Databáze Hot News 2017 June - 2017 January February March April May June July August September October November December
30.6.2017
Bugtraq
Microsoft Dynamic CRM 2016 - Cross-Site Scripting vulnerability 2017-06-30
gregory draperi (gregory draperi gmail com)
SEC Consult SA-20170630-0 :: Multiple critical vulnerabilities in OSCI-Transport library 1.2 for German e-Government 2017-06-30
SEC Consult Vulnerability Lab (research sec-consult com)
ESA-2017-062: VASA Provider Virtual Appliance Remote Code Execution Vulnerability 2017-06-28
EMC Product Security Response Center (Security_Alert emc com)
[SECURITY] [DSA 3900-1] openvpn security update 2017-06-27
Sebastien Delafond (seb untangle com)
[SECURITY] [DSA 3886-2] linux regression update 2017-06-27
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
spoof | 30th June 2017 |
Chase.com | 29th June 2017 |
Vulnerebility
GnuTLS CVE-2017-7507 NULL Pointer Dereference Denial of Service Vulnerability
2017-06-30
http://www.securityfocus.com/bid/99102
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-30
http://www.securityfocus.com/bid/98636
Samba CVE-2017-2619 Symlink Vulnerability
2017-06-30
http://www.securityfocus.com/bid/97033
Multiple Intel Products CVE-2017-5689 Privilege Escalation Vulnerability
2017-06-30
http://www.securityfocus.com/bid/98269
ISC BIND CVE-2017-3143 Security Bypass Vulnerability
2017-06-30
http://www.securityfocus.com/bid/99337
HP SiteScope Monitors Information Disclosure and Security Bypass Vulnerabilities
2017-06-30
http://www.securityfocus.com/bid/99331
OpenSSL CVE-2016-6304 Denial of Service Vulnerability
2017-06-30
http://www.securityfocus.com/bid/93150
Schneider Electric U.motion Builder Multiple Security Vulnerabilities
2017-06-30
http://www.securityfocus.com/bid/99344
HP Network Node Manager i (NNMi) Software Multiple Unspecified Security Vulnerabilities
2017-06-30
http://www.securityfocus.com/bid/99342
Biscom Secure File Transfer CVE-2017-5241 Multiple HTML Injection Vulnerabilities
2017-06-30
http://www.securityfocus.com/bid/99341
Cisco IOS and IOS XE Software Multiple Remote Code Execution Vulnerabilities
2017-06-29
http://www.securityfocus.com/bid/99345
Siemens Viewport for Web Office Portal CVE-2017-6869 Remote Security Bypass Vulnerability
2017-06-29
http://www.securityfocus.com/bid/99343
ISC BIND CVE-2017-3142 Security Bypass Vulnerability
2017-06-29
http://www.securityfocus.com/bid/99339
Libgcrypt CVE-2017-7526 Information Disclosure Vulnerability
2017-06-29
http://www.securityfocus.com/bid/99338
e-Tax software CVE-2017-2226 DLL Loading Remote Code Execution Vulnerability
2017-06-29
http://www.securityfocus.com/bid/99334
Kaspersky Anti-Virus for Linux File Server Multiple Security Vulnerabilities
2017-06-29
http://www.securityfocus.com/bid/99330
Adobe Flash Player and AIR APSB16-01 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-28
http://www.securityfocus.com/bid/79701
Linux kernel CVE-2017-9986 Local Denial of Service Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99336
Linux kernel CVE-2017-9985 Local Denial of Service Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99335
Red Hat CloudForms Management Engine CVE-2016-7047 Information Disclosure Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99329
Drupal SMTP Authentication Support Module Information Disclosure Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99327
FFmpeg CVE-2017-9996 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99323
ownCloud CVE-2017-9338 Cross-Site Scripting Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99322
ownCloud CVE-2017-8896 Cross-Site Scripting Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99321
FFmpeg CVE-2017-9995 Multiple Heap Buffer Overflow Vulnerabilities
2017-06-28
http://www.securityfocus.com/bid/99320
FFmpeg CVE-2017-9992 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99319
Drupal Services Module SQL Injection Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99318
FFmpeg CVE-2017-9994 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99317
FFmpeg CVE-2017-9991 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99316
FFmpeg CVE-2017-9993 Arbitrary File Read Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99315
SANS News
Threatpost
Microsoft Issues ‘Important’ Security Fix for Azure AD Connect
‘Little Hope’ to Recover Data Lost to Petya Ransomware
Linux Systemd Bug Could Have Led to Crash, Code Execution
ExPetr Called a Wiper Attack, Not Ransomware
Exploit
Veritas/Symantec Backup Exec - SSL NDMP Connection Use-After-Free (Metasploit)
ActiveMQ < 5.14.0 - web shell upload (Metasploit)
29.6.2017
Bugtraq
ESA-2017-062: VASA Provider Virtual Appliance Remote Code Execution Vulnerability 2017-06-28
EMC Product Security Response Center (Security_Alert emc com)
[SECURITY] [DSA 3900-1] openvpn security update 2017-06-27
Sebastien Delafond (seb untangle com)
[SECURITY] [DSA 3886-2] linux regression update 2017-06-27
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3899-1] vlc security update 2017-06-27
Salvatore Bonaccorso (carnil debian org)
[slackware-security] kernel (SSA:2017-177-01) 2017-06-26
Slackware Security Team (security slackware com)
Malware
Phishing
Chase.com | 29th June 2017 |
Vulnerebility
Kaspersky Anti-Virus for Linux File Server Multiple Security Vulnerabilities
2017-06-29
http://www.securityfocus.com/bid/99330
Adobe Flash Player and AIR APSB16-01 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-28
http://www.securityfocus.com/bid/79701
FFmpeg CVE-2017-9996 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99323
ownCloud CVE-2017-9338 Cross-Site Scripting Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99322
ownCloud CVE-2017-8896 Cross-Site Scripting Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99321
FFmpeg CVE-2017-9995 Multiple Heap Buffer Overflow Vulnerabilities
2017-06-28
http://www.securityfocus.com/bid/99320
FFmpeg CVE-2017-9992 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99319
Drupal Services Module SQL Injection Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99318
FFmpeg CVE-2017-9994 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99317
FFmpeg CVE-2017-9991 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99316
FFmpeg CVE-2017-9993 Arbitrary File Read Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99315
SANS News
Catching up with Blank Slate: a malspam campaign still going strong
Threatpost
Google Hit With $2.7 Billion Antitrust Fine
Average Bug Bounty Payments Growing
Microsoft Issues ‘Important’ Security Fix for Azure AD Connect
‘Little Hope’ to Recover Data Lost to Petya Ransomware
Exploit
Linux - 'ldso_hwcap' Local Root Stack Clash Exploit
Oracle Solaris 11.1 / 11.3 RSH - Local Root Stack Clash Exploit
Linux - 'ldso_hwcap_64' Local Root Stack Clash Exploit
OpenBSD - 'at' Local Root Stack Clash Exploit
Flat Assembler 1.7.21 - Buffer Overflow
Linux - 'ldso_dynamic' Local Root Stack Clash Exploit
Linux - 'offset2lib' Stack Clash Exploit
NetBSD - Stack Clash Proof of Concept
FreeBSD - 'FGPU' Stack Clash Proof of Concept
FreeBSD - 'FGPE' Stack Clash Proof of Concept
FreeBSD - 'setrlimit' Stack Clash Proof of Concept
28.6.2017
Bugtraq
[SECURITY] [DSA 3900-1] openvpn security update 2017-06-27
Sebastien Delafond (seb untangle com)
[SECURITY] [DSA 3886-2] linux regression update 2017-06-27
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3899-1] vlc security update 2017-06-27
Salvatore Bonaccorso (carnil debian org)
[slackware-security] kernel (SSA:2017-177-01) 2017-06-26
Slackware Security Team (security slackware com)
[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-26
wpengfeinudt gmail com
DefenseCode Security Advisory: IBM DB2 Command Line Processor Buffer Overflow 2017-06-26
DefenseCode (defensecode defensecode com)
Microsoft Skype v7.2, v7.35 & v7.36 - Stack Buffer Overflow Vulnerability 2017-06-26
Vulnerability Lab (research vulnerability-lab com)
Malware
Ransom:Win32/Petya
Ransom:Win32/Petya.B
Ransom:Win32/Petya.B
Ransom:Win32/Petya
Ransom:Win32/Petya.A
Win32/Petya
Trojan:Win32/Petya.G
Ransom:DOS/Petya.B
Ransom:DOS/Petya.A
Phishing
Amazon | 27th June 2017 |
Bank of America | 26th June 2017 |
Vulnerebility
Adobe Flash Player and AIR APSB16-01 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-28
http://www.securityfocus.com/bid/79701
ownCloud CVE-2017-8896 Cross-Site Scripting Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99321
FFmpeg CVE-2017-9995 Multiple Heap Buffer Overflow Vulnerabilities
2017-06-28
http://www.securityfocus.com/bid/99320
FFmpeg CVE-2017-9992 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99319
Drupal Services Module SQL Injection Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99318
FFmpeg CVE-2017-9994 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99317
FFmpeg CVE-2017-9991 Heap Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99316
FFmpeg CVE-2017-9993 Arbitrary File Read Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99315
Linux kernel CVE-2017-9984 Local Denial of Service Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99314
FFmpeg CVE-2017-9990 Stack Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99313
Libdwarf CVE-2017-9998 Remote Denial Of Service Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99310
GNU Binutils CVE-2017-9954 Remote Denial of Service Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99307
systemd CVE-2017-9445 Out-Of-Bounds Write Remote Code Execution Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99302
Linux Kernel CVE-2017-7482 Local Buffer Overflow Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99299
Linux Kernel CVE-2017-8797 Denial of Service Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99298
Lenovo VIBE Mobile CVE-2017-3748 Local Privilege Escalation Vulnerability
2017-06-28
http://www.securityfocus.com/bid/99295
Microsoft Skype 'MSFTEDIT.DLL' Buffer Overflow Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99281
IBM DB2 CVE-2017-1297 Local Buffer Overflow Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99271
Cisco AnyConnect Secure Mobility Client CVE-2017-6638 Local Privilege Escalation Vulnerability
2017-06-27
http://www.securityfocus.com/bid/98938
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-06-27
http://www.securityfocus.com/bid/97957
Ghostscript CVE-2017-7207 Denial of Service Vulnerability
2017-06-27
http://www.securityfocus.com/bid/96995
Red Hat Gluster Storage Server CVE-2015-1795 Local Privilege Escalation Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99311
TeamSpeak Client CVE-2017-9982 Denial of Service Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99308
Microsoft Azure Active Directory Connect CVE-2017-8613 Remote Privilege Escalation Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99294
Apache Ignite CVE-2017-7686 Information Disclosure Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99292
Multiple Newport Products CVE-2017-7919 Authentication Bypass Vulnerability
2017-06-27
http://www.securityfocus.com/bid/99291
SANS News
Threatpost
Major Hole Plugged in Secure File Transfer Tool
Second Global Ransomware Outbreak Under Way
Google Hit With $2.7 Billion Antitrust Fine
Exploit
Microsoft MsMpEng - mpengine x86 Emulator Heap Corruption in VFS API
Easy File Sharing Web Server 7.2 - GET HTTP Request (PassWD) Buffer Overflow (SEH)
WordPress Plugin Ultimate Product Catalogue 4.2.2 - SQL Injection
27.6.2017
Bugtraq
[SECURITY] [DSA 3899-1] vlc security update 2017-06-27
Salvatore Bonaccorso (carnil debian org)
[slackware-security] kernel (SSA:2017-177-01) 2017-06-26
Slackware Security Team (security slackware com)
[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-26
wpengfeinudt gmail com
DefenseCode Security Advisory: IBM DB2 Command Line Processor Buffer Overflow 2017-06-26
DefenseCode (defensecode defensecode com)
Microsoft Skype v7.2, v7.35 & v7.36 - Stack Buffer Overflow Vulnerability 2017-06-26
Vulnerability Lab (research vulnerability-lab com)
Malware
Phishing
Bank of America | 26th June 2017 |
Vulnerebility
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-06-27
http://www.securityfocus.com/bid/97957
Ghostscript CVE-2017-7207 Denial of Service Vulnerability
2017-06-27
http://www.securityfocus.com/bid/96995
Microsoft Skype 'MSFTEDIT.DLL' Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99281
OCaml CVE-2017-9772 Local Privilege Escalation Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99277
Expat CVE-2017-9233 XML External Entity Denial of Service Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99276
LAME CVE-2017-9869 Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99272
LAME CVE-2017-9872 Stack Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99270
LAME CVE-2015-9101 Heap Based Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99269
LAME CVE-2015-9099 Denial of Service Vulnerability
2017-06-25
http://www.securityfocus.com/bid/99279
LAME CVE-2015-9100 Denial of Service Vulnerability
2017-06-25
http://www.securityfocus.com/bid/99278
IBM QRadar SIEM CVE-2016-9972 Information Disclosure Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99268
IBM API Connect CVE-2017-1328 Security Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99267
IBM QRadar SIEM CVE-2016-9738 Security Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99266
IBM QRadar CVE-2017-1234 HTML Injection Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99265
Linux Kernel CVE-2017-7518 Privilage Escalation Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99263
Microsoft Malware Protection Engine CVE-2017-8558 Remote Code Execution Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99262
Huawei Smart Phones CVE-2017-8143 Local Denial of Service Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99256
SANS News
Threatpost
Another RCE Vulnerability Patched in Microsoft Malware Protection Engine
Anthem Agrees to Settle 2015 Data Breach for $115 Million
Svpeng Behind a Spike in Mobile Ransomware
Exploit
Symantec Messaging Gateway 10.6.2-7 - Remote Code Execution (Metasploit)
Netgear DGN2200 - dnslookup.cgi Command Injection (Metasploit)
Easy File Sharing HTTP Server 7.2 - POST Buffer Overflow (Metasploit)
Eltek SmartPack - Backdoor Account
JAD Java Decompiler 1.5.8e - Buffer Overflow
NTFS 3.1 - Master File Table Denial of Service
LAME 3.99.5 - 'II_step_one' Buffer Overflow
LAME 3.99.5 - 'III_dequantize_sample' Stack-Based Buffer Overflow
IBM DB2 9.7 / 10.1 / 10.5 / 11.1 - Command Line Processor Buffer Overflow
Linux/x86 - Bind Shell Shellcode (75 bytes)
26.6.2017
Bugtraq
[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-26
wpengfeinudt gmail com
DefenseCode Security Advisory: IBM DB2 Command Line Processor Buffer Overflow 2017-06-26
DefenseCode (defensecode defensecode com)
Microsoft Skype v7.2, v7.35 & v7.36 - Stack Buffer Overflow Vulnerability 2017-06-26
Vulnerability Lab (research vulnerability-lab com)
[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-24
wpengfeinudt gmail com
[CVE-2017-8813] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-22
wpengfeinudt gmail com
Malware
Phishing
Wells Fargo | 24th June 2017 |
UNITED BANK OF AFRICA UBA | 24th June 2017 |
PayPal | 24th June 2017 |
NOTIFICATION ABOUT YOUR PAYPAL | |
Vulnerebility
Microsoft Skype 'MSFTEDIT.DLL' Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99281
OCaml CVE-2017-9772 Local Privilege Escalation Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99277
Expat CVE-2017-9233 XML External Entity Denial of Service Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99276
LAME CVE-2017-9869 Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99272
LAME CVE-2017-9872 Stack Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99270
LAME CVE-2015-9101 Heap Based Buffer Overflow Vulnerability
2017-06-26
http://www.securityfocus.com/bid/99269
LAME CVE-2015-9099 Denial of Service Vulnerability
2017-06-25
http://www.securityfocus.com/bid/99279
LAME CVE-2015-9100 Denial of Service Vulnerability
2017-06-25
http://www.securityfocus.com/bid/99278
IBM QRadar SIEM CVE-2016-9972 Information Disclosure Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99268
IBM API Connect CVE-2017-1328 Security Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99267
IBM QRadar SIEM CVE-2016-9738 Security Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99266
IBM QRadar CVE-2017-1234 HTML Injection Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99265
Linux Kernel CVE-2017-7518 Privilage Escalation Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99263
Microsoft Malware Protection Engine CVE-2017-8558 Remote Code Execution Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99262
Huawei Smart Phones CVE-2017-8143 Local Denial of Service Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99256
NetBSD CVE-2017-1000378 Arbitrary Code Execution Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99255
Multiple Pivotal Products CVE-2017-4974 SQL Injection Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99254
Siemens XHQ CVE-2017-6866 Access Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99247
IBM Sterling B2B Integrator CVE-2017-1348 Unspecified Cross Site Scripting Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99245
GNU Debugger (GDB) CVE-2017-9778 Denial of Service Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99244
EMC Avamar Authentication Bypass And Arbitrary File Upload Vulnerabilities
2017-06-23
http://www.securityfocus.com/bid/99243
Oracle Java SE and JRockit CVE-2017-3511 Local Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97731
zlib Multiple Denial of Service Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/95131
Oracle Java SE CVE-2017-3514 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97729
Oracle Java SE CVE-2017-3512 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97727
IBM Java SDK CVE-2017-1289 XML External Entity Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/98401
Oracle Java SE CVE-2017-3539 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97752
Oracle Java SE CVE-2017-3509 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97737
Oracle Java SE and JRockit CVE-2017-3544 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97745
Oracle Java SE and JRockit CVE-2017-3533 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97740
SANS News
Investigation of BitTorrent Sync (v.2.0) as a P2P Cloud (Part 1)
Threatpost
New EU Privacy Laws Will Complicate B2B Data Sharing
Exploit
25.6.2017
Bugtraq
[CVE-2017-8813] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-22
wpengfeinudt gmail com
[SECURITY] [DSA 3893-1] jython security update 2017-06-22
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
PayPal | 24th June 2017 |
NOTIFICATION ABOUT YOUR PAYPAL | |
PayPal | 23rd June 2017 |
Wells Fargo | 23rd June 2017 |
TalkTalk | 23rd June 2017 |
Vulnerebility
Linux Kernel CVE-2017-7518 Privilage Escalation Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99263
Microsoft Malware Protection Engine CVE-2017-8558 Remote Code Execution Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99262
Huawei Smart Phones CVE-2017-8143 Local Denial of Service Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99256
NetBSD CVE-2017-1000378 Arbitrary Code Execution Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99255
Multiple Pivotal Products CVE-2017-4974 SQL Injection Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99254
Siemens XHQ CVE-2017-6866 Access Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99247
IBM Sterling B2B Integrator CVE-2017-1348 Unspecified Cross Site Scripting Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99245
GNU Debugger (GDB) CVE-2017-9778 Denial of Service Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99244
EMC Avamar Authentication Bypass And Arbitrary File Upload Vulnerabilities
2017-06-23
http://www.securityfocus.com/bid/99243
Oracle Java SE and JRockit CVE-2017-3511 Local Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97731
zlib Multiple Denial of Service Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/95131
Oracle Java SE CVE-2017-3514 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97729
Oracle Java SE CVE-2017-3512 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97727
IBM Java SDK CVE-2017-1289 XML External Entity Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/98401
Oracle Java SE CVE-2017-3539 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97752
Oracle Java SE CVE-2017-3509 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97737
Oracle Java SE and JRockit CVE-2017-3544 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97745
Oracle Java SE and JRockit CVE-2017-3533 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97740
Drupal Core CVE-2017-6920 Remote Code Execution Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99211
JasPer 'jp2_dec.c' Remote Heap Buffer Overflow Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99171
IBM Tivoli Monitoring SOAP Server CVE-2016-6083 Information Disclosure Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99259
IBM API Connect CVE-2017-1322 XML External Entity Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99258
MatrixSSL 'X509' Certificate Parsing Multiple Buffer Overflow Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/99249
ExpressionEngine CVE-2017-0897 Insufficient Entropy Weakness
2017-06-22
http://www.securityfocus.com/bid/99242
Poppler 'GfxState.cc' Stack Buffer Overflow Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99241
Poppler CVE-2017-9776 Denial of Service Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99240
LibTIFF 'libtiff/tif_dirread.c' Denial of Service Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99235
Siemens SIMATIC CP 44x-1 Redundant CVE-2017-6868 Authentication Bypass Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99234
OpenVPN Multiple Security Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/99230
IBM Sterling B2B Integrator CVE-2017-1193 Information Disclosure Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99229
SANS News
Threatpost
NSA Advocates Data Sharing Framework
Few Victims Reporting Ransomware Attacks to FBI
Siemens Patches Vulnerabilities in SIMATIC CP, XHQ
Exploit
Microsoft Windows - 'USP10!MergeLigRecords' Uniscribe Font Processing Heap-Based Memory...
Microsoft Windows - 'USP10!ttoGetTableData' Uniscribe Font Processing Out-of-Bounds...
Microsoft Windows - 'USP10!SubstituteNtoM' Uniscribe Font Processing Out-of-Bounds Memory...
Microsoft Windows - 'USP10!CreateIndexTable' Uniscribe Font Processing Out-of-Bounds...
Microsoft Windows - 'USP10!NextCharInLiga' Uniscribe Font Processing Out-of-Bounds Memory...
Microsoft Windows - 'USP10!otlSinglePosLookup::getCoverageTable' Uniscribe Font...
Microsoft Windows - 'USP10!otlValueRecord::adjustPos' Uniscribe Font Processing...
Microsoft Windows - 'USP10!otlReverseChainingLookup::apply' Uniscribe Font Processing...
Microsoft Windows - 'nt!NtQueryInformationResourceManager (information class 0)' Kernel...
Microsoft Windows - 'nt!NtQueryInformationResourceManager (information class 0)' Kernel...
Microsoft Windows - Kernel ATMFD.DLL Out-of-Bounds Read due to Malformed Name INDEX in...
Microsoft Windows - 'nt!NtQueryInformationWorkerFactory (WorkerFactoryBasicInformation)'...
unrar 5.40 - VMSF_DELTA Filter Arbitrary Memory Write
Microsoft Edge - 'CssParser::RecordProperty' Type Confusion
Adobe Flash - AVC Edge Processing Out-of-Bounds Read
Adobe Flash - Image Decoding Out-of-Bounds Read
Adobe Flash - ATF Parser Heap Corruption
23.6.2017
Bugtraq
[CVE-2017-8813] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-22
wpengfeinudt gmail com
[SECURITY] [DSA 3893-1] jython security update 2017-06-22
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
TalkTalk | 23rd June 2017 |
Vulnerebility
NetBSD CVE-2017-1000378 Arbitrary Code Execution Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99255
Siemens XHQ CVE-2017-6866 Access Bypass Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99247
IBM Sterling B2B Integrator CVE-2017-1348 Unspecified Cross Site Scripting Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99245
GNU Debugger (GDB) CVE-2017-9778 Denial of Service Vulnerability
2017-06-23
http://www.securityfocus.com/bid/99244
EMC Avamar Authentication Bypass And Arbitrary File Upload Vulnerabilities
2017-06-23
http://www.securityfocus.com/bid/99243
Oracle Java SE and JRockit CVE-2017-3511 Local Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97731
zlib Multiple Denial of Service Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/95131
Oracle Java SE CVE-2017-3514 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97729
Oracle Java SE CVE-2017-3512 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97727
IBM Java SDK CVE-2017-1289 XML External Entity Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/98401
Oracle Java SE CVE-2017-3539 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97752
Oracle Java SE CVE-2017-3509 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97737
Oracle Java SE and JRockit CVE-2017-3544 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97745
Oracle Java SE and JRockit CVE-2017-3533 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97740
Drupal Core CVE-2017-6920 Remote Code Execution Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99211
JasPer 'jp2_dec.c' Remote Heap Buffer Overflow Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99171
MatrixSSL 'X509' Certificate Parsing Multiple Buffer Overflow Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/99249
ExpressionEngine CVE-2017-0897 Insufficient Entropy Weakness
2017-06-22
http://www.securityfocus.com/bid/99242
Poppler 'GfxState.cc' Stack Buffer Overflow Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99241
Poppler CVE-2017-9776 Denial of Service Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99240
LibTIFF 'libtiff/tif_dirread.c' Denial of Service Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99235
Siemens SIMATIC CP 44x-1 Redundant CVE-2017-6868 Authentication Bypass Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99234
OpenVPN Multiple Security Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/99230
IBM Sterling B2B Integrator CVE-2017-1193 Information Disclosure Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99229
IBM Sterling B2B Integrator CVE-2016-5893 Local Information Disclosure Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99228
IBM Sterling B2B Integrator CVE-2017-1131 Information Disclosure Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99227
Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99214
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98744
Linux Kernel CVE-2017-8890 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98562
Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/97234
SANS News
Fake DDoS Extortions Continue. Please Forward Us Any Threats You Have Received.
Threatpost
Cisco Patches XXE, DOS, Code Execution Vulnerabilities
Average Cost of Breach Goes Down For the First Time Ever
Microsoft Says Fireball Threat ‘Overblown’
Drupal Patches Three Vulnerabilities in Core Engine
Exploit
Microsoft Windows - 'nt!NtQueryInformationResourceManager (information class 0)'...
