[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] New CVE's to be released the 17th of June.

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] New CVE's to be released the 17th of June.
From: Kasper Westphal Bertelsen <kb@xxxxxxxxxxxxx>
Date: Thu, 16 Jul 2015 16:12:13 +0200

Hi Full Disclosure,

New vulnerabilities has been discovered in Joomla Helpdesk Pro by Outpost24 
ethical hackers.

Release date tomorrow the 17th of June 10 GMT(+2) time. Don’t reveal before 
tomorrow.

Exploits: 



Link to blog:
https://www.outpost24.com/outpost24-has-found-critical-vulnerabilities-in-joomla-helpdesk-pro/
 
<https://www.outpost24.com/outpost24-has-found-critical-vulnerabilities-in-joomla-helpdesk-pro/>


References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4071
 
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4071>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4072
 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4072>
 
<https://www.outpost24.com/outpost24-has-found-critical-vulnerabilities-in-joomla-helpdesk-pro/%22x%3C/a>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4073
 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4073>
 
<https://www.outpost24.com/outpost24-has-found-critical-vulnerabilities-in-joomla-helpdesk-pro/%22x%3C/a>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4074
 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4074>
 
<https://www.outpost24.com/outpost24-has-found-critical-vulnerabilities-in-joomla-helpdesk-pro/%22x%3C/a>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4075
 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4075>

If you have any questions don’t hesitate to contact me.

Best Regards,
 
------------------------------------------------------------------------------------------
Kasper Bertelsen
Marketing Manager
Outpost24 Denmark ApS
Højbro Plads 21A, 2tv | 1200 Copenhagen | Denmark
M: +45 53 73 05 65 | T: +45 31 77 11 70
Web:www.outpost24.com <http://www.outpost24.com/>| 
Skype:kasper.westphal.bertelsen| Linkedin.com/in/kasperwbertelsen 
<http://linkedin.com/in/kasperwbertelsen>|  
---Outpost24 - Vulnerability Management Made Easy!--













_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] SEC Consult SA-20150716-0 :: Permanent Cross-Site Scripting in Oracle Application Express
Next by Date: Re: [FD] 15 TOTOLINK router models vulnerable to multiple RCEs
Previous by thread: [FD] SEC Consult SA-20150716-0 :: Permanent Cross-Site Scripting in Oracle Application Express
Next by thread: [FD] double free's in glibc (and tcmalloc/jemalloc)
Index(es):
- Date
- Thread