Messages by Thread
-
[SECURITY] [DSA 4281-1] tomcat8 security update
Sebastien Delafond
-
Signal IOS Remote Memory Exhaustion and Restart
nick . m . mckenna
-
[slackware-security] Slackware 14.2 kernel (SSA:2018-240-01)
Slackware Security Team
-
[HITB-Announce] Reminder: HITBSecConf2018 Dubai CFP
Hafez Kamal
-
[CVE-2018-15877] Plainview Activity Monitor RCE
Lydéric LEFEBVRE
-
[SYSS-2018-010] Dojo Toolkit - dojox.grid.DataGrid editing XSS
Moritz Bechler
-
Couchbase Server - Remote Code Execution
x ksi
-
Seagate Media Server multiple SQL injection vulnerabilities
Summer of Pwnage
-
[SECURITY] [DSA 4279-2] linux regression update
Salvatore Bonaccorso
-
[ANN] CVE-2018-11776 Apache Struts 2.3 to 2.3.34 and 2.5 to 2.5.16
Yasser Zamani
-
[SECURITY] [DSA 4280-1] openssh security update
Sebastien Delafond
-
Mutiny Monitoring Appliance < 6.1.0-5263 - Command Injection (CVE-2018-15529)
reggie . dodd30
-
[slackware-security] libX11 (SSA:2018-233-01)
Slackware Security Team
-
[SECURITY] [DSA 4279-1] linux security update
Salvatore Bonaccorso
-
[CVE-2018-15528] Reflected XSS in Java System Solutions SSO Plugin 4.0.13.1 for BMC MyIT
mamurch
-
[SECURITY] [DSA 4278-1] jetty9 security update
Moritz Muehlenhoff
-
[slackware-security] ntp (SSA:2018-229-01)
Slackware Security Team
-
[slackware-security] samba (SSA:2018-229-02)
Slackware Security Team
-
[SECURITY] [DSA 4277-1] mutt security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4276-1] php-horde-image security update
Sebastien Delafond
-
[SECURITY] [DSA 4275-1] keystone security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4274-1] xen security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4273-1] intel-microcode security update
Moritz Muehlenhoff
-
SEC Consult SA-20180813-0 :: SQL Injection, XSS & CSRF vulnerabilities in Pimcore
SEC Consult Vulnerability Lab
-
CSNC-2018-016 - ownCloud iOS Application - Cross-Site Scripting
Advisories
-
CSNC-2018-023 - Atmosphere Framework - Reflected Cross-Site Scripting (XSS)
Advisories
-
FreeBSD Security Advisory FreeBSD-SA-18:11.hostapd
FreeBSD Security Advisories
-
FreeBSD Security Advisory FreeBSD-SA-18:10.ip
FreeBSD Security Advisories
-
FreeBSD Security Advisory FreeBSD-SA-18:09.l1tf
FreeBSD Security Advisories
-
[slackware-security] openssl (SSA:2018-226-01)
Slackware Security Team
-
[SECURITY] [DSA 4272-1] linux security update
Salvatore Bonaccorso
-
Defense in depth -- the Microsoft way (part 57): all the latest MSVCRT installers allow escalation of privilege
Stefan Kanthak
-
X41 D-Sec GmbH Security Advisory X41-2018-004: Multiple Vulnerabilities in Yubico libykneomgr
X41 D-Sec GmbH Advisories
-
X41 D-Sec GmbH Security Advisory X41-2018-005: Multiple Vulnerabilities in Apple smartcardservices
X41 D-Sec GmbH Advisories
-
X41 D-Sec GmbH Security Advisory X41-2018-003: Multiple Vulnerabilities in pam_pkcs11
X41 D-Sec GmbH Advisories
-
X41 D-Sec GmbH Security Advisory X41-2018-002: Multiple Vulnerabilities in OpenSC
X41 D-Sec GmbH Advisories
-
X41 D-Sec GmbH Security Advisory X41-2018-001: Multiple Vulnerabilities in Yubico Piv
X41 D-Sec GmbH Advisories
-
[SECURITY] [DSA 4271-1] samba security update
Salvatore Bonaccorso
-
ASUSTOR NAS ADM - 3.1.0 Remote Command Execution, SQL Injections
kyle Lovett
-
[SECURITY] [DSA 4267-1] kamailio security update
