Full Disclosure
Posted by Berend-Jan Wever on Nov 14
Throughout November, I plan to release details on vulnerabilities I
found in web-browsers which I’ve not released before. This is the
tenth entry in that series.
The below information is available in more detail on my blog at
http://blog.skylined.nl/20161114001.html.
Follow me on http://twitter.com/berendjanwever for daily browser bugs.
Microsoft Internet Explorer 11 MSHTML CMapElement::Notify use-after-free…
Posted by SEC Consult Vulnerability Lab on Nov 14
SEC Consult Vulnerability Lab Security Advisory < 20161114-0 >
=======================================================================
title: Multiple vulnerabilities
product: I-Panda SolarEagle – Solar Controller Administration
Software / MPPT Solar Controller SMART2
vulnerable version: SolarEagle V2.00 / MPPT Solar Controller SMART2
fixed version: –
CVE number: -…
Posted by VMware Security Response Center on Nov 13
————————————————————————
VMware Security Advisory
Advisory ID: VMSA-2016-0019
Severity: Critical
Synopsis: VMware Workstation and Fusion updates address critical
out-of-bounds memory access vulnerability
Issue date: 2016-11-13
Updated on: 2016-11-13 (Initial Advisory)
CVE number: CVE-2016-7461
1. Summary
VMware Workstation and Fusion…
Posted by Julian Horoszkiewicz on Nov 13
Unexpected behavior of cmd.exe while processing .bat files leads to
potential command injection vulnerabilities
Tested on: Windows 7, Windows 10
Author: Julian Horoszkiewicz
It was discovered that cmd.exe, when processing .bat files, treats the
ASCII substitute character (code 26) as a command separator (like & or |).
This opens the way for unexpected command injection vulnerabilities in
applications which generate .bat files based on user…
Posted by Ian Ling on Nov 11
[+] Credits: Ian Ling
[+] Website: iancaling.com
[+] Source: http://blog.iancaling.com/post/153011925478/
Vendor:
=================
www.trangosys.com
Products:
======================
All models. Newer versions use a different password.
Vulnerability Type:
===================
Default Root Account
CVE Reference:
==============
N/A
Vulnerability Details:
=====================
Trango devices all have a built-in, hidden root account, with a…
Posted by Berend-Jan Wever on Nov 11
Throughout November, I plan to release details on vulnerabilities I
found in web-browsers which I’ve not released before. This is the
ninth entry in that series, and the first to not target a Microsoft browser.
The below information is available in more detail on my blog at
http://blog.skylined.nl/20161111001.html.
Follow me on http://twitter.com/berendjanwever for daily browser bugs.
Google Chrome blink Serializer::doSerialize bad cast…
Posted by Larry W. Cashdollar on Nov 10
Title: Teradata Virtual Machine Community Edition v15.10 has insecure file permission
Author: Larry W. Cashdollar, @_larry0
Date: 2016-10-01
Download Site: http://downloads.teradata.com/download/database/teradata-virtual-machine-community-edition-for-vmware
<http://downloads.teradata.com/download/database/teradata-virtual-machine-community-edition-for-vmware>
Vendor: Teradata
Vendor Notified: 2016-10-01
Vendor Contact: webform contact…
Posted by Summer of Pwnage on Nov 10
————————————————————————
Reflected Cross-Site Scripting vulnerability in W3 Total Cache plugin
————————————————————————
Sipke Mellema, July 2016
————————————————————————
Abstract
————————————————————————
A Cross-Site Scripting vulnerability was found in the…
Posted by Summer of Pwnage on Nov 10
————————————————————————
Information disclosure race condition in W3 Total Cache WordPress Plugin
————————————————————————
Sipke Mellema, July 2016
————————————————————————
Abstract
————————————————————————
An information disclosure vulnerability was found…
Posted by Summer of Pwnage on Nov 10
————————————————————————
Weak validation of Amazon SNS push messages in W3 Total Cache WordPress
Plugin
————————————————————————
Sipke Mellema, July 2016
————————————————————————
Abstract
————————————————————————
A vulnerability in the validation of Amazon…