Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 49 min 14 sec ago

Bugtraq: ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities

August 19, 2014 - 5:30am
ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities
Categories:

Bugtraq: [SECURITY] [DSA 3006-1] xen security update

August 19, 2014 - 5:30am
[SECURITY] [DSA 3006-1] xen security update
Categories:

Bugtraq: Outlook.com for Android fails to validate server certificates

August 19, 2014 - 4:15am
Outlook.com for Android fails to validate server certificates
Categories:

Bugtraq: CVE-2014-5289 - Kolibri WebServer 2.0 Vulnerable to RCE via Overly Long POST Request

August 19, 2014 - 4:15am
CVE-2014-5289 - Kolibri WebServer 2.0 Vulnerable to RCE via Overly Long POST Request
Categories:

Bugtraq: Beginners error: Apple's iCloudServices for Windows run rogue program C:\Program.exe (and some more)

August 19, 2014 - 4:15am
Beginners error: Apple's iCloudServices for Windows run rogue program C:\Program.exe (and some more)
Categories:

Vuln: Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability

August 18, 2014 - 11:00pm
Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-0076 Information Disclosure Weakness

August 18, 2014 - 11:00pm
OpenSSL CVE-2014-0076 Information Disclosure Weakness
Categories:

Vuln: Apache Tomcat CVE-2014-0099 Request Processing Information Disclosure Vulnerability

August 18, 2014 - 11:00pm
Apache Tomcat CVE-2014-0099 Request Processing Information Disclosure Vulnerability
Categories:

Vuln: Apache Tomcat CVE-2014-0075 Chunk Request Remote Denial Of Service Vulnerability

August 18, 2014 - 11:00pm
Apache Tomcat CVE-2014-0075 Chunk Request Remote Denial Of Service Vulnerability
Categories:

Vuln: Microsoft Windows Kernel 'Win32k.sys' CVE-2014-1819 Local Privilege Escalation Vulnerability

August 18, 2014 - 11:00pm
Microsoft Windows Kernel 'Win32k.sys' CVE-2014-1819 Local Privilege Escalation Vulnerability
Categories:

Vuln: Microsoft Windows Kernel Pool Allocation CVE-2014-4064 Local Information Disclosure Vulnerability

August 18, 2014 - 11:00pm
Microsoft Windows Kernel Pool Allocation CVE-2014-4064 Local Information Disclosure Vulnerability
Categories:

Vuln: Mozilla Firefox and Thunderbird CVE-2013-1670 Cross Site Scripting Vulnerability

August 18, 2014 - 11:00pm
Mozilla Firefox and Thunderbird CVE-2013-1670 Cross Site Scripting Vulnerability
Categories:

Vuln: FreeNAS Blank Password Authentication Bypass Vulnerability

August 18, 2014 - 11:00pm
FreeNAS Blank Password Authentication Bypass Vulnerability
Categories:

Vuln: Xen 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability

August 18, 2014 - 11:00pm
Xen 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability
Categories:

Vuln: Xen '/hvm/hvm.c' Remote Denial of Service Vulnerability

August 18, 2014 - 11:00pm
Xen '/hvm/hvm.c' Remote Denial of Service Vulnerability
Categories:

Vuln: Xen 'HVMOP_set_mem_type' Operation Remote Denial of Service Vulnerability

August 18, 2014 - 11:00pm
Xen 'HVMOP_set_mem_type' Operation Remote Denial of Service Vulnerability
Categories:

Vuln: GitLab 'SSH key upload' Feature CVE-2013-4490 Remote Code Execution Vulnerability

August 18, 2014 - 11:00pm
GitLab 'SSH key upload' Feature CVE-2013-4490 Remote Code Execution Vulnerability
Categories:

Vuln: Apache HTTP Server CVE-2014-0117 Remote Denial of Service Vulnerability

August 18, 2014 - 11:00pm
Apache HTTP Server CVE-2014-0117 Remote Denial of Service Vulnerability
Categories:

Vuln: 389 Directory Server CVE-2014-3562 Information Disclosure Vulnerability

August 18, 2014 - 11:00pm
389 Directory Server CVE-2014-3562 Information Disclosure Vulnerability
Categories:

Vuln: Apache HTTP Server CVE-2014-0118 Remote Denial of Service Vulnerability

August 18, 2014 - 11:00pm
Apache HTTP Server CVE-2014-0118 Remote Denial of Service Vulnerability
Categories: