Databáze Hot News 2014 March - 2014 January February March April May June July August September October November December
31.3.2014
Bugtraq
Deutsche Telekom CERT Advisory [DTC-A-20140324-002] update140328 - vulnerabilities in check_mk 2014-03-28
CERT telekom de
iStArtApp FileXChange v6.2 iOS - Multiple Web Vulnerabilities 2014-03-28
Vulnerability Lab (research vulnerability-lab com)
[RT-SA-2014-002] rexx Recruitment: Cross-Site Scripting in User Registration 2014-03-27
RedTeam Pentesting GmbH (release redteam-pentesting de)
Malware
Phishing
Vulnerebility
Oracle Java SE TTF Font Parsing Remote Code Execution Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64894
Oracle Java SE CVE-2013-5899 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64928
Oracle Java SE CVE-2013-5888 Local Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64925
Oracle Java SE CVE-2013-5896 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64926
Oracle Java SE CVE-2013-5887 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64875
Oracle Java SE CVE-2013-5878 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64927
Oracle Java SE CVE-2013-5884 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64924
Oracle Java SE CVE-2013-5898 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64912
Oracle Java SE CVE-2013-5889 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64931
Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64930
Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64937
FFmpeg and Libav 'libavcodec/wmalosslessdec.c' Memory Corruption Vulnerability
2014-03-31
http://www.securityfocus.com/bid/66057
FFmpeg and Libav 'libavformat/mpegtsenc.c' Buffer Overflow Vulnerability
2014-03-31
http://www.securityfocus.com/bid/65560
FFmpeg and Libav 'msrle_decode_frame()' Function Out of Bounds Denial of Service Vulnerability
2014-03-31
http://www.securityfocus.com/bid/66060
FFmpeg Prior to 2.1 Multiple Remote Vulnerabilities
2014-03-31
http://www.securityfocus.com/bid/63936
Oracle Java SE CVE-2013-5910 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64933
Oracle Java SE CVE-2014-0373 Remote Security Vulnerability
2014-03-31
http://www.securityfocus.com/bid/64922
Oracle Java SE CVE-2014-0423 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64914
Oracle Java SE CVE-2014-0424 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64919
Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64935
Oracle Java SE CVE-2014-0376 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64907
Oracle Java SE CVE-2014-0417 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64932
Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64918
Oracle Java SE CVE-2014-0415 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64899
Oracle Java SE CVE-2014-0422 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64921
Oracle Java SE CVE-2014-0410 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64915
Oracle Java SE CVE-2014-0387 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64882
Oracle Java SE CVE-2014-0375 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64916
Oracle Java SE CVE-2014-0403 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64920
Linux Kernel CVE-2011-4110 NULL Pointer Dereference Denial of Service Vulnerability
2014-03-28
http://www.securityfocus.com/bid/50755
Exploit
30.3.2014
Bugtraq
Malware
Phishing
Vulnerebility
Oracle Java SE CVE-2013-5898 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64912
Oracle Java SE CVE-2013-5889 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64931
Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64930
Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64937
FFmpeg and Libav 'libavcodec/wmalosslessdec.c' Memory Corruption Vulnerability
2014-03-30
http://www.securityfocus.com/bid/66057
FFmpeg and Libav 'libavformat/mpegtsenc.c' Buffer Overflow Vulnerability
2014-03-30
http://www.securityfocus.com/bid/65560
FFmpeg and Libav 'msrle_decode_frame()' Function Out of Bounds Denial of Service Vulnerability
2014-03-30
http://www.securityfocus.com/bid/66060
FFmpeg Prior to 2.1 Multiple Remote Vulnerabilities
2014-03-30
http://www.securityfocus.com/bid/63936
Oracle Java SE CVE-2013-5910 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64933
Oracle Java SE CVE-2014-0373 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64922
Oracle Java SE TTF Font Parsing Remote Code Execution Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64894
Oracle Java SE CVE-2013-5899 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64928
Oracle Java SE CVE-2013-5888 Local Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64925
Oracle Java SE CVE-2013-5896 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64926
Oracle Java SE CVE-2013-5887 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64875
Oracle Java SE CVE-2013-5878 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64927
Oracle Java SE CVE-2013-5884 Remote Security Vulnerability
2014-03-30
http://www.securityfocus.com/bid/64924
Oracle Java SE CVE-2014-0423 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64914
Oracle Java SE CVE-2014-0424 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64919
Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64935
Oracle Java SE CVE-2014-0376 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64907
Oracle Java SE CVE-2014-0417 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64932
Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64918
Oracle Java SE CVE-2014-0415 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64899
Oracle Java SE CVE-2014-0422 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64921
Oracle Java SE CVE-2014-0410 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64915
Oracle Java SE CVE-2014-0387 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64882
Oracle Java SE CVE-2014-0375 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64916
Oracle Java SE CVE-2014-0403 Remote Security Vulnerability
2014-03-28
http://www.securityfocus.com/bid/64920
Linux Kernel CVE-2011-4110 NULL Pointer Dereference Denial of Service Vulnerability
2014-03-28
http://www.securityfocus.com/bid/50755
Exploit
AudioCoder 0.8.29 - Memory Corruption (SEH)
ASP-Nuke 2.0.7 - 'gotourl.asp' Open Redirect Vulnerability
11.3.2014
Bugtraq
APPLE-SA-2014-03-10-2 Apple TV 6.1 2014-03-10
Apple Product Security (product-security-noreply lists apple com)
[ MDVSA-2014:050 ] wireshark 2014-03-10
security mandriva com
APPLE-SA-2014-03-10-1 iOS 7.1 2014-03-10
Apple Product Security (product-security-noreply lists apple com)
Android Vulnerability: Install App Without User Explicit Consent 2014-03-10
Daniel Divricean (divricean gmail com)
[security bulletin] HPSBGN02970 rev.1 - HP Rapid Deployment Pack (RDP) or HP Insight Control Server Deployment, Multiple Remote Vulnerabilities affecting Confidentiality, Integrity and Availability 2014-03-10
security-alert hp com
[SECURITY] [DSA 2872-1] udisks security update 2014-03-10
Moritz Muehlenhoff (jmm debian org)
[SECURITY] [DSA 2871-1] wireshark security update 2014-03-10
Moritz Muehlenhoff (jmm debian org)
[ MDVSA-2014:049 ] subversion 2014-03-10
security mandriva com
[ MDVSA-2014:048 ] gnutls 2014-03-10
security mandriva com
Malware
Phishing
Regions | 11th March 2014 |
alerts | 10th March 2014 |
Vulnerebility
Todd Miller Sudo 'validate_env_vars()' Local Privilege Escalation Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65997
WebKit CVE-2013-2909 Use After Free Remote Code Execution Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64354
Apple Safari CVE-2013-5227 Multiple Cross Origin Information Disclosure Vulnerabilities
2014-03-11
http://www.securityfocus.com/bid/64355
Google Chrome CVE-2013-2926 Use After Free Remote Code Execution Vulnerability
2014-03-11
http://www.securityfocus.com/bid/63028
Google Chrome CVE-2013-6625 Use After Free Remote Code Execution Vulnerability
2014-03-11
http://www.securityfocus.com/bid/63672
Google Chrome CVE-2013-2928 Multiple Unspecified Security Vulnerabilities
2014-03-11
http://www.securityfocus.com/bid/63024
Apple Pages File Processing Remote Code Execution Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65113
libTIFF TIFF Image CVE-2012-2088 Buffer Overflow Vulnerability
2014-03-11
http://www.securityfocus.com/bid/54270
libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/63676
WebKit CVE-2013-5198 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64359
WebKit CVE-2014-1269 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65780
WebKit CVE-2014-1270 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65781
WebKit CVE-2013-5225 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64360
WebKit CVE-2013-6635 Use After Free Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65779
WebKit CVE-2013-5199 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64361
WebKit CVE-2013-5196 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64356
WebKit CVE-2013-5228 Use After Free Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64362
WebKit CVE-2013-5197 Unspecified Memory Corruption Vulnerability
2014-03-11
http://www.securityfocus.com/bid/64358
Python SSL Module CVE-2013-4238 Security Bypass Vulnerability
2014-03-11
http://www.securityfocus.com/bid/61738
IBM Integration Bus XML4J Parser Entity Expansion Denial of Service Vulnerability
2014-03-11
http://www.securityfocus.com/bid/63224
Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2014-03-11
http://www.securityfocus.com/bid/63101
IBM Java CVE-2013-4002 Denial of Service Vulnerability
2014-03-11
http://www.securityfocus.com/bid/61310
Ruby SSL Client Certificate Validation CVE-2013-4073 Security Bypass Vulnerability
2014-03-11
http://www.securityfocus.com/bid/60843
Apache Subversion 'mod_dav_svn' Module SVNListParentPath Denial of Service Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65434
GnuTLS CVE-2014-0092 Certificate Validation Security Bypass Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65919
Atlassian JIRA Issue Collector Plugin Arbitrary File Creation Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65849
Atlassian JIRA Importers Plugin Arbitrary File Creation Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65841
Xen CVE-2013-4355 Information Disclosure Vulnerability
2014-03-11
http://www.securityfocus.com/bid/62708
Linux Kernel 'request_module() OOM' Local Denial Of Service Vulnerability
2014-03-11
http://www.securityfocus.com/bid/55361
WordPress Search Everything Plugin 'index.php' SQL Injection Vulnerability
2014-03-11
http://www.securityfocus.com/bid/65765
Exploit
SolidWorks Workgroup PDM 2014 pdmwService.exe Arbitrary File Write
Huawei E5331 MiFi Mobile Hotspot 21.344.11.00.414 - Multiple Vulnerabilities
10.3.2014
Bugtraq
[HTTPCS] ClanSphere 'where' Cross Site Scripting Vulnerability 2014-03-07
contact httpcs com
[security bulletin] HPSBUX02963 SSRT101297 rev.1 - HP-UX m4(1), Local Unauthorized Access 2014-03-07
security-alert hp com
SEC Consult SA-20140307-0 :: Unauthenticated access & manipulation of settings in Huawei E5331 MiFi mobile hotspot 2014-03-07
SEC Consult Vulnerability Lab (research sec-consult com)
CVE-2014-2044 - Remote Code Execution in ownCloud 2014-03-06
Portcullis Advisories (advisories portcullis-security com)
SonicWall Dashboard Backend Server - Client Side Cross Site Scripting Web Vulnerability 2014-03-06
Vulnerability Lab (admin vulnerability-lab com)
[ANN] Struts 2.3.16.1 GA release available - security fix 2014-03-06
Lukasz Lenart (lukaszlenart apache org)
[slackware-security] sudo (SSA:2014-064-01) 2014-03-06
Slackware Security Team (security slackware com)
Malware
Phishing
Chase Notification (SM) | 9th March 2014 |
Apple | 9th March 2014 |
bt.comms@bt.com | 9th March 2014 |
[SUSPECTED ] Important | |
Royalbankofscotland@rbs.com | 8th March 2014 |
Vulnerebility
GnuTLS CVE-2014-0092 Certificate Validation Security Bypass Vulnerability
2014-03-10
http://www.securityfocus.com/bid/65919
GnuTLS TLS And DTLS Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/57736
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2014-03-10
http://www.securityfocus.com/bid/65258
Ruby on Rails 'number_to_currency' Helper Cross Site Scripting Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64077
RubyGems i18n Cross Site Scripting Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64076
Ruby on Rails CVE-2013-6416 Cross Site Scripting Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64071
RubyGems actionpack CVE-2013-6414 Denial of Service Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64074
Ruby on Rails CVE-2013-6417 Unsafe SQL Query Generation Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64106
Libssh CVE-2014-0017 Random Number Generator Weakness
2014-03-10
http://www.securityfocus.com/bid/65963
Linux Kernel 'net/ieee802154/dgram.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64747
GnuTLS CVE-2014-1959 Certificate Validation Security Bypass Weakness
2014-03-10
http://www.securityfocus.com/bid/65559
Jenkins Multiple Remote Security Vulnerabilities
2014-03-10
http://www.securityfocus.com/bid/65694
Python 'sock_recvfrom_into()' Function Buffer Overflow Vulnerability
2014-03-10
http://www.securityfocus.com/bid/65379
Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-03-10
http://www.securityfocus.com/bid/65459
Google Android WebView Remote Security Bypass Vulnerability
2014-03-10
http://www.securityfocus.com/bid/62512
FFmpeg Multiple Security Vulnerabilities
2014-03-10
http://www.securityfocus.com/bid/65671
Linux Kernel KVM 'recalculate_apic_map()' Function Denial of Service Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64319
Linux Kernel '/drivers/scsi/aacraid/commctrl.c' Pointer Dereference Denial of Service Vulnerability
2014-03-10
http://www.securityfocus.com/bid/63887
Linux Kernel NFS File System 'fs/nfs/write.c' Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/65688
Linux Kernel 'nf_nat_irc.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/65180
Linux Kernel 'net/packet/af_packet.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64744
Linux Kernel 'net/x25/af_x25.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64746
FFmpeg Multiple Denial of Service Vulnerabilities
2014-03-10
http://www.securityfocus.com/bid/65504
Linux Kernel 'net/netrom/af_netrom.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64742
Linux Kernel 'net/ipx/af_ipx.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64741
Linux Kernel CVE-2013-6368 Local Privilege Escalation Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64291
Linux Kernel 'drivers/isdn/mISDN/socket.c' Local Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64743
Linux Kernel Memory Leak Multiple Local Information Disclosure Vulnerabilities
2014-03-10
http://www.securityfocus.com/bid/64685
Linux Kernel 'ath9k_htc_set_bssid_mask()' Function Information Disclosure Vulnerability
2014-03-10
http://www.securityfocus.com/bid/63743
Linux Kernel 'kvm_vm_ioctl_create_vcpu()' Function Local Privilege Escalation Vulnerability
2014-03-10
http://www.securityfocus.com/bid/64328
Exploit
GetGo Download Manager 4.9.0.1982 - HTTP Response Header Buffer Overflow Remote Code Execution
ClipSharePro <= 4.1 - Local File Inclusion
8.3.2014
Bugtraq
[HTTPCS] ClanSphere 'where' Cross Site Scripting Vulnerability 2014-03-07
contact httpcs com
[security bulletin] HPSBUX02963 SSRT101297 rev.1 - HP-UX m4(1), Local Unauthorized Access 2014-03-07
security-alert hp com
SEC Consult SA-20140307-0 :: Unauthenticated access & manipulation of settings in Huawei E5331 MiFi mobile hotspot 2014-03-07
SEC Consult Vulnerability Lab (research sec-consult com)
CVE-2014-2044 - Remote Code Execution in ownCloud 2014-03-06
Portcullis Advisories (advisories portcullis-security com)
SonicWall Dashboard Backend Server - Client Side Cross Site Scripting Web Vulnerability 2014-03-06
Vulnerability Lab (admin vulnerability-lab com)
[ANN] Struts 2.3.16.1 GA release available - security fix 2014-03-06
Lukasz Lenart (lukaszlenart apache org)
[slackware-security] sudo (SSA:2014-064-01) 2014-03-06
Slackware Security Team (security slackware com)
Malware
Phishing
NatWest | 7th March 2014 |
Verizon Wireless | 7th March 2014 |
Pay Pal | 7th March 2014 |
Daily | 6th March 2014 |
Barclays Bank Plc | 6th March 2014 |
Google Secured Document | 6th March 2014 |
Vulnerebility
Ruby on Rails 'number_to_currency' Helper Cross Site Scripting Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64077
RubyGems i18n Cross Site Scripting Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64076
Ruby on Rails CVE-2013-6416 Cross Site Scripting Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64071
RubyGems actionpack CVE-2013-6414 Denial of Service Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64074
Ruby on Rails CVE-2013-6417 Unsafe SQL Query Generation Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64106
GnuTLS CVE-2014-0092 Certificate Validation Security Bypass Vulnerability
2014-03-08
http://www.securityfocus.com/bid/65919
Libssh CVE-2014-0017 Random Number Generator Weakness
2014-03-08
http://www.securityfocus.com/bid/65963
Linux Kernel 'net/ieee802154/dgram.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64747
GnuTLS CVE-2014-1959 Certificate Validation Security Bypass Weakness
2014-03-08
http://www.securityfocus.com/bid/65559
Jenkins Multiple Remote Security Vulnerabilities
2014-03-08
http://www.securityfocus.com/bid/65694
Python 'sock_recvfrom_into()' Function Buffer Overflow Vulnerability
2014-03-08
http://www.securityfocus.com/bid/65379
Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-03-08
http://www.securityfocus.com/bid/65459
Google Android WebView Remote Security Bypass Vulnerability
2014-03-08
http://www.securityfocus.com/bid/62512
FFmpeg Multiple Security Vulnerabilities
2014-03-08
http://www.securityfocus.com/bid/65671
Linux Kernel KVM 'recalculate_apic_map()' Function Denial of Service Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64319
Linux Kernel '/drivers/scsi/aacraid/commctrl.c' Pointer Dereference Denial of Service Vulnerability
2014-03-08
http://www.securityfocus.com/bid/63887
Linux Kernel NFS File System 'fs/nfs/write.c' Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/65688
Linux Kernel 'nf_nat_irc.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/65180
Linux Kernel 'net/packet/af_packet.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64744
Linux Kernel 'net/x25/af_x25.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64746
FFmpeg Multiple Denial of Service Vulnerabilities
2014-03-08
http://www.securityfocus.com/bid/65504
Linux Kernel 'net/netrom/af_netrom.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64742
Linux Kernel 'net/ipx/af_ipx.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64741
Linux Kernel CVE-2013-6368 Local Privilege Escalation Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64291
Linux Kernel 'drivers/isdn/mISDN/socket.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64743
Linux Kernel Memory Leak Multiple Local Information Disclosure Vulnerabilities
2014-03-08
http://www.securityfocus.com/bid/64685
Linux Kernel 'ath9k_htc_set_bssid_mask()' Function Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/63743
Linux Kernel 'kvm_vm_ioctl_create_vcpu()' Function Local Privilege Escalation Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64328
Linux Kernel 'net/appletalk/ddp.c' Local Information Disclosure Vulnerability
2014-03-08
http://www.securityfocus.com/bid/64739
Linux Kernel 'xfs_attrlist_by_handle()' Function Local Buffer Overflow Vulnerability
2014-03-08
http://www.securityfocus.com/bid/63889
Exploit
7.3.2014
Bugtraq
CVE-2014-2044 - Remote Code Execution in ownCloud 2014-03-06
Portcullis Advisories (advisories portcullis-security com)
SonicWall Dashboard Backend Server - Client Side Cross Site Scripting Web Vulnerability 2014-03-06
Vulnerability Lab (admin vulnerability-lab com)
[ANN] Struts 2.3.16.1 GA release available - security fix 2014-03-06
Lukasz Lenart (lukaszlenart apache org)
[slackware-security] sudo (SSA:2014-064-01) 2014-03-06
Slackware Security Team (security slackware com)
Malware
Phishing
Pay Pal | 7th March 2014 |
Daily | 6th March 2014 |
Barclays Bank Plc | 6th March 2014 |
Vulnerebility
Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65400
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1478 Multiple Memory Corruption Vulnerabilities
2014-03-07
http://www.securityfocus.com/bid/65324
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1479 Security Bypass Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65320
Mozilla Firefox/SeaMonkey CVE-2014-1488 Remote Code Execution Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65321
Mozilla Network Security Services CVE-2014-1490 Use After Free Memory Corruption Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65335
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1481 Security Bypass Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65326
Google Chrome Prior to 33.0.1750.146 Multiple Security Vulnerabilities
2014-03-07
http://www.securityfocus.com/bid/65930
Mozilla Firefox/SeaMonkey CVE-2014-1485 Cross Site Scripting Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65322
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1477 Multiple Memory Corruption Vulnerabilities
2014-03-07
http://www.securityfocus.com/bid/65317
Mozilla Firefox/SeaMonkey/Thunderbird CVE-2014-1487 Information Disclosure Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65330
Mozilla Firefox/SeaMonkey CVE-2014-1483 Multiple Information Disclosure Vulnerabilities
2014-03-07
http://www.securityfocus.com/bid/65316
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1482 Remote Code Execution Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65328
Mozilla Firefox/SeaMonkey/Thunderbird Use-After-Free Remote Code Execution Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65334
Citrix NetScaler Application Delivery Controller Unspecified Security Vulnerability
2014-03-07
http://www.securityfocus.com/bid/66014
Citrix NetScaler Application Delivery Controller CVE-2013-6939 Denial of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/66010
Citrix NetScaler CVE-2013-6938 Denial of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/66008
Citrix NetScaler Application Delivery Controller Cross Site Request Forgery Vulnerability
2014-03-07
http://www.securityfocus.com/bid/66018
Net-SNMP snmptrapd Remote Denial of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65968
Net-SNMP ICMP-MIB Remote Denial of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65867
Apache Camel CVE-2013-4330 Information Disclosure Vulnerability
2014-03-07
http://www.securityfocus.com/bid/62706
HawtJNI CVE-2013-2035 Local Privilege Escalation Vulnerability
2014-03-07
http://www.securityfocus.com/bid/59876
Spring Framework CVE-2013-4152 Multiple XML External Entity Injection Vulnerabilities
2014-03-07
http://www.securityfocus.com/bid/61951
Apache Camel CVE-2014-0003 Remote Code Execution Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65902
IcedTea-Web LiveConnect Implementation Insecure Temporary File Creation Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65437
OpenSAML-Java ParserPool and Decrypter XML External Entity Injection Vulnerability
2014-03-07
http://www.securityfocus.com/bid/64345
Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65767
Apache Tomcat CVE-2014-0033 Session Fixation Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65769
Apache Tomcat CVE-2013-4286 Security Bypass Vulnerability
2014-03-07
http://www.securityfocus.com/bid/65773
OpenSSL DTLS Implementations Man in the Middle Multiple Security Bypass Vulnerabilities
2014-03-07
http://www.securityfocus.com/bid/64618
OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
2014-03-07
http://www.securityfocus.com/bid/64691
Exploit
6.3.2014
Bugtraq
[CVE-2014-0683]Router Cisco RV110W - RV215W - CVR100W - Bypass Login Page - Admin Password Disclosure 2014-03-05
Gustavo Speranza (gustavosj js gmail com)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers 2014-03-05
Cisco Systems Product Security Incident Response Team (psirt cisco com)
Cisco Security Advisory: Cisco Small Business Router Password Disclosure Vulnerability 2014-03-05
Cisco Systems Product Security Incident Response Team (psirt cisco com)
[CVE-2014-0683]Router Cisco RV110W - RV215W - CVR100W - Bypass Login Page - Admin Password Disclosure 2014-03-05
Gustavo Speranza (gustavosj js gmail com)
ESA-2014-012: EMC Documentum TaskSpace Multiple Vulnerabilities 2014-03-05
Security Alert (Security_Alert emc com)
Multiple Vulnerabilities in OpenDocMan 2014-03-05
High-Tech Bridge Security Research (advisory htbridge com)
Cross-Site Scripting (XSS) in Ilch CMS 2014-03-05
High-Tech Bridge Security Research (advisory htbridge com)
CVE-2014-1599 - 39 Type-1 XSS in SFR DSL/Fiber Box 2014-03-05
alejandr0.w3b.p0wn3r (alejandr0 w3b p0wn3r gmail com)
[security bulletin] HPSBMU02933 rev.2 - HP SiteScope, issueSiebelCmd and loadFileContents SOAP Requests, Remote Code Execution, Arbitrary File download, Denial of Service (DoS) 2014-03-05
security-alert hp com
[security bulletin] HPSBHF02965 rev.1 - HP Security Management System, Remote Execution of Arbitrary Code 2014-03-05
security-alert hp com
[security bulletin] HPSBUX02973 SSRT101455 rev.1 - HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2014-03-04
security-alert hp com
Malware
Phishing
Barclays Bank Plc | 6th March 2014 |
Google Secured Document | 6th March 2014 |
VISA | 6th March 2014 |
Yahoo! | 6th March 2014 |
BT | 6th March 2014 |
Barclays Bank Plc | 6th March 2014 |
Alert@AOL.com | 6th March 2014 |
Barclays Bank Plc | 5th March 2014 |
Discover Customer Service | 5th March 2014 |
Vulnerebility
PostgreSQL CVE-2014-0060 Security Bypass Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65723
PostgreSQL CVE-2014-0066 Remote Denial Of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65728
PostgreSQL CVE-2014-0064 Multiple Remote Buffer Overflow Vulnerabilities
2014-03-06
http://www.securityfocus.com/bid/65725
PostgreSQL CVE-2014-0062 Security Bypass Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65727
PostgreSQL CVE-2014-0065 Remote Stack Buffer Overflow Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65731
Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
2014-03-06
http://www.securityfocus.com/bid/58073
Cordova and PhoneGap Multiple Security Bypass Vulnerabilities
2014-03-06
http://www.securityfocus.com/bid/65150
CMS Made Simple CVE-2014-0334 Multiple Cross Site Scripting and HTML Injection Vulnerabilities
2014-03-06
http://www.securityfocus.com/bid/65898
MantisBT 'adm_config_report.php' SQL Injection Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65903
Askbot Multiple Cross Site Scripting Vulnerabilities
2014-03-06
http://www.securityfocus.com/bid/65885
SAS for Windows Client Application Local Buffer Overflow Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65853
FFmpeg and Libav 'libavformat/mpegtsenc.c' Buffer Overflow Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65560
VCDGear Cue File Handling Multiple Buffer Overflow Vulnerabilities
2014-03-06
http://www.securityfocus.com/bid/24003
Cisco Intrusion Prevention System CVE-2014-2103 Denial of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65864
Multiple IBM Products CVE-2013-6747 Denial of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65156
Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-03-06
http://www.securityfocus.com/bid/64918
GnuTLS CVE-2013-2116 Out of Bounds Denial of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/60215
GnuTLS DTLS Information Disclosure Vulnerability
2014-03-06
http://www.securityfocus.com/bid/51322
Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2014-03-06
http://www.securityfocus.com/bid/57778
OpenSSL Multiple Vulnerabilities
2014-03-06
http://www.securityfocus.com/bid/51281
GNU Libtasn1 ASN1 Length DER Decoding Memory Corruption Vulnerability
2014-03-06
http://www.securityfocus.com/bid/52668
GnuTLS TLS Record Handling Heap Memory Corruption Vulnerability
2014-03-06
http://www.securityfocus.com/bid/52667
GnuTLS CVE-2014-0092 Certificate Validation Security Bypass Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65919
GnuTLS Certificate Validation Security Bypass Weakness
2014-03-06
http://www.securityfocus.com/bid/65792
GnuTLS TLS And DTLS Information Disclosure Vulnerability
2014-03-06
http://www.securityfocus.com/bid/57736
Xen CVE-2013-4355 Information Disclosure Vulnerability
2014-03-06
http://www.securityfocus.com/bid/62708
Apache Subversion 'mod_dav_svn' Module SVNListParentPath Denial of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65434
Apache Subversion CVE-2013-2112 Remote Denial of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/60264
Apache Subversion CVE-2013-1968 Remote Denial of Service Vulnerability
2014-03-06
http://www.securityfocus.com/bid/60267
File Utility CVE-2014-1943 Remote Code Execution Vulnerability
2014-03-06
http://www.securityfocus.com/bid/65596
Exploit
OpenDocMan 1.2.7 - Multiple Vulnerabilities
Ilch CMS 2.0 - Persistent XSS Vulnerability
5.3.2014
Bugtraq
JOIDS (Java OpenID Server) multiple vulnerabilities 2014-03-04
Bartlomiej Balcerek (Bartlomiej Balcerek pwr edu pl)
[CVE-2014-0072] Apache Cordova File-Transfer insecure defaults 2014-03-04
iclelland chromium org
[CVE-2014-0073] Apache Cordova In-App-Browser privilege escalation 2014-03-04
iclelland chromium org
[slackware-security] gnutls (SSA:2014-062-01) 2014-03-04
Slackware Security Team (security slackware com)
[SECURITY] [DSA 2869-1] gnutls26 security update 2014-03-03
Yves-Alexis Perez (corsac debian org)
CFP: Passwords^14, Las Vegas, August 5-6 2014-03-03
Per Thorsheim (per thorsheim net)
[SECURITY] [DSA 2868-1] php5 security update 2014-03-02
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
NatWest | 5th March 2014 |
ebilling@bt.com | 4th March 2014 |
Lloyds Bank UK | 4th March 2014 |
bt.comteam@bt.com | 4th March 2014 |
Vulnerebility
GnuTLS Certificate Validation Security Bypass Weakness
2014-03-05
http://www.securityfocus.com/bid/65792
PostgreSQL CVE-2014-0062 Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65727
GnuTLS CVE-2014-0092 Certificate Validation Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65919
PostgreSQL CVE-2014-0063 Remote Stack Buffer Overflow Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65719
PostgreSQL CVE-2014-0064 Multiple Remote Buffer Overflow Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/65725
PostgreSQL CVE-2014-0066 Remote Denial Of Service Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65728
PostgreSQL CVE-2014-0061 Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65724
PostgreSQL CVE-2014-0065 Remote Stack Buffer Overflow Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65731
PostgreSQL CVE-2014-0060 Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65723
Oracle Java SE CVE-2014-0417 Remote Security Vulnerability
2014-03-05
http://www.securityfocus.com/bid/64932
Oracle Java SE TTF Font Parsing Remote Code Execution Vulnerability
2014-03-05
http://www.securityfocus.com/bid/64894
Synology DiskStation Manager VPN Module Hardcoded Password Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65879
ILIAS Multiple Input Validation Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/65753
ATutor Multiple Cross Site Scripting and HTML Injection Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/65744
CMS Made Simple Multiple Cross Site Scripting Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/65746
ALLPlayer Remote Buffer Overflow Vulnerability
2014-03-05
http://www.securityfocus.com/bid/63896
OpenStack Keystone Trustee Token Revocation Failure Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65895
Adobe Flash Player and AIR CVE-2014-0498 Remote Stack Overflow Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65704
File Utility CVE-2014-1943 Remote Code Execution Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65596
Adobe Flash Player and AIR CVE-2014-0499 Information Disclosure Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65703
Adobe Flash Player and AIR CVE-2014-0502 Remote Code Execution Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65702
Apache Camel CVE-2014-0003 Remote Code Execution Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65902
Spring Framework CVE-2013-4152 Multiple XML External Entity Injection Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/61951
Apache Camel CVE-2013-4330 Information Disclosure Vulnerability
2014-03-05
http://www.securityfocus.com/bid/62706
HawtJNI CVE-2013-2035 Local Privilege Escalation Vulnerability
2014-03-05
http://www.securityfocus.com/bid/59876
MediaWiki CVE-2014-2243 Information Disclosure Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65883
Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
2014-03-05
http://www.securityfocus.com/bid/58073
Cordova and PhoneGap Multiple Security Bypass Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/65150
CMS Made Simple CVE-2014-0334 Multiple Cross Site Scripting and HTML Injection Vulnerabilities
2014-03-05
http://www.securityfocus.com/bid/65898
MantisBT 'adm_config_report.php' SQL Injection Vulnerability
2014-03-05
http://www.securityfocus.com/bid/65903
Exploit
Calavera UpLoader 3.5 - SEH Buffer Overflow
4.3.2014
Bugtraq
[SECURITY] [DSA 2869-1] gnutls26 security update 2014-03-03
Yves-Alexis Perez (corsac debian org)
CFP: Passwords^14, Las Vegas, August 5-6 2014-03-03
Per Thorsheim (per thorsheim net)
[SECURITY] [DSA 2868-1] php5 security update 2014-03-02
Salvatore Bonaccorso (carnil debian org)
[CVE-2014-2206] GetGo Download Manager HTTP Response Header Buffer Overflow Remote Code Execution 2014-03-02
Julien Ahrens (info rcesecurity com)
Malware
Phishing
Vulnerebility
Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2014-03-04
http://www.securityfocus.com/bid/57778
OpenSSL Multiple Vulnerabilities
2014-03-04
http://www.securityfocus.com/bid/51281
GNU Libtasn1 ASN1 Length DER Decoding Memory Corruption Vulnerability
2014-03-04
http://www.securityfocus.com/bid/52668
GnuTLS TLS Record Handling Heap Memory Corruption Vulnerability
2014-03-04
http://www.securityfocus.com/bid/52667
GnuTLS CVE-2014-0092 Certificate Validation Security Bypass Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65919
GnuTLS Certificate Validation Security Bypass Weakness
2014-03-04
http://www.securityfocus.com/bid/65792
GnuTLS TLS And DTLS Information Disclosure Vulnerability
2014-03-04
http://www.securityfocus.com/bid/57736
Multiple IBM Products CVE-2013-6747 Denial of Service Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65156
Mozilla Firefox/SeaMonkey/Thunderbird CVE-2014-1487 Information Disclosure Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65330
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1481 Security Bypass Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65326
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1479 Security Bypass Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65320
Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2014-03-04
http://www.securityfocus.com/bid/63101
Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2014-03-04
http://www.securityfocus.com/bid/63135
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1477 Multiple Memory Corruption Vulnerabilities
2014-03-04
http://www.securityfocus.com/bid/65317
Mozilla Firefox/SeaMonkey/Thunderbird Use-After-Free Remote Code Execution Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65334
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1478 Multiple Memory Corruption Vulnerabilities
2014-03-04
http://www.securityfocus.com/bid/65324
Mozilla Network Security Services CVE-2014-1491 Unspecified Security Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65332
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1482 Remote Code Execution Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65328
Mozilla Network Security Services CVE-2014-1490 Use After Free Memory Corruption Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65335
IBM Global Security Kit CVE-2013-6329 Remote Denial of Service Vulnerability
2014-03-04
http://www.securityfocus.com/bid/64249
File Utility CVE-2014-1943 Remote Code Execution Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65596
Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2014-03-04
http://www.securityfocus.com/bid/60627
Drupal Chaos Tool Suite Module Access Bypass Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65532
Drupal FileField Module Access Bypass Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65534
Drupal Image Resize Filter Module Denial of Service Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65535
Linux Kernel CVE-2014-2039 Local Denial of Service Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65700
Collaborative Lifecycle Management Applications Unspecified Remote Code Execution Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65900
Cisco Unified Communications Domain Manager Multiple Cross Site Scripting Vulnerabilities
2014-03-04
http://www.securityfocus.com/bid/65869
Xen CVE-2013-2212 Local Denial of Service Vulnerability
2014-03-04
http://www.securityfocus.com/bid/61424
Xen 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability
2014-03-04
http://www.securityfocus.com/bid/65529
Exploit
ALLPlayer 5.8.1 - (.m3u file) Buffer Overflow (SEH)
SpagoBI 4.0 - Persistent XSS Vulnerability
SpagoBI 4.0 - Persistent HTML Script Insertion
SpagoBI 4.0 - Arbitrary XSS File Upload
3.3.2014
Bugtraq
[CVE-2013-6234] XSS File Upload in SpagoBI v4.0 2014-03-01
Christian Catalano (ch catalano gmail com)
[CVE-2013-6233] Persistent HTML Script Insertion permits offsite-bound forms in SpagoBI v4.0 2014-03-01
Christian Catalano (ch catalano gmail com)
[CVE-2013-6232] Persistent Cross-Site Scripting (XSS) in SpagoBI v4.0 2014-03-01
Christian Catalano (ch catalano gmail com)
WordPress thecotton Themes Remote File Upload Vulnerability 2014-03-01
iedb team gmail com
Malware
Phishing
MBNA credit | 3rd March 2014 |
NatWest | 3rd March 2014 |
Vulnerebility
Oracle Supply Chain Products Suite CVE-2013-5880 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64836
Oracle Supply Chain Products Suite CVE-2013-5877 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64831
File Utility CVE-2014-1943 Remote Code Execution Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65596
Oracle Java SE CVE-2013-5896 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64926
Google Chrome CVE-2013-6643 Unspecified Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64981
Oracle Java SE CVE-2014-0422 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64921
Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64935
Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64937
Oracle Java SE CVE-2014-0423 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64914
Oracle Java SE CVE-2014-0376 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64907
Oracle Java SE TTF Font Parsing Remote Code Execution Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64894
Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64918
Oracle Java SE CVE-2013-5910 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64933
Oracle Java SE CVE-2014-0373 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64922
Oracle Java SE CVE-2013-5884 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64924
Oracle Java SE CVE-2013-5878 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64927
Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64930
Google Chrome CVE-2013-6650 Memory Corruption Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65172
Google Chrome CVE-2013-6649 Use After Free Remote Code Execution Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65168
ISC BIND NSEC3 Signed Zones Queries Handling Remote Denial of Service Vulnerability
2014-03-03
http://www.securityfocus.com/bid/64801
PostgreSQL CVE-2014-0062 Security Bypass Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65727
Apache Subversion CVE-2013-4505 Security Bypass Vulnerability
2014-03-03
http://www.securityfocus.com/bid/63966
Apache Subversion 'mod_dav_svn' Module Denial of Service Vulnerability
2014-03-03
http://www.securityfocus.com/bid/63981
Apache Subversion 'mod_dav_svn' Module SVNListParentPath Denial of Service Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65434
Avaya Multiple IP Phones Multiple Command Injection and Stack Buffer Overflow Vulnerabilities
2014-03-03
http://www.securityfocus.com/bid/65842
Python logilab-common Package Insecure File Creation Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65253
SolidWorks Workgroup PDM Memory Corruption Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65691
Chrony CVE-2012-4502 Denial of Service Vulnerability
2014-03-03
http://www.securityfocus.com/bid/61700
Chrony CVE-2012-4503 Remote Denial of Service Vulnerability
2014-03-03
http://www.securityfocus.com/bid/61703
IcedTea-Web LiveConnect Implementation Insecure Temporary File Creation Vulnerability
2014-03-03
http://www.securityfocus.com/bid/65437
Exploit
ALLPlayer 5.8.1 - (.m3u file) Buffer Overflow (SEH)
couponPHP CMS 1.0 - Multiple Stored XSS and SQL Injection Vulnerabilities
2.3.2014
Bugtraq
Malware
Phishing
Barclays Bank PLC | 2nd March 2014 |
Barclays | 2nd March 2014 |
Barclays | 2nd March 2014 |
Verify Update! | 2nd March 2014 |
Vulnerebility
Oracle Java SE CVE-2013-5896 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64926
Google Chrome CVE-2013-6643 Unspecified Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64981
Oracle Java SE CVE-2014-0422 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64921
Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64935
Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64937
Oracle Java SE CVE-2014-0423 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64914
Oracle Java SE CVE-2014-0376 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64907
Oracle Java SE TTF Font Parsing Remote Code Execution Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64894
Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64918
Oracle Java SE CVE-2013-5910 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64933
Oracle Java SE CVE-2014-0373 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64922
Oracle Java SE CVE-2013-5884 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64924
Oracle Java SE CVE-2013-5878 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64927
Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64930
Google Chrome CVE-2013-6650 Memory Corruption Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65172
Google Chrome CVE-2013-6649 Use After Free Remote Code Execution Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65168
ISC BIND NSEC3 Signed Zones Queries Handling Remote Denial of Service Vulnerability
2014-03-02
http://www.securityfocus.com/bid/64801
PostgreSQL CVE-2014-0062 Security Bypass Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65727
Apache Subversion CVE-2013-4505 Security Bypass Vulnerability
2014-03-02
http://www.securityfocus.com/bid/63966
Apache Subversion 'mod_dav_svn' Module Denial of Service Vulnerability
2014-03-02
http://www.securityfocus.com/bid/63981
Apache Subversion 'mod_dav_svn' Module SVNListParentPath Denial of Service Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65434
Avaya Multiple IP Phones Multiple Command Injection and Stack Buffer Overflow Vulnerabilities
2014-03-02
http://www.securityfocus.com/bid/65842
Python logilab-common Package Insecure File Creation Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65253
SolidWorks Workgroup PDM Memory Corruption Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65691
Chrony CVE-2012-4502 Denial of Service Vulnerability
2014-03-02
http://www.securityfocus.com/bid/61700
Chrony CVE-2012-4503 Remote Denial of Service Vulnerability
2014-03-02
http://www.securityfocus.com/bid/61703
IcedTea-Web LiveConnect Implementation Insecure Temporary File Creation Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65437
ICCLIB CVE-2012-4405 Out-of-Bounds Memory Write Remote Code Execution Vulnerability
2014-03-02
http://www.securityfocus.com/bid/55494
Openswan IKEv2 payloads Remote Denial Of Service Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65155
Cisco Unified Contact Center Express CVE-2014-0746 Information Disclosure Vulnerability
2014-03-02
http://www.securityfocus.com/bid/65802
Exploit
Oracle Demantra 12.2.1 - Arbitrary File Disclosure
Oracle Demantra 12.2.1 - SQL Injection Vulnerability
Oracle Demantra 12.2.1 - Stored XSS Vulnerability
Oracle Demantra 12.2.1 - Database Credentials Disclosure
1.3.2014
Bugtraq
SEC Consult SA-20140228-1 :: Authentication bypass (SSRF) and local file disclosure in Plex Media Server 2014-02-28
SEC Consult Vulnerability Lab (research sec-consult com)
SEC Consult SA-20140228-0 :: Privilege escalation vulnerability in MICROSENS Profi Line Modular Industrial Switch 2014-02-28
SEC Consult Vulnerability Lab (research sec-consult com)
[slackware-security] subversion (SSA:2014-058-01) 2014-02-27
Slackware Security Team (security slackware com)
SEC Consult SA-20140227-0 :: Local Buffer Overflow vulnerability in SAS for Windows (Statistical Analysis System) 2014-02-27
SEC Consult Vulnerability Lab (research sec-consult com)
Multiple Vulnerabilities in VideoWhisper Live Streaming Integration WP Plugin 2014-02-27
High-Tech Bridge Security Research (advisory htbridge com)
Malware
Phishing
Vulnerebility
ICCLIB CVE-2012-4405 Out-of-Bounds Memory Write Remote Code Execution Vulnerability
2014-03-01
http://www.securityfocus.com/bid/55494
Openswan IKEv2 payloads Remote Denial Of Service Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65155
Cisco Unified Contact Center Express CVE-2014-0746 Information Disclosure Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65802
