Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
80 messages
starting May 23 19 and
ending May 27 19
Date index |
Thread index |
Author index
Anton Black
Bitbucket Server security advisory 2019-05-22 Anton Black (May 23)
apparitionsec
Windows PowerShell ISE / Filename Parsing Flaw Remote Code Execution 0day apparitionsec (May 01)
Apple Product Security
APPLE-SA-2019-5-13-3 tvOS 12.3 Apple Product Security (May 14)
APPLE-SA-2019-5-13-2 macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra Apple Product Security (May 14)
APPLE-SA-2019-5-28-2 iCloud for Windows 7.12 Apple Product Security (May 28)
APPLE-SA-2019-5-28-1 iTunes for Windows 12.9.5 Apple Product Security (May 28)
APPLE-SA-2019-5-13-6 Apple TV Software 7.3 Apple Product Security (May 14)
APPLE-SA-2019-5-13-4 watchOS 5.2.1 Apple Product Security (May 14)
APPLE-SA-2019-5-13-5 Safari 12.1.1 Apple Product Security (May 14)
APPLE-SA-2019-5-30-1 AirPort Base Station Firmware Update 7.9.1 Apple Product Security (May 31)
APPLE-SA-2019-5-13-1 iOS 12.3 Apple Product Security (May 14)
Atlassian
Crowd Security Advisory - 2019-05-22 Atlassian (May 27)
benjamin . hess
[SYSS-2019-002] Blue Prism Robotic Process Automation (RPA) - Privilege Escalation benjamin . hess (May 22)
Filippo Cavallarin
MacOS X GateKeeper Bypass Filippo Cavallarin (May 27)
FreeBSD Security Advisories
FreeBSD Security Advisory FreeBSD-SA-19:03.wpa FreeBSD Security Advisories (May 15)
FreeBSD Security Advisory FreeBSD-SA-19:04.ntp FreeBSD Security Advisories (May 15)
FreeBSD Security Advisory FreeBSD-SA-19:07.mds FreeBSD Security Advisories (May 15)
FreeBSD Security Advisory FreeBSD-SA-19:07.mds FreeBSD Security Advisories (May 15)
FreeBSD Security Advisory FreeBSD-SA-19:05.pf FreeBSD Security Advisories (May 15)
FreeBSD Security Advisory FreeBSD-SA-19:07.mds [REVISED] FreeBSD Security Advisories (May 15)
FreeBSD Security Advisory FreeBSD-SA-19:06.pf FreeBSD Security Advisories (May 15)
Gerwout Van der Veen
CSRF in Darktrace Enterprise Immune System <=3.0.10 Gerwout Van der Veen (May 21)
Imre Rad
Advisory: security controls configured in php.ini could be bypassed on Linux Imre Rad (May 20)
InfoSec News
[Newsletter/Marketing] [ISN] Hundreds of Orpak gas station systems can be easily hacked thanks to hardcoded passwords InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Going Toe-to-Toe With Ukraine's Separatist Hackers InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Wall Street spending big to protect against hacking: report InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Executive Order on America's Cybersecurity Workforce InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Sinister secret backdoor found in networking gear perfect for government espionage: The Chinese are -- oh no, wait, it's Cisco again InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Why local governments are a hot target for cyberattacks InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Attackers Used Red-Team, Pen-Testing Tools to Hack Wipro InfoSec News (May 03)
[Newsletter/Marketing] [ISN] After account hacks, Twitch streamers take security into their own hands InfoSec News (May 03)
[Newsletter/Marketing] [ISN] MITRE asks vendors to do more to detect stealthy hacks InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Hackers Steal and Ransom Financial Data Related to Some of the World's Largest Companies InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Spot the not-Fed: A day at AvengerCon, the Army's answer to hacker conferences InfoSec News (May 03)
[Newsletter/Marketing] [ISN] DHS Orders Agencies to Patch Critical Vulnerabilities Within 15 Days InfoSec News (May 03)
[Newsletter/Marketing] [ISN] Subscribing and Unsubscribing from InfoSec News InfoSec News (May 03)
John Martinelli
dotCMS v5.1.1 Vulnerabilities John Martinelli (May 09)
joshua
[CVE-2019-8978] Improper Authentication (CWE-287) in Ellucian Banner Web Tailor and Banner Enterprise Identity Services joshua (May 14)
Joshua Mulliken
[CVE-2019-8978] Improper Authentication (CWE-287) in Ellucian Banner Web Tailor and Banner Enterprise Identity Services Joshua Mulliken (May 14)
