Hack Talk
Your mother would be ashamed. I know mine is Home | Gitweb | Status | IRC

Wed, 28 Sep 2016 13:54:53 +0200

Multiple vulnerabilities found in the Dlink DWR-932B (backdoor, backdoor accounts, weak WPS, RCE ...)
    28 Sep 2016 | 10:40 from Bugtraq

Posted by Pierre Kim on Sep 28

## Advisory Information

Title: Multiple vulnerabilities found in the Dlink DWR-932B (backdoor,
backdoor accounts, weak WPS, RCE ...)
Advisory URL: https://pierrekim.github.io/advisories/2016-dlink-0x00.txt
Blog URL: https://pierrekim.github.io/blog/2016-09-28-dlink-dwr-932b-lte-routers-vulnerabilities.html
Date published: 2016-09-28
Vendors contacted: Dlink
Release mode: Released
CVE: no current CVE
DWF: no current DWF

## Product Description...

Cisco Security Advisory: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016
    28 Sep 2016 | 10:32 from Bugtraq

Posted by Cisco Systems Product Security Incident Response Team on Sep 28

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016

Advisory ID: cisco-sa-20160927-openssl

Revision: 1.0

For Public Release 2016 September 27 22:40 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

On September 22, 2016, the OpenSSL Software Foundation released an advisory that describes 14 vulnerabilities. Of these
14 vulnerabilities, the OpenSSL Software Foundation...

[slackware-security] bind (SSA:2016-271-01)
    28 Sep 2016 | 10:22 from Bugtraq

Posted by Slackware Security Team on Sep 28

[slackware-security] bind (SSA:2016-271-01)

New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,
14.2, and -current to fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/bind-9.10.4_P3-i586-1_slack14.2.txz: Upgraded.
This update fixes a denial-of-service vulnerability. Testing by ISC has
uncovered a critical error condition which can occur...

What do you have to say? Share it at LibrePlanet 2017
    27 Sep 2016 | 22:10 from FSF's blog

Today is the 33rd anniversary of the announcement of the GNU Project, so we've got freedom on our minds. LibrePlanet 2017 is coming! The next installment of this annual celebration of user freedom is happening March 25-26, 2017 in the Boston area.


[SECURITY] [DSA 3680-1] bind9 security update
    27 Sep 2016 | 21:03 from Bugtraq

Posted by Florian Weimer on Sep 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3680-1 security () debian org
https://www.debian.org/security/ Florian Weimer
September 27, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : bind9
CVE ID : CVE-2016-2775 CVE-2016-2776
Debian...

ESA-2016-127: EMC ViPR SRM Stored Cross-Site Scripting Vulnerability
    27 Sep 2016 | 19:52 from Bugtraq

Posted by EMC Product Security Response Center on Sep 27

EMC Identifier: ESA-2016-127
CVE Identifier: CVE-2016-6647
Severity Rating: CVSS v3 Base Score: 7.6 (AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N)

Affected products:
EMC ViPR SRM versions prior to 4.0.1

Summary:
EMC ViPR SRM 4.0.1 contains a fix for a stored cross-site scripting vulnerability that could potentially be exploited
by malicious users to compromise the affected system.

Details:
EMC ViPR SRM is affected by a stored cross-site...

[SECURITY] [DSA 3679-1] jackrabbit security update
    27 Sep 2016 | 13:13 from Bugtraq

Posted by Florian Weimer on Sep 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3679-1 security () debian org
https://www.debian.org/security/ Florian Weimer
September 27, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : jackrabbit
CVE ID : CVE-2016-6801
Debian Bug :...

[security bulletin] HPSBHF03652 rev.1 - HPE iMC PLAT Network Products running Apache Commons FileUpload, Remote Denial of Service (DoS)
    27 Sep 2016 | 08:03 from Bugtraq

Posted by security-alert on Sep 26

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05289840

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05289840
Version: 1

HPSBHF03652 rev.1 - HPE iMC PLAT Network Products running Apache Commons
FileUpload, Remote Denial of Service (DoS)

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date:...

[security bulletin] HPSBHF03654 rev.1 - HPE iMC PLAT Network Products using SSL/TLS, Multiple Remote Vulnerabilities
    27 Sep 2016 | 07:54 from Bugtraq

Posted by security-alert on Sep 26

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05289935

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05289935
Version: 1

HPSBHF03654 rev.1 - HPE iMC PLAT Network Products using SSL/TLS, Multiple
Remote Vulnerabilities

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2016-09-26
Last...

[security bulletin] HPSBHF03655 rev.1 - HPE iMC PLAT Network Products running Apache Axis2, Multiple Remote Vulnerabilities
    27 Sep 2016 | 07:46 from Bugtraq

Posted by security-alert on Sep 26

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05289984

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05289984
Version: 1

HPSBHF03655 rev.1 - HPE iMC PLAT Network Products running Apache Axis2,
Multiple Remote Vulnerabilities

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2016-09-26...

