[FD] Switch v4.68 - Code Execution Vulnerability

2015-12-22 Thread Vulnerability Lab
Document Title: === Switch v4.68 - Code Execution Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1649 Release Date: = 2015-11-23 Vulnerability Laboratory ID (VL-ID): 1649

[FD] POP Peeper 4.0.1 - Persistent Code Execution Vulnerability

2015-12-22 Thread Vulnerability Lab
Document Title: === POP Peeper 4.0.1 - Persistent Code Execution Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1657 Release Date: = 2015-11-26 Vulnerability Laboratory ID (VL-ID):

[FD] Lithium Forum - (previewImages) Persistent Vulnerability

2015-12-22 Thread Vulnerability Lab
Document Title: === Lithium Forum - (previewImages) Persistent Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1520 Release Date: = 2015-12-18 Vulnerability Laboratory ID (VL-ID):

[FD] Aeris Calandar v2.1 - Buffer Overflow Vulnerability

2015-12-22 Thread Vulnerability Lab
Document Title: === Aeris Calandar v2.1 - Buffer Overflow Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1656 Release Date: = 2015-12-01 Vulnerability Laboratory ID (VL-ID):

[FD] SIPROTEC 4 and SIPROTEC Compact FAQ #5

2015-12-22 Thread SCADA StrangeLove
"SIPROTEC 4 and SIPROTEC Compact devices allow the display of extended internal statistics and test information... To access this information, the confirmation code ... needs to be provided when prompted." Good to know... http://scadastrangelove.blogspot.com/2015/12/now-declared-capabilities.html

[FD] DELL Scrutinizer v12.0.3 - Persistent Software Vulnerability

2015-12-22 Thread Vulnerability Lab
Document Title: === DELL Scrutinizer v12.0.3 - Persistent Software Vulnerability References (Source): http://vulnerability-lab.com/get_content.php?id=1360 Tracking ID: 15943 Release Date: = 2015-12-18 Vulnerability Laboratory ID (VL-ID):

[FD] [RT-SA-2015-013] Symfony PHP Framework: Session Fixation In "Remember Me" Login Functionality

2015-12-22 Thread RedTeam Pentesting GmbH
Advisory: Symfony PHP Framework: Session Fixation In "Remember Me" Login Functionality A session fixation vulnerability within the Symfony web application framework's "Remember Me" login functionality allows an attacker to impersonate the victim towards the web application if the