Databze Hot News - Rok - vod  2018  2017  2016  2015  2014  2013  - 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  List  - 2018  2017  2016  2015  2014  2013 
Posledn aktualizace v 08.10.2016 14:19:38

21.7.2015

Bugtraq

[security bulletin] HPSBMU03377 rev.1 - HP Release Control running RC4, Remote Disclosure of Information 2015-07-20
security-alert hp com

[security bulletin] HPSBUX03379 SSRT101976 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS) 2015-07-20
security-alert hp com

[SECURITY] [DSA 3311-1] mariadb-10.0 security update 2015-07-20
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3310-1] freexl security update 2015-07-19
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 3309-1] tidy security update 2015-07-18
Alessandro Ghedini (ghedo debian org)

[SECURITY] [DSA 3308-1] mysql-5.5 security update 2015-07-18
Salvatore Bonaccorso (carnil debian org)

Malware

TrojanSpy:Win32/BrobanMos.A 
TrojanDownloader:Win32/Banload.BBL 
TrojanDownloader:Win32/Banload.BBN 
TrojanDownloader:Win32/Banload.BBM 
Adware:MSIL/Bawswerps 
TrojanSpy:MSIL/Keylogger.BP 
TrojanDownloader:Win32/Inexsmar.A 
TrojanSpy:Win32/Aneatop.A 
TrojanDropper:MSIL/Golbla.C 
TrojanDownloader:Win32/Nefhop.A 

Phishing

 

Vulnerebility

redcarpet CVE-2015-5147 Stack Buffer Overflow Vulnerability
2015-07-30
http://www.securityfocus.com/bid/75508

Novius OS 'tab' parameter Local File Include Vulnerability
2015-07-29
http://www.securityfocus.com/bid/75533

Oracle Java SE CVE-2015-0403 Local Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72148

Oracle Java SE CVE-2014-6591 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72175

Oracle Java SE CVE-2015-0421 Local Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72150

Oracle Java SE CVE-2015-0408 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72140

Oracle Java SE CVE-2015-0412 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72136

Oracle Java SE CVE-2014-6585 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72173

Oracle MySQL Server CVE-2015-0499 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74115

Oracle MySQL Server CVE-2015-0505 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74112

Oracle MySQL Server CVE-2015-0441 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74103

Oracle MySQL Server CVE-2015-0433 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74089

Oracle MySQL Server CVE-2015-2571 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74095

Oracle MySQL Server CVE-2015-2573 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74078

Oracle MySQL Server CVE-2015-2568 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74073

Oracle MySQL Server CVE-2015-0501 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/74070

Oracle MySQL Server CVE-2015-2648 Remote Security Vulnerability
2015-07-21
http://www.securityfocus.com/bid/75822

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-21
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-0413 Local Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72176

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72165

ISC BIND 'isselfsigned()' Function Remote Denial of Service Vulnerability
2015-07-21
http://www.securityfocus.com/bid/75588

ISC BIND CVE-2015-1349 Remote Denial of Service Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72673

Oracle Java SE CVE-2015-0407 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72162

Oracle Java SE CVE-2014-6587 Local Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72168

Oracle Java SE CVE-2015-0400 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72159

Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72155

Oracle Java SE CVE-2015-0406 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72154

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-07-21
http://www.securityfocus.com/bid/70574

Oracle Java SE CVE-2015-0395 Remote Java SE Vulnerability
2015-07-21
http://www.securityfocus.com/bid/72142

SANS News

Special Microsoft Bulletin Patching Remote Code Execution Flaw in OpenType Font Drivers

Exploit

Microsoft Word Local Machine Zone Remote Code Execution Vulnerability

TcpDump rpki_rtr_pdu_print Out-of-Bounds Denial of Service

20.7.2015

Bugtraq

AirDroid ID - Client Side JSONP Callback Vulnerability 2015-07-17
Vulnerability Lab (research vulnerability-lab com)

FoxyCart Bug Bounty #1 - Filter Bypass & Persistent Vulnerability 2015-07-17
Vulnerability Lab (research vulnerability-lab com)

UDID+ v2.5 iOS - Mail Command Inject Vulnerability 2015-07-17
Vulnerability Lab (research vulnerability-lab com)

Oracle E-Business Suite Servlet URL Redirection Vulnerability 2015-07-17
owais md khan gmail com

Novell GroupWise 2014 WebAccess vulnerable to XSS attacks 2015-07-17
adrian vollmer syss de

Malware

JS/Exploit.Agent.NJY

VBA/TrojanDownloader.Agent.WJ

VBA/TrojanDownloader.Agent.WR

Phishing

METROBANKDIRECT

19th July 2015

Account Blocked

Navy Federal

19th July 2015

Security Preferences

Vulnerebility

Microsoft Internet Explorer CVE-2015-2412 Information Disclosure Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75687

Adobe Reader and Acrobat JavaScript API Execution Multiple Security Bypass Vulnerabilities
2015-07-20
http://www.securityfocus.com/bid/75737

Adobe Acrobat and Reader Use-After-Free Multiple Remote Code Execution Vulnerabilities
2015-07-20
http://www.securityfocus.com/bid/75739

Adobe Acrobat and Reader APSB15-15 Multiple Memory Corruption Vulnerabilities
2015-07-20
http://www.securityfocus.com/bid/75740

SSL/TLS LogJam Man in the Middle Security Bypass Vulnerability
2015-07-20
http://www.securityfocus.com/bid/74733

Oracle Java SE CVE-2015-4731 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75812

Oracle Java SE CVE-2015-4733 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75832

Oracle Java SE CVE-2015-4749 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75890

Oracle Java SE CVE-2015-4748 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75854

Oracle Java SE CVE-2015-4760 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75784

Oracle Java SE CVE-2015-4732 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75823

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-20
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-2664 Local Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75857

Oracle Java SE CVE-2015-2627 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75893

Oracle Java SE CVE-2015-2638 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75833

Oracle Java SE CVE-2015-2632 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75861

Oracle Java SE CVE-2015-2601 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75867

Oracle Java SE CVE-2015-2625 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75895

Oracle Java SE CVE-2015-2637 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75883

Oracle Java SE CVE-2015-2621 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75874

Oracle Java SE CVE-2015-2628 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75796

Adobe Reader and Acrobat CVE-2015-5093 Remote Buffer Overflow Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75748

Oracle Java SE CVE-2015-2590 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75818

Adobe Acrobat and Reader CVE-2015-5091 Security Bypass Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75738

Adobe Acrobat and Reader Multiple Security Bypass Vulnerabilities
2015-07-20
http://www.securityfocus.com/bid/75743

Oracle Java SE CVE-2015-2596 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75887

Oracle Java SE CVE-2015-2659 Remote Security Vulnerability
2015-07-20
http://www.securityfocus.com/bid/75877

Adobe Acrobat and Reader Multiple Remote Integer Overflow Vulnerabilities
2015-07-20
http://www.securityfocus.com/bid/75741

SANS News

Autoruns and VirusTotal

Sigcheck and VirusTotal

The Value a "Fresh Set Of Eyes" (FSOE)

Exploit

 

19.7.2015

Bugtraq

Oracle E-Business Suite Servlet URL Redirection Vulnerability 2015-07-17
owais md khan gmail com

Novell GroupWise 2014 WebAccess vulnerable to XSS attacks 2015-07-17
adrian vollmer syss de

SEC Consult SA-20150716-0 :: Permanent Cross-Site Scripting in Oracle Application Express 2015-07-16
SEC Consult Vulnerability Lab (research sec-consult com)

Elasticsearch CVE-2015-5531 2015-07-16
Kevin Kluge (kevin elastic co)

Elasticsearch CVE-2015-5377 2015-07-16
Kevin Kluge (kevin elastic co)

Malware

 

Phishing

Dropbox

18th July 2015

IMPORTANT DROPBOX DOCUMENT
ENCLOSED

LateNightFriend

18th July 2015

HUNGRY FOR A F&CK FRIEND

USAA

17th July 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Vulnerebility

redcarpet CVE-2015-5147 Stack Buffer Overflow Vulnerability
2015-07-30
http://www.securityfocus.com/bid/75508

Novius OS 'tab' parameter Local File Include Vulnerability
2015-07-29
http://www.securityfocus.com/bid/75533

Microsoft Internet Explorer CVE-2015-2412 Information Disclosure Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75687

Adobe Reader and Acrobat JavaScript API Execution Multiple Security Bypass Vulnerabilities
2015-07-19
http://www.securityfocus.com/bid/75737

Adobe Acrobat and Reader Use-After-Free Multiple Remote Code Execution Vulnerabilities
2015-07-19
http://www.securityfocus.com/bid/75739

Adobe Acrobat and Reader APSB15-15 Multiple Memory Corruption Vulnerabilities
2015-07-19
http://www.securityfocus.com/bid/75740

SSL/TLS LogJam Man in the Middle Security Bypass Vulnerability
2015-07-19
http://www.securityfocus.com/bid/74733

Oracle Java SE CVE-2015-4731 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75812

Oracle Java SE CVE-2015-4733 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75832

Oracle Java SE CVE-2015-4749 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75890

Oracle Java SE CVE-2015-4748 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75854

Oracle Java SE CVE-2015-4760 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75784

Oracle Java SE CVE-2015-4732 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75823

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-19
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-2664 Local Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75857

Oracle Java SE CVE-2015-2627 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75893

Oracle Java SE CVE-2015-2638 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75833

Oracle Java SE CVE-2015-2632 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75861

Oracle Java SE CVE-2015-2601 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75867

Oracle Java SE CVE-2015-2625 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75895

Oracle Java SE CVE-2015-2637 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75883

Oracle Java SE CVE-2015-2621 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75874

Oracle Java SE CVE-2015-2628 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75796

Adobe Reader and Acrobat CVE-2015-5093 Remote Buffer Overflow Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75748

Oracle Java SE CVE-2015-2590 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75818

Adobe Acrobat and Reader CVE-2015-5091 Security Bypass Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75738

Adobe Acrobat and Reader Multiple Security Bypass Vulnerabilities
2015-07-19
http://www.securityfocus.com/bid/75743

Oracle Java SE CVE-2015-2596 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75887

Oracle Java SE CVE-2015-2659 Remote Security Vulnerability
2015-07-19
http://www.securityfocus.com/bid/75877

Adobe Acrobat and Reader Multiple Remote Integer Overflow Vulnerabilities
2015-07-19
http://www.securityfocus.com/bid/75741

SANS News

 

Exploit

 

18.7.2015

Bugtraq

Oracle E-Business Suite Servlet URL Redirection Vulnerability 2015-07-17
owais md khan gmail com

Novell GroupWise 2014 WebAccess vulnerable to XSS attacks 2015-07-17
adrian vollmer syss de

SEC Consult SA-20150716-0 :: Permanent Cross-Site Scripting in Oracle Application Express 2015-07-16
SEC Consult Vulnerability Lab (research sec-consult com)

Elasticsearch CVE-2015-5531 2015-07-16
Kevin Kluge (kevin elastic co)

Elasticsearch CVE-2015-5377 2015-07-16
Kevin Kluge (kevin elastic co)

ESA-2015-123: EMC Documentum WebTop Open Redirect Vulnerability 2015-07-16
Security Alert (Security_Alert emc com)

ESA-2015-122: EMC Documentum CenterStage Cross-site Scripting Vulnerability 2015-07-16
Security Alert (Security_Alert emc com)

[CVE-2015-3253] Apache Groovy Zero-Day Vulnerability Disclosure 2015-07-16
CÃdric Champeau (cedric champeau gmail com)

Malware

 

Phishing

USAA

17th July 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Royal Bank Support

17th July 2015

ROYAL BANK | PLEASE UPDATE
YOUR RBC ACOUNT INFORMATION .

Vulnerebility

Microsoft Internet Explorer CVE-2015-2412 Information Disclosure Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75687

Adobe Reader and Acrobat JavaScript API Execution Multiple Security Bypass Vulnerabilities
2015-07-18
http://www.securityfocus.com/bid/75737

Adobe Acrobat and Reader Use-After-Free Multiple Remote Code Execution Vulnerabilities
2015-07-18
http://www.securityfocus.com/bid/75739

Adobe Acrobat and Reader APSB15-15 Multiple Memory Corruption Vulnerabilities
2015-07-18
http://www.securityfocus.com/bid/75740

SSL/TLS LogJam Man in the Middle Security Bypass Vulnerability
2015-07-18
http://www.securityfocus.com/bid/74733

Oracle Java SE CVE-2015-4731 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75812

Oracle Java SE CVE-2015-4733 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75832

Oracle Java SE CVE-2015-4749 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75890

Oracle Java SE CVE-2015-4748 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75854

Oracle Java SE CVE-2015-4760 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75784

Oracle Java SE CVE-2015-4732 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75823

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-18
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-2664 Local Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75857

Oracle Java SE CVE-2015-2627 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75893

Oracle Java SE CVE-2015-2638 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75833

Oracle Java SE CVE-2015-2632 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75861

Oracle Java SE CVE-2015-2601 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75867

Oracle Java SE CVE-2015-2625 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75895