Salvatore Bonaccorso
-
WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0006
Michael Catanzaro
-
CA20180802-01: Security Notice for CA API Developer Portal
Kotas, Kevin J
-
[CVE-2018-14429] man-cgi < 1.16 Local File Include
eL_Bart0
-
New VMSA-2018-0019 - Horizon 6, 7, and Horizon Client for Windows updates address an out-of-bounds read vulnerability
VMware Security Response Center
-
FreeBSD Security Advisory FreeBSD-SA-18:08.tcp
FreeBSD Security Advisories
-
RE: [FD] Executable installers are vulnerable^WEVIL (case 56): arbitrary code execution WITH escalation of privilege via rufus*.exe
Andrius Duksta
-
[SECURITY] [DSA 4266-1] linux security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4262-1] symfony security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4265-1] xml-security-c security update
Moritz Muehlenhoff
-
[slackware-security] lftp (SSA:2018-214-01)
Slackware Security Team
-
[SECURITY] [DSA 4260-1] libmspack security update
Salvatore Bonaccorso
-
Executable installers are vulnerable^WEVIL (case 55): escalation of privilege with VMware Player 12.5.9
Stefan Kanthak
-
[slackware-security] blueman (SSA:2018-213-01)
Slackware Security Team
-
CVE-2016-7085 NOT fixed in VMware-player-12.5.9-7535481.exe
Stefan Kanthak
-
[SECURITY] [DSA 4259-1] ruby2.3 security update
Moritz Muehlenhoff
-
[slackware-security] seamonkey (SSA:2018-212-02)
Slackware Security Team
-
[slackware-security] file (SSA:2018-212-01)
Slackware Security Team
-
[SECURITY] [DSA 4257-1] fuse security update
Salvatore Bonaccorso
-
secuvera-SA-2018-03: Command Injection, Broken Access Control and Evil-Twin-Attack in Microsoft Wireless Display Adapter V2 - CVE-2018-8306
Tobias Glemser
-
[SECURITY] [DSA 4258-1] ffmpeg security update
Moritz Muehlenhoff
-
[slackware-security] Slackware 14.2 kernel (SSA:2018-208-01)
Slackware Security Team
-
[SECURITY] [DSA 4256-1] chromium-browser security update
Michael Gilbert
-
[CORE-2018-0009] - SoftNAS Cloud OS Command Injection
Core Security Advisories Team
-
DefenseCode ThunderScan SAST Advisory: WordPress Strong Testimonials Plugin Multiple XSS Security Vulnerabilities
Defense Code
-
[SECURITY] [DSA 4255-1] ant security update
Salvatore Bonaccorso
-
DefenseCode ThunderScan SAST Advisory: WordPress Gwolle Guestbook Plugin XSS Security Vulnerability
Defense Code
-
DefenseCode ThunderScan SAST Advisory: WordPress Snazzy Maps Plugin Multiple XSS Security Vulnerabilities
Defense Code
-
[SECURITY] [DSA 4254-1] slurm-llnl security update
Salvatore Bonaccorso
-
FINAL CALL FOR PAPERS - INTEL SECURITY CONFERENCE (iSecCon) 2018
Branco, Rodrigo
-
[SECURITY] [DSA 4253-1] network-manager-vpnc security update
Salvatore Bonaccorso
-
APPLE-SA-2018-7-23-4 Additional information for APPLE-SA-2018-06-01-6 tvOS 11.4
Apple Product Security
-
APPLE-SA-2018-7-23-5 Additional information for APPLE-SA-2018-06-01-5 watchOS 4.3.1
Apple Product Security
-
APPLE-SA-2018-7-23-3 Additional information for APPLE-SA-2018-06-01-4 iOS 11.4
Apple Product Security
-
APPLE-SA-2018-7-23-2 Additional information for APPLE-SA-2018-06-01-1 macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan
Apple Product Security
-
APPLE-SA-2018-7-23-1 Additional information for APPLE-SA-2018-7-9-4 macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan
Apple Product Security
-