Microsoft Windows - 'nt!NtQueryInformationWorkerFactory...
Microsoft Edge - 'CssParser::RecordProperty' Type Confusion
22.6.2017
Bugtraq
[CVE-2017-8813] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c 2017-06-22
wpengfeinudt gmail com
[SECURITY] [DSA 3893-1] jython security update 2017-06-22
Salvatore Bonaccorso (carnil debian org)
[slackware-security] openvpn (SSA:2017-172-01) 2017-06-21
Slackware Security Team (security slackware com)
Sitecore 7.1-7.2 Cross Site Scripting Vulnerability 2017-06-21
hamedizadi gmail com
[SECURITY] [DSA 3890-1] spip security update 2017-06-21
Salvatore Bonaccorso (carnil debian org)
ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability 2017-06-20
EMC Product Security Response Center (Security_Alert emc com)
Malware
Phishing
CS Loxinfo | 22nd June 2017 |
Vulnerebility
Oracle Java SE and JRockit CVE-2017-3511 Local Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97731
zlib Multiple Denial of Service Vulnerabilities
2017-06-22
http://www.securityfocus.com/bid/95131
Oracle Java SE CVE-2017-3514 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97729
Oracle Java SE CVE-2017-3512 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97727
IBM Java SDK CVE-2017-1289 XML External Entity Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/98401
Oracle Java SE CVE-2017-3539 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97752
Oracle Java SE CVE-2017-3509 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97737
Oracle Java SE and JRockit CVE-2017-3544 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97745
Oracle Java SE and JRockit CVE-2017-3533 Remote Security Vulnerability
2017-06-22
http://www.securityfocus.com/bid/97740
Drupal Core CVE-2017-6920 Remote Code Execution Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99211
JasPer 'jp2_dec.c' Remote Heap Buffer Overflow Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99171
IBM Sterling B2B Integrator CVE-2016-5893 Local Information Disclosure Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99228
Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerability
2017-06-22
http://www.securityfocus.com/bid/99214
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98744
Linux Kernel CVE-2017-8890 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98562
Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/97234
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-06-21
http://www.securityfocus.com/bid/98085
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98745
Oracle Solaris CVE-2017-3630 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99153
Oracle Solaris CVE-2017-3629 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99150
Oracle Solaris CVE-2017-3631 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99151
JasPer Null Pointer Dereference Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/93797
Cisco IOS XR Software CVE-2017-6718 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99226
Cisco Prime Collaboration Provisioning Tool CVE-2017-6703 Session Hijacking Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99224
Cisco Prime Collaboration Provisioning CVE-2017-6704 Arbitrary File Download Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99223
Drupal Core CVE-2017-6921 Security Bypass Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99222
Cisco Prime Infrastructure and EPNM CVE-2017-6699 Cross Site Scripting Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99221
Cisco Firepower Management Center CVE-2017-6716 HTML Injection Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99220
Drupal Core CVE-2017-6922 Access Bypass Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99219
Cisco StarOS for ASR 5500 Series Routers CVE-2017-3865 Remote Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99218
SANS News
Threatpost
Trump’s Cybersecurity Executive Order Under Fire
Microsoft Extends Edge Bug Bounty Program Indefinitely
OpenVPN Patches Critical Remote Code Execution Vulnerability
Honda Shut Down Plant Impacted by WannaCry
Exploit
PHPMailer < 5.2.20 with Exim MTA - Remote Code Execution
Linux/x86 - Reverse UDP Shellcode (668 bytes)
21.6.2017
Bugtraq
ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability 2017-06-20
EMC Product Security Response Center (Security_Alert emc com)
ESA-2017-054: EMC Avamar Multiple Vulnerabilities 2017-06-20
EMC Product Security Response Center (Security_Alert emc com)
CVE-2017-3167: Apache httpd 2.x ap_get_basic_auth_pw authentication bypass 2017-06-19
Jacob Champion (jchampion apache org)
CVE-2017-7659: mod_http2 null pointer dereference 2017-06-19
Jim Jagielski (jim apache org)
[SECURITY] [DSA 3886-1] linux security update 2017-06-19
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3887-1] glibc security update 2017-06-19
Moritz Muehlenhoff (jmm debian org)
[security bulletin] HPESBGN03758 rev.2 - HPE UCMDB, Remote Code Execution 2017-06-19
HPE Product Security Response Team (security-alert hpe com)
Malware
Phishing
NatWest | 21st June 2017 |
Vulnerebility
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98744
Linux Kernel CVE-2017-8890 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98562
Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/97234
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-06-21
http://www.securityfocus.com/bid/98085
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/98745
Oracle Solaris CVE-2017-3630 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99153
Oracle Solaris CVE-2017-3629 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99150
Oracle Solaris CVE-2017-3631 Local Privilege Escalation Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99151
JasPer Null Pointer Dereference Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/93797
OpenBSD CVE-2017-1000373 Denial of Service Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99177
EMC VASA Provider Virtual Appliance CVE-2017-4997 Remote Code Execution Vulnerability
2017-06-21
http://www.securityfocus.com/bid/99169
zlib Multiple Denial of Service Vulnerabilities
2017-06-20
http://www.securityfocus.com/bid/95131
IBM Java SDK CVE-2017-1289 XML External Entity Injection Vulnerability
2017-06-20
http://www.securityfocus.com/bid/98401
Oracle Java SE and JRockit CVE-2017-3533 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97740
Oracle Java SE CVE-2017-3539 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97752
Oracle Java SE CVE-2017-3509 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97737
Oracle Java SE and JRockit CVE-2017-3544 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97745
Oracle Java SE and JRockit CVE-2017-3526 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97733
Oracle Java SE and JRockit CVE-2017-3511 Local Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97731
Oracle Java SE CVE-2017-3512 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97727
Oracle Java SE CVE-2017-3514 Remote Security Vulnerability
2017-06-20
http://www.securityfocus.com/bid/97729
Symantec Web Gateway CVE-2016-9096 Multiple Cross Site Scripting Vulnerabilities
2017-06-20
http://www.securityfocus.com/bid/96297
GnuTLS CVE-2017-7507 NULL Pointer Dereference Denial of Service Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99102
Xen 'shadow/common.c' Privilege Escalation Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99174
JasPer 'jp2_dec.c' Remote Heap Buffer Overflow Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99171
Xen XSA-220 Information Disclosure Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99167
EMC Isilon OneFS CVE-2017-4988 Remote Privilege Escalation Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99165
Ecava IntegraXor CVE-2017-6050 SQL Injection Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99164
Xen 'blkif' Response Information Disclosure Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99162
Xen XSA-222 Privilege Escalation Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99161
SANS News
Threatpost
Avaya Patches Remote Code Execution Flaw in Aura
ProtonMail Launches Free VPN Service
University College London Ransomware Linked to AdGholas Malvertising Group
Internet-Enabled Drill Demonstrates IoT Security Done Right
TP-Link Fixes Code Execution Vulnerability in End-of-Life Routers
Exploit
Microsoft Windows - 'win32k!NtGdiGetOutlineTextMetricsInternalW' Kernel Pool Memory...
Microsoft Windows - 'IOCTL 0x390400, operation code 0x00020000' Kernel KsecDD Pool...
Microsoft Windows - 'IOCTL_MOUNTMGR_QUERY_POINTS' Kernel Mountmgr Pool Memory...
Microsoft Windows - '0x224000 IOCTL (WmiQueryAllData)' Kernel WMIDataDevice Pool...
Microsoft Windows - 'win32k!NtGdiEnumFonts' Kernel Pool Memory Disclosure
Microsoft Windows - 'IOCTL_VOLUME_GET_VOLUME_DISK_EXTENTS' volmgr Pool Memory...
Microsoft Windows - 'IOCTL_DISK_GET_DRIVE_GEOMETRY_EX' Kernel partmgr Pool Memory...
WonderCMS 2.1.0 - Cross-Site Request Forgery
Freeware Advanced Audio Coder (FAAC) 1.28 - Denial of Service
20.6.2017
Bugtraq
CVE-2017-3167: Apache httpd 2.x ap_get_basic_auth_pw authentication bypass 2017-06-19
Jacob Champion (jchampion apache org)
CVE-2017-7659: mod_http2 null pointer dereference 2017-06-19
Jim Jagielski (jim apache org)
[SECURITY] [DSA 3886-1] linux security update 2017-06-19
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3887-1] glibc security update 2017-06-19
Moritz Muehlenhoff (jmm debian org)
[security bulletin] HPESBGN03758 rev.2 - HPE UCMDB, Remote Code Execution 2017-06-19
HPE Product Security Response Team (security-alert hpe com)
Ektron Version 9.10SP1(Build 9.1.0.184) Cross Site Scripting 2017-06-19
ghasseminia gmail com
Ektron Version 9.10SP1(Build 9.1.0.184) Cross Site Scripting 2017-06-19
ghasseminia gmail com
Malware
Phishing
Vulnerebility
Oracle Solaris CVE-2017-3629 Local Privilege Escalation Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99150
Symantec Web Gateway CVE-2016-9096 Multiple Cross Site Scripting Vulnerabilities
2017-06-20
http://www.securityfocus.com/bid/96297
GnuTLS CVE-2017-7507 NULL Pointer Dereference Denial of Service Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99102
Xen Page Transfer 'xen/arch/x86/mm.c' Privilege Escalation Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99158
Xen 'xen/arch/x86/irq.c' NULL pointer Dereference Remote Denial of Service Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99157
Linux Kernel CVE-2017-1000365 Local Security Bypass Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99156
Linux Kernel CVE-2017-1000370 Local Security Bypass Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99149
C-ares CVE-2017-1000381 Out of Bounds Read Information Disclosure Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99148
Multiple I-O DATA Network Camera Products CVE-2017-2223 Cross Site Request Forgery Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99144
SAP Business Objects DS Open Redirection Vulnerability
2017-06-20
http://www.securityfocus.com/bid/99143
Microsoft Windows Uniscribe CVE-2017-0283 Remote Code Execution Vulnerability
2017-06-19
http://www.securityfocus.com/bid/98920
Oracle Solaris CVE-2017-3630 Local Privilege Escalation Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99153
Oracle Solaris CVE-2017-3631 Local Privilege Escalation Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99151
Zenbership CVE-2017-9759 SQL Injection Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99147
GNU GRUB CVE-2017-9763 Remote Denial Of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99141
radare2 'libr/core/cmd_info.c' Remote Denial Of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99140
radare2 'libr/core/cmd.c' Remote Denial Of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99138
Apache HTTP Server CVE-2017-7668 Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99137
IBM WebSphere MQ CVE-2017-1117 Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99136
Apache HTTP Server CVE-2017-3167 Authentication Bypass Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99135
Apache HTTP Server CVE-2017-3169 Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99134
Apache HTTP Server CVE-2017-7659 Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99132
Linux Kernel CVE-2017-1000371 Local Security Bypass Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99131
Linux Kernel CVE-2017-1000364 Local Memory Corruption Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99130
PAX Linux CVE-2017-1000377 Security Bypass Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99129
Acronis True Image CVE-2017-3219 Man in the Middle Security Bypass Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99128
GNU glibc CVE-2017-1000366 Local Memory Corruption Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99127
GNU Binutils CVE-2017-9754 Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99125
GNU Binutils CVE-2017-9755 Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99124
GNU Binutils 'bfd/vms-alpha.c' Remote Buffer Overflow Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99122
SANS News
Threatpost
Google Removes Two Ztorg Trojans from Play Marketplace
Republican Data Broker Exposes 198M Voter Records
Mexican Journalists, Lawyers Focus of Government Spyware
FIN10 Extorting Canadian Mining Companies, Casinos
Windows Error Reporting: DFIR Benefits and Privacy Concerns
Exploit
iBall Baton iB-WRA150N - Unauthenticated DNS Change
nuevoMailer 6.0 - SQL Injection
GNU binutils - 'rx_decode_opcode' Buffer Overflow
GNU binutils - 'disassemble_bytes' Heap Overflow
GNU binutils - 'bfd_get_string' Stack Buffer Overflow
GNU binutils - 'decode_pseudodbg_assert_0' Buffer Overflow
GNU binutils - 'ieee_object_p' Stack Buffer Overflow
GNU binutils - 'print_insn_score16' Buffer Overflow
GNU binutils - 'aarch64_ext_ldst_reglist' Buffer Overflow
19.6.2017
Bugtraq
[SECURITY] [DSA 3887-1] glibc security update 2017-06-19
Moritz Muehlenhoff (jmm debian org)
[security bulletin] HPESBGN03758 rev.2 - HPE UCMDB, Remote Code Execution 2017-06-19
HPE Product Security Response Team (security-alert hpe com)
Ektron Version 9.10SP1(Build 9.1.0.184) Cross Site Scripting 2017-06-19
ghasseminia gmail com
Ektron Version 9.10SP1(Build 9.1.0.184) Cross Site Scripting 2017-06-19
ghasseminia gmail com
Ektron Version 9.10SP1(Build 9.1.0.184) Cross Site Scripting 2017-06-19
ghasseminia gmail com
ESA-2017-041: EMC VNX1 and VNX2 Family Multiple Vulnerabilities in VNX Control Station 2017-06-16
EMC Product Security Response Center (Security_Alert emc com)
June 2017 - Bamboo - Critical Security Advisory 2017-06-16
Atlassian (security atlassian com)
[security bulletin] HPESBGN03761 rev.1 - HPE Virtualization Performance Viewer (VPV)/ Cloud Optimizer using Linux, Remote Escalation of Privilege 2017-06-15
security-alert hpe com
Malware
Phishing
Vulnerebility
GNU Binutils CVE-2017-9750 Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99118
GNU Binutils 'objdump.c' Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99117
GNU Binutils 'bfd/ieee.c' Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99114
GNU Binutils CVE-2017-9749 Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99113
GNU Binutils CVE-2017-9748 Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99110
GNU Binutils 'bfd/vms-alpha.c' Heap Buffer Overflow Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99109
GNU Binutils 'bfd/elf32-sh.c' Remote Buffer Overflow Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99108
GNU Binutils 'opcodes/score7-dis.c' Remote Buffer Overflow Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99106
GNU Binutils 'opcodes/score7-dis.c' Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99105
GNU Binutils 'opcodes/aarch64-dis.c' Remote Denial of Service Vulnerability
