Hack Talk
ERROR: Witty joke not found Home | Gitweb | Status | IRC

Tue, 31 May 2016 23:43:58 +0200

FreeBSD Security Advisory FreeBSD-SA-16:20.linux
    31 May 2016 | 21:22 from Bugtraq

Posted by FreeBSD Security Advisories on May 31

=============================================================================
FreeBSD-SA-16:20.linux Security Advisory
The FreeBSD Project

Topic: Kernel stack disclosure in Linux compatibility layer

Category: core
Module: linux(4)
Announced: 2016-05-31
Credits: CTurt
Affects: All supported versions of FreeBSD....

FreeBSD Security Advisory FreeBSD-SA-16:22.libarchive
    31 May 2016 | 21:13 from Bugtraq

Posted by FreeBSD Security Advisories on May 31

=============================================================================
FreeBSD-SA-16:22.libarchive Security Advisory
The FreeBSD Project

Topic: Directory traversal in cpio(1)

Category: contrib
Module: libarchive
Announced: 2016-05-31
Credits: Alexander Cherepanov
Affects: All supported versions of FreeBSD...

FreeBSD Security Advisory FreeBSD-SA-16:23.libarchive
    31 May 2016 | 21:05 from Bugtraq

Posted by FreeBSD Security Advisories on May 31

=============================================================================
FreeBSD-SA-16:23.libarchive Security Advisory
The FreeBSD Project

Topic: Buffer overflow in libarchive(3)

Category: contrib
Module: libarchive
Announced: 2016-05-31
Affects: FreeBSD 9.3
Corrected: 2016-05-21 09:27:30 UTC (stable/9,...

FreeBSD Security Advisory FreeBSD-SA-16:21.43bsd
    31 May 2016 | 20:56 from Bugtraq

Posted by FreeBSD Security Advisories on May 31

=============================================================================
FreeBSD-SA-16:21.43bsd Security Advisory
The FreeBSD Project

Topic: Kernel stack disclosure in 4.3BSD compatibility layer

Category: core
Module: kernel
Announced: 2016-05-31
Credits: CTurt
Affects: All supported versions of FreeBSD....

First Public Working Draft: Semantic Sensor Network Ontology
    31 May 2016 | 17:11 from W3C News

The Spatial Data on the Web Working Group has published a Working Draft of Semantic Sensor Network Ontology. The Semantic Sensor Network Ontology (commonly known as “SSN” or sometimes “SSNO”) is an OWL-2 DL ontology for describing sensors and the observations they make of the physical world. SSN is published in a modular architecture that […]


First Public Working Draft: Web Authentication: A Web API for accessing scoped credentials
    31 May 2016 | 15:39 from W3C News

The Web Authentication Working Group has published a Working Draft of Web Authentication: A Web API for accessing scoped credentials. This specification defines an API that enables web pages to access WebAuthn compliant strong cryptographic credentials through browser script. Conceptually, one or more credentials are stored on an authenticator, and each credential is scoped to […]


[RT-SA-2016-005] Unauthenticated File Upload in Relay Ajax Directory Manager may Lead to Remote Command Execution
    31 May 2016 | 14:25 from Bugtraq

Posted by RedTeam Pentesting GmbH on May 31

Advisory: Unauthenticated File Upload in Relay Ajax Directory Manager
may Lead to Remote Command Execution

A vulnerability within the Relay Ajax Directory Manager web application
allows unauthenticated attackers to upload arbitrary files to the web
server running the web application.

Details
=======

Product: Relay Ajax Directory Manager
Affected Versions: relayb01-071706, 1.5.1, 1.5.3 were tested, other
versions...

[RT-SA-2016-004] Websockify: Remote Code Execution via Buffer Overflow
    31 May 2016 | 14:15 from Bugtraq

Posted by RedTeam Pentesting GmbH on May 31

Advisory: Websockify: Remote Code Execution via Buffer Overflow

RedTeam Pentesting discovered a buffer overflow vulnerability in the C
implementation of Websockify, which allows attackers to execute
arbitrary code.

Details
=======

Product: Websockify C implementation
Affected Versions: all versions <= 0.8.0
Fixed Versions: versions since commit 192ec6f (2016-04-22) [0]
Vulnerability Type: Buffer Overflow
Security Risk: high
Vendor URL:...

[RT-SA-2015-012] XML External Entity Expansion in Paessler PRTG Network Monitor
    31 May 2016 | 14:03 from Bugtraq

Posted by RedTeam Pentesting GmbH on May 31

Advisory: XML External Entity Expansion in Paessler PRTG Network Monitor

Authenticated users who can create new HTTP XML/REST Value sensors in
PRTG Network Monitor can read local files on the PRTG host system via
XML external entity expansion.

Details
=======

Product: Paessler PRTG Network Monitor
Affected Versions: 14.4.12.3282
Fixed Versions: 16.2.23.3077/3078
Vulnerability Type: XML External Entity Expansion
Security Risk: medium
Vendor...

W3C Opens New United Kingdom and Ireland Office
    31 May 2016 | 13:10 from W3C News

W3C is pleased to announce the selection of Web Science Institute at the University of Southampton, to host UK & Ireland Office. The W3C United Kingdom and Ireland Office will be staffed by Susan Davies, Coordination Manager for the WSI, who will become the Office Manager, and Professor Leslie Carr, Director of the WSI Centre […]


[slackware-security] mozilla-thunderbird (SSA:2016-152-02)
    31 May 2016 | 11:17 from Bugtraq

Posted by Slackware Security Team on May 31

[slackware-security] mozilla-thunderbird (SSA:2016-152-02)

New mozilla-thunderbird packages are available for Slackware 14.1 and -current
to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/mozilla-thunderbird-45.1.1-i486-1_slack14.1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:...

[slackware-security] imagemagick (SSA:2016-152-01)
    31 May 2016 | 11:06 from Bugtraq

Posted by Slackware Security Team on May 31

[slackware-security] imagemagick (SSA:2016-152-01)

New imagemagick packages are available for Slackware 14.0, 14.1, and -current
to fix a security issue.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/imagemagick-6.8.6_10-i486-3_slack14.1.txz: Rebuilt.
Removed popen() support to prevent another shell vulnerability. This
issue was discovered by Bob Friesenhahn, of the GraphicsMagick...

[SECURITY] Lorex ECO DVR Hard coded password
    30 May 2016 | 20:46 from Bugtraq

Posted by andrew . hofmans on May 30

1. ADVISORY INFORMATION
=======================
Product: Lorex ECO DVR
Vendor URL: https://www.lorextechnology.com/
Type: Hard coded password [CWE-259]
Date found: 2016-05-04
Date published: 2016-05-30
CVE: -

2. CREDITS
==========
This vulnerability was discovered and researched by Andrew Hofmans. https://www.andrewhofmans.com

3. VERSIONS AFFECTED
====================
Vulnerability successfully tested on Lorex LH162400 DVR firmware...

[SECURITY] [DSA 3589-1] gdk-pixbuf security update
    30 May 2016 | 20:37 from Bugtraq

Posted by Salvatore Bonaccorso on May 30

-------------------------------------------------------------------------
Debian Security Advisory DSA-3589-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
May 30, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : gdk-pixbuf
CVE ID : CVE-2015-7552 CVE-2015-8875...

WebKitGTK+ Security Advisory WSA-2016-0004
    30 May 2016 | 17:22 from Bugtraq

Posted by Carlos Alberto Lopez Perez on May 30

------------------------------------------------------------------------
WebKitGTK+ Security Advisory WSA-2016-0004
------------------------------------------------------------------------

Date reported : May 30, 2016
Advisory ID : WSA-2016-0004
Advisory URL : http://webkitgtk.org/security/WSA-2016-0004.html
CVE identifiers : CVE-2016-1854, CVE-2016-1856, CVE-2016-1857,...

[oCERT 2016-001] Jetty path sanitization issues
    30 May 2016 | 14:36 from Bugtraq

Posted by Daniele Bianco on May 30

Description:

Jetty is a Java HTTP (Web) server and Servlet container.

The Jetty path normalization mechanism suffers of an implementation issue
when parsing the request URLs.

The path normalization logic implemented in the PathResource class and
introduced in Jetty versions 9.3.x can be defeated by requesting malicious
URLs containing specific escaped characters.

Leveraging on this weakness, a malicious user can gain access to protected...

[SECURITY] [DSA 3588-1] symfony security update
    30 May 2016 | 10:17 from Bugtraq

Posted by Luciano Bello on May 30

-------------------------------------------------------------------------
Debian Security Advisory DSA-3588-1 security () debian org
https://www.debian.org/security/ Luciano Bello
May 29, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : symfony
CVE ID : CVE-2016-1902 CVE-2016-4423

Two...

Multiple Vulnerabilities in Intex Wireless N150 Easy Setup Router
    30 May 2016 | 10:07 from Bugtraq

Posted by mohitreload on May 30

Intex Wireless N150 Easy Setup Router
Vulnerabilities
1. Overview
Intex Wireless N150 Easy Setup Router, firmware version: V5.07.51_en_INX01, uses default credentials, vulnerable to
cross-site request forgery, clear text Transmission of Sensitive Information and other attacks.
2. Vulnerabilities
1. Credentials Management
2. Clear text Transmission of Sensitive Information
3. Auto Complete is enabled
4. Cross-Site...

Faraday v1.0.20 is here! New conflict resolution, hosts and services views & bug fixes!
    27 May 2016 | 20:44 from Penetration Testing

Posted by Francisco Amato on May 27

A brand new Faraday version is ready! Faraday v1.0.20 is here,
bringing more functionality to our GTK interface and other cool new
features.

If you've been keeping up with Faraday, on our last release
http://blog.infobytesec.com/2016/04/prepare-warm-welcome-for-faraday-v1019.html
we published a new experimental GTK interface. In this iteration we
added several missing features and fixed a lot of small bugs.

You will probably notice the...

W3C Invites Implementations of CSS Flexible Box Layout Module Level 1
    26 May 2016 | 14:46 from W3C News

The Cascading Style Sheets (CSS) Working Group invites implementation of the Candidate Recommendation of CSS Flexible Box Layout Module Level 1. The specification describes a CSS box model optimized for user interface design. In the flex layout model, the children of a flex container can be laid out in any direction, and can “flex” their […]