Re: [FD] Windows Mail Find People DLL side loading vulnerability

2016-03-09 Thread Securify B.V.
Hi Stefan, See below. On 09-03-16 12:48, Stefan Kanthak wrote: "Securify B.V." wrote: Windows Mail Find People DLL side loading vulnerability Yori

[FD] [CORE-2016-0003] - Samsung SW Update Tool MiTM

2016-03-09 Thread CORE Advisories Team
1. Advisory Information Title: Samsung SW Update Tool MiTM Advisory ID: CORE-2016-0003 Advisory URL: http://www.coresecurity.com/advisories/samsung-sw-update-tool-mitm Date published: 2016-03-07 Date of last update: 2016-03-04 Vendors contacted: Samsung Release mode: Coordinated release 2. Vulner

[FD] [CORE-2016-0004] - SAP Download Manager Password Weak Encryption

2016-03-09 Thread CORE Advisories Team
1. Advisory Information Title: SAP Download Manager Password Weak Encryption Advisory ID: CORE-2016-0004 Advisory URL: http://www.coresecurity.com/advisories/sap-download-manager-password-weak-encryption Date published: 2016-03-08 Date of last update: 2016-03-07 Vendors contacted: SAP Release mod

[FD] Advisory X41-2016-001: Memory Corruption Vulnerability in "libotr"

2016-03-09 Thread X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory: X41-2016-001 Memory Corruption Vulnerability in "libotr" === Overview Severity Rating: high Confirmed Affected Version: 4.1.0 and below Confirmed Patched Version: libotr 4.1.1 Vendor: OTR Development Team Vendor U

[FD] CVE-2016-2563 - PuTTY/PSCP <=0.66 buffer overflow - vuln-pscp-sink-sscanf

2016-03-09 Thread oststrom (public)
A potential addition to your honeypots. Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-2563 Version:0.1 Date: Feb 20th, 2016 Tag:putty pscp client-side post-auth stack buffer overwrite when processing remote file size Overview ---

[FD] New Security Tool: MrLooquer - IPv6 Intelligence

2016-03-09 Thread Rafa Sanchez
Dear colleagues, Please, allow us to introduce MrLooquer -> https://www.mrlooquer.com MrLooquer combines open source intelligence techniques with heuristic and data mining to perform one of the first attempts to create a real map about IPv6 deployment and its relationship with current networks an

[FD] Thomson TWG850 Wireless Router Multiple Vulnerabilities

2016-03-09 Thread Sebastian Perez
[System Affected] Thomson Router HW Revision 2.0 VENDOR Thomson BOOT Revision 2.1.7i MODEL TWG850-4U Software Version ST9D.01.09 Serial Number 00939902404041 Firmware Name TWG850-4U-9D.01.09-100528-S-001.bin [Vulnerabilities] 1- Cross-Site Request Forgery 2- Unauthenticated access to resources 3-

Re: [FD] Netgear GS105Ev2 - Multiple Vulnerabilities

2016-03-09 Thread Benedikt Westermann
Hi Nick, > The Netgear website [1] shows that a new version of the firmware was > released 2 days after your FD post - version 1.4.0.6. > The release notes [2] for the new version don't refer to these > security issues in any way (instead they mention three fairly > minor-sounding bugs fixed).

[FD] Security contact @ Gigabyte

2016-03-09 Thread Gustavo Sorondo
Hi list, I'd like to know if anyone here know someone working on security at Gigabyte (http://www.gigabyte.com/), since we are trying to responsibly report a high risk security flaw we found. We opened a ticket asking to be contacted by their security team, and the answer we got was: "Thanks for

[FD] Open Vulnerablity ID tracker instead of CVE. Maybe

2016-03-09 Thread op7ic \x00
Hello List, I`m growing a bit tired of the way MITRE assigns CVEs (or just ignores you) so instead, I thought some unmoderated list would be easier to manage. I opted out to keep the same format as CVE with exception of first three letters. https://www.freeovi.com Its completly unmoderated gener

Re: [FD] Windows Mail Find People DLL side loading vulnerability

2016-03-09 Thread Stefan Kanthak
"Securify B.V." wrote: > > Windows Mail Find People DLL side loading vulnerability > > Yorick Koster, September 2015 [...] > - CVE-2016-0100 > - MS16-

[FD] Executable installers are vulnerable^WEVIL (case 30): clamwin-0.99-setup.exe allows arbitrary (remote) code execution WITH escalation of privilege

2016-03-09 Thread Stefan Kanthak
Hi @ll, the executable installer clamwin-0.99-setup.exe (available from ) loads and executes DWMAPI.dll or UXTheme.dll from its "application directory". For software downloaded with a web browser the application directory is typically the user's "Downloads" direc

[FD] Executable installers are vulnerable^WEVIL (case 31): MalwareBytes' installers allows arbitrary (remote) code execution WITH escalation of privilege

2016-03-09 Thread Stefan Kanthak
Hi @ll, Malwarebytes executable installers mbam-setup-2.2.0.1024.exe and mbae-setup-1.08.1.1189.exe (available from and ) load and execute UXTheme.dll and DWMAPI.dll from their "applicati

[FD] [SE-2012-01] Broken security fix in Oracle Java SE 7/8/9

2016-03-09 Thread Security Explorations
Hello All, On Mar 07, 2016 Security Explorations modified its Disclosure Policy [1]. As a result, we do not tolerate broken fixes any more. If an instance of a broken fix for a vulnerability we already reported to the vendor is encountered, it gets disclosed by us without any prior notice. The