Bugtraq: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

65 messages starting Oct 07 18 and ending Oct 02 18
Date index | Thread index | Author index

Andreas Lehmkuehler

[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser Andreas Lehmkuehler (Oct 07)
[UPDATE][CVE-2018-11797] DoS vulnerability in Apache PDFBox parser Andreas Lehmkuehler (Oct 07)

Anton Black

October 2018 Sourcetree Advisory Anton Black (Oct 31)

Apple Product Security

APPLE-SA-2018-10-30-8 Additional information for APPLE-SA-2018-9-24-4 iOS 12 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-2 macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, Security Update 2018-005 Sierra Apple Product Security (Oct 31)
APPLE-SA-2018-10-08-2 iCloud for Windows 7.7 Apple Product Security (Oct 09)
APPLE-SA-2018-10-30-3 Safari 12.0.1 Apple Product Security (Oct 31)
APPLE-SA-2018-10-08-1 iOS 12.0.1 Apple Product Security (Oct 09)
APPLE-SA-2018-10-30-13 Additional information for APPLE-SA-2018-9-24-2 iTunes 12.9 for Windows Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-4 watchOS 5.1 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-10 Additional information for APPLE-SA-2018-9-24-5 watchOS 5 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-5 tvOS 12.1 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-7 iCloud for Windows 7.8 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-6 iTunes 12.9.1 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-12 Additional information APPLE-SA-2018-10-08-2 iCloud for Windows 7.7 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-14 Additional information for APPLE-SA-2018-7-9-4 macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-1 iOS 12.1 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-11 Additional information for APPLE-SA-2018-9-24-6 tvOS 12 Apple Product Security (Oct 31)
APPLE-SA-2018-10-30-9 Additional information for APPLE-SA-2018-9-24-1 macOS Mojave 10.14 Apple Product Security (Oct 31)

cyber-psrt

[security bulletin] MFSBGN03827 rev.1 - Microfocus Real User Monitoring 9.4.0 BPRDownload Java Deserialization Vulnerability cyber-psrt (Oct 23)

Delaitre, Aurelien (IntlAssoc)

SATE VI - Call for Participation Delaitre, Aurelien (IntlAssoc) (Oct 23)

Hakan Bayır

Zoho ManageEngine OpManager 12.3 allows Stored XSS Hakan Bayır (Oct 31)
Zoho ManageEngine OpManager 12.3 allows Self XSS Vulnerability Hakan Bayır (Oct 31)

Kotas, Kevin J

CA20181017-01: Security Notice for CA Identity Governance Kotas, Kevin J (Oct 23)

luke . bailiff

OpenText Brava! Enterprise and Brava! Server Components Sensitive Data Exposure luke . bailiff (Oct 31)

Micha Borrmann

[SYSS-2018-026] missing X.509 validation with AudioCodes IP Phones (Skype for Business, on-premise) - CVE-2018-18567 Micha Borrmann (Oct 23)
[SYSS-2018-027] missing X.509 validation with Polycom VVX Phones (Skype for Business, on-premise) - CVE-2018-18568 Micha Borrmann (Oct 23)
[SYSS-2018-024] Privilege Escalation in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17872) Micha Borrmann (Oct 02)
[SYSS-2018-023] Password leakage in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17871) Micha Borrmann (Oct 02)
[SYSS-2018-028] information leakage with Polycom VVX Phones (Skype for Business, on-premise) - CVE-2018-18566 Micha Borrmann (Oct 23)

Michael Catanzaro

WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0007 Michael Catanzaro (Oct 01)

Moritz Muehlenhoff

[SECURITY] [DSA 4324-1] firefox-esr security update Moritz Muehlenhoff (Oct 24)
[SECURITY] [DSA 4326-1] openjdk-8 Moritz Muehlenhoff (Oct 25)
[SECURITY] [DSA 4327-1] thunderbird security update Moritz Muehlenhoff (Oct 25)
[SECURITY] [DSA 4329-1] teeworlds security update Moritz Muehlenhoff (Oct 29)
[SECURITY] [DSA 4328-1] xorg-server security update Moritz Muehlenhoff (Oct 25)
[SECURITY] [DSA 4307-1] python3.5 security update Moritz Muehlenhoff (Oct 01)
[SECURITY] [DSA 4321-2] graphicsmagick update Moritz Muehlenhoff (Oct 29)

Murat Aydemir

Zoho ManageEngine OpManager 12.3 allows Unrestricted Arbitrary File Upload Murat Aydemir (Oct 23)

Rahul Pratap Singh

CVE Request: Sitepress Multilingual CMS Plugin Unauthenticated Stored XSS Rahul Pratap Singh (Oct 09)

Robin . Trost

[SYSS-2018-014] Bestwebsoft PDF & Print - Cross-Site Scripting Robin . Trost (Oct 01)

Salvatore Bonaccorso

[SECURITY] [DSA 4310-1] firefox-esr security update Salvatore Bonaccorso (Oct 03)
[SECURITY] [DSA 4308-1] linux security update Salvatore Bonaccorso (Oct 01)
[SECURITY] [DSA 4311-1] git security update Salvatore Bonaccorso (Oct 07)
[SECURITY] [DSA 4312-1] tinc security update Salvatore Bonaccorso (Oct 09)
[SECURITY] [DSA 4313-1] linux security update Salvatore Bonaccorso (Oct 09)

Sebastien Delafond

[SECURITY] [DSA 4325-1] mosquitto security update Sebastien Delafond (Oct 25)

SEC Consult Vulnerability Lab

SEC Consult SA-20181001-0 :: Password disclosure vulnerability & XSS in PTC ThingWorx (CVE-2018-17216, CVE-2018-17217, CVE-2018-17218) SEC Consult Vulnerability Lab (Oct 01)
SEC Consult SA-20181009-0 :: Remote Code Execution via XMeye P2P Cloud in Xiongmai IP Cameras, NVRs and DVRs incl. 3rd party OEM devices (CVE-2018-17915, CVE-2018-17917, CVE-2018-17919) SEC Consult Vulnerability Lab (Oct 09)

SecureAuth Advisories Team

[CORE-2018-0005] - ASRock Drivers Elevation of Privilege Vulnerabilities SecureAuth Advisories Team (Oct 29)

Securify B.V.

Ivanti Workspace Control Application Whitelist bypass via PowerGrid /RWS command line argument Securify B.V. (Oct 01)
Ivanti Workspace Control local privilege escalation via Named Pipe Securify B.V. (Oct 01)
Stored credentials Ivanti Workspace Control can be retrieved from Registry Securify B.V. (Oct 01)
Ivanti Workspace Control Data Security bypass via localhost UNC path Securify B.V. (Oct 01)
Ivanti Workspace Control Application Whitelist bypass via PowerGrid /SEE command line argument Securify B.V. (Oct 01)

Slackware Security Team

[slackware-security] mozilla-firefox (SSA:2018-296-01) Slackware Security Team (Oct 23)
[slackware-security] mozilla-firefox (SSA:2018-276-01) Slackware Security Team (Oct 03)
[slackware-security] curl (SSA:2018-304-01) Slackware Security Team (Oct 31)

Socket_0x03

Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login Socket_0x03 (Oct 03)
Question Answer v1.2.30 (WordPress Plugin) - Multiple XSS Vulnerabilities Socket_0x03 (Oct 23)
Pie Register v3.0.17 (WordPress Plugin) - XSS Vulnerability in Forgot-Password Socket_0x03 (Oct 23)

Stefan Pietsch

e2 Security GmbH Advisory 2018-01: MensaMax Android app / Unencrypted transmission and usage of hardcoded encryption key Stefan Pietsch (Oct 01)

yavuz atlas

Responsive Filemanager 9.8.1 Authentication Bypass yavuz atlas (Oct 09)
Responsive Filemanager 9.8.1 Reflected Cross Site Scripting (XSS) yavuz atlas (Oct 09)

Yves-Alexis Perez

[SECURITY] [DSA 4309-1] strongswan security update Yves-Alexis Perez (Oct 02)

Previous period

Next period