Databáze Hot News 2014 June -

Databáze Hot News 2014 June - 2014 January February March April May June July August September October November December

28.6.2014

Bugtraq

[SECURITY] [DSA 2969-1] libemail-address-perl security update 2014-06-27
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU03056 rev.1 - HP Version Control Repository Manager (HP VCRM) running OpenSSL on Linux and Windows, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-27
security-alert hp com

[security bulletin] HPSBMU03057 rev.1 - HP Version Control Agent (HP VCA) running OpenSSL on Linux and Windows, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-27
security-alert hp com

[security bulletin] HPSBMU03061 rev.1 - HP Release Control, Disclosure of Privileged Information and Elevation of Privilege 2014-06-27
security-alert hp com

[SECURITY] [DSA 2968-1] gnupg2 security update 2014-06-27
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU03058 rev.1 - HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL, Remote Disclosure of Information 2014-06-26
security-alert hp com

CFP 1st International Conference on Information Systems Security and Privacy - ICISSP 2015 2014-06-26
calendarsites insticc org

Malware

Generic.dx!DD45C6E12E29
RDN/Generic PUP.x!chh!DAA38AB4DE9F
RDN/Generic PUP.x!chh!9F6E1C267D86
PUP-FIC!D9053AB0B92C
Generic PUP.x!B42006DCFF9C
RDN/Generic PUP.x!149DD9EE882C
RDN/Generic.bfr!hk!B95C1F129AC0
CryptDomaIQ!D6BEEEA7373A
CryptInno!D81699977BF5
Generic PUP.x!FB1FFC9699B5
Generic PUP.x!836453BB5662
Generic PUP.x!F56E8A0EEA04
PowerPack!D810D3298DCB
Generic PUP.x!17FB5D425C7B
Generic PUP.x!650243FDD8DA
RDN/Generic PUP.x!chh!5C0A7D3FB576
RDN/Generic PUP.x!chh!1441C619E994
RDN/Generic PUP.x!chh!ACDAEF506CA2
Generic PUP.x!177E6935325C
Generic PUP.x!B18ADA577322
PUP-FIC!D9DF4AA80AB5
RDN/Generic.dx!ddl!2693385997A9
PUP-FIC!D9D9CD118F72
Generic PUP.x!316079CB4CF2
Generic PUP.x!18D674774C40
RDN/Generic.bfr!hk!D8E5C6E7482D
RDN/Generic PUP.x!chh!16291336ADCE
RDN/Generic PUP.x!chh!D94559862157
RDN/Generic PUP.x!chh!B83AF37C7798
Generic PUP.x!E3EF0A5A4696

Phishing

NatWest	28th June 2014
IMPORTANT INFORMATION ABOUT YOUR ACCOUNT
Paypal Customers Service	27th June 2014
NOTICE OF CHANGES TO THE PAYPAL USER AGREEMENT

Vulnerebility

Exploit

HP AutoPass License Server File Upload

chkrootkit 0.49 - Local Root Vulnerability

MS14-009 .NET Deployment Service IE Sandbox Escape

MS13-097 Registry Symlink IE Sandbox Escape

Python CGIHTTPServer Encoded Path Traversal

Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities

Wordpress Simple Share Buttons Adder Plugin 4.4 - Multiple Vulnerabilities

Endeca Latitude 2.2.2 - CSRF Vulnerability

27.6.2014

Bugtraq

[SECURITY] [DSA 2967-1] gnupg security update 2014-06-25
Salvatore Bonaccorso (carnil debian org)

CVE-2014-3752 - Arbitrary Code Execution in G Data TotalProtection 2014 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-2385 - Multiple Cross Site Scripting in Sophos Antivirus Configuration Console (Linux) 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

[RT-SA-2013-003] Endeca Latitude Cross-Site Scripting 2014-06-25
RedTeam Pentesting GmbH (release redteam-pentesting de)

Malware

RDN/Generic Dropper!519351F39961
Generic PUP.x!712AFDF8BA0C
Generic PUP.x!1F6D8B9B4A52
Generic PUP.x!DA16F7696035
Generic PUP.x!CDA9011EC4CF
Generic PUP.x!D9CA13D500DE
RDN/Downloader.a!ro!D948D19D991A
RDN/Generic PUP.x!chc!D984241F0DD7
Generic PUP.x!36BCDDAC7BB5
Generic PUP.x!46EFFD09EE21
RDN/Generic PUP.x!chc!D9876E6D3135
Generic PUP.x!D9873F64A666
Generic PUP.x!C25DFA615C1A
Generic PUP.x!7BC6BE55EBB8
Generic PUP.x!1C6314A32637
Generic.bfr!5D160AD64001
Generic PUP.x!6678F1B9A35D
RDN/Generic PUP.x!chc!D8BD43949AE4
Generic PUP.x!51DDC635A811
Generic PUP.x!D8CFF4F8ADF5
Generic.dx!D8B3DE4D8D8B
RDN/Generic PUP.x!chc!D8822D3F2C1D
RDN/Generic.dx!dd3!D6A830D12603
RDN/Generic PUP.x!chc!E4BE1CDFBB3F
RDN/Generic.dx!dd3!D8B51BE6EC72
RDN/Generic PUP.x!chc!61375B2B6D7F
RDN/Generic.bfr!hk!D7F58DED75AC
Generic PUP.x!5FDEC90E7243
Generic.dx!D84345A0C9D0
Generic.dx!D646C1124843

Phishing

BT	27th June 2014
BT Planned Software Uprade
Chase	26th June 2014
Your Chase Account Has Been Blocked!
Natwest Bank UK	26th June 2014
NOTIFICATION FROM NATWEST BANK

Vulnerebility

Exploit

26.6.2014

Bugtraq

[SECURITY] [DSA 2967-1] gnupg security update 2014-06-25
Salvatore Bonaccorso (carnil debian org)

CVE-2014-3752 - Arbitrary Code Execution in G Data TotalProtection 2014 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-2385 - Multiple Cross Site Scripting in Sophos Antivirus Configuration Console (Linux) 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

[RT-SA-2013-003] Endeca Latitude Cross-Site Scripting 2014-06-25
RedTeam Pentesting GmbH (release redteam-pentesting de)

[RT-SA-2013-002] Endeca Latitude Cross-Site Request Forgery 2014-06-25
RedTeam Pentesting GmbH (release redteam-pentesting de)

Reflected Cross-Site Scripting (XSS) Vulnerability in Storesprite 2014-06-25
High-Tech Bridge Security Research (advisory htbridge com)

NEW VMSA-2014-0007 - VMware product updates address security vulnerabilities in Apache Struts library 2014-06-25
\VMware Security Response Center\ (security vmware com)

[slackware-security] seamonkey (SSA:2014-175-05) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] samba (SSA:2014-175-04) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] bind (SSA:2014-175-01) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] gnupg (SSA:2014-175-02) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] gnupg2 (SSA:2014-175-03) 2014-06-24
Slackware Security Team (security slackware com)

Malware

Generic PUP.x!57025514A1C2
Generic PUP.x!763FC5832083
Generic PUP.x!5A55896FF1D3
Generic PUP.x!DA74D30E6D29
Generic PUP.x!5FE39A6278AC
Generic.bfr!65CD782E4227
Generic PUP.x!F08A5F859774
Generic.bfr!1FD0EE705E19
Generic PUP.x!584FF73826D4
RDN/Generic PUP.x!chb!A9834259B392
Generic.dx!D4C63EB71468
Generic PUP.x!655F4AB04646
PUP-FIC!6769CE595E59
PUP-FIC!20E55DAA81CF
Generic PUP.x!65E0D554FA54
Generic PUP.x!65CD62C5CC8E
Generic PUP.x!CAE2FEB28033
Generic PUP.x!21F1AA74E35C
Generic PUP.x!568A32EF018E
Generic PUP.x!68C616C778AB
Generic PUP.x!9A9BE2BA555D
Generic PUP.x!9FFC53664E62
RDN/Generic.dx!ddh!B4314B5EC1DD
Generic PUP.x!64D9F8D732F3
Generic PUP.x!660BE3F12BDC
Generic PUP.x!A3B1A268391C
Generic PUP.x!9A64E1CC2CAC
Generic PUP.x!7D48D926469A
Generic PUP.x!CE26A4A57B4B
RDN/Generic.bfr!hn!98888CEA430B

Phishing

Vulnerebility

Exploit

Cogent DataHub Command Injection

Thomson TWG87OUIR - POST Password CSRF

25.6.2014

Bugtraq

Boolean algebra and CSS history theft 2014-06-24
Michal Zalewski (lcamtuf coredump cx)

Android KeyStore Stack Buffer Overflow (CVE-2014-3100) 2014-06-23
Roee Hay (roeeh il ibm com)

Malware

Generic PUP.x!5EAFB530CA33
Generic PUP.x!BEB8B2EDC03F
Generic PUP.x!E8F851101498
RDN/Generic PUP.x!cg3!6CFF23DCDFAB
RDN/Generic PUP.x!cg3!626654FA80ED
RDN/Generic PUP.x!cg3!2E0C998A069E
RDN/Generic PUP.x!cg3!3E36FBD462F6
RDN/Generic PUP.x!cg3!00C75AB6FD3B
Generic PUP.x!19967A9C9946
Generic.dx!0633E858ACFB
Generic PUP.x!87E1CAE71B9E
Generic PUP.x!6E6496FB2926
RDN/Generic.dx!ddf!2A51443A7FBC
RDN/Generic PUP.x!cg3!2B248D60478D
RDN/Generic PUP.x!cg3!F49584D3FA43
Generic PUP.x!9E98AFC50D3E
Generic PUP.x!F4F43218B2D6
RDN/Generic PUP.x!cg3!6A9C916A7735
Generic PUP.x!DC9650147541
Generic PUP.x!1955117CFE02
Generic PUP.x!C3FADE6BCF1A
Generic PUP.x!1B5B20EEFC93
Generic PUP.x!E7517CC902D0
Generic PUP.x!A0D0FF04F031
Generic PUP.x!D10E289661EC
Generic PUP.x!1488CAB73074
Generic PUP.x!0119B33BE5E1
RDN/Generic PUP.x!cg3!F496DEFB066C
RDN/Generic PUP.x!cg3!F4AAD471C131
RDN/Generic PUP.x!cg3!F4BF1187A70A

Phishing

Halifax Bank	24th June 2014
We need to update some important information.

Vulnerebility

Exploit

D-Link authentication.cgi Buffer Overflow

D-Link hedwig.cgi Buffer Overflow in Cookie Header

AlienVault OSSIM av-centerd Command Injection

24.6.2014

Bugtraq

[security bulletin] HPSBHF03052 rev.1 - HP Intelligent Management Center (iMC), HP Network Products including H3C and 3COM Routers and Switches running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Modification or Disclosur 2014-06-23
security-alert hp com

[SECURITY] [DSA 2966-1] samba security update 2014-06-23
Yves-Alexis Perez (corsac debian org)

[SECURITY] [DSA 2965-1] tiff security update 2014-06-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 2964-1] iodine security update 2014-06-21
Salvatore Bonaccorso (carnil debian org)

Malware

Generic PUP.x!845A337B7CAB
RDN/Generic PUP.x!cgv!1E4F529FFD96
Generic PUP.x!E93D39CF5CF7
Generic PUP.x!B4C08821EEC6
RDN/Generic PUP.x!cgv!E21AAC96E391
RDN/Generic PUP.x!cgv!72B162893D2F
Generic PUP.x!E224642A7BEA
Generic PUP.x!1C017613EA83
RDN/Generic BackDoor!206E36311129
PUP-FIC!4F06C455F02F
Generic PUP.x!1B9625D1AC3E
PUP-FIC!6DDCA7D5E6FE
CryptInno!5ECD15839320
Generic PUP.x!715C159D2297
PUP-FIC!6B1DD24DEC15
RDN/Generic.bfr!hl!197CA99C6F23
PUP-FIC!6B764068CD58
PUP-FIC!6C12A1A336C6
Generic PUP.x!55D81AD7384C
RDN/Generic.dx!dd3!1FBDAFD0A797
Generic PUP.x!21D4E2A22B89
Generic PUP.x!E9C7F1AA152A
RDN/Generic PUP.x!41FFF4209106
PUP-FIC!7321F7B27891
Generic PUP.x!E6006C4F967D
Generic PUP.x!4758A21D2913
PUP-FIC!5DF61D0598AE
Generic.bfr!3BE4DE6A9480
Generic PUP.x!A4F364A45152
RDN/Generic BackDoor!yu!174561120742

Phishing

Vulnerebility

Exploit

23.6.2014

Bugtraq

Malware

Generic PUP.x!555FC8381E5C
Generic PUP.x!AFE2B4FC1CD1
Generic PUP.x!0101C4D9DB67
Generic PUP.x!91B18C63604E
Generic PUP.x!A7E1F62F0E51
Generic PUP.x!617DBE14481F
RDN/Generic PUP.x!cgs!5E26CA1346AD
Generic PUP.x!FCD84A5EC4D5
Generic PUP.x!D51801D0B6F7
Generic PUP.x!45C376F6A0D1
RDN/Generic PUP.x!cgs!2062220D4C15
Generic PUP.x!BF9DF4473170
Generic.bfr!0E980D79F8D9
Generic PUP.x!77AE04B0A1F7
Generic PUP.x!F8C1EA6E8A95
Generic.tfr!F717C0B148A1
Downloader.gen.a!E09A773F6BEE
RDN/Generic PUP.x!cgs!2BF2C01480BB
RDN/Generic PUP.x!cgs!E0398A53D28B
RDN/Downloader.a!rm!FD2271A95A64
RDN/Downloader.a!rm!0A012D809CDF
Generic PUP.x!B5A147CDA395
RDN/Generic PWS.y!zq!992A623F3816
Generic PUP.x!51289A4A0253
Generic PUP.x!F6128E23BD67
Generic PUP.x!75D6061751DA
Generic PUP.x!9DD266EE22B1
RDN/Generic.dx!ddd!6674365A217F
Generic PUP.x!62166E4E60AB
Generic PUP.x!9B85DC5B9AB1

Phishing

Barclays	22nd June 2014
Dear Barclays Memeber,
Barclays	21st June 2014
Restriction On Your Account
Barclays	21st June 2014
Dear Barclays Memeber,

Vulnerebility

Exploit

21.6.2014

Bugtraq

[security bulletin] HPSBOV03047 rev.1 - HP OpenVMS running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-18
security-alert hp com

Secunia CSI/VIM - Filter Bypass & Persistent Validation Vulnerabilities 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #36 - SecurityKey Card Serialnumber Module Vulnerability 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Multiple SQL Injection Vulnerabilities in web2Project 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

Malware

Generic PUP.x!31FE28CB292D
Generic PUP.x!04906D4BC409
RDN/Generic PUP.x!cgp!6DCF6B78BC72
CryptInno!6DDE07C3A56D
Generic.dx!2F9F060940CA
RDN/Generic PUP.x!cgp!6D8D4E3C08F5
Generic PUP.x!70F5E218A860
Generic.dx!9CFC834D3873
RDN/Generic.tfr!ea!8849F119F147
PUP-FIC!51C9458E889A
RDN/Generic PUP.x!cgp!6B3CB1F4DACE
Generic PUP.x!9D29A7265FA0
Generic Downloader.x!1135C1EF78F9
CryptInno!0CD05D3BDEB3
CryptInno!6B0F2EC1FF9A
Generic PUP.x!04E3754EDDE5
Generic PUP.x!32E0C96B2973
Generic PUP.x!2929829EFDC8
RDN/Generic PUP.x!cgp!6D29C2820CCA
CryptInno!2CBC2CB70445
RDN/Generic.bfr!gf!3F6760B91319
RDN/Generic PUP.x!cgp!4C10595F92CC
Generic PUP.x!77653A3AA19C
RDN/Generic PUP.x!cgp!35ADA0CE755E
Generic PUP.x!E0748F386FEC
RDN/Generic.bfr!gf!35B0F0E15F7E
Generic PUP.x!FD9C373723BD
RDN/Generic PUP.x!cgp!16B3B8A0DCB0
RDN/Generic PUP.x!cgp!09658492B174
RDN/Generic PUP.x!cgp!20405291A078

Phishing

Barclays	21st June 2014
Restriction On Your Account
Barclays	21st June 2014
Dear Barclays Memeber,
Barclays	20th June 2014
Dear Barclays Memeber,
PayPal	20th June 2014
Your account has been temporarily blocked
Lloyds	20th June 2014
Important Security Message. from Lloyds Bank
Lloyds	20th June 2014
Lloyds Bank Important Notification.
David Gibson	20th June 2014
Important Document!
Lloyds	19th June 2014
Important Security Message. from Lloyds Bank
PayPal	19th June 2014
PAYPAL ISSUE ; INFORMATIONS REQUIRED
Bank Of America	19th June 2014
ONLINE BANKING : IMPORTANT MESSAGE

Vulnerebility

Exploit

Linux Kernel <= 3.13 - Local Privilege Escalation PoC (gid)

D-link DSL-2760U-E1 - Persistent XSS

Wordpress 3.9.1 - CSRF Vulnerability

20.6.2014

Bugtraq

[security bulletin] HPSBOV03047 rev.1 - HP OpenVMS running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-18
security-alert hp com

Secunia CSI/VIM - Filter Bypass & Persistent Validation Vulnerabilities 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #36 - SecurityKey Card Serialnumber Module Vulnerability 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Multiple SQL Injection Vulnerabilities in web2Project 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

SQL Injection in Dolphin 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

Malware

Generic PUP.x!BA11BD630B2C
Generic PUP.x!E525FBDB37FB
RDN/Generic PUP.x!cg3!39AD02A26B5A
Generic.bfr!AD4ACB86B1F9
Generic PUP.x!6796644345FA
Generic PUP.x!3C55BFC32BAB
Generic PUP.x!39168612C3D9
Generic PUP.x!3A23B43C5640
Downloader.gen.a!4366E53CC071
Generic.bfr!10F3AFAA0E8F
Generic PUP.x!7D7F1323A9A3
RDN/Generic PUP.x!4C2E1F975110
Generic PUP.x!B16A538D9C90
RDN/Generic PUP.x!cg3!C2E423FE781A
Generic PUP.x!649C3D0062F2
Generic PUP.x!45436234A249
RDN/Generic.bfr!hl!66810F6BC4C8
RDN/Generic PUP.x!cg3!373F24778006
Generic PUP.x!AE71ADCD47E8
RDN/Generic PUP.x!cg3!366B86D2C73F
Generic PUP.x!A7E02EF02D52
Generic PUP.x!9B7AC2BB60B7
Generic.bfr!6CE986507AE6
Generic PUP.x!664084FD98C0
Generic PUP.x!3842B7537A2D
Generic PUP.x!7B4645A7F55B
RDN/Generic PUP.x!cg3!D98A60698BF4
Generic.bfr!66FE555355A5
Generic PUP.x!8256D3B41D14
Generic PUP.x!1576034F8AC2

Phishing

Lloyds	19th June 2014
Important Security Message. from Lloyds Bank
PayPal	19th June 2014
PAYPAL ISSUE ; INFORMATIONS REQUIRED
Bank Of America	19th June 2014
ONLINE BANKING : IMPORTANT MESSAGE
Barclays	19th June 2014
Dear Barclays Memeber,

Vulnerebility

Exploit

Ericom AccessNow Server Buffer Overflow

web2Project 3.1 - Multiple Vulnerabilities

19.6.2014

Bugtraq

Secunia CSI/VIM - Filter Bypass & Persistent Validation Vulnerabilities 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #36 - SecurityKey Card Serialnumber Module Vulnerability 2014-06-18
[SECURITY] [DSA 2963-1] lucene-solr security updateVulnerability Lab (research vulnerability-lab com)

Multiple SQL Injection Vulnerabilities in web2Project 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

SQL Injection in Dolphin 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

[security bulletin] HPSBMU03048 rev.1 - HP Software Executive Scorecard, Remote Execution of Code, Directory Traversal 2014-06-17
security-alert hp com

2014-06-17
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBUX03046 SSRT101590 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Code Execution, Security Restriction Bypass, Disclosure of Information, or Unauthorized Access 2014-06-17
security-alert hp com

[SECURITY] [DSA 2962-1] nspr security update 2014-06-17
Moritz Muehlenhoff (jmm debian org)

