Feed aggregator

AST-2014-015: Remote Crash Vulnerability in PJSIP channel driver

BugTraq Latest Security Advisories - November 21, 2014 - 1:04am

Posted by Asterisk Security Team on Nov 21

Asterisk Project Security Advisory - AST-2014-015

Product Asterisk
Summary Remote Crash Vulnerability in PJSIP channel driver
Nature of Advisory Denial of Service
Susceptibility Remote Unauthenticated Sessions
Severity Moderate...
Categories:

AST-2014-016: Remote Crash Vulnerability in PJSIP channel driver

BugTraq Latest Security Advisories - November 21, 2014 - 12:55am

Posted by Asterisk Security Team on Nov 21

Asterisk Project Security Advisory - AST-2014-016

Product Asterisk
Summary Remote Crash Vulnerability in PJSIP channel driver
Nature of Advisory Denial of Service
Susceptibility Remote Unauthenticated Sessions
Severity Critical...
Categories:

AST-2014-017: <font size="3" style="font-size: 12pt">Permission escalation through ConfBridge actions/dialplan functions</font>

BugTraq Latest Security Advisories - November 21, 2014 - 12:48am

Posted by Asterisk Security Team on Nov 21

Asterisk Project Security Advisory - AST-2014-017

Product Asterisk
Summary Permission escalation through ConfBridge
actions/dialplan functions
Nature of Advisory Permission Escalation
Susceptibility Remote Authenticated Sessions...
Categories:

AST-2014-018: AMI permission escalation through DB dialplan function

BugTraq Latest Security Advisories - November 21, 2014 - 12:39am

Posted by Asterisk Security Team on Nov 21

Asterisk Project Security Advisory - AST-2014-018

Product Asterisk
Summary AMI permission escalation through DB dialplan
function
Nature of Advisory Permission Escalation
Susceptibility Remote Authenticated Sessions...
Categories:

AST-2014-014: High call load may result in hung channels in ConfBridge.

BugTraq Latest Security Advisories - November 21, 2014 - 12:31am

Posted by Asterisk Security Team on Nov 21

Asterisk Project Security Advisory - AST-2014-014

Product Asterisk
Summary High call load may result in hung channels in
ConfBridge.
Nature of Advisory Denial of Service
Susceptibility Remote Unauthenticated Sessions...
Categories:

Multiple SQL Injection in SP Client Document Manager plugin

BugTraq Latest Security Advisories - November 21, 2014 - 12:22am

Posted by thai . q . dang on Nov 21

Vulnerability title: Multiple SQL Injection in SP Client Document Manager plugin
Plugin: SP Client Document Manager
Vendor: http://smartypantsplugins.com
Product: https://wordpress.org/plugins/sp-client-document-manager/
Affected version: version 2.4.1 and previous version
Fixed version: N/A
Google dork: inurl:wp-content/plugins/sp-client-document-manager
Reported by: Dang Quoc Thai - thai.q.dang (at) itas (dot) vn
Credits to ITAS Team -...
Categories:

Bugtraq: [SECURITY] [DSA 3075-1] drupal7 security update

Security Focus Latest Security Advisories - November 21, 2014 - 12:15am
[SECURITY] [DSA 3075-1] drupal7 security update
Categories:

Bugtraq: [ MDVSA-2014:217 ] clamav

Security Focus Latest Security Advisories - November 21, 2014 - 12:15am
[ MDVSA-2014:217 ] clamav
Categories:

Bugtraq: CVE-2014-8877 - Code Injection in Wordpress CM Download Manager plugin

Security Focus Latest Security Advisories - November 21, 2014 - 12:15am
CVE-2014-8877 - Code Injection in Wordpress CM Download Manager plugin
Categories:

Bugtraq: [ MDVSA-2014:216 ] php-ZendFramework

Security Focus Latest Security Advisories - November 21, 2014 - 12:15am
[ MDVSA-2014:216 ] php-ZendFramework
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0589 Unspecified Heap Based Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Adobe Flash Player and AIR CVE-2014-0589 Unspecified Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0588 Use After Free Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Adobe Flash Player and AIR CVE-2014-0588 Use After Free Remote Code Execution Vulnerability
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0582 Unspecified Heap Based Buffer Overflow Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Adobe Flash Player and AIR CVE-2014-0582 Unspecified Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: Adobe Flash Player and AIR CVE-2014-0581 Memory Corruption Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Adobe Flash Player and AIR CVE-2014-0581 Memory Corruption Vulnerability
Categories:

Vuln: LibVNCServer CVE-2014-6053 Remote Denial of Service Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
LibVNCServer CVE-2014-6053 Remote Denial of Service Vulnerability
Categories:

Vuln: Google Chrome CVE-2014-7909 Information Disclosure Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Google Chrome CVE-2014-7909 Information Disclosure Vulnerability
Categories:

Vuln: Google Chrome CVE-2014-7910 Multiple Security Vulnerabilities

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Google Chrome CVE-2014-7910 Multiple Security Vulnerabilities
Categories:

Vuln: Google Chrome CVE-2014-7907 Use After Free Remote Code Execution Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Google Chrome CVE-2014-7907 Use After Free Remote Code Execution Vulnerability
Categories:

Vuln: Oracle MySQL Client CVE-2014-2440 Remote Security Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Oracle MySQL Client CVE-2014-2440 Remote Security Vulnerability
Categories:

Vuln: Oracle MySQL Server CVE-2014-2419 Remote Security Vulnerability

Security Focus Latest Security Advisories - November 21, 2014 - 12:00am
Oracle MySQL Server CVE-2014-2419 Remote Security Vulnerability
Categories: