BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 34 min 30 sec ago

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

April 15, 2015 - 9:14am

Posted by Nicholas Lemonias. on Apr 15

-=[Advanced Information Security Corporation]=-

Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference

Author: Nicholas Lemonias
Advisory Date: 14/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 / 2.4.12 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use...
Categories:

Secunia Research: Microsoft Windows GDI "MRSETDIBITSTODEVICE ::bPlay()" EMF Parsing Memory Corruption Vulnerability

April 15, 2015 - 9:04am

Posted by Secunia Research on Apr 15

======================================================================

Secunia Research 15/04/2015

Microsoft Windows GDI "MRSETDIBITSTODEVICE ::bPlay()" EMF Parsing
Memory Corruption Vulnerability

======================================================================
Table of Contents

Affected Software....................................................1...
Categories:

Wordpress WP Statistics persistent cross site scripting

April 15, 2015 - 8:56am

Posted by kingkaustubh on Apr 15

===========================================================
Stored XSS Vulnerability in WP Statistics Wordpress Plugin
===========================================================

. contents:: Table Of Content

Overview
========

* Title :Stored XSS Vulnerability in WP Statistics Wordpress Plugin
* Author: Kaustubh G. Padwad
* Plugin Homepage: https://wordpress.org/plugins/wp-statistics/
* Severity: Medium
* Version Affected: 9.1.2 and mostly...
Categories:

several issues in SQLite (+ catching up on several other bugs)

April 14, 2015 - 8:19pm

Posted by Michal Zalewski on Apr 15

SQLite is probably the most popular embedded database in use today; it
is also known for being very well-tested and robust.

Because of its versatility, SQLite sometimes finds use as the
mechanism behind SQL-style query APIs that are exposed between
privileged execution contexts and less-trusted code. One example of
this is the WebDB / WebSQL mechanism available in some browsers; in
this setting, vulnerabilities in the SQLite parser can open up...
Categories:

whitepaper: Identifier based XSSI attacks

April 14, 2015 - 8:10pm

Posted by Takeshi Terada on Apr 15

Hello list members,

We released a new technical whitepaper titled:
"Identifier based XSSI attacks"

CVE numbers:
CVE-2014-6345, CVE-2014-7939

URL:
http://www.mbsd.jp/Whitepaper/xssi.pdf

Introduction:
-------------------------------
Cross Site Script Inclusion (XSSI) is an attack technique (or a
vulnerability) that enables attackers to steal data of certain types
across origin boundaries, by including target data using SCRIPT tag in...
Categories:

[SYSS-2015-015] Panda Gold Protection 2015 - Authentication Bypass

April 14, 2015 - 8:02pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-015
Product: Panda Gold Protection 2015
Vendor: Panda Security
Affected Version(s): 15.1.0
Tested Version(s): 15.1.0
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS GmbH)...
Categories:

[SYSS-2015-014] Panda Global Protection 2015 - Authentication Bypass

April 14, 2015 - 7:54pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-014
Product: Panda Global Protection 2015
Vendor: Panda Security
Affected Version(s): 15.1.0
Tested Version(s): 15.1.0
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS...
Categories:

[SYSS-2015-013] Panda Antivirus Pro 2015 - Authentication Bypass

April 14, 2015 - 7:47pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-013
Product: Panda Antivirus Pro 2015
Vendor: Panda Security
Affected Version(s): 15.1.0
Tested Version(s): 15.1.0
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS GmbH)...
Categories:

[SYSS-2015-012] Panda Internet Security 2015 - Authentication Bypass

April 14, 2015 - 7:40pm

Posted by matthias . deeg on Apr 15

Advisory ID: SYSS-2015-012
Product: Panda Internet Security 2015
Vendor: Panda Security
Affected Version(s): 15.0.1
Tested Version(s): 15.0.1
Vulnerability Type: Authentication Bypass Using an Alternate Path or
Channel (CWE-288)
Risk Level: Medium
Solution Status: Not fixed
Vendor Notification: 2015-02-27
Solution Date: -
Public Disclosure: 2015-04-14
CVE Reference: Not yet assigned
Author of Advisory: Matthias Deeg (SySS...
Categories:

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

April 14, 2015 - 7:33pm

Posted by lem . nikolas on Apr 15

-=[Advanced Information Security Corporation]=-

Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference

Author: Nicholas Lemonias
Advisory Date: 14/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 / 2.4.12 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were...
Categories:

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

April 14, 2015 - 7:24pm

Posted by Nicholas Lemonias. on Apr 15

-=[Advanced Information Security Corporation]=-

Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference

Author: Nicholas Lemonias
Advisory Date: 14/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 / 2.4.12 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were...
Categories:

[CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document

April 14, 2015 - 7:16pm

Posted by Daniel Regalado on Apr 15

Product: Hancom Office Hwp 2014
Vendor: Hancom - www.hancom.com
Versions Affected (32 bits only):

HanWord Viewer 2007 (Korean)
HanWord Viewer 2010 ­ 8.5.6.1158 (English)
HwpViewer 2014 VP- 9.1.0.2186 (English)
Hwp 2014 VP - 9.0.0.1405 (English/Korean)
Version Not vulnerable:
Hwp 2014 VP - 9.1.0.2342 (English/Korean)
Credits:
Daniel Regalado, FireEye
Dan Caselden, FireEye

MITRE CVE: 2015-2810

Timeline:...
Categories:

[security bulletin] HPSBOV03318 rev.1 - HP SSL for OpenVMS, Remote Denial of Service (DoS) and other Vulnerabilities

April 13, 2015 - 2:08pm

Posted by security-alert on Apr 13

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04635715

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04635715
Version: 1

HPSBOV03318 rev.1 - HP SSL for OpenVMS, Remote Denial of Service (DoS) and
other Vulnerabilities

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date:...
Categories:

[security bulletin] HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code

April 13, 2015 - 1:59pm

Posted by security-alert on Apr 13

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04629160

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04629160
Version: 2

HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7
(WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote
Elevation of Privilege, Execution of Code

NOTICE: The...
Categories:

Apache HTTPD 2.4.12, 2.2.29 Security Audit - Advanced Information Security Corp

April 13, 2015 - 9:27am

Posted by lem . nikolas on Apr 13

-=[Advanced Information Security Corp]=-

Author: Nicholas Lemonias
Advisory Date: 13/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were observed, which could
possibly lead to some attacks.

Software Overview
===============

The Apache...
Categories:

Apache HTTPD 2.4.12/ 2.2.29 Security Audit Notes - Advanced Information Security Corp

April 13, 2015 - 9:19am

Posted by Nicholas Lemonias. on Apr 13

-=[Advanced Information Security Corp]=-

Author: Nicholas Lemonias
Advisory Date: 13/4/2015
Email: lem.nikolas (at) gmail (dot) com

Introduction
==========
During a source-code audit of the Apache HTTPD 2.2.29 release
implementation for linux; conducted internally by the Advanced
Information Security
Group, instances of insecure function use were observed, which could
possibly lead to some attacks.

Software Overview
===============

The Apache...
Categories:

Ruxcon 2015 Call For Presentations

April 13, 2015 - 9:13am

Posted by cfp on Apr 13

Ruxcon 2015 Call For Presentations
Melbourne, Australia, October 24-25
CQ Function Centre

http://www.ruxcon.org.au

The Ruxcon team is pleased to announce the first round of Call For Presentations for Ruxcon 2015.

This year the conference will take place over the weekend of the 24th and 25th of October at the CQ Function Centre,
Melbourne, Australia.

The deadline for submissions is the 30th of June, 2015.

.[x]. About Ruxcon .[x].

Ruxcon is...
Categories:

[SECURITY] [DSA 3224-1] libx11 security update

April 13, 2015 - 9:02am

Posted by Moritz Muehlenhoff on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3224-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libx11
CVE ID : CVE-2013-7439

Abhishek Arya...
Categories:

[SECURITY] [DSA 3223-1] ntp security update

April 13, 2015 - 8:54am

Posted by Alessandro Ghedini on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3223-1 security () debian org
http://www.debian.org/security/ Alessandro Ghedini
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : ntp
CVE ID : CVE-2015-1798 CVE-2015-1799
Debian Bug...
Categories:

[SECURITY] [DSA 3222-1] chrony security update

April 13, 2015 - 8:47am

Posted by Alessandro Ghedini on Apr 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-3222-1 security () debian org
http://www.debian.org/security/ Alessandro Ghedini
April 12, 2015 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chrony
CVE ID : CVE-2015-1821 CVE-2015-1822...
Categories: