Feed aggregator

[security bulletin] HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code Execution, Disclosure of information

BugTraq Latest Security Advisories - April 17, 2014 - 9:30am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03969437

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03969437
Version: 2

HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code
Execution, Disclosure of information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release...
Categories:

[security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution

BugTraq Latest Security Advisories - April 17, 2014 - 9:16am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04219959

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04219959
Version: 1

HPSBMU02987 rev.1 - HP Universal Configuration Management Database
Integration Service, Remote Code Execution

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release...
Categories:

[security bulletin] HPSBMU02988 rev.1 - HP Universal Configuration Management Database, Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 9:04am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04220407

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04220407
Version: 1

HPSBMU02988 rev.1 - HP Universal Configuration Management Database,
Disclosure of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date:...
Categories:

[security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 8:49am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04201408

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04201408
Version: 1

HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of
Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-04-17
Last...
Categories:

Bugtraq: [security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution

Security Focus Latest Security Advisories - April 17, 2014 - 8:45am
[security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution
Categories:

Bugtraq: [security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information

Security Focus Latest Security Advisories - April 17, 2014 - 8:45am
[security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information
Categories:

Bugtraq: [security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

Security Focus Latest Security Advisories - April 17, 2014 - 8:45am
[security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information
Categories:

[security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information

BugTraq Latest Security Advisories - April 17, 2014 - 8:30am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04248997

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04248997
Version: 1

HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL
Vulnerability, Remote Disclosure of Information

NOTICE: The information in this Security Bulletin should be acted upon as
soon as...
Categories:

[security bulletin] HPSBMU02996 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access, Execution of Arbitrary Code

BugTraq Latest Security Advisories - April 17, 2014 - 8:14am

Posted by security-alert on Apr 17

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04026039

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04026039
Version: 1

HPSBMU02996 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux,
Solaris, and Windows, Remote Unauthorized Access, Execution of Arbitrary Code

NOTICE: The information in this Security Bulletin should be...
Categories:

Buggy insecure "security" software executes rogue binary during installation and uninstallation

BugTraq Latest Security Advisories - April 17, 2014 - 8:01am

Posted by Stefan Kanthak on Apr 17

Hi @ll,

the $*&#§ware by the name of "McAfee Security Scanner Plus" that Adobe dares
to push to unsuspecting users of Microsoft Windows trying to get flash player
from their main distribution page <hxxp://get.adobe.com/flashplayer/> was
developed, packaged and tested by people who obviously never heard of "long"
filenames which may contain spaces.

or <http://msdn.microsoft.com/library/cc144101.aspx>:

|...
Categories:

CVE-2014-2597 - Denial of Service in PCNetSoftware RAC Server

BugTraq Latest Security Advisories - April 17, 2014 - 7:46am

Posted by Portcullis Advisories on Apr 17

Vulnerability title: Denial of Service in PCNetSoftware RAC Server
CVE: CVE-2014-2597
Vendor: PCNetSoftware
Product: RAC Server
Affected version: 4.0.4, 4.0.5
Fixed version: N/A
Reported by: Kyriakos Economou

Details:
Latest and possibly earlier versions of RAC Server software are
vulnerable to local DoS attacks that can cause either to disable the
keyboard input or to kill the system through a BSoD, by sending specific
IOCTL codes to...
Categories:

Bugtraq: [SECURITY] [DSA 2907-1] Announcement of long term support for Debian oldstable

Security Focus Latest Security Advisories - April 17, 2014 - 7:30am
[SECURITY] [DSA 2907-1] Announcement of long term support for Debian oldstable
Categories:

Bugtraq: [CORE-2014-0003] - SAP Router Password Timing Attack

Security Focus Latest Security Advisories - April 17, 2014 - 7:30am
[CORE-2014-0003] - SAP Router Password Timing Attack
Categories:

Bugtraq: [ MDVSA-2014:078 ] asterisk

Security Focus Latest Security Advisories - April 17, 2014 - 7:30am
[ MDVSA-2014:078 ] asterisk
Categories:

Bugtraq: [SECURITY] Stored Cross Site Scripting in Ektron CMS 8.7

Security Focus Latest Security Advisories - April 17, 2014 - 7:30am
[SECURITY] Stored Cross Site Scripting in Ektron CMS 8.7
Categories:

next-20140417: linux-next

Linux Kernel Updates - April 17, 2014 - 2:22am
Version:next-20140417 (linux-next) Released:2014-04-17

Vuln: Oracle Java SE CVE-2014-0460 Remote Security Vulnerability

Security Focus Latest Security Advisories - April 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-0453 Remote Security Vulnerability

Security Focus Latest Security Advisories - April 16, 2014 - 11:00pm
Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
Categories:

Vuln: JSON-C 'printbuf' API CVE-2013-6370 Denial of Service Vulnerability

Security Focus Latest Security Advisories - April 16, 2014 - 11:00pm
JSON-C 'printbuf' API CVE-2013-6370 Denial of Service Vulnerability
Categories:

Vuln: JSON-C Weak Hash Function CVE-2013-6371 Denial of Service Vulnerability

Security Focus Latest Security Advisories - April 16, 2014 - 11:00pm
JSON-C Weak Hash Function CVE-2013-6371 Denial of Service Vulnerability
Categories: