Feed aggregator

Bugtraq: APPLE-SA-2014-10-16-3 OS X Server v4.0

Security Focus Latest Security Advisories - October 20, 2014 - 10:00am
APPLE-SA-2014-10-16-3 OS X Server v4.0
Categories:

[SECURITY] [DSA 3050-1] iceweasel security update

BugTraq Latest Security Advisories - October 20, 2014 - 9:33am

Posted by Moritz Muehlenhoff on Oct 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-3050-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
October 15, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : iceweasel
CVE ID : CVE-2014-1574 CVE-2014-1576...
Categories:

Re: LiveZilla 5.3.0.7 Security Issue

BugTraq Latest Security Advisories - October 20, 2014 - 9:24am

Posted by Henri Salo on Oct 20

CVE OpenSource Request HOWTO can be located at:

http://people.redhat.com/kseifrie/CVE-OpenSource-Request-HOWTO.html

As "Live!Zilla" product is open-source you can request CVE in public
oss-security mailing list:

http://oss-security.openwall.org/wiki/
http://www.openwall.com/lists/oss-security/

You should include following details to your request if available:

- Software and vendor name
- Type of vulnerability
- Link to vulnerable...
Categories:

Elastix Multiple vulnerabilities (Remote Command Execution, XSS, CSRF)

BugTraq Latest Security Advisories - October 20, 2014 - 9:12am

Posted by simo on Oct 20

Title: Elastix Multiple vulnerabilities (Remote Command Execution, XSS, CSRF)
Author: Simo Ben youssef
Contact: Simo_at_Morxploit_com
Discovered: September 1 2014
Published: October 17 2014
MorXploit Research
http://www.MorXploit.com
Software: Elastix
Version: Elastix 2.4.0 Stable
Vendor url: http://elastix.org/
Vulnerable file: modules/backup_restore/index.php

Description:

1- Remote Command Execution

modules/backup_restore/index.php suffers...
Categories:

Vuln: Zend Framework CVE-2014-8088 Authentication Bypass Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Zend Framework CVE-2014-8088 Authentication Bypass Vulnerability
Categories:

Vuln: Microsoft Windows FAT32 Disk Partition Driver CVE-2014-4115 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Microsoft Windows FAT32 Disk Partition Driver CVE-2014-4115 Local Privilege Escalation Vulnerability
Categories:

Vuln: Microsoft .NET Framework ClickOnce CVE-2014-4073 Remote Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Microsoft .NET Framework ClickOnce CVE-2014-4073 Remote Privilege Escalation Vulnerability
Categories:

Vuln: Microsoft .NET Framework CVE-2014-4122 ASLR Security Bypass Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Microsoft .NET Framework CVE-2014-4122 ASLR Security Bypass Vulnerability
Categories:

Vuln: OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
Categories:

Vuln: OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
Categories:

Vuln: OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
Categories:

Vuln: OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
Categories:

Vuln: OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability
Categories:

Vuln: Libxml2 Entities Expansion CVE-2014-3660 Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Libxml2 Entities Expansion CVE-2014-3660 Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel 'netdevice.h' NULL Pointer Dereference Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Linux Kernel 'netdevice.h' NULL Pointer Dereference Denial of Service Vulnerability
Categories:

Vuln: Mozilla Firefox/Thunderbird CVE-2014-1585 Security Bypass Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Mozilla Firefox/Thunderbird CVE-2014-1585 Security Bypass Vulnerability
Categories:

Vuln: Mozilla Firefox/Thunderbird CVE-2014-1586 Security Bypass Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Mozilla Firefox/Thunderbird CVE-2014-1586 Security Bypass Vulnerability
Categories:

Vuln: Linux Kernel 'control.c' File Use After Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Linux Kernel 'control.c' File Use After Free Memory Corruption Vulnerability
Categories:

Vuln: Linux Kernel SCTP NULL Pointer Dereference Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Linux Kernel SCTP NULL Pointer Dereference Denial of Service Vulnerability
Categories:

Vuln: Linux Kernel Multiple Local Security Bypass Vulnerabilities

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Linux Kernel Multiple Local Security Bypass Vulnerabilities
Categories: