Feed aggregator

ASUSTOR NAS ADM - 3.1.0 Remote Command Execution, SQL Injections

BugTraq Latest Security Advisories - August 14, 2018 - 3:48am

Posted by kyle Lovett on Aug 14

Product - ASUSTOR ADM - 3.1.0.RFQ3 and all previous builds
Vendor - https://www.asustor.com/
Patch Notes - http://download.asustor.com/download/docs/releasenotes/RN_ADM_3.1.3.RHU2.pdf

Issue: The Asustor NAS appliance on ADM 3.1.0 and before suffer from
multiple critical vulnerabilities. The vulnerabilities were submitted
to Asustor in January and February 2018. Several follow-up requests
were made in an attempt to obtain vendor acknowledgement,...
Categories:

next-20180814: linux-next

Linux Kernel Updates - August 14, 2018 - 3:09am
Version:next-20180814 (linux-next) Released:2018-08-14

Vuln: Samba CVE-2018-1139 Remote Security Bypass Vulnerability

Security Focus Latest Security Advisories - August 13, 2018 - 11:00pm
Samba CVE-2018-1139 Remote Security Bypass Vulnerability
Categories:

Vuln: OpenSSL CVE-2018-0737 Side Channel Attack Information Disclosure Vulnerability

Security Focus Latest Security Advisories - August 13, 2018 - 11:00pm
OpenSSL CVE-2018-0737 Side Channel Attack Information Disclosure Vulnerability
Categories:

Vuln: OpenSSL CVE-2018-0732 Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 13, 2018 - 11:00pm
OpenSSL CVE-2018-0732 Denial of Service Vulnerability
Categories:

Vuln: Adobe Experience Manager CVE-2018-5005 Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - August 13, 2018 - 11:00pm
Adobe Experience Manager CVE-2018-5005 Cross Site Scripting Vulnerability
Categories:

Bugtraq: [CVE-2018-14429] man-cgi < 1.16 Local File Include

Security Focus Latest Security Advisories - August 13, 2018 - 12:00pm
[CVE-2018-14429] man-cgi < 1.16 Local File Include
Categories:

Bugtraq: CA20180802-01: Security Notice for CA API Developer Portal

Security Focus Latest Security Advisories - August 13, 2018 - 12:00pm
CA20180802-01: Security Notice for CA API Developer Portal
Categories:

next-20180813: linux-next

Linux Kernel Updates - August 13, 2018 - 4:26am
Version:next-20180813 (linux-next) Released:2018-08-13

Vuln: Multiple CPU Hardware CVE-2018-3639 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - August 12, 2018 - 11:00pm
Multiple CPU Hardware CVE-2018-3639 Information Disclosure Vulnerability
Categories:

4.18: mainline

Linux Kernel Updates - August 12, 2018 - 3:41pm
Version:4.18 (mainline) Released:2018-08-12 Source:linux-4.18.tar.xz PGP Signature:linux-4.18.tar.sign Patch:full

next-20180810: linux-next

Linux Kernel Updates - August 10, 2018 - 3:10am
Version:next-20180810 (linux-next) Released:2018-08-10

Vuln: Adobe Flash Player CVE-2018-4878 Use After Free Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 9, 2018 - 11:00pm
Adobe Flash Player CVE-2018-4878 Use After Free Remote Code Execution Vulnerability
Categories:

Vuln: VMware vCenter Server CVE-2015-1047 Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 9, 2018 - 11:00pm
VMware vCenter Server CVE-2015-1047 Denial of Service Vulnerability
Categories:

Vuln: VMware vCenter Server CVE-2015-2342 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 9, 2018 - 11:00pm
VMware vCenter Server CVE-2015-2342 Remote Code Execution Vulnerability
Categories:

Vuln: OpenSLP 'SLPDProcessMessage()' Function Double Free Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 9, 2018 - 11:00pm
OpenSLP 'SLPDProcessMessage()' Function Double Free Denial of Service Vulnerability
Categories:

3.18.118: longterm

Linux Kernel Updates - August 9, 2018 - 5:20am
Version:3.18.118 (EOL) (longterm) Released:2018-08-09 Source:linux-3.18.118.tar.xz PGP Signature:linux-3.18.118.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-3.18.118

4.4.147: longterm

Linux Kernel Updates - August 9, 2018 - 5:19am
Version:4.4.147 (longterm) Released:2018-08-09 Source:linux-4.4.147.tar.xz PGP Signature:linux-4.4.147.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.4.147

4.9.119: longterm

Linux Kernel Updates - August 9, 2018 - 5:18am
Version:4.9.119 (longterm) Released:2018-08-09 Source:linux-4.9.119.tar.xz PGP Signature:linux-4.9.119.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.9.119

4.14.62: longterm

Linux Kernel Updates - August 9, 2018 - 5:16am
Version:4.14.62 (longterm) Released:2018-08-09 Source:linux-4.14.62.tar.xz PGP Signature:linux-4.14.62.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-4.14.62