Malware

Generic PUP.x!267F3DA9E607
Generic PUP.x!BFC93059E2BE
Downloader.gen.a!1DCCE9873B75
Generic PUP.x!BB6A43BFE064
Generic PUP.x!507E8D0DD6F2
Generic PUP.x!9828046AD4F9
Generic PUP.x!694E30BDE4A7
Generic PUP.x!6974FC58BF4B
Generic PUP.x!66DCCAFB8FFF
RDN/Generic PUP.x!cgd!21E4309AA7D2
Generic PUP.x!28B090B4D259
Generic PUP.x!A1B1E949C14C
Generic PUP.x!059A59DA575B
Generic PUP.x!7F29EB48D7BE
W32/Sdbot.worm!A99B7DB3BFA9
Generic PUP.x!535A0D9D16C0
Generic PUP.x!09952FBE2E44
Generic.bfr!8E43DE1BC26D
Generic PUP.x!212DA14CAD53
Generic PUP.x!1869C2B209A0
Generic PUP.x!505B9B4FE884
Generic PUP.x!11071D5A690B
Generic PUP.x!61E9478AEEF8
Generic PUP.x!5612D5F770B4
Generic PUP.x!687B8CA787B6
Generic PUP.x!625D31A5A1EC
Generic PUP.x!4B62EB784166
Generic PUP.x!60EBCABF40E3
Generic PUP.x!40B4BA6790A0
Generic PUP.x!22B6459FEF2C

Phishing

Barclays	19th June 2014
Dear Barclays Memeber,
Financial Services Authority	18th June 2014
[WARNING: VIRUS REMOVED]New eDocument arrived
Barclays	18th June 2014
Dear Barclays Memeber,

Vulnerebility

Exploit

Rocket Servergraph Admin Center fileRequestor Remote Code Execution

docker 0.11 VMM-container Breakout

Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerability

18.6.2014

Bugtraq

[SECURITY] [DSA 2961-1] php5 security update 2014-06-16
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2950-2] openssl update 2014-06-16
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2960-1] icedove security update 2014-06-16
Moritz Muehlenhoff (jmm debian org)

[CFP] Hacktivity 2014 CFP is open 2014-06-16
ferenc spala hacktivity com

Malware

Generic PUP.x!37E10FBE2F52
Generic PUP.x!F9B822B9D814
RDN/Generic PUP.x!cgc!D93DA4732D0C
Generic PUP.x!12F14387945A
Generic PUP.x!9C7C61B5420C
Generic.bfr!08AD80AB7225
Generic.bfr!73130BE0F5E5
Generic PUP.x!9D7FCB428829
Generic PUP.x!C9AE208BDED4
Generic.bfr!E45969B7095A
Generic PUP.x!9B2FAE1F0CAB
Generic PUP.x!FF8528A56AA8
Generic PUP.x!C8FE2389E1EB
Generic PUP.x!D09E2F20A02E
Generic.bfr!DA7134C80F06
Generic PUP.x!E04A8C400321
RDN/Downloader.a!rk!BB444E4C2511
Generic.bfr!4DD466D249D1
Generic PUP.x!5F480E05098A
Generic PUP.x!1D9F6F878920
Generic PUP.x!46B3139B48FB
Generic PUP.x!AAD4131FE4CD
Generic.bfr!E97F199F1D90
Generic PUP.x!999325794ADA
Generic.bfr!A96F54140456
Generic PUP.x!5D5E8D894EC3
Generic PUP.x!F0932739C8D0
Generic PUP.x!2994640F0756
Generic PUP.x!E914D9D2BA0F
Generic PUP.x!F42939053A8A

Phishing

Barclays	18th June 2014
Dear Barclays Memeber,
Virgin Media	18th June 2014
Virgin Media Update
Virgin Media	17th June 2014
[Norton Anti]Virgin Media Automated Billing Reminder
Virgin Media Online	17th June 2014
Virgin Media Automated Billing Reminder

Vulnerebility

Exploit

Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerability

Java Debug Wire Protocol Remote Code Execution

Adobe Reader for Android addJavascriptInterface Exploit

Motorola SBG901 Wireless Modem - CSRF Vulnerability

ZTE WXV10 W300 - Multiple Vulnerabilities

17.6.2014

Bugtraq

[SECURITY] [DSA 2960-1] icedove security update 2014-06-16
Moritz Muehlenhoff (jmm debian org)

[CFP] Hacktivity 2014 CFP is open 2014-06-16
ferenc spala hacktivity com

[SECURITY] [DSA 2959-1] chromium-browser security update 2014-06-14
Michael Gilbert (mgilbert debian org)

[SE-2014-01] Security vulnerabilities in Oracle Database Java VM 2014-06-16
Security Explorations (contact security-explorations com)

ClipBucket CMS Xss Vulnerability 2014-06-14
iedb team gmail com

Malware

Generic PUP.x!9029A777A670
Generic PUP.x!C5CEB22DBF83
Generic.dx!000FD2678BBF
Generic PUP.x!D7EF75B8630D
Generic PUP.x!C265D53056C7
Generic PUP.x!764E467BC1DD
Generic PUP.x!87EF977E4594
Generic PUP.x!31288963B755
RDN/Generic PUP.z!eb!464CB826686D
Generic PUP.x!E0799769F010
RDN/Spybot.bfr!0C03E8DD073E
Generic PUP.x!E0973C17EBAA
Generic.bfr!A4B811716CA6
RDN/Generic.dx!dcv!F68323707D19
Generic Downloader.x!9DAE48EBE350
Generic PUP.x!C6AA7C6F3AEA
Generic PUP.x!C637D8DB5531
Generic PUP.x!9D21D00C8A16
Generic PUP.x!D3EA96D37E55
RDN/Generic.dx!5E2FCF93265B
Generic PUP.x!0011B6E185E0
RDN/Generic PUP.x!C9A177CB1CC3
Generic PUP.x!C70ACE58DEED
Generic PUP.x!154A2E87A0BE
Generic Downloader.x!243ABCD5E169
Generic PUP.x!B278B6BA8A54
Generic PUP.x!AE1E8DF6EE0F
Generic PUP.x!B4EEDD0714A6
Generic PUP.x!C71E3E29E0AC
RDN/Generic.bfr!hj!2A7B0881C811

Phishing

Barclays	17th June 2014
Dear Barclays Memeber,
Halifax	16th June 2014
IMPORTANT - Halifax Online Service Message.
PayPal	16th June 2014
REQUIRE: UPDATE YOUR PAYPAL PROFILE INFORMATION
UNITED NATIONS ORGANIZATION	14th June 2014
CONFIRM THE CHANGE OF ACCOUNT

Vulnerebility

Exploit

Java Debug Wire Protocol Remote Code Execution

Easy File Management Web Server Stack Buffer Overflow

Adobe Reader for Android addJavascriptInterface Exploit

16.6.2014

Bugtraq

[ MDVSA-2014:124 ] kernel 2014-06-13
security mandriva com

[SECURITY] CVE-2013-2251: Apache Continuum affected by Remote Command Execution 2014-06-13
Brett Porter (brett apache org)

