In more than three decades years, the FISA Court has only rejected 12 requests.
from Latest topics for ZDNet in Security http://ift.tt/1r5v9DQ
Saturday, April 30, 2016
Friday, April 29, 2016
FBI Releases Article on Ransomware
Original release date: April 29, 2016
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1O1MRx5
The Federal Bureau of Investigation (FBI) has released an article addressing the proliferation of ransomware campaigns. Ransomware is a type of malicious software that infects a computer and restricts users' access to it until a ransom is paid to unlock it. Individuals and organizations are discouraged from paying the ransom, as this does not guarantee access will be restored.
Users and administrators are encouraged to review the FBI article Ransomware on the Rise for details and refer to US-CERT Alert TA16-091A for more information on ransomware.
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1O1MRx5
Google Pays Out $14K in Bug Bounties in Latest Chrome Update
Yes, a fake Chrome update is out there circulating, but Google released a real one this week too, with nine important patches.
from http://ift.tt/24auoLH
from http://ift.tt/24auoLH
American Dental Association Mails Malware-Laced USB Drives to Thousands
The ADA sent out 37,000 drives, some with malicious code that redirects recipients to a website service malware used for PC takeovers.
from http://ift.tt/1Szy8Pj
from http://ift.tt/1Szy8Pj
Ransomware: 85% of Victims Would Say No to Paying Up
Almost a third (30%) said that they didn’t know what ransomware was, with younger people, aged 18-24, less likely to know.
from http://ift.tt/1r392xL
from http://ift.tt/1r392xL
Wells Fargo to Roll Out Eye-Scans for Mobile App Sign-In
Customers will use their iPhone cameras to take a picture of their eyes in order to authenticate.
from http://ift.tt/23ehpTv
from http://ift.tt/23ehpTv
Ransomware Virus Shuts Down Electric and Water Utility
Ransomware has become an albatross around the neck, targeting businesses, hospitals, and personal computers worldwide and extorting Millions of Dollars. Typical Ransomware targets victim's computer encrypts files on it, and then demands a ransom -- typically about $500 in Bitcoin -- in exchange for a key that will decrypt the files. Guess what could be the next target of ransomware malware?
from The Hacker News http://ift.tt/1O0OYRK
from The Hacker News http://ift.tt/1O0OYRK
USN-2956-1: ubuntu-core-launcher vulnerability
Ubuntu Security Notice USN-2956-1
29th April, 2016
ubuntu-core-launcher vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
Summary
ubuntu-core-launcher did not properly isolate snaps from one another.
Software description
- ubuntu-core-launcher - Snap application launcher
Details
Zygmunt Krynicki discovered that ubuntu-core-launcher did not properly
sanitize its input and contained a logic error when determining the
mountpoint of bind mounts when using snaps on traditional Ubuntu systems
(eg, desktop and server). If a user were tricked into installing a
malicious snap with a crafted snap name, an attacker could perform a
delayed attack to steal data or execute code within the security context of
another snap. This issue did not affect Ubuntu Core systems.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 16.04 LTS:
- ubuntu-core-launcher 1.0.27.1
To update your system, please follow these instructions: http://ift.tt/17VXqjU.
In general, a standard system update will make all the necessary changes.
References
from Ubuntu Security Notices http://ift.tt/1O0DTQK
IBM launches blockchain cloud services for government, healthcare sectors
Big Blue is launching its own framework for running blockchain networks along with new services on the IBM Cloud.
from Latest topics for ZDNet in Security http://ift.tt/1rnCiQj
from Latest topics for ZDNet in Security http://ift.tt/1rnCiQj
Fake ‘Google Chrome Update’ Malware Hits Androids
Technology company Zscaler has unearthed new Android malware which is capable of harvesting call logs, SMS data, browser history and banking information.
from http://ift.tt/1NFMGN3
from http://ift.tt/1NFMGN3
IBM Security Bulletin: Multiple vulnerabilities in current releases of IBM® WebSphere Real Time
Java SE issues disclosed in the Oracle April 2016 Critical Patch Update, plus three additional vulnerabilities. CVE(s): CVE-2016-3443 , CVE-2016-0687 , CVE-2016-0686 , CVE-2016-3427 , CVE-2016-3449 , CVE-2016-3422 , CVE-2016-3426 , CVE-2016-0363 ,...
from IBM Product Security Incident Response Team http://ift.tt/1pOvDNB
from IBM Product Security Incident Response Team http://ift.tt/1pOvDNB
IBM Security Bulletin: A vulnerability in IBM WebSphere Application Server affects IBM QuickFile (CVE-2015-2017).
IBM QuickFile uses IBM WebSphere Application Server. A vulnerability has been identified with HTTP response splitting attack in WebSphere Application Server, where a remote attacker could exploit this vulnerability to obtain sensitive information. CVE(s):...
from IBM Product Security Incident Response Team http://ift.tt/1pOvDNv
from IBM Product Security Incident Response Team http://ift.tt/1pOvDNv
Bugtraq: [SECURITY] [DSA 3561-1] subversion security update
[SECURITY] [DSA 3561-1] subversion security update
from SecurityFocus Vulnerabilities http://ift.tt/24p7kFx
from SecurityFocus Vulnerabilities http://ift.tt/24p7kFx
FBI may soon be allowed to hack computers anywhere in the world
A Supreme Court rule change will greatly expand the FBI's hacking capability, civil liberties groups have warned.
from Latest topics for ZDNet in Security http://ift.tt/1WXaFtf
from Latest topics for ZDNet in Security http://ift.tt/1WXaFtf
Irremovable bank data stealing Android malware poses as Google Chrome update
Infostealing malware discovered by Zscaler terminates any installed anti-virus software to steal personal data - and the only way to get rid of it is to completely reset the phone
from Latest topics for ZDNet in Security http://ift.tt/1WWU2xW
from Latest topics for ZDNet in Security http://ift.tt/1WWU2xW
Systems Integrator Arrested for Philippine Election Hack
LulzSec member claims he wanted to point out security flaws in Comelec site
from http://ift.tt/23cI03g
from http://ift.tt/23cI03g
Bugtraq: SQL Injection in GLPI
SQL Injection in GLPI
from SecurityFocus Vulnerabilities http://ift.tt/1WWRPCy
from SecurityFocus Vulnerabilities http://ift.tt/1WWRPCy
Bugtraq: Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability
Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability
from SecurityFocus Vulnerabilities http://ift.tt/1NZBohG
from SecurityFocus Vulnerabilities http://ift.tt/1NZBohG
Lower House Passes Email Privacy Act
Unanimous approval for long overdue update to the law
from http://ift.tt/1Ulis3x
from http://ift.tt/1Ulis3x
DDoS-ers Ramp Up App-Layer Attacks
Kaspersky Lab warning as 74 countries come under fire
from http://ift.tt/1N5SJdX
from http://ift.tt/1N5SJdX
Suspect jailed indefinitely for refusing to decrypt hard drives
The judge in charge of the case says the suspect has "the keys to his prison in his own pocket."
from Latest topics for ZDNet in Security http://ift.tt/1r19nRG
from Latest topics for ZDNet in Security http://ift.tt/1r19nRG
Microsoft to Store Data on DNA — 1,000,000,000 TB in Just a Gram
In Brief Do you know — 1 Gram of DNA Can Store 1,000,000,000 Terabyte of Data for 1000+ Years. Microsoft has purchased 10 Million strands of synthetic DNA, called Oligonucleotides a.k.a. DNA molecules, from biology startup Twist and collaborated with researchers from University of Washington to explore the idea of using synthetic DNA to store huge amount of data. Microsoft is planning to
from The Hacker News http://ift.tt/1N5NOd5
from The Hacker News http://ift.tt/1N5NOd5
U.S. Supreme Court allows the FBI to Hack any Computer in the World
In Brief The US Supreme Court has approved amendments to Rule 41, which now gives judges the authority to issue search warrants, not only for computers located in their jurisdiction but also outside their jurisdiction. Under the original Rule 41, let’s say, a New York judge can only authorize the FBI to hack into a suspect's computer in New York. But the amended rule would now make it
from The Hacker News http://ift.tt/1VEpMZb
from The Hacker News http://ift.tt/1VEpMZb
NEC Australia wins AU$52m CrimTrac biometric contract
NEC Australia has been contracted by the federal government to develop the new Biometric Identification System that will give law enforcement agencies access to fingerprints, palm prints, and facial images.
from Latest topics for ZDNet in Security http://ift.tt/1N5w6Gy
from Latest topics for ZDNet in Security http://ift.tt/1N5w6Gy
Bugtraq: Mozilla doesn't care for upstream security fixes, and doesn't bother to send own security fixes upstream
Mozilla doesn't care for upstream security fixes, and doesn't bother to send own security fixes upstream
from SecurityFocus Vulnerabilities http://ift.tt/24okti8
from SecurityFocus Vulnerabilities http://ift.tt/24okti8
Bugtraq: [security bulletin] HPSBUX03583 SSRT110084 rev.1 - HP-UX BIND Service running Named, Remote Denial of Service (DoS)
[security bulletin] HPSBUX03583 SSRT110084 rev.1 - HP-UX BIND Service running Named, Remote Denial of Service (DoS)
from SecurityFocus Vulnerabilities http://ift.tt/1SxHNpH
from SecurityFocus Vulnerabilities http://ift.tt/1SxHNpH
Thursday, April 28, 2016
Gumtree customer information accessed in data breach
Gumtree Australia has confirmed some customer information was compromised in a security incident on its website last weekend.
from Latest topics for ZDNet in Security http://ift.tt/1QEi9di
from Latest topics for ZDNet in Security http://ift.tt/1QEi9di
Beware texts with links
Can you tell the difference between the real and the spoofed?
from Latest topics for ZDNet in Security http://ift.tt/1QDVmyj
from Latest topics for ZDNet in Security http://ift.tt/1QDVmyj
Pro-ISIS Hacking Groups Form United Cyber Caliphate
This unification of multiple pro-ISIS groups shows an interest in the elevation of cyber-attacks against governments and companies.
from http://ift.tt/1Thyzdv
from http://ift.tt/1Thyzdv
PCI Standard Adds Multi-Factor Authentication Requirements
2FA is now a requirement for any personnel with administrative access into environments handling card data.
from http://ift.tt/1rDzLlq
from http://ift.tt/1rDzLlq
Google Releases Security Update for Chrome
Original release date: April 28, 2016
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1rmb4JS
Google has released Chrome version 50.0.2661.94 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
US-CERT encourages users and administrators to review the Chrome Releases page and apply the necessary update.
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1rmb4JS
Cisco WebEx Meetings Server Open Redirect Vulnerability
A vulnerability in the Cisco WebEx Meetings Server (CWMS) web interface could allow an unauthenticated, remote attacker to redirect a user to an undesired web page.The vulnerability is due to improper input validation of the parameters in the HTTP request. An attacker could exploit this vulnerability by crafting an HTTP request that could cause the web application to redirect the request to a specified malicious URL. This vulnerability is known as an "Open Redirect Attack" and is used in phishing attacks to get users to visit malicious sites without their knowledge.
Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.
This advisory is available at the following link: http://ift.tt/1rC5jrX
A vulnerability in the Cisco WebEx Meetings Server (CWMS) web interface could allow an unauthenticated, remote attacker to redirect a user to an undesired web page.The vulnerability is due to improper input validation of the parameters in the HTTP request. An attacker could exploit this vulnerability by crafting an HTTP request that could cause the web application to redirect the request to a specified malicious URL. This vulnerability is known as an "Open Redirect Attack" and is used in phishing attacks to get users to visit malicious sites without their knowledge.
Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.
This advisory is available at the following link: http://ift.tt/1rC5jrX
Security Impact Rating: Medium
CVE: CVE-2016-1389
from Cisco Security Advisory http://ift.tt/1rC5jrX
Cisco Information Server XML Parser Denial of Service Vulnerability
A vulnerability in the default configuration of the XML parser component of Cisco Information Server (CIS) could allow an unauthenticated, remote attacker to access sensitive data or cause excessive consumption of system resources, which could cause a denial of service (DoS) condition on a targeted system.The vulnerability is due to improper handling of XML External Entities (XXE) by the affected software when the software parses XML files. An attacker could exploit this vulnerability by submitting a crafted XML header to the CIS web framework of an affected device.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link: http://ift.tt/24nnnUs
A vulnerability in the default configuration of the XML parser component of Cisco Information Server (CIS) could allow an unauthenticated, remote attacker to access sensitive data or cause excessive consumption of system resources, which could cause a denial of service (DoS) condition on a targeted system.The vulnerability is due to improper handling of XML External Entities (XXE) by the affected software when the software parses XML files. An attacker could exploit this vulnerability by submitting a crafted XML header to the CIS web framework of an affected device.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link: http://ift.tt/24nnnUs
Security Impact Rating: Medium
CVE: CVE-2016-1343
from Cisco Security Advisory http://ift.tt/24nnnUs
Research Spotlight: The Resurgence of Qbot
The post was authored by Ben Baker. Qbot, AKA Qakbot, has been around for since at least 2008, but it recently experienced a large surge in development and deployments. Qbot is being Qbot primarily targets sensitive information like banking credentials. Here we are unveiling recent changes to the malware that haven’t been made public yet. […]
from Security – Cisco Blog http://ift.tt/247iCS9
from Security – Cisco Blog http://ift.tt/247iCS9
Facebook complied with over 81 percent of US data demands
The social networking giant also saw a spike in national security demands.
from Latest topics for ZDNet in Security http://ift.tt/1SNz7uk
from Latest topics for ZDNet in Security http://ift.tt/1SNz7uk
Google adds security and privacy certifications to its Cloud Platform
The security and privacy certifications set the stage for more regulatory checkboxes need to land enterprises.
from Latest topics for ZDNet in Security http://ift.tt/1NX4i1P
from Latest topics for ZDNet in Security http://ift.tt/1NX4i1P
Symantec Set to Appoint New CEO as Brown Steps Down
Symantec has confirmed that CEO Michael Brown is to step down, as it reported a drop in shares and its estimated revenue was $12 million lower than its forecast of $885 million-$915 million.
from http://ift.tt/1qYkU47
from http://ift.tt/1qYkU47
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: April 2016
Multiple Cisco products incorporate a version of the Network Time Protocol daemon (ntpd) package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or modify the time being advertised by a device acting as a Network Time Protocol (NTP) server.On April 26, 2016, the NTP Consortium of the Network Time Foundation released a security notice that details 11 issues regarding DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may allow an attacker to shift a system's time. Two of the vulnerabilities disclosed in the NTP security notice address issues that were previously disclosed without a complete fix.
