Full Disclosure
Posted by Securify B.V. on Mar 18
————————————————————————
Websense Email Security vulnerable to persistent Cross-Site Scripting in
audit log details view
————————————————————————
Han Sahin, September 2014
————————————————————————
Abstract
————————————————————————
Users of Websense Data…
Posted by Securify B.V. on Mar 18
————————————————————————
Websense Data Security DLP incident Forensics Preview is vulnerable to
Cross-Site Scripting
————————————————————————
Han Sahin, September 2014
————————————————————————
Abstract
————————————————————————
Users of Websense Data…
Posted by XiaopengZhang on Mar 18
Hi Guys,
I discovered several Vuls and have reported them to the vendors, so I’d like to request the CVE for them.(The vendor
did not want to request CVE)
I ever sent some emails to cve-assign () mitre org for applying for CVE.
But so far still nobody replys them. I dont know what happend about this email box.
Is my email recognised as spam? Or do I need write the email content in a special format?
So please, can somebody here help me?…
Posted by jericho on Mar 18
relevent to your ‘buffer overflow’ posts that are not real issues:
http://blogs.technet.com/b/markrussinovich/archive/2005/05/17/buffer-overflows.aspx
http://superuser.com/questions/491597/process-monitor-entrys-with-buffer-overflow
Posted by Patrik Kernstock on Mar 18
Hi,
to just let you know: There is a new OpenSSL version upcoming in about
two days with some fixed security issues with the severity “high”:
“The OpenSSL project team would like to announce the forthcoming release
of OpenSSL versions 1.0.2a, 1.0.1m, 1.0.0r and 0.9.8zf.
These releases will be made available on 19th March. They will fix a
number of security defects. The highest severity defect fixed by these
releases is…
Posted by halfdog on Mar 17
Hello List,
Although I have no row-hammer affected hardware, I tried to build a POC that allows zero-risk exploitation of
row-hammer affected DRAM setups, see [1].
The main idea of the POC is to
* reserve complete rows of physical pages (verified via pagemap)
* remove the cached page of a file suitable for privilege escalation, e.g. a SUID binary or ld-linux, from read page
cache, so that it will be read again and probably mapped to a new…
Posted by Dirk-Willem van Gulik on Mar 16
Until we find solid evidence of two bit-flips introduced in the same board; which is,
given the ease of 1 bit ‘squared’ certainly in the lab within reach.
Over time – attacks always get stronger, never less potent.
Dw.
Posted by Guang Gong on Mar 16
#############################################################################
#
# QIHU 360 SOFTWARE CO. LIMITED http://www.360safe.com/
#
#############################################################################
#
# CVE ID: CVE-2015-1525
# Product: Android
# Vendor: Google
# Subject: A local application could cause a denial-of-service to the
audio_policy app
# Effect: cause a denial of service
# Author: Guang Gong
# Date: March…
Posted by Nick Boyce on Mar 16
Damn – that’s disappointing :-/
I see you’re right – there’s a lot of activity:
https://groups.google.com/group/rowhammer-discuss/
This post:
http://blog.erratasec.com/2015/03/some-notes-on-dram-rowhammer.html
explains that ECC is only going to correct single bit fails, and
likely crash the machine on double-bit fails, but that multi-bit fails
(which the Google tool achieves) may evade the ECC and achieve the
goal….
Posted by Onur Alanbel on Mar 16
Document Title:
============
Citrix Netscaler NS10.5 WAF Bypass via HTTP Header Pollution
Release Date:
===========
12 Mar 2015
Product & Service Introduction:
========================
Citrix NetScaler AppFirewall is a comprehensive application security solution that blocks known and unknown attacks
targeting web and web services applications.
Abstract Advisory Information:
=======================
BGA Security Team discovered an HTTP…