[SECURITY] [DSA 3678-1] python-django security update
    27 Sep 2016 | 07:37 from Bugtraq

Posted by Florian Weimer on Sep 26

-------------------------------------------------------------------------
Debian Security Advisory DSA-3678-1 security () debian org
https://www.debian.org/security/ Florian Weimer
September 26, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : python-django
CVE ID : CVE-2016-7401

Sergey Bobrov...

[slackware-security] openssl (SSA:2016-270-01)
    27 Sep 2016 | 07:28 from Bugtraq

Posted by Slackware Security Team on Sep 26

[slackware-security] openssl (SSA:2016-270-01)

New openssl packages are available for Slackware 14.2 and -current to
fix a security issue.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/openssl-1.0.2j-i586-1_slack14.2.txz: Upgraded.
This update fixes a security issue:
Missing CRL sanity check (CVE-2016-7052)
For more information, see:...

[security bulletin] HPSBGN03648 rev.1 - HPE LoadRunner and Performance Center, Remote Denial of Service (DoS)
    26 Sep 2016 | 19:01 from Bugtraq

Posted by security-alert on Sep 26

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05278882

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05278882
Version: 1

HPSBGN03648 rev.1 - HPE LoadRunner and Performance Center, Remote Denial of
Service (DoS)

NOTICE: The information in this Security Bulletin should be acted upon as
soon as possible.

Release Date: 2016-09-20
Last Updated:...

OS-S Security Advisory 2016-19: Epson WorkForce multi-function printers do not use signed firmware images and allow unauthorized malicious firmware-updates (CVSS 10)
    26 Sep 2016 | 11:03 from Bugtraq

Posted by Ralf Spenneberg on Sep 26

OpenSource Security Ralf Spenneberg
Am Bahnhof 3-5
48565 Steinfurt
info () os-s net

OS-S Security Advisory 2016-19

Title: Epson WorkForce multi-function printers do not use signed
firmware images and allow unauthorized malicious firmware-updates
Authors: Yves-Noel Weweler <y.weweler () gmail com>, Ralf Spenneberg
<ralf () os-t de>, Hendrik Schwartke <hendrik () os-t de>

Date: September 26th 2015
Vendor contacted: September...

[slackware-security] php (SSA:2016-267-01)
    26 Sep 2016 | 10:50 from Bugtraq

Posted by Slackware Security Team on Sep 26

[slackware-security] php (SSA:2016-267-01)

New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/php-5.6.26-i586-1_slack14.2.txz: Upgraded.
This release fixes bugs and security issues.
For more information, see:
https://php.net/ChangeLog-5.php#5.6.26...

Call for Prior Art Related to Patents Disclosed by Visa Europe
    26 Sep 2016 | 10:03 from W3C News

This is a public call for prior art regarding patent disclosures by Visa Europe within the Web Payments Working Group. The goal of this call for prior art is to collect information that would help to ensure that people may implement the (future) Recommendations of the Web Payments Working Group under patent licensing terms consistent […]


ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability
    23 Sep 2016 | 15:35 from Bugtraq

Posted by EMC Product Security Response Center on Sep 23

ESA-2016-097: RSA Identity Governance and Lifecycle Information Disclosure Vulnerability

EMC Identifier: EMC-2016-097

CVE Identifier: CVE-2016-0918

Severity Rating: CVSS v3 Base Score: 4.3 (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

Affected Products:
•RSA Identity Management and Governance versions prior to 6.8.1 P25
•RSA Identity Management and Governance versions prior to 6.9.1 P15
•RSA Via Lifecycle and Governance versions prior to...

W3C Global Web Experts Plan Technical Roadmap for Future of Web
    23 Sep 2016 | 13:14 from W3C News

As W3C concludes on 23 September our annual Technical Plenary and Advisory Committee (TPAC) Meeting week, where more than 550 experts from the Web community met, we are excited to share advancements to the Open Web Platform and specific industry requirements for the next generation Web. In summarizing the W3C’s activities, Jeff Jaffe, W3C CEO […]


IE11 is not following CORS specification for local files
    23 Sep 2016 | 02:52 from Penetration Testing

Posted by Ricardo Iramar dos Santos on Sep 22

IE11 is not following CORS specification for local files like Chrome
and Firefox.
I've contacted Microsoft and they say this is not a security issue so
I'm sharing it.

files as supposed to be.
In order to prove I've created a malicious html file with the content below.

<html>
<script>
function createCORSRequest(method, url) {
var xhr = new XMLHttpRequest();
if ("withCredentials" in xhr) {...

Welcome Faraday 2.1! Collaborative Penetration Test & Vulnerability Management Platform
    23 Sep 2016 | 02:47 from Penetration Testing

Posted by Francisco Amato on Sep 22

After a long sprint we are proud to present Faraday v2.1:

Faraday is the Integrated Multiuser Risk Environment you were looking
for! It maps and leverages all the knowledge you generate in real
time, letting you track and understand your audits. Our dashboard for
CISOs and managers uncovers the impact and risk being assessed by the
audit in real-time without the need for a single email. Developed with
a specialized set of functionalities that...