Oracle Java SE CVE-2015-2637 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75883

Oracle Java SE CVE-2015-2621 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75874

Oracle Java SE CVE-2015-2628 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75796

Adobe Reader and Acrobat CVE-2015-5093 Remote Buffer Overflow Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75748

Oracle Java SE CVE-2015-2590 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75818

Adobe Acrobat and Reader CVE-2015-5091 Security Bypass Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75738

Adobe Acrobat and Reader Multiple Security Bypass Vulnerabilities
2015-07-18
http://www.securityfocus.com/bid/75743

Oracle Java SE CVE-2015-2596 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75887

Oracle Java SE CVE-2015-2659 Remote Security Vulnerability
2015-07-18
http://www.securityfocus.com/bid/75877

Adobe Acrobat and Reader Multiple Remote Integer Overflow Vulnerabilities
2015-07-18
http://www.securityfocus.com/bid/75741

SANS News

 

Exploit

D-Link Cookie Command Execution

WordPress BuddyPress Activity Plus Plugin 1.5 - CSRF Vulnerability

17.7.2015

Bugtraq

SEC Consult SA-20150716-0 :: Permanent Cross-Site Scripting in Oracle Application Express 2015-07-16
SEC Consult Vulnerability Lab (research sec-consult com)

Elasticsearch CVE-2015-5531 2015-07-16
Kevin Kluge (kevin elastic co)

Elasticsearch CVE-2015-5377 2015-07-16
Kevin Kluge (kevin elastic co)

ESA-2015-123: EMC Documentum WebTop Open Redirect Vulnerability 2015-07-16
Security Alert (Security_Alert emc com)

ESA-2015-122: EMC Documentum CenterStage Cross-site Scripting Vulnerability 2015-07-16
Security Alert (Security_Alert emc com)

[CVE-2015-3253] Apache Groovy Zero-Day Vulnerability Disclosure 2015-07-16
CÃdric Champeau (cedric champeau gmail com)

Malware

TrojanDownloader:Win32/Upatre.BR 
TrojanDropper:Win32/Plimrost.A 
TrojanProxy:Win32/Poindampa.A 
TrojanDropper:AutoIt/Jenxcus 
Backdoor:Win32/Zegost.DV 
TrojanDownloader:Win32/Zegost.C 
Worm:Win32/Imafly.B 
TrojanDownloader:MSIL/Prardrukat.A 
Backdoor:Win32/Venik.I 
Backdoor:Win32/Venik.J 

Phishing

Metrobankdirect

16th July 2015

Account Blocked

Vulnerebility

Oracle Java SE CVE-2015-4731 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75812

Adobe Flash Player CVE-2015-5122 Use After Free Remote Memory Corruption Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75712

Adobe Flash Player ActionScript 3 BitmapData Use After Free Remote Memory Corruption Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75710

Oracle Java SE CVE-2015-4749 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75890

Oracle Java SE CVE-2015-2625 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75895

Oracle Java SE CVE-2015-2621 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75874

Oracle Java SE CVE-2015-2632 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75861

Oracle Java SE CVE-2015-2601 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75867

Oracle Java SE CVE-2015-4748 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75854

Oracle Java SE CVE-2015-4732 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75823

Oracle Java SE CVE-2015-2628 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75796

SSL/TLS LogJam Man in the Middle Security Bypass Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74733

Oracle Java SE CVE-2015-4733 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75832

Oracle Java SE CVE-2015-2590 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75818

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-17
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-4760 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75784

Linux Kernel CVE-2015-2922 Denial of Service Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74315

Linux Kernel CVE-2015-3636 Local Privilege Escalation Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74450

Oracle Java SE CVE-2015-2659 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/75877

Oracle MySQL Server CVE-2015-0511 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74130

Oracle MySQL Server CVE-2015-0498 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74133

Oracle MySQL Server CVE-2015-0507 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74121

Oracle MySQL Server CVE-2015-2566 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74126

Oracle MySQL Server CVE-2015-2567 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74123

Oracle MySQL Server CVE-2015-0405 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74110

Oracle MySQL Server CVE-2015-0506 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74120

Oracle MySQL Server CVE-2015-0423 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74091

Oracle MySQL Server CVE-2015-0433 Remote Security Vulnerability
2015-07-17
http://www.securityfocus.com/bid/74089

SANS News

 

Exploit

15 TOTOLINK Router Models - Multiple RCE Vulnerabilities

4 TOTOLINK Router Models - CSRF and XSS Vulnerabilities

4 TOