Feed aggregator

Cisco Security Advisory: Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability

BugTraq Latest Security Advisories - August 18, 2016 - 6:35am

Posted by Cisco Systems Product Security Incident Response Team on Aug 18

Cisco Security Advisory: Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability

Advisory ID: cisco-sa-20160817-asa-snmp

Revision: 1.0

For Public Release: 2016 August 17 18:45 UTC (GMT)
+---------------------------------------------------------------------
Summary
=======

A vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco Adaptive Security Appliance (ASA)
Software could allow an unauthenticated,...
Categories:

Bugtraq: Cisco Security Advisory:Cisco Application Policy Infrastructure Controller Enterprise Module Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - August 18, 2016 - 6:00am
Cisco Security Advisory:Cisco Application Policy Infrastructure Controller Enterprise Module Remote Code Execution Vulnerability
Categories:

Bugtraq: Cisco Security Advisory: Cisco Firepower Management Center Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - August 18, 2016 - 6:00am
Cisco Security Advisory: Cisco Firepower Management Center Privilege Escalation Vulnerability
Categories:

Bugtraq: Cisco Security Advisory: Cisco Firepower Management Center Remote Command Execution Vulnerability

Security Focus Latest Security Advisories - August 18, 2016 - 6:00am
Cisco Security Advisory: Cisco Firepower Management Center Remote Command Execution Vulnerability
Categories:

Bugtraq: [SYSS-2016-067] NetIQ Access Manager (iManager) - Temporary Second Order Cross-Site Scripting (CWE-79)

Security Focus Latest Security Advisories - August 18, 2016 - 6:00am
[SYSS-2016-067] NetIQ Access Manager (iManager) - Temporary Second Order Cross-Site Scripting (CWE-79)
Categories:

next-20160818: linux-next

Linux Kernel Updates - August 17, 2016 - 11:39pm
Version:next-20160818 (linux-next) Released:2016-08-18

Vuln: Libav 'resample.c' Heap Based Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
Libav 'resample.c' Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: QEMU 'Transmit(tx) Queue' Processing Information Disclosure Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
QEMU 'Transmit(tx) Queue' Processing Information Disclosure Vulnerability
Categories:

Vuln: QEMU 'vmxnet_tx_pkt_parse_headers()' Function Remote Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
QEMU 'vmxnet_tx_pkt_parse_headers()' Function Remote Buffer Overflow Vulnerability
Categories:

Vuln: Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
Categories:

Vuln: Samsung 'fimg2d' Driver Null Pointer Deference Local Denial of Service Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
Samsung 'fimg2d' Driver Null Pointer Deference Local Denial of Service Vulnerability
Categories:

Vuln: Expat CVE-2016-0718 Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
Expat CVE-2016-0718 Buffer Overflow Vulnerability
Categories:

Vuln: Expat XML Parsing Multiple Remote Denial of Service Vulnerabilities

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
Expat XML Parsing Multiple Remote Denial of Service Vulnerabilities
Categories:

Vuln: PCRE CVE-2016-3191 Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
PCRE CVE-2016-3191 Buffer Overflow Vulnerability
Categories:

Vuln: Cisco Smart Call Home Transport Gateway CVE-2016-6359 Cross Site Scripting Vulnerability

Security Focus Latest Security Advisories - August 17, 2016 - 11:00pm
Cisco Smart Call Home Transport Gateway CVE-2016-6359 Cross Site Scripting Vulnerability
Categories:

Cisco Security Advisory: Cisco Firepower Management Center Remote Command Execution Vulnerability

BugTraq Latest Security Advisories - August 17, 2016 - 12:18pm

Posted by Cisco Systems Product Security Incident Response Team on Aug 17

Cisco Firepower Management Center Remote Command Execution Vulnerability

Advisory ID: cisco-sa-20160817-fmc

Revision 1.0

For Public Release: 2016 August 17 16:00 GMT

Summary
=======

+---------------------------------------------------------------------

A vulnerability in the web-based GUI of Cisco Firepower Management Center and Cisco Adaptive Security Appliance (ASA)
5500-X Series with FirePOWER Services could allow an authenticated,...
Categories:

Cisco Security Advisory:Cisco Application Policy Infrastructure Controller Enterprise Module Remote Code Execution Vulnerability

BugTraq Latest Security Advisories - August 17, 2016 - 12:11pm

Posted by Cisco Systems Product Security Incident Response Team on Aug 17

Cisco Security Advisory: Cisco Application Policy Infrastructure Controller Enterprise Module Remote Code Execution
Vulnerability

Advisory ID: cisco-sa-20160817-apic

Revision 1.0

Published: 2016 August 17 16:00 GMT
+---------------------------------------------------------------------

Summary
=======

A vulnerability in the Grapevine update process of the Cisco Application Policy Infrastructure Controller Enterprise
Module (APIC-EM) could...
Categories:

Cisco Security Advisory: Cisco Firepower Management Center Privilege Escalation Vulnerability

BugTraq Latest Security Advisories - August 17, 2016 - 12:03pm

Posted by Cisco Systems Product Security Incident Response Team on Aug 17

Cisco Firepower Management Center Privilege Escalation Vulnerability

Advisory ID: cisco-sa-20160817-firepower

Revision 1.0:

For Public Release: 2016 August 17 16:00 GMT

Summary
=======

A vulnerability in the web-based GUI of Cisco Firepower Management Center and Cisco Adaptive Security Appliance (ASA)
5500-X Series with FirePOWER Services could allow an authenticated, remote attacker to elevate the privileges of user
accounts on the...
Categories:

[SYSS-2016-067] NetIQ Access Manager (iManager) - Temporary Second Order Cross-Site Scripting (CWE-79)

BugTraq Latest Security Advisories - August 17, 2016 - 6:00am

Posted by Micha Borrmann on Aug 17

Advisory ID: SYSS-2016-067
Product: Access Manager iManager
Manufacturer: NetIQ
Affected Version(s): 2.7.7.5, 2.7.7.6
Tested Version(s): 2.7.7.5
Vulnerability Type: Temporary Second Order Cross-Site Scripting (CWE-79)
Risk Level: Low
Solution Status: Fixed
Solution Date: 2016-07
Public Disclosure: 2016-08-17
CVE Reference: Not yet assigned
Author of Advisory: Micha Borrmann, SySS GmbH...
Categories: