Security News

Plantronics HUB <= 3.21 EoP and DoS

Full Disclosure - 19 April, 2021 - 21:19

Posted by Red Timmy Security on Apr 19

CVSS 3.0 score:
7.8 (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

Description of the Vulnerable Product
Poly is a company with an annual revenue of 1,2 USD billion per year.
They are behind the Plantronics brand producing audio devices for the
segments business and consumer. Their software, Plantronics HUB, allows
end users to customize the settings and view the status of the audio
device plugged in the PC.

Product Homepage:...


Daily Dave - 11 April, 2021 - 09:26

Posted by Dave Aitel via Dailydave on Apr 11

A while back I was chatting with someone at INFILTRATE, over fried
alligator and more alcohol than I probably should have imbibed, and he
said, "We're going to make fuzzing obsolete, because we have more CPUs on
the problem than anyone can reasonably duplicate, and we're going to
exhaust the space".

And it's PLAUSIBLE in a way. I've watched a few of the live streams that
Brandon Falk does, and you can see how like,...

Re: [SECURITY] [DSA 4628-1] php7.0 security update

Bug Traq - 16 January, 2021 - 20:37

Posted by Timesportsall on Jan 16

Debian Security Advisory DSA-4628-1 security (at) debian (dot) org [email concealed] Moritz Muehlenhoff
February 18, 2020

Package : php7.0
CVE ID : CVE-2019-11045 CVE-2019-11046 CVE-2019-11047
CVE-2019-11050 CVE-2020-7059...

Re: BugTraq Shutdown

Bug Traq - 16 January, 2021 - 20:34

Posted by tommypickle on Jan 16

All old school hackers from UPT remember and want to show respect. Thanks for everything.

On Second Thought...

Bug Traq - 16 January, 2021 - 20:30

Posted by alias on Jan 16

Bugtraq has been a valuable institution within the Cyber Security community for
almost 30 years. Many of our own people entered the industry by subscribing to it
and learning from it. So, based on the feedback we’ve received both from the
community-at-large and internally, we’ve decided to keep the Bugtraq list running.
We’ll be working in the coming weeks to ensure that it can remain a valuable asset
to the community for years to...

BugTraq Shutdown

Bug Traq - 15 January, 2021 - 14:13

Posted by alias on Jan 15

2020 was quite the year, one that saw many changes. As we begin 2021, we wanted
to send one last note to our friends and supporters at the SecurityFocus BugTraq
mailing list. As many of you know, assets of Symantec were acquired by Broadcom
in late 2019, and some of those assets were then acquired by Accenture in 2020
Syndicate content