Feed aggregator

Bugtraq: Exploit for stealing backups on WP sites with WP-DB-Backup v2.2.4 plugin

Security Focus Latest Security Advisories - November 25, 2014 - 6:00am
Exploit for stealing backups on WP sites with WP-DB-Backup v2.2.4 plugin
Categories:

[oCERT 2014-008] libFLAC multiple issues

BugTraq Latest Security Advisories - November 25, 2014 - 4:27am

Posted by Daniele Bianco on Nov 25

Description:

FLAC is an open source lossless audio codec supported by several software
and music players.

The libFLAC project, an open source library implementing reference
encoders and decoders for native FLAC and Ogg FLAC audio content,
suffers from multiple implementation issues.

In particular, a stack overflow and a heap overflow condition, which may
result in arbitrary code execution, can be triggered by passing a maliciously
crafted...
Categories:

Bugtraq: [security bulletin] HPSBUX03087 SSRT101413 rev.2 - HP-UX CIFS Server (Samba), Remote Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access

Security Focus Latest Security Advisories - November 25, 2014 - 3:30am
[security bulletin] HPSBUX03087 SSRT101413 rev.2 - HP-UX CIFS Server (Samba), Remote Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access
Categories:

Vuln: Multiple Asterisk Products 'funcs/func_db.c' Remote Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Multiple Asterisk Products 'funcs/func_db.c' Remote Privilege Escalation Vulnerability
Categories:

Vuln: Multiple Asterisk Products Access Control List Security Bypass Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Multiple Asterisk Products Access Control List Security Bypass Vulnerability
Categories:

Vuln: Asterisk Open Source 'res_pjsip_acl' Module Security Bypass Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Asterisk Open Source 'res_pjsip_acl' Module Security Bypass Vulnerability
Categories:

Vuln: Asterisk Open Source PJSIP Channel Driver Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Asterisk Open Source PJSIP Channel Driver Denial of Service Vulnerability
Categories:

Vuln: Multiple Asterisk Products ConfBridge Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Multiple Asterisk Products ConfBridge Denial of Service Vulnerability
Categories:

Vuln: Multiple Asterisk Products ConfBridge Dialplan Functions Remote Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Multiple Asterisk Products ConfBridge Dialplan Functions Remote Privilege Escalation Vulnerability
Categories:

Vuln: Asterisk 'res_pjsip_refer' Module Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Asterisk 'res_pjsip_refer' Module Denial of Service Vulnerability
Categories:

Vuln: Imagemagick CVE-2014-8355 Out of Bounds Local Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Imagemagick CVE-2014-8355 Out of Bounds Local Memory Corruption Vulnerability
Categories:

Vuln: ImageMagick DCM Decode Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
ImageMagick DCM Decode Denial of Service Vulnerability
Categories:

Vuln: ImageMagick 'jpeg' File Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
ImageMagick 'jpeg' File Denial of Service Vulnerability
Categories:

Vuln: Imagemagick CVE-2014-8354 Out of Bounds Local Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Imagemagick CVE-2014-8354 Out of Bounds Local Memory Corruption Vulnerability
Categories:

Vuln: TLS Protocol CVE-2012-4929 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
TLS Protocol CVE-2012-4929 Information Disclosure Vulnerability
Categories:

Vuln: SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability
Categories:

Vuln: Apache Qpid CVE-2014-3629 XML External Entity Injection Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Apache Qpid CVE-2014-3629 XML External Entity Injection Vulnerability
Categories:

Vuln: phpSound CVE-2014-8954 Multiple HTML Injection and Cross Site Scripting vulnerabilities

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
phpSound CVE-2014-8954 Multiple HTML Injection and Cross Site Scripting vulnerabilities
Categories:

Vuln: Linux Kernel VFS 'pivot_root()' Function Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Linux Kernel VFS 'pivot_root()' Function Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel CVE-2014-7975 Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 25, 2014 - 12:00am
Linux Kernel CVE-2014-7975 Local Denial of Service Vulnerability
Categories: