Databáze Hot News -

Rok - Úvod  2019  2018  2017  2016  2015  2014  2013  - 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  List  - 2018  2017  2016  2015  2014  2013 

Databáze - Úvod  Articles  Články  Bugtraq  Malware   Phishing  Vulnerebility  SANS  Mobil Virus  Exploit  Útoky  IDS/IPS  Techniky hackerů  Threatpost  Papers

- Databáze Hot News 2013 -

Poslední aktualizace v 08.10.2016 14:19:38


2013


 

12.12.2013

Bugtraq

CORE-2013-0807 - Divide Error in Windows Kernel 2013-12-11
CORE Advisories Team (advisories coresecurity com) (1 replies)

Re: CORE-2013-0807 - Divide Error in Windows Kernel 2013-12-11
CORE Advisories Team (advisories coresecurity com)

ESA-2013-089: EMC Connectrix Manager Converged Network Edition Remote Code Execution Vulnerabilities 2013-12-11
Security Alert (Security_Alert emc com)

[SOJOBO-ADV-13-05] - Vtiger 5.4.0 Reflected Cross Site Scripting 2013-12-11
advisories enkomio com

FlashCanvas 1.5 proxy.php XSS Vulnerability 2013-12-11
code 7elements co uk

Photo Video Album Transfer 1.0 iOS - Multiple Vulnerabilities 2013-12-11
Vulnerability Lab (research vulnerability-lab com)

SQL Injection in InstantCMS 2013-12-11
High-Tech Bridge Security Research (advisory htbridge com)

Android Fragment Injection vulnerability 2013-12-10
Roee Hay (roeeh il ibm com)

[security bulletin] HPSBPI02945 rev.1 - HP Officejet Pro 8500 (A909) All-in-One Printer, Cross-Site Scripting (XSS) 2013-12-10
security-alert hp com

CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability 2013-12-10
CORE Advisories Team (advisories coresecurity com)

[security bulletin] HPSBUX02944 rev.1 - HP-UX Running Java7, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-12-10
security-alert hp com

[security bulletin] HPSBUX02943 rev.1 - HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-12-10
security-alert hp com

LiveZilla 5.1.1.0 Stored XSS in operator clients 2013-12-10
zoczus gmail com

Air Gallery 1.0 Air Photo Browser - Multiple Vulnerabilities 2013-12-10
Vulnerability Lab (research vulnerability-lab com)

EMC Data Protection Advisor DPA Illuminator EJBInvokerServlet Remote Code Execution 2013-12-10
nospam gmail it

[CVE-2013-6986] Insecure Data Storage in Subway Ordering for California (ZippyYum) 3.4 iOS mobile application 2013-12-10
Daniel Wood (daniel wood owasp org)

Malware

RDN/Generic.dx!c2t!E2371BD49040

RDN/Generic PUP.x!b2u!5AB2B784E6DC

Generic PUP.x!0205CFA2B03C

RDN/Generic PWS.y!wl!FAB06F03AFDB

Generic PUP.x!A7D87D9348D1

Generic PUP.x!CD82FE51A89F

Generic PUP.x!7D71309AC99A

Generic PUP.x!DDC48EC3B486

RDN/Generic PUP.x!b2u!5AB1AC601775

Generic PUP.x!C4222555B389

RDN/Generic PUP.x!852F59E3739A

RDN/Generic PUP.x!b2u!5AA97EA698D8

Generic PUP.x!41F9F29C394D

Generic PUP.x!C38CE01E1665

RDN/Generic PUP.x!b2u!5AACF8923CAA

RDN/Generic PUP.x!3A01D25280B5

RDN/Generic PUP.x!b2u!FFC0454E738D

Generic PUP.x!663FC91CBA2B

Generic PUP.x!CD72784B0BEB

Generic PUP.x!5AB31AFBE7ED

RDN/Generic PUP.x!A102F55D197D

Generic PUP.x!B68A36CF29F6

Generic PUP.x!77A310C27A52

RDN/Generic.dx!c2t!34443CE7466B

RDN/Generic PUP.x!b2u!5AA8E8553C4C

Generic PUP.x!1FDA5EACFA3A

RDN/Generic.dx!c2t!7ECC6294E429

Generic PUP.x!1158BC940088

RDN/Generic PUP.x!458DFC8AD931

Generic PUP.x!F139F4F7E5FE

Phishing

DigitalBankingService

11th December 2013

Your RBS Card has been blocked

USAA

10th December 2013

Please Update your Usaa.com
Account

USAA

9th December 2013

Please Update your Usaa.com
Account

Bank of America

9th December 2013

your Bank of America Billing
Information records are out of
date.

Vulnerebility

TYPO3 Extbase 'errorAction' Method Cross Site Scripting Vulnerability
2013-12-12
http://www.securityfocus.com/bid/64239

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-5058 Local Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/64091

Adobe ColdFusion CVE-2013-0632 Authentication Bypass Vulnerability
2013-12-12
http://www.securityfocus.com/bid/57330

OpenSSH CVE-2010-5107 Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/58162

Linux Kernel TCP Sequence Number Generation Security Weakness
2013-12-12
http://www.securityfocus.com/bid/49289

Cisco DPR2320R2 Wireless Router Multiple Cross Site Request Forgery Vulnerabilities
2013-12-12
http://www.securityfocus.com/bid/64053

Xen CVE-2013-4368 Information Disclosure Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62935

Xen Page Reference Counting CVE-2013-1432 Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/60799

Xen QEMU CVE-2013-4375 Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62934

Xen OXenstored CVE-2013-4416 Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63404

Xen CVE-2013-4361 Information Disclosure Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62710

Xen CVE-2013-4371 Use After Free Remote Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62932

Xen CVE-2013-4369 NULL pointer Dereference Remote Denial of Service Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62931

Xen 'xc_vcpu_getaffinity()' Function Heap Memory Corruption Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62930

Xen CVE-2013-1442 Information Disclosure Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62630

Xen CVE-2013-4355 Information Disclosure Vulnerability
2013-12-12
http://www.securityfocus.com/bid/62708

RETIRED: Avira Secure Backup CVE-2013-6356 Local Buffer Overflow Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63765

PHP 'ext/soap/php_xml.c' Multiple Arbitrary File Disclosure Vulnerabilities
2013-12-12
http://www.securityfocus.com/bid/58766

PHP '_php_stream_scandir()' Buffer Overflow Vulnerability
2013-12-12
http://www.securityfocus.com/bid/54638

PHP 'header()' HTTP Header Injection Vulnerability
2013-12-12
http://www.securityfocus.com/bid/55297

InstantCMS 'orderby' Parameter SQL Injection Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63842

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5819 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63141

Oracle Java SE CVE-2013-5824 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63139

Linux Kernel CVE-2013-4299 Information Disclosure Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63183

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63098

Oracle Java SE CVE-2013-5820 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63133

Linux Kernel CVE-2013-4470 Multiple Local Memory Corruption Vulnerabilities
2013-12-12
http://www.securityfocus.com/bid/63359

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2013-12-12
http://www.securityfocus.com/bid/63143

Exploit

  Adobe ColdFusion 9 - Administrative Login Bypass

  HP LoadRunner EmulationAdmin - Web Service Directory Traversal

  EMC Data Protection Advisor DPA Illuminator - EJBInvokerServlet RCE

  vBulletin 5 - index.php/ajax/api/reputation/vote nodeid Parameter SQL Injection

  eFront v3.6.14 (build 18012) - Stored XSS in Multiple Parameters

  Photo Video Album Transfer 1.0 iOS - Multiple Vulnerabilities

  IcoFX 2.5.0.0 (.ico) - Buffer Overflow Vulnerability

11.12.2013

Bugtraq

Android Fragment Injection vulnerability 2013-12-10
Roee Hay (roeeh il ibm com)

[security bulletin] HPSBPI02945 rev.1 - HP Officejet Pro 8500 (A909) All-in-One Printer, Cross-Site Scripting (XSS) 2013-12-10
security-alert hp com

CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability 2013-12-10
CORE Advisories Team (advisories coresecurity com)

[security bulletin] HPSBUX02944 rev.1 - HP-UX Running Java7, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-12-10
security-alert hp com

[security bulletin] HPSBUX02943 rev.1 - HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-12-10
security-alert hp com

LiveZilla 5.1.1.0 Stored XSS in operator clients 2013-12-10
zoczus gmail com

Air Gallery 1.0 Air Photo Browser - Multiple Vulnerabilities 2013-12-10
Vulnerability Lab (research vulnerability-lab com)

EMC Data Protection Advisor DPA Illuminator EJBInvokerServlet Remote Code Execution 2013-12-10
nospam gmail it

[CVE-2013-6986] Insecure Data Storage in Subway Ordering for California (ZippyYum) 3.4 iOS mobile application 2013-12-10
Daniel Wood (daniel wood owasp org)

[SECURITY] [DSA 2815-1] munin security update 2013-12-09
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2813-1] gimp security update 2013-12-09
Moritz Muehlenhoff (jmm debian org)

Vulnerabilities in Apache Solr < 4.6.0 2013-12-09
Nicolas Grégoire (nicolas gregoire agarri fr)

[SECURITY] [DSA 2814-1] varnish security update 2013-12-09
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2812-1] samba security update 2013-12-09
Moritz Muehlenhoff (jmm debian org)

Print n Share v5.5 iOS - Multiple Web Vulnerabilities 2013-12-09
Vulnerability Lab (research vulnerability-lab com)

LiveZilla 5.1.0.0 Reflected XSS in translations 2013-12-08
zoczus gmail com

[SECURITY] [DSA 2811-1] chromium-browser security update 2013-12-08
Michael Gilbert (mgilbert debian org)

Opencart Multiple Vulnerabilities 2013-12-06
trueend5 yahoo com

[slackware-security] hplip (SSA:2013-339-04) 2013-12-06
Slackware Security Team (security slackware com)

[slackware-security] seamonkey (SSA:2013-339-03) 2013-12-06
Slackware Security Team (security slackware com)

[slackware-security] mozilla-thunderbird (SSA:2013-339-02) 2013-12-06
Slackware Security Team (security slackware com)

[slackware-security] mozilla-nss (SSA:2013-339-01) 2013-12-06
Slackware Security Team (security slackware com)

ESA-2013-080: RSA Security Analytics Multiple Vulnerabilities 2013-12-04
Security Alert (Security_Alert emc com)

NEW VMSA-2013-0015 VMware ESX updates to third party libraries 2013-12-06
Edward Hawkins (security vmware com)

[KIS-2013-10] openSIS <= 5.2 (ajax.php) PHP Code Injection Vulnerability 2013-12-05
Egidio Romano (research karmainsecurity com)

Wireless Transfer App 3.7 iOS - Multiple Web Vulnerabilities 2013-12-05
Vulnerability Lab (research vulnerability-lab com)

Malware

RDN/Generic.dx!442299583D6B

Generic PUP.x!3C322D39C64C

Generic.bfr!92C5B9C6C25B

RDN/Generic Qhost!F4A2F4BBBB20

RDN/Generic PUP.x!EFA160727696

RDN/Generic PUP.x!AC3EFA3871FE

RDN/Generic PUP.x!3DF32A17E3FD

RDN/Generic PUP.x!16CA5C880283

RDN/Generic PUP.x!D44D7934EFAB

RDN/Generic PUP.x!027654543518

RDN/Generic PUP.x!312BA37A5ABF

RDN/Generic PUP.x!D636036C0CAA

RDN/Generic.bfr!D5DA1C173E31

RDN/Generic PUP.x!4C7AF4D6C9B9

RDN/Generic PUP.x!4F0D842DC946

RDN/Generic PUP.x!B4F0AE315444

RDN/Generic PUP.x!8B7641CD7491

RDN/Generic BackDoor!vq!36B44890EC5B

RDN/Generic PUP.x!9B7A3703448B

RDN/Generic PUP.x!990B93FF4B17

RDN/Generic PUP.x!F921EBB55ED8

RDN/Generic PUP.x!75DA465F1EB0

RDN/Generic PUP.x!7E97855A7E2B

RDN/Generic PUP.x!FE1E34652A7B

RDN/Generic PUP.x!A344DDD4102F

RDN/Generic PUP.x!29A333ECA5BC

RDN/Generic PUP.x!F20A281E943F

RDN/Generic PUP.x!AA99670A8CC1

RDN/Generic PUP.x!F919C6CDCCE8

RDN/Generic PUP.x!2E79D4355139

Phishing

th December 2013

your Bank of America Billing
Information records are out of
date.

Paypal UK

9th December 2013

ERRORS WERE DETECTED ON YOUR
ACCOUNT (FIX NOW)

Financial Services Authority

9th December 2013

New e-Document arrived

Wellsfargo

9th December 2013

YEAR END ONLINE BANKING UPDATE

APPLE

8th December 2013

Please confirm your apple
acocunt information Date: Sun,
8 Dec 2013 02:59:01 +0200
MIME-Version: 1.0

Virgin Media Profile Updat

7th December 2013

VIRGIN MEDIA UPDATE

MINT

7th December 2013

YOUR MINT CARD IMPORTANT
NOTIFICATION.

Vulnerebility

Ruby Floating Point Parsing Heap Buffer Overflow Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63873

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63676

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63802

libjpeg-turbo CVE-2013-6630 Memory Corruption Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63679

PHP '_php_stream_scandir()' Buffer Overflow Vulnerability
2013-12-11
http://www.securityfocus.com/bid/54638

PHP 'ext/soap/php_xml.c' Multiple Arbitrary File Disclosure Vulnerabilities
2013-12-11
http://www.securityfocus.com/bid/58766

Xen CVE-2013-4553 Remote Denial of Service Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63933

Linux Kernel CVE-2013-6405 Memory Leak Multiple Local Information Disclosure Vulnerabilities
2013-12-11
http://www.securityfocus.com/bid/63999

SSL/TLS RC4 CVE-2013-2566 Information Disclosure Weakness
2013-12-11
http://www.securityfocus.com/bid/58796

Mozilla Network Security Services CVE-2013-5606 Certificate Validation Security Bypass Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63737

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63736

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63738

Ganglia Web 'get_context.php' Cross Site Scripting Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63921

Xen 'dma_pte_clear_one()' Function Local Privilege Escalation Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63830

Xen 'hvm_do_hypercall()' Function Local Privilege Escalation Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63931

Symfony Password Hash Denial Of Service Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63005

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability
2013-12-11
http://www.securityfocus.com/bid/57702

IBM InfoSphere Information Server Web Console Interface Clickjacking Vulnerability
2013-12-11
http://www.securityfocus.com/bid/62767

IBM InfoSphere Information Server CVE-2013-4067 Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/62768

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-12-11
http://www.securityfocus.com/bid/57778

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-12-11
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63089

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63110

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2012-5081 Remote Java Runtime Environment Vulnerability
2013-12-11
http://www.securityfocus.com/bid/56071

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-12-11
http://www.securityfocus.com/bid/63151

Exploit

PlaySMS <= 0.9.9.2 - CSRF

6.12.2013

Bugtraq

[PT-2013-63] Hash Length Extension in HTMLPurifier 2013-12-04
noreply ptsecurity com

NEW VMSA-2013-0014 VMware Workstation, Fusion, ESXi and ESX patches address a guest privilege escalation 2013-12-04
\VMware Security Response Center\ (security vmware com)

bugs in IJG jpeg6b & libjpeg-turbo 2013-12-04
Michal Zalewski (lcamtuf coredump cx)

[SECURITY] [DSA 2808-1] openjpeg security update 2013-12-03
Raphael Geissert (geissert debian org)

Malware

Generic.bfr!82986EEBE29B

Generic PUP.x!818698869C9D

RDN/Generic PUP.x!9F809C867BEA

RDN/Generic PUP.x!b2k!5681B913AA62

RDN/Generic PUP.x!110B508EB457

RDN/Generic Qhost!l!EF760468CACA

RDN/Generic PUP.x!b2k!FAF0DDE0E8E6

Generic PUP.x!371B3943B509

Generic.bfr!9DFF50564D16

Generic PUP.x!FF8A23074BC1

Generic PUP.x!C1F348BA5A2D

Generic PUP.x!AB5BC0042135

RDN/Generic PUP.x!D670348685EE

Generic PUP.x!20EE3E18B4C0

RDN/Generic PUP.x!D6B94F936AD1

RDN/Generic PUP.x!b2k!A35CDC4F7FEF

PWS-Zbot!5EC47A18E323

RDN/Generic BackDoor!vn!235D35074387

RDN/Generic PUP.x!b2k!FA5F4183D6FE

RDN/Generic PUP.x!b2k!70F8C2B83DDE

RDN/Generic PUP.x!b2k!7A87BE14DF1B

RDN/Generic PUP.x!b2k!9579116DDD6B

Generic PUP.x!E5335783A4B4

Phishing

© 2013 Aol Email Service

5th December 2013

ACCOUNT UPDATE (2013)

MBNA

5th December 2013

Urgent Update Required

eBay

5th December 2013

EBAY CUSTOMER SUPPORT MADE A
DECISION

LLOYDS BANK REWARD

4th December 2013

Lloyds Bank - 35% cashback
rewards you

Chase

4th December 2013

New Message From Chase Bank
Online (SM)

Tesco

4th December 2013

TESCO REWARDS YOU!

Vulnerebility

Twibright Labs links2 CVE-2013-6050 Integer Overflow Vulnerability
2013-12-06
http://www.securityfocus.com/bid/64056

OWASP ESAPI CVE-2013-5960 Authentication Bypass Vulnerability
2013-12-06
http://www.securityfocus.com/bid/62786

Multiple Vivotek IP Cameras CVE-2013-4985 Remote Authentication Bypass Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63541

OWASP ESAPI CBC Mode HMAC Authentication Bypass Vulnerability
2013-12-06
http://www.securityfocus.com/bid/62415

Kaseya 'SystemTab/UploadImage.asp' Arbitrary File Upload Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63782

Microsoft Windows Kernel 'NDProxy.sys' Local Privilege Escalation Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63971

Cisco IOS XE Software MPLS Packet Handling Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63979

Cisco ASA Software CVE-2013-6696 Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/64037

Monitorix HTTP Server 'handle_request()' Session Fixation and Cross Site Scripting Vulnerabilities
2013-12-06
http://www.securityfocus.com/bid/63913

GIMP XWD File Handling Buffer Overflow Vulnerability
2013-12-06
http://www.securityfocus.com/bid/56647

Network Block Device Server 'strncmp()' Function Access Bypass Vulnerability
2013-12-06
http://www.securityfocus.com/bid/64002

Ruby Gem Sprout 'unpack_zip()' Function Remote Command Injection Vulnerability
2013-12-06
http://www.securityfocus.com/bid/64047

phpThumb 'phpThumb.php' Arbitrary File Upload Vulnerability
2013-12-06
http://www.securityfocus.com/bid/64041

AMD 16h Model Processor CVE-2013-6885 Local Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63983

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63736

Mozilla Network Security Services CVE-2013-5606 Certificate Validation Security Bypass Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63737

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63738

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63802

MIT Kerberos 5 KDC 'do_tgs_req.c' Remote Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63832

MIT Kerberos 5 'setup_server_realm()' Function CVE-2013-1418 Remote Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/63555

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-12-06
http://www.securityfocus.com/bid/57778

OpenSSL S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/52764

OpenSSL Encoded ASN.1 Data Integer Truncation Memory Corruption Vulnerability
2013-12-06
http://www.securityfocus.com/bid/53158

OpenSSL CVE-2012-2686 Remote Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/57755

OpenSSL CVE-2013-0166 Remote Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/60268

OpenSSL DTLS CVE-2012-2333 Remote Denial of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/53476

OpenSSL CMS PKCS #7 Decryption CVE-2012-0884 Security Bypass Vulnerability
2013-12-06
http://www.securityfocus.com/bid/52428

OpenSSL ASN.1 S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
2013-12-06
http://www.securityfocus.com/bid/52181

OpenSSL ECDSA Timing Attack Local Information Disclosure Vulnerability
2013-12-06
http://www.securityfocus.com/bid/47888

Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2013-12-06
http://www.securityfocus.com/bid/37368

Exploit

   Wireless Transfer App 3.7 iOS - Multiple Web Vulnerabilities

  Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability (0Day)

  Wireless Transfer App 3.7 iOS - Multiple Web Vulnerabilities

5.12.2013

Bugtraq

[PT-2013-63] Hash Length Extension in HTMLPurifier 2013-12-04
noreply ptsecurity com

NEW VMSA-2013-0014 VMware Workstation, Fusion, ESXi and ESX patches address a guest privilege escalation 2013-12-04
\VMware Security Response Center\ (security vmware com)

bugs in IJG jpeg6b & libjpeg-turbo 2013-12-04
Michal Zalewski (lcamtuf coredump cx)

Malware

Generic.bfr!986F4DFCD563

RDN/Generic BackDoor!vm!A51FC455C505

RDN/Generic BackDoor!vm!F41A36A6DE19

Generic Downloader.x!10893AD8A1D0

Generic.bfr!EC5D4B5B3BEE

Generic PUP.x!F59BA0FA8913

RDN/PWS-LegMir!23C59399493C

RDN/Generic.bfr!FA5C4A4322ED

RDN/Downloader.a!oe!EC3DD30700F4

Downloader.gen.a!118228DB7BB1

Generic.bfr!208231CB08DB

Generic PUP.x!E3696F986C4B

Generic PUP.x!9EBFA84AB184

Generic PUP.x!8A671F74198F

RDN/Generic BackDoor!vm!350F57023717

RDN/Generic.bfr!fj!D4DBEC5E56EB

Generic.bfr!F23BBF8575B7

Generic Downloader.x!F2B5F740AF1B

Generic.bfr!1F0FD432B89F

Generic PUP.x!F57EDBA5A34C

Generic Downloader.x!0645E0B152F2

Generic.bfr!516758D5A813

RDN/Generic Dropper!3CDF5CFB2593

Generic PUP.x!818F2868D546

Generic.bfr!76B622A52DAD

Generic.bfr!DB32E96327D0

RDN/Generic PUP.x!b2h!B71BE1E12821

Generic.bfr!17A8AEC73717

Generic.bfr!D663010FAA8B

Phishing

LLOYDS BANK REWARD

4th December 2013

Lloyds Bank - 35% cashback
rewards you

Chase

4th December 2013

New Message From Chase Bank
Online (SM)

Tesco

4th December 2013

TESCO REWARDS YOU!

NatWest Credit Cards Online

3rd December 2013

[SUSPICIOUS MESSAGE] Credit
Card Online Payment Confirmed
- NatWest

Vulnerebility

Twibright Labs links2 CVE-2013-6050 Integer Overflow Vulnerability
2013-12-05
http://www.securityfocus.com/bid/64056

OWASP ESAPI CVE-2013-5960 Authentication Bypass Vulnerability
2013-12-05
http://www.securityfocus.com/bid/62786

Multiple Vivotek IP Cameras CVE-2013-4985 Remote Authentication Bypass Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63541

OWASP ESAPI CBC Mode HMAC Authentication Bypass Vulnerability
2013-12-05
http://www.securityfocus.com/bid/62415

Kaseya 'SystemTab/UploadImage.asp' Arbitrary File Upload Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63782

Microsoft Windows Kernel 'NDProxy.sys' Local Privilege Escalation Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63971

Cisco IOS XE Software MPLS Packet Handling Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63979

Cisco ASA Software CVE-2013-6696 Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/64037

Monitorix HTTP Server 'handle_request()' Session Fixation and Cross Site Scripting Vulnerabilities
2013-12-05
http://www.securityfocus.com/bid/63913

GIMP XWD File Handling Buffer Overflow Vulnerability
2013-12-05
http://www.securityfocus.com/bid/56647

Network Block Device Server 'strncmp()' Function Access Bypass Vulnerability
2013-12-05
http://www.securityfocus.com/bid/64002

Ruby Gem Sprout 'unpack_zip()' Function Remote Command Injection Vulnerability
2013-12-05
http://www.securityfocus.com/bid/64047

phpThumb 'phpThumb.php' Arbitrary File Upload Vulnerability
2013-12-05
http://www.securityfocus.com/bid/64041

AMD 16h Model Processor CVE-2013-6885 Local Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63983

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63736

Mozilla Network Security Services CVE-2013-5606 Certificate Validation Security Bypass Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63737

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63738

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63802

MIT Kerberos 5 KDC 'do_tgs_req.c' Remote Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63832

MIT Kerberos 5 'setup_server_realm()' Function CVE-2013-1418 Remote Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/63555

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-12-05
http://www.securityfocus.com/bid/57778

OpenSSL S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/52764

OpenSSL Encoded ASN.1 Data Integer Truncation Memory Corruption Vulnerability
2013-12-05
http://www.securityfocus.com/bid/53158

OpenSSL CVE-2012-2686 Remote Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/57755

OpenSSL CVE-2013-0166 Remote Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/60268

OpenSSL DTLS CVE-2012-2333 Remote Denial of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/53476

OpenSSL CMS PKCS #7 Decryption CVE-2012-0884 Security Bypass Vulnerability
2013-12-05
http://www.securityfocus.com/bid/52428

OpenSSL ASN.1 S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
2013-12-05
http://www.securityfocus.com/bid/52181

OpenSSL ECDSA Timing Attack Local Information Disclosure Vulnerability
2013-12-05
http://www.securityfocus.com/bid/47888

Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2013-12-05
http://www.securityfocus.com/bid/37368

Exploit

MySQL 5.0.x IF Query Handling Remote Denial Of Service Vulnerability

4.12.2013

Bugtraq

NEW VMSA-2013-0014 VMware Workstation, Fusion, ESXi and ESX patches address a guest privilege escalation 2013-12-04
\VMware Security Response Center\ (security vmware com)

bugs in IJG jpeg6b & libjpeg-turbo 2013-12-04
Michal Zalewski (lcamtuf coredump cx)

[SECURITY] [DSA 2808-1] openjpeg security update 2013-12-03
Raphael Geissert (geissert debian org)

Multiple issues in OpenSSL - BN (multiprecision integer arithmetics). 2013-12-02
ScripT setInterval\(function\(\){for\( \){alert\('fixme'\)} } 10\) /scRIpt (tytusromekiatomek inbox com)

D-Link DIR-XXX remote root access exploit. 2013-12-02
ScripT setInterval\(function\(\){for\( \){alert\('fixme'\)} } 10\) /scRIpt (tytusromekiatomek inbox com)

Malware

Generic PUP.x!600892C29424

RDN/Generic Dropper!sm!2B4AF82E2FE5

RDN/Generic BackDoor!D1805079B1C0

Generic PUP.x!5A2827CFDCEE

Generic PUP.x!B7076522D78A

RDN/Generic PWS.y!wh!39939CB7CE15

RDN/PWS-Banker!cw!305D999FF37F

BackDoor-DKA!DDC2EE078D4F

BackDoor-DKA!79CB3EDEF020

BackDoor-DKA!090660944218

BackDoor-DKA!AB46739BE67C

RDN/Ransom!dw!D1ACC649466D

BackDoor-DKA!26A0C66123DC

RDN/Generic PUP.x!b2g!F42A5089BA48

RDN/Generic.dx!c2k!450A855AD379

RDN/Generic PUP.x!b2g!8DF86794356E

RDN/Generic PUP.x!b2g!8BABC1C33650

RDN/Generic PUP.x!b2g!F500D0CDF4C9

RDN/Generic PUP.x!b2g!D5918BB99456

RDN/Generic PUP.x!b2g!F4267472F832

RDN/Generic PUP.x!b2g!F42615C9F962

RDN/Qhost-Gen!bc!24C1C3F802F5

Generic Downloader.x!D63E4C93948F

RDN/Generic PUP.x!b2g!A4A2C9E31BB1

Generic PUP.x!7AFC710AFF02

RDN/PWS-Banker!cw!D49D89523D07

RDN/Generic.bfr!fe!520015E543EA

RDN/Generic PUP.x!b2g!F4267CE1A805

RDN/Generic PUP.x!b2g!949857832725

Phishing

NatWest Credit Cards Online

3rd December 2013

[SUSPICIOUS MESSAGE] Credit
Card Online Payment Confirmed
- NatWest

Yahoo! Mail

3rd December 2013

Validate Your Account

eBay

3rd December 2013

eBay Customer Support made a
decision

Vulnerebility

Kaseya 'SystemTab/UploadImage.asp' Arbitrary File Upload Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63782

Microsoft Windows Kernel 'NDProxy.sys' Local Privilege Escalation Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63971

Twibright Labs links2 CVE-2013-6050 Integer Overflow Vulnerability
2013-12-04
http://www.securityfocus.com/bid/64056

Cisco IOS XE Software MPLS Packet Handling Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63979

Cisco ASA Software CVE-2013-6696 Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/64037

Monitorix HTTP Server 'handle_request()' Session Fixation and Cross Site Scripting Vulnerabilities
2013-12-04
http://www.securityfocus.com/bid/63913

GIMP XWD File Handling Buffer Overflow Vulnerability
2013-12-04
http://www.securityfocus.com/bid/56647

Network Block Device Server 'strncmp()' Function Access Bypass Vulnerability
2013-12-04
http://www.securityfocus.com/bid/64002

Ruby Gem Sprout 'unpack_zip()' Function Remote Command Injection Vulnerability
2013-12-04
http://www.securityfocus.com/bid/64047

phpThumb 'phpThumb.php' Arbitrary File Upload Vulnerability
2013-12-04
http://www.securityfocus.com/bid/64041

AMD 16h Model Processor CVE-2013-6885 Local Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63983

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63736

Mozilla Network Security Services CVE-2013-5606 Certificate Validation Security Bypass Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63737

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63738

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63802

MIT Kerberos 5 KDC 'do_tgs_req.c' Remote Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63832

MIT Kerberos 5 'setup_server_realm()' Function CVE-2013-1418 Remote Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/63555

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-12-04
http://www.securityfocus.com/bid/57778

OpenSSL S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/52764

OpenSSL Encoded ASN.1 Data Integer Truncation Memory Corruption Vulnerability
2013-12-04
http://www.securityfocus.com/bid/53158

OpenSSL CVE-2012-2686 Remote Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/57755

OpenSSL CVE-2013-0166 Remote Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/60268

OpenSSL DTLS CVE-2012-2333 Remote Denial of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/53476

OpenSSL CMS PKCS #7 Decryption CVE-2012-0884 Security Bypass Vulnerability
2013-12-04
http://www.securityfocus.com/bid/52428

OpenSSL ASN.1 S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
2013-12-04
http://www.securityfocus.com/bid/52181

OpenSSL ECDSA Timing Attack Local Information Disclosure Vulnerability
2013-12-04
http://www.securityfocus.com/bid/47888

Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2013-12-04
http://www.securityfocus.com/bid/37368

NCompress Decompress Buffer Underflow Vulnerability
2013-12-04
http://www.securityfocus.com/bid/19455

BusyBox 'udhcpc' Shell Characters in Response Remote Code Execution Vulnerability
2013-12-04
http://www.securityfocus.com/bid/48879

BusyBox Symlink Attack Local Privilege Escalation Vulnerability
2013-12-04
http://www.securityfocus.com/bid/58249

Exploit

NDPROXY Local SYSTEM Privilege Escalation

3.12.2013

Bugtraq

Photo Transfer Wifi 1.4.4 iOS - Multiple Web Vulnerabilities 2013-12-02
Vulnerability Lab (research vulnerability-lab com)

WorldCIST'14 - Submission deadline: December 7 2013-12-01
WorldCIST (marialemos72 gmail com)

[SECURITY] [DSA 2807-1] links2 security update 2013-11-30
Moritz Muehlenhoff (jmm debian org)

Malware

Generic.bfr!AB8CCD9B630F

RDN/Generic BackDoor!vk!5A397AAC1D8E

W32/Virut.gen!73A5FF3F5A84

RDN/Downloader.a!od!65BAC857068A

RDN/Generic BackDoor!vk!F4438E2B87BC

RDN/Generic Dropper!F8813F808D0A

Generic PUP.x!1942BC94FB6B

RDN/Generic PUP.x!b2f!7C1ADBC4CC38

RDN/Generic Dropper!83D66CBAF54D

Generic.bfr!043CF1444D40

RDN/Generic Dropper!sm!C568F291AFDD

RDN/Generic.bfr!fj!0A8EB5086E74

RDN/Generic.bfr!fj!300B87EE4757

RDN/Generic Dropper!sm!DEB9C4D62C39

RDN/Generic Dropper!CBC25DB774D9

Generic BackDoor!0BB5D7147099

RDN/Generic PUP.x!b2f!B6B2B5F9C8B6

RDN/Generic PUP.x!B515C3F11D11

RDN/Generic Dropper!sm!146ACC4D3A5D

Generic.bfr!387189DA6CE3

Generic.bfr!99FC65A63B1A

RDN/PWS-Banker!4A1B9B6ECF73

RDN/Generic PUP.x!0C5488DD43C6

Downloader-FKW!EE83F4A69265!EE83F4A69265

RDN/Generic PUP.x!b2f!843E87433B07

Generic.bfr!2CCEDA15A39C

RDN/Generic BackDoor!vk!870D2F9000BB

RDN/Generic PUP.x!b2f!E20DB1D49CBD

RDN/Generic PUP.x!b2f!BEE98C96B18A

Phishing

eBay

3rd December 2013

eBay Customer Support made a
decision

NatWest

2nd December 2013

NATWEST CARD ONLINE SERVICE
REVIEW

Santander Online Banking

2nd December 2013

New Security Features

Barclays Bank Plc

2nd December 2013

Additional Security Again
Fraud.

INTERNATIONAL MONETARY FUND (I

2nd December 2013

INTERNATIONAL MONETARY FUND
(IMF)

Vulnerebility

Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2013-12-03
http://www.securityfocus.com/bid/37368

NCompress Decompress Buffer Underflow Vulnerability
2013-12-03
http://www.securityfocus.com/bid/19455

BusyBox 'udhcpc' Shell Characters in Response Remote Code Execution Vulnerability
2013-12-03
http://www.securityfocus.com/bid/48879

BusyBox Symlink Attack Local Privilege Escalation Vulnerability
2013-12-03
http://www.securityfocus.com/bid/58249

GNU glibc 'nargs' Integer Overflow Security Bypass Vulnerability
2013-12-03
http://www.securityfocus.com/bid/52201

GNU glibc Dynamic Linker '$ORIGIN' Local Privilege Escalation Vulnerability
2013-12-03
http://www.securityfocus.com/bid/44154

'glibc' Library 'locale/programs/locale.c' Local Privilege Escalation Vulnerability
2013-12-03
http://www.securityfocus.com/bid/47370

GNU glibc Timezone Parsing Remote Integer Overflow Vulnerability
2013-12-03
http://www.securityfocus.com/bid/50898

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
2013-12-03
http://www.securityfocus.com/bid/46563

GNU glibc 'addmntent()' Mount Helper Local Denial of Service Vulnerability
2013-12-03
http://www.securityfocus.com/bid/46740

Cisco Prime Data Center Network Manager Multiple Remote Command Execution Vulnerabilities
2013-12-03
http://www.securityfocus.com/bid/62484

ClientExec Multiple SQL Injection and Cross Site Scripting Vulnerabilities
2013-12-03
http://www.securityfocus.com/bid/64011

Samba ACL Check Security Bypass Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63646

librsvg XML External Entities CVE-2013-1881 Information Disclosure Vulnerability
2013-12-03
http://www.securityfocus.com/bid/62714

EMC Document Sciences xPression CVE-2013-6177 Unspecified Directory Traversal Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63809

EMC Document Sciences xPression CVE-2013-6175 Multiple HTML Injection Vulnerabilities
2013-12-03
http://www.securityfocus.com/bid/63808

EMC Document Sciences xPression CVE-2013-6174 Unspecified Open Redirection Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63810

EMC Document Sciences xPression CVE-2013-6176 Unspecified SQL Injection Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63806

EMC Document Sciences xPression CVE-2013-6173 Multiple Cross Site Request Forgery Vulnerabilities
2013-12-03
http://www.securityfocus.com/bid/63807

cURL/libcURL SSL Certificate Host Name Validation Security Bypass Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63776

Multiple Vendors 'alpha_auth_check()' Function Remote Authentication Bypass Vulnerability
2013-12-03
http://www.securityfocus.com/bid/62990

Multiple Vendors 'RuntimeDiagnosticPing()' Stack Buffer Overflow Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63234

HP Service Manager and ServiceCenter CVE-2013-4844 Unspecified Remote Code Execution Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63965

Drupal Core Overlay Module Open Redirection Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63843

Drupal Core Image Module HTML Injection Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63848

Drupal Core Color Module Cross Site Scripting Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63847

Drupal 'mt_rand()' Multiple Predictable Random Number Generator Weaknesses
2013-12-03
http://www.securityfocus.com/bid/63840

Drupal Core Multiple Cross Site Request Forgery Vulnerabilities
2013-12-03
http://www.securityfocus.com/bid/63837

Mediawiki CSS Tags CVE-2013-4567 HTML Injection Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63760

Mediawiki CSS Tags CVE-2013-4568 HTML Injection Vulnerability
2013-12-03
http://www.securityfocus.com/bid/63761

Exploit

  Cisco Prime Data Center Network Manager Arbitrary File Upload

  ABB MicroSCADA wserver.exe Remote Code Execution

  Notepad++ Plugin Notepad# 1.5 - Local Exploit

2.12.2013

Bugtraq

[SECURITY] [DSA 2806-1] nbd security update 2013-11-29
Thijs Kinkhorst (thijs debian org)

FreeBSD Security Advisory FreeBSD-SA-13:14.openssh [REVISED] 2013-11-29
FreeBSD Security Advisories (security-advisories freebsd org)

NewsAktuell PressePortal DE - Remote SQL Injection Web Vulnerability 2013-11-28
Vulnerability Lab (research vulnerability-lab com)

Malware

RDN/Generic PWS.y!wg!6B42E9B43B00

RDN/Generic PUP.x!AF271DE8A2D3

Generic PUP.x!C679520E3C44

RDN/Generic PUP.x!2988EA1D6514

RDN/Generic Dropper!95629DD8B481

RDN/Generic PUP.x!b2e!1CCE15AD3CB5

RDN/Generic PUP.x!b2e!2757938A9965

RDN/Generic PUP.x!b2e!86D51585366C

RDN/Generic PUP.x!b2e!B90C846076A0

RDN/Generic PUP.x!b2e!D63B8817FDA7

RDN/Generic PUP.x!b2e!ACD8F11A543E

RDN/Generic Dropper!sl!2CC5005FB07E

Generic PUP.x!ADE558DAC967

RDN/Generic PUP.x!b2e!0E27214DD357

Generic.bfr!2BA872F6E359

Generic PUP.x!40AF2149D175

RDN/Generic PUP.x!b2e!082531D4602E

Generic Downloader.x!36B360DEE87E

Generic.bfr!1C36EF70440A

RDN/Generic PUP.x!b2e!7183E0F50BEB

RDN/Generic PUP.x!b2e!2AD89C6F8A5C

RDN/Generic PUP.x!b2e!47B8FC32B84E

RDN/Generic PUP.x!b2e!114C1CB3BBB9

RDN/Generic PUP.x!b2e!D470CC67F9DE

RDN/Generic Dropper!F85DD9CE100F

Generic PUP.x!8759E49BE198

Generic PUP.x!B8F4DE6CF93F

Generic PUP.x!B9013B047288

RDN/Generic.bfr!5B8472DF5A6C

Phishing

INTERNATIONAL MONETARY FUND (I

2nd December 2013

INTERNATIONAL MONETARY FUND
(IMF)

Joanne Nemia

1st December 2013

Fwd: Important Document

Vulnerebility

Light Alloy '.m3u' File Remote Buffer Overflow Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63895

Nagios XI 'tfPassword' Parameter SQL Injection Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63754

Testa OTMS Multiple SQL Injection Vulnerabilities
2013-12-02
http://www.securityfocus.com/bid/63773

Linux Kernel 'qeth_core_main.c' File Local Buffer Overflow Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63890

Linux Kernel '/drivers/scsi/aacraid/commctrl.c' Pointer Dereference Denial of Service Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63887

Linux Kernel CVE-2013-6378 Local Denial of Service Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63886

Jenkins Exclusion Plugin CVE-2013-6373 Unspecified Security Bypass Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63876

ManageEngine DesktopCentral 'AgentLogUploadServlet' Directory Traversal Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63784

Zavio IP Cameras CVE-2013-2570 Command Injection Vulnerability
2013-12-02
http://www.securityfocus.com/bid/60188

Linux Kernel CVE-2012-6545 Multiple Local Information Disclosure Vulnerabilities
2013-12-02
http://www.securityfocus.com/bid/58991

Linux Kernel 'kvm_main.c' Local Denial of Service Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63790

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2013-12-02
http://www.securityfocus.com/bid/62696

Linux Kernel 'mmc_ioctl_cdrom_read_data()' Function Local Information Disclosure Vulnerability
2013-12-02
http://www.securityfocus.com/bid/60375

Linux Kernel '__nfs4_get_acl_uncached()' Function Local Buffer Overflow Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63791

Linux Kernel CVE-2013-4345 Off-By-One Buffer Overflow Vulnerability
2013-12-02
http://www.securityfocus.com/bid/62740

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-12-02
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-3231 Local Information Disclosure Vulnerability
2013-12-02
http://www.securityfocus.com/bid/59390

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-12-02
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-12-02
http://www.securityfocus.com/bid/62049

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-12-02
http://www.securityfocus.com/bid/58795

Linux Kernel 'fs/compat_ioctl.c' Information Disclosure Vulnerability
2013-12-02
http://www.securityfocus.com/bid/58906

Network Block Device Server 'strncmp()' Function Access Bypass Vulnerability
2013-12-02
http://www.securityfocus.com/bid/64002

OpenTTD 'MapSize()' Function Denial Of Service Vulnerability
2013-12-02
http://www.securityfocus.com/bid/64003

Debian adequate '-- user' Option Local Privilege Escalation Vulnerability
2013-12-02
http://www.securityfocus.com/bid/63994

Open Flash Chart 'get-data' Parameter Cross-Site Scripting Vulnerability
2013-12-02
http://www.securityfocus.com/bid/59928

Open Flash Chart 'ofc_upload_image.php' Remote PHP Code Execution Vulnerability
2013-12-02
http://www.securityfocus.com/bid/37314

chuggnutt.com HTML to Plain Text Conversion Remote Code Execution Vulnerability
2013-12-02
http://www.securityfocus.com/bid/32799

Smarty 'SmartyException' Class Cross Site Scripting Vulnerability
2013-12-02
http://www.securityfocus.com/bid/55506

Perl Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities
2013-12-02
http://www.securityfocus.com/bid/47766

Google Chrome CVE-2013-6632 Multiple Unspecified Memory Corruption Vulnerabilities
2013-12-02
http://www.securityfocus.com/bid/63729

Exploit

  Wordpress Orange Themes CSRF File Upload Vulnerability

 

  TVT TD-2308SS-B DVR - Directory Traversal Vulnerability

 

  Wordpress Orange Themes CSRF File Upload Vulnerability
 

1.12.2013

Bugtraq

[SECURITY] [DSA 2806-1] nbd security update 2013-11-29
Thijs Kinkhorst (thijs debian org)

FreeBSD Security Advisory FreeBSD-SA-13:14.openssh [REVISED] 2013-11-29
FreeBSD Security Advisories (security-advisories freebsd org)

NewsAktuell PressePortal DE - Remote SQL Injection Web Vulnerability 2013-11-28
Vulnerability Lab (research vulnerability-lab com)

RUCKUS ADVISORY ID 10282013 - User authentication bypass vulnerability in Ruckus Access Point's administrative web interface 2013-11-27
Ruckus Product Security Team (security ruckuswireless com)

[SECURITY] [DSA 2805-1] sup-mail security update 2013-11-27
Luciano Bello (luciano debian org)

[HITB-Announce] #HITB2014AMS Call for Papers Now Open 2013-11-27
Hafez Kamal (aphesz hackinthebox org)

SQL Injection in Chamilo LMS 2013-11-27
High-Tech Bridge Security Research (advisory htbridge com)

SQL Injection in Dokeos 2013-11-27
High-Tech Bridge Security Research (advisory htbridge com)

[security bulletin] HPSBGN02942 rev.1 - HP Service Manager and ServiceCenter, Remote Code Execution 2013-11-26
security-alert hp com

[SECURITY] [DSA 2804-1] drupal7 security update 2013-11-26
Moritz Muehlenhoff (jmm debian org)

Multiple Cross-Site Scripting (XSS) in Claroline 2013-11-27
High-Tech Bridge Security Research (advisory htbridge com)

[ MDVSA-2013:287 ] drupal 2013-11-26
security mandriva com

Malware

RDN/Generic Downloader.x!iy!E2D861DBB6B9

RDN/Generic PUP.x!b2c!7953E09191C9

RDN/Autorun.worm!da!3E4953AC167F

RDN/Generic PUP.x!b2c!78F237CAA053

RDN/Generic PUP.x!b2c!78EFD1474B5C

RDN/Generic PUP.z!dn!1C429D8FA31E

Generic Dropper!107E86C655F3

Generic.bfr!6171ED25BBF3

RDN/Generic PUP.x!2831C5FF7986

RDN/Generic PUP.x!b2c!7915C2755B5B

Generic PUP.x!0C9264ECB366

Generic.bfr!A6A512BCB577

Generic.bfr!1042B955515E

Generic.bfr!A36092F1CC5B

Generic.bfr!4A73B5209687

RDN/Generic PUP.x!b2c!7924ADE455DF

Generic.bfr!27ACAAD4670C

Generic.bfr!6CAF938D077D

Generic.bfr!1F3EB7DF546F

Generic PUP.x!4418621244B5

Generic.bfr!4D1C67414FC7

RDN/Generic PUP.x!b2c!78F7E5BC00B5

Generic.bfr!B4182611C85C

Generic.bfr!E0B8E29B3172

Generic.bfr!032DB266006F

Generic.bfr!5D51370B4E11

FakeAV-Y.bfr!CD4AD0620DC0

RDN/Generic PUP.x!b2c!791F3ED6A729

RDN/Generic.bfr!D5B7E6C91BB3

Phishing

Joanne Nemia

1st December 2013

Fwd: Important Document

Virgin Media Profile Updat

30th November 2013

virgin media Update

PAYPAL

30th November 2013

Your Account Has Been Limited

Natwest Credit Card Online Ser

28th November 2013

You Have 1 New Message

Vulnerebility

Light Alloy '.m3u' File Remote Buffer Overflow Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63895

Nagios XI 'tfPassword' Parameter SQL Injection Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63754

Testa OTMS Multiple SQL Injection Vulnerabilities
2013-12-01
http://www.securityfocus.com/bid/63773

Linux Kernel 'qeth_core_main.c' File Local Buffer Overflow Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63890

Linux Kernel '/drivers/scsi/aacraid/commctrl.c' Pointer Dereference Denial of Service Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63887

Linux Kernel CVE-2013-6378 Local Denial of Service Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63886

Jenkins Exclusion Plugin CVE-2013-6373 Unspecified Security Bypass Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63876

ManageEngine DesktopCentral 'AgentLogUploadServlet' Directory Traversal Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63784

Zavio IP Cameras CVE-2013-2570 Command Injection Vulnerability
2013-12-01
http://www.securityfocus.com/bid/60188

Linux Kernel CVE-2012-6545 Multiple Local Information Disclosure Vulnerabilities
2013-12-01
http://www.securityfocus.com/bid/58991

Linux Kernel 'kvm_main.c' Local Denial of Service Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63790

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2013-12-01
http://www.securityfocus.com/bid/62696

Linux Kernel 'mmc_ioctl_cdrom_read_data()' Function Local Information Disclosure Vulnerability
2013-12-01
http://www.securityfocus.com/bid/60375

Linux Kernel '__nfs4_get_acl_uncached()' Function Local Buffer Overflow Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63791

Linux Kernel CVE-2013-4345 Off-By-One Buffer Overflow Vulnerability
2013-12-01
http://www.securityfocus.com/bid/62740

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-12-01
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-3231 Local Information Disclosure Vulnerability
2013-12-01
http://www.securityfocus.com/bid/59390

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-12-01
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-12-01
http://www.securityfocus.com/bid/62049

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-12-01
http://www.securityfocus.com/bid/58795

Linux Kernel 'fs/compat_ioctl.c' Information Disclosure Vulnerability
2013-12-01
http://www.securityfocus.com/bid/58906

Network Block Device Server 'strncmp()' Function Access Bypass Vulnerability
2013-12-01
http://www.securityfocus.com/bid/64002

OpenTTD 'MapSize()' Function Denial Of Service Vulnerability
2013-12-01
http://www.securityfocus.com/bid/64003

Debian adequate '-- user' Option Local Privilege Escalation Vulnerability
2013-12-01
http://www.securityfocus.com/bid/63994

Open Flash Chart 'get-data' Parameter Cross-Site Scripting Vulnerability
2013-12-01
http://www.securityfocus.com/bid/59928

Open Flash Chart 'ofc_upload_image.php' Remote PHP Code Execution Vulnerability
2013-12-01
http://www.securityfocus.com/bid/37314

chuggnutt.com HTML to Plain Text Conversion Remote Code Execution Vulnerability
2013-12-01
http://www.securityfocus.com/bid/32799

Smarty 'SmartyException' Class Cross Site Scripting Vulnerability
2013-12-01
http://www.securityfocus.com/bid/55506

Perl Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities
2013-12-01
http://www.securityfocus.com/bid/47766

Google Chrome CVE-2013-6632 Multiple Unspecified Memory Corruption Vulnerabilities
2013-12-01
http://www.securityfocus.com/bid/63729

Exploit

  TP-Link TL-WR740N / TL-WR740ND - 150M Wireless Lite N Router HTTP DoS

23.11.2013

Bugtraq

Unauthorized console access on Satechi travel router v1.5 2013-11-22
Luc Dore (ldore mailc net)

CVE-2013-6795 Vulnerability in the Rackspace Windows Agent and Updater 2013-11-22
andrew cloudpassage com

[SECURITY] [DSA 2802-1] nginx security update 2013-11-21
Thijs Kinkhorst (thijs debian org)

ESA-2013-077: RSA Data Protection Manager Appliance Multiple Vulnerabilities 2013-11-21
Security Alert (Security_Alert emc com)

DC4420 (DefCon London) meeting next Tuesday, 26th November 2013 2013-11-21
Tony Naggs (tonynaggs gmail com)

[SECURITY] [DSA 2801-1] libhttp-body-perl security update 2013-11-21
Salvatore Bonaccorso (carnil debian org)

[ MDVSA-2013:278 ] samba 2013-11-21
security mandriva com

Malware

Adware-Eorezo

Generic.bfr!ECE3F818F159

Generic.bfr!25E1AF4F6913

Generic.dx!607F416EAB2E

Generic.bfr!B712F0B23E0E

Generic PUP.x!13B566957C15

RDN/Generic PUP.x!bn3!25742E9A43E3

Generic PUP.x!D6839E70F8D4

Generic.bfr!1AB02BAFD1C9

Generic.bfr!B8004B19784C

Generic.bfr!140930F7D6C7

Generic PUP.x!701E9F147B5B

Generic PUP.x!19A66E0CD9B0

RDN/Generic Dropper!D03A15184E27

Generic Downloader.x!ED1FD98F6914

Generic PUP.x!186E4446983F

RDN/Generic PUP.x!bn3!509A3EB77BF4

Generic PUP.x!18D5524D2ED3

Generic.bfr!B6DB707F7AC7

RDN/Generic PUP.x!bn3!A6995656A3D6

RDN/Generic PUP.x!bn3!14233794B8FB

RDN/Generic PUP.x!bn3!3CB0929500E4

Generic Downloader.x!B8C57FB46C65

Generic PUP.x!19BC8E91CCEE

Generic PUP.x!1684CD6DBA78

Generic.bfr!17597A39BFD4

RDN/Generic PUP.x!bn3!6F2A7AB13B74

RDN/Generic PUP.x!bn3!3DA4F5FDDAB6

Generic Downloader.x!8EF1A50C6990

RDN/Generic PUP.x!bn3!67C4B5426512

Phishing

Amazon

23rd November 2013

Important - Action Required to
Amazon Account Update

PayPal

22nd November 2013

Your account has been limited
until we hear from you
PP-503-472-F29

YAHOO! ASIA DRAW

22nd November 2013

Yahoo! Asia Winner!

Vulnerebility

Drupal 'mt_rand()' Multiple Predictable Random Number Generator Weaknesses
2013-11-23
http://www.securityfocus.com/bid/63840

Drupal Core Overlay Module Open Redirection Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63843

Drupal Core Color Module Cross Site Scripting Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63847

Drupal Core Multiple Cross Site Request Forgery Vulnerabilities
2013-11-23
http://www.securityfocus.com/bid/63837

Drupal Core Image Module HTML Injection Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63848

memcached Remote Denial of Service Vulnerability
2013-11-23
http://www.securityfocus.com/bid/59567

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63153

Oracle Java SE CVE-2013-5838 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63131

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63149

Wireshark NBAP Dissector CVE-2013-6337 Denial of Service Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63504

Wireshark SIP Dissector CVE-2013-6338 Denial of Service Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63502

Wireshark ActiveMQ OpenWire Dissector CVE-2013-6339 Denial of Service Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63501

Wireshark IEEE 802.15.4 Dissector CVE-2013-6336 Denial of Service Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63503

Wireshark TCP Dissector CVE-2013-6340 Denial of Service Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63500

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5848 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63124

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5851 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63142

Oracle Java SE CVE-2013-5832 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63158

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63137

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63150

Oracle Java SE CVE-2013-5831 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63129

Oracle Java SE CVE-2013-5820 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63133

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63110

Oracle Java SE CVE-2013-5819 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63141

Oracle Java SE CVE-2013-5824 Remote Security Vulnerability
2013-11-23
http://www.securityfocus.com/bid/63139

Exploit

Light Alloy 4.7.3 (.m3u) - SEH Buffer Overflow (Unicode)

22.11.2013

Bugtraq

[SECURITY] [DSA 2802-1] nginx security update 2013-11-21
Thijs Kinkhorst (thijs debian org)

ESA-2013-077: RSA Data Protection Manager Appliance Multiple Vulnerabilities 2013-11-21
Security Alert (Security_Alert emc com)

DC4420 (DefCon London) meeting next Tuesday, 26th November 2013 2013-11-21
Tony Naggs (tonynaggs gmail com)

[SECURITY] [DSA 2801-1] libhttp-body-perl security update 2013-11-21
Salvatore Bonaccorso (carnil debian org)

[ MDVSA-2013:278 ] samba 2013-11-21
security mandriva com

[ MDVSA-2013:274 ] libjpeg 2013-11-21
security mandriva com

[ MDVSA-2013:276 ] curl 2013-11-21
security mandriva com

Instagram Photo Upload and Flattr Money Redirection Vulnerability 2013-11-21
pfohl rt-solutions de

Facebook Vulnerability Discloses Friends Lists Defined as Private 2013-11-21
qsrc Quotium (qsrc quotium com)

[ MDVSA-2013:277 ] lighttpd 2013-11-21
security mandriva com

[ MDVSA-2013:275 ] krb5 2013-11-21
security mandriva com

[ MDVSA-2013:272 ] poppler 2013-11-21
security mandriva com

[ MDVSA-2013:271 ] pmake 2013-11-21
security mandriva com

[ MDVSA-2013:273 ] libjpeg 2013-11-21
security mandriva com

Malware

Adware-Eorezo

RDN/Downloader.gen.a!F0F25991E6C8

RDN/Generic BackDoor!va!941A38F79F7D

RDN/Spybot.bfr!h!A0AAED80C1DA

Generic PUP.x!E0164F6178D2

Generic PUP.x!08F5CCAF1F94

Generic.bfr!C60C6A0D987D

RDN/Generic BackDoor!va!6200C664C58A

RDN/PWS-Banker!D6D41B88CD6E

Downloader-FWD

Generic Downloader.x!EB6D354F3D36

RDN/Generic BackDoor!uf!7741AA9FB399

Generic PUP.x!4457C187A244

Generic PUP.x!C1DAF2798171

ZeroAccess!288A3AFDA0EB

Generic PUP.x!E230347BCC16

Generic.bfr!543958ACD986

Generic PUP.x!26A045312A42

Generic Downloader.x!E66FAC67E0E6

Generic Downloader.x!FD0E500C22FC

Generic PUP.x!0147D4829C1C

Generic PUP.x!0BEF1D43D4E0

Generic PUP.x!EA64484540FF

Generic PUP.x!185239D49DB5

Generic PUP.x!FA3034423555

FakeAV-M.bfr!B42CC8EC08BC

Generic PUP.x!76819794D569

Generic PUP.x!FE0267C2DBA7

Generic PUP.x!5443C717B9B8

RDN/Generic.bfr!fi!6102209FCEF6

Phishing

Barclays Bank PLC

21st November 2013

YOU HAVE ONE UNREAD MESSAGE

Natwest

20th November 2013

Important NatWest Notice

Earthlink

20th November 2013

ACTION REQUIRED: EarthLink
Account Update

Vulnerebility

Cisco IOS MLDP CVE-2013-6693 Remote Denial of Service Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63860

JBoss Enterprise Application Platform CVE-2011-2487 Information Disclosure Vulnerability
2013-11-22
http://www.securityfocus.com/bid/57549

Google Chrome CVE-2013-6632 Multiple Unspecified Memory Corruption Vulnerabilities
2013-11-22
http://www.securityfocus.com/bid/63729

Linux Kernel CVE-2013-4299 Information Disclosure Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63183

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-4345 Off-By-One Buffer Overflow Vulnerability
2013-11-22
http://www.securityfocus.com/bid/62740

Xen CVE-2013-4368 Information Disclosure Vulnerability
2013-11-22
http://www.securityfocus.com/bid/62935

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63102

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5851 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63142

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63154

MIT Kerberos 5 'setup_server_realm()' Function CVE-2013-1418 Remote Denial of Service Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63555

Perl CGI.pm 'Set-Cookie' and 'P3P' Headers HTTP Header Injection Vulnerability
2013-11-22
http://www.securityfocus.com/bid/56562

Perl CVE-2013-1667 Input Rehashing Denial of Service Vulnerability
2013-11-22
http://www.securityfocus.com/bid/58311

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63802

SSL/TLS RC4 CVE-2013-2566 Information Disclosure Weakness
2013-11-22
http://www.securityfocus.com/bid/58796

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63738

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63736

Oracle Java SE CVE-2013-5838 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63131

Oracle Java SE CVE-2013-5800 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63111

Samba ACL Check Security Bypass Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63646

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-11-22
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63150

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63153

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-22
http://www.securityfocus.com/bid/63121

Exploit

 

21.11.2013

Bugtraq

[SECURITY] [DSA 2798-2] curl security update 2013-11-20
Salvatore Bonaccorso (carnil debian org)

[ MDVSA-2013:270 ] nss 2013-11-20
security mandriva com

[ MDVSA-2013:269 ] firefox 2013-11-20
security mandriva com

Appologics AirBeam v1.9.2 iOS - Multiple Web Vulnerabilities 2013-11-20
Vulnerability Lab (research vulnerability-lab com)

Mybb Ajaxfs Plugin Sql Injection vulnerability 2013-11-20
iedb team gmail com

Malware

Adware-Eorezo

RDN/Generic PUP.x!bm3!F521E00DFBFA

RDN/Generic.grp!gj!18B349E8C823

RDN/Generic BackDoor!uz!D17178E6E98E

Generic PUP.x!20B76EDFFD8D

Generic PUP.x!2030374CC4B6

Generic PUP.x!1E9B34ED5348

RDN/Generic BackDoor!D57F0D2C84C5

Generic PUP.x!1CF7BF9DDD9A

RDN/Generic.dx!D48D880F75C0

Generic PUP.x!1C170BB12F73

RDN/Generic PUP.x!bm3!1A9C54F85E28

Generic PUP.x!1A36D4944B31

Generic PWS.y!D0A66CA64774

RDN/Generic BackDoor!uz!1D11231E8CBC

Generic PUP.x!1E31DF58629D

RDN/Generic PUP.x!bm3!1C4E5C1721BE

RDN/Generic BackDoor!uz!ED8509FE8E19

Generic PUP.x!19BFB3AB6AB3

Generic PUP.x!1B1954767052

Generic PUP.x!1A8F730DE23A

RDN/Generic PUP.x!bm3!168E6401D25D

Generic PUP.x!6C5938C5CCE3

Generic PUP.x!1A457B0FF6AA

RDN/Qhost-Gen!bb!1A1ADB10E612

Generic PUP.x!18CE5CB13915

Generic PUP.x!197A4749108E

Generic PUP.x!1CE41085BCF3

Generic PUP.x!1D170C5114DE

Generic PUP.x!178AC3B23A3C

Phishing

Natwest

20th November 2013

Important NatWest Notice

Earthlink

20th November 2013

ACTION REQUIRED: EarthLink
Account Update

Yahoo! Services

20th November 2013

Yahoo! Account Update

Natwest Credit Card Online Ser

20th November 2013

YOU HAVE 1 NEW MESSAGE

ANZ

20th November 2013

ANZ Account Transactions

Vulnerebility

BIP SSL Handshake Remote Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/63639

X.Org X11 CVE-2013-1940 Local Information Disclosure Vulnerability
2013-11-21
http://www.securityfocus.com/bid/59282

Wireshark MQ Dissector CVE-2013-5721 Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/62320

Wireshark Multiple Denial of Service Vulnerabilities
2013-11-21
http://www.securityfocus.com/bid/61471

Wireshark CVE-2013-4933 Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/62868

Wireshark CVE-2013-4081 Stack Buffer Overflow Vulnerability
2013-11-21
http://www.securityfocus.com/bid/60505

Wireshark DCP ETSI Dissector 'dissect_pft_fec_detailed()' Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/59995

Wireshark Websocket Dissector 'packet-websocket.c' Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/59996

Wireshark MySQL Dissector Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/60001

Wireshark ASN.1 BER Dissector CVE-2013-3557 Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/60021

Wireshark CVE-2013-4083 Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/60504

Wireshark ETCH Dissector Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/60002

Wireshark Versions Prior to 1.8.2 Multiple Security Vulnerabilities
2013-11-21
http://www.securityfocus.com/bid/55035

Wireshark Information Disclosure and Denial of Service Vulnerabilities
2013-11-21
http://www.securityfocus.com/bid/56729

Wireshark Multiple Dissector Denial of Service Vulnerabilities
2013-11-21
http://www.securityfocus.com/bid/53651

Pacemaker CVE-2013-0281 Remote Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/57965

OpenSSH CVE-2010-5107 Denial of Service Vulnerability
2013-11-21
http://www.securityfocus.com/bid/58162

GNU Coreutils 'sort' Text Utility Buffer Overflow Vulnerability
2013-11-21
http://www.securityfocus.com/bid/57492

GNU Coreutils 'uniq' Text Utility Buffer Overflow Vulnerability
2013-11-21
http://www.securityfocus.com/bid/57517

GNU Coreutils 'join' Text Utility Buffer Overflow Vulnerability
2013-11-21
http://www.securityfocus.com/bid/57516

Python SSL Module CVE-2013-4238 Security Bypass Vulnerability
2013-11-21
http://www.securityfocus.com/bid/61738

Drupal Context Module Arbitrary PHP Code Execution Vulnerability
2013-11-21
http://www.securityfocus.com/bid/63171

Drupal Context Module CVE-2013-4445 Module Access Bypass Vulnerability
2013-11-21
http://www.securityfocus.com/bid/63231

Xen 'dma_pte_clear_one()' Function Local Privilege Escalation Vulnerability
2013-11-21
http://www.securityfocus.com/bid/63830

PHP 'soap.wsdl_cache_dir' Validation Arbitrary File Write Vulnerability
2013-11-21
http://www.securityfocus.com/bid/58224

PHP NULL Character Security Bypass Vulnerability
2013-11-21
http://www.securityfocus.com/bid/44951

PHP SSL Certificate Validation CVE-2013-4248 Security Bypass Vulnerability
2013-11-21
http://www.securityfocus.com/bid/61776

libguestfs CVE-2013-4419 Insecure Temporary Directory Creation Privilege Escalation Vulnerability
2013-11-21
http://www.securityfocus.com/bid/63226

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-11-21
http://www.securityfocus.com/bid/62043

QEMU CVE-2013-4344 Remote Buffer Overflow Vulnerability
2013-11-21
http://www.securityfocus.com/bid/62773

Exploit

 

20.11.2013

Bugtraq

Appologics AirBeam v1.9.2 iOS - Multiple Web Vulnerabilities 2013-11-20
Vulnerability Lab (research vulnerability-lab com)

Mybb Ajaxfs Plugin Sql Injection vulnerability 2013-11-20
iedb team gmail com

Paypal Bug Bounty #14 - Persistent Payment Mail Encoding Vulnerability 2013-11-20
Vulnerability Lab (research vulnerability-lab com)

[ MDVSA-2013:268 ] torque 2013-11-19
security mandriva com

Intersystems Cache Remote Code Execution (via Default 'Minimal Security' Install) 2013-11-19
bruk0ut sec gmail com

XADV-2013007 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow 2013-11-19
geinblues gmail com

XADV-2013008 Linux Kernel 3.11.7 <= sk_attach_filter Kernel Heap Corruption 2013-11-19
geinblues gmail com

XADV-2013003 Linux Kernel fbdev Driver arcfb_write() Overflow 2013-11-19
geinblues gmail com

pineapp mailsecure remote no authenticated privilege escalation & remote execution code 2013-11-19
rubengarrote gmail com

ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities 2013-11-19
Security Alert (Security_Alert emc com)

[ MDVSA-2013:267 ] java-1.7.0-openjdk 2013-11-19
security mandriva com

[ MDVSA-2013:266 ] java-1.6.0-openjdk 2013-11-19
security mandriva com

16TH AVAR INTERNATIONAL SECURITY CONFERENCE 2013 - (4th-7th Dec'13, Chennai. India) 2013-11-19
Gregory Panakkal (gregory_panakkal fastmail fm)

FreeBSD Security Advisory FreeBSD-SA-13:14.openssh 2013-11-19
FreeBSD Security Advisories (security-advisories freebsd org)

SKIDATA RFID Freemotion.Gate Unauthenticated Web Service Aribtrary Remote Command Execution 2013-11-19
Dennis Kelly (dennis kelly gmail com)

Paypal Inc Bug Bounty #47 ALYZ - Persistent Search Vulnerability 2013-11-19
Vulnerability Lab (research vulnerability-lab com)

PayPal Inc Bug Bounty #42 - Persistent POST Inject Vulnerability 2013-11-19
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] seamonkey (SSA:2013-322-04) 2013-11-19
Slackware Security Team (security slackware com)

PayPal Inc Bug Bounty #65 China - Redirect Web Vulnerability 2013-11-19
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] samba (SSA:2013-322-03) 2013-11-19
Slackware Security Team (security slackware com)

[slackware-security] openssh (SSA:2013-322-02) 2013-11-19
Slackware Security Team (security slackware com)

[slackware-security] mozilla-firefox (SSA:2013-322-01) 2013-11-19
Slackware Security Team (security slackware com)

Malware

Generic FakeAlert!FDDB8ECBABC6

Generic PUP.x!792F635505E6

RDN/Generic Dropper!sh!C51C24B84683

Generic PUP.x!B23D6AEEAFF1

Generic.dx!8BE96C170761

Generic PUP.x!F7A8AA16C49A

Downloader-FLN!181C2FF53647!181C2FF53647

Downloader-FLN!D01A7E94A30B!D01A7E94A30B

Generic.bfr!D2DA276EC91D

RDN/Generic PUP.x!bmv!CEAAEDD6240D

Generic StartPage!DF4D9A853865

RDN/Generic PUP.x!6453DC723515

RDN/Generic PUP.x!bmv!91F294458C94

RDN/BackDoor-AWQ!2465084E350F

Generic Downloader.x!C6F7CD2976A0

RDN/Generic BackDoor!uz!C20CA45EAD0C

RDN/Generic BackDoor!uz!D7819D0B02FB

RDN/Generic PUP.x!43439DF81A87

Generic PUP.x!794A61131ACE

RDN/Generic PUP.x!bmv!D75ED91895BB

RDN/Generic PUP.x!bmv!25721ACADE01

RDN/Generic.dx!ctr!CE28277A897B

W32/Sality.gen!8C4444BC9B86

Generic Downloader.x!7F5566C5E924

Generic PWS.y!43E08AFF881E

RDN/Generic PUP.x!bmv!2CECC82A6ADF

RDN/Generic PUP.x!bmv!EC8C6CD163B2

Generic PUP.x!E3070FDF06D4

RDN/Generic PUP.x!bmv!2EDB7054965E

Generic PUP.x!672D79478DAD

Phishing

Barclays

19th November 2013

Important Information From
Barclays

Halifax

19th November 2013

Irregular activity on your
halifax online Account

Lloyds

19th November 2013

YOU HAVE 1 NEW MESSAGES
AVAILABILITY

Littlewoods

19th November 2013

YOU HAVE 1 NEW MESSAGE

Vulnerebility

Oracle Java SE CVE-2013-5812 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63126

SSL/TLS RC4 CVE-2013-2566 Information Disclosure Weakness
2013-11-20
http://www.securityfocus.com/bid/58796

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63736

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63738

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63153

Oracle Java SE CVE-2013-5851 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63142

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5848 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63124

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63150

Oracle Java SE CVE-2013-5838 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63131

Oracle Java SE CVE-2013-5832 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63158

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5831 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63129

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63802

Google Chrome CVE-2013-2928 Multiple Unspecified Security Vulnerabilities
2013-11-20
http://www.securityfocus.com/bid/63024

Mozilla Network Security Services CVE-2013-5606 Certificate Validation Security Bypass Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63737

Google Chrome CVE-2013-2927 Use After Free Remote Code Execution Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63025

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63137

Google Chrome CVE-2013-2925 Use After Free Remote Code Execution Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63026

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63143

Oracle Java SE CVE-2013-5819 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63141

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5801 Remote Security Vulnerability
2013-11-20
http://www.securityfocus.com/bid/63147

Exploit

  Ruckus Wireless Zoneflex 2942 Wireless Access Point - Authentication Bypass

  DeepOfix SMTP Server 3.3 - Authentication Bypass

  JPEGView 1.0.29 - Crash PoC

19.11.2013

Bugtraq

Paypal Inc Bug Bounty #47 ALYZ - Persistent Search Vulnerability 2013-11-19
Vulnerability Lab (research vulnerability-lab com)

PayPal Inc Bug Bounty #42 - Persistent POST Inject Vulnerability 2013-11-19
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] seamonkey (SSA:2013-322-04) 2013-11-19
Slackware Security Team (security slackware com)

PayPal Inc Bug Bounty #65 China - Redirect Web Vulnerability 2013-11-19
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] samba (SSA:2013-322-03) 2013-11-19
Slackware Security Team (security slackware com)

[slackware-security] openssh (SSA:2013-322-02) 2013-11-19
Slackware Security Team (security slackware com)

[slackware-security] mozilla-firefox (SSA:2013-322-01) 2013-11-19
Slackware Security Team (security slackware com)

[SOJOBO-ADV-13-04] - PHP-Nuke 8.2.4 multiple vulnerabilities 2013-11-18
advisories enkomio com

Re: Fwd: vulnerability issue for DB2 express 2013-11-18
shatter appsecinc com

[OVSA20131108] OpenVAS Manager And OpenVAS Administrator Vulnerable To Partial Authentication Bypass 2013-11-15
Tim Brown (timb openvas org)

Information Security Forecast 2014 2013-11-17
Jeimy Cano (jjcano yahoo com)

[SECURITY] [DSA 2798-1] curl security update 2013-11-17
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 2797-1] chromium-browser security update 2013-11-17
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 2795-2] lighttpd regression update 2013-11-17
Michael Gilbert (mgilbert debian org)

XADV-2013006 FreeBSD <= 10 kernel qlxge/qlxgbe Driver IOCTL Multiple Kernel Memory Leak Bugs 2013-11-16
geinblues gmail com

XADV-2013005 FreeBSD 10 <= nand Driver IOCTL Kernel Memory Leak Bug 2013-11-16
geinblues gmail com

[CVE-2013-6356] Avira Secure Backup v1.0.0.1 Multiple Registry Key Value Parsing Local Buffer Overflow Vulnerability 2013-11-16
Julien Ahrens (info rcesecurity com)

Cross-Site Scripting (XSS) in Tweet Blender Wordpress Plugin 2013-11-15
High-Tech Bridge Security Research (advisory htbridge com)

NEW VMSA-2013-0013 VMware Workstation host privilege escalation vulnerability 2013-11-15
\VMware Security Response Center\ (security vmware com)

Re: Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-14
Kevin Cernekee (cernekee gmail com)

APPLE-SA-2013-11-14-1 iOS 7.0.4 2013-11-14
Apple Product Security (product-security-noreply lists apple com)

Re: [security bulletin] HPSBUX02922 SSRT101305 rev.1 - HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: DS3 Authentication Server - Multiple Issues 2013-11-13
support ds3global com

Dahua DVR Authentication Bypass - CVE-2013-6117 2013-11-13
Jake Reynolds (Jake depthsecurity com)

[SECURITY] [DSA 2797-1] icedove security update 2013-11-13
Moritz Muehlenhoff (jmm debian org)

Android Superuser shell character escape vulnerability 2013-11-13
Kevin Cernekee (cernekee gmail com)

Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-13
Kevin Cernekee (cernekee gmail com) (1 replies)

Malware

Generic Dropper!A65DFFFA94E2

Generic.bfr!F4F4FC4E3F10

Generic PUP.z!09F87F62B341

Generic Flooder!3F561BFAA5B2

Generic Downloader.x!5D6883464307

RDN/Generic.bfr!fi!F87C2405733B

W32/Sality.gen!9A273DCD874F

RDN/Generic PUP.x!bms!A7764F29DD2A

Generic Dropper!3285F012406F

RDN/Generic PUP.x!bms!D92C9496B9AC

RDN/Autorun.worm!cz!4F877FDF574D

Generic.bfr!C9E0B9F09327

Generic.bfr!B68B2EED282E

RDN/Generic BackDoor!B8F41659FFEC

Generic Downloader.x!1B22A2F64829

Generic StartPage!41151BF4172E

Downloader.gen.a!854BEF265929

Generic FakeAlert!46CAFBEA3831

RDN/Generic FakeAlert!49507F1C8DBA

Generic StartPage!02DC990C95BB

Generic PUP.x!3FD2B7E5AA3C

RDN/BackDoor-AWQ!D8E3687B1E03

Generic PUP.x!977A5D300DB3

RDN/Generic PUP.x!bms!FB3F684A7668

RDN/Generic PUP.x!bms!F4CD10FA097C

RDN/Spybot.bfr!h!58FD7364D301

RDN/Generic PUP.x!bms!90557AC8A306

RDN/PWS-Lineage!bb!28569F0D1EFF

RDN/Generic BackDoor!uy!BAEFF604AAC3

RDN/Generic Dropper!28BF9469D254

Phishing

Lloyds

19th November 2013

YOU HAVE 1 NEW MESSAGES
AVAILABILITY

Littlewoods

19th November 2013

YOU HAVE 1 NEW MESSAGE

Littlewoods

18th November 2013

YOU HAVE 1 NEW MESSAGE

Lloyds

17th November 2013

YOU HAVE 1 NEW MESSAGES
AVAILABILITY

Vulnerebility

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63102

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63150

Cisco Services Portal CVE-2013-3406 Arbitrary File Download Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63735

Cisco Server Provisioner Software CVE-2013-3407 Access Bypass Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63730

Cisco Nexus 1000V CVE-2013-5556 Local Arbitrary Command Execution Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63732

GraphicsMagick 'ExportAlphaQuantumType()' Function Denial Of Service Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63002

IBM Java CVE-2013-4041 Unspecified Security Bypass Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63619

IBM Integration Bus XML4J Parser Entity Expansion Denial of Service Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63224

IBM Java CVE-2013-5375 Unspecified Security Bypass Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63621

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63134

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63095

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5801 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63147

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63143

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63137

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-19
http://www.securityfocus.com/bid/63423

Exploit

 

18.11.2013

Bugtraq

[OVSA20131108] OpenVAS Manager And OpenVAS Administrator Vulnerable To Partial Authentication Bypass 2013-11-15
Tim Brown (timb openvas org)

Information Security Forecast 2014 2013-11-17
Jeimy Cano (jjcano yahoo com)

[SECURITY] [DSA 2798-1] curl security update 2013-11-17
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 2797-1] chromium-browser security update 2013-11-17
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 2795-2] lighttpd regression update 2013-11-17
Michael Gilbert (mgilbert debian org)

XADV-2013006 FreeBSD <= 10 kernel qlxge/qlxgbe Driver IOCTL Multiple Kernel Memory Leak Bugs 2013-11-16
geinblues gmail com

XADV-2013005 FreeBSD 10 <= nand Driver IOCTL Kernel Memory Leak Bug 2013-11-16
geinblues gmail com

Malware

RDN/Generic Dropper!sf!329682E7DEFF

RDN/Generic Dropper!sf!9868A5DC2A85

RDN/Generic Dropper!sf!3B7BDF550EE7

RDN/Generic Dropper!sf!770A8F3380AE

RDN/Generic Dropper!sf!9D1AE0579116

RDN/Generic Dropper!sf!6492110A768B

RDN/Generic Dropper!sf!244BC9C64EE1

RDN/Generic Dropper!sf!95B0F6DF318C

RDN/Generic Dropper!sf!251314C41409

RDN/Generic Dropper!sf!9EF184DD93BD

RDN/Generic Dropper!sf!95BF9A222FD9

RDN/Generic Dropper!sf!04278BDF5F30

RDN/Generic Dropper!sf!26D85522E115

RDN/Generic Dropper!sf!2CF608D43A99

RDN/Generic Dropper!sf!451B300DE980

RDN/Generic Dropper!sf!9D33A106D863

RDN/Generic Dropper!sf!0963E79F1BB6

RDN/Generic Dropper!sf!8916548D0F12

RDN/Generic Dropper!sf!26AD05643784

RDN/Generic Dropper!sf!3B9B29389872

RDN/Generic Dropper!sf!2D0DCB953762

RDN/Generic Dropper!sf!24F6727A7A6E

RDN/Generic Dropper!sf!79E758C5260D

RDN/Generic Dropper!sf!45C9F6E50F1C

RDN/Generic Dropper!sf!2454492E36F0

RDN/Generic Dropper!sf!462146729751

RDN/Generic Dropper!sf!1DDF8285BEBE

RDN/Generic Dropper!sf!26F127A658BD

RDN/Generic Dropper!sf!3BB2835DA26E

RDN/Generic Dropper!sf!45414B7AE885

Phishing

Lloyds

17th November 2013

YOU HAVE 1 NEW MESSAGES
AVAILABILITY

National Westminster

15th November 2013

ACCOUNT REVEIW

Lloyds Bank

14th November 2013

ACCESS TO ONLINE BANKING
SERVICE

Vulnerebility

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63150

Cisco Services Portal CVE-2013-3406 Arbitrary File Download Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63735

Cisco Server Provisioner Software CVE-2013-3407 Access Bypass Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63730

Cisco Nexus 1000V CVE-2013-5556 Local Arbitrary Command Execution Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63732

GraphicsMagick 'ExportAlphaQuantumType()' Function Denial Of Service Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63002

IBM Java CVE-2013-4041 Unspecified Security Bypass Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63619

IBM Integration Bus XML4J Parser Entity Expansion Denial of Service Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63224

IBM Java CVE-2013-5375 Unspecified Security Bypass Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63621

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63134

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63095

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5801 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63147

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63143

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63137

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-18
http://www.securityfocus.com/bid/63428

Network Security Services Uninitialized Data Read Security Vulnerability
2013-11-18
http://www.securityfocus.com/bid/62966

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-18
http://www.securityfocus.com/bid/63421

Exploit

  Avira Secure Backup 1.0.0.1 Build 3616 (.reg) - Buffer Overflow

  Supermicro Onboard IPMI close_window.cgi Buffer Overflow

  Wordpress Euclid Theme - CSRF Vulnerability

  Wordpress Dimension Theme - CSRF Vulnerability

  Wordpress Amplus Theme - CSRF Vulnerability

  Wordpress Make A Statement (MaS) Theme - CSRF Vulnerability

  LiveZilla version 5.0.1.4 - Remote Code Execution

  Dahua DVR 2.608.0000.0 and 2.608.GV00.0 - Authentication Bypass

  ManageEngine DesktopCentral 8.0.0 build 80293 - Arbitrary File Upload Vulnerability

  Kaseya 6.3.0.2 - Arbitrary File Upload Vulnerability

15.11.2013

 

Bugtraq

NEW VMSA-2013-0013 VMware Workstation host privilege escalation vulnerability 2013-11-15
\VMware Security Response Center\ (security vmware com)

Re: Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-14
Kevin Cernekee (cernekee gmail com)

APPLE-SA-2013-11-14-1 iOS 7.0.4 2013-11-14
Apple Product Security (product-security-noreply lists apple com)

Re: [security bulletin] HPSBUX02922 SSRT101305 rev.1 - HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Malware

Generic Dropper!33DF8776AEA2

RDN/Generic.dx!ctk!199146A8D660

RDN/Generic.dx!ctk!28934CD9D34A

Generic.dx!0B5495E394D2

RDN/Generic PWS.y!vu!97202FBAAD50

Generic Dropper!65BFF61A1BC0

Generic FakeAlert!0A8FB147CCD8

RDN/Generic PUP.x!7212B3F2B299

RDN/Downloader.a!nv!F10FD6947918

BackDoor-AWQ.b!9F45DAC9CE74

RDN/Generic StartPage!br!C06CFF574094

Cutwail-FCTP!AE860EC124A5!AE860EC124A5

RDN/Generic.tfr!dt!DB339E59E61E

RDN/Autorun.worm.gen!7B366EB58733

Generic PUP.z!188006D91F53

Generic Dropper!B36E97415CE9

Generic Downloader.x!3D8C5C4FE7A4

BackDoor-AWQ!1BCD28ACE8D6

RDN/Generic.dx!ctk!DC9CF62095F2

Downloader.gen.a!C89AA1401F1D

PWS-Mmorpg.gen!BD69200E41A0

RDN/Generic Dropper!99EDCD9DB3B8

RDN/Generic.dx!365401D1A743

Downloader.gen.a!4FD024842184

BackDoor-AWQ.b!5D095E112BA6

RDN/Generic BackDoor!B7C4745AFCB7

Downloader-BIA!C22909325B13

PWS-Mmorpg.gen!9AD8D21FDC81

BackDoor-CEP!A0A508064E2C

Generic.bfr!AE26FC5F1E9C

Phishing

Lloyds Bank

14th November 2013

ACCESS TO ONLINE BANKING
SERVICE

National Westminster Bank

14th November 2013

*** *** Account Reveiw

Vulnerebility

Microsoft Windows #GP Trap Handler Local Privilege Escalation Vulnerability
2013-11-15
http://www.securityfocus.com/bid/37864

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63150

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5848 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63124

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63153

Oracle Java SE CVE-2013-5851 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63142

RETIRED: Google Chrome Unspecified Remote Sandbox Security Bypass Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63727

RETIRED: Google Chrome Unspecified Integer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63725

yaSSL CVE-2013-1492 Unspecified Buffer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/58595

Oracle MySQL Server CVE-2012-1702 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/57388

yaSSL CVE-2012-0553 Unspecified Buffer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/58594

Oracle MySQL Server CVE-2013-3801 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/61269

Oracle MySQL Server CVE-2012-3147 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/56022

Oracle MySQL Server CVE-2012-3163 Remote MySQL Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/56036

Oracle MySQL Server CVE-2013-0385 Local Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/57412

Oracle MySQL CVE-2011-2262 Remote MySQL Server Vulnerability
2013-11-15
http://www.securityfocus.com/bid/51493

Oracle MySQL Server CVE-2012-0486 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/51514

Oracle MySQL Server CVE-2012-3158 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/56017

MySQL 'yaSSL' Remote Code Execution Vulnerability
2013-11-15
http://www.securityfocus.com/bid/51925

Cisco Unified Communications Manager CVE-2013-3472 Cross Site Request Forgery Vulnerability
2013-11-15
http://www.securityfocus.com/bid/62032

Cisco Wireless LAN Controller CVE-2013-6684 Multiple Remote Denial of Service Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63684

Cisco IOS SSL VPN Interface CVE-2013-6686 Remote Denial of Service Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63699

Cisco Prime Data Center Network Manager CVE-2013-5487 Information Disclosure Vulnerability
2013-11-15
http://www.securityfocus.com/bid/62483

Cisco Prime Data Center Network Manager Multiple Remote Command Execution Vulnerabilities
2013-11-15
http://www.securityfocus.com/bid/62484

Multiple EMC Documentum Products CVE-2013-3281 Cross Site Scripting Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63526

Linux Kernel CVE-2013-6763 Integer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63707

DS3 Authentication Server 'ServerAdmin/ErrorViewer.jsp' Security Bypass Vulnerability
2013-11-15
http://www.securityfocus.com/bid/60936

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-11-15
http://www.securityfocus.com/bid/60107

IBM WebSphere Application Server CVE-2013-4005 Cross Site Scripting Vulnerability
2013-11-15
http://www.securityfocus.com/bid/61901

Exploit

Watermark Master v2.2.23 .wstyle - Buffer Overflow (SEH)

14.11.2013

Bugtraq

Re: [security bulletin] HPSBUX02922 SSRT101305 rev.1 - HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: DS3 Authentication Server - Multiple Issues 2013-11-13
support ds3global com

Dahua DVR Authentication Bypass - CVE-2013-6117 2013-11-13
Jake Reynolds (Jake depthsecurity com)

[SECURITY] [DSA 2797-1] icedove security update 2013-11-13
Moritz Muehlenhoff (jmm debian org)

Android Superuser shell character escape vulnerability 2013-11-13
Kevin Cernekee (cernekee gmail com)

Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-13
Kevin Cernekee (cernekee gmail com)

Superuser "su --daemon" vulnerability on Android >= 4.3 2013-11-13
Kevin Cernekee (cernekee gmail com)

Malware

RDN/Qhost-Gen!bb!79CD780AAF28

RDN/Generic Dropper!8CC41A715404

RDN/Generic.bfr!F1EADB7AF0EA

RDN/Generic PUP.x!bmj!FBD068B62B4C

RDN/Generic.bfr!2FCC1F088249

RDN/Generic BackDoor!uu!80D4045AFFAB

RDN/Generic PUP.x!1FD82489DB0D

Generic PUP.x!648AFC14924E

BackDoor-DVB.e!9E25F9BFB203

RDN/Generic PUP.x!bmj!E8F598F1F26D

Generic.dx!0AD9598992C5

RDN/Generic BackDoor!571F21312E86

Ransom-FEB!2E3B1705298D!2E3B1705298D

RDN/Generic PWS.y!vt!C0D75D1B84F2

RDN/Generic.grp!gh!60C40A6FF21A

FakeSecTool-FCH!41DED40502B7!41DED40502B7

RDN/Generic PUP.x!0126EAE1647E

RDN/Generic.tfr!dt!C517D74749AE

RDN/Generic.grp!gh!F1A9C784C173

PUP-FEI!A7F1A6864F80!A7F1A6864F80

RDN/Generic.dx!C6C9898C523B

RDN/Generic PUP.x!bmj!6CA28902EA6F

RDN/Generic BackDoor!uu!8A9575639F40

RDN/Spybot.bfr!h!B24A856DD66E

RDN/Generic PUP.x!bmj!6673C6ECEF6B

FakeSecTool-FCH!BFEADED9C7B8!BFEADED9C7B8

RDN/Generic.bfr!fh!993E777BB43C

FakeSecTool-FCH!A57A613519DA!A57A613519DA

RDN/Generic PUP.x!bmj!273FAC1847DD

RDN/Generic PUP.x!bmj!272770A46156

Phishing

National Westminster Bank

14th November 2013

*** *** Account Reveiw

Customer Service Apple

13th November 2013

Confirm that you are the
account holder

AOL

13th November 2013

Suspension Message From AOL

Email Team

13th November 2013

Account Update
(2013)*******************Last
Warning

Vulnerebility

Multiple EMC Documentum Products CVE-2013-3281 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63526

Linux Kernel CVE-2013-6763 Integer Overflow Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63707

DS3 Authentication Server 'ServerAdmin/ErrorViewer.jsp' Security Bypass Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60936

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60107

IBM WebSphere Application Server CVE-2013-4005 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61901

IBM WebSphere Application Server CVE-2013-3029 Cross-Site Request Forgery Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61937

IBM WebSphere Application Server CVE-2013-4004 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61935

IBM WebSphere Application Server CVE-2013-4052 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/62336

IBM WebSphere Virtual Enterprise CVE-2013-5425 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63700

IBM Eclipse Help System CVE-2013-0467 Information Disclosure Vulnerability
2013-11-14
http://www.securityfocus.com/bid/58000

Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
2013-11-14
http://www.securityfocus.com/bid/59826

Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61129

IBM Eclipse Help System CVE-2013-0464 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60246

Apache Commons Compress and Apache Ant CVE-2012-2098 Denial Of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/53676

IBM WebSphere Application Server CVE-2013-4053 Remote Privilege Escalation Vulnerability
2013-11-14
http://www.securityfocus.com/bid/62338

DS3 Authentication Server 'TestTelnetConnection.jsp' Remote Command Execution Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60287

Oracle Solaris CVE-2013-5862 Local Security Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63072

Oracle Solaris CVE-2013-5864 Local Security Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63073

GitLab 'Code Search' Feature CVE-2013-4489 Remote Code Execution Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63505

Apache Tomcat CVE-2012-5568 Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/56686

Apache Tomcat DIGEST Authentication Multiple Security Weaknesses
2013-11-14
http://www.securityfocus.com/bid/56403

Oracle Sun Products Suite CVE-2013-5781 Local SPARC Enterprise T4 Servers Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63051

Apache Tomcat Parameter Handling Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/51447

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63428

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63415

Linux Kernel 'skbuff.c' Local Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61411

Samba ACL Check Security Bypass Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63646

IBM WebSphere Application Server CVE-2013-0460 Cross-Site Request Forgery Vulnerability
2013-11-14
http://www.securityfocus.com/bid/57510

Oracle Solaris CVE-2013-5839 Remote Security Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63078

IBus CVE-2013-4509 Local Password Information Disclosure Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63516

Exploit

  TOSHIBA e-Studio 232/233/282/283 - Change Admin Password CSRF Vulnerability

13.11.2013

Bugtraq

[security bulletin] HPSBHF02939 rev.1 - HP Integrated Lights-Out 4 (iLO4), Remote Cross Site Scripting (XSS), Unauthorized Disclosure of Information 2013-11-12
security-alert hp com

Fwd: RUCKUS ADVISORY ID 111113-2: Authenticated persistent cross site scripting vulnerability in guest pass provisioning web interface on ZoneDirector controllers 2013-11-12
Ruckus Product Security Team (security ruckuswireless com)

Fwd: vulnerability issue for DB2 express 2013-11-12
Jonathan Yu (jonathan i yu gmail com)

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (john stamatakis sunrisetech gr)

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (srgn ml googlemail com)

XSS on Juniper JUNOS 11.4 Embedthis Appweb 3.2.3 2013-11-11
info andreabodei com

RUCKUS ADVISORY ID 111113-1: Authenticated code injection vulnerability in ZoneDirector administrative web interface 2013-11-12
Ruckus Product Security Team (security ruckuswireless com)

vulnerability issue for DB2 express 2013-11-11
bhavyasethi atcs gmail com

Malware

RDN/Generic PUP.x!bmf!A6D3E737689E

RDN/Generic PUP.x!bmf!E800BD75A601

Generic.bfr!E1E0699CB67C

RDN/Generic PUP.x!919F51CCF226

Generic PUP.x!32CEFB9DC2BF

RDN/Generic PUP.x!bmf!ADD25FC93420

Generic.dx!0D97971F16FE

Generic PUP.x!66C3D25F73F7

Generic PUP.x!0F6DA34115FA

RDN/Generic PUP.x!bmf!92ACA44F1EFA

RDN/Generic PUP.x!bmf!5927EF53E00A

RDN/Generic Dropper!C8A4C3D5600A

RDN/Generic Dropper!6EEF16DD438E

RDN/Generic.bfr!fh!506AB1AB80EE

RDN/Generic Dropper!A1D00398CE5C

RDN/Generic PUP.x!bmf!8C8EC3FF8F9B

RDN/Downloader.gen.a!C7D1BE3A5F69

RDN/Generic.dx!cth!51B26EEDF477

RDN/Generic PUP.x!bmf!32689CB7AF1B

Generic BackDoor!B9085DF4B130

RDN/Generic Dropper!3DE521C68343

RDN/Vundo!dn!69B7C38A0992

RDN/Generic Dropper!DF8D8A511DCA

RDN/Generic PUP.x!bmf!39A958BD2113

Generic PWS.y!D406AAE60600

RDN/Generic PUP.x!bmf!E5BBA3221B9A

RDN/Generic BackDoor!ut!C2258A33D47F

RDN/Generic PUP.x!bmf!1020FF15E0D0

RDN/Generic PUP.x!bmf!01788F73333D

Generic.bfr!2E3AB0CDF029

Phishing

Email Team

13th November 2013

Account Update
(2013)*******************Last
Warning

NatWest Bank Online

12th November 2013

IMPORTANT NATWEST CREDIT CARD
NOTIFICATION!

Adobe Customer Care

12th November 2013

Important Password Reset
Information

Vulnerebility

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62696

Linux Kernel 'sctp_v6_xmit()' Function CVE-2013-4350 Information Disclosure Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62405

Linux Kernel CVE-2013-2897 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62044

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62050

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62048

Linux Kernel CVE-2013-2899 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62046

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-11-13
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62045

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62049

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-11-13
http://www.securityfocus.com/bid/60280

WordPress Curvo Theme Cross Site Request Forgery Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63410

WordPress Kernel Theme 'upload-handler.php' Arbitrary File Upload Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63623

Oracle Java SE CVE-2013-1557 Remote Java Runtime Environment Vulnerability
2013-11-13
http://www.securityfocus.com/bid/59170

Oracle Java SE CVE-2013-1478 Remote Java Runtime Environment Vulnerability
2013-11-13
http://www.securityfocus.com/bid/57686

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-11-13
http://www.securityfocus.com/bid/60634

IBM Cognos Business Intelligence CVE-2013-2978 Access Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62006

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-11-13
http://www.securityfocus.com/bid/60627

IBM Cognos Business Intelligence CVE-2013-0586 Unspecified Cross Site Scripting Vulnerability
2013-11-13
http://www.securityfocus.com/bid/61998

IBM Cognos Business Intelligence CVE-2013-2988 Access Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62003

Microsoft Windows 'icardie.dll' ActiveX Control CVE-2013-3918 Remote Code Execution Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63631

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/60846

ISC BIND 'localnets' ACL Security Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63610

VideoSpirit Pro and Lite '.visprj' File Multiple Buffer Overflow Vulnerabilities
2013-11-13
http://www.securityfocus.com/bid/45741

strongSwan CVE-2013-6075 Authorization Security Bypass and Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63489

strongSwan NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63540

Xen CVE-2013-4494 Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63494

libvirt 'virt-login-shell' Local Privilege Escalation Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63324

Review Board CVE-2013-4519 Multiple HTML Injection Vulnerabilities
2013-11-13
http://www.securityfocus.com/bid/63601

Exploit

  Symantec Altiris DS SQL Injection

ALLPlayer 5.6.2 (.m3u) - Local Buffer Overflow (SEH/Unicode)

FortiAnalyzer 5.0.4 - CSRF Vulnerability

12.11.2013

Bugtraq

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (john stamatakis sunrisetech gr)

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (srgn ml googlemail com)

XSS on Juniper JUNOS 11.4 Embedthis Appweb 3.2.3 2013-11-11
info andreabodei com

RUCKUS ADVISORY ID 111113-1: Authenticated code injection vulnerability in ZoneDirector administrative web interface 2013-11-12
Ruckus Product Security Team (security ruckuswireless com)

vulnerability issue for DB2 express 2013-11-11
bhavyasethi atcs gmail com

Re: Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08
jsibley1 gmail com

Malware

RDN/Generic PUP.x!bmb!79ADE1E87322

RDN/Generic PUP.x!bmb!07815DE1DDA9

RDN/Generic PUP.x!bmb!0EBF6CA1905F

RDN/Generic PUP.x!bmb!C2D3E01E5E45

RDN/Generic PUP.x!bmb!88EAF43F806B

Generic PUP.x!32C8836E7A52

RDN/Generic PUP.x!A7DB920A42BE

RDN/Generic.bfr!fh!95F976C5B201

RDN/Generic.dx!ctf!3F430D5F5DD0

RDN/Generic.dx!ctf!6822E7DF7F3E

RDN/Generic.bfr!fh!A506EECD9CEB

Generic.bfr!6F08553420E3

RDN/Generic PUP.x!bmb!25F106EAD9B1

RDN/Generic PUP.x!CBCEBE45A2A9

Generic.bfr!E3F250386080

Obfuscated-FBU!hb!1A94B6B95CE3

RDN/Ransom!du!705BB28F8359

RDN/Generic PWS.y!vr!000E4CCA24D2

Generic PUP.x!C23450078B1A

RDN/Generic BackDoor!us!E9D4703CDBA4

RDN/Generic StartPage!br!56A007D2995E

RDN/Generic BackDoor!us!F336DF996C50

RDN/Generic PUP.x!bmb!BA120F31F719

RDN/Generic PUP.x!DB3DD5E513D6

Generic PUP.x!C6BB72E2CED6

RDN/Generic.tfr!ds!56E2DE56FC5A

RDN/Generic PUP.x!bmb!CBD61B732967

RDN/Generic PUP.x!bmb!F62CED90CCBA

RDN/Generic PUP.x!bmb!B1AC206D0DA2

Obfuscated-FBU!hb!88D7BA383411

Phishing

Adobe Customer Care

12th November 2013

Important Password Reset
Information

National Westminster Bank

11th November 2013

Account Reveiw

NatWest Card Services

11th November 2013

YOUR NATWEST CREDIT CARD
NOTIFICATION.

Facebook

11th November 2013

Your 2 unread messages will be
deleted soon

Vulnerebility

SaltStack Salt Security Bypass Vulnerability
2013-11-12
http://www.securityfocus.com/bid/62995

SaltStack Salt CVE-2013-4438 Multiple Remote Code Execution Vulnerabilities
2013-11-12
http://www.securityfocus.com/bid/63243

SaltStack Salt CVE-2013-4436 Man in the Middle Spoofing Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63239

SaltStack Salt CVE-2013-4437 Insecure Temporary File Handling Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63242

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63416

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63429

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-12
http://www.securityfocus.com/bid/63421

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63418

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63415

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63430

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63420

Microsoft Internet Explorer Unspecfied Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63631

Multiple Microsoft Products CVE-2013-3906 Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63530

Bugzilla 'attachment.cgi' Cross Site Request Forgery Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63199

pyOpenSSL SSL Client Certificate Validation Security Bypass Vulnerability
2013-11-12
http://www.securityfocus.com/bid/62258

Python 'ssl.match_hostname()' Function Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/59877

Bugzilla CVE-2013-1743 Cross Site Scripting Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63205

Bugzilla 'editflagtypes.cgi' Multiple Cross Site Scripting Vulnerabilities
2013-11-12
http://www.securityfocus.com/bid/63204

Xen CVE-2013-4494 Local Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63494

Xen OXenstored CVE-2013-4416 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63404

RoundCube Webmail '_session' Parameter Remote Security Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63300

Cisco Adaptive Security Appliance Auto-Update Remote Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63628

Cisco Adaptive Security Appliance Phone Proxy Database Security Bypass Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63624

Wireshark SIP Dissector CVE-2013-6338 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63502

Wireshark ActiveMQ OpenWire Dissector CVE-2013-6339 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63501

Wireshark NBAP Dissector CVE-2013-6337 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63504

Exploit

  VideoSpirit Pro 1.90 - (SEH) Buffer Overflow

  VideoSpirit Lite 1.77 - (SEH) Buffer Overflow

  Hanso Converter 2.4.0 - 'ogg' Buffer Overflow(DoS)

  Provj 5.1.5.8 - 'm3u' Buffer Overflow (PoC)

11.11.2013

Bugtraq

Re: Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08
jsibley1 gmail com

[SECURITY] [DSA 2794-1] spip security update 2013-11-10
Salvatore Bonaccorso (carnil debian org)

Vulnerability in Pydio/AjaXplorer <= 5.0.3 2013-11-10
advisories redfsec com

Vulnerability in Pydio/AjaXplorer < = 5.0.3 2013-11-10
advisories redfsec com

[ MDVSA-2013:265 ] kernel 2013-11-10
security mandriva com

XADV-2013003 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow 2013-11-09
geinblues gmail com

[SECURITY] [DSA 2793-1] libav security update 2013-11-09
Moritz Muehlenhoff (jmm debian org)

Malware

RDN/Generic PWS.y!vr!B9FEAC1C45A5

Generic PUP.x!287F1366EAB8

Generic.bfr!5463AD42CC33

Generic.bfr!CF90D1FA803A

RDN/Generic PUP.x!blz!5F47376B1BDE

RDN/Generic PUP.x!blz!7F44DBAFA6F6

RDN/Generic PUP.x!blz!AB059426C51B

RDN/Generic PUP.x!blz!4409BD79104F

RDN/Generic PUP.x!blz!E14920F23BFE

Generic.bfr!9609AF325ED0

RDN/Generic Downloader.x!E39C43D85796

RDN/Downloader.a!nq!7AF76AA101F2

RDN/Generic Dropper!75D2892A5FC8

RDN/Generic PUP.x!05ED11722764

Generic PUP.x!278C5D1D57B0

Generic.bfr!DA15394365E7

Adware-FOO!3FB603E06D1B!3FB603E06D1B

Generic PUP.x!EAAE8C06DBBA

RDN/Generic PUP.x!8834131B6F9B

RDN/Generic Dropper!FD6EEE7348AD

Generic.bfr!726E6ABBD255

RDN/Generic PUP.x!DAAC2EE130A0

RDN/Generic PUP.x!blz!0ED9047047DD

RDN/Generic PUP.x!F90DED8021BB

Generic PUP.x!B9A9D6B9BB7D

Generic PUP.x!9C8DBDCD5F69

RDN/Generic BackDoor!D2122A4BA67B

RDN/Generic PUP.x!blz!3345073C7D93

RDN/Generic PUP.x!blz!515CED712DD1

RDN/Generic Dropper!sd!A8BBA9E7182F

Phishing

Facebook

11th November 2013

Your 2 unread messages will be
deleted soon

Barclays Bank PLC

10th November 2013

YOUR BARCLAYS ACCOUNT ALERT

Vulnerebility

Oracle Java SE CVE-2013-3829 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63120

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63148

IBM Integration Bus XML4J Parser Entity Expansion Denial of Service Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63224

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63110

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63137

Oracle Java SE CVE-2013-5848 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63124

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63106

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-11-11
http://www.securityfocus.com/bid/61310

drupalauth Module For SimpleSAMLphp Security Bypass Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63537

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5800 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63111

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63134

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63102

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63098

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63089

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63095

Oracle Java SE CVE-2013-5789 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63156

Oracle Java SE CVE-2013-5832 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63158

Oracle Java SE CVE-2013-5818 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63157

Oracle Java SE CVE-2013-5787 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63155

Exploit

 

9.11.2013

Bugtraq

Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08
jsibley1 gmail com

RE: FP BugCON 2014 - Mexico City 2013-11-07
Tamara Vera (tverac satelcorp net)

Malware

RDN/Generic.bfr!4028C2B22E82

Generic.bfr!271FB545E0D7

Generic Downloader.x!B72489D1CC9D

RDN/Ransom!du!1A7CB371F000

Generic FakeAlert!A439AE631F2A

RDN/Generic.bfr!0816476A0116

Generic PUP.x!15BC625DD9A3

Generic PUP.x!B0639657C1A0

RDN/Generic PUP.x!bl3!0F389721C3F6

Generic.bfr!11E23424F33C

Generic Downloader.x!B498DEE38DC7

Generic.bfr!0D1852E25781

RDN/Generic PUP.x!2E37D3FB1A43

Generic Dropper!E2EA61F430BD

RDN/Generic PUP.x!E4BD595BAC0E

RDN/Downloader.gen.a!194899EB5AC8

RDN/Generic PUP.x!bl3!0FCA63F253BF

RDN/Generic.dx!ctc!C069ABC3A083

Generic Downloader.x!3CA0BA550419

Generic PUP.x!9CFDEC389CA6

W32/Virut.gen!CCA93DA58959

RDN/Generic BackDoor!ur!10F8BE6B7545

Generic.bfr!0FE67A0EB5A7

RDN/Generic.bfr!fh!0F13C2FF51C9

Generic.bfr!0A47903226A3

Generic PUP.x!C3BDC536EC4A

Generic PUP.x!79AA6A9FCAD9

Generic Downloader.x!0C1225DD3DCD

Generic.bfr!6229D606F73C

Generic Dropper!1ED9D1A3EB08

Phishing

Nationwide.co.uk

8th November 2013

Nationwide Internet Banking

Lloyds Bank

8th November 2013

ACCESS TO ONLINE BANKING
SERVICE

NatWest

8th November 2013

NATWEST BANK NOTICE

Vulnerebility

VICIDIAL 'manager_send.php' CVE-2013-4468 Command Injection Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63288

VICIDIAL 'manager_send.php' CVE-2013-4467 SQL Injection Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63340

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62049

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62045

Linux Kernel CVE-2013-4299 Information Disclosure Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63183

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-11-09
http://www.securityfocus.com/bid/60280

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62050

Linux Kernel ext4 Local Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/59512

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62048

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-11-09
http://www.securityfocus.com/bid/58795

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-09
http://www.securityfocus.com/bid/63421

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62463

Zikula Application Framework Unspecified Cross Site Scripting Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63186

VideoCharge Studio '.vsc' File Remote Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/45183

RETIRED: VideoCharge Studio '.vsc' File Handling Remote Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63364

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63416

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63430

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63423

Mozilla Firefox 'PDF.js' Javascript Security Bypass Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63419

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63420

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63429

Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63417

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63418

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62478

Exploit

 

8.11.2013

Bugtraq

Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability 2013-11-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)

CFP BugCON 2014 - Mexico City 2013-11-07
Carlos A. Lozano (vendetta bugcon org)

Cisco Security Advisory: Cisco WAAS Mobile Remote Code Execution Vulnerability 2013-11-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)

CVE-2013-4425: Private key disclosure, Osirix (lite, 64bit and FDA cleader version) (Medical Application) 2013-11-06
Dirk-Willem van Gulik (dirkx webweaving org)

Cisco Security Advisory: Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability 2013-11-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)

CORE-2013-0704 - Vivotek IP Cameras RTSP Authentication Bypass 2013-11-05
CORE Advisories Team (advisories coresecurity com)

Malware

Ransom!A224FC8A0954

ADWARE-BORAN!B8431FAE3A41

RDN/Generic Downloader.x!is!808404FB4230

Generic PUP.x!DCFEE38E85E2

Generic.bfr!C6868F583BC1

RDN/Generic.tfr!ds!AF0365236BF5

Qhost-Gen!F9818CB4D1BE

W32/Sality.gen!167F868177EC

Generic PUP.x!E3B3901952E4

RDN/Generic Dropper!A89C24021796

RDN/Generic.tfr!ds!8241B48C0908

RDN/Generic.tfr!ds!6EB26EF860EE

RDN/Generic BackDoor!uq!33CBAFE4D156

RDN/Generic PUP.x!blq!9CCFF5145076

RDN/Generic BackDoor!365FD5955954

RDN/Generic PUP.x!blq!57F893B66294

RDN/Generic.bfr!fg!6F191FF09A88

Generic PUP.x!D05AB6D63977

Generic PUP.x!8B005D04D995

PUP-FED!27033546DE95!27033546DE95

Generic Dropper!4E693CEBB601

RDN/Generic.dx!ctb!8DBCE3DB3CAC

Generic.bfr!2A7EA51FBA0E

RDN/Generic.dx!ctb!F8687D760E48

Generic PUP.x!035E65B587A8

RDN/Generic BackDoor!uq!828F797CB3ED

RDN/Generic Downloader.x!is!E12CC2E8F15F

RDN/Qhost-Gen!bb!26003B44F81C

Generic PWS.y!4BE5B6584D4B

Generic.dx!CFAC81C3CC2B

Phishing

PayPal

7th November 2013

Your account has been limited
until we hear from you

Vulnerebility

Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
2013-11-08
http://www.securityfocus.com/bid/63417

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-11-08
http://www.securityfocus.com/bid/62469

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-08
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-08
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63110

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-07
http://www.securityfocus.com/bid/63421

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63416

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63420

Mozilla Firefox 'PDF.js' Javascript Security Bypass Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63419

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63423

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63418

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63415

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63430

Google Chrome CVE-2013-2926 Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63028

Google Chrome CVE-2013-2925 Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63026

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63429

Google Chrome CVE-2013-2927 Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63025

Google Chrome CVE-2013-2928 Multiple Unspecified Security Vulnerabilities
2013-11-07
http://www.securityfocus.com/bid/63024

International Components for Unicode Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62968

Google Chrome Prior to 30.0.1599.66 Multiple Security Vulnerabilities
2013-11-07
http://www.securityfocus.com/bid/62752

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62468

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62479

Mozilla Firefox CVE-2013-1729 Information Disclosure Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62474

Exploit

  VICIdial Manager Send OS Command Injection

  WordPress Theme Kernel - Remote File Upload Vulnerability

  RASPcalendar 1.01 - [ASP] Admin Login Vlunerabilities

  Vanilla Forums 2.0 - 2.0.18.5 (class.utilitycontroller.php) - PHP Object Injection Vulnerability

  appRain 3.0.2 - Blind SQL Injection Vulnerability

  Flatpress 1.0 - Remote Code Execution

  Vivotek IP Cameras - RTSP Authentication Bypass

  Project'Or RIA 3.4.0 (objectDetail.php, objectId param) - SQL Injection

  Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities

  Horde Groupware Web Mail Edition 5.1.2 - CSRF Vulnerability

  Microweber 0.905 - Error Based SQL Injection

7.11.2013

Bugtraq

CORE-2013-0704 - Vivotek IP Cameras RTSP Authentication Bypass 2013-11-05
CORE Advisories Team (advisories coresecurity com)

SQL Injection in appRain 2013-11-06
High-Tech Bridge Security Research (advisory htbridge com)

[SOJOBO-ADV-13-03] - Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting 2013-11-05
advisories enkomio com

[ISecAuditors Security Advisories] LinkedIn social network is affected by Persistent Cross-Site Scripting vulnerability 2013-11-05
ISecAuditors Security Advisories (advisories isecauditors com)

Open-Xchange Security Advisory 2013-11-06 2013-11-06
Martin Braun (martin braun open-xchange com)

wordpress jigoshop Plugin path disclosure vulnerabilities 2013-11-05
iedb team gmail com

[ISecAuditors Security Advisories] Multiple XSS vulnerabilities in "Project'Or RIA" 2013-11-05
ISecAuditors Security Advisories (advisories isecauditors com)

[ISecAuditors Security Advisories] SQL Injection vulnerability in "Project'Or RIA" allow arbitrary access to the database and the file system 2013-11-05
ISecAuditors Security Advisories (advisories isecauditors com)

ESA-2013-073: EMC Documentum eRoom Multiple Cross Site Scripting Vulnerabilities. 2013-11-05
Security Alert (Security_Alert emc com)

ESA-2013-070: EMC Documentum Cross Site Scripting Vulnerability. 2013-11-05
Security Alert (Security_Alert emc com)

Malware

RDN/Generic PUP.x!bl3!70CD0411C162

PUP-FED!258BC51F42A1!258BC51F42A1

PUP-FED!1FD302E01D85!1FD302E01D85

PUP-FED!9DB5FEE9BFCB!9DB5FEE9BFCB

Generic PUP.x!E5CCA641B388

PUP-FED!D65A571004C4!D65A571004C4

RDN/Generic PUP.x!bl3!F2B7A19AE6BE

RDN/Generic PUP.x!bl3!BB2D6863F84F

RDN/Generic PUP.x!bl3!F37D6D06F3DB

PUP-FED!945C4D798BD9!945C4D798BD9

PUP-FED!099AC4B806C6!099AC4B806C6

PUP-FED!6BDA3DBF408E!6BDA3DBF408E

RDN/Generic.bfr!fg!326B870981FA

PUP-FED!99298DA458CD!99298DA458CD

PUP-FED!32D8058A2DFC!32D8058A2DFC

PUP-FED!53B62D4589E8!53B62D4589E8

PUP-FED!292359D2AF4A!292359D2AF4A

RDN/Generic PUP.x!bl3!CE0BF408D659

Generic PUP.x!046F803AB1BA

PUP-FED!3B5537C79B20!3B5537C79B20

PUP-FED!72ADF9603C91!72ADF9603C91

PUP-FED!748E0CE0430A!748E0CE0430A

RDN/Qhost-Gen!bb!8BF0E4FC7336

RDN/Generic PUP.x!bl3!5362BEF6788E

Downloader.gen.a!0214E9B92BD6

PUP-FED!645E81828242!645E81828242

PUP-FED!1FC88EA06CAC!1FC88EA06CAC

RDN/Generic.tfr!ds!5B3CA8AD7259

Generic.bfr!686708FAEADA

PUP-FED!91747F392BA0!91747F392BA0

Phishing

NatWest Card Services

6th November 2013

*Email Alert* Resolve Your
Account

Natwest

6th November 2013

NatWest - NatWest Secure
Password Reset Confirmation

Vulnerebility

Google Android Signature Verification Security Bypass Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63547

GNOME Vino VNC Server CVE-2013-5745 Denial of Service Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62443

appRain CVE-2013-6058 SQL Injection Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62937

Tryton 'main.py' CVE-2013-4510 Arbitrary File Write Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63531

IBM Lotus Quickr for Domino ActiveX Control CVE-2013-3026 Buffer Overflow Vulnerability
2013-11-07
http://www.securityfocus.com/bid/60442

Python 'ssl.match_hostname()' Function Denial of Service Vulnerability
2013-11-07
http://www.securityfocus.com/bid/59877

Oracle Java SE CVE-2013-3829 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63120

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63089

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63110

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63148

Mednafen Remote Code Execution Vulnerability
2013-11-06
http://www.securityfocus.com/bid/43125

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2012-5081 Remote Java Runtime Environment Vulnerability
2013-11-06
http://www.securityfocus.com/bid/56071

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63134

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63102

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63098

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63095

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63143

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63153

Exploit

  Microweber 0.905 - Error Based SQL Injection

6.11.2013

Bugtraq

ESA-2013-073: EMC Documentum eRoom Multiple Cross Site Scripting Vulnerabilities. 2013-11-05
Security Alert (Security_Alert emc com)

ESA-2013-070: EMC Documentum Cross Site Scripting Vulnerability. 2013-11-05
Security Alert (Security_Alert emc com)

[SECURITY] [DSA 2792-1] wireshark security update 2013-11-04
Salvatore Bonaccorso (carnil debian org)

Malware

Generic.bfr!B462945E291E

Generic PUP.x!1C12B4E0AD6F

RDN/Generic Dropper!sb!B17F6FAC8B53

Generic PUP.x!728FEAC7E391

RDN/Generic Dropper!6FFF1DFE7689

RDN/Generic PUP.x!12750D45E39E

RDN/Generic PUP.x!blj!BDE0E2037B5F

Adware-DomaIQ!A512F9C43A7E

Generic.bfr!D90E1EFD51A0

Generic.grp!F1293C9A6903

Generic.bfr!9F75D8A058DC

RDN/Generic BackDoor!up!9B23743D50C6

RDN/Generic PUP.x!blj!424CF6AC6C98

Generic.bfr!A1948E282C95

RDN/Generic PUP.x!blj!93DAC9889833

Generic PUP.x!588441AB83F9

RDN/Downloader.a!ns!FA2CDF5AB8F4

RDN/Generic PUP.x!blj!36CF1D48160C

Generic PUP.x!DB7970219D70

Generic.bfr!8106A60D5826

RDN/Generic PUP.x!blj!A9C1EBF790B6

RDN/Generic PUP.x!blj!1A233016BE04

RDN/Generic Dropper!09162DE05662

Generic.bfr!8EB24FF02BE2

RDN/Generic PUP.x!blj!480D915FC8E5

RDN/Generic PUP.x!blj!65D40DCBEAD1

RDN/Generic PUP.x!blj!62D4BAB61885

RDN/Generic BackDoor!63EA6E71E092

RDN/Generic PUP.x!blj!1AE3A1B57ED9

Adware-DomaIQ!F8615E0D683F

Phishing

Lloyds Bank

5th November 2013

LLOYDS BANK - YOUR ESTATEMENT
IS NOW READY

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63430

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/60627

Cisco ASA CX Remote Safe Search Policy Security Bypass Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63492

Cisco Prime Central for Hosted Collaboration Solution CVE-2013-5564 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63490

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63415

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/62892

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/62324

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-11-06
http://www.securityfocus.com/bid/62871

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/63421

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63424

Network Security Services Uninitialized Data Read Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/62966

GitLab 'Code Search' Feature CVE-2013-4489 Remote Code Execution Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63505

Xinetd CVE-2012-0862 Security Bypass Vulnerability
2013-11-06
http://www.securityfocus.com/bid/53720

Google Chrome Prior to 16.0.912.75 Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/51300

Libxml2 Entities Expansion CVE-2013-0338 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/58180

libxml2 Hash Collision Denial Of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/52107

Libxml2 Entities Expansion CVE-2013-0339 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/59000

Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61050

Google Chrome Prior to 19 Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/53540

Google Chrome Prior to 23.0.1271.91 Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/56684

libxml2 CVE-2012-2807 Multiple Integer Overflow Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/54718

libguestfs CVE-2013-4419 Insecure Temporary Directory Creation Privilege Escalation Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63226

HP Service Manager Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/63038

phpMyAdmin CVE-2013-5001 Cross Site Scripting Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61919

phpMyAdmin CVE-2013-4996 Multiple Cross Site Scripting Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/61921

phpMyAdmin CVE-2013-5029 Clickjacking Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61804

Exploit

 

5.11.2013

Bugtraq

[SECURITY] [DSA 2791-1] tryton-client security update 2013-11-04
Florian Weimer (fw deneb enyo de)

XADV-2013003 Linux Kernel eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability 2013-11-04
geinblues gmail com

CSRF Horde Groupware Web mail Edition 2013-11-03
m benetrix e-secure com au

Malware

RDN/Generic PUP.x!bl3!FC0832E73EC3

Generic.dx!98741BBA3062

Generic.dx!DD2BB62DA562

Generic.dx!8545B872D965

RDN/Generic.tfr!ds!D42C0A158CE0

Generic.dx!B88693BFEEC8

RDN/FakeAlert-HDD!c!F760708086D8

Generic.dx!F4AA23688822

RDN/Generic.dx!csz!45628EF46A8B

RDN/Generic.dx!D0088CC5AFA2

RDN/Generic BackDoor!E3C50309E113

RDN/Generic.bfr!fe!8101642C6616

ZeroAccess-FEP!3F35AA99EECF!3F35AA99EECF

RDN/Generic.dx!8EB1A294FF84

RDN/Generic PUP.x!bl3!CC9873B79FEE

RDN/Generic PUP.x!bl3!5B369E55C7EB

Generic.dx!8E5F6735196B

RDN/Generic PUP.x!bl3!1C07F8FC4712

RDN/Generic PUP.x!bl3!4F40D80CD4DB

Generic.dx!73FE6348A690

Generic.dx!6ACDE02F0BCC

Generic.dx!8CB6A60CB626

RDN/Generic Dropper!sb!67E44B5B7152

RDN/Generic BackDoor!un!20E13E1A60C7

RDN/Generic BackDoor!5DF6DC1B23AB

Generic PUP.x!F342F86D37FE

RDN/Generic.bfr!fe!85A894A4F7D6

RDN/Generic.dx!csz!7CFD3C30EFB7

RDN/Generic PUP.x!bl3!F1403E27014F

RDN/Generic PUP.x!bl3!70BB24D83A27

Phishing

Barclays Online Banking

4th November 2013

IMPORTANT ACCOUNT UPDATE

Vulnerebility

phpMyAdmin CVE-2013-5001 Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61919

phpMyAdmin CVE-2013-4996 Multiple Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61921

phpMyAdmin CVE-2013-5029 Clickjacking Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61804

phpMyAdmin CVE-2013-5003 Multiple SQL Injection Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61923

phpMyAdmin CVE-2013-5002 Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61516

phpMyAdmin CVE-2013-5000 Multiple Unspecified Full Path Information Disclosure Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61515

phpMyAdmin 'tbl_gis_visualization.php' Multiple Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/58962

phpMyAdmin CVE-2013-4995 Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61510

phpMyAdmin Multiple Unspecified Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61511

phpMyAdmin CVE-2013-3238 Multiple Arbitrary PHP Code Execution Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/59460

phpMyAdmin CVE-2013-4999 Multiple Unspecified Full Path Information Disclosure Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61512

phpMyAdmin 'filename_template' Remote Code Execution Vulnerability
2013-11-05
http://www.securityfocus.com/bid/59465

phpMyAdmin CVE-2013-4998 Multiple Unspecified Full Path Information Disclosure Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61513

Wireshark NBAP Dissector CVE-2013-6337 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63504

Wireshark TCP Dissector CVE-2013-6340 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63500

Wireshark SIP Dissector CVE-2013-6338 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63502

Wireshark IEEE 802.15.4 Dissector CVE-2013-6336 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63503

Boehm GC malloc()' and 'calloc()' Multiple Buffer Overflow Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/54227

Linux Kernel AACRAID Driver Local Security Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/25216

Drupal Bean Module Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63307

Drupal Spaces Module Access Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63305

Drupal FileField Sources Module Access Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63446

Drupal Feed Element Mapper Module Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63447

Drupal Monster Menus Module Access Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63450

WordPress AREA53 Theme 'php.php' Arbitrary File Upload Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63306

Apache Struts Multiple Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/63403

GraphicsMagick 'ExportAlphaQuantumType()' Function Denial Of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63002

Oracle MySQL Server CVE-2013-5807 Remote Security Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63105

Oracle MySQL Server CVE-2013-3839 Remote Security Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63109

Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63417

Exploit

 

4.11.2013

Bugtraq

[SECURITY] [DSA 2791-1] tryton-client security update 2013-11-04
Florian Weimer (fw deneb enyo de)

XADV-2013003 Linux Kernel eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability 2013-11-04
geinblues gmail com

CSRF Horde Groupware Web mail Edition 2013-11-03
m benetrix e-secure com au

XSS and CSRF Horde Groupware Web mail Edition 2013-11-03
m benetrix e-secure com au

[slackware-security] mozilla-thunderbird (SSA:2013-307-01) 2013-11-03
Slackware Security Team (security slackware com)

[SECURITY] [DSA 2790-1] nss security update 2013-11-02
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU02931 rev.2 - HP Service Manager, Injection of Arbitrary Code, Remote Privilege Elevation, Remote Disclosure of Privileged Information and Cross Site Scripting (XSS) 2013-11-01
security-alert hp com

pdirl PHP Directory Listing 1.0.4 - Cross Site Scripting Web Vulnerabilities 2013-11-01
Vulnerability Lab (research vulnerability-lab com)

[security bulletin] HPSBMU02934 rev.1 - HP Application LifeCycle Management, GossipService SOAP Request, Remote Code Execution 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02935 rev.1 - HP LoadRunner Virtual User Generator, Remote Code Execution 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02932 rev.1 - HP Application LifeCycle Management, ALM client component, Remote Execution of Arbitrary Code 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02872 SSRT101185 rev.3 - HP Service Manager, Remote Disclosure of Information, Cross Site Scripting(XSS) 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02874 SSRT101184 rev.2 - HP Service Manager, Java Runtime Environment (JRE) Security Update 2013-10-31
security-alert hp com

[SECURITY] [DSA 2789-1] strongswan security update 2013-11-01
Yves-Alexis Perez (corsac debian org)

[security bulletin] HPSBMU02933 rev.1 - HP SiteScope, issueSiebelCmd SOAP Request, Remote Code Execution 2013-10-31
security-alert hp com

[ MDVSA-2013:264 ] firefox 2013-10-31
security mandriva com

[SECURITY] [DSA 2788-1] iceweasel security update 2013-10-31
Raphael Geissert (geissert debian org)

nullcon Goa V First Speaker list and CFP closes soon 2013-10-30
nullcon (nullcon nullcon net)

[CVE-2013-4484] DoS vulnerability in Varnish HTTP cache 2013-10-30
Poul-Henning Kamp (phk critter freebsd dk)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS XE Software for 1000 Series Aggregation Services Routers 2013-10-30
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Unicorn Router WB-3300NR CSRF (Factory Reset/DNS Change) 2013-10-30
jsibley1 gmail com

ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability 2013-10-29
Security Alert (Security_Alert emc com)

Apache PHP Remote Exploit - apache-magika.c 2013-10-29
king cope (isowarez isowarez isowarez googlemail com)

[ MDVSA-2013:263 ] roundcubemail 2013-10-29
security mandriva com

Olat CMS 7.8.0.1 - Persistent Calender Web Vulnerability 2013-10-29
Vulnerability Lab (research vulnerability-lab com)

GTX CMS 2013 Optima - Multiple Web Vulnerabilities 2013-10-29
Vulnerability Lab (research vulnerability-lab com)

ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability 2013-10-29
Security Alert (Security_Alert emc com)

CVE-2013-5694 Blind SQL Injection in Ops View 2013-10-28
J. Oquendo (sil e-fensive net)

[PSA-2013-1022-1] Microsoft Silverlight Invalid Typecast / MemoryDisclosure 2013-10-28
bugtraq packetstormsecurity org

[ MDVSA-2013:262 ] python-pycrypto 2013-10-28
security mandriva com

Malware

RDN/Generic PUP.x!blb!1EAE0215A9B5

RDN/Generic PUP.x!blb!9BEE69EEAA04

RDN/Generic PUP.x!blb!6E834D32306F

RDN/Generic PUP.x!blb!E3F639630ACF

RDN/Generic PUP.x!blb!B63D9B0007C6

RDN/Generic PUP.x!blb!2CF527613B15

RDN/Generic PUP.x!blb!7EAAE09DE0FD

RDN/Generic PUP.x!blb!80689356CB71

RDN/Generic PUP.x!blb!3C477439E60E

Obfuscated-FBU!hb!998033B580F3

RDN/Downloader.a!ns!067FF7CE287B

RDN/Generic PUP.x!blb!CA421ED18155

RDN/Generic PUP.x!blb!3300290DBC9D

Generic PUP.x!2B943C89E842

RDN/Ransom!dt!734B7D5F16C5

Obfuscated-FBU!hb!E5E8FD27DF0F

Generic PUP.x!EC65561604F1

Generic PUP.x!4A6DA042F23C

Generic PUP.x!08C7F8DDBD07

RDN/Generic PUP.x!blb!4814D2CE8B2C

RDN/Generic PUP.x!blb!4DD4C644829F

RDN/Generic PUP.x!B3710883954F

RDN/Generic PUP.x!blb!24A43FFC641E

Generic PUP.x!CA9C280CDD3B

RDN/Generic PUP.x!blb!18073AE75664

RDN/Generic PUP.x!blb!F17737F85DD0

RDN/Generic PUP.x!blb!63261801573C

RDN/Generic PUP.x!blb!17FD0E427645

RDN/Generic PUP.x!blb!B53F4A54DA72

RDN/Generic PUP.x!blb!E872649AFA79

Phishing

Barclays Bank PLC

1st November 2013

BARCLAYS: We are unable to
process your new statement.

