=
- Release date: 28.06.2014
- Discovered by: Dawid Golunski
- Severity: Moderate
=
I. VULNERABILITY
-
check_dhcp - Nagios Plugins = 2.0.2 Race Condition
II. BACKGROUND
I received the following e-mail from MSFT earlier today.
Any idea what these changing governmental policies are? This seems
pretty ridiculous to not send e-mail notifications anymore.
~reed
Begin forwarded message:
Date: Fri, 27 Jun 2014 11:40:16 -0600
From: Microsoft
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SECV-05-1402 - Reportico software admin credentials leak
Product description:
Reportico is a comprehensive Open Source web reporting tool written
purely in PHP. Reportico provides a web-based front end screen for
designing and viewing reports
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
openSIS 4.5 - 5.3 SQL Injection vulnerability
=
Author: Ubani Anthony Balogun ub...@sas.upenn.edu
Reported: June 26, 2014
Product Description:
-
openSIS, is a free student information
Introducing Titcoin – the first digital currency aimed at the porn
industry, announced by PornHub.
Many cryptocurrencies have come and gone since Bitcoin’s
http://www.pcr-online.biz/news/read/bitcoin-making-a-virtual-mint/032266 boom
in popularity, but none have been aimed at a specific industry
Um, this is well documented behavior that's been around for decades. *
expands to all files in the dir as arguments to whatever, if the filename
is --no-preserve-root -rf .. why shouldn't that be returned?
2014-06-26 11:40 GMT+03:00 defensecode defensec...@defensecode.com:
Hi,
We wanted to
On 26-Jun-2014 10:40:21 +0200, defensecode wrote:
We wanted to inform all major *nix distributions via our
responsible disclosure policy about this problem before posting
it, because it is highly likely that this problem could lead to
local root access on many distributions.
Hi,
On Thu, Jun 26, 2014 at 10:40:21AM +0200, defensecode wrote:
We wanted to inform all major *nix distributions via our responsible
disclosure policy about this problem before posting it, because it is
highly likely that this problem could lead to local root access on many
distributions.
Hi rob,
I tried what you said and it does not affect the other session.
The open session stays open and is not invalidated.
@all others: Thanks for all the helpful explanations; For me this is clear
now and I reported this issue.
Regards,
Christian
2014-06-24 22:03 GMT+02:00 R D