[security bulletin] HPSBUX03046 SSRT101590 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Code Execution, Security Restriction Bypass, Disclosure of Information, or Unauthorized Access 2014-06-13
security-alert hp com

AST-2014-006: Asterisk Manager User Unauthorized Shell Access 2014-06-12
Asterisk Security Team (security asterisk org)

CVE-2014-0228: Apache Hive Authorization vulnerability 2014-06-12
Thejas Nair (thejas hortonworks com)

[security bulletin] HPSBST03016 rev.4 - HP P2000 G3 MSA Array Systems, HP MSA 2040 Storage, and HP MSA 1040 Storage running OpenSSL, Remote Disclosure of Information 2014-06-12
security-alert hp com

AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions 2014-06-12
Asterisk Security Team (security asterisk org)

AST-2014-007: Exhaustion of Allowed Concurrent HTTP Connections 2014-06-12
Asterisk Security Team (security asterisk org)

Malware

Phishing

Vulnerebility

Exploit

13.6.2014

Bugtraq

AST-2014-006: Asterisk Manager User Unauthorized Shell Access 2014-06-12
Asterisk Security Team (security asterisk org)

CVE-2014-0228: Apache Hive Authorization vulnerability 2014-06-12
Thejas Nair (thejas hortonworks com)

[security bulletin] HPSBST03016 rev.4 - HP P2000 G3 MSA Array Systems, HP MSA 2040 Storage, and HP MSA 1040 Storage running OpenSSL, Remote Disclosure of Information 2014-06-12
security-alert hp com

AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions 2014-06-12
Asterisk Security Team (security asterisk org)

Malware

Generic PUP.x!4F1625E56C9B
Generic PUP.x!0198BF5519FE
Generic PUP.x!BA0593BA83E8
Generic PUP.x!171D190F2C4D
Generic PUP.x!7DA4C250F12A
Generic PUP.x!55E0AEB7BA42
Generic PUP.x!97BDACE8E7CD
Generic PUP.x!0EC8F4CB1FAB
Generic PUP.x!621E0719B7A5
Generic PUP.x!B65B10AC52BA
Generic PUP.x!35C2A3037941
Generic Downloader.x!D8D229A8DBA5
Generic PUP.x!0524DCBEA108
Generic PUP.x!080FAF320D0C
RDN/Generic.bfr!hi!47151F64FC74
Generic.tfr!CDE55C90FABA
Generic PUP.x!2EA9A94CFE76
Generic PUP.x!61F61748AA90
RDN/Generic.dx!dct!8E8A69E6EB99
Generic PUP.x!30F52F6C113F
RDN/Generic.bfr!CB88D6B1DCED
Generic PUP.x!45A22F141692
Generic PUP.z!DB70A042E285
Generic PUP.x!0185FBDF05AA
Generic.bfr!0B8A7331E835
Generic PUP.x!4215D1838140
Generic PUP.x!B16BB740F0FD
RDN/Generic BackDoor!AA03C9F4FB1C
RDN/Downloader.a!rh!535C9F1AA3DC
RDN/Generic.bfr!CEF77754A1B2

Phishing

Vulnerebility

Exploit

ZTE and TP-Link RomPager - DoS Exploit

Yealink VoIP Phone SIP-T38G - Default Credentials

Yealink VoIP Phone SIP-T38G - Local File Inclusion

Yealink VoIP Phone SIP-T38G - Remote Command Execution

Yealink VoIP Phone SIP-T38G - Privileges Escalation

IBM AIX 6.1.8 libodm - Arbitrary File Write

Plesk 10.4.4/11.0.9 - SSO XXE/XSS Injection Exploit

ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation

PostgreSQL <= 8.4.1 JOIN Hashtable Size Integer Overflow Denial Of Service Vulnerability

12.6.2014

Bugtraq

CVE-2014-3977 - Privilege Escalation in IBM AIX 2014-06-11
Portcullis Advisories (advisories portcullis-security com)

NEW : VMSA-2014-0006 - VMware product updates address OpenSSL security vulnerabilities 2014-06-11
\VMware Security Response Center\ (security vmware com)

[security bulletin] HPSBMU03045 rev.1 - HP Service Virtualization Running AutoPass License Server, Remote Code Execution 2014-06-10
security-alert hp com

[ MDVSA-2014:120 ] miniupnpc 2014-06-10
security mandriva com

[ MDVSA-2014:118 ] emacs 2014-06-10
security mandriva com

[ MDVSA-2014:121 ] libgadu 2014-06-10
security mandriva com

[ MDVSA-2014:119 ] mediawiki 2014-06-10
security mandriva com

Malware

Generic PUP.x!F93D22F0E33F
Generic PUP.x!7672ACD56EBE
Generic PUP.x!072D6D6054AC
Generic PUP.x!C2748F3EC2E7
Generic PUP.x!7FF5C943DA82
Generic PUP.x!4BCD152F7D0E
Generic PUP.x!4A6DCAC40FFC
Generic PUP.x!88BC09237709
Generic PUP.x!FEFC4E7AFB7B
Generic PUP.x!9BCA1F78621C
Generic PUP.x!85BD48782369
Generic PUP.x!522D40DCB069
Generic PUP.x!FC6F7A573369
Generic PUP.x!C80042A441AA
Generic PUP.x!DD92459A447B
Generic PUP.x!C411C1230619
RDN/Generic.dx!dcs!FD781559041C
Generic PUP.x!DBB008C9BE05
RDN/Generic Downloader.x!kj!DAC04D843D16
Generic PUP.x!C1D8CE5A57A9
RDN/Generic PUP.x!9787D6E4CEEA
Generic PUP.x!55492CEF3146
Generic PUP.x!8055B6FEE4B9
Generic PUP.x!DDCD2123DA43
RDN/Generic.bfr!C25B1F188E9D
Generic PUP.x!C1F1A46AC736
Generic PUP.x!C20EFFCDDF75
Generic PUP.x!225516523A47
Generic PUP.x!496EF6F5A803
Generic PUP.x!FAF3C3A40927

Phishing

PayPal	12th June 2014
PAYPAL ISSUE ; INFORMATIONS REQUIRED

Vulnerebility

Exploit

IBM AIX 6.1.8 libodm - Arbitrary File Write

SHOUTcast DNAS 2.2.1 - Stored XSS

11.6.2014

Bugtraq

[ MDVSA-2014:110 ] curl 2014-06-10
security mandriva com

[ MDVSA-2014:112 ] python-django 2014-06-10
security mandriva com

[ MDVSA-2014:111 ] otrs 2014-06-10
security mandriva com

[slackware-security] php (SSA:2014-160-01) 2014-06-09
Slackware Security Team (security slackware com)

