AlienVault OSSIM 4.3 CSRF

2015-10-26 Thread mohammadreza . mohajerani
# Exploit Title: [AlienVault - OSSIM CSRF] # Date: [10-5-2015] # Exploit Author: [MohamadReza Mohajerani] # Vendor Homepage: [www.alienvault.com] # Software Link: [https://www.alienvault.com/products/ossim] # Version: [4.3] Vulnerability Details: = Multiple CSRF vectors

Secunia Research: Oracle Outside In Two Buffer Overflow Vulnerabilities

2015-10-26 Thread Secunia Research
== Secunia Research (now part of Flexera Software) 26/10/2015 Oracle Outside In Two Buffer Overflow Vulnerabilities == Table of Contents Affected

Secunia Research: Google Picasa Phase One Tags Processing Integer Overflow Vulnerability

2015-10-26 Thread Secunia Research
== Secunia Research (now part of Flexera Software) 09/10/2015 Google Picasa Phase One Tags Processing Integer Overflow Vulnerability == Table of

MacOS X 10.11 FTS Deep structure of the file system Buffer Overflow

2015-10-26 Thread submit
MacOS X 10.11 FTS Deep structure of the file system Buffer Overflow Credit: Maksymilian Arciemowicz ( CXSECURITY ) Website: http://cxsecurity.com/ http://cert.cx/ Affected software: - Commands such as: ls, find, rm - probably more Apple file system suffer for a issue recognised in FTS

MacOS X 10.11 hardlink bomb cause resource exhaustion (Avast PoC)

2015-10-26 Thread submit
/* MacOS X 10.11 hardlink bomb cause resource exhaustion (Avast PoC) Credit: Maksymilian Arciemowicz ( CXSECURITY ) Website: http://cxsecurity.com/ http://cert.cx/ Affected software: - Commands such as: zip, tar, find - AntiVirus: Avast, Eset32 Let's back to an old bug, which Apple does not

FreeBSD Security Advisory FreeBSD-SA-15:25.ntp

2015-10-26 Thread FreeBSD Security Advisories
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 = FreeBSD-SA-15:25.ntpSecurity Advisory The FreeBSD Project Topic: