Datum

Název

Typ

31.10.2017

W97M.Downloader.P

Malware

31.10.2017

Some Powershell Malicious Code

SANS News

31.10.2017

Google’s reCaptcha Cracked Again

Threatpost

31.10.2017

Flaw in Google Bug Tracker Exposed Reports About Unpatched Vulnerabilities

Threatpost

31.10.2017

Malicious Chrome Extension Steals Data Posted to Any Website

Threatpost

31.10.2017

Oracle Java SE - Web Start jnlp XML External Entity Processing Information... 

Exploint

31.10.2017

Ingenious 2.3.0 - Arbitrary File Upload 

Exploint

30.10.2017

VulnWatch] Advisory 02/2002: PHP remote vulnerability 2017-10-27

Bugtraq

30.10.2017

Bomgar Remote Support - Local Privilege Escalation (CVE-2017-5996) 2017-10-26

Bugtraq

30.10.2017

Remember ACE files?

SANS News

30.10.2017

Critical Patch For Oracle's Identity Manager

SANS News

30.10.2017

MitraStar DSL-100HN-T1/GPT-2541GNAC - Privilege Escalation 

Exploint

30.10.2017

Online Exam Test Application - 'sort' SQL Injection 

Exploint

30.10.2017

Php Inventory - Arbitrary File Upload 

Exploint

30.10.2017

Vastal I-Tech Agent Zone - SQL Injection 

Exploint

30.10.2017

Website Broker Script - 'status_id' SQL Injection 

Exploint

30.10.2017

Zomato Clone Script - 'resid' SQL Injection 

Exploint

30.10.2017

WordPress Plugin Ultimate Product Catalog 4.2.24 - PHP Object Injection 

Exploint

29.10.2017

"Catch-All" Google Chrome Malicious Extension Steals All Posted Data

SANS News

29.10.2017

Rockwell Automation Patches Wireless Access Point against Krack

Threatpost

29.10.2017

Apache OpenOffice Update Patches Four Vulnerabilities

Threatpost

29.10.2017

Tizen Studio 1.3 Smart Development Bridge < 2.3.2 - Buffer Overflow (PoC) 

Exploint

29.10.2017

Watchdog Development Anti-Malware / Online Security Pro - NULL Pointer Dereference 

Exploint

27.10.2017

VulnWatch] Advisory 02/2002: PHP remote vulnerability 2017-10-27

Bugtraq

27.10.2017

Bomgar Remote Support - Local Privilege Escalation (CVE-2017-5996) 2017-10-26

Bugtraq

27.10.2017

October 2017 - Bamboo - Critical Security Advisory 2017-10-26

Bugtraq

27.10.2017

KL-001-2017-020 : Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions 2017-10-24

Bugtraq

27.10.2017

KL-001-2017-017 : Infoblox NetMRI Administration Shell Escape and Privilege Escalation 2017-10-24

Bugtraq

27.10.2017

SECURITY] DSA 4006-1] mupdf security update 2017-10-24

Bugtraq

27.10.2017

security bulletin] HPESBHF03779 rev.1 - HPE Fabric OS using OpenSSH, Denial of Service 2017-10-23

Bugtraq

27.10.2017

SECURITY] DSA 4003-1] libvirt security update 2017-10-19

Bugtraq

27.10.2017

WPA2 Key Reinstallation Multiple Security Weaknesses

Vulnerebility

27.10.2017

MIT krb5 CVE-2017-15088 Remote Buffer Overflow Vulnerability

Vulnerebility

27.10.2017

Google Chrome CVE-2017-5090 Security Bypass Vulnerability

Vulnerebility

27.10.2017

IBM Jazz Foundation CVE-2017-1164 Cross Site Scripting Vulnerability

Vulnerebility

27.10.2017

OpenSSH CVE-2016-6515 Denial of Service Vulnerability

Vulnerebility

27.10.2017

OpenSSH 'sftp-server.c' Remote Security Bypass Vulnerability

Vulnerebility

27.10.2017

Google V8 CVE-2017-15396 Stack Based Buffer Overflow Vulnerability

Vulnerebility

27.10.2017

GNU wget CVE-2017-13089 Stack Buffer Overflow Vulnerability

Vulnerebility

27.10.2017

GNU wget CVE-2017-13090 Heap Buffer Overflow Vulnerability

Vulnerebility

27.10.2017

Apache OpenOffice Multiple Remote Code Execution Vulnerabilities

Vulnerebility

27.10.2017

Multiple Pivotal Products CVE-2015-5170 Cross Site Request Forgery Vulnerability

Vulnerebility

27.10.2017

ProxySG and ASG CVE-2016-9097 Remote Authorization Bypass Vulnerability

Vulnerebility

27.10.2017

IBM DOORS Next Generation CVE-2017-1169 Cross Site Scripting Vulnerability

Vulnerebility

27.10.2017

Ursnif Banking Trojan Spreading In Japan

SANS News

27.10.2017

Two Critical Vulnerabilities Found In Inmarsat’s SATCOM Systems

SANS News

27.10.2017

HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow 

Exploint

27.10.2017

PHPMailer < 5.2.21 - Local File Disclosure 

Exploint

27.10.2017

Watchdog Development Anti-Malware / Online Security Pro - NULL Pointer Dereference 

Exploint

26.10.2017

October 2017 - Bamboo - Critical Security Advisory 2017-10-26

Bugtraq

26.10.2017

KL-001-2017-020 : Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions 2017-10-24

Bugtraq

26.10.2017

KL-001-2017-017 : Infoblox NetMRI Administration Shell Escape and Privilege Escalation 2017-10-24

Bugtraq

26.10.2017

SECURITY] DSA 4006-1] mupdf security update 2017-10-24

Bugtraq

26.10.2017

OpenSSH CVE-2016-6515 Denial of Service Vulnerability

Vulnerebility

26.10.2017

OpenSSH 'sftp-server.c' Remote Security Bypass Vulnerability

Vulnerebility

26.10.2017

IBM Storwize V7000 CVE-2017-1375 Unified Information Disclosure Vulnerability

Vulnerebility

26.10.2017

TYPO3 Core TYPO3-SA-2010-012 Multiple Remote Security Vulnerabilities

Vulnerebility

26.10.2017

Redis CVE-2016-10517 Cross Site Scripting Vulnerability

Vulnerebility

26.10.2017

IBM BigFix Platform Multiple Security Vulnerabilities

Vulnerebility

26.10.2017

IBM OpenPages GRC Platform CVE-2016-3049 HTML Injection Vulnerability

Vulnerebility

26.10.2017

Macro-less Code Execution in MS Word

SANS News

26.10.2017

Hackers Prepping IOTroop Botnet with Exploits

Threatpost

26.10.2017

BadRabbit Ransomware Attacks Hitting Russia, Ukraine

Threatpost

26.10.2017

Netgear DGN1000 1.1.00.48 - 'Setup.cgi' Unauthenticated Remote Code Execution... 

Exploint

26.10.2017

KeystoneJS 4.0.0-beta.5 - Cross-Site Scripting 

Exploint

26.10.2017

KeystoneJS 4.0.0-beta.5 - CSV Excel Macro Injection 

Exploint

25.10.2017

KL-001-2017-020 : Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions 2017-10-24

Bugtraq

25.10.2017

KL-001-2017-017 : Infoblox NetMRI Administration Shell Escape and Privilege Escalation 2017-10-24

Bugtraq

25.10.2017

SECURITY] DSA 4006-1] mupdf security update 2017-10-24

Bugtraq

25.10.2017

security bulletin] HPESBHF03779 rev.1 - HPE Fabric OS using OpenSSH, Denial of Service 2017-10-23

Bugtraq

25.10.2017

SECURITY] DSA 4003-1] libvirt security update 2017-10-19

Bugtraq

25.10.2017

SECURITY] DSA 4002-1] mysql-5.5 security update 2017-10-19

Bugtraq

25.10.2017

Ransom.BadRabbit

Malware

25.10.2017

VBS.Downloader.C

Malware

25.10.2017

TYPO3 Core TYPO3-SA-2010-012 Multiple Remote Security Vulnerabilities

Vulnerebility

25.10.2017

Infineon RSA Library CVE-2017-15361 Cryptographic Security Bypass Vulnerability

Vulnerebility

25.10.2017

Symantec Endpoint Encryption CVE-2017-13675 Denial-of-Service Vulnerability

Vulnerebility

25.10.2017

Jenkins Build Publisher Plugin Information Disclosure Vulnerability

Vulnerebility

25.10.2017

Jenkins Global Build Stats Plugin Multiple Security Vulnerabilities

Vulnerebility

25.10.2017

Jenkins Active Choices Plugin HTML Injection Vulnerability

Vulnerebility

25.10.2017

Jenkins SCP Publisher Plugin SSH credentials Information Disclosure Vulnerability

Vulnerebility

25.10.2017

cURL/libcURL CVE-2017-1000257 Buffer Overflow Vulnerability

Vulnerebility

25.10.2017

Symantec Endpoint Encryption CVE-2017-13683 Denial-of-Service Vulnerability

Vulnerebility

25.10.2017

Symantec Encryption Desktop CVE-2017-13682 Denial-of-Service Vulnerability

Vulnerebility

25.10.2017

Foxit Reader CVE-2017-15771 Remote Buffer Overflow Vulnerability

Vulnerebility

25.10.2017

Foxit Reader CVE-2017-15770 Remote Buffer Overflow Vulnerability

Vulnerebility

25.10.2017

GNU glibc CVE-2017-15804 Heap Buffer Overflow Vulnerability

Vulnerebility

25.10.2017

Multiple F5 BIG-IP Products CVE-2017-6165 Local Information Disclosure Vulnerability

Vulnerebility

25.10.2017

Apache James CVE-2017-12628 Arbitrary Command Execution Vulnerability

Vulnerebility

25.10.2017

Cisco AMP for Endpoints CVE-2017-12317 Local Privilege Escalation Vulnerability

Vulnerebility

25.10.2017

FFmpeg CVE-2017-15186 Denial of Service Vulnerability

Vulnerebility

25.10.2017

GNU glibc CVE-2017-15671 Local Denial of Service Vulnerability

Vulnerebility

25.10.2017

Oracle E-Business Suite CVE-2017-10416 Remote Security Vulnerability

Vulnerebility

25.10.2017

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability

Vulnerebility

25.10.2017

OpenSSL CVE-2017-3731 Denial of Service Vulnerability

Vulnerebility

25.10.2017

cURL/libcURL 'curl_easy_duphandle()' Function Heap Memory Corruption Vulnerability

Vulnerebility

25.10.2017

Apache Tomcat CVE-2017-5664 Security Bypass Vulnerability

Vulnerebility

25.10.2017

PostgreSQL CVE-2014-0062 Security Bypass Vulnerability

Vulnerebility

25.10.2017

Wireshark TN5250 Dissector CVE-2014-8714 Infinite Loop Denial of Service Vulnerability

Vulnerebility

25.10.2017

PHP Fileinfo Component Incomplete Fix Remote Denial of Service Vulnerability

Vulnerebility

25.10.2017

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability

Vulnerebility

25.10.2017

DUHK attack, continuing a week of named issues

SANS News

25.10.2017

BadRabbit Ransomware Attacks Hitting Russia, Ukraine

Threatpost

25.10.2017

Whois Maintainer Accidentally Makes Password Hashes Available For Download

Threatpost

24.10.2017

security bulletin] HPESBHF03779 rev.1 - HPE Fabric OS using OpenSSH, Denial of Service 2017-10-23

Bugtraq

24.10.2017

SECURITY] DSA 4003-1] libvirt security update 2017-10-19

Bugtraq

24.10.2017

SECURITY] DSA 4002-1] mysql-5.5 security update 2017-10-19

Bugtraq

24.10.2017

Exp.CVE-2017-11826

Malware

24.10.2017

TYPO3 Core TYPO3-SA-2010-012 Multiple Remote Security Vulnerabilities

Vulnerebility

24.10.2017

Infineon RSA Library CVE-2017-15361 Cryptographic Security Bypass Vulnerability

Vulnerebility

24.10.2017

Symantec Endpoint Encryption CVE-2017-13675 Denial-of-Service Vulnerability

Vulnerebility

24.10.2017

Jenkins Build Publisher Plugin Information Disclosure Vulnerability

Vulnerebility

24.10.2017

Jenkins Global Build Stats Plugin Multiple Security Vulnerabilities

Vulnerebility

24.10.2017

Jenkins Active Choices Plugin HTML Injection Vulnerability

Vulnerebility

24.10.2017

Jenkins SCP Publisher Plugin SSH credentials Information Disclosure Vulnerability

Vulnerebility

24.10.2017

cURL/libcURL CVE-2017-1000257 Buffer Overflow Vulnerability

Vulnerebility

24.10.2017

Symantec Endpoint Encryption CVE-2017-13683 Denial-of-Service Vulnerability

Vulnerebility

24.10.2017

Symantec Encryption Desktop CVE-2017-13682 Denial-of-Service Vulnerability

Vulnerebility

24.10.2017

Foxit Reader CVE-2017-15770 Remote Buffer Overflow Vulnerability

Vulnerebility

24.10.2017

GNU glibc CVE-2017-15804 Heap Buffer Overflow Vulnerability

Vulnerebility

24.10.2017

Apache James CVE-2017-12628 Arbitrary Command Execution Vulnerability

Vulnerebility

24.10.2017

Cisco AMP for Endpoints CVE-2017-12317 Local Privilege Escalation Vulnerability

Vulnerebility

24.10.2017

FFmpeg CVE-2017-15186 Denial of Service Vulnerability

Vulnerebility

24.10.2017

GNU glibc CVE-2017-15671 Local Denial of Service Vulnerability

Vulnerebility

24.10.2017

Oracle E-Business Suite CVE-2017-10416 Remote Security Vulnerability

Vulnerebility

24.10.2017

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability

Vulnerebility

24.10.2017

OpenSSL CVE-2017-3731 Denial of Service Vulnerability

Vulnerebility

24.10.2017

cURL/libcURL 'curl_easy_duphandle()' Function Heap Memory Corruption Vulnerability

Vulnerebility

24.10.2017

Apache Tomcat CVE-2017-5664 Security Bypass Vulnerability

Vulnerebility

24.10.2017

PostgreSQL CVE-2014-0062 Security Bypass Vulnerability

Vulnerebility

24.10.2017

Wireshark TN5250 Dissector CVE-2014-8714 Infinite Loop Denial of Service Vulnerability

Vulnerebility

24.10.2017

PHP Fileinfo Component Incomplete Fix Remote Denial of Service Vulnerability

Vulnerebility

24.10.2017

BadRabbit: New ransomware wave hitting RU & UA

SANS News

24.10.2017

Stop relying on file extensions

SANS News

24.10.2017

Latest Sofacy Campaign Targeting Security Researchers

Threatpost

24.10.2017

Polycom - Command Shell Authorization Bypass (Metasploit) 

Exploit

24.10.2017

Unitrends UEB 9 - bpserverd Authentication Bypass Remote Command Execution... 

Exploit

24.10.2017

Unitrends UEB 9 - http api/storage Remote Root (Metasploit) 

Exploit

24.10.2017

Ayukov NFTP FTP Client < 2.0 - Buffer Overflow 

Exploit

24.10.2017

FS OLX Clone - 'catg_id' SQL Injection 

Exploit

24.10.2017

FS Lynda Clone - 'category' SQL Injection 

Exploit

24.10.2017

FS Indiamart Clone - 'keywords' SQL Injection 

Exploit

24.10.2017

FS Groupon Clone - 'category' SQL Injection 

Exploit

24.10.2017

FS Freelancer Clone - 'sk' SQL Injection 

Exploit

24.10.2017

FS Expedia Clone - 'hid' SQL Injection 

Exploit

24.10.2017

FS Food Delivery Script - 'keywords' SQL Injection 

Exploit

24.10.2017

Mikogo 5.4.1.160608 - Local Credentials Disclosure 

Exploit

23.10.2017

Linux.Iotreaper

Malware

23.10.2017

Trojan.Turla.B

Malware

23.10.2017

Is a telco in Brazil hosting an epidemic of open SOCKS proxies?

SANS News

23.10.2017

New Magniber Ransomware Targets South Korea, Asia Pacific

Threatpost

23.10.2017

Ayukov NFTP FTP Client < 2.0 - Buffer Overflow 

Exploit

23.10.2017

CometChat < 6.2.0 BETA 1 - Local File Inclusion 

Exploit

23.10.2017

Logitech Media Server - Cross-Site Scripting 

Exploit

23.10.2017

TP-Link TL-MR3220 - Cross-Site Scripting 

Exploit

23.10.2017

ArGoSoft Mini Mail Server 1.0.0.2 - Denial of Service 

Exploit

23.10.2017

Linux Kernel 4.14.0-rc4+ - 'waitid()' Privilege Escalation 

Exploit

23.10.2017

Ayukov NFTP FTP Client < 2.0 - Buffer Overflow 

Exploit

20.10.2017

FreeBSD Security Advisory FreeBSD-SA-17:07.wpa REVISED] 2017-10-19

Bugtraq

20.10.2017

Oracle E-Business Suite CVE-2017-10416 Remote Security Vulnerability

Vulnerebility

20.10.2017

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability

Vulnerebility

20.10.2017

OpenSSL CVE-2017-3731 Denial of Service Vulnerability

Vulnerebility

20.10.2017

cURL/libcURL 'curl_easy_duphandle()' Function Heap Memory Corruption Vulnerability

Vulnerebility

20.10.2017

Apache Tomcat CVE-2017-5664 Security Bypass Vulnerability

Vulnerebility

20.10.2017

PostgreSQL CVE-2014-0062 Security Bypass Vulnerability

Vulnerebility

20.10.2017

Wireshark TN5250 Dissector CVE-2014-8714 Infinite Loop Denial of Service Vulnerability

Vulnerebility

20.10.2017

PHP Fileinfo Component Incomplete Fix Remote Denial of Service Vulnerability

Vulnerebility

20.10.2017

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability

Vulnerebility

20.10.2017

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

Vulnerebility

20.10.2017

Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability

Vulnerebility

20.10.2017

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability

Vulnerebility

20.10.2017

OpenSSL CVE-2016-7052 Denial of Service Vulnerability

Vulnerebility

20.10.2017

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability

Vulnerebility

20.10.2017

OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability

Vulnerebility

20.10.2017

Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability

Vulnerebility

20.10.2017

Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability

Vulnerebility

20.10.2017

NTP CVE-2016-7431 Denial of Service Vulnerability

Vulnerebility

20.10.2017

OpenSSL CVE-2016-6304 Denial of Service Vulnerability

Vulnerebility

20.10.2017

Oracle Java Advanced Management Console CVE-2017-10380 Remote Security Vulnerability

Vulnerebility

20.10.2017

Oracle Java SE and JRockit CVE-2017-10356 Local Security Vulnerability

Vulnerebility

20.10.2017

Necurs Botnet malspam pushes Locky using DDE attack

SANS News

20.10.2017

Using Yara rules with Volatility 

SANS News

20.10.2017

Google Play Bounty Promises $1,000 Rewards for Flaws in Popular Apps

Threatpost

20.10.2017

Hackers Take Aim at SSH Keys in New Attacks

Threatpost

20.10.2017

Google Advanced Protection Trades Ease-of-Use for Security

Threatpost

20.10.2017

Microsoft Game Definition File Editor 6.3.9600 - XML External Entity Injection 

Exploit

20.10.2017

TP-Link WR940N - Authenticated Remote Code Exploit 

Exploit

20.10.2017

Check_MK 1.2.8p25 - Information Disclosure 

Exploit

20.10.2017

ZKTime Web Software 2.0 - Improper Access Restrictions 

Exploit

20.10.2017

ZKTime Web Software 2.0 - Cross-Site Request Forgery 

Exploit

20.10.2017

Mozilla Firefox < 55 - Denial of Service 

Exploit

19.10.2017

FreeBSD Security Advisory FreeBSD-SA-17:07.wpa REVISED] 2017-10-19

Bugtraq

19.10.2017

slackware-security] xorg-server (SSA:2017-291-03) 2017-10-18

Bugtraq

19.10.2017

slackware-security] wpa_supplicant (SSA:2017-291-02) 2017-10-18

Bugtraq

19.10.2017

slackware-security] libXres (SSA:2017-291-01) 2017-10-18

Bugtraq

19.10.2017

WebKitGTK+ Security Advisory WSA-2017-0008 2017-10-18

Bugtraq

19.10.2017

SEC Consult SA-20171018-1 :: Multiple vulnerabilities in Linksys E-series products 2017-10-18

Bugtraq

19.10.2017

Trojan.Esaprof

Malware

19.10.2017

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability

Vulnerebility

19.10.2017

OpenSSL CVE-2017-3731 Denial of Service Vulnerability

Vulnerebility

19.10.2017

cURL/libcURL 'curl_easy_duphandle()' Function Heap Memory Corruption Vulnerability

Vulnerebility

19.10.2017

Apache Tomcat CVE-2017-5664 Security Bypass Vulnerability

Vulnerebility

19.10.2017

PostgreSQL CVE-2014-0062 Security Bypass Vulnerability

Vulnerebility

19.10.2017

Wireshark TN5250 Dissector CVE-2014-8714 Infinite Loop Denial of Service Vulnerability

Vulnerebility

19.10.2017

PHP Fileinfo Component Incomplete Fix Remote Denial of Service Vulnerability

Vulnerebility

19.10.2017

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability

Vulnerebility

19.10.2017

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

Vulnerebility

19.10.2017

Mozilla Network Security Services CVE-2017-5461 Memory Corruption Vulnerability

Vulnerebility

19.10.2017

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability

Vulnerebility

19.10.2017

OpenSSL CVE-2016-7052 Denial of Service Vulnerability

Vulnerebility

19.10.2017

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability

Vulnerebility

19.10.2017

OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability

Vulnerebility

19.10.2017

Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability

Vulnerebility

19.10.2017

Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability

Vulnerebility

19.10.2017

NTP CVE-2016-7431 Denial of Service Vulnerability

Vulnerebility

19.10.2017

OpenSSL CVE-2016-6304 Denial of Service Vulnerability

Vulnerebility

19.10.2017

Oracle Java Advanced Management Console CVE-2017-10380 Remote Security Vulnerability

Vulnerebility

19.10.2017

Oracle Java SE and JRockit CVE-2017-10356 Local Security Vulnerability

Vulnerebility

19.10.2017

RSA Archer GRC CMS Multiple Security Vulnerabilities

Vulnerebility

19.10.2017

Oracle Database Server CVE-2016-3506 Remote Security Vulnerability

Vulnerebility

19.10.2017

Perl 'perl.c' CVE-2016-2381 Security Bypass Vulnerability

Vulnerebility

19.10.2017

lcms2 CVE-2016-10165 Out-of-Bounds Read Denial of Service Vulnerability

Vulnerebility

19.10.2017

Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability

Vulnerebility

19.10.2017

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability

Vulnerebility

19.10.2017

Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability

Vulnerebility

19.10.2017

Apache MyFaces Trinidad CVE-2016-5019 Remote Code Execution Vulnerability

Vulnerebility

19.10.2017

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability

Vulnerebility

19.10.2017

Cisco WebEx Meetings Server CVE-2017-12296 Cross Site Scripting Vulnerability

Vulnerebility

19.10.2017

HSBC-themed malspam uses ISO attachments to push Loki Bot malware

SANS News

19.10.2017

FBI Asks Businesses to Share Details About DDoS Attacks

Threatpost

19.10.2017

Critical Code Execution Flaw Patched in PeopleSoft Core Engine

Threatpost

19.10.2017

Xen - Unbounded Recursion in Pagetable De-typing 

Exploit

19.10.2017

Afian AB FileRun 2017.03.18 - Multiple Vulnerabilities 

Exploit

19.10.2017

Linksys E Series - Multiple Vulnerabilities 

Exploit

19.10.2017

Wordpress Plugin Car Park Booking - SQL Injection 

Exploit

18.10.2017

SECURITY] DSA 3999-1] wpa security update 2017-10-16

Bugtraq

18.10.2017

SEC Consult SA-20171016-0 :: Multiple vulnerabilities in Micro Focus VisiBroker C++ 2017-10-16

Bugtraq

18.10.2017

security bulletin] MFSBGN03786 rev.1 - HPE Connected Backup, Local Escalation of Privilege 2017-10-13

Bugtraq

18.10.2017

Advisory X41-2017-010: Command Execution in Shadowsocks-libev 2017-10-13

Bugtraq

18.10.2017

Advisory X41-2017-008: Multiple Vulnerabilities in Shadowsocks 2017-10-13

Bugtraq

18.10.2017

lcms2 CVE-2016-10165 Out-of-Bounds Read Denial of Service Vulnerability

Vulnerebility

18.10.2017

Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability

Vulnerebility

18.10.2017

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability

Vulnerebility

18.10.2017

Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability

Vulnerebility

18.10.2017

Apache MyFaces Trinidad CVE-2016-5019 Remote Code Execution Vulnerability

Vulnerebility

18.10.2017

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability

Vulnerebility

18.10.2017

Oracle Java Advanced Management Console CVE-2017-10380 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle E-Business Suite CVE-2017-10416 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle E-Business Suite CVE-2017-10417 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle E-Business Suite CVE-2017-10329 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Hotel Mobile CVE-2017-10014 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle E-Business Suite CVE-2017-10330 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Hotel Mobile CVE-2017-10353 Remote Security Vulnerability

Vulnerebility

18.10.2017

Apache Tomcat CVE-2015-5351 Cross Site Request Forgery Vulnerability

Vulnerebility

18.10.2017

WPA2 Key Reinstallation Multiple Security Weaknesses

Vulnerebility

18.10.2017

Liblouis CVE-2014-8184 Stack Based Buffer Overflow Vulnerability

Vulnerebility

18.10.2017

SAP Host Agent CVE-2017-15297 Denial of Service Vulnerability

Vulnerebility

18.10.2017

Apache Struts Incomplete Fix Remote Code Execution Vulnerability

Vulnerebility

18.10.2017

SAP Point of Sale (POS) Retail Xpress Server Authentication Bypass Vulnerability

Vulnerebility

18.10.2017

SAP Customer Relationship Management (CRM) Cross Site Scripting Vulnerability

Vulnerebility

18.10.2017

Oracle PeopleSoft Enterprise PT PeopleTools CVE-2017-10418 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Suite8 CVE-2017-10419 Local Security Vulnerability

Vulnerebility

18.10.2017

Oracle PeopleSoft Enterprise PT PeopleTools CVE-2017-10373 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality OPERA 5 Property Services CVE-2017-10197 Local Security Vulnerability

Vulnerebility

18.10.2017

Oracle PeopleSoft Enterprise PT PeopleTools CVE-2017-10335 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Suite8 CVE-2017-10389 Local Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Cruise Materials Management CVE-2017-10054 Local Security Vulnerability

Vulnerebility

18.10.2017

Oracle PeopleSoft Enterprise PT PeopleTools CVE-2017-10366 Remote Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Suite8 CVE-2017-10317 Local Security Vulnerability

Vulnerebility

18.10.2017

Oracle Hospitality Cruise Materials Management CVE-2017-10401 Local Security Vulnerability

Vulnerebility

18.10.2017

Microsoft Windows - 'nt!NtQueryObject (ObjectNameInformation)' Kernel Pool Memory... 

Exploit

18.10.2017

Microsoft Edge Chakra JIT - 'RegexHelper::StringReplace' Must Call the Callback... 

Exploit

18.10.2017

Microsoft Edge Chakra - Accesses to Uninitialized Pointers in... 

Exploit

18.10.2017

Microsoft Edge Chakra JIT - Incorrect GenerateBailOut Calling Patterns 

Exploit

18.10.2017

Microsoft Windows 10 - WLDP/MSHTML CLSID UMCI Bypass 

Exploit

18.10.2017

Microsoft Excel - OLE Arbitrary Code Execution 

Exploit

18.10.2017

Tomcat - Remote Code Execution via JSP Upload Bypass (Metasploit) 

Exploit

18.10.2017

Apple iOS 10.2 (14C92) - Remote Code Execution 

Exploit

18.10.2017

Apache Solr 7.0.1 - XML External Entity Expansion / Remote Code Execution 

Exploit

18.10.2017

OpenText Documentum Content Server - Arbitrary File Download 

Exploit

18.10.2017

OpenText Documentum Content Server - dmr_content Privilege Escalation 

Exploit

18.10.2017

OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation 

Exploit

18.10.2017

OpenText Documentum Content Server - Privilege Escalation 

Exploit

18.10.2017

3CX Phone System 15.5.3554.1 - Directory Traversal 

Exploit

18.10.2017

Shadowsocks - Log File Command Execution 

Exploit

18.10.2017

shadowsocks-libev 3.1.0 - Command Execution 

Exploit

18.10.2017

Linux Kernel - 'AF_PACKET' Use-After-Free 

Exploit

17.10.2017

SECURITY] DSA 3999-1] wpa security update 2017-10-16

Bugtraq

17.10.2017

SEC Consult SA-20171016-0 :: Multiple vulnerabilities in Micro Focus VisiBroker C++ 2017-10-16

Bugtraq

17.10.2017

security bulletin] MFSBGN03786 rev.1 - HPE Connected Backup, Local Escalation of Privilege 2017-10-13

Bugtraq

17.10.2017

Ransom.Hermes.B

Malware

17.10.2017

Exp.CVE-2017-11292

Malware

17.10.2017

WPA2 Key Reinstallation Multiple Security Weaknesses

Vulnerebility

17.10.2017

Adobe Flash Player CVE-2017-11292 Type Confusion Remote Code Execution Vulnerability

Vulnerebility

17.10.2017

AlienVault USM CVE-2017-14956 Cross Site Request Forgery Vulnerability

Vulnerebility

17.10.2017

Fortinet FortiWLC CVE-2017-7335 Multiple Cross Site Scripting Vulnerabilities

Vulnerebility

17.10.2017

Fortinet FortiMail CVE-2017-7732 Cross Site Scripting Vulnerability

Vulnerebility

17.10.2017

Fortinet FortiWLC CVE-2017-7341 OS Command Injection Vulnerability

Vulnerebility

17.10.2017

HP Connected Backup CVE-2017-14355 Unspecified Local Privilege Escalation Vulnerability

Vulnerebility

17.10.2017

Oracle October 2017 Critical Patch Update Multiple Vulnerabilities

Vulnerebility

17.10.2017

MultiFLEX M10a Controller Multiple Security Vulnerabilities

Vulnerebility

17.10.2017

SQLite CVE-2017-15286 Denial of Service Vulnerability

Vulnerebility

17.10.2017

QEMU CVE-2017-15268 Denial of Service Vulnerability

Vulnerebility

17.10.2017

ImageMagick CVE-2017-15281 Denial of Service Vulnerability

Vulnerebility

17.10.2017

Atlassian Bamboo CVE-2017-9514 Remote Code Execution Vulnerability

Vulnerebility

17.10.2017

Apache Solr/Lucene CVE-2017-12629 Information Disclosure and Remote Code Execution Vulnerabilities

Vulnerebility

17.10.2017

NXP Semiconductors MQX RTOS ICSA-17-285-04 Buffer Overflow and Denial Of Service Vulnerabilities

Vulnerebility

17.10.2017

Wecon LEVI Studio HMI Editor CVE-2017-13999 Multiple Stack Based Buffer Overflow Vulnerabilities

Vulnerebility

17.10.2017

Envitech EnviDAS Ultimate CVE-2017-9625 Authentication Bypass Vulnerability

Vulnerebility

17.10.2017

Multiple Siemens Products Authentication Bypass and Directory Traversal Vulnerabilities

Vulnerebility

17.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

17.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

17.10.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

17.10.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

17.10.2017

Hancitor malspam uses DDE attack

SANS News

17.10.2017

KRACK ATTACK DEVASTATES WI-FI SECURITY

Threatpost

17.10.2017

Factorization Flaw in TPM Chips Makes Attacks on RSA Private Keys Feasible

Threatpost

17.10.2017

Adobe Patches Flash Zero Day Exploited by Black Oasis APT

Threatpost

17.10.2017

3CX Phone System 15.5.3554.1 - Directory Traversal 

Exploit

17.10.2017

Vulnerabilities 

Exploit

17.10.2017

Windows x64 - API Hooking Shellcode (117 bytes) 

Exploit

17.10.2017

Microsoft Office Groove - 'Workspace Shortcut' Arbitrary Code Execution 

Exploit

16.10.2017

SECURITY] DSA 3999-1] wpa security update 2017-10-16

Bugtraq

16.10.2017

SEC Consult SA-20171016-0 :: Multiple vulnerabilities in Micro Focus VisiBroker C++ 2017-10-16

Bugtraq

16.10.2017

security bulletin] MFSBGN03786 rev.1 - HPE Connected Backup, Local Escalation of Privilege 2017-10-13

Bugtraq

16.10.2017

Advisory X41-2017-010: Command Execution in Shadowsocks-libev 2017-10-13

Bugtraq

16.10.2017

Advisory X41-2017-008: Multiple Vulnerabilities in Shadowsocks 2017-10-13

Bugtraq

16.10.2017

Android.Sockbot

Malware

16.10.2017

Exp.CVE-2017-11762

Malware

16.10.2017

Exp.CVE-2017-8727

Malware

16.10.2017

Exp.CVE-2017-11793

Malware

16.10.2017

Exp.CVE-2017-11798

Malware

16.10.2017

Exp.CVE-2017-11800

Malware

16.10.2017

Exp.CVE-2017-11810

Malware

16.10.2017

Exp.CVE-2017-11822

Malware

16.10.2017

Oracle October 2017 Critical Patch Update Multiple Vulnerabilities

Vulnerebility

16.10.2017

MultiFLEX M10a Controller Multiple Security Vulnerabilities

Vulnerebility

16.10.2017

Apache Solr/Lucene CVE-2017-12629 Information Disclosure and Remote Code Execution Vulnerabilities

Vulnerebility

16.10.2017

NXP Semiconductors MQX RTOS ICSA-17-285-04 Buffer Overflow and Denial Of Service Vulnerabilities

Vulnerebility

16.10.2017

Wecon LEVI Studio HMI Editor CVE-2017-13999 Multiple Stack Based Buffer Overflow Vulnerabilities

Vulnerebility

16.10.2017

Envitech EnviDAS Ultimate CVE-2017-9625 Authentication Bypass Vulnerability

Vulnerebility

16.10.2017

Multiple Siemens Products Authentication Bypass and Directory Traversal Vulnerabilities

Vulnerebility

16.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

16.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

16.10.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

16.10.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

16.10.2017

Oniguruma CVE-2017-9227 Out of Bounds Read Memory Corruption Vulnerability

Vulnerebility

16.10.2017

FFmpeg CVE-2017-14767 Heap Buffer Overflow Vulnerability

Vulnerebility

16.10.2017

WPA2 "KRACK" Attack

SANS News

16.10.2017

Peeking into .msg files

SANS News

16.10.2017

Cyberespionage Group Steps Up Campaigns Against Japanese Firms

Threatpost

16.10.2017

Hyatt Hit By Credit Card Breach, Again

Threatpost

16.10.2017

AlienVault Unified Security Management (USM) 5.4.2 - Cross-Site Request Forgery 

Exploit

16.10.2017

Webmin 1.850 - Multiple Vulnerabilities 

Exploit

15.10.2017

Multiple vulnerabilities in OpenText Documentum Content Server 2017-10-13

Bugtraq

15.10.2017

SECURITY] DSA 3995-1] libxfont security update 2017-10-10

Bugtraq

15.10.2017

Oracle October 2017 Critical Patch Update Multiple Vulnerabilities

Vulnerebility

15.10.2017

MultiFLEX M10a Controller Multiple Security Vulnerabilities

Vulnerebility

15.10.2017

Apache Solr/Lucene CVE-2017-12629 Information Disclosure and Remote Code Execution Vulnerabilities

Vulnerebility

15.10.2017

NXP Semiconductors MQX RTOS ICSA-17-285-04 Buffer Overflow and Denial Of Service Vulnerabilities

Vulnerebility

15.10.2017

Wecon LEVI Studio HMI Editor CVE-2017-13999 Multiple Stack Based Buffer Overflow Vulnerabilities

Vulnerebility

15.10.2017

Envitech EnviDAS Ultimate CVE-2017-9625 Authentication Bypass Vulnerability

Vulnerebility

15.10.2017

Multiple Siemens Products Authentication Bypass and Directory Traversal Vulnerabilities

Vulnerebility

15.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

15.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

15.10.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

15.10.2017

Sync Breeze Enterprise 10.1.16 - Buffer Overflow (SEH) (Metasploit) 

Exploit

15.10.2017

phpMyFAQ 2.9.8 - Cross-Site Scripting 

Exploit

15.10.2017

Dreambox Plugin BouquetEditor - Cross-Site Scripting 

Exploit

15.10.2017

TYPO3 Extension Restler 1.7.0 - Local File Disclosure 

Exploit

15.10.2017

E-Sic Software livre CMS - Cross Site Scripting 

Exploit

15.10.2017

E-Sic Software livre CMS - 'f' Parameter SQL Injection 

Exploit

15.10.2017

E-Sic Software livre CMS - 'cpfcnpj' Parameter SQL Injection 

Exploit

15.10.2017

E-Sic Software livre CMS - Autentication Bypass 

Exploit

15.10.2017

Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (30 bytes) 

Exploit

13.10.2017

SECURITY] DSA 3995-1] libxfont security update 2017-10-10

Bugtraq

13.10.2017

SECURITY] DSA 3994-1] nautilus security update 2017-10-08

Bugtraq

13.10.2017

SECURITY] DSA 3993-1] tor security update 2017-10-06

Bugtraq

13.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

13.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

13.10.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

13.10.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

13.10.2017

Oniguruma CVE-2017-9227 Out of Bounds Read Memory Corruption Vulnerability

Vulnerebility

13.10.2017

FFmpeg CVE-2017-14767 Heap Buffer Overflow Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavformat/asfdec_f.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg CVE-2017-14171 Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavformat/mov.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavutil/pixdesc.c' NULL pointer Dereference Remote Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavformat/mxfdec.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavformat/mxfdec.c' Security Bypass Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavformat/asfdec_f.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg CVE-2017-14055 Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg 'libavformat/rmdec.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg CVE-2017-14058 Denial of Service Vulnerability

Vulnerebility

13.10.2017

FFmpeg CVE-2017-14056 Denial of Service Vulnerability

Vulnerebility

13.10.2017

Linux kernel CVE-2017-14106 Local Denial of Service Vulnerability

Vulnerebility

13.10.2017

Linux Kernel 'mm/migrate.c' Local Information Disclosure Vulnerability

Vulnerebility

13.10.2017

Xen CVE-2017-12134 Memory Corruption Vulnerability

Vulnerebility

13.10.2017

GNU Binutils CVE-2017-14939 Remote Denial of Service Vulnerability

Vulnerebility

13.10.2017

Wireshark MBIM Dissector 'epan/dissectors/packet-mbim.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

Intel Bootgaurd CVE-2017-5722 Local Security Bypass Vulnerability

Vulnerebility

13.10.2017

Wireshark BT ATT Dissector 'epan/dissectors/packet-btatt.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

ImageMagick CVE-2017-15218 Denial of Service Vulnerability

Vulnerebility

13.10.2017

ImageMagick 'coders/sgi.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

Wireshark RTSP Dissector 'epan/dissectors/packet-rtsp.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

Wireshark DOCSIS Dissector '/docsis/packet-docsis.c' Denial of Service Vulnerability

Vulnerebility

13.10.2017

Wireshark DMP Dissector CVE-2017-15191 Denial of Service Vulnerability

Vulnerebility

13.10.2017

Version control tools aren't only for Developers

SANS News

13.10.2017

Locky Gets Updated to ‘Ykcol’, Part of Rapid-Fire Spam Campaigns

Threatpost

13.10.2017

Equifax Takes Down Compromised Page Redirecting to Adware Download

Threatpost

13.10.2017

OctoberCMS 1.0.425 (Build 425) - Cross-Site Scripting 

Exploit

10.10.2017

GNU Binutils CVE-2017-14939 Remote Denial of Service Vulnerability

Vulnerebility

10.10.2017

SAP NetWeaver Mobile Client Information Disclosure Vulnerability

Vulnerebility

10.10.2017

SAP NetWeaver Mobile Client Information Disclosure Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows CVE-2017-11829 Local Privilege Escalation Vulnerability

Vulnerebility

10.10.2017

SAP NetWeaver System Landscape Directory Information Disclosure Vulnerability

Vulnerebility

10.10.2017

SAP ERP Remote Authorization Bypass Vulnerability

Vulnerebility

10.10.2017

SAP Customer Relationship Management (CRM) IC WebClient Unspecified Spoofing Vulnerability

Vulnerebility

10.10.2017

SAP NetWeaver Instance Agent Service Memory Corruption Vulnerability

Vulnerebility

10.10.2017

SAP Netweaver Web Dynpro ABAP Denial of Service Vulnerability

Vulnerebility

10.10.2017

SAP Customer Relationship Management Mail Form Editor Cross Site Scripting Vulnerability

Vulnerebility

10.10.2017

SAP NetWeaver Instance Agent Service Information Disclosure Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows DNSAPI CVE-2017-11779 Remote Code Execution Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows Subsystem for Linux CVE-2017-8703 Local Denial of Service Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows Device Guard CVE-2017-8715 Local Security Bypass Vulnerability

Vulnerebility

10.10.2017

Microsoft Jet Database Engine CVE-2017-8718 Buffer Overflow Vulnerability

Vulnerebility

10.10.2017

Microsoft Jet Database Engine CVE-2017-8717 Buffer Overflow Vulnerability

Vulnerebility

10.10.2017

Microsoft Skype for Business CVE-2017-11786 Privilege Escalation Vulnerability

Vulnerebility

10.10.2017

Microsoft SharePoint Server CVE-2017-11777 Cross Site Scripting Vulnerability

Vulnerebility

10.10.2017

Cisco Spark Messaging Software CVE-2017-12269 HTML Injection Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows Kernel CVE-2017-11785 Local Information Disclosure Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows Kernel CVE-2017-11784 Local Information Disclosure Vulnerability

Vulnerebility

10.10.2017

Microsoft ChakraCore Scripting Engine CVE-2017-11801 Remote Memory Corruption Vulnerability

Vulnerebility

10.10.2017

Microsoft ChakraCore Scripting Engine CVE-2017-11797 Remote Memory Corruption Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows CVE-2017-11783 Local Privilege Escalation Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows SMB Server CVE-2017-11782 Remote Privilege Escalation Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows Shell CVE-2017-8727 Remote Code Execution Vulnerability

Vulnerebility

10.10.2017

Microsoft Internet Explorer CVE-2017-11793 Remote Memory Corruption Vulnerability

Vulnerebility

10.10.2017

Microsoft Windows SMB Server CVE-2017-11781 Denial of Service Vulnerability

Vulnerebility

10.10.2017

Microsoft Edge Scripting Engine CVE-2017-11812 Remote Memory Corruption Vulnerability

Vulnerebility

10.10.2017

Microsoft Edge Scripting Engine CVE-2017-11811 Remote Memory Corruption Vulnerability

Vulnerebility

10.10.2017

FormBook Malware Targets US Defense Contractors, Aerospace and Manufacturing Sectors

Threatpost

10.10.2017

NFL Players, Agents Targeted in Database Extortion Attempt

Threatpost

10.10.2017

IBM Notes 8.5.x/9.0.x - Denial of Service (Metasploit) 

Exploit

10.10.2017

Complain Management System - Hard-Coded Credentials / Blind SQL injection 

Exploit

10.10.2017

ClipShare 7.0 - SQL Injection 

Exploit

9.10.2017

SECURITY] DSA 3994-1] nautilus security update 2017-10-08

Bugtraq

9.10.2017

SECURITY] DSA 3993-1] tor security update 2017-10-06

Bugtraq

9.10.2017

slackware-security] xorg-server (SSA:2017-279-03) 2017-10-06

Bugtraq

9.10.2017

Cisco Spark Messaging Software CVE-2017-12269 HTML Injection Vulnerability

Vulnerebility

9.10.2017

RSA Archer GRC CMS Multiple Security Vulnerabilities

Vulnerebility

9.10.2017

Ruby CVE-2017-14033 Buffer Underrun Vulnerability

Vulnerebility

9.10.2017

Ruby CVE-2017-14064 Arbitrary Memory Disclosure Vulnerability

Vulnerebility

9.10.2017

RubyGems CVE-2017-0899 Security Bypass Vulnerability

Vulnerebility

9.10.2017

RubyGems CVE-2017-0901 Local Arbitrary File Overwrite Vulnerability

Vulnerebility

9.10.2017

Ruby CVE-2017-0898 Buffer Underrun Vulnerability

Vulnerebility

9.10.2017

RubyGems CVE-2017-0900 Denial of Service Vulnerability

Vulnerebility

9.10.2017

Curl CVE-2017-1000254 Out of Bounds Read Denial of Service Vulnerability

Vulnerebility

9.10.2017

cURL CVE-2017-1000101 Out of Bounds Read Information Disclosure Vulnerability

Vulnerebility

9.10.2017

cURL/libcURL CVE-2017-1000100 Heap Based Buffer Overflow Vulnerability

Vulnerebility

9.10.2017

GNOME Nautilus CVE-2017-14604 Arbitrary Command Execution Vulnerability

Vulnerebility

9.10.2017

Symantec Endpoint Encryption CVE-2017-13675 Denial-of-Service Vulnerability

Vulnerebility

9.10.2017

EMC Network Configuration Manager CVE-2017-8017 Cross Site Scripting Vulnerability

Vulnerebility

9.10.2017

Microsoft Windows WAV File Handling Denial of Service Vulnerability

Vulnerebility

9.10.2017

Magento CMS Multiple Security Vulnerabilities

Vulnerebility

9.10.2017

A strange JPEG file

SANS News

9.10.2017

Base64 All The Things!

SANS News

9.10.2017

Metasploit < 4.14.1-20170828 - Cross-Site Request Forgery 

Exploit

9.10.2017

PyroBatchFTP 3.17 - Buffer Overflow (SEH) 

Exploit

9.10.2017

OrientDB 2.2.2 - 2.2.22 - Remote Code Execution (Metasploit) 

Exploit

9.10.2017

Rancher Server - Docker Daemon Code Execution (Metasploit) 

Exploit

9.10.2017

Metasploit < 4.14.1-20170828 - Cross-Site Request Forgery 

Exploit

8.10.2017

slackware-security] xorg-server (SSA:2017-279-03) 2017-10-06

Bugtraq

8.10.2017

DefenseCode Security Advisory: Magento Commerce CSRF, Stored Cross Site Scripting #1 2017-10-05

Bugtraq

8.10.2017

security bulletin] HPESBHF03776 rev.1 - HPE Intelligent Management Center (iMC) Service Operation Management (SOM), Remote Arbitrary File Download 2017-10-03

Bugtraq

8.10.2017

HPESBMU03753 rev.1 - HPE System Management Homepage, Multiple Remote Vulnerabilities 2017-10-02

Bugtraq

8.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures CVE-2017-14085 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

8.10.2017

Win32/Filecoder.FS

Malware

8.10.2017

Win32/Ceatrg.A

Malware

8.10.2017

MSIL/Filecoder.FF

Malware

8.10.2017

Win32/Delf.TSU

Malware

8.10.2017

Win32/Spy.Small.NDA

Malware

8.10.2017

Cisco Spark Messaging Software CVE-2017-12269 HTML Injection Vulnerability

Vulnerebility

8.10.2017

Microsoft Windows WAV File Handling Denial of Service Vulnerability

Vulnerebility

8.10.2017

Magento CMS Multiple Security Vulnerabilities

Vulnerebility

8.10.2017

Adobe Flash Player and AIR CVE-2014-0569 Integer Overflow Vulnerability

Vulnerebility

8.10.2017

Microsoft Windows CVE-2014-6332 OLE Remote Code Execution Vulnerability

Vulnerebility

8.10.2017

Adobe Flash Player and AIR CVE-2014-8440 Unspecified Memory Corruption Vulnerability

Vulnerebility

8.10.2017

CIS Controls Implementation Guide for Small-and Medium-Sized Enterprises

SANS News

8.10.2017

Security Industry Failing to Establish Trust

Threatpost

6.10.2017

slackware-security] xorg-server (SSA:2017-279-03) 2017-10-06

Bugtraq

6.10.2017

DefenseCode Security Advisory: Magento Commerce CSRF, Stored Cross Site Scripting #1 2017-10-05

Bugtraq

6.10.2017

security bulletin] HPESBHF03776 rev.1 - HPE Intelligent Management Center (iMC) Service Operation
Management (SOM), Remote Arbitrary File Download 2017-10-03

Bugtraq

6.10.2017

HPESBMU03753 rev.1 - HPE System Management Homepage, Multiple Remote Vulnerabilities 2017-10-02

Bugtraq

6.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures

CVE-2017-14085 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

6.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Server Side Request Forgery
 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

6.10.2017

SECURITY] DSA 3988-1] libidn2-0 security update 2017-09-30

Bugtraq

6.10.2017

Backdoor.Korplug.E

Malware

6.10.2017

Cisco Spark Messaging Software CVE-2017-12269 HTML Injection Vulnerability

Vulnerebility

6.10.2017

Magento CMS Multiple Security Vulnerabilities

Vulnerebility

6.10.2017

Adobe Flash Player and AIR CVE-2014-0569 Integer Overflow Vulnerability

Vulnerebility

6.10.2017

Microsoft Windows CVE-2014-6332 OLE Remote Code Execution Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player and AIR CVE-2014-8440 Unspecified Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2014-8439 Remote Code Execution Vulnerability

Vulnerebility

6.10.2017

Microsoft Windows CVE-2015-0016 Remote Privilege Escalation Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-0310 Unspecified Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-0311 Use After Free Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-0313 Remote Code Execution Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-0336 Type Confusion Remote Code Execution Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player APSB15-06 Multiple Remote Code Execution Vulnerabilities

Vulnerebility

6.10.2017

Apple macOS CVE-2017-7150 Security Bypass Vulnerability

Vulnerebility

6.10.2017

GE CIMPLICITY CVE-2017-12732 Stack Based Buffer Overflow Vulnerability

Vulnerebility

6.10.2017

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player and AIR Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

6.10.2017

Adobe Flash Player and AIR CVE-2015-3104 Remote Integer Overflow Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player and AIR CVE-2015-3105 Unspecified Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-3113 Unspecified Heap Buffer Overflow Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player ActionScript 3 ByteArray Use After Free Remote Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-5122 Use After Free Remote Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Microsoft Internet Explorer CVE-2015-2444 Remote Memory Corruption Vulnerability

Vulnerebility

6.10.2017

Adobe Flash Player CVE-2015-7645 Remote Code Execution Vulnerability

Vulnerebility

6.10.2017

Ghostscript GhostXPS CVE-2017-9727 Denial of Service Vulnerability

Vulnerebility

6.10.2017

Ghostscript GhostXPS CVE-2017-9726 Denial of Service Vulnerability

Vulnerebility

6.10.2017

Ghostscript GhostXPS CVE-2017-9612 Heap Buffer Overflow Vulnerability

Vulnerebility

6.10.2017

Ghostscript GhostXPS CVE-2017-9739 Heap Buffer Overflow Vulnerability

Vulnerebility

6.10.2017

Artifex Ghostscript CVE-2017-9835 Heap Buffer Overflow Vulnerability

Vulnerebility

6.10.2017

Ghostscript GhostXPS CVE-2017-9611 Heap Buffer Overflow Vulnerability

Vulnerebility

6.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

6.10.2017

US Top Law Enforcement Calls Strong Encryption a ‘Serious Problem’

Threatpost

6.10.2017

Latin American ATM Thieves Turning to Hacking

Threatpost

6.10.2017

Microsoft Windows 10 x64 RS2 - 'win32kfull!bFill' Pool Overflow 

Exploit

6.10.2017

Unitrends UEB 9.1 - Authentication Bypass / Remote Command Execution 

Exploit

6.10.2017

Unitrends UEB 9.1 - 'Unitrends bpserverd' Remote Command Execution 

Exploit

6.10.2017

Unitrends UEB 9.1 - Privilege Escalation 

Exploit

6.10.2017

NETGEAR ReadyNAS Surveillance 1.4.3-16 - Remote Command Execution 

Exploit

5.10.2017

DefenseCode Security Advisory: Magento Commerce CSRF, Stored Cross Site Scripting #1 2017-10-05

Bugtraq

5.10.2017

security bulletin] HPESBHF03776 rev.1 - HPE Intelligent Management Center (iMC) Service Operation Management (SOM), Remote Arbitrary File Download 2017-10-03

Bugtraq

5.10.2017

HPESBMU03753 rev.1 - HPE System Management Homepage, Multiple Remote Vulnerabilities 2017-10-02

Bugtraq

5.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures CVE-2017-14085 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

5.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Server Side Request Forgery (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

5.10.2017

SECURITY] DSA 3988-1] libidn2-0 security update 2017-09-30

Bugtraq

5.10.2017

Mac OS X Local Javascript Quarantine Bypass 2017-09-30

Bugtraq

5.10.2017

SECURITY] DSA 3987-1] firefox-esr security update 2017-09-29

Bugtraq

5.10.2017

Trojan.Dubki

Malware

5.10.2017

Trojan.Flusihoc

Malware

5.10.2017

Ransom.Arena

Malware

5.10.2017

Cisco Spark Messaging Software CVE-2017-12269 HTML Injection Vulnerability

Vulnerebility

5.10.2017

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability

Vulnerebility

5.10.2017

Adobe Flash Player and AIR Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

5.10.2017

Adobe Flash Player and AIR CVE-2015-3104 Remote Integer Overflow Vulnerability

Vulnerebility

5.10.2017

Adobe Flash Player and AIR CVE-2015-3105 Unspecified Memory Corruption Vulnerability

Vulnerebility

5.10.2017

Adobe Flash Player CVE-2015-3113 Unspecified Heap Buffer Overflow Vulnerability

Vulnerebility

5.10.2017

Adobe Flash Player ActionScript 3 ByteArray Use After Free Remote Memory Corruption Vulnerability

Vulnerebility

5.10.2017

Adobe Flash Player CVE-2015-5122 Use After Free Remote Memory Corruption Vulnerability

Vulnerebility

5.10.2017

Microsoft Internet Explorer CVE-2015-2444 Remote Memory Corruption Vulnerability

Vulnerebility

5.10.2017

Adobe Flash Player CVE-2015-7645 Remote Code Execution Vulnerability

Vulnerebility

5.10.2017

Ghostscript GhostXPS CVE-2017-9727 Denial of Service Vulnerability

Vulnerebility

5.10.2017

Ghostscript GhostXPS CVE-2017-9726 Denial of Service Vulnerability

Vulnerebility

5.10.2017

Ghostscript GhostXPS CVE-2017-9612 Heap Buffer Overflow Vulnerability

Vulnerebility

5.10.2017

Ghostscript GhostXPS CVE-2017-9739 Heap Buffer Overflow Vulnerability

Vulnerebility

5.10.2017

Artifex Ghostscript CVE-2017-9835 Heap Buffer Overflow Vulnerability

Vulnerebility

5.10.2017

Ghostscript GhostXPS CVE-2017-9611 Heap Buffer Overflow Vulnerability

Vulnerebility

5.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

5.10.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

5.10.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

5.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

5.10.2017

OCaml CVE-2015-8869 Multiple Security Vulnerabilities

Vulnerebility

5.10.2017

QEMU Out of Bounds Read and Write Memory Access CVE-2017-14167 Local Integer Overflow Vulnerability

Vulnerebility

5.10.2017

QEMU 'hw/display/vga.c' Denial of Service Vulnerability

Vulnerebility

5.10.2017

Qemu CVE-2017-12809 Null Pointer Dereference Denial of Service Vulnerability

Vulnerebility

5.10.2017

QEMU 'hw/usb/hcd-xhci.c' Denial of Service Vulnerability

Vulnerebility

5.10.2017

QEMU CVE-2017-13711 Denial of Service Vulnerability

Vulnerebility

5.10.2017

Multiple Cisco Products CVE-2017-12226 Remote Privilege Escalation Vulnerability

Vulnerebility

5.10.2017

Apache Zookeeper CVE-2017-5637 Denial of Service Vulnerability

Vulnerebility

5.10.2017

Cisco Meeting App CVE-2017-12266 Local Privilege Escalation Vulnerability

Vulnerebility

5.10.2017

Cisco AnyConnect Secure Mobility Client CVE-2017-12268 Local Security Bypass Vulnerability

Vulnerebility

5.10.2017

pcap2curl: Turning a pcap file into a set of cURL commands for "replay" 

SANS News

5.10.2017

Security Awareness Month: How to Help Friends and Family

SANS News

5.10.2017

Securing "Out of Band" Access

SANS News

5.10.2017

Attackers Redefining Objectives, Approaches

Threatpost

5.10.2017

Experts Have Sobering Message on Human Rights, Privacy for Security Pros

Threatpost

5.10.2017

Costin Raiu and Juan Andres Guerrero-Saade on APT Fourth-Party Collection

Threatpost

5.10.2017

Cloudflare CTO Goes Inside the Cloudbleed Bug

Threatpost

5.10.2017

ERS Data System 1.8.1 - Java Deserialization 

Exploit

5.10.2017

NETGEAR ReadyNAS Surveillance 1.4.3-16 - Remote Command Execution 

Exploit

4.10.2017

security bulletin] HPESBHF03776 rev.1 - HPE Intelligent Management Center (iMC) Service Operation Management (SOM), Remote Arbitrary File Download 2017-10-03

Bugtraq

4.10.2017

HPESBMU03753 rev.1 - HPE System Management Homepage, Multiple Remote Vulnerabilities 2017-10-02

Bugtraq

4.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures CVE-2017-14085 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

4.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Server Side Request Forgery (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

4.10.2017

SECURITY] DSA 3988-1] libidn2-0 security update 2017-09-30

Bugtraq

4.10.2017

Mac OS X Local Javascript Quarantine Bypass 2017-09-30

Bugtraq

4.10.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

4.10.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

4.10.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

4.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

4.10.2017

OCaml CVE-2015-8869 Multiple Security Vulnerabilities

Vulnerebility

4.10.2017

QEMU Out of Bounds Read and Write Memory Access CVE-2017-14167 Local Integer Overflow Vulnerability

Vulnerebility

4.10.2017

QEMU 'hw/display/vga.c' Denial of Service Vulnerability

Vulnerebility

4.10.2017

Qemu CVE-2017-12809 Null Pointer Dereference Denial of Service Vulnerability

Vulnerebility

4.10.2017

QEMU 'hw/usb/hcd-xhci.c' Denial of Service Vulnerability

Vulnerebility

4.10.2017

QEMU CVE-2017-13711 Denial of Service Vulnerability

Vulnerebility

4.10.2017

Multiple Cisco Products CVE-2017-12226 Remote Privilege Escalation Vulnerability

Vulnerebility

4.10.2017

Apache Zookeeper CVE-2017-5637 Denial of Service Vulnerability

Vulnerebility

4.10.2017

Tcpdump CVE-2017-12997 Denial of Service Vulnerability

Vulnerebility

4.10.2017

Multiple EMC Products CVE-2017-8007 Directory Traversal Vulnerability

Vulnerebility

4.10.2017

Samba CVE-2017-12150 Man in the Middle Security Bypass Vulnerability

Vulnerebility

4.10.2017

Samba CVE-2017-12163 Arbitrary File Write Vulnerability

Vulnerebility

4.10.2017

Zoho Site24x7 Mobile Network Poller SSL Certificate Validation Security Bypass Vulnerability

Vulnerebility

4.10.2017

Cisco IOS and IOS XE Software CVE-2017-12228 Certificate Validation Security Bypass Vulnerability

Vulnerebility

4.10.2017

IBM Spectrum Protect CVE-2017-1301 Insecure Temporary File Creation Vulnerability

Vulnerebility

4.10.2017

Google Android Media Framework Components Multiple Security Vulnerabilities

Vulnerebility

4.10.2017

Google Android Framework CVE-2017-0806 Security Bypass Vulnerability

Vulnerebility

4.10.2017

Five Critical Android Bugs Get Patched in October Update

Threatpost

4.10.2017

Google Warns of DoS and RCE Bugs in Dnsmasq

Threatpost

4.10.2017

ERS Data System 1.8.1 - Java Deserialization 

Exploit

4.10.2017

Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass /... 

Exploit

4.10.2017

EPESI 1.8.2 rev20170830 - Cross-Site Scripting 

Exploit

4.10.2017

DiskBoss Enterprise 8.4.16 - Local Buffer Overflow 

Exploit

3.10.2017

HPESBMU03753 rev.1 - HPE System Management Homepage, Multiple Remote Vulnerabilities 2017-10-02

Bugtraq

3.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures CVE-2017-14085 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

3.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Server Side Request Forgery (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

3.10.2017

SECURITY] DSA 3988-1] libidn2-0 security update 2017-09-30

Bugtraq

3.10.2017

Mac OS X Local Javascript Quarantine Bypass 2017-09-30

Bugtraq

3.10.2017

SECURITY] DSA 3987-1] firefox-esr security update 2017-09-29

Bugtraq

3.10.2017

SECURITY] DSA 3986-1] ghostscript security update 2017-09-29

Bugtraq

3.10.2017

Tcpdump CVE-2017-12997 Denial of Service Vulnerability

Vulnerebility

3.10.2017

Multiple EMC Products CVE-2017-8007 Directory Traversal Vulnerability

Vulnerebility

3.10.2017

Samba CVE-2017-12150 Man in the Middle Security Bypass Vulnerability

Vulnerebility

3.10.2017

Samba CVE-2017-12163 Arbitrary File Write Vulnerability

Vulnerebility

3.10.2017

Cisco IOS and IOS XE Software CVE-2017-12228 Certificate Validation Security Bypass Vulnerability

Vulnerebility

3.10.2017

Google Android Framework CVE-2017-0806 Security Bypass Vulnerability

Vulnerebility

3.10.2017

Dnsmasq VU#973527 Multiple Security Vulnerabilities

Vulnerebility

3.10.2017

Multiple Wordpress Plugins PHP Object Injection Vulnerability

Vulnerebility

3.10.2017

SolarWinds Network Performance Monitor CVE-2017-9537 Multiple HTML Injection Vulnerabilities

Vulnerebility

3.10.2017

SolarWinds Network Performance Monitor CVE-2017-9538 Denial of Service Vulnerability

Vulnerebility

3.10.2017

Jenkins Multiple Plugins Multiple HTML Injection Vulnerabilities

Vulnerebility

3.10.2017

Adobe FlashPlayer and AIR APSB15-32 Multiple Unspecified Heap Buffer Overflow Vulnerabilities

Vulnerebility

3.10.2017

Adobe Flash Player and AIR CVE-2015-8651 Unspecified Integer Overflow Vulnerability

Vulnerebility

3.10.2017

Adobe Flash Player and AIR APSB16-08 Multiple Unspecified Integer Overflow Vulnerabilities

Vulnerebility

3.10.2017

Adobe Flash Player CVE-2016-1019 Unspecified Remote Code Execution Vulnerability

Vulnerebility

3.10.2017

Microsoft Internet Explorer CVE-2016-0189 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

3.10.2017

Adobe Flash Player CVE-2016-4117 Unspecified Remote Code Execution Vulnerability

Vulnerebility

3.10.2017

Microsoft XML Core Services CVE-2017-0022 Information Disclosure Vulnerability

Vulnerebility

3.10.2017

Microsoft Internet Explorer and Edge CVE-2017-0037 Remote Memory Corruption Vulnerability

Vulnerebility

3.10.2017

Drupal Ctools Module Cross Site Scripting and Access Bypass Vulnerabilities

Vulnerebility

3.10.2017

TrendMicro OfficeScan Multiple Security Vulnerabilities

Vulnerebility

3.10.2017

Trend Micro OfficeScan CVE-2017-14087 Host Header Injection Vulnerability

Vulnerebility

3.10.2017

IBM WebSphere Commerce CVE-2017-1569 Unspecified Denial of Service Vulnerability

Vulnerebility

3.10.2017

Trend Micro OfficeScan CVE-2017-14084 Remote Code Execution Vulnerability

Vulnerebility

3.10.2017

Xen Information Disclosure Vulnerability

Vulnerebility

3.10.2017

Git CVE-2017-14867 OS Command Injection Vulnerability

Vulnerebility

3.10.2017

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Vulnerebility

3.10.2017

IBM Insights Foundation for Energy CVE-2017-1311 Unspecified SQL Injection Vulnerability

Vulnerebility

3.10.2017

Mozilla Firefox Multiple Security Vulnerabilities

Vulnerebility

3.10.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

3.10.2017

Malspam pushing Formbook info stealer

SANS News

3.10.2017

Netgear Fixes 50 Vulnerabilities in Routers, Switches, NAS Devices

Threatpost

3.10.2017

Judge: FBI Can Keep iPhone Crack and Price Secret

Threatpost

3.10.2017

Gary McGraw on BSIMM8 and Software Security

Threatpost

3.10.2017

Apple Mac OS X + Safari - Local Javascript Quarantine Bypass 

Exploit

3.10.2017

Fiberhome AN5506-04-F - Command Injection 

Exploit

3.10.2017

UCOPIA Wireless Appliance < 5.1 (Captive Portal) - Unauthenticated Root Remote Code... 

Exploit

3.10.2017

Qmail SMTP - Bash Environment Variable Injection (Metasploit) 

Exploit

3.10.2017

OpenText Document Sciences xPression 4.5SP1 Patch 13 - 'documentId' SQL Injection 

Exploit

3.10.2017

OpenText Document Sciences xPression 4.5SP1 Patch 13 - 'jobRunId' SQL Injection 

Exploit

3.10.2017

phpCollab 2.5.1 - SQL Injection phpCollab 2.5.1 - Arbitrary File Upload 

Exploit

3.10.2017

NPM-V (Network Power Manager) 2.4.1 - Password Reset 

Exploit

3.10.2017

UCOPIA Wireless Appliance < 5.1.8 - Restricted Shell Escape 

Exploit

3.10.2017

UCOPIA Wireless Appliance < 5.1.8 - Privilege Escalation 

Exploit

3.10.2017

Dnsmasq < 2.78 - Integer Underflow 

Exploit

3.10.2017

Dnsmasq < 2.78 - Lack of free() Denial of Service 

Exploit

3.10.2017

Dnsmasq < 2.78 - Information Leak 

Exploit

3.10.2017

Dnsmasq < 2.78 - Stack-Based Overflow 

Exploit

3.10.2017

Dnsmasq < 2.78 - Heap-Based Overflow 

Exploit

3.10.2017

Dnsmasq < 2.78 - 2-byte Heap-Based Overflow 

Exploit

3.10.2017

Linux Kernel < 4.14.rc3 - Local Denial of Service 

Exploit

2.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized NT Domain / PHP Information Disclosures
CVE-2017-14085 (apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

2.10.2017

Trend Micro OfficeScan v11.0 and XG (12.0)* Unauthorized Server Side Request Forgery
(apparitionsec / hyp3rlinx) 2017-10-01

Bugtraq

2.10.2017

SECURITY] DSA 3988-1] libidn2-0 security update 2017-09-30

Bugtraq

2.10.2017

Mac OS X Local Javascript Quarantine Bypass 2017-09-30

Bugtraq

2.10.2017

Cisco IOS and IOS XE Software CVE-2017-12228 Certificate Validation Security Bypass Vulnerability

Vulnerebility

2.10.2017

SolarWinds Network Performance Monitor CVE-2017-9538 Denial of Service Vulnerability

Vulnerebility

2.10.2017

Jenkins Multiple Plugins Multiple HTML Injection Vulnerabilities

Vulnerebility

2.10.2017

Adobe FlashPlayer and AIR APSB15-32 Multiple Unspecified Heap Buffer Overflow Vulnerabilities

Vulnerebility

2.10.2017

Investigating Security Incidents with Passive DNS

SANS News

2.10.2017

Linux Kernel < 4.14.rc3 - Local Denial of Service 

Exploit

2.10.2017

Sync Breeze Enterprise 10.0.28 - Buffer Overflow 

Exploit

2.10.2017

HBGK DVR 3.0.0 build20161206 - Authentication Bypass 

Exploit

2.10.2017

ConverTo Video Downloader & Converter 1.4.1 - Arbitrary File Download 

Exploit

2.10.2017

Real Estate MLM plan script 1.0 - 'srch' Parameter SQL Injection 

Exploit

2.10.2017

PHP Multi Vendor Script 1.02 - 'sid' Parameter SQL Injection 

Exploit

2.10.2017

WordPress Plugin WPHRM - SQL Injection 

Exploit

2.10.2017

SmarterStats 11.3.6347 - Cross-Site Scripting 

Exploit

1.10.2017

CVE-2017-14087 Trend Micro OfficeScan v11.0 and XG (12.0)* Host Header Injection
 (apparitionsec / hyp3rlinx) 2017-09-28

Bugtraq

1.10.2017

security bulletin] HPESBGN03773 rev.2 - HPE Application Performa
nce Management (BSM), Remote Code Execution 2017-09-28

Bugtraq

1.10.2017

CVE-2017-14084 Trend Micro OfficeScan v11.0 and XG (12.0)* CURL (MITM)
Remote Code Execution (apparitionsec / hyp3rlinx) 2017-09-28

Bugtraq

1.10.2017

Jenkins Multiple Plugins Multiple HTML Injection Vulnerabilities

Vulnerebility

1.10.2017

Adobe FlashPlayer and AIR APSB15-32 Multiple Unspecified Heap Buffer Overflow Vulnerabilities

Vulnerebility

1.10.2017

Adobe Flash Player and AIR CVE-2015-8651 Unspecified Integer Overflow Vulnerability

Vulnerebility

1.10.2017

Adobe Flash Player and AIR APSB16-08 Multiple Unspecified Integer Overflow Vulnerabilities

Vulnerebility

1.10.2017

Adobe Flash Player CVE-2016-1019 Unspecified Remote Code Execution Vulnerability

Vulnerebility

1.10.2017

Who's Borrowing your Resources?

SANS News

1.10.2017

Good Analysis = Understanding(tools + logs + normal)

SANS News

1.10.2017

Siemens Patches Improper Access Vulnerability in Ruggedcom Protocol

Threatpost

1.10.2017

ICANN Postpones Scheduled DNS Crypto Key Rollover

Threatpost

 

29.9.2017

Adobe FlashPlayer and AIR APSB15-32 Multiple Unspecified Heap Buffer Overflow Vulnerabilities

Vulnerebility

29.9.2017

Adobe Flash Player and AIR CVE-2015-8651 Unspecified Integer Overflow Vulnerability

Vulnerebility

29.9.2017

Adobe Flash Player and AIR APSB16-08 Multiple Unspecified Integer Overflow Vulnerabilities

Vulnerebility

29.9.2017

Adobe Flash Player CVE-2016-1019 Unspecified Remote Code Execution Vulnerability

Vulnerebility

29.9.2017

Microsoft Internet Explorer CVE-2016-0189 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

29.9.2017

Adobe Flash Player CVE-2016-4117 Unspecified Remote Code Execution Vulnerability

Vulnerebility

29.9.2017

Microsoft XML Core Services CVE-2017-0022 Information Disclosure Vulnerability

Vulnerebility

29.9.2017

Microsoft Internet Explorer and Edge CVE-2017-0037 Remote Memory Corruption Vulnerability

Vulnerebility

29.9.2017

Drupal Ctools Module Cross Site Scripting and Access Bypass Vulnerabilities

Vulnerebility

29.9.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Denial of Service Vulnerabilities

Vulnerebility

29.9.2017

Mozilla Firefox CVE-2017-7810 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

29.9.2017

Mozilla Firefox and Firefox ESR CVE-2017-7824 Buffer Overflow Vulnerability

Vulnerebility

29.9.2017

Perl CVE-2017-12814 Stack Based Buffer Overflow Vulnerability

Vulnerebility

29.9.2017

WordPress 2kb Amazon Affiliates Store Plugin Multiple Cross Site Scripting Vulnerabilities

Vulnerebility

29.9.2017

libvorbis CVE-2017-14160 Denial of Service Vulnerability

Vulnerebility

29.9.2017

Multiple Siemens Products Discovery Protocol CVE-2017-12736 Remote Security Bypass Vulnerability

Vulnerebility

29.9.2017

Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability

Vulnerebility

29.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

29.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

29.9.2017

Apache Struts Spring AOP Functionality Denial of Service Vulnerability

Vulnerebility

29.9.2017

Apache Struts CVE-2017-12611 Remote Code Execution Vulnerability

Vulnerebility

29.9.2017

Apache Struts CVE-2017-7672 Denial of Service Vulnerability

Vulnerebility

29.9.2017

Apache Struts CVE-2017-9791 Remote Code Execution Vulnerability

Vulnerebility

29.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

29.9.2017

Apple iOS and tvOS Wi-Fi Chip Multiple Arbitray Code Execution Vulnerabilities

Vulnerebility

29.9.2017

Oracle Java SE and JRockit CVE-2017-10115 Remote Security Vulnerability

Vulnerebility

29.9.2017

Cisco IOS Software CVE-2017-12232 Denial of Service Vulnerability

Vulnerebility

29.9.2017

Cisco IOS Software CVE-2017-12235 Denial of Service Vulnerability

Vulnerebility

29.9.2017

Multiple Cisco Products CVE-2017-12239 Local Unauthorized Access Vulnerability

Vulnerebility

29.9.2017

Cisco IOS Software for Cisco Catalyst 6800 Series Switches Denial of Service Vulnerability

Vulnerebility

29.9.2017

Civil Liberties Activists Hit By Phishing Campaign

Threatpost

29.9.2017

Google to Enforce HSTS on TLDs it Operates

Threatpost

29.9.2017

Macs Not Receiving EFI Firmware Security Updates as Expected

Threatpost

29.9.2017

The easy way to analyze huge amounts of PCAP data

SANS News

29.9.2017

Trojan.Starloader

Malware

29.9.2017

FileRun <= 2017.09.18 - SQL Injection 

Exploit

29.9.2017

Trend Micro OfficeScan 11.0/XG (12.0) - Memory Corruption 

Exploit

29.9.2017

Easy Blog PHP Script 1.3a - 'id' Parameter SQL Injection 

Exploit

29.9.2017

Roteador Wireless Intelbras WRN150 - Autentication Bypass 

Exploit

29.9.2017

Trend Micro OfficeScan 11.0/XG (12.0) - 'Host' Header Injection 

Exploit

29.9.2017

Trend Micro OfficeScan 11.0/XG (12.0) - Server Side Request Forgery 

Exploit

29.9.2017

Trend Micro OfficeScan 11.0/XG (12.0) - Information Disclosure 

Exploit

29.9.2017

Trend Micro OfficeScan 11.0/XG (12.0) - Code Execution / Memory Corruption 

Exploit

29.9.2017

Trend Micro OfficeScan 11.0/XG (12.0) - Private Key Disclosure 

Exploit

29.9.2017

Roteador Wireless Intelbras WRN150 - Autentication Bypass 

Exploit

29.9.2017

Easy Blog PHP Script 1.3a - 'id' Parameter SQL Injection 

Exploit

29.9.2017

CVE-2017-14087 Trend Micro OfficeScan v11.0 and XG (12.0)* Host Header Injection
(apparitionsec / hyp3rlinx) 2017-09-28

Bugtraq

29.9.2017

security bulletin] HPESBGN03773 rev.2 - HPE Application Performance Management (BSM), Remot
e Code Execution 2017-09-28

Bugtraq

29.9.2017

CVE-2017-14084 Trend Micro OfficeScan v11.0 and XG (12.0)* CURL (MITM)
Remote Code Execution (apparitionsec / hyp3rlinx) 2017-09-28

Bugtraq

29.9.2017

CVE-2017-9538] Persistent Application Denial of Service 2017-09-29

Bugtraq

29.9.2017

CVE-2017-9537] Persistent Cross-Site Scripting Vulnerabilities 2017-09-29

Bugtraq

29.9.2017

Faleemi FSC-880 Multiple Security Vulnerabilities 2017-09-27

Bugtraq

28.9.2017

Adobe Flash Player and AIR CVE-2015-8651 Unspecified Integer Overflow Vulnerability

Vulnerebility

28.9.2017

Adobe Flash Player and AIR APSB16-08 Multiple Unspecified Integer Overflow Vulnerabilities

Vulnerebility

28.9.2017

Adobe Flash Player CVE-2016-1019 Unspecified Remote Code Execution Vulnerability

Vulnerebility

28.9.2017

Microsoft Internet Explorer CVE-2016-0189 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

28.9.2017

Adobe Flash Player CVE-2016-4117 Unspecified Remote Code Execution Vulnerability

Vulnerebility

28.9.2017

Microsoft XML Core Services CVE-2017-0022 Information Disclosure Vulnerability

Vulnerebility

28.9.2017

Microsoft Internet Explorer and Edge CVE-2017-0037 Remote Memory Corruption Vulnerability

Vulnerebility

28.9.2017

Drupal Ctools Module Cross Site Scripting and Access Bypass Vulnerabilities

Vulnerebility

28.9.2017

libvorbis CVE-2017-14160 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Multiple Siemens Products Discovery Protocol CVE-2017-12736 Remote Security Bypass Vulnerability

Vulnerebility

28.9.2017

Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability

Vulnerebility

28.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

28.9.2017

Apache Struts Spring AOP Functionality Denial of Service Vulnerability

Vulnerebility

28.9.2017

Apache Struts CVE-2017-12611 Remote Code Execution Vulnerability

Vulnerebility

28.9.2017

Apache Struts CVE-2017-7672 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Apache Struts CVE-2017-9791 Remote Code Execution Vulnerability

Vulnerebility

28.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

28.9.2017

Apple iOS and tvOS Wi-Fi Chip Multiple Arbitray Code Execution Vulnerabilities

Vulnerebility

28.9.2017

Oracle Java SE and JRockit CVE-2017-10115 Remote Security Vulnerability

Vulnerebility

28.9.2017

Cisco IOS Software CVE-2017-12232 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Cisco IOS Software CVE-2017-12235 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Multiple Cisco Products CVE-2017-12239 Local Unauthorized Access Vulnerability

Vulnerebility

28.9.2017

Cisco IOS Software for Cisco Catalyst 6800 Series Switches Denial of Service Vulnerability

Vulnerebility

28.9.2017

Cisco IOS Software CVE-2017-12231 Remote Denial of Service Vulnerability

Vulnerebility

28.9.2017

Cisco IOS Software Common Industrial Protocol Multiple Denial of Service Vulnerabilities

Vulnerebility

28.9.2017

Cisco IOS and IOS XE Software CVE-2017-12237 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Cisco IOS XE Software CVE-2017-12230 Privilege Escalation Vulnerability

Vulnerebility

28.9.2017

Cisco IOS XE Software CVE-2017-12222 Denial of Service Vulnerability

Vulnerebility

28.9.2017

Cisco IOS and IOS XE Software CVE-2017-12240 Buffer Overflow Vulnerability

Vulnerebility

28.9.2017

Gatekeeper Alone Won’t Mitigate Apple Keychain Attack

Threatpost

28.9.2017

MSIL/Spy.Netpune.A

Malware

28.9.2017

MSIL/Spy.RinLog.A

Malware

28.9.2017

Win32/TrojanProxy.Hioles.AD

Malware

28.9.2017

Win32/Emotet.AW

Malware

28.9.2017

Win32/TrickBot.V

Malware

28.9.2017

Cisco Prime Collaboration Provisioning < 12.1 - Authentication Bypass / Remote Code... 

Exploit

28.9.2017

LAquis SCADA 4.1.0.2385 - Directory Traversal (Metasploit) 

Exploit

27.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

27.9.2017

Apple iOS and tvOS Wi-Fi Chip Multiple Arbitray Code Execution Vulnerabilities

Vulnerebility

27.9.2017

Oracle Java SE and JRockit CVE-2017-10115 Remote Security Vulnerability

Vulnerebility

27.9.2017

Bitdefender Total Security Local Code Execution Vulnerability

Vulnerebility

27.9.2017

Oracle Java SE and JRockit CVE-2017-10116 Remote Security Vulnerability

Vulnerebility

27.9.2017

Apple iTunes CVE-2017-7079 Access Bypass Vulnerability

Vulnerebility

27.9.2017

Linux Kernel CVE-2017-1000253 Local Privilege Escalation Vulnerability

Vulnerebility

27.9.2017

EMC Data Protection Advisor CVE-2017-10955 Remote Command Injection Vulnerability

Vulnerebility

27.9.2017

Symantec Norton Remove and Reinstall DLL Loading CVE-2017-13676 Local Code Execution Vulnerability

Vulnerebility

27.9.2017

Remote Wi-Fi Attack Backdoors iPhone 7

Threatpost

27.9.2017

WordPress Plugin WPAMS - SQL Injection 

Exploit

27.9.2017

WordPress Plugin School Management System - SQL Injection 

Exploit

27.9.2017

WordPress Plugin Hospital Management System - SQL Injection 

Exploit

27.9.2017

WordPress Plugin WPGYM - SQL Injection 

Exploit

27.9.2017

WordPress Plugin WPCHURCH - SQL Injection 

Exploit

27.9.2017

AMC Master - Arbitrary File Upload 

Exploit

27.9.2017

SMSmaster - SQL Injection 

Exploit

27.9.2017

Faleemi FSC-880 Multiple Security Vulnerabilities 2017-09-27

Bugtraq

27.9.2017

Bitdefender Total Security 2017 Unquoted Service Path Vulnerability 2017-09-27

Bugtraq

27.9.2017

SECURITY] DSA 3984-1] git security update 2017-09-26

Bugtraq

27.9.2017

Qualys Security Advisory - Linux PIE/stack corruption (CVE-2017-1000253) 2017-09-26

Bugtraq

27.9.2017

security bulletin] HPESBGN03773 rev.1 - HPE Application Performance Management (BSM),
Remote Code Execution 2017-09-25

Bugtraq

27.9.2017

Mako Web Server v2.5 Multiple Unauthenticated Vulnerabilities (apparitionsec / hyp3rlinx) 2017-09-25

Bugtraq

27.9.2017

Kaltura - Remote Code Execution and Cross-Site Scripting 2017-09-24

Bugtraq

26.9.2017

Apple iOS and tvOS Wi-Fi Chip Multiple Arbitray Code Execution Vulnerabilities

Vulnerebility

26.9.2017

Apple iTunes CVE-2017-7079 Access Bypass Vulnerability

Vulnerebility

26.9.2017

Adobe Flash Player CVE-2015-0313 Remote Code Execution Vulnerability

Vulnerebility

26.9.2017

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-7255 Local Privilege Escalation Vulnerability

Vulnerebility

26.9.2017

Adobe Flash Player CVE-2016-7855 Use After Free Remote Code Execution Vulnerability

Vulnerebility

26.9.2017

Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability

Vulnerebility

26.9.2017

Expat CVE-2016-0718 Buffer Overflow Vulnerability

Vulnerebility

26.9.2017

Cisco Integrated Management Controller CVE-2017-6619 Remote Command Execution Vulnerability

Vulnerebility

26.9.2017

Deloitte: ‘Very Few Clients’ Impacted by Cyber Attack

Threatpost

26.9.2017

Android Lockscreen Patterns Less Secure Than PINs

Threatpost

26.9.2017

XPCTRA Malware Steals Banking and Digital Wallet User's Credentials

SANS News

26.9.2017

Ransom.Redboot

Malware

26.9.2017

Oracle 9i XDB 9.2.0.1 - HTTP PASS Buffer Overflow 

Exploit

26.9.2017

Supervisor 3.0a1 - 3.3.2 - XML-RPC Authenticated Remote Code Execution (Metasploit) 

Exploit

26.9.2017

Disk Pulse Enterprise 10.0.12 - GET Buffer Overflow (SEH) 

Exploit

26.9.2017

NodeJS Debugger - Command Injection (Metasploit) 

Exploit

26.9.2017

FLIR Thermal Camera F/FC/PT/D - SSH Backdoor 

Exploit

26.9.2017

Sitefinity CMS 9.2 - Cross-Site Scripting 

Exploit

26.9.2017

FLIR Thermal Camera F/FC/PT/D - Stream Disclosure 

Exploit

26.9.2017

FLIR Thermal Camera FC-S/PT - Command Injection 

Exploit

26.9.2017

FLIR Thermal Camera F/FC/PT/D - Information Disclosure 

Exploit

26.9.2017

FLIR Thermal Camera PT-Series (PT-334 200562) - Root Remote Code Execution 

Exploit

26.9.2017

Linux/x86_64 - mkdir() 'evil' Shellcode (30 bytes) 

Exploit

26.9.2017

security bulletin] HPESBGN03773 rev.1 - HPE Application Performance Management (BSM),
Remote Code Execution 2017-09-25

Bugtraq

26.9.2017

Mako Web Server v2.5 Multiple Unauthenticated Vulnerabilities (apparitionsec / hyp3rlinx) 2017-09-25

Bugtraq

25.9.2017

Cisco Integrated Management Controller CVE-2017-6619 Remote Command Execution Vulnerability

Vulnerebility

25.9.2017

Cisco Integrated Management Controller CVE-2017-6616 Remote Code Execution Vulnerability

Vulnerebility

25.9.2017

IPython JSON Error Responses Multiple Cross Site Scripting Vulnerabilities

Vulnerebility

25.9.2017

WordPress Prior to 4.8.2 Multiple Input Validation Security Vulnerabilities

Vulnerebility

25.9.2017

Linux kernel CVE-2017-14106 Local Denial of Service Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-12154 Denial of Service Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-1000111 Local Privilege Escalation Vulnerability

Vulnerebility

25.9.2017

Linux Kernel 'drivers/video/fbdev/aty/atyfb_base.c' Local Information Disclosure Vulnerability

Vulnerebility

25.9.2017

Linux Kernel 'net/xfrm/xfrm_policy.c' Local Denial of Service Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-14340 Local Denial of Service Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-14497 Local Buffer Overflow Vulnerability

Vulnerebility

25.9.2017

Google Android Kernel Components Multiple Privilege Escalation Vulnerabilities

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-1000370 Local Security Bypass Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-12146 Local Race Condition Vulnerability

Vulnerebility

25.9.2017

Xen CVE-2017-12134 Memory Corruption Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-12153 Null Pointer Dereference Local Denial of Service Vulnerability

Vulnerebility

25.9.2017

Linux Kernel 'sound/core/timer.c' Local Information Disclosure Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-7518 Privilage Escalation Vulnerability

Vulnerebility

25.9.2017

Linux Kernel 'mm/migrate.c' Local Information Disclosure Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-1000371 Local Security Bypass Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-7558 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

25.9.2017

Linux Kernel Bluetooth Subsystem CVE-2017-1000251 Stack Based Buffer Overflow Vulnerability

Vulnerebility

25.9.2017

Linux Kernel CVE-2017-1000112 Local Memory Corruption Vulnerability

Vulnerebility

25.9.2017

Perl CVE-2017-12837 Heap Buffer Overflow Vulnerability

Vulnerebility

25.9.2017

Perl CVE-2017-12883 Buffer Overflow Vulnerability

Vulnerebility

25.9.2017

Samba CVE-2017-12151 Man in the Middle Security Bypass Vulnerability

Vulnerebility

25.9.2017

Samba CVE-2017-12163 Arbitrary File Write Vulnerability

Vulnerebility

25.9.2017

Samba CVE-2017-12150 Man in the Middle Security Bypass Vulnerability

Vulnerebility

25.9.2017

Kaltura Community Edition Multiple Security Vulnerabilities

Vulnerebility

25.9.2017

Trend Micro Mobile Security (Enterprise) CVE-2017-14078 Multiple SQL Injection Vulnerabilities

Vulnerebility

25.9.2017

Chris Vickery on Amazon S3 Data Leaks

Threatpost

25.9.2017

Back to Basics: Writing Change Requests in Natural Language

SANS News

25.9.2017

Linux.Proxym

Malware

25.9.2017

Mako Web Server v2.5 Multiple Unauthenticated Vulnerabilities (apparitionsec / hyp3rlinx) 2017-09-25

Bugtraq

25.9.2017

Kaltura - Remote Code Execution and Cross-Site Scripting 2017-09-24

Bugtraq

25.9.2017

slackware-security] libxml2 (SSA:2017-266-01) 2017-09-23

Bugtraq

25.9.2017

SECURITY] DSA 3983-1] samba security update 2017-09-22

Bugtraq

25.9.2017

APPLE-SA-2017-09-19-1 iOS 11 2017-09-19

Bugtraq

25.9.2017

slackware-security] httpd (SSA:2017-261-01) 2017-09-18

Bugtraq

24.9.2017

Samba CVE-2017-12151 Man in the Middle Security Bypass Vulnerability

Vulnerebility

24.9.2017

Samba CVE-2017-12150 Man in the Middle Security Bypass Vulnerability

Vulnerebility

24.9.2017

Samba CVE-2017-12163 Arbitrary File Write Vulnerability

Vulnerebility

24.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE and JRockit CVE-2017-10108 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE and JRockit CVE-2017-10135 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE and JRockit CVE-2017-10053 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE and JRockit CVE-2017-10198 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE and JRockit CVE-2017-10176 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE and JRockit CVE-2017-10118 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE CVE-2017-10078 Remote Security Vulnerability

Vulnerebility

24.9.2017

Oracle Java SE CVE-2017-10102 Remote Security Vulnerability

Vulnerebility

24.9.2017

GraphicsMagick CVE-2017-14649 Denial of Service Vulnerability

Vulnerebility

24.9.2017

CA Identity Manager CVE-2017-9393 Information Disclosure Vulnerability

Vulnerebility

24.9.2017

Apache Tomcat CVE-2017-12617 Incomplete Fix Remote Code Execution Vulnerability

Vulnerebility

24.9.2017

Ctek SkyRouter CVE-2017-14000 Authentication Bypass Vulnerability

Vulnerebility

24.9.2017

Multiple Schneider Electric Products CVE-2017-13997 Authentication Bypass Vulnerability

Vulnerebility

24.9.2017

IniNet Solutions SCADA Web Server CVE-2017-13995 Authentication Bypass Vulnerability

Vulnerebility

24.9.2017

Digium Asterisk GUI CVE-2017-14001 OS Command Injection Vulnerability

Vulnerebility

24.9.2017

PCD CVE-2017-9628 Unspecified Information Disclosure Vulnerability

Vulnerebility

24.9.2017

Multiple Pivotal Products CVE-2017-8046 Remote Code Execution Vulnerability

Vulnerebility

24.9.2017

Google Chrome V8 Multiple Out-of-Bounds Memory Access Vulnerabilities

Vulnerebility

24.9.2017

ImageMagick CVE-2017-14607 Heap Buffer Overflow Vulnerability

Vulnerebility

24.9.2017

ImageMagick CVE-2017-14626 Denial of Service Vulnerability

Vulnerebility

24.9.2017

ImageMagick CVE-2017-14625 Denial of Service Vulnerability

Vulnerebility

24.9.2017

ImageMagick CVE-2017-14624 Denial of Service Vulnerability

Vulnerebility

24.9.2017

WordPress Prior to 4.8.2 Multiple Input Validation Security Vulnerabilities

Vulnerebility

24.9.2017

Git CVE-2017-1000117 Remote Command Injection Vulnerability

Vulnerebility

24.9.2017

Apache Subversion CVE-2017-9800 Remote Command Execution Vulnerability

Vulnerebility

24.9.2017

Multiple SAP Products 'DBISQL' Information Disclosure Vulnerability

Vulnerebility

24.9.2017

Verizon Wireless Internal Credentials, Infrastructure Details Exposed in Amazon S3 Bucket

Threatpost

24.9.2017

EternalBlue Exploit Used in Retefe Banking Trojan Campaign

Threatpost

24.9.2017

2016 SEC Hack May Have Benefited Insider Trading

Threatpost

24.9.2017

Samba Update Patches Two SMB-Related MiTM Bugs

Threatpost

24.9.2017

What’s New In Android 8.0 Oreo Security

Threatpost

24.9.2017

Forensic use of mount --bind

SANS News

24.9.2017

What is the State of Your Union? 

SANS News

24.9.2017

Malspam pushing Word documents with Hancitor malware

SANS News

22.9.2017

Oracle Java SE and JRockit CVE-2017-10198 Remote Security Vulnerability

Vulnerebility

22.9.2017

Oracle Java SE and JRockit CVE-2017-10176 Remote Security Vulnerability

Vulnerebility

22.9.2017

Oracle Java SE and JRockit CVE-2017-10118 Remote Security Vulnerability

Vulnerebility

22.9.2017

Oracle Java SE CVE-2017-10078 Remote Security Vulnerability

Vulnerebility

22.9.2017

Oracle Java SE CVE-2017-10102 Remote Security Vulnerability

Vulnerebility

22.9.2017

ImageMagick CVE-2017-14607 Heap Buffer Overflow Vulnerability

Vulnerebility

22.9.2017

ImageMagick CVE-2017-14626 Denial of Service Vulnerability

Vulnerebility

22.9.2017

ImageMagick CVE-2017-14625 Denial of Service Vulnerability

Vulnerebility

22.9.2017

ImageMagick CVE-2017-14624 Denial of Service Vulnerability

Vulnerebility

22.9.2017

WordPress Prior to 4.8.2 Multiple Input Validation Security Vulnerabilities

Vulnerebility

22.9.2017

Git CVE-2017-1000117 Remote Command Injection Vulnerability

Vulnerebility

22.9.2017

Apache Subversion CVE-2017-9800 Remote Command Execution Vulnerability

Vulnerebility

22.9.2017

Multiple SAP Products 'DBISQL' Information Disclosure Vulnerability

Vulnerebility

22.9.2017

HP ArcSight ESM and ArcSight ESM Express Multiple Security Vulnerabilities

Vulnerebility

22.9.2017

Drupal Page Access Module Unspecified Security Vulnerability

Vulnerebility

22.9.2017

Multiple Cisco Products CVE-2017-6720 Denial of Service Vulnerability

Vulnerebility

22.9.2017

Cisco UCS Central Software Command Line Interface CVE-2017-12255 Command Injection Vulnerability

Vulnerebility

22.9.2017

Cisco Unified Customer Voice Portal CVE-2017-12214 Remote Privilege Escalation Vulnerability

Vulnerebility

22.9.2017

Iranian APT33 Targets US Firms with Destructive Malware

Threatpost

22.9.2017

Joomla Patches Eight-Year-Old LDAP Injection Vulnerability

Threatpost

22.9.2017

Malware Steals Data From Air-Gapped Network via Security Cameras

Threatpost

22.9.2017

Malspam pushing Word documents with Hancitor malware

SANS News

21.9.2017

WordPress Prior to 4.8.2 Multiple Input Validation Security Vulnerabilities

Vulnerebility

21.9.2017

Git CVE-2017-1000117 Remote Command Injection Vulnerability

Vulnerebility

21.9.2017

Apache Subversion CVE-2017-9800 Remote Command Execution Vulnerability

Vulnerebility

21.9.2017

Multiple SAP Products 'DBISQL' Information Disclosure Vulnerability

Vulnerebility

21.9.2017

Apache Struts CVE-2017-12611 Remote Code Execution Vulnerability

Vulnerebility

21.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

21.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

21.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

21.9.2017

Apache Tomcat CVE-2017-12615 Remote Code Execution Vulnerability

Vulnerebility

21.9.2017

Joomla! CVE-2017-14595 Information Disclosure Vulnerability

Vulnerebility

21.9.2017

Joomla! CVE-2017-14596 Information Disclosure Vulnerability

Vulnerebility

21.9.2017

Apache Tomcat CVE-2017-12616 Information Disclosure Vulnerability

Vulnerebility

21.9.2017

Apple Safari and iOS CVE-2017-7085 Address Bar Spoofing Vulnerability

Vulnerebility

21.9.2017

Apple Xcode Multiple Memory Corruption Vulnerabilities

Vulnerebility

21.9.2017

WebKit Multiple Security Vulnerabilities

Vulnerebility

21.9.2017

Apple iOS APPLE-SA-2017-09-19-1 Multiple Security Vulnerabilities

Vulnerebility

21.9.2017

Apache Tomcat CVE-2017-7674 Security Bypass Vulnerability

Vulnerebility

21.9.2017

What Triggers HTTPS Chrome Browser Warnings?

Threatpost

21.9.2017

Malware Steals Data From Air-Gapped Network via Security Cameras

Threatpost

21.9.2017

Deep-Learning PassGAN Tool Improves Password Guessing

Threatpost

21.9.2017

Email attachment using CVE-2017-8759 exploit targets Argentina

SANS News

21.9.2017

Trojan.Famberp

Malware

20.9.2017

Multiple SAP Products 'DBISQL' Information Disclosure Vulnerability

Vulnerebility

20.9.2017

Apache Struts CVE-2017-12611 Remote Code Execution Vulnerability

Vulnerebility

20.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

20.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

20.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

20.9.2017

Apache Tomcat CVE-2017-12615 Remote Code Execution Vulnerability

Vulnerebility

20.9.2017

Joomla! CVE-2017-14595 Information Disclosure Vulnerability

Vulnerebility

20.9.2017

Joomla! CVE-2017-14596 Information Disclosure Vulnerability

Vulnerebility

20.9.2017

Apache Tomcat CVE-2017-12616 Information Disclosure Vulnerability

Vulnerebility

20.9.2017

Apple Safari and iOS CVE-2017-7085 Address Bar Spoofing Vulnerability

Vulnerebility

20.9.2017

Apple Xcode Multiple Memory Corruption Vulnerabilities

Vulnerebility

20.9.2017

WebKit Multiple Security Vulnerabilities

Vulnerebility

20.9.2017

Apple iOS APPLE-SA-2017-09-19-1 Multiple Security Vulnerabilities

Vulnerebility

20.9.2017

Apache Tomcat CVE-2017-7674 Security Bypass Vulnerability

Vulnerebility

20.9.2017

Apache Tomcat CVE-2017-7675 Directory Traversal Vulnerability

Vulnerebility

20.9.2017

Apache HTTP Server CVE-2017-9798 Information Disclosure Vulnerability

Vulnerebility

20.9.2017

Apache Solr CVE-2017-9803 Remote Privilege Escalation Vulnerability

Vulnerebility

20.9.2017

Moodle CVE-2017-12156 Cross Site Scripting Vulnerability

Vulnerebility

20.9.2017

Moodle CVE-2017-12157 Information Disclosure Vulnerability

Vulnerebility

20.9.2017

Cloud-Focused Firms Earn High Marks for Software Security in BSIMM8 Report

Threatpost

20.9.2017

iOS 11 Update includes Patches for Eight Vulnerabilities

Threatpost

20.9.2017

Risks Limited With Latest Apache Bug, Optionsbleed

Threatpost

20.9.2017

Ongoing Ykcol (Locky) campaign

SANS News

20.9.2017

Exp.CVE-2017-8737

Malware

20.9.2017

Exp.CVE-2017-8728

Malware

20.9.2017

Exp.CVE-2017-8753

Malware

20.9.2017

Exp.CVE-2017-8757

Malware

20.9.2017

Exp.CVE-2017-8734

Malware

20.9.2017

Exp.CVE-2017-8738

Malware

20.9.2017

Exp.CVE-2017-8747

Malware

20.9.2017

Exp.CVE-2017-8749

Malware

20.9.2017

APPLE-SA-2017-09-19-1 iOS 11 2017-09-19

Bugtraq

20.9.2017

slackware-security] httpd (SSA:2017-261-01) 2017-09-18

Bugtraq

20.9.2017

slackware-security] libgcrypt (SSA:2017-261-02) 2017-09-18

Bugtraq

20.9.2017

slackware-security] ruby (SSA:2017-261-03) 2017-09-18

Bugtraq

20.9.2017

Watchguard Fireware OS DOS & Stored XSS 2017-09-18

Bugtraq

19.9.2017

Apache Tomcat CVE-2017-7674 Security Bypass Vulnerability

Vulnerebility

19.9.2017

Apache Tomcat CVE-2017-7675 Directory Traversal Vulnerability

Vulnerebility

19.9.2017

Apache Solr CVE-2017-9803 Remote Privilege Escalation Vulnerability

Vulnerebility

19.9.2017

Moodle CVE-2017-12156 Cross Site Scripting Vulnerability

Vulnerebility

19.9.2017

Moodle CVE-2017-12157 Information Disclosure Vulnerability

Vulnerebility

19.9.2017

Pirate Bay Spotted Hosting Monero Cryptocurrency Miner

Threatpost

19.9.2017

New tool: mac-robber.py

SANS News

19.9.2017

Python.Fakelib

Malware

19.9.2017

slackware-security] httpd (SSA:2017-261-01) 2017-09-18

Bugtraq

19.9.2017

slackware-security] libgcrypt (SSA:2017-261-02) 2017-09-18

Bugtraq

19.9.2017

slackware-security] ruby (SSA:2017-261-03) 2017-09-18

Bugtraq

19.9.2017

Watchguard Fireware OS DOS & Stored XSS 2017-09-18

Bugtraq

19.9.2017

SECURITY] DSA 3978-1] gdk-pixbuf security update 2017-09-18

Bugtraq

19.9.2017

ZK Time_Web Software 2.0 - Broken Authentication 2017-09-18

Bugtraq

19.9.2017

ZKTime_Web Software 2.0 - Cross Site Request Forgery 2017-09-18

Bugtraq

19.9.2017

SECURITY] DSA 3976-1] freexl security update 2017-09-17

Bugtraq

18.9.2017

Apache Tomcat CVE-2017-7674 Security Bypass Vulnerability

Vulnerebility

18.9.2017

Apache Tomcat CVE-2017-7675 Directory Traversal Vulnerability

Vulnerebility

18.9.2017

Moodle CVE-2017-12157 Information Disclosure Vulnerability

Vulnerebility

18.9.2017

VMware vCenter Server CVE-2017-4926 HTML Injection Vulnerability

Vulnerebility

18.9.2017

Xen 'mm.c' Remote Privilege Escalation Vulnerability

Vulnerebility

18.9.2017

Xen CVE-2017-14316 Arbitrary Code Execution Vulnerability

Vulnerebility

18.9.2017

Getting some intelligence from malspam

SANS News

18.9.2017

JS.Dosdeming

Malware

18.9.2017

Trojan.Sibakdi

Malware

18.9.2017

ZK Time_Web Software 2.0 - Broken Authentication 2017-09-18

Bugtraq

18.9.2017

ZKTime_Web Software 2.0 - Cross Site Request Forgery 2017-09-18

Bugtraq

18.9.2017

SECURITY] DSA 3976-1] freexl security update 2017-09-17

Bugtraq

18.9.2017

slackware-security] kernel (SSA:2017-258-02) 2017-09-15

Bugtraq

17.9.2017

Xen 'mm.c' Remote Privilege Escalation Vulnerability

Vulnerebility

17.9.2017

Xen CVE-2017-14316 Arbitrary Code Execution Vulnerability

Vulnerebility

17.9.2017

Xen 'grant_table.c' Privilege Escalation Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3456 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3464 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3453 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3600 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3309 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3308 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3318 Local Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3317 Local Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3238 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3244 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3258 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3243 Remote Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3265 Local Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3291 Local Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3312 Local Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL CVE-2016-6664 Local Security Vulnerability

Vulnerebility

17.9.2017

Oracle MySQL Server CVE-2017-3313 Local Security Vulnerability

Vulnerebility

17.9.2017

Microsoft Windows .NET Framework CVE-2017-8759 Remote Code Execution Vulnerability

Vulnerebility

17.9.2017

Microsoft Windows Bluetooth Driver CVE-2017-8628 Man in the Middle Spoofing Vulnerability

Vulnerebility

17.9.2017

MariaDB and MySQL CVE-2017-3302 Denial of Service Vulnerability

Vulnerebility

17.9.2017

Google Android CVE-2017-0781 Heap Buffer Overflow Vulnerability

Vulnerebility

17.9.2017

Python Ansible Vault Package CVE-2017-2809 Remote Code Execution Vulnerability

Vulnerebility

17.9.2017

LibOFX CVE-2017-2816 Stack Based Buffer Overflow Vulnerability

Vulnerebility

17.9.2017

Cisco Meeting Server CVE-2017-12249 Unauthorized Access Vulnerability

Vulnerebility

17.9.2017

Google Android Broadcom components Multiple Security Vulnerabilities

Vulnerebility

17.9.2017

SAP Point of Sale (POS) Retail Xpress Server Authentication Bypass Vulnerability

Vulnerebility

17.9.2017

SAP Note Assistant Unspecified Security Vulnerability

Vulnerebility

17.9.2017

Rogue WordPress Plugin Allowed Spam Injection

Threatpost

17.9.2017

VMware Patches Bug That Allows Guest to Execute Code on Host

Threatpost

17.9.2017

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Threatpost

17.9.2017

Equifax Confirms March Struts Vulnerability Behind Breach

Threatpost

17.9.2017

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Threatpost

17.9.2017

rockNSM as a Incident Response Package

SANS News

14.9.2017

MariaDB and MySQL CVE-2017-3302 Denial of Service Vulnerability

Vulnerebility

14.9.2017

Google Android CVE-2017-0781 Heap Buffer Overflow Vulnerability

Vulnerebility

14.9.2017

Google Android Broadcom components Multiple Security Vulnerabilities

Vulnerebility

14.9.2017

Microsoft Windows .NET Framework CVE-2017-8759 Remote Code Execution Vulnerability

Vulnerebility

14.9.2017

Thousands of Elasticsearch Servers Hijacked to Host PoS Malware

Threatpost

14.9.2017

Another webshell, another backdoor!

SANS News

14.9.2017

Exp.CVE-2017-8759

Malware

14.9.2017

Android.Wirex

Malware

14.9.2017

Jungo DriverWizard WinDriver <= 12.4.0 - Kernel Pool Overflow 

Exploit

14.9.2017

ICLowBidAuction 3.3 - SQL Injection 

Exploit

14.9.2017

ICMLM 2.1 - 'key' Parameter SQL Injection 

Exploit

14.9.2017

Mako Web Server 2.5 - Multiple Vulnerabilities 

Exploit

13.9.2017

Google Android Broadcom components Multiple Security Vulnerabilities

Vulnerebility

13.9.2017

Microsoft Windows .NET Framework CVE-2017-8759 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

SAP Point of Sale (POS) Retail Xpress Server Authentication Bypass Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Hyper-V CVE-2017-8713 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Hyper-V CVE-2017-8712 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Hyper-V CVE-2017-8711 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows CVE-2017-8710 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Kernel CVE-2017-8709 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Kernel CVE-2017-8708 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Hyper-V CVE-2017-8707 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Hyper-V CVE-2017-8706 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Hyper-V CVE-2017-8704 Remote Denial of Service Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Error Reporting CVE-2017-8702 Remote Privilege Escalation Vulnerability

Vulnerebility

13.9.2017

SAP Netweaver Cross Site Scripting Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Shell CVE-2017-8699 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows GDI+ Component CVE-2017-8684 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Graphics Component CVE-2017-8683 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Graphics Component CVE-2017-8696 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Content Security Policy CVE-2017-8754 Security Bypass Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8755 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8724 Spoofing Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8753 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8752 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Graphics Component CVE-2017-8695 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Graphics Component CVE-2017-8682 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer and Edge CVE-2017-8750 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer CVE-2017-8749 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Kernel 'Win32k.sys' CVE-2017-8678 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Content Security Policy CVE-2017-8723 Security Bypass Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows GDI+ Component CVE-2017-8677 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer and Edge CVE-2017-8748 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer CVE-2017-8747 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer and Edge CVE-2017-8741 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8740 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Uniscribe CVE-2017-8692 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8739 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Device Guard CVE-2017-8746 Local Security Bypass Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8738 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Office Publisher CVE-2017-8725 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8660 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows GDI+ Component CVE-2017-8688 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Graphics Device Interface CVE-2017-8676 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8649 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft SharePoint CVE-2017-8745 Cross Site Scripting Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Kernel 'Win32k.sys' CVE-2017-8675 Local Privilege Escalation Vulnerability

Vulnerebility

13.9.2017

Microsoft Office CVE-2017-8631 Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8648 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows PDF CVE-2017-8737 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Office CVE-2017-8744 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8643 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft PowerPoint CVE-2017-8743 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8597 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Bluetooth Driver CVE-2017-8628 Man in the Middle Spoofing Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer and Edge CVE-2017-8736 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft PowerPoint CVE-2017-8742 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8735 Spoofing Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows PDF CVE-2017-8728 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8734 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Internet Explorer CVE-2017-8733 Spoofing Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Kernel CVE-2017-8687 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8731 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Office CVE-2017-8632 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8729 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Office CVE-2017-8630 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Exchange Server CVE-2017-11761 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows DHCP Server CVE-2017-8686 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-11766 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows NetBIOS CVE-2017-0161 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows GDI+ Component CVE-2017-8681 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-11764 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Microsoft SharePoint Server CVE-2017-8629 Remote Privilege Escalation Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows GDI+ CVE-2017-8685 Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Exchange Server CVE-2017-8758 Cross Site Scripting Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows GDI+ Component CVE-2017-8680 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge CVE-2017-8757 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Windows Kernel CVE-2017-8679 Local Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Microsoft Office CVE-2017-8567 Remote Code Execution Vulnerability

Vulnerebility

13.9.2017

Microsoft Edge Scripting Engine CVE-2017-8756 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

SAP NetWeaver Adapter Engine Cache Monitor Information Disclosure Vulnerability

Vulnerebility

13.9.2017

Adobe Flash Player CVE-2017-11282 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Adobe Coldfusion CVE-2017-11286 XML External Entity Information Disclosure Vulnerability

Vulnerebility

13.9.2017

SAP NetWeaver 'SLC Sell Side Registration Page' Cross Site Scripting Vulnerability

Vulnerebility

13.9.2017

SAP Point of Sale (POS) Retail Xpress Server Authentication Bypass Vulnerability

Vulnerebility

13.9.2017

SAP Electronic Ledger Management for Turkey Cross Site Request Forgery Vulnerability

Vulnerebility

13.9.2017

Adobe ColdFusion CVE-2017-11285 Unspecified Cross Site Scripting Vulnerability

Vulnerebility

13.9.2017

Adobe Flash Player CVE-2017-11281 Remote Memory Corruption Vulnerability

Vulnerebility

13.9.2017

Adobe RoboHelp CVE-2017-3105 Open Redirect Vulnerability

Vulnerebility

13.9.2017

Adobe ColdFusion APSB17-30 Deserialization Multiple Remote Code Execution Vulnerabilities

Vulnerebility

13.9.2017

Adobe RoboHelp CVE-2017-3104 Cross Site Scripting Vulnerability

Vulnerebility

13.9.2017

Microsoft Patches .NET Zero Day Vulnerability in September Update

Threatpost

13.9.2017

Adobe Fixes Eight Vulnerabilities in Flash, RoboHelp, ColdFusion

Threatpost

13.9.2017

Microsoft Patch Tuesday September 2017

SANS News

13.9.2017

No IPv6? Challenge Accepted! (Part 1)

SANS News

13.9.2017

Trend Micro Control Manager - ImportFile Directory Traversal RCE (Metasploit) 

Exploit

13.9.2017

ZScada Modbus Buffer 2.0 - Stack-Based Buffer Overflow (Metasploit) 

Exploit

13.9.2017

Viap Automation WinPLC7 5.0.45.5921 - Recv Buffer Overflow (Metasploit) 

Exploit

13.9.2017

Sielco Sistemi Winlog 2.07.16 - Buffer Overflow (Metasploit) 

Exploit

13.9.2017

Alienvault Open Source SIEM (OSSIM) < 4.8.0 - 'get_file' Information Disclosure... 

Exploit

13.9.2017

Motorola Netopia Netoctopus SDCS - Stack Buffer Overflow (Metasploit) 

Exploit

13.9.2017

Jungo DriverWizard WinDriver <= 12.4.0 - Kernel Pool Overflow 

Exploit

13.9.2017

WebKit JSC - 'BytecodeGenerator::emitGetByVal' Incorrect Optimization 

Exploit

13.9.2017

Mako Web Server 2.5 - Multiple Vulnerabilities 

Exploit

13.9.2017

ICLowBidAuction 3.3 - SQL Injection 

Exploit

13.9.2017

ICMLM 2.1 - 'key' Parameter SQL Injection 

Exploit

13.9.2017

ICHotelReservation 3.3 - 'key' Parameter SQL Injection 

Exploit

13.9.2017

ICAuction 2.2 - 'id' Parameter SQL Injection 

Exploit

13.9.2017

ICDoctor Appointment 1.3 - 'key' Parameter SQL Injection 

Exploit

13.9.2017

ICRestaurant software 1.4 - 'key' Parameter SQL Injection 

Exploit

13.9.2017

ICDutchAuction 1.2 - SQL Injection 

Exploit

13.9.2017

slackware-security] emacs (SSA:2017-255-01) 2017-09-12

Bugtraq

13.9.2017

slackware-security] libzip (SSA:2017-255-02) 2017-09-12

Bugtraq

13.9.2017

SECURITY] DSA 3970-1] emacs24 security update 2017-09-12

Bugtraq

13.9.2017

SEC Consult SA-20170912-0 :: Email verification bypass in SAP E-Recruiting 2017-09-12

Bugtraq

13.9.2017

slackware-security] bash (SSA:2017-251-01) 2017-09-08

Bugtraq

13.9.2017

slackware-security] mariadb (SSA:2017-251-02) 2017-09-08

Bugtraq

12.9.2017

SAP Electronic Ledger Management for Turkey Cross Site Request Forgery Vulnerability

Vulnerebility

12.9.2017

Adobe ColdFusion CVE-2017-11285 Unspecified Cross Site Scripting Vulnerability

Vulnerebility

12.9.2017

Adobe Flash Player CVE-2017-11281 Remote Memory Corruption Vulnerability

Vulnerebility

12.9.2017

Adobe RoboHelp CVE-2017-3105 Open Redirect Vulnerability

Vulnerebility

12.9.2017

Adobe ColdFusion APSB17-30 Deserialization Multiple Remote Code Execution Vulnerabilities

Vulnerebility

12.9.2017

Adobe RoboHelp CVE-2017-3104 Cross Site Scripting Vulnerability

Vulnerebility

12.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

12.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

12.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

12.9.2017

FFmpeg 'libavutil/pixdesc.c' NULL pointer Dereference Remote Denial of Service Vulnerability

Vulnerebility

12.9.2017

EMC AppSync CVE-2017-8015 SQL Injection Vulnerability

Vulnerebility

12.9.2017

Openswan IKEv2 payloads Remote Denial Of Service Vulnerability

Vulnerebility

12.9.2017

FFmpeg 'libavformat/asfdec_f.c' Denial of Service Vulnerability

Vulnerebility

12.9.2017

ImageMagick CVE-2017-14224 Heap Buffer Overflow Vulnerability

Vulnerebility

12.9.2017

FFmpeg 'libavformat/mov.c' Denial of Service Vulnerability

Vulnerebility

12.9.2017

IBM DB2 CVE-2017-1520 Security Bypass Vulnerability

Vulnerebility

12.9.2017

Das U-Boot Security Weakness and Information Disclosure Vulnerabilities

Vulnerebility

12.9.2017

Oracle Java SE CVE-2017-10089 Remote Security Vulnerability

Vulnerebility

12.9.2017

Oracle Database Server CVE-2012-1746 Remote Network Layer Vulnerability

Vulnerebility

12.9.2017

Oracle Java SE CVE-2017-10087 Remote Security Vulnerability

Vulnerebility

12.9.2017

Mahara Resume Blocktype Cross Site Scripting Vulnerability

Vulnerebility

12.9.2017

Oracle CVE-2010-3534 Local Primavera P6 Enterprise Project Portfolio Management

Vulnerebility

12.9.2017

Oracle Document Capture CVE-2010-3592 Remote Vulnerability

Vulnerebility

12.9.2017

Oracle Transportation Manager CVE-2010-4432 Remote Security Vulnerability

Vulnerebility

12.9.2017

Mahara Admin Password Reset Security Bypass Vulnerability

Vulnerebility

12.9.2017

Oracle Fusion Middleware CVE-2010-3501 Remote OID Vulnerability

Vulnerebility

12.9.2017

Oracle Supply Chain Product CVE-2010-4429 Remote Security Vulnerability

Vulnerebility

12.9.2017

Oracle Supply Chain Product CVE-2010-3505 Remote Security Vulnerability

Vulnerebility

12.9.2017

Oracle Oracle Enterprise Manager Grid Control CVE-2011-0875 Remote EMCTL Vulnerability

Vulnerebility

12.9.2017

Oracle Sun Java System Portal Server CVE-2010-4431 Local Security Vulnerability

Vulnerebility

12.9.2017

FreeXL Library Fixes Two Remote Code Execution Vulnerabilities

Threatpost

12.9.2017

tcprewrite - Heap-Based Buffer Overflow 

Exploit

12.9.2017

PHP Dashboards NEW 4.4 - Arbitrary File Read 

Exploit

12.9.2017

PHP Dashboards NEW 4.4 - SQL Injection 

Exploit

12.9.2017

JobStar Monster Clone Script 1.0 - SQL Injection 

Exploit

12.9.2017

iTech Book Store Script 2.02 - SQL Injection 

Exploit

12.9.2017

Docker Daemon - Unprotected TCP Socket (Metasploit) 

Exploit

12.9.2017

Nimble Professional 1.0 - Cross-Site Request Forgery (Update Admin) 

Exploit

12.9.2017

FiberHome ADSL AN1020-25 - Improper Access Restrictions 

Exploit

12.9.2017

WiseGiga NAS - Multiple Vulnerabilities 

Exploit

12.9.2017

Apache Foundation Refutes Involvement in Equifax Breach

 

11.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

11.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

11.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

11.9.2017

Openswan IKEv2 payloads Remote Denial Of Service Vulnerability

Vulnerebility

11.9.2017

Das U-Boot Security Weakness and Information Disclosure Vulnerabilities

Vulnerebility

11.9.2017

Oracle Java SE CVE-2017-10089 Remote Security Vulnerability

Vulnerebility

11.9.2017

Oracle Database Server CVE-2012-1746 Remote Network Layer Vulnerability

Vulnerebility

11.9.2017

Oracle Java SE CVE-2017-10087 Remote Security Vulnerability

Vulnerebility

11.9.2017

Mahara Resume Blocktype Cross Site Scripting Vulnerability

Vulnerebility

11.9.2017

Oracle CVE-2010-3534 Local Primavera P6 Enterprise Project Portfolio Management

Vulnerebility

11.9.2017

Oracle Document Capture CVE-2010-3592 Remote Vulnerability

Vulnerebility

11.9.2017

Oracle Transportation Manager CVE-2010-4432 Remote Security Vulnerability

Vulnerebility

11.9.2017

Mahara Admin Password Reset Security Bypass Vulnerability

Vulnerebility

11.9.2017

Oracle Fusion Middleware CVE-2010-3501 Remote OID Vulnerability

Vulnerebility

11.9.2017

Oracle Supply Chain Product CVE-2010-4429 Remote Security Vulnerability

Vulnerebility

11.9.2017

Oracle Supply Chain Product CVE-2010-3505 Remote Security Vulnerability

Vulnerebility

11.9.2017

Oracle Oracle Enterprise Manager Grid Control CVE-2011-0875 Remote EMCTL Vulnerability

Vulnerebility

11.9.2017

Oracle Sun Java System Portal Server CVE-2010-4431 Local Security Vulnerability

Vulnerebility

11.9.2017

Oracle Sun Solaris CVE-2011-3542 Local Vulnerability

Vulnerebility

11.9.2017

Oracle PeopleSoft Enterprise FIN CVE-2011-2250 Remote PeopleSoft Enterprise FIN Vulnerability

Vulnerebility

11.9.2017

Oracle Sun Solaris CVE-2010-3586 Local Security Vulnerability

Vulnerebility

11.9.2017

Oracle PeopleSoft Products CVE-2011-3533 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

11.9.2017

Oracle Spatial CVE-2010-3590 Remote Security Vulnerability

Vulnerebility

11.9.2017

Oracle PeopleSoft Products CVE-2011-2315 Remote PeopleSoft Enterprise PeopleTools Vulnerability

Vulnerebility

11.9.2017

Oracle Fusion Middleware CVE-2012-0522 Remote Vulnerability

Vulnerebility

11.9.2017

Oracle Outside In Technology CVE-2012-0557 Remote Vulnerability

Vulnerebility

11.9.2017

Oracle Sun Products Suite CVE-2011-3507 Remote Oracle Communications Unified Vulnerability

Vulnerebility

11.9.2017

Oracle E-Business Suite CVE-2012-0513 Remote Oracle Application Object Library Vulnerabilty

Vulnerebility

11.9.2017

Oracle PeopleSoft CVE-2011-3529 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

11.9.2017

Oracle Sun Products Suite CVE-2011-2292 Local Solaris Vulnerability

Vulnerebility

11.9.2017

Popular D-Link Router Riddled with Vulnerabilities

Threatpost

11.9.2017

Windows Auditing with WINspect

SANS News

11.9.2017

Linux/ARM (Raspberry Pi) - Reverse TCP Shell (192.168.0.12:4444/TCP) Shellcode (160... 

Exploit

11.9.2017

Linux/ARM (Raspberry Pi) - Bind TCP Shell (4444/TCP) Shellcode (192 bytes) 

Exploit

11.9.2017

Escort Marketplace 1.0 - SQL Injection 

Exploit

11.9.2017

Babysitter Website Script 1.0 - SQL Injection 

Exploit

11.9.2017

Job Board Software 1.0 - SQL Injection 

Exploit

11.9.2017

RPi Cam Control <= 6.3.14 - Multiple Vulnerabilities 

Exploit

11.9.2017

Just Dial Marketplace 1.0 - SQL Injection 

Exploit

11.9.2017

Online Print Business 1.0 - SQL Injection 

Exploit

11.9.2017

Professional Service Booking 1.0 - SQL Injection 

Exploit

10.9.2017

Openswan IKEv2 payloads Remote Denial Of Service Vulnerability

Vulnerebility

10.9.2017

Das U-Boot Security Weakness and Information Disclosure Vulnerabilities

Vulnerebility

10.9.2017

Oracle Java SE CVE-2017-10089 Remote Security Vulnerability

Vulnerebility

10.9.2017

Oracle Database Server CVE-2012-1746 Remote Network Layer Vulnerability

Vulnerebility

10.9.2017

Oracle Java SE CVE-2017-10087 Remote Security Vulnerability

Vulnerebility

10.9.2017

Mahara Resume Blocktype Cross Site Scripting Vulnerability

Vulnerebility

10.9.2017

Oracle CVE-2010-3534 Local Primavera P6 Enterprise Project Portfolio Management

Vulnerebility

10.9.2017

Oracle Document Capture CVE-2010-3592 Remote Vulnerability

Vulnerebility

10.9.2017

Oracle Transportation Manager CVE-2010-4432 Remote Security Vulnerability

Vulnerebility

10.9.2017

Mahara Admin Password Reset Security Bypass Vulnerability

Vulnerebility

10.9.2017

Oracle Fusion Middleware CVE-2010-3501 Remote OID Vulnerability

Vulnerebility

10.9.2017

Oracle Supply Chain Product CVE-2010-4429 Remote Security Vulnerability

Vulnerebility

10.9.2017

Oracle Supply Chain Product CVE-2010-3505 Remote Security Vulnerability

Vulnerebility

10.9.2017

Oracle Oracle Enterprise Manager Grid Control CVE-2011-0875 Remote EMCTL Vulnerability

Vulnerebility

10.9.2017

Oracle Sun Java System Portal Server CVE-2010-4431 Local Security Vulnerability

Vulnerebility

10.9.2017

Oracle Sun Solaris CVE-2011-3542 Local Vulnerability

Vulnerebility

10.9.2017

Oracle PeopleSoft Enterprise FIN CVE-2011-2250 Remote PeopleSoft Enterprise FIN Vulnerability

Vulnerebility

10.9.2017

Oracle Sun Solaris CVE-2010-3586 Local Security Vulnerability

Vulnerebility

10.9.2017

Oracle PeopleSoft Products CVE-2011-3533 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

10.9.2017

Oracle Spatial CVE-2010-3590 Remote Security Vulnerability

Vulnerebility

10.9.2017

Oracle PeopleSoft Products CVE-2011-2315 Remote PeopleSoft Enterprise PeopleTools Vulnerability

Vulnerebility

10.9.2017

Oracle Fusion Middleware CVE-2012-0522 Remote Vulnerability

Vulnerebility

10.9.2017

Oracle Outside In Technology CVE-2012-0557 Remote Vulnerability

Vulnerebility

10.9.2017

Oracle Sun Products Suite CVE-2011-3507 Remote Oracle Communications Unified Vulnerability

Vulnerebility

10.9.2017

Oracle E-Business Suite CVE-2012-0513 Remote Oracle Application Object Library Vulnerabilty

Vulnerebility

10.9.2017

Oracle PeopleSoft CVE-2011-3529 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

10.9.2017

Oracle Sun Products Suite CVE-2011-2292 Local Solaris Vulnerability

Vulnerebility

10.9.2017

Oracle Outside In Technology CVE-2012-0555 Remote Vulnerability

Vulnerebility

10.9.2017

Oracle Database Server CVE-2012-0519 Remote Core RDBMS Vulnerability

Vulnerebility

10.9.2017

Oracle Identity Manager CVE-2012-0532 Remote Vulnerability

Vulnerebility

10.9.2017

Android Users Vulnerable to ‘High-Severity’ Overlay Attacks

Threatpost

10.9.2017

YASRV (Yet Another Struts RCE Vulnerability) yes a different one from yesterday

SANS News

10.9.2017

Malware analysis output sanitization

SANS News

10.9.2017

SECURITY] DSA 3967-1] mbedtls security update 2017-09-08

Bugtraq

10.9.2017

Pwning the Dlink 850L routers and abusing the MyDlink Cloud protocol 2017-09-07

Bugtraq

10.9.2017

August 2017 - SourceTree - Critical Security Advisory 2017-09-06

Bugtraq

8.9.2017

Openswan IKEv2 payloads Remote Denial Of Service Vulnerability

Vulnerebility

8.9.2017

Oracle Java SE CVE-2017-10089 Remote Security Vulnerability

Vulnerebility

8.9.2017

Oracle Database Server CVE-2012-1746 Remote Network Layer Vulnerability

Vulnerebility

8.9.2017

Oracle Java SE CVE-2017-10087 Remote Security Vulnerability

Vulnerebility

8.9.2017

Mahara Resume Blocktype Cross Site Scripting Vulnerability

Vulnerebility

8.9.2017

Oracle CVE-2010-3534 Local Primavera P6 Enterprise Project Portfolio Management

Vulnerebility

8.9.2017

Oracle Document Capture CVE-2010-3592 Remote Vulnerability

Vulnerebility

8.9.2017

Oracle Transportation Manager CVE-2010-4432 Remote Security Vulnerability

Vulnerebility

8.9.2017

Mahara Admin Password Reset Security Bypass Vulnerability

Vulnerebility

8.9.2017

Oracle Fusion Middleware CVE-2010-3501 Remote OID Vulnerability

Vulnerebility

8.9.2017

Oracle Supply Chain Product CVE-2010-4429 Remote Security Vulnerability

Vulnerebility

8.9.2017

Oracle Supply Chain Product CVE-2010-3505 Remote Security Vulnerability

Vulnerebility

8.9.2017

Oracle Oracle Enterprise Manager Grid Control CVE-2011-0875 Remote EMCTL Vulnerability

Vulnerebility

8.9.2017

Oracle Sun Java System Portal Server CVE-2010-4431 Local Security Vulnerability

Vulnerebility

8.9.2017

Oracle Sun Solaris CVE-2011-3542 Local Vulnerability

Vulnerebility

8.9.2017

Oracle PeopleSoft Enterprise FIN CVE-2011-2250 Remote PeopleSoft Enterprise FIN Vulnerability

Vulnerebility

8.9.2017

Oracle Sun Solaris CVE-2010-3586 Local Security Vulnerability

Vulnerebility

8.9.2017

Oracle PeopleSoft Products CVE-2011-3533 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

8.9.2017

Oracle Spatial CVE-2010-3590 Remote Security Vulnerability

Vulnerebility

8.9.2017

Oracle PeopleSoft Products CVE-2011-2315 Remote PeopleSoft Enterprise PeopleTools Vulnerability

Vulnerebility

8.9.2017

Oracle Fusion Middleware CVE-2012-0522 Remote Vulnerability

Vulnerebility

8.9.2017

Oracle Outside In Technology CVE-2012-0557 Remote Vulnerability

Vulnerebility

8.9.2017

Oracle Sun Products Suite CVE-2011-3507 Remote Oracle Communications Unified Vulnerability

Vulnerebility

8.9.2017

Oracle E-Business Suite CVE-2012-0513 Remote Oracle Application Object Library Vulnerabilty

Vulnerebility

8.9.2017

Oracle PeopleSoft CVE-2011-3529 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

8.9.2017

Oracle Sun Products Suite CVE-2011-2292 Local Solaris Vulnerability

Vulnerebility

8.9.2017

Oracle Outside In Technology CVE-2012-0555 Remote Vulnerability

Vulnerebility

8.9.2017

Oracle Database Server CVE-2012-0519 Remote Core RDBMS Vulnerability

Vulnerebility

8.9.2017

Oracle Identity Manager CVE-2012-0532 Remote Vulnerability

Vulnerebility

8.9.2017

Oracle E-Business Suite CVE-2012-0542 Remote Oracle iStore Vulnerability

Vulnerebility

8.9.2017

New Dridex Phishing Campaign Delivers Fake Accounting Invoices

Threatpost

8.9.2017

Microsoft Won’t Fix Security Bypass Vulnerability in Edge

Threatpost

8.9.2017

Equifax breach

SANS News

8.9.2017

YASRV (Yet Another Struts RCE Vulnerability) yes a different one from yesterday

SANS News

8.9.2017

VBS.Forbiks

Malware

8.9.2017

EzBan 5.3 - 'id' Parameter SQL Injection 

Exploit

8.9.2017

EzInvoice 6.02 - SQL Injection 

Exploit

8.9.2017

Roteador Wireless Intelbras WRN150 - Cross-Site Scripting 

Exploit

8.9.2017

Huawei HG255s - Directory Traversal 

Exploit

8.9.2017

Pwning the Dlink 850L routers and abusing the MyDlink Cloud protocol 2017-09-07

Bugtraq

8.9.2017

August 2017 - SourceTree - Critical Security Advisory 2017-09-06

Bugtraq

8.9.2017

SECURITY] DSA 3965-1] file security update 2017-09-05

Bugtraq

7.9.2017

Oracle PeopleSoft Products CVE-2011-2315 Remote PeopleSoft Enterprise PeopleTools Vulnerability

Vulnerebility

7.9.2017

Oracle Fusion Middleware CVE-2012-0522 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Outside In Technology CVE-2012-0557 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Sun Products Suite CVE-2011-3507 Remote Oracle Communications Unified Vulnerability

Vulnerebility

7.9.2017

Oracle E-Business Suite CVE-2012-0513 Remote Oracle Application Object Library Vulnerabilty

Vulnerebility

7.9.2017

Oracle PeopleSoft CVE-2011-3529 Remote PeopleSoft Enterprise HRMS Vulnerability

Vulnerebility

7.9.2017

Oracle Sun Products Suite CVE-2011-2292 Local Solaris Vulnerability

Vulnerebility

7.9.2017

Oracle Outside In Technology CVE-2012-0555 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Database Server CVE-2012-0519 Remote Core RDBMS Vulnerability

Vulnerebility

7.9.2017

Oracle Identity Manager CVE-2012-0532 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle E-Business Suite CVE-2012-0542 Remote Oracle iStore Vulnerability

Vulnerebility

7.9.2017

Oracle E-Business Suite CVE-2012-0537 Remote Oracle Application Object Library Vulnerability

Vulnerebility

7.9.2017

Oracle E-Business Suite CVE-2012-0535 Remote Oracle Application Object Library Vulnerability

Vulnerebility

7.9.2017

Oracle Outside In Technology CVE-2012-0554 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Outside In Technology CVE-2012-0556 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Database Server CVE-2012-1708 Remote Application Express Vulnerability

Vulnerebility

7.9.2017

Oracle Database Server CVE-2012-0520 Remote Enterprise Manager Base Platform Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Universal Bank CVE-2012-0571 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle BI Publisher CVE-2012-0543 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Direct Banking CVE-2012-1707 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Identity Manager Connector CVE-2012-0515 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Universal Banking CVE-2012-0567 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Universal Banking CVE-2012-0545 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Universal Banking CVE-2012-0575 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Direct Banking CVE-2012-0576 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Direct Banking CVE-2012-1706 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle Solaris CVE-2012-1698 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle FLEXCUBE Universal Banking CVE-2012-0546 Remote Vulnerability

Vulnerebility

7.9.2017

Oracle E-Business Suite CVE-2011-2303 Remote Oracle Application Object Library Vulnerability

Vulnerebility

7.9.2017

Oracle Supply Chain Products Suite CVE-2011-3532 Remote Oracle Agile Product Supplier Collaboration 

Vulnerebility

6.9.2017

Apache Struts CVE-2017-9805 Remote Code Execution Vulnerability

Vulnerebility

6.9.2017

TYPO3 'fileDenyPattern' Arbitrary Code Execution Vulnerability

Vulnerebility

6.9.2017

GNU glibc CVE-2017-1000366 Local Memory Corruption Vulnerability

Vulnerebility

6.9.2017

Sudo CVE-2017-1000368 Incomplete Fix Local Privilege Escalation Vulnerability 

Vulnerebility

6.9.2017

Linux Kernel CVE-2017-1000364 Local Memory Corruption Vulnerability

Vulnerebility

6.9.2017

Linux Kernel 'net/ipv6/output_core.c' Local Denial of Service Vulnerability

Vulnerebility

6.9.2017

Oracle Java SE CVE-2017-10193 Remote Security Vulnerability

Vulnerebility

6.9.2017

TYPO3 Information Disclosure Vulnerability

Vulnerebility

6.9.2017

TYPO3 Unspecified Cross Site Scripting Vulnerability

Vulnerebility

6.9.2017

Apache Struts CVE-2017-9804 Incomplete Fix Denial of Service Vulnerability

Vulnerebility

6.9.2017

Apache Struts CVE-2017-9793 Denial of Service Vulnerability

Vulnerebility

6.9.2017

Google Chrome Prior to 61.0.3163.79 Multiple Security Vulnerabilities

Vulnerebility

6.9.2017

TYPO3 User Permission Handling Information Disclosure Vulnerability

Vulnerebility

6.9.2017

GNU Binutils CVE-2017-14130 Heap Buffer Overflow Vulnerability

Vulnerebility

6.9.2017

OpenJPEG CVE-2017-14040 Memory Corruption Vulnerability

Vulnerebility

6.9.2017

OpenJPEG 'bin/jp2/convert.c' Remote Stack Based Buffer Overflow Vulnerability

Vulnerebility

6.9.2017

OpenJPEG 'mqc.c' Remote Heap Based Buffer Overflow Vulnerability

Vulnerebility

6.9.2017

RubyGems CVE-2017-0901 Local Arbitrary File Overwrite Vulnerability

Vulnerebility

6.9.2017

RubyGems CVE-2017-0900 Denial of Service Vulnerability

Vulnerebility

6.9.2017

Openstack instack-undercloud CVE-2017-7549 Insecure Temporary File Handling Vulnerability

Vulnerebility

6.9.2017

FasterXML Jackson-databind CVE-2017-7525 Deserialization Remote Code Execution Vulnerability

Vulnerebility

6.9.2017

Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability

Vulnerebility

6.9.2017

FFmpeg CVE-2017-14058 Denial of Service Vulnerability

Vulnerebility

6.9.2017

FFmpeg CVE-2017-14056 Denial of Service Vulnerability

Vulnerebility

6.9.2017

FFmpeg 'libavformat/rmdec.c' Denial of Service Vulnerability

Vulnerebility

6.9.2017

FFmpeg CVE-2017-14055 Denial of Service Vulnerability

Vulnerebility

6.9.2017

Palo Alto Networks PAN-OS CVE-2017-12416 Cross Site Scripting Vulnerability

Vulnerebility

6.9.2017

Pivotal Single Sign-On for PCF CVE-2017-8044 Cross Site Scripting Vulnerability

Vulnerebility

6.9.2017

Pivotal Single Sign-On for PCF CVE-2017-8040 XML External Entity Injection Vulnerability

Vulnerebility

6.9.2017

Pivotal Single Sign-On for PCF CVE-2017-8041 Cross Site Scripting Vulnerability

Vulnerebility

5.9.2017

Linux Kernel 'net/ipv6/output_core.c' Local Denial of Service Vulnerability

Vulnerebility

5.9.2017

Oracle Java SE CVE-2017-10193 Remote Security Vulnerability

Vulnerebility

5.9.2017

OpenJPEG CVE-2017-14040 Memory Corruption Vulnerability

Vulnerebility

5.9.2017

OpenJPEG 'bin/jp2/convert.c' Remote Stack Based Buffer Overflow Vulnerability

Vulnerebility

5.9.2017

OpenJPEG 'mqc.c' Remote Heap Based Buffer Overflow Vulnerability

Vulnerebility

5.9.2017

RubyGems CVE-2017-0901 Local Arbitrary File Overwrite Vulnerability

Vulnerebility

3.9.2017

OpenJPEG CVE-2017-14040 Memory Corruption Vulnerability

Vulnerebility

3.9.2017

OpenJPEG 'bin/jp2/convert.c' Remote Stack Based Buffer Overflow Vulnerability

Vulnerebility

3.9.2017

OpenJPEG 'mqc.c' Remote Heap Based Buffer Overflow Vulnerability

Vulnerebility

3.9.2017

RubyGems CVE-2017-0901 Local Arbitrary File Overwrite Vulnerability

Vulnerebility

3.9.2017

RubyGems CVE-2017-0900 Denial of Service Vulnerability

Vulnerebility

3.9.2017

Openstack instack-undercloud CVE-2017-7549 Insecure Temporary File Handling Vulnerability

Vulnerebility

3.9.2017

FasterXML Jackson-databind CVE-2017-7525 Deserialization Remote Code Execution Vulnerability

Vulnerebility

3.9.2017

Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability

Vulnerebility

3.9.2017

RubyGems CVE-2017-0899 Security Bypass Vulnerability

Vulnerebility

3.9.2017

Siemens 7KM PAC Switched Ethernet PROFINET Expansion Module Denial of Service Vulnerability

Vulnerebility

3.9.2017

Multiple Siemens Products CVE-2017-12069 XML External Entity Injection Vulnerability

Vulnerebility

3.9.2017

Multiple Automated Logic Corporation CVE-2016-5795 XML External Entity Injection Vulnerability

Vulnerebility

3.9.2017

Moxa SoftCMS CVE-2017-50137 SQL Injection Vulnerability

Vulnerebility

3.9.2017

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability

Vulnerebility

3.9.2017

GraphicsMagick CVE-2017-13777 Denial of Service Vulnerability

Vulnerebility

3.9.2017

GraphicsMagick CVE-2017-13776 Denial of Service Vulnerability

Vulnerebility

3.9.2017

OpenJPEG 'pi.c' Divide-By-Zero Multiple Denial of Service Vulnerabilities

Vulnerebility

3.9.2017

Linux Kernel CVE-2017-14051 Local Integer Overflow Vulnerability

Vulnerebility

3.9.2017

GraphicsMagick CVE-2017-13775 Denial of Service Vulnerability

Vulnerebility

3.9.2017

ImageMagick CVE-2017-13768 Denial of Service Vulnerability

Vulnerebility

3.9.2017

OpenJPEG CVE-2016-10507 Local Integer Overflow Vulnerability

Vulnerebility

3.9.2017

Multiple OPW Products ICSA-17-243-04 SQL Injection and Authentication Bypass Vulnerabilities

Vulnerebility

3.9.2017

Siemens LOGO!8 BM CVE-2017-12735 Man in the Middle Security Bypass Vulnerability

Vulnerebility

3.9.2017

Siemens LOGO!8 BM CVE-2017-12734 Information Disclosure Vulnerability

Vulnerebility

3.9.2017

Drupal H5P module Module DRUPAL-SA-CONTRIB-2017-071 Cross Site Scripting Vulnerability

Vulnerebility

3.9.2017

Ledger CLI CVE-2017-2808 Remote Code Execution Vulnerability

Vulnerebility

3.9.2017

Wireshark Modbus Dissector CVE-2017-13764 Denial of Service Vulnerability

Vulnerebility

3.9.2017

Drupal 'Commerce Invoices' Module SQL Injection and Cross-Site Scripting Vulnerabilities

Vulnerebility

3.9.2017

Ledger CLI CVE-2017-2807 Remote Code Execution Vulnerability

Vulnerebility

3.9.2017

gdk-pixbuf Integer Overflow and Heap Based Buffer Overflow Vulnerabilities

Vulnerebility

1.9.2017

Openstack instack-undercloud CVE-2017-7549 Insecure Temporary File Handling Vulnerability

Vulnerebility

1.9.2017

FasterXML Jackson-databind CVE-2017-7525 Deserialization Remote Code Execution Vulnerability

Vulnerebility

1.9.2017

Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability

Vulnerebility

1.9.2017

Siemens 7KM PAC Switched Ethernet PROFINET Expansion Module Denial of Service Vulnerability

Vulnerebility

1.9.2017

Multiple Siemens Products CVE-2017-12069 XML External Entity Injection Vulnerability

Vulnerebility

1.9.2017

Multiple Automated Logic Corporation CVE-2016-5795 XML External Entity Injection Vulnerability

Vulnerebility

1.9.2017

Moxa SoftCMS CVE-2017-50137 SQL Injection Vulnerability

Vulnerebility

1.9.2017

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability

Vulnerebility

1.9.2017

OpenJPEG 'mqc.c' Remote Heap Based Buffer Overflow Vulnerability

Vulnerebility

1.9.2017

Multiple OPW Products ICSA-17-243-04 SQL Injection and Authentication Bypass Vulnerabilities

Vulnerebility

1.9.2017

Siemens LOGO!8 BM CVE-2017-12735 Man in the Middle Security Bypass Vulnerability

Vulnerebility

1.9.2017

Siemens LOGO!8 BM CVE-2017-12734 Information Disclosure Vulnerability

Vulnerebility

1.9.2017

OpenJPEG CVE-2017-14040 Memory Corruption Vulnerability

Vulnerebility

1.9.2017

Drupal H5P module Module DRUPAL-SA-CONTRIB-2017-071 Cross Site Scripting Vulnerability

Vulnerebility

1.9.2017

Ledger CLI CVE-2017-2808 Remote Code Execution Vulnerability

Vulnerebility

1.9.2017

Wireshark Modbus Dissector CVE-2017-13764 Denial of Service Vulnerability

Vulnerebility

1.9.2017

Drupal 'Commerce Invoices' Module SQL Injection and Cross-Site Scripting Vulnerabilities

Vulnerebility

1.9.2017

Ledger CLI CVE-2017-2807 Remote Code Execution Vulnerability

Vulnerebility

1.9.2017

gdk-pixbuf Integer Overflow and Heap Based Buffer Overflow Vulnerabilities

Vulnerebility

1.9.2017

QEMU 'hw/display/vga.c' Denial of Service Vulnerability

Vulnerebility

1.9.2017

Linux kernel CVE-2017-11176 Local Denial of Service Vulnerability

Vulnerebility

1.9.2017

Linux Kernel 'brcmf_cfg80211_mgmt_tx()' Function Local Memory Corruption Vulnerability

Vulnerebility

1.9.2017

Linux Kernel 'securelevel/secureboot' Local Security Bypass Vulnerability

Vulnerebility

1.9.2017

Linux Kernel CVE-2017-7495 Local Information Disclosure Vulnerability

Vulnerebility

1.9.2017

PHP LibGD CVE-2016-3074 Heap Buffer Overflow Vulnerability

Vulnerebility

1.9.2017

Linux kernel 'net/ipx/af_ipx.c' Use After Free Local Denial of Service Vulnerability

Vulnerebility

1.9.2017

Nginx CVE-2017-7529 Remote Integer Overflow Vulnerability

Vulnerebility

1.9.2017

Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

1.9.2017

Linux Kernel CVE-2017-7261 Local Denial of Service Vulnerability

Vulnerebility

1.9.2017

Linux Kernel Multiple Information Disclosure Vulnerabilities

Vulnerebility

7.9.2017

Tor Project Brings Security Slider Feature to Android App Orfox

Threatpost

7.9.2017

IDN Homograph Attack Spreading Betabot Backdoor

Threatpost

7.9.2017

13 Critical Remote Code Execution Bugs Fixed in September Android Update

Threatpost

6.9.2017

Patch Released for Critical Apache Struts Bug

Threatpost

6.9.2017

Four Million Time Warner Cable Records Left on Misconfigured AWS S3

Threatpost

6.9.2017

Military Contractor’s Vendor Leaks Resumes in Misconfigured AWS S3

Threatpost

3.9.2017

‘HoeflerText’ Popups Target Browsers With RAT and Locky Ransomware

Threatpost

3.9.2017

No Fix Planned For LabVIEW Bug, Says National Instruments

Threatpost

1.9.2017

Bugs in Arris Modems Distributed by AT&T Vulnerable to Trivial Attacks

Threatpost

1.9.2017

FDA Recalls 465K Pacemakers Tied to MedSec Research

Threatpost

1.9.2017

Reflected XSS Bug Patched in Popular WooCommerce WordPress Plugin

Threatpost

7.9.2017

Modern Web Application Penetration Testing , Hash Length Extension Attacks

SANS News

6.9.2017

Struts vulnerability patch released by apache, patch now

SANS News

6.9.2017

The Mirai Botnet: A Look Back and Ahead At What's Next

SANS News

5.9.2017

It is a resume - Part 2

SANS News

5.9.2017

The Mirai Botnet: A Look Back and Ahead At What's Next

SANS News

4.9.2017

It is a resume - Part 1

SANS News

3.9.2017

AutoIT based malware back in the wild

SANS News

1.9.2017

Malspam pushing Locky ransomware tries HoeflerText notifications for Chrome and FireFox

SANS News

1.9.2017

Backdoor.Vodiboti

Malware

1.9.2017

Ransom.Lukitus

Malware

1.9.2017

Trojan.Turbear

Malware

1.9.2017

Trojan.Downblocker

Malware

7.9.2017

Apache Struts 2.5 - Remote Code Execution 

Exploit

7.9.2017

Ultimate HR System <= 1.2 - Directory Traversal / Cross-Site Scripting 

Exploit

7.9.2017

Gh0st Client - Buffer Overflow (Metasploit) 

Exploit

7.9.2017

Ultimate HR System <= 1.2 - Directory Traversal / Cross-Site Scripting 

Exploit

7.9.2017

Online Invoice System 3.0 - SQL Injection 

Exploit

6.9.2017

Cory Support - 'pr' Parameter SQL Injection 

Exploit

6.9.2017

Advertiz PHP Script 0.2 - Cross-Site Request Forgery (Update Admin) 

Exploit

6.9.2017

Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery (Update Admin) 

Exploit

6.9.2017

Pay Banner Text Link Ad 1.0.6.1 - SQL Injection 

Exploit

6.9.2017

Jungo DriverWizard WinDriver - Kernel Pool Overflow 

Exploit

6.9.2017

Jungo DriverWizard WinDriver - Kernel Out-of-Bounds Write Privilege Escalation 

Exploit

6.9.2017

Tor - Linux Sandbox Breakout via X11 

Exploit

6.9.2017

Mongoose Web Server 6.5 - Cross-Site Request Forgery / Remote Code Execution 

Exploit

6.9.2017

A2billing 2.x - Backup File Download / Remote Code Execution 

Exploit

6.9.2017

iGreeting Cards 1.0 - SQL Injection 

Exploit

6.9.2017

WordPress Plugin Participants Database < 1.7.5.10 - Cross-Site Scripting 

Exploit

6.9.2017

The Car Project 1.0 - SQL Injection 

Exploit

5.9.2017

Mongoose Web Server 6.5 - Cross-Site Request Forgery / Remote Code Execution 

Exploit

5.9.2017

A2billing 2.x - Backup File Download / Remote Code Execution 

Exploit

5.9.2017

iGreeting Cards 1.0 - SQL Injection 

Exploit

5.9.2017

WordPress Plugin Participants Database < 1.7.5.10 - Cross-Site Scripting 

Exploit

5.9.2017

The Car Project 1.0 - SQL Injection 

Exploit

5.9.2017

Joomla! Component Survey Force Deluxe 3.2.4 - 'invite' Parameter SQL Injection 

Exploit

4.9.2017

FineCMS 1.0 - Multiple Vulnerabilities 

Exploit

4.9.2017

Lotus Notes Diagnostic Tool 8.5/9.0 - Privilege Escalation 

Exploit

4.9.2017

IBM Notes 8.5.x/9.0.x - Denial of Service (2) 

Exploit

4.9.2017

IBM Notes 8.5.x/9.0.x - Denial of Service 

Exploit

4.9.2017

Wireless Repeater BE126 - Remote Code Execution 

Exploit

4.9.2017

Symantec Messaging Gateway < 10.6.3-267 - Cross-Site Request Forgery 

Exploit

4.9.2017

Wireless Repeater BE126 - Remote Code Execution 

Exploit

4.9.2017

RubyGems < 2.6.13 - Arbitrary File Overwrite 

Exploit

4.9.2017

Dup Scout Enterprise 9.9.14 - 'Input Directory' Local Buffer Overflow 

Exploit

3.9.2017

Motorola Bootloader - Kernel Cmdline Injection Secure Boot and Device Locking Bypass 

Exploit

3.9.2017

OpenJPEG - 'mqc.c' Heap-Based Buffer Overflow 

Exploit

3.9.2017

FineCMS 1.0 - Multiple Vulnerabilities 

Exploit

3.9.2017

IBM Notes 8.5.x/9.0.x - Denial of Service 

Exploit

7.9.2017

August 2017 - SourceTree - Critical Security Advisory 2017-09-06

Bugtraq

7.9.2017

SECURITY] DSA 3965-1] file security update 2017-09-05

Bugtraq

7.9.2017

security bulletin] HPESBUX03772 rev.1 - HP-UX BIND Service Running Named, Multiple Vulnerabilities 2017-09-05

Bugtraq

7.9.2017

CVE-2017-11567 Mongoose Web Server v6.5 CSRF Command Execution ( apparitionsec @ gmail / hyp3rlinx ) 2017-09-05

Bugtraq

6.9.2017

August 2017 - SourceTree - Critical Security Advisory 2017-09-06

Bugtraq

6.9.2017

SECURITY] DSA 3965-1] file security update 2017-09-05

Bugtraq

6.9.2017

security bulletin] HPESBUX03772 rev.1 - HP-UX BIND Service Running Named, Multiple Vulnerabilities 2017-09-05

Bugtraq

6.9.2017

CVE-2017-11567 Mongoose Web Server v6.5 CSRF Command Execution ( apparitionsec @ gmail / hyp3rlinx ) 2017-09-05

Bugtraq

6.9.2017

Wibu Systems AG CodeMeter 6.50 - Persistent XSS Vulnerability 2017-09-04

Bugtraq

6.9.2017

SECURITY] DSA 3963-1] mercurial security update 2017-09-04

Bugtraq

5.9.2017

CVE-2017-11567 Mongoose Web Server v6.5 CSRF Command Execution
 ( apparitionsec @ gmail / hyp3rlinx ) 2017-09-05

Bugtraq

5.9.2017

Wibu Systems AG CodeMeter 6.50 - Persistent XSS Vulnerability 2017-09-04

Bugtraq

5.9.2017

SECURITY] DSA 3963-1] mercurial security update 2017-09-04

Bugtraq

5.9.2017

SECURITY] DSA 3962-1] strongswan security update 2017-09-03

Bugtraq

5.9.2017

SECURITY] DSA 3961-1] libgd2 security update 2017-09-03

Bugtraq

5.9.2017

security bulletin] HPESBGN03765 rev.2 - HPE LoadRunner and HPE Performance Center,
Remote Disclosure of Information 2017-08-31

Bugtraq

5.9.2017

security bulletin] HPESBGN03767 rev.1 - HPE Operations Orchestration,
Remote Code Execution 2017-08-31

Bugtraq

5.9.2017

SECURITY] DSA 3957-1] ffmpeg security update 2017-08-28

Bugtraq

1.9.2017

security bulletin] HPESBGN03765 rev.2 - HPE LoadRunner and HPE Performance Center,
Remote Disclosure of Information 2017-08-31

Bugtraq

1.9.2017

security bulletin] HPESBGN03767 rev.1 - HPE Operations Orchestration, Remote Code Execution 2017-08-31

Bugtraq

1.9.2017

SECURITY] DSA 3957-1] ffmpeg security update 2017-08-28

Bugtraq

1.9.2017

security bulletin] HPESBHF03770 rev.1 - HPE Comware 7 MSR Routers using PHP, Go, Apache Http Server, and Tomcat,
Remote Arbitrary Code Execution 2017-08-28

Bugtraq

1.9.2017

SECURITY] DSA 3956-1] connman security update 2017-08-27

Bugtraq

1.9.2017

US Government Site Was Hosting Ransomware

Threatpost

31.8.2017

Git <= 2.7.5 - Command Injection (Metasploit) 

Exploit

31.8.2017

Joomla Component Huge-IT Video Gallery 1.0.9 - SQL Injection 

Exploit

31.8.2017

Joomla Component Huge-IT Portfolio Gallery Plugin 1.0.7 - SQL Injection 

Exploit

31.8.2017

Joomla! Component Quiz Deluxe 3.7.4 - SQL Injection 

Exploit

31.8.2017

Joomla! Component Joomanager 2.0.0 - Arbitrary File Download 

Exploit

31.8.2017

iBall Baton 150M Wireless Router - Authentication Bypass 

Exploit

31.8.2017

Invoice Manager 3.1 - Cross-Site Request Forgery (Add Admin) 

Exploit

31.8.2017

Linux/x86 - Fork Bomb Shellcode (9 bytes) 

Exploit

31.8.2017

Remote SOC Workers Concerns

SANS News

31.8.2017

Intel Confirms Its Much-Loathed ME Feature Has A Kill Switch

Threatpost

31.8.2017

Turla APT Used WhiteBear Espionage Tools Against Defense Industry, Embassies

Threatpost

31.8.2017

New Locky Variant ‘IKARUSdilapidated’ Strikes Again

Threatpost

31.8.2017

Siemens Fixes Session Hijacking Bug in LOGO!, Warns of Man-in-the-Middle Attacks

Threatpost

31.8.2017

Openstack instack-undercloud CVE-2017-7549 Insecure Temporary File Handling Vulnerability

Vulnerebility

31.8.2017

FasterXML Jackson-databind CVE-2017-7525 Deserialization Remote Code Execution Vulnerability

Vulnerebility

31.8.2017

Apache Batik CVE-2017-5662 XML External Entity Information Disclosure Vulnerability

Vulnerebility

31.8.2017

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability

Vulnerebility

31.8.2017

Ledger CLI CVE-2017-2808 Remote Code Execution Vulnerability

Vulnerebility

31.8.2017

Wireshark Modbus Dissector CVE-2017-13764 Denial of Service Vulnerability

Vulnerebility

31.8.2017

Drupal 'Commerce Invoices' Module SQL Injection and Cross-Site Scripting Vulnerabilities

Vulnerebility

31.8.2017

Ledger CLI CVE-2017-2807 Remote Code Execution Vulnerability

Vulnerebility

31.8.2017

gdk-pixbuf Integer Overflow and Heap Based Buffer Overflow Vulnerabilities

Vulnerebility

31.8.2017

QEMU 'hw/display/vga.c' Denial of Service Vulnerability

Vulnerebility

31.8.2017

Linux kernel CVE-2017-11176 Local Denial of Service Vulnerability

Vulnerebility

31.8.2017

Linux Kernel 'brcmf_cfg80211_mgmt_tx()' Function Local Memory Corruption Vulnerability

Vulnerebility

31.8.2017

Linux Kernel 'securelevel/secureboot' Local Security Bypass Vulnerability

Vulnerebility

31.8.2017

Linux Kernel CVE-2017-7495 Local Information Disclosure Vulnerability

Vulnerebility

31.8.2017

PHP LibGD CVE-2016-3074 Heap Buffer Overflow Vulnerability

Vulnerebility

31.8.2017

Linux kernel 'net/ipx/af_ipx.c' Use After Free Local Denial of Service Vulnerability

Vulnerebility

31.8.2017

Nginx CVE-2017-7529 Remote Integer Overflow Vulnerability

Vulnerebility

31.8.2017

Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

31.8.2017

Linux Kernel CVE-2017-7261 Local Denial of Service Vulnerability

Vulnerebility

31.8.2017

Linux Kernel Multiple Information Disclosure Vulnerabilities

Vulnerebility

31.8.2017

Linux Kernel CVE-2017-7273 Local Denial of Service Vulnerability

Vulnerebility

31.8.2017

FFmpeg 'libavcodec/dnxhddec.c' Denial of Service Vulnerability

Vulnerebility

31.8.2017

FFmpeg CVE-2017-9608 NULL pointer Dereference Remote Denial of Service Vulnerability

Vulnerebility

31.8.2017

FFmpeg 'libavcodec/apedec.c' Denial of Service Vulnerability

Vulnerebility

31.8.2017

FFmpeg 'libavformat/rtmppkt.c' Denial of Service Vulnerability

Vulnerebility

31.8.2017

FFmpeg CVE-2017-9993 Arbitrary File Read Vulnerability

Vulnerebility

31.8.2017

Wireshark IrCOMM Dissector CVE-2017-13765 Denial of Service Vulnerability

Vulnerebility

31.8.2017

Wireshark MSDP Dissector CVE-2017-13767 Denial of Service Vulnerability

Vulnerebility

31.8.2017

Apache Atlas CVE-2017-3151 HTML Injection Vulnerability

Vulnerebility

31.8.2017

Wireshark Profinet I/O Dissector CVE-2017-13766 Denial of Service Vulnerability

Vulnerebility

30.8.2017

QNAP Transcode Server - Command Execution (Metasploit) 

Exploit

30.8.2017

NethServer 7.3.1611 - Cross-Site Request Forgery / Cross-Site Scripting 

Exploit

30.8.2017

NethServer 7.3.1611 - Cross-Site Request Forgery (Create User / Enable SSH Access) 

Exploit

30.8.2017

D-Link DIR-600 - Authentication Bypass 

Exploit

30.8.2017

Car or Cab Booking Script - Authentication Bypass 

Exploit

30.8.2017

PHP Appointment Booking Script - Authentication Bypass 

Exploit

30.8.2017

User Login and Management - Multiple Vulnerabilities 

Exploit

30.8.2017

PHP Video Battle Script 1.0 - SQL Injection 

Exploit

30.8.2017

Easy Vedio to PSP Converter 1.6.20 - Buffer Overflow (SEH) 

Exploit

30.8.2017

Trojan.Downblocker

Malware

30.8.2017

OSX.Demsty

Malware

30.8.2017

Ransom.Defray

Malware

30.8.2017

Backdoor.Notestuk

Malware

30.8.2017

Second Google Chrome Extension Banker Malware in Two Weeks

SANS News

30.8.2017

Google Reminding Admins HTTP Pages Will Be Marked ‘Not Secure’ in October

Threatpost

30.8.2017

Researchers Figure Out How to Blind ISPs from Smart Home Device Traffic

Threatpost

30.8.2017

Revamped Nukebot Malware Changes Targets, Adds Functions

Threatpost

30.8.2017

Telnet Credential Leak Reinforces Bleak State of IoT Security

Threatpost

30.8.2017

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability

Vulnerebility

30.8.2017

Linux kernel CVE-2017-11176 Local Denial of Service Vulnerability

Vulnerebility

30.8.2017

Linux Kernel 'brcmf_cfg80211_mgmt_tx()' Function Local Memory Corruption Vulnerability

Vulnerebility

30.8.2017

Linux Kernel 'securelevel/secureboot' Local Security Bypass Vulnerability

Vulnerebility

30.8.2017

Linux Kernel CVE-2017-7495 Local Information Disclosure Vulnerability

Vulnerebility

30.8.2017

PHP LibGD CVE-2016-3074 Heap Buffer Overflow Vulnerability

Vulnerebility

30.8.2017

Linux kernel 'net/ipx/af_ipx.c' Use After Free Local Denial of Service Vulnerability

Vulnerebility

30.8.2017

Nginx CVE-2017-7529 Remote Integer Overflow Vulnerability

Vulnerebility

30.8.2017

Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

30.8.2017

Linux Kernel CVE-2017-7261 Local Denial of Service Vulnerability

Vulnerebility

30.8.2017

Linux Kernel Multiple Information Disclosure Vulnerabilities

Vulnerebility

30.8.2017

Linux Kernel CVE-2017-7273 Local Denial of Service Vulnerability

Vulnerebility

30.8.2017

FFmpeg 'libavcodec/dnxhddec.c' Denial of Service Vulnerability

Vulnerebility

30.8.2017

FFmpeg CVE-2017-9608 NULL pointer Dereference Remote Denial of Service Vulnerability

Vulnerebility

30.8.2017

FFmpeg 'libavcodec/apedec.c' Denial of Service Vulnerability

Vulnerebility

30.8.2017

FFmpeg 'libavformat/rtmppkt.c' Denial of Service Vulnerability

Vulnerebility

30.8.2017

FFmpeg CVE-2017-9993 Arbitrary File Read Vulnerability

Vulnerebility

30.8.2017

LibTIFF 'tif_dirwrite.c' Multiple Denial of Service Vulnerabilities

Vulnerebility

30.8.2017

Multiple Abbott Pacemakers Multiple Security Vulnerabilities

Vulnerebility

30.8.2017

AzeoTech DAQFactory ICSA-17-241-01 Multiple Local Security Vulnerability

Vulnerebility

30.8.2017

SQLite CVE-2017-13685 Denial of Service Vulnerability

Vulnerebility

30.8.2017

National Instruments LabVIEW CVE-2017-2779 Memory Corruption Vulnerability

Vulnerebility

30.8.2017

Akeo Consulting Rufus CVE-2017-13083 Arbitrary Code Execution Vulnerability

Vulnerebility

30.8.2017

JasPer Multiple Denial of Service Vulnerabilities

Vulnerebility

30.8.2017

GraphicsMagick CVE-2017-13736 Multiple Denial of Service Vulnerabilities

Vulnerebility

30.8.2017

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability

Vulnerebility

30.8.2017

Oracle Java SE and JRockit CVE-2017-10243 Remote Security Vulnerability

Vulnerebility

30.8.2017

Oracle Java SE and JRockit CVE-2017-10115 Remote Security Vulnerability

Vulnerebility

30.8.2017

Oracle Java SE and JRockit CVE-2017-10116 Remote Security Vulnerability

Vulnerebility

30.8.2017

Oracle Java SE CVE-2017-10107 Remote Security Vulnerability

Vulnerebility

29.8.2017

SECURITY] DSA 3957-1] ffmpeg security update 2017-08-28

Bugtraq

29.8.2017

security bulletin] HPESBHF03770 rev.1 - HPE Comware 7 MSR Routers using PHP, Go,
Apache Http Server, and Tomcat, Remote Arbitrary Code Execution 2017-08-28

Bugtraq

29.8.2017

NethServer 7.3.1611 - Cross-Site Request Forgery / Cross-Site Scripting 

Exploit

29.8.2017

NethServer 7.3.1611 - Cross-Site Request Forgery (Create User / Enable SSH Access) 

Exploit

29.8.2017

D-Link DIR-600 - Authentication Bypass 

Exploit

29.8.2017

Car or Cab Booking Script - Authentication Bypass 

Exploit

29.8.2017

PHP Appointment Booking Script - Authentication Bypass 

Exploit

29.8.2017

User Login and Management - Multiple Vulnerabilities 

Exploit

29.8.2017

PHP Video Battle Script 1.0 - SQL Injection 

Exploit

29.8.2017

Easy Vedio to PSP Converter 1.6.20 - Buffer Overflow (SEH) 

Exploit

29.8.2017

An Update On DVR Malware: A DVR Torture Chamber

SANS News

29.8.2017

Fraudulent Donations Lead to Disbanding of Hutchins Legal Defense Fund

Threatpost

29.8.2017

CEOs Resign from Trump’s Cybersecurity Commission

Threatpost

29.8.2017

Anonymous Messaging App Sarahah to Halt Collection of User Data With Next Update

Threatpost

29.8.2017

Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

29.8.2017

Linux Kernel CVE-2017-7495 Local Information Disclosure Vulnerability

Vulnerebility

29.8.2017

Linux kernel 'net/ipx/af_ipx.c' Use After Free Local Denial of Service Vulnerability

Vulnerebility

29.8.2017

Linux Kernel CVE-2017-7261 Local Denial of Service Vulnerability

Vulnerebility

29.8.2017

Linux Kernel Multiple Information Disclosure Vulnerabilities

Vulnerebility

29.8.2017

Linux Kernel CVE-2017-7273 Local Denial of Service Vulnerability

Vulnerebility

29.8.2017

FFmpeg 'libavcodec/dnxhddec.c' Denial of Service Vulnerability

Vulnerebility

29.8.2017

FFmpeg CVE-2017-9608 NULL pointer Dereference Remote Denial of Service Vulnerability

Vulnerebility

29.8.2017

FFmpeg 'libavcodec/apedec.c' Denial of Service Vulnerability

Vulnerebility

29.8.2017

FFmpeg 'libavformat/rtmppkt.c' Denial of Service Vulnerability

Vulnerebility

29.8.2017

FFmpeg CVE-2017-9993 Arbitrary File Read Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10243 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10115 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10116 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10107 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10108 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10102 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10105 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10096 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10067 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10109 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10053 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10101 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10110 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10087 Remote Security Vulnerability

Vulnerebility

29.8.2017

Multiple OpenStack Products CVE-2017-12440 Security Bypass Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10176 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE and JRockit CVE-2017-10135 Remote Security Vulnerability

Vulnerebility

29.8.2017

Oracle Java SE CVE-2017-10090 Remote Security Vulnerability

Vulnerebility

28.8.2017

SECURITY] DSA 3956-1] connman security update 2017-08-27

Bugtraq

28.8.2017

Trend Micro Hosted Email Security (HES) - Email Interception and Direct Object Reference 2017-08-24

Bugtraq

28.8.2017

Dup Scout Enterprise 9.9.14 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Disk Savvy Enterprise 9.9.14 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Sync Breeze Enterprise 9.9.16 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Disk Pulse Enterprise 9.9.16 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Joomla! Component Photo Contest 1.0.2 - SQL Injection 

Exploit

28.8.2017

Joomla! Component OSDownloads 1.7.4 - SQL Injection 

Exploit

28.8.2017

AutoCar 1.1 - 'category' Parameter SQL Injection 

Exploit

28.8.2017

Joomla! Component Responsive Portfolio 1.6.1 - SQL Injection 

Exploit

28.8.2017

Matrimonial Script 2.7 - Authentication bypass 

Exploit

28.8.2017

Smart Chat 1.0.0 - SQL Injection 

Exploit

28.8.2017

FTP Made Easy PRO 1.2 - SQL Injection 

Exploit

28.8.2017

Easy RM RMVB to DVD Burner 1.8.11 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Easy DVD Creator 2.5.11 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Easy WMV/ASF/ASX to DVD Burner 2.3.11 - Buffer Overflow (SEH) 

Exploit

28.8.2017

Oracle Java SE and JRockit CVE-2017-10243 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10087 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10108 Remote Security Vulnerability

Vulnerebility

28.8.2017

Multiple OpenStack Products CVE-2017-12440 Security Bypass Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10107 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10109 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10176 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10096 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10135 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10090 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10067 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10074 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10110 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10198 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10116 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10101 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10102 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10053 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2017-10081 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10115 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE and JRockit CVE-2017-10118 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle MySQL Server CVE-2017-3641 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle MySQL Server CVE-2017-3653 Remote Security Vulnerability

Vulnerebility

28.8.2017

Oracle MySQL Server CVE-2017-3636 Local Security Vulnerability

Vulnerebility

28.8.2017

Oracle Java SE CVE-2012-5068 Remote Java Runtime Environment Vulnerability

Vulnerebility

28.8.2017

GraphicsMagick CVE-2017-11642 Denial of Service Vulnerability

Vulnerebility

28.8.2017

SAP NetWeaver Central Technical Configuration Unspecified Cross Site Scripting Vulnerability

Vulnerebility

28.8.2017

SAP NetWeaver Knowledge Management XML External Entity Injection Vulnerability

Vulnerebility

28.8.2017

IBM Rhapsody DM CVE-2016-8975 Cross Site Scripting Vulnerability

Vulnerebility

28.8.2017

FortiManager Multiple Security Vulnerabilities

Vulnerebility

27.8.2017

Apple iOS <= 10.3.1 - Kernel Exploit 

Exploit

27.8.2017

Malware analysis: searching for dots

SANS News

27.8.2017

Defray Ransomware Seen Targeting Education, Healthcare Industry

Threatpost

27.8.2017

Cryptocurrency Mining Malware Hosted in Amazon S3 Bucket

Threatpost

27.8.2017

Security Lacking in Previous AppleAVEDriver iOS Kernel Extension

Threatpost

27.8.2017

SAP NetWeaver Central Technical Configuration Unspecified Cross Site Scripting Vulnerability

Vulnerebility

27.8.2017

SAP NetWeaver Knowledge Management XML External Entity Injection Vulnerability

Vulnerebility

27.8.2017

IBM Rhapsody DM CVE-2016-8975 Cross Site Scripting Vulnerability

Vulnerebility

27.8.2017

FortiManager Multiple Security Vulnerabilities

Vulnerebility

27.8.2017

Cisco IOS and IOS XE Software Multiple Remote Code Execution Vulnerabilities

Vulnerebility

27.8.2017

ISC BIND CVE-2017-3142 Security Bypass Vulnerability

Vulnerebility

27.8.2017

ISC BIND CVE-2017-3143 Security Bypass Vulnerability

Vulnerebility

27.8.2017

augeas CVE-2017-7555 Memory Corruption Vulnerability

Vulnerebility

27.8.2017

Multiple Westermo Routers Multiple Security Vulnerabilities

Vulnerebility

27.8.2017

HP Integrated Lights-Out CVE-2017-12542 Multiple Unspecified Security Vulnerabilities

Vulnerebility

27.8.2017

Adobe Digital Editions CVE-2017-11272 XML Entity Parsing Information Disclosure Vulnerability

Vulnerebility

27.8.2017

Adobe Digital Editions APSB17-27 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

27.8.2017

Adobe Digital Editions CVE-2017-11274 Unspecified Buffer Overflow Vulnerability

Vulnerebility

27.8.2017

TeX Live CVE-2016-10243 Remote Code Execution Vulnerability

Vulnerebility

27.8.2017

Ansible CVE-2017-7481 Security Bypass Vulnerability

Vulnerebility

27.8.2017

Smb4K CVE-2017-8849 Local Privilege Escalation Vulnerability

Vulnerebility

27.8.2017

Google Android Libraries Multiple Remote Code Execution Vulnerabilities

Vulnerebility

27.8.2017

libxml2 CVE-2017-9049 Heap Buffer Overflow Vulnerability

Vulnerebility

27.8.2017

Libxml2 CVE-2017-9047 Buffer Overflow Vulnerability

Vulnerebility

27.8.2017

libxml2 CVE-2017-9050 Incomplete Fix Local Heap Based Buffer Overflow Vulnerability

Vulnerebility

27.8.2017

libxml2 CVE-2017-9048 Local Stack Buffer Overflow Vulnerability

Vulnerebility

27.8.2017

RedHat CVS CVE-2017-12836 Command Injection Vulnerability

Vulnerebility

27.8.2017

Multiple Cisco ADSL Routers CVE-2017-11587 Directory Traversal Vulnerability

Vulnerebility

27.8.2017

Linux Kernel CVE-2017-7558 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

27.8.2017

Cisco Meeting Server CVE-2017-6794 Local Command Injection and Privilege Escalation Vulnerabilities

Vulnerebility

27.8.2017

GNU Binutils CVE-2017-12967 Remote Denial of Service Vulnerability

Vulnerebility

27.8.2017

Trend Micro Smart Protection CVE-2017-11395 OS Command Injection Vulnerability

Vulnerebility

27.8.2017

libzip CVE-2017-12858 Double Free Local Denial of Service Vulnerability

Vulnerebility

27.8.2017

Multiple Automated Logic Corporation Products CVE-2017-9644 Local Privilege Escalation Vulnerability

Vulnerebility

25.8.2017

Trend Micro Hosted Email Security (HES) - Email Interception and Direct Object Reference 2017-08-24

Bugtraq

25.8.2017

security bulletin] HPESBHF03769 rev.1 - HPE Integrated Lights-out 4 (iLO 4) Multiple Remote Vulnerabilities 2017-08-23

Bugtraq

25.8.2017

SECURITY] DSA 3953-1] aodh security update 2017-08-23

Bugtraq

25.8.2017

Joomla! Component Bargain Product VM3 1.0 - 'product_id' Parameter SQL Injection 

Exploit

25.8.2017

Joomla! Component Price Alert 3.0.2 - 'product_id' Parameter SQL Injection 

Exploit

25.8.2017

Joomla! Component MasterForms 1.0.3 - SQL Injection 

Exploit

25.8.2017

Easy Video to iPod/MP4/PSP/3GP Converter 1.5.20 - Buffer Overflow (SEH) 

Exploit

25.8.2017

MP3 WAV to CD Burner 1.4.24 - Buffer Overflow (SEH) 

Exploit

25.8.2017

My Video Converter 1.5.24 - Buffer Overflow (SEH) 

Exploit

25.8.2017

Easy AVI DivX Converter 1.2.24 - Buffer Overflow (SEH) 

Exploit

25.8.2017

Malicious AutoIT script delivered in a self-extracting RAR file

SANS News

25.8.2017

Security Lacking in Previous AppleAVEDriver iOS Kernel Extension

Threatpost

25.8.2017

Adware Spreading Via Social Engineering, Facebook Messenger

Threatpost

25.8.2017

GraphicsMagick CVE-2017-11642 Denial of Service Vulnerability

Vulnerebility

25.8.2017

SAP NetWeaver Central Technical Configuration Unspecified Cross Site Scripting Vulnerability

Vulnerebility

25.8.2017

SAP NetWeaver Knowledge Management XML External Entity Injection Vulnerability

Vulnerebility

25.8.2017

IBM Rhapsody DM CVE-2016-8975 Cross Site Scripting Vulnerability

Vulnerebility

25.8.2017

FortiManager Multiple Security Vulnerabilities

Vulnerebility

25.8.2017

Cisco IOS and IOS XE Software Multiple Remote Code Execution Vulnerabilities

Vulnerebility

25.8.2017

ISC BIND CVE-2017-3142 Security Bypass Vulnerability

Vulnerebility

25.8.2017

ISC BIND CVE-2017-3143 Security Bypass Vulnerability

Vulnerebility

25.8.2017

augeas CVE-2017-7555 Memory Corruption Vulnerability

Vulnerebility

25.8.2017

Multiple Westermo Routers Multiple Security Vulnerabilities

Vulnerebility

25.8.2017

HP Integrated Lights-Out CVE-2017-12542 Multiple Unspecified Security Vulnerabilities

Vulnerebility

25.8.2017

Adobe Digital Editions CVE-2017-11272 XML Entity Parsing Information Disclosure Vulnerability

Vulnerebility

25.8.2017

Adobe Digital Editions APSB17-27 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

25.8.2017

Adobe Digital Editions CVE-2017-11274 Unspecified Buffer Overflow Vulnerability

Vulnerebility

25.8.2017

TeX Live CVE-2016-10243 Remote Code Execution Vulnerability

Vulnerebility

25.8.2017

Ansible CVE-2017-7481 Security Bypass Vulnerability

Vulnerebility

25.8.2017

Smb4K CVE-2017-8849 Local Privilege Escalation Vulnerability

Vulnerebility

25.8.2017

Google Android Libraries Multiple Remote Code Execution Vulnerabilities

Vulnerebility

25.8.2017

libxml2 CVE-2017-9049 Heap Buffer Overflow Vulnerability

Vulnerebility

25.8.2017

Libxml2 CVE-2017-9047 Buffer Overflow Vulnerability

Vulnerebility

25.8.2017

libxml2 CVE-2017-9050 Incomplete Fix Local Heap Based Buffer Overflow Vulnerability

Vulnerebility

25.8.2017

libxml2 CVE-2017-9048 Local Stack Buffer Overflow Vulnerability

Vulnerebility

25.8.2017

RedHat CVS CVE-2017-12836 Command Injection Vulnerability

Vulnerebility

25.8.2017

Multiple Cisco ADSL Routers CVE-2017-11587 Directory Traversal Vulnerability

Vulnerebility

25.8.2017

Linux Kernel CVE-2017-7558 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

25.8.2017

Cisco Meeting Server CVE-2017-6794 Local Command Injection and Privilege Escalation Vulnerabilities

Vulnerebility

25.8.2017

GNU Binutils CVE-2017-12967 Remote Denial of Service Vulnerability

Vulnerebility

25.8.2017

Trend Micro Smart Protection CVE-2017-11395 OS Command Injection Vulnerability

Vulnerebility

25.8.2017

libzip CVE-2017-12858 Double Free Local Denial of Service Vulnerability

Vulnerebility

25.8.2017

Multiple Automated Logic Corporation Products CVE-2017-9644 Local Privilege Escalation Vulnerability

Vulnerebility

24.8.2017

Trend Micro Hosted Email Security (HES) - Email Interception and Direct Object Reference 2017-08-24

Bugtraq

24.8.2017

security bulletin] HPESBHF03769 rev.1 - HPE Integrated Lights-out 4 (iLO 4) Multiple Remote Vulnerabilities 2017-08-23

Bugtraq

24.8.2017

SECURITY] DSA 3953-1] aodh security update 2017-08-23

Bugtraq

24.8.2017

SECURITY] DSA 3951-1] smb4k security update 2017-08-22

Bugtraq

24.8.2017

RT-SA-2015-008] WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs 2017-08-22

Bugtraq

24.8.2017

RT-SA-2015-009] WebClientPrint Processor 2.0: Remote Code Execution via Updates 2017-08-22

Bugtraq

24.8.2017

RT-SA-2015-010] WebClientPrint Processor 2.0: Unauthorised Proxy Modification 2017-08-22

Bugtraq

24.8.2017

RT-SA-2015-011] WebClientPrint Processor 2.0: No Validation of TLS Certificates 2017-08-22

Bugtraq

24.8.2017

Matrimonial Script - SQL Injection 

Exploit

24.8.2017

Automated Logic WebCTRL 6.5 - Unrestricted File Upload / Remote Code Execution 

Exploit

24.8.2017

Automated Logic WebCTRL 6.1 - Path Traversal / Arbitrary File Write 

Exploit

24.8.2017

Automated Logic WebCTRL 6.5 - Local Privilege Escalation 

Exploit

24.8.2017

libgig 4.0.0 - LinuxSampler Multiple Vulnerabilities 

Exploit

24.8.2017

Zerodium Offers $500K for Secure Messaging App Zero Days

Threatpost

24.8.2017

Business Email Compromise Campaign Harvesting Credentials in Numerous Industries

Threatpost

24.8.2017

augeas CVE-2017-7555 Memory Corruption Vulnerability

Vulnerebility

24.8.2017

Adobe Digital Editions CVE-2017-11272 XML Entity Parsing Information Disclosure Vulnerability

Vulnerebility

24.8.2017

Adobe Digital Editions APSB17-27 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

24.8.2017

Adobe Digital Editions CVE-2017-11274 Unspecified Buffer Overflow Vulnerability

Vulnerebility

24.8.2017

TeX Live CVE-2016-10243 Remote Code Execution Vulnerability

Vulnerebility

24.8.2017

Ansible CVE-2017-7481 Security Bypass Vulnerability

Vulnerebility

24.8.2017

Smb4K CVE-2017-8849 Local Privilege Escalation Vulnerability

Vulnerebility

24.8.2017

Google Android Libraries Multiple Remote Code Execution Vulnerabilities

Vulnerebility

24.8.2017

libxml2 CVE-2017-9049 Heap Buffer Overflow Vulnerability

Vulnerebility

24.8.2017

Libxml2 CVE-2017-9047 Buffer Overflow Vulnerability

Vulnerebility

24.8.2017

libxml2 CVE-2017-9050 Incomplete Fix Local Heap Based Buffer Overflow Vulnerability

Vulnerebility

24.8.2017

libxml2 CVE-2017-9048 Local Stack Buffer Overflow Vulnerability

Vulnerebility

24.8.2017

RedHat CVS CVE-2017-12836 Command Injection Vulnerability

Vulnerebility

24.8.2017

GNU Binutils CVE-2017-12967 Remote Denial of Service Vulnerability

Vulnerebility

24.8.2017

Trend Micro Smart Protection CVE-2017-11395 OS Command Injection Vulnerability

Vulnerebility

24.8.2017

libzip CVE-2017-12858 Double Free Local Denial of Service Vulnerability

Vulnerebility

24.8.2017

Multiple Automated Logic Corporation Products CVE-2017-9644 Local Privilege Escalation Vulnerability

Vulnerebility

24.8.2017

Jenkins Git Plugin CVE-2017-1000092 Cross Site Request Forgery Vulnerability

Vulnerebility

24.8.2017

Avira Antivirus Remote Heap Underflow Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5812 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5801 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5787 Remote Security Vulnerability

Vulnerebility

24.8.2017

Oracle Java SE CVE-2013-5789 Remote Security Vulnerability

Vulnerebility

23.8.2017

SECURITY] DSA 3951-1] smb4k security update 2017-08-22

Bugtraq

23.8.2017

RT-SA-2015-008] WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs 2017-08-22

Bugtraq

23.8.2017

RT-SA-2015-009] WebClientPrint Processor 2.0: Remote Code Execution via Updates 2017-08-22

Bugtraq

23.8.2017

RT-SA-2015-010] WebClientPrint Processor 2.0: Unauthorised Proxy Modification 2017-08-22

Bugtraq

23.8.2017

RT-SA-2015-011] WebClientPrint Processor 2.0: No Validation of TLS Certificates 2017-08-22

Bugtraq

23.8.2017

SECURITY] DSA 3950-1] libraw security update 2017-08-21

Bugtraq

23.8.2017

IBM OpenAdmin Tool - SOAP welcomeServer PHP Code Execution (Metasploit) 

Exploit

23.8.2017

Matrimonial Script - SQL Injection 

Exploit

23.8.2017

Automated Logic WebCTRL 6.5 - Unrestricted File Upload / Remote Code Execution 

Exploit

23.8.2017

Automated Logic WebCTRL 6.1 - Path Traversal / Arbitrary File Write 

Exploit

23.8.2017

VX Search Enterprise 9.9.12 - 'Import Command' Buffer Overflow 

Exploit

23.8.2017

Microsoft Windows - Escalate UAC Protection Bypass (Via COM Handler Hijack)... 

Exploit

23.8.2017

Disk Pulse Enterprise 9.9.16 - 'Import Command' Buffer Overflow 

Exploit

23.8.2017

Disk Savvy Enterprise 9.9.14 - 'Import Command' Buffer Overflow 

Exploit

23.8.2017

Malicious script dropping an executable signed by Avast?

SANS News

23.8.2017

Neptune Exploit Kit Dropping Cryptocurrency Miners Through Malvertisements

Threatpost

23.8.2017

Android Spyware Linked to Chinese SDK Forces Google to Boot 500 Apps

Threatpost

23.8.2017

Foxit to Fix PDF Reader Zero Days by Friday

Threatpost

23.8.2017

GraphicsMagick CVE-2017-11642 Denial of Service Vulnerability

Vulnerebility

23.8.2017

Adobe Digital Editions CVE-2017-11272 XML Entity Parsing Information Disclosure Vulnerability

Vulnerebility

23.8.2017

Adobe Digital Editions APSB17-27 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

23.8.2017

Adobe Digital Editions CVE-2017-11274 Unspecified Buffer Overflow Vulnerability

Vulnerebility

23.8.2017

TeX Live CVE-2016-10243 Remote Code Execution Vulnerability

Vulnerebility

23.8.2017

Ansible CVE-2017-7481 Security Bypass Vulnerability

Vulnerebility

23.8.2017

Smb4K CVE-2017-8849 Local Privilege Escalation Vulnerability

Vulnerebility

23.8.2017

Google Android Libraries Multiple Remote Code Execution Vulnerabilities

Vulnerebility

23.8.2017

libxml2 CVE-2017-9049 Heap Buffer Overflow Vulnerability

Vulnerebility

23.8.2017

Libxml2 CVE-2017-9047 Buffer Overflow Vulnerability

Vulnerebility

23.8.2017

libxml2 CVE-2017-9050 Incomplete Fix Local Heap Based Buffer Overflow Vulnerability

Vulnerebility

23.8.2017

libxml2 CVE-2017-9048 Local Stack Buffer Overflow Vulnerability

Vulnerebility

23.8.2017

RedHat CVS CVE-2017-12836 Command Injection Vulnerability

Vulnerebility

23.8.2017

augeas CVE-2017-7555 Memory Corruption Vulnerability

Vulnerebility

23.8.2017

Jenkins Git Plugin CVE-2017-1000092 Cross Site Request Forgery Vulnerability

Vulnerebility

23.8.2017

Avira Antivirus Remote Heap Underflow Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5812 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5801 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5787 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5789 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability

Vulnerebility

23.8.2017

Oracle Java SE CVE-2013-3829 Remote Security Vulnerability

Vulnerebility

22.8.2017

SECURITY] DSA 3950-1] libraw security update 2017-08-21

Bugtraq

22.8.2017

SECURITY] DSA 3948-1] ioquake3 security update 2017-08-19

Bugtraq

22.8.2017

SECURITY] DSA 3946-1] libmspack security update 2017-08-18

Bugtraq

22.8.2017

SECURITY] DSA 3928-2] firefox-esr security update 2017-08-16

Bugtraq

22.8.2017

Microsoft Resnet - DNS Configuration Web Vulnerability 2017-08-16

Bugtraq

22.8.2017

FreeBSD <= 10.3 jail SHM hole 2017-08-16

Bugtraq

22.8.2017

SECURITY] DSA 3943-1] gajim security update 2017-08-14

Bugtraq

22.8.2017

CVE-2017-9802: Apache Sling XSS vulnerability 2017-08-14

Bugtraq

22.8.2017

CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability 2017-08-14

Bugtraq

22.8.2017

Easy DVD Creater 2.5.11 - Buffer Overflow (SEH) 

Exploit

22.8.2017

Apache2Triad 1.5.4 - Multiple Vulnerabilities 

Exploit

22.8.2017

Joomla! Component Flip Wall 8.0 - 'wallid' Parameter SQL Injection 

Exploit

22.8.2017

Joomla! Component Sponsor Wall 8.0 - SQL Injection 

Exploit

22.8.2017

PHP Classifieds Script 5.6.2 - SQL Injection 

Exploit

22.8.2017

Affiliate Niche Script 3.4.0 - SQL Injection 

Exploit

22.8.2017

PHP Coupon Script 6.0 - 'cid' Parameter SQL Injection 

Exploit

22.8.2017

iTech Social Networking Script 3.08 - SQL Injection 

Exploit

22.8.2017

VX Search Enterprise 9.9.12 - 'Import Command' Buffer Overflow 

Exploit

22.8.2017

Disk Pulse Enterprise 9.9.16 - 'Import Command' Buffer Overflow 

Exploit

22.8.2017

Disk Savvy Enterprise 9.9.14 - 'Import Command' Buffer Overflow 

Exploit

22.8.2017

Linux/x86_64 - Fork Bomb Shellcode (11 bytes) 

Exploit

22.8.2017

Linux/x86_64 - kill All Processes Shellcode (19 bytes) 

Exploit

22.8.2017

Defang all the things!

SANS News

22.8.2017

Fuze Patches TPN Handset Vulnerabilities

Threatpost

22.8.2017

Facebook Awards $100K to Researchers for Credential Spearphishing Detection Method

Threatpost

22.8.2017

Meeting and Hotel Booking Provider’s Data Found in Public Amazon S3 Bucket

Threatpost

22.8.2017

GraphicsMagick CVE-2017-11642 Denial of Service Vulnerability

Vulnerebility

22.8.2017

Avira Antivirus Remote Heap Underflow Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5812 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5801 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5787 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5789 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5776 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-3829 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability

Vulnerebility

22.8.2017

Google Web Toolkit CVE-2013-4204 Multiple Cross Site Scripting Vulnerabilities

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2472 Buffer Overflow Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-3743 Remote Security Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2473 Buffer Overflow Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2469 Memory Corruption Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2471 Buffer Overflow Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2464 Memory Corruption Vulnerability

Vulnerebility

22.8.2017

Oracle Java SE CVE-2013-2465 Memory Corruption Vulnerability

Vulnerebility

21.8.2017

SECURITY] DSA 3948-1] ioquake3 security update 2017-08-19

Bugtraq

21.8.2017

SECURITY] DSA 3946-1] libmspack security update 2017-08-18

Bugtraq

21.8.2017

SECURITY] DSA 3928-2] firefox-esr security update 2017-08-16

Bugtraq

21.8.2017

Microsoft Resnet - DNS Configuration Web Vulnerability 2017-08-16

Bugtraq

21.8.2017

FreeBSD <= 10.3 jail SHM hole 2017-08-16

Bugtraq

21.8.2017

Apache2Triad 1.5.4 - Multiple Vulnerabilities 

Exploit

21.8.2017

Joomla! Component Flip Wall 8.0 - 'wallid' Parameter SQL Injection 

Exploit

21.8.2017

Joomla! Component Sponsor Wall 8.0 - SQL Injection 

Exploit

21.8.2017

PHP Classifieds Script 5.6.2 - SQL Injection 

Exploit

21.8.2017

Easy DVD Creater 2.5.11 - Buffer Overflow (SEH) 

Exploit

21.8.2017

Linux/x86_64 - kill All Processes Shellcode (19 bytes) 

Exploit

21.8.2017

Linux/x86_64 - Fork Bomb Shellcode (11 bytes) 

Exploit

21.8.2017

It's Not An Invoice ...

SANS News

20.8.2017

Symantec Messaging Gateway 10.6.3-2 - Unauthenticated root Remote Command Execution 

Exploit

20.8.2017

Symantec Messaging Gateway 10.6.3-2 - Unauthenticated root Remote Command Execution 

Exploit

20.8.2017

Symantec Messaging Gateway 10.6.3-2 - Unauthenticated root Remote Command Execution 

Exploit

20.8.2017

Symantec Messaging Gateway 10.6.3-2 - Unauthenticated root Remote Command Execution 

Exploit

20.8.2017

Symantec Messaging Gateway 10.6.3-2 - Unauthenticated root Remote Command Execution 

Exploit

20.8.2017

Backdoor.Shadowpad

Malware

20.8.2017

tshark 2.4 New Feature - Command Line Export Objects

SANS News

20.8.2017

It’s Not Exactly Open Season on the iOS Secure Enclave

Threatpost

20.8.2017

Vendor Exposes Backup of Chicago Voter Roll via AWS Bucket

Threatpost

20.8.2017

Mozilla Firefox CVE-2017-7806 Use After Free Denial of Service Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7781 Man in the Middle Security Bypass Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7788 Security Bypass Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7789 Remote Security Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7808 Information Disclosure Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7753 Information Disclosure Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7791 Security Bypass Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox and Firefox ESR Multiple Security Bypass Vulnerabilities

Vulnerebility

20.8.2017

Mozilla Firefox and Firefox ESR Multiple Buffer Overflow Vulnerabilities

Vulnerebility

20.8.2017

Mozilla Firefox and Firefox ESR CVE-2017-7809 Use After Free Remote Code Execution Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7779 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

20.8.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Remote Code Execution Vulnerabilities

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7780 Multiple Memory Corruption Vulnerabilities

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7798 XUL Injection Arbitrary Code Execution Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7801 Use After Free Remote Code Execution Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7800 Use After Free Remote Code Execution Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7799 Cross Site Scripting Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7807 Security Bypass Vulnerability

Vulnerebility

20.8.2017

Mozilla Firefox CVE-2017-7783 Denial of Service Vulnerability

Vulnerebility

20.8.2017

Linux Kernel 'brcmf_cfg80211_mgmt_tx()' Function Local Memory Corruption Vulnerability

Vulnerebility

20.8.2017

Linux Kernel CVE-2017-7533 Local Race Condition Vulnerability

Vulnerebility

20.8.2017

Linux kernel CVE-2017-11176 Local Denial of Service Vulnerability

Vulnerebility

20.8.2017

Xen 'blkif' Response Information Disclosure Vulnerability

Vulnerebility

20.8.2017

Linux Kernel CVE-2017-7482 Local Buffer Overflow Vulnerability

Vulnerebility

20.8.2017

Linux Kernel 'drivers/gpu/drm/vmwgfx/vmwgfx_surface.c' Local Information Disclosure Vulnerability

Vulnerebility

20.8.2017

Linux Kernel CVE-2017-1000363 Integer Overflow Vulnerability

Vulnerebility

20.8.2017

Linux Kernel CVE-2017-7346 Local Denial of Service Vulnerability

Vulnerebility

20.8.2017

Linux Kernel CVE-2017-1000365 Local Security Bypass Vulnerability

Vulnerebility

20.8.2017

Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities

Vulnerebility

18.8.2017

SECURITY] DSA 3946-1] libmspack security update 2017-08-18

Bugtraq

18.8.2017

SECURITY] DSA 3928-2] firefox-esr security update 2017-08-16

Bugtraq

18.8.2017

Microsoft Resnet - DNS Configuration Web Vulnerability 2017-08-16

Bugtraq

18.8.2017

FreeBSD <= 10.3 jail SHM hole 2017-08-16

Bugtraq

18.8.2017

SECURITY] DSA 3943-1] gajim security update 2017-08-14

Bugtraq

18.8.2017

MyDoomScanner 1.00 - Local Buffer Overflow (PoC) 

Exploit

18.8.2017

Microsoft Edge Chakra - 'PreVisitCatch' Missing Call 

Exploit

18.8.2017

Microsoft Edge Chakra - 'chakra!Js::GlobalObject' Integer overflow 

Exploit

18.8.2017

Microsoft Edge Chakra - Buffer Overflow 

Exploit

18.8.2017

Microsoft Edge Chakra - NULL Pointer Dereference 

Exploit

18.8.2017

Microsoft Edge Chakra - Heap Buffer Overflow 

Exploit

18.8.2017

Microsoft Edge Chakra - 'InterpreterStackFrame::ProcessLinkFailedAsmJsModule'... 

Exploit

18.8.2017

Microsoft Edge Chakra - Incorrect Usage of 'PushPopFrameHelper' in... 

Exploit

18.8.2017

Microsoft Edge Chakra - Incorrect Usage of 'TryUndeleteProperty' 

Exploit

18.8.2017

Microsoft Edge Chakra - 'EmitAssignment' uses the 'this' Register Without Initializing 

Exploit

18.8.2017

Microsoft Edge Chakra - Incorrect JIT Optimization with TypedArray Setter #2 

Exploit

18.8.2017

Microsoft Edge Chakra - 'JavascriptArray::ConcatArgs' Type Confusion 

Exploit

18.8.2017

Microsoft Edge Chakra - 'JavascriptFunction::EntryCall' Fails to Handle 'CallInfo'... 

Exploit

18.8.2017

Microsoft Edge Chakra - Uninitialized Arguments (1) 

Exploit

18.8.2017

Microsoft Edge Chakra - Uninitialized Arguments (2) 

Exploit

18.8.2017

Microsoft Edge Chakra - 'EmitNew' Integer Overflow 

Exploit

18.8.2017

Microsoft Edge 40.15063.0.0 Chakra - Incorrect JIT Optimization with TypedArray Setter #3 

Exploit

18.8.2017

Adobe Flash - Invoke Accesses Trait Out-of-Bounds 

Exploit

18.8.2017

Microsoft Edge - Out-of-Bounds Access when Fetching Source 

Exploit

18.8.2017

MyDoomScanner 1.00 - Local Buffer Overflow (PoC) 

Exploit

18.8.2017

Mozilla Firefox < 45.0 - 'nsHtml5TreeBuilder' Use-After-Free (EMET 5.52 Bypass) 

Exploit

18.8.2017

Food Ordering Script 1.0 - SQL Injection 

Exploit

18.8.2017

Online Quiz Project 1.0 - SQL Injection 

Exploit

18.8.2017

Photogallery Project 1.0 - SQL Injection 

Exploit

18.8.2017

Doctor Patient Project 1.0 - SQL Injection 

Exploit

18.8.2017

EngineBox Malware Supports 10+ Brazilian Banks

SANS News

18.8.2017

Cisco Patches Privilege Escalation Bugs in APIC

Threatpost

18.8.2017

Drupal Patches Critical Access Bypass in Core Engine

Threatpost

18.8.2017

GraphicsMagick CVE-2017-11642 Denial of Service Vulnerability

Vulnerebility

18.8.2017

Linux Kernel 'brcmf_cfg80211_mgmt_tx()' Function Local Memory Corruption Vulnerability

Vulnerebility

18.8.2017

Linux Kernel CVE-2017-7533 Local Race Condition Vulnerability

Vulnerebility

18.8.2017

Linux kernel CVE-2017-11176 Local Denial of Service Vulnerability

Vulnerebility

18.8.2017

Xen 'blkif' Response Information Disclosure Vulnerability

Vulnerebility

18.8.2017

Linux Kernel CVE-2017-7482 Local Buffer Overflow Vulnerability

Vulnerebility

18.8.2017

Linux Kernel 'drivers/gpu/drm/vmwgfx/vmwgfx_surface.c' Local Information Disclosure Vulnerability

Vulnerebility

18.8.2017

Linux Kernel CVE-2017-1000363 Integer Overflow Vulnerability

Vulnerebility

18.8.2017

Linux Kernel CVE-2017-7346 Local Denial of Service Vulnerability

Vulnerebility

18.8.2017

Linux Kernel CVE-2017-1000365 Local Security Bypass Vulnerability

Vulnerebility

18.8.2017

Linux Kernel CVE-2017-7889 Multiple Local Security Bypass Vulnerabilities

Vulnerebility

18.8.2017

Linux kernel CVE-2014-9940 Local Privilege Escalation Vulnerability

Vulnerebility

18.8.2017

Git CVE-2017-1000117 Remote Command Injection Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox and Firefox ESR Multiple Security Bypass Vulnerabilities

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7753 Information Disclosure Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox and Firefox ESR CVE-2017-7809 Use After Free Remote Code Execution Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Remote Code Execution Vulnerabilities

Vulnerebility

18.8.2017

Mozilla Firefox and Firefox ESR Multiple Buffer Overflow Vulnerabilities

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7779 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7801 Use After Free Remote Code Execution Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7800 Use After Free Remote Code Execution Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7791 Security Bypass Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7798 XUL Injection Arbitrary Code Execution Vulnerability

Vulnerebility

18.8.2017

Mozilla Firefox CVE-2017-7807 Security Bypass Vulnerability

Vulnerebility

18.8.2017

ISC BIND CVE-2017-3141 Local Privilege Escalation Vulnerability

Vulnerebility

18.8.2017

tnef Multiple Integer Overflow, Type Confusion and Out of Bounds Write Vulnerabilities

Vulnerebility

18.8.2017

ISC BIND CVE-2017-3140 Remote Denial of Service Vulnerability

Vulnerebility

18.8.2017

ISC BIND CVE-2017-3136 Remote Denial of Service Vulnerability

Vulnerebility

18.8.2017

ISC BIND CVE-2017-3138 Remote Denial of Service Vulnerability

Vulnerebility

18.8.2017

ISC BIND CVE-2017-3137 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

SECURITY] DSA 3928-2] firefox-esr security update 2017-08-16

Bugtraq

17.8.2017

Microsoft Resnet - DNS Configuration Web Vulnerability 2017-08-16

Bugtraq

17.8.2017

FreeBSD <= 10.3 jail SHM hole 2017-08-16

Bugtraq

17.8.2017

Backdoor.Shadowpad

Malware

17.8.2017

Maldoc with auto-updated link

SANS News

17.8.2017

Locky Ransomware Variant Slips Past Some Defenses

Threatpost

17.8.2017

Maersk Shipping Reports $300M Loss Stemming from NotPetya Attack

Threatpost

17.8.2017

Google Removes Chrome Extension Used in Banking Fraud

Threatpost

17.8.2017

Git CVE-2017-1000117 Remote Command Injection Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox and Firefox ESR Multiple Security Bypass Vulnerabilities

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7753 Information Disclosure Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox and Firefox ESR CVE-2017-7809 Use After Free Remote Code Execution Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Remote Code Execution Vulnerabilities

Vulnerebility

17.8.2017

Mozilla Firefox and Firefox ESR Multiple Buffer Overflow Vulnerabilities

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7779 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7801 Use After Free Remote Code Execution Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7800 Use After Free Remote Code Execution Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7791 Security Bypass Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7798 XUL Injection Arbitrary Code Execution Vulnerability

Vulnerebility

17.8.2017

Mozilla Firefox CVE-2017-7807 Security Bypass Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2017-3141 Local Privilege Escalation Vulnerability

Vulnerebility

17.8.2017

tnef Multiple Integer Overflow, Type Confusion and Out of Bounds Write Vulnerabilities

Vulnerebility

17.8.2017

ISC BIND CVE-2017-3140 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2017-3136 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2017-3138 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2017-3137 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2016-9444 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2017-3135 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2016-9778 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

ISC BIND CVE-2016-9131 Remote Denial of Service Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3653 Remote Security Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3641 Remote Security Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3636 Local Security Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3456 Remote Security Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3464 Remote Security Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3309 Remote Security Vulnerability

Vulnerebility

17.8.2017

Oracle MySQL Server CVE-2017-3453 Remote Security Vulnerability

Vulnerebility

16.8.2017

FreeBSD <= 10.3 jail SHM hole 2017-08-16

Bugtraq

16.8.2017

SECURITY] DSA 3943-1] gajim security update 2017-08-14

Bugtraq

16.8.2017

CVE-2017-9802: Apache Sling XSS vulnerability 2017-08-14

Bugtraq

16.8.2017

CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability 2017-08-14

Bugtraq

16.8.2017

SECURITY] DSA 3940-1] iortcw security update 2017-08-13

Bugtraq

16.8.2017

Microsoft Edge 38.14393.1066.0 -... 

Exploit

16.8.2017

Analysis of a Paypal phishing kit

SANS News

16.8.2017

Seven More Chrome Extensions Compromised

Threatpost

16.8.2017

Spam Domains Imitating Popular Banks Spreading Trickbot Banking Trojan

Threatpost

16.8.2017

Advantech WebOP Designer Heap Buffer Overflow Vulnerability

Vulnerebility

16.8.2017

Linux kernel CVE-2017-8831 Local Denial of Service Vulnerability

Vulnerebility

16.8.2017

Linux Kernel CVE-2017-7895 Multiple Security Bypass Vulnerabilities

Vulnerebility

16.8.2017

Linux Kernel CVE-2017-7533 Local Race Condition Vulnerability

Vulnerebility

16.8.2017

Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability

Vulnerebility

16.8.2017

Apache HTTP Server CVE-2017-3169 Denial of Service Vulnerability

Vulnerebility

16.8.2017

Apache HTTP Server CVE-2017-7679 Buffer Overflow Vulnerability

Vulnerebility

16.8.2017

Apache HTTP Server CVE-2017-3167 Authentication Bypass Vulnerability

Vulnerebility

16.8.2017

Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability

Vulnerebility

16.8.2017

Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

16.8.2017

Xen CVE-2017-12135 Multiple Denial of Service Vulnerabilities

Vulnerebility

16.8.2017

Xen CVE-2017-12134 Memory Corruption Vulnerability

Vulnerebility

16.8.2017

Xen CVE-2017-12137 Privilege Escalation Vulnerability

Vulnerebility

16.8.2017

Xen CVE-2017-12855 Local Information Disclosure Vulnerability

Vulnerebility

16.8.2017

Juniper Junos CVE-2017-10602 Local Buffer Overflow Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2451 Local Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2452 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2446 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2447 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2444 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2445 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2442 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2443 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2440 Remote Java Runtime Environment Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2439 Remote Java Runtime Environment Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2437 Remote Security Vulnerability

Vulnerebility

16.8.2017

Oracle Java SE CVE-2013-2435 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

SECURITY] DSA 3943-1] gajim security update 2017-08-14

Bugtraq

15.8.2017

CVE-2017-9802: Apache Sling XSS vulnerability 2017-08-14

Bugtraq

15.8.2017

CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability 2017-08-14

Bugtraq

15.8.2017

SECURITY] DSA 3940-1] iortcw security update 2017-08-13

Bugtraq

15.8.2017

Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross-Site Scripting 

Exploit

15.8.2017

Xamarin Studio for Mac 6.2.1 (build 3)/6.3 (build 863) - Privilege Escalation 

Exploit

15.8.2017

Tomabo MP4 Converter 3.19.15 - Denial of Service 

Exploit

15.8.2017

ClipBucket 2.8.3 - Multiple Vulnerabilities 

Exploit

15.8.2017

JS.Bateleur

Malware

15.8.2017

Malspam pushing Trickbot banking Trojan

SANS News

15.8.2017

Researchers Find Phishing Site Encrypted with AES

Threatpost

15.8.2017

Smart Locks Bricked by Bad Update

Threatpost

15.8.2017

Smart Locks Bricked by Bad Update

Threatpost

15.8.2017

Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability

Vulnerebility

15.8.2017

Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

15.8.2017

Juniper Junos CVE-2017-10602 Local Buffer Overflow Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2451 Local Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2452 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2446 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2447 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2444 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2445 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2442 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2443 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2440 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2439 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2437 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2435 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2433 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2432 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2430 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2429 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2424 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-2422 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Apache Subversion CVE-2017-9800 Remote Command Execution Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2017-10078 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2013-1518 Remote Java Runtime Environment Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE CVE-2017-10105 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE and JRockit CVE-2017-10053 Remote Security Vulnerability

Vulnerebility

15.8.2017

Oracle Java SE and JRockit CVE-2017-10108 Remote Security Vulnerability

Vulnerebility

14.8.2017

CVE-2017-9802: Apache Sling XSS vulnerability 2017-08-14

Bugtraq

14.8.2017

CVE-2017-9767] Quali CloudShell (v7.1.0.6508 Patch 6) Multiple Stored Cross Site Scripting Vulnerability 2017-08-14

Bugtraq

14.8.2017

SECURITY] DSA 3940-1] iortcw security update 2017-08-13

Bugtraq

14.8.2017

slackware-security] mercurial (SSA:2017-223-03) 2017-08-11

Bugtraq

14.8.2017

SECURITY] DSA 3937-1] zabbix security update 2017-08-12

Bugtraq

14.8.2017

SECURITY] DSA 3936-1] postgresql-9.6 security update 2017-08-10

Bugtraq

14.8.2017

RealTime RWR-3G-100 Router - Cross-Site Request Forgery (Change Admin Password)

Exploit

14.8.2017

The Good Phishing Email

SANS News

14.8.2017

Mozilla Firefox CVE-2017-7807 Security Bypass Vulnerability

Vulnerebility

14.8.2017

Mozilla Firefox and Firefox ESR Multiple Security Bypass Vulnerabilities

Vulnerebility

14.8.2017

Mozilla Firefox and Firefox ESR Multiple Buffer Overflow Vulnerabilities

Vulnerebility

14.8.2017

Mozilla Firefox and Firefox ESR CVE-2017-7809 Use After Free Remote Code Execution Vulnerability

Vulnerebility

14.8.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Remote Code Execution Vulnerabilities

Vulnerebility

14.8.2017

Mozilla Firefox CVE-2017-7779 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

14.8.2017

Mozilla Firefox CVE-2017-7798 XUL Injection Arbitrary Code Execution Vulnerability

Vulnerebility

14.8.2017

Mozilla Firefox CVE-2017-7801 Use After Free Remote Code Execution Vulnerability

Vulnerebility

14.8.2017

Mozilla Firefox CVE-2017-7800 Use After Free Remote Code Execution Vulnerability

Vulnerebility

14.8.2017

Randombit Botan CVE-2017-2801 Certificate Validation Security Bypass Vulnerability

Vulnerebility

14.8.2017

PHP 'gd_gif_in.c' Memory Corruption Vulnerability

Vulnerebility

14.8.2017

Zabbix Proxy Server CVE-2017-2825 Man in the Middle Security Bypass Vulnerability

Vulnerebility

14.8.2017

Zabbix CVE-2017-2824 Command Injection Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2420 Integer Overflow Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2419 Remote Code Execution Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2418 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2417 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2407 Remote Security Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-2383 Remote Code Execution Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1569 Stack Buffer Overflow Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1563 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1558 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1557 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1540 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1537 Remote Code Execution Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1500 Local Security Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1487 Remote Java Runtime Environment Vulnerability

Vulnerebility

14.8.2017

Oracle Java SE CVE-2013-1493 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

DeWorkshop 1.0 - SQL Injection 

Exploit

13.8.2017

De-Journal 1.0 - SQL Injection 

Exploit

13.8.2017

De-Tutor 1.0 - SQL Injection 

Exploit

13.8.2017

Outlook Web Access based attacks

SANS News

13.8.2017

APT28 Using EternalBlue to Attack Hotels in Europe, Middle East

Threatpost

13.8.2017

Many Factors Conspire in ICS/SCADA Attacks

Threatpost

13.8.2017

Apps Infected With SonicSpy Spyware Removed From Google Play

Threatpost

13.8.2017

Ukrainian Man Arrested, Charged in NotPetya Distribution

Threatpost

13.8.2017

Oracle Java SE CVE-2013-2420 Integer Overflow Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2419 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2418 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2417 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2407 Remote Security Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2383 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1569 Stack Buffer Overflow Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1563 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1558 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1557 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1540 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1537 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1500 Local Security Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1487 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1493 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2384 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-2394 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1486 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1480 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1481 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1478 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1479 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1475 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-1476 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-0809 Remote Code Execution Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-0450 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-0441 Remote Java Runtime Environment Vulnerability

Vulnerebility

13.8.2017

Oracle Java SE CVE-2013-0446 Remote Java Runtime Environment Vulnerability

Vulnerebility

11.8.2017

SECURITY] DSA 3936-1] postgresql-9.6 security update 2017-08-10

Bugtraq

11.8.2017

SECURITY] DSA 3935-1] postgresql-9.4 security update 2017-08-10

Bugtraq

11.8.2017

security bulletin] HPESB3P03762 rev.1 - HPE C Switch Software using Cisco Prime Data Center Network Manager (DCNM),
Remote Code Execution 2017-08-10

