[Secure-testing-commits] r45852 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 1 20:04:46 UTC 2016
Author: carnil
Date: 2016-11-01 20:04:46 +0000 (Tue, 01 Nov 2016)
New Revision: 45852
Modified:
data/CVE/list
Log:
Add CVE-2016-9140/zabbix
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-01 19:58:59 UTC (rev 45851)
+++ data/CVE/list 2016-11-01 20:04:46 UTC (rev 45852)
@@ -1,3 +1,7 @@
+CVE-2016-9140 [RCE]
+ - zabbix <unfixed>
+ NOTE: https://www.exploit-db.com/exploits/39937/
+ TODO: check
CVE-2016-9139 [An attacker could trick an authenticated agent or customer into opening a malicious attachment which could lead to the execution of JavaScript in OTRS context]
- otrs2 <unfixed>
NOTE: https://www.otrs.com/security-advisory-2016-02-security-update-otrs/
More information about the Secure-testing-commits
mailing list