Security News

[CVE-2019-15150] CSRF in MediaWiki extension OAuth2 Client 0.3

Full Disclosure - 25 August, 2019 - 23:56

Posted by Justin Bull on Aug 25

[CVE-2019-15150] CSRF in MediaWiki extension OAuth2 Client 0.3

Happy Sunday everyone.

A security bulletin for you all.

Software:
--------
MediaWiki OAuth2 Client (https://github.com/Schine/MW-OAuth2Client)

Description:
----------
MediaWiki implementation of the PHP League's OAuth2 Client, to allow MediaWiki
to act as a client to any OAuth2 server.

Not Affeted:
------------
0.2 and earlier.

Affected Versions:
---------------
0.3

Fixed...

Realtek Managed Switch Controller RTL83xx

Full Disclosure - 25 August, 2019 - 23:56

Posted by bashis on Aug 25

[SOT]

[Subject]

Realtek Managed Switch Controller (RTL83xx) PoC (2019 bashis)
https://www.realtek.com/en/products/communications-network-ics/category/managed-switch-controller

[Brief description]

1. Boa/Hydra suffer of exploitable stack overflow with a 'one byte read-write loop' w/o boundary check. (all FW
version and vendors affected)
Note: The vulnerability are _not_ from Boa nor...

CoreFTP Server FTP / SFTP Server v2 - Build 674 MDTM Directory Traversal (Metasploit) Exploit

Full Disclosure - 25 August, 2019 - 23:56

Posted by Kevin R on Aug 25

# Exploit Title: CoreFTP Server FTP / SFTP Server v2 - Build 674 MDTM
Directory Traversal (Metasploit)
# Google Dork: N/A
# Date: 8/21/2019
# Exploit Author: Kevin Randall
# Vendor Homepage: https://www.coreftp.com
# Software Link: http://www.coreftp.com/server/index.html
# Version: Firmware: CoreFTP Server FTP / SFTP Server v2 - Build 674
# Tested on: Windows 7 and Windows XP
# CVE : CVE-2019-9649

class MetasploitModule < Msf::Auxiliary...

CoreFTP Server FTP / SFTP Server v2 - Build 674 SIZE Directory Traversal (Metasploit) Exploit

Full Disclosure - 25 August, 2019 - 23:56

Posted by Kevin R on Aug 25

# Exploit Title: CoreFTP Server FTP / SFTP Server v2 - Build 674 SIZE
Directory Traversal (Metasploit)
# Google Dork: N/A
# Date: 8/20/2019
# Exploit Author: Kevin Randall
# Vendor Homepage: https://www.coreftp.com
# Software Link: http://www.coreftp.com/server/index.html
# Version: Firmware: CoreFTP Server FTP / SFTP Server v2 - Build 674
# Tested on: Windows 7 and Windows XP
# CVE : CVE-2019-9648

class MetasploitModule < Msf::Auxiliary...

CVE-2019-10071: Timing Attack in HMAC Verification in Apache Tapestry

Full Disclosure - 25 August, 2019 - 23:48

Posted by David Tomaschik via Fulldisclosure on Aug 25

CVE-2019-10071: Timing Attack in HMAC Verification in Apache Tapestry

Affected versions:
- Apache Tapestry 5.3.6 through current releases.

Description:
Apache Tapestry uses HMACs to verify the integrity of objects stored on the
client side. This was added to address the Java deserialization
vulnerability
disclosed in CVE-2014-1972. In the fix for the previous vulnerability, the
HMACs were compared by string comparison, which is known to be...

[CFP] Bsides Lisbon 2019

Full Disclosure - 25 August, 2019 - 23:47

Posted by Claudio Andre on Aug 25

BSidesLisbon is back and we need your help to make it bigger and better
once more!!

The event will be held in Lisbon (really?) on November 28th and 29th at
Auditorio FMD-UL

To register go to: *https://cfp.bsideslisbon.org*
<https://cfp.bsideslisbon.org/>
Speaking slots

As in the previous year, we will have the following:

*Regular Talks:*

Presentation slots with a fixed duration of 45 minutes plus 10 minutes for
Q&A.

*Short Talks:*...

[SECURITY] [DSA 4505-1] nginx security update

Bug Traq - 22 August, 2019 - 14:59

Posted by Moritz Muehlenhoff on Aug 22

-------------------------------------------------------------------------
Debian Security Advisory DSA-4505-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
August 22, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : nginx
CVE ID : CVE-2019-9511 CVE-2019-9513...

FreeBSD Security Advisory FreeBSD-SA-19:23.midi [REVISED]

Bug Traq - 22 August, 2019 - 14:55

Posted by FreeBSD Security Advisories on Aug 22

=============================================================================
FreeBSD-SA-19:23.midi Security Advisory
The FreeBSD Project

Topic: kernel memory disclosure from /dev/midistat

Category: core
Module: sound
Announced: 2019-08-20
Credits: Peter Holm, Mark Johnston
Affects: All supported versions of...
Syndicate content