Computer Security
[EN] securityvulns.ru no-pyccku


PolarSSL DoS
Published:22.07.2014
Source:
SecurityVulns ID:13880
Type:remote
Threat Level:
5/10
Description:DoS on GCM cypher.
Affected:POLARSSL : polarssl 1.3
CVE:CVE-2014-4911 (The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2981-1] polarssl security update (22.07.2014)

Microsoft Windows XP privilege escalation
Published:22.07.2014
Source:
SecurityVulns ID:13881
Type:local
Threat Level:
5/10
Description:BthPan.sys and MQAC.sys privilege escalation.
Affected:MICROSOFT : Windows XP
CVE:CVE-2014-4971 (Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to (1) the MQAC.sys driver in the MQ Access Control subsystem and (2) the BthPan.sys driver in the Bluetooth Personal Area Networking subsystem.)
Original documentdocumentdisclosures_(at)_korelogic.com, KL-001-2014-002 : Microsoft XP SP3 BthPan.sys Arbitrary Write Privilege Escalation (22.07.2014)
 documentdisclosures_(at)_korelogic.com, KL-001-2014-003 : Microsoft XP SP3 MQAC.sys Arbitrary Write Privilege Escalation (22.07.2014)

Nessus Web UI information leakage
Published:22.07.2014
Source:
SecurityVulns ID:13882
Type:remote
Threat Level:
5/10
Description:Information leakage via Web.
Affected:TEENABLE : Nexus Web UI 2.3
CVE:CVE-2014-4980 (The /server/properties resource in Tenable Web UI before 2.3.5 for Nessus 5.2.3 through 5.2.7 allows remote attackers to obtain sensitive information via the token parameter.)
Original documentdocumenti_(at)_amroot.com, CVE-2014-4980 Parameter Tampering in Nessus Web UI - Remote Information Disclosure (22.07.2014)

HP Intelligent Management Center / HP Branch Intelligent Management System information leakage
Published:22.07.2014
Source:
SecurityVulns ID:13883
Type:remote
Affected:HP : HP Intelligent Management Center 7.0
 HP : Branch Intelligent Management System 7.0
CVE:CVE-2014-2622 (Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote authenticated users to obtain sensitive information or modify data via unknown vectors, aka ZDI-CAN-2312.)
 CVE-2014-2621 (Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2090.)
 CVE-2014-2620 (Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2089.)
 CVE-2014-2619 (Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2088.)
 CVE-2014-2618 (Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2080.)
Original documentdocumentHP, [security bulletin] HPSBHF02913 rev.1 - HP Intelligent Management Center (iMC) and HP Branch Intelligent Management System (BIMS), Remote Disclosure of Information (22.07.2014)

HP StoreVirtual security vulnerabilities
Published:22.07.2014
Source:
SecurityVulns ID:13884
Type:remote
Threat Level:
5/10
Description:Information leakage, privilege escalation.
Affected:HP : HP StoreVirtual 4000
 HP : HP StoreVirtual VSA 11.0
CVE:CVE-2014-2606 (Unspecified vulnerability in HP StoreVirtual 4000 Storage and StoreVirtual VSA 9.5 through 11.0 allows remote authenticated users to gain privileges via unknown vectors.)
 CVE-2014-2605 (Unspecified vulnerability in HP StoreVirtual 4000 Storage and StoreVirtual VSA 9.5 through 11.0 allows remote attackers to obtain sensitive information via unknown vectors.)
Original documentdocumentHP, [security bulletin] HPSBST03039 rev.1 - HP StoreVirtual 4000 Storage and StoreVirtual VSA, Remote Disclosure of Information, Elevation of Privilege (22.07.2014)

liblzo integer overflow
Published:22.07.2014
Source:
SecurityVulns ID:13885
Type:library
Threat Level:
5/10
Description:Integer overflow on LZO decompression.
Affected:LIBLZO : liblzo 2.80
CVE:CVE-2014-4607
Original documentdocumentMANDRIVA, [ MDVSA-2014:134 ] liblzo (22.07.2014)

libgd / PHP DoS
Published:22.07.2014
Source:
SecurityVulns ID:13886
Type:library
Threat Level:
5/10
Description:NULL pointer dereference on XPM files parsing.
Affected:GD : libgd 2.0
 PHP : PHP 5.4
CVE:CVE-2014-2497 (The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.)
Original documentdocumentMANDRIVA, [ MDVSA-2014:133 ] gd (22.07.2014)

CUPS unauthorized files access
updated since 22.07.2014
Published:28.07.2014
Source:
SecurityVulns ID:13879
Type:local
Threat Level:
5/10
Description:Unauthorized access to RSS files
Affected:CUPS : cups 1.7
CVE:CVE-2014-5031 (The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.)
 CVE-2014-5030 (CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on (1) index.html, (2) index.class, (3) index.pl, (4) index.php, (5) index.pyc, or (6) index.py.)
 CVE-2014-5029 (The web interface in CUPS 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/ and language[0] set to null. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3537.)
 CVE-2014-3537 (The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2990-1] cups security update (28.07.2014)
 documentUBUNTU, [USN-2293-1] CUPS vulnerability (22.07.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod