Full Disclosure
Posted by Apple Product Security on Jan 23
APPLE-SA-2017-01-23-4 tvOS 10.1.1
tvOS 10.1.1 is now available and addresses the following:
Kernel
Available for: Apple TV (4th generation)
Impact: An application may be able to execute arbitrary code with
kernel privileges
Description: A buffer overflow issue was addressed through improved
memory handling.
CVE-2017-2370: Ian Beer of Google Project Zero
Kernel
Available for: Apple TV (4th generation)
Impact: An application may be able to…
Posted by Apple Product Security on Jan 23
APPLE-SA-2017-01-23-3 watchOS 3.1.3
watchOS 3.1.3 is now available and addresses the following:
Accounts
Available for: All Apple Watch models
Impact: Uninstalling an app did not reset the authorization settings
Description: An issue existed which did not reset the authorization
settings on app uninstall. This issue was addressed through improved
sanitization.
CVE-2016-7651: Ju Zhu and Lilang Wu of Trend Micro
Audio
Available for: All Apple…
Posted by Apple Product Security on Jan 23
APPLE-SA-2017-01-23-2 macOS 10.12.3
macOS 10.12.3 is now available and addresses the following:
apache_mod_php
Available for: macOS Sierra 10.12.2
Impact: Multiple issues in PHP
Description: Multiple issues were addressed by updating to PHP
version 5.6.28.
CVE-2016-8670
CVE-2016-9933
CVE-2016-9934
Bluetooth
Available for: macOS Sierra 10.12.2
Impact: An application may be able to execute arbitrary code with
kernel privileges
Description: A…
Posted by Apple Product Security on Jan 23
APPLE-SA-2017-01-23-1 iOS 10.2.1
iOS 10.2.1 is now available and addresses the following:
Auto Unlock
Available for: iPhone 5 and later, iPad 4th generation and later,
iPod touch 6th generation and later
Impact: Auto Unlock may unlock when Apple Watch is off the user’s
wrist
Description: A logic issue was addressed through improved state
management.
CVE-2017-2352: Ashley Fernandez of raptAware Pty Ltd
Contacts
Available for: iPhone 5…
Posted by ERPScan inc on Jan 23
Application: Java SE
Vendor: Oracle
Bug: DoS
Reported: 23.12.2016
Vendor response: 24.12.2016
Date of Public Advisory: 17.01.2017
Reference: Oracle CPU Jan 2017
Author: Roman Shalymov
1. ADVISORY INFORMATION
Title: Oracle OpenJDK – Java Serialization DoS
Advisory ID: [ERPSCAN-17-006]
Risk: High
Advisory URL:
https://erpscan.com/advisories/erpscan-17-006-oracle-openjdk-java-serialization-dos-vulnerability/
Date published: 17.01.2017…
Posted by ERPScan inc on Jan 23
Application: Oracle PeopleSoft
Vendor: Oracle
Bugs: XXS
Reported: 31.10.2016
Vendor response: 1.11.2016
Date of Public Advisory: 17.01.2017
Reference: Oracle CPU Jan 2017
Authors: Vahagn Vardanyan, Dmitry Yudin
1. ADVISORY INFORMATION
Title: Oracle PeopleSoft – XSS vulnerability
Advisory ID: [ERPSCAN-17-005]
Risk: High
Advisory URL:
https://erpscan.com/advisories/erpscan-17-005-oracle-peoplesoft-xss-vulnerability/
Date published:…
Posted by Sullo on Jan 23
The CFP for RVAsec 2017 is underway!
____________________________________
RVAsec // June 8-9th, 2017 // Richmond, VA
RVAsec is a Richmond, VA based security convention that brings top industry
speakers to the midatlantic region. In its fourth year, RVAsec 2016
attracted nearly 400 security professionals from across the country.
Talks must be 50 minutes in length, and submissions will need to select
from one of two tracks: business or…
Posted by Taoguang Chen on Jan 22
#GMP Deserialization Type Confusion Vulnerability [MyBB <= 1.8.3 RCE
Vulnerability]
Taoguang Chen <[@chtg57](https://twitter.com/chtg57)> – Write Date:
2015.4.28 – Release Date: 2017.1.20
Affected Versions
————
Affected is PHP 5.6 < 5.6.30
Credits
————
This vulnerability was disclosed by Taoguang Chen.
Description
————
gmp.c
“`
static int gmp_unserialize(zval **object, zend_class_entry *ce, const
unsigned…
Posted by Stefan Kanthak on Jan 22
Hi @ll,
the executable installers of “Pelle’s C”,
<http://smorgasbordet.com/pellesc/800/setup64.exe> and,
<http://smorgasbordet.com/pellesc/800/setup.exe>, available
from <http://smorgasbordet.com/pellesc/index.htm>, are vulnerable
to DLL hijacking: they load (tested on Windows 7) at least the
following DLLs from their “application directory” instead Windows’
“system directory”:…
Posted by Vulnerability Lab on Jan 20
Topic: Apple (iTunes Notify) – Bypass & Persistent Vulnerability
Advisory: https://www.vulnerability-lab.com/get_content.php?id=2024
Research Article:
https://www.vulnerability-db.com/?q=articles/2016/12/22/apple-ios-102-notify-function-vulnerable-attacks-idevice-itunes-appstore
Press Article:
https://thehackernews.com/2017/01/apple-itunes.html
https://threatpost.com/vulnerabilities-leave-itunes-app-store-open-to-script-injection/123129/