Full Disclosure

Syndicate content
A public, vendor-neutral forum for detailed discussion of vulnerabilities and exploitation techniques, as well as tools, papers, news, and events of interest to the community. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. More importantly, fresh vulnerabilities sometimes hit this list many hours or days before they pass through the Bugtraq moderation queue.
Updated: 1 min 22 sec ago

Vmware airwatch feature

11 December, 2018 - 13:32

Posted by Jacek Lipkowski on Dec 11

There is a non-bug works-as-designed-feature in products which expose some
internal company resources, such as webmail, to the internet (bad
practice, but this is often done) and use internal authentication. A few
bad logins can lock out internal accounts (usually 3 bad logins per
standard AD policy).

This is obvious and i would ask you a question how to classify this
problem? Security bug? Reliability bug? Bad design? Any other comments?...

[CFP] Security BSides Ljubljana 0x7E3 | March 16, 2019

11 December, 2018 - 13:30

Posted by Andraz Sraka on Dec 11

MMMMMMMMMMMMMMMMNmddmNMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
MMN..-..--+MMNy:...-.-/yNMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
MMy..ymd-.:Mm::-:osyo-..-mMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
MM:..---.:dM/..+NNyyMN/..:MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
Mm../dds.-oy.-.dMh--mMds++MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
My:::::/ydMmo..-hMMMmo//omMs/+Mm+++++shNMN+//+//+oMNy+///ohM
MMMs//yMNo+hMh---m:-:hy+sMN..+Mo..os+.-:Ny--ossssdN-.:yyo+mM...

Multiple vulnerabilities found in Trendnet routers and IP Cameras.

10 December, 2018 - 01:39

Posted by Prashast Srivastava on Dec 09

###########################################
Vulnerabilities found in TRENDnet devices

Authors:Prashast Srivastava, Mathias Payer
Howard Shrobe, Hamed Okhravi

Author contact: https://github.com/prashast/

###########################################

Multiple vulnerabilties including Command Injection, Buffer Overflow and
Reflective XSS vulnerabilties were found in the following TRENDnet devices:
Routers: TEW-634GRU, TEW-673GRU,...

[CVE-2018-19649, CVE-2018-19765 to CVE-2018-19775, CVE-2018-19809 to CVE-2018-19822] - Multiple Cross Site Scripting in VistaPortal SE Version 5.1 (build 51029)

7 December, 2018 - 13:33

Posted by Rafael Pedrero on Dec 07

Complete list: CVE-2018-19649, CVE-2018-19765, CVE-2018-19766,
CVE-2018-19767, CVE-2018-19768, CVE-2018-19769, CVE-2018-19770,
CVE-2018-19771, CVE-2018-19772, CVE-2018-19773, CVE-2018-19774,
CVE-2018-19775, CVE-2018-19809, CVE-2018-19810, CVE-2018-19811,
CVE-2018-19812, CVE-2018-19813, CVE-2018-19814, CVE-2018-19815,
CVE-2018-19816, CVE-2018-19817, CVE-2018-19818, CVE-2018-19819,
CVE-2018-19820, CVE-2018-19821, CVE-2018-19822

<!--
# Exploit...

[CVE-2018-19861, CVE-2018-19862] Buffer overflow in MiniShare 1.4.1 HEAD and POST method

7 December, 2018 - 13:33

Posted by Rafael Pedrero on Dec 07

Hi!!! playing in 2006.... I have adapted the exploit to python

Not only the GET method is vulnerable to BOF (CVE-2004-2271). HEAD and POST
methods are also vulnerable. The difference is minimal, both are exploited
in the same way. Only 1 byte difference: GET = 3, HEAD and POST = 4 length

-------------------------------------------------------------------

EAX 00000000
ECX 77C3EF3B msvcrt.77C3EF3B
EDX 00F14E38
EBX 43346843
ESP 01563908 ASCII...

APPLE-SA-2018-12-06-1 watchOS 5.1.2

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-06-1 watchOS 5.1.2

watchOS 5.1.2 is now available and addresses the following:

Airport
Available for: Apple Watch Series 1 and later
Impact: A malicious application may be able to elevate privileges
Description: A type confusion issue was addressed with improved
memory handling.
CVE-2018-4303: Mohamed Ghannam (@_simo36)

Disk Images
Available for: Apple Watch Series 1 and later
Impact: An application may be able to execute...

APPLE-SA-2018-12-05-6 iCloud for Windows 7.9

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-6 iCloud for Windows 7.9

iCloud for Windows 7.9 is now available and addresses the following:

Safari
Available for: Windows 7 and later
Impact: Visiting a malicious website may lead to address bar spoofing
Description: A logic issue was addressed with improved state
management.
CVE-2018-4440: Wenxu Wu of Tencent Security Xuanwu Lab
(xlab.tencent.com)

Safari
Available for: Windows 7 and later
Impact: Visiting a malicious...

APPLE-SA-2018-12-05-7 Shortcuts 2.1.2

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-7 Shortcuts 2.1.2

Shortcuts 2.1.2 is now available and addresses the following:

This update has no published CVE entries. We would like to
acknowledge Micah A for their assistance.

Installation note:

Shortcuts 2.1.2 for iOS may be obtained from the App Store.

Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT201222

This message is signed with Apple's Product...

APPLE-SA-2018-12-05-5 iTunes 12.9.2 for Windows

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-5 iTunes 12.9.2 for Windows

iTunes 12.9.2 for Windows is now available and addresses the
following:

Safari
Available for: Windows 7 and later
Impact: Visiting a malicious website may lead to address bar spoofing
Description: A logic issue was addressed with improved state
management.
CVE-2018-4440: Wenxu Wu of Tencent Security Xuanwu Lab
(xlab.tencent.com)

Safari
Available for: Windows 7 and later
Impact: Visiting a...

APPLE-SA-2018-12-05-4 Safari 12.0.2

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-4 Safari 12.0.2

Safari 12.0.2 is now available and addresses the following:

Safari
Available for: macOS Sierra 10.12.6, macOS High Sierra 10.13.6, and
macOS Mojave 10.14.1
Impact: Visiting a malicious website may lead to address bar spoofing
Description: A logic issue was addressed with improved state
management.
CVE-2018-4440: Wenxu Wu of Tencent Security Xuanwu Lab
(xlab.tencent.com)

Safari
Available for: macOS Sierra...

APPLE-SA-2018-12-05-3 tvOS 12.1.1

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-3 tvOS 12.1.1

tvOS 12.1.1 is now available and addresses the following:

Airport
Available for: Apple TV 4K and Apple TV (4th generation)
Impact: A malicious application may be able to elevate privileges
Description: A type confusion issue was addressed with improved
memory handling.
CVE-2018-4303: Mohamed Ghannam (@_simo36)

Disk Images
Available for: Apple TV 4K and Apple TV (4th generation)
Impact: An application may be...

APPLE-SA-2018-12-05-2 macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-2 macOS Mojave 10.14.2, Security Update
2018-003 High Sierra, Security Update 2018-006 Sierra

macOS Mojave 10.14.2, Security Update 2018-003 High Sierra,
Security Update 2018-006 Sierra are now available
and addresses the following:

Airport
Available for: macOS Mojave 10.14.1
Impact: A malicious application may be able to elevate privileges
Description: A type confusion issue was addressed with improved
memory handling....

APPLE-SA-2018-12-05-1 iOS 12.1.1

7 December, 2018 - 13:33

Posted by Apple Product Security via Fulldisclosure on Dec 07

APPLE-SA-2018-12-05-1 iOS 12.1.1

iOS 12.1.1 is now available and addresses the following:

Airport
Available for: iPhone 5s and later, iPad Air and later, and iPod
touch 6th generation
Impact: A malicious application may be able to elevate privileges
Description: A type confusion issue was addressed with improved
memory handling.
CVE-2018-4303: Mohamed Ghannam (@_simo36)

Disk Images
Available for: iPhone 5s and later, iPad Air and later, and...

Cross-Site Scripting in Adiscon LogAnalyzer (CVE-2018-19877)

7 December, 2018 - 13:30

Posted by Gustavo Sorondo on Dec 07

Title: Cross-Site Scripting in Adiscon LogAnalyzer (CVE-2018-19877)
Credit: Gustavo Sorondo / http://www.cintainfinita.com
Vendor/Product: Adiscon LogAnalyzer (https://loganalyzer.adiscon.com/
https://github.com/rsyslog/loganalyzer)
Vulnerability: Cross-Site Scripting (XSS)
Vulnerable version: 4.1.6 and earlier
Fixed in: 4.1.7
CVE: CVE-2018-19877

## Vulnerability Details

Adiscon LogAnalyzer before 4.1.7 is affected by Cross-Site Scripting...

