Mail Index

• Thread Index

• Mac OS X Local Javascript Quarantine Bypass
  • From: Filippo Cavallarin
• Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Remote Memory Corruption CVE-2017-14089 (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Change Prevention Image File Execution Bypass (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Remote Encryption Key Disclosure CVE-2017-14083 (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Start Remote Process Code Execution / DOS - INI Corruption CVE-2017-14086 (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• Trend Micro OfficeScan v11.0 and XG (12.0)* CURL (MITM) Remote Code Execution CVE-2017-14084 (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• [SECURITY] [DSA 3986-1] ghostscript security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 3987-1] firefox-esr security update
  • From: Moritz Muehlenhoff
• Mac OS X Local Javascript Quarantine Bypass
  • From: filippo . cavallarin
• Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Server Side Request Forgery (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures CVE-2017-14085 (apparitionsec / hyp3rlinx)
  • From: apparitionsec
• [SECURITY] [DSA 3988-1] libidn2-0 security update
  • From: Salvatore Bonaccorso
• HPESBMU03753 rev.1 - HPE System Management Homepage, Multiple Remote Vulnerabilities
  • From: HPE Product Security Response Team
• [security bulletin] HPESBHF03776 rev.1 - HPE Intelligent Management Center (iMC) Service Operation Management (SOM), Remote Arbitrary File Download
  • From: security-alert
• DefenseCode Security Advisory: Magento Commerce CSRF, Stored Cross Site Scripting #1
  • From: DefenseCode
• [slackware-security] xorg-server (SSA:2017-279-03)
  • From: Slackware Security Team
• [SECURITY] [DSA 3993-1] tor security update
  • From: Moritz Muehlenhoff
• [SECURITY] [DSA 3994-1] nautilus security update
  • From: Yves-Alexis Perez
• [SECURITY] [DSA 3995-1] libxfont security update
  • From: Moritz Muehlenhoff
• Multiple vulnerabilities in OpenText Documentum Content Server
  • From: Andrey B. Panfilov
• [RCESEC-2017-002][CVE-2017-14956] AlienVault USM v5.4.2 "/ossim/report/wizard_email.php" Cross-Site Request Forgery leading to Sensitive Information Disclosure
  • From: Julien Ahrens
• Advisory X41-2017-008: Multiple Vulnerabilities in Shadowsocks
  • From: X41 D-Sec GmbH Advisories
• Advisory X41-2017-010: Command Execution in Shadowsocks-libev
  • From: X41 D-Sec GmbH Advisories
• [security bulletin] MFSBGN03786 rev.1 - HPE Connected Backup, Local Escalation of Privilege
  • From: swpmb . cyber-psrt
• SEC Consult SA-20171016-0 :: Multiple vulnerabilities in Micro Focus VisiBroker C++
  • From: SEC Consult Vulnerability Lab
• [SECURITY] [DSA 3999-1] wpa security update
  • From: Yves-Alexis Perez
• [security bulletin] HPESBHF03789 rev.2 - Certain HPE Gen9 Systems with HP Trusted Platform Module v2.0 Option, Unauthorized Access to Data
  • From: security-alert
• SEC Consult SA-20171018-1 :: Multiple vulnerabilities in Linksys E-series products
  • From: SEC Consult Vulnerability Lab
• WebKitGTK+ Security Advisory WSA-2017-0008
  • From: Carlos Alberto Lopez Perez
• [slackware-security] libXres (SSA:2017-291-01)
  • From: Slackware Security Team
• [slackware-security] wpa_supplicant (SSA:2017-291-02)
  • From: Slackware Security Team
• [slackware-security] xorg-server (SSA:2017-291-03)
  • From: Slackware Security Team
• FreeBSD Security Advisory FreeBSD-SA-17:07.wpa [REVISED]
  • From: FreeBSD Security Advisories
• [SECURITY] [DSA 4002-1] mysql-5.5 security update
  • From: Salvatore Bonaccorso
• [SECURITY] [DSA 4003-1] libvirt security update
  • From: Salvatore Bonaccorso
• [security bulletin] HPESBHF03779 rev.1 - HPE Fabric OS using OpenSSH, Denial of Service
  • From: HPE Product Security Response Team
• [SECURITY] [DSA 4006-1] mupdf security update
  • From: Luciano Bello
• KL-001-2017-017 : Infoblox NetMRI Administration Shell Escape and Privilege Escalation
  • From: KoreLogic Disclosures
• KL-001-2017-020 : Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions
  • From: KoreLogic Disclosures
• October 2017 - Bamboo - Critical Security Advisory
  • From: Atlassian
• Bomgar Remote Support - Local Privilege Escalation (CVE-2017-5996)
  • From: VSR Advisories
• [VulnWatch] Advisory 02/2002: PHP remote vulnerability
  • From: e-matters Security