Bug Traq

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 1 min 17 sec ago

Microsoft Windows VCF File Insufficient UI Warning Remote Code Execution 0day ZDI-CAN-6920

15 January, 2019 - 00:07

Posted by apparitionsec on Jan 14

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-VCF-FILE-INSUFFICIENT-WARNING-REMOTE-CODE-EXECUTION.txt
[+] ISR: ApparitionSec
[+] Zero Day Initiative Program

[Vendor]
www.microsoft.com

[Product]
A VCF file is a standard file format for storing contact information for a person or business.
Microsoft Outlook supports the vCard and...

Microsoft Windows VCF File Insufficient UI Warning Remote Code Execution 0day ZDI-CAN-6920

15 January, 2019 - 00:06

Posted by apparitionsec on Jan 14

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-VCF-FILE-INSUFFICIENT-WARNING-REMOTE-CODE-EXECUTION.txt
[+] ISR: ApparitionSec
[+] Zero Day Initiative Program

[Vendor]
www.microsoft.com

[Product]
A VCF file is a standard file format for storing contact information for a person or business.
Microsoft Outlook supports the vCard and...

[SECURITY] [DSA 4369-1] xen security update

15 January, 2019 - 00:03

Posted by Moritz Muehlenhoff on Jan 14

-------------------------------------------------------------------------
Debian Security Advisory DSA-4369-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : xen
CVE ID : CVE-2018-19961 CVE-2018-19962...

[SECURITY] [DSA 4368-1] zeromq3 security update

14 January, 2019 - 23:59

Posted by Moritz Muehlenhoff on Jan 14

-------------------------------------------------------------------------
Debian Security Advisory DSA-4368-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 14, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : zeromq3
CVE ID : CVE-2019-6250

Guido Vranken...

[slackware-security] zsh (SSA:2019-013-01)

14 January, 2019 - 03:29

Posted by Slackware Security Team on Jan 14

[slackware-security] zsh (SSA:2019-013-01)

New zsh packages are available for Slackware 14.0, 14.1, and 14.2 to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/zsh-5.6.2-i586-1_slack14.2.txz: Upgraded.
This release fixes security issues, including ones that could allow a local
attacker to execute arbitrary code.
For more information, see:...

[SECURITY] [DSA 4367-1] systemd security update

13 January, 2019 - 23:19

Posted by Salvatore Bonaccorso on Jan 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4367-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
January 13, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : systemd
CVE ID : CVE-2018-16864 CVE-2018-16865...

[SECURITY] [DSA 4366-1] vlc security update

13 January, 2019 - 23:18

Posted by Moritz Muehlenhoff on Jan 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4366-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 12, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : vlc
CVE ID : CVE-2018-19857

An integer underflow...

[slackware-security] irssi (SSA:2019-011-01)

13 January, 2019 - 23:16

Posted by Slackware Security Team on Jan 13

[slackware-security] irssi (SSA:2019-011-01)

New irssi packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/irssi-1.1.2-i586-1_slack14.2.txz: Upgraded.
This update addresses bugs including security and stability issues:
A NULL pointer dereference occurs for an "empty" nick.
Certain nick...

[SYSS-2018-042] XSS in HMS Netbiter WS100 - CVE-2018-19694

13 January, 2019 - 23:15

Posted by Micha Borrmann on Jan 13

Advisory ID: SYSS-2018-042
Product: Netbiter WS100
Manufacturer: HMS Industrial Networks AB
Affected Version(s): 3.30.5 <=
Tested Version(s): 3.30.5
Vulnerability Type: Cross-Site Scripting (CWE-79)
Risk Level: Low
Solution Status: Fixed
Manufacturer Notification: 2018-11-29
Solution Date: 2018-12-20
Public Disclosure: 2019-01-11...

[SYSS-2018-011] Portier - Cryptographic Issues

13 January, 2019 - 23:07

Posted by christian . pappas on Jan 13

Advisory ID: SYSS-2018-011
Product: PORTIER
Affected Version(s): 4.4.4.2, 4.4.4.6
Tested Version(s): 4.4.4.2, 4.4.4.6
Vulnerability Type: Cryptographic Issues (CWE-310)
Risk Level: HIGH
Solution Status: Open
Manufacturer Notification: 2018-06-13
Solution Date: -
Public Disclosure: 2018-01-09
CVE Reference: CVE-2019-5723
Author of Advisory: Christian Pappas, SySS GmbH...

[SYSS-2018-011] Portier - SQL Injection

13 January, 2019 - 23:04

Posted by christian . pappas on Jan 13

Advisory ID: SYSS-2018-012
Product: PORTIER
Affected Version(s): 4.4.4.2, 4.4.4.6
Tested Version(s): 4.4.4.2, 4.4.4.6
Vulnerability Type: SQL Injection (CWE-89)
Risk Level: HIGH
Solution Status: Open
Manufacturer Notification: 2018-06-13
Solution Date: -
Public Disclosure: 2018-01-09
CVE Reference: CVE-2019-5722
Author of Advisory: Christian Pappas, SySS GmbH

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~...

[SECURITY] [DSA 4365-1] tmpreaper security update

11 January, 2019 - 00:26

Posted by Moritz Muehlenhoff on Jan 10

-------------------------------------------------------------------------
Debian Security Advisory DSA-4365-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 10, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tmpreaper
CVE ID : CVE-2019-3461

Stephen Roettger...

X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability in UA-Parser

11 January, 2019 - 00:23

Posted by X41 D-Sec GmbH Advisories on Jan 10

X41 D-SEC GmbH Security Advisory: X41-2018-009

ReDoS Vulnerability in UA-Parser
================================
Severity Rating: Medium
Confirmed Affected Versions: 2015-05-14 and newer, commit
6fd6c261274254bcbbacd77ef4b12534c7f9923d
Confirmed Patched Versions: v0.6.0 released 2018-12-14, commit
010ccdc7303546cd22b9da687c29f4a996990014
Vendor: UA-Parser Project
Vendor URL: https://github.com/ua-parser
Vector: HTTP request
Credit: X41 D-SEC...

SEC Consult SA-20190109-0 :: Multiple Vulnerabilities in Cisco VoIP Phones (88xx series)

9 January, 2019 - 22:44

Posted by SEC Consult Vulnerability Lab on Jan 09

SEC Consult Vulnerability Lab Security Advisory < 20190109-0 >
=======================================================================
title: Multiple Vulnerabilities
product: Cisco VoIP Phones, e.g. models 88XX
vulnerable version: See list of vulnerable devices/firmwares below
fixed version: 12.5.1 MN
CVE number: CVE-2018-0461
impact: high
homepage: https://www.cisco.com...

System Down: A systemd-journald exploit

9 January, 2019 - 22:41

Posted by Qualys Security Advisory on Jan 09

Qualys Security Advisory

System Down: A systemd-journald exploit

========================================================================
Contents
========================================================================

Summary
CVE-2018-16864
- Analysis
- Exploitation
CVE-2018-16865
- Analysis
- Exploitation
CVE-2018-16866
- Analysis
- Exploitation
Combined Exploitation of CVE-2018-16865 and CVE-2018-16866
- amd64 Exploitation
- i386...

[SECURITY] [DSA 4364-1] ruby-loofah security update

9 January, 2019 - 02:14

Posted by Moritz Muehlenhoff on Jan 08

-------------------------------------------------------------------------
Debian Security Advisory DSA-4364-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 08, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : ruby-loofah
CVE ID : CVE-2018-16468

It was...

[SECURITY] [DSA 4363-1] python-django security update

9 January, 2019 - 02:11

Posted by Moritz Muehlenhoff on Jan 08

-------------------------------------------------------------------------
Debian Security Advisory DSA-4363-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 08, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : python-django
CVE ID : CVE-2019-3498

It was...

[SECURITY] [DSA 4362-1] thunderbird security update

2 January, 2019 - 06:03

Posted by Moritz Muehlenhoff on Jan 02

-------------------------------------------------------------------------
Debian Security Advisory DSA-4362-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 01, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : thunderbird
CVE ID : not yet available

Multiple...

[KIS-2018-06] SugarCRM (addLabels) PHP Code Injection Vulnerability

1 January, 2019 - 00:21

Posted by Egidio Romano on Dec 31

-----------------------------------------------------
SugarCRM (addLabels) PHP Code Injection Vulnerability
-----------------------------------------------------

[-] Software Link:

http://www.sugarcrm.com

[-] Affected Versions:

All versions prior to 7.9.5.0, 8.0.2, and 8.2.0.

[-] Vulnerability Description:

User input passed through key values of the 'labels_' parameters is not properly sanitized
before being used to save PHP code...

[KIS-2018-08] SugarCRM (Web Logic Hooks module) Path Traversal Vulnerability

1 January, 2019 - 00:20

Posted by Egidio Romano on Dec 31

--------------------------------------------------------------
SugarCRM (Web Logic Hooks module) Path Traversal Vulnerability
--------------------------------------------------------------

[-] Software Link:

http://www.sugarcrm.com

[-] Affected Versions:

All versions prior to 7.9.5.0, 8.0.2, and 8.2.0.

[-] Vulnerability Description:

User input passed through the "webhook_target_module" parameter is not properly sanitized
before...