Lloyds PLC

1st November 2013

Important information: Your
account maintenance

Vulnerebility

Network Security Services Uninitialized Data Read Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/62966

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-04
http://www.securityfocus.com/bid/63421

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63418

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63415

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63430

Oracle Java SE CVE-2012-4301 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57684

Oracle Java SE CVE-2013-1474 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57690

Oracle Java SE CVE-2013-0448 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57723

Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57711

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57714

HP Service Manager CVE-2013-2321 Unspecified Cross Site Scripting Vulnerability
2013-11-04
http://www.securityfocus.com/bid/59586

HP Service Manager CVE-2012-5222 Unspecified Information Disclosure Vulnerability
2013-11-04
http://www.securityfocus.com/bid/59587

Apache Struts CVE-2013-4316 Remote Code Execution Vulnerability
2013-11-04
http://www.securityfocus.com/bid/62587

Oracle Java SE CVE-2013-0439 Remote JavaFX Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57725

Oracle Java SE CVE-2013-0429 Remote Java Runtime Environment Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57710

Oracle Java SE CVE-2013-1489 Unsigned Java Code Security Bypass Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57707

Oracle Java SE CVE-2013-1479 Remote Code Execution Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57706

Oracle Java SE CVE-2013-0449 Java Runtime Environment Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57704

Oracle Java SE CVE-2013-1472 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57683

Oracle Java SE CVE-2013-1482 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57688

Oracle Java SE CVE-2013-1475 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57694

Oracle Java SE CVE-2013-1485 Security Bypass Vulnerability
2013-11-04
http://www.securityfocus.com/bid/58028

Oracle Java SE CVE-2013-1484 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/58027

Oracle Java SE CVE-2013-1477 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57685

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57702

Exploit

 

16.10.2013

Bugtraq

[security bulletin] HPSBMU02931 rev.1 - HP Service Manager, Injection of Arbitrary Code, Remote Privilege Elevation, Remote Disclosure of Privileged Information and Cross Site Scripting (XSS) 2013-10-15
security-alert hp com

ZAPms v1.42 CMS - Client Side Cross Site Scripting Web Vulnerability 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

Training : Advanced Android & iOS Hands-on Exploitation at Toorcon San Diego [16th-17th Oct,2013] 2013-10-15
xys3c team (security xysec com)

DornCMS Application v1.4 - Multiple Web Vulnerabilities 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

Apple iOS 7.2 - Sim Lock Screen Display Bypass Vulnerability 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #105 MOS - Multiple Persistent Print Layout Vulnerabilities 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

My File Explorer v1.3.1 iOS - Multiple Web Vulnerabilities 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

SEC Consult SA-20131015-0 :: Multiple vulnerabilities in SpamTitan 2013-10-15
SEC Consult Vulnerability Lab (research sec-consult com)

OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] gnupg2 (SSA:2013-287-02) 2013-10-15
Slackware Security Team (security slackware com)

Training : Advanced Android & iOS Hands-on Exploitation at Toorcon San Diego [16th-17th Oct,2013] 2013-10-15
xys3c team (security xysec com)

Critical vulnerabilities discovered in Gazelle and TBDEV.net 2013-10-15
Bogdan Calin (bogdan acunetix com)

[slackware-security] xorg-server (SSA:2013-287-05) 2013-10-15
Slackware Security Team (security slackware com)

[slackware-security] gnupg (SSA:2013-287-01) 2013-10-15
Slackware Security Team (security slackware com)

[slackware-security] gnutls (SSA:2013-287-03) 2013-10-15
Slackware Security Team (security slackware com)

Malware

Generic.bfr!72544520E3D7

RDN/Generic.bfr!3FAF57D97032

RDN/Generic PUP.x!bjp!1D202392AE64

Generic.bfr!767A2E3CAE2E

Generic PUP.x!48D5CC57BEBA

RDN/tdss!g!653022E052EF

RDN/Downloader.a!no!64CC6241697A

Generic PUP.x!3CBA5EF3100E

Generic PUP.x!C798364E6977

Generic PUP.x!F64278513094

Generic PUP.x!5AE196DFC552

RDN/Generic.bfr!ff!10CD9BB7910C

Generic PUP.x!7D8467B9C633

Generic PUP.x!773B01FB2288

Generic Downloader.x!6A636C479E5C

Generic Dropper!3C0AB53B40C0

RDN/Vundo!dn!739427798F28

Generic Downloader.x!7618C9BF742E

Generic PUP.x!3A8379A97EF4

Generic Downloader.x!5C49B60103AD

Generic Downloader.x!5F5D670046C9

Generic PUP.x!1FA321E8BAC6

Generic.bfr!A2ACFBE325EB

RDN/Generic PUP.x!CDDC97B36F57

Generic.bfr!8B8B3F5CB6C9

Generic.bfr!9520EA4BD054

RDN/Generic PUP.x!507B00718F88

RDN/Generic Dropper!361700950512

Generic PUP.x!5E54A9EEECA7

Generic.bfr!3C173F325D6C

Phishing

Barclays Bank Plc

16th October 2013

ACCOUNT SUSPENDED !

Chase Online

14th October 2013

1 NEW CHASE BANK UPDATE

Barclays Online Banking

14th October 2013

YOUR ACCOUNT HAS BEEN
SUSPENDED

Vulnerebility

Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/61189

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/57778

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60846

Baramundi Management Suite CVE-2013-3624 Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62756

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/61310

Multiple Cisco Products CVE-2013-0149 Remote Security Bypass Vulnerability
2013-10-16
http://www.securityfocus.com/bid/61566

Oracle VM VirtualBox 'tracepath' Local Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60794

SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/49778

QEMU CVE-2013-4344 Remote Buffer Overflow Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62773

QEMU CVE-2013-4377 Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62682

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62857

SafeNet Privilege 'PrivAgent.ocx' ActiveX Controls Multiple Buffer Overflow Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/56297

GnuTLS TLS And DTLS Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/57736

GnuTLS CVE-2013-2116 Out of Bounds Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60215

GnuTLS 'gnutls_session_get_data()' Remote Buffer Overflow Vulnerability
2013-10-16
http://www.securityfocus.com/bid/50609

GnuTLS TLS Record Handling Heap Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/52667

GNU Libtasn1 ASN1 Length DER Decoding Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/52668

Little CMS Multiple Remote Buffer Overflow Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/61607

ShoreTel ShoreWare Director Remote Security Bypass Vulnerability
2013-10-16
http://www.securityfocus.com/bid/63019

jQuery 'location.hash' Cross Site Scripting Vulnerability
2013-10-16
http://www.securityfocus.com/bid/58458

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62892

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62811

ZABBIX API and Frontend CVE-2013-5743 Multiple SQL Injection Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/62794

Cisco Unified Computing System CVE-2012-4107 Local Arbitrary Command Execution Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62983

HP Data Protector CVE-2013-2333 Remote Code Execution Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60309

Cisco Unified Computing System CVE-2012-4105 Local Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62980

Cisco Unified Computing System CVE-2012-4106 Local Privilege Escalation Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62981

osCommerce 'products_id' Parameter HTML Injection Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62997

Bilboplanet 'index.php' Multiple Cross-Site Scripting Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/62988

BilboPlanet 'auth.php' SQL Injection Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62989

Exploit

  Apple iOS 7.2 - Sim Lock Screen Display Bypass Vulnerability

  Dexs PM System Wordpress Plugin - Authenticated Persistent XSS (0day)

  Dolibarr ERP/CMS 3.4.0 (exportcsv.php, sondage param) - SQL Injection

  Zabbix 2.0.8 SQL Injection and Remote Code Execution

  My File Explorer v1.3.1 iOS - Multiple Web Vulnerabilities

  OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability

  UbiDisk File Manager v2.0 iOS - Multiple Web Vulnerabilities

15.10.2013

Bugtraq

[SECURITY] [DSA 2779-1] libxml2 security update 2013-10-13
Michael Gilbert (mgilbert debian org)

[CISTI'2014]: Call for Workshops 2013-10-13
Maria Lemos (marialemos72 gmail com)

CFP: Passwords^13 Bergen (Norway), December 2-3 2013 2013-10-13
Per Thorsheim (per thorsheim net)

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-12
jsibley1 gmail com

[SECURITY] [DSA 2778-1] libapache2-mod-fcgid security update 2013-10-11
Salvatore Bonaccorso (carnil debian org)

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-11
jsibley1 gmail com

[SECURITY] [DSA 2777-1] systemd security update 2013-10-11
Moritz Muehlenhoff (jmm debian org)

Malware

W32/Expiro!48202E3E1D54

RDN/Generic PUP.x!27C24D2D0DF5

RDN/Generic PUP.x!C777401E264F

RDN/Generic PUP.x!9B4E9DCB3310

RDN/Generic BackDoor!tz!717B19B55E87

Generic PUP.x!9023B4F21A95

W32/Expiro!446BD8C94E08

W32/Expiro!37DD3809CAE3

Generic PUP.x!88F036BF1B5E

RDN/Generic PUP.x!13ACB0DCE451

W32/Expiro!39D135ACF0B9

W32/Expiro!019889A3221B

W32/Expiro!3CE238F0DAA4

RDN/PWS-Mmorpg!kf!49885B30AA52

RDN/Autorun.bfr!d!82A40A023BAC

Generic Dropper!3BAE8EF5259C

Generic.bfr!69664B6FC0E1

RDN/Generic.dx!crz!C7B20C943319

Generic.bfr!A5E3A676D6B7

RDN/Generic.dx!crz!472FE3D51BF4

Generic PUP.x!E0414047AD3B

RDN/Generic Downloader.x!iq!3A082B0C1285

W32/Expiro!358AC84DE951

RDN/PWS-Mmorpg!kf!455F46F1068B

RDN/Generic PUP.x!bj3!9F23F98C7D4C

RDN/Generic PUP.x!bj3!BE676240A5AB

W32/Expiro!2F99581EF072

RDN/Generic PUP.x!bj3!B922A101D3B0

RDN/Generic.bfr!fd!62B1A86DC617

RDN/Generic PUP.x!bj3!AD3BE9B3FC72

Phishing

Chase Online

14th October 2013

1 NEW CHASE BANK UPDATE

Barclays Online Banking

14th October 2013

YOUR ACCOUNT HAS BEEN
SUSPENDED

NatWest - Management Team

13th October 2013

Your are locked out of NatWest
Online Banking

National

13th October 2013

Service Information

Barclays Online Banking

13th October 2013

Your account has been
suspended

Vulnerebility

jQuery 'location.hash' Cross Site Scripting Vulnerability
2013-10-15
http://www.securityfocus.com/bid/58458

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62892

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62811

ZABBIX API and Frontend CVE-2013-5743 Multiple SQL Injection Vulnerabilities
2013-10-15
http://www.securityfocus.com/bid/62794

Cisco Unified Computing System CVE-2012-4107 Local Arbitrary Command Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62983

HP Data Protector CVE-2013-2333 Remote Code Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/60309

Cisco Unified Computing System CVE-2012-4105 Local Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62980

Cisco Unified Computing System CVE-2012-4106 Local Privilege Escalation Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62981

osCommerce 'products_id' Parameter HTML Injection Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62997

Bilboplanet 'index.php' Multiple Cross-Site Scripting Vulnerabilities
2013-10-15
http://www.securityfocus.com/bid/62988

BilboPlanet 'auth.php' SQL Injection Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62989

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62696

Cisco Unified Computing System CVE-2012-4108 Local Command Injection Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62979

Network Security Services Uninitialized Data Read Security Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62966

Apache 'mod_fcgid' Module CVE-2013-4365 Heap Buffer Overflow Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62939

PolarSSL RSA Private Key Recovery Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62771

Zabbix 'cURL' API Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/57103

QEMU CVE-2013-4344 Remote Buffer Overflow Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62773

Xen CVE-2013-4361 Information Disclosure Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62710

Xen CVE-2013-4355 Information Disclosure Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62708

Xen CVE-2013-4356 Local Memory Access Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62709

GLPI Multiple PHP Code Execution and SQL Injection Vulnerabilities
2013-10-15
http://www.securityfocus.com/bid/62515

libvirt 'virFileNBDDeviceAssociate()' Remote Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62576

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62508

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62510

Ubuntu 'rtkit' Package CVE-2013-4326 Local Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62505

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62857

International Components for Unicode Use After Free Remote Code Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62968

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62871

Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/61050

Exploit

  Aladdin Knowledge Systems Ltd. PrivAgent ActiveX Control Overflow

  HP Data Protector Cell Request Service Buffer Overflow

  MS13-080 Microsoft Internet Explorer CDisplayPointer Use-After-Free

  Beetel Connection Manager PCW_BTLINDV1.0.0B04 - SEH Buffer Overflow

  Dexs PM System Wordpress Plugin - Authenticated Persistent XSS (0day)

  Dolibarr ERP/CMS 3.4.0 (exportcsv.php, sondage param) - SQL Injection

  Zabbix 2.0.8 SQL Injection and Remote Code Execution

14.10.2013

Bugtraq

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-11
jsibley1 gmail com

[SECURITY] [DSA 2777-1] systemd security update 2013-10-11
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2776-1] drupal6 security update 2013-10-11
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2773-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[security bulletin] HPSBMU02901 rev.1 - HP Business Process Monitor running on Windows, Remote Execution of Arbitrary Code and Disclosure of Information 2013-10-10
security-alert hp com

[SECURITY] [DSA 2774-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[ MDVSA-2013:249 ] libraw 2013-10-10
security mandriva com

[ MDVSA-2013:247 ] gnupg 2013-10-10
security mandriva com

[SECURITY] [DSA 2772-1] typo3-src security update 2013-10-10
Moritz Muehlenhoff (jmm debian org)

Malware

RDN/Generic PUP.x!bjm!4DFDCD71965A

RDN/Generic.dx!32EC7F8233A3

Generic PUP.x!88E3BD680FCB

RDN/Ransom!ds!8A873860FF9A

RDN/Generic PUP.x!bjm!4E43D774C052

RDN/Generic PUP.x!bjm!4FCAF4110CCB

Generic PUP.x!8D883982307C

Generic.bfr!4FB8FFDCEE2F

RDN/FakeAV-Z.bfr!d!59EB2F8AC970

Generic PUP.x!0940D347A235

RDN/Generic PUP.x!bjm!4F0F4FE6435E

Generic PUP.x!B693C393C8BB

Generic PUP.x!806A31EEE3C4

Generic PUP.x!4DE8E53966E6

RDN/Generic PUP.x!bjm!4FA9C3BCA370

RDN/Generic.bfr!fd!1C215DE11F77

RDN/Generic PWS.y!vc!916C0EF0726E

Generic.tfr!747E7F02977A

Generic PUP.x!F83C8B240183

HideWindow!DFE11A8627BA

Generic PUP.x!585689460B5E

Generic PUP.x!078773D1C0FA

Generic PUP.x!6F3292E5A3AD

Generic PUP.x!790DFEC30CB1

RDN/Generic PUP.x!bjm!4D61BCB3C72D

Generic.bfr!4DAEDFE94732

Generic PUP.x!4E9D5A2A38FF

RDN/Generic.bfr!fd!653B026E2866

RDN/Generic.tfr!DF465FA18205

Generic PUP.x!EF3CB60F07BE

Phishing

NatWest - Management Team

13th October 2013

Your are locked out of NatWest
Online Banking

National

13th October 2013

Service Information

Barclays Online Banking

13th October 2013

Your account has been
suspended

NatWest - Online Banking

13th October 2013

ONLINE BANKING : VIEW BALANCES
charset=iso-8859-1">

BT Yahoo!

12th October 2013

E-mail Update

J.P. Morgan Chase & Co.

12th October 2013

November Order

PayPal

11th October 2013

Notification of Limited
Account Access

Vulnerebility

Cisco Unified Communications Manager CVE-2013-5528 Directory Traversal Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62960

Cisco Unified IP Phones 9900 Series CVE-2013-5532 Buffer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62944

Cisco Unified IP Phones 9900 Series CVE-2013-5533 Local Command Injection Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62943

GNU libc glob(3) 'GLOB_LIMIT' Remote Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/43819

Microsoft Windows OpenType Font Parsing CVE-2013-3128 Remote Code Execution Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62819

Ubuntu 'systemd' Package CVE-2013-4327 Local Security Bypass Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62503

systemd X Keyboard Extension Processing Local Privilege Escalation Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62744

systemd 'journald-native.c' Remote Integer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62739

Drupal Core Access Bypass and Arbitrary PHP Code Execution Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/56993

Drupal Core Multiple Access Bypass and Cross Site Scripting Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/57437

Drupal Core Multiple Security Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/51822

Django 'is_safe_url()' Function Cross Site Scripting Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61777

Google Chrome Cookie Verification Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/58857

Google Chrome Prior to 30.0.1599.66 Multiple Security Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/62752

Citrix NetScaler Application Delivery Controller Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62788

Symantec Backup Exec CVE-2013-4677 Local Insecure File Permissions Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61487

Symantec Backup Exec CVE-2013-4678 Information Disclosure Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61488

Symantec Backup Exec CVE-2013-4676 Multiple Cross Site Scripting Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/61486

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62811

Symantec Backup Exec CVE-2013-4575 Remote Heap Buffer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61485

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62453

FOSCAM IP-Cameras CVE-2013-2574 Unauthorized Access Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/61415

Foscam Prior to 11.37.2.49 Directory Traversal Vulnerability
2013-10-14
http://www.securityfocus.com/bid/58290

GnuPG Key Flags Subpacket Security Bypass Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62921

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62857

Qt PostgreSQL Driver SQL Injection Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62923

libtar 'th_read()' Function Multiple Heap Buffer Overflow Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/62922

XHProf 'run' Parameter Cross Site Scripting Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62928

Quagga CVE-2013-2236 Stack Buffer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/60955

Quagga Multiple Remote Security Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/52531

Exploit

VMware Hyperic HQ Groovy Script-Console Java Execution  

Wordpress Cart66 Plugin 1.5.1.14 - Multiple Vulnerabilities

  Android Zygote Socket Vulnerability Fork bomb Attack

  Internet Haut Debit Mobile PCW_MATMARV1.0.0B03 - Buffer Overflow SEH

11.10.2013

Bugtraq

[SECURITY] [DSA 2773-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[security bulletin] HPSBMU02901 rev.1 - HP Business Process Monitor running on Windows, Remote Execution of Arbitrary Code and Disclosure of Information 2013-10-10
security-alert hp com

[SECURITY] [DSA 2774-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[ MDVSA-2013:249 ] libraw 2013-10-10
security mandriva com

[ MDVSA-2013:247 ] gnupg 2013-10-10
security mandriva com

[SECURITY] [DSA 2772-1] typo3-src security update 2013-10-10
Moritz Muehlenhoff (jmm debian org)

[ MDVSA-2013:248 ] xinetd 2013-10-10
security mandriva com

[SECURITY] [DSA 2775-1] ejabberd security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[SECURITY] [DSA 2771-1] nas security update 2013-10-09
Moritz Muehlenhoff (jmm debian org)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[SECURITY] [DSA 2770-1] torque security update 2013-10-09
Salvatore Bonaccorso (carnil debian org)

Malware

Generic.dx!5BF53B3ED33F

RDN/PWS-Banker!9894A2B76863

Generic.dx!96223CE65980

RDN/Generic.bfr!fd!174D03480E28

RDN/Generic Downloader.x!ip!8831F696BEDD

RDN/Generic PUP.x!bjg!0DEB4D9F1D70

RDN/Generic PUP.x!bjg!79CF8C2ECFDD

RDN/Generic PUP.x!bjg!9DA2C6FDFECE

RDN/Generic.dx!835A41FD5785

RDN/Generic PUP.x!bjg!48D2CAD65FFC

Generic.dx!F984E3D66E0A

RDN/Generic PUP.x!bjg!7128DAD0D8B6

RDN/Generic PUP.x!CCF2F6590762

Generic Dropper!C649EC4298EA

Generic.dx!D31D80FBC52C

RDN/Generic PUP.x!AEB416905491

RDN/Generic PUP.x!042964BCB075

RDN/Generic PUP.x!11F7C19BC42D

RDN/Generic PUP.x!087B4775B296

RDN/Generic.grp!gb!0EE92F3E8DBF

RDN/Generic Dropper!rt!61BEDA547910

Generic.dx!173F764C8B23

RDN/FakeAV-N.bfr!417F99DD689D

Generic.dx!BE230D5A3B5F

Generic.dx!1C3270A96EEA

Generic.dx!0B4F96644D0F

Generic.dx!CACC25AD190F

Generic.dx!3DF1CDD58B3F

Generic.dx!D683F17C660A

Generic.dx!1D46C2DB00BF

Phishing

Natwest

10th October 2013

Your NatWest Card Important
Notification

Barclays Bank Plc

10th October 2013

ACCOUNT SUSPENDED !

