It was discovered that the Jackrabbit WebDAV bundle was susceptible to a
XXE/XEE attack. When processing a WebDAV request body containing XML,
the XML parser could be instructed to read content from network
resources accessible to the host, identified by URI schemes such as
http(s)
or file
. Depending on the WebDAV request, this could not
only be used to trigger internal network requests, but might also be
used to insert said content into the request, potentially exposing it to
the attacker and others.
Monthly Archives: June 2015
Re: Google Chrome Address Spoofing (Request For Comment)
Posted by Roney Gomes on Jun 30
2015-06-30 3:08 GMT-03:00 David Leo <david.leo () deusen co uk>:
Did not work for me. I have been redirected to Oracle’s actual website
and then to a blank page later. Strangely though, it worked on the
desktop version of Opera.
DAVOSET v.1.2.5
Posted by MustLive on Jun 30
Hello participants of Mailing List.
After making public release of DAVOSET
(http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2013-June/008850.html),
I’ve made next update of the software. DAVOSET v.1.2.5 was released – DDoS
attacks via other sites execution tool (http://websecurity.com.ua/davoset/).
Video demonstration of DAVOSET: http://www.youtube.com/watch?v=RKi35-f346I
GitHub: https://github.com/MustLive/DAVOSET…
OPM Identity-Protection Phishing Campaigns
Original release date: June 30, 2015
US-CERT is aware of phishing campaigns masquerading as emails from the Office of Personnel Management (OPM) or the identity protection firm CSID. For those affected by the recent data breach, the legitimate domain used for accessing identity protection services is https://opm.csid.com.
US-CERT recommends that users visit the OPM website for more information. Users are also encouraged to report suspicious email to US-CERT.
This product is provided subject to this Notification and this Privacy & Use policy.
OpenDNS Acquisition Gives Cisco Big Security Data
Cisco announced today its intent to acquire big data security company OpenDNS for $635 million in cash.
Apple Patches Dozens of Flaws in iOS 8.4, OS X 10.10.4
Apple has released new versions of iOS and OS X, both of which include a significant number of security patches, several for bugs that can lead to remote code execution and other serious issues. Version 8.4 of iOS contains fixes for more than 30 security vulnerabilities, including bugs in the iOS kernel, WebKit, and CoreText. […]
Fedora 21 Security Update: wesnoth-1.12.4-1.fc21
Resolved Bugs
1236011 – CVE-2015-5070 CVE-2015-5069 wesnoth: authentication information disclosure [fedora-all]<br
Latest upstream.
http://www.openwall.com/lists/oss-security/2015/06/25/2
http://www.openwall.com/lists/oss-security/2015/06/25/2
Fedora 22 Security Update: openhpi-3.4.0-2.fc22
Resolved Bugs
1233521 – CVE-2015-3248 openhpi: world writable /var/lib/openhpi directory [fedora-all]<br
fix /var/lib/openhpi permissions (#1233521).
Fedora 22 Security Update: openvas-scanner-5.0.3-5.fc22,openvas-cli-1.4.1-2.fc22,openvas-libraries-8.0.3-2.fc22,openvas-manager-6.0.3-4.fc22
Resolved Bugs
1169170 – openvas-manager: SQL injection related to the timezone parameter [fedora-all]<br
Bump to openvas8 because of the issues found in previous versions. This should be the first version with scanner really working on Fedora.
Fedora 22 Security Update: libssh-0.7.1-1.fc22
Resolved Bugs
1223964 – libssh 0.7.0 regression breaks cockpit and cockpit test suite
1221310 – undefined symbol: ssh_forward_listen
1218076 – CVE-2015-3146 libssh: null pointer dereference due to a logical error in the handling of a SSH_MSG_NEWKEYS and KEXDH_REPLY packets [fedora-all]
1213775 – CVE-2015-3146 libssh: null pointer dereference due to a logical error in the handling of a SSH_MSG_NEWKEYS and KEXDH_REPLY packets<br
Update to version 0.7.1
Add patch to fix undefined symbol: ssh_forward_listen (bug #1221310)
Update to version 0.7.0
Security fix for CVE-2015-3146