Common LaTeX Service Interface (CLSI) before 0.1.3, as used in ShareLaTeX before 0.1.3, allows remote authenticated users to execute arbitrary code via ` (backtick) characters in a filename.
Monthly Archives: March 2015
Solarwinds Orion Service SQL Injection
Various remote SQL injection vulnerabilities exist in the core Orion service used in most of the Solarwinds products. Affected products include Network Performance Monitor below version 11.5, NetFlow Traffic Analyzer below version 4.1, Network Configuration Manager below version 7.3.2, IP Address Manager below version 4.3, User Device Tracker below version 3.2, VoIP
Red Hat Security Advisory 2015-0287-01
Red Hat Security Advisory 2015-0287-01 – The foreman-proxy package provides a RESTful API to manage DNS, DHCP, TFTP, and Puppet settings, and can be used as part of Foreman. It was discovered that foreman-proxy, when running in SSL-secured mode, did not correctly verify SSL client certificates. This could permit any client with access to the API to make requests and perform actions otherwise restricted. All foreman-proxy users are advised to upgrade to these updated packages, which corrects this issue.
Red Hat Security Advisory 2015-0288-01
Red Hat Security Advisory 2015-0288-01 – The foreman-proxy package provides a RESTful API to manage DNS, DHCP, TFTP, and Puppet settings, and can be used as part of Foreman. It was discovered that foreman-proxy, when running in SSL-secured mode, did not correctly verify SSL client certificates. This could permit any client with access to the API to make requests and perform actions otherwise restricted. All foreman-proxy users are advised to upgrade to these updated packages, which corrects this issue.
PHPMoAdmin Unauthorized Remote Code Execution (0-Day)
Posted by Pichaya Morimoto on Mar 03
######################################################################
# _ ___ _ _ ____ ____ _ _____
# | | / _ | | |/ ___|/ ___| / |_ _|
# | | | | | | | | | _| | / _ | |
# | |__| |_| | | | |_| | |___ / ___ | |
# |________/|_| _|____|____/_/ __|
#
# PHPMoAdmin Unauthorized Remote Code Execution (0-Day)
# Website : http://www.phpmoadmin.com/
# Exploit Author : @u0x (Pichaya Morimoto), Xelenonz, pe3z,…
[Call for Papers] SOURCE Boston (May 27/28)
Posted by Squirrel Herder Productions on Mar 03
The SOURCE Boston CFP is open through March 9th
SOURCE Conference brings security experts and business professionals
together in an intimate and personal environment to discuss the security
industry’s most important issues, technologies, and business trends. SOURCE
places the technical excellence and expertise found at top hacker
conferences in an executive environment where business professionals can
gain insight into the security…
Multiple SQL injections in core Orion service affecting many Solarwinds products (CVE-2014-9566)
Posted by Brandon Perry on Mar 03
I found a couple SQL injection vulnerabilities in the core Orion service
used in most of the Solarwinds products (SAM, IPAM, NPM, NCM, etc…). This
service provides a consistent configuration and authentication layer across
the products.
To be exact, the vulnerable applications and versions are:
Network Performance Monitor — < 11.5
NetFlow Traffic Analyzer — < 4.1
Network Configuration Manager — < 7.3.2
IP Address Manager — <…
PHPMoAdmin Remote Code Execution
PHPMoAdmin suffers from a remote unauthorized code execution vulnerability.
Domain Shadowing Latest Angler Exploit Kit Evasion Technique
The Angler Exploit Kit has begun using domain shadowing as a technique to avoid detection and blocking, researchers at Cisco Talos said.
CVE-2015-2194
Unrestricted file upload vulnerability in the fusion_options function in functions.php in the Fusion theme 3.1 for WordPress allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension in a fusion_save action, then accessing it via unspecified vectors.