Mail Thread Index

Date Index

Cisco Security Advisory: Cisco WebEx Meetings Player Arbitrary Code Execution, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco Small Business 220 Series Smart Plus Switches SNMP Unauthorized Access Vulnerability, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco Small Business SPA3x/5x Series Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team
FormatFactory 3.9.0 - (.task) Stack Overflow Vulnerability, Vulnerability Lab
Google Nexus 5X Bootloader Unauthorized Memory Dumping via USB, Roee Hay
[SECURITY] [DSA 3659-1] linux security update, Salvatore Bonaccorso
Unauthenticated Arbitrary Directory Dump in BMC BladeLogic Server Automation, ZeroDay
[SECURITY] [DSA 3661-1] charybdis security update, Moritz Muehlenhoff
[CVE-2016-6484] Infoblox Network Automation CRLF Injection/ HTTP splitting, alex_haynes
Infoblox Cross-site scripting vulnerabilities, alex_haynes
CVE-2016-6920 ffmpeg exr file Heap Overflow, unlimitsec
CVE-2016-4264 Adobe ColdFusion <= 11 XXE Vulnerability, Dawid Golunski
Picosmos Shows v1.6.0 - Stack Buffer Overflow Vulnerability, Vulnerability Lab
PHPHolidays CMS v3.00.50 - Cross Site Scripting Web Vulnerability, Vulnerability Lab
[slackware-security] php (SSA:2016-252-01), Slackware Security Team
AST-2016-007: RTP Resource Exhaustion, Asterisk Security Team
Open-Xchange Security Advisory 2016-09-13, Martin Heiland
Open-Xchange Security Advisory 2016-09-13 (2), Martin Heiland
Multiple DoS vulnerabilities in libosip2-4.1.0, bshastry
[ANNOUNCE][CVE-2016-6802] Apache Shiro 1.3.2 released, Brian Demers
ESA-2016-104: EMC ViPR SRM Multiple Vulnerabilities, EMC Product Security Response Center
ESA-2016-108: EMC Documentum D2 Authentication Bypass Vulnerability, EMC Product Security Response Center
[security bulletin] HPSBGN03572 rev.1 - HPE Performance Center, Remote User Validation Failure, security-alert
[security bulletin] HPSBST03640 rev.1 - HP XP7 Command View Advance Edition Suite (CVAE) using Replication Manager (RepMgr) and Device Manager (DevMgr), Local Access Restriction Bypass, security-alert
[SECURITY] [DSA 3666-1] mysql-5.5 security update, Salvatore Bonaccorso
APPLE-SA-2016-09-14-1 iOS 10.0.1, Apple Product Security
Insecure transmission of data in Android applications developed with Adobe AIR [CVE-2016-6936], research
Cisco EPC 3925 Multiple Vulnerabilities, msg
ESA-2016-094: RSA BSAFE® Micro Edition Suite Multiple Vulnerabilities, EMC Product Security Response Center
[SECURITY] [DSA 3669-1] tomcat7 security update, Moritz Muehlenhoff
[slackware-security] curl (SSA:2016-259-01), Slackware Security Team
[SECURITY] CVE-2016-5017: Buffer overflow vulnerability in ZooKeeper C cli shell, Flavio Junqueira
- <Possible follow-ups>
- [SECURITY] CVE-2016-5017: Buffer overflow vulnerability in ZooKeeper C cli shell, Flavio Junqueira
Call for Papers - WorldCIST'17 - 5th World Conference on Information Systems and Technologies (Published by Springer), ML
ESA-2016-065: EMC Avamar Data Store and Avamar Virtual Edition Multiple Vulnerabilities, EMC Product Security Response Center
ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability, EMC Product Security Response Center
ESA-2016-093: RSA® Adaptive Authentication (On-Premise) Cross-Site Scripting Vulnerability , EMC Product Security Response Center
APPLE-SA-2016-09-20-2 Safari 10, Apple Product Security
APPLE-SA-2016-09-20-3 iOS 10, Apple Product Security
APPLE-SA-2016-09-20-4 macOS Server 5.2, Apple Product Security
APPLE-SA-2016-09-20-5 watchOS 3, Apple Product Security
APPLE-SA-2016-09-20-6 tvOS 10, Apple Product Security
Cisco Security Advisory: Cisco Cloud Services Platform 2100 Command Injection Vulnerability, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco Cloud Services Platform 2100 Remote Command Execution Vulnerability, Cisco Systems Product Security Incident Response Team