The new vulnerabilities disclosed in this document are as follows:
- CVE-2016-1547: Network Time Protocol CRYPTO-NAK Denial of Service Vulnerability
- CVE-2016-1548: Network Time Protocol Interleave-Pivot Denial of Service Vulnerability
- CVE-2016-1549: Network Time Protocol Sybil Ephemeral Association Attack Vulnerability
- CVE-2016-1550: Network Time Protocol Improve NTP Security Against Buffer Comparison Timing Attacks
- CVE-2016-1551: Network Time Protocol Refclock Impersonation Vulnerability
- CVE-2016-2516: Network Time Protocol Duplicate IPs on Unconfig Directives Will Cause an Assertion Botch in ntpd
- CVE-2016-2517: Network Time Protocol Remote Configuration Trustedkey/Requestkey/Controlkey Values Are Not Properly Validated
- CVE-2016-2518: Network Time Protocol Crafted addpeer Causes Array Wraparound with MATCH_ASSOC
- CVE-2016-2519: Network Time Protocol Remote ctl_getitem() Return Value Not Always Checked
- CVE-2015-8138: Network Time Protocol Zero Origin Timestamp Bypass
- CVE-2015-7704: Network Time Protocol Packet Processing Denial of Service Vulnerability
- Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
- Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: January 2016
Cisco will release software updates that address these vulnerabilities.
Workarounds that address one or more of these vulnerabilities may be available and will be documented in the Cisco bug for each affected product.
This advisory is available at the following link:
http://ift.tt/1rCdaWz
Multiple Cisco products incorporate a version of the Network Time Protocol daemon (ntpd) package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or modify the time being advertised by a device acting as a Network Time Protocol (NTP) server.On April 26, 2016, the NTP Consortium of the Network Time Foundation released a security notice that details 11 issues regarding DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may allow an attacker to shift a system's time. Two of the vulnerabilities disclosed in the NTP security notice address issues that were previously disclosed without a complete fix.
The new vulnerabilities disclosed in this document are as follows:
- CVE-2016-1547: Network Time Protocol CRYPTO-NAK Denial of Service Vulnerability
- CVE-2016-1548: Network Time Protocol Interleave-Pivot Denial of Service Vulnerability
- CVE-2016-1549: Network Time Protocol Sybil Ephemeral Association Attack Vulnerability
- CVE-2016-1550: Network Time Protocol Improve NTP Security Against Buffer Comparison Timing Attacks
- CVE-2016-1551: Network Time Protocol Refclock Impersonation Vulnerability
- CVE-2016-2516: Network Time Protocol Duplicate IPs on Unconfig Directives Will Cause an Assertion Botch in ntpd
- CVE-2016-2517: Network Time Protocol Remote Configuration Trustedkey/Requestkey/Controlkey Values Are Not Properly Validated
- CVE-2016-2518: Network Time Protocol Crafted addpeer Causes Array Wraparound with MATCH_ASSOC
- CVE-2016-2519: Network Time Protocol Remote ctl_getitem() Return Value Not Always Checked
- CVE-2015-8138: Network Time Protocol Zero Origin Timestamp Bypass
- CVE-2015-7704: Network Time Protocol Packet Processing Denial of Service Vulnerability
- Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
- Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: January 2016
Cisco will release software updates that address these vulnerabilities.
Workarounds that address one or more of these vulnerabilities may be available and will be documented in the Cisco bug for each affected product.
This advisory is available at the following link:
http://ift.tt/1rCdaWz
Security Impact Rating: Medium
CVE: CVE-2015-7704,CVE-2015-8138,CVE-2016-1547,CVE-2016-1548,CVE-2016-1549,CVE-2016-1550,CVE-2016-1551,CVE-2016-2516,CVE-2016-2517,CVE-2016-2518,CVE-2016-2519
from Cisco Security Advisory http://ift.tt/1rCdaWz
Botnet DDoS Attacks in Q1: Decrease in Length, Increase in Number
Kaspersky Lab has published its report on botnet DDoS attacks for Q1 2016 based on statistics gathered from Kaspersky DDoS Intelligence
from http://ift.tt/1pKdn8a
from http://ift.tt/1pKdn8a
In-Brief: Telegram Vulnerability, Malware in Nuclear Plant, Anti-Tor Malware and Hotpatching Exploit
Clickjacking Vulnerability in Telegram Web Client The official Telegram web-client that allows its users to access messenger account over desktop’s web browser is vulnerable to clickjacking web application vulnerability. Egyptian security researcher Mohamed A. Baset told The Hacker News about a flaw in Telegram that could allow an attacker to change sensitive information of a Telegram user,
from The Hacker News http://ift.tt/24mr3pj
from The Hacker News http://ift.tt/24mr3pj
Cisco Application Policy Infrastructure Controller Enterprise Module Unauthorized Access Vulnerability
A vulnerability in the application programming interface (API) of Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) could allow an unauthenticated, remote attacker to create false system notifications for administrators.The vulnerability is due to insufficient protection of API functions. An attacker could exploit this vulnerability by sending modified attribute-value pairs back to the affected system. An exploit could allow the attacker to trick an administrative user into performing a malicious task on behalf of the attacker.
Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.
This advisory is available at the following link: http://ift.tt/1WUxMES
A vulnerability in the application programming interface (API) of Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) could allow an unauthenticated, remote attacker to create false system notifications for administrators.The vulnerability is due to insufficient protection of API functions. An attacker could exploit this vulnerability by sending modified attribute-value pairs back to the affected system. An exploit could allow the attacker to trick an administrative user into performing a malicious task on behalf of the attacker.
Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.
This advisory is available at the following link: http://ift.tt/1WUxMES
Security Impact Rating: Medium
CVE: CVE-2016-1386
from Cisco Security Advisory http://ift.tt/1WUxMES
IBM Security Bulletin: Multiple vulnerabilities in Samba - including Badlock - Transformation Extender Hypervisor Edition
Samba vulnerabilities were disclosed on April 12, 2016. Samba is used by Transformation Extender Hypervisor Edition. Transformation Extender Hypervisor Edition has addressed the applicable CVEs including the vulnerability commonly referred to as “Badlock”....
from IBM Product Security Incident Response Team http://ift.tt/1N2N3l0
from IBM Product Security Incident Response Team http://ift.tt/1N2N3l0
IBM Security Bulletin: Multiple vulnerabilities in Samba –including Badlock - affect IBM OS Images for Red Hat Linux Systems.
Samba vulnerabilities were disclosed on April 12, 2016. Samba is used by IBM OS Images for Red Hat Linux Systems. IBM OS Images for Red Hat Linux Systems has addressed the applicable CVEs. CVE(s): CVE-2016-2118 , CVE-2015-5370 , CVE-2016-2110 , CVE-2016-2111 ,...
from IBM Product Security Incident Response Team http://ift.tt/1N2N3kW
from IBM Product Security Incident Response Team http://ift.tt/1N2N3kW
IBM Security Bulletin: Multiple vulnerabilities in Samba, including Badlock, affect IBM i
Samba vulnerabilities were disclosed on April 12, 2016. Samba is used by IBM i. IBM i has addressed the applicable CVEs. CVE(s): CVE-2016-2118 , CVE-2015-5370 , CVE-2016-2110 , CVE-2016-2111 , CVE-2016-2112 , CVE-2016-2113 , CVE-2016-2114 , CVE-2016-2115...
from IBM Product Security Incident Response Team http://ift.tt/1N2N5cz
from IBM Product Security Incident Response Team http://ift.tt/1N2N5cz
IBM Security Bulletin: Multiple vulnerabilities in php5 affect IBM Flex System Manager (FSM) (CVE-2015-6836, CVE-2015-6837, CVE-2015-6838)
Multiple security vulnerabilities have been discovered in php5 that is embedded in the IBM FSM. This bulletin addresses these vulnerabilities. CVE(s): CVE-2015-6836 , CVE-2015-6837 , CVE-2015-6838 Affected product(s) and affected version(s): Flex System...
from IBM Product Security Incident Response Team http://ift.tt/1N2N5cu
from IBM Product Security Incident Response Team http://ift.tt/1N2N5cu
IBM Security Bulletin: Multiple vulnerabilities in ISC BIND and Samba - including Badlock - affect IBM Netezza Host Management
ISC BIND is used by IBM Netezza Host Management. Samba is delivered in IBM Netezza Host Management RHEL 5.11 and 6.6 OS upgrade kits. IBM Netezza Host Management has addressed the applicable CVEs including the vulnerability commonly referred to as "Badlock."...
from IBM Product Security Incident Response Team http://ift.tt/1N2N4W6
from IBM Product Security Incident Response Team http://ift.tt/1N2N4W6
IBM Security Bulletin: Multiple vulnerabilitiesin gnutls affect IBM Flex System Manager(FSM) (CVE-2015-2806, CVE-2015-8313)
Multiple security vulnerabilities have been discovered in gnutls that is embedded in the IBM FSM. This bulletin addresses these vulnerabilities. CVE(s): CVE-2015-2806 , CVE-2015-8313 Affected product(s) and affected version(s): Flex System Manager 1.3.4.x Flex...
from IBM Product Security Incident Response Team http://ift.tt/1N2N4W4
from IBM Product Security Incident Response Team http://ift.tt/1N2N4W4
IBM Security Bulletin: A vulnerability in openLDAP affects IBM Flex System Manager(FSM) (CVE-2015-6908)
A security vulnerability has been discovered in openLDAP that is embedded in the IBM FSM. This bulletin addresses the vulnerability. CVE(s): CVE-2015-6908 Affected product(s) and affected version(s): Flex System Manager 1.3.4.x Flex System Manager 1.3.3.x Flex...
from IBM Product Security Incident Response Team http://ift.tt/1N2N34g
from IBM Product Security Incident Response Team http://ift.tt/1N2N34g
IBM Security Bulletin: Potential security vulnerability in IBM WebSphere Application Server for Bluemix if FIPS 140-2 is enabled (CVE-2016-0306) and multiple vulnerabilities in Samba – including Badlock (CVE-2016-2118)
There is a potential security vulnerability in IBM WebSphere Application Server if FIPS 140-2 is enabled. Samba vulnerabilities were disclosed on April 12, 2016. IBM WebSphere Application Server for Bluemix has addressed the applicable CVEs including the...
from IBM Product Security Incident Response Team http://ift.tt/1N2N4FA
from IBM Product Security Incident Response Team http://ift.tt/1N2N4FA
IBM Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Rational Application Developer for WebSphere Software included in Rational Developer for i and Rational Developer for AIX and Linux
Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i (RPG and COBOL + Modernization Tools, Java and EGL editions), and Rational Developer for AIX and Linux. OpenSSL vulnerabilities were...
from IBM Product Security Incident Response Team http://ift.tt/1N2N4p9
from IBM Product Security Incident Response Team http://ift.tt/1N2N4p9
IBM Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition
Java SE issues disclosed in the Oracle April 2016 Critical Patch Update, plus CVE-2016-0636 and three additional vulnerabilities. CVE(s): CVE-2016-3443 , CVE-2016-0687 , CVE-2016-0686 , CVE-2016-3427 , CVE-2016-0636 , CVE-2016-3449 , CVE-2016-3422 ,...
from IBM Product Security Incident Response Team http://ift.tt/1N2N2xi
from IBM Product Security Incident Response Team http://ift.tt/1N2N2xi
IBM Security Bulletin: Multiple vulnerabilities exist with Oracle Outside In Technology (OIT) in IBM FileNet Content Manager and IBM Content Foundation.
Five security vulnerabilities exist in IBM FileNet Content Manager and IBM Content Foundation. See the individual description for the details. CVE(s): CVE-2015-4808 , CVE-2015-6013 , CVE-2015-6014 , CVE-2015-6015 , CVE-2016-0432 Affected product(s) and...
from IBM Product Security Incident Response Team http://ift.tt/1N2N3S5
from IBM Product Security Incident Response Team http://ift.tt/1N2N3S5
IBM Security Bulletin: Multiple Vulnerabilities in IBM SDK, Java Technology Edition Quarterly CPU - Jan 2016 - Includes Oracle Jan 2016 CPU + 3 IBM CVEs affects IBM Algorithmics One Core, Algo Risk Application, and Counterparty Credit Risk
Java SE issues disclosed in the Oracle January 2016 Critical Path Update. Affects AlgoCore, Algo Risk Application, & Counterparty Credit Risk CVE(s): CVE-2015-7575 , CVE-2016-0475 , CVE-2016-0494 , CVE-2016-0466 , CVE-2016-0448 Affected product(s) and affected...
from IBM Product Security Incident Response Team http://ift.tt/1N2N20h
from IBM Product Security Incident Response Team http://ift.tt/1N2N20h
IBM Security Bulletin: A vulnerability in SQLite affects IBM Security Access Manager for Web (CVE-2015-3416)
There is a denial of service vulnerability in SQLite, which affects IBM Security Access Manager for Web. CVE(s): CVE-2015-3416 Affected product(s) and affected version(s): IBM Security Access Manager for Web 7.0 (appliance-based) IBM Security Access Manager...
from IBM Product Security Incident Response Team http://ift.tt/1N2N1JS
from IBM Product Security Incident Response Team http://ift.tt/1N2N1JS
IBM Security Bulletin: Vulnerability in RSOC_APP_01 Frameable Response Potential Clickjacking (CSRF) affects IBM Algorithmics Algo Risk Application - CVE-2016-0207
IBM Algorithmics One-Algo Risk Application could allow a remote attacker to hijack the clicking action of the victim. A remote attacker could send a specially-crafted HTTP request to hijack the victim's click actions from the system. CVE(s): CVE-2016-0207...
from IBM Product Security Incident Response Team http://ift.tt/1N2N1JM
from IBM Product Security Incident Response Team http://ift.tt/1N2N1JM
The Evolution of Scoring Security Vulnerabilities
The Common Vulnerability Scoring System (CVSS), which is used by many in the industry as a standard way to assess and score security vulnerabilities, is evolving to a new version known as CVSSv3. These changes addressed some of the challenges that existed in CVSSv2; CVSSv3 analyzes the scope of a vulnerability and identifies the privileges […]
from Security – Cisco Blog http://ift.tt/24mn4cl
from Security – Cisco Blog http://ift.tt/24mn4cl
Tick cyberespionage group zeros in on Japan
Compromised websites and spear-phishing emails used to infect targets with Daserf Trojan
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1NCLASl
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1NCLASl
CloudFlare offers HTTP/2 Server Push to boost Internet speeds
CloudFlare customers can tap into the protocol to shave loading times off their domains.
from Latest topics for ZDNet in Security http://ift.tt/1rBQW6U
from Latest topics for ZDNet in Security http://ift.tt/1rBQW6U
Bugtraq: CVE-2016-3078: php: integer overflow in ZipArchive::getFrom*
CVE-2016-3078: php: integer overflow in ZipArchive::getFrom*
from SecurityFocus Vulnerabilities http://ift.tt/239d4AU
from SecurityFocus Vulnerabilities http://ift.tt/239d4AU
Botnet DDoS Attacks in Q1: Decrease in Length, Increase in Number
Kaspersky Lab has published its report on botnet DDoS attacks for Q1 2016 based on statistics gathered from Kaspersky DDoS Intelligence
from http://ift.tt/1SSlhdl
from http://ift.tt/1SSlhdl
Firefox: Mozilla patches critical flaws that let attackers execute malicious code
Mozilla fixes critical bugs in Firefox 46 and makes progress in Firefox 47 on moving to a plugin-free future for video streaming.
from Latest topics for ZDNet in Security http://ift.tt/1rkf7q8
from Latest topics for ZDNet in Security http://ift.tt/1rkf7q8
Child Porn Suspect Held in Jail for 7 Months for refusing to Decrypt Hard Drives
In Brief A suspect of child pornography possession, Francis Rawls, who is a former Philadelphia Police Department sergeant, has been in solitary confinement without charges for last seven months and will remain until he complies with a court order forcing him to decrypt his password-protected hard drives seized in connection with a child pornography investigation. Remember Ramona Fricosu?
from The Hacker News http://ift.tt/1qXob3M
from The Hacker News http://ift.tt/1qXob3M
AWS touts full service suite, but Asia availability still limited
Amazon Web Services is evangelising itself as a full-service cloud provider, but limited availability in Asia may mean some customers in the region can't deploy several of its offerings.
from Latest topics for ZDNet in Security http://ift.tt/238Tx3r
from Latest topics for ZDNet in Security http://ift.tt/238Tx3r
Elizabeth Denham Approved as Next ICO
Canadian gets parliamentary green light, and now the hard work begins.
from http://ift.tt/1NCqkMt
from http://ift.tt/1NCqkMt
Cisco Spots New NTP Bugs
Vulnerabilities could help black hats launch more DDoS attacks
from http://ift.tt/1rk7wrn
from http://ift.tt/1rk7wrn
Suckfly:揭露程式碼簽章憑證不為人知的一面
中國境內的進階持續性滲透攻擊 (APT) 團體不斷竊取程式碼簽章憑證
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/238zUZm
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/238zUZm
Suckfly:揭秘代码签名证书不为人知的一面
一家中国的高级持续性渗透攻击(APT)组织对于被盗代码签名证书永无止境的渴求。
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1NCajGj
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1NCajGj
Qatar Bank Hackers Got in Via SQLi – Expert
Trend Micro claims breach was child’s play
from http://ift.tt/1TfBJyv
from http://ift.tt/1TfBJyv
Former Tor Developer Created Malware for FBI to Unmask Tor Users
In Brief According to an investigation, Matt Edman, a cyber security expert and former employee of the Tor Project, helped the FBI with Cornhusker a.k.a Torsploit malware that allowed Feds to hack and unmask Tor users in several high-profile cases, including Operation Torpedo and Silk Road. Do you know who created malware for the FBI that allowed Feds to unmask Tor users? It's an insider's
from The Hacker News http://ift.tt/1SRTsl7
from The Hacker News http://ift.tt/1SRTsl7
Qatar National Bank hacked; 1.4GB file archive leaked online
Qatar National Bank (QNB) has suffered a data breach leading to the theft of 15,000 sensitive files.
from Latest topics for ZDNet in Security http://ift.tt/1rBnMox
from Latest topics for ZDNet in Security http://ift.tt/1rBnMox
Minecraft community Lifeboat hacked; seven million accounts compromised
Minecraft fan community Lifeboat suffered a data breach in January leading to the leak of account data belonging to seven million users.
from Latest topics for ZDNet in Security http://ift.tt/1rjS3b3
from Latest topics for ZDNet in Security http://ift.tt/1rjS3b3
PLATINUM Hackers Hijack Windows Hotpatching to Stay Hidden
In Brief The Microsoft’s Windows Defender Advanced Threat Hunting team detected that a cyber espionage group of hackers, known as PLATINUM, has found a way to turn the Windows's Hotpatching technique (a way of updating the operating system without requiring a restart) to hide its malware from Antivirus products. PLATINUM group has been active since 2009 and launching large-scale attacks
from The Hacker News http://ift.tt/244WHeq
from The Hacker News http://ift.tt/244WHeq
Wednesday, April 27, 2016
Bugtraq: [SECURITY] [DSA 3560-1] php5 security update
[SECURITY] [DSA 3560-1] php5 security update
from SecurityFocus Vulnerabilities http://ift.tt/24lv9Os
from SecurityFocus Vulnerabilities http://ift.tt/24lv9Os
Bugtraq: CVE-2015-5207 - Bypass of Access Restrictions in Apache Cordova iOS
CVE-2015-5207 - Bypass of Access Restrictions in Apache Cordova iOS
from SecurityFocus Vulnerabilities http://ift.tt/1rjHjJE
from SecurityFocus Vulnerabilities http://ift.tt/1rjHjJE
Bugtraq: Re: [ERPSCAN-16-005] SAP HANA hdbxsengine JSON â?? DoS vulnerability
Re: [ERPSCAN-16-005] SAP HANA hdbxsengine JSON â?? DoS vulnerability
from SecurityFocus Vulnerabilities http://ift.tt/24lvbG9
from SecurityFocus Vulnerabilities http://ift.tt/24lvbG9
Bugtraq: CVE-2015-5207 - Bypass of Access Restrictions in Apache Cordova iOS
CVE-2015-5207 - Bypass of Access Restrictions in Apache Cordova iOS
from SecurityFocus Vulnerabilities http://ift.tt/1rjHlkA
from SecurityFocus Vulnerabilities http://ift.tt/1rjHlkA
C3 Alliance is a Justice League for Privileged Account Protection
CyberArk brings together a super-group of companies like FireEye, ForeScout and Intel to boost privileged account security.
from http://ift.tt/1T5PEXi
from http://ift.tt/1T5PEXi
USN-2934-1: Thunderbird vulnerabilities
Ubuntu Security Notice USN-2934-1
27th April, 2016
thunderbird vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
- Ubuntu 15.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary
Several security issues were fixed in Thunderbird.
Software description
- thunderbird - Mozilla Open Source mail and newsgroup client
Details
Bob Clary, Christoph Diehl, Christian Holler, Andrew McCreight, Daniel
Holbert, Jesse Ruderman, and Randell Jesup discovered multiple memory
safety issues in Thunderbird. If a user were tricked in to opening a
specially crafted message, an attacker could potentially exploit these to
cause a denial of service via application crash, or execute arbitrary code
with the privileges of the user invoking Thunderbird. (CVE-2016-1952)
Nicolas Golubovic discovered that CSP violation reports can be used to
overwrite local files. If a user were tricked in to opening a specially
crafted website in a browsing context with addon signing disabled and
unpacked addons installed, an attacker could potentially exploit this to
gain additional privileges. (CVE-2016-1954)
Jose Martinez and Romina Santillan discovered a memory leak in
libstagefright during MPEG4 video file processing in some circumstances.
If a user were tricked in to opening a specially crafted website in a
browsing context, an attacker could potentially exploit this to cause a
denial of service via memory exhaustion. (CVE-2016-1957)
A use-after-free was discovered in the HTML5 string parser. If a user were
tricked in to opening a specially crafted website in a browsing context, an
attacker could potentially exploit this to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the user
invoking Thunderbird. (CVE-2016-1960)
A use-after-free was discovered in the SetBody function of HTMLDocument.
If a user were tricked in to opening a specially crafted website in a
browsing context, an attacker could potentially exploit this to cause a
denial of service via application crash, or execute arbitrary code with
the privileges of the user invoking Thunderbird. (CVE-2016-1961)
Nicolas Grégoire discovered a use-after-free during XML transformations.
If a user were tricked in to opening a specially crafted website in a
browsing context, an attacker could potentially exploit this to cause a
denial of service via application crash, or execute arbitrary code with
the privileges of the user invoking Thunderbird. (CVE-2016-1964)
A memory corruption issues was discovered in the NPAPI subsystem. If
a user were tricked in to opening a specially crafted website in a
browsing context with a malicious plugin installed, an attacker could
potentially exploit this to cause a denial of service via application
crash, or execute arbitrary code with the privileges of the user invoking
Thunderbird. (CVE-2016-1966)
Ronald Crane discovered an out-of-bounds read following a failed
allocation in the HTML parser in some circumstances. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit this to cause a denial of service
via application crash, or execute arbitrary code with the privileges of
the user invoking Thunderbird. (CVE-2016-1974)
Francis Gabriel discovered a buffer overflow during ASN.1 decoding in NSS.
A remote attacker could potentially exploit this to cause a denial of
service via application crash, or execute arbitrary code with the
privileges of the user invoking Thunderbird. (CVE-2016-1950)
Holger Fuhrmannek, Tyson Smith and Holger Fuhrmannek reported multiple
memory safety issues in the Graphite 2 library. If a user were tricked in
to opening a specially crafted message, an attacker could potentially
exploit these to cause a denial of service via application crash, or
execute arbitrary code with the privileges of the user invoking
Thunderbird. (CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792,
CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797,
CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802)
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 16.04 LTS:
- thunderbird 1:38.7.2+build1-0ubuntu0.16.04.1
- Ubuntu 15.10:
- thunderbird 1:38.7.2+build1-0ubuntu0.15.10.1
- Ubuntu 14.04 LTS:
- thunderbird 1:38.7.2+build1-0ubuntu0.14.04.1
- Ubuntu 12.04 LTS:
- thunderbird 1:38.7.2+build1-0ubuntu0.12.04.1
To update your system, please follow these instructions: http://ift.tt/17VXqjU.
After a standard system update you need to restart Thunderbird to make
all the necessary changes.
References
CVE-2016-1950, CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1960, CVE-2016-1961, CVE-2016-1964, CVE-2016-1966, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802
from Ubuntu Security Notices http://ift.tt/1N0NpIX
Waze App: The Road to Stalking Drivers
A vulnerability in the Waze traffic app allows hackers to create "ghost riders" for tracking drivers in real time via GPS.
from http://ift.tt/1WToVDA
from http://ift.tt/1WToVDA
USN-2955-1: Oxide vulnerabilities
Ubuntu Security Notice USN-2955-1
27th April, 2016
oxide-qt vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
- Ubuntu 15.10
- Ubuntu 14.04 LTS
Summary
Several security issues were fixed in Oxide.
Software description
- oxide-qt - Web browser engine for Qt (QML plugin)
Details
A use-after-free was discovered when responding synchronously to
permission requests. An attacker could potentially exploit this to cause
a denial of service via application crash, or execute arbitrary code with
the privileges of the user invoking the program. (CVE-2016-1578)
An out-of-bounds read was discovered in V8. If a user were tricked in to
opening a specially crafted website, an attacker could potentially exploit
this to cause a denial of service via renderer crash. (CVE-2016-1646)
A use-after-free was discovered in the navigation implementation in
Chromium in some circumstances. If a user were tricked in to opening a
specially crafted website, an attacker could potentially exploit this to
cause a denial of service via application crash, or execute arbitrary code
with the privileges of the user invoking the program. (CVE-2016-1647)
A buffer overflow was discovered in ANGLE. If a user were tricked in to
opening a specially crafted website, an attacker could potentially exploit
this to cause a denial of service via application crash, or execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2016-1649)
An out-of-bounds write was discovered in V8. If a user were tricked in to
opening a specially crafted website, an attacker could potentially exploit
this to cause a denial of service via renderer crash, or execute arbitrary
code with the privileges of the sandboxed renderer process.
(CVE-2016-1653)
An invalid read was discovered in the media subsystem in Chromium. If a
user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to cause a denial of service via
application crash. (CVE-2016-1654)
It was discovered that frame removal during callback execution could
trigger a use-after-free in Blink. If a user were tricked in to opening
a specially crafted website, an attacker could potentially exploit this
to cause a denial of service via renderer crash, or execute arbitrary
code with the privileges of the sandboxed renderer process.
(CVE-2016-1655)
Multiple security issues were discovered in Chromium. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to read uninitialized memory, cause a denial
of service via application crash or execute arbitrary code with the
privileges of the user invoking the program. (CVE-2016-1659)
Multiple security issues were discovered in V8. If a user were tricked
in to opening a specially crafted website, an attacker could potentially
exploit these to read uninitialized memory, cause a denial of service via
renderer crash or execute arbitrary code with the privileges of the
sandboxed render process. (CVE-2016-3679)
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 16.04 LTS:
- liboxideqtcore0 1.14.7-0ubuntu1
- Ubuntu 15.10:
- liboxideqtcore0 1.14.7-0ubuntu0.15.10.1
- Ubuntu 14.04 LTS:
- liboxideqtcore0 1.14.7-0ubuntu0.14.04.1
To update your system, please follow these instructions: http://ift.tt/17VXqjU.
In general, a standard system update will make all the necessary changes.
References
CVE-2016-1578, CVE-2016-1646, CVE-2016-1647, CVE-2016-1649, CVE-2016-1653, CVE-2016-1654, CVE-2016-1655, CVE-2016-1659, CVE-2016-3679, LP: 1561450
from Ubuntu Security Notices http://ift.tt/21fEjub
Angler Exploit Kit: Biggest, Baddest Drive-By Shooter in Town
A full 80% of the active drive-by attacks observed in the past month can be attributed to the Angler exploit kit.
from http://ift.tt/1UhXAu4
from http://ift.tt/1UhXAu4
House passes bill forcing feds to seek warrant for old email
The bill unanimously passes the House in a 419-0 vote.
from Latest topics for ZDNet in Security http://ift.tt/26vb8Hs
from Latest topics for ZDNet in Security http://ift.tt/26vb8Hs
Bugtraq: [SECURITY] [DSA 3559-1] iceweasel security update
[SECURITY] [DSA 3559-1] iceweasel security update
from SecurityFocus Vulnerabilities http://ift.tt/26uVf3D
from SecurityFocus Vulnerabilities http://ift.tt/26uVf3D
USN-2950-2: libsoup update
Ubuntu Security Notice USN-2950-2
27th April, 2016
libsoup2.4 update
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
- Ubuntu 15.10
- Ubuntu 14.04 LTS
Summary
This update fixes libsoup NTLM authentication.
Software description
- libsoup2.4 - HTTP client/server library for GNOME
Details
USN-2950-1 fixed vulnerabilities in Samba. The updated Samba packages
introduced a compatibility issue with NTLM authentication in libsoup. This
update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Jouni Knuutinen discovered that Samba contained multiple flaws in the
DCE/RPC implementation. A remote attacker could use this issue to perform
a denial of service, downgrade secure connections by performing a man in
the middle attack, or possibly execute arbitrary code. (CVE-2015-5370)
Stefan Metzmacher discovered that Samba contained multiple flaws in the
NTLMSSP authentication implementation. A remote attacker could use this
issue to downgrade connections to plain text by performing a man in the
middle attack. (CVE-2016-2110)
Alberto Solino discovered that a Samba domain controller would establish a
secure connection to a server with a spoofed computer name. A remote
attacker could use this issue to obtain sensitive information.
(CVE-2016-2111)
Stefan Metzmacher discovered that the Samba LDAP implementation did not
enforce integrity protection. A remote attacker could use this issue to
hijack LDAP connections by performing a man in the middle attack.
(CVE-2016-2112)
Stefan Metzmacher discovered that Samba did not validate TLS certificates.
