Feed aggregator

Bugtraq: Re: LiveZilla 5.3.0.7 Security Issue

Security Focus Latest Security Advisories - October 20, 2014 - 1:45pm
Re: LiveZilla 5.3.0.7 Security Issue
Categories:

Bugtraq: Elastix Multiple vulnerabilities (Remote Command Execution, XSS, CSRF)

Security Focus Latest Security Advisories - October 20, 2014 - 1:45pm
Elastix Multiple vulnerabilities (Remote Command Execution, XSS, CSRF)
Categories:

Bugtraq: APPLE-SA-2014-10-16-6 iTunes 12.0.1

Security Focus Latest Security Advisories - October 20, 2014 - 1:45pm
APPLE-SA-2014-10-16-6 iTunes 12.0.1
Categories:

[security bulletin] HPSBMU03143 rev.1 - HP Virtualization Performance Viewer, Bash Shell, Remote Code Execution

BugTraq Latest Security Advisories - October 20, 2014 - 1:43pm

Posted by security-alert on Oct 20

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04479536

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04479536
Version: 1

HPSBMU03143 rev.1 - HP Virtualization Performance Viewer, Bash Shell, Remote
Code Execution

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-10-16...
Categories:

[security bulletin] HPSBHF03084 rev.2 - HP PCs with UEFI Firmware, Execution of Arbitrary Code

BugTraq Latest Security Advisories - October 20, 2014 - 1:32pm

Posted by security-alert on Oct 20

Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04393276

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04393276
Version: 2

HPSBHF03084 rev.2 - HP PCs with UEFI Firmware, Execution of Arbitrary Code

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2014-08-06
Last Updated:...
Categories:

Bugtraq: APPLE-SA-2014-10-16-5 OS X Server v2.2.5

Security Focus Latest Security Advisories - October 20, 2014 - 10:00am
APPLE-SA-2014-10-16-5 OS X Server v2.2.5
Categories:

Bugtraq: APPLE-SA-2014-10-16-4 OS X Server v3.2.2

Security Focus Latest Security Advisories - October 20, 2014 - 10:00am
APPLE-SA-2014-10-16-4 OS X Server v3.2.2
Categories:

Bugtraq: APPLE-SA-2014-10-16-3 OS X Server v4.0

Security Focus Latest Security Advisories - October 20, 2014 - 10:00am
APPLE-SA-2014-10-16-3 OS X Server v4.0
Categories:

[SECURITY] [DSA 3050-1] iceweasel security update

BugTraq Latest Security Advisories - October 20, 2014 - 9:33am

Posted by Moritz Muehlenhoff on Oct 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-3050-1 security () debian org
http://www.debian.org/security/ Moritz Muehlenhoff
October 15, 2014 http://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : iceweasel
CVE ID : CVE-2014-1574 CVE-2014-1576...
Categories:

Re: LiveZilla 5.3.0.7 Security Issue

BugTraq Latest Security Advisories - October 20, 2014 - 9:24am

Posted by Henri Salo on Oct 20

CVE OpenSource Request HOWTO can be located at:

http://people.redhat.com/kseifrie/CVE-OpenSource-Request-HOWTO.html

As "Live!Zilla" product is open-source you can request CVE in public
oss-security mailing list:

http://oss-security.openwall.org/wiki/
http://www.openwall.com/lists/oss-security/

You should include following details to your request if available:

- Software and vendor name
- Type of vulnerability
- Link to vulnerable...
Categories:

Elastix Multiple vulnerabilities (Remote Command Execution, XSS, CSRF)

BugTraq Latest Security Advisories - October 20, 2014 - 9:12am

Posted by simo on Oct 20

Title: Elastix Multiple vulnerabilities (Remote Command Execution, XSS, CSRF)
Author: Simo Ben youssef
Contact: Simo_at_Morxploit_com
Discovered: September 1 2014
Published: October 17 2014
MorXploit Research
http://www.MorXploit.com
Software: Elastix
Version: Elastix 2.4.0 Stable
Vendor url: http://elastix.org/
Vulnerable file: modules/backup_restore/index.php

Description:

1- Remote Command Execution

modules/backup_restore/index.php suffers...
Categories:

Vuln: Zend Framework CVE-2014-8088 Authentication Bypass Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Zend Framework CVE-2014-8088 Authentication Bypass Vulnerability
Categories:

Vuln: Microsoft Windows FAT32 Disk Partition Driver CVE-2014-4115 Local Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Microsoft Windows FAT32 Disk Partition Driver CVE-2014-4115 Local Privilege Escalation Vulnerability
Categories:

Vuln: Microsoft .NET Framework ClickOnce CVE-2014-4073 Remote Privilege Escalation Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Microsoft .NET Framework ClickOnce CVE-2014-4073 Remote Privilege Escalation Vulnerability
Categories:

Vuln: Microsoft .NET Framework CVE-2014-4122 ASLR Security Bypass Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
Microsoft .NET Framework CVE-2014-4122 ASLR Security Bypass Vulnerability
Categories:

Vuln: OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
Categories:

Vuln: OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
Categories:

Vuln: OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
Categories:

Vuln: OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
Categories:

Vuln: OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - October 19, 2014 - 11:00pm
OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability
Categories: