Security News

Vuln: Oracle Java SE CVE-2019-2449 Remote Security Vulnerability

Security Focus Vulnerabilities - 13 March, 2019 - 23:00
Oracle Java SE CVE-2019-2449 Remote Security Vulnerability

Vuln: Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability

Security Focus Vulnerabilities - 13 March, 2019 - 23:00
Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability

IPv6 Security for IPv4 Engineers

Bug Traq - 13 March, 2019 - 22:32

Posted by Fernando Gont on Mar 13

Folks,

It is often argued that IPv4 practices should be forgotten when
deploying IPv6, as after all IPv6 is a different protocol! But we think
years of IPv4 operational experience should be leveraged as much as
possible.

So we are publishing IPv6 Security for IPv4 Engineers as a roadmap to
IPv6 security that is specifically aimed at IPv4 engineers and operators.

Rather than describing IPv6 in an isolated manner, it aims to re-use as
much of...

Cisco Common Service Platform Collector - Hardcoded Credentials (CVE-2019-1723)

Bug Traq - 13 March, 2019 - 22:29

Posted by David Coomber on Mar 13

Cisco Common Service Platform Collector - Hardcoded Credentials (CVE-2019-1723)

[SECURITY] [DSA 4407-1] xmltooling security update

Bug Traq - 13 March, 2019 - 03:15

Posted by Moritz Muehlenhoff on Mar 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4407-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
March 12, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : xmltooling
CVE ID : CVE-2019-9628

Ross Geerlings...

[SECURITY] [DSA 4406-1] waagent security update

Bug Traq - 13 March, 2019 - 03:11

Posted by Moritz Muehlenhoff on Mar 13

-------------------------------------------------------------------------
Debian Security Advisory DSA-4406-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
March 12, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : waagent
CVE ID : CVE-2019-0804

Francis McBratney...

Microsoft Windows .Reg File Dialog Box Message Spoofing 0day

Bug Traq - 12 March, 2019 - 15:45

Posted by apparitionsec on Mar 12

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-.REG-FILE-DIALOG-BOX-MESSAGE-SPOOFING.txt
[+] ISR: ApparitionSec

[Vendor]
www.microsoft.com

[Product]
A file with the .reg file extension is a Registration file used by the Windows registry. These files can contain hives,
keys, and values.
.reg files can be created from...

[**UPDATED] Microsoft Windows .Reg File Dialog Box Message Spoofing 0day

Bug Traq - 12 March, 2019 - 15:41

Posted by apparitionsec on Mar 12

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-.REG-FILE-DIALOG-BOX-MESSAGE-SPOOFING.txt
[+] ISR: ApparitionSec

[Vendor]
www.microsoft.com

[Product]
A file with the .reg file extension is a Registration file used by the Windows registry. These files can contain hives,
keys, and values.
.reg files can be created from...

FlexPaper <= 2.3.6 Remote Command Execution

Full Disclosure - 12 March, 2019 - 12:10

Posted by redazione on Mar 12

Description
===========
FlexPaper (https://www.flowpaper.com) is an open source project, released under GPL license, quite widespread over the
internet. It provides document viewing functionalities to web clients, mobile and tablet devices. At least until 2014
the component has been actively used by WikiLeaks, when it was discovered to be affected by a XSS vulnerability
subsequently patched.

Around one year ago Red Timmy Sec discovered a...

CVE-2019-9649 CoreFTP FTP / SFTP Server v2 - Build 674 MDTM Directory Traversal

Full Disclosure - 12 March, 2019 - 12:09

Posted by Kevin R on Mar 12

CVE-2019-9649

CoreFTP FTP / SFTP Server v2 - Build 674

MDTM Directory Traversal

Discovered By: Kevin Randall

Summary: By utilizing a directory traversal along with the FTP MDTM
command, an attacker can browse outside the root directory to determine if
a file exists based on return file size along with the date the file was
last modified by using a ..\..\ technique

Tools used:

Parrot OS VM

Windows 7 VM

FTP / SFTP Server v2 - Build 674...

CVE-2019-9648 CoreFTP Server FTP / SFTP Server v2 - Build 674 SIZE Directory Traversal

Full Disclosure - 12 March, 2019 - 12:09

Posted by Kevin R on Mar 12

CVE-2019-9648

CoreFTP Server FTP / SFTP Server v2 - Build 674 SIZE Directory Traversal

Discovered By: Kevin Randall

Summary: By utilizing a directory traversal along with the FTP SIZE
command, an attacker can browse outside the root directory to determine if
a file exists based on return file size by using a ..\..\ technique

Tools used:

Parrot OS VM

Windows 7 VM

FTP / SFTP Server v2 - Build 674

Netcat

Proof of Concept (PoC):

File 1:...

Re: Contact Form Email 7.10.41 - Reflected XSS & CSRF (WordPress Plugin)

Full Disclosure - 12 March, 2019 - 12:09

Posted by Henri Salo on Mar 12

MITRE assigned CVE-2019-9646 for this vulnerability.

Microsoft Windows .Reg File / Dialog Box Message Spoofing Vulnerability

Full Disclosure - 12 March, 2019 - 12:08

Posted by hyp3rlinx on Mar 12

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-.REG-FILE-DIALOG-BOX-MESSAGE-SPOOFING.txt
[+] ISR: ApparitionSec

[Vendor]
www.microsoft.com

[Product]
A file with the .reg file extension is a Registration file used by the
Windows registry. These files can contain hives, keys, and values.
.reg files can be created from scratch in a text editor or...

[SECURITY] [DSA 4405-1] openjpeg2 security update

Bug Traq - 11 March, 2019 - 02:56

Posted by Luciano Bello on Mar 11

-------------------------------------------------------------------------
Debian Security Advisory DSA-4405-1 security () debian org
https://www.debian.org/security/ Luciano Bello
March 10, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openjpeg2
CVE ID : CVE-2017-17480 CVE-2018-5785...

FlexPaper <= 2.3.6 Remote Command Execution

Bug Traq - 11 March, 2019 - 02:53

Posted by Red Timmy Sec - on Mar 11

Description
===========
FlexPaper (https://www.flowpaper.com) is an open source project, released under GPL license, quite widespread over the
internet. It provides document viewing functionalities to web clients, mobile and tablet devices. At least until 2014
the component has been actively used by WikiLeaks, when it was discovered to be affected by a XSS vulnerability
subsequently patched.

Around one year ago Red Timmy Sec discovered a...

[SECURITY] [DSA 4404-1] chromium security update

Bug Traq - 11 March, 2019 - 02:49

Posted by Michael Gilbert on Mar 11

-------------------------------------------------------------------------
Debian Security Advisory DSA-4404-1 security () debian org
https://www.debian.org/security/ Michael Gilbert
March 09, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chromium
CVE ID : CVE-2019-5786

Clement Lecigne...

[SECURITY] [DSA 4403-1] php7.0 security update

Bug Traq - 11 March, 2019 - 02:47

Posted by Moritz Muehlenhoff on Mar 11

-------------------------------------------------------------------------
Debian Security Advisory DSA-4403-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
March 08, 2019 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : php7.0
CVE ID : not yet available

Multiple...

[slackware-security] ntp (SSA:2019-067-01)

Bug Traq - 11 March, 2019 - 02:43

Posted by Slackware Security Team on Mar 11

[slackware-security] ntp (SSA:2019-067-01)

New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/ntp-4.2.8p13-i586-1_slack14.2.txz: Upgraded.
This release fixes a bug that allows an attacker with access to an explicitly
trusted source to send a crafted malicious mode 6 (ntpq) packet that can...

DSA-2019-025: RSA Archer GRC Platform Multiple Vulnerabilities

Full Disclosure - 9 March, 2019 - 13:04

Posted by secure on Mar 09

DSA-2019-025: RSA Archer GRC Platform Multiple Vulnerabilities

Dell EMC Identifier: DSA-2019-025

CVE Identifier: CVE-2019-3715, CVE-2019-3716

Severity Rating: See below for scores of individual CVEs

Affected Products:

RSA Archer versions prior to 6.5 P1 (CVE-2019-3715)
RSA Archer versions prior to 6.5 P2 (CVE-2019-3716)

Summary:
RSA Archer has fixes available for multiple security vulnerabilities that could potentially be exploited by...

Re: Blog2Social 5.0.2 - Reflected XSS (WordPress Plugin)

Full Disclosure - 9 March, 2019 - 13:03

Posted by Henri Salo on Mar 09

MITRE assigned CVE-2019-9576 for this vulnerability.
Syndicate content