Feed aggregator

Bugtraq: [REVIVE-SA-2016-002] Revive Adserver - Multiple vulnerabilities

Security Focus Latest Security Advisories - September 28, 2016 - 12:00pm
[REVIVE-SA-2016-002] Revive Adserver - Multiple vulnerabilities
Categories:

Cisco Security Advisory: Cisco IOS XE Software NAT Denial of Service Vulnerability

BugTraq Latest Security Advisories - September 28, 2016 - 11:59am

Posted by Cisco Systems Product Security Incident Response Team on Sep 28

Cisco Security Advisory: Cisco IOS XE Software NAT Denial of Service Vulnerability

Advisory ID: cisco-sa-20160928-esp-nat

Revision: 1.0

For Public Release: 2016 September 28 16:00 GMT

+------------------------------------------------------------------------------

Summary
=======

A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS XE Software could
allow an unauthenticated, remote attacker...
Categories:

Cisco Security Advisory: Cisco IOS Software Common Industrial Protocol Request Denial of Service Vulnerability

BugTraq Latest Security Advisories - September 28, 2016 - 11:50am

Posted by Cisco Systems Product Security Incident Response Team on Sep 28

Cisco Security Advisory: Cisco IOS Software Common Industrial Protocol Request Denial of Service Vulnerability

Advisory ID: cisco-sa-20160928-cip

Revison: 1.0

For Public Release: 2016 September 28 16:00 GMT

+------------------------------------------------------------------------------

Summary
=======

A vulnerability in the Common Industrial Protocol (CIP) feature of Cisco IOS Software could allow an unauthenticated,
remote attacker to...
Categories:

Cisco Security Advisory: Cisco IOS and IOS XE Software AAA Login Denial of Service Vulnerability

BugTraq Latest Security Advisories - September 28, 2016 - 11:39am

Posted by Cisco Systems Product Security Incident Response Team on Sep 28

Cisco Security Advisory: Cisco IOS and IOS XE Software AAA Login Denial of Service Vulnerability

Advisory ID: cisco-sa-20160928-aaados

Revision: 1.0

For Public Release: 2016 September 28 16:00 GMT

+------------------------------------------------------------------------------

Summary
=======

A vulnerability in the Authentication, Authorization, and Accounting (AAA) service for remote Secure Shell Host (SSH)
connections to the device for...
Categories:

[REVIVE-SA-2016-002] Revive Adserver - Multiple vulnerabilities

BugTraq Latest Security Advisories - September 28, 2016 - 11:00am

Posted by Matteo Beccati on Sep 28

========================================================================
Revive Adserver Security Advisory REVIVE-SA-2016-002
========================================================================
http://www.revive-adserver.com/security/revive-sa-2016-002
========================================================================
CVE-IDs: TBA
Date: 2016-09-28
Risk Level: Medium...
Categories:

Bugtraq: Multiple vulnerabilities found in the Dlink DWR-932B (backdoor, backdoor accounts, weak WPS, RCE ...)

Security Focus Latest Security Advisories - September 28, 2016 - 10:00am
Multiple vulnerabilities found in the Dlink DWR-932B (backdoor, backdoor accounts, weak WPS, RCE ...)
Categories:

Bugtraq: Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016

Security Focus Latest Security Advisories - September 28, 2016 - 10:00am
Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016
Categories:

Bugtraq: [slackware-security] bind (SSA:2016-271-01)

Security Focus Latest Security Advisories - September 28, 2016 - 10:00am
[slackware-security] bind (SSA:2016-271-01)
Categories:

Bugtraq: [SECURITY] [DSA 3680-1] bind9 security update

Security Focus Latest Security Advisories - September 28, 2016 - 10:00am
[SECURITY] [DSA 3680-1] bind9 security update
Categories:

Bugtraq: ESA-2016-127: EMC ViPR SRM Stored Cross-Site Scripting Vulnerability

Security Focus Latest Security Advisories - September 28, 2016 - 4:00am
ESA-2016-127: EMC ViPR SRM Stored Cross-Site Scripting Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3679-1] jackrabbit security update

Security Focus Latest Security Advisories - September 28, 2016 - 4:00am
[SECURITY] [DSA 3679-1] jackrabbit security update
Categories:

Bugtraq: [security bulletin] HPSBHF03652 rev.1 - HPE iMC PLAT Network Products running Apache Commons FileUpload, Remote Denial of Service (DoS)

Security Focus Latest Security Advisories - September 28, 2016 - 4:00am
[security bulletin] HPSBHF03652 rev.1 - HPE iMC PLAT Network Products running Apache Commons FileUpload, Remote Denial of Service (DoS)
Categories:

Multiple vulnerabilities found in the Dlink DWR-932B (backdoor, backdoor accounts, weak WPS, RCE ...)

BugTraq Latest Security Advisories - September 28, 2016 - 3:40am

Posted by Pierre Kim on Sep 28

## Advisory Information

Title: Multiple vulnerabilities found in the Dlink DWR-932B (backdoor,
backdoor accounts, weak WPS, RCE ...)
Advisory URL: https://pierrekim.github.io/advisories/2016-dlink-0x00.txt
Blog URL: https://pierrekim.github.io/blog/2016-09-28-dlink-dwr-932b-lte-routers-vulnerabilities.html
Date published: 2016-09-28
Vendors contacted: Dlink
Release mode: Released
CVE: no current CVE
DWF: no current DWF

## Product Description...
Categories:

Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016

BugTraq Latest Security Advisories - September 28, 2016 - 3:32am

Posted by Cisco Systems Product Security Incident Response Team on Sep 28

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016

Advisory ID: cisco-sa-20160927-openssl

Revision: 1.0

For Public Release 2016 September 27 22:40 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

On September 22, 2016, the OpenSSL Software Foundation released an advisory that describes 14 vulnerabilities. Of these
14 vulnerabilities, the OpenSSL Software Foundation...
Categories:

[slackware-security] bind (SSA:2016-271-01)

BugTraq Latest Security Advisories - September 28, 2016 - 3:22am

Posted by Slackware Security Team on Sep 28

[slackware-security] bind (SSA:2016-271-01)

New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
14.2, and -current to fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/bind-9.10.4_P3-i586-1_slack14.2.txz: Upgraded.
This update fixes a denial-of-service vulnerability. Testing by ISC has
uncovered a critical error condition which can occur...
Categories:

next-20160928: linux-next

Linux Kernel Updates - September 28, 2016 - 1:52am
Version:next-20160928 (linux-next) Released:2016-09-28

Vuln: Aternity CVE-2016-5061 Multiple Cross Site Scripting Vulnerabilities

Security Focus Latest Security Advisories - September 27, 2016 - 11:00pm
Aternity CVE-2016-5061 Multiple Cross Site Scripting Vulnerabilities
Categories:

Vuln: Cisco IOS and IOS XE Software Multiple Denial of Service Vulnerabilities

Security Focus Latest Security Advisories - September 27, 2016 - 11:00pm
Cisco IOS and IOS XE Software Multiple Denial of Service Vulnerabilities
Categories:

Vuln: Cisco Firepower Management Center CVE-2016-6420 Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - September 27, 2016 - 11:00pm
Cisco Firepower Management Center CVE-2016-6420 Privilege Escalation Vulnerability
Categories:

Vuln: Multiple Cisco Products CVE-2016-6416 Denial of Service Vulnerability

Security Focus Latest Security Advisories - September 27, 2016 - 11:00pm
Multiple Cisco Products CVE-2016-6416 Denial of Service Vulnerability
Categories: