bugtraq  

Messages by Date

• 2019/07/01 [SECURITY] [DSA 4475-1] openssl security update Moritz Muehlenhoff
• 2019/07/01 [SECURITY] [DSA 4474-1] firefox-esr security update Moritz Muehlenhoff
• 2019/07/01 [RT-SA-2019-012] Information Disclosure in REDDOXX Appliance RedTeam Pentesting GmbH
• 2019/07/01 [SYSS-2019-016] SquirrelMail script filter bypass/XSS Moritz Bechler
• 2019/06/30 [slackware-security] irssi (SSA:2019-180-01) Slackware Security Team
• 2019/06/30 [SECURITY] [DSA 4473-1] rdesktop security update Salvatore Bonaccorso
• 2019/06/28 [SECURITY] [DSA 4472-1] expat security update Salvatore Bonaccorso
• 2019/06/26 [SYSS-2019-006] Adobe Coldfusion (Windows) - Remote Code Execution through JNBridge listener Moritz Bechler
• 2019/06/25 [SECURITY] [DSA 4471-1] thunderbird security update Moritz Muehlenhoff
• 2019/06/24 [SECURITY] [DSA 4470-1] pdns security update Moritz Muehlenhoff
• 2019/06/24 [SECURITY] [DSA 4469-1] libvirt security update Salvatore Bonaccorso
• 2019/06/24 [SECURITY] [DSA 4467-2] vim regression update Moritz Muehlenhoff
• 2019/06/24 [slackware-security] mozilla-firefox (SSA:2019-172-01) Slackware Security Team
• 2019/06/24 [slackware-security] mozilla-thunderbird (SSA:2019-172-02) Slackware Security Team
• 2019/06/24 [SECURITY] [DSA 4468-1] php-horde-form security update Salvatore Bonaccorso
• 2019/06/24 APPLE-SA-2019-6-20-1 AirPort Base Station Firmware Update 7.8.1 Apple Product Security
• 2019/06/24 [slackware-security] bind (SSA:2019-171-01) Slackware Security Team
• 2019/06/24 [SECURITY] [DSA 4447-2] intel-microcode security update Moritz Muehlenhoff
• 2019/06/24 FreeBSD Security Advisory FreeBSD-SA-19:08.rack FreeBSD Security Advisories
• 2019/06/18 [SECURITY] [DSA 4465-1] linux security update Salvatore Bonaccorso
• 2019/06/17 [SECURITY] [DSA 4464-1] thunderbird security update Moritz Muehlenhoff
• 2019/06/17 Microsoft Word (2016) Deceptive File Reference ZDI-CAN-7949 apparitionsec
• 2019/06/17 [SECURITY] [DSA 4463-1] znc security update Salvatore Bonaccorso
• 2019/06/17 [SE-2019-01] Java Card vulnerabilities (post shutdown release) Adam Gowdiak
• 2019/06/13 X41 D-Sec GmbH Security Advisory X41-2019-004: Type confusion in Thunderbird X41 D-Sec GmbH Advisories
• 2019/06/13 [slackware-security] mozilla-thunderbird (SSA:2019-164-01) Slackware Security Team
• 2019/06/13 X41 D-Sec GmbH Security Advisory X41-2019-003: Stack-based buffer overflow in Thunderbird X41 D-Sec GmbH Advisories
• 2019/06/13 X41 D-Sec GmbH Security Advisory X41-2019-002: Heap-based buffer overflow in Thunderbird X41 D-Sec GmbH Advisories
• 2019/06/13 X41 D-Sec GmbH Security Advisory X41-2019-001: Heap-based buffer overflow in Thunderbird X41 D-Sec GmbH Advisories
• 2019/06/13 [SECURITY] [DSA 4462-1] dbus security update Salvatore Bonaccorso
• 2019/06/13 X41 D-Sec GmbH Security Advisory X41-2019-001: Heap-based buffer overflow in Thunderbird X41 D-Sec GmbH Advisories
• 2019/06/13 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series SEC Consult Vulnerability Lab
• 2019/06/12 [SECURITY] [DSA 4461-1] zookeeper security update Moritz Muehlenhoff
• 2019/06/12 [SECURITY] [DSA 4460-1] mediawiki security update Moritz Muehlenhoff
• 2019/06/12 [SECURITY] [DSA 4459-1] vlc security update Moritz Muehlenhoff
• 2019/06/10 CVE-2019-11517: CSRF in Wampserver 3.1.4-3.1.8 Imre Rad
• 2019/06/09 [SECURITY] [DSA 4458-1] cyrus-imapd security update Salvatore Bonaccorso
• 2019/06/09 Newly releases IoT security issues stevesim84
• 2019/06/09 [SECURITY] [DSA 4457-1] evolution security update Sebastien Delafond
• 2019/06/06 [SECURITY] [DSA 4454-2] qemu regression update Salvatore Bonaccorso
• 2019/06/05 [SECURITY] [DSA 4456-1] exim4 security update Salvatore Bonaccorso
• 2019/06/04 [SYSS-2019-015]: Logitech R700 Laser Presentation Remote - Keystroke Injection Vulnerability matthias . deeg
• 2019/06/04 [SYSS-2019-008]: Inateck 2.4 GHz Wearable Wireless Presenter WP2002 - Keystroke Injection Vulnerability matthias . deeg
• 2019/06/04 [SYSS-2019-007]: Inateck 2.4 GHz Wireless Presenter WP1001 - Keystroke Injection Vulnerability matthias . deeg
• 2019/06/03 [SECURITY] [DSA 4455-1] heimdal security update Salvatore Bonaccorso
• 2019/06/03 Rapid7’s Windows InsightIDR Agent: Local Privilege Escalation Florian Bogner
• 2019/05/31 Unauthorized Access Vulnerability in ZyXEL P-660HN-T1 V2 (2.00(AAKK.3)) Onur Onur
• 2019/05/31 Unauthorized Access Vulnerability in ZyXEL P-660HN-T1 V2 (2.00(AAKK.3)) Onur Onur
• 2019/05/31 APPLE-SA-2019-5-30-1 AirPort Base Station Firmware Update 7.9.1 Apple Product Security
• 2019/05/31 [SECURITY] [DSA 4454-1] qemu security update Moritz Muehlenhoff
• 2019/05/30 [SECURITY] [DSA 4453-1] openjdk-8 security update Moritz Muehlenhoff
• 2019/05/29 [SYSS-2019-014]: Siemens LOGO! 8 - Storing Passwords in a Recoverable Format (CWE-257) matthias . deeg
• 2019/05/29 [SYSS-2019-013]: Siemens LOGO! 8 - Missing Authentication for Critical Function (CWE-306) matthias . deeg
• 2019/05/29 [SYSS-2019-012]: Siemens LOGO! 8 - Use of Hard-coded Cryptographic Key (CWE-321) matthias . deeg
• 2019/05/28 APPLE-SA-2019-5-28-1 iTunes for Windows 12.9.5 Apple Product Security
• 2019/05/28 APPLE-SA-2019-5-28-2 iCloud for Windows 7.12 Apple Product Security
• 2019/05/27 Crowd Security Advisory - 2019-05-22 Atlassian
• 2019/05/27 [SECURITY] [DSA 4452-1] jackson-databind security update Moritz Muehlenhoff
• 2019/05/27 [SECURITY] [DSA 4451-1] thunderbird security update Moritz Muehlenhoff
• 2019/05/27 CA20190523-01: Security Notice for CA Risk Authentication and CA Strong Authentication Kevin Kotas
• 2019/05/27 MacOS X GateKeeper Bypass Filippo Cavallarin
• 2019/05/27 [SECURITY] [DSA 4450-1] wpa security update Yves-Alexis Perez
• 2019/05/23 [CVE-2019-11604] Quest KACE Systems Management Appliance <= 9.0 kbot_service_notsoap.php METHOD Reflected Cross-Site Scripting RCE Security
• 2019/05/23 Bitbucket Server security advisory 2019-05-22 Anton Black
• 2019/05/23 [slackware-security] curl (SSA:2019-142-01) Slackware Security Team
• 2019/05/23 [SECURITY] [DSA 4449-1] ffmpeg security update Moritz Muehlenhoff
• 2019/05/23 [SECURITY] [DSA 4448-1] firefox-esr security update Moritz Muehlenhoff
• 2019/05/23 Anviz M3 RFID Access Control security issues Marco
