Yokogawa CENTUM CS3000 ‘BKCLogSvr.exe’ Heap Based Buffer Overflow Vulnerability
Category Archives: Security
Security
Vuln: Cisco Intrusion Prevention System CVE-2014-3402 Denial of Service Vulnerability
Cisco Intrusion Prevention System CVE-2014-3402 Denial of Service Vulnerability
Vuln: Linux Kernel CVE-2014-3631 Local Denial of Service Vulnerability
Linux Kernel CVE-2014-3631 Local Denial of Service Vulnerability
SAP BusinessObjects Explorer 14.0.5 XXE Injection
SAP BusinessObjects Explorer version 14.0.5 is vulnerable to XML External Entity (XXE) attacks. This vulnerability could be triggered by an unauthenticated user, as the login request uses vulnerable XML processing as well.
neuroML 1.8.1 XSS / LFI / XXE Injection / Disclosure
neuroML version 1.8.1 suffers from cross site scripting, local file inclusion, XXE injection, and path disclosure vulnerabilities.
Red Hat Security Advisory 2014-1371-01
Red Hat Security Advisory 2014-1371-01 – Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Netscape Portable Runtime provides platform independence for non-GUI operating system facilities. A flaw was found in the way NSS parsed ASN.1 input from certain RSA signatures. A remote attacker could use this flaw to forge RSA certificates by providing a specially crafted signature to an application using NSS.
Fedora EPEL 6 Security Update: php-ZendFramework-1.12.9-1.el6
Resolved Bugs
1151279 – php-ZendFramework: various flaws [epel-6]
1151276 – CVE-2014-8088 php-ZendFramework: null byte issue, connect to LDAP without knowing the password (ZF2014-05)
1151277 – CVE-2014-8089 php-ZendFramework: SQL injection issue when using the sqlsrv PHP extension (ZF2014-06)<br
Contains fixes for two security relevant bugs:
* “ZF2014-05: Anonymous authentication in ldap_bind() function of PHP, using null byte” (http://framework.zend.com/security/advisory/ZF2014-05)
* “ZF2014-06: SQL injection vector when manually quoting values for sqlsrv extension, using null byte” (http://framework.zend.com/security/advisory/ZF2014-06)
Fedora EPEL 7 Security Update: php-ZendFramework2-2.3.3-1.el7
Resolved Bugs
1151281 – php-ZendFramework2: various flaws [epel-7]
1151276 – CVE-2014-8088 php-ZendFramework: null byte issue, connect to LDAP without knowing the password (ZF2014-05)
1151277 – CVE-2014-8089 php-ZendFramework: SQL injection issue when using the sqlsrv PHP extension (ZF2014-06)<br
Security release
* ZF2014-05, which mititages null byte poisoning of the password provided for LDAP authentication, thus prevening unauthorized LDAP binding. This corrects for unpatched versions of PHP (versions 5.5.11 and below, 5.4.27 and below, and any prior releases).
* ZF2014-06, which mitigates null byte poisoning of quoted SQL values provided to the sqlsrv extension, thus preventing a potential SQL injection vector.
SAP BusinessObjects Explorer 14.0.5 Information Disclosure
SAP BusinessObjects Explorer version 14.0.5 does not validate the user defined inputs of parameter CMS name, which consists of a host name and port number. This can be used to perform a port scan within the network range where the BusinessObject Explorer server is located. This vulnerability could be triggered as unauthenticated user.
Fedora EPEL 6 Security Update: getmail-4.46.0-2.el6
Resolved Bugs
1149728 – CVE-2014-7273 CVE-2014-7274 CVE-2014-7275 getmail: various flaws related to IMAP4-over-SSL certificate validation<br
update to 4.46.0