[SECURITY] [DSA 3672-1] irssi security update, Salvatore Bonaccorso
[slackware-security] pidgin (SSA:2016-265-01), Slackware Security Team
[security bulletin] HPSBGN03645 rev.2 - HPE Helion OpenStack Glance, Remote Access Restriction Bypass, Unauthorized Access, security-alert
Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla, Larry W. Cashdollar
[security bulletin] HPSBHF03646 rev.1 - HPE Comware 7 (CW7) Network Products running NTP, Multiple Remote Vulnerabilities, security-alert
[slackware-security] irssi (SSA:2016-265-03), Slackware Security Team
IE11 is not following CORS specification for local files, Ricardo Iramar dos Santos
Fwd: BT Wifi Extenders - Cross Site Scripting leading to disclosure of PSK, Jamie R
[SECURITY] [DSA 3673-1] openssl security update, Moritz Muehlenhoff
[SECURITY] [DSA 3674-1] firefox-esr security update, Moritz Muehlenhoff
Recon Europe 2017 Call For Papers - January 27 - 29, 2017 - Brussels, Belgium, cfpbrussels2017
ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability, EMC Product Security Response Center
[slackware-security] php (SSA:2016-267-01), Slackware Security Team
OS-S Security Advisory 2016-19: Epson WorkForce multi-function printers do not use signed firmware images and allow unauthorized malicious firmware-updates (CVSS 10), Ralf Spenneberg
[security bulletin] HPSBGN03648 rev.1 - HPE LoadRunner and Performance Center, Remote Denial of Service (DoS), security-alert
[slackware-security] openssl (SSA:2016-270-01), Slackware Security Team
[SECURITY] [DSA 3678-1] python-django security update, Florian Weimer
[security bulletin] HPSBHF03655 rev.1 - HPE iMC PLAT Network Products running Apache Axis2, Multiple Remote Vulnerabilities, security-alert
[security bulletin] HPSBHF03654 rev.1 - HPE iMC PLAT Network Products using SSL/TLS, Multiple Remote Vulnerabilities, security-alert
[security bulletin] HPSBHF03652 rev.1 - HPE iMC PLAT Network Products running Apache Commons FileUpload, Remote Denial of Service (DoS), security-alert
[SECURITY] [DSA 3679-1] jackrabbit security update, Florian Weimer
ESA-2016-127: EMC ViPR SRM Stored Cross-Site Scripting Vulnerability, EMC Product Security Response Center
[SECURITY] [DSA 3680-1] bind9 security update, Florian Weimer
[slackware-security] bind (SSA:2016-271-01), Slackware Security Team
Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016, Cisco Systems Product Security Incident Response Team
Multiple vulnerabilities found in the Dlink DWR-932B (backdoor, backdoor accounts, weak WPS, RCE ...), Pierre Kim
[REVIVE-SA-2016-002] Revive Adserver - Multiple vulnerabilities, Matteo Beccati
Cisco Security Advisory: Cisco IOS and IOS XE Software AAA Login Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco IOS Software Common Industrial Protocol Request Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco IOS XE Software NAT Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco IOS and IOS XE Software Multicast Routing Denial of Service Vulnerabilities, Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco IOS and IOS XE Software Smart Install Memory Leak Vulnerability, Cisco Systems Product Security Incident Response Team
[security bulletin] HPSBGN03650 rev.1 - HPE Network Automation Software, Local Arbitrary File Modification, security-alert
Persistent XSS in Abus Security Center - CVSS 8.0, Tim Schughart
Re: CVE-2016-5019: MyFaces Trinidad view state deserialization security vulnerability, Mike Kienenberger
[SYSS-2016-060] Logitech M520 - Insufficient Verification of Data Authenticity (CWE-345), matthias . deeg
Multiple exposures in Sophos UTM, Tim Schughart

Mail converted by MHonArc