Full Disclosure
Posted by Julian Horoszkiewicz on May 14
Title: Ambari Server 1.7.0 Local Privilege Escalation
Author: Julian Horoszkiewicz
Description:
An issue with ambari-root privilege separation model has been identified.
The reason for this is that /var/lib/ambari-server/ambari-env.sh script is
by default owned by user ambari, but executed as root. That opens the way
for adding arbitrary commands to be executed as root if one has access to
ambari user account.
The ambari server itself runs with…
Posted by Julian Horoszkiewicz on May 14
Title: Hue 3.7.1 Local Privilege Escalation
Author: Julian Horoszkiewicz
Description:
An issue with hue-root privilege separation model has been identified. The
reason for this is that /usr/lib/hue/build/env/bin/supervisor python script
is by default owned by user hue, but executed as root. That opens the way
for adding arbitrary commands to be executed as root if one has access to
hue user account.
The hue server itself runs with privileges of…
Posted by SEC Consult Vulnerability Lab on May 14
SEC Consult Vulnerability Lab Security Advisory < 20150514-0 >
=======================================================================
title: Multiple vulnerabilities
product: Loxone Smart Home
vulnerable version: Firmware version <6.4.5.12
fixed version: 6.4.5.12
impact: Critical
homepage: http://www.loxone.com
found: 2015-03-12
by: Johannes Greil…
Posted by Scott Arciszewski on May 14
I’m honestly surprised it took their team two months to fix this. I’ve
previously reported issues via HackerOne and they were on it within a day.
If anyone else is thinking about whitehatting up Concrete5, you might get a
faster response if you go through the HackerOne platform. Also, they’re
friendly and won’t pull a Daniel Kerr move on you if you tell them their
code is Swiss cheese. Speaking from experience here.
Posted by Roy Nielsen on May 13
STONIX is an operating system configuration hardening tool for Unix and Unix
like (e.g. Linux) operating systems. This tool implements a hybrid of
guidance from NSA, DISA STIGs, USGCB and the CIS. To as great of a degree as
possible each guidance element for each platform is evaluated on the other
platforms for applicability and applied if possible.
Repository at: https://github.com/CSD-Public/stonix
The STONIX program is a modular codebase…
Posted by Anal Bleed on May 13
This is an irresponsible disclosure of the vulnerability, which will bring
large parts of the Internet into its knees – CVE-b045-73d a.k.a Analbleed.
Obviously you can find the fancy logo for it below (officially approved by
the security community and industry worldwide). You can also listen to the
O.S.T. on the vuln’s official website free of charge (as for now) here at
http://analbleed.com. If you are interested in purchasing…
Posted by Onur Yilmaz on May 13
Information
——————–
Advisory by Netsparker.
Name: Multiple XSS Vulnerabilities in Concrete5
Affected Software : Concrete5
Affected Versions: 5.7.3.1 and possibly below
Vendor Homepage : https://www.concrete5.org
Vulnerability Type : Cross-site Scripting
Severity : Important
CVE-ID: CVE-2015-2250
Netsparker Advisory Reference : NS-15-008
Description
——————–
By exploiting a Cross-site scripting vulnerability the attacker…
Posted by CORE Advisories Team on May 13
1. Advisory Information
Title: SAP LZC/LZH Compression Multiple Vulnerabilities
Advisory ID: CORE-2015-0009
Advisory URL: http://www.coresecurity.com/advisories/sap-lzc-lzh-compression-multiple-vulnerabilities
Date published: 2015-05-12
Date of last update: 2015-05-12
Vendors contacted: SAP
Release mode: Coordinated release
2. Vulnerability Information
Class: Out-of-bounds Write [CWE-787], Out-of-bounds Read [CWE-125]
Impact: Denial of service…
Posted by Vulnerability Lab on May 13
Document Title:
===============
Web India Solutions CMS 2015 – SQL Injection Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1495
Release Date:
=============
2015-05-13
Vulnerability Laboratory ID (VL-ID):
====================================
1495
Common Vulnerability Scoring System:
====================================
8.3
Product & Service Introduction:…
Posted by SEC Consult Vulnerability Lab on May 13
SEC Consult Vulnerability Lab Security Advisory < 20150513-0 >
=======================================================================
title: Multiple critical vulnerabilities
product: WSO2 Identity Server
other WSO2 Carbon based products may be affected too
vulnerable version: 5.0.0 (WSO2 Carbon Framework v4.2.0 patch1095)
fixed version: 5.0.0 with patches 1194 and 1095 applied…