• 2019/05/22 [SYSS-2019-002] Blue Prism Robotic Process Automation (RPA) - Privilege Escalation benjamin . hess
• 2019/05/22 [slackware-security] mozilla-firefox (SSA:2019-141-01) Slackware Security Team
• 2019/05/21 [REVIVE-SA-2019-002] Revive Adserver Vulnerability Matteo Beccati
• 2019/05/21 CSRF in Darktrace Enterprise Immune System <=3.0.10 Gerwout Van der Veen
• 2019/05/20 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0003 Michael Catanzaro
• 2019/05/20 Advisory: security controls configured in php.ini could be bypassed on Linux Imre Rad
• 2019/05/19 Emerson Network Power Cross Site Scripting(XSS) Vulnerability Kubilay Onur Gungor
• 2019/05/19 local privilege escalation via CDE dtprintinfo Marco Ivaldi
• 2019/05/17 [RT-SA-2019-002] Directory Traversal in Cisco Expressway Gateway RedTeam Pentesting GmbH
• 2019/05/16 [slackware-security] rdesktop (SSA:2019-135-01) Slackware Security Team
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:07.mds [REVISED] FreeBSD Security Advisories
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:07.mds FreeBSD Security Advisories
• 2019/05/15 SEC Consult SA-20190515-0 :: Authorization Bypass in RSA NetWitness (@sec_consult) SEC Consult Vulnerability Lab
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:07.mds FreeBSD Security Advisories
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:05.pf FreeBSD Security Advisories
• 2019/05/15 [SECURITY] [DSA 4447-1] intel-microcode security update Moritz Muehlenhoff
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:06.pf FreeBSD Security Advisories
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:03.wpa FreeBSD Security Advisories
• 2019/05/15 FreeBSD Security Advisory FreeBSD-SA-19:04.ntp FreeBSD Security Advisories
• 2019/05/15 [SECURITY] [DSA 4446-1] lemonldap-ng security update Moritz Muehlenhoff
• 2019/05/15 [SECURITY] [DSA 4444-1] linux security update Salvatore Bonaccorso
• 2019/05/15 [SECURITY] [DSA 4445-1] drupal7 security update Moritz Muehlenhoff
• 2019/05/14 [CVE-2019-8978] Improper Authentication (CWE-287) in Ellucian Banner Web Tailor and Banner Enterprise Identity Services joshua
• 2019/05/14 [SECURITY] [DSA 4442-2] cups-filters regression update Salvatore Bonaccorso
• 2019/05/14 [SECURITY] [DSA 4443-1] samba security update Salvatore Bonaccorso
• 2019/05/14 [CVE-2019-8978] Improper Authentication (CWE-287) in Ellucian Banner Web Tailor and Banner Enterprise Identity Services Joshua Mulliken
• 2019/05/14 APPLE-SA-2019-5-13-5 Safari 12.1.1 Apple Product Security
• 2019/05/14 APPLE-SA-2019-5-13-6 Apple TV Software 7.3 Apple Product Security
• 2019/05/14 APPLE-SA-2019-5-13-4 watchOS 5.2.1 Apple Product Security
• 2019/05/14 APPLE-SA-2019-5-13-3 tvOS 12.3 Apple Product Security
• 2019/05/14 APPLE-SA-2019-5-13-2 macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra Apple Product Security
• 2019/05/14 APPLE-SA-2019-5-13-1 iOS 12.3 Apple Product Security
• 2019/05/13 Re: System Down: A systemd-journald exploit Qualys Security Advisory
• 2019/05/13 SEC Consult SA-20190513-0 :: Cleartext message spoofing in supplementary Go Cryptography Libraries (@sec_consult) SEC Consult Vulnerability Lab
• 2019/05/12 [SECURITY] [DSA 4442-1] ghostscript security update Salvatore Bonaccorso
• 2019/05/10 SEC Consult SA-20190510-0 :: Unauthenticated SQL Injection vulnerability in OpenProject SEC Consult Vulnerability Lab
• 2019/05/10 [SECURITY] [DSA 4441-1] symfony security update Sebastien Delafond
• 2019/05/10 [SECURITY] [DSA 4440-1] bind9 security update Moritz Muehlenhoff
• 2019/05/10 [SECURITY] [DSA 4439-1] postgresql-9.6 security update Moritz Muehlenhoff
• 2019/05/09 dotCMS v5.1.1 Vulnerabilities John Martinelli
• 2019/05/09 SEC Consult SA-20190509-0 :: Multiple Vulnerabilities in Gemalto (Thales Group) DS3 Authentication Server / Ezio Server SEC Consult Vulnerability Lab
• 2019/05/08 [SECURITY] [DSA 4438-1] atftp security update Salvatore Bonaccorso
• 2019/05/03 [Newsletter/Marketing] [ISN] Spot the not-Fed: A day at AvengerCon, the Army's answer to hacker conferences InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Executive Order on America's Cybersecurity Workforce InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Sinister secret backdoor found in networking gear perfect for government espionage: The Chinese are -- oh no, wait, it's Cisco again InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Why local governments are a hot target for cyberattacks InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Hundreds of Orpak gas station systems can be easily hacked thanks to hardcoded passwords InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] After account hacks, Twitch streamers take security into their own hands InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] DHS Orders Agencies to Patch Critical Vulnerabilities Within 15 Days InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Subscribing and Unsubscribing from InfoSec News InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Wall Street spending big to protect against hacking: report InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Hackers Steal and Ransom Financial Data Related to Some of the World's Largest Companies InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Going Toe-to-Toe With Ukraine's Separatist Hackers InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] MITRE asks vendors to do more to detect stealthy hacks InfoSec News
• 2019/05/03 [Newsletter/Marketing] [ISN] Attackers Used Red-Team, Pen-Testing Tools to Hack Wipro InfoSec News
• 2019/05/03 2019 Public Bug bounty launched Reports
• 2019/05/03 [SYSS-2019-005]: ABUS Secvest - Proximity Key - Cryptographic Issues (CWE-310) matthias . deeg
• 2019/05/01 Windows PowerShell ISE / Filename Parsing Flaw Remote Code Execution 0day apparitionsec
• 2019/04/30 [SECURITY] CVE-2019-0214: Apache Archiva arbitrary file write and delete on the server Martin
• 2019/04/30 [SECURITY] CVE-2019-0213: Apache Archiva Stored XSS Martin
• 2019/04/30 [Newsletter/Marketing] [ISN] Microsoft Patch Alert: April patches have sharp edges, with several missing, others reappearing InfoSec News
• 2019/04/30 [Newsletter/Marketing] [ISN] Augusta cyber-attacker sought more than $100,000 in ransom InfoSec News
• 2019/04/30 [Newsletter/Marketing] [ISN] Ransomware: The key lesson Maersk learned from battling the NotPetya attack InfoSec News
• 2019/04/30 [Newsletter/Marketing] [ISN] Man who allegedly leaked CIA hacking tools says he's been tortured and is owed $50 billion InfoSec News
• 2019/04/30 [Newsletter/Marketing] [ISN] Russian Hackers Were 'In a Position' to Alter Florida Voter Rolls, Rubio Confirms InfoSec News
• 2019/04/30 [Newsletter/Marketing] [ISN] 'A Goldmine for Identity Thieves': Unprotected Database Puts 65% of American Households At Risk InfoSec News
• 2019/04/30 [Newsletter/Marketing] [ISN] Docker Hacked: 190,000 Accounts Breached InfoSec News
• 2019/04/29 [SECURITY] [DSA 4437-1] gst-plugins-base1.0 security update Moritz Muehlenhoff
• 2019/04/29 [REVIVE-SA-2019-001] Revive Adserver - Multiple vulnerabilities Matteo Beccati
• 2019/04/29 [SECURITY] [DSA 4435-1] libpng1.6 security update Salvatore Bonaccorso
• 2019/04/29 [slackware-security] bind (SSA:2019-116-01) Slackware Security Team
• 2019/04/29 [SECURITY] [DSA 4436-1] imagemagick security update Moritz Muehlenhoff
• 2019/04/24 Multiple vulnerabilities in Sony Smart TVs xen1thLabs
• 2019/04/24 Confluence Security Advisory - 2019-04-17 Atlassian
• 2019/04/21 [SECURITY] [DSA 4434-1] drupal7 security update Salvatore Bonaccorso
• 2019/04/21 WordPress Plugin Contact Form Builder [CSRF → LFI] Panagiotis Vagenas
• 2019/04/17 [slackware-security] libpng (SSA:2019-107-01) Slackware Security Team
• 2019/04/17 [SECURITY] [DSA 4433-1] ruby2.3 security update Moritz Muehlenhoff
• 2019/04/17 [SECURITY] [DSA 4432-1] ghostscript security update Salvatore Bonaccorso
• 2019/04/17 CVE-2018-2879 - anniversary Red Timmy Sec -
• 2019/04/15 [SE-2019-01] Gemalto SIM card applet loading vulnerability Security Explorations
• 2019/04/15 [SECURITY] [DSA 4431-1] libssh2 security update Salvatore Bonaccorso
• 2019/04/11 [**UPDATED] Microsoft Internet Explorer v11 / XML External Entity Injection 0day apparitionsec
• 2019/04/11 [SECURITY] [DSA 4430-1] wpa security update Yves-Alexis Perez
• 2019/04/11 Microsoft Internet Explorer v11 XML External Entity Injection 0day apparitionsec
• 2019/04/11 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002 Michael Catanzaro
• 2019/04/10 [SECURITY] [DSA 4429-1] spip security update Sebastien Delafond
• 2019/04/09 [SECURITY] [DSA 4428-1] systemd security update Salvatore Bonaccorso
• 2019/04/08 [SECURITY] [DSA 4427-1] samba security update Sebastien Delafond
• 2019/04/08 RE: [EXTERNAL] CALL FOR PAPERS - Hackers 2 Hackers Conference 16th edition Michael Artemio Go Rebultan
• 2019/04/07 [slackware-security] httpd (SSA:2019-096-01) Slackware Security Team
• 2019/04/07 [SECURITY] [DSA 4426-1] tryton-server security update Moritz Muehlenhoff
• 2019/04/07 [slackware-security] wget (SSA:2019-095-02) Slackware Security Team
• 2019/04/07 [slackware-security] openjpeg (SSA:2019-095-01) Slackware Security Team
• 2019/04/07 [SECURITY] [DSA 4425-1] wget security update Salvatore Bonaccorso
• 2019/04/05 WordPress plugin Contact Form by WD [CSRF → LFI] Panagiotis Vagenas
• 2019/04/05 WordPress Plugin Form Maker by WD [CSRF → LFI] Panagiotis Vagenas
• 2019/04/04 [SECURITY] [DSA 4424-1] pdns security update Sebastien Delafond
