Microsoft Windows versions 8.0 and 8.1 on x64 TrackPopupMenu privilege escalation exploit that leverages the vulnerability documented in MS14-058.
Monthly Archives: May 2015
Bugtraq: [SECURITY] [DSA 3265-1] zendframework security update
[SECURITY] [DSA 3265-1] zendframework security update
Bugtraq: Stored XSS in WP Photo Album Plus WordPress Plugin
Stored XSS in WP Photo Album Plus WordPress Plugin
Bugtraq: [security bulletin] HPSBUX03333 SSRT102029 rev.1 – HP-UX Running NTP, Remote Denial of Service (DoS), or Other Vulnerabilities
[security bulletin] HPSBUX03333 SSRT102029 rev.1 – HP-UX Running NTP, Remote Denial of Service (DoS), or Other Vulnerabilities
Bugtraq: [security bulletin] HPSBUX03334 SSRT102000 rev.1 – HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilities
[security bulletin] HPSBUX03334 SSRT102000 rev.1 – HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilities
Hikvision DS-7108HWI-SH XML Injection / Abuse Issues
Hikvision DS-7108HWI-SH suffers from XML injection and abuse control vulnerabilities.
CVE-2015-3036
Stack-based buffer overflow in the run_init_sbus function in the KCodes NetUSB module for the Linux kernel, as used in certain NETGEAR products, TP-LINK products, and other products, allows remote attackers to execute arbitrary code by providing a long computer name in a session on TCP port 20005.
RHSA-2015:1021-1: Important: java-1.5.0-ibm security update
Red Hat Enterprise Linux: Updated java-1.5.0-ibm packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
CVE-2005-1080, CVE-2015-0138, CVE-2015-0192, CVE-2015-0459, CVE-2015-0469, CVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0488, CVE-2015-0491, CVE-2015-1914, CVE-2015-2808
RHSA-2015:1020-1: Critical: java-1.7.1-ibm security update
Red Hat Enterprise Linux: Updated java-1.7.1-ibm packages that fix several security issues are now
available for Red Hat Enterprise Linux 6 and 7 Supplementary.
Red Hat Product Security has rated this update as having Critical security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
CVE-2005-1080, CVE-2015-0138, CVE-2015-0192, CVE-2015-0458, CVE-2015-0459, CVE-2015-0469, CVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0488, CVE-2015-0491, CVE-2015-1914, CVE-2015-2808
RHBA-2015:1019-1: fence-agents bug fix update
Red Hat Enterprise Linux: Updated fence-agents packages that fix one bug are now available for Red Hat
Enterprise Linux 6.