2017-06-19
http://www.securityfocus.com/bid/99103
Linux Kernel CVE-2017-8064 Local Denial of Service Vulnerability
2017-06-17
http://www.securityfocus.com/bid/97975
VMware vSphere Data Protection CVE-2016-7456 Authentication Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/94990
Multiple Blue Coat Products Security Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/91404
Jetty CVE-2017-9735 Security Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99104
IBM Clustered Data ONTAP CVE-2016-3400 Man in the Middle Security Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99101
Deluge CVE-2017-9031 Directory Traversal Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99099
389 Directory Server CVE-2016-5416 Information Disclosure Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99097
Linux Kernel 'drivers/gpu/drm/vmwgfx/vmwgfx_surface.c' Local Information Disclosure Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99095
FreeType 2 CVE-2017-8105 Out of Bounds Write Heap Buffer Overflow Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99093
Apache Standard Taglibs CVE-2015-0254 XML External Entity Injection Vulnerability
2017-06-15
http://www.securityfocus.com/bid/72809
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99057
Mozilla Firefox CVE-2017-5470 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99041
Mozilla Firefox CVE-2017-5472 Use After Free Denial of Service Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99040
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/98636
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97957
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97955
GnuTLS GNUTLS-SA-2017-3 Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97040
Libgcrypt 'cipher/ecc-eddsa.c' Information Disclosure Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99046
Adobe Flash Player APSB17-17 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99023
Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99025
SANS News
Threatpost
IoT Malware Activity Already More Than Doubled 2016 Numbers
Exploit
iBall Baton iB-WRA150N - Unauthenticated DNS Change
nuevoMailer 6.0 - SQL Injection
UTstarcom WA3002G4 - Unauthenticated DNS Change
D-Link DSL-2640U - Unauthenticated DNS Change
Beetel BCM96338 Router - Unauthenticated DNS Change
D-Link DSL-2640B - Unauthenticated Remote DNS Change
18.6.2017
Bugtraq
ESA-2017-041: EMC VNX1 and VNX2 Family Multiple Vulnerabilities in VNX Control Station 2017-06-16
EMC Product Security Response Center (Security_Alert emc com)
June 2017 - Bamboo - Critical Security Advisory 2017-06-16
Atlassian (security atlassian com)
[security bulletin] HPESBGN03761 rev.1 - HPE Virtualization Performance Viewer (VPV)/ Cloud Optimizer using Linux, Remote Escalation of Privilege 2017-06-15
security-alert hpe com
[SECURITY] [DSA 3882-1] request-tracker4 security update 2017-06-15
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
Vulnerebility
VMware vSphere Data Protection CVE-2016-7456 Authentication Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/94990
Multiple Blue Coat Products Security Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/91404
IBM Clustered Data ONTAP CVE-2016-3400 Man in the Middle Security Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99101
Deluge CVE-2017-9031 Directory Traversal Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99099
389 Directory Server CVE-2016-5416 Information Disclosure Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99097
Linux Kernel 'drivers/gpu/drm/vmwgfx/vmwgfx_surface.c' Local Information Disclosure Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99095
FreeType 2 CVE-2017-8105 Out of Bounds Write Heap Buffer Overflow Vulnerability
2017-06-16
http://www.securityfocus.com/bid/99093
Apache Standard Taglibs CVE-2015-0254 XML External Entity Injection Vulnerability
2017-06-15
http://www.securityfocus.com/bid/72809
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99057
Mozilla Firefox CVE-2017-5470 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99041
Mozilla Firefox CVE-2017-5472 Use After Free Denial of Service Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99040
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/98636
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97957
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97955
GnuTLS GNUTLS-SA-2017-3 Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97040
Libgcrypt 'cipher/ecc-eddsa.c' Information Disclosure Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99046
Adobe Flash Player APSB17-17 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99023
Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99025
GNU oSIP CVE-2016-10324 Heap Buffer Overflow Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97641
GNU oSIP 'osipparser2/osip_message_parse.c' Heap Buffer Overflow Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97644
Libosip Multiple Denial of Service Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/92921
ZZIPlib Multiple Heap Buffer Overflow and Denial of Service Vulnerabilites
2017-06-15
http://www.securityfocus.com/bid/96268
FortiOS Multiple Cross Site Scripting Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99098
Google Chrome Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99096
APC UPS Daemon CVE-2017-7884 Insecure Permissions Local Privilege Escalation Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99092
Atlassian Confluence CVE-2017-9505 Security Bypass Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99086
D-Link DIR-605L CVE-2017-9675 Denial of Service Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99084
Samsung Magician CVE-2017-3218 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99081
Pivotal Spring Security Deserialization CVE-2017-4995 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99080
RedHat JBoss Enterprise Application Platform CVE-2016-3690 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99079
SANS News
Mapping Use Cases to Logs. Which Logs are the Most Important to Collect?
Threatpost
Nigerian BEC Scams Hit 500 Companies in 50 Countries
Someone Failed to Contain WannaCry
Wikileaks Alleges Years of CIA D-Link and Linksys Router Hacking Via ‘Cherry Blossom’ Program
Exploit
WebKit JSC - JSGlobalObject::haveABadTime Causes Type Confusions
WebKit JSC - arrayProtoFuncSplice does not Initialize all Indices
WebKit JSC - JIT Optimization Check Failed in...
WebKit JSC - Heap Buffer Overflow in Intl.getCanonicalLocales
Easy File Sharing Web Server 7.2 - 'POST' Buffer Overflow (DEP Bypass)
KBVault MySQL 0.16a - Arbitrary File Upload
Joomla! Component JoomRecipe 1.0.3 - SQL Injection
16.6.2017
Bugtraq
ESA-2017-041: EMC VNX1 and VNX2 Family Multiple Vulnerabilities in VNX Control Station 2017-06-16
EMC Product Security Response Center (Security_Alert emc com)
June 2017 - Bamboo - Critical Security Advisory 2017-06-16
Atlassian (security atlassian com)
[security bulletin] HPESBGN03761 rev.1 - HPE Virtualization Performance Viewer (VPV)/ Cloud Optimizer using Linux, Remote Escalation of Privilege 2017-06-15
security-alert hpe com
[SECURITY] [DSA 3882-1] request-tracker4 security update 2017-06-15
Salvatore Bonaccorso (carnil debian org)
CVE-2017-9613: Stored Cross-Site Scripting in SAP successfactors 2017-06-15
dunstan pinto gmail com
[slackware-security] mozilla-firefox (SSA:2017-165-02) 2017-06-15
Slackware Security Team (security slackware com)
[slackware-security] bind (SSA:2017-165-01) 2017-06-15
Slackware Security Team (security slackware com)
[SECURITY] [DSA 3881-1] firefox-esr security update 2017-06-14
Moritz Muehlenhoff (jmm debian org)
Malware
Phishing
Vulnerebility
Multiple Blue Coat Products Security Bypass Vulnerability
2017-06-16
http://www.securityfocus.com/bid/91404
Apache Standard Taglibs CVE-2015-0254 XML External Entity Injection Vulnerability
2017-06-15
http://www.securityfocus.com/bid/72809
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99057
Mozilla Firefox CVE-2017-5470 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99041
Mozilla Firefox CVE-2017-5472 Use After Free Denial of Service Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99040
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/98636
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97957
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97955
GnuTLS GNUTLS-SA-2017-3 Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97040
Libgcrypt 'cipher/ecc-eddsa.c' Information Disclosure Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99046
Adobe Flash Player APSB17-17 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99023
Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99025
GNU oSIP CVE-2016-10324 Heap Buffer Overflow Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97641
GNU oSIP 'osipparser2/osip_message_parse.c' Heap Buffer Overflow Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97644
Libosip Multiple Denial of Service Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/92921
ZZIPlib Multiple Heap Buffer Overflow and Denial of Service Vulnerabilites
2017-06-15
http://www.securityfocus.com/bid/96268
Atlassian Confluence CVE-2017-9505 Security Bypass Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99086
D-Link DIR-605L CVE-2017-9675 Denial of Service Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99084
Samsung Magician CVE-2017-3218 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99081
Pivotal Spring Security Deserialization CVE-2017-4995 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99080
RedHat JBoss Enterprise Application Platform CVE-2016-3690 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99079
Tablib CVE-2017-2810 Arbitrary Command Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99076
SAP Successfactors CVE-2017-9613 HTML Injection Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99072
Microsoft Windows Kernel CVE-2017-0167 Information Disclosure Vulnerability
2017-06-14
http://www.securityfocus.com/bid/97473
Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98752
Microsoft Windows Graphics Device Interface CVE-2017-0190 Information Disclosure Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98298
Microsoft Internet Explorer CVE-2017-0222 Remote Memory Corruption Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98127
Microsoft Skype for Business and Lync Server CVE-2017-8550 Remote Code Execution Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98916
ISC BIND CVE-2017-3141 Local Privilege Escalation Vulnerability
2017-06-14
http://www.securityfocus.com/bid/99089
ISC BIND CVE-2017-3140 Remote Denial of Service Vulnerability
2017-06-14
http://www.securityfocus.com/bid/99088
SANS News
Threatpost
Metadata Analysis Draws its Own Conclusions on WannaCry Authors
Ransomware Attack Hobbles Prestigious University College London
Nigerian BEC Scams Hit 500 Companies in 50 Countries
Exploit
Avast aswSnx.sys Kernel Driver 11.1.2253 - Memory Corruption Privilege Escalation
Easy File Sharing Web Server 7.2 - 'POST' Buffer Overflow (DEP Bypass)
KBVault MySQL 0.16a - Arbitrary File Upload
Joomla! Component JoomRecipe 1.0.3 - SQL Injection
Sudo - 'get_process_ttyname()' Privilege Escalation
VX Search Enterprise 9.7.18 - Local Buffer Overflow
15.6.2017
Bugtraq
CVE-2017-9613: Stored Cross-Site Scripting in SAP successfactors 2017-06-15
dunstan pinto gmail com
[slackware-security] mozilla-firefox (SSA:2017-165-02) 2017-06-15
Slackware Security Team (security slackware com)
[slackware-security] bind (SSA:2017-165-01) 2017-06-15
Slackware Security Team (security slackware com)
[SECURITY] [DSA 3881-1] firefox-esr security update 2017-06-14
Moritz Muehlenhoff (jmm debian org)
ESA-2017-043: EMC ESRS Virtual Edition Authentication Bypass Vulnerability 2017-06-14
EMC Product Security Response Center (Security_Alert emc com)
ESA-2017-031: RSA BSAFE® Cert-C Improper Certificate Processing Vulnerability 2017-06-14
EMC Product Security Response Center (Security_Alert emc com)
Malware
Phishing
Vulnerebility
Mozilla Firefox CVE-2017-5472 Use After Free Denial of Service Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99040
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99057
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/98636
Mozilla Firefox CVE-2017-5470 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99041
QEMU 'hw/display/cirrus_vga_rop.h' Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97957
Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97955
GnuTLS GNUTLS-SA-2017-3 Multiple Security Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/97040
Libgcrypt 'cipher/ecc-eddsa.c' Information Disclosure Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99046
Adobe Flash Player APSB17-17 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99023
Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/99025
GNU oSIP CVE-2016-10324 Heap Buffer Overflow Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97641
GNU oSIP 'osipparser2/osip_message_parse.c' Heap Buffer Overflow Vulnerability
2017-06-15
http://www.securityfocus.com/bid/97644
Libosip Multiple Denial of Service Vulnerabilities
2017-06-15
http://www.securityfocus.com/bid/92921
ZZIPlib Multiple Heap Buffer Overflow and Denial of Service Vulnerabilites
2017-06-15
http://www.securityfocus.com/bid/96268
SAP Successfactors CVE-2017-9613 HTML Injection Vulnerability
2017-06-15
http://www.securityfocus.com/bid/99072
Microsoft Windows Kernel CVE-2017-0167 Information Disclosure Vulnerability
2017-06-14
http://www.securityfocus.com/bid/97473
Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98752
Microsoft Windows Graphics Device Interface CVE-2017-0190 Information Disclosure Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98298
Microsoft Internet Explorer CVE-2017-0222 Remote Memory Corruption Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98127
Microsoft Skype for Business and Lync Server CVE-2017-8550 Remote Code Execution Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98916
Apache Ranger CVE-2016-8751 HTML Injection Vulnerability
2017-06-14
http://www.securityfocus.com/bid/99067
IBM API Connect CVE-2017-1379 Information Disclosure Vulnerability
2017-06-14
http://www.securityfocus.com/bid/99063
Mozilla Firefox for Android CVE-2017-7759 Local Security Bypass Vulnerability
2017-06-14
http://www.securityfocus.com/bid/99052
Microsoft Windows Kernel CVE-2017-0297 Local Privilege Escalation Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98840
SAP Web Dispatcher Remote Code Injection Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99070
Trihedral VTScada Multiple Security Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99066
SAP BusinessObjects Intercompany Directory Traversal Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99062
IBM Jazz Foundation CVE-2016-9973 Cross Site Scripting Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99060
OSIsoft PI Server 2017 Multiple Authentication Bypass Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99059
OSIsoft PI Web API CVE-2017-7926 Cross-Site Request Forgery Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99058
SANS News
Threatpost
Abuse of Apple Search Ads Feature Leading to Fraud
DHS, FBI Warn of North Korea ‘Hidden Cobra’ Strikes Against US Assets
Decryption Utility Unlocks Files Encrypted by Jaff Ransomware
Mozilla Fixes 32 Vulnerabilities in Firefox 54
Exploit
Linux/x86 - XOR encoded execve(/bin/sh) setuid(0) setgid(0) Shellcode (66 bytes)
Linux/x86 - execve("/bin/sh") Shellcode (24 bytes)
Google Chrome - V8 Private Property Arbitrary Code Execution
HP PageWide Printers / HP OfficeJet Pro Printers (OfficeJet Pro 8210) - Arbitrary...
Easy MOV Converter 1.4.24 - 'Enter User Name' Buffer Overflow (SEH)
14.6.2017
Bugtraq
ESA-2017-043: EMC ESRS Virtual Edition Authentication Bypass Vulnerability 2017-06-14
EMC Product Security Response Center (Security_Alert emc com)
ESA-2017-031: RSA BSAFE® Cert-C Improper Certificate Processing Vulnerability 2017-06-14
EMC Product Security Response Center (Security_Alert emc com)
[SECURITY] [DSA 3880-1] libgcrypt20 security update 2017-06-14
Salvatore Bonaccorso (carnil debian org)
Secunia Research: libsndfile "aiff_read_chanmap()" Information Disclosure Vulnerability 2017-06-13
Secunia Research (remove-vuln secunia com)
SEC Consult SA-20170613-0 :: Access Restriction Bypass in Atlassian Confluence 2017-06-13
SEC Consult Vulnerability Lab (research sec-consult com)
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities 2017-06-12
Vulnerability Lab (research vulnerability-lab com)
Evolution Script CMS v5.3 - Cross Site Scripting Vulnerability 2017-06-12
Vulnerability Lab (research vulnerability-lab com)
Malware
Phishing
Vulnerebility
Microsoft Skype for Business and Lync Server CVE-2017-8550 Remote Code Execution Vulnerability
2017-06-14
http://www.securityfocus.com/bid/98916
Microsoft Windows Kernel CVE-2017-0297 Local Privilege Escalation Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98840
EMC VNX1/VNX2 OE for File CVE-2017-4987 Unspecified Local Untrusted Search Path vulnerability
2017-06-13
http://www.securityfocus.com/bid/99045
EMC RSA BSAFE Cert-C CVE-2017-4981 Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99044
Mozilla Firefox CVE-2017-5471 Multiple Memory Corruption Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99042
Mozilla Firefox CVE-2017-5470 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99041
Mozilla Firefox CVE-2017-5472 Use After Free Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99040
EMC VNX1/VNX2 OE for File CVE-2017-4984 Remote Code Execution Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99039
SAP BusinessObjects Web Intelligence Unspecified Cross Site Scripting Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99038
EMC VNX1/VNX2 OE for File CVE-2017-4985 Local Privilege Escalation Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99037
EMC Secure Remote Services Virtual Edition CVE-2017-4986 Authentication Bypass Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99036
SAP NetWeaver AS ABAP Unspecified Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99034
SAP NetWeaver Composite Application Framework and Business Cross Site Scripting Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99033
SAP Management Console Unspecified Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99032
SAP Business Planning and Consolidation XML External Entity Injection Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99031
SAP NetWeaver Application Server ABAP Certificate Validation Security Bypass Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99030
SAP BI Launchpad Multiple Cross Site Scripting Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99029
SAP BILaunchPad and Central Management Console Unspecified Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99028
SAP Note Assistant XML External Entity Injection Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99027
SAP NetWeaver Instance Agent Service Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99026
Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99025
Adobe Digital Editions Multiple Privilege Escalation Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99024
Adobe Flash Player APSB17-17 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99023
Adobe Digital Editions APSB17-20 Multiple Unspecified Stack Buffer Overflow Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99021
Adobe Digital Editions APSB17-20 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99020
Adobe Shockwave Player CVE-2017-3086 Unspecified Memory Corruption Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99019
Microsoft Edge CVE-2017-8555 Security Bypass Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98956
Microsoft Edge CVE-2017-8549 Remote Code Execution Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98955
Microsoft Edge CVE-2017-8548 Remote Memory Corruption Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98954
Microsoft Internet Explorer and Edge CVE-2017-8529 Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98953
SANS News
Systemd Could Fallback to Google DNS?
Threatpost
Post-WannaCry, 5.5 Million Devices Still Expose SMB Port
Patrick Wardle on MacRansom Ransomware-as-a-Service
Adobe Fixes 21 Critical Vulnerabilities with June Patch Tuesday Update
Microsoft Patches Two Critical Vulnerabilities Under Attack
Exploit
WordPress Plugin WP Jobs < 1.5 - SQL Injection
WordPress Plugin Event List <= 0.7.8 - SQL Injection
WordPress Plugin WP-Testimonials < 3.4.1 - SQL Injection
Easy MOV Converter 1.4.24 - 'Enter User Name' Buffer Overflow (SEH)
LG MRA58K - Out-of-Bounds Heap Read in CAVIFileParser::Destroy Resulting in Invalid...
LG MRA58K - Missing Bounds-Checking in AVI Stream Parsing
LG MRA58K - 'ASFParser::ParseHeaderExtensionObjects' Missing Bounds-Checking
13.6.2017
Bugtraq
Secunia Research: libsndfile "aiff_read_chanmap()" Information Disclosure Vulnerability 2017-06-13
Secunia Research (remove-vuln secunia com)
SEC Consult SA-20170613-0 :: Access Restriction Bypass in Atlassian Confluence 2017-06-13
SEC Consult Vulnerability Lab (research sec-consult com)
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities 2017-06-12
Vulnerability Lab (research vulnerability-lab com)
Evolution Script CMS v5.3 - Cross Site Scripting Vulnerability 2017-06-12
Vulnerability Lab (research vulnerability-lab com)
[SECURITY] [DSA 3877-1] tor security update 2017-06-10
Salvatore Bonaccorso (carnil debian org)
[security bulletin] HPESBHF03730 rev.2 - HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities 2017-06-09
security-alert hpe com
[SECURITY] [DSA 3876-1] otrs2 security update 2017-06-09
Moritz Muehlenhoff (jmm debian org)
Malware
Phishing
Tesco Bank | 12th June 2017 |
spoof | 12th June 2017 |
Vulnerebility
EMC VNX1/VNX2 OE for File CVE-2017-4984 Remote Code Execution Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99039
SAP BusinessObjects Web Intelligence Unspecified Cross Site Scripting Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99038
EMC VNX1/VNX2 OE for File CVE-2017-4985 Local Privilege Escalation Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99037
EMC Secure Remote Services Virtual Edition CVE-2017-4986 Authentication Bypass Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99036
SAP NetWeaver AS ABAP Unspecified Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99034
SAP NetWeaver Composite Application Framework and Business Cross Site Scripting Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99033
SAP Management Console Unspecified Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99032
SAP Business Planning and Consolidation XML External Entity Injection Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99031
SAP NetWeaver Application Server ABAP Certificate Validation Security Bypass Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99030
SAP BI Launchpad Multiple Cross Site Scripting Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99029
SAP BILaunchPad and Central Management Console Unspecified Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99028
SAP Note Assistant XML External Entity Injection Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99027
SAP NetWeaver Instance Agent Service Denial of Service Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99026
Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99025
Adobe Digital Editions Multiple Privilege Escalation Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99024
Adobe Flash Player APSB17-17 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99023
Adobe Digital Editions APSB17-20 Multiple Unspecified Stack Buffer Overflow Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99021
Adobe Digital Editions APSB17-20 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-13
http://www.securityfocus.com/bid/99020
Adobe Shockwave Player CVE-2017-3086 Unspecified Memory Corruption Vulnerability
2017-06-13
http://www.securityfocus.com/bid/99019
Microsoft Edge CVE-2017-8496 Remote Memory Corruption Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98880
Microsoft Windows Kernel CVE-2017-8491 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98869
Microsoft Windows Kernel CVE-2017-8490 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98867
Microsoft Windows Kernel CVE-2017-8489 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98865
Microsoft Windows Kernel CVE-2017-8488 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98864
Microsoft Edge CVE-2017-8530 Security Bypass Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98863
Microsoft Windows Kernel CVE-2017-8481 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98862
Microsoft Windows Kernel CVE-2017-8485 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98860
Microsoft Windows Kernel CVE-2017-8483 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98859
Microsoft Windows Kernel CVE-2017-8482 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98858
Microsoft Windows Kernel CVE-2017-8480 Local Information Disclosure Vulnerability
2017-06-13
http://www.securityfocus.com/bid/98857
SANS News
Threatpost
Blinking Router LEDs Leak Data From Air-Gapped Networks
FIN7 Hitting Restaurants with Fileless Malware
Exploit
Easy File Sharing Web Server 7.2 - 'POST' Buffer Overflow
Logpoint < 5.6.4 - Unauthenticated Root Remote Code Execution
WordPress Plugin WP-Testimonials < 3.4.1 - SQL Injection
Real Estate Classifieds Script - SQL Injection
Disk Pulse 9.7.26 - 'Add Directory' Local Buffer Overflow
12.6.2017
Bugtraq
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities 2017-06-12
Vulnerability Lab (research vulnerability-lab com)
Evolution Script CMS v5.3 - Cross Site Scripting Vulnerability 2017-06-12
Vulnerability Lab (research vulnerability-lab com)
[SECURITY] [DSA 3877-1] tor security update 2017-06-10
Salvatore Bonaccorso (carnil debian org)
[security bulletin] HPESBHF03730 rev.2 - HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities 2017-06-09
security-alert hpe com
[SECURITY] [DSA 3876-1] otrs2 security update 2017-06-09
Moritz Muehlenhoff (jmm debian org)
[SECURITY] [DSA 3875-1] libmwaw security update 2017-06-09
Moritz Muehlenhoff (jmm debian org)
Malware
Phishing
spoof | 12th June 2017 |
Service PayPaI | 10th June 2017 |
[STATEMENT SERVICE] WE HAVE | |
Vulnerebility
VMware Horizon View Client CVE-2017-4918 Command Injection Vulnerability
2017-06-12
http://www.securityfocus.com/bid/98984
Cisco Elastic Services Controller CVE-2017-6688 Default Credentials Security Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98973
Google Chrome Prior to 59.0.3071.86 Multiple Security Vulnerabilities
2017-06-09
http://www.securityfocus.com/bid/98861
Resteasy CVE-2016-9606 Remote Code Execution Vulnerability
2017-06-09
http://www.securityfocus.com/bid/94940
Red Hat Undertow CVE-2017-2670 Remote Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98965
OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95375
SANS News
Threatpost
Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability
Exploit
Logpoint < 5.6.4 - Unauthenticated Root Remote Code Execution
Easy File Sharing Web Server 7.2 - Authentication Bypass
DiskBoss 8.0.16 - 'Input Directory' Local Buffer Overflow
VMware vSphere Data Protection 5.x/6.x - Java Deserialization
EFS Easy Chat Server 3.1 - Buffer Overflow (SEH)
IPFire 2.19 - Remote Code Execution
EFS Easy Chat Server 3.1 - Password Disclosure
EFS Easy Chat Server 3.1 - Password Reset
Disk Sorter 9.7.14 - 'Input Directory' Local Buffer Overflow
11.6.2017
Bugtraq
[security bulletin] HPESBUX03747 rev.1 - HP-UX running BIND, Remote Denial of Service 2017-06-08
security-alert hpe com
ESA-2017-064: RSA Identity Governance and Lifecycle Multiple Vulnerabilities 2017-06-08
EMC Product Security Response Center (Security_Alert emc com)
[SYSS-2017-018] OTRS - Access to Installation Dialog 2017-06-08
sebastian auwaerter syss de
[security bulletin] HPESBGN03758 rev.1 - HPE UCMDB, Remote Code Execution 2017-06-07
security-alert hpe com
CVE update - fixed in Apache Ranger 0.7.1 2017-06-07
