Hack Talk
Your mother would be ashamed. I know mine is Home | Gitweb | Status | IRC

Sun, 23 Jul 2017 04:54:27 +0200

[security bulletin] HPESBHF03766 rev.1 - HPE ConvergedSystem 700 Solution with Comware v5 Switches using NTP, Remote Denial of Service (DoS), Unauthorized Modification and Local Denial of Service (DoS)
    21 Jul 2017 | 08:15 from Bugtraq

Posted by security-alert on Jul 20

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03766en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03766en_us
Version: 1

HPESBHF03766 rev.1 - HPE ConvergedSystem 700 Solution with Comware v5
Switches using NTP, Remote Denial of Service (DoS), Unauthorized Modification
and Local Denial of Service (DoS)

NOTICE: The information in...

File Upload in Integration Gateway (PSIGW)
    20 Jul 2017 | 17:58 from Bugtraq

Posted by ERPScan inc on Jul 20

1. ADVISORY INFORMATION
Title: File Upload in Integration Gateway (PSIGW)
Advisory ID: [ERPSCAN-17-039]
Advisory URL: https://erpscan.com/advisories/erpscan-17-039-file-upload-integration-gateway-psigw-peoplesoft/
Risk: High
Date published: 18.07.2017
Vendor contacted: Oracle

2. VULNERABILITY INFORMATION
Class: File Upload
Impact: Remote command execution on the server
Remotely Exploitable: Yes
Locally Exploitable: Yes
CVE Name: CVE-2017-10061...

Multiple XSS (POST request) Vulnerabilities in TestServlet (PeopleSoft)
    20 Jul 2017 | 17:46 from Bugtraq

Posted by ERPScan inc on Jul 20

1. ADVISORY INFORMATION
Title: Multiple XSS (POST request) Vulnerabilities in TestServlet (PeopleSoft)
Advisory ID: [ERPSCAN-17-037]
Advisory URL: https://erpscan.com/advisories/erpscan-17-037-multiple-xss-vulnerabilities-testservlet-peoplesoft/
Risk: Medium
Date published: 18.07.2017
Vendor contacted: Oracle

2. VULNERABILITY INFORMATION
Class: XSS [CWE-79]
Impact: Modify displayed content from a Web site, steal authentication
information of a...

Directory Traversal vulnerability in Integration Gateway (PSIGW)
    20 Jul 2017 | 17:35 from Bugtraq

Posted by ERPScan inc on Jul 20

1. ADVISORY INFORMATION
Title: Directory Traversal vulnerability in Integration Gateway (PSIGW)
Advisory ID: [ERPSCAN-17-038]
Advisory URL: https://erpscan.com/advisories/erpscan-17-038-directory-traversal-vulnerability-integration-gateway-psigw/
Risk: High
Date published: 18.07.2017
Vendor contacted: Oracle

2. VULNERABILITY INFORMATION
Class: Directory Traversal
Impact: Read, delete, rewrite file from the system
Remotely Exploitable: Yes
CVE...

File Upload in Integration Gateway (PSIGW)
    20 Jul 2017 | 17:04 from Penetration Testing

Posted by ERPScan inc on Jul 20

1. ADVISORY INFORMATION
Title: File Upload in Integration Gateway (PSIGW)
Advisory ID: [ERPSCAN-17-039]
Advisory URL: https://erpscan.com/advisories/erpscan-17-039-file-upload-integration-gateway-psigw-peoplesoft/
Risk: High
Date published: 18.07.2017
Vendor contacted: Oracle

2. VULNERABILITY INFORMATION
Class: File Upload
Impact: Remote command execution on the server
Remotely Exploitable: Yes
Locally Exploitable: Yes
CVE Name: CVE-2017-10061...

Multiple XSS (POST request) Vulnerabilities in TestServlet (PeopleSoft)
    20 Jul 2017 | 17:01 from Penetration Testing

Posted by ERPScan inc on Jul 20

1. ADVISORY INFORMATION
Title: Multiple XSS (POST request) Vulnerabilities in TestServlet (PeopleSoft)
Advisory ID: [ERPSCAN-17-037]
Advisory URL: https://erpscan.com/advisories/erpscan-17-037-multiple-xss-vulnerabilities-testservlet-peoplesoft/
Risk: Medium
Date published: 18.07.2017
Vendor contacted: Oracle

2. VULNERABILITY INFORMATION
Class: XSS [CWE-79]
Impact: Modify displayed content from a Web site, steal authentication
information of a...

