Bugtraq: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

59 messages starting Feb 16 17 and ending Feb 15 17
Date index | Thread index | Author index

adrian . vollmer

[SYSS-2017-004] Simplessus Files: Path Traversal adrian . vollmer (Feb 16)
[SYSS-2017-001] Simplessus Files: SQL Injection adrian . vollmer (Feb 16)

Andrey B. Panfilov

CVE-2017-5586: Remote code execution in OpenText Documentum D2 Andrey B. Panfilov (Feb 15)
CVE-2017-5585: SQL injection in OpenText Documentum Content Server 7.3 (PostgreSQL builds only) Andrey B. Panfilov (Feb 15)

Apple Product Security

APPLE-SA-2017-02-21-2 Logic Pro X 10.3.1 Apple Product Security (Feb 21)

Carlos Alberto Lopez Perez

WebKitGTK+ Security Advisory WSA-2017-0002 Carlos Alberto Lopez Perez (Feb 13)

Cisco Systems Product Security Incident Response Team

Cisco Security Response: Cisco Smart Install Protocol Misuse Cisco Systems Product Security Incident Response Team (Feb 14)
Cisco Security Advisory: Cisco UCS Director Privilege Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Feb 15)
Cisco Security Advisory: Cisco AnyConnect Secure Mobility Client for Windows SBL Privileges Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Feb 13)
Cisco Security Advisory: Cisco Prime Home Authentication Bypass Vulnerability Cisco Systems Product Security Incident Response Team (Feb 01)
Cisco Security Advisory: Cisco ASA Clientless SSL VPN CIFS Heap Overflow Vulnerability Cisco Systems Product Security Incident Response Team (Feb 13)

EMC Product Security Response Center

ESA-2017-003: EMC Network Configuration Manager (NCM) Multiple Vulnerabilities EMC Product Security Response Center (Feb 01)
ESA-2017-001: EMC Isilon InsightIQ Authentication Bypass Vulnerability EMC Product Security Response Center (Feb 07)

FOXMOLE Advisories

[FOXMOLE SA 2016-07-05] ZoneMinder - Multiple Issues FOXMOLE Advisories (Feb 02)

FreeBSD Security Advisories

FreeBSD Security Advisory FreeBSD-SA-17:02.openssl FreeBSD Security Advisories (Feb 22)

Graph-X

Teleopti WFM <= 7.1.0 Multiple Vulnerabilities Graph-X (Feb 06)

HPE Product Security Response Team

[security bulletin] HPESBUX03699 SSRT110304 rev.1 - HP-UX BIND, Multiple Remote Denial of Service (DoS) HPE Product Security Response Team (Feb 06)

hyp3rlinx

Ghostscript 9.20 Filename Command Execution hyp3rlinx (Feb 01)

john

ZoneMinder - multiple vulnerabilities john (Feb 05)

KoreLogic Disclosures

KL-001-2017-003 : Trendmicro InterScan Remote Root Access Vulnerability KoreLogic Disclosures (Feb 15)
KL-001-2017-001 : Trendmicro InterScan Arbitrary File Write KoreLogic Disclosures (Feb 15)

Luciano Bello

[SECURITY] [DSA 3783-1] php5 security update Luciano Bello (Feb 13)

Michael Gilbert

[SECURITY] [DSA 3795-1] bind9 security update Michael Gilbert (Feb 27)

Moritz Muehlenhoff

[SECURITY] [DSA 3786-1] vim security update Moritz Muehlenhoff (Feb 14)
[SECURITY] [DSA 3782-1] openjdk-7 security update Moritz Muehlenhoff (Feb 13)
[SECURITY] [DSA 3781-1] svgsalamander security update Moritz Muehlenhoff (Feb 05)
[SECURITY] [DSA 3787-1] tomcat7 security update Moritz Muehlenhoff (Feb 14)
[SECURITY] [DSA 3788-1] tomcat8 security update Moritz Muehlenhoff (Feb 14)
[SECURITY] [DSA 3792-1] libreoffice security update Moritz Muehlenhoff (Feb 23)

Pierre Kim

TP-Link C2 and C20i vulnerable to command injection (authenticated root RCE), DoS, improper firewall rules Pierre Kim (Feb 13)

Salvatore Bonaccorso

[SECURITY] [DSA 3791-1] linux security update Salvatore Bonaccorso (Feb 22)
[SECURITY] [DSA 3788-2] tomcat8 regression update Salvatore Bonaccorso (Feb 22)
[SECURITY] [DSA 3790-1] spice security update Salvatore Bonaccorso (Feb 16)

Sebastien Delafond

[SECURITY] [DSA 3784-1] viewvc security update Sebastien Delafond (Feb 13)
[SECURITY] [DSA 3779-1] wordpress security update Sebastien Delafond (Feb 01)

SEC Consult Vulnerability Lab

SEC Consult SA-20170207 :: Path Traversal, Backdoor accounts & KNX group address password bypass in JUNG Smart Visu server SEC Consult Vulnerability Lab (Feb 07)

Securify B.V.

Multiple persistent Cross-Site Scripting vulnerabilities in osTicket Securify B.V. (Feb 28)
Authentication bypass vulnerability in Western Digital My Cloud Securify B.V. (Feb 13)

security-alert

[security bulletin] HPESBGN03697 rev.1 - HPE Business Service Management (BSM), Remote Disclosure of Information security-alert (Feb 14)
[security bulletin] HPESBNS03702 rev.1 - HPE NonStop OSS Core Utilities with Bash Shell, Local Arbitrary Command Execution, Elevation of Privilege security-alert (Feb 13)
[security bulletin] HPESBHF03704 rev.1 - HPE OfficeConnect Network Switches, Local Unauthorized Data Modification security-alert (Feb 13)
[security bulletin] HPSBMU03692 rev.1 - HPE Matrix Operating Environment, Multiple Remote Vulnerabilities security-alert (Feb 13)
[security bulletin] HPESBGN03698 rev.1 - HPE DDMi using OpenSSL, Remote Arbitrary Code Execution, Bypass Security Restrictions, Denial of Service (DoS) security-alert (Feb 13)
[security bulletin] HPSBMU03691 rev.1 - HPE Insight Control, Multiple Remote Vulnerabilities security-alert (Feb 14)
[security bulletin] HPESBHF03709 rev.1 - HPE Network products including Comware, IMC, and VCX running OpenSSL, Remote Denial of Service (DoS), Disclosure of Sensitive Information security-alert (Feb 21)
[security bulletin] HPSBST03588 rev 1. - HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS, Remote Arbitrary Command Execution security-alert (Feb 01)
[security bulletin] HPESBHF03703 rev.1 - HPE Network Products including Comware v7 and VCX using OpenSSL, Remote Unauthorized Disclosure of Information security-alert (Feb 14)

Slackware Security Team

[slackware-security] php (SSA:2017-041-03) Slackware Security Team (Feb 13)
[slackware-security] tcpdump (SSA:2017-041-04) Slackware Security Team (Feb 13)
[slackware-security] openssl (SSA:2017-041-02) Slackware Security Team (Feb 13)

Summer of Pwnage

Admin Custom Login WordPress plugin affected by persistent Cross-Site Scripting via Logo URL field Summer of Pwnage (Feb 28)
Cross-Site Request Forgery in File Manager WordPress plugin Summer of Pwnage (Feb 28)
Admin Custom Login WordPress plugin custom login page affected by persistent Cross-Site Scripting Summer of Pwnage (Feb 28)
Analytics Stats Counter Statistics WordPress Plugin unauthenticated PHP Object injection vulnerability Summer of Pwnage (Feb 28)

Vulnerability Lab

Air Transfer 1.2.1 & 1.0.14 - Multiple XSS Web Vulnerabilities Vulnerability Lab (Feb 23)
PDFMate PDF Converter Pro 1.7.5.0 - Buffer Overflow Vulnerability Vulnerability Lab (Feb 20)

X41 D-Sec GmbH Advisories

Advisory X41-2017-004: Multiple Vulnerabilities in tnef X41 D-Sec GmbH Advisories (Feb 23)
Advisory X41-2017-001: Multiple Vulnerabilities in X.org X41 D-Sec GmbH Advisories (Feb 28)
Advisory X41-2017-002: Multiple Vulnerabilities in ytnef X41 D-Sec GmbH Advisories (Feb 15)

Previous period

Next period