Linux Kernel CVE-2013-7263 Multiple Information Disclosure Vulnerabilities
2014-03-01
http://www.securityfocus.com/bid/64686
Linux Kernel 'pn_recvmsg()' Function Local Information Disclosure Vulnerability
2014-03-01
http://www.securityfocus.com/bid/64677
Linux Kernel 'qeth_core_main.c' File Local Buffer Overflow Vulnerability
2014-03-01
http://www.securityfocus.com/bid/63890
Linux Kernel CVE-2013-2929 Local Privilege Escalation Vulnerability
2014-03-01
http://www.securityfocus.com/bid/64111
Cisco Unified Contact Center Express CVE-2014-2102 Information Disclosure Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65797
LibTIFF CVE-2013-1961 Stack Based Buffer Overflow Vulnerability
2014-03-01
http://www.securityfocus.com/bid/59607
Cisco Unified Contact Center Express CVE-2014-0745 Cross Site Request Forgery Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65798
InterWorx Web Control Panel Cross Site Scripting Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65734
OpenSAML-Java ParserPool and Decrypter XML External Entity Injection Vulnerability
2014-03-01
http://www.securityfocus.com/bid/64345
LibTIFF CVE-2013-4243 Heap Buffer Overflow Vulnerability
2014-03-01
http://www.securityfocus.com/bid/62082
LibTIFF CVE-2013-4244 Out of Bounds Memory Corruption Vulnerability
2014-03-01
http://www.securityfocus.com/bid/62019
LibTIFF 't2_process_jpeg_strip()' Function Heap-based Buffer Overflow Vulnerability
2014-03-01
http://www.securityfocus.com/bid/59609
LibTIFF Multiple Remote Denial of Service Vulnerabilities
2014-03-01
http://www.securityfocus.com/bid/41295
LibTIFF CVE-2013-4231 Multiple Buffer Overflow Vulnerabilities
2014-03-01
http://www.securityfocus.com/bid/61695
LibTIFF CVE-2013-4232 Memory Corruption Vulnerability
2014-03-01
http://www.securityfocus.com/bid/61849
Pivotal Grails 'grails-resources' Plugin Information Disclosure Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65678
Multiple Generel Electric Products 'gefebt.exe' Shell Upload Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65124
Gold Mp4 Player Buffer Overflow Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65855
Belkin Wemo Home Automation Devices CVE-2013-6951 Remote Code Execution Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65633
Belkin Wemo Home Automation Devices 'peerAddresses' API XML External Entity Injection Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65623
pidgin-knotify 'notify()' Remote Command Injection Vulnerability
2014-03-01
http://www.securityfocus.com/bid/43206
Linux Kernel CVE-2013-3224 Local Information Disclosure Vulnerability
2014-03-01
http://www.securityfocus.com/bid/59383
Atlassian Crucible Unauthorized Access Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65845
MODx 'header.tpl' Cross Site Scripting Vulnerability
2014-03-01
http://www.securityfocus.com/bid/65755
Oracle Java SE CVE-2013-5896 Remote Security Vulnerability
2014-03-01
http://www.securityfocus.com/bid/64926
Google Chrome CVE-2013-6643 Unspecified Security Vulnerability
2014-03-01
http://www.securityfocus.com/bid/64981
Oracle Java SE CVE-2014-0422 Remote Security Vulnerability
2014-03-01
http://www.securityfocus.com/bid/64921
Exploit
GE Proficy CIMPLICITY gefebt.exe Remote Code Execution
GoldMP4Player 3.3 - Buffer Overflow Exploit (SEH)
Total Video Player 1.3.1 (Settings.ini) - SEH Buffer Overflow
MICROSENS Profi Line Switch 10.3.1 - Privilege Escalation
PHP-CMDB 0.7.3 - Multiple Vulnerabilities
Webuzo 2.1.3 - Multiple Vulnerabilities
Plex Media Server 0.9.9.2.374-aa23a69 - Multiple Vulnerabilities
Deutsche Telekom CERT Advisory [DTC-A-20140324-002] update140328 - vulnerabilities in check_mk 2014-03-28
CERT telekom de
iStArtApp FileXChange v6.2 iOS - Multiple Web Vulnerabilities 2014-03-28
Vulnerability Lab (research vulnerability-lab com)
[RT-SA-2014-002] rexx Recruitment: Cross-Site Scripting in User Registration 2014-03-27
RedTeam Pentesting GmbH (release redteam-pentesting de)
[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update 2014-03-27
Moritz Muehlenhoff (jmm debian org)
[SECURITY] [DSA 2887-1] ruby-actionmailer-3.2 security update 2014-03-27
Moritz Muehlenhoff (jmm debian org)
[security bulletin] HPSBST02968 rev.2 - HP StoreOnce, Remote Unauthorized Access 2014-03-27
security-alert hp com
ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
ES746 DELL Support-Bulletin - EMS Vulnerability Resolved 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
My Photo Wifi Share & PS 1.1 iOS - Local Command Injection Vulnerability 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
SEC Consult SA-20140328-0 :: Multiple vulnerabilities in Symantec LiveUpdate Administrator 2014-03-28
SEC Consult Vulnerability Lab (research sec-consult com)
Easy FileManager 1.1 iOS - Multiple Web Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
Dell SonicWall EMail Security Appliance Application v7.4.5 - Multiple Vulnerabilities 2014-03-27
Vulnerability Lab (research vulnerability-lab com)
[SECURITY] [DSA 2889-1] postfixadmin security update 2014-03-28
Thijs Kinkhorst (thijs debian org)
[oCERT-2014-003] LibYAML input sanitization errors 2014-03-26
Andrea Barisani (lcars ocert org)
ESA-2014-016: EMC VPLEX Multiple Vulnerabilities 2014-03-26
Security Alert (Security_Alert emc com)
[SECURITY] [DSA 2886-1] libxalan2-java security update 2014-03-26
Florian Weimer (fw deneb enyo de)
[SECURITY] [DSA 2885-1] libyaml-libyaml-perl security update 2014-03-26
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 2884-1] libyaml security update 2014-03-26
Salvatore Bonaccorso (carnil debian org)
Firefox for Android Profile Directory Derandomization and Data Exfiltration (CVE-2014-1484, CVE-2014-1506, CVE-2014-1515, CVE-2014-1516) 2014-03-26
Roee Hay (roeeh il ibm com)
Cisco Security Advisory: Cisco IOS Software Crafted IPv6 Packet Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
Cisco Security Advisory: Cisco IOS Software SSL VPN Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
Cisco Security Advisory: Cisco IOS Software Internet Key Exchange Version 2 Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
Cisco Security Advisory: Cisco 7600 Series Route Switch Processor 720 with 10 Gigabit Ethernet Uplinks Denial of Service Vulnerability 2014-03-26
Cisco Systems Product Security Incident Response Team (psirt cisco com)
ESA-2014-015: RSAŽ Authentication Manager Cross Frame Scripting Vulnerability 2014-03-26
Security Alert (Security_Alert emc com)
VUPEN Security Research - Mozilla Firefox "BumpChunk" Object Processing Use-after-free (Pwn2Own) 2014-03-26
VUPEN Security Research (advisories vupen com)