SEC Consult SA-20181205-0 :: Inadequate cryptography implementation in Kerio Control VPN protocol

5 December, 2018 - 08:31

Posted by SEC Consult Vulnerability Lab on Dec 05

SEC Consult Vulnerability Lab Security Advisory < 20181205-0 >
=======================================================================
title: Inadequate cryptography implementation
product: Kerio Control VPN protocol
vulnerable version: <=9.2.7
fixed version: 9.2.8
CVE number: -
impact: High
homepage: http://www.kerio.com/products/kerio-control
found: 2018-10...

Multiple Cross-site Scripting and Blind SQL Injection Vulnerabilities in Plikli 4.0.0

4 December, 2018 - 12:02

Posted by Daniel Bishtawi on Dec 04

Hello,

We are glad to inform you about the vulnerabilities we reported in Plikli
4.0.0.

Cross-site Scripting details:

Advisory by Netsparker
Name: Cross-site Scripting Vulnerabilities in Plikli CMS
Affected Software: Plikli
Affected Versions: 4.0.0
Homepage: https://www.plikli.com/
Vulnerability: Cross-site Scripting
Severity: High
Status: Fixed
CVE-ID: CVE-2018-19414
Netsparker Advisory Reference: NS-18-030

For more information and the...

Multiple Cross-site Scripting Vulnerabilities in OSclass 3.7.4

4 December, 2018 - 12:02

Posted by Daniel Bishtawi on Dec 04

Hello,

We are glad to inform you about the vulnerabilities we reported in OSclass
3.7.4.

Here are the details:

Advisory by Netsparker
Name: Multiple Cross-site Scripting Vulnerabilities in OSclass 3.7.4
Affected Software: OSclass
Affected Versions: 3.7.4
Homepage: https://osclass.org/
Vulnerability: Reflected Cross-site Scripting, Stored Cross-site Scripting
Severity: High
Status: Fixed
CVE-ID: - 2018-14481
CVSS Score (3.0):
Reflected XSS...

SQL Injection and Cross-site Scripting Vulnerabilities in Chamilo 1.11.6

4 December, 2018 - 12:02

Posted by Daniel Bishtawi on Dec 04

Hello,

We are glad to inform you about the vulnerabilities we reported in Chamilo
1.11.6.

Cross-site Scripting details:

Advisory by Netsparker
Name: Multiple Cross-site Scripting Vulnerabilities in Chamilo 1.11.6
Affected Software: Chamilo
Affected Versions: 1.11.6
Homepage: https://chamilo.org/en/
Vulnerability: Cross-site Scripting
Severity: High
Status: Fixed
CVSS Score (3.0): 6.3
Netsparker Advisory Reference: NS-18-027

For more...

Reflected Cross-site Scripting Vulnerability in Typesetter 5.1

4 December, 2018 - 12:02

Posted by Daniel Bishtawi on Dec 04

Hello,

We are glad to inform you about the vulnerabilities we reported in
Typesetter 5.1.

Here are the details:

Advisory by Netsparker
Name: Reflected Cross-site Scripting Vulnerability in Typesetter
Affected Software: Typesetter
Affected Versions: 5.1
Homepage: https://www.typesettercms.com
Vulnerability: Cross-site Scripting
Severity: High
Status: Fixed
CVSS Score (3.0): AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Netsparker Advisory Reference:...

Reflected Cross-site Scripting Vulnerability in CubeCart 6.2.2

4 December, 2018 - 12:02

Posted by Daniel Bishtawi on Dec 04

Hello,

We are glad to inform you about the vulnerability we reported in CubeCart
6.2.2.

Here are the details:

Advisory by Netsparker
Name: Reflected Cross-site Scripting Vulnerability in CubeCart
Affected Software: CubeCart
Affected Versions: 6.2.2
Homepage: https://www.cubecart.com/
Vulnerability: Reflected Cross-site Scripting
Severity: High
Status: Fixed
CVSS Score (3.0): 5.5 (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)
Netsparker...