Databáze Hot News 2017 April - 2017 January February March April May June July August September October November December
30.4.2017
Bugtraq
[security bulletin] HPESBHF03738 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution 2017-04-28
security-alert hpe com
[SECURITY] [DSA 3838-1] ghostscript security update 2017-04-28
Salvatore Bonaccorso (carnil debian org)
Apple iOS 10.2 & 10.3 - Control Panel Denial of Service Vulnerability 2017-04-28
Vulnerability Lab (research vulnerability-lab com)
Live Helper Chat - Cross-Site Scripting 2017-04-28
Advisories (advisories compass-security com)
Malware
Phishing
30th April 2017 | |
? Morrisons ? | 30th April 2017 |
SunTrust | 29th April 2017 |
spoof | 29th April 2017 |
CardApprovalUSA | 28th April 2017 |
Vulnerebility
Avast! Antivirus CVE-2017-8307 Arbitrary File Deletion Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98086
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-04-30
http://www.securityfocus.com/bid/98085
symetrie CVE-2017-7386 Cross Site Scripting Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98082
Zabbix CVE-2017-2824 Command Injection Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98083
Zimbra Collaboration Suite CVE-2017-7288 Unspecified HTML Injection Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98081
Avast! Antivirus CVE-2017-8308 Security Bypass Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98084
McAfee Security Scan Plus CVE-2016-8026 Unspecified Local Command Execution Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98068
illumos CVE-2016-6561 Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98079
eXtplorer CVE-2016-4313 Local Directory Traversal Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98069
YARA 'yara_yyparse()' Function Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98080
YARA 'yy_get_next_buffer()' Function Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98077
YARA CVE-2017-5924 Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98075
Multiple IBM Products CVE-2016-9693 Unspecified Arbitrary File Download Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98074
YARA CVE-2016-10211 Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98078
LibreSSL CVE-2017-8301 Certificate Validation Security Bypass Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98076
Multiple IBM Products CVE-2016-9723 Cross Site Scripting Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98073
YARA CVE-2017-8294 Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98072
GNOME gnome-shell CVE-2017-8288 Lock Screen Local Security Bypass Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98070
Jenkins CVE-2017-1000355 Denial of Service Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98066
Squirrelmail CVE-2017-7692 Command Injection Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98067
GE Multiple Products CVE-2017-7905 Weak Password Security Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98063
dpkg CVE-2017-8283 Directory Traversal Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98064
Jenkins CVE-2017-1000354 User Impersonation Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98065
Jenkins CVE-2017-1000356 Multiple Cross Site Request Forgery Vulnerabilities
2017-04-30
http://www.securityfocus.com/bid/98062
Oracle E-Business Suite CVE-2017-3342 Remote Security Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98061
Oracle E-Business Suite CVE-2017-3356 Remote Security Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98058
Oracle E-Business Suite CVE-2017-3347 Remote Security Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98060
Oracle E-Business Suite CVE-2017-3355 Remote Security Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98059
Jenkins Java Deserialization CVE-2017-1000353 Remote Code Execution Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98056
Mediawiki 'Parser::replaceInternalLinks2()' Method Cross-Site Scripting Vulnerability
2017-04-30
http://www.securityfocus.com/bid/98057Avast! Antivirus CVE-2017-8307 Arbitrary File Deletion Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98086
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-04-29
http://www.securityfocus.com/bid/98085
symetrie CVE-2017-7386 Cross Site Scripting Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98082
Zabbix CVE-2017-2824 Command Injection Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98083
Zimbra Collaboration Suite CVE-2017-7288 Unspecified HTML Injection Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98081
Avast! Antivirus CVE-2017-8308 Security Bypass Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98084
McAfee Security Scan Plus CVE-2016-8026 Unspecified Local Command Execution Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98068
illumos CVE-2016-6561 Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98079
eXtplorer CVE-2016-4313 Local Directory Traversal Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98069
YARA 'yara_yyparse()' Function Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98080
YARA 'yy_get_next_buffer()' Function Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98077
YARA CVE-2017-5924 Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98075
Multiple IBM Products CVE-2016-9693 Unspecified Arbitrary File Download Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98074
YARA CVE-2016-10211 Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98078
LibreSSL CVE-2017-8301 Certificate Validation Security Bypass Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98076
Multiple IBM Products CVE-2016-9723 Cross Site Scripting Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98073
YARA CVE-2017-8294 Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98072
GNOME gnome-shell CVE-2017-8288 Lock Screen Local Security Bypass Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98070
Jenkins CVE-2017-1000355 Denial of Service Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98066
Squirrelmail CVE-2017-7692 Command Injection Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98067
GE Multiple Products CVE-2017-7905 Weak Password Security Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98063
dpkg CVE-2017-8283 Directory Traversal Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98064
Jenkins CVE-2017-1000354 User Impersonation Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98065
Jenkins CVE-2017-1000356 Multiple Cross Site Request Forgery Vulnerabilities
2017-04-29
http://www.securityfocus.com/bid/98062
Oracle E-Business Suite CVE-2017-3342 Remote Security Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98061
Oracle E-Business Suite CVE-2017-3356 Remote Security Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98058
Oracle E-Business Suite CVE-2017-3347 Remote Security Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98060
Oracle E-Business Suite CVE-2017-3355 Remote Security Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98059
Jenkins Java Deserialization CVE-2017-1000353 Remote Code Execution Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98056
Mediawiki 'Parser::replaceInternalLinks2()' Method Cross-Site Scripting Vulnerability
2017-04-29
http://www.securityfocus.com/bid/98057
SANS News
Threatpost
WikiLeaks Reveals CIA Tool ‘Scribbles’ For Document Tracking
Exploit
28.4.2017
Bugtraq
[security bulletin] HPESBHF03738 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution 2017-04-28
security-alert hpe com
[SECURITY] [DSA 3838-1] ghostscript security update 2017-04-28
Salvatore Bonaccorso (carnil debian org)
Apple iOS 10.2 & 10.3 - Control Panel Denial of Service Vulnerability 2017-04-28
Vulnerability Lab (research vulnerability-lab com)
Live Helper Chat - Cross-Site Scripting 2017-04-28
Advisories (advisories compass-security com)
[SECURITY] [DSA 3836-1] weechat security update 2017-04-27
Salvatore Bonaccorso (carnil debian org)
FreeBSD Security Advisory FreeBSD-SA-17:04.ipfilter 2017-04-27
FreeBSD Security Advisories (security-advisories freebsd org)
CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability 2017-04-26
Chris Douglas (cdouglas apache org)
April 2017 - Confluence - Security Advisory 2017-04-26
David Black (dblack atlassian com)
[SECURITY] [DSA 3834-1] mysql-5.5 security update 2017-04-25
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
PayPal | 28th April 2017 |
Last Reminder: Your account | |
Tesco Bank | 27th April 2017 |
spoof | 26th April 2017 |
CardApprovalUSA | 26th April 2017 |
Vulnerebility
YARA 'yy_get_next_buffer()' Function Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98077
YARA CVE-2017-8294 Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98072
GNOME gnome-shell CVE-2017-8288 Lock Screen Local Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98070
Jenkins CVE-2017-1000355 Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98066
Squirrelmail CVE-2017-7692 Command Injection Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98067
GE Multiple Products CVE-2017-7905 Weak Password Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98063
dpkg CVE-2017-8283 Directory Traversal Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98064
Jenkins CVE-2017-1000354 User Impersonation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98065
Jenkins CVE-2017-1000356 Multiple Cross Site Request Forgery Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/98062
Oracle E-Business Suite CVE-2017-3342 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98061
Oracle E-Business Suite CVE-2017-3356 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98058
Oracle E-Business Suite CVE-2017-3347 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98060
Oracle E-Business Suite CVE-2017-3355 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98059
Jenkins Java Deserialization CVE-2017-1000353 Remote Code Execution Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98056
Mediawiki 'Parser::replaceInternalLinks2()' Method Cross-Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98057
Mediawiki 'Special:MyPage/common.css' Cross-Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98053
HP NonStop Servers CVE-2017-5803 Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98052
Oracle E-Business Suite CVE-2017-3345 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98055
Oracle E-Business Suite CVE-2017-3434 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98054
EMC ResourcePak Base CVE-2017-4982 Local Privilege Escalation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98049
Fortinet FortiOS CVE-2017-3127 Cross Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98048
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98050
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91319
OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91081
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/97940
IrfanView CVE-2017-2813 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98046
EMC Data Domain OS CVE-2017-4983 Local Privilege Escalation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98047
Revive Adserver Multiple Security Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/83964
Apache Struts CVE-2016-1182 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91067
Apache Struts CVE-2012-1007 Multiple Cross Site Scripting Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/51900Jenkins CVE-2017-1000356 Multiple Cross Site Request Forgery Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/98062
Oracle E-Business Suite CVE-2017-3342 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98061
Oracle E-Business Suite CVE-2017-3356 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98058
Oracle E-Business Suite CVE-2017-3347 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98060
Oracle E-Business Suite CVE-2017-3355 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98059
Jenkins Java Deserialization CVE-2017-1000353 Remote Code Execution Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98056
Mediawiki 'Parser::replaceInternalLinks2()' Method Cross-Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98057
Mediawiki 'Special:MyPage/common.css' Cross-Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98053
HP NonStop Servers CVE-2017-5803 Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98052
Oracle E-Business Suite CVE-2017-3345 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98055
Oracle E-Business Suite CVE-2017-3434 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98054
EMC ResourcePak Base CVE-2017-4982 Local Privilege Escalation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98049
Fortinet FortiOS CVE-2017-3127 Cross Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98048
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98050
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91319
OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91081
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/97940
IrfanView CVE-2017-2813 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98046
EMC Data Domain OS CVE-2017-4983 Local Privilege Escalation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98047
Revive Adserver Multiple Security Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/83964
Apache Struts CVE-2016-1182 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91067
Apache Struts CVE-2012-1007 Multiple Cross Site Scripting Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/51900
Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/67121
Apache Tomcat CVE-2016-0763 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/83326
MyBB CVE-2017-8104 Directory Traversal Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98045
Apache Xerces-C CVE-2016-0729 Buffer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/83423
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/95813
OpenSSL 'crypto/asn1/a_d2i_fp.c' Local Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/87940
OpenSSL CVE-2016-2176 Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/89746
OpenSSL CVE-2016-2105 Buffer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/89757Oracle E-Business Suite CVE-2017-3355 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98059
Jenkins Java Deserialization CVE-2017-1000353 Remote Code Execution Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98056
Mediawiki 'Parser::replaceInternalLinks2()' Method Cross-Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98057
Mediawiki 'Special:MyPage/common.css' Cross-Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98053
HP NonStop Servers CVE-2017-5803 Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98052
Oracle E-Business Suite CVE-2017-3345 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98055
Oracle E-Business Suite CVE-2017-3434 Remote Security Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98054
EMC ResourcePak Base CVE-2017-4982 Local Privilege Escalation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98049
Fortinet FortiOS CVE-2017-3127 Cross Site Scripting Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98048
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98050
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91319
OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91081
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/97940
IrfanView CVE-2017-2813 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98046
EMC Data Domain OS CVE-2017-4983 Local Privilege Escalation Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98047
Revive Adserver Multiple Security Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/83964
Apache Struts CVE-2016-1182 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91067
Apache Struts CVE-2012-1007 Multiple Cross Site Scripting Vulnerabilities
2017-04-28
http://www.securityfocus.com/bid/51900
Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/67121
Apache Tomcat CVE-2016-0763 Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/83326
MyBB CVE-2017-8104 Directory Traversal Vulnerability
2017-04-28
http://www.securityfocus.com/bid/98045
Apache Xerces-C CVE-2016-0729 Buffer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/83423
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/95813
OpenSSL 'crypto/asn1/a_d2i_fp.c' Local Denial of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/87940
OpenSSL CVE-2016-2176 Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/89746
OpenSSL CVE-2016-2105 Buffer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/89757
OpenSSL CVE-2016-2106 Integer Overflow Vulnerability
2017-04-28
http://www.securityfocus.com/bid/89744
OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-04-28
http://www.securityfocus.com/bid/89760
Apache Axis Incomplete Fix CVE-2014-3596 SSL Certificate Validation Security Bypass Vulnerability
2017-04-28
http://www.securityfocus.com/bid/69295
Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-04-28
http://www.securityfocus.com/bid/91453
SANS News
Another Day, Another Obfuscation Technique
Threatpost
Attack Method Highlights Weaknesses in Microsoft CFG
The Time Has Arrived to Embrace Hackers
Chrome to Mark More HTTP Pages ‘Not Secure’
Lack of Communication Achilles’ Heel for Ransomware Fighters
ransomware-cyberespionage-dominate-verizon-dbir
Exploit
Mercurial - Custom hg-ssh Wrapper Remote Code Exec (Metasploit)
TYPO3 News Module - SQL Injection
Simple File Uploader - Arbitrary File Download
Easy File Uploader - Arbitrary File Upload
27.4.2017
Bugtraq
FreeBSD Security Advisory FreeBSD-SA-17:04.ipfilter 2017-04-27
FreeBSD Security Advisories (security-advisories freebsd org)
CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability 2017-04-26
Chris Douglas (cdouglas apache org)
April 2017 - Confluence - Security Advisory 2017-04-26
David Black (dblack atlassian com)
[SECURITY] [DSA 3834-1] mysql-5.5 security update 2017-04-25
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
spoof | 26th April 2017 |
CardApprovalUSA | 26th April 2017 |
Federal Bureau of Investigatio | 26th April 2017 |
Vulnerebility
EMC ResourcePak Base CVE-2017-4982 Local Privilege Escalation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98049
Fortinet FortiOS CVE-2017-3127 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98048
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98050
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91319
OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91081
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/97940
IrfanView CVE-2017-2813 Integer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98046
EMC Data Domain OS CVE-2017-4983 Local Privilege Escalation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98047
Revive Adserver Multiple Security Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/83964
Apache Struts CVE-2016-1182 Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91067
Apache Struts CVE-2012-1007 Multiple Cross Site Scripting Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/51900
Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/67121
Apache Tomcat CVE-2016-0763 Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83326
MyBB CVE-2017-8104 Directory Traversal Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98045
Apache Xerces-C CVE-2016-0729 Buffer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83423
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/95813
OpenSSL 'crypto/asn1/a_d2i_fp.c' Local Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/87940
OpenSSL CVE-2016-2176 Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/89746
OpenSSL CVE-2016-2105 Buffer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/89757
OpenSSL CVE-2016-2106 Integer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/89744
OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/89760
Apache Axis Incomplete Fix CVE-2014-3596 SSL Certificate Validation Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/69295
Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91453
cURL/libcURL CVE-2015-3236 Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/75385
OpenSSL CVE-2016-7052 Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/93171
cURL/libcURL 'smb_request_state()' Function Security Vulnerability
2017-04-27
http://www.securityfocus.com/bid/75387
Apache Tomcat Security Manager CVE-2016-0706 Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83324
Apache Tomcat CVE-2015-5351 Cross Site Request Forgery Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83330
Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91068
Apache Tomcat Security Manager CVE-2016-0714 Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83327OpenSSL CVE-2016-7052 Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/93171
cURL/libcURL 'smb_request_state()' Function Security Vulnerability
2017-04-27
http://www.securityfocus.com/bid/75387
Apache Tomcat Security Manager CVE-2016-0706 Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83324
Apache Tomcat CVE-2015-5351 Cross Site Request Forgery Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83330
Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91068
Apache Tomcat Security Manager CVE-2016-0714 Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/83327
ISC BIND CVE-2016-9444 Remote Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/95393
ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/95390
ISC BIND CVE-2016-9131 Remote Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/95386
ISC BIND CVE-2016-8864 Remote Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/94067
OpenIDM CVE-2017-7590 HTML Injection Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98044
Linux Kernel CVE-2016-3672 ASLR Implementation Local Security Weakness
2017-04-27
http://www.securityfocus.com/bid/85884
Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/78215
ISC BIND 'buffer.c' Remote Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/93188
OpenSSL CVE-2016-6303 Integer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/92984
Exponent CMS CVE-2017-8085 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98043
Pillow CVE-2016-3076 Heap Buffer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98042
Vivaldi Installer CVE-2017-2156 DLL Loading Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98040
McAfee VirusScan Enterprise CVE-2016-8030 Memory Corruption Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98041
Lenovo System Update CVE-2015-8109 Local Privilege Escalation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98039
OpenText Documentum Content Server CVE-2017-7221 Incomplete Fix Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98038
Lenovo System Update CVE-2015-8110 Local Privilege Escalation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98037
BlackBerry Broadcom Wi-Fi Driver CVE-2016-2433 Arbitrary Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98034
Sierra Wireless AirLink Raven ICSA-17-115-02 Multiple Security Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98036
aescrypt gem CVE-2013-7463 Multiple Security Bypass Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98035
BLF-Tech LLC VisualView HMI CVE-2017-6051 DLL Loading Local Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98031
Hyundai Motor America Blue Link ICSA-17-115-03 Multiple Security Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98033
Joomla! CVE-2017-8057 Multiple Full Path Information Disclosure Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98028
OpenStack Keystone CVE-2017-2673 Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98032
Joomla! Core CVE-2017-7989 Arbitrary File Upload Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98029OpenText Documentum Content Server CVE-2017-7221 Incomplete Fix Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98038
Lenovo System Update CVE-2015-8110 Local Privilege Escalation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98037
BlackBerry Broadcom Wi-Fi Driver CVE-2016-2433 Arbitrary Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98034
Sierra Wireless AirLink Raven ICSA-17-115-02 Multiple Security Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98036
aescrypt gem CVE-2013-7463 Multiple Security Bypass Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98035
BLF-Tech LLC VisualView HMI CVE-2017-6051 DLL Loading Local Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98031
Hyundai Motor America Blue Link ICSA-17-115-03 Multiple Security Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98033
Joomla! CVE-2017-8057 Multiple Full Path Information Disclosure Vulnerabilities
2017-04-27
http://www.securityfocus.com/bid/98028
OpenStack Keystone CVE-2017-2673 Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98032
Joomla! Core CVE-2017-7989 Arbitrary File Upload Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98029
IBM License Metric Tool and IBM BigFix Inventory CVE-2016-8962 Weak Password Security Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98030
IBM WebSphere Commerce CVE-2017-1170 Local Session Hijacking Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98027
Google Nexus Qualcomm Sound Driver CVE-2017-0586 Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/97357
Google Pixel Qualcomm Sound Codec Driver CVE-2016-10231 Privilege Escalation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/97402
Apache Hadoop CVE-2017-3161 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98025
IBM Domino CVE-2017-1274 Stack Buffer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98019
Multiple IBM Products CVE-2016-8924 Session Hijacking Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98023
IBM UrbanCode Deploy CVE-2017-1149 XML External Entity Injection Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98026
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-04-27
http://www.securityfocus.com/bid/91319
Joomla! CVE-2017-7988 Security Bypass Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98022
Joomla! CVE-2017-7985 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98020
Joomla! CVE-2017-7986 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98024
Joomla! CVE-2017-7987 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98021
Apache Struts CVE-2017-5638 Remote Code Execution Vulnerability
2017-04-27
http://www.securityfocus.com/bid/96729
Apache Hadoop CVE-2017-3162 Input Validation Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98017
Joomla! CVE-2017-7984 Cross Site Scripting Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98018
Joomla! CVE-2017-7983 Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98016
QEMU CVE-2017-8112 Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/98015
OpenSSL CVE-2017-3733 Denial of Service Vulnerability
2017-04-27
http://www.securityfocus.com/bid/96269
OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-04-27
http://www.securityfocus.com/bid/89760
SANS News
BGP Hijacking: The Internet is Still/Again Broken
Threatpost
Auto Lender Exposes Loan Data For Up To 1 Million Applicants
Lack of Security Talent Afflicts Healthcare
Air Force Hopes To Attract Hackers With Bug Bounty Program
Exploit
Microsoft Internet Explorer 11.576.14393.0 -...
Revive Ad Server 4.0.1 - Cross-Site Scripting / Cross-Site Request Forgery
Mercurial - Custom hg-ssh Wrapper Remote Code Exec (Metasploit)
TYPO3 News Module - SQL Injection
Revive Ad Server 4.0.1 - Cross-Site Scripting / Cross-Site Request Forgery
26.4.2017
Bugtraq
CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability 2017-04-26
Chris Douglas (cdouglas apache org)
April 2017 - Confluence - Security Advisory 2017-04-26
David Black (dblack atlassian com)
[SECURITY] [DSA 3834-1] mysql-5.5 security update 2017-04-25
Salvatore Bonaccorso (carnil debian org)
[slackware-security] mozilla-firefox (SSA:2017-114-01) 2017-04-24
Slackware Security Team (security slackware com)
[SECURITY] [DSA 3833-1] libav security update 2017-04-24
Moritz Muehlenhoff (jmm debian org)
KL-001-2017-009 : Solarwinds LEM Database Listener with Hardcoded Credentials 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-008 : Solarwinds LEM Management Shell Arbitrary File Read 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-007 : Solarwinds LEM Management Shell Escape via Command Injection 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-006 : Solarwinds LEM Privilege Escalation via Sudo Script Abuse 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-005 : Solarwinds LEM Privilege Escalation via Controlled Sudo Path 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
Malware
Phishing
Federal Bureau of Investigatio | 26th April 2017 |
Chase | 24th April 2017 |
NatWest CreditCard | 24th April 2017 |
test@gamblingsale.ru test@gamb | 24th April 2017 |
Vulnerebility
OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-04-26
http://www.securityfocus.com/bid/91319
Joomla! CVE-2017-7987 Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98021
Apache Struts CVE-2017-5638 Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/96729
Apache Hadoop CVE-2017-3162 Input Validation Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98017
Joomla! CVE-2017-7984 Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98018
Joomla! CVE-2017-7983 Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98016
QEMU CVE-2017-8112 Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98015
OpenSSL CVE-2017-3733 Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/96269
OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/89760
HP OpenCall Media Platform Multiple Cross Site Scripting and Remote File Include Vulnerabilities
2017-04-26
http://www.securityfocus.com/bid/98013
Linux Kernel CVE-2017-7477 Heap Buffer Overflow Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98014
QEMU CVE-2017-8086 Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98012
RETIRED: Oracle Primavera Products CVE-2017-3508 Remote Security Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97889
Oracle MySQL Connectors CVE-2017-3523 Remote Security Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97982
QuickHeal CVE-2015-8285 Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97996
Linux Kernel 'drivers/net/usb/catc.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98011
Linux Kernel CVE-2007-6761 Local Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98001
Google Android CVE-2016-0833 Unspecified Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98009
Linux Kernel 'drivers/hid/hid-cp2112.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98010
Linux Kernel 'drivers/net/usb/rtl8150.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98008
Opera Web Browser CVE-2016-4075 Address Bar Spoofing Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98004
Trend Micro OfficeScan Multiple Privilege Escalation and Cross Site Scripting Vulnerabilities
2017-04-26
http://www.securityfocus.com/bid/98007
Multiple IBM Products CVE-2015-0104 Unspecified Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97999
Portrait Displays SDK CVE-2017-3210 Local Privilege Escalation Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98006
IBM Cúram Social Program Management CVE-2016-9980 Unspecified Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98005
Adobe Flex BlazeDS CVE-2017-3066 Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98003
Multiple IBM Products CVE-2015-0107 Directory Traversal Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97998
Linux Kernel 'drivers/net/usb/pegasus.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98000
Adobe ColdFusion CVE-2017-3008 Unspecified Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98002
Google Nexus Qualcomm Crypto Engine Driver CVE-2016-10230 Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97400RETIRED: Oracle Primavera Products CVE-2017-3508 Remote Security Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97889
Oracle MySQL Connectors CVE-2017-3523 Remote Security Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97982
QuickHeal CVE-2015-8285 Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97996
Linux Kernel 'drivers/net/usb/catc.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98011
Linux Kernel CVE-2007-6761 Local Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98001
Google Android CVE-2016-0833 Unspecified Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98009
Linux Kernel 'drivers/hid/hid-cp2112.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98010
Linux Kernel 'drivers/net/usb/rtl8150.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98008
Opera Web Browser CVE-2016-4075 Address Bar Spoofing Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98004
Trend Micro OfficeScan Multiple Privilege Escalation and Cross Site Scripting Vulnerabilities
2017-04-26
http://www.securityfocus.com/bid/98007
Multiple IBM Products CVE-2015-0104 Unspecified Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97999
Portrait Displays SDK CVE-2017-3210 Local Privilege Escalation Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98006
IBM Cúram Social Program Management CVE-2016-9980 Unspecified Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98005
Adobe Flex BlazeDS CVE-2017-3066 Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98003
Multiple IBM Products CVE-2015-0107 Directory Traversal Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97998
Linux Kernel 'drivers/net/usb/pegasus.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98000
Adobe ColdFusion CVE-2017-3008 Unspecified Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/98002
Google Nexus Qualcomm Crypto Engine Driver CVE-2016-10230 Remote Code Execution Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97400
IBM Security Guardium CVE-2017-1122 Local Command Injection Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97995
Linux Kernel CVE-2017-8066 Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97992
Linux Kernel 'drivers/char/virtio_console.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97997
Linux Kernel 'crypto/ccm.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97994
Linux Kernel 'drivers/hid/hid-cp2112.c' Local Denial of Service Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97991
IBM Cúram Social Program Management CVE-2016-9979 Unspecified Cross Site Scripting Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97993
Palo Alto Networks PAN-OS CVE-2017-7216 Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97590
IBM Curam Social Program Management CVE-2016-9978 Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97990
Google Chrome Prior to 50.0.2661.94 Multiple Security Vulnerabilities
2017-04-26
http://www.securityfocus.com/bid/89106
IBM Curam Social Program Management CVE-2016-8923 Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97989
Google Chrome Prior to 57.0.2987.98 Multiple Security Vulnerabilities
2017-04-26
http://www.securityfocus.com/bid/96767
Red Hat OpenShift Enterprise CVE-2016-5409 Information Disclosure Vulnerability
2017-04-26
http://www.securityfocus.com/bid/97988
SANS News
If there are some unexploited MSSQL Servers With Weak Passwords Left: They got you now (again)
Threatpost
Zimperium Acquisition Program Publishes Exploits for Patched Android Bugs
ColdFusion Hotfix Resolves XSS, Java Deserialization Bugs
xDedic Market Spilling Over With School Servers, PCs
Atlassian Resets HipChat Passwords Following Breach
Exploit
Microsoft Windows 2003 SP2 - 'ERRATICGOPHER' SMB Remote Code Execution
Microsoft Office Word - Malicious Hta Execution (Metasploit)
Apple Safari - Array concat Memory Corruption
WePresent WiPG-1000 - Command Injection (Metasploit)
FlySpray 1.0-rc4 - Cross-Site Scripting / Cross-Site Request Forgery
WordPress Plugin KittyCatfish 2.2 - SQL Injection
Realtek Audio Driver 6.0.1.7898 (Windows 10) - Dolby Audio X2 Service Privilege...
PrivateTunnel Client 2.8 - Local Buffer Overflow (SEH)
Oracle VirtualBox Guest Additions 5.1.18 - Unprivileged Windows User-Mode Guest...
25.4.2017
Bugtraq
[slackware-security] mozilla-firefox (SSA:2017-114-01) 2017-04-24
Slackware Security Team (security slackware com)
[SECURITY] [DSA 3833-1] libav security update 2017-04-24
Moritz Muehlenhoff (jmm debian org)
KL-001-2017-009 : Solarwinds LEM Database Listener with Hardcoded Credentials 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-008 : Solarwinds LEM Management Shell Arbitrary File Read 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-007 : Solarwinds LEM Management Shell Escape via Command Injection 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-006 : Solarwinds LEM Privilege Escalation via Sudo Script Abuse 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-005 : Solarwinds LEM Privilege Escalation via Controlled Sudo Path 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
CVE-2017-7221. OpenText Documentum Content Server: arbitrary code execution in dm_bp_transition.ebs docbase method 2017-04-24
Andrey B. Panfilov (andrew panfilov tel)
Re: CVE-2017-7692: Squirrelmail 1.4.22 Remote Code Execution 2017-04-23
Dawid Golunski (dawid legalhackers com)
[slackware-security] ntp (SSA:2017-112-02) 2017-04-22
Slackware Security Team (security slackware com)
Malware
Phishing
Chase | 24th April 2017 |
NatWest CreditCard | 24th April 2017 |
Vulnerebility
Adobe Flex BlazeDS CVE-2017-3066 Remote Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/98003
Multiple IBM Products CVE-2015-0107 Directory Traversal Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97998
Linux Kernel 'drivers/net/usb/pegasus.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/98000
Adobe ColdFusion CVE-2017-3008 Unspecified Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/98002
Google Nexus Qualcomm Crypto Engine Driver CVE-2016-10230 Remote Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97400
IBM Security Guardium CVE-2017-1122 Local Command Injection Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97995
Linux Kernel CVE-2017-8066 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97992
Linux Kernel 'drivers/char/virtio_console.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97997
Linux Kernel 'crypto/ccm.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97994
Linux Kernel 'drivers/hid/hid-cp2112.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97991
IBM Cúram Social Program Management CVE-2016-9979 Unspecified Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97993
Palo Alto Networks PAN-OS CVE-2017-7216 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97590
IBM Curam Social Program Management CVE-2016-9978 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97990
Google Chrome Prior to 50.0.2661.94 Multiple Security Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/89106
IBM Curam Social Program Management CVE-2016-8923 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97989
Google Chrome Prior to 57.0.2987.98 Multiple Security Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/96767
Red Hat OpenShift Enterprise CVE-2016-5409 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97988
WeeChat CVE-2017-8073 Buffer Overflow Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97987
pcs CVE-2016-0720 Cross Site Request Forgery Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97984
Linux Kernel CVE-2010-5329 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97986
TP-Link TL-SG108E CVE-2017-8078 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97985
TP-Link TL-SG108E CVE-2017-8075 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97983
TP-Link TL-SG108E CVE-2017-8074 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97981
Oracle MySQL Connectors CVE-2017-3586 Remote Security Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97982
podofo CVE-2017-7994 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97980
Shopware CVE-2016-3109 Arbitrary Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97979
XOOPS CVE-2017-7944 Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97978
pcs daemon CVE-2016-0721 Session Fixation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97977
Linux Kernel CVE-2017-8064 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97975
NTP CVE-2016-7427 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94447Google Nexus Qualcomm Crypto Engine Driver CVE-2016-10230 Remote Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97400
IBM Security Guardium CVE-2017-1122 Local Command Injection Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97995
Linux Kernel CVE-2017-8066 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97992
Linux Kernel 'drivers/char/virtio_console.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97997
Linux Kernel 'crypto/ccm.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97994
Linux Kernel 'drivers/hid/hid-cp2112.c' Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97991
IBM Cúram Social Program Management CVE-2016-9979 Unspecified Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97993
Palo Alto Networks PAN-OS CVE-2017-7216 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97590
IBM Curam Social Program Management CVE-2016-9978 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97990
Google Chrome Prior to 50.0.2661.94 Multiple Security Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/89106
IBM Curam Social Program Management CVE-2016-8923 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97989
Google Chrome Prior to 57.0.2987.98 Multiple Security Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/96767
Red Hat OpenShift Enterprise CVE-2016-5409 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97988
WeeChat CVE-2017-8073 Buffer Overflow Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97987
pcs CVE-2016-0720 Cross Site Request Forgery Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97984
Linux Kernel CVE-2010-5329 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97986
TP-Link TL-SG108E CVE-2017-8078 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97985
TP-Link TL-SG108E CVE-2017-8075 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97983
TP-Link TL-SG108E CVE-2017-8074 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97981
Oracle MySQL Connectors CVE-2017-3586 Remote Security Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97982
podofo CVE-2017-7994 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97980
Shopware CVE-2016-3109 Arbitrary Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97979
XOOPS CVE-2017-7944 Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97978
pcs daemon CVE-2016-0721 Session Fixation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97977
Linux Kernel CVE-2017-8064 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97975
NTP CVE-2016-7427 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94447
NTP CVE-2016-7429 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94453
NTP CVE-2015-8158 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81814
NTP CVE-2015-8138 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81811
Linux Kernel CVE-2017-8062 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97973
Palo Alto Networks PAN-OS CVE-2017-7216 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97590
Google Chrome Prior to 50.0.2661.94 Multiple Security Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/89106
Google Chrome Prior to 57.0.2987.98 Multiple Security Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/96767
Red Hat OpenShift Enterprise CVE-2016-5409 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97988
WeeChat CVE-2017-8073 Buffer Overflow Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97987
pcs CVE-2016-0720 Cross Site Request Forgery Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97984
Linux Kernel CVE-2010-5329 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97986
TP-Link TL-SG108E CVE-2017-8078 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97985
TP-Link TL-SG108E CVE-2017-8075 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97983
TP-Link TL-SG108E CVE-2017-8074 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97981
Oracle MySQL Connectors CVE-2017-3586 Remote Security Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97982
podofo CVE-2017-7994 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97980
Shopware CVE-2016-3109 Arbitrary Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97979
XOOPS CVE-2017-7944 Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97978
pcs daemon CVE-2016-0721 Session Fixation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97977
Linux Kernel CVE-2017-8064 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97975
NTP CVE-2016-7427 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94447
NTP CVE-2016-7429 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94453
NTP CVE-2015-8158 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81814
NTP CVE-2015-8138 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81811
Linux Kernel CVE-2017-8062 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97973
NTP CVE-2016-7431 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94454
Linux Kernel CVE-2017-8063 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97974
NTP CVE-2015-7979 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81816
Cybozu Kintone App CVE-2016-1186 SSL Certificate Validation Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97976
NTP CVE-2015-7973 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81963
Linux Kernel CVE-2017-8061 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97972
QEMU 'hw/9pfs/9p-local.c' Privilege Escalation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97970
NTP CVE-2016-9310 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94452
Linux Kernel CVE-2017-7979 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97969TP-Link TL-SG108E CVE-2017-8078 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97985
TP-Link TL-SG108E CVE-2017-8075 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97983
TP-Link TL-SG108E CVE-2017-8074 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97981
Oracle MySQL Connectors CVE-2017-3586 Remote Security Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97982
podofo CVE-2017-7994 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97980
Shopware CVE-2016-3109 Arbitrary Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97979
XOOPS CVE-2017-7944 Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97978
pcs daemon CVE-2016-0721 Session Fixation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97977
Linux Kernel CVE-2017-8064 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97975
NTP CVE-2016-7427 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94447
NTP CVE-2016-7429 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94453
NTP CVE-2015-8158 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81814
NTP CVE-2015-8138 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81811
Linux Kernel CVE-2017-8062 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97973
NTP CVE-2016-7431 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94454
Linux Kernel CVE-2017-8063 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97974
NTP CVE-2015-7979 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81816
Cybozu Kintone App CVE-2016-1186 SSL Certificate Validation Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97976
NTP CVE-2015-7973 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81963
Linux Kernel CVE-2017-8061 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97972
QEMU 'hw/9pfs/9p-local.c' Privilege Escalation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97970
NTP CVE-2016-9310 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94452
Linux Kernel CVE-2017-7979 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97969
Apache ActiveMQ CVE-2015-7559 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97967
Perl YAML-LibYAML Module 'perl_libyaml.c' Multiple Format String Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/52381
Minicom CVE-2017-7467 Local Buffer Overflow Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97966
NTP CVE-2016-9311 NULL Pointer Dereference Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94444
Novell NetIQ Access Manager CVE-2017-5190 Remote Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97965
Apache CXF CVE-2017-5656 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97971
Apache CXF CVE-2017-5653 Spoofing Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97968Shopware CVE-2016-3109 Arbitrary Code Execution Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97979
XOOPS CVE-2017-7944 Cross Site Scripting Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97978
pcs daemon CVE-2016-0721 Session Fixation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97977
Linux Kernel CVE-2017-8064 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97975
NTP CVE-2016-7427 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94447
NTP CVE-2016-7429 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94453
NTP CVE-2015-8158 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81814
NTP CVE-2015-8138 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81811
Linux Kernel CVE-2017-8062 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97973
NTP CVE-2016-7431 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94454
Linux Kernel CVE-2017-8063 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97974
NTP CVE-2015-7979 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81816
Cybozu Kintone App CVE-2016-1186 SSL Certificate Validation Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97976
NTP CVE-2015-7973 Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/81963
Linux Kernel CVE-2017-8061 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97972
QEMU 'hw/9pfs/9p-local.c' Privilege Escalation Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97970
NTP CVE-2016-9310 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94452
Linux Kernel CVE-2017-7979 Local Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97969
Apache ActiveMQ CVE-2015-7559 Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97967
Perl YAML-LibYAML Module 'perl_libyaml.c' Multiple Format String Vulnerabilities
2017-04-25
http://www.securityfocus.com/bid/52381
Minicom CVE-2017-7467 Local Buffer Overflow Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97966
NTP CVE-2016-9311 NULL Pointer Dereference Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/94444
Novell NetIQ Access Manager CVE-2017-5190 Remote Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97965
Apache CXF CVE-2017-5656 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97971
Apache CXF CVE-2017-5653 Spoofing Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97968
infinispan CVE-2017-2638 Authentication Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97964
cURL/libcURL CVE-2017-7468 Remote Security Bypass Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97962
libbpg 'image_alloc()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97963
Atlassian Confluence CVE-2017-7415 Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97961
MySQL-GUI-tools CVE-2010-4178 Local Information Disclosure Vulnerability
2017-04-25
http://www.securityfocus.com/bid/97960
SANS News
Threatpost
Hyundai Patches Leaky Blue Link Mobile App
No Fix for SquirrelMail Remote Code Execution Vulnerability
Locky Ransomware Roars Back to Life Via Necurs Botnet
Original XPan Ransomware Returns, Targets Brazilian SMBs
Exploit
FlySpray 1.0-rc4 - Cross-Site Scripting / Cross-Site Request Forgery
WordPress Plugin KittyCatfish 2.2 - SQL Injection
WordPress Plugin Car Rental System 2.5 - SQL Injection
WordPress Plugin Wow Viral Signups 2.1 - SQL Injection
WordPress Plugin Wow Forms 2.1 - SQL Injection
Oracle PeopleSoft - 'PeopleSoftServiceListeningConnector' XML External Entity via...
Oracle E-Business Suite 12.2.3 - 'IESFOOTPRINT' SQL Injection
HPE OpenCall Media Platform (OCMP) 4.3.2 - Cross-Site Scripting / Remote File Inclusion
Easy MOV Converter 1.4.24 - Local Buffer Overflow (SEH)
PrivateTunnel Client 2.8 - Local Buffer Overflow (SEH)
Dell Customer Connect 1.3.28.0 - Privilege Escalation
24.4.2017
Bugtraq
Malware
Phishing
PayPal | 23rd April 2017 |
Tesco Bank | 21st April 2017 |
Chase | 21st April 2017 |
Dropbox team | 20th April 2017 |
Vulnerebility
Perl YAML-LibYAML Module 'perl_libyaml.c' Multiple Format String Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/52381
NTP CVE-2016-9311 NULL Pointer Dereference Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/94444
Novell NetIQ Access Manager CVE-2017-5190 Remote Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97965
Apache CXF CVE-2017-5656 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97971
Apache CXF CVE-2017-5653 Spoofing Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97968
infinispan CVE-2017-2638 Authentication Bypass Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97964
cURL/libcURL CVE-2017-7468 Remote Security Bypass Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97962
libbpg 'image_alloc()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97963
Atlassian Confluence CVE-2017-7415 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97961
MySQL-GUI-tools CVE-2010-4178 Local Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97960
MySQL-GUI-tools CVE-2010-4177 Local Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97959
Google Chrome Prior to 58.0.3029.81 Multiple Security Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97939
Multiple McAfee Products CVE-2017-4028 Local Code Injection Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97958
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97957
ImageMagick CVE-2017-7943 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97956
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97940
Pexip Infinity CVE-2017-6551 Remote Code Execution Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97954
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97955
Palo Alto Networks PAN-OS CVE-2017-7409 Cross Site Scripting Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97953
Nessus CVE-2017-7850 Local Privilege Escalation Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97952
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/95813
OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/75156
OpenSSL CVE-2015-1788 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/75158
OpenSSL CVE-2015-3195 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/78626
OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/73225
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/71937
FreeBSD CVE-2013-5209 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/61939
Dropbear SSH Server Use After Free Remote Code Execution Vulnerability
2017-04-24
http://www.securityfocus.com/bid/52159
OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2017-04-24
http://www.securityfocus.com/bid/71936
Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-04-24
http://www.securityfocus.com/bid/91869
Multiple McAfee Products CVE-2017-4028 Local Code Injection Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97958
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97957
ImageMagick CVE-2017-7943 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97956
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97940
Pexip Infinity CVE-2017-6551 Remote Code Execution Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97954
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97955
Palo Alto Networks PAN-OS CVE-2017-7409 Cross Site Scripting Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97953
Nessus CVE-2017-7850 Local Privilege Escalation Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97952
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/95813
OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/75156
OpenSSL CVE-2015-1788 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/75158
OpenSSL CVE-2015-3195 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/78626
OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/73225
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/71937
FreeBSD CVE-2013-5209 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/61939
Dropbear SSH Server Use After Free Remote Code Execution Vulnerability
2017-04-24
http://www.securityfocus.com/bid/52159
OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2017-04-24
http://www.securityfocus.com/bid/71936
Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-04-24
http://www.securityfocus.com/bid/91869
OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/95814
Nessus CVE-2017-7849 Local Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97951
Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97948
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97950
Apache Traffic Server CVE-2017-5659 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97949
Apache Traffic Server CVE-2016-5396 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97945
LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-24
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-24
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-24
http://www.securityfocus.com/bid/97944
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-24
http://www.securityfocus.com/bid/97942
SANS News
Malicious Documents: A Bit Of News
Threatpost
SMSVova Spyware Hiding in ‘System Update’ App Ejected From Google Play Store
Exploit
SquirrelMail < 1.4.22 - Remote Code Execution
23.4.2017
Bugtraq
CVE-2017-7192: Starscream library before 2.0.4 allows SSL pinning bypass 2017-04-21
Security Advisories (security advisories centralway com)
[SECURITY] [DSA 3831-1] firefox-esr security update 2017-04-19
Moritz Muehlenhoff (jmm debian org)
[HITB-Announce] HITB GSEC 2017 CFP Closes April 30th 2017-04-19
Hafez Kamal (aphesz hackinthebox org)
October CMS v1.0.412 several vulnerabilities 2017-04-19
Anti Räis (antirais gmail com)
Malware
Phishing
Vulnerebility
Multiple McAfee Products CVE-2017-4028 Local Code Injection Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97958
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-04-23
http://www.securityfocus.com/bid/97957
ImageMagick CVE-2017-7943 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97956
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-23
http://www.securityfocus.com/bid/97940
Pexip Infinity CVE-2017-6551 Remote Code Execution Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97954
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97955
Palo Alto Networks PAN-OS CVE-2017-7409 Cross Site Scripting Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97953
Nessus CVE-2017-7850 Local Privilege Escalation Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97952
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/95813
OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/75156
OpenSSL CVE-2015-1788 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/75158
OpenSSL CVE-2015-3195 Information Disclosure Vulnerability
2017-04-23
http://www.securityfocus.com/bid/78626
OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/73225
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/71937
FreeBSD CVE-2013-5209 Information Disclosure Vulnerability
2017-04-23
http://www.securityfocus.com/bid/61939
Dropbear SSH Server Use After Free Remote Code Execution Vulnerability
2017-04-23
http://www.securityfocus.com/bid/52159
OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2017-04-23
http://www.securityfocus.com/bid/71936
Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-04-23
http://www.securityfocus.com/bid/91869
OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-04-23
http://www.securityfocus.com/bid/95814
Nessus CVE-2017-7849 Local Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97951
Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97948
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-04-23
http://www.securityfocus.com/bid/97950
Apache Traffic Server CVE-2017-5659 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97949
Apache Traffic Server CVE-2016-5396 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97945
LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-23
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-23
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-23
http://www.securityfocus.com/bid/97944
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-23
http://www.securityfocus.com/bid/97942Multiple McAfee Products CVE-2017-4028 Local Code Injection Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97958
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97957
ImageMagick CVE-2017-7943 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97956
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97940
Pexip Infinity CVE-2017-6551 Remote Code Execution Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97954
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97955
Palo Alto Networks PAN-OS CVE-2017-7409 Cross Site Scripting Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97953
Nessus CVE-2017-7850 Local Privilege Escalation Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97952
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/95813
OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/75156
OpenSSL CVE-2015-1788 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/75158
OpenSSL CVE-2015-3195 Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/78626
OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/73225
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/71937
FreeBSD CVE-2013-5209 Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/61939
Dropbear SSH Server Use After Free Remote Code Execution Vulnerability
2017-04-22
http://www.securityfocus.com/bid/52159
OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2017-04-22
http://www.securityfocus.com/bid/71936
Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-04-22
http://www.securityfocus.com/bid/91869
OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/95814
Nessus CVE-2017-7849 Local Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97951
Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97948
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97950
Apache Traffic Server CVE-2017-5659 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97949
Apache Traffic Server CVE-2016-5396 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97945
LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-22
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-22
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97944
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97942Multiple McAfee Products CVE-2017-4028 Local Code Injection Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97958
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97957
ImageMagick CVE-2017-7943 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97956
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97940
Pexip Infinity CVE-2017-6551 Remote Code Execution Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97954
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97955
Palo Alto Networks PAN-OS CVE-2017-7409 Cross Site Scripting Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97953
Nessus CVE-2017-7850 Local Privilege Escalation Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97952
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/95813
OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/75156
OpenSSL CVE-2015-1788 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/75158
OpenSSL CVE-2015-3195 Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/78626
OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/73225
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/71937
FreeBSD CVE-2013-5209 Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/61939
Dropbear SSH Server Use After Free Remote Code Execution Vulnerability
2017-04-22
http://www.securityfocus.com/bid/52159
OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2017-04-22
http://www.securityfocus.com/bid/71936
Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-04-22
http://www.securityfocus.com/bid/91869
OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/95814
Nessus CVE-2017-7849 Local Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97951
Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97948
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97950
Apache Traffic Server CVE-2017-5659 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97949
Apache Traffic Server CVE-2016-5396 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97945
LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-22
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-22
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-22
http://www.securityfocus.com/bid/97944
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-22
http://www.securityfocus.com/bid/97942
SANS News
Threatpost
Mirai and Hajime Locked Into IoT Botnet Battle
Google Pleads for Better Cross-Border Exchange of Digital Evidence
Skype Fixes ‘SPYKE’ Credential Phishing Remote Execution Bug
Exploit
Linux/x86 - Egg-hunter Shellcode (18 bytes)
21.4.2017
Bugtraq
CVE-2017-7192: Starscream library before 2.0.4 allows SSL pinning bypass 2017-04-21
Security Advisories (security advisories centralway com)
[SECURITY] [DSA 3831-1] firefox-esr security update 2017-04-19
Moritz Muehlenhoff (jmm debian org)
[HITB-Announce] HITB GSEC 2017 CFP Closes April 30th 2017-04-19
Hafez Kamal (aphesz hackinthebox org)
October CMS v1.0.412 several vulnerabilities 2017-04-19
Anti Räis (antirais gmail com)
DefenseCode ThunderScan SAST Advisory: Ultimate Form Builder Cross-Site Scripting (XSS) Vulnerability 2017-04-19
DefenseCode (defensecode defensecode com)
CVE-2017-7220. OpenText Documentum Content Server: privilege evaluation using crafted RPC save-commands. 2017-04-19
Andrey B. Panfilov (andrew panfilov tel)
CVE-2017-7692: Squirrelmail 1.4.22 Remote Code Execution 2017-04-19
Filippo Cavallarin (filippo cavallarin wearesegment com)
[slackware-security] minicom (SSA:2017-108-01) 2017-04-19
Slackware Security Team (security slackware com)
Malware
Phishing
Tesco Bank | 21st April 2017 |
Chase | 21st April 2017 |
Dropbox team | 20th April 2017 |
AOL | 20th April 2017 |
Apple ID | 20th April 2017 |
HSBC | 20th April 2017 |
Vulnerebility
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97957
ImageMagick CVE-2017-7943 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97956
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97940
Pexip Infinity CVE-2017-6551 Remote Code Execution Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97954
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97955
Palo Alto Networks PAN-OS CVE-2017-7409 Cross Site Scripting Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97953
Nessus CVE-2017-7850 Local Privilege Escalation Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97952
OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/95813
OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/75156
OpenSSL CVE-2015-1788 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/75158
OpenSSL CVE-2015-3195 Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/78626
OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/73225
OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/71937
FreeBSD CVE-2013-5209 Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/61939
Dropbear SSH Server Use After Free Remote Code Execution Vulnerability
2017-04-21
http://www.securityfocus.com/bid/52159
OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2017-04-21
http://www.securityfocus.com/bid/71936
Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-04-21
http://www.securityfocus.com/bid/91869
OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/95814
Nessus CVE-2017-7849 Local Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97951
Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97948
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97950
Apache Traffic Server CVE-2017-5659 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97949
Apache Traffic Server CVE-2016-5396 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97945
LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-21
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-21
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97944
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97942
Drupal CVE-2017-6919 Access Bypass Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97941Mozilla Firefox Multiple Security Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97940
Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97948
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97950
Apache Traffic Server CVE-2017-5659 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97949
Apache Traffic Server CVE-2016-5396 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97945
LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-21
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-21
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97944
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97942
Drupal CVE-2017-6919 Access Bypass Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97941
Google Chrome Prior to 58.0.3029.81 Multiple Security Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97939
Trend Micro InterScan Messaging Security Virtual Appliance Cross Site Scripting Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97938
Cisco Adaptive Security Appliance (ASA) Software CVE-2017-6608 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97937
Cisco ASA Software CVE-2017-6609 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97936
Cisco ASA Software CVE-2017-6610 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97934
Cisco IOS and IOS XE Software Multiple Denial of Service Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97935
Cisco Adaptive Security Appliance (ASA) Software CVE-2017-6607 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97933
OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/93153
OpenSSL CVE-2016-6304 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/93150
OpenSSL CVE-2016-6305 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/93149
OpenSSL 'BN_bn2dec()' Function Out of Bounds Write Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92557
OpenSSL CVE-2016-6302 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92628
SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92630
OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/92987
OpenSSL CVE-2016-2181 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92982
OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92117
Cisco Firepower System Software CVE-2016-6368 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97932
Cisco IOS XE Software CVE-2017-6615 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97930LibYAML and Perl YAML-LibYAML Module 'scanner.c' Remote Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/71349
LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2017-04-21
http://www.securityfocus.com/bid/66478
LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2017-04-21
http://www.securityfocus.com/bid/65258
ImageMagick CVE-2017-7942 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97946
ImageMagick CVE-2017-7941 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97944
Mozilla Firefox Multiple Security Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97940
Splunk Enterprise and Lite Multiple Cross Site Scripting Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97942
Drupal CVE-2017-6919 Access Bypass Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97941
Google Chrome Prior to 58.0.3029.81 Multiple Security Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97939
Trend Micro InterScan Messaging Security Virtual Appliance Cross Site Scripting Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97938
Cisco Adaptive Security Appliance (ASA) Software CVE-2017-6608 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97937
Cisco ASA Software CVE-2017-6609 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97936
Cisco ASA Software CVE-2017-6610 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97934
Cisco IOS and IOS XE Software Multiple Denial of Service Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/97935
Cisco Adaptive Security Appliance (ASA) Software CVE-2017-6607 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97933
OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/93153
OpenSSL CVE-2016-6304 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/93150
OpenSSL CVE-2016-6305 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/93149
OpenSSL 'BN_bn2dec()' Function Out of Bounds Write Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92557
OpenSSL CVE-2016-6302 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92628
SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92630
OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-04-21
http://www.securityfocus.com/bid/92987
OpenSSL CVE-2016-2181 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92982
OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/92117
Cisco Firepower System Software CVE-2016-6368 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97932
Cisco IOS XE Software CVE-2017-6615 Denial of Service Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97930
Cisco Prime Infrastructure CVE-2017-6611 Cross Site Scripting Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97931
Cisco Integrated Management Controller CVE-2017-6616 Remote Code Execution Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97928
Cisco Integrated Management Controller CVE-2017-6617 Session Hijacking Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97929
Cisco Integrated Management Controller CVE-2017-6618 Cross Site Scripting Vulnerability
2017-04-21
http://www.securityfocus.com/bid/97927
SANS News
Analysis of a Maldoc with Multiple Layers of Obfuscation
Threatpost
Stuxnet LNK Exploits Still Widely Circulated
20 Linksys Router Models Vulnerable To Attack
Google Fixes Unicode Phishing Vulnerability in Chrome 58, Firefox Standing Pat
Exploit
Microsoft Windows - ManagementObject Arbitrary .NET Serialization Remote Code...
Microsoft Windows 10 - Runtime Broker ClipboardBroker Privilege Escalation
Microsoft Windows 10 10586 - IEETWCollector Arbitrary Directory/File Deletion...
Apple WebKit / Safari 10.0.2(12602.3.12.0.1) - 'PrototypeMap::createEmptyStructure'...
Apple WebKit / Safari 10.0.2(12602.3.12.0.1) - 'operationSpreadGeneric' Universal...
VirtualBox 5.0.32 r112930 x64 - Windows Process COM Injection Privilege Escalation
VirtualBox - Guest-to-Host Privilege Escalation via Broken Length Handling in slirp...
VirtualBox 5.1.14 r112924 - Unprivileged Host User to Host Kernel Privilege...
VirtualBox - Environment and ioctl Unprivileged Host User to Host Kernel Privilege...
VirtualBox - 'virtio-net' Guest-to-Host Out-of-Bounds Write
20.4.2017
Bugtraq
[SECURITY] [DSA 3831-1] firefox-esr security update 2017-04-19
Moritz Muehlenhoff (jmm debian org)
[HITB-Announce] HITB GSEC 2017 CFP Closes April 30th 2017-04-19
Hafez Kamal (aphesz hackinthebox org)
October CMS v1.0.412 several vulnerabilities 2017-04-19
Anti Räis (antirais gmail com)
DefenseCode ThunderScan SAST Advisory: Ultimate Form Builder Cross-Site Scripting (XSS) Vulnerability 2017-04-19
DefenseCode (defensecode defensecode com)
CVE-2017-7220. OpenText Documentum Content Server: privilege evaluation using crafted RPC save-commands. 2017-04-19
Andrey B. Panfilov (andrew panfilov tel)
CVE-2017-7692: Squirrelmail 1.4.22 Remote Code Execution 2017-04-19
Filippo Cavallarin (filippo cavallarin wearesegment com)
[slackware-security] minicom (SSA:2017-108-01) 2017-04-19
Slackware Security Team (security slackware com)
CVE-2017-7615 Mantis Bug Tracker v1.3.0 / 2.3.0 Pre-Auth Remote Password Reset 2017-04-18
apparitionsec gmail com (hyp3rlinx)
[CVE-2017-5661] Apache XML Graphics FOP information disclosure vulnerability 2017-04-18
Simon Steiner (simonsteiner1984 gmail com)
[ANNOUNCE] HPACK Bomb Attack vulnerability in ATS - CVE-2016-5396 2017-04-17
Bryan Call (bcall apache org)
Malware
Phishing
HSBC | 20th April 2017 |
Vulnerebility
VMware Workstation and Horizon Client CVE-2017-4913 Integer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97920
OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93152
VMware Workstation and Horizon View Client CVE-2017-4912 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97921
IBM Cognos TM1 CVE-2016-3036 Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97918
VMware Workstation and Horizon View Client CVE-2017-4911 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97916
IBM Cognos TM1 CVE-2016-3037 Information Disclosure Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97917
IBM Cognos TM1 CVE-2016-3038 Cross Site Scripting Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97915
VMware Unified Access Gateway and Horizon View Heap Based Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97914
VMware Workstation and Horizon View Client CVE-2017-4910 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97913
OpenSSL CVE-2016-6308 Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93151
YUI 'SWF' File Multiple Cross-Site Scripting Vulnerabilities
2017-04-20
http://www.securityfocus.com/bid/56385
VMware Workstation and Horizon View Client CVE-2016-4908 Heap Based Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97912
VMware Workstation and Horizon View Client CVE-2016-4909 Heap Based Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97911
Apache Struts CVE-2017-5638 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/96729
XStream CVE-2016-3674 XML External Entity Multiple Information Disclosure Vulnerabilities
2017-04-20
http://www.securityfocus.com/bid/85381
PHP 'zip_stream.c' Integer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92099
PHP '/xmlrpc/libxmlrpc/simplestring.c' Heap Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92095
Apache MyFaces Trinidad CVE-2016-5019 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93236
PHP 'snmp.c' Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92094
PHP CVE-2016-6294 Local Information Disclosure Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92115
PHP 'exif.c' NULL Pointer Dereference Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92078
OpenSSL CVE-2016-6309 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93177
PHP 'exif_process_IFD_in_MAKERNOTE' Out of Bounds Read Information Disclosure Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92073
PHP 'zend_virtual_cwd.c' Integer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92074
PHP 'php_url_prase_ex()' Function Memory Corruption Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92111
PHP 'session.c' Use After Free Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92097
Oracle VM VirtualBox CVE-2017-3538 Local Security Bypass Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97698
Apache Struts CVE-2016-4436 Security Bypass Vulnerability
2017-04-20
http://www.securityfocus.com/bid/91280
Apache Tomcat CVE-2016-8735 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/94463
BeanShell CVE-2016-2510 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/84139
VMware Workstation and Horizon Client CVE-2017-4913 Integer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97920
OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93152
VMware Workstation and Horizon View Client CVE-2017-4912 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97921
IBM Cognos TM1 CVE-2016-3036 Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97918
VMware Workstation and Horizon View Client CVE-2017-4911 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97916
IBM Cognos TM1 CVE-2016-3037 Information Disclosure Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97917
IBM Cognos TM1 CVE-2016-3038 Cross Site Scripting Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97915
VMware Unified Access Gateway and Horizon View Heap Based Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97914
VMware Workstation and Horizon View Client CVE-2017-4910 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97913
OpenSSL CVE-2016-6308 Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93151
YUI 'SWF' File Multiple Cross-Site Scripting Vulnerabilities
2017-04-20
http://www.securityfocus.com/bid/56385
VMware Workstation and Horizon View Client CVE-2016-4908 Heap Based Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97912
VMware Workstation and Horizon View Client CVE-2016-4909 Heap Based Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97911
Apache Struts CVE-2017-5638 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/96729
XStream CVE-2016-3674 XML External Entity Multiple Information Disclosure Vulnerabilities
2017-04-20
http://www.securityfocus.com/bid/85381
PHP 'zip_stream.c' Integer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92099
PHP '/xmlrpc/libxmlrpc/simplestring.c' Heap Buffer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92095
Apache MyFaces Trinidad CVE-2016-5019 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93236
PHP 'snmp.c' Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92094
PHP CVE-2016-6294 Local Information Disclosure Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92115
PHP 'exif.c' NULL Pointer Dereference Denial of Service Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92078
OpenSSL CVE-2016-6309 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/93177
PHP 'exif_process_IFD_in_MAKERNOTE' Out of Bounds Read Information Disclosure Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92073
PHP 'zend_virtual_cwd.c' Integer Overflow Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92074
PHP 'php_url_prase_ex()' Function Memory Corruption Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92111
PHP 'session.c' Use After Free Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/92097
Oracle VM VirtualBox CVE-2017-3538 Local Security Bypass Vulnerability
2017-04-20
http://www.securityfocus.com/bid/97698
Apache Struts CVE-2016-4436 Security Bypass Vulnerability
2017-04-20
http://www.securityfocus.com/bid/91280
Apache Tomcat CVE-2016-8735 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/94463
BeanShell CVE-2016-2510 Remote Code Execution Vulnerability
2017-04-20
http://www.securityfocus.com/bid/84139
SANS News
DNS Query Length... Because Size Does Matter
Threatpost
Facebook Delegated Account Recovery SDKs Published for Java, Ruby Apps
IHG Confirms Second Credit Card Breach Impacting 1,000-Plus Hotels
Patched Flaw in Bosch Diagnostic Dongle Allowed Researchers to Shut Off Engine
Microsoft Touts New Phone-Based Login Mechanism
Exploit
Huawei HG532n - Command Injection (Metasploit)
19.4.2017
Bugtraq
DefenseCode ThunderScan SAST Advisory: Ultimate Form Builder Cross-Site Scripting (XSS) Vulnerability 2017-04-19
DefenseCode (defensecode defensecode com)
CVE-2017-7220. OpenText Documentum Content Server: privilege evaluation using crafted RPC save-commands. 2017-04-19
Andrey B. Panfilov (andrew panfilov tel)
CVE-2017-7692: Squirrelmail 1.4.22 Remote Code Execution 2017-04-19
Filippo Cavallarin (filippo cavallarin wearesegment com)
[slackware-security] minicom (SSA:2017-108-01) 2017-04-19
Slackware Security Team (security slackware com)
CVE-2017-7615 Mantis Bug Tracker v1.3.0 / 2.3.0 Pre-Auth Remote Password Reset 2017-04-18
apparitionsec gmail com (hyp3rlinx)
[CVE-2017-5661] Apache XML Graphics FOP information disclosure vulnerability 2017-04-18
Simon Steiner (simonsteiner1984 gmail com)
[ANNOUNCE] HPACK Bomb Attack vulnerability in ATS - CVE-2016-5396 2017-04-17
Bryan Call (bcall apache org)
Watchguard Fireware XXE DoS & User Enumeration 2017-04-17
David Fernandez (david fdmv gmail com)
Malware
TrojanDownloader:Win32/Adload.DO
Phishing
Vulnerebility
Bouncy Castle CVE-2015-7940 Information Disclosure Vulnerability
2017-04-19
http://www.securityfocus.com/bid/79091
OpenSSL CMS CVE-2015-1792 Denial of Service Vulnerability
2017-04-19
http://www.securityfocus.com/bid/75154
Apache Tomcat CVE-2016-6817 Denial of Service Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94462
Apache Tomcat CVE-2016-6816 Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94461
Apache Tomcat CVE-2016-6797 Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/93940
Apache Tomcat Security Manager CVE-2016-6796 Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/93944
Apache Tomcat CVE-2016-6794 Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/93943
Apache Tomcat Security Manager CVE-2016-5018 Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/93942
X.Org libXt CVE-2013-2005 Multiple Memory Corruption Vulnerabilities
2017-04-19
http://www.securityfocus.com/bid/60133
X.Org libXcursor '_XcursorFileHeaderCreate()' Function Remote Code Execution Vulnerability
2017-04-19
http://www.securityfocus.com/bid/60121
X.Org libXt '_XtResourceConfigurationEH()' Function Remote Code Execution Vulnerability
2017-04-19
http://www.securityfocus.com/bid/60137
X.Org libXi CVE-2013-1998 Multiple Remote Code Execution Vulnerabilities
2017-04-19
http://www.securityfocus.com/bid/60127
X.Org libXrender CVE-2013-1987 Multiple Remote Code Execution Vulnerabilities
2017-04-19
http://www.securityfocus.com/bid/60132
X.Org libXi 'XListInputDevices()' Memory Corruption Vulnerability
2017-04-19
http://www.securityfocus.com/bid/60124
cURL CVE-2016-8620 Remote Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94102
cURL CVE-2016-8619 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94100
cURL/libcURL CVE-2016-8617 Remote Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94097
cURL/libcURL CVE-2016-8618 Remote Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94098
cURL/libcURL CVE-2016-8616 Remote Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94094
cURL/libcURL CVE-2016-8615 Cookie Injection Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94096
cURL/libcurl CVE-2016-5421 Local Use After Free Denial of Service Vulnerability
2017-04-19
http://www.securityfocus.com/bid/92306
cURL/libcURL CVE-2016-5420 Certificate Validation Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/92309
cURL/libcURL CVE-2016-5419 Remote Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/92292
cURL CVE-2016-4802 DLL Loading Local Code Execution Vulnerability
2017-04-19
http://www.securityfocus.com/bid/90997
IETF RFC 3279 X.509 Certificate MD5 Signature Collision Vulnerability
2017-04-19
http://www.securityfocus.com/bid/33065
Samba CVE-2015-5252 Symlink Vulnerability
2017-04-19
http://www.securityfocus.com/bid/79733
MariaDB and MySQL CVE-2017-3302 Denial of Service Vulnerability
2017-04-19
http://www.securityfocus.com/bid/96162
MySQL CVE-2017-3305 Man in the Middle Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97023
OpenSSL CVE-2017-3730 NULL Pointer Dereference Denial of Service Vulnerability
2017-04-19
http://www.securityfocus.com/bid/95812
cURL/libcURL CVE-2016-8625 Remote Security Bypass Vulnerability
2017-04-19
http://www.securityfocus.com/bid/94107Oracle WebCenter Sites CVE-2017-3541 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97809
Oracle PeopleSoft Enterprise SCM eBill Payment CVE-2017-3571 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97909
Oracle PeopleSoft Enterprise PeopleTools CVE-2017-3520 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97908
Oracle WebCenter Sites CVE-2017-3602 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97823
Oracle WebCenter Sites CVE-2017-3598 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97905
Oracle PeopleSoft Enterprise FSCM CVE-2017-3570 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97906
Oracle WebCenter Sites CVE-2017-3603 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97907
Oracle PeopleSoft Enterprise CS Campus Community CVE-2017-3577 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97903
Oracle WebCenter Sites CVE-2017-3597 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97904
Oracle PeopleSoft Enterprise SCM Strategic Sourcing CVE-2017-3524 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97902
Oracle WebCenter Sites CVE-2017-3594 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97901
Oracle PeopleSoft Enterprise PeopleTools CVE-2017-3536 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97898
Oracle WebCenter Sites CVE-2017-3591 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97899
Oracle GlassFish Server CVE-2017-3626 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97896
Oracle PeopleSoft Enterprise FIN Receivables CVE-2017-3502 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97897
Oracle Primavera Unifier CVE-2017-3501 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97895
Oracle Primavera Products CVE-2017-3583 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97893
Oracle WebLogic Server CVE-2017-3531 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97894
Oracle PeopleSoft Enterprise PeopleTools CVE-2017-3547 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97892
Oracle Primavera Products CVE-2017-3503 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97891
Oracle Service Bus CVE-2017-3507 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97888
Oracle PeopleSoft Enterprise SCM eSupplier Connection CVE-2017-3522 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97890
Oracle Primavera Products CVE-2017-3508 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97889
Oracle Primavera Products CVE-2017-3579 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97886
Oracle PeopleSoft Enterprise PeopleTools CVE-2017-3519 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97885
Oracle WebCenter Sites CVE-2017-3595 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97887
Linux Kernel CVE-2015-8104 Denial of Service Vulnerability
2017-04-19
http://www.securityfocus.com/bid/77524
Oracle PeopleSoft Enterprise SCM Service Procurement CVE-2017-3525 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97882
Oracle Primavera Gateway CVE-2017-3508 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97883
Oracle WebLogic Server CVE-2017-3506 Remote Security Vulnerability
2017-04-19
http://www.securityfocus.com/bid/97884
SANS News
Hunting for Malicious Excel Sheets
Threatpost
Low-Cost Ransomware Service Discovered
Facebook Delegated Account Recovery SDKs Published for Java, Ruby Apps
IHG Confirms Second Credit Card Breach Impacting 1,000-Plus Hotels
Exploit
Microsoft Word - .RTF Remote Code Execution
Huawei HG532n - Command Injection (Metasploit)
Tenable Appliance < 4.5 - Unauthenticated Remote Root Code Execution
pinfo 0.6.9 - Local Buffer Overflow
18.4.2017
Bugtraq
CVE-2017-7615 Mantis Bug Tracker v1.3.0 / 2.3.0 Pre-Auth Remote Password Reset 2017-04-18
apparitionsec gmail com (hyp3rlinx)
[CVE-2017-5661] Apache XML Graphics FOP information disclosure vulnerability 2017-04-18
Simon Steiner (simonsteiner1984 gmail com)
[ANNOUNCE] HPACK Bomb Attack vulnerability in ATS - CVE-2016-5396 2017-04-17
Bryan Call (bcall apache org)
Watchguard Fireware XXE DoS & User Enumeration 2017-04-17
David Fernandez (david fdmv gmail com)
concrete5 v8.1.0 Host Header Injection 2017-04-14
apparitionsec gmail com (hyp3rlinx)
Malware
Phishing
National Westminster Bank | 17th April 2017 |
Vulnerebility
MantisBT CVE-2017-7615 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97707
SourceBans++ sourcebans-pp CVE-2017-7891 Cross Site Scripting Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97710
ASSETBASE CVE-2017-2134 Cross Site Scripting Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97708
HP Vertica Analytics Platform CVE-2017-5802 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97706
Huawei Honor 6X CVE-2017-2733 Local Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97700
Multiple Samsung Galaxy Products CVE-2016-4031 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97703
Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97702
Multiple Samsung Galaxy Products CVE-2016-4030 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97701
Axis Network Cameras CVE-2015-8256 HTML Injection and Cross Site Scripting vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97699
Huawei Smart Phones Multiple Local Buffer Overflow Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97696
Oracle VM VirtualBox CVE-2017-3538 Local Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97698
Multiple Toshiba memory card installers DLL Loading Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97697
Asterisk Open Source and Certified Asterisk RTP Resource Exhaustion Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92888
Google gRPC CVE-2017-7861 Heap Based Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97694
PostgreSQL CVE-2016-5424 Multiple Local Privilege Escalation Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/92435
PostgreSQL CVE-2016-5423 NULL Pointer Dereference Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92433
Google gRPC CVE-2017-7860 Heap Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97695
Juniper NorthStar Controller Application CVE-2017-2321 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97693
Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97690
Juniper NorthStar Controller Application CVE-2017-2326 Local Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97691
Philips In.Sight CVE-2015-2884 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97683
python-pysaml2 CVE-2016-10149 XML Entity Expansion Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97692
ISC BIND CVE-2016-2775 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92037
ISC BIND CVE-2016-6170 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/91611
Juniper NorthStar Controller Application CVE-2017-2320 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97687
Quest Privilege Manager CVE-2017-6554 Arbitrary File Overwrite Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97686
Ubuntu AppArmor CVE-2017-6507 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97223
Schneider Electric Modicon CVE-2017-7575 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97523
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/96732
Schneider Electric SoMachine and Modicon CVE-2017-7574 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97518Oracle April 2017 Critical Patch Update Multiple Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97655
WordPress Spider Event Calendar Plugin CVE-2017-7719 Multiple SQL Injection Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97656
Samsung SecEmailSync CVE-2016-2565 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97658
Samsung SecEmailSync CVE-2016-2566 SQL Injection Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97654
Drupal Book access Module Unspecified Security Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97645
ISC BIND CVE-2017-3136 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97653
ISC BIND CVE-2017-3138 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97657
Juniper NorthStar Controller Application CVE-2017-2319 Authentication Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97659
ISC BIND CVE-2017-3137 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97651
Multiple Samsung Galaxy Products CVE-2016-4032 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97650
Drupal References Module Unspecified Security Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97643
Drupal Media Module Unspecified Security Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97647
GNU oSIP 'osipparser2/osip_message_parse.c' Heap Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97644
Drupal Open Atrium Module Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97646
radare2 '/format/wasm/wasm.c' Heap Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97648
Red Hat 389-ds-base CVE-2017-2668 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97524
Linux kernel Local Use After Free Multiple Denial of Service Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/94135
Apache Tomcat CVE-2016-6816 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/94461
Apache Tomcat CVE-2016-8745 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/94828
Magento CMS 'RetrieveImage.php' Arbitrary File Upload Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97642
LibreOffice CVE-2017-3157 Local Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/96402
Adobe Flash Player APSB17-10 Multiple Memory Corruption Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97557
Adobe Flash Player APSB17-10 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97551
Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/95077
Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2017-04-18
http://www.securityfocus.com/bid/95078
Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/95076
Libosip Multiple Denial of Service Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/92921
GNU oSIP CVE-2016-10324 Heap Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97641
Drupal Legal Module Unspecified Security Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97640
Wireshark 'dissectors/packet-packetbb.c' Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97638Huawei Honor 6X CVE-2017-2733 Local Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97700
Multiple Samsung Galaxy Products CVE-2016-4031 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97703
Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97702
Multiple Samsung Galaxy Products CVE-2016-4030 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97701
Axis Network Cameras CVE-2015-8256 HTML Injection and Cross Site Scripting vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97699
Huawei Smart Phones Multiple Local Buffer Overflow Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97696
Oracle VM VirtualBox CVE-2017-3538 Local Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97698
Multiple Toshiba memory card installers DLL Loading Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97697
Asterisk Open Source and Certified Asterisk RTP Resource Exhaustion Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92888
Google gRPC CVE-2017-7861 Heap Based Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97694
PostgreSQL CVE-2016-5424 Multiple Local Privilege Escalation Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/92435
PostgreSQL CVE-2016-5423 NULL Pointer Dereference Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92433
Google gRPC CVE-2017-7860 Heap Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97695
Juniper NorthStar Controller Application CVE-2017-2321 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97693
Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97690
Juniper NorthStar Controller Application CVE-2017-2326 Local Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97691
Philips In.Sight CVE-2015-2884 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97683
python-pysaml2 CVE-2016-10149 XML Entity Expansion Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97692
ISC BIND CVE-2016-2775 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92037
ISC BIND CVE-2016-6170 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/91611
Juniper NorthStar Controller Application CVE-2017-2320 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97687
Quest Privilege Manager CVE-2017-6554 Arbitrary File Overwrite Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97686
Ubuntu AppArmor CVE-2017-6507 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97223
Schneider Electric Modicon CVE-2017-7575 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97523
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/96732
Schneider Electric SoMachine and Modicon CVE-2017-7574 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97518
Linux kernel Local Use After Free Multiple Denial of Service Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/94135
Dovecot CVE-2017-2669 Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97536
Apple macOS APPLE-SA-2017-03-27-3 Multiple Security Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97140
WebKit CVE-2017-2415 Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97143Huawei Honor 6X CVE-2017-2733 Local Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97700
Multiple Samsung Galaxy Products CVE-2016-4031 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97703
Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97702
Multiple Samsung Galaxy Products CVE-2016-4030 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97701
Axis Network Cameras CVE-2015-8256 HTML Injection and Cross Site Scripting vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97699
Huawei Smart Phones Multiple Local Buffer Overflow Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97696
Oracle VM VirtualBox CVE-2017-3538 Local Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97698
Multiple Toshiba memory card installers DLL Loading Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97697
Asterisk Open Source and Certified Asterisk RTP Resource Exhaustion Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92888
Google gRPC CVE-2017-7861 Heap Based Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97694
PostgreSQL CVE-2016-5424 Multiple Local Privilege Escalation Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/92435
PostgreSQL CVE-2016-5423 NULL Pointer Dereference Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92433
Google gRPC CVE-2017-7860 Heap Buffer Overflow Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97695
Juniper NorthStar Controller Application CVE-2017-2321 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97693
Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97690
Juniper NorthStar Controller Application CVE-2017-2326 Local Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97691
Philips In.Sight CVE-2015-2884 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97683
python-pysaml2 CVE-2016-10149 XML Entity Expansion Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97692
ISC BIND CVE-2016-2775 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/92037
ISC BIND CVE-2016-6170 Remote Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/91611
Juniper NorthStar Controller Application CVE-2017-2320 Remote Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97687
Quest Privilege Manager CVE-2017-6554 Arbitrary File Overwrite Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97686
Ubuntu AppArmor CVE-2017-6507 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97223
Schneider Electric Modicon CVE-2017-7575 Information Disclosure Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97523
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-18
http://www.securityfocus.com/bid/96732
Schneider Electric SoMachine and Modicon CVE-2017-7574 Security Bypass Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97518
Linux kernel Local Use After Free Multiple Denial of Service Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/94135
Dovecot CVE-2017-2669 Denial of Service Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97536
Apple macOS APPLE-SA-2017-03-27-3 Multiple Security Vulnerabilities
2017-04-18
http://www.securityfocus.com/bid/97140
WebKit CVE-2017-2415 Remote Code Execution Vulnerability
2017-04-18
http://www.securityfocus.com/bid/97143
SANS News
Threatpost
VMware Fixes Critical RCE in vCenter Server
ShadowBrokers’ Windows Zero-Days Already Patched
Wave of Java-Based RATs Target Tax Filers
Exploit
Microsoft Windows - Uncredentialed SMB RCE (MS17-010) (Metasploit)
Mantis Bug Tracker 1.3.0/2.3.0 - Password Reset
WinSCP 5.9.4 - 'LIST' Denial of Service (Metasploit)
17.4.2017
Bugtraq
Watchguard Fireware XXE DoS & User Enumeration 2017-04-17
David Fernandez (david fdmv gmail com)
concrete5 v8.1.0 Host Header Injection 2017-04-14
apparitionsec gmail com (hyp3rlinx)
[slackware-security] bind (SSA:2017-103-01) 2017-04-13
Slackware Security Team (security slackware com)
Malware
Phishing
Apple ID | 15th April 2017 |
FEDERAL BUREAU OF INVESTIGATIO | 14th April 2017 |
Vulnerebility
LibreOffice CVE-2017-7870 Heap Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97671
IBM API Connect CVE-2017-1161 Command Execution Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97665
Juniper NorthStar Controller Application CVE-2017-2318 Remote Privilege Escalation Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97660
IBM Marketing Platform CVE-2016-0228 Open Redirect Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97670
Bitrix CVE-2015-8356 Multiple SQL Injection Vulnerabilities
2017-04-17
http://www.securityfocus.com/bid/97669
Multiple IBM Products CVE-2017-1160 Multiple Cross Site Scripting Vulnerabilities
2017-04-17
http://www.securityfocus.com/bid/97666
LibreOffice CVE-2016-10327 Heap Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97668
FFmpeg CVE-2017-7859 Heap Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97663
LibreOffice CVE-2017-7856 Heap Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97667
Apache Flex BlazeDS CVE-2017-5641 Remote Code Execution Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97383
FFmpeg CVE-2017-7866 Stack Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97664
ISC BIND CVE-2017-3137 Remote Denial of Service Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97651
Google Android CVE-2016-1155 HTTP Header Injection Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97662
Juniper NorthStar Controller Application CVE-2017-2317 Unspecified Denial of Service Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97652
SAP Business Intelligence CVE-2016-6818 SQL Injection Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97661
Concrete5 CVE-2017-7725 HTML Injection Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97649
Oracle April 2017 Critical Patch Update Multiple Vulnerabilities
2017-04-17
http://www.securityfocus.com/bid/97655
WordPress Spider Event Calendar Plugin CVE-2017-7719 Multiple SQL Injection Vulnerabilities
2017-04-17
http://www.securityfocus.com/bid/97656
Samsung SecEmailSync CVE-2016-2565 Information Disclosure Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97658
Samsung SecEmailSync CVE-2016-2566 SQL Injection Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97654
Drupal Book access Module Unspecified Security Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97645
ISC BIND CVE-2017-3136 Remote Denial of Service Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97653
ISC BIND CVE-2017-3138 Remote Denial of Service Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97657
Juniper NorthStar Controller Application CVE-2017-2319 Authentication Bypass Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97659
Multiple Samsung Galaxy Products CVE-2016-4032 Security Bypass Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97650
Drupal References Module Unspecified Security Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97643
Drupal Media Module Unspecified Security Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97647
GNU oSIP 'osipparser2/osip_message_parse.c' Heap Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97644
Drupal Open Atrium Module Information Disclosure Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97646
radare2 '/format/wasm/wasm.c' Heap Buffer Overflow Vulnerability
2017-04-17
http://www.securityfocus.com/bid/97648
SANS News
Detecting SMB Covert Channel ("Double Pulsar")
Threatpost
Exploit
VirusChaser 8.0 - Buffer Overflow (SEH)
Mantis Bug Tracker 1.3.0/2.3.0 - Password Reset
WinSCP 5.9.4 - 'LIST' Denial of Service (Metasploit)
16.4.2017
Bugtraq
concrete5 v8.1.0 Host Header Injection 2017-04-14
apparitionsec gmail com (hyp3rlinx)
[slackware-security] bind (SSA:2017-103-01) 2017-04-13
Slackware Security Team (security slackware com)
[security bulletin] HPESBGN03728 rev.1 - HPE Operations Agent using OpenSSL, Remote Denial of Service (DoS), Unauthorized Access to Data 2017-04-13
security-alert hpe com
[SYSS-2017-009] agorum core Pro - Improper Restriction of XML External Entity Reference ('XXE') 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-008] agorum core Pro - Cross-Site Request Forgery 2017-04-13
erlijn vangenuchten syss de
Malware
TrojanDownloader:Win32/Rivit.A!dha
Phishing
FEDERAL BUREAU OF INVESTIGATIO | 14th April 2017 |
Apple | 14th April 2017 |
Chase | 13th April 2017 |
O2 | 13th April 2017 |
RECEIVE YOUR O2 BILL IS READY | |
Vulnerebility
QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2017-04-15
http://www.securityfocus.com/bid/74640
QEMU AMD PCnet Ethernet Emulation Heap Based Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/75123
ISC BIND CVE-2015-5477 Remote Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/76092
Node.js CVE-2013-4450 Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/63229
ISC BIND 'isselfsigned()' Function Remote Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/75588
Juniper NorthStar Controller Application CVE-2017-2334 Security Bypass Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97616
Juniper Junos CVE-2017-2312 Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97611
Juniper NorthStar Controller Application CVE-2017-2329 Local Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97614
Juniper Junos CVE-2017-2340 Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97607
Adobe Flash Player APSB17-10 Multiple Memory Corruption Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/97557
Adobe Flash Player APSB17-10 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/97551
util-linux CVE-2017-2616 Local Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/96404
Red Hat CloudForms Management App CVE-2017-2653 Security Bypass Vulnerability
2017-04-15
http://www.securityfocus.com/bid/96964
Juniper NorthStar Controller Application CVE-2017-2333 Unspecified Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97608
Trend Micro Threat Discovery Appliance CVE-2016-7547 Command Execution Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97610
Red Hat 389-ds-base CVE-2017-2668 Remote Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97524
Juniper Junos CVE-2017-2313 Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97606
Juniper NorthStar Controller Application CVE-2017-2327 Local Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97609
Red Hat JBoss Enterprise Application Platform CVE-2017-7465 Remote Code Injection Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97605
Linux Kernel 'selinux/hooks.c' Local Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/96272
Linux Kernel CVE-2016-8650 Null Pointer Deference Local Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/94532
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-15
http://www.securityfocus.com/bid/96732
Fortinet FortiWLC-SD CVE-2017-3134 Privilege Escalation Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97603
Juniper NorthStar Controller Application CVE-2017-2324 Unspecified Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97604
Linux Kernel CVE-2017-6074 Local Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/96310
Linux kernel Local Use After Free Multiple Denial of Service Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/94135
Google Android Bouncy Castle CVE-2015-6644 Information Disclosure Vulnerability
2017-04-15
http://www.securityfocus.com/bid/79865
QEMU 'hw/usb/hcd-ohci.c' Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/96611
Xen 'memory_exchange()' Function Incomplete Fix Privilege Escalation Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97375
Dovecot CVE-2017-2669 Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97536LibreOffice CVE-2017-7870 Heap Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97671
IBM API Connect CVE-2017-1161 Command Execution Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97665
Juniper NorthStar Controller Application CVE-2017-2318 Remote Privilege Escalation Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97660
IBM Marketing Platform CVE-2016-0228 Open Redirect Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97670
Bitrix CVE-2015-8356 Multiple SQL Injection Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/97669
Multiple IBM Products CVE-2017-1160 Multiple Cross Site Scripting Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/97666
LibreOffice CVE-2016-10327 Heap Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97668
FFmpeg CVE-2017-7859 Heap Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97663
LibreOffice CVE-2017-7856 Heap Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97667
Apache Flex BlazeDS CVE-2017-5641 Remote Code Execution Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97383
FFmpeg CVE-2017-7866 Stack Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97664
ISC BIND CVE-2017-3137 Remote Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97651
Google Android CVE-2016-1155 HTTP Header Injection Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97662
Juniper NorthStar Controller Application CVE-2017-2317 Unspecified Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97652
SAP Business Intelligence CVE-2016-6818 SQL Injection Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97661
Concrete5 CVE-2017-7725 HTML Injection Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97649
Oracle April 2017 Critical Patch Update Multiple Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/97655
WordPress Spider Event Calendar Plugin CVE-2017-7719 Multiple SQL Injection Vulnerabilities
2017-04-15
http://www.securityfocus.com/bid/97656
Samsung SecEmailSync CVE-2016-2565 Information Disclosure Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97658
Samsung SecEmailSync CVE-2016-2566 SQL Injection Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97654
Drupal Book access Module Unspecified Security Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97645
ISC BIND CVE-2017-3136 Remote Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97653
ISC BIND CVE-2017-3138 Remote Denial of Service Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97657
Juniper NorthStar Controller Application CVE-2017-2319 Authentication Bypass Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97659
Multiple Samsung Galaxy Products CVE-2016-4032 Security Bypass Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97650
Drupal References Module Unspecified Security Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97643
Drupal Media Module Unspecified Security Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97647
GNU oSIP 'osipparser2/osip_message_parse.c' Heap Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97644
Drupal Open Atrium Module Information Disclosure Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97646
radare2 '/format/wasm/wasm.c' Heap Buffer Overflow Vulnerability
2017-04-15
http://www.securityfocus.com/bid/97648
SANS News
ETERNALBLUE: Confirmed Unpatched Window SMBv1 Exploit
Threatpost
Stories From Two Years in an IoT Honeypot
Google Making Life Difficult for Ransomware to Thrive on Android
Exploit
Concrete5 8.1.0 - 'Host' Header Injection
Linux Kernel 4.8.0 UDEV < 232 - Privilege Escalation
14.4.2017
Bugtraq
concrete5 v8.1.0 Host Header Injection 2017-04-14
apparitionsec gmail com (hyp3rlinx)
[slackware-security] bind (SSA:2017-103-01) 2017-04-13
Slackware Security Team (security slackware com)
[security bulletin] HPESBGN03728 rev.1 - HPE Operations Agent using OpenSSL, Remote Denial of Service (DoS), Unauthorized Access to Data 2017-04-13
security-alert hpe com
[SYSS-2017-009] agorum core Pro - Improper Restriction of XML External Entity Reference ('XXE') 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-008] agorum core Pro - Cross-Site Request Forgery 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-007] agorum core Pro - Cross-Site Scripting 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-006] agorum core Pro - Insecure Direct Object Reference 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-005] agorum core Pro - Persistent Cross-Site Scripting 2017-04-13
erlijn vangenuchten syss de
April 2017 - HipChat Server Advisory 2017-04-13
Matthew Hart (mhart atlassian com)
Malware
Phishing
Apple | 14th April 2017 |
Chase | 13th April 2017 |
O2 | 13th April 2017 |
RECEIVE YOUR O2 BILL IS READY | |
Vulnerebility
Libosip Multiple Denial of Service Vulnerabilities
2017-04-14
http://www.securityfocus.com/bid/92921
Drupal Legal Module Unspecified Security Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97640
Wireshark 'dissectors/packet-packetbb.c' Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97638
Wecon Technologies LEVI Studio HMI Editor Multiple Security Vulnerabilities
2017-04-14
http://www.securityfocus.com/bid/97639
Wireshark WBXML Dissector 'packet-wbxml.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97633
Drupal Filemaker Form Module Unspecified Security Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97637
Wireshark DOF Dissector 'packet-dof.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97634
Wireshark RPCoRDMA Dissector 'packet-rpcrdma.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97630
Wireshark 'dissectors/packet-imap.c' Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97636
Drupal @Base Module Unspecified Security Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97623
Wireshark SLSK Dissector 'dissectors/packet-slsk.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97635
Drupal Scheduler Workbench Integration Module Unspecified Security Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97622
Wireshark BGP dissector Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97632
Juniper NorthStar Controller Application CVE-2017-2332 Remote Privilege Escalation Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97624
Wireshark WSP Dissector 'packet-wsp.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97628
Wireshark NetScaler File Parser 'wiretap/netscaler.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97631
Adobe Flash Player APSB17-10 Multiple Memory Corruption Vulnerabilities
2017-04-14
http://www.securityfocus.com/bid/97557
Adobe Flash Player APSB17-10 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-04-14
http://www.securityfocus.com/bid/97551
IBM Tivoli Application Dependency Discovery Manager CVE-2016-8927 Cross Site Scripting Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97629
Juniper NorthStar Controller Application CVE-2017-2328 Local Information Disclosure Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97617
Wireshark SIGCOMP Dissector 'packet-sigcomp.c' Infinite Loop Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97627
IBM Tivoli Application Dependency Discovery Manager CVE-2016-8925 Remote File Include Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97625
Juniper NorthStar Controller Application CVE-2017-2331 Authentication Bypass Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97619
Juniper NorthStar Controller Application CVE-2017-2330 Local Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97618
Atlassian Hipchat Server CVE-2017-7357 Remote Code Execution Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97621
Citrix NetScaler Gateway CVE-2017-7219 Heap Buffer Overflow Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97626
Red Hat Storage Console CVE-2017-2665 Insecure Password Storage Information Disclosure Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97612
D-Link DWR-116 CVE-2017-6190 Arbitrary File Download Vulnerabilitiy
2017-04-14
http://www.securityfocus.com/bid/97620
Juniper NorthStar Controller Application CVE-2017-2322 Local Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97613
Juniper Junos CVE-2017-2315 Denial of Service Vulnerability
2017-04-14
http://www.securityfocus.com/bid/97615
SANS News
Threatpost
Exploit Kit Activity Quiets, But Is Far From Silent
FDA Demands St. Jude Take Action on Medical Device Security
Exploit
Microsoft Windows Kernel win32k.sys - Multiple Bugs in the NtGdiGetDIBitsInternal...
Microsoft Windows Kernel - 'win32kfull!SfnINLPUAHDRAWMENUITEM' Stack Memory...
Linux/x86-64 - execve("/bin/sh") Shellcode (31 bytes)
13.4.2017
Bugtraq
[SYSS-2017-009] agorum core Pro - Improper Restriction of XML External Entity Reference ('XXE') 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-008] agorum core Pro - Cross-Site Request Forgery 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-007] agorum core Pro - Cross-Site Scripting 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-006] agorum core Pro - Insecure Direct Object Reference 2017-04-13
erlijn vangenuchten syss de
[SYSS-2017-005] agorum core Pro - Persistent Cross-Site Scripting 2017-04-13
erlijn vangenuchten syss de
April 2017 - HipChat Server Advisory 2017-04-13
Matthew Hart (mhart atlassian com)
DefenseCode Security Advisory: Magento 0day Arbitrary File Upload Vulnerability (Remote Code Execution, CSRF) 2017-04-12
DefenseCode (defensecode defensecode com)
CVE-2017-7456 Moxa MXview v2.8 Denial Of Service 2017-04-12
apparitionsec gmail com (hyp3rlinx)
CVE-2017-7455 Moxa MXview v2.8 Remote Private Key Disclosure 2017-04-12
apparitionsec gmail com (hyp3rlinx)
CVE-2017-7457 Moxa MX AOPC-Server v1.5 XML External Entity Injection 2017-04-12
apparitionsec gmail com (hyp3rlinx)
Malware
Phishing
Vulnerebility
Linux Kernel 'selinux/hooks.c' Local Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96272
Linux Kernel CVE-2016-8650 Null Pointer Deference Local Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/94532
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96732
Fortinet FortiWLC-SD CVE-2017-3134 Privilege Escalation Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97603
Juniper NorthStar Controller Application CVE-2017-2324 Unspecified Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97604
Linux Kernel CVE-2017-6074 Local Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96310
Linux kernel Local Use After Free Multiple Denial of Service Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/94135
Google Android Bouncy Castle CVE-2015-6644 Information Disclosure Vulnerability
2017-04-13
http://www.securityfocus.com/bid/79865
QEMU 'hw/usb/hcd-ohci.c' Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96611
Xen 'memory_exchange()' Function Incomplete Fix Privilege Escalation Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97375
Dovecot CVE-2017-2669 Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97536
Juniper NorthStar Controller Application CVE-2017-2325 Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97602
Pidgin CVE 2017-2640 Out of Bounds Write Security Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96775
Juniper NorthStar Controller Application CVE-2017-2316 Local Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97601
X.org X Server Local Multiple Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/96480
X.Org libXi CVE-2016-7946 Multiple Unspecified Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93374
X.Org libXrender CVE-2016-7950 Out of Bounds Write Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93369
X.Org libXvMC CVE-2016-7953 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93371
X.Org libXrender CVE-2016-7949 Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93366
X.Org libX11 CVE-2016-7942 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93363
X.Org libXrandr CVE-2016-7948 Multiple Unspecified Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93373
X.Org libXfixes CVE-2016-7944 Integer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93361
X.Org libXv CVE-2016-5407 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93368
X.Org libXrandr CVE-2016-7947 Multiple Integer Overflow Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93365
X.Org libXfixes CVE-2016-7945 Multiple Integer Overflow Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93364
X.Org libX11 CVE-2016-7943 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93362
Google Chrome and Chrome OS Multiple Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/97220
Google Chrome CVE-2017-5055 Use After Free Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97221
QEMU CVE-2017-6058 Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96277
Qemu CVE-2017-2620 Remote Code Execution Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96378Wireshark 'packet-btl2cap.c' Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97597
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97498
Palo Alto Networks PAN-OS CVE-2017-7218 Local Privilege Escalation Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97592
Symphony CMS CVE-2017-7694 Remote Code Execution Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97594
audiofile CVE-2017-6832 Heap Based Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97589
Ansible CVE-2017-7466 Incomplete Fix Arbitrary Command Execution Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97595
SAP NetWeaver TREX and BWA Remote Code Execution Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97567
audiofile CVE-2017-6831 Heap Based Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97588
libsamplerate 'src_sinc.c' Local Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97587
Trend Micro Deep Discovery Email Inspector 'policy_setting' Arbitrary File Upload Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97591
Palo Alto Networks PAN-OS CVE-2017-7126 Information Disclosure Vulnerability
2017-04-13
http://www.securityfocus.com/bid/97590
Qemu CVE-2017-2620 Remote Code Execution Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96378
QEMU 'hw/usb/hcd-ohci.c' Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96611
QEMU CVE-2017-6058 Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96277
QEMU 'hw/usb/hcd-xhci.c' Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96220
QEMU CVE-2016-9602 Privilege Escalation Vulnerability
2017-04-13
http://www.securityfocus.com/bid/95461
QEMU 'hw/sd/sdhci.c' Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96263
QEMU 'nbd/client.c' Stack Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/96265
X.org X Server Local Multiple Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/96480
X.Org libXi CVE-2016-7946 Multiple Unspecified Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93374
X.Org libXrandr CVE-2016-7948 Multiple Unspecified Security Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93373
X.Org libXvMC CVE-2016-7953 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93371
X.Org libXrender CVE-2016-7949 Buffer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93366
X.Org libXrender CVE-2016-7950 Out of Bounds Write Denial of Service Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93369
X.Org libXv CVE-2016-5407 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93368
X.Org libXfixes CVE-2016-7945 Multiple Integer Overflow Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93364
X.Org libXrandr CVE-2016-7947 Multiple Integer Overflow Vulnerabilities
2017-04-13
http://www.securityfocus.com/bid/93365
X.Org libX11 CVE-2016-7943 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93362
X.Org libX11 CVE-2016-7942 Memory Corruption Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93363
X.Org libXfixes CVE-2016-7944 Integer Overflow Vulnerability
2017-04-13
http://www.securityfocus.com/bid/93361
SANS News
Packet Captures Filtered by Process
Threatpost
Office Zero Day Delivering FINSPY Spyware to Victims in Russia
Phone Hack Uses Sensors To Steal PINs
Netflix’s HTTPS Update Can’t Combat Passive Traffic Analysis Attacks
Exploit
Cisco Catalyst 2960 IOS 12.2(55)SE11 - 'ROCEM' Remote Code Execution
GNS3 Mac OS-X 1.5.2 - 'ubridge' Privilege Escalation
Solaris 7 - 11 (x86 & SPARC) - 'EXTREMEPARR' dtappgather Privilege Escalation
Cisco Catalyst 2960 IOS 12.2(55)SE11 - 'ROCEM' Remote Code Execution
Coppermine Gallery < 1.5.44 - Directory Traversal Weaknesses
SedSystems D3 Decimator - Multiple Vulnerabilities
PonyOS 4.0 - 'fluttershy' LD_LIBRARY_PATH Local Kernel Exploit
Adobe Creative Cloud Desktop Application <= 4.0.0.185 - Privilege Escalation
12.4.2017
Bugtraq
FreeBSD Security Advisory FreeBSD-SA-17:03.ntp 2017-04-12
FreeBSD Security Advisories (security-advisories freebsd org)
[SECURITY] [DSA 3829-1] bouncycastle security update 2017-04-11
Moritz Muehlenhoff (jmm debian org)
Microsoft Office OneNote 2007 DLL side loading vulnerability 2017-04-11
Securify B.V. (lists securify nl)
Multiple local privilege escalation vulnerabilities in Proxifier for Mac 2017-04-11
Securify B.V. (lists securify nl)
[SECURITY] CVE-2017-5648 Apache Tomcat Information Disclosure 2017-04-10
Mark Thomas (markt apache org)
[SECURITY] CVE-2017-5651 Apache Tomcat Information Disclosure 2017-04-10
Mark Thomas (markt apache org)
DefenseCode ThunderScan SAST Advisory: WordPress Tribulant Slideshow Gallery Plugin - Cross-Site Scripting Vulnerabilities 2017-04-10
DefenseCode (defensecode defensecode com)
ChromeOS / ChromeBooks Persist Certain Network Settings in Guest Mode 2017-04-09
Nightwatch Cybersecurity Research (research nightwatchcybersecurity com)
Foscam All networked devices, multiple Design Errors. SSL bypass. 2017-04-09
nick m mckenna gmail com
Malware
Phishing
Amazon | 11th April 2017 |
Vulnerebility
Google Chrome Prior to 50.0.2661.102 Multiple Security Vulnerabilities
2017-04-12
http://www.securityfocus.com/bid/90584
Keycloak CVE-2016-8629 Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97392
Redhat Wildfly CVE-2016-9589 Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97060
Keycloak CVE-2017-2585 Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97393
Fiyo CMS '/dapur/apps/app_theme/libs/save_file.php' Arbitrary File Upload Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97571
SAPLPD Multiple Unspecified Security Vulnerabilities
2017-04-12
http://www.securityfocus.com/bid/97574
SAP ERP Stakeholder Relationship Management Multiple Unspecified Security Vulnerabilities
2017-04-12
http://www.securityfocus.com/bid/97569
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/94708
JasPer CVE-2016-9591 Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/94952
SAP NetWeaver Knowledge Management XML External Entity Injection Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97572
Apache Camel CVE-2017-3159 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/96321
Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/58073
SparkJava Spark CVE-2016-9177 Directory Traversal Vulnerability
2017-04-12
http://www.securityfocus.com/bid/94218
Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/95429
Elasticsearch Groovy Scripting Engine Sandbox Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/72585
SAP NetWeaver ADBC Demo Programs Remote Authorization Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97568
SAP ERP Remote Authorization Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97570
SAP NetWeaver TREX and BWA Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97567
Multiple SAP Products Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/96205
SAP GUI CVE-2017-6950 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/96872
SAP NetWeaver Central Technical Configuration Unspecified Cross Site Scripting Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97566
SAP NetWeaver Java Archiving Framework Unspecified Cross Site Scripting Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97565
DBPOWER U818A CVE-2017-3209 Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97564
Multiple Dell iDRAC Products CVE-2015-7271 Remote Format String Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97561
SAP BI LaunchPad Unspecified Cross Site Request Forgery Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97563
Schneider Electric Modicon Modbus Protocol Multiple Authentication Bypass Vulnerabilities
2017-04-12
http://www.securityfocus.com/bid/97562
libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/63676
Lenovo CVE-2016-8237 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97560
Microsoft Windows Hyper-V CVE-2017-0178 Remote Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97416
Microsoft Windows OLE CVE-2017-0211 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97514
Adobe Reader and Acrobat APSB17-11 Multiple Remote Code Execution Vulnerabilities
2017-04-12
http://www.securityfocus.com/bid/97547
Dell iDRAC6 CVE-2015-7274 Arbitrary Command Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97546
Dell iDRAC6 CVE-2015-7274 Arbitrary Command Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97545
Lenovo CCSDK CVE-2016-8235 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97543
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/94708
JasPer CVE-2016-9591 Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/94952
Apache Camel CVE-2017-3159 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/96321
Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/58073
SparkJava Spark CVE-2016-9177 Directory Traversal Vulnerability
2017-04-12
http://www.securityfocus.com/bid/94218
Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/95429
Elasticsearch Groovy Scripting Engine Sandbox Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/72585
SAP ERP Remote Authorization Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97570
SAP NetWeaver TREX and BWA Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97567
Multiple SAP Products Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/96205
SAP GUI CVE-2017-6950 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/96872
SAP NetWeaver Central Technical Configuration Unspecified Cross Site Scripting Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97566
SAP NetWeaver Java Archiving Framework Unspecified Cross Site Scripting Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97565
DBPOWER U818A CVE-2017-3209 Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97564
Multiple Dell iDRAC Products CVE-2015-7271 Remote Format String Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97561
SAP BI LaunchPad Unspecified Cross Site Request Forgery Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97563
Schneider Electric Modicon Modbus Protocol Multiple Authentication Bypass Vulnerabilities
2017-04-12
http://www.securityfocus.com/bid/97562
libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/63676
Lenovo CVE-2016-8237 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97560
Microsoft Windows Hyper-V CVE-2017-0178 Remote Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97416
Microsoft Windows OLE CVE-2017-0211 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97514
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97498
Microsoft Windows Hyper-V CVE-2017-0181 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97445
Microsoft Internet Explorer CVE-2017-0210 Remote Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97512
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-0188 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97475
Microsoft Windows Graphics Component CVE-2017-0156 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97507
libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/63676
Lenovo CVE-2016-8237 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97560
Microsoft Windows Hyper-V CVE-2017-0178 Remote Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97416
Microsoft Windows OLE CVE-2017-0211 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97514
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97498
Microsoft Windows Hyper-V CVE-2017-0181 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97445
Microsoft Internet Explorer CVE-2017-0210 Remote Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97512
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-0188 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97475
Microsoft Windows Graphics Component CVE-2017-0156 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97507
Microsoft Windows Graphics CVE-2017-0155 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97471
Microsoft Edge CVE-2017-0200 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97456
Microsoft Windows Hyper-V CVE-2017-0180 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97444
Microsoft Windows Hyper-V CVE-2017-0163 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97465
Microsoft Internet Explorer CVE-2017-0158 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97455
Microsoft Windows ADFS CVE-2017-0159 Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97449
Microsoft Internet Explorer CVE-2017-0201 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97454
Microsoft Windows ATMFD.dll CVE-2017-0192 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97452
Microsoft Windows Active Directory CVE-2017-0164 Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97448
Microsoft Windows CVE-2017-0165 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97467
Microsoft Windows Hyper-V CVE-2017-0162 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97461
Microsoft Edge CVE-2017-0208 Scripting Engine Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97460
Microsoft Outlook for Mac CVE-2017-0207 Spoofing Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97463
Microsoft Edge CVE-2017-0093 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97419
Microsoft Windows Kernel CVE-2017-0167 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97473
Microsoft Windows .NET Framework CVE-2017-0160 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97447
Microsoft Office CVE-2017-0197 DLL Loading Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97411
Microsoft Windows Hyper-V CVE-2017-0169 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97459
Microsoft Office CVE-2017-0195 Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97417
Microsoft Outlook CVE-2017-0106 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97413
Microsoft Windows Hyper-V CVE-2017-0168 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97418libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/63676
Lenovo CVE-2016-8237 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97560
Microsoft Windows Hyper-V CVE-2017-0178 Remote Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97416
Microsoft Windows OLE CVE-2017-0211 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97514
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97498
Microsoft Windows Hyper-V CVE-2017-0181 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97445
Microsoft Internet Explorer CVE-2017-0210 Remote Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97512
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-0188 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97475
Microsoft Windows Graphics Component CVE-2017-0156 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97507
Microsoft Windows Graphics CVE-2017-0155 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97471
Microsoft Edge CVE-2017-0200 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97456
Microsoft Windows Hyper-V CVE-2017-0180 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97444
Microsoft Windows Hyper-V CVE-2017-0163 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97465
Microsoft Internet Explorer CVE-2017-0158 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97455
Microsoft Windows ADFS CVE-2017-0159 Security Bypass Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97449
Microsoft Internet Explorer CVE-2017-0201 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97454
Microsoft Windows ATMFD.dll CVE-2017-0192 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97452
Microsoft Windows Active Directory CVE-2017-0164 Denial of Service Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97448
Microsoft Windows CVE-2017-0165 Local Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97467
Microsoft Windows Hyper-V CVE-2017-0162 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97461
Microsoft Edge CVE-2017-0208 Scripting Engine Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97460
Microsoft Outlook for Mac CVE-2017-0207 Spoofing Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97463
Microsoft Edge CVE-2017-0093 Scripting Engine Remote Memory Corruption Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97419
Microsoft Windows Kernel CVE-2017-0167 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97473
Microsoft Windows .NET Framework CVE-2017-0160 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97447
Microsoft Office CVE-2017-0197 DLL Loading Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97411
Microsoft Windows Hyper-V CVE-2017-0169 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97459
Microsoft Office CVE-2017-0195 Privilege Escalation Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97417
Microsoft Outlook CVE-2017-0106 Remote Code Execution Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97413
Microsoft Windows Hyper-V CVE-2017-0168 Information Disclosure Vulnerability
2017-04-12
http://www.securityfocus.com/bid/97418
SANS News
Malspam on 2017-04-11 pushes yet another ransomware variant
Threatpost
Spammer’s Arrest Puts End to Kelihos Botnet
Microsoft Patches Word Zero-Day Spreading Dridex Malware
Adobe Patches 59 Vulnerabilities Across Flash, Reader, Photoshop
Microsoft Patches Three Vulnerabilities Under Attack
SAP Updates Two-Year-Old Patch for TREX Vulnerability
Exploit
Apple WebKit - 'Document::adoptNode' Use-After-Free
Apple WebKit - 'JSC::B3::Procedure::resetReachability' Use-After-Free
Apple WebKit - 'JSC::SymbolTableEntry::isWatchable' Heap Buffer Overflow
Apple WebKit / Safari 10.0.3 (12602.4.8) - Synchronous Page Load Universal Cross-Site...
Apple WebKit / Safari 10.0.3 (12602.4.8) - Universal Cross-Site Scripting via a Focus...
Xen - Broken Check in 'memory_exchange()' Permits PV Guest Breakout
Proxifier for Mac 2.18 - Multiple Vulnerabilities
Proxifier for Mac 2.17 / 2.18 - Privesc Escalation
Adobe Multiple Products - XML Injection File Content Disclosure
MyClassifiedScript 5.1 - SQL Injection
Social Directory Script 2.0 - SQL Injection
FAQ Script 3.1.3 - 'category_id' Parameter SQL Injection
WordPress Plugin Spider Event Calendar 1.5.51 - Blind SQL Injection
MyBB < 1.8.11 - 'email' MyCode Cross-Site Scripting
MyBB smilie Module < 1.8.11 - 'pathfolder' Directory Traversal
Quest Privilege Manager 6.0.0 - Arbitrary File Write
Brother MFC-J6520DW - Authentication Bypass / Password Change
Horde Groupware Webmail 3 / 4 / 5 - Multiple Remote Code Execution
11.4.2017
Bugtraq
Multiple local privilege escalation vulnerabilities in Proxifier for Mac 2017-04-11
Securify B.V. (lists securify nl)
[SECURITY] CVE-2017-5648 Apache Tomcat Information Disclosure 2017-04-10
Mark Thomas (markt apache org)
[SECURITY] CVE-2017-5651 Apache Tomcat Information Disclosure 2017-04-10
Mark Thomas (markt apache org)
DefenseCode ThunderScan SAST Advisory: WordPress Tribulant Slideshow Gallery Plugin - Cross-Site Scripting Vulnerabilities 2017-04-10
DefenseCode (defensecode defensecode com)
ChromeOS / ChromeBooks Persist Certain Network Settings in Guest Mode 2017-04-09
Nightwatch Cybersecurity Research (research nightwatchcybersecurity com)
Foscam All networked devices, multiple Design Errors. SSL bypass. 2017-04-09
nick m mckenna gmail com
[slackware-security] libtiff (SSA:2017-098-01) 2017-04-08
Slackware Security Team (security slackware com)
Malware
Phishing
American Express | 10th April 2017 |
Vulnerebility
Apache Tomcat CVE-2017-5650 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97531
IBM Platform LSF CVE-2017-1205 Local Privilege Escalation Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97528
Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/97527
Bluecoat SSL Visibility CVE-2016-10259 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97525
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97498
Foreman CVE-2017-2672 Information Disclosure Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97526
Mozilla Firefox and Thunderbird CVE-2017-5398 Multiple Unspecified Memory-Corruption Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96651
Mozilla Firefox CVE-2017-5426 Security Bypass Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96694
Mozilla Firefox and Thunderbird Multiple Security Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96693
Mozilla Firefox MFSA 2017-05 Multiple Security Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96692
Mozilla Firefox and Thunderbird Multiple Use After Free Denial of Service Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96664
Mozilla Firefox CVE-2017-5403 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96691
Mozilla Firefox and Thunderbird CVE-2017-5400 Multiple Memory-Corruption Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96654
Mozilla Firefox and Thunderbird CVE-2017-5401 Memory Corruption Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96677
SAP NetWeaver AS JAVA Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/91733
SAP NetWeaver SAPSTARTSRV Remote Buffer Overflow Vulnerability
2017-04-11
http://www.securityfocus.com/bid/91734
SAP Sybase SQL Anywhere Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/91197
Multiple Asterisk Products Remote Buffer Overflow Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97377
libsndfile 'src/common.c' Stack Buffer Overflow Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97522
Dell iDRAC CVE-2015-7270 Local Directory Traversal Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97521
Apache Struts CVE-2017-5638 Remote Code Execution Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96729
Foxit PDF Toolkit CVE-2017-7584 Memory Corruption Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97519
Schneider Electric SoMachine and Modicon CVE-2017-7574 Security Bypass Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97518
Schneider Electric Modicon CVE-2017-7575 Information Disclosure Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97523
Multiple Dell iDRAC Products CVE-2015-7275 Cross Site Scripting Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97520
Atlassian JIRA Server CVE-2016-4319 Cross Site Request Forgery Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97517
Atlassian Bitbucket Server CVE-2016-4320 Directory Traversal Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97515
Atlassian JIRA 'project/ViewDefaultProjectRoleActors.jspa' HTML Injection Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97516
Atlassian Confluence 'viewmyprofile.action' Cross Site Scripting Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97513
Apache Ignite CVE-2016-6805 Information Disclosure and XML External Entity Injection Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/97509Bluecoat SSL Visibility CVE-2016-10259 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97525
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97498
Foreman CVE-2017-2672 Information Disclosure Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97526
Mozilla Firefox and Thunderbird CVE-2017-5398 Multiple Unspecified Memory-Corruption Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96651
Mozilla Firefox CVE-2017-5426 Security Bypass Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96694
Mozilla Firefox and Thunderbird Multiple Security Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96693
Mozilla Firefox MFSA 2017-05 Multiple Security Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96692
Mozilla Firefox and Thunderbird Multiple Use After Free Denial of Service Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96664
Mozilla Firefox CVE-2017-5403 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96691
Mozilla Firefox and Thunderbird CVE-2017-5400 Multiple Memory-Corruption Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/96654
Mozilla Firefox and Thunderbird CVE-2017-5401 Memory Corruption Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96677
SAP NetWeaver AS JAVA Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/91733
SAP NetWeaver SAPSTARTSRV Remote Buffer Overflow Vulnerability
2017-04-11
http://www.securityfocus.com/bid/91734
SAP Sybase SQL Anywhere Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/91197
Multiple Asterisk Products Remote Buffer Overflow Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97377
libsndfile 'src/common.c' Stack Buffer Overflow Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97522
Dell iDRAC CVE-2015-7270 Local Directory Traversal Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97521
Apache Struts CVE-2017-5638 Remote Code Execution Vulnerability
2017-04-11
http://www.securityfocus.com/bid/96729
Foxit PDF Toolkit CVE-2017-7584 Memory Corruption Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97519
Schneider Electric SoMachine and Modicon CVE-2017-7574 Security Bypass Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97518
Schneider Electric Modicon CVE-2017-7575 Information Disclosure Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97523
Multiple Dell iDRAC Products CVE-2015-7275 Cross Site Scripting Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97520
Atlassian JIRA Server CVE-2016-4319 Cross Site Request Forgery Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97517
Atlassian Bitbucket Server CVE-2016-4320 Directory Traversal Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97515
Atlassian JIRA 'project/ViewDefaultProjectRoleActors.jspa' HTML Injection Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97516
Atlassian Confluence 'viewmyprofile.action' Cross Site Scripting Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97513
Apache Ignite CVE-2016-6805 Information Disclosure and XML External Entity Injection Vulnerabilities
2017-04-11
http://www.securityfocus.com/bid/97509
LibTIFF CVE-2017-7599 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97505
LibTIFF CVE-2017-7594 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97503
LibTIFF CVE-2017-7601 Denial of Service Vulnerability
2017-04-11
http://www.securityfocus.com/bid/97511
SANS News
Dridex malspam seen on Monday 2017-04-10
Threatpost
Travel Routers, NAS Devices Among Easily Hacked IoT Devices
ShadowBrokers Dump More Equation Group Hacks, Auction File Password
Tools Used by Lamberts APT Found in Vault 7 Dumps
Exploit
Jobscript4Web 4.5 - Authentication Bypass
10.4.2017
Bugtraq
DefenseCode ThunderScan SAST Advisory: WordPress Tribulant Slideshow Gallery Plugin - Cross-Site Scripting Vulnerabilities 2017-04-10
DefenseCode (defensecode defensecode com)
ChromeOS / ChromeBooks Persist Certain Network Settings in Guest Mode 2017-04-09
Nightwatch Cybersecurity Research (research nightwatchcybersecurity com)
Foscam All networked devices, multiple Design Errors. SSL bypass. 2017-04-09
nick m mckenna gmail com
[slackware-security] libtiff (SSA:2017-098-01) 2017-04-08
Slackware Security Team (security slackware com)
[SECURITY] [DSA 3827-1] jasper security update 2017-04-07
Moritz Muehlenhoff (jmm debian org)
[security bulletin] HPESBGN03733 rev.1 - HPE Universal CMDB using Apache Struts, Remote Code Execution 2017-04-07
security-alert hpe com
[CVE-2016-6805] Arbitrary File Read due to eXternal Xml Entity attack in Apache Ignite 2017-04-07
Denis Magda (dmagda apache org)
D-Link DWR-116 - CVE-2017-6190 - Arbitrary File Download 2017-04-07
patrykgnt gmail com
Malware
Phishing
Vulnerebility
Schneider Electric Modicon CVE-2017-7575 Information Disclosure Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97523
Multiple Dell iDRAC Products CVE-2015-7275 Cross Site Scripting Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97520
Atlassian JIRA Server CVE-2016-4319 Cross Site Request Forgery Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97517
Atlassian Bitbucket Server CVE-2016-4320 Directory Traversal Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97515
Atlassian JIRA 'project/ViewDefaultProjectRoleActors.jspa' HTML Injection Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97516
Atlassian Confluence 'viewmyprofile.action' Cross Site Scripting Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97513
Apache Ignite CVE-2016-6805 Information Disclosure and XML External Entity Injection Vulnerabilities
2017-04-10
http://www.securityfocus.com/bid/97509
LibTIFF CVE-2017-7599 Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97505
LibTIFF CVE-2017-7594 Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97503
LibTIFF CVE-2017-7601 Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97511
LibTIFF CVE-2017-7599 Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97508
LibTIFF CVE-2017-7592 Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97510
LibTIFF CVE-2017-7593 Information Disclosure Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97502
LibTIFF CVE-2017-7596 Integer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97506
LibTIFF CVE-2017-7597 Integer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97504
Oracle Java SE CVE-2017-3259 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95570
Oracle Java SE CVE-2017-3261 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95566
Oracle Java SE CVE-2017-3231 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95563
Oracle Java SE and JRockit CVE-2016-5552 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95512
Oracle Java SE CVE-2016-5548 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95559
Oracle Java SE and JRockit CVE-2016-5547 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95521
Oracle Java SE CVE-2016-5549 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95530
Oracle Java SE and JRockit CVE-2017-3252 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95509
Oracle Java SE and JRockit CVE-2017-3253 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95498
Oracle Java SE and JRockit CVE-2017-3241 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95488
Oracle Java SE and JRockit CVE-2016-5546 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95506
Oracle Java SE CVE-2017-3289 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95525
Oracle Java SE CVE-2017-3272 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95533
LibTIFF CVE-2017-7602 Integer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97500
LibTIFF 'tif_dirread.c' Divide By Zero Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97499Oracle Java SE CVE-2017-3259 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95570
Oracle Java SE CVE-2017-3261 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95566
Oracle Java SE CVE-2017-3231 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95563
Oracle Java SE and JRockit CVE-2016-5552 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95512
Oracle Java SE CVE-2016-5548 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95559
Oracle Java SE and JRockit CVE-2016-5547 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95521
Oracle Java SE CVE-2016-5549 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95530
Oracle Java SE and JRockit CVE-2017-3252 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95509
Oracle Java SE and JRockit CVE-2017-3253 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95498
Oracle Java SE and JRockit CVE-2017-3241 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95488
Oracle Java SE and JRockit CVE-2016-5546 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95506
Oracle Java SE CVE-2017-3289 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95525
Oracle Java SE CVE-2017-3272 Remote Security Vulnerability
2017-04-10
http://www.securityfocus.com/bid/95533
LibTIFF CVE-2017-7602 Integer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97500
LibTIFF 'tif_dirread.c' Divide By Zero Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97499
Microsoft Office OLE Feature Remote Code Execution Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97498
Dropbox Lepton CVE-2017-7448 Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97490
ImageWorsener 'iwgif_record_pixel()' Function Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97497
WebsiteBaker CVE-2017-7410 Multiple SQL Injection Vulnerabilities
2017-04-10
http://www.securityfocus.com/bid/97495
ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97496
Faveo CVE-2017-7571 Cross Site Request Forgery Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97493
ImageWorsener 'iwgif_record_pixel()' Function Remote Heap Buffer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97494
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6339 Security Bypass Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97492
Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97491
Tryton Trytond CVE-2017-0360 Incomplete Fix Information Disclosure Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97489
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML Injection Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97487
LightDM CVE-2017-7358 Local Directory Traversal Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97486
HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97485
Google Chrome CVE-2017-5055 Use After Free Memory Corruption Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97221
Google Chrome and Chrome OS Multiple Security Vulnerabilities
2017-04-10
http://www.securityfocus.com/bid/97220ImageWorsener 'iwgif_record_pixel()' Function Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97497
WebsiteBaker CVE-2017-7410 Multiple SQL Injection Vulnerabilities
2017-04-10
http://www.securityfocus.com/bid/97495
ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97496
Faveo CVE-2017-7571 Cross Site Request Forgery Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97493
ImageWorsener 'iwgif_record_pixel()' Function Remote Heap Buffer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97494
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6339 Security Bypass Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97492
Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97491
Tryton Trytond CVE-2017-0360 Incomplete Fix Information Disclosure Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97489
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML Injection Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97487
LightDM CVE-2017-7358 Local Directory Traversal Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97486
HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97485
Google Chrome CVE-2017-5055 Use After Free Memory Corruption Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97221
Google Chrome and Chrome OS Multiple Security Vulnerabilities
2017-04-10
http://www.securityfocus.com/bid/97220
HelpDEZk CVE-2017-7446 Cross Site Request Forgery Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97484
Ruby 'dl/handle.c' Security Bypass Vulnerability
2017-04-10
http://www.securityfocus.com/bid/76060
Ruby 'initialize()' Function Heap Buffer Overflow Vulnerability
2017-04-10
http://www.securityfocus.com/bid/91234
Veritas System Recovery CVE-2017-7444 DLL Loading Local Code Execution Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97483
MyBB CVE-2017-7566 Server Side Request Forgery Security Bypass Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97480
Trend Micro InterScan Web Security Virtual Appliance Privilege Escalation Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97482
Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
2017-04-10
http://www.securityfocus.com/bid/97479
Golang Go SSH Library CVE-2017-3204 Security Bypass Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97481
FortiClient SSLVPN CVE-2016-8497 Privilege Escalation Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97478
Multiple Cisco Products CVE-2017-6601 Local Command Injection Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97477
Fortinet FortiMail CVE-2017-3125 Unspecified Cross Site Scripting Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97474
Multiple Cisco Products CVE-2017-6597 Local Command Injection Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97476
Multiple Cisco Products CVE-2017-3884 Information Disclosure Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97470
Cisco Mobility Express 2800 and 3800 Series CVE-2016-9197 Local Security Bypass Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97469
Cisco Aironet Access Points CVE-2016-9196 Local Privilege Escalation Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97468
Multiple Cisco Products CVE-2017-6602 Local Command Injection Vulnerability
2017-04-10
http://www.securityfocus.com/bid/97472
Ping Identity 'mod_auth_openidc' Module CVE-2017-6059 Content Spoofing Vulnerability
2017-04-10
http://www.securityfocus.com/bid/96299
SANS News
Password History: Insights Shared by a Reader
Threatpost
Riverbed Patches Vulnerabilities in Application Monitoring Portal
Exploit
Jobscript4Web 4.5 - Authentication Bypass
Moxa MXview 2.8 - Private Key Disclosure
Moxa MX AOPC-Server 1.5 - XML External Entity Injection
Moxa MXview 2.8 - Denial of Service
9.4.2017
Bugtraq
SEC Consult SA-20170407-0 :: Server-Side Request Forgery in MyBB forum 2017-04-07
SEC Consult Vulnerability Lab (research sec-consult com)
Apple Music Android Application - MITM SSL Certificate Vulnerability (CVE-2017-2387) 2017-04-06
David Coomber (davidcoomber infosec gmail com)
Trend Micro Enterprise Mobile Security Android Application - MITM SSL Certificate Vulnerability (CVE-2016-9319) 2017-04-06
David Coomber (davidcoomber infosec gmail com)
Spiceworks 7.5 TFTP Improper Access Control File Overwrite / Upload 2017-04-06
apparitionsec gmail com (hyp3rlinx)
Malware
Phishing
American Express | 8th April 2017 |
Vulnerebility
ImageWorsener 'iwgif_record_pixel()' Function Denial of Service Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97497
WebsiteBaker CVE-2017-7410 Multiple SQL Injection Vulnerabilities
2017-04-09
http://www.securityfocus.com/bid/97495
ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97496
Faveo CVE-2017-7571 Cross Site Request Forgery Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97493
ImageWorsener 'iwgif_record_pixel()' Function Remote Heap Buffer Overflow Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97494
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6339 Security Bypass Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97492
Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97491
Tryton Trytond CVE-2017-0360 Incomplete Fix Information Disclosure Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97489
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML Injection Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97487
LightDM CVE-2017-7358 Local Directory Traversal Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97486
HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97485
Google Chrome CVE-2017-5055 Use After Free Memory Corruption Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97221
Google Chrome and Chrome OS Multiple Security Vulnerabilities
2017-04-09
http://www.securityfocus.com/bid/97220
HelpDEZk CVE-2017-7446 Cross Site Request Forgery Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97484
Ruby 'dl/handle.c' Security Bypass Vulnerability
2017-04-09
http://www.securityfocus.com/bid/76060
Ruby 'initialize()' Function Heap Buffer Overflow Vulnerability
2017-04-09
http://www.securityfocus.com/bid/91234
Veritas System Recovery CVE-2017-7444 DLL Loading Local Code Execution Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97483
MyBB CVE-2017-7566 Server Side Request Forgery Security Bypass Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97480
Trend Micro InterScan Web Security Virtual Appliance Privilege Escalation Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97482
Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
2017-04-09
http://www.securityfocus.com/bid/97479
Golang Go SSH Library CVE-2017-3204 Security Bypass Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97481
FortiClient SSLVPN CVE-2016-8497 Privilege Escalation Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97478
Multiple Cisco Products CVE-2017-6601 Local Command Injection Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97477
Fortinet FortiMail CVE-2017-3125 Unspecified Cross Site Scripting Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97474
Multiple Cisco Products CVE-2017-6597 Local Command Injection Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97476
Multiple Cisco Products CVE-2017-3884 Information Disclosure Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97470
Cisco Mobility Express 2800 and 3800 Series CVE-2016-9197 Local Security Bypass Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97469
Cisco Aironet Access Points CVE-2016-9196 Local Privilege Escalation Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97468
Multiple Cisco Products CVE-2017-6602 Local Command Injection Vulnerability
2017-04-09
http://www.securityfocus.com/bid/97472
Ping Identity 'mod_auth_openidc' Module CVE-2017-6059 Content Spoofing Vulnerability
2017-04-09
http://www.securityfocus.com/bid/96299ImageWorsener 'iwgif_record_pixel()' Function Denial of Service Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97497
WebsiteBaker CVE-2017-7410 Multiple SQL Injection Vulnerabilities
2017-04-08
http://www.securityfocus.com/bid/97495
ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97496
Faveo CVE-2017-7571 Cross Site Request Forgery Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97493
ImageWorsener 'iwgif_record_pixel()' Function Remote Heap Buffer Overflow Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97494
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6339 Security Bypass Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97492
Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97491
Tryton Trytond CVE-2017-0360 Incomplete Fix Information Disclosure Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97489
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML Injection Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97487
LightDM CVE-2017-7358 Local Directory Traversal Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97486
HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97485
Google Chrome CVE-2017-5055 Use After Free Memory Corruption Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97221
Google Chrome and Chrome OS Multiple Security Vulnerabilities
2017-04-08
http://www.securityfocus.com/bid/97220
HelpDEZk CVE-2017-7446 Cross Site Request Forgery Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97484
Ruby 'dl/handle.c' Security Bypass Vulnerability
2017-04-08
http://www.securityfocus.com/bid/76060
Ruby 'initialize()' Function Heap Buffer Overflow Vulnerability
2017-04-08
http://www.securityfocus.com/bid/91234
Veritas System Recovery CVE-2017-7444 DLL Loading Local Code Execution Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97483
MyBB CVE-2017-7566 Server Side Request Forgery Security Bypass Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97480
Trend Micro InterScan Web Security Virtual Appliance Privilege Escalation Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97482
Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
2017-04-08
http://www.securityfocus.com/bid/97479
Golang Go SSH Library CVE-2017-3204 Security Bypass Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97481
FortiClient SSLVPN CVE-2016-8497 Privilege Escalation Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97478
Multiple Cisco Products CVE-2017-6601 Local Command Injection Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97477
Fortinet FortiMail CVE-2017-3125 Unspecified Cross Site Scripting Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97474
Multiple Cisco Products CVE-2017-6597 Local Command Injection Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97476
Multiple Cisco Products CVE-2017-3884 Information Disclosure Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97470
Cisco Mobility Express 2800 and 3800 Series CVE-2016-9197 Local Security Bypass Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97469
Cisco Aironet Access Points CVE-2016-9196 Local Privilege Escalation Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97468
Multiple Cisco Products CVE-2017-6602 Local Command Injection Vulnerability
2017-04-08
http://www.securityfocus.com/bid/97472
Ping Identity 'mod_auth_openidc' Module CVE-2017-6059 Content Spoofing Vulnerability
2017-04-08
http://www.securityfocus.com/bid/96299
SANS News
Domain Whitelisting With Alexa and Umbrella Lists
Threatpost
Creating a More Altruistic Bug Bounty Program
Researcher Warns SIEMs Are Weak Link In Network Security Chain
Exploit
7.4.2017
Bugtraq
SEC Consult SA-20170407-0 :: Server-Side Request Forgery in MyBB forum 2017-04-07
SEC Consult Vulnerability Lab (research sec-consult com)
Apple Music Android Application - MITM SSL Certificate Vulnerability (CVE-2017-2387) 2017-04-06
David Coomber (davidcoomber infosec gmail com)
Trend Micro Enterprise Mobile Security Android Application - MITM SSL Certificate Vulnerability (CVE-2016-9319) 2017-04-06
David Coomber (davidcoomber infosec gmail com)
Spiceworks 7.5 TFTP Improper Access Control File Overwrite / Upload 2017-04-06
apparitionsec gmail com (hyp3rlinx)
[security bulletin] HPESBGN03727 rev.1 - HPE Business Process Monitor, Remote Unauthorized Access to Data 2017-04-04
security-alert hpe com
DefenseCode ThunderScan SAST Advisory: Apache Tomcat Directory/Path Traversal 2017-04-04
DefenseCode (defensecode defensecode com)
[SECURITY] [DSA 3826-1] tryton-server security update 2017-04-04
Salvatore Bonaccorso (carnil debian org)
AST-2017-001: Buffer overflow in CDR's set user 2017-04-04
Asterisk Security Team (security asterisk org)
Malware
Phishing
Argos.co.uk | 6th April 2017 |
moneygram office | 4th April 2017 |
Vulnerebility
Trend Micro InterScan Web Security Virtual Appliance CVE-2017-6340 HTML Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97487
LightDM CVE-2017-7358 Local Directory Traversal Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97486
HelpDEZK CVE-2017-7447 Cross Site Request Forgery Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97485
Google Chrome CVE-2017-5055 Use After Free Memory Corruption Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97221
Google Chrome and Chrome OS Multiple Security Vulnerabilities
2017-04-07
http://www.securityfocus.com/bid/97220
HelpDEZk CVE-2017-7446 Cross Site Request Forgery Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97484
Ruby 'dl/handle.c' Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/76060
Ruby 'initialize()' Function Heap Buffer Overflow Vulnerability
2017-04-07
http://www.securityfocus.com/bid/91234
Veritas System Recovery CVE-2017-7444 DLL Loading Local Code Execution Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97483
MyBB CVE-2017-7566 Server Side Request Forgery Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97480
Trend Micro InterScan Web Security Virtual Appliance Privilege Escalation Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97482
Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
2017-04-07
http://www.securityfocus.com/bid/97479
Golang Go SSH Library CVE-2017-3204 Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97481
FortiClient SSLVPN CVE-2016-8497 Privilege Escalation Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97478
Multiple Cisco Products CVE-2017-6601 Local Command Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97477
Fortinet FortiMail CVE-2017-3125 Unspecified Cross Site Scripting Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97474
Multiple Cisco Products CVE-2017-6597 Local Command Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97476
Multiple Cisco Products CVE-2017-3884 Information Disclosure Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97470
Cisco Mobility Express 2800 and 3800 Series CVE-2016-9197 Local Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97469
Cisco Aironet Access Points CVE-2016-9196 Local Privilege Escalation Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97468
Multiple Cisco Products CVE-2017-6602 Local Command Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97472
Ping Identity 'mod_auth_openidc' Module CVE-2017-6059 Content Spoofing Vulnerability
2017-04-07
http://www.securityfocus.com/bid/96299
Cisco IOS XR Software CVE-2017-6599 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97464
Cisco Integrated Management Controller CVE-2017-6604 Open Redirection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97457
Linux Kernel CVE-2016-0723 Local Race Condition Vulnerability
2017-04-07
http://www.securityfocus.com/bid/82950
Cisco Firepower System Software CVE-2017-3887 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97453
Cisco ASR 903 and ASR 920 Series CVE-2017-6603 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97450
Cisco Firepower System Software CVE-2017-3885 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97451
Samba CVE-2017-2619 Symlink Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97033
Django 'django.contrib.auth.views.login()' Function Open Redirection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97406MyBB CVE-2017-7566 Server Side Request Forgery Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97480
Trend Micro InterScan Web Security Virtual Appliance Privilege Escalation Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97482
Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
2017-04-07
http://www.securityfocus.com/bid/97479
Golang Go SSH Library CVE-2017-3204 Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97481
FortiClient SSLVPN CVE-2016-8497 Privilege Escalation Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97478
Multiple Cisco Products CVE-2017-6601 Local Command Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97477
Fortinet FortiMail CVE-2017-3125 Unspecified Cross Site Scripting Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97474
Multiple Cisco Products CVE-2017-6597 Local Command Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97476
Multiple Cisco Products CVE-2017-3884 Information Disclosure Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97470
Cisco Mobility Express 2800 and 3800 Series CVE-2016-9197 Local Security Bypass Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97469
Cisco Aironet Access Points CVE-2016-9196 Local Privilege Escalation Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97468
Multiple Cisco Products CVE-2017-6602 Local Command Injection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97472
Ping Identity 'mod_auth_openidc' Module CVE-2017-6059 Content Spoofing Vulnerability
2017-04-07
http://www.securityfocus.com/bid/96299
Cisco IOS XR Software CVE-2017-6599 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97464
Cisco Integrated Management Controller CVE-2017-6604 Open Redirection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97457
Linux Kernel CVE-2016-0723 Local Race Condition Vulnerability
2017-04-07
http://www.securityfocus.com/bid/82950
Cisco Firepower System Software CVE-2017-3887 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97453
Cisco ASR 903 and ASR 920 Series CVE-2017-6603 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97450
Cisco Firepower System Software CVE-2017-3885 Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97451
Samba CVE-2017-2619 Symlink Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97033
Django 'django.contrib.auth.views.login()' Function Open Redirection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97406
Django 'django.views.static.serve()' Function Open Redirection Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97401
Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/97234
Linux Kernel CVE-2016-9178 Local Information Disclosure Vulnerability
2017-04-07
http://www.securityfocus.com/bid/94144
Linux kernel CVE-2017-6345 Local Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/96510
Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2017-04-07
http://www.securityfocus.com/bid/79428
Linux Kernel CVE-2017-7187 Local Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/96989
Linux Kernel '/arch/x86/net/bpf_jit_comp.c' CVE-2015-4700 Local Denial of Service Vulnerability
2017-04-07
http://www.securityfocus.com/bid/75356
Linux Kernel CVE-2016-8633 Local Buffer Overflow Vulnerability
2017-04-07
http://www.securityfocus.com/bid/94149
Linux Kernel CVE-2016-10088 Incomplete Fix Multiple Local Memory Corruption Vulnerabilities
2017-04-07
http://www.securityfocus.com/bid/95169
SANS News
Tracking Website Defacers with HTTP Referers
Threatpost
Chrome Security Team Tackles ‘Friendly Fire’ To Keep Browser Safe
Samsung Tizen Security ‘Feels like 2005’
Apache Struts 2 Exploits Installing Cerber Ransomware
Exploit
Windows 10 x64 - Egghunter Shellcode (45 bytes)
Intellinet NFC-30IR Camera - Multiple Vulnerabilities
Faveo Helpdesk Community 1.9.3 - Cross-Site Request Forgery
Invoice Template - 'hash' Parameter SQL Injection
Document Management Template - 'hash' Parameter SQL Injection
SpiceWorks 7.5 TFTP - Remote File Overwrite / Upload
GeoMoose < 2.9.2 - Directory Traversal
Moodle 2.x/3.x - SQL Injection
HelpDEZK 1.1.1 - Cross-Site Request Forgery / Code Execution
Cesanta Mongoose OS - Use-After-Free
CommVault Edge 11 SP6 - Stack Buffer Overflow (PoC)
6.4.2017
Bugtraq
Apple Music Android Application - MITM SSL Certificate Vulnerability (CVE-2017-2387) 2017-04-06
David Coomber (davidcoomber infosec gmail com)
Trend Micro Enterprise Mobile Security Android Application - MITM SSL Certificate Vulnerability (CVE-2016-9319) 2017-04-06
David Coomber (davidcoomber infosec gmail com)
Spiceworks 7.5 TFTP Improper Access Control File Overwrite / Upload 2017-04-06
apparitionsec gmail com (hyp3rlinx)
[security bulletin] HPESBGN03727 rev.1 - HPE Business Process Monitor, Remote Unauthorized Access to Data 2017-04-04
security-alert hpe com
DefenseCode ThunderScan SAST Advisory: Apache Tomcat Directory/Path Traversal 2017-04-04
DefenseCode (defensecode defensecode com)
[SECURITY] [DSA 3826-1] tryton-server security update 2017-04-04
Salvatore Bonaccorso (carnil debian org)
AST-2017-001: Buffer overflow in CDR's set user 2017-04-04
Asterisk Security Team (security asterisk org)
The password for the project protection of the Schneider Modicon TM221CE16R is hard-coded and cannot be changed. 2017-04-04
Ralf Spenneberg (info os-t de)
OS-S-2017-01: The password for the application protection of the Schneider Modicon TM221CE16R can be retrieved without authentication. Subsequently the application may be arbitrarily downloaded, uploaded and modified. CVSS 10. 2017-04-04
Ralf Spenneberg (info os-t de)
Moodle URL Manipulation Remote Account Information Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
iPlatinum iOneView Multiple Parameter Reflected XSS 2017-04-04
Patrick Webster (patrick osisecurity com au)
Kaseya information disclosure vulnerability 2017-04-04
Patrick Webster (patrick osisecurity com au)
Malware
Phishing
moneygram office | 4th April 2017 |
Chase | 3rd April 2017 |
Economic and Financial Crimes | 3rd April 2017 |
Vulnerebility
Linux Kernel CVE-2016-0723 Local Race Condition Vulnerability
2017-04-06
http://www.securityfocus.com/bid/82950
Cisco Firepower System Software CVE-2017-3887 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97453
Cisco ASR 903 and ASR 920 Series CVE-2017-6603 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97450
Cisco Firepower System Software CVE-2017-3885 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97451
Samba CVE-2017-2619 Symlink Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97033
Django 'django.contrib.auth.views.login()' Function Open Redirection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97406
Django 'django.views.static.serve()' Function Open Redirection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97401
Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97234
Linux Kernel CVE-2016-9178 Local Information Disclosure Vulnerability
2017-04-06
http://www.securityfocus.com/bid/94144
Linux kernel CVE-2017-6345 Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/96510
Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2017-04-06
http://www.securityfocus.com/bid/79428
Linux Kernel CVE-2017-7187 Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/96989
Linux Kernel '/arch/x86/net/bpf_jit_comp.c' CVE-2015-4700 Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/75356
Linux Kernel CVE-2016-8633 Local Buffer Overflow Vulnerability
2017-04-06
http://www.securityfocus.com/bid/94149
Linux Kernel CVE-2016-10088 Incomplete Fix Multiple Local Memory Corruption Vulnerabilities
2017-04-06
http://www.securityfocus.com/bid/95169
IETF IPv6 Protocol CVE-2016-10142 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/95797
Linux Kernel 'arch/x86/kvm/vmx.c' Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/94933
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/96732
Linux Kernel SCSI arcmsr Driver CVE-2016-7425 Local Heap Buffer Overflow Vulnerability
2017-04-06
http://www.securityfocus.com/bid/93037
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/94708
Linux Kernel '/scsi/sg.c' Integer Overflow Vulnerability
2017-04-06
http://www.securityfocus.com/bid/76145
Linux Kernel CVE-2016-8645 Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/94264
Linux Kernel 'digi_acceleport.c' Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/84304
Cisco IOS XE Software CVE-2017-6606 Local Command Execution Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97434
Multiple Cisco Products CVE-2017-6600 Local Command Injection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97439
Cisco Registered Envelope Service CVE-2017-3889 Open Redirection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97433
Cisco Unified Communications Manager CVE-2017-3886 SQL Injection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97432
Cisco Unified Communications Manager CVE-2017-3888 Cross Site Scripting Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97431
Multiple Cisco Products CVE-2017-6598 Local Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97429
Cisco Unified Computing System Director CVE-2017-3817 Information Disclosure Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97430Cisco IOS XE Software CVE-2017-6606 Local Command Execution Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97434
Multiple Cisco Products CVE-2017-6600 Local Command Injection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97439
Cisco Registered Envelope Service CVE-2017-3889 Open Redirection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97433
Cisco Unified Communications Manager CVE-2017-3886 SQL Injection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97432
Cisco Unified Communications Manager CVE-2017-3888 Cross Site Scripting Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97431
Multiple Cisco Products CVE-2017-6598 Local Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97429
Cisco Unified Computing System Director CVE-2017-3817 Information Disclosure Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97430
Cisco Wireless LAN Controller CVE-2016-9195 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97425
Cisco Wireless LAN Controller CVE-2016-9194 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97424
Cisco Wireless LAN Controller CVE-2016-9219 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97423
Cisco Wireless LAN Controller CVE-2017-3832 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97421
Cisco Mobility Express Software CVE-2017-3834 Default Credentials Security Bypass Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97422
Linux Kernel CVE-2016-5870 Null Pointer Dereference Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97414
HP Operations Bridge Analytics CVE-2017-5800 Unspecified Cross Site Scripting Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97412
Linux Kernel CVE-2016-10318 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97404
Ghostscript 'base/gxht_thresh.c' Heap Buffer Overflow Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97410
Google Nexus Qualcomm Crypto Engine Driver CVE-2017-10230 Remote Code Execution Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97400
Linux kernel CVE-2017-2671 Local Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97407
ProFTPD CVE-2017-7418 Local Security Bypass Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97409
Intel NUC and Compute Stick DCI Multiple Local Information Disclosure Vulnerabilities
2017-04-06
http://www.securityfocus.com/bid/97408
Google Pixel Qualcomm Sound Codec Driver CVE-2016-10231 Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97402
Google Android Qualcomm Crypto Engine Driver CVE-2017-0576 Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97395
Google Android Qualcomm Audio Driver CVE-2017-0454 Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97399
Google Android Freetype CVE-2016-10244 Remote Code Execution Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97405
Google Android Qualcomm Wi-Fi Driver CVE-2017-0575 Privilege Escalation Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97403
Django 'django.contrib.auth.views.login()' Function Open Redirection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97406
Django 'django.views.static.serve()' Function Open Redirection Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97401
Google Android libskia CVE-2017-0548 Denial of Service Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97398
Linux Kernel 'ipv4/udp.c' Remote Code Execution Vulnerability
2017-04-06
http://www.securityfocus.com/bid/97397
ManageEngine Applications Manager Multiple Security Vulnerabilities
2017-04-06
http://www.securityfocus.com/bid/97394
SANS News
Java Struts2 Vulnerability Used To Install Cerber Crypto Ransomware
Threatpost
Exploit
CommVault Edge 11 SP6 - Stack Buffer Overflow (PoC)
GeoMoose <= 2.9.2 - Directory Traversal
ImagePro Lazygirls Clone Script - SQL Injection
Airbnb Crashpadder Clone Script - SQL Injection
Premium Penny Auction Script - SQL Injection
Sweepstakes Pro Software - SQL Injection
Appointment Script - SQL Injection
D-Link DIR-615 - Cross-Site Request Forgery
5.4.2017
Bugtraq
[security bulletin] HPESBGN03727 rev.1 - HPE Business Process Monitor, Remote Unauthorized Access to Data 2017-04-04
security-alert hpe com
DefenseCode ThunderScan SAST Advisory: Apache Tomcat Directory/Path Traversal 2017-04-04
DefenseCode (defensecode defensecode com)
[SECURITY] [DSA 3826-1] tryton-server security update 2017-04-04
Salvatore Bonaccorso (carnil debian org)
AST-2017-001: Buffer overflow in CDR's set user 2017-04-04
Asterisk Security Team (security asterisk org)
The password for the project protection of the Schneider Modicon TM221CE16R is hard-coded and cannot be changed. 2017-04-04
Ralf Spenneberg (info os-t de)
OS-S-2017-01: The password for the application protection of the Schneider Modicon TM221CE16R can be retrieved without authentication. Subsequently the application may be arbitrarily downloaded, uploaded and modified. CVSS 10. 2017-04-04
Ralf Spenneberg (info os-t de)
Moodle URL Manipulation Remote Account Information Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
iPlatinum iOneView Multiple Parameter Reflected XSS 2017-04-04
Patrick Webster (patrick osisecurity com au)
Kaseya information disclosure vulnerability 2017-04-04
Patrick Webster (patrick osisecurity com au)
AcoraCMS browser redirect and Cross-site scripting vulnerabilities 2017-04-04
Patrick Webster (patrick osisecurity com au)
SmartJobBoard - Cross-site scripting, personal information disclosure and PHPMailer package 2017-04-04
Patrick Webster (patrick osisecurity com au)
SilverStripe CMS - Path Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
Tweek!DM Document Management Authentication bypass, SQL injection 2017-04-04
Patrick Webster (patrick osisecurity com au)
Computer Associates API Gateway CRLF Response Splitting, Directory Traversal vulnerabilities 2017-04-04
Patrick Webster (patrick osisecurity com au)
CVE-2017-7185 - Mongoose OS - Use-after-free / Denial of Service 2017-04-04
Advisories (advisories compass-security com)
Lantern CMS Path Disclosure, SQL Injection, Reflected XSS 2017-04-04
Patrick Webster (patrick osisecurity com au)
Manhattan Software IWMS (Integrated Workplace Management System) XML External Entity (XXE) Injection File Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
AirWatch Self Service Portal Username Parameter LDAP Injection 2017-04-04
Patrick Webster (patrick osisecurity com au)
Avaya Radvision SCOPIA Desktop dlg_loginownerid.jsp ownerid SQL Injection 2017-04-04
Patrick Webster (patrick osisecurity com au)
Lotus Protector for Mail Security remote code execution 2017-04-04
Patrick Webster (patrick osisecurity com au)
Kaseya VSA 6.5 Parameter Reflected XSS, Enumeration and Bruteforce Weakness 2017-04-04
Patrick Webster (patrick osisecurity com au)
Malware
Phishing
moneygram office | 4th April 2017 |
Chase | 3rd April 2017 |
Economic and Financial Crimes | 3rd April 2017 |
Vulnerebility
WebORB for Java Remote Code Execution and XML External Entity Injection Vulnerabilities
2017-04-05
http://www.securityfocus.com/bid/97384
Apache Flex BlazeDS CVE-2017-5641 Remote Code Execution Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97383
Atlassian JIRA CVE-2017-5983 Remote Code Execution Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97379
GraniteDS Multiple Remote Code Execution Vulnerabilities
2017-04-05
http://www.securityfocus.com/bid/97382
Exadel Flamingo Multiple Remote Code Execution and XML External Entity Injection Vulnerabilities
2017-04-05
http://www.securityfocus.com/bid/97380
Pivotal Spring Flex CVE-2017-3203 Remote Code Execution Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97376
Multiple Asterisk Products Remote Buffer Overflow Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97377
Apache Geode CVE-2017-5649 Information Disclosure Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97378
Google Pixel/Pixel XL Qualcomm Avtimer Driver CVE-2016-5346 Information Disclosure Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97371
Avaya Radvision SCOPIA Desktop SQL Injection Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97374
Xen 'memory_exchange()' Function Incomplete Fix Privilege Escalation Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97375
Multiple Bluecoat Products CVE-2016-9091 Command Injection Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97372
Multiple IBM Products CVE-2016-8987 Access Bypass Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97369
Mongoose OS CVE-2017-7185 Use After Free Denial of Service Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97370
IBM Lotus Protector for Mail Encryption Local File Include Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97373
Google Nexus Broadcom Wi-Fi Driver CVE-2017-0585 Information Disclosure Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97366
Google Android CVE-2017-0561 Remote Code Execution Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97367
Google Android Qualcomm Wi-Fi Driver CVE-2016-10235 Denial of Service Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97361
Google Nexus Qualcomm Qualcomm CP Access Driver CVE-2017-0583 Privilege Escalation Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97368
Google Nexus Qualcomm TrustZone CVE-2016-5349 Information Disclosure Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97364
Google Android Qualcomm Kyro L2 Driver CVE-2017-6423 Privilege Escalation Vulnerability
2017-04-05
http://www.securityfocus.com/bid/97387
Google Nexus Qualcomm IPA Driver CVE-2016-10234 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97365
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96732
Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96421
Linux Kernel CVE-2016-2117 Remote Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/84500
Linux Kernel CVE-2017-6353 Incomplete Fix Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96473
Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97018
Linux Kernel CVE-2017-6347 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96487
Linux kernel CVE-2017-6346 Use After Free Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96508
Linux Kernel CVE-2017-2596 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/95878
SANS News
Whitelists: The Holy Grail of Attackers
Threatpost
Lessons From Top-to-Bottom Compromise of Brazilian Bank
Details Around Romanian Phishing Kit Creator, Campaign Revealed
Android Variant of Notorious Pegasus Spyware Found
Exploit
Apple Webkit - Universal Cross-Site Scripting by Accessing a Named Property from an...
Apple WebKit 10.0.2(12602.3.12.0.1) - 'disconnectSubframes' Universal Cross-Site...
Apple WebKit 10.0.2(12602.3.12.0.1, r210800) -...
Apple WebKit 10.0.2(12602.3.12.0.1) - 'Frame::setDocument (1)' Universal Cross-Site...
Apple Webkit - 'JSCallbackData' Universal Cross-Site Scripting
macOS/iOS Kernel 10.12.3 (16D32) - Double-Free Due to Bad Locking in fsevents Device
macOS/iOS Kernel 10.12.3 (16D32) - 'bpf' Heap Overflow
macOS/iOS Kernel 10.12.3 (16D32) - SIOCGIFORDER Socket ioctl Off-by-One Memory...
macOS Kernel 10.12.2 (16C67) - Memory Disclosure Due to Lack of Bounds Checking in...
macOS Kernel 10.12.3 (16D32) - Use-After-Free Due to Double-Release in posix_spawn
macOS/iOS Kernel 10.12.3 (16D32) - SIOCSIFORDER Socket ioctl Memory Corruption Due...
macOS Kernel 10.12.3 (16D32) - 'audit_pipe_open' Off-by-One Memory Corruption
macOS/iOS Kernel 10.12.3 (16D32) - Bad Locking in necp_open Use-After-Free
macOS Kernel 10.12.2 (16C67) - 'AppleIntelCapriController::GetLinkConfig' Code Execution...
Apple WebKit 10.0.2 - HTMLInputElement Use-After-Free
Apple WebKit - 'RenderLayer' Use-After-Free
Apple WebKit - Negative-Size memmove in HTMLFormElement
Apple WebKit - 'FormSubmission::create' Use-After-Free
Apple WebKit - 'ComposedTreeIterator::traverseNextInShadowTree' Use-After-Free
Apple WebKit - 'table' Use-After-Free
Apple WebKit - 'WebCore::toJS' Use-After-Free
Bluecoat ASG 6.6/CAS 1.3 - OS Command Injection (Metasploit)
Broadcom Wi-Fi SoC - TDLS Teardown Request Remote Heap Overflow Exploit
SolarWinds LEM 6.3.1 - Remote Code Execution (Metasploit)
Broadcom Wi-Fi SoC - 'dhd_handle_swc_evt' Heap Overflow
Bluecoat ASG 6.6/CAS 1.3 - Privilege Escalation (Metasploit)
Pixie 1.0.4 - Arbitrary File Upload
4.4.2017
Bugtraq
The password for the project protection of the Schneider Modicon TM221CE16R is hard-coded and cannot be changed. 2017-04-04
Ralf Spenneberg (info os-t de)
OS-S-2017-01: The password for the application protection of the Schneider Modicon TM221CE16R can be retrieved without authentication. Subsequently the application may be arbitrarily downloaded, uploaded and modified. CVSS 10. 2017-04-04
Ralf Spenneberg (info os-t de)
Moodle URL Manipulation Remote Account Information Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
iPlatinum iOneView Multiple Parameter Reflected XSS 2017-04-04
Patrick Webster (patrick osisecurity com au)
Kaseya information disclosure vulnerability 2017-04-04
Patrick Webster (patrick osisecurity com au)
AcoraCMS browser redirect and Cross-site scripting vulnerabilities 2017-04-04
Patrick Webster (patrick osisecurity com au)
SmartJobBoard - Cross-site scripting, personal information disclosure and PHPMailer package 2017-04-04
Patrick Webster (patrick osisecurity com au)
SilverStripe CMS - Path Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
Tweek!DM Document Management Authentication bypass, SQL injection 2017-04-04
Patrick Webster (patrick osisecurity com au)
Computer Associates API Gateway CRLF Response Splitting, Directory Traversal vulnerabilities 2017-04-04
Patrick Webster (patrick osisecurity com au)
CVE-2017-7185 - Mongoose OS - Use-after-free / Denial of Service 2017-04-04
Advisories (advisories compass-security com)
Lantern CMS Path Disclosure, SQL Injection, Reflected XSS 2017-04-04
Patrick Webster (patrick osisecurity com au)
Manhattan Software IWMS (Integrated Workplace Management System) XML External Entity (XXE) Injection File Disclosure 2017-04-04
Patrick Webster (patrick osisecurity com au)
AirWatch Self Service Portal Username Parameter LDAP Injection 2017-04-04
Patrick Webster (patrick osisecurity com au)
Avaya Radvision SCOPIA Desktop dlg_loginownerid.jsp ownerid SQL Injection 2017-04-04
Patrick Webster (patrick osisecurity com au)
Lotus Protector for Mail Security remote code execution 2017-04-04
Patrick Webster (patrick osisecurity com au)
Kaseya VSA 6.5 Parameter Reflected XSS, Enumeration and Bruteforce Weakness 2017-04-04
Patrick Webster (patrick osisecurity com au)
[security bulletin] HPESBGN03721 rev.1 - HPE Operations Bridge Analytics, Remote Cross-Site Scripting (XSS) 2017-04-03
security-alert hpe com
SEC Consult SA-20170403-0 :: Misbehavior of PHP fsockopen function 2017-04-03
SEC Consult Vulnerability Lab (research sec-consult com)
Splunk Enterprise Information Theft CVE-2017-5607 2017-04-01
apparitionsec gmail com (hyp3rlinx)
Malware
Phishing
moneygram office | 4th April 2017 |
Chase | 3rd April 2017 |
Economic and Financial Crimes | 3rd April 2017 |
Platinum Indigo MasterCard | 3rd April 2017 |
Vulnerebility
Google Nexus Qualcomm IPA Driver CVE-2016-10234 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97365
Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96732
Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96421
Linux Kernel CVE-2016-2117 Remote Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/84500
Linux Kernel CVE-2017-6353 Incomplete Fix Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96473
Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97018
Linux Kernel CVE-2017-6347 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96487
Linux kernel CVE-2017-6346 Use After Free Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96508
Linux Kernel CVE-2017-2596 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/95878
Linux kernel CVE-2017-6345 Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96510
Google Nexus Qualcomm Wi-Fi Driver CVE-2017-0584 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97363
Linux Kernel CVE-2016-9191 Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94129
Linux Kernel CVE-2017-2584 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/95430
Linux Kernel CVE-2017-2583 Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/95673
Linux Kernel CVE-2017-5669 Local Security Bypass Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96754
Google Android HTC Touchscreen Driver CVE-2017-0577 Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97348
Google Pixel/Pixel XL Qualcomm Video Driver CVE-2017-6425 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97362
Google Nexus Qualcomm Sound Driver CVE-2017-0586 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97357
Google Pixel/Pixel XL Qualcomm USB Driver CVE-2016-10236 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97359
Google Pixel C CVE-2017-0329 Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97353
Linux Kernel CVE-2017-6001 Incomplete Fix Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96264
Linux Kernel CVE-2017-7187 Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96989
Linux Kernel 'arch/x86/kvm/vmx.c' Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94933
Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/95677
Linux Kernel 'kvm/emulate.c' Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94615
Linux kernel 'ip6_gre.c' Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/96037
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94708
Linux Kernel CVE-2016-10088 Incomplete Fix Multiple Local Memory Corruption Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/95169
Linux Kernel CVE-2016-3951 Null Pointer Deference Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/91028
Linux Kernel CVE-2016-8632 Local Heap Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94211Google Android SurfaceFlinger CVE-2017-0546 Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97341
Google Android HTC Touchscreen Driver CVE-2017-0563 Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97342
Google Android NVIDIA Crypto Driver Multiple Information Disclosure Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97347
Google Android Qualcomm Video Driver Multiple Privilege Escalation Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97339
Google Android CameraBase CVE-2017-0544 Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97337
Google Android Mediaserver CVE-2017-0547 Information Disclosure Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97338
Google Android Mediaserver Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97336
Google Android Synaptics Touchscreen Driver Multiple Privilege Escalation Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97335
Google Android Mediaserver Multiple Information Disclosure Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97332
Google Android NVIDIA Crypto Driver Multiple Privilege Escalation Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97333
Google Android Qualcomm components Multiple Unspecified Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97334
Google Android Mediaserver Multiple Memory Corruption Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97330
Google Android Broadcom Wi-Fi Driver Multiple Privilege Escalation Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97331
Google Android Qualcomm components Multiple Unspecified Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97329
Apple iOS CVE-2017-6975 Arbitray Code Execution Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97328
libarchive CVE-2016-10209 Denial Of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97327
Multiple IBM Products CVE-2016-6100 Cross Site Request Forgery Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97326
collectd CVE-2017-7401 Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97321
IBM Business Process Manager CVE-2017-1140 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97322
Ninka CVE-2017-7239 Security Bypass Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97325
OpenStack Horizon CVE-2017-7400 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97324
Capstone 'winkernel_mm.c' Integer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97323
CHICKEN CVE-2017-6949 Remote Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97317
Novell eDirectory CVE-2016-9168 Clickjacking Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97320
QEMU 'hw/9pfs/9p.c' Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97319
Multiple Symantec Products CVE-2016-6590 DLL Loading Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94279
WallacePOS 'myaccount/resetpassword.php' Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97316
Novell GroupWise CVE-2016-9169 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97318
Novell eDirectory CVE-2016-9167 Remote Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97315
audiofile CVE-2017-6837 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97314Google Android Broadcom Wi-Fi Driver Multiple Privilege Escalation Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97331
Google Android Qualcomm components Multiple Unspecified Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97329
Apple iOS CVE-2017-6975 Arbitray Code Execution Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97328
libarchive CVE-2016-10209 Denial Of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97327
Multiple IBM Products CVE-2016-6100 Cross Site Request Forgery Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97326
collectd CVE-2017-7401 Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97321
IBM Business Process Manager CVE-2017-1140 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97322
Ninka CVE-2017-7239 Security Bypass Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97325
OpenStack Horizon CVE-2017-7400 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97324
Capstone 'winkernel_mm.c' Integer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97323
CHICKEN CVE-2017-6949 Remote Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97317
Novell eDirectory CVE-2016-9168 Clickjacking Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97320
QEMU 'hw/9pfs/9p.c' Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97319
Multiple Symantec Products CVE-2016-6590 DLL Loading Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94279
WallacePOS 'myaccount/resetpassword.php' Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97316
Novell GroupWise CVE-2016-9169 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97318
Novell eDirectory CVE-2016-9167 Remote Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97315
audiofile CVE-2017-6837 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97314
HelpMeWatchWho CVE-2017-7387 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97309
radare2 CVE-2017-6448 Stack Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97313
TigerVNC Multiple Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97305
Pixie CVE-2017-7361 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97274
SocialNetwork CVE-2017-7390 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97312
Openeclass 'webconf/webconf.php' Multiple Cross Site Scripting Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97310
Magmi 'magmi/web/ajax_gettime.php' Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97311
Linux Kernel CVE-2017-7374 Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97308
Apple iOS/macOS/WatchOS/tvOS CVE-2017-2490 Memory Corruption Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97301
podofo Null Pointer Dereference Denial of Service and Heap Based Buffer Overflow Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97296
yaml-cpp CVE-2017-5950 Stack Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97307
Multiple Splunk Products Multiple Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97297Multiple IBM Products CVE-2016-6100 Cross Site Request Forgery Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97326
collectd CVE-2017-7401 Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97321
IBM Business Process Manager CVE-2017-1140 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97322
Ninka CVE-2017-7239 Security Bypass Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97325
OpenStack Horizon CVE-2017-7400 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97324
Capstone 'winkernel_mm.c' Integer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97323
CHICKEN CVE-2017-6949 Remote Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97317
Novell eDirectory CVE-2016-9168 Clickjacking Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97320
QEMU 'hw/9pfs/9p.c' Multiple Denial of Service Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97319
Multiple Symantec Products CVE-2016-6590 DLL Loading Local Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/94279
WallacePOS 'myaccount/resetpassword.php' Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97316
Novell GroupWise CVE-2016-9169 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97318
Novell eDirectory CVE-2016-9167 Remote Privilege Escalation Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97315
audiofile CVE-2017-6837 Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97314
HelpMeWatchWho CVE-2017-7387 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97309
radare2 CVE-2017-6448 Stack Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97313
TigerVNC Multiple Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97305
Pixie CVE-2017-7361 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97274
SocialNetwork CVE-2017-7390 Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97312
Openeclass 'webconf/webconf.php' Multiple Cross Site Scripting Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97310
Magmi 'magmi/web/ajax_gettime.php' Cross Site Scripting Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97311
Linux Kernel CVE-2017-7374 Local Denial of Service Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97308
Apple iOS/macOS/WatchOS/tvOS CVE-2017-2490 Memory Corruption Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97301
podofo Null Pointer Dereference Denial of Service and Heap Based Buffer Overflow Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97296
yaml-cpp CVE-2017-5950 Stack Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97307
Multiple Splunk Products Multiple Security Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97297
Apple macOS CVE-2017-2477 Multiple Memory Corruption Vulnerabilities
2017-04-04
http://www.securityfocus.com/bid/97303
Adobe Acrobat and Reader CVE-2017-3010 Unspecified Memory Corruption Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97306
Adobe Acrobat and Reader CVE-2017-3009 Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97302
radare2 'libr/bin/p/bin_bflt.c' Remote Heap Buffer Overflow Vulnerability
2017-04-04
http://www.securityfocus.com/bid/97299
SANS News
A Practical Use for a SHA1 Collision
Threatpost
Fake SEO Plugin Used In WordPress Malware Attacks
Memory Corruption Mitigations Doing Their Job
Exploit
Apache Tomcat 6/7/8/9 - Information Disclosure
Maian Uploader 4.0 - 'user' Parameter SQL Injection
Maian Survey 1.1 - 'survey' Parameter SQL Injection
Maian Greetings 2.1 - 'cat' Parameter SQL Injection
Zyxel, EMG2926 < V1.00(AAQT.4)b8 - OS Command Injection
Bluecoat ASG 6.6/CAS 1.3 - OS Command Injection (Metasploit)
Pixie 1.0.4 - Arbitrary File Upload
Bluecoat ASG 6.6/CAS 1.3 - Privilege Escalation (Metasploit)
3.4.2017
Bugtraq
SEC Consult SA-20170403-0 :: Misbehavior of PHP fsockopen function 2017-04-03
SEC Consult Vulnerability Lab (research sec-consult com)
Splunk Enterprise Information Theft CVE-2017-5607 2017-04-01
apparitionsec gmail com (hyp3rlinx)
[security bulletin] HPESBGN03722 rev.1 - HPE Operations Agent, Local Escalation of Privilege 2017-03-31
security-alert hpe com
[security bulletin] HPESBHF03723 rev.1 - HPE Aruba ClearPass Policy Manager, using Apache Struts, Remote Code Execution 2017-03-29
security-alert hpe com
Malware
Phishing
Platinum Indigo MasterCard | 3rd April 2017 |
AOL | 2nd April 2017 |
Apple | 1st April 2017 |
Economic and Financial Crimes | 1st April 2017 |
Citi Alerts | 1st April 2017 |
Vulnerebility
Adobe Acrobat and Reader CVE-2017-3010 Unspecified Memory Corruption Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97306
Adobe Acrobat and Reader CVE-2017-3009 Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97302
radare2 'libr/bin/p/bin_bflt.c' Remote Heap Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97299
Ruby CVE-2017-6181 Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97304
WebKit CVE-2017-5949 Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97298
Apple macOS CVE-2017-2489 Information Disclosure Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97300
LastPass Isolated World Global Properties Remote Code Execution Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97295
Ceragon FibeAir IP-10 Web Interface Authentication Bypass Vulnerability
2017-04-03
http://www.securityfocus.com/bid/91263
GNU glibc 'getaddrinfo()' Function Incomplete Fix Remote Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/88440
Multiple GIGABYTE Products VU#507496 Multiple Security Bypass Vulnerabilities
2017-04-03
http://www.securityfocus.com/bid/97294
CMS Made Simple CVE-2017-7255 Cross-Site Scripting Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97203
CHICKEN CVE-2015-4556 Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97293
libplist 'parse_string_node()' Function Local Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97290
libplist 'base64encode()' Function Local Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97291
Splunk Enterprise HTML Injection and Information Disclosure Vulnerabilities
2017-04-03
http://www.securityfocus.com/bid/97286
ownCloud and Nextcloud CVE-2016-9459 HTML Injection Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97284
Pitivi CVE-2015-0855 Arbitrary Code Execution Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97283
Nextcloud CVE-2016-9464 Unauthorized Access Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97287
ownCloud and Nextcloud CVE-2016-9462 Security Bypass Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97285
Multiple VMware Products CVE-2017-4902 Local Heap-Based Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97163
Multiple VMware Products CVE-2017-4904 Local Memory Corruption Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97165
Multiple VMware Products CVE-2017-4905 Local Information Disclosure Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97164
ownCloud and NextCloud CVE-2016-9460 Content Spoofing Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97282
Mozilla Firefox CVE-2017-5428 Integer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/96959
GNU Binutils CVE-2017-7224 Remote Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97277
Multiple VMware Products CVE-2017-4903 Local Memory Corruption Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97160
Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97018
Exponent CMS CVE-2016-9087 SQL Injection Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97271
libplist 'parse_string_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97278
libplist 'parse_unicode_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97281
libplist 'parse_string_node()' Function Local Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97290
libplist 'base64encode()' Function Local Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97291
Splunk Enterprise HTML Injection and Information Disclosure Vulnerabilities
2017-04-03
http://www.securityfocus.com/bid/97286
ownCloud and Nextcloud CVE-2016-9459 HTML Injection Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97284
Pitivi CVE-2015-0855 Arbitrary Code Execution Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97283
Nextcloud CVE-2016-9464 Unauthorized Access Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97287
ownCloud and Nextcloud CVE-2016-9462 Security Bypass Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97285
Multiple VMware Products CVE-2017-4902 Local Heap-Based Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97163
Multiple VMware Products CVE-2017-4904 Local Memory Corruption Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97165
Multiple VMware Products CVE-2017-4905 Local Information Disclosure Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97164
ownCloud and NextCloud CVE-2016-9460 Content Spoofing Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97282
Mozilla Firefox CVE-2017-5428 Integer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/96959
GNU Binutils CVE-2017-7224 Remote Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97277
Multiple VMware Products CVE-2017-4903 Local Memory Corruption Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97160
Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97018
Exponent CMS CVE-2016-9087 SQL Injection Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97271
libplist 'parse_string_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97278
libplist 'parse_unicode_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97281
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-03
http://www.securityfocus.com/bid/94708
ownCloud and Nextcloud CVE-2016-9461 Unauthorized Access Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97276
Linux Kernel CVE-2016-2384 Local Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/83256
Quagga Routing Software Suite CVE-2016-4049 Denial Of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/88561
IBM Cognos Analytics CVE-2016-3031 Cross Site Scripting Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97280
IBM Cognos Analytics CVE-2016-3015 Cross Site Scripting Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97279
GNU Binutils CVE-2017-7225 Remote Denial of Service Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97275
Exponent CMS CVE-2016-9020 SQL Injection Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97269
IBM TRIRIGA Application Platform CVE-2017-1180 Unspecified Remote Privilege Escalation Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97273
Pixie CVE-2017-7361 Cross Site Scripting Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97274
Trend Micro Mobile Security CVE-2016-9319 SSL Certificate Validation Security Bypass Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97272
Pixie CVE-2017-7362 Cross Site Scripting Vulnerability
2017-04-03
http://www.securityfocus.com/bid/97268
SANS News
IPFire - A Household Multipurpose Security Gateway
Threatpost
Fake SEO Plugin Used In WordPress Malware Attacks
Memory Corruption Mitigations Doing Their Job
Exploit
2.4.2017
Bugtraq
[security bulletin] HPESBGN03722 rev.1 - HPE Operations Agent, Local Escalation of Privilege 2017-03-31
security-alert hpe com
[security bulletin] HPESBHF03723 rev.1 - HPE Aruba ClearPass Policy Manager, using Apache Struts, Remote Code Execution 2017-03-29
security-alert hpe com
[security bulletin] HPESBUX03725 rev.1 - HPE HP-UX Web Server Suite running Apache, Multiple Vulnerabilities 2017-03-29
security-alert hpe com
ESA-2017-013: RSA Archer® GRC Security Operations Management Sensitive Information Disclosure Vulnerability 2017-03-29
EMC Product Security Response Center (Security_Alert emc com)
ESA-2017-028: EMC Isilon OneFS Path Traversal Vulnerability 2017-03-29
EMC Product Security Response Center (Security_Alert emc com)
[SECURITY] [DSA 3824-1] firebird2.5 security update 2017-03-29
Sebastien Delafond (seb debian org)
Malware
Worm:Win32/Bluber.A
BrowserModifier:Win32/ShopNav
Trojan:Win32/FakeSysdef
Adware:Win32/Peapoon
Phishing
Amazon Gift Cards | 31st March 2017 |
Satellite Dealer | 31st March 2017 |
Apple ID | 31st March 2017 |
Reminder: We have updates on | |
Vulnerebility
libplist 'parse_string_node()' Function Local Denial of Service Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97290
libplist 'base64encode()' Function Local Denial of Service Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97291
Splunk Enterprise HTML Injection and Information Disclosure Vulnerabilities
2017-04-02
http://www.securityfocus.com/bid/97286
ownCloud and Nextcloud CVE-2016-9459 HTML Injection Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97284
Pitivi CVE-2015-0855 Arbitrary Code Execution Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97283
Nextcloud CVE-2016-9464 Unauthorized Access Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97287
ownCloud and Nextcloud CVE-2016-9462 Security Bypass Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97285
Multiple VMware Products CVE-2017-4902 Local Heap-Based Buffer Overflow Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97163
Multiple VMware Products CVE-2017-4904 Local Memory Corruption Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97165
Multiple VMware Products CVE-2017-4905 Local Information Disclosure Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97164
ownCloud and NextCloud CVE-2016-9460 Content Spoofing Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97282
Mozilla Firefox CVE-2017-5428 Integer Overflow Vulnerability
2017-04-02
http://www.securityfocus.com/bid/96959
GNU Binutils CVE-2017-7224 Remote Denial of Service Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97277
Multiple VMware Products CVE-2017-4903 Local Memory Corruption Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97160
Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97018
Exponent CMS CVE-2016-9087 SQL Injection Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97271
libplist 'parse_string_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97278
libplist 'parse_unicode_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97281
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-02
http://www.securityfocus.com/bid/94708
ownCloud and Nextcloud CVE-2016-9461 Unauthorized Access Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97276
Linux Kernel CVE-2016-2384 Local Denial of Service Vulnerability
2017-04-02
http://www.securityfocus.com/bid/83256
Quagga Routing Software Suite CVE-2016-4049 Denial Of Service Vulnerability
2017-04-02
http://www.securityfocus.com/bid/88561
IBM Cognos Analytics CVE-2016-3031 Cross Site Scripting Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97280
IBM Cognos Analytics CVE-2016-3015 Cross Site Scripting Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97279
GNU Binutils CVE-2017-7225 Remote Denial of Service Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97275
Exponent CMS CVE-2016-9020 SQL Injection Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97269
IBM TRIRIGA Application Platform CVE-2017-1180 Unspecified Remote Privilege Escalation Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97273
Pixie CVE-2017-7361 Cross Site Scripting Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97274
Trend Micro Mobile Security CVE-2016-9319 SSL Certificate Validation Security Bypass Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97272
Pixie CVE-2017-7362 Cross Site Scripting Vulnerability
2017-04-02
http://www.securityfocus.com/bid/97268libplist 'parse_string_node()' Function Local Denial of Service Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97290
libplist 'base64encode()' Function Local Denial of Service Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97291
Splunk Enterprise HTML Injection and Information Disclosure Vulnerabilities
2017-04-01
http://www.securityfocus.com/bid/97286
ownCloud and Nextcloud CVE-2016-9459 HTML Injection Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97284
Pitivi CVE-2015-0855 Arbitrary Code Execution Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97283
Nextcloud CVE-2016-9464 Unauthorized Access Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97287
ownCloud and Nextcloud CVE-2016-9462 Security Bypass Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97285
Multiple VMware Products CVE-2017-4902 Local Heap-Based Buffer Overflow Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97163
Multiple VMware Products CVE-2017-4904 Local Memory Corruption Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97165
Multiple VMware Products CVE-2017-4905 Local Information Disclosure Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97164
ownCloud and NextCloud CVE-2016-9460 Content Spoofing Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97282
Mozilla Firefox CVE-2017-5428 Integer Overflow Vulnerability
2017-04-01
http://www.securityfocus.com/bid/96959
GNU Binutils CVE-2017-7224 Remote Denial of Service Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97277
Multiple VMware Products CVE-2017-4903 Local Memory Corruption Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97160
Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97018
Exponent CMS CVE-2016-9087 SQL Injection Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97271
libplist 'parse_string_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97278
libplist 'parse_unicode_node()' Function Local Heap Buffer Overflow Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97281
Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-04-01
http://www.securityfocus.com/bid/94708
ownCloud and Nextcloud CVE-2016-9461 Unauthorized Access Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97276
Linux Kernel CVE-2016-2384 Local Denial of Service Vulnerability
2017-04-01
http://www.securityfocus.com/bid/83256
Quagga Routing Software Suite CVE-2016-4049 Denial Of Service Vulnerability
2017-04-01
http://www.securityfocus.com/bid/88561
IBM Cognos Analytics CVE-2016-3031 Cross Site Scripting Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97280
IBM Cognos Analytics CVE-2016-3015 Cross Site Scripting Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97279
GNU Binutils CVE-2017-7225 Remote Denial of Service Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97275
Exponent CMS CVE-2016-9020 SQL Injection Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97269
IBM TRIRIGA Application Platform CVE-2017-1180 Unspecified Remote Privilege Escalation Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97273
Pixie CVE-2017-7361 Cross Site Scripting Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97274
Trend Micro Mobile Security CVE-2016-9319 SSL Certificate Validation Security Bypass Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97272
Pixie CVE-2017-7362 Cross Site Scripting Vulnerability
2017-04-01
http://www.securityfocus.com/bid/97268
SANS News
Threatpost
Aviation-Related Phishing Campaigns Seeking Credentials
Exploit