemanager 9.8.1 Reflected Cross Site Scripting (XSS)

II. CVE REFERENCE
-------------------------
CVE-2018-18062

III. VENDOR
-------------------------
https://www.responsivefilemanager.com

IV. REFERENCES
-------------------------
https://vulmon.com/vulnerabilitydetails?qid=CVE-2018-18062

V. CREDIT
-------------------------
Yavuz Atlas of Biznet Bilisim...
Categories:

Responsive Filemanager 9.8.1 Authentication Bypass

October 9, 2018 - 8:15am

Posted by yavuz atlas on Oct 09

I. VULNERABILITY
-------------------------
Responsive Filemanager 9.8.1 Authentication Bypass

II. CVE REFERENCE
-------------------------
CVE-2018-18061

III. VENDOR
-------------------------
https://www.responsivefilemanager.com

IV. REFERENCES
-------------------------
https://vulmon.com/vulnerabilitydetails?qid=CVE-2018-18061

V. CREDIT
-------------------------
Yavuz Atlas of Biznet Bilisim
http://www.biznet.com.tr/biznet-guvenlik-duyurulari...
Categories:

CVE Request: Sitepress Multilingual CMS Plugin Unauthenticated Stored XSS

October 9, 2018 - 4:48am

Posted by Rahul Pratap Singh on Oct 09

## FULL DISCLOSURE

#Product : Sitepress Multilingual CMS Plugin
#Exploit Author : Rahul Pratap Singh
#Version : 3.6.3 and Below
#Home page Link : https://wpml.org/
#Website: https://0x62626262.wordpress.com
#Date : 08/10/2018

Unauthenticated Stored XSS Vulnerability:

—————————————-
Description:
—————————————-
“locale_file_name_en” parameter is not sanitized that leads to stored XSS....
Categories:

[SECURITY] [DSA 4313-1] linux security update

October 9, 2018 - 4:44am

Posted by Salvatore Bonaccorso on Oct 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-4313-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
October 08, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : linux
CVE ID : CVE-2018-15471 CVE-2018-18021...
Categories:

APPLE-SA-2018-10-08-2 iCloud for Windows 7.7

October 9, 2018 - 4:43am

Posted by Apple Product Security on Oct 09

APPLE-SA-2018-10-08-2 iCloud for Windows 7.7

iCloud for Windows 7.7 is now available and addresses the following:

WebKit
Available for: Windows 7 and later
Impact: Unexpected interaction causes an ASSERT failure
Description: A memory corruption issue was addressed with improved
validation.
CVE-2018-4191: found by OSS-Fuzz

WebKit
Available for: Windows 7 and later
Impact: Cross-origin SecurityErrors includes the accessed frame's
origin...
Categories:

APPLE-SA-2018-10-08-1 iOS 12.0.1

October 9, 2018 - 4:39am

Posted by Apple Product Security on Oct 09

APPLE-SA-2018-10-08-1 iOS 12.0.1

iOS 12.0.1 is now available and addresses the following:

VoiceOver
Available for: iPhone 5s and later, iPad Air and later,
and iPod touch 6th generation
Impact: A local attacker may be able to view photos and contacts from
the lock screen
Description: A lock screen issue allowed access to photos and
contacts on a locked device. This issue was addressed by restricting
options offered on a locked device....
Categories:

[SECURITY] [DSA 4312-1] tinc security update

October 9, 2018 - 4:36am

Posted by Salvatore Bonaccorso on Oct 09

-------------------------------------------------------------------------
Debian Security Advisory DSA-4312-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
October 08, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tinc
CVE ID : CVE-2018-16738 CVE-2018-16758...
Categories:

[UPDATE][CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

October 7, 2018 - 9:57pm

Posted by Andreas Lehmkuehler on Oct 07

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Apache PDFBox <= 1.8.15
Apache PDFBox <= 2.0.11
Earlier, unsupported Apache PDFBox versions may be affected as well

Description:
A carefully crafted PDF file can trigger an extremely long
running computation when parsing the page tree.

Mitigation:
Upgrade to Apache PDFBox 1.8.16 respectively 2.0.12...
Categories:

[SECURITY] [DSA 4311-1] git security update

October 7, 2018 - 9:55pm

Posted by Salvatore Bonaccorso on Oct 07

-------------------------------------------------------------------------
Debian Security Advisory DSA-4311-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
October 05, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : git
CVE ID : CVE-2018-17456

joernchen of Phenoelit...
Categories:

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

October 7, 2018 - 9:52pm

Posted by Andreas Lehmkuehler on Oct 07

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Apache PDFBox <= 1.8.15
Apache PDFBox <= 2.0.11
Earlier, unsupported Apache PDFBox versions may be affected as well

Description:
A carefully crafted PDF file can trigger an extremely long
running computation when parsing the page tree.

Mitigation:
Upgrade to Apache PDFBox 1.8.16 respectively 2.0.12...
Categories:

Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login

October 3, 2018 - 10:43pm

Posted by Socket_0x03 on Oct 03

=====================================================================================
Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login
=====================================================================================
Categories:

[SECURITY] [DSA 4310-1] firefox-esr security update

October 3, 2018 - 10:40pm

Posted by Salvatore Bonaccorso on Oct 03

-------------------------------------------------------------------------
Debian Security Advisory DSA-4310-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
October 03, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2018-12386 CVE-2018-12387...
Categories:

[slackware-security] mozilla-firefox (SSA:2018-276-01)

October 3, 2018 - 6:00am

Posted by Slackware Security Team on Oct 03

[slackware-security] mozilla-firefox (SSA:2018-276-01)

New mozilla-firefox packages are available for Slackware 14.2 and -current to
fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/mozilla-firefox-60.2.2esr-i686-1_slack14.2.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...
Categories:

[SYSS-2018-024] Privilege Escalation in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17872)

October 2, 2018 - 9:21pm

Posted by Micha Borrmann on Oct 02

Advisory ID: SYSS-2018-024
Product: Collaboration Compliance and Quality Management Platform
Manufacturer: Verint Verba
Affected Version(s): <= 9.1.1.5482
Tested Version(s): 9.1.1.5482
Vulnerability Type: Improper Access Control (CWE-284)
Risk Level: Medium
Solution Status: Fixed
Manufacturer Notification: 2018-08-29
Solution Date: 2018-08-31...
Categories:

[SYSS-2018-023] Password leakage in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17871)

October 2, 2018 - 9:17pm

Posted by Micha Borrmann on Oct 02

Advisory ID: SYSS-2018-023
Product: Collaboration Compliance and Quality Management Platform
Manufacturer: Verint Verba
Affected Version(s): <= 9.1.1.5482
Tested Version(s): 9.1.1.5482
Vulnerability Type: Improper Access Control (CWE-284)
Risk Level: Medium
Solution Status: Fixed
Manufacturer Notification: 2018-08-29
Solution Date: 2018-08-31...
Categories: