Teradata Virtual Machine Community Edition v15.10 has insecure file permissions on /etc/luminex/pkgmgr. These could allow a local user to modify its contents and execute commands as root.
Monthly Archives: November 2016
CVE-2016-7489
Teradata Virtual Machine Community Edition v15.10’s perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution.
CVE-2016-7490
The installation script studioexpressinstall for Teradata Studio Express 15.12.00.00 creates files in /tmp insecurely. A malicious local user could create a symlink in /tmp and possibly clobber system files or perhaps elevate privileges.
Yahoo Tells SEC It Knew About Data Breach in 2014
Yahoo’s latest SEC filing includes confirmation that it knew attackers were on its network in 2014 and stole information on 500 million accounts.
Apple ID smishing evolves to lure more victims
Smishing is nothing new. But that doesn’t mean that the criminals hell bent on stealing Apple ID password are resting on their laurels.
The post Apple ID smishing evolves to lure more victims appeared first on WeLiveSecurity.
Release – Shellcode Compiler
Posted by Ionut Popescu on Nov 10
Shellcode Compiler is a program that compiles C/C++ style code into a small, position-independent and NULL-free
shellcode for Windows. It is possible to call any Windows API function in a user-friendly way.
Shellcode Compiler takes as input a source file and it uses it’s own compiler to interpret the code and generate an
assembly file which is assembled with NASM (http://www.nasm.us/).
Shellcode compiler was released at DefCamp security…
MyBB 1.8.6: XSS
Posted by Curesec Research Team (CRT) on Nov 10
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: MyBB 1.8.6
Fixed in: 1.8.7
Fixed Version Link: http://resources.mybb.com/downloads/mybb_1807.zip
Vendor Website: http://www.mybb.com/
Vulnerability Type: XSS
Remote Exploitable: Yes
Reported to vendor: 01/29/2016
Disclosed to public: 09/15/2016
Release mode: Coordinated Release
CVE: n/a
Credits Tim Coen of…
e107 CMS <= 2.1.2 Privilege Escalation
Posted by Kacper Szurek on Nov 10
# Exploit Title: e107 CMS 2.1.2 Privilege Escalation
# Date: 09-11-2016
# Software Link: http://e107.org/
# Exploit Author: Kacper Szurek
# Contact: http://twitter.com/KacperSzurek
# Website: http://security.szurek.pl/
# Category: webapps
1. Description
Datas from `$_POST[‘updated_data’]` inside `usersettings.php` are not
properly validated so we can set `user_admin`.
http://security.szurek.pl/e107-cms-211-privilege-escalation.html…
[CT-2016-1110] Unauthenticated RCE in Observium network monitor
Posted by Ronald Volgers on Nov 10
############# Computest security advisory CT-2016-1110 ###############
Summary: Unauthenticated remote command execution as root
Affected software: Observium
Reference URL: https://computest.nl/advisories/
CT-2016-1110_Observium.txt
Affected versions: Versions downloaded before 26-10-2016.
(First affected version is not known)
Credit: Ronald Volgers (rvolgers ()…
CA20161109-02: Security Notice for CA Service Desk Manager
Posted by Williams, Ken on Nov 10
CA20161109-02: Security Notice for CA Service Desk Manager
Issued: November 09, 2016
CA Technologies Support is alerting customers to a vulnerability in CA
Service Desk Manager (formerly CA Service Desk). A reflected cross site
scripting vulnerability, CVE-2016-9148, exists in the QBE.EQ.REF_NUM
parameter of the SDM web interface. A remote attacker, who can trick a
user into clicking on or visiting a specially crafted link, could…