date:20160615

[FD] FortiManager & FortiAnalyzer - (filename) Persistent Web Vulnerability

2016-06-15 Thread Vulnerability Lab

Document Title: === FortiManager & FortiAnalyzer - (filename) Persistent Web Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1687 Fortinet PSIRT ID: 1624561 Release Notes #1: http://docs.fortinet.com/uploaded/files/2796/fo

[FD] Java Deserialization in Solarwinds Virtualization Manager 6.3.1

2016-06-15 Thread Nate Kettlewell

Java Deserialization in Solarwinds Virtualization Manager 6.3.1 Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Version(s): < 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 1

[FD] CVE-2016-3643 - Misconfiguration of sudo in Solarwinds Virtualization Manager

2016-06-15 Thread Nate Kettlewell

Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Version(s): < 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th, 2016 Vulnerability Type: Security Misconfiguration CVE Ref

[FD] [CVE-2014-1520] NOT FIXED: privilege escalation via Mozilla's executable installers

2016-06-15 Thread Stefan Kanthak

Hi @ll, should have fixed CVE-2014-1520 in Mozilla's executable installers for Windows ... but does NOT! JFTR: this type of vulnerability (really: a bloody stupid trivial beginner's error!) is well-known and well-documented as

[FD] CVE-2016-3643 - Misconfiguration of sudo in Solarwinds Virtualization Manager

2016-06-15 Thread Nate Kettlewell

Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Version(s): < 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th, 2016 Vulnerability Type: Security Misconfiguration CVE Ref

[FD] CVE-2016-3642 - Java Deserialization in Solarwinds Virtualization Manager 6.3.1

2016-06-15 Thread Nate Kettlewell

Java Deserialization in Solarwinds Virtualization Manager 6.3.1 Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Version(s): < 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 1

[FD] Siklu EtherHaul Hidden ‘root’ Account

2016-06-15 Thread Ian Ling

[+] Credits: Ian Ling [+] Website: iancaling.com [+] Source: http://blog.iancaling.com/post/145309944453/ Vendor: = www.siklu.com/ Product: == -EtherHaul EH-1200F/FX/TX, EH-2200F/FX, EH-600T/TL -EtherHaul EH-1200/TL Vulnerability Type: === Defa

[FD] Face Authentication Bypassing – KeyLemon

2016-06-15 Thread omarbv

Application --- KeyLemon offers convenient, secure and continuous biometric authentication solutions based on face and speaker recognition. To improve robustness to illumination and pose, as well as to provide enhanced security against photo/video spoofing attacks, KeyLemon's latest f

[FD] Microsoft Visio multiple DLL side loading vulnerabilities

2016-06-15 Thread Securify B.V.

Microsoft Visio multiple DLL side loading vulnerabilities Yorick Koster, August 2015 --

[FD] FortiManager & FortiAnalyzer - (filename) Persistent Web Vulnerability

[FD] Java Deserialization in Solarwinds Virtualization Manager 6.3.1

[FD] CVE-2016-3643 - Misconfiguration of sudo in Solarwinds Virtualization Manager

[FD] [CVE-2014-1520] NOT FIXED: privilege escalation via Mozilla's executable installers

[FD] CVE-2016-3643 - Misconfiguration of sudo in Solarwinds Virtualization Manager

[FD] CVE-2016-3642 - Java Deserialization in Solarwinds Virtualization Manager 6.3.1

[FD] Siklu EtherHaul Hidden ‘root’ Account

[FD] Face Authentication Bypassing – KeyLemon

[FD] Microsoft Visio multiple DLL side loading vulnerabilities

9 matches

Site Navigation

Mail list logo

Footer information