Feed aggregator

CVE-2014-4980 Parameter Tampering in Nessus Web UI - Remote Information Disclosure

BugTraq Latest Security Advisories - July 21, 2014 - 9:32am

Posted by i amroot on Jul 21

Product: Nessus
Vendor: Tenable Network Security‎
Version: Nessus 5.2.3-5.2.7 - Web UI 2.3.4 (potentially lower)
Vendor Notified Date: June 24, 2014
Vendor Resolved Date: June 25, 2014
Release Date: July 18, 2014
Risk: Medium
Authentication: Not Required
Remote: Yes

Description:
A parameter tampering vulnerability exists in Nessus 5.2.7 and potentially below that allows remote attackers to
retrieve potentially sensitive information from the...
Categories:

Bugtraq: ESA-2014-074: EMC RecoverPoint Appliance Security Control Bypass Vulnerability

ESA-2014-074: EMC RecoverPoint Appliance Security Control Bypass Vulnerability
Categories:

Bugtraq: Microsoft MSN HBE - Blind SQL Injection Vulnerability

Microsoft MSN HBE - Blind SQL Injection Vulnerability
Categories:

Bugtraq: Barracuda Networks Message Archiver 650 - Persistent Input Validation Vulnerability (BNSEC 703)

Barracuda Networks Message Archiver 650 - Persistent Input Validation Vulnerability (BNSEC 703)
Categories:

Bugtraq: [SECURITY] [DSA 2980-1] openjdk-6 security update

[SECURITY] [DSA 2980-1] openjdk-6 security update
Categories:

next-20140721: linux-next

Linux Kernel Updates - July 21, 2014 - 3:57am
Version:next-20140721 (linux-next) Released:2014-07-21

3.16-rc6: mainline

Linux Kernel Updates - July 20, 2014 - 11:04pm
Version:3.16-rc6 (mainline) Released:2014-07-21 Source:linux-3.16-rc6.tar.xz PGP Signature:linux-3.16-rc6.tar.sign Patch:patch-3.16-rc6.xz

Vuln: OpenVAS Manager CVE-2013-6765 Authentication Bypass Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
OpenVAS Manager CVE-2013-6765 Authentication Bypass Vulnerability
Categories:

Vuln: RETIRED: Linux Kernel 'net/l2tp/l2tp_ppp.c' Multiple Local Privilege Escalation Vulnerabilities

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
RETIRED: Linux Kernel 'net/l2tp/l2tp_ppp.c' Multiple Local Privilege Escalation Vulnerabilities
Categories:

Vuln: Oracle Java SE CVE-2014-2483 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Oracle Java SE CVE-2014-2483 Remote Security Vulnerability
Categories:

Vuln: Oracle Java SE CVE-2014-4227 Remote Security Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Oracle Java SE CVE-2014-4227 Remote Security Vulnerability
Categories:

Vuln: IBM Sametime Meeting Server Arbitrary File Upload Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
IBM Sametime Meeting Server Arbitrary File Upload Vulnerability
Categories:

Vuln: Snoopy 'exec()' Arbitrary Command Execution Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Snoopy 'exec()' Arbitrary Command Execution Vulnerability
Categories:

Vuln: Linux Kernel 'skb_flow_dissect()' Function CVE-2013-4348 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Linux Kernel 'skb_flow_dissect()' Function CVE-2013-4348 Remote Denial of Service Vulnerability
Categories:

Vuln: OCS Inventory NG Multiple Unspecified HTML Injection Vulnerabilities

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
OCS Inventory NG Multiple Unspecified HTML Injection Vulnerabilities
Categories:

Vuln: Oracle Outside In Technology CVE-2013-5879 Local Security Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Oracle Outside In Technology CVE-2013-5879 Local Security Vulnerability
Categories:

Vuln: Advantech WebAccess CVE-2014-2365 Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Advantech WebAccess CVE-2014-2365 Remote Code Execution Vulnerability
Categories:

Vuln: Advantech WebAccess CVE-2014-2366 Remote Information Disclosure Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Advantech WebAccess CVE-2014-2366 Remote Information Disclosure Vulnerability
Categories:

Vuln: Open Handset Alliance Android SSL Certificate Spoofing Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Open Handset Alliance Android SSL Certificate Spoofing Vulnerability
Categories:

Vuln: Advantech WebAccess CVE-2014-2367 Remote Authentication Bypass Vulnerability

Security Focus Latest Security Advisories - July 20, 2014 - 11:00pm
Advantech WebAccess CVE-2014-2367 Remote Authentication Bypass Vulnerability
Categories: