Security News

LPE and RCE in OpenSMTPD (CVE-2020-7247)

Bug Traq - 29 January, 2020 - 04:24

Posted by Qualys Security Advisory on Jan 29

Qualys Security Advisory

LPE and RCE in OpenSMTPD (CVE-2020-7247)

==============================================================================
Contents
==============================================================================

Summary
Analysis
Exploitation
Acknowledgments

==============================================================================
Summary
==============================================================================...

CVE - CVE-2020-7799 - FusionAuth command execution via Apache Freemarker Template

Bug Traq - 27 January, 2020 - 14:00

Posted by Gianluca Baldi on Jan 27

Dear bugtraq,

Please find attached an advisory for the following vulnerability, " FusionAuth command execution via Apache Freemarker
Template".
Description: An authenticated attacker with enough privileges to access the template editing functions (either site
templates or e-mail templates) in the FusionAuth dashboard can execute commands on the underlying operating system
using the Apache FreeMarker Expression language.

For...

[slackware-security] mozilla-thunderbird (SSA:2020-024-01)

Bug Traq - 27 January, 2020 - 04:03

Posted by Slackware Security Team on Jan 27

[slackware-security] mozilla-thunderbird (SSA:2020-024-01)

New mozilla-thunderbird packages are available for Slackware 14.2 and -current
to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/mozilla-thunderbird-68.4.2-i686-1_slack14.2.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...

WebKitGTK and WPE WebKit Security Advisory WSA-2020-0001

Bug Traq - 23 January, 2020 - 23:02

Posted by Carlos Alberto Lopez Perez on Jan 23

------------------------------------------------------------------------
WebKitGTK and WPE WebKit Security Advisory WSA-2020-0001
------------------------------------------------------------------------

Date reported : January 23, 2020
Advisory ID : WSA-2020-0001
WebKitGTK Advisory URL : https://webkitgtk.org/security/WSA-2020-0001.html
WPE WebKit Advisory URL :...

[SECURITY] [DSA 4609-1] python-apt security update

Bug Traq - 23 January, 2020 - 22:58

Posted by Moritz Muehlenhoff on Jan 23

-------------------------------------------------------------------------
Debian Security Advisory DSA-4609-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 23, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : python-apt
CVE ID : CVE-2019-15795 CVE-2019-15796...

SEC Consult SA-20200123-0 :: Cross-Site Request Forgery (CSRF) in Umbraco CMS

Bug Traq - 23 January, 2020 - 09:42

Posted by SEC Consult Vulnerability Lab on Jan 23

SEC Consult Vulnerability Lab Security Advisory < 20200123-0 >
=======================================================================
title: Cross-Site Request Forgery (CSRF)
product: Umbraco CMS
vulnerable version: version 8.2.2
fixed version: version 8.5
CVE number: CVE-2020-7210
impact: medium
homepage: https://umbraco.com/
found: October 2019...

SEC Consult SA-20200122-0 :: Reflected XSS in ZOHO ManageEngine ServiceDeskPlus

Bug Traq - 22 January, 2020 - 08:12

Posted by SEC Consult Vulnerability Lab on Jan 22

SEC Consult Vulnerability Lab Security Advisory < 20200122-0 >
=======================================================================
title: Reflected XSS
product: ZOHO ManageEngine ServiceDeskPlus
vulnerable version: <= 11.0 Build 11007
fixed version: 11.0 Build 11010
CVE number: CVE-2020-6843
impact: medium
homepage: https://www.manageengine.com/products/service-desk/...

[REVIVE-SA-2020-001] Revive Adserver Vulnerability

Bug Traq - 22 January, 2020 - 02:10

Posted by Matteo Beccati on Jan 21

========================================================================
Revive Adserver Security Advisory REVIVE-SA-2020-001
------------------------------------------------------------------------
https://www.revive-adserver.com/security/revive-sa-2020-001
------------------------------------------------------------------------
CVE-IDs: t.b.a.
Date: 2020-01-21
Risk Level: Low...

[SECURITY] [DSA 4608-1] tiff security update

Bug Traq - 22 January, 2020 - 02:06

Posted by Moritz Muehlenhoff on Jan 21

-------------------------------------------------------------------------
Debian Security Advisory DSA-4608-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 21, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : tiff
CVE ID : CVE-2019-14973 CVE-2019-17546...

[SECURITY] [DSA 4607-1] openconnect security update

Bug Traq - 21 January, 2020 - 02:49

Posted by Salvatore Bonaccorso on Jan 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-4607-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
January 20, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openconnect
CVE ID : CVE-2019-16239
Debian Bug...

Neowise CarbonFTP v1.4 Insecure Proprietary Password Encryption CVE-2020-6857

Bug Traq - 21 January, 2020 - 02:45

Posted by apparitionsec on Jan 20

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/NEOWISE-CARBONFTP-v1.4-INSECURE-PROPRIETARY-PASSWORD-ENCRYPTION.txt
[+] twitter.com/hyp3rlinx
[+] ISR: ApparitionSec

[Vendor]
www.neowise.com

[Product]
CarbonFTP v1.4

CarbonFTP is a file synchronization tool that enables you to synch local files with a remote FTP server and vice versa.
It provides a...

Trend Micro Security 2019 (Consumer) Multiple Products Security Bypass Protected Service Tampering CVE-2019-19697

Bug Traq - 21 January, 2020 - 02:42

Posted by apparitionsec on Jan 20

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-SECURITY-CONSUMER-SECURITY-BYPASS-PROTECTED-SERVICE-TAMPERING.txt
[+] ISR: ApparitionSec

[Vendor]
www.trendmicro.com

[Product]
Trend Micro Security 2019 (Consumer) Multiple Products

Trend Micro Security provides comprehensive protection for your devices.
This includes protection...

Trend Micro Security (Consumer) Multiple Products Persistent Arbitrary Code Execution CVE-2019-20357

Bug Traq - 21 January, 2020 - 02:38

Posted by apparitionsec on Jan 20

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-SECURITY-CONSUMER-PERSISTENT-ARBITRARY-CODE-EXECUTION.txt
[+] twitter.com/hyp3rlinx
[+] ISR: ApparitionSec

[Vendor]
www.trendmicro.com

[Product(s)]
Trend Micro Security (Consumer) Multiple Products

Trend Micro Security provides comprehensive protection for your devices.
This includes...

[SECURITY] [DSA 4606-1] chromium security update

Bug Traq - 20 January, 2020 - 09:26

Posted by Michael Gilbert on Jan 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-4606-1 security () debian org
https://www.debian.org/security/ Michael Gilbert
January 20, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : chromium
CVE ID : CVE-2019-13725 CVE-2019-13726...

[SECURITY] [DSA 4603-1] thunderbird security update

Bug Traq - 20 January, 2020 - 05:10

Posted by Moritz Muehlenhoff on Jan 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-4603-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 17, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2019-17016 CVE-2019-17017...

[SECURITY] [DSA 4604-1] cacti security update

Bug Traq - 20 January, 2020 - 05:06

Posted by Moritz Muehlenhoff on Jan 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-4604-1 security () debian org
https://www.debian.org/security/ Hugo Lefeuvre
January 19, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : cacti
CVE ID : CVE-2019-16723 CVE-2019-17357...

[SECURITY] [DSA 4605-1] openjdk-11 security update

Bug Traq - 20 January, 2020 - 05:02

Posted by Moritz Muehlenhoff on Jan 20

-------------------------------------------------------------------------
Debian Security Advisory DSA-4605-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 19, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : openjdk-11
CVE ID : CVE-2020-2583 CVE-2020-2590...

CVE-2020-2656 - Low impact information disclosure via Solaris xlock

Bug Traq - 17 January, 2020 - 04:15

Posted by Marco Ivaldi on Jan 17

Dear Bugtraq,

Please find attached an advisory for the following vulnerability, fixed in Oracle's Critical Patch Update (CPU) of
January 2020:

"A low impact information disclosure vulnerability in the setuid root xlock binary distributed with Solaris may allow
local users to read partial contents
of sensitive files. Due to the fact that target files must be in a very specific format, exploitation of this flaw to
escalate privileges...

CVE-2020-2696 - Local privilege escalation via CDE dtsession

Bug Traq - 17 January, 2020 - 04:12

Posted by Marco Ivaldi on Jan 17

Dear Bugtraq,

Please find attached an advisory for the following vulnerability, fixed in Oracle's Critical Patch Update (CPU) of
January 2020:

"A buffer overflow in the CheckMonitor() function in the Common Desktop Environment 2.3.1 and earlier and 1.6 and
earlier, as distributed with Oracle Solaris 10 1/13 (Update 11) and earlier, allows local users to gain root privileges
via a long palette name passed to dtsession in a malicious...

[SECURITY] [DSA 4602-1] xen security update

Bug Traq - 14 January, 2020 - 15:39

Posted by Moritz Muehlenhoff on Jan 14

-------------------------------------------------------------------------
Debian Security Advisory DSA-4602-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
January 13, 2020 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : xen
CVE ID : CVE-2019-17349 CVE-2019-17350...
Syndicate content