Velmurugan Periasamy (vel apache org)
[security bulletin] HPESBHF03757 rev.1 - HPE Network Products including Comware 5 and Comware 7 running NTP, Remote Denial of Service (DoS) 2017-06-07
security-alert hpe com
Malware
Phishing
Vulnerebility
Cisco Elastic Services Controller CVE-2017-6688 Default Credentials Security Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98973
Google Chrome Prior to 59.0.3071.86 Multiple Security Vulnerabilities
2017-06-09
http://www.securityfocus.com/bid/98861
Resteasy CVE-2016-9606 Remote Code Execution Vulnerability
2017-06-09
http://www.securityfocus.com/bid/94940
Red Hat Undertow CVE-2017-2670 Remote Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98965
OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95375
Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/94650
Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95076
Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95078
Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95077
OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/93841
FreeRADIUS TLS CVE-2017-9148 Authentication Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98734
SANS News
An Occasional Look in the Rear View Mirror
Threatpost
Platinum APT First to Abuse Intel Chip Management Feature
Google Releases reCAPTCHA API for Android
GameStop Online Shoppers Officially Warned of Breach
Exploit
Mapscrn 2.03 - Local Buffer Overflow
libcroco 0.6.12 - Denial of Service
libquicktime 1.2.4 - Denial of Service
9.6.2017
Bugtraq
[security bulletin] HPESBUX03747 rev.1 - HP-UX running BIND, Remote Denial of Service 2017-06-08
security-alert hpe com
ESA-2017-064: RSA Identity Governance and Lifecycle Multiple Vulnerabilities 2017-06-08
EMC Product Security Response Center (Security_Alert emc com)
[SYSS-2017-018] OTRS - Access to Installation Dialog 2017-06-08
sebastian auwaerter syss de
[security bulletin] HPESBGN03758 rev.1 - HPE UCMDB, Remote Code Execution 2017-06-07
security-alert hpe com
CVE update - fixed in Apache Ranger 0.7.1 2017-06-07
Velmurugan Periasamy (vel apache org)
[security bulletin] HPESBHF03757 rev.1 - HPE Network Products including Comware 5 and Comware 7 running NTP, Remote Denial of Service (DoS) 2017-06-07
security-alert hpe com
Xavier v2.4 PHP MP - SQL Injection Web Vulnerabilities 2017-06-07
Vulnerability Lab (research vulnerability-lab com)
Sophos Cyberoam Cross-site scripting (XSS) vulnerability 2017-06-06
bhdresh gmail com
Malware
Ransom:Win32/HydraCrypt.A
Ransom:Win32/Spora.A
Ransom:Win32/Wagcrypt.A
Phishing
SERVICE | 9th June 2017 |
Tesco Bank | 9th June 2017 |
Vulnerebility
Cisco Elastic Services Controller CVE-2017-6688 Default Credentials Security Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98973
Google Chrome Prior to 59.0.3071.86 Multiple Security Vulnerabilities
2017-06-09
http://www.securityfocus.com/bid/98861
Resteasy CVE-2016-9606 Remote Code Execution Vulnerability
2017-06-09
http://www.securityfocus.com/bid/94940
Red Hat Undertow CVE-2017-2670 Remote Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98965
OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95375
Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/94650
Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95076
Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95078
Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/95077
OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-06-09
http://www.securityfocus.com/bid/93841
FreeRADIUS TLS CVE-2017-9148 Authentication Bypass Vulnerability
2017-06-09
http://www.securityfocus.com/bid/98734
Apple iOS and Safari Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/98474
Webkit Cross Site Scripting and Arbitrary Code Execution Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/98473
WebKit CVE-2017-2530 Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/98455
WebKit CVE-2017-2521 Unspecified Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/98456
WebKit CVE-2017-2415 Remote Code Execution Vulnerability
2017-06-08
http://www.securityfocus.com/bid/97143
Apple macOS APPLE-SA-2017-03-27-3 Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97140
WebKit CVE-2017-6984 Unspecified Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/98454
Apple macOS/iOS Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97147
WebKit Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97130
WebKit CVE-2017-2471 Remote Code Execution Vulnerability
2017-06-08
http://www.securityfocus.com/bid/97133
Apple iOS and Safari Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97129
Webkit CVE-2017-2371 Security Bypass Vulnerability
2017-06-08
http://www.securityfocus.com/bid/95735
WebKit Multiple Memory Corruption Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/95736
Apple iTunes/iCloud/Safari/iOS CVE-2017-2366 Multiple Memory Corruption Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/95733
WebKit Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/95727
WebKit CVE-2017-2363 Cross-Origin Security Bypass Vulnerability
2017-06-08
http://www.securityfocus.com/bid/95728
Apple Safari/Cloud/iTunes/iOS/tvOS Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/94907
WebKit CVE-2016-7623 Information Disclosure Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94913
WebKit CVE-2016-7592 Denial of Service Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94909
SANS News
Threatpost
VMware Patches Critical Vulnerabilities in vSphere Data Protection
Motorola Moto G4, G5 Vulnerable to Local Root Shell Attacks
Exploit
Apple macOS 10.12.3 / iOS < 10.3.2 - Userspace Entitlement Checking Race Condition
Apple macOS - Disk Arbitration Daemon Race Condition
Mapscrn 2.03 - Local Buffer Overflow
Craft CMS 2.6 - Cross-Site Scripting
8.6.2017
Bugtraq
[SYSS-2017-018] OTRS - Access to Installation Dialog 2017-06-08
sebastian auwaerter syss de
[security bulletin] HPESBGN03758 rev.1 - HPE UCMDB, Remote Code Execution 2017-06-07
security-alert hpe com
CVE update - fixed in Apache Ranger 0.7.1 2017-06-07
Velmurugan Periasamy (vel apache org)
[security bulletin] HPESBHF03757 rev.1 - HPE Network Products including Comware 5 and Comware 7 running NTP, Remote Denial of Service (DoS) 2017-06-07
security-alert hpe com
Xavier v2.4 PHP MP - SQL Injection Web Vulnerabilities 2017-06-07
Vulnerability Lab (research vulnerability-lab com)
Sophos Cyberoam Cross-site scripting (XSS) vulnerability 2017-06-06
bhdresh gmail com
Malware
Phishing
Vulnerebility
Apple iOS and Safari Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/98474
Webkit Cross Site Scripting and Arbitrary Code Execution Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/98473
WebKit CVE-2017-2530 Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/98455
WebKit CVE-2017-2521 Unspecified Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/98456
WebKit CVE-2017-2415 Remote Code Execution Vulnerability
2017-06-08
http://www.securityfocus.com/bid/97143
Apple macOS APPLE-SA-2017-03-27-3 Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97140
WebKit CVE-2017-6984 Unspecified Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/98454
Apple macOS/iOS Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97147
WebKit Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97130
WebKit CVE-2017-2471 Remote Code Execution Vulnerability
2017-06-08
http://www.securityfocus.com/bid/97133
Apple iOS and Safari Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/97129
Webkit CVE-2017-2371 Security Bypass Vulnerability
2017-06-08
http://www.securityfocus.com/bid/95735
WebKit Multiple Memory Corruption Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/95736
Apple iTunes/iCloud/Safari/iOS CVE-2017-2366 Multiple Memory Corruption Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/95733
WebKit Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/95727
WebKit CVE-2017-2363 Cross-Origin Security Bypass Vulnerability
2017-06-08
http://www.securityfocus.com/bid/95728
Apple Safari/Cloud/iTunes/iOS/tvOS Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/94907
WebKit CVE-2016-7623 Information Disclosure Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94913
WebKit CVE-2016-7592 Denial of Service Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94909
WebKit CVE-2017-2364 Cross-Origin Security Bypass Vulnerability
2017-06-08
http://www.securityfocus.com/bid/95725
Apple iOS/WatchOS/tvOS/Safari/iTunes/iCloud CVE-2016-7589 Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94908
WebKit CVE-2016-9643 Denial of Service Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94559
WebKit CVE-2016-9642 Memory Corruption Vulnerability
2017-06-08
http://www.securityfocus.com/bid/94554
WebKit Multiple Security Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/81263
WebKit Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-08
http://www.securityfocus.com/bid/78720
Cisco TelePresence Endpoint CVE-2017-6648 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/98934
Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97690
Linux Kernel CVE-2017-8063 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97974
Linux Kernel CVE-2017-7277 Multiple Local Memory Corruption Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97141
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/98085Cisco TelePresence Endpoint CVE-2017-6648 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/98934
Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97690
Linux Kernel CVE-2017-8063 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97974
Linux Kernel CVE-2017-7277 Multiple Local Memory Corruption Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97141
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/98085
Linux Kernel 'drivers/char/virtio_console.c' Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97997
Linux kernel CVE-2017-2671 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97407
Linux Kernel CVE-2017-7618 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97534
Linux Kernel 'security/keys/keyctl.c' Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/98422
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97950
Linux Kernel CVE-2017-7979 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97969
Deluge CVE-2017-7178 Cross Site Request Forgery Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97041
Google Android Kernel Trace Subsystem CVE-2017-0605 Privilege Escalation Vulnerability
2017-06-07
http://www.securityfocus.com/bid/98152
FreeType 2 CVE-2017-7857 Multiple Out of Bounds Write Heap Buffer Overflow Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97680
FreeType 2 CVE-2017-7864 Out of Bounds Write Heap Buffer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97673
FreeType 2 CVE-2017-7858 Multiple Out Of Bounds Write Denial of Service Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97682
Adobe Flash Player APSB16-10 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/85932
Minicom CVE-2017-7467 Local Buffer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97966
Linux Kernel CVE-2016-9083 Local Integer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/93929
Linux Kernel CVE-2017-6001 Incomplete Fix Local Privilege Escalation Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96264
Linux Kernel 'tuners/tuner-xc2028.c' Local Use After Free Memory Corruption Vulnerability
2017-06-07
http://www.securityfocus.com/bid/94201
Linux Kernel Vfio Driver CVE-2016-9084 Integer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/93930
Linux Kernel CVE-2017-2596 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/95878
Google Android Kernel Components Multiple Information Disclosure Vulnerabilites
2017-06-07
http://www.securityfocus.com/bid/94147
Wireshark WBXML Dissector 'packet-wbxml.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97633
Wireshark CVE-2017-6014 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96284
Wireshark BGP dissector Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97632
Wireshark RPCoRDMA Dissector 'packet-rpcrdma.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97630
Wireshark 'dissectors/packet-imap.c' Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97636
Wireshark DOF Dissector 'packet-dof.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97634
SANS News
Threatpost
Cisco Patches Critical Flaws in Prime Data Center Network Manager
Authentication Bypass, Potential Backdoors Plague Old WiMAX Routers
Google Removes Rooting Trojan Dvmap From Play Store
Zusy Malware Installs Via Mouseover – No Clicking Required
Windows 10 Mitigations Make Future EternalBlue Attacks Difficult
EFF Sues DOJ Over National Security Letter Disclosure Rules
Exploit
VMware Workstation 12 Pro - Denial of Service
Windows - UAC Protection Bypass via FodHelper Registry Key (Metasploit)
DC/OS Marathon UI - Docker Exploit (Metasploit)
Grav CMS 1.4.2 Admin Plugin - Cross-Site Scripting
Artifex MuPDF mujstest 1.10a - Null Pointer Dereference
Artifex MuPDF - Null Pointer Dereference
PuTTY < 0.68 - 'ssh_agent_channel_data' Integer Overflow Heap Corruption
Linux Kernel < 4.10.13 - 'keyctl_set_reqkey_keyring' Local Denial of Service
Linux Kernel - 'ping' Local Denial of Service
7.6.2017
Bugtraq
Xavier v2.4 PHP MP - SQL Injection Web Vulnerabilities 2017-06-07
Vulnerability Lab (research vulnerability-lab com)
Sophos Cyberoam Cross-site scripting (XSS) vulnerability 2017-06-06
bhdresh gmail com
[security bulletin] HPESBGN03752 rev.1 - HPE IceWall using OpenSSL, remote Denial of Service (DoS) 2017-06-05
security-alert hpe com
[security bulletin] HPESBHF03756 rev.1 - HPE Network Products including Comware 7, iMC, and VCX running OpenSSL, Remote Denial of Service (DoS), Disclosure of Sensitive Information 2017-06-05
security-alert hpe com
X41-2017-005 - Multiple Vulnerabilities in peplink balance routers 2017-06-05
X41 D-Sec GmbH Advisories (advisories x41-dsec de)
[SECURITY] [DSA 3873-1] perl security update 2017-06-05
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
*****THANK YOU***** | 6th June 2017 |
TalkTalk | 5th June 2017 |
Vulnerebility
Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97690
Linux Kernel CVE-2017-8063 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97974
Linux Kernel CVE-2017-7277 Multiple Local Memory Corruption Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97141
Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/98085
Linux Kernel 'drivers/char/virtio_console.c' Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97997
Linux kernel CVE-2017-2671 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97407
Linux Kernel CVE-2017-7618 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97534
Linux Kernel 'security/keys/keyctl.c' Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/98422
Linux Kernel CVE-2017-7645 Multiple Denial of Service Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97950
Linux Kernel CVE-2017-7979 Local Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97969
Deluge CVE-2017-7178 Cross Site Request Forgery Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97041
Google Android Kernel Trace Subsystem CVE-2017-0605 Privilege Escalation Vulnerability
2017-06-07
http://www.securityfocus.com/bid/98152
FreeType 2 CVE-2017-7857 Multiple Out of Bounds Write Heap Buffer Overflow Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97680
FreeType 2 CVE-2017-7864 Out of Bounds Write Heap Buffer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97673
FreeType 2 CVE-2017-7858 Multiple Out Of Bounds Write Denial of Service Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/97682
Adobe Flash Player APSB16-10 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/85932
Minicom CVE-2017-7467 Local Buffer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97966
Linux Kernel CVE-2016-9083 Local Integer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/93929
Linux Kernel CVE-2017-6001 Incomplete Fix Local Privilege Escalation Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96264
Linux Kernel 'tuners/tuner-xc2028.c' Local Use After Free Memory Corruption Vulnerability
2017-06-07
http://www.securityfocus.com/bid/94201
Linux Kernel Vfio Driver CVE-2016-9084 Integer Overflow Vulnerability
2017-06-07
http://www.securityfocus.com/bid/93930
Linux Kernel CVE-2017-2596 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/95878
Google Android Kernel Components Multiple Information Disclosure Vulnerabilites
2017-06-07
http://www.securityfocus.com/bid/94147
Wireshark WBXML Dissector 'packet-wbxml.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97633
Wireshark CVE-2017-6014 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96284
Wireshark BGP dissector Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97632
Wireshark RPCoRDMA Dissector 'packet-rpcrdma.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97630
Wireshark 'dissectors/packet-imap.c' Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97636
Wireshark DOF Dissector 'packet-dof.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97634
Wireshark NetScaler File Parser 'wiretap/netscaler.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97631Wireshark WBXML Dissector 'packet-wbxml.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97633
Wireshark CVE-2017-6014 Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96284
Wireshark BGP dissector Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97632
Wireshark RPCoRDMA Dissector 'packet-rpcrdma.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97630
Wireshark 'dissectors/packet-imap.c' Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97636
Wireshark DOF Dissector 'packet-dof.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97634
Wireshark NetScaler File Parser 'wiretap/netscaler.c' Infinite Loop Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/97631
PCRE 'compile_bracket_matchingpath()' Function Denial of Service Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96295
Pidgin CVE 2017-2640 Out of Bounds Write Security Vulnerability
2017-06-07
http://www.securityfocus.com/bid/96775
Google Chrome Prior to 59.0.3071.86 Multiple Security Vulnerabilities
2017-06-07
http://www.securityfocus.com/bid/98861
Google Android libnl CVE-2017-0553 Remote Privilege Escalation Vulnerability
2017-06-06
http://www.securityfocus.com/bid/97340
PuTTY 'ssh_agent_channel_data()' Function Integer Overflow Vulnerability
2017-06-06
http://www.securityfocus.com/bid/97156
Rpcbind CVE-2017-8779 Remote Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98325
Artifex MuPDF CVE-2017-5991 Null Pointer Dereference Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/96213
MuPDF 'jstest_main.c' Stack Buffer Overflow Vulnerability
2017-06-06
http://www.securityfocus.com/bid/96266
Adobe Flash Player APSB16-10 Multiple Unspecified Memory Corruption Vulnerabilities
2017-06-06
http://www.securityfocus.com/bid/85932
ImageWorsener 'iwgif_record_pixel()' Function Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/97497
ImageWorsener 'iwbmp_read_info_header()' Function Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/97496
ImageWorsener 'iwgif_record_pixel()' Function Remote Heap Buffer Overflow Vulnerability
2017-06-06
http://www.securityfocus.com/bid/97494
libxslt 'libxslt/preproc.c' Type Confusion Remote Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/77325
util-linux CVE-2017-2616 Local Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/96404
Shadow Multiple Local Security Vulnerabilities
2017-06-06
http://www.securityfocus.com/bid/92055
QEMU 'display/virtio-gpu.c' Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98632
QEMU CVE-2017-8379 Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98277
QEMU CVE-2017-9330 Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98779
QEMU CVE-2017-8309 Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98302
QEMU 'hw/9pfs/9p-local.c' Privilege Escalation Vulnerability
2017-06-06
http://www.securityfocus.com/bid/97970
QEMU 'hw/9pfs/9p.c' Multiple Denial of Service Vulnerabilities
2017-06-06
http://www.securityfocus.com/bid/97319
QEMU 'megasas_mmio_write()' Function Out-of-Bounds Read Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98303
QEMU CVE-2017-9310 Denial of Service Vulnerability
2017-06-06
http://www.securityfocus.com/bid/98766
SANS News
Threatpost
Google Fixes 30 Vulnerabilities, Five High Severity, in Chrome 59
IBM Backup Bug Gets Workaround Fix After Nine Months of Exposure
Curiosity Kills Security When it Comes to Phishing
Exploit
Apple Safari 10.1 - Spread Operator Integer Overflow Remote Code Execution
6.6.2017
Bugtraq
[security bulletin] HPESBGN03752 rev.1 - HPE IceWall using OpenSSL, remote Denial of Service (DoS) 2017-06-05
security-alert hpe com
[security bulletin] HPESBHF03756 rev.1 - HPE Network Products including Comware 7, iMC, and VCX running OpenSSL, Remote Denial of Service (DoS), Disclosure of Sensitive Information 2017-06-05
security-alert hpe com
X41-2017-005 - Multiple Vulnerabilities in peplink balance routers 2017-06-05
X41 D-Sec GmbH Advisories (advisories x41-dsec de)
[SECURITY] [DSA 3873-1] perl security update 2017-06-05
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3870-1] wordpress security update 2017-06-01
Sebastien Delafond (seb debian org)
[SECURITY] [DSA 3869-1] tnef security update 2017-06-01
Sebastien Delafond (seb debian org)
Malware
Phishing
Vulnerebility
GnuTLS CVE-2017-6891 Stack Buffer Overflow Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98641
Multiple Puppet Products YAML Deserialization CVE-2017-2295 Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98582
Multiple Puppet Products CVE-2014-3248 Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/68035
Cisco IOS and IOS XE Software CVE-2017-3881 Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/96960
RETIRED: Sendmail Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98787
Cisco Mobility Express Software CVE-2017-3834 Default Credentials Security Bypass Vulnerability
2017-06-05
http://www.securityfocus.com/bid/97422
Google Android Motorola Bootloader CVE-2016-10277 Privilege Escalation Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98149
Linux Kernel CVE-2017-1000363 Integer Overflow Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98651
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98636
Sudo CVE-2017-1000368 Incomplete Fix Local Privilege Escalation Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98838
Screensaver Installers CVE-2017-2176 DLL Loading Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98823
Wireshark 'epan/dissectors/packet-ipv6.c' Denial of Service Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98805
Wireshark 'dissectors/asn1/ros/packet-ros-template.c' Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98800
Multiple Asterisk Products Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98578
Multiple Asterisk Products Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98573
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98745
Multiple Asterisk Products 'PJSIP Transaction Layer' Heap Based Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98572
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98050
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98744
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-02
http://www.securityfocus.com/bid/97940
Oracle Solaris CVE-2017-3622 Local Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/97774
Oracle Solaris CVE-2017-3623 Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/97778
IBM Security Access Manager Products CVE-2016-3019 Information Disclosure Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98832
IBM Security Privileged Identity Manager CVE-2016-5959 Information Disclosure Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98829
IBM Security Privileged Identity Manager CVE-2016-5960 Local Information Disclosure Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98825
SaAT Netizen CVE-2017-2206 DLL Loading Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98817
SaAT Personal Installer CVE-2017-2207 DLL Loading Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98809
Wireshark CVE-2017-9351 Heap Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98808
Wireshark 'epan/dissectors/packet-dof.c' Heap Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98801
Apache Hadoop CVE-2017-7669 Remote Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98795
SANS News
Threatpost
53 Percent of Enterprise Flash Installs are Outdated
40,000 Subdomains Tied to RIG Exploit Kit Shut Down
QakBot Returns, Locking Out Active Directory Accounts
Exploit
Apple Safari 10.1 - Spread Operator Integer Overflow Remote Code Execution
Home Web Server 1.9.1 build 164 - Remote Code Execution
Kronos Telestaff < 2.92EU29 - SQL Injection
WordPress Plugin Tribulant Newsletters 4.6.4.2 - File Disclosure / Cross-Site...