A remote attacker could use this issue to spoof a Samba server.
(CVE-2016-2113)
Stefan Metzmacher discovered that Samba did not enforce SMB signing even if
configured to. A remote attacker could use this issue to perform a man in
the middle attack. (CVE-2016-2114)
Stefan Metzmacher discovered that Samba did not enable integrity protection
for IPC traffic. A remote attacker could use this issue to perform a man in
the middle attack. (CVE-2016-2115)
Stefan Metzmacher discovered that Samba incorrectly handled the MS-SAMR and
MS-LSAD protocols. A remote attacker could use this flaw with a man in the
middle attack to impersonate users and obtain sensitive information from
the Security Account Manager database. This flaw is known as Badlock.
(CVE-2016-2118)
Samba has been updated to 4.3.8 in Ubuntu 14.04 LTS and Ubuntu 15.10.
Ubuntu 12.04 LTS has been updated to 3.6.25 with backported security fixes.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes. Configuration changes may
be required in certain environments.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 16.04 LTS:
- libsoup2.4-1 2.52.2-1ubuntu0.1
- Ubuntu 15.10:
- libsoup2.4-1 2.50.0-2ubuntu0.1
- Ubuntu 14.04 LTS:
- libsoup2.4-1 2.44.2-1ubuntu2.1
To update your system, please follow these instructions: http://ift.tt/17VXqjU.
In general, a standard system update will make all the necessary changes.
References
from Ubuntu Security Notices http://ift.tt/1N04fYk
USN-2952-2: PHP regression
Ubuntu Security Notice USN-2952-2
27th April, 2016
php5 regression
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 15.10
Summary
USN-2952-1 caused a regression in PHP.
Software description
- php5 - HTML-embedded scripting language interpreter
Details
USN-2952-1 fixed vulnerabilities in PHP. One of the backported patches
caused a regression in the PHP Soap client. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
It was discovered that the PHP Zip extension incorrectly handled
directories when processing certain zip files. A remote attacker could
possibly use this issue to create arbitrary directories. (CVE-2014-9767)
It was discovered that the PHP Soap client incorrectly validated data
types. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2015-8835, CVE-2016-3185)
It was discovered that the PHP MySQL native driver incorrectly handled TLS
connections to MySQL databases. A man in the middle attacker could possibly
use this issue to downgrade and snoop on TLS connections. This
vulnerability is known as BACKRONYM. (CVE-2015-8838)
It was discovered that PHP incorrectly handled the imagerotate function. A
remote attacker could use this issue to cause PHP to crash, resulting in a
denial of service, or possibly obtain sensitive information. This issue
only applied to Ubuntu 14.04 LTS and Ubuntu 15.10. (CVE-2016-1903)
Hans Jerry Illikainen discovered that the PHP phar extension incorrectly
handled certain tar archives. A remote attacker could use this issue to
cause PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2016-2554)
It was discovered that the PHP WDDX extension incorrectly handled certain
malformed XML data. A remote attacker could possibly use this issue to
cause PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2016-3141)
It was discovered that the PHP phar extension incorrectly handled certain
zip files. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly obtain sensitive information.
(CVE-2016-3142)
It was discovered that the PHP libxml_disable_entity_loader() setting was
shared between threads. When running under PHP-FPM, this could result in
XML external entity injection and entity expansion issues. This issue only
applied to Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (No CVE number)
It was discovered that the PHP openssl_random_pseudo_bytes() function did
not return cryptographically strong pseudo-random bytes. (No CVE number)
It was discovered that the PHP Fileinfo component incorrectly handled
certain magic files. An attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE number pending)
It was discovered that the PHP php_snmp_error() function incorrectly
handled string formatting. A remote attacker could use this issue to cause
PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. This issue only applied to Ubuntu 14.04 LTS and Ubuntu
15.10. (CVE number pending)
It was discovered that the PHP rawurlencode() function incorrectly handled
large strings. A remote attacker could use this issue to cause PHP to
crash, resulting in a denial of service. (CVE number pending)
It was discovered that the PHP phar extension incorrectly handled certain
filenames in archives. A remote attacker could use this issue to cause PHP
to crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE number pending)
It was discovered that the PHP mb_strcut() function incorrectly handled
string formatting. A remote attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE number pending)
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 15.10:
- php5-cli 5.6.11+dfsg-1ubuntu3.3
- php5-cgi 5.6.11+dfsg-1ubuntu3.3
- php5-snmp 5.6.11+dfsg-1ubuntu3.3
- php5-mysqlnd 5.6.11+dfsg-1ubuntu3.3
- php5-gd 5.6.11+dfsg-1ubuntu3.3
- libapache2-mod-php5 5.6.11+dfsg-1ubuntu3.3
- php5-fpm 5.6.11+dfsg-1ubuntu3.3
To update your system, please follow these instructions: http://ift.tt/17VXqjU.
In general, a standard system update will make all the necessary changes.
References
from Ubuntu Security Notices http://ift.tt/1N04fHR
Password security: The one simple step pros use to lock down their accounts
In today's high-threat environment, multi-factor authentication is a critical component to safeguarding all your accounts.
from Latest topics for ZDNet in Security http://ift.tt/1NTwliE
from Latest topics for ZDNet in Security http://ift.tt/1NTwliE
Bugtraq: EMC M&R (Watch4net) lacks Cross-Site Request Forgery protection
EMC M&R (Watch4net) lacks Cross-Site Request Forgery protection
from SecurityFocus Vulnerabilities http://ift.tt/1NTCrQa
from SecurityFocus Vulnerabilities http://ift.tt/1NTCrQa
The “Wizzards” of Adware
Talos posted a blog, September 2015, which aimed to identify how often seemingly benign software can be rightly condemned for being a piece of malware. With this in mind, this blog presents an interesting piece of “software” which we felt deserved additional information disclosure. This software exhibits several questionable behaviors including: Attempts to detect sandboxes […]
from Security – Cisco Blog http://ift.tt/236ztia
from Security – Cisco Blog http://ift.tt/236ztia
IBM Security Bulletin: Vulnerability in IBM Java SDK affect IBM Tivoli Monitoring (CVE-2015-7575)
There is a vulnerability in IBM® SDK Java™ Technology Edition that is shipped as part of several IBM Tivoli Monitoring (ITM) components. This vulnerability, commonly referred to as “SLOTH”, was disclosed as part of the IBM Java SDK updates in January 2016....
from IBM Product Security Incident Response Team http://ift.tt/1SAJS0C
from IBM Product Security Incident Response Team http://ift.tt/1SAJS0C
IBM Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Editionaffects IBM Algorithmics Algo Risk Application and Algo One Core ( CVE-2015-4872, CVE-2015-4911, CVE-2015-4893, CVE-2015-4803, CVE-2015-5006)
Java SE issues disclosed in the Oracle October 2015 Critical Patch Update, plus CVE-2015-5006 affect Algo Risk Application and Algo One Core. CVE(s): CVE-2015-4872 , CVE-2015-4911 , CVE-2015-4893 , CVE-2015-4803 , CVE-2015-5006 Affected product(s) and affected...
from IBM Product Security Incident Response Team http://ift.tt/1SAJRKg
from IBM Product Security Incident Response Team http://ift.tt/1SAJRKg
IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Tivoli Provisioning Manager (CVE-2015-4872)
There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 5.0 Service Refresh 16 Fix Pack 13 and Version 6 Service Refresh 16 Fix Pack 7 and earlier releases, that is used by IBM Tivoli Provisioning Manager. These issues...
from IBM Product Security Incident Response Team http://ift.tt/1SAJRtI
from IBM Product Security Incident Response Team http://ift.tt/1SAJRtI
IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Monitoring (CVE-2015-2601,CVE-2015-4749.CVE-2015-2625,CVE-2015-1931 )
There are several vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of several IBM Tivoli Monitoring (ITM) components. CVE(s): CVE-2015-2601 , CVE-2015-4749 , CVE-2015-2625 , CVE-2015-1931 Affected product(s) and affected version(s):...
from IBM Product Security Incident Response Team http://ift.tt/1SAJTSo
from IBM Product Security Incident Response Team http://ift.tt/1SAJTSo
IBM Security Bulletin: Vulnerability in HTTP Response Splitting affects IBM Algorithmics Algo Risk Application & AlgoOne Core- CVE-2015-2017
The IBM WebSphere Portal is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the attacker to...
from IBM Product Security Incident Response Team http://ift.tt/1SAJRd3
from IBM Product Security Incident Response Team http://ift.tt/1SAJRd3
Vulnerability Spotlight: Further NTPD Vulnerabilities
As a member of the Linux Foundation Core Infrastructure Initiative, Cisco is contributing to the CII effort by evaluating the Network Time Protocol daemon (ntpd) for security defects. We previously identified a series of vulnerabilities in the Network Time Protocol daemon; through our continued research we have identified further vulnerabilities in the software. Read More>>
from Security – Cisco Blog http://ift.tt/1SK6FJK
from Security – Cisco Blog http://ift.tt/1SK6FJK
Users are patching Windows, but QuickTime and Java vulnerabilities remain, says Secunia
Secunia's latest reports of software vulnerabilities on PC's running Microsoft Windows should prompt users to patch all their software, and uninstall both Apple QuickTime and Oracle Java.
from Latest topics for ZDNet in Security http://ift.tt/1Ss9FeL
from Latest topics for ZDNet in Security http://ift.tt/1Ss9FeL
10 Key Questions to Answer Before Upgrading Enterprise Software
By Rachel Holdgrafer, Business Content Strategist, Code42 The evolution of software has made possible things we never dreamed. With software upgrades come new competencies and capabilities, better security, speed, power and often disruption. Whenever something new enters an existing ecosystem, it can upset the works. The cadence of software upgrades in large organizations is typically guided […]
The post 10 Key Questions to Answer Before Upgrading Enterprise Software appeared first on Cloud Security Alliance Blog.
from Cloud Security Alliance Blog http://ift.tt/1NT6xU1
USN-2936-1: Firefox vulnerabilities
Ubuntu Security Notice USN-2936-1
27th April, 2016
firefox vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
- Ubuntu 15.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary
Firefox could be made to crash or run programs as your login if it opened a malicious website.
Software description
- firefox - Mozilla Open Source web browser
Details
Christian Holler, Tyson Smith, Phil Ringalda, Gary Kwong, Jesse Ruderman,
Mats Palmgren, Carsten Book, Boris Zbarsky, David Bolter, Randell Jesup,
Andrew McCreight, and Steve Fink discovered multiple memory safety issues
in Firefox. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit these to cause a denial of
service via application crash, or execute arbitrary code with the
privileges of the user invoking Firefox. (CVE-2016-2804, CVE-2016-2806,
CVE-2016-2807)
An invalid write was discovered when using the JavaScript .watch() method in
some circumstances. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to cause a denial of
service via application crash, or execute arbitrary code with the
privileges of the user invoking Firefox. (CVE-2016-2808)
Looben Yang discovered a use-after-free and buffer overflow in service
workers. If a user were tricked in to opening a specially crafted website,
an attacker could potentially exploit these to cause a denial of service
via application crash, or execute arbitrary code with the privileges of
the user invoking Firefox. (CVE-2016-2811, CVE-2016-2812)
Sascha Just discovered a buffer overflow in libstagefright in some
circumstances. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to cause a denial of
service via application crash, or execute arbitrary code with the
privileges of the user invoking Firefox. (CVE-2016-2814)
Muneaki Nishimura discovered that CSP is not applied correctly to web
content sent with the multipart/x-mixed-replace MIME type. An attacker
could potentially exploit this to conduct cross-site scripting (XSS)
attacks when they would otherwise be prevented. (CVE-2016-2816)
Muneaki Nishimura discovered that the chrome.tabs.update API for web
extensions allows for navigation to javascript: URLs. A malicious
extension could potentially exploit this to conduct cross-site scripting
(XSS) attacks. (CVE-2016-2817)
Mark Goodwin discovered that about:healthreport accepts certain events
from any content present in the remote-report iframe. If another
vulnerability allowed the injection of web content in the remote-report
iframe, an attacker could potentially exploit this to change the user's
sharing preferences. (CVE-2016-2820)
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 16.04 LTS:
- firefox 46.0+build5-0ubuntu0.16.04.2
- Ubuntu 15.10:
- firefox 46.0+build5-0ubuntu0.15.10.2
- Ubuntu 14.04 LTS:
- firefox 46.0+build5-0ubuntu0.14.04.2
- Ubuntu 12.04 LTS:
- firefox 46.0+build5-0ubuntu0.12.04.2
To update your system, please follow these instructions: http://ift.tt/17VXqjU.
After a standard system update you need to restart Firefox to make
all the necessary changes.
References
CVE-2016-2804, CVE-2016-2806, CVE-2016-2807, CVE-2016-2808, CVE-2016-2811, CVE-2016-2812, CVE-2016-2814, CVE-2016-2816, CVE-2016-2820, CVE-2018-2817
from Ubuntu Security Notices http://ift.tt/1TdECQr
Bugtraq: Oracle Discoverer Viewer BI - Open Redirect Vulnerability
Oracle Discoverer Viewer BI - Open Redirect Vulnerability
from SecurityFocus Vulnerabilities http://ift.tt/1NT3DP3
from SecurityFocus Vulnerabilities http://ift.tt/1NT3DP3
This Tiny Computer has no Battery, Powered Wirelessly from Radio Waves
No matter how smart and fast your devices would be, the biggest issue is always with the battery technology. Whenever you go to buy any electronic gadget — smartphone, laptop, or any wearable — the most important specification isn’t its processor speed or its camera quality but its Battery Backup, which is not getting better any time soon. What if you could eliminate the very thing entirely
from The Hacker News http://ift.tt/1pERUNK
from The Hacker News http://ift.tt/1pERUNK
Q1 Email Threats Soar 800% in a Year
Proofpoint finds banking Trojans and ransomware dominate Q1 2016
from http://ift.tt/1rzhxSb
from http://ift.tt/1rzhxSb
Pirate Bay visitors infected with crypto-ransomware via bad ads
Pirate Bay users have been hit with talking crypto-ransomware, according to security researchers.
from Latest topics for ZDNet in Security http://ift.tt/1TweGlx
from Latest topics for ZDNet in Security http://ift.tt/1TweGlx
Kaspersky Labs launches lifeline for CryptXXX ransomware victims
This ransomware is particularly nasty as it does not just lock your files, but also steals your data and any Bitcoin you have stored on your PC.
from Latest topics for ZDNet in Security http://ift.tt/1MYSBNt
from Latest topics for ZDNet in Security http://ift.tt/1MYSBNt
Facebook's security measures used against it in fresh phishing campaign
Researchers have discovered a phishing campaign which uses Facebook's security measures to appear legitimate.
from Latest topics for ZDNet in Security http://ift.tt/1SrJaGg
from Latest topics for ZDNet in Security http://ift.tt/1SrJaGg
Low-tech attackers harness open source security tools for targeted cyberespionage
Kaspersky Lab researchers have uncovered a new trend among cyberespionage threat actors: instead of developing customized hacking tools or buying them from third-party suppliers on the criminal underground, they are using tools available on the web for research purposes
from http://ift.tt/1rzdwNo
from http://ift.tt/1rzdwNo
For the First time, FBI discloses a Flaw to Apple, but it's already Patched!
In Brief The Federal Bureau of Investigation (FBI) made its first disclosure about a software security flaw to Apple under the Vulnerability Equities Process (VEP), a White House initiative created in April 2014 for reviewing flaws and deciding which ones should be made public. Unfortunately, the vulnerability reported by the federal agency only affected older versions of Apple’s iOS and OS
from The Hacker News http://ift.tt/26tCQ7q
from The Hacker News http://ift.tt/26tCQ7q
Qatar Bank Hack Exposes ‘MI6 Spies’
Data dump features profiles which could be used in follow-on attacks
from http://ift.tt/1qT9luU
from http://ift.tt/1qT9luU
Hackers don't just want your credit cards, now they want the pattern of your life
Personal data like the name of your pet and even your daily routine are what cybercriminals are looking to steal, warn experts.
from Latest topics for ZDNet in Security http://ift.tt/1SOYtuQ
from Latest topics for ZDNet in Security http://ift.tt/1SOYtuQ
Platinum hacking group abuses Windows patching system in active campaigns
The group has been caught attacking South and Southeast Asian companies through a method called hotpatching.
from Latest topics for ZDNet in Security http://ift.tt/1UgD7FK
from Latest topics for ZDNet in Security http://ift.tt/1UgD7FK
CryptXXX has been decrypted: Kaspersky Lab releases a new tool to free encrypted files
As part of Kaspersky Lab’s ongoing commitment to protect users from the latest ransomware, Fedor Sinitsyn, Senior Malware Analyst at the company, has developed a decryption tool to help victims of CryptXXX restore encrypted files
from http://ift.tt/1WSsPwu
from http://ift.tt/1WSsPwu
Banks Beware: Nearly All of Your ATMs are Insecure
Kaspersky Lab claims physical and software-based flaws put customers’ cash at risk.
from http://ift.tt/1SOQoq8
from http://ift.tt/1SOQoq8
Less Than 1% of Severe/Critical Security Alerts Are Ever Investigated
Staff shortages mean that 88% of businesses have just 1 to 3 people investigating and triaging security events per day.
from http://ift.tt/26tpsjz
from http://ift.tt/26tpsjz
Bugtraq: [slackware-security] mozilla-firefox (SSA:2016-117-01)
[slackware-security] mozilla-firefox (SSA:2016-117-01)
from SecurityFocus Vulnerabilities http://ift.tt/1rhhh9V
from SecurityFocus Vulnerabilities http://ift.tt/1rhhh9V
Jaku Botnet Rises in the East
According to Forcepoint’s 2016 Global Threat Report, Jaku has claimed 19,000 victims across 134 countries so far.
from http://ift.tt/24jnAYK
from http://ift.tt/24jnAYK
Tuesday, April 26, 2016
有关选举应用程序和个人资料安全性的需知事项
总统预选应用程序可收集大量信息,并泄露敏感数据。
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1MYhkkJ
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1MYhkkJ
大統領予備選アプリと個人データについて知っておくべきこと
大統領予備選挙に関連するアプリが大量の情報を収集しており、場合によっては重要なデータが開示される恐れもあります。
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1ryL3Y3
Read More
from Symantec Connect - Security - Blog Entries http://ift.tt/1ryL3Y3
Bugtraq: [SECURITY] [DSA 3558-1] openjdk-7 security update
[SECURITY] [DSA 3558-1] openjdk-7 security update
from SecurityFocus Vulnerabilities http://ift.tt/1SzBq1y
from SecurityFocus Vulnerabilities http://ift.tt/1SzBq1y
Wearables Top IoT Security Concerns, But Orgs Still Aren't Preparing for Them
Businesses connecting wearables (the top source of IoT security breach worries) to their networks has nearly doubled since 2014.
from http://ift.tt/1WoHhM6
from http://ift.tt/1WoHhM6
Spotify Says No Breach—Victims Say Otherwise
He said/she said: Spotify users confirmed their accounts were compromised only days ago, but Spotify insists no breach occurred.
from http://ift.tt/1VR8RmM
from http://ift.tt/1VR8RmM
Mozilla Releases Security Updates
Original release date: April 26, 2016
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1rfRSxf
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
Available updates include:
- Firefox 46
- FireFox ESR 38.8
- FireFox ESR 45.1
Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1rfRSxf
FBI to keep secret how it hacked San Bernardino shooter's iPhone
It turns out even the FBI, which turned to an outside party to unlock the phone, doesn't know the hack works.
from Latest topics for ZDNet in Security http://ift.tt/1XVhZnE
from Latest topics for ZDNet in Security http://ift.tt/1XVhZnE
Bugtraq: [SECURITY] [DSA 3557-1] mysql-5.5 security update
[SECURITY] [DSA 3557-1] mysql-5.5 security update
from SecurityFocus Vulnerabilities http://ift.tt/1SqqtTC
from SecurityFocus Vulnerabilities http://ift.tt/1SqqtTC
Bugtraq: Sophos XG Firewall (SF01V) - Persistent Web Vulnerability
Sophos XG Firewall (SF01V) - Persistent Web Vulnerability
from SecurityFocus Vulnerabilities http://ift.tt/23Z7mXS
from SecurityFocus Vulnerabilities http://ift.tt/23Z7mXS
Bugtraq: Trend Micro (Account) - Email Spoofing Web Vulnerability
Trend Micro (Account) - Email Spoofing Web Vulnerability
from SecurityFocus Vulnerabilities http://ift.tt/1SMo1J6
from SecurityFocus Vulnerabilities http://ift.tt/1SMo1J6
Bugtraq: VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability
VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability
from SecurityFocus Vulnerabilities http://ift.tt/1NP78WE
from SecurityFocus Vulnerabilities http://ift.tt/1NP78WE
Kaspersky Lab experts discover why it’s so easy to make an ATM obey hacker commands
Almost any ATM in the world could be illegally accessed and jackpotted with or without the help of malware.
from http://ift.tt/1QyZX4D
from http://ift.tt/1QyZX4D
The Service Provider Security Question
I talk to a lot of customers and partners in the Service Provider space, and among the many conversations, I notice a common set of concerns centered around a simple question: have we done all that we can to secure both our own infrastructure and that of our customers? Simple enough question, but the answer […]
from Security – Cisco Blog http://ift.tt/1Sq0ETF
from Security – Cisco Blog http://ift.tt/1Sq0ETF
Pro-ISIS Hackers releases 'Kill List' Of 43 United States Officials
In Brief A group of pro-ISIS hackers calling themselves the United Cyber Caliphate (UCC) has issued a "Kill List" containing the names of dozens of U.S. government personnel at the Pentagon, Department of Homeland Security, State Department, and several other federal agencies. Meanwhile, the US military’s Cyber Command has announced to launch its first attack against ISIS' digital
from The Hacker News http://ift.tt/24hRKvo
from The Hacker News http://ift.tt/24hRKvo
In-Brief: Spotify Hack, Secret of Chrome OS, MIT Bug Bounty, Nanowire Batteries
1. Spotify Hacked! Change your Password ASAP If you are one of the millions of people around the world who love to listen to music on Spotify, you may need to change your password immediately. Has Spotify been hacked? The company says no, but some Spotify users have claimed their profiles were hijacked, and details were changed without knowledge, including passwords and email addresses <!--
from The Hacker News http://ift.tt/1rfanC2
from The Hacker News http://ift.tt/1rfanC2
Survey of IT Pros Highlights Lack of Understanding of SaaS Data Loss Risks
By Melanie Sommer, Director of Marketing, Spanning by EMC Recently, Spanning – an EMC company and provider of backup and recovery for SaaS applications – announced the results of a survey* of over 1,000 IT professionals across the U.S. and the U.K. about trends in SaaS data protection. It turns out that IT pros across […]
The post Survey of IT Pros Highlights Lack of Understanding of SaaS Data Loss Risks appeared first on Cloud Security Alliance Blog.
from Cloud Security Alliance Blog http://ift.tt/1rwSxuN
Singtel opens facility to test, train cybersecurity skills
Singapore telco launches cybersecurity training and testing site aimed at helping businesses evaluate their systems and train their employees in the relevant skillsets.
from Latest topics for ZDNet in Security http://ift.tt/1WR2LBQ
from Latest topics for ZDNet in Security http://ift.tt/1WR2LBQ
How cybercriminals earned $100,000 just by sending a DDoS threat email
Just the threat of a crippling DDoS attack seems to be enough to get firms to pay up -- and Armada is cashing in.
from Latest topics for ZDNet in Security http://ift.tt/2331yqM
from Latest topics for ZDNet in Security http://ift.tt/2331yqM
GozNym banking Trojan ramps up attacks, targets Europe
It is no longer just US banks that are the sophisticated Trojan's potential victims.
from Latest topics for ZDNet in Security http://ift.tt/1T1swJw
from Latest topics for ZDNet in Security http://ift.tt/1T1swJw
BT Tower Hosts Mock Retail Breach
In the second face-to-face challenge in Cyber Security Challenge UK’s 2016 series of competitions, the BT Tower hosted the mock investigation into a cyber-attack at the BT Tower in a bid to find the country’s best hidden cyber security talent.
from http://ift.tt/1SpvATT
from http://ift.tt/1SpvATT
Feds Drop Brooklyn iPhone Access Request
FBI claims it now has the passcode to an Apple device belonging to an unnamed individual.
from http://ift.tt/1NOMGFr
from http://ift.tt/1NOMGFr
Verizon: 93% of Compromises Take Less Than an Hour
Latest DBIR reveals firms are failing to get basics right
from http://ift.tt/1pAW2hI
from http://ift.tt/1pAW2hI
Beautiful People Suffers Ugly Data Breach
Some 1.1m user accounts compromised at dating site
from http://ift.tt/1NvZJ3A
from http://ift.tt/1NvZJ3A
SWIFT Software Bug Exploited by Bangladesh Bank Hackers
Attackers manipulated key database, according to report.
from http://ift.tt/23UXjmF
from http://ift.tt/23UXjmF
Laser Gun to Detect Bombs and Chemical Weapons from 100 Feet Away
In Brief US-based Intelligence Advanced Research Projects Activity (IARPA) agency is sponsoring a program to build portable laser sensors that could detect explosives, narcotics and other dangerous chemical weapons from 100 feet away. Dubbed SILMARILS (Standoff Illuminator for Measuring Absorbance and Reflectance Infrared Light Signatures), the program aims to identify biological agents as
from The Hacker News http://ift.tt/1TaLTAs
from The Hacker News http://ift.tt/1TaLTAs
DDoS Extortionists made $100,000 without Launching a Single Attack
In Brief Cyber crooks find a new and ingenious way to make hundreds of thousands of dollars with no effort. An unknown cyber gang, pretending to be Armada Collective, has made more than $100,000 in less than two months simply by threatening to launch DDoS attack on websites, but never actually launched a single attack. A group of Cyber Extortionists is sending threatening emails to
from The Hacker News http://ift.tt/1qOFO5B
from The Hacker News http://ift.tt/1qOFO5B
SB16-116: Vulnerability Summary for the Week of April 18, 2016
Original release date: April 25, 2016
Back to top
Back to top
Back to top
Back to top
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1SKbGoI
The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information.
The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:
-
High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0
-
Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9
-
Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9
Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.
