[FD] Multiple vulnerabilities in squid 0.4.16_2 running on pfSense

2016-06-16 Thread Remco Sprooten
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I. VULNERABILITY - - Multiple vulnerabilities in squid 0.4.16_2 running on pfSense Version 2.3.1-RELEASE-p1 II. BACKGROUND - - The pfSense project is a free network firewall distribution, based on the

User enumeration in Skype for Business 2013

2016-06-16 Thread nyxgeek
# Exploit Title: Skype for Business 2013 user enumeration timing attack # Date: 2016-06-08 # Exploit Author: nyxgeek # Vendor Homepage: https://www.microsoft.com # Version: Skype for Business 2013 # # # Skype for Business 2013 is vulnerable to a timing attack that allows for username enumeration

[SECURITY] [DSA 3604-1] drupal7 security update

2016-06-16 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-3604-1 secur...@debian.org https://www.debian.org/security/ Moritz Muehlenhoff June 16, 2016

[security bulletin] HPSBNS03625 rev.1 - HPE NonStop Application Server for Java (NSASJ) running SSL/TLS, Remote Disclosure of Information

2016-06-16 Thread security-alert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n a-c05176765 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05176765 Version: 1 HPSBNS03625

[security bulletin] HPSBGN03553 rev.1 - HP OneView Products using glibc and OpenSSL, Multiple Remote Vulnerabilties

2016-06-16 Thread security-alert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n a-c05176716 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05176716 Version: 1 HPSBGN03553