Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 16 min 46 sec ago

Vuln: Network Time Protocol CVE-2014-9295 Multiple Stack Based Buffer Overflow Vulnerabilities

February 24, 2015 - 12:00am
Network Time Protocol CVE-2014-9295 Multiple Stack Based Buffer Overflow Vulnerabilities
Categories:

Bugtraq: iTunes 12.1.1 for Windows: still outdated and VULNERABLE 3rd party libraries, still UNQUOTED and VULNERABLE pathnames C:\Program Files\...

February 23, 2015 - 7:00am
iTunes 12.1.1 for Windows: still outdated and VULNERABLE 3rd party libraries, still UNQUOTED and VULNERABLE pathnames C:\Program Files\...
Categories:

Bugtraq: Defense in depth -- the Microsoft way (part 28): yes, we can (create even empty, but properly quoted pathnames)

February 23, 2015 - 7:00am
Defense in depth -- the Microsoft way (part 28): yes, we can (create even empty, but properly quoted pathnames)
Categories:

Bugtraq: [SECURITY] [DSA 3163-1] libreoffice security update

February 23, 2015 - 7:00am
[SECURITY] [DSA 3163-1] libreoffice security update
Categories:

Bugtraq: [SECURITY] [DSA 3162-1] bind9 security update

February 23, 2015 - 7:00am
[SECURITY] [DSA 3162-1] bind9 security update
Categories:

Vuln: GNU glibc 'getaddrinfo.c' Remote Code Execution Vulnerability

February 23, 2015 - 12:00am
GNU glibc 'getaddrinfo.c' Remote Code Execution Vulnerability
Categories:

Vuln: GNU glibc 'getanswer_r()' Function Infinite Loop Denial of Service Vulnerability

February 23, 2015 - 12:00am
GNU glibc 'getanswer_r()' Function Infinite Loop Denial of Service Vulnerability
Categories:

Vuln: Network Time Protocol CVE-2014-9296 Unspecified Security Vulnerability

February 23, 2015 - 12:00am
Network Time Protocol CVE-2014-9296 Unspecified Security Vulnerability
Categories:

Vuln: GNU glibc Formatted Printing Functionality Multiple Security Vulnerabilities

February 23, 2015 - 12:00am
GNU glibc Formatted Printing Functionality Multiple Security Vulnerabilities
Categories:

Vuln: GNU glibc 'swscanf' Local Heap Buffer Overflow Vulnerability

February 23, 2015 - 12:00am
GNU glibc 'swscanf' Local Heap Buffer Overflow Vulnerability
Categories:

Vuln: GNU glibc 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability

February 23, 2015 - 12:00am
GNU glibc 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability
Categories:

Vuln: glibc CVE-2015-1473 Unspecified Security Vulnerability

February 23, 2015 - 12:00am
glibc CVE-2015-1473 Unspecified Security Vulnerability
Categories:

Vuln: Cisco Hosted Collaboration Solution CVE-2015-0626 Information Disclosure Vulnerability

February 23, 2015 - 12:00am
Cisco Hosted Collaboration Solution CVE-2015-0626 Information Disclosure Vulnerability
Categories:

Vuln: Persistent Systems Radia Client Automation CVE-2015-1498 Remote Privilege Escalation Vulnerability

February 23, 2015 - 12:00am
Persistent Systems Radia Client Automation CVE-2015-1498 Remote Privilege Escalation Vulnerability
Categories:

Vuln: Multiple Schneider Electric Products CVE-2014-9200 Stack Based Buffer Overflow Vulnerability

February 23, 2015 - 12:00am
Multiple Schneider Electric Products CVE-2014-9200 Stack Based Buffer Overflow Vulnerability
Categories:

Vuln: Cisco Web Security Appliance CVE-2015-0623 Cross Site Scripting Vulnerability

February 23, 2015 - 12:00am
Cisco Web Security Appliance CVE-2015-0623 Cross Site Scripting Vulnerability
Categories:

Vuln: NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness

February 23, 2015 - 12:00am
NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness
Categories: