Bugtraq: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

50 messages starting Aug 01 17 and ending Aug 14 17
Date index | Thread index | Author index

andys3c

[CVE-2017-11494] SOL.Connect ISET-mpp meter 1.2.4.2 Authentication Bypass SQL Injection Vulnerability andys3c (Aug 01)

Brad Spengler

Re: [oss-security] [CVE-2017-7533] kernel: inotify: a race between inotify_handle_event() and sys_rename() Brad Spengler (Aug 07)

Daniel Shahaf

[SECURITY][ANNOUNCE] Apache Subversion 1.9.7 released Daniel Shahaf (Aug 10)

DefenseCode

DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities DefenseCode (Aug 07)

gabriele . gristina

CVE-2017-1500 - Relected XSS in IBM WorkLight OAuth Server Web Api gabriele . gristina (Aug 02)

HPE Product Security Response Team

[security bulletin] HPESBHF03770 rev.1 - HPE Comware 7 MSR Routers using PHP, Go, Apache Http Server, and Tomcat, Remote Arbitrary Code Execution HPE Product Security Response Team (Aug 28)

Luciano Bello

[SECURITY] [DSA 3953-1] aodh security update Luciano Bello (Aug 24)
[SECURITY] [DSA 3957-1] ffmpeg security update Luciano Bello (Aug 28)
[SECURITY] [DSA 3956-1] connman security update Luciano Bello (Aug 27)
[SECURITY] [DSA 3950-1] libraw security update Luciano Bello (Aug 21)

Lukasz Lenart

[ANN] Apache Struts: S2-049 Security Bulletin update Lukasz Lenart (Aug 10)

Michael Gilbert

[SECURITY] [DSA 3926-1] chromium-browser security update Michael Gilbert (Aug 06)

Moritz Muehlenhoff

[SECURITY] [DSA 3951-1] smb4k security update Moritz Muehlenhoff (Aug 22)
[SECURITY] [DSA 3933-1] pjproject security update Moritz Muehlenhoff (Aug 10)
[SECURITY] [DSA 3935-1] postgresql-9.4 security update Moritz Muehlenhoff (Aug 11)
[SECURITY] [DSA 3940-1] iortcw security update Moritz Muehlenhoff (Aug 14)
[SECURITY] [DSA 3948-1] ioquake3 security update Moritz Muehlenhoff (Aug 21)
[SECURITY] [DSA 3936-1] postgresql-9.6 security update Moritz Muehlenhoff (Aug 11)
[SECURITY] [DSA 3925-1] qemu security update Moritz Muehlenhoff (Aug 06)
[SECURITY] [DSA 3937-1] zabbix security update Moritz Muehlenhoff (Aug 14)
[SECURITY] [DSA 3928-2] firefox-esr security update Moritz Muehlenhoff (Aug 16)

Patrick Webster

Trend Micro Hosted Email Security (HES) - Email Interception and Direct Object Reference Patrick Webster (Aug 24)

RedTeam Pentesting GmbH

[RT-SA-2015-008] WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs RedTeam Pentesting GmbH (Aug 22)
[RT-SA-2015-010] WebClientPrint Processor 2.0: Unauthorised Proxy Modification RedTeam Pentesting GmbH (Aug 22)
[RT-SA-2015-009] WebClientPrint Processor 2.0: Remote Code Execution via Updates RedTeam Pentesting GmbH (Aug 22)
[RT-SA-2015-011] WebClientPrint Processor 2.0: No Validation of TLS Certificates RedTeam Pentesting GmbH (Aug 22)

Robert Munteanu

CVE-2017-9802: Apache Sling XSS vulnerability Robert Munteanu (Aug 14)

Salvatore Bonaccorso

[SECURITY] [DSA 3943-1] gajim security update Salvatore Bonaccorso (Aug 14)
[SECURITY] [DSA 3924-1] varnish security update Salvatore Bonaccorso (Aug 02)
[SECURITY] [DSA 3929-1] libsoup2.4 security update Salvatore Bonaccorso (Aug 10)
[SECURITY] [DSA 3927-1] linux security update Salvatore Bonaccorso (Aug 07)

Sebastien Delafond

[SECURITY] [DSA 3932-1] subversion security update Sebastien Delafond (Aug 10)
[SECURITY] [DSA 3923-1] freerdp security update Sebastien Delafond (Aug 01)
[SECURITY] [DSA 3946-1] libmspack security update Sebastien Delafond (Aug 18)

SEC Consult Vulnerability Lab

SEC Consult SA-20170804-1 :: Ubiquiti Networks UniFi Cloud Key authenticated command injection SEC Consult Vulnerability Lab (Aug 04)
SEC Consult SA-20170804-0 :: phpBB Server Side Request Forgery (SSRF) vulnerability SEC Consult Vulnerability Lab (Aug 04)

security-alert

[security bulletin] HPESBGN03765 rev.2 - HPE LoadRunner and HPE Performance Center, Remote Disclosure of Information security-alert (Aug 31)
[security bulletin] HPESBGN03767 rev.1 - HPE Operations Orchestration, Remote Code Execution security-alert (Aug 31)
[security bulletin] HPESB3P03762 rev.1 - HPE C Switch Software using Cisco Prime Data Center Network Manager (DCNM), Remote Code Execution security-alert (Aug 10)
[security bulletin] HPESBHF03763 rev.1 - HPE Comware 7, IMC, VCX products using OpenSSL, Remote Denial of Service (DoS) security-alert (Aug 02)
[security bulletin] HPESBGN03766 rev.1 - HPE Project and Portfolio Management (PPM), Remote Cross-Site Scripting security-alert (Aug 01)
[security bulletin] HPESBHF03769 rev.1 - HPE Integrated Lights-out 4 (iLO 4) Multiple Remote Vulnerabilities security-alert (Aug 24)
[security bulletin] HPESB3P03767 rev.1 - HPE Proliant ML10 Gen9 servers using Intel Xeon E3-1200M v5 and 6th Generation Intel Core Processors, Unauthorized Write to Filesystem security-alert (Aug 04)

Slackware Security Team

[slackware-security] gnupg (SSA:2017-213-01) Slackware Security Team (Aug 02)
[slackware-security] mercurial (SSA:2017-223-03) Slackware Security Team (Aug 14)
[slackware-security] curl (SSA:2017-221-01) Slackware Security Team (Aug 10)
[slackware-security] mozilla-firefox (SSA:2017-221-02) Slackware Security Team (Aug 10)

Vulnerability Lab

Microsoft Resnet - DNS Configuration Web Vulnerability Vulnerability Lab (Aug 16)

WhiteWinterWolf

FreeBSD <= 10.3 jail SHM hole WhiteWinterWolf (Aug 16)

x62x65x6e

[CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability x62x65x6e (Aug 14)

Previous period

Next period