[ MDVSA-2014:108 ] gnutls 2014-06-09
security mandriva com

[ MDVSA-2014:109 ] gnutls 2014-06-09
security mandriva com

[ MDVSA-2014:107 ] libtasn1 2014-06-09
security mandriva com

[ MDVSA-2014:106 ] openssl 2014-06-09
security mandriva com

Malware

Generic PUP.x!111575284A48
Generic PUP.x!4F5F4A758BB8
Generic PUP.x!0F7CEEDFAA63
Generic PUP.x!64EEF4389131
RDN/Downloader.gen.a!2E7ADA774FD1
Generic PUP.x!1251462A26C1
Generic PUP.x!37C2EBF0D8F5
Generic PUP.x!0337F0A07839
Generic PUP.x!26F3718D140D
RDN/Generic BackDoor!yq!2EDB24D22CE8
RDN/Generic PUP.x!cfj!E292C00DED1D
Generic PUP.x!102BAE03B849
Generic PUP.x!05E8B7251755
Generic PUP.x!599A253690F2
Generic PUP.x!2F59A309CEC4
RDN/Generic PUP.x!cfj!115726B125F0
Generic PUP.x!9E69E93404B9
Generic PUP.x!0CDE94974D16
Generic PUP.x!7C916743B019
Generic Downloader.x!2393AE519CA7
Generic PUP.x!0722916ABE18
Generic PUP.x!0FEBB92C71C1
Generic PUP.x!05B95F218D4D
Generic PUP.x!025B8C3004F3
Generic PUP.x!4FC95EF53F79
Generic PUP.x!10915721DA17
RDN/Generic PUP.x!cfj!D5C321490E1B
Generic.bfr!007416AEAB61
RDN/Generic PUP.x!cfj!411CC75E3F2E
Generic PUP.x!11F9CFF0BC87

Phishing

Vulnerebility

Exploit

ZeroCMS 1.0 - (zero_view_article.php, article_id param) - SQL Injection Vulnerability

10.6.2014

Bugtraq

DNN (DotNetNuke®) dnnUI_NewsArticlesSlider Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) responsivesidebar Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) eventscalendar Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) EasyDnnGallery Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) CodeEditor Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) ASPSlideshow Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

[security bulletin] HPSBMU03024 rev.3 - HP Insight Control Server Deployment on Linux and Windows running OpenSSL with System Management Homepage and Systems Insight Manager, Remote Disclosure of Information 2014-06-09
security-alert hp com

[slackware-security] mozilla-firefox (SSA:2014-157-01) 2014-06-07
Slackware Security Team (security slackware com)

Malware

Generic PUP.x!7C5A3325FCEC
Generic PUP.x!12F22DFC8AD1
Generic PUP.x!A6ADAE3F9CF3
Generic PUP.x!FE26847681A4
Generic PUP.x!ADE94005CD99
RDN/Generic.dx!dcq!DB63662E0BF9
RDN/Generic PUP.x!cfg!EB20AD8996A4
Generic PUP.x!7C0FD9937783
Generic PUP.x!19EE3BADE782
Generic.bfr!7F7577CBADA9
RDN/Generic PUP.x!C255F4C64905
Generic PUP.x!ADF7A4C54546
Generic PUP.x!384FE196A48A
RDN/Generic.bfr!4AF476E6A56E
Generic PUP.x!A25041135656
Generic PUP.x!5681B27945E9
RDN/Generic.bfr!4E6ED20147E7
Generic PUP.x!A6C4B816CEF3
Generic PUP.x!F4BC373E428E
RDN/Generic.bfr!hh!5B83ABA70043
RDN/Generic PUP.x!cfg!25EFDD87B095
Generic.bfr!57499CD3A0B4
Generic PUP.x!CFF5E95181F5
Generic PUP.x!F86BACEEEDF0
Generic PUP.x!79F5F0ADF99A
Generic-FAGW!E2E07755233B
Generic-FAGW!BC91A2D7E0BD
Generic PUP.x!7DE260264754
Generic PUP.x!769F8329AE60
Generic PUP.x!81E4AA889B2F

Phishing

BT	9th June 2014
BT Planned Software Uprade
CService@btinternet.com DnGMod	8th June 2014
CASE BT-0225-199852

Vulnerebility

Exploit

eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability

WebTitan 4.01 (Build 68) - Multiple Vulnerabilities

DevExpress ASPxFileManager 10.2 to 13.2.8 - Directory Traversal

9.6.2014

Bugtraq

[Onapsis Security Advisories] Multiple Hard-coded Usernames in SAP Components 2014-06-06
Onapsis Research Labs (research onapsis com)

[Onapsis Security Advisory 2014-020] SAP SLD Information Tampering 2014-06-06
Onapsis Research Labs (research onapsis com)

[slackware-security] openssl (SSA:2014-156-03) 2014-06-06
Slackware Security Team (security slackware com)

[slackware-security] sendmail (SSA:2014-156-04) 2014-06-06
Slackware Security Team (security slackware com)

SEC Consult SA-20140606-0 :: Multiple critical vulnerabilities in WebTitan 2014-06-06
SEC Consult Vulnerability Lab (research sec-consult com)

[slackware-security] gnutls (SSA:2014-156-01) 2014-06-06
Slackware Security Team (security slackware com)

Malware

Generic PUP.x!D80B3F6AD766
RDN/Generic PUP.x!cfd!0F50C95951F4
RDN/Generic PUP.x!cfd!F1E914B0CFDD
Generic PUP.x!C05435681930
RDN/Generic PUP.x!cfd!6E51A1FC88E1
Generic PUP.x!F6DB70E195FB
Generic PUP.x!D5609B0651BB
RDN/Generic.dx!dcp!F9391C1B5D90
Generic PUP.x!D35AEF182A39
RDN/Generic PUP.x!52FF5F06C734
RDN/Generic PUP.x!cfd!B8F87A78A83C
Generic PUP.x!F8681B881486
Generic PUP.x!9CEB91358F94
RDN/Generic PUP.x!FC6155B85663
Generic PUP.x!3D72D657DFE3
Generic PUP.x!DA00B9E4D148
Generic PUP.x!4D422777C91C
Generic PUP.x!5468D5696DCE
RDN/Generic PUP.x!cfd!464EB9F883EF
Generic PUP.x!09877B7FEF30
RDN/Generic PUP.x!cfd!862E808D6D86
Generic Downloader.x!9B43100FE244
RDN/Generic PUP.x!F8306E03A4D0
RDN/Generic PUP.x!cfd!0C7475760A6A
Generic Downloader.x!BF52BDC92BF3
RDN/Generic PUP.x!cfd!099EB89A8407
Generic PUP.x!C5F5D26E76B1
RDN/Generic PUP.x!cfd!6C92A726D4C7
Generic PUP.x!391509E22613
Generic Downloader.x!BB6CE32DA5E4

Phishing

CService@btinternet.com DnGMod	8th June 2014
CASE BT-0225-199852
Paypal	7th June 2014
YOUR PAYPAL HAS BEEN LIMITED
BT	7th June 2014
Update For June 2014

Vulnerebility

Exploit

Wordpress Theme Elegance - Post Local File Disclosure

Wordpress Theme Infocus - Post Local File Disclosure

6.6.2014

Bugtraq

[security bulletin] HPSBMU03029 rev.2 - HP Insight Control Server Migration running OpenSSL, Remote Disclosure of Information 2014-06-05
security-alert hp com

Details for CVE-2014-0220 2014-06-05
tucu cloudera com

Malware

RDN/Generic PUP.x!c2y!EB5FAA71EF8C
RDN/Generic PUP.x!7600A1238FA6
RDN/Generic.tfr!ea!386341CF2D89
RDN/Generic PUP.x!c2y!F2EFB045DFE3
Generic PUP.x!76EFE6939698
Generic PUP.x!F52A87CCFA47
Generic PWS.y!7D9CAC5560F5
Generic.dx!EB45BC2DF903
RDN/Generic PUP.x!c2y!E9F01E0DADC3
RDN/Generic PUP.x!c2y!EB75D283D4E9
Generic PUP.x!3A20000D22A6
RDN/Generic.bfr!hf!A23E1F7B3455
RDN/Generic PUP.x!c2y!EA7D762016AB
Generic.dx!00B4A0A43678
RDN/Generic PUP.x!c2y!EA09FC0416CE
Generic.bfr!F77A91B7716C
Generic PUP.x!1D2D93E46AEB
Generic PUP.x!32234E455B90
Generic PUP.x!27CF59080F8E
RDN/Generic PUP.x!c2y!EA1B0CA3E1CD
RDN/Generic.bfr!hf!C95D10A92F7D
Generic.tfr!DD170D0A79E1
Generic PUP.x!7D7B75252EE7
Generic PUP.x!170768B54CBC
Generic.tfr!A308180AD4EF
RDN/Generic PUP.x!c2y!EA0A83B2F5F1
Generic PUP.x!B78AF7551054
Generic.tfr!480709465CA4
Generic.tfr!63D42A974ED6
Generic PUP.x!EAACDFCCA9CE

Phishing

Vulnerebility

Exploit

Madness Pro <= 1.14 - Persistent XSS

Madness Pro <= 1.14 - SQL Injection

5.6.2014

Bugtraq

multiple Vulnerability in "WahmShoppes eStore" 2014-06-05
cseye_ut yahoo com

FreeBSD Security Advisory FreeBSD-SA-14:14.openssl 2014-06-05
FreeBSD Security Advisories (security-advisories freebsd org)

[SECURITY] [DSA 2949-1] linux security update 2014-06-05
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2950-1] openssl security update 2014-06-05
Moritz Muehlenhoff (jmm debian org)

[RT-SA-2014-006] Directory Traversal in DevExpress ASP.NET File Manager 2014-06-05
RedTeam Pentesting GmbH (release redteam-pentesting de)

[security bulletin] HPSBMU03033 rev.3 - HP Insight Control Software Components running OpenSSL, Remote Disclosure of Information 2014-06-04
security-alert hp com

[SECURITY] [DSA 2946-1] python-gnupg security update 2014-06-04
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2948-1] python-bottle security update 2014-06-04
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2947-1] libav security update 2014-06-04
Moritz Muehlenhoff (jmm debian org)

ESA-2014-024: EMC Documentum Digital Asset Manager Blind DQL Injection Vulnerability 2014-06-04
Security Alert (Security_Alert emc com)

Malware

RDN/Generic PWS.y!9C1F2B1B1648
RDN/Generic PUP.x!c2w!87C59D9E1472
RDN/Generic PWS.y!zu!13FEFBC65F7A
Generic PUP.x!2CA377AEF0D6
RDN/Generic.bfr!E693324ABD1F
RDN/FakeAV-N.bfr!d!160827D79093
Generic PUP.x!AA6BBA23F5A5
Generic PUP.x!9AF572CE6AB3
RDN/Generic.bfr!8776C0B44E4B
Generic PUP.x!09A1ECDB9A9D
Generic PUP.x!7DCF086C5064
Generic PUP.x!E697361019C0
Generic PUP.x!BDF57308CE55
Generic PUP.x!3C44A5571661
RDN/Generic PUP.x!c2w!D4DBC992B9DD
Generic PUP.x!B572D60E1FA1
Generic PUP.x!13D1B2CA15FB
Generic PUP.x!8C08D99CF5EB
RDN/Generic.bfr!hh!06D7859350FA
Generic PUP.x!4162735CA253
RDN/Downloader.a!rf!FC13041FD272
Generic PUP.x!0DBB857D2324
RDN/Generic.tfr!ea!D43FA5992107
Generic PUP.x!2C06409A68F5
Generic PUP.x!0BC934A0B5D1
Generic.bfr!E76D5AAD07D1
Generic PUP.x!4B5A138366C9
RDN/Generic Downloader.x!ki!066132901776
Generic PUP.x!5D5A0E147C22
Generic PUP.x!0CD56578BE2E

Phishing

Barclays	5th June 2014
For security purposes, your online account has been locked.
NatWest	4th June 2014
Access to Online Banking Service !

Vulnerebility

Exploit

4.6.2014

Bugtraq

Malware

Generic PUP.x!AAE8957666BD
Generic PUP.x!D541D667CF68
Generic PUP.x!47F3B3A343CA
RDN/Generic PUP.x!c2u!6626FEBC0A28
RDN/PWS-Mmorpg!lc!199F51629939
RDN/Generic PUP.x!c2u!9774AD7E768F
Generic PUP.x!20177D5E8A85
Generic PUP.x!2955127D41D3
RDN/Generic PUP.x!c2u!5D58ECC527CD
Generic PUP.x!2B93E5B30B37
Generic.bfr!D4D1287CD744
RDN/Generic PUP.x!c2u!C8DC32918F57
Generic PUP.x!85D888B8F3D4
RDN/Generic.dx!dcn!1104216282F2
Generic PUP.x!27105BD056C4
Generic PUP.x!2A8832560725
Generic PUP.x!285FD908C7B9
Generic PUP.x!1A1D087D1B8C
Generic PUP.x!1FA6488261F0
Generic PUP.x!2A085ED290E8
Generic PWS.y!D2AEF481312A
Generic PUP.x!67434C542DEB
Downloader.gen.a!72BC09BEE4DC
Generic PUP.x!4819D84E392C
RDN/Spybot.bfr!8A53BE91A8E7
Generic PUP.x!E99CA192D78D
RDN/Generic.dx!dcn!1193EB2925E5
RDN/Generic PUP.x!c2u!AD3A4D2C8337
RDN/Generic.bfr!hh!BFEA75D7ED1D
RDN/Generic.bfr!hh!250CEB1E740D

Phishing

Apple	4th June 2014
YOUR APPLE ITUNES ACCOUNT HAS BEEN LIMITED
NatWest	3rd June 2014
Access to Online Banking Service.

Vulnerebility

Exploit

3.6.2014

Bugtraq

iScan Online Mobile 2.0.1 iOS - Command Inject Vulnerability 2014-06-03
Vulnerability Lab (admin vulnerability-lab com)

Bluetooth Photo-File Share v2.1 iOS - Multiple Web Vulnerabilities 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

TigerCom My Assistant v1.1 iOS - File Include Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

Privacy Pro v1.2 HZ iOS - File Include Web Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

AllReader v1.0 iOS - Multiple Web Vulnerabilities 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

Files Desk Pro v1.4 iOS - File Include Web Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

NG WifiTransfer Pro 1.1 - File Include Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

LSE Leading Security Experts GmbH - LSE-2014-05-22 - F*EX - Multiple Issues 2014-06-03
advisories (advisories lsexperts de)

CVE-2013-6825 DCMTK Root Privilege escalation 2014-06-02
Hector Marco (hecmargi upv es)

FCKedtior 2.6.10 Reflected Cross-Site Scripting (XSS) 2014-06-02
Robin Bailey (Robin Bailey dionach com)

VUPEN Security Research - Adobe Acrobat & Reader XI-X "AcroBroker" Sandbox Bypass (Pwn2Own) 2014-06-02
VUPEN Security Research (advisories vupen com)

[FD] CVE-2013-6876 s3dvt Root shell 2014-06-02
Hector Marco (hecmargi upv es)

ESA-2014-032: RSA® Adaptive Authentication (Hosted) DOM Cross-Site Scripting Vulnerability 2014-06-02
Security Alert (Security_Alert emc com)

CVE-2014-2843 - "Reflected Cross-Site Scripting (XSS)" (CWE-79) vulnerability in "infoware MapSuite" 2014-06-01
Christian Schneider (mail Christian-Schneider net)

CVE-2014-2233 - "Server-Side Request Forgery" (CWE-918) vulnerability in "infoware MapSuite" 2014-06-01
Christian Schneider (mail Christian-Schneider net)

CVE-2014-2232 - "Absolute Path Traversal" (CWE-36) vulnerability in "infoware MapSuite" 2014-06-01
Christian Schneider (mail Christian-Schneider net)

CVE-2014-1226 s3dvt Root shell (still) 2014-06-02
Hector Marco (hecmargi upv es)

[SECURITY] [DSA 2942-1] typo3-src security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2944-1] gnutls26 security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[slackware-security] mariadb (SSA:2014-152-01) 2014-06-01
Slackware Security Team (security slackware com)

Yarubo #1: Arbitrary SQL Execution in Participants Database for Wordpress 2014-06-01
Yarubo Internet Security Scan (no-reply yarubo com)

[SECURITY] [DSA 2941-1] lxml security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2943-1] php5 security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2939-1] chromium-browser security update 2014-05-31
Michael Gilbert (mgilbert debian org)

Malware

Generic PUP.x!D5E0C6072B90
Generic PUP.x!30C01ED0E752
Generic PUP.x!A13A89F8DD4C
Generic PUP.x!40FF02EC873F
CryptInno!802EB529CFF2
Generic PUP.x!A8C5DA3113A5
CryptInno!809A7EC333CA
Generic PUP.x!04B028E481A6
RDN/Generic PUP.x!c2t!B9ED56936303
RDN/Spybot.bfr!743083F1D483
Generic PUP.x!03908C72AEB8
RDN/Generic PUP.x!214E7B9D27B3
Generic PUP.x!1BF43F7C82B2
Generic PUP.x!D077D267F39F
Generic PUP.x!5F0BB90DECFB
Generic.dx!9BC2DF2204C6
Generic PUP.x!E4581479CCFF
Generic PUP.x!43E29B009CF2
Generic Downloader.x!97695520F876
Generic PUP.x!B1A73FB7DD2C
Generic Downloader.x!B12557644E02
Generic PUP.x!397227FE0799
Generic PUP.x!625C37A9A2FB
RDN/Generic PUP.x!B9217C35E968
Generic PUP.x!183A2858F123
RDN/Generic Dropper!D021E091B859
Generic PUP.x!3E5A168C779E
Generic PUP.x!571A39DB4F36
Generic PUP.x!109DEA995E6D
Generic PUP.x!4DB67AA6F5A5

Phishing

Sainsburysbank.co.uk	3rd June 2014
LOCKED OUT OF SAINSBURYâ€™S ONLINE BANKING
Apple Europe	2nd June 2014
APPLE STORE PURCHASE CONFIRMATION.

Vulnerebility

Exploit

Wordpress Participants Database 1.5.4.8 - SQL Injection

dbus-glib pam_fprintd - Local Root Exploit

PHPBTTracker+ 2.2 - SQL Injection

NG WifiTransfer Pro 1.1 - Local File Inclusion

Files Desk Pro v1.4 iOS - Local File Inclusion

Privacy Pro v1.2 HZ iOS - Local File Inclusion

TigerCom My Assistant 1.1 iOS - Local File Inclusion

AllReader 1.0 iOS - Multiple Vulnerabilities

Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities

2.6.2014

Bugtraq

Malware

W32/Virus.gen!1DF570344FE4
Generic PUP.x!191734D6FAC7
Generic PUP.x!A1FFD41C222A
Generic PUP.x!E9B17414975B
Generic PUP.x!9FDADB0C7140
Generic PUP.x!EE9B03D7C7CB
Generic PUP.x!832058952004
Generic BackDoor!3313FA31AA71
Generic PUP.x!8793A2923140
Generic PUP.x!64B4C3ECD18E
Generic PUP.x!E12DA6D82DF1
Generic PUP.x!0F797399567C
Generic PUP.x!302BADDE926F
Generic PUP.x!8DD4F7A9F18C
Generic PUP.x!561EB04C21CB
Generic PUP.x!A00EE0E4AB23
Generic.dx!482D14CE2CC7
Generic PUP.x!E826B86E2A70
Generic PUP.x!7ED2ED8AD089
Generic PUP.x!108CA96A4DF9
Generic PUP.x!36AC110255BE
Generic PUP.x!06F6F4A4EF15
Generic PUP.x!0D351CE92788
Generic PUP.x!D08B9049E708
Generic.bfr!80FE41CA6CEA
Generic PUP.x!FF0A8477F1B5
Generic PUP.x!303CE7D61662
Generic PUP.x!9FDA1D6C6789
Generic PUP.x!DBF739FCB26B
Generic PUP.x!5E27C42520C3

Phishing

Sainsburysbank.co.uk	2nd June 2014
LOCKED OUT OF SAINSBURYâ€™S ONLINE BANKING
PayPal	2nd June 2014
PAYPAL ISSUE ; INFORMATIONS REQUIRED
Sainsburysbank.co.uk	1st June 2014
LOCKED OUT OF SAINSBURYâ€™S ONLINE BANKING
PayPal	1st June 2014
PAYPAL ISSUE ; INFORMATIONS REQUIRED

Vulnerebility

Exploit

Easy File Management Web Server v5.3 - UserID Remote Buffer Overflow (ROP)