Full Disclosure
Posted by Vulnerability Lab on Jun 10
Document Title:
===============
Heroku Bug Bounty #2 – (API) Re Auth Session Bypass Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1323
Video: http://www.vulnerability-lab.com/get_content.php?id=1336
Vulnerability Magazine:
http://magazine.vulnerability-db.com/?q=articles/2015/06/09/heroku-bug-bounty-2015-api-re-auth-session-token-bypass-vulnerability
Release Date:
=============…
Posted by RedTeam Pentesting GmbH on Jun 10
Advisory: Alcatel-Lucent OmniSwitch Web Interface Cross-Site Request Forgery
During a penetration test, RedTeam Pentesting discovered a vulnerability
in the management web interface of an Alcatel-Lucent OmniSwitch 6450.
The management web interface has no protection against cross-site
request forgery attacks. This allows specially crafted web pages to
change the switch configuration and create users, if an administrator
accesses the website…
Posted by RedTeam Pentesting GmbH on Jun 10
Advisory: Alcatel-Lucent OmniSwitch Web Interface Weak Session ID
During a penetration test, RedTeam Pentesting discovered a vulnerability
in the management web interface of an Alcatel-Lucent OmniSwitch 6450.
This interface uses easily guessable session IDs, which allows attackers
to authenticate as a currently logged-in user and perform administrative
tasks.
Details
=======
Product: Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400,…
Posted by Douglas Held on Jun 09
Dear Fulldisclosure,
I submitted the below vulnerability to the HP Zero Day Initiative. They
responded that they are not interested in vulnerabilities in this
“product”. Further, I tried to contact one of the authors Eric A. Young;
the email bounced.
I am busy with my day job and do not have the resources to identify a fix
team for TinySRP. I hope this potential vulnerability finds its way to
someone who can evaluate it critically….
Posted by Zach C on Jun 09
We’re about halfway through the Broken, Abandoned series
(http://shadow-file.blogspot.com/2015/04/abandoned-part-01.html). I
wrote up a short summary of what we’ve covered up to now and where we
can expect to go from here.
http://shadow-file.blogspot.com/2015/06/abandoned-intermission.html
Stay tuned for Part 8!
Cheers,
Zach
Posted by xin.wang on Jun 09
#############################################################################
#
# DBAPPSECURITY LIMITED http://www.dbappsecurity.com.cn/
#
#############################################################################
#
# CVE ID: CVE-2015-4342
# Product: cacti
# Subject: SQL Injection and Location header injection from cdef id
# Author: unhex
# Date: June 9th 2015
#…
Posted by Larry W. Cashdollar on Jun 09
This advisory is in addition to the one I filed in November http://www.openwall.com/lists/oss-security/2014/11/06/1
that had the following CVEs
assigned CVE-2014-8603 CVE-2014-8604 CVE-2014-8605 CVE-2014-8606 CVE-2014-8607, advisory
http://www.vapid.dhs.org/advisory.php?v=110.
Title: Xloner v3.1.2 wordpress plugin authenticated command execution and XSS
Author: Larry W. Cashdollar, @_larry0
Date: 2015-05-10
Download Site:…
Posted by Justin Burke on Jun 09
Earlier today, Tanium was made aware of a potential scripting vulnerability
affecting the Tanium Platform. Our internal investigation revealed
vulnerabilities in some scripts and fixes have been made available via a
content update. No upgrade of the Tanium Platform (including the Tanium
Server, Tanium Console, and Tanium Client) is required to close this
vulnerability.
The vulnerability can be exploited on any version of the Tanium Platform…
Posted by Hongkai Wu on Jun 09
Workshop on Privacy-Preserving Information Retrieval, held in conjunction
with the ACM SIGIR conference (August 13, 2015; Santiago de Chile)
Submission Deadline: June
15
, 2015.
Acceptance Notifications: June
20
, 2015
Camera-ready Deadline: June
25
, 2015
Workshop: August 13, 2015
Submission types: Long papers (max. 4 pages in ACM SIG format), Position
papers (max. 2 pages in ACM SIG format)
Workshop format: Keynote speech, paper…
Posted by VMware Security Response Center on Jun 09
————————————————————————
VMware Security Advisory
Advisory ID: VMSA-2015-0004
Synopsis: VMware Workstation, Fusion and Horizon View Client updates
address critical security issues
Issue Date: 2015-06-09
Updated on: 2015-06-09 (Initial Advisory)
CVE number: CVE-2012-0897, CVE-2015-2336, CVE-2015-2337, CVE-2015-2338,
CVE-2015-2339, CVE-2015-2340,…