Directory Traversal vulnerability in Integration Gateway (PSIGW)
    20 Jul 2017 | 16:55 from Penetration Testing

Posted by ERPScan inc on Jul 20

1. ADVISORY INFORMATION
Title: Directory Traversal vulnerability in Integration Gateway (PSIGW)
Advisory ID: [ERPSCAN-17-038]
Advisory URL: https://erpscan.com/advisories/erpscan-17-038-directory-traversal-vulnerability-integration-gateway-psigw/
Risk: High
Date published: 18.07.2017
Vendor contacted: Oracle

2. VULNERABILITY INFORMATION
Class: Directory Traversal
Impact: Read, delete, rewrite file from the system
Remotely Exploitable: Yes
CVE...

APPLE-SA-2017-07-19-7 iCloud for Windows 6.2.2
    20 Jul 2017 | 09:19 from Bugtraq

Posted by Apple Product Security on Jul 20

APPLE-SA-2017-07-19-7 iCloud for Windows 6.2.2

iCloud for Windows 6.2.2 is now available and addresses the
following:

libxml2
Available for: Windows 7 and later
Impact: Parsing a maliciously crafted XML document may lead to
disclosure of user information
Description: An out-of-bounds read was addressed through improved
bounds checking.
CVE-2017-7010: Apple
CVE-2017-7013: found by OSS-Fuzz

WebKit
Available for: Windows 7 and later
Impact:...

APPLE-SA-2017-07-19-5 Safari 10.1.2
    20 Jul 2017 | 09:08 from Bugtraq

Posted by Apple Product Security on Jul 20

APPLE-SA-2017-07-19-5 Safari 10.1.2

Safari 10.1.2 is now available and addresses the following:

Safari
Available for: OS X Yosemite 10.10.5, OS X El Capitan 10.11.6,
and macOS Sierra 10.12.6
Impact: Processing maliciously crafted web content may lead to an
infinite number of print dialogs
Description: An issue existed where a malicious or compromised
website could show infinite print dialogs and make users believe
their browser was locked. The...

Shapes Constraint Language (SHACL) is now a W3C Recommendation
    20 Jul 2017 | 08:56 from W3C News

The RDF Data Shapes Working Group has published Shapes Constraint Language (SHACL) as a W3C Recommendation. This document defines the SHACL Shapes Constraint Language, a language for validating RDF graphs against a set of conditions. These conditions are provided as shapes and other constructs expressed in the form of an RDF graph. RDF graphs that […]


APPLE-SA-2017-07-19-2 macOS 10.12.6
    20 Jul 2017 | 08:56 from Bugtraq

Posted by Apple Product Security on Jul 19

APPLE-SA-2017-07-19-2 macOS 10.12.6

macOS 10.12.6 is now available and addresses the following:

afclip
Available for: macOS Sierra 10.12.5
Impact: Processing a maliciously crafted audio file may lead to
arbitrary code execution
Description: A memory corruption issue was addressed through improved
input validation.
CVE-2017-7016: riusksk (泉哥) of Tencent Security Platform
Department

afclip
Available for: macOS Sierra 10.12.5
Impact:...

APPLE-SA-2017-07-19-3 watchOS 3.2.2
    20 Jul 2017 | 08:44 from Bugtraq

Posted by Apple Product Security on Jul 19

APPLE-SA-2017-07-19-3 watchOS 3.2.2

watchOS 3.2.2 is now available and addresses the following:

Contacts
Available for: All Apple Watch models
Impact: A remote attacker may be able to cause unexpected application
termination or arbitrary code execution
Description: A buffer overflow issue was addressed through improved
memory handling.
CVE-2017-7062: Shashank (@cyberboyIndia)

IOUSBFamily
Available for: All Apple Watch models
Impact: An...

APPLE-SA-2017-07-19-1 iOS 10.3.3
    20 Jul 2017 | 08:32 from Bugtraq

Posted by Apple Product Security on Jul 19

APPLE-SA-2017-07-19-1 iOS 10.3.3

iOS 10.3.3 is now available and addresses the following:

Contacts
Available for: iPhone 5 and later, iPad 4th generation and later,
and iPod touch 6th generation
Impact: A remote attacker may be able to cause unexpected application
termination or arbitrary code execution
Description: A buffer overflow issue was addressed through improved
memory handling.
CVE-2017-7062: Shashank (@cyberboyIndia)

CoreAudio...

APPLE-SA-2017-07-19-6 iTunes 12.6.2
    20 Jul 2017 | 08:18 from Bugtraq

Posted by Apple Product Security on Jul 19

APPLE-SA-2017-07-19-6 iTunes 12.6.2

iTunes 12.6.2 is now available and addresses the following:

iTunes
Available for: Windows 7 and later
Impact: An application may be able to execute arbitrary code with
system privileges
Description: An access issue was addressed with additional
restrictions.
CVE-2017-7053: an anonymous researcher working with Trend Micro's
Zero Day Initiative

libxml2
Available for: Windows 7 and later
Impact: Parsing...

APPLE-SA-2017-07-19-4 tvOS 10.2.2
    20 Jul 2017 | 08:04 from Bugtraq

Posted by Apple Product Security on Jul 19

APPLE-SA-2017-07-19-4 tvOS 10.2.2

tvOS 10.2.2 is now available and addresses the following:

Contacts
Available for: Apple TV (4th generation)
Impact: A remote attacker may be able to cause unexpected application
termination or arbitrary code execution
Description: A buffer overflow issue was addressed through improved
memory handling.
CVE-2017-7062: Shashank (@cyberboyIndia)

CoreAudio
Available for: Apple TV (4th generation)
Impact:...

Free Software Directory meeting recap for July 14th, 2017
    19 Jul 2017 | 20:32 from FSF's blog

Check out the great work our volunteers accomplished at the last Free Software Directory meeting.


Friday Free Software Directory IRC meetup: July 21st starting at 12:00 p.m. EDT/16:00 UTC
    19 Jul 2017 | 18:05 from FSF's blog

Join the FSF and friends Friday, July 21st, from 12:00 p.m. to 3 p.m. EDT (16:00 to 19:00 UTC) to help improve the Free Software Directory, with this week's theme of updating older entries.


[SECURITY] [DSA 3914-1] imagemagick security update
    19 Jul 2017 | 02:38 from Bugtraq

Posted by Moritz Muehlenhoff on Jul 18

-------------------------------------------------------------------------
Debian Security Advisory DSA-3914-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
July 18, 2017 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : imagemagick
CVE ID : CVE-2017-9439 CVE-2017-9440...

[HITB-Announce] HITB GSEC 2017 CommSec CFP Closes July 31st
    15 Jul 2017 | 16:26 from Penetration Testing

Posted by Hafez Kamal on Jul 15

REMINDER: CFP Submission dateline is on the 31st of July 2017 23:59 SGT

Alongside HITBGSEC 2017 Singapore, we are calling on the community of hackers, makers, builders and breakers to send us
their 30 minute talk abstracts for consideration to be included in a separate 2-day single-track of talks (24th and
25th August). Access to these track of talks is completely FREE TO ATTEND and we are encouraging everyone to come! If
you're in...

[CVE-2017-7728] - Authentication Bypass allows alarm's commands execution in iSmartAlarm
    14 Jul 2017 | 09:36 from Bugtraq

Posted by ilia . shnaidman on Jul 14

[+] Credits: Ilia Shnaidman
[+] @0x496c on Twitter
[+] Source:
http://dojo.bullguard.com/blog/burglar-hacker-when-a-physical-security-is-compromised-by-iot-vulnerabilities/

Vendor:
=============
iSmartAlarm, inc.

Product:
===========================
iSmartAlarm cube - All

iSmartAlarm is one of the leading IoT manufactures in the domain of smart alarm systems.
It provides a fully integrated alarm system with siren, smart cameras and locks.
It...