PayPal

10th October 2013

Your PayPal account is limited
- take action now

Chase Online

10th October 2013

1 NEW CHASE BANK UPDATE

PayPal

9th October 2013

Update your account
information

Barclays Bank PLC

9th October 2013

New Security Notice On Your
Barclays Account

Vulnerebility

libtar 'th_read()' Function Multiple Heap Buffer Overflow Vulnerabilities
2013-10-11
http://www.securityfocus.com/bid/62922

XHProf 'run' Parameter Cross Site Scripting Vulnerability
2013-10-11
http://www.securityfocus.com/bid/62928

Quagga CVE-2013-2236 Stack Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/60955

Quagga Multiple Remote Security Vulnerabilities
2013-10-11
http://www.securityfocus.com/bid/52531

PolarSSL RSA Private Key Recovery Security Bypass Vulnerability
2013-10-11
http://www.securityfocus.com/bid/62771

Quagga bgpd 'bgp_capability_orf()' BGP OPEN Message Remote Denial Of Service Vulnerability
2013-10-11
http://www.securityfocus.com/bid/53775

OpenJPEG Heap Based Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/54373

OpenJPEG Heap Based Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/55214

OpenJPEG Gray16 TIFF Image File Memory Corruption Vulnerability
2013-10-11
http://www.securityfocus.com/bid/53012

Python 'setuptools' Man in The Middle Vulnerability
2013-10-11
http://www.securityfocus.com/bid/61827

WordPress Audio Player Plugin 'playerID' Parameter Cross Site Scripting Vulnerability
2013-10-11
http://www.securityfocus.com/bid/57848

Oracle Java SE CVE-2013-2471 Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/60659

Oracle Java SE CVE-2013-3743 Remote Security Vulnerability
2013-10-11
http://www.securityfocus.com/bid/60626

Oracle Java SE CVE-2013-2443 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60646

Oracle Java SE CVE-2013-2455 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60619

Oracle Java SE CVE-2013-2437 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60636

Oracle Java SE CVE-2013-2449 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60622

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60651

Oracle Java SE CVE-2013-2463 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60655

SolarWinds Server and Application Monitor 'Pepco32c.ocx' ActiveX Overflow Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62585

Oracle Java SE CVE-2013-2469 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60658

Oracle Java SE CVE-2013-2468 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60637

Oracle Java SE CVE-2013-2466 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60624

Oracle Java SE CVE-2013-2459 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60647

Oracle Java SE CVE-2013-2464 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60631

Oracle Java SE CVE-2013-2465 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60657

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60640

Oracle Java SE CVE-2013-2457 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60632

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-2454 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60650

Exploit

  Indusoft Thin Client 7.1 ActiveX - Buffer Overflow

  Linksys WRT110 Remote Command Execution

  Imperva SecureSphere Web Application Firewall MX 9.5.6 - Blind SQL Injection

  ONO Hitron CDE-30364 Router - Denial Of Service

  ALLPlayer 5.6.2 (.m3u) - Local Buffer Overflow PoC

10.10.2013

Bugtraq

[SECURITY] [DSA 2771-1] nas security update 2013-10-09
Moritz Muehlenhoff (jmm debian org)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[SECURITY] [DSA 2770-1] torque security update 2013-10-09
Salvatore Bonaccorso (carnil debian org)

[ISecAuditors Security Advisories] Multiple Reflected XSS vulnerabilities in BoltWire <= v3.5 2013-10-09
ISecAuditors Security Advisories (advisories isecauditors com)

[ISecAuditors Security Advisories] Multiple Vulnerabilities in Uebimiau <= 2.7.11 2013-10-09
ISecAuditors Security Advisories (advisories isecauditors com)

Cross-Site Scripting (XSS) in Feng Office 2013-10-09
High-Tech Bridge Security Research (advisory htbridge com)

[security bulletin] HPSBGN02930 rev.1 - HP Intelligent Management Center(iMC) and HP IMC Service Operation Management Software Module, Remote Authentication Bypass, Disclosure of Information, Unauthorized Access, SQL Injection 2013-10-08
security-alert hp com

[security bulletin] HPSBGN02929 rev.1 - HP Intelligent Management Center (iMC), HP IMC Branch Intelligent Management System Software Module (BIMS), and Comware Based Switches and Routers, Remote Code Execution, Disclosure of Information 2013-10-08
security-alert hp com

Malware

Generic.bfr!E2BEC9BA4925

RDN/Generic Downloader.x!ip!BB21298A0C3D

Generic.bfr!984720583207

RDN/Generic PUP.x!bj3!A7BB265A9AB0

RDN/Generic.dx!crt!00888DF918E7

Generic.bfr!239FA089C74E

Generic.bfr!0B39CF050437

Generic.bfr!47D1B9933C02

RDN/Generic PUP.z!25DBD5068BF6

Generic.bfr!1E484E50C9EC

Generic.bfr!9DD17993B503

RDN/Generic PUP.x!bj3!2C53A1BF580E

RDN/Generic PUP.x!bj3!626BA04C5D45

RDN/Generic PUP.x!bj3!91B05A5AE681

Downloader.gen.a!320453D0153B

Downloader.gen.a!0BB0F0355148

RDN/Generic PUP.x!bj3!B6E0947D9B3B

Generic PUP.x!59AF78C79249

RDN/Generic PUP.x!bj3!B5187901387F

RDN/Generic PUP.x!bj3!336B290AB3AD

RDN/Generic PUP.x!bj3!C743E7FFA27E

RDN/Generic PUP.x!bj3!FA1C73815784

RDN/Generic PUP.x!bj3!9383B06B5940

RDN/Generic PWS.y!va!73CA2C3EA510

RDN/Generic PUP.x!bj3!582D5376FC3C

Generic.bfr!0E519D55CA27

Generic.bfr!44762CD4A5AD

RDN/Generic.grp!6441CC82087E

RDN/Generic.bfr!292971527B03

RDN/Generic PUP.x!9AA2AD8F1667

Phishing

Chase Online

10th October 2013

1 NEW CHASE BANK UPDATE

PayPal

9th October 2013

Update your account
information

Barclays Bank PLC

9th October 2013

New Security Notice On Your
Barclays Account

Chase

8th October 2013

1 NEW CHASE BANK ACCOUNT ALERT

Vulnerebility

Cisco IOS CVE-2013-5499 Remote Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62866

Cisco NX-OS CVE-2012-4077 Local Arbitrary Command Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62849

Cisco Identity Services Engine CVE-2013-5524 Cross Site Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62870

Cisco Identity Services Engine CVE-2013-5525 SQL Injection Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62799

Cisco Identity Services Engine CVE-2013-5523 Cross Frame Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62869

Cisco Unified Computing System CVE-2012-4084 Cross Site Request Forgery Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62851

systemd 'journald-native.c' Remote Integer Overflow Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62739

systemd X Keyboard Extension Processing Local Privilege Escalation Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62744

systemd Race Condition Local Privilege Escalation Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62738

systemd 'journald' Functionality Local Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62742

Cisco NX-OS 'file name' Parameter Arbitrary File Write Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62839

Cisco NX-OS CVE-2012-4121 Arbitrary File Access Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62846

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62857

Cyrus SASL Library CVE-2013-4122 NULL Pointer Dereference Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/61164

Xen CVE-2013-1442 Information Disclosure Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62630

HP Linux Imaging and Printing System polkit Local Security Bypass Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62499

RubyGems Wicked Arbitrary File Access Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62891

SLiM NULL Pointer Dereference Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62906

Network Audio System CVE-2013-4258 Format String Vulnerability
2013-10-10
http://www.securityfocus.com/bid/61852

Network Audio System CVE-2013-4257 Heap Buffer Overflow Vulnerability
2013-10-10
http://www.securityfocus.com/bid/61843

Network Audio System CVE-2013-4256 Multiple Buffer Overflow Vulnerabilities
2013-10-10
http://www.securityfocus.com/bid/61848

Telaen CVE-2013-2623 Cross Site Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60288

Telaen CVE-2013-2621 Open Redirection Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60290

Torque CVE-2013-4319 Remote Arbitrary Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62273

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-10
http://www.securityfocus.com/bid/62324

Feng Office 'index.php' Cross Site Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62591

Microsoft Internet Explorer CVE-2013-3874 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62805

Microsoft Internet Explorer CVE-2013-3873 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62804

Microsoft Internet Explorer CVE-2013-3872 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62803

Microsoft Windows TrueType Font CMAP Table CVE-2013-3894 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62821

Exploit

 

9.10.2013

Bugtraq

[security bulletin] HPSBGN02930 rev.1 - HP Intelligent Management Center(iMC) and HP IMC Service Operation Management Software Module, Remote Authentication Bypass, Disclosure of Information, Unauthorized Access, SQL Injection 2013-10-08
security-alert hp com

[security bulletin] HPSBGN02929 rev.1 - HP Intelligent Management Center (iMC), HP IMC Branch Intelligent Management System Software Module (BIMS), and Comware Based Switches and Routers, Remote Code Execution, Disclosure of Information 2013-10-08
security-alert hp com

[SECURITY] [DSA-2769-1] kfreebsd-9 security update 2013-10-08
Salvatore Bonaccorso (carnil debian org)

NotSoSecure CTF (in partnership with Appsec USA) 2013-10-08
sid (sid notsosecure com)

[ MDVSA-2013:246 ] openjpa 2013-10-07
security mandriva com

Apple Motion Integer Overflow Vulnerability 2013-10-07
pereira secbiz de

Malware

RDN/Generic PUP.x!bjb!62BEF729ACE4

RDN/Generic PUP.x!bjb!F039608031DE

Generic.bfr!1C6B97C04F08

Generic.bfr!3180A09D7EAD

Generic.bfr!69529F617A76

RDN/Generic.dx!F195A3B70BAF

RDN/Generic.bfr!61AAFB2F4FED

Generic.dx!8CABCE74159F

Generic.dx!DD201A5B943C

Generic PUP.x!376A097B57EF

Generic.bfr!9BC6FF7BFB3C

Generic.dx!0E387946C309

Generic.dx!AA536396042F

Generic.dx!DC274A41F4B2

Generic.dx!39EB59264B96

Generic.dx!C12BCF2D8D40

Generic.dx!2CF49DBFD511

Generic.dx!89C5C02E99B2

Generic.dx!BD21EAB0B686

Generic.dx!79419B97948F

RDN/Generic PUP.x!bjb!139D411C993E

Generic.dx!E83444E5B4F2

Generic.dx!0E111140B930

Generic.dx!A31ADA6C646A

Generic.dx!B1363FCD8ED2

Generic.dx!FD7FCEC8979F

Generic.dx!8743510656C1

Generic.dx!FA5772A64B9E

Generic.dx!D31FCEA0DCCA

RDN/Generic PUP.x!bjb!9DFCF6B48783

Phishing

PayPal

9th October 2013

Update your account
information

Barclays Bank PLC

9th October 2013

New Security Notice On Your
Barclays Account

Chase

8th October 2013

1 NEW CHASE BANK ACCOUNT ALERT

Barclays Bank PLC

8th October 2013

New Security Notice On Your
Barclays Account

Vulnerebility

Microsoft Internet Explorer CVE-2013-3874 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62805

Microsoft Internet Explorer CVE-2013-3873 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62804

Microsoft Internet Explorer CVE-2013-3872 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62803

Microsoft Windows TrueType Font CMAP Table CVE-2013-3894 Remote Code Execution Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62821

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62811

Microsoft Internet Explorer CVE-2013-3871 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62802

RETIRED: Microsoft October 2013 Advance Notification Multiple Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/62797

RETIRED: Adobe Reader and Acrobat APSB13-25 Prenotification Multiple Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/62777

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/62324

SSSD Multiple Denial of Service Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/57539

Samba CVE-2013-4124 Local Denial of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61597

Samba SWAT Cross Site Request Forgery and Clickjacking Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/57631

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62453

Microsoft Windows Kernel 'dxgkrnl.sys' CVE-2013-3888 Local Privilege Escalation Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62831

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62857

FreeBSD CVE-2013-5691 Local Privilege Escalation Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62302

FreeBSD CVE-2013-5710 Local Security Bypass Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62303

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-10-09
http://www.securityfocus.com/bid/60634

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61310

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62871

DavFS2 'system()' Function Local Privilege Escalation Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62445

Oracle MySQL Server CVE-2013-3808 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61227

Oracle MySQL Server CVE-2013-3802 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61244

Oracle MySQL Server CVE-2013-3807 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61238

MySQL and MariaDB Geometry Query Denial Of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/58511

Oracle MySQL Server CVE-2013-3805 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61256

Oracle MySQL Server CVE-2013-3809 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61272

Oracle MySQL Server CVE-2013-3811 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61252

Oracle MySQL Server CVE-2013-3801 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61269

Oracle MySQL Server CVE-2013-3810 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61214

Exploit

 

8.10.2013

Bugtraq

[ MDVSA-2013:246 ] openjpa 2013-10-07
security mandriva com

Apple Motion Integer Overflow Vulnerability 2013-10-07
pereira secbiz de

[KIS-2013-09] Vanilla Forums <= 2.0.18.5 (class.utilitycontroller.php) PHP Object Injection Vulnerability 2013-10-07
Egidio Romano (research karmainsecurity com)

Malware

RDN/Generic PUP.x!bj3!8D6710A9BBE3

ZeroAccess-FBJ!64932E143FC5!64932E143FC5

Generic Downloader.x!8AE2C95CB61B

RDN/Generic PUP.x!bj3!5D8670BF5B02

RDN/Generic PUP.x!bj3!704C5CBF03CB

Generic PUP.x!EC5833409666

RDN/Generic PUP.x!bj3!86ACDE5CA6BC

RDN/Generic PUP.x!bj3!523BAC233AA9

Generic.bfr!5A29EC685E11

Generic Downloader.x!816DEE37270E

RDN/Generic StartPage!bp!5D632E2D43BC

Generic Downloader.x!5C0C3017934B

RDN/BackDoor-CEP!bv!697A8016A317

RDN/Generic.tfr!dq!7E9F82ACB825

RDN/Generic PUP.x!bj3!589B9D7A206E

RDN/Generic PUP.x!bj3!8287AF11099B

RDN/Generic PUP.x!bj3!4E9B5C74AA39

RDN/Generic PUP.x!bj3!52A61F582FB5

RDN/Generic PUP.x!bj3!4DD57763B457

RDN/Generic PUP.x!bj3!50DA2044B6F5

RDN/Generic PUP.x!bj3!554BA5711D53

RDN/Generic PUP.x!bj3!60B21B40603C

RDN/Generic PUP.x!bj3!63E93D41126C

RDN/Generic PUP.x!bj3!58ECFE93310C

RDN/Generic PUP.x!bj3!65E8D5ADE079

Generic PUP.x!BBB14720D4CE

RDN/Generic PUP.x!bj3!5095CFA6BE45

Generic Downloader.x!5F155BBA7A31

RDN/Generic PUP.x!bj3!444D8EADA8BD

RDN/Generic.dx!crs!5D9BE5B66BB6

Phishing

ClipBucket 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62776

HP LoadRunner CVE-2013-4800 Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61446

FlashChat 'upload.php' Arbitrary File Upload Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62852

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62871

Restlet Framework Object Deserialization Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62000

Apache Camel CVE-2013-4330 Information Disclosure Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62706

Restlet Framework XML Deserialization Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61694

Oracle Solaris CVE-2013-3757 Remote Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61263

Oracle Sun Products Suite CVE-2012-0570 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59241

Cisco NX-OS CVE-2012-4091 Remote Denial of Service Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62838

Oracle Sun Products Suite CVE-2013-1530 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59221

Cisco Nexus 7000 Series Switches NX-OS CVE-2012-4090 Remote Information Disclosure Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62841

Wireshark Multiple Denial of Service Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/61471

Oracle Sun Products Suite CVE-2012-3128 Local SPARC T-Series Servers Vulnerability
2013-10-08
http://www.securityfocus.com/bid/54564

ISC DHCP Multiple Denial of Service Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/54665

Oracle Solaris CVE-2013-3813 Remote Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61230

Oracle Sun Products Suite CVE-2013-0411 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59174

Apache OpenJPA Object Deserialization Arbitrary File Creation or Overwrite Vulnerability
2013-10-08
http://www.securityfocus.com/bid/60534

Oracle Sun Products Suite CVE-2013-0404 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59230

Oracle Solaris CVE-2013-3786 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61266

Oracle Solaris CVE-2013-3787 Remote Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61248

ISC BIND 9 DNS Resource Records Handling CVE-2012-4244 Remote Denial of Service Vulnerability
2013-10-08
http://www.securityfocus.com/bid/55522

Linux Kernel 'i915_gem_execbuffer.c' Multiple Integer Overflow Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/53971

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/46616

Linux Kernel IPv6 'nf_ct_frag6_reasm()' Remote Denial of Service Vulnerability
2013-10-08
http://www.securityfocus.com/bid/54367

Red Hat JBoss Application Server Multiple Servlets Remote Code Execution Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/62854

Oracle Sun Products Suite CVE-2013-0408 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59204

PolicyKit CVE-2013-4288 Local Privilege Escalation Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62511

Oracle Sun Products Suite CVE-2013-0413 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59214

Oracle Solaris CVE-2013-3745 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61261

Vulnerebility

  HP LoadRunner magentproc.exe Overflow

  GestioIP Remote Command Execution

  davfs2 1.4.6/1.4.7 - Local Privilege Escalation Exploit

  WHMCS 5.2.7 - SQL Injection Vulnerability

  Wordpress Quick Contact Form Plugin 6.0 - Persistent XSS

  Apple Motion 5.0.7 Integer Overflow Vulnerability

Exploit

Understanding C Integer Boundaries (Overflows & Underflow)

Linux Classic Return-to-libc & Return-to-libc Chaining Tutorial

Linux Stack Based Buffer Overflows

Linux Format String Exploitation

Linux Integer Overflow and Underflow

Linux Off By One Vulnerabilities

Return Oriented Programming (ROP FTW)

7.10.2013

Bugtraq

SEC Consult SA-20131004-0 :: SQL injection vulnerability in Zabbix 2013-10-04
SEC Consult Vulnerability Lab (research sec-consult com)

APPLE-SA-2013-10-03-1 OS X v10.8.5 Supplemental Update 2013-10-03
Apple Product Security (product-security-noreply lists apple com)

Malware

RDN/Generic.grp!60496E72EED3

Generic PUP.x!A81623B834E6

W32/Generic.worm!p2p!47D7A4B36905

RDN/Generic PUP.x!b2x!E14B4394695D

Generic PUP.x!46288039A82A

RDN/Generic PUP.x!147304FB748B

RDN/Generic.grp!67FD53CC7165

W32/Generic.worm!p2p!406845CFAA52

RDN/Qhost-Gen!ba!C115435497E7

RDN/Generic.dx!5676417FF349

W32/Generic.worm!p2p!2ABBEEDA0137

RDN/Generic Exploit!69DEF9DB82C7

W32/Generic.worm!p2p!0875AB03199D

W32/Generic.worm!p2p!7B95394F29E4

W32/Generic.worm!p2p!DD6CBD959076

W32/Generic.worm!p2p!10E0FEBEB3E9

W32/Autorun.worm.gen!84C876E6F9EE

W32/Autorun.worm.gen!8CDF01FC8153

W32/Autorun.worm.gen!8AE92D086305

W32/Generic.worm!p2p!3DBECFC1FBFA

W32/Autorun.worm.gen!90F837FA475F

W32/Generic.worm!p2p!470D23A421A7

W32/Autorun.worm.gen!316FB83A3AC1

W32/Autorun.worm.gen!CE39913AC411

W32/Generic.worm!p2p!B7CD4E98162F

W32/Generic.worm!p2p!9F9FFF3E71C3

W32/Generic.worm!p2p!9AEA4E32E833

W32/Autorun.worm.gen!F2B213C06F5E

W32/Autorun.worm.gen!E5E90861C0F5

W32/Autorun.worm.gen!B51D1F2C0786

Phishing

Halifax Bank PLC

6th October 2013

Halifax Bank: Unconfirmed
Payment Notification

PayPal

5th October 2013

Your PayPal Account
Re-Confirmation Alert

Natwest Credit Cards

4th October 2013

YOUR NATWEST CREDIT CARD
SECURITY & PRIVACY

paypal

4th October 2013

Important: We noticed unusual
activity in your PayPal
account

Vulnerebility

IcedTea-Web CVE-2013-4349 Heap Based Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/62426

Multiple HP LaserJet Printers CVE-2013-4828 PDF Encryption Weakness
2013-10-07
http://www.securityfocus.com/bid/62814

Multiple HP LaserJet Printers CVE-2013-4829 Unspecified Local Information Disclosure Vulnerability
2013-10-07
http://www.securityfocus.com/bid/62813

Open Flash Chart 'ofc_upload_image.php' Remote PHP Code Execution Vulnerability
2013-10-07
http://www.securityfocus.com/bid/37314

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-2472 Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60656

Oracle Java SE CVE-2013-2451 Local Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60625

Oracle Java SE CVE-2013-2471 Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60659

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60651

Oracle Java SE CVE-2013-2466 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60624

Oracle Java SE CVE-2013-2469 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60658

Oracle Java SE CVE-2013-2468 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60637

Oracle Java SE CVE-2013-2464 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60631

Oracle Java SE CVE-2013-2463 Remote Code Execution Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60655

Oracle Java SE CVE-2013-2465 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60657

Oracle Java SE CVE-2013-2459 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60647

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60640

Oracle Java SE CVE-2013-2467 Local Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60649

Oracle Java SE CVE-2013-2436 Security Bypass Vulnerability
2013-10-07
http://www.securityfocus.com/bid/59213

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60634

Oracle Java SE CVE-2013-3744 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60654

Oracle Java SE CVE-2013-2453 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60644

Oracle Java SE CVE-2013-2457 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60632

Oracle Java SE CVE-2013-2462 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60630

Oracle Java SE CVE-2013-2444 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60633

Oracle Java SE CVE-2013-2473 Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60623

Oracle Java SE CVE-2013-3743 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60626

Oracle Java SE CVE-2013-2400 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60621

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-10-07
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2013-2460 Remote Java Runtime Environment Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60635

Exploit

 

5.10.2013

Bugtraq

APPLE-SA-2013-10-03-1 OS X v10.8.5 Supplemental Update 2013-10-03
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBPI02892 rev.1 - Certain HP FutureSmart MFP, Weak PDF Encryption, Local Disclosure of Information 2013-10-03
security-alert hp com

ESA-2013-062: EMC Atmos Unauthenticated Database Access Vulnerability 2013-10-03
Security Alert (Security_Alert emc com)

[SOJOBO-ADV-13-01] - Zenphoto 1.4.5.2 multiple vulnerabilities 2013-10-03
advisories enkomio com

[ MDVSA-2013:245 ] proftpd 2013-10-03
security mandriva com

SEC Consult SA-20131003-0 :: Denial of service vulnerability in Citrix NetScaler 2013-10-03
SEC Consult Vulnerability Lab (research sec-consult com)

Apple iOS 7 iPad2 Face-Time 1.0.2 - Privacy Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

WebAssist PowerCMS PHP - Multiple Web Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

elproLOG MONITOR WebAccess 2.1 - Multiple Web Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

SilverStripe Framework CMS 3.0.5 - Multiple Web Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Hide Photo+Video Safe v1.6 iOS - Multiple Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Security Guard CMS QT 4.7.3 - Local Stack Buffer Overflow Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #99 - Filter Bypass & Persistent Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion Vulnerability 2013-10-02
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Malware

RDN/Generic PUP.x!4D3706503DDE

RDN/Generic PUP.x!914774D15B79

RDN/Generic PUP.x!b2s!22F2F957486E

RDN/Vundo!dn!419A4CBEDA4D

RDN/Generic Dropper!2024AE1CD52E

RDN/Generic BackDoor!tv!BE97D4150207

Generic PUP.x!D83337C1AF07

RDN/Generic.bfr!fc!751A9AAB20B2

Generic PWS.y!F87575EA00EA

RDN/Generic PUP.x!A1360C61D4FD

RDN/Generic PUP.x!6CC0FECD2148

Generic PUP.x!AF6A9883E803

Generic BackDoor!0040A76FCEED

RDN/Generic PUP.x!F50DE5773951

Generic PUP.x!2DFF6552C3D4

W32/Spybot.bfr!989E79655A78

Generic.bfr!9FA4697080E0

RDN/Autorun.worm.gen!4F18D43878DA

RDN/Generic BackDoor!tv!B1BB354ED024

RDN/Generic BackDoor!tv!74758E0C204B

RDN/Generic.bfr!es!E026191C9F8C

RDN/Generic PUP.x!b2s!61B3649F99E6

RDN/Generic PUP.x!b2s!A2FE7FD855FE

RDN/Downloader.gen.a!9079E592E1AA

Generic PUP.x!4C206AD434C9

Generic BackDoor!880415C853F2

Generic BackDoor!A6C14B74D80C

RDN/Generic.bfr!E7BC4293F243

Generic PUP.x!96C75B8009B5

Downloader.gen.a!839AF5A444E8

Phishing

Lloyds Banking Online

3rd October 2013

ONLINE BANKING - ONLINE
SECURITY - STAYING SAFE ONLINE

auto-confirm1117@amazon.co.uk

3rd October 2013

YOUR AMAZON.CO.UK ORDER
#NRR-6147155-1778100

auto-confirm1318@amazon.co.uk

2nd October 2013

YOUR AMAZON.CO.UK ORDER
#7N:-0644934-8103229

auto-confirm1116@amazon.co.uk

2nd October 2013

YOUR AMAZON.CO.UK ORDER
#NAD-8519638-3736711

Vulnerebility

Wireshark NBAP Dissector Multiple Denial of Service Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/60502

Wireshark CVE-2013-4074 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60500

Wireshark CVE-2013-4082 Heap Buffer Overflow Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60506

Wireshark Websocket Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59998

Wireshark GSM CBCH Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60498

Wireshark PPP Dissector CVE-2013-4076 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60499

Wireshark CVE-2013-4080 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60503

Wireshark CVE-2013-4075 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60501

Wireshark MPEG DSM-CC Dissector 'packet-mpeg-dsmcc.c' Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59999

Wireshark RDP Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60495

Wireshark Multiple Denial of Service Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/61471

Wireshark CVE-2013-4081 Stack Buffer Overflow Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60505

Wireshark ASN.1 BER Dissector CVE-2013-3557 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60021

Wireshark GTPv2 Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59992

Wireshark CVE-2013-4083 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60504

Wireshark PPP CCP Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59994

Microsoft Windows CVE-2012-1864 Local Privilege Escalation Vulnerability
2013-10-04
http://www.securityfocus.com/bid/53815

Spring Security 'RunAsManager' Local Privilege Escalation Vulnerability
2013-10-04
http://www.securityfocus.com/bid/49538

Spring Framework Expression Language JSP Attributes Handling Information Disclosure Vulnerability
2013-10-04
http://www.securityfocus.com/bid/49543

Cisco Unified Computing System CVE-2012-4109 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62735

Cisco Unified Computing System CVE-2012-4111 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62734

Cisco Unified Computing System CVE-2012-4103 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62731

Cisco Wireless LAN Controller CVE-2013-5519 Cross Site Scripting Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62787

Cisco Unified Computing System CVE-2012-4102 Local Arbitrary Command Execution Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62728

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60107

IBM Eclipse Help System CVE-2013-0467 Information Disclosure Vulnerability
2013-10-04
http://www.securityfocus.com/bid/58000

IBM Eclipse Help System CVE-2013-0464 Cross Site Scripting Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60246

Cisco Unified Computing System CVE-2012-4110 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62737

RETIRED: Adtran Netvanta 7100 and 7060 CVE-2013-5210 Multiple Security Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/62754

Adtran Netvanta 7100 and 7060 CVE-2013-5210 Multiple Security Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/62498

Exploit

  Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object RCE

  SIEMENS Solid Edge ST4 SEListCtrlX ActiveX Remote Code Execution

  elproLOG MONITOR WebAccess 2.1 - Multiple Vulnerabilities

  CMS Formulasi 2.07 - Multiple Vulnerabilities

  Aanval 7.1 build 70151 - Multiple Vulnerabilities

4.10.2013

Bugtraq

Hide Photo+Video Safe v1.6 iOS - Multiple Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Security Guard CMS QT 4.7.3 - Local Stack Buffer Overflow Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #99 - Filter Bypass & Persistent Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion Vulnerability 2013-10-02
Cisco Systems Product Security Incident Response Team (psirt cisco com)

RootedCON 2014 - Call For Papers 2013-10-02
Javier Olascoaga (deese spezialk net)

All in One SEO Pack Plugin for WordPress 1.3.6.4 - 2.0.3 XSS 2013-10-02
Charlie Briggs (charlie cysha co uk)

Malware

Generic PUP.x!5BBC9C6446ED

Generic PUP.x!5B5539E2F021

Generic PUP.x!5BC176680D15

Generic.bfr!F0A140351141

Generic.bfr!C7BE047B5C36

RDN/Generic.bfr!5956071BC2AC

Generic PUP.x!5A44C623C821

Generic PUP.x!A8CAF1926700

Generic PUP.x!5BBBF2FFCA12

RDN/Generic PUP.x!b2o!5A80AB6F310F

Generic PUP.x!0E91FDDEF7B6

RDN/Downloader.a!nm!5A7723E3919F

RDN/Generic BackDoor!tv!5AB3F746043E

RDN/Generic PUP.x!b2o!59DF1E0E3D7E

Generic.bfr!834F7569DF65

Generic PUP.x!5B8EAF718DE3

Generic PUP.x!5A42A5B8F604

RDN/Generic PUP.x!b2o!1C2B53886D4B

Generic PUP.x!599D31258941

Generic PUP.x!586DE51B28E4

RDN/Generic.dx!58B6D010617D

Generic.bfr!A62FFF85F562

RDN/Generic BackDoor!tv!84AFEEAE28F4

Generic.bfr!6F7CAF43B2AB

Generic.bfr!1A3D5328812D

Generic PUP.x!0C7195A55BEF

Generic BackDoor!599C8B519651

Generic PUP.x!590D8A370CE0

Generic PUP.x!59327149969A

Generic PUP.x!5B054DC3EC75

 

Phishing

 

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62468

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62472

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62465

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62478

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62469

GNU glibc 'regexec.c' Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/57638

GNU glibc 'getaddrinfo()' Stack Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/58839

GNU glibc 'pt_chown()' Function CVE-2013-2207 Local Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/61960

GNU glibc 'strcoll()' Routine Integer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/55462

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-03
http://www.securityfocus.com/bid/62324

GNU glibc CVE-2013-4237 Remote Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/61729

WordPress Simple Dropbox Upload 'multi.php' Arbitrary File Upload Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62437

WordPress Complete Gallery Manager Plugin 'upload-images.php' Arbitrary File Upload Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62496

Cisco Identity Services Engine CVE-2013-5505 Cross Site Scripting Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62693

WordPress Lazy SEO Plugin 'lazyseo.php' Arbitrary File Upload Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62589

Review Board Access Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62702

RETIRED: libvirt CVE-2013-5651 Remote Denial Of Service Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62509

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62510

libvirt CVE-2013-4291 Local Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62743

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62508

Exploit

  Evince PDF Reader - 2.32.0.145 (Windows) and 3.4.0 (Linux) - Denial Of Service

3.10.2013

Bugtraq

Multiple Vulnerabilities in Gnew 2013-10-02
High-Tech Bridge Security Research (advisory htbridge com)

Remote Code Execution in GLPI 2013-10-02
High-Tech Bridge Security Research (advisory htbridge com)

Defense in depth -- the Microsoft way (part 11): privilege escalation for dummies 2013-10-01
Stefan Kanthak (stefan kanthak nexgo de)

CORE-2013-0828 - PDFCool Studio Buffer Overflow Vulnerability 2013-10-01
CORE Advisories Team (advisories coresecurity com)

CORE-2013-0904 - PinApp Mail-SeCure Access Control Failure 2013-10-01
CORE Advisories Team (advisories coresecurity com)

iOS: List of available trusted root certificates 2013-09-30
Jeffrey Walton (noloader gmail com) (1 replies)

Re: iOS: List of available trusted root certificates 2013-10-01
Jason Hellenthal (jhellenthal dataix net)

Malware

RDN/Generic PUP.x!b2m!741AFA6B8DE6

RDN/Generic PUP.x!b2m!8780E1673DED

Generic PUP.x!8A6C6A73BC8E

Generic.bfr!89E5C4CCCF60

Generic PUP.x!2E11A5394F12

RDN/PWS-Mmorpg.gen!3546150F0CCD

RDN/Generic Dropper!rq!EDAD6524B95F

Generic PUP.x!8F6BF4FE17D1

RDN/Generic PUP.x!b2m!8723DA1F37F5

RDN/Generic PUP.x!b2m!28C7BC127096

Generic PUP.x!8C7CB4C50C81

Generic PUP.x!8F3FBA16D494

Generic.bfr!8AD904D6E326

RDN/Generic.tfr!dq!8BAC33843F3A

RDN/Generic PUP.x!b2m!8A2A1BB07CCF

Generic PUP.x!8809F08CABA5

Generic PUP.x!8B6075C29645

RDN/Generic PUP.x!b2m!888E0C1B04B0

Generic PUP.x!7D7A804B8D08

RDN/Generic PUP.x!897BB88A4DEF

Generic PUP.x!890F2777DC92

Generic PUP.x!8FA7ECEBFE5A

Generic PUP.x!799F5D00FB0E

RDN/Generic PUP.x!b2m!88CA739EA139

RDN/Generic PUP.x!b2m!88A2A4CBC5AE

RDN/Generic BackDoor!tu!8E56445B6667

Generic.bfr!897915142129

Generic.bfr!876EA47F2891

Generic PUP.x!771B4D70F579

RDN/Generic.bfr!fc!858B14602831

Phishing

auto-confirm1116@amazon.co.uk

2nd October 2013

YOUR AMAZON.CO.UK ORDER
#NAD-8519638-3736711

Apple

1st October 2013

Update your apple Account

Amazon

1st October 2013

[!! ] Please Confirm Your
Account Information
 

Ralph Fabiano

1st October 2013

RE: Get prescriptions to
increase energy levels at
discounts

Lindsay Schrupp

1st October 2013

=?utf-8?B?WW91IGNhbiBhY2hpZXZl
IHRoZSB3aG9sZSB3b3JsZCB3aXRoIH
lvdXIgc2Vj?=
=?utf-8?B?cmV0IHBvd2VyIOqzmQ==
?=

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62472

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62465

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62478

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62469

GNU glibc 'regexec.c' Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/57638

GNU glibc 'getaddrinfo()' Stack Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/58839

GNU glibc 'pt_chown()' Function CVE-2013-2207 Local Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/61960

GNU glibc 'strcoll()' Routine Integer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/55462

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-02
http://www.securityfocus.com/bid/62324

GNU glibc CVE-2013-4237 Remote Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/61729

WordPress Simple Dropbox Upload 'multi.php' Arbitrary File Upload Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62437

WordPress Complete Gallery Manager Plugin 'upload-images.php' Arbitrary File Upload Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62496

Cisco Identity Services Engine CVE-2013-5505 Cross Site Scripting Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62693

WordPress Lazy SEO Plugin 'lazyseo.php' Arbitrary File Upload Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62589

Review Board Access Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62702

RETIRED: libvirt CVE-2013-5651 Remote Denial Of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62509

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62510

libvirt CVE-2013-4291 Local Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62743

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62508

libvirt 'virBitmapParse()' Function Denial of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62070

Linux Kernel CVE-2013-4345 Off-By-One Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62740

Exploit

  freeFTPd PASS Command Buffer Overflow

  Micorosft Internet Explorer SetMouseCapture Use-After-Free

  PinApp Mail-SeCure 3.70 - Access Control Failure

  Gnew 2013.1 - Multiple Vulnerabilities

  GLPI 0.84.1 - Multiple Vulnerabilities

  HylaFAX+ 5.2.4 - 5.5.3 - Buffer Overflow

2.10.2013

Bugtraq

iOS: List of available trusted root certificates 2013-09-30
Jeffrey Walton (noloader gmail com) (1 replies)

Re: iOS: List of available trusted root certificates 2013-10-01
Jason Hellenthal (jhellenthal dataix net)

CFP: WorldCIST'14 - World Conference on IST, at Madeira Island 2013-09-30
Maria Lemos (marialemos72 gmail com)

CVE-2130-5680, HylaFAX+ heap overflow, unchecked network traffic. 2013-09-30
Dennis Jenkins (dennis jenkins 75 gmail com)

[ MDVSA-2013:244 ] davfs2 2013-09-30
security mandriva com

Open-Xchange Security Advisory 2013-09-30 2013-09-30
Martin Braun (martin braun open-xchange com)

Malware

RDN/Generic PUP.x!b2j!8D6F8B441699

RDN/Generic PUP.x!b2j!9F13DD07772B

Generic PUP.x!DDF2F4314652

Generic PUP.x!833EEC2B8751

RDN/Generic PUP.x!b2j!03E29093483B

RDN/Generic PUP.x!b2j!D296D13B5718

RDN/Generic PUP.x!b2j!A5D3302C85B7

RDN/Generic PUP.x!b2j!24E53EED9483

RDN/Generic PUP.x!b2j!904B63766A10

Generic PUP.x!003072D2B841

Generic PUP.x!71356F473A11

Generic.bfr!12253864BF00

Generic PUP.x!112D40BF5E70

Generic PUP.x!C5387ADB0798

Generic PUP.x!947ADF7FA3FD

RDN/Generic PUP.x!b2j!A54D1D155DE2

Generic PUP.x!383952726C0B

Generic PUP.x!DA66BD74EF82

RDN/Generic PUP.x!b2j!98DD307564AD

Generic PUP.x!3EDBAAFA6E10

Generic.bfr!B2FCA710438A

RDN/Generic PUP.x!b2j!3CDB5E72BB0B

RDN/Generic PUP.x!b2j!969628201460

RDN/Generic PUP.x!1C903C5F6E5E

Generic PUP.x!2E365C1F5A73

RDN/Generic BackDoor!tu!A11C742DC94D

RDN/Generic PUP.x!b2j!1CE8549E8E16

Generic PUP.x!4964B80A8EDB

RDN/Generic PUP.x!b2j!7EFC9A5CD12A

RDN/Generic PUP.x!b2j!8CC1FF790B9A

Phishing

BT Yahoo! Mail Policy

30th September 2013

An Update would be made!

auto-confirm1218@amazon.co.uk

30th September 2013

YOUR AMAZON.CO.UK ORDER
#NND-4727068-9691852

Vulnerebility

CCID Card Serial Number Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/45806

Icy Phoenix CMS Cross Site Scripting Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62722

VMware ESX and ESXi CVE-2013-3658 Directory Traversal Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62323

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62453

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/60846

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62049

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62043

PHP CVE-2013-4113 Heap Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61128

Linux Kernel CVE-2013-2094 Local Privilege Escalation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/59846

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62472

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62465

Mozilla Firefox CVE-2013-1727 Same Origin Policy Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62480

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62468

HP Linux Imaging and Printing Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/48892

HP Linux Imaging and Printing CVE-2013-0200 Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58079

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62469

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62478

Mozilla Firefox/SeaMonkey CVE-2013-1705 Use-After-Free Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61871

GNOME Vino VNC Server CVE-2013-5745 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62443

Exploit

  KMPlayer 3.7.0.109 (.wav) - Crash PoC

1.10.2013

Bugtraq

iOS: List of available trusted root certificates 2013-09-30
Jeffrey Walton (noloader gmail com) (1 replies)

Re: iOS: List of available trusted root certificates 2013-10-01
Jason Hellenthal (jhellenthal dataix net)

CFP: WorldCIST'14 - World Conference on IST, at Madeira Island 2013-09-30
Maria Lemos (marialemos72 gmail com)

CVE-2130-5680, HylaFAX+ heap overflow, unchecked network traffic. 2013-09-30
Dennis Jenkins (dennis jenkins 75 gmail com)

[ MDVSA-2013:244 ] davfs2 2013-09-30
security mandriva com

Open-Xchange Security Advisory 2013-09-30 2013-09-30
Martin Braun (martin braun open-xchange com)

Malware

RDN/Generic PUP.x!b2j!8D6F8B441699

RDN/Generic PUP.x!b2j!9F13DD07772B

Generic PUP.x!DDF2F4314652

Generic PUP.x!833EEC2B8751

RDN/Generic PUP.x!b2j!03E29093483B

RDN/Generic PUP.x!b2j!D296D13B5718

RDN/Generic PUP.x!b2j!A5D3302C85B7

RDN/Generic PUP.x!b2j!24E53EED9483

RDN/Generic PUP.x!b2j!904B63766A10

Generic PUP.x!003072D2B841

Generic PUP.x!71356F473A11

Generic.bfr!12253864BF00

Generic PUP.x!112D40BF5E70

Generic PUP.x!C5387ADB0798

Generic PUP.x!947ADF7FA3FD

RDN/Generic PUP.x!b2j!A54D1D155DE2

Generic PUP.x!383952726C0B

Generic PUP.x!DA66BD74EF82

RDN/Generic PUP.x!b2j!98DD307564AD

Generic PUP.x!3EDBAAFA6E10

Generic.bfr!B2FCA710438A

RDN/Generic PUP.x!b2j!3CDB5E72BB0B

RDN/Generic PUP.x!b2j!969628201460

RDN/Generic PUP.x!1C903C5F6E5E

Generic PUP.x!2E365C1F5A73

RDN/Generic BackDoor!tu!A11C742DC94D

RDN/Generic PUP.x!b2j!1CE8549E8E16

Generic PUP.x!4964B80A8EDB

RDN/Generic PUP.x!b2j!7EFC9A5CD12A

RDN/Generic PUP.x!b2j!8CC1FF790B9A

Phishing

BT Yahoo! Mail Policy

30th September 2013

An Update would be made!

auto-confirm1218@amazon.co.uk

30th September 2013

YOUR AMAZON.CO.UK ORDER
#NND-4727068-9691852

Vulnerebility

CCID Card Serial Number Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/45806

Icy Phoenix CMS Cross Site Scripting Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62722

VMware ESX and ESXi CVE-2013-3658 Directory Traversal Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62323

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62453

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/60846

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62049

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62043

PHP CVE-2013-4113 Heap Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61128

Linux Kernel CVE-2013-2094 Local Privilege Escalation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/59846

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62472

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62465

Mozilla Firefox CVE-2013-1727 Same Origin Policy Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62480

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62468

HP Linux Imaging and Printing Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/48892

HP Linux Imaging and Printing CVE-2013-0200 Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58079

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62469

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62478

Mozilla Firefox/SeaMonkey CVE-2013-1705 Use-After-Free Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61871

GNOME Vino VNC Server CVE-2013-5745 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62443

Exploit

  KMPlayer 3.7.0.109 (.wav) - Crash PoC

30.9.2013

Bugtraq

[SECURITY] [DSA 2766-1] linux-2.6 security update 2013-09-27
dann frazier (dannf debian org)

[SECURITY] [DSA 2765-1] davfs2 security update 2013-09-26
Luciano Bello (luciano debian org)

Malware

Downloader-FLN!BA7BC135830A!BA7BC135830A

Downloader-FLN!3EC0E5AD2A00!3EC0E5AD2A00

Downloader-FLN!6A09884E3A9C!6A09884E3A9C

Downloader-FLN!35E62DE3FE3D!35E62DE3FE3D

RDN/Generic PUP.x!AC3A45FFC0B1

Downloader-FLN!27589605DC63!27589605DC63

RDN/Generic.bfr!fc!66FD9BFE93E7

RDN/Qhost-Gen!ba!C74B68E641DE

Downloader-FLN!9CAE65A75614!9CAE65A75614

Generic PUP.x!A8CD2CC81576

Downloader-FLN!DAEE5B2BAD01!DAEE5B2BAD01

RDN/Generic PUP.x!b2i!E9CC027C3AA2

RDN/Generic PUP.x!3703888DD3F8

RDN/Generic.bfr!B5A990E2C206

Generic.bfr!FB3E3819E71E

Adware-FOO!40638FCD5A30!40638FCD5A30

Adware-FOO!78EC6369BFC5!78EC6369BFC5

Downloader-FLN!2BF23240A8C5!2BF23240A8C5

Downloader-FLN!F4D612841210!F4D612841210

Adware-FOO!19CB9AB51AF1!19CB9AB51AF1

RDN/Generic PUP.x!b2i!BE92D8D16892

Generic PUP.x!17846F31FF44

RDN/Generic PUP.x!410941E682B7

RDN/Generic PUP.x!278899E24B6E

RDN/Generic PUP.x!4135259D1C7C

RDN/Generic PUP.x!A7694143E4E4

Generic PUP.x!A5FA50FAAEDA

RDN/Generic Dropper!rq!767B96D50619

RDN/Generic PUP.x!85C7DD19E80E

Generic PUP.x!9FA58DD4F530

Phishing

Lloyds Bank Online

29th September 2013

Internet Banking : View
Balances & Account Activity

Vodafone

29th September 2013

NEW MESSAGE RECEIVED

Natwest Bank

29th September 2013

NatWest: Your account security
is due!

Paypal

29th September 2013

your paypal account have been
limited

Virgin Money plc Online

28th September 2013

Account Limitations Notice.

auto-confirm1218@amazon.co.uk

28th September 2013

YOUR AMAZON.CO.UK ORDER
#RND-7199393-8735453

auto-confirm1216@amazon.co.uk

28th September 2013

YOUR AMAZON.CO.UK ORDER
#N:R-1517783-3092809

auto-confirm1318@amazon.co.uk

28th September 2013

YOUR AMAZON.CO.UK ORDER
#N:A-2408737-4859504

VIRGIN CREDIT CARD

28th September 2013

RE: MBNA CREDIT CARD

Halifax Bank

28th September 2013

Halifax- Online Security Check

Lloyds Banking Group

28th September 2013

ONLINE BANKING : VIEW BALANCES
charset=iso-8859-1">

Amazon

28th September 2013

Your Amazon account is locked!

Barclays Bank

28th September 2013

Re-instate Your Account

Lloyds Bank.

28th September 2013

LLOYDS BANK - EXISTING
CUSTOMER NOTIFICATION

Nationwide Building Society

28th September 2013

NATIONWIDE NEW SEUCITY UPDATE

Tesco Personal Finance

28th September 2013

REDEEM YOUR FREE TESCO VOUCHER

Vulnerebility

Oracle Java SE CVE-2013-0439 Remote JavaFX Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57725

Oracle Java SE CVE-2013-0436 Remote JavaFX Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57721

Oracle Java SE CVE-2013-0430 Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57722

Oracle Java SE CVE-2012-1543 Remote Code Execution Vulnerabilities
2013-09-30
http://www.securityfocus.com/bid/57705

Oracle Java SE CVE-2012-1721 Remote Code Execution Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53959

Oracle Java SE CVE-2012-1722 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53953

Oracle Java SE CVE-2012-1719 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53950

Oracle Java SE CVE-2012-1720 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53956

Oracle Java SE CVE-2012-1718 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53951

Oracle Java SE CVE-2012-1717 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53952

Oracle Java SE CVE-2012-1713 Remote Code Execution Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53946

Oracle Java SE CVE-2013-0438 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57708

Oracle Java SE CVE-2012-1716 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53947

Oracle Java SE CVE-2013-0434 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57730

Oracle Java SE CVE-2013-0427 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57724

Oracle Java SE CVE-2013-0423 Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57716

Oracle Java SE CVE-2013-0431 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57726

Oracle Java SE CVE-2013-0428 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57713

Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57711

Oracle Java SE CVE-2013-0433 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57719

Oracle Java SE CVE-2013-0429 Remote Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57710

Oracle Java SE CVE-2013-0425 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57709

Oracle Java SE CVE-2013-0424 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57715

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57714

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/61310

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57778

ProFTPD 'mod_sftp_pam' Remote Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/62328

Apache Tomcat Hash Collision Denial Of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/51200

OpenSSL CVE-2012-2686 Remote Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57755

OpenSSL CVE-2013-0166 Remote Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/60268

Exploit

  Nodejs js-yaml load() Code Exec

  glibc and eglibc 2.5, 2.7, 2.13 - Buffer Overflow Vulnerability

  Tenda W309R Router 5.07.46 - Configuration Disclosure

  Asus RT-N66U 3.0.0.4.374_720 - CSRF Vulnerability

  mod_accounting Module 0.5 - Blind SQL Injection

  XAMPP 1.8.1 (lang.php, WriteIntoLocalDisk method) - Local Write Access Vulnerability

  SimpleRisk 20130915-01 - Multiple Vulnerabilities

27.9.2013

Bugtraq

[SECURITY] [DSA 2765-1] davfs2 security update 2013-09-26
Luciano Bello (luciano debian org)

Re:joomla com_zimbcomment Components Local File Include vulnerability 2013-09-26
Sergio Tam (tam sergio gmail com)

APPLE-SA-2013-09-26-1 iOS 7.0.2 2013-09-26
Apple Product Security (product-security-noreply lists apple com)

ESA-2013-060: EMC VPLEX Information Disclosure Vulnerability 2013-09-26
Security Alert (Security_Alert emc com)

[ISecAuditors Security Advisories] Multiple Reflected Cross-Site Scripting vulnerabilities 2013-09-26
ISecAuditors Security Advisories (advisories isecauditors com)

XAMPP 1.8.1 Local Write Access Vulnerability 2013-09-26
ISecAuditors Security Advisories (advisories isecauditors com)

[ MDVSA-2013:242 ] kernel 2013-09-26
security mandriva com

[SECURITY] [DSA 2764-1] libvirt security update 2013-09-25
Moritz Muehlenhoff (jmm debian org)

joomla com_zimbcomment Components Local File Include vulnerability 2013-09-25
iedb team gmail com

Malware

Generic.bfr!0CFD07BA93F7

RDN/Generic PUP.x!b2c!84A57AFE08BC

Generic PUP.x!DEF5B1C43756

Generic PUP.x!ACD78F8FDFDA

Generic PUP.x!355F813BEA90

Generic PUP.x!F7F20D5DB184

Generic PUP.x!1409DAAC7370

Generic PUP.x!D5249B6C56BB

Generic Dropper!D4A63040F80A

Generic PUP.x!D7E72923F999

RDN/Generic.bfr!4239BC469190

Generic PUP.x!A07D43EAC97E

Generic PUP.x!843C8F6EBE92

RDN/Generic PWS.y!3D1227BA4C2F

Generic PUP.x!EE6CE3F5DBD9

RDN/Generic.bfr!fc!719479F358FA

Generic PUP.x!CC4B97DB1CED

Generic.bfr!1218451110FF

RDN/Generic PUP.x!b2c!446704B88578

RDN/Generic PUP.x!ED4C8070E471

Generic PUP.x!35F04F1864C8

Generic PUP.x!9036A30CD307

Generic.bfr!C373026E7D49

Generic PUP.x!B8B7480617D6

Generic PUP.x!6F9E819E1869

RDN/Generic BackDoor!tr!464EF2E6D472

Generic.bfr!65070875D1D9

Generic PUP.x!1D4DD762FB49

Generic.bfr!10FFC18F31B2

Generic.bfr!E2FC46C68609

Phishing

HSBC Bank plc

27th September 2013

Your Security is Important :
Please Read !

JPMorgan Chase & Co

27th September 2013

You have one Message Alert

Apple

27th September 2013

Your account is temporarily
Iimeted

PayPal

27th September 2013

Your account is limited - take
action now

PayPal

27th September 2013

Your PayPal account is limited
- take action now

Barclays Bank

27th September 2013

YOUR BARCLAYS DEBIT CARD HAS
BEEN BLOCKED

=====DISCOVER HOW YOUR $12 BEC

27th September 2013

Assurant Mobile Job Search

USAA

27th September 2013

Important Message From Usaa

Lloyds TSB

27th September 2013

Improved Banking System

Google

27th September 2013

Important document

Vulnerebility

GnuTLS TLS And DTLS Information Disclosure Vulnerability
2013-09-27
http://www.securityfocus.com/bid/57736

Linux Kernel 'skbuff.c' Local Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61411

Linux Kernel 'madvise_remove()' Function Local Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/55151

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/60254

OpenStack Keystone Token Revocation Failure Security Bypass Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62331

WordPress WP Ultimate Email Marketer Plugin Cross Site Scripting and Security Bypass Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/62621

IBM AIX CVE-2013-4011 Multiple Local Privilege Escalation Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/61287

Puppet CVE-2013-4761 Arbitrary Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61806

Puppet CVE-2013-3567 Remote Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/60664

Puppet CVE-2013-4956 Security Bypass Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61805

Cisco Unified Computing System Identity Validation CVE-2012-4092 Security Bypass Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62653

Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/52161

Linux Kernel CVE-2013-2897 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62044

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62050

Linux Kernel 'perf_event.c' Local Privilege Escalation Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61793

Linux Kernel CVE-2013-4163 Local Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61412

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62049

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-2899 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62046

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62045

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62048

Nano-10 PLC Modbus Packet Handling Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61024

Django CVE-2013-1443 Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62409

Django CVE-2013-4315 Directory Traversal Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62332

Monkey HTTP Daemon NULL Byte Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/60210

Monkey HTTP Daemon Multiple Denial of Service Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/60425

Monkey HTTP Daemon 'memcpy()' Function Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/60333

Oracle Java SE CVE-2012-1713 Remote Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/53946

Oracle Java SE CVE-2012-0501 Remote Stack Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/52013

Exploit

 

26.9.2013

Bugtraq

[security bulletin] HPSBMU02872 SSRT101185 rev.2 - HP Service Manager, Remote Disclosure of Information, Cross Site Scripting(XSS) 2013-09-25
security-alert hp com

[ MDVSA-2013:241 ] perl-Crypt-DSA 2013-09-25
security mandriva com

[ MDVSA-2013:240 ] glpi 2013-09-25
security mandriva com

Multiple Vulnerabilities in X2CRM 2013-09-25
High-Tech Bridge Security Research (advisory htbridge com)

GreHack 2013 - 15 Nov. Grenoble, France - Conf. Registration OPEN