High Vulnerabilities
| Primary Vendor -- Product |
Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| cisco -- adaptive_security_appliance_software | The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686. | 2016-04-21 | 7.8 | CVE-2015-6360 CISCO |
| cisco -- unified_computing_system_platform_emulator | Cisco Unified Computing System (UCS) Platform Emulator 2.5(2)TS4, 3.0(2c)A, and 3.0(2c)TS9 allows local users to gain privileges via crafted arguments on a ucspe-copy command line, aka Bug ID CSCux68832. | 2016-04-15 | 7.2 | CVE-2016-1339 CISCO |
| cisco -- unified_computing_system_platform_emulator | Heap-based buffer overflow in Cisco Unified Computing System (UCS) Platform Emulator 2.5(2)TS4, 3.0(2c)A, and 3.0(2c)TS9 allows local users to gain privileges via crafted libclimeta.so filename arguments, aka Bug ID CSCux68837. | 2016-04-15 | 7.2 | CVE-2016-1340 CISCO |
| dhcpcd_project -- dhcpcd | dhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 and other products, mismanages option lengths, which allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a malformed DHCP response, aka internal bug 26461634. | 2016-04-17 | 10.0 | CVE-2016-1503 CONFIRM CONFIRM CONFIRM |
| emc -- unisphere | An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remote attackers to write to arbitrary files via a crafted pathname. | 2016-04-15 | 10.0 | CVE-2016-0889 BUGTRAQ |
| gnu -- glibc | Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) nanf, or (3) nanl function. | 2016-04-19 | 7.5 | CVE-2014-9761 MLIST CONFIRM MLIST MLIST SUSE SUSE SUSE SUSE SUSE |
| gnu -- glibc | Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access. | 2016-04-19 | 7.5 | CVE-2015-8778 MLIST CONFIRM MLIST MLIST DEBIAN SUSE SUSE SUSE SUSE SUSE |
| gnu -- glibc | Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name. | 2016-04-19 | 7.5 | CVE-2015-8779 MLIST CONFIRM MLIST MLIST DEBIAN SUSE SUSE SUSE SUSE SUSE |
| google -- android | An unspecified media codec in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26220548. | 2016-04-17 | 10.0 | CVE-2016-0834 CONFIRM |
| google -- android | decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a certain negative value, aka internal bug 26070014. | 2016-04-17 | 10.0 | CVE-2016-0835 CONFIRM CONFIRM CONFIRM |
| google -- android | Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 25812590. | 2016-04-17 | 10.0 | CVE-2016-0836 CONFIRM CONFIRM |
| google -- android | MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via a crafted media file, aka internal bug 27208621. | 2016-04-17 | 10.0 | CVE-2016-0837 CONFIRM CONFIRM |
| google -- android | Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, related to arm-wt-22k/lib_src/eas_wtengine.c and arm-wt-22k/lib_src/eas_wtsynth.c, aka internal bug 26366256. | 2016-04-17 | 10.0 | CVE-2016-0838 CONFIRM CONFIRM CONFIRM |
| google -- android | post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 25753245. | 2016-04-17 | 10.0 | CVE-2016-0839 CONFIRM CONFIRM |
| google -- android | Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26399350. | 2016-04-17 | 10.0 | CVE-2016-0840 CONFIRM CONFIRM |
| google -- android | media/libmedia/mediametadataretriever.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mishandles cleared service binders, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26040840. | 2016-04-17 | 10.0 | CVE-2016-0841 CONFIRM CONFIRM |
| google -- android | The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation (MMCO) data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 25818142. | 2016-04-17 | 10.0 | CVE-2016-0842 CONFIRM CONFIRM |
| google -- android | The Qualcomm ARM processor performance-event manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application, aka internal bug 25801197. | 2016-04-17 | 7.2 | CVE-2016-0843 CONFIRM |
| google -- android | The Qualcomm RF driver in Android 6.x before 2016-04-01 does not properly restrict access to socket ioctl calls, which allows attackers to gain privileges via a crafted application, aka internal bug 26324307. | 2016-04-17 | 7.2 | CVE-2016-0844 CONFIRM CONFIRM |
| google -- android | libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26877992. | 2016-04-17 | 7.2 | CVE-2016-0846 CONFIRM CONFIRM |
| google -- android | The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to spoof the originating telephone number of a call via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26864502. | 2016-04-17 | 7.2 | CVE-2016-0847 CONFIRM CONFIRM CONFIRM |
| google -- android | Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to bypass private-storage file-access restrictions via a crafted application that changes a symlink target, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26211054. | 2016-04-17 | 7.2 | CVE-2016-0848 CONFIRM CONFIRM |
| google -- android | Multiple integer overflows in minzip/SysUtil.c in the Recovery Procedure in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allow attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26960931. | 2016-04-17 | 7.2 | CVE-2016-0849 CONFIRM CONFIRM |
| google -- chrome | The LoadBuffer implementation in Google V8, as used in Google Chrome before 50.0.2661.75, mishandles data types, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds write operation, related to compiler/pipeline.cc and compiler/simplified-lowering.cc. | 2016-04-18 | 9.3 | CVE-2016-1653 CONFIRM CONFIRM CONFIRM |
| google -- chrome | Google Chrome before 50.0.2661.75 does not properly consider that frame removal may occur during callback execution, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted extension. | 2016-04-18 | 7.5 | CVE-2016-1655 CONFIRM CONFIRM CONFIRM |
| google -- chrome | Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. | 2016-04-18 | 10.0 | CVE-2016-1659 CONFIRM CONFIRM |
| google -- android | A Texas Instruments (TI) haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 25981545. | 2016-04-17 | 9.3 | CVE-2016-2409 CONFIRM |
| google -- android | A Qualcomm Power Management kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages root access, aka internal bug 26866053. | 2016-04-17 | 9.3 | CVE-2016-2411 CONFIRM |
| google -- android | include/core/SkPostConfig.h in Skia, as used in System_server in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01, mishandles certain crashes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26593930. | 2016-04-17 | 9.3 | CVE-2016-2412 CONFIRM CONFIRM |
| google -- android | media/libmedia/IOMX.cpp in mediaserver in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not initialize a handle pointer, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26403627. | 2016-04-17 | 9.3 | CVE-2016-2413 CONFIRM CONFIRM |
| google -- android | exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to obtain sensitive information via a crafted application that triggers a spoofed response to a GET request, aka internal bug 26488455. | 2016-04-17 | 7.1 | CVE-2016-2415 CONFIRM CONFIRM |
| google -- android | media/libmedia/IOMX.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize certain metadata buffer pointers, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26324358. | 2016-04-17 | 10.0 | CVE-2016-2418 CONFIRM CONFIRM |
| google -- android | rootdir/init.rc in Android 4.x before 4.4.4 does not ensure that the /data/tombstones directory exists for the Debuggerd component, which allows attackers to gain privileges via a crafted application, aka internal bug 26403620. | 2016-04-17 | 9.3 | CVE-2016-2420 CONFIRM CONFIRM CONFIRM |
| juniper -- screenos | The administrative web services interface in Juniper ScreenOS before 6.3.0r21 allows remote attackers to cause a denial of service (reboot) via a crafted SSL packet. | 2016-04-15 | 7.8 | CVE-2016-1268 CONFIRM |
| juniper -- junos | Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R9, 13.2X51 before 13.2X51-D39, 13.3 before 13.3R8, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R4-S1, 15.1 before 15.1R2, 15.1X49 before 15.1X49-D30, and 16.1 before 16.1R1 allow remote attackers to cause a denial of service (socket consumption) via crafted TCP timestamps. | 2016-04-15 | 7.8 | CVE-2016-1269 CONFIRM |
| juniper -- junos | Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via crafted combinations of CLI commands and arguments, a different vulnerability than CVE-2015-3003, CVE-2014-3816, and CVE-2014-0615. | 2016-04-15 | 7.2 | CVE-2016-1271 CONFIRM |
| juniper -- junos | Juniper Junos OS 14.1X53 before 14.1X53-D30 on QFX Series switches allows remote attackers to cause a denial of service (PFE panic) via a high rate of unspecified VXLAN packets. | 2016-04-15 | 7.8 | CVE-2016-1274 CONFIRM |
| Fedora -- latex2rtf | Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format string specifiers in the \keywords command in a crafted TeX file. | 2016-04-18 | 9.3 | CVE-2015-8106 CONFIRM CONFIRM MLIST FEDORA FEDORA FEDORA |
| linuxfoundation -- foomatic-filters | Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title. | 2016-04-15 | 7.5 | CVE-2010-5325 CONFIRM CONFIRM CONFIRM MLIST MLIST REDHAT |
| novell -- opensuse | Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file. | 2016-04-18 | 9.3 | CVE-2015-7552 CONFIRM SUSE |
| optipng -- optipng | Use-after-free vulnerability in OptiPNG 0.6.4 allows remote attackers to execute arbitrary code via a crafted PNG file. | 2016-04-20 | 9.3 | CVE-2015-7801 CONFIRM UBUNTU MLIST |
| oracle -- weblogic_server | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Java Messaging Service. | 2016-04-21 | 7.5 | CVE-2016-0638 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Pluggable Authentication. | 2016-04-21 | 10.0 | CVE-2016-0639 CONFIRM |
| panda -- panda_security_url_filtering | Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering" directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda_URL_Filteringb.exe. | 2016-04-18 | 7.2 | CVE-2015-7378 EXPLOIT-DB FULLDISC MISC |
| panda -- panda_endpoint_administration_agent | Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a weak ACL for the Panda Security/WaAgent directory and sub-directories, which allows local users to gain SYSTEM privileges by modifying an executable module. | 2016-04-18 | 7.2 | CVE-2016-3943 EXPLOIT-DB FULLDISC MISC |
| xen -- xen | Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privileges by shadowing a superpage mapping. | 2016-04-19 | 7.2 | CVE-2016-3960 CONFIRM |
Medium Vulnerabilities
| Primary Vendor -- Product |
Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| apache -- camel | Apache Camel 2.6.x through 2.14.x, 2.15.x before 2.15.5, and 2.16.x before 2.16.1, when using (1) camel-jetty or (2) camel-servlet as a consumer in Camel routes, allow remote attackers to execute arbitrary commands via a crafted serialized Java object in an HTTP request. | 2016-04-15 | 6.8 | CVE-2015-5348 CONFIRM BUGTRAQ MISC CONFIRM |
| dotcms -- dotcms | Directory traversal vulnerability in the dotTailLogServlet in dotCMS before 3.5.1 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the fileName parameter. | 2016-04-18 | 4.0 | CVE-2016-3972 FULLDISC CONFIRM |
| dotcms -- dotcms | SQL injection vulnerability in the Workflow Screen in dotCMS before 3.3.2 allows remote administrators to execute arbitrary SQL commands via the orderby parameter. | 2016-04-19 | 6.5 | CVE-2016-4040 CONFIRM CONFIRM CONFIRM |
| gnu -- glibc | The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value. | 2016-04-19 | 6.4 | CVE-2015-8776 MLIST CONFIRM MLIST MLIST DEBIAN SUSE SUSE SUSE SUSE SUSE |
| google -- android | The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to bypass intended pairing restrictions via a crafted device, aka internal bug 26551752. | 2016-04-17 | 5.8 | CVE-2016-0850 CONFIRM CONFIRM |
| google -- chrome | fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome before 50.0.2661.75, does not properly implement the sycc420_to_rgb and sycc422_to_rgb functions, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via crafted JPEG 2000 data in a PDF document. | 2016-04-18 | 5.8 | CVE-2016-1651 CONFIRM CONFIRM MISC CONFIRM |
| google -- chrome | Cross-site scripting (XSS) vulnerability in the ModuleSystem::RequireForJsInner function in extensions/renderer/module_system.cc in the Extensions subsystem in Google Chrome before 50.0.2661.75 allows remote attackers to inject arbitrary web script or HTML via a crafted web site, aka "Universal XSS (UXSS)." | 2016-04-18 | 4.3 | CVE-2016-1652 CONFIRM CONFIRM CONFIRM |
| google -- chrome | The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service (invalid read operation) via unknown vectors. | 2016-04-18 | 4.3 | CVE-2016-1654 CONFIRM CONFIRM |
| google -- chrome | The download implementation in Google Chrome before 50.0.2661.75 on Android allows remote attackers to bypass intended pathname restrictions via unspecified vectors. | 2016-04-18 | 5.0 | CVE-2016-1656 CONFIRM CONFIRM |
| google -- chrome | The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 50.0.2661.75 mishandles focus for certain about:blank pages, which allows remote attackers to spoof the address bar via a crafted URL. | 2016-04-18 | 4.3 | CVE-2016-1657 CONFIRM CONFIRM CONFIRM |
| google -- chrome | The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrectly relies on GetOrigin method calls for origin comparisons, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted extension. | 2016-04-18 | 5.0 | CVE-2016-1658 CONFIRM CONFIRM CONFIRM |
| google -- android | A Qualcomm video kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 26291677. | 2016-04-17 | 6.9 | CVE-2016-2410 CONFIRM |
| google -- android | The Minikin library in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider negative size values in font data, which allows remote attackers to cause a denial of service (memory corruption and reboot loop) via a crafted font, aka internal bug 26413177. | 2016-04-17 | 4.9 | CVE-2016-2414 CONFIRM CONFIRM CONFIRM |
| huawei -- ar3200_firmware | Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets. | 2016-04-18 | 6.8 | CVE-2016-3950 CONFIRM |
| juniper -- junos | Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 12.3X50 before 12.3X50-D50, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.2X52 before 13.2X52-D30, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R4, 15.1 before 15.1F2 or 15.1R2, 15.1X49 before 15.1X49-D10 or 15.1X49-D20, and 16.1 before 16.1R1 allows remote authenticated users to gain privileges via the URL option. | 2016-04-15 | 6.5 | CVE-2016-1264 CONFIRM |
| juniper -- junos | Race condition in the RPC functionality in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R3-S4, 15.1 before 15.1F2, or 15.1R2, 15.1X49 before 15.1X49-D20, and 16.1 before 16.1R1 allows local users to read, delete, or modify arbitrary files via unspecified vectors. | 2016-04-15 | 4.4 | CVE-2016-1267 CONFIRM |
| juniper -- junos | The rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R9, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R7, 13.2X51 before 13.2X51-D40, 13.3 before 13.3R6, 14.1 before 14.1R4, and 14.2 before 14.2R2, when configured with BGP-based L2VPN or VPLS, allows remote attackers to cause a denial of service (daemon restart) via a crafted L2VPN family BGP update. | 2016-04-15 | 5.0 | CVE-2016-1270 CONFIRM |
| juniper -- junos | Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x before 15.1X53-D20 on QFX5100 and QFX10002 switches do not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic encryption and authentication protection mechanisms via unspecified vectors. | 2016-04-15 | 4.3 | CVE-2016-1273 CONFIRM |
| libreswan -- libreswan | Libreswan 3.16 might allow remote attackers to cause a denial of service (daemon restart) via an IKEv2 aes_xcbc transform. | 2016-04-18 | 5.0 | CVE-2016-3071 CONFIRM FEDORA FEDORA CONFIRM |
| magento -- magento | The getOrderByStatusUrlKey function in the Mage_Rss_Helper_Order class in app/code/core/Mage/Rss/Helper/Order.php in Magento Enterprise Edition before 1.14.2.3 and Magento Community Edition before 1.9.2.3 allows remote attackers to obtain sensitive order information via the order_id in a JSON object in the data parameter in an RSS feed request to http://ift.tt/1rcADgL. | 2016-04-15 | 5.0 | CVE-2016-2212 CONFIRM BUGTRAQ FULLDISC MISC MISC |
| openstack -- tripleo_heat_templates | The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object Storage (Swift) staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive information from private containers via unspecified vectors. | 2016-04-15 | 5.0 | CVE-2015-5271 CONFIRM CONFIRM CONFIRM REDHAT |
| oracle -- peoplesoft_enterprise_human_capital_management_human_resources | Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality via vectors related to Fusion HR Talent Integration. | 2016-04-21 | 4.0 | CVE-2016-0407 CONFIRM |
| oracle -- peoplesoft_enterprise_peopletools | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53 through 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to the Activity Guide sub-component. | 2016-04-21 | 4.3 | CVE-2016-0408 CONFIRM |
| oracle -- micros_c2 | Unspecified vulnerability in the Oracle Retail MICROS C2 component in Oracle Retail Applications 9.89.0.0 allows local users to affect confidentiality via vectors related to POS. | 2016-04-21 | 4.6 | CVE-2016-0469 CONFIRM |
| oracle -- business_intelligence | Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality and integrity via vectors related to Analytics Scorecard. | 2016-04-21 | 5.8 | CVE-2016-0479 CONFIRM |
| oracle -- solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote attackers to affect integrity via vectors related to the Automated Installer sub-component. | 2016-04-21 | 4.3 | CVE-2016-0623 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect integrity and availability via vectors related to DML. | 2016-04-21 | 4.9 | CVE-2016-0640 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect confidentiality and availability via vectors related to MyISAM. | 2016-04-21 | 4.9 | CVE-2016-0641 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated. | 2016-04-21 | 4.3 | CVE-2016-0642 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect confidentiality via vectors related to DML. | 2016-04-21 | 4.0 | CVE-2016-0643 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to DDL. | 2016-04-21 | 4.0 | CVE-2016-0644 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to DML. | 2016-04-21 | 4.0 | CVE-2016-0646 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to FTS. | 2016-04-21 | 4.0 | CVE-2016-0647 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to PS. | 2016-04-21 | 4.0 | CVE-2016-0648 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to PS. | 2016-04-21 | 4.0 | CVE-2016-0649 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to Replication. | 2016-04-21 | 4.0 | CVE-2016-0650 CONFIRM |
| oracle -- flexcube_direct_banking | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.2 and 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors related to Pre-Login. | 2016-04-21 | 5.0 | CVE-2016-0672 CONFIRM |
| oracle -- siebel_ui_framework | Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to UIF Open UI. | 2016-04-21 | 4.9 | CVE-2016-0673 CONFIRM |
| sierra_wireless -- aleos | ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover potentially sensitive boot-sequence information, via unspecified vectors. | 2016-04-21 | 4.3 | CVE-2015-6479 MISC |
| squid -- squid_cache | The FwdState::connectedToPeer method in FwdState.cc in Squid before 3.5.14 and 4.0.x before 4.0.6 does not properly handle SSL handshake errors when built with the --with-openssl option, which allows remote attackers to cause a denial of service (application crash) via a plaintext HTTP message. | 2016-04-19 | 4.3 | CVE-2016-2390 CONFIRM SECTRACK MLIST MLIST CONFIRM |
| tibco -- enterprise_message_service | Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data. | 2016-04-20 | 6.5 | CVE-2016-3628 CONFIRM CONFIRM |
| videolan -- vlc_media_player | Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player before 2.2.0 allows remote attackers to cause a denial of service (crash) via a crafted wav file, related to "seek across EOF." | 2016-04-18 | 4.3 | CVE-2016-3941 MLIST CONFIRM SECTRACK |
| xdelta -- xdelta3 | Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file. | 2016-04-19 | 6.8 | CVE-2014-9765 CONFIRM UBUNTU MLIST MLIST DEBIAN SUSE SUSE |
Low Vulnerabilities
| Primary Vendor -- Product |
Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| apache -- hadoop | Apache Hadoop 2.6.x encrypts intermediate data generated by a MapReduce job and stores it along with the encryption key in a credentials file on disk when the Intermediate data encryption feature is enabled, which allows local users to obtain sensitive information by reading the file. | 2016-04-19 | 2.1 | CVE-2015-1776 MLIST |
| dotcms -- dotcms | Cross-site scripting (XSS) vulnerability in lucene_search.jsp in dotCMS before 3.5.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the query parameter to c/portal/layout. | 2016-04-18 | 3.5 | CVE-2016-3971 FULLDISC CONFIRM |
| drupal -- block_class | Cross-site scripting (XSS) vulnerability in the Block Class module 7.x-2.x before 7.x-2.2 for Drupal allows remote authenticated users with the "Administer block classes" permission to inject arbitrary web script or HTML via a class name. | 2016-04-15 | 3.5 | CVE-2016-3144 MISC CONFIRM |
| gnupg -- libgcrypt | Libgcrypt before 1.6.5 does not properly perform elliptic-point curve multiplication during decryption, which makes it easier for physically proximate attackers to extract ECDH keys by measuring electromagnetic emanations. | 2016-04-19 | 1.9 | CVE-2015-7511 MLIST UBUNTU DEBIAN DEBIAN MISC |
| ipswitch -- moveit_dmz | Ipswitch MOVEit File Transfer (formerly DMZ) 8.1 and earlier, when configured to support file view on download, allows remote authenticated users to conduct cross-site scripting (XSS) attacks by uploading HTML files. | 2016-04-15 | 3.5 | CVE-2015-7676 MISC FULLDISC MISC |
| novell -- leap | openSUSE and SUSE Linux Enterprise Server 11 SP 1 use weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory. | 2016-04-18 | 2.1 | CVE-2016-4036 CONFIRM SUSE |
| oracle -- business_intelligence | Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Analytics Web General. | 2016-04-21 | 3.5 | CVE-2016-0468 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availability via vectors related to Optimizer. | 2016-04-21 | 3.5 | CVE-2016-0651 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to FTS. | 2016-04-21 | 3.5 | CVE-2016-0653 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB, a different vulnerability than CVE-2016-0656. | 2016-04-21 | 3.5 | CVE-2016-0654 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows local users to affect availability via vectors related to InnoDB. | 2016-04-21 | 3.5 | CVE-2016-0655 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB, a different vulnerability than CVE-2016-0654. | 2016-04-21 | 3.5 | CVE-2016-0656 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect confidentiality via vectors related to JSON. | 2016-04-21 | 3.5 | CVE-2016-0657 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to Optimizer. | 2016-04-21 | 3.5 | CVE-2016-0658 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Optimizer. | 2016-04-21 | 3.5 | CVE-2016-0659 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Options. | 2016-04-21 | 3.5 | CVE-2016-0661 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Partition. | 2016-04-21 | 3.5 | CVE-2016-0662 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to Performance Schema. | 2016-04-21 | 3.5 | CVE-2016-0663 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Security: Encryption. | 2016-04-21 | 3.5 | CVE-2016-0665 CONFIRM |
| oracle -- mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to Security: Privileges. | 2016-04-21 | 3.5 | CVE-2016-0666 CONFIRM |
| xen -- xen | Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area. | 2016-04-15 | 2.1 | CVE-2016-3961 CONFIRM CONFIRM SECTRACK |
Severity Not Yet Assigned
| Primary Vendor -- Product |
Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| 389_directory_server -- slapd/ connection.c | slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of service (infinite loop and connection blocking) by leveraging an abnormally closed connection. | 2016-04-19 |
Not yet calculated |
CVE-2016-0741 CONFIRM CONFIRM BID REDHAT CONFIRM |
| accuenergy -- acuvim_ii_net_firmware | The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover a cleartext mail-server password via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2294 MISC |
| accuenergy -- acuvim_ii_net_firmware | The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL. | 2016-04-21 |
Not yet calculated |
CVE-2016-2293 MISC |
| adobe -- analytics_appmeasurement | Cross-site scripting (XSS) vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 2016-04-22 |
Not yet calculated |
CVE-2016-1036 CONFIRM |
| adobe -- flash_player | Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted text property, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8071, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, CVE-2015-8454, CVE-2015-8653, CVE-2015-8655, CVE-2015-8821, and CVE-2015-8822. | 2016-04-22 |
Not yet calculated |
CVE-2015-8823 CONFIRM MISC |
| android -- aosp_mail | mail/compose/ComposeActivity.java in AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 supports file:///data attachments, which allows attackers to obtain sensitive information via a crafted application, aka internal bugs 7154234 and 26989185. | 2016-04-17 |
Not yet calculated |
CVE-2016-2425 CONFIRM CONFIRM CONFIRM |
| android -- framework_component | server/content/ContentService.java in the Framework component in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a GET_ACCOUNTS permission, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 26094635. | 2016-04-17 |
Not yet calculated |
CVE-2016-2426 CONFIRM CONFIRM |
| android -- mediaserver | libs/gui/BufferQueueConsumer.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for the android.permission.DUMP permission, which allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via a dump request, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27046057. | 2016-04-17 |
Not yet calculated |
CVE-2016-2416 CONFIRM CONFIRM CONFIRM |
| android -- mediaserver | media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26323455. | 2016-04-17 |
Not yet calculated |
CVE-2016-2419 CONFIRM CONFIRM |
| android -- mediaserver | media/libmedia/IOMX.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not initialize a parameter data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26914474. | 2016-04-17 |
Not yet calculated |
CVE-2016-2417 CONFIRM CONFIRM |
| android -- setup_wizard | Setup Wizard in Android 5.1.x before 5.1.1 and 6.x before 2016-04-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 26154410. | 2016-04-17 |
Not yet calculated |
CVE-2016-2421 CONFIRM |
| android -- syncstorageengine | server/content/SyncStorageEngine.java in SyncStorageEngine in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mismanages certain authority data, which allows attackers to cause a denial of service (reboot loop) via a crafted application, aka internal bug 26513719. | 2016-04-17 |
Not yet calculated |
CVE-2016-2424 CONFIRM CONFIRM |
| android -- telephony | server/telecom/CallsManager.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider whether a device is provisioned, which allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 26303187. | 2016-04-17 |
Not yet calculated |
CVE-2016-2423 CONFIRM CONFIRM |
| android -- wi-fi | Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not prevent use of a Wi-Fi CA certificate in an unrelated CA role, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26324357. | 2016-04-17 |
Not yet calculated |
CVE-2016-2422 CONFIRM CONFIRM |
| blackberry_enterprise_server_(bes) -- management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-1917. | 2016-04-22 |
Not yet calculated |
CVE-2016-1918 CONFIRM |
| blackberry_enterprise_server_(bes) -- management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-1918. | 2016-04-22 |
Not yet calculated |
CVE-2016-1917 CONFIRM |
| blackberry_enterprise_server_(bes) -- management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. | 2016-04-22 |
Not yet calculated |
CVE-2016-3126 CONFIRM |
| blackberry_enterprise_server_(bes) -- management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote authenticated users to inject arbitrary web script or HTML by leveraging basic administrative access to create a crafted policy, leading to improper rendering on a certain Export IT screen. | 2016-04-22 |
Not yet calculated |
CVE-2016-1916 CONFIRM |
| cairo -- cairo_image_compositor.c | The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a negative span length. | 2016-04-21 |
Not yet calculated |
CVE-2016-3190 MLIST CONFIRM CONFIRM SUSE |
| cisco -- adaptive_security_appliance_(asa) | The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 allows remote attackers to cause a denial of service (device reload) via crafted DHCPv6 packets, aka Bug ID CSCus23248. | 2016-04-21 |
Not yet calculated |
CVE-2016-1367 CISCO |
| cisco -- aireos | Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller (WLC) devices allows remote attackers to cause a denial of service (device reload) via a crafted HTTP request, aka Bug ID CSCun86747. | 2016-04-21 |
Not yet calculated |
CVE-2016-1362 CISCO |
| cisco -- ios | The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 through 3.17 allows remote attackers to modify the system time via crafted packets, aka Bug ID CSCux46898. | 2016-04-20 |
Not yet calculated |
CVE-2016-1384 CISCO |
| cisco -- wireless_lan_controller_(wlc) | Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617. | 2016-04-21 |
Not yet calculated |
CVE-2016-1363 CISCO |
| cisco -- wireless_lan_controller_(wlc) | Cisco Wireless LAN Controller (WLC) Software 7.4 before 7.4.130.0(MD) and 7.5, 7.6, and 8.0 before 8.0.110.0(ED) allows remote attackers to cause a denial of service (device reload) via crafted Bonjour traffic, aka Bug ID CSCur66908. | 2016-04-21 |
Not yet calculated |
CVE-2016-1364 CISCO |
| dotcms -- sql_injection | SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr. | 2016-04-19 |
Not yet calculated |
CVE-2016-3688 FULLDISC FULLDISC MISC CONFIRM |
| ecava -- integraxor | CRLF injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL. | 2016-04-21 |
Not yet calculated |
CVE-2016-2303 MISC |
| ecava -- integraxor | Cross-site scripting (XSS) vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. | 2016-04-21 | CVE-2016-2305 MISC |
|
| ecava -- integraxor | Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive information by reading detailed error messages. | 2016-04-21 |
Not yet calculated |
CVE-2016-2302 MISC |
| ecava -- integraxor | Ecava IntegraXor before 5.0 build 4522 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie. | 2016-04-21 |
Not yet calculated |
CVE-2016-2304 MISC |
| ecava -- integraxor | ecava_ integraxor | 2016-04-21 |
Not yet calculated |
CVE-2016-2300 MISC |
| ecava -- integraxor | SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2299 MISC |
| ecava -- integraxor | SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2301 MISC |
| ecava -- integraxor | The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive cleartext information by sniffing the network. | 2016-04-21 |
Not yet calculatedNot yet calculated |
CVE-2016-2306 MISC |
| emc -- vipr_srm | Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to hijack the authentication of administrators. | 2016-04-20 |
Not yet calculated |
CVE-2016-0891 BUGTRAQ |
| foxit -- reader_and_phantompdf | Foxit Reader and PhantomPDF before 7.3.4 on Windows allow remote attackers to cause a denial of service (application crash) via a crafted content stream. | 2016-04-22 |
Not yet calculated |
CVE-2016-4061 CONFIRM |
| foxit -- reader_and_phantompdf | Foxit Reader and PhantomPDF before 7.3.4 on Windows improperly report format errors recursively, which allows remote attackers to cause a denial of service (application hang) via a crafted PDF. | 2016-04-22 |
Not yet calculated |
CVE-2016-4062 CONFIRM |
| foxit -- reader_and_phantompdf | The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted (1) JPEG, (2) GIF, or (3) BMP image. | 2016-04-22 |
Not yet calculated |
CVE-2016-4065 CONFIRM MISC MISC MISC |
| foxit -- reader_and_phantompdf | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to cause a denial of service (application crash) via unspecified vectors. | 2016-04-22 |
Not yet calculated |
CVE-2016-4060 CONFIRM |
| foxit -- reader_and_phantompdf | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted FlateDecode stream in a PDF document. | 2016-04-22 |
Not yet calculated |
CVE-2016-4059 CONFIRM MISC |
| foxit -- reader_and_phantompdf | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via an object with a revision number of -1 in a PDF document. | 2016-04-22 |
Not yet calculated |
CVE-2016-4063 CONFIRM MISC MISC |
| foxit -- reader_and_phantompdf | Use-after-free vulnerability in the XFA forms handling functionality in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted remerge call. | 2016-04-22 |
Not yet calculated |
CVE-2016-4064 CONFIRM MISC |
| gif2png_optipng | gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file. | 2016-04-20 |
Not yet calculated |
CVE-2015-7802 CONFIRM UBUNTU CONFIRM |
| giflib -- util/gif2rgb.c_in_gif2rgb | Heap-based buffer overflow in util/gif2rgb.c in gif2rgb in giflib 5.1.2 allows remote attackers to cause a denial of service (application crash) via the background color index in a GIF file. | 2016-04-21 |
Not yet calculated |
CVE-2016-3977 CONFIRM CONFIRM CONFIRM SUSE MISC |
| hexchat -- common/server.c | The ssl_do_connect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. | 2016-04-21 | Not yet calculated | CVE-2013-7449 CONFIRM CONFIRM CONFIRM UBUNTU CONFIRM |
| honeywell -- uniformance_process_history_database_(phd) | Buffer overflow in RDISERVER in Honeywell Uniformance Process History Database (PHD) R310, R320, and R321 allows remote attackers to cause a denial of service (service outage) via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2280 MISC |
| hpe -- data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3352. | 2016-04-21 |
Not yet calculated |
CVE-2016-2005 HP |
| hpe -- data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3353. | 2016-04-21 |
Not yet calculated |
CVE-2016-2006 HP |
| hpe -- data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3354. | 2016-04-21 |
Not yet calculated |
CVE-2016-2007 HP |
| hpe -- data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2004 CERT-VN HP |
| hpe -- data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2008 HP |
| hpe -- p9000 | HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. | 2016-04-20 |
Not yet calculated |
CVE-2016-2003 HP |
| hpe -- vertica | The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7.0.2.12, 7.1.x before 7.1.2-12, and 7.2.x before 7.2.2-1 allows remote attackers to execute arbitrary commands via the mcPort parameter, aka ZDI-CAN-3417. | 2016-04-20 |
Not yet calculated |
CVE-2016-2002 HP MISC |
| java -- bouncy_castle_crypto_apis | asn1/cms/GCMParameters.java in the Bouncy Castle Crypto APIs 1.54 for Java, as used in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01, has an improper AES-GCM-ICVlen value, which makes it easier for attackers to defeat a cryptographic protection mechanism and discover an authentication key via a crafted application, aka internal bug 26234568. | 2016-04-17 |
Not yet calculated |
CVE-2016-2427 CONFIRM CONFIRM CONFIRM |
| lemur -- vehicle_monitors_bluedriver | The Bluetooth functionality in Lemur Vehicle Monitors BlueDriver before 2016-04-07 supports unrestricted pairing without a PIN, which allows remote attackers to send arbitrary CAN commands by leveraging access to a device inside or adjacent to the vehicle, as demonstrated by a CAN command to disrupt braking or steering. | 2016-04-21 |
Not yet calculated |
CVE-2016-2354 CERT-VN |
| lexmark -- atl | Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on non-volatile memory. | 2016-04-21 |
Not yet calculated |
CVE-2016-3145 CONFIRM |
| libav_libavcodec/ituh263dec.c | The ff_h263_decode_mba function in libavcodec/ituh263dec.c in Libav before 11.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a file with crafted dimensions. | 2016-04-19 |
Not yet calculated |
CVE-2015-5479 CONFIRM CONFIRM MISC UBUNTU |
| libtiff -- gif2tiff.c | Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file. | 2016-04-19 |
Not yet calculated |
CVE-2016-3186 CONFIRM SECTRACK SUSE |
| micro_focus_novell -- service_desk | Directory traversal vulnerability in the import users feature in Micro Focus Novell Service Desk before 7.2 allows remote authenticated administrators to upload and execute arbitrary JSP files via a .. (dot dot) in a filename within a multipart/form-data POST request to a LiveTime.woa URL. | 2016-04-22 |
Not yet calculated |
CVE-2016-1593 CONFIRM MISC MISC |
| micro_focus_novell -- service_desk | LiveTime/WebObjects/http://ift.tt/2483mkE in Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to conduct Hibernate Query Language (HQL) injection attacks and obtain sensitive information via the entityName parameter. | 2016-04-22 |
Not yet calculated |
CVE-2016-1595 CONFIRM MISC MISC |
| micro_focus_novell -- service_desk | Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a (1) downloadLogFiles or (2) downloadFile action. | 2016-04-22 |
Not yet calculated |
CVE-2016-1594 CONFIRM MISC MISC |
| micro_focus_novell -- service_desk | Multiple cross-site scripting (XSS) vulnerabilities in Micro Focus Novell Service Desk before 7.2 allow remote authenticated users to inject arbitrary web script or HTML via a certain (1) user name, (2) tf_aClientFirstName, (3) tf_aClientLastName, (4) ta_selectedTopicContent, (5) tf_orgUnitName, (6) tf_aManufacturerFullName, (7) tf_aManufacturerName, (8) tf_aManufacturerAddress, or (9) tf_aManufacturerCity parameter. | 2016-04-22 |
Not yet calculated |
CVE-2016-1596 CONFIRM MISC MISC |
| oracle -- berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0689, CVE-2016-0692, and CVE-2016-0694. | 2016-04-21 |
Not yet calculated |
CVE-2016-3418 CONFIRM |
| oracle -- berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0689, CVE-2016-0692, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0694 CONFIRM |
| oracle -- berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0689, CVE-2016-0694, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0692 CONFIRM |
| oracle -- berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0692, CVE-2016-0694, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0689 CONFIRM |
| oracle -- berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0689, CVE-2016-0692, CVE-2016-0694, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0682 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 2016-04-21 |
Not yet calculatedNot yet calculated |
CVE-2016-3454 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-0681 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0690. | 2016-04-21 |
Not yet calculated |
CVE-2016-0691 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0691. | 2016-04-21 |
Not yet calculated |
CVE-2016-0690 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-0677 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows local users to affect confidentiality and integrity via unknown vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-0697 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Logout. | 2016-04-21 |
Not yet calculated |
CVE-2016-3434 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to OAF Core. | 2016-04-21 | CVE-2016-3447 CONFIRM |
|
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks. | 2016-04-21 |
Not yet calculated |
CVE-2016-3436 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Call Phone Number Page. | 2016-04-21 |
Not yet calculated |
CVE-2016-3439 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Person Address Page. | 2016-04-21 |
Not yet calculated |
CVE-2016-3437 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Field Service component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Wireless. | 2016-04-21 |
Not yet calculated |
CVE-2016-3466 CONFIRM |
| oracle -- financial_services | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.2 and 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors related to the Login sub-component. | 2016-04-21 |
Not yet calculated |
CVE-2016-0699 CONFIRM |
| oracle -- financial_services_software | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors related to Pre-Login. | 2016-04-21 |
Not yet calculated |
CVE-2016-3463 CONFIRM |
| oracle -- financial_services_software | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote authenticated users to affect confidentiality via vectors related to Accounts. | 2016-04-21 |
Not yet calculated |
CVE-2016-3464 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 12.1.2.0 allows remote attackers to affect confidentiality via vectors related to OSSL Module. | 2016-04-21 |
Not yet calculated |
CVE-2016-0671 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters. | 2016-04-21 |
Not yet calculated |
CVE-2016-3455 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6 allows remote attackers to affect confidentiality and integrity via vectors related to Console. | 2016-04-21 |
Not yet calculated |
CVE-2016-0696 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality and integrity via vectors related to Console. | 2016-04-21 |
Not yet calculated |
CVE-2016-3416 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Console, a different vulnerability than CVE-2016-0675. | 2016-04-21 |
Not yet calculated |
CVE-2016-0700 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Console, a different vulnerability than CVE-2016-0700. | 2016-04-21 |
Not yet calculated |
CVE-2016-0675 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via vectors related to Core Components. | 2016-04-21 |
Not yet calculated |
CVE-2016-0688 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect availability via vectors related to 2D. | 2016-04-21 |
Not yet calculated |
CVE-2016-3422 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. | 2016-04-21 |
Not yet calculatedNot yet calculated |
CVE-2016-3443 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment. | 2016-04-21 |
Not yet calculated |
CVE-2016-3449 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization. | 2016-04-21 |
Not yet calculated |
CVE-2016-0686 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component. | 2016-04-21 |
Not yet calculated |
CVE-2016-0687 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP. | 2016-04-21 |
Not yet calculated |
CVE-2016-3425 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality via vectors related to Security. | 2016-04-21 |
Not yet calculated |
CVE-2016-0695 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. | 2016-04-21 |
Not yet calculated |
CVE-2016-3427 CONFIRM |
| oracle -- java_se | Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE. | 2016-04-21 |
Not yet calculated |
CVE-2016-3426 CONFIRM |
| oracle -- mysql_3.0.25 | Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server. | 2016-04-21 |
Not yet calculated |
CVE-2016-3461 CONFIRM |
| oracle -- mysql_5.6.28 | Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB. | 2016-04-21 |
Not yet calculated |
CVE-2016-0668 CONFIRM |
| oracle -- mysql_5.7.10 | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to DML. | 2016-04-21 |
Not yet calculated |
CVE-2016-0652 CONFIRM |
| oracle -- mysql_5.7.11 | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Locking. | 2016-04-21 |
Not yet calculated |
CVE-2016-0667 CONFIRM |
| oracle -- peoplesoft_enterprise_peopletools | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to PIA Search Functionality. | 2016-04-21 |
Not yet calculated |
CVE-2016-3417 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to ePerformance. | 2016-04-21 |
Not yet calculated |
CVE-2016-3460 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise HCM ePerformance component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security. | 2016-04-21 |
Not yet calculated |
CVE-2016-3457 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect availability via vectors related to PIA Core Technology. | 2016-04-21 |
Not yet calculated |
CVE-2016-3435 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to File Processing. | 2016-04-21 |
Not yet calculated |
CVE-2016-0685 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Portal. | 2016-04-21 | CVE-2016-3442 CONFIRM |
|
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-0698. | 2016-04-21 |
Not yet calculated |
CVE-2016-3423 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-3423. | 2016-04-21 |
Not yet calculated |
CVE-2016-0698 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Search Framework. | 2016-04-21 |
Not yet calculated |
CVE-2016-0683 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Activity Guide. | 2016-04-21 |
Not yet calculated |
CVE-2016-3421 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect integrity and availability via vectors related to PIA Grids. | 2016-04-21 |
Not yet calculated |
CVE-2016-0679 CONFIRM |
| oracle -- peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement. | 2016-04-21 |
Not yet calculated |
CVE-2016-0680 CONFIRM |
| oracle -- retail_applications | Unspecified vulnerability in the Oracle Retail Xstore Point of Service component in Oracle Retail Applications 5.0, 5.5, 6.0, 6.5, 7.0, and 7.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Xstore Services. | 2016-04-21 |
Not yet calculated |
CVE-2016-3429 CONFIRM |
| oracle -- retail_applicat_retail_applications | Unspecified vulnerability in the Oracle Retail MICROS ARS POS component in Oracle Retail Applications 1.5 allows remote authenticated users to affect confidentiality via vectors related to POS. | 2016-04-21 |
Not yet calculated |
CVE-2016-0684 CONFIRM |
| oracle -- siebel_core | Unspecified vulnerability in the Siebel Core - Common Components component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows local users to affect confidentiality and integrity via vectors related to Email. | 2016-04-21 |
Not yet calculated |
CVE-2016-0674 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability via vectors related to the kernel. | 2016-04-21 |
Not yet calculated |
CVE-2016-0676 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect availability via vectors related to Filesystem. | 2016-04-21 |
Not yet calculated |
CVE-2016-3419 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Filesystem. | 2016-04-21 |
Not yet calculated |
CVE-2016-3441 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the PAM LDAP module. | 2016-04-21 |
Not yet calculated |
CVE-2016-0693 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Network Configuration Service. | 2016-04-21 |
Not yet calculated |
CVE-2016-3462 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to ZFS. | 2016-04-21 |
Not yet calculated |
CVE-2016-3465 CONFIRM |
| oracle -- sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and availability via vectors related to Fwflash. | 2016-04-21 |
Not yet calculated |
CVE-2016-0669 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect availability via vectors related to Engineering Communication Interface. | 2016-04-21 |
Not yet calculated |
CVE-2016-3428 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3420. | 2016-04-21 |
Not yet calculated |
CVE-2016-3431 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3431. | 2016-04-21 |
Not yet calculated |
CVE-2016-3420 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul component in Oracle Supply Chain Products Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Dialog Box. | 2016-04-21 |
Not yet calculated |
CVE-2016-3456 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 12.0.6, 12.1, and 12.2 allows remote attackers to affect confidentiality and integrity via vectors related to JRAD Heartbeat. | 2016-04-21 |
Not yet calculated |
CVE-2016-3438 CONFIRM |
| oracle -- virtualization_virtualbox | Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.18 allows local users to affect confidentiality, integrity, and availability via vectors related to Core. | 2016-04-21 |
Not yet calculated |
CVE-2016-0678 CONFIRM |
| samba -- dce-rpc_layer | Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not properly implement the DCE-RPC layer, which allows remote attackers to perform protocol-downgrade attacks, cause a denial of service (application crash or CPU consumption), or possibly execute arbitrary code on a client system via unspecified vectors. | 2016-04-24 |
Not yet calculated |
CVE-2015-5370 CONFIRM |
| samba -- ldap_client_library | The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "client ldap sasl wrapping" setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream. | 2016-04-24 |
Not yet calculated |
CVE-2016-2112 CONFIRM |
| samba -- netlogon | The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted application and leveraging the ability to sniff network traffic, a related issue to CVE-2015-0005. | 2016-04-24 |
Not yet calculated |
CVE-2016-2111 CONFIRM |
| samba -- ntlmssp | The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. | 2016-04-24 |
Not yet calculated |
CVE-2016-2110 CONFIRM |
| samba -- samba | Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream. | 2016-04-24 |
Not yet calculated |
CVE-2016-2115 CONFIRM |
| samba -- smbl_protocol_implementation | The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream. | 2016-04-24 |
Not yet calculated Not yet calculated |
CVE-2016-2114 CONFIRM |
| samba -- tls_servers | Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate. | 2016-04-24 |
Not yet calculated |
CVE-2016-2113 CONFIRM |
| symantec -- management_agent | The Inventory Solution component in the Management Agent in the client in Symantec Altiris IT Management Suite (ITMS) through 7.6 HF7 allows local users to bypass intended application-blacklist restrictions via unspecified vectors. | 2016-04-20 |
Not yet calculated |
CVE-2016-2202 CONFIRM BID |
| symantec -- messaging_gateway_(smg)_appliance | The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges. | 2016-04-22 |
Not yet calculated |
CVE-2016-2203 CONFIRM BID |
| symantec -- messaging_gateway_(smg)_appliance | The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to obtain root-shell access via crafted terminal-window input. | 2016-04-22 |
Not yet calculated |
CVE-2016-2204 CONFIRM BID |
| systemd_ tmpfiles.d/systemd.conf | tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file. | 2016-04-20 |
Not yet calculated |
CVE-2015-8842 CONFIRM CONFIRM MLIST MLIST SUSE |
| systemd_tmpfiles.d/systemd.conf | tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive information by reading these files. | 2016-04-20 |
Not yet calculated |
CVE-2014-9770 CONFIRM MLIST MLIST SUSE |
| wireshark -- epan/dissectors/packet-gsm_cbch.c_in_the_gsm_cbch_dissector | epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses the wrong variable to index an array, which allows remote attackers to cause a denial of service (out-of-bounds access and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4082 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-iax2.c_in_the_iax2_dissector | epan/dissectors/packet-iax2.c in the IAX2 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4081 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-mswsp.c_in_the_ms-wsp | Integer signedness error in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 allows remote attackers to cause a denial of service (integer overflow and application crash) via a crafted packet that triggers an unexpected array size. | 2016-04-25 |
Not yet calculated |
CVE-2016-4084 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-mswsp.c_in_the_ms-wsp_dissector | epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 does not ensure that data is available before array allocation, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4083 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-ncp2222.inc | epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 2.0.x before 2.0.3 does not properly initialize memory for search patterns, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4076 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-ncp2222.inc_in_the_ncp_dissector | Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.12.x before 1.12.11 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in a packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4085 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-pktc.c_in_the_pktc_dissector | epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not verify BER identifiers, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4079 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/dissectors/packet-pktc.c_in_the_pktc_dissector | epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 misparses timestamp fields, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4080 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/proto.c | epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service (stack memory consumption and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4006 CONFIRM CONFIRM CONFIRM |
| wireshark -- epan/reassemble.c_in_tshark | epan/reassemble.c in TShark in Wireshark 2.0.x before 2.0.3 relies on incorrect special-case handling of truncated Tvb data structures, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4077 CONFIRM MISC CONFIRM CONFIRM |
| wireshark -- ieee_802.11_dissector | The IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not properly restrict element lists, which allows remote attackers to cause a denial of service (deep recursion and application crash) via a crafted packet, related to epan/dissectors/packet-capwap.c and epan/dissectors/packet-ieee80211.c. | 2016-04-25 |
Not yet calculated |
CVE-2016-4078 CONFIRM CONFIRM CONFIRM CONFIRM |
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1SKbGoI
Subscribe to:
Posts (Atom)