Cisco Catalyst 2960 IOS 12.2(55)SE1 - 'ROCEM' Remote Code Execution
Linux/x86-64 - /bin/sh Shellcode (31 bytes)
Home Web Server 1.9.1 build 164 - Remote Code Execution
Kronos Telestaff < 2.92EU29 - SQL Injection
5.6.2017
Bugtraq
X41-2017-005 - Multiple Vulnerabilities in peplink balance routers 2017-06-05
X41 D-Sec GmbH Advisories (advisories x41-dsec de)
[SECURITY] [DSA 3873-1] perl security update 2017-06-05
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3870-1] wordpress security update 2017-06-01
Sebastien Delafond (seb debian org)
[SECURITY] [DSA 3869-1] tnef security update 2017-06-01
Sebastien Delafond (seb debian org)
Malware
Phishing
Bank of America | 4th June 2017 |
Bank of America Alert: Your | |
Vulnerebility
RETIRED: Sendmail Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98787
Cisco Mobility Express Software CVE-2017-3834 Default Credentials Security Bypass Vulnerability
2017-06-05
http://www.securityfocus.com/bid/97422
Google Android Motorola Bootloader CVE-2016-10277 Privilege Escalation Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98149
Linux Kernel CVE-2017-1000363 Integer Overflow Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98651
Samba CVE-2017-7494 Remote Code Execution Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98636
Wireshark 'epan/dissectors/packet-ipv6.c' Denial of Service Vulnerability
2017-06-05
http://www.securityfocus.com/bid/98805
Wireshark 'dissectors/asn1/ros/packet-ros-template.c' Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98800
Multiple Asterisk Products Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98578
Multiple Asterisk Products Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98573
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98745
Multiple Asterisk Products 'PJSIP Transaction Layer' Heap Based Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98572
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98050
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98744
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-02
http://www.securityfocus.com/bid/97940
Oracle Solaris CVE-2017-3622 Local Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/97774
Oracle Solaris CVE-2017-3623 Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/97778
SaAT Netizen CVE-2017-2206 DLL Loading Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98817
SaAT Personal Installer CVE-2017-2207 DLL Loading Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98809
Wireshark CVE-2017-9351 Heap Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98808
Wireshark 'epan/dissectors/packet-dof.c' Heap Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98801
Apache Hadoop CVE-2017-7669 Remote Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98795
OpenLDAP 'servers/slapd/back-mdb/search.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98736
NVIDIA GPU Driver CVE-2017-0352 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98517
NVIDIA GPU Driver CVE-2017-0351 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98497
NVIDIA GPU Driver CVE-2017-0350 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98490
WordPress Password Reset CVE-2017-8295 Security Bypass Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98295
WordPress Prior to 4.7.5 Multiple Security Vulnerabilities
2017-06-01
http://www.securityfocus.com/bid/98509
Tera Term Installer CVE-2017-2193 DLL Loading Remote Code Execution Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98807
Wireshark 'epan/dissectors/packet-opensafety.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98806
Wireshark 'epan/dissectors/packet-bzr.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98804
SANS News
Threatpost
Exploit
Joomla Component Payage 2.05 - 'aid' Parameter SQL Injection
Disk Sorter 9.7.14 - 'Input Directory' Local Buffer Overflow
EnGenius EnShare IoT Gigabit Cloud Service 1.4.11 - Remote Code Execution
Subsonic 6.1.1 - Cross-Site Request Forgery
Subsonic 6.1.1 - Server-Side Request Forgery
Subsonic 6.1.1 - Cross-Site Request Forgery / Cross-Site Scripting
Parallels Desktop - Virtual Machine Escape
Subsonic 6.1.1 - XML External Entity Injection
BIND 9.10.5 - Unquoted Service Path Privilege Escalation
Disk Sorter 9.7.14 - 'Input Directory' Local Buffer Overflow
DNSTracer 1.8.1 - Buffer Overflow
4.6.2017
Bugtraq
[SECURITY] [DSA 3870-1] wordpress security update 2017-06-01
Sebastien Delafond (seb debian org)
[SECURITY] [DSA 3869-1] tnef security update 2017-06-01
Sebastien Delafond (seb debian org)
[CVE-2017-5688] Executable installers are vulnerable^WEVIL (case 52): Intel installation framework allows arbitrary code execution with escalation of privilege 2017-05-31
Stefan Kanthak (stefan kanthak nexgo de)
Malware
Phishing
User Support | 3rd June 2017 |
Netflix Inc | 3rd June 2017 |
Vulnerebility
Wireshark 'dissectors/asn1/ros/packet-ros-template.c' Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98800
Multiple Asterisk Products Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98578
Multiple Asterisk Products Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98573
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98745
Multiple Asterisk Products 'PJSIP Transaction Layer' Heap Based Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98572
Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98050
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98744
Mozilla Firefox Multiple Security Vulnerabilities
2017-06-02
http://www.securityfocus.com/bid/97940
Oracle Solaris CVE-2017-3622 Local Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/97774
Oracle Solaris CVE-2017-3623 Remote Code Execution Vulnerability
2017-06-02
http://www.securityfocus.com/bid/97778
Wireshark 'epan/dissectors/packet-dof.c' Heap Buffer Overflow Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98801
Apache Hadoop CVE-2017-7669 Remote Privilege Escalation Vulnerability
2017-06-02
http://www.securityfocus.com/bid/98795
OpenLDAP 'servers/slapd/back-mdb/search.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98736
NVIDIA GPU Driver CVE-2017-0352 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98517
NVIDIA GPU Driver CVE-2017-0351 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98497
NVIDIA GPU Driver CVE-2017-0350 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98490
WordPress Password Reset CVE-2017-8295 Security Bypass Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98295
WordPress Prior to 4.7.5 Multiple Security Vulnerabilities
2017-06-01
http://www.securityfocus.com/bid/98509
Wireshark 'epan/dissectors/packet-slsk.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98799
Wireshark 'epan/dissectors/packet-dns.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98798
Wireshark CVE-2017-9343 Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98797
Wireshark 'dissectors/packet-btl2cap.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98796
Phoenix Broadband Technologies LLC PowerAgent SC3 Site Controller Security Bypass Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98781
QEMU CVE-2017-9330 Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98779
Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/96421
Microsoft Domain Controller Remote Code Execution Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98757
Juniper Junos Space CVE-2017-2305 Remote Privilege Escalation Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98759
Multiple Hitachi Products CVE-2017-9295 XML External Entity Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98761
strongSwan CVE-2017-9022 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98760
Oracle Database Server Authentication Bypass Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98758
SANS News
Threatpost
Jaff Malware Probe Uncovers Link to Cybercrime Marketplace
SSH Configuration on Nexpose Servers Allowed Weak Encryption Algorithms
EternalBlue Exploit Spreading Gh0st RAT, Nitol
Exploit
2.6.2017
Bugtraq
[SECURITY] [DSA 3870-1] wordpress security update 2017-06-01
Sebastien Delafond (seb debian org)
[SECURITY] [DSA 3869-1] tnef security update 2017-06-01
Sebastien Delafond (seb debian org)
[CVE-2017-5688] Executable installers are vulnerable^WEVIL (case 52): Intel installation framework allows arbitrary code execution with escalation of privilege 2017-05-31
Stefan Kanthak (stefan kanthak nexgo de)
DefenseCode ThunderScan SAST Advisory: WordPress Simple Slideshow Manager Plugin Multiple Security Vulnerabilities 2017-05-30
DefenseCode (defensecode defensecode com)
[SECURITY] [DSA 3867-1] sudo security update 2017-05-30
Salvatore Bonaccorso (carnil debian org)
Malware
Phishing
*****THANK YOU***** | 1st June 2017 |
*****THANK YOU***** | 1st June 2017 |
Vulnerebility
OpenLDAP 'servers/slapd/back-mdb/search.c' Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98736
NVIDIA GPU Driver CVE-2017-0352 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98517
NVIDIA GPU Driver CVE-2017-0351 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98497
NVIDIA GPU Driver CVE-2017-0350 Local Privilege Escalation Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98490
WordPress Password Reset CVE-2017-8295 Security Bypass Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98295
WordPress Prior to 4.7.5 Multiple Security Vulnerabilities
2017-06-01
http://www.securityfocus.com/bid/98509
Phoenix Broadband Technologies LLC PowerAgent SC3 Site Controller Security Bypass Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98781
QEMU CVE-2017-9330 Denial of Service Vulnerability
2017-06-01
http://www.securityfocus.com/bid/98779
Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/96421
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98744
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98745
Microsoft Domain Controller Remote Code Execution Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98757
Juniper Junos Space CVE-2017-2305 Remote Privilege Escalation Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98759
Multiple Hitachi Products CVE-2017-9295 XML External Entity Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98761
strongSwan CVE-2017-9022 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98760
Oracle Database Server Authentication Bypass Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98758
Real Networks RealPlayer CVE-2017-9302 Divide-By-Zero Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98754
strongSwan CVE-2017-9023 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98756
Juniper Junos Space CVE-2017-2308 XML External Entity Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98755
Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98752
Joomla! VirtueMart Extension 'administrator/index.php' Multiple SQL Injection Vulnerabilities
2017-05-31
http://www.securityfocus.com/bid/98753
Juniper Junos Space CVE-2017-2310 Security Bypass Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98751
Juniper Junos Space CVE-2017-2309 Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98750
Juniper Junos Space CVE-2017-2311 Unspecified Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98748
Juniper Junos Space CVE-2017-2307 Cross Site Scripting Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98749
VideoLAN VLC CVE-2017-9300 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98747
VideoLAN VLC CVE-2017-9301 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98746
Apple iOS and Safari Multiple Security Vulnerabilities
2017-05-31
http://www.securityfocus.com/bid/98474
ImageMagick CVE-2017-9142 Local Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98683
ImageMagick CVE-2017-8830 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98687
SANS News
Phishing Campaigns Follow Trends
Threatpost
Fireball Malware Infects 250 Million Computers Worldwide
WikiLeaks Dumps CIA Patient Zero Windows Implant
WannaCry Development Errors Enable File Recovery
OneLogin Breach Compromised Customer Data, Ability to Decrypt Encrypted Data
Insecure Backend Databases Blamed for Leaking 43TB of App Data
Exploit
1.6.2017
Bugtraq
[SECURITY] [DSA 3870-1] wordpress security update 2017-06-01
Sebastien Delafond (seb debian org)
[SECURITY] [DSA 3869-1] tnef security update 2017-06-01
Sebastien Delafond (seb debian org)
[CVE-2017-5688] Executable installers are vulnerable^WEVIL (case 52): Intel installation framework allows arbitrary code execution with escalation of privilege 2017-05-31
Stefan Kanthak (stefan kanthak nexgo de)
DefenseCode ThunderScan SAST Advisory: WordPress Simple Slideshow Manager Plugin Multiple Security Vulnerabilities 2017-05-30
DefenseCode (defensecode defensecode com)
[SECURITY] [DSA 3867-1] sudo security update 2017-05-30
Salvatore Bonaccorso (carnil debian org)
[SECURITY] [DSA 3866-1] strongswan security update 2017-05-30
Yves-Alexis Perez (corsac debian org)
[SECURITY] [DSA 3865-1] mosquitto security update 2017-05-29
Moritz Muehlenhoff (jmm debian org)
Malware
Phishing
Vulnerebility
Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/96421
OpenLDAP 'servers/slapd/back-mdb/search.c' Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98736
Mozilla Network Security Services CVE-2017-7502 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98744
Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98745
Microsoft Domain Controller Remote Code Execution Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98757
Juniper Junos Space CVE-2017-2305 Remote Privilege Escalation Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98759
Multiple Hitachi Products CVE-2017-9295 XML External Entity Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98761
strongSwan CVE-2017-9022 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98760
Oracle Database Server Authentication Bypass Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98758
Real Networks RealPlayer CVE-2017-9302 Divide-By-Zero Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98754
strongSwan CVE-2017-9023 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98756
Juniper Junos Space CVE-2017-2308 XML External Entity Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98755
Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98752
Joomla! VirtueMart Extension 'administrator/index.php' Multiple SQL Injection Vulnerabilities
2017-05-31
http://www.securityfocus.com/bid/98753
Juniper Junos Space CVE-2017-2310 Security Bypass Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98751
Juniper Junos Space CVE-2017-2309 Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98750
Juniper Junos Space CVE-2017-2311 Unspecified Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98748
Juniper Junos Space CVE-2017-2307 Cross Site Scripting Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98749
VideoLAN VLC CVE-2017-9300 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98747
VideoLAN VLC CVE-2017-9301 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98746
Apple iOS and Safari Multiple Security Vulnerabilities
2017-05-31
http://www.securityfocus.com/bid/98474
ImageMagick CVE-2017-9142 Local Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98683
ImageMagick CVE-2017-8830 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98687
ImageMagick 'coders/rle.c' Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98603
ImageMagick CVE-2017-9143 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98682
ImageMagick CVE-2017-9098 Local Information Disclosure Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98593
ImageMagick CVE-2017-7619 Multiple Denial of Service Vulnerabilities
2017-05-31
http://www.securityfocus.com/bid/98689
ImageMagick 'MagickCore/profile.c' Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98606
ImageMagick 'coders/rle.c' Remote Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98685
ImageMagick CVE-2017-8765 Denial of Service Vulnerability
2017-05-31
http://www.securityfocus.com/bid/98688
SANS News
Sharing Private Data with Webcast Invitations
Threatpost
Privacy Issue Fixed in Yopify Ecommerce Notification Plugin
New Machine Learning Behind Early Phishing Detection in Gmail
Patches Available for Linux Sudo Vulnerability
Hack Department of Homeland Security Act Would Bring Bug Bounty Program to DHS
Exploit
WebKit JSC - 'JSObject::ensureLength' ensureLengthSlow Check Failure
WebKit JSC - Incorrect Check in emitPutDerivedConstructorToArrowFunctionContextScope
WebKit - 'Element::setAttributeNodeNS' Use-After-Free
Piwigo Plugin Facetag 0.0.3 - SQL Injection
OV3 Online Administration 3.0 - Directory Traversal
OV3 Online Administration 3.0 - Remote Code Execution