Elasticsearch versions 1.3.0 through 1.3.7 and 1.4.0 through 1.4.2 have vulnerabilities in the Groovy scripting engine. The vulnerabilities allow an attacker to construct Groovy scripts that escape the sandbox and execute shell commands as the user running the Elasticsearch Java VM.
66145cb4fc4b97a9b78472aa53007c7b5848d4c52871e4d2f47327bd5f50ccaeThe sixth annual Mandiant Incident Response Conference (MIRcon 2015) has announced its call for papers. It will take place November 3rd through the 4th at the Washington Hilton, Washington, DC, USA.
c2becdaad72cf27ee50eee6bad8f732dea23f2dff7f25aebe39efe1436f5d934LG DVR LE6016D suffers from a remote file disclosure vulnerability.
b3e54b341df79645e309216eeea82084a5c8e5bc3b2d102a79cdaefe490fc345My Little Forum version 2.3.3 suffers from cross site scripting and remote SQL injection vulnerabilities.
b05f17411f700d0b2f76037900c11e594d0b792dfad6ff722d528da0f71e7f65WordPress Easing Slider plugin version 2.2.0.6 suffers from multiple cross site scripting vulnerabilities.
bc06449f398ab083af89f8a2218533627ea9bb9b6dcf584267e80dbdac8f9c42Pandora FMS version 5.1 SP1 suffers from a remote SQL injection vulnerability.
a9dde4e8010bb12c0e03ef7773802eb054eaafbe9e7bab80b3e8789148cc4050BlinkSale suffered from a malicious script insertion vulnerability that affects the mail functionality client-side.
9cbad696c855bd59f8a2d94e720396021df5d383cfcd5768e1aae04109d9b9b1Facebook.com suffered from session manipulation and cross site request forgery vulnerabilities.
44e2c757d29e6014e4786d12496aef82aa47cfde97e3eb97c6c5988fb0e7b80fRed Hat Security Advisory 2015-0165-01 - Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. The mod_dav_svn module is used with the Apache HTTP Server to allow access to Subversion repositories via HTTP. A NULL pointer dereference flaw was found in the way the mod_dav_svn module handled REPORT requests. A remote, unauthenticated attacker could use a specially crafted REPORT request to crash mod_dav_svn. It was discovered that Subversion clients retrieved cached authentication credentials using the MD5 hash of the server realm string without also checking the server's URL. A malicious server able to provide a realm that triggers an MD5 collision could possibly use this flaw to obtain the credentials for a different realm.
a58f4a1d6b97dd7b6410c5338a64d299304c6eac4d04f767745d70728d33ad53Red Hat Security Advisory 2015-0163-01 - Chromium is an open-source web browser, powered by WebKit. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash or, potentially, execute arbitrary code with the privileges of the user running Chromium. All Chromium users should upgrade to these updated packages, which contain Chromium version 40.0.2214.111, which corrects these issues. After installing the update, Chromium must be restarted for the changes to take effect.
b46406a0db968f058e957387bdba7981cd39064f7c50934c50a1b1bbcef7ce1bRed Hat Security Advisory 2015-0164-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's splice() system call validated its parameters. On certain file systems, a local, unprivileged user could use this flaw to write past the maximum file size, and thus crash the system.
87d55d169bb1eb75a6d8b03b0fd74309e51ddd4db35ed7adce2773bdbe95e460Ubuntu Security Notice 2498-1 - It was discovered that Kerberos incorrectly sent old keys in response to a -randkey -keepold request. An authenticated remote attacker could use this issue to forge tickets by leveraging administrative access. This issue only affected Ubuntu 10.04 LTS, Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. It was discovered that the libgssapi_krb5 library incorrectly processed security context handles. A remote attacker could use this issue to cause a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
14cf04451fcc79abacd9b37fd5284879a17bc1bb703511b11b1aa1544e5c6ec3Ubuntu Security Notice 2495-1 - A use-after-free bug was discovered in the DOM implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. It was discovered that V8 did not properly consider frame access restrictions when throwing exceptions in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same origin restrictions. Various other issues were also addressed.
e0b1487700d0dabdd5eeb8ab7cacd350cd215e91082623ced271fd42b42859c5Red Hat Security Advisory 2015-0166-01 - Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. The mod_dav_svn module is used with the Apache HTTP Server to allow access to Subversion repositories via HTTP. A NULL pointer dereference flaw was found in the way the mod_dav_svn module handled REPORT requests. A remote, unauthenticated attacker could use a specially crafted REPORT request to crash mod_dav_svn. A NULL pointer dereference flaw was found in the way the mod_dav_svn module handled certain requests for URIs that trigger a lookup of a virtual transaction name. A remote, unauthenticated attacker could send a request for a virtual transaction name that does not exist, causing mod_dav_svn to crash.
14ceb39b1255e0e10f6f24ed01245c9f79aba9bce5d54637ab1fcd4c09d61d42Debian Linux Security Advisory 3159-1 - It was discovered that the REXML parser, part of the interpreter for the Ruby language, could be coerced into allocating large string objects that could consume all available memory on the system. This could allow remote attackers to cause a denial of service (crash).
898382bfe535f1942a279b47e68da8e330be3d52ec2753d63d26e5cd262bf6c5
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed