Security News

Vuln: OpenSSL CVE-2016-6304 Denial of Service Vulnerability

Security Focus Vulnerabilities - 23 September, 2016 - 23:00
OpenSSL CVE-2016-6304 Denial of Service Vulnerability

Vuln: IBM Connections CVE-2016-2999 Information Disclosure Vulnerability

Security Focus Vulnerabilities - 23 September, 2016 - 23:00
IBM Connections CVE-2016-2999 Information Disclosure Vulnerability

Vuln: IBM WebSphere MQ CVE-2016-0379 Denial of Service Vulnerability

Security Focus Vulnerabilities - 23 September, 2016 - 23:00
IBM WebSphere MQ CVE-2016-0379 Denial of Service Vulnerability

Vuln: OpenSSL CVE-2016-6305 Denial of Service Vulnerability

Security Focus Vulnerabilities - 23 September, 2016 - 23:00
OpenSSL CVE-2016-6305 Denial of Service Vulnerability

Bugtraq: Fwd: BT Wifi Extenders - Cross Site Scripting leading to disclosure of PSK

Security Focus Vulnerabilities - 23 September, 2016 - 09:05
Fwd: BT Wifi Extenders - Cross Site Scripting leading to disclosure of PSK

ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability

Bug Traq - 23 September, 2016 - 08:35

Posted by EMC Product Security Response Center on Sep 23

ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability

EMC Identifier: EMC-2016-097

CVE Identifier: CVE-2016-0918

Severity Rating: CVSS v3 Base Score: 4.3 (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

Affected Products:
•RSA Identity Management and Governance versions prior to 6.8.1 P25
•RSA Identity Management and Governance versions prior to 6.9.1 P15
•RSA Via Lifecycle and Governance versions prior to...

3GP Player 4.7.0 - DLL Hijacking Vulnerability

Full Disclosure - 23 September, 2016 - 04:37

Posted by Vulnerability Lab on Sep 23

Document Title:
===============
3GP Player 4.7.0 - DLL Hijacking Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=1955

Release Date:
=============
2016-09-23

Vulnerability Laboratory ID (VL-ID):
====================================
1955

Common Vulnerability Scoring System:
====================================
5.6

Product & Service Introduction:
===============================...

DllHijackAuditor 3.5 - Stack Buffer Overflow Vulnerability

Full Disclosure - 23 September, 2016 - 04:35

Posted by Vulnerability Lab on Sep 23

Document Title:
===============
DllHijackAuditor 3.5 - Stack Buffer Overflow Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=1954

Release Date:
=============
2016-09-21

Vulnerability Laboratory ID (VL-ID):
====================================
1954

Common Vulnerability Scoring System:
====================================
6.3

Product & Service Introduction:...

Recon Europe 2017 Call For Papers - January 27 - 29, 2017 - Brussels, Belgium

Bug Traq - 23 September, 2016 - 02:47

Posted by cfpbrussels2017 on Sep 23

` . R E C O N * B R U S S E L S .
. . C F P ' .
' https://recon.cx
. 27 - 29 January 2017 . .
. ' Brussels, Belgium .
\ .
-6)) +
\ † ....

[SECURITY] [DSA 3674-1] firefox-esr security update

Bug Traq - 23 September, 2016 - 02:34

Posted by Moritz Muehlenhoff on Sep 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-3674-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
September 22, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2016-5250 CVE-2016-5257...

Bugtraq: IE11 is not following CORS specification for local files

Security Focus Vulnerabilities - 23 September, 2016 - 02:20
IE11 is not following CORS specification for local files

Bugtraq: [security bulletin] HPSBHF03646 rev.1 - HPE Comware 7 (CW7) Network Products running NTP, Multiple Remote Vulnerabilities

Security Focus Vulnerabilities - 23 September, 2016 - 02:20
[security bulletin] HPSBHF03646 rev.1 - HPE Comware 7 (CW7) Network Products running NTP, Multiple Remote Vulnerabilities

Vuln: MuPDF 'pdf-object.c' Use After Free Denial of Service Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
MuPDF 'pdf-object.c' Use After Free Denial of Service Vulnerability

Vuln: Cisco IOS and Cisco IOS XE Software CVE-2014-2146 Security Bypass Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
Cisco IOS and Cisco IOS XE Software CVE-2014-2146 Security Bypass Vulnerability

Vuln: ImageMagick 'coders/sun.c' Denial of Service Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
ImageMagick 'coders/sun.c' Denial of Service Vulnerability

Vuln: ImageMagick CVE-2015-8957 Remote Buffer Overflow Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
ImageMagick CVE-2015-8957 Remote Buffer Overflow Vulnerability

Vuln: Geeklog IVYWE CVE-2016-4875 Multiple Cross Site Scripting Vulnerabilities

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
Geeklog IVYWE CVE-2016-4875 Multiple Cross Site Scripting Vulnerabilities

Vuln: IBM Security Privileged Identity Manager CVE-2016-5970 Directory Traversal Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
IBM Security Privileged Identity Manager CVE-2016-5970 Directory Traversal Vulnerability

Vuln: Multiple IBM Products CVE-2016-5943 Security Bypass Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
Multiple IBM Products CVE-2016-5943 Security Bypass Vulnerability

Vuln: ImageMagick CVE-2016-7513 Denial of Service Vulnerability

Security Focus Vulnerabilities - 22 September, 2016 - 23:00
ImageMagick CVE-2016-7513 Denial of Service Vulnerability
Syndicate content