• 2019/04/04 Various vulnerabilities in Lupusec XT2 Plus home alarm system Dan Fabian
• 2019/04/03 [SECURITY] [DSA 4423-1] putty security update Moritz Muehlenhoff
• 2019/04/03 [SECURITY] [DSA 4422-1] apache2 security update Salvatore Bonaccorso
• 2019/04/02 [slackware-security] ghostscript (SSA:2019-092-01) Slackware Security Team
• 2019/04/02 [slackware-security] wget (SSA:2019-092-02) Slackware Security Team
• 2019/04/01 CVE-2019-7727 - JMX/RMI Nice ENGAGE <= 6.5 Remote Command Execution Red Timmy Sec -
• 2019/04/01 [SECURITY] [DSA 4421-1] chromium security update Michael Gilbert
• 2019/04/01 [SECURITY] [DSA 4420-1] thunderbird security update Moritz Muehlenhoff
• 2019/03/31 [SECURITY] [DSA 4419-1] twig security update Sebastien Delafond
• 2019/03/28 [SECURITY] [DSA 4418-1] dovecot security update Salvatore Bonaccorso
• 2019/03/28 [SAUTH-2019-0002] - Pydio 8 Multiple Vulnerabilities SecureAuth Advisories
• 2019/03/27 [slackware-security] gnutls (SSA:2019-086-01) Slackware Security Team
• 2019/03/27 APPLE-SA-2019-3-27-1 watchOS 5.2 Apple Product Security
• 2019/03/27 [RT-SA-2019-003] Cisco RV320 Unauthenticated Configuration Export RedTeam Pentesting GmbH
• 2019/03/27 [RT-SA-2019-005] Cisco RV320 Command Injection Retrieval RedTeam Pentesting GmbH
• 2019/03/27 [RT-SA-2019-004] Cisco RV320 Unauthenticated Diagnostic Data Retrieval RedTeam Pentesting GmbH
• 2019/03/26 [RT-SA-2019-007] Code Execution via Insecure Shell Function getopt_simple RedTeam Pentesting GmbH
• 2019/03/26 Recon 2019 Call For Papers - June 28 - 30, 2019 - Montreal, Canada cfp
• 2019/03/26 [slackware-security] mozilla-thunderbird (SSA:2019-084-01) Slackware Security Team
• 2019/03/26 APPLE-SA-2019-3-25-1 iOS 12.2 Apple Product Security
• 2019/03/26 APPLE-SA-2019-3-25-6 iCloud for Windows 7.11 Apple Product Security
• 2019/03/26 [article2pdf (Wordpress plug-in)] Multiple vulnerabilities (CVE-2019-1000031, CVE-2019-1010257) Christian Lerrahn
• 2019/03/26 APPLE-SA-2019-3-25-3 tvOS 12.2 Apple Product Security
• 2019/03/26 APPLE-SA-2019-3-25-5 iTunes 12.9.4 for Windows Apple Product Security
• 2019/03/26 APPLE-SA-2019-3-25-4 Safari 12.1 Apple Product Security
• 2019/03/26 APPLE-SA-2019-3-25-7 Xcode 10.2 Apple Product Security
• 2019/03/26 APPLE-SA-2019-3-25-2 macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra Apple Product Security
• 2019/03/26 Multiple vulnerabilities in DASAN H660RM GPON router firmware Krzysztof Burghardt
• 2019/03/25 Atlassian - Confluence Security Advisory - 2019-03-20 Atlassian
• 2019/03/25 [SYSS-2018-036]: ABUS Secvest Remote Control - Denial of Service - Uncontrolled Resource Consumption (CWE-400) matthias . deeg
• 2019/03/25 [SYSS-2018-035]: ABUS Secvest Remote Control - Missing Encryption of Sensitive Data (CWE-311) matthias . deeg
• 2019/03/25 [SYSS-2018-034]: ABUS Secvest - Rolling Code - Predictable from Observable State (CWE-341) matthias . deeg
• 2019/03/24 [SECURITY] [DSA 4417-1] firefox-esr security update Moritz Muehlenhoff
• 2019/03/24 [SECURITY] [DSA 4416-1] wireshark security update Salvatore Bonaccorso

• Earlier messages
• Later messages