Full Disclosure
Posted by Larry W. Cashdollar on Apr 01
Title: Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17
Author: Larry W. Cashdollar, @_larry0
Date: 2015-03-29
Download Site: https://wordpress.org/plugins/videowhisper-video-presentation/
Vendor: http://www.videowhisper.com/
Vendor Notified: 2015-03-31 won’t fix, http://www.videowhisper.com/tickets_view.php?t=10019545-1427810822
Vendor Contact: http://www.videowhisper.com/tickets_submit.php…
Posted by Larry W. Cashdollar on Apr 01
Title: Remote file upload vulnerability in videowhisper-video-conference-integration wordpress plugin v4.91.8
Author: Larry W. Cashdollar, @_larry0
Date: 2015-03-29
Download Site: https://wordpress.org/support/plugin/videowhisper-video-conference-integration
Vendor: http://www.videowhisper.com/
Vendor Notified: 2015-03-31, won’t fix. http://www.videowhisper.com/tickets_view.php?t=10019545-1427810822
Vendor Contact:…
Posted by Johnny Five on Apr 01
Posted by dirt diggler on Mar 31
*Overview*
Multicast DNS implementations may respond to unicast queries that originate
from sources outside of the local link network. Such responses may disclose
information about network devices or be used in denial-of-service (DoS)
amplification attacks.
Posted by Mauro Gentile on Mar 30
As a follow up to our previous email, we have just released more details
regarding our research on CVE-2011-2461. Specifically, we discussed a
real world exploitation scenario and we provided a detailed FAQ page
with test cases:
Exploiting CVE-2011-2461 on google.com
http://blog.mindedsecurity.com/2015/03/exploiting-cve-2011-2461-on-googlecom.html
FAQ (+ test cases)
http://blog.nibblesec.org/2015/03/cve-2011-2461-is-back-faq.html
Cheers,
Mauro…
Posted by Black Arch on Mar 30
Hi,
Today we released new BlackArch Linux ISOs. The new ISOs include over
1200
tools for i686 and x86_64 and over 1000 tools for armv6h and
armv7h.
If you’re not already familiar with BlackArch Linux, please read
the
DESCRIPTION section
below.
Here’s a short
ChangeLog:
– lot’s of
bugfixes
– change splash for boot loader (syslinux /
grub)
– updated pacman.conf
settings
– updated
/etc/motd
– updated
/etc/issue…
Posted by MustLive on Mar 30
Hello list!
There are vulnerabilities in multiple Hikvision IP cameras and DVR.
These are Abuse of Functionality and Brute Force vulnerabilities, similar to
holes in Hikvision DS-7204HWI-SH, which I disclosed earlier.
————————-
Affected vendors:
————————-
Hikvision
http://www.hikvision.com
————————-
Affected products:
————————-
Vulnerable are the next models with different…
Posted by Hanno Böck on Mar 30
From
https://blog.fuzzing-project.org/6-Stack-overflow-in-libtasn1-TFPA-0022015.html
libtasn1 is a library to parse ASN.1 data structures. Its most
prominent user is GnuTLS.
Fuzzing libtasn1 led to the discovery of a stack write overflow in the
function _asn1_ltostr (file parser_aux.c). It overflows a temporary
buffer variable on certain inputs. This issue has been reported to the
developers on 2015-03-26. A fix was released on 2015-03-29.
The…
Posted by CORE Advisories Team on Mar 30
1. Advisory Information
Title: Schneider Vampset Stack and Heap Buffer Overflow
Advisory ID: CORE-2015-0007
Advisory URL: http://www.coresecurity.com/advisories/schneider-vampset-stack-and-heap-buffer-overflow
Date published: 2015-03-30
Date of last update: 2015-03-27
Vendors contacted: Schneider
Release mode: Coordinated release
2. Vulnerability Information
Class: Heap-based Buffer Overflow [CWE-122], Stack-based Buffer Overflow [CWE-121]…
Posted by Matthew Daley on Mar 28
Affected software: Appweb Web Server
CVE ID: CVE-2014-9708
Description: An HTTP request with a Range header of the form “Range:
x=,” (ie. with an empty range value) will cause a null pointer
dereference, leading to a remotely-triggerable DoS.
Fixed versions: 4.6.6, 5.2.1
Bug entry: https://github.com/embedthis/appweb/issues/413
Fix:…