Kevin Kotas
CA20190523-01: Security Notice for CA Risk Authentication and CA Strong Authentication Kevin Kotas (May 27)
Kubilay Onur Gungor
Emerson Network Power Cross Site Scripting(XSS) Vulnerability Kubilay Onur Gungor (May 19)
Marco
Anviz M3 RFID Access Control security issues Marco (May 23)
Marco Ivaldi
local privilege escalation via CDE dtprintinfo Marco Ivaldi (May 19)
Matteo Beccati
[REVIVE-SA-2019-002] Revive Adserver Vulnerability Matteo Beccati (May 21)
matthias . deeg
[SYSS-2019-013]: Siemens LOGO! 8 - Missing Authentication for Critical Function (CWE-306) matthias . deeg (May 29)
[SYSS-2019-005]: ABUS Secvest - Proximity Key - Cryptographic Issues (CWE-310) matthias . deeg (May 03)
[SYSS-2019-014]: Siemens LOGO! 8 - Storing Passwords in a Recoverable Format (CWE-257) matthias . deeg (May 29)
[SYSS-2019-012]: Siemens LOGO! 8 - Use of Hard-coded Cryptographic Key (CWE-321) matthias . deeg (May 29)
Michael Catanzaro
WebKitGTK and WPE WebKit Security Advisory WSA-2019-0003 Michael Catanzaro (May 20)
Moritz Muehlenhoff
[SECURITY] [DSA 4452-1] jackson-databind security update Moritz Muehlenhoff (May 27)
[SECURITY] [DSA 4449-1] ffmpeg security update Moritz Muehlenhoff (May 23)
[SECURITY] [DSA 4451-1] thunderbird security update Moritz Muehlenhoff (May 27)
[SECURITY] [DSA 4439-1] postgresql-9.6 security update Moritz Muehlenhoff (May 10)
[SECURITY] [DSA 4440-1] bind9 security update Moritz Muehlenhoff (May 10)
[SECURITY] [DSA 4453-1] openjdk-8 security update Moritz Muehlenhoff (May 30)
[SECURITY] [DSA 4445-1] drupal7 security update Moritz Muehlenhoff (May 15)
[SECURITY] [DSA 4446-1] lemonldap-ng security update Moritz Muehlenhoff (May 15)
[SECURITY] [DSA 4448-1] firefox-esr security update Moritz Muehlenhoff (May 23)
[SECURITY] [DSA 4447-1] intel-microcode security update Moritz Muehlenhoff (May 15)
[SECURITY] [DSA 4454-1] qemu security update Moritz Muehlenhoff (May 31)
Onur Onur
Unauthorized Access Vulnerability in ZyXEL P-660HN-T1 V2 (2.00(AAKK.3)) Onur Onur (May 31)
Unauthorized Access Vulnerability in ZyXEL P-660HN-T1 V2 (2.00(AAKK.3)) Onur Onur (May 31)
Qualys Security Advisory
Re: System Down: A systemd-journald exploit Qualys Security Advisory (May 13)
RCE Security
[CVE-2019-11604] Quest KACE Systems Management Appliance <= 9.0 kbot_service_notsoap.php METHOD Reflected Cross-Site Scripting RCE Security (May 23)
RedTeam Pentesting GmbH
[RT-SA-2019-002] Directory Traversal in Cisco Expressway Gateway RedTeam Pentesting GmbH (May 17)
Reports
2019 Public Bug bounty launched Reports (May 03)
Salvatore Bonaccorso
[SECURITY] [DSA 4442-1] ghostscript security update Salvatore Bonaccorso (May 12)
[SECURITY] [DSA 4438-1] atftp security update Salvatore Bonaccorso (May 08)
[SECURITY] [DSA 4442-2] cups-filters regression update Salvatore Bonaccorso (May 14)
[SECURITY] [DSA 4443-1] samba security update Salvatore Bonaccorso (May 14)
[SECURITY] [DSA 4444-1] linux security update Salvatore Bonaccorso (May 15)
Sebastien Delafond
[SECURITY] [DSA 4441-1] symfony security update Sebastien Delafond (May 10)
SEC Consult Vulnerability Lab
SEC Consult SA-20190509-0 :: Multiple Vulnerabilities in Gemalto (Thales Group) DS3 Authentication Server / Ezio Server SEC Consult Vulnerability Lab (May 09)
SEC Consult SA-20190510-0 :: Unauthenticated SQL Injection vulnerability in OpenProject SEC Consult Vulnerability Lab (May 10)
SEC Consult SA-20190515-0 :: Authorization Bypass in RSA NetWitness (@sec_consult) SEC Consult Vulnerability Lab (May 15)
SEC Consult SA-20190513-0 :: Cleartext message spoofing in supplementary Go Cryptography Libraries (@sec_consult) SEC Consult Vulnerability Lab (May 13)
Slackware Security Team
[slackware-security] rdesktop (SSA:2019-135-01) Slackware Security Team (May 16)
[slackware-security] curl (SSA:2019-142-01) Slackware Security Team (May 23)
[slackware-security] mozilla-firefox (SSA:2019-141-01) Slackware Security Team (May 22)
Yves-Alexis Perez
[SECURITY] [DSA 4450-1] wpa security update Yves-Alexis Perez (May 27)