Bugtraq

11.8.2017

ANN] Apache Struts: S2-049 Security Bulletin update 2017-08-10

Bugtraq

11.8.2017

SECURITY] DSA 3932-1] subversion security update 2017-08-10

Bugtraq

11.8.2017

SECURITY] DSA 3933-1] pjproject security update 2017-08-10

Bugtraq

11.8.2017

SECURITY]ANNOUNCE] Apache Subversion 1.9.7 released 2017-08-10

Bugtraq

11.8.2017

SECURITY] DSA 3929-1] libsoup2.4 security update 2017-08-10

Bugtraq

11.8.2017

slackware-security] curl (SSA:2017-221-01) 2017-08-09

Bugtraq

11.8.2017

slackware-security] mozilla-firefox (SSA:2017-221-02) 2017-08-09

Bugtraq

11.8.2017

DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities 2017-08-07

Bugtraq

11.8.2017

SECURITY] DSA 3927-1] linux security update 2017-08-07

Bugtraq

11.8.2017

Microsoft Edge 38.14393.1066.0 - 'textarea.defaultValue' Memory Disclosure 

Exploit

11.8.2017

GIF Collection 2.0 - SQL Injection 

Exploit

11.8.2017

ImageBay 1.0 - SQL Injection 

Exploit

11.8.2017

WebFile Explorer 1.0 - Arbitrary File Download 

Exploit

11.8.2017

Maldoc Analysis with ViperMonkey

SANS News

11.8.2017

Patched Flash Player Sandbox Escape Leaked Windows Credentials

Threatpost

11.8.2017

Juniper Issues Security Alert Tied to Routers and Switches

Threatpost

11.8.2017

High Schooler Nets $10,000 For Google Bug

Threatpost

11.8.2017

Microsoft Edge CVE-2017-8670 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8674 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8671 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8672 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8656 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8655 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8657 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8659 Scripting Engine Information Disclosure Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8646 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8647 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8645 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8634 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Internet Explorer and Edge CVE-2017-8635 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Internet Explorer and Edge CVE-2017-0228 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8638 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8637 Security Bypass Vulnerability

Vulnerebility

11.8.2017

Microsoft Internet Explorer and Edge CVE-2017-8641 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Internet Explorer and Edge CVE-2017-8636 Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Edge CVE-2017-8640 Scripting Engine Remote Memory Corruption Vulnerability

Vulnerebility

11.8.2017

Microsoft Windows HTTP Protocol Stack CVE-2015-1635 Remote Code Execution Vulnerability

Vulnerebility

11.8.2017

Persistent Systems Radia Client Automation CVE-2015-1497 Remote Code Execution Vulnerability

Vulnerebility

11.8.2017

HP Client Automation Remote Code Execution and Stack Buffer Overflow Vulnerabilities

Vulnerebility

11.8.2017

Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability

Vulnerebility

11.8.2017

Microsoft Internet Information Services CVE-2017-7269 Buffer Overflow Vulnerability

Vulnerebility

11.8.2017

Oracle Java SE CVE-2017-10081 Remote Security Vulnerability

Vulnerebility

11.8.2017

Oracle Java SE and JRockit CVE-2017-10108 Remote Security Vulnerability

Vulnerebility

11.8.2017

Oracle Java SE CVE-2017-10105 Remote Security Vulnerability

Vulnerebility

11.8.2017

Oracle Java SE and JRockit CVE-2017-10053 Remote Security Vulnerability

Vulnerebility

11.8.2017

Oracle Java SE CVE-2017-10125 Local Security Vulnerability

Vulnerebility

11.8.2017

Oracle Java SE and JRockit CVE-2017-10243 Remote Security Vulnerability

Vulnerebility

10.8.2017

SECURITY] DSA 3929-1] libsoup2.4 security update 2017-08-10

Bugtraq

10.8.2017

slackware-security] curl (SSA:2017-221-01) 2017-08-09

Bugtraq

10.8.2017

slackware-security] mozilla-firefox (SSA:2017-221-02) 2017-08-09

Bugtraq

10.8.2017

DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities 2017-08-07

Bugtraq

10.8.2017

SECURITY] DSA 3927-1] linux security update 2017-08-07

Bugtraq

10.8.2017

Re: oss-security] CVE-2017-7533] kernel: inotify: a race between inotify_handle_event() and sys_rename() 2017-08-05

Bugtraq

10.8.2017

DALIM SOFTWARE ES Core 5.0 build 7184.1 - User Enumeration 

Exploit

10.8.2017

DALIM SOFTWARE ES Core 5.0 build 7184.1 - Cross-Site Scripting / Cross-Site Request 

Exploit

10.8.2017

DALIM SOFTWARE ES Core 5.0 build 7184.1 - Directory Traversal 

Exploit

10.8.2017

DALIM SOFTWARE ES Core 5.0 build 7184.1 - Server-Side Request Forgery 

Exploit

10.8.2017

WebFile Explorer 1.0 - Arbitrary File Download 

Exploit

10.8.2017

Backdoor.Weasel

Malware

10.8.2017

SAP Patch Tuesday Update Resolves 19 Flaws, Three High Severity

Threatpost

10.8.2017

Mystery Company Offers $250,000 Bounty for VM Escape Vulnerabilities

Threatpost

10.8.2017

Signed Mughthesec Adware Hijacking Macs for Profit

Threatpost

10.8.2017

Mozilla Fixes 29 Vulnerabilities in Firefox, Makes Flash Click-To-Activate

Threatpost

10.8.2017

Drupal Better Field Descriptions Module Cross Site Scripting Vulnerability

Vulnerebility

10.8.2017

Apache Storm CVE-2017-9799 Remote Code Execution Vulnerability

Vulnerebility

10.8.2017

Oracle Hospitality Applications CVE-2017-10064 Remote Security Vulnerability

Vulnerebility

10.8.2017

Microsoft Internet Explorer and Edge CVE-2017-8635 Remote Memory Corruption Vulnerability

Vulnerebility

10.8.2017

Microsoft Windows Remote Desktop Protocol CVE-2017-8673 Denial of Service Vulnerability

Vulnerebility

10.8.2017

Microsoft Office SharePoint CVE-2017-8654 Cross Site Scripting Vulnerability

Vulnerebility

10.8.2017

Red Hat CloudForms Management Engine CVE-2017-7530 Privilege Escalation Vulnerability

Vulnerebility

10.8.2017

Red Hat CloudForms Management Engine CVE-2017-2664 Privilege Escalation Vulnerability

Vulnerebility

10.8.2017

Mozilla Firefox CVE-2017-7791 Security Bypass Vulnerability

Vulnerebility

10.8.2017

OpenStack Neutron CVE-2017-7543 Information Disclosure Vulnerability

Vulnerebility

10.8.2017

Mozilla Firefox and Firefox ESR Multiple Security Bypass Vulnerabilities

Vulnerebility

10.8.2017

Google Android Framework CVE-2017-0712 Privilege Escalation Vulnerability

Vulnerebility

10.8.2017

Google Android Broadcom Components CVE-2017-0740 Remote Code Execution Vulnerability

Vulnerebility

10.8.2017

Google Android Kernel Components Multiple Privilege Escalation Vulnerabilities

Vulnerebility

10.8.2017

IBM Maximo Asset Management CVE-2017-1357 Security Bypass Vulnerability

Vulnerebility

10.8.2017

OSIsoft PI Integrator ICSA-17-220-01 Privilege Escalation and Cross Site Scripting Vulnerabilities

Vulnerebility

10.8.2017

Fortinet FortiOS CVE-2017-3130 Information Disclosure Vulnerability

Vulnerebility

10.8.2017

Google Android Drivers Multiple Security Vulnerabilities

Vulnerebility

10.8.2017

Moxa SoftNVR-IA Live Viewer CVE-2017-5170 DLL Loading Local Code Execution Vulnerability

Vulnerebility

10.8.2017

SAP SRM Multiple Unspecified Security Vulnerabilities

Vulnerebility

10.8.2017

Mozilla Firefox and Firefox ESR Multiple Buffer Overflow Vulnerabilities

Vulnerebility

10.8.2017

Fortinet Fortiweb CVE-2017-7737 Information Disclosure Vulnerability

Vulnerebility

10.8.2017

Google Android Media Framework Multiple Security Vulnerabilities

Vulnerebility

10.8.2017

Mozilla Firefox and Firefox ESR CVE-2017-7809 Use After Free Remote Code Execution Vulnerability

Vulnerebility

10.8.2017

Mozilla Firefox and Firefox ESR Multiple Use After Free Remote Code Execution Vulnerabilities

Vulnerebility

10.8.2017

Mozilla Firefox CVE-2017-7779 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

10.8.2017

Mozilla Firefox CVE-2017-7780 Multiple Memory Corruption Vulnerabilities

Vulnerebility

10.8.2017

Mozilla Firefox CVE-2017-7798 XUL Injection Arbitrary Code Execution Vulnerability

Vulnerebility

10.8.2017

Mozilla Firefox CVE-2017-7801 Use After Free Remote Code Execution Vulnerability

Vulnerebility

10.8.2017

Mozilla Firefox CVE-2017-7800 Use After Free Remote Code Execution Vulnerability

Vulnerebility

9.8.2017

Microsoft Windows 8.1 (x64) - RGNOBJ Integer Overflow (MS16-098) (2) 

Exploit

9.8.2017

Microsoft Windows 7 SP1 x86 - GDI Palette Objects Local Privilege Escalation... 

Exploit

9.8.2017

How are people fooled by this? Email to sign a contract provides malware instead.

SANS News

9.8.2017

Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity

Threatpost

9.8.2017

Engineering Firm Leaks Sensitive Data on Dell, SBC and Oracle

Threatpost

9.8.2017

Flash Player Marches Toward End, Patches Two Code Execution Bugs in Latest Update

Threatpost

8.8.2017

DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities 2017-08-07

Bugtraq

8.8.2017

SECURITY] DSA 3927-1] linux security update 2017-08-07

Bugtraq

8.8.2017

Re: oss-security] CVE-2017-7533] kernel: inotify: a race between inotify_handle_event() and sys_rename() 2017-08-05

Bugtraq

8.8.2017

SECURITY] DSA 3926-1] chromium-browser security update 2017-08-04

Bugtraq

8.8.2017

SECURITY] DSA 3925-1] qemu security update 2017-08-04

Bugtraq

8.8.2017

WordPress Plugin Easy Modal 2.0.17 - SQL Injection 

Exploit

8.8.2017

Microsoft Windows 7 SP1 x86 - GDI Palette Objects Local Privilege Escalation... 

Exploit

8.8.2017

Synology Photo Station 6.7.3-3432 / 6.3-2967 - Remote Code Execution 

Exploit

8.8.2017

WildMIDI 0.4.2 - Multiple Vulnerabilities 

Exploit

8.8.2017

Increase of phpMyAdmin scans

SANS News

8.8.2017

Microsoft Patch Tuesday August 2017

SANS News

8.8.2017

Tech Support Scammers Cast a Wider Net

Threatpost

8.8.2017

Lawsuit Alleges Disney Illegally Tracks Children Via Apps

Threatpost

8.8.2017

Marcus Hutchins’ Only Certainty is Uncertainty

Threatpost

8.8.2017

Microsoft Windows Remote Desktop Protocol CVE-2017-8673 Denial of Service Vulnerability

Vulnerebility

8.8.2017

Microsoft Office SharePoint CVE-2017-8654 Cross Site Scripting Vulnerability

Vulnerebility

8.8.2017

Red Hat CloudForms Management Engine CVE-2017-7530 Privilege Escalation Vulnerability

Vulnerebility

8.8.2017

Red Hat CloudForms Management Engine CVE-2017-2664 Privilege Escalation Vulnerability

Vulnerebility

8.8.2017

Mozilla Firefox CVE-2017-7800 Use After Free Remote Code Execution Vulnerability

Vulnerebility

8.8.2017

Adobe Experience Manager CVE-2017-3108 Arbitrary Code Execution Vulnerability

Vulnerebility

8.8.2017

Adobe Digital Editions CVE-2017-11274 Unspecified Buffer Overflow Vulnerability

Vulnerebility

8.8.2017

Adobe Digital Editions CVE-2017-11272 XML Entity Parsing Information Disclosure Vulnerability

Vulnerebility

8.8.2017

Adobe Experience Manager CVE-2017-3110 Information Disclosure Vulnerability

Vulnerebility

8.8.2017

Adobe Flash Player CVE-2017-3085 Unspecified Security Bypass Vulnerability

Vulnerebility

8.8.2017

Adobe Flash Player CVE-2017-3106 Type Confusion Remote Code Execution Vulnerability

Vulnerebility

8.8.2017

Adobe Acrobat and Reader CVE-2017-3118 Security Bypass Vulnerability

Vulnerebility

8.8.2017

Adobe Experience Manager CVE-2017-3107 Information Disclosure Vulnerability

Vulnerebility

8.8.2017

Adobe Acrobat and Reader CVE-2017-3115 Information Disclosure Vulnerability

Vulnerebility

8.8.2017

Adobe Acrobat and Reader CVE-2017-11229 Unspecified Security Bypass Vulnerability

Vulnerebility

8.8.2017

Adobe Acrobat and Reader CVE-2017-11232 Information Disclosure Vulnerability

Vulnerebility

8.8.2017

Adobe Acrobat and Reader APSB17-24 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

8.8.2017

Adobe Acrobat and Reader APSB17-24 Use-After-Free Multiple Remote Code Execution Vulnerabilities

Vulnerebility

8.8.2017

Adobe Acrobat and Reader Type Confusion APSB17-24 Multiple Remote Code Execution Vulnerabilities

Vulnerebility

8.8.2017

Adobe Acrobat and Reader APSB17-24 Multiple Heap Buffer Overflow Vulnerabilities

Vulnerebility

8.8.2017

Adobe Acrobat and Reader APSB17-24 Multiple Unspecified Memory Corruption Vulnerabilities

Vulnerebility

8.8.2017

SAP Netweaver ABAP Workbench Tools Authorization Bypass Vulnerability

Vulnerebility

8.8.2017

SAP NetWeaver K.M. Web Page Composer URI Redirection Vulnerability

Vulnerebility

8.8.2017

SAP NetWeaver Business Unspecified Cross Site Scripting Vulnerability

Vulnerebility

8.8.2017

SAP NetWeaver UUID Generation Security Vulnerability

Vulnerebility

8.8.2017

SAP BusinessObjects Cross-Site Ajax Request Vulnerability

Vulnerebility

8.8.2017

SAP Adobe Document Services Unspecified Denial of Service Vulnerability

Vulnerebility

8.8.2017

SAP NetWeaver Logon Application URI Redirection Vulnerability

Vulnerebility

8.8.2017

Multiple SAP Sybase Products Unspecified Cross Site Request Forgery Vulnerability

Vulnerebility

8.8.2017

SAP NetWeaver Visual Composer Remote Code Injection Vulnerability

Vulnerebility

7.8.2017

DefenseCode ThunderScan SAST Advisory: WordPress Easy Modal Plugin Multiple Security Vulnerabilities 2017-08-07

Bugtraq

7.8.2017

SECURITY] DSA 3927-1] linux security update 2017-08-07

Bugtraq

7.8.2017

Re: oss-security] CVE-2017-7533] kernel: inotify: a race between inotify_handle_event() and sys_rename() 2017-08-05

Bugtraq

7.8.2017

SECURITY] DSA 3926-1] chromium-browser security update 2017-08-04

Bugtraq

7.8.2017

SECURITY] DSA 3925-1] qemu security update 2017-08-04

Bugtraq

7.8.2017

SEC Consult SA-20170804-1 :: Ubiquiti Networks UniFi Cloud Key authenticated command injection 2017-08-04

Bugtraq

7.8.2017

SEC Consult SA-20170804-0 :: phpBB Server Side Request Forgery (SSRF) vulnerability 2017-08-04

Bugtraq

7.8.2017

security bulletin] HPESB3P03767 rev.1 - HPE Proliant ML10 Gen9 servers using Intel Xeon E3-1200M
v5 and 6th Generation Intel Core Processors, Unauthorized Write to Filesystem 2017-08-04

Bugtraq

7.8.2017

SECURITY] DSA 3924-1] varnish security update 2017-08-02

Bugtraq

7.8.2017

slackware-security] gnupg (SSA:2017-213-01) 2017-08-02
 

Bugtraq

7.8.2017

CVE-2017-1500 - Relected XSS in IBM WorkLight OAuth Server Web Api 2017-08-02

Bugtraq

7.8.2017

security bulletin] HPESBHF03763 rev.1 - HPE Comware 7, IMC, VCX products using OpenSSL, Remote Denial of Service (DoS) 2017-08-01

Bugtraq

7.8.2017

security bulletin] HPESBGN03766 rev.1 - HPE Project and Portfolio Management (PPM), Remote Cross-Site Scripting 2017-08-01

Bugtraq

7.8.2017

Increase of phpMyAdmin scans

SANS News

7.8.2017

QEMU CVE-2017-11334 Out of Bounds Read and Write Denial of Service Vulnerability

Vulnerebility

7.8.2017

QEMU CVE-2017-10806 Stack Buffer Overflow Vulnerability

Vulnerebility

7.8.2017

QEMU CVE-2017-9524 Denial of Service Vulnerability

Vulnerebility

7.8.2017

Linux Kernel CVE-2017-1000365 Local Security Bypass Vulnerability

Vulnerebility

7.8.2017

Linux Kernel CVE-2017-7482 Local Buffer Overflow Vulnerability

Vulnerebility

7.8.2017

Linux Kernel CVE-2017-10810 Denial of Service Vulnerability

Vulnerebility

7.8.2017

Linux Kernel 'brcmf_cfg80211_mgmt_tx()' Function Local Memory Corruption Vulnerability

Vulnerebility

7.8.2017

Linux Kernel CVE-2017-7346 Local Denial of Service Vulnerability

Vulnerebility

7.8.2017

Linux Kernel 'drivers/gpu/drm/vmwgfx/vmwgfx_surface.c' Local Information Disclosure Vulnerability

Vulnerebility

7.8.2017

Xen 'blkif' Response Information Disclosure Vulnerability

Vulnerebility

7.8.2017

Linux kernel CVE-2017-11176 Local Denial of Service Vulnerability

Vulnerebility

7.8.2017

Linux Kernel CVE-2017-7533 Local Race Condition Vulnerability

Vulnerebility

7.8.2017

Libexpat Expat CVE-2017-11742 DLL Loading Remote Code Execution Vulnerability

Vulnerebility

7.8.2017

Oracle Java SE CVE-2013-0425 Remote Java Runtime Environment Vulnerability

Vulnerebility

7.8.2017

Microsoft Windows LNK CVE-2017-8464 Remote Code Execution Vulnerability

Vulnerebility

7.8.2017

Apache HTTP Server CVE-2017-3169 Denial of Service Vulnerability

Vulnerebility

7.8.2017

Apache HTTP Server CVE-2017-7679 Buffer Overflow Vulnerability

Vulnerebility

7.8.2017

Apache HTTP Server CVE-2017-3167 Authentication Bypass Vulnerability

Vulnerebility

7.8.2017

Apache HTTP Server CVE-2017-7668 Denial of Service Vulnerability

Vulnerebility

7.8.2017

ImageMagick CVE-2017-12428 Denial of Service Vulnerability

Vulnerebility

7.8.2017

Eaton ELCSoft Programming Software Multiple Buffer Overflow Vulnerabilities

Vulnerebility

7.8.2017

MantisBT CVE-2017-12419 Arbitrary File Read Vulnerability

Vulnerebility

7.8.2017

Kakadu SDK CVE-2017-2811 Buffer Overflow Vulnerability

Vulnerebility

7.8.2017

Kakadu SDK CVE-2017-2812 Buffer Overflow Vulnerability

Vulnerebility

7.8.2017

Continental AG Infineon S-Gold 2 Remote Code Execution and Stack Buffer Overflow Vulnerabilities

Vulnerebility

7.8.2017

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

7.8.2017

Oracle Java SE CVE-2012-5075 Remote Java Runtime Environment Vulnerability

Vulnerebility

7.8.2017

Apache FOP CVE-2017-5661 XML External Entity Information Disclosure Vulnerability

Vulnerebility

7.8.2017

Google Android Broadcom components Multiple Security Vulnerabilities

Vulnerebility

7.8.2017

Oracle Java SE CVE-2013-0432 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

6.8.2017

Microsoft Windows - LNK Shortcut File Code Execution 

Exploit

6.8.2017

Linux x86 - /bin/sh Shellcode (24 bytes) 

Exploit

6.8.2017

Use of the Open Graph Protocol to Disguise Malicious Facebook Links

SANS News

6.8.2017

Tor Developer Busts Myths, Announces New Features

Threatpost

6.8.2017

Exploits Available for Siemens Molecular Imaging Vulnerabilities

Threatpost

6.8.2017

Attackers Use Typo-Squatting To Steal npm Credentials

Threatpost

4.8.2017

SEC Consult SA-20170804-1 :: Ubiquiti Networks UniFi Cloud Key authenticated command injection 2017-08-04

Bugtraq

4.8.2017

SEC Consult SA-20170804-0 :: phpBB Server Side Request Forgery (SSRF) vulnerability 2017-08-04

Bugtraq

4.8.2017

security bulletin] HPESB3P03767 rev.1 - HPE Proliant ML10 Gen9 servers using Intel Xeon E3-1200M
v5 and 6th Generation Intel Core Processors, Unauthorized Write to Filesystem 2017-08-04

Bugtraq

4.8.2017

SECURITY] DSA 3924-1] varnish security update 2017-08-02

Bugtraq

4.8.2017

slackware-security] gnupg (SSA:2017-213-01) 2017-08-02

Bugtraq

4.8.2017

Two Popular IP Cameras Riddled With Vulnerabilities

Threatpost

4.8.2017

Cisco Fixes DoS, Authentication Bypass Vulnerabilities, OSPF Bug

Threatpost

4.8.2017

Oracle Java SE CVE-2013-0425 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Microsoft Windows LNK CVE-2017-8464 Remote Code Execution Vulnerability

Vulnerebility

4.8.2017

Apache HTTP Server CVE-2017-3169 Denial of Service Vulnerability

Vulnerebility

4.8.2017

Apache HTTP Server CVE-2017-7679 Buffer Overflow Vulnerability

Vulnerebility

4.8.2017

Apache HTTP Server CVE-2017-3167 Authentication Bypass Vulnerability

Vulnerebility

4.8.2017

Apache HTTP Server CVE-2017-7668 Denial of Service Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-5075 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Apache FOP CVE-2017-5661 XML External Entity Information Disclosure Vulnerability

Vulnerebility

4.8.2017

Google Android Broadcom components Multiple Security Vulnerabilities

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0432 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0430 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-1721 Remote Code Execution Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-0497 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability

Vulnerebility

4.8.2017

Linux Kernel CVE-2017-7187 Local Denial of Service Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2011-3552 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-0504 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0429 Remote Java Runtime Environment Remote Security Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0423 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0427 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0428 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0424 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0409 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-5085 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-5084 Remote Java Runtime Environment Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2013-0351 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

4.8.2017

Google Web Toolkit CVE-2012-5920 Cross Site Scripting Vulnerability

Vulnerebility

4.8.2017

Oracle Java SE CVE-2012-5086 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Solarwinds Kiwi Syslog 9.6.1.6 - Denial of Service 

Exploit

3.8.2017

Premium Servers List Tracker 1.0 - SQL Injection 

Exploit

3.8.2017

EDUMOD Pro 1.3 - SQL Injection 

Exploit

3.8.2017

Muviko 1.0 - 'q' Parameter SQL Injection 

Exploit

3.8.2017

VirtualBox 5.1.22 - Windows Process DLL Signature Bypass Privilege Escalation 

Exploit

3.8.2017

VirtualBox 5.1.22 - Windows Process DLL UNC Path Signature Bypass Privilege... 

Exploit

3.8.2017

W32.Emotet.B

Malware

3.8.2017

Using a Raspberry Pi honeypot to contribute data to DShield/ISC

SANS News

3.8.2017

IBM Patches Reflected XSS in Worklight, MobileFirst

Threatpost

3.8.2017

Apache FOP CVE-2017-5661 XML External Entity Information Disclosure Vulnerability

Vulnerebility

3.8.2017

Google Android Broadcom components Multiple Security Vulnerabilities

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0432 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0430 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-1721 Remote Code Execution Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-0497 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability

Vulnerebility

3.8.2017

Linux Kernel CVE-2017-7187 Local Denial of Service Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2011-3552 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-0504 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0429 Remote Java Runtime Environment Remote Security Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0423 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0427 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0428 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0424 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0409 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5085 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5084 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2013-0351 Java Runtime Environment Remote Security Vulnerability

Vulnerebility

3.8.2017

Google Web Toolkit CVE-2012-5920 Cross Site Scripting Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5086 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5083 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5089 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5079 Remote Security Bypass Vulnerability

Vulnerebility

3.8.2017

Oracle Java Runtime Environment Remote Code Execution Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5072 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5069 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5081 Remote Java Runtime Environment Vulnerability

Vulnerebility

3.8.2017

Oracle Java SE CVE-2012-5077 Remote Java Runtime Environment Vulnerability

Vulnerebility

2.8.2017

slackware-security] gnupg (SSA:2017-213-01) 2017-08-02

Bugtraq

2.8.2017

CVE-2017-1500 - Relected XSS in IBM WorkLight OAuth Server Web Api 2017-08-02

Bugtraq

2.8.2017

security bulletin] HPESBHF03763 rev.1 - HPE Comware 7, IMC, VCX products using OpenSSL, Remote Denial of Service (DoS) 2017-08-01

Bugtraq

2.8.2017

security bulletin] HPESBGN03766 rev.1 - HPE Project and Portfolio Management (PPM), Remote Cross-Site Scripting 2017-08-01

Bugtraq

2.8.2017

CVE-2017-11494] SOL.Connect ISET-mpp meter 1.2.4.2 Authentication Bypass SQL Injection Vulnerability 2017-08-01

Bugtraq

2.8.2017

SECURITY] DSA 3923-1] freerdp security update 2017-08-01

Bugtraq

2.8.2017

FortiOS <= 5.6.0 Multiple XSS Vulnerabilities 2017-07-28

Bugtraq

2.8.2017

iOS/macOS - xpc_data Objects Sandbox Escape Privelege Escalation 

Exploit

2.8.2017

SOL.Connect ISET-mpp meter 1.2.4.2 - SQL Injection 

Exploit

2.8.2017

Entrepreneur B2B Script - 'pid' Parameter SQL Injection 

Exploit

2.8.2017

Joomla! Component SIMGenealogy 2.1.5 - SQL Injection 

Exploit

2.8.2017

Joomla! Component PHP-Bridge 1.2.3 - SQL Injection 

Exploit

2.8.2017

Joomla! Component LMS King Professional 3.2.4.0 - SQL Injection 

Exploit

2.8.2017

Joomla! Component Event Registration Pro Calendar 4.1.3 - SQL Injection 

Exploit

2.8.2017

Joomla! Component Ultimate Property Listing 1.0.2 - SQL Injection 

Exploit

2.8.2017

Advantech SUSIAccess <= 3.0 - Directory Traversal / Information Disclosure... 

Exploit

2.8.2017

Attacking NoSQL applications (part 2)

SANS News

2.8.2017

Amazon Halts Sale of Android Blu Phone Amid Spyware Concerns

Threatpost

2.8.2017

Legislation Proposed to Secure Connected IoT Devices

Threatpost

2.8.2017

Pivotal RabbitMQ Products CVE-2016-9877 Authentication Bypass Vulnerability

Vulnerebility

2.8.2017

Apache ActiveMQ Artemis CVE-2016-4978 Remote Code Execution Vulnerability

Vulnerebility

2.8.2017

FasterXML Jackson-databind CVE-2017-7525 Deserialization Remote Code Execution Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-9242 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-8890 Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-9076 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-9074 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-9075 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-9150 Local Information Disclosure Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7618 Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7374 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-2671 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel 'net/ipx/af_ipx.c' Use After Free Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7346 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7294 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-7261 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel 'ip_sockglue.c' Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-6345 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-6347 Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-6346 Use After Free Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-6353 Incomplete Fix Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability

Vulnerebility

2.8.2017

Linux kernel CVE-2017-9077 Local Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel Multiple Local Memory Corruption Vulnerabilities

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-2584 Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2017-2596 Denial of Service Vulnerability

Vulnerebility

2.8.2017

Linux Kernel CVE-2016-9191 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

CVE-2017-11494] SOL.Connect ISET-mpp meter 1.2.4.2 Authentication Bypass SQL Injection Vulnerability 2017-08-01

Bugtraq

1.8.2017

SECURITY] DSA 3923-1] freerdp security update 2017-08-01

Bugtraq

1.8.2017

FortiOS <= 5.6.0 Multiple XSS Vulnerabilities 2017-07-28

Bugtraq

1.8.2017

security bulletin] HPESBHF03765 rev.1 - HPE ConvergedSystem 700 Solution with Comware v7 Switches using
OpenSSL, Remote Denial of Service (DoS) and Disclosure of Sensitive Information 2017-07-26

Bugtraq

1.8.2017

SECURITY] DSA 3919-1] openjdk-8 security update 2017-07-25

Bugtraq

1.8.2017

Advantech SUSIAccess <= 3.0 - Directory Traversal / Information Disclosure... 

Exploit

1.8.2017

Advantech SUSIAccess <= 3.0 - 'RecoveryMgmt' File Upload 

Exploit

1.8.2017

DivFix++ 0.34 - Denial of Service 

Exploit

1.8.2017

Vorbis Tools oggenc 1.4.0 - '.wav' Denial of Service 

Exploit

1.8.2017

Sound eXchange (SoX) 14.4.2 - Multiple Vulnerabilities 

Exploit

1.8.2017

libvorbis 1.3.5 - Multiple Vulnerabilities 

Exploit

1.8.2017

libao 1.2.0 - Denial of Service 

Exploit

1.8.2017

Rooting Out Hosts that Support Older Samba Versions

SANS News

1.8.2017

Android Banking Trojan Svpeng Adds Keylogger

Threatpost

1.8.2017

ShieldFS Can Detect Ransomware, Recover Files

Threatpost

1.8.2017

Linux kernel CVE-2017-9242 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-8890 Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-9076 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-9074 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-9075 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-9150 Local Information Disclosure Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7618 Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7374 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-2671 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel 'net/ipx/af_ipx.c' Use After Free Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7616 Multiple Local Information Disclosure Vulnerabilities

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7346 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7294 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-7308 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-7261 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel 'ip_sockglue.c' Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-6345 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-6347 Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-6346 Use After Free Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-6353 Incomplete Fix Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability

Vulnerebility

1.8.2017

Linux kernel CVE-2017-9077 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel Multiple Local Memory Corruption Vulnerabilities

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-2584 Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-2596 Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2016-9191 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2016-2117 Remote Buffer Overflow Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-5551 Local Denial of Service Vulnerability

Vulnerebility

1.8.2017

Linux Kernel CVE-2017-5577 Remote Buffer Overflow Vulnerability

Vulnerebility