Sourcetree - Remote Code Execution vulnerabilities - CVE-2018-11235
Anton Black
-
[slackware-security] php (SSA:2018-201-01)
Slackware Security Team
-
Secunia Research: Oracle Outside In Technology Multiple Vulnerabilities
Secunia Research
-
Secunia Research: LibRaw "parse_minolta()" Infinite Loop Denial of Service Vulnerability
Secunia Research
-
Adobe Systems - Arbitrary Code Injection Vulnerability
Vulnerability Lab
-
[slackware-security] httpd (SSA:2018-199-01)
Slackware Security Team
-
[SECURITY] [DSA 4252-1] znc security update
Moritz Muehlenhoff
-
Binance v1.5.0 - Insecure File Permission Vulnerability
Vulnerability Lab
-
GhostMail - (filename to link) POST Inject Web Vulnerability
Vulnerability Lab
-
Barracuda Cloud Control v3.020 - CS Cross Site Vulnerability
Vulnerability Lab
-
GhostMail - (Status Message) Persistent Web Vulnerability
Vulnerability Lab
-
[SECURITY] [DSA 4251-1] vlc security update
Moritz Muehlenhoff
-
Defense in depth -- the Microsoft way (part 56): 10+ year old security update installers are susceptiblle to 20+ year old vulnerability
Stefan Kanthak
-
[SECURITY] [DSA 4250-1] wordpress security update
Sebastien Delafond
-
[SECURITY] [DSA 4248-1] blender security update
Moritz Muehlenhoff
-
[slackware-security] mutt (SSA:2018-198-01)
Slackware Security Team
-
[SECURITY] [DSA 4249-1] ffmpeg security update
Moritz Muehlenhoff
-
[CVE-2018-1000211] Public apps can't revoke OAuth access & refresh tokens in Doorkeeper
Justin Bull
-
Defense in depth -- the Microsoft way (part 55): new software built with 5.5 year old tool shows 20+ year old vulnerabilities
Stefan Kanthak
-
[SECURITY] [DSA 4247-1] ruby-rack-protection security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4246-1] mailman security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4245-1] imagemagick security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4244-1] thunderbird security update
Moritz Muehlenhoff
-
Huawei eNSP v1 - Buffer Overflow (DoS) Vulnerability
Vulnerability Lab
-
Secunia Research: Clam AntiVirus "parsehwp3_paragraph()" Denial of Service Vulnerability
Secunia Research
-
SEC Consult SA-20180712-0 :: Remote Code Execution & Local File Disclosure in Zeta Producer Desktop CMS
SEC Consult Vulnerability Lab
-
[security bulletin] MFSBGN03811 rev.1 - Fortify Software Security Center (SSC), Multiple vulnerabilities
cyber-psrt
-
Barracuda ADC v5.x - Multiple Persistent Vulnerabilities
Vulnerability Lab
-
Lenovo SU v5.07 - Buffer Overflow & Arbitrary Code Execution Vulnerability
Vulnerability Lab
-
[slackware-security] bind (SSA:2018-192-01)
Slackware Security Team
-
[slackware-security] curl (SSA:2018-192-02)
Slackware Security Team
-
[CORE-2018-0006] - QNAP Qcenter Virtual Appliance Multiple Vulnerabilities
Core Security Advisories Team
-
SEC Consult SA-20180711-0 :: Remote code execution via multiple attack vectors in WAGO e!DISPLAY 7300T
SEC Consult Vulnerability Lab
-
[SECURITY] [DSA 4243-1] cups security update
Luciano Bello
-
AT&T Bizcircle - Persistent Profile Cross Site Scripting Vulnerabilities
Vulnerability Lab
-
Barracuda ADC 5.x - Client Side Cross Site Scripting Vulnerability
Vulnerability Lab
-
Barracuda ADC 5.x - Filter Bypass & Persistent Validation Vulnerability
Vulnerability Lab
-
ASUS WRT-AC66U 3.x - Cross Site Scripting Vulnerability
Vulnerability Lab
-
Intel System CU - Buffer Overflow (Denial of Service) Vulnerability
Vulnerability Lab
-
Secutech DSL WR RIS 330 - Filter Bypass Vulnerability
Vulnerability Lab
-
[slackware-security] mozilla-thunderbird (SSA:2018-191-01)
Slackware Security Team
-
APPLE-SA-2018-7-9-7 iTunes 12.8 for Windows
Apple Product Security
-
APPLE-SA-2018-7-9-2 watchOS 4.3.2
Apple Product Security
-
APPLE-SA-2018-7-9-3 tvOS 11.4.1
Apple Product Security
-
APPLE-SA-2018-7-9-5 Safari 11.1.2
Apple Product Security
-
APPLE-SA-2018-7-9-4 macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan
Apple Product Security
-
APPLE-SA-2018-7-9-6 iCloud for Windows 7.6
Apple Product Security
-
APPLE-SA-2018-7-9-1 iOS 11.4.1
Apple Product Security
-
[SECURITY] [DSA 4242-1] ruby-sprockets security update
Salvatore Bonaccorso
-
APPLE-SA-2018-7-05-1 Wi-Fi Update for Boot Camp 6.4.0
Apple Product Security
-
[slackware-security] mozilla-thunderbird (SSA:2018-186-01)
Slackware Security Team
-
[SECURITY] [DSA 4241-1] libsoup2.4 security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4240-1] php7.0 security update
Moritz Muehlenhoff
-
SEC Consult SA-20180704-2 :: Privilege escalation via linux group manipulation in all ADB Broadband Gateways / Routers
SEC Consult Vulnerability Lab
-
SEC Consult SA-20180704-1 :: Authorization Bypass in all ADB Broadband Gateways / Routers
SEC Consult Vulnerability Lab
-
SEC Consult SA-20180704-0 :: Local root jailbreak via network file sharing flaw in all ADB Broadband Gateways / Routers
SEC Consult Vulnerability Lab
-
[CVE-2018-3667, CVE-2018-3668] Escalation of priviilege via executable installer of Intel Processor Diagnostic Tool
Stefan Kanthak
-
[SECURITY] [DSA 4239-1] gosa security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4238-1] exiv2 security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4237-1] chromium-browser security update
Michael Gilbert
-
[CVE-2018-8036] DoS (OOM) Vulnerability in Apache PDFBox's AFMParser
Andreas Lehmkuehler
-
TP-Link TL-WR841N v13: Broken Authentication (CVE-2018-12575)
Tim Coen
-
APPLE-SA-2018-06-27-1 SwiftNIO 1.8.0
Apple Product Security
-
[SECURITY] [DSA 4235-1] firefox-esr security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4236-1] xen security update
Moritz Muehlenhoff
-
TP-Link TL-WR841N v13: Authenticated Blind Command Injection (CVE-2018-12577)
Tim Coen
-
TP-Link TL-WR841N v13: CSRF (CVE-2018-12574)
Tim Coen
-
PRTG < 18.2.39 Command Injection
Josh Berry
-
[slackware-security] mozilla-firefox (SSA:2018-176-01)
Slackware Security Team
-
KL-001-2018-008 : HPE VAN SDN Unauthenticated Remote Root Vulnerability
KoreLogic Disclosures
-
[SECURITY] [DSA 4234-1] lava-server security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4233-1] bouncycastle security update
Moritz Muehlenhoff
-
FreeBSD Security Advisory FreeBSD-SA-18:07.lazyfpu
FreeBSD Security Advisories
-
[SECURITY] [DSA 4232-1] xen security update
Moritz Muehlenhoff
-
[slackware-security] gnupg (SSA:2018-170-01)
Slackware Security Team
-
XSS in Canopy login page
RYT
-
[SECURITY] [DSA 4229-1] strongswan security update
Yves-Alexis Perez
-
[SECURITY] [DSA 4231-1] libgcrypt20 security update
Salvatore Bonaccorso
-
[security bulletin] MFSBGN03810 rev.1 - Universal CMDB, Deserialization Java Objects and CSRF
cyber-psrt
-
[SECURITY] [DSA 4230-1] redis security update
Moritz Muehlenhoff
-
[security bulletin] MFSBGN03809 rev.1 - Universal CMDB, Deserialization Java Objects and CSRF
cyber-psrt
-
CALL FOR PAPERS - INTEL SECURITY CONFERENCE (iSecCon) 2018
Branco, Rodrigo
-
CA20180614-01: Security Notice for CA Privileged Access Manager
Williams, Ken
-
WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0005
Michael Catanzaro
-
[SECURITY] [DSA 4228-1] spip security update
Sebastien Delafond
-
APPLE-SA-2018-06-13-01 Xcode 9.4.1
Apple Product Security
-
Multiple Security Issues in Ecos Secure Boot Stick (SBS)
Michael Rossberg
-
Samsung Web Viewer for Samsung DVR Reflected Cross Site Scripting (XSS) CVE-2018-11689
yavuz atlas
-
CSNC-2018-021 - Vert.x - HTTP Header Injection
Advisories
-
[SECURITY] [DSA 4227-1] plexus-archiver security update
Salvatore Bonaccorso
-
DefenseCode ThunderScan SAST Advisory: WordPress WP Google Map Plugin Multiple SQL injection Security Vulnerabilities
Defense Code
-
DefenseCode ThunderScan SAST Advisory: WordPress Ultimate Form Builder Lite Plugin Multiple Vulnerabilities (XSS and SQLi)
Defense Code
-
[SECURITY] [DSA 4226-1] perl security update
Salvatore Bonaccorso
-
AST-2018-008: PJSIP endpoint presence disclosure when using ACL
Asterisk Security Team
-
AST-2018-007: Infinite loop when reading iostreams
Asterisk Security Team
-
[SRP-2018-01] Reverse engineering tools for ST DVB chipsets (public release)
Security Explorations
-
[SECURITY] [DSA 4225-1] openjdk-7 security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4222-1] gnupg2 security update
Salvatore Bonaccorso
-
SensioLabs Symfony version 3.3.6 - Cross-Site Scripting (Reflect)
ch . sangsakul
-
[SECURITY] [DSA 4220-1] firefox-esr security update
Moritz Muehlenhoff
-
[SECURITY] [DSA 4224-1] gnupg security update
Salvatore Bonaccorso
-
[slackware-security] gnupg2 (SSA:2018-159-01)
Slackware Security Team
-
[SECURITY] [DSA 4223-1] gnupg1 security update
Salvatore Bonaccorso
-
[SECURITY] [DSA 4221-1] libvncserver security update
Moritz Muehlenhoff
-
Gridbox extension for Joomla! <= 2.4.0 Reflected Cross Site Scripting (XSS)
yavuz atlas
-
[SECURITY] [DSA 4219-1] jruby security update
Sebastien Delafond
-
DefenseCode ThunderScan SAST Advisory: WordPress Form Maker Plugin Multiple Security Vulnerabilities
Defense Code
-
DefenseCode ThunderScan SAST Advisory: WordPress Contact Form Maker Plugin Multiple Security Vulnerabilities
Defense Code
-
[slackware-security] mozilla-firefox (SSA:2018-157-01)
Slackware Security Team
-
[SECURITY] [DSA 4218-1] memcached security update
Salvatore Bonaccorso
-
Ignite Realtime Openfire Version 3.7.1 Reflected Cross Site Scripting (CVE-2018-11688)
yavuz atlas
-
[CORE-2018-0004] - Quest KACE System Management Appliance Multiple Vulnerabilities
Core Security Advisories Team
-
[SECURITY] [DSA 4216-1] prosody security update
Salvatore Bonaccorso
-
[CORE-2018-0002] - Quest DR Series Disk Backup Multiple Vulnerabilities
Core Security Advisories Team
-
APPLE-SA-2018-06-01-7 iTunes 12.7.5 for Windows
Apple Product Security
-
[SECURITY] [DSA 4215-1] batik security update
Sebastien Delafond
-
APPLE-SA-2018-06-01-3 iCloud for Windows 7.5
Apple Product Security
-
[SECURITY] [DSA 4214-1] zookeeper security update
Moritz Muehlenhoff
-
APPLE-SA-2018-06-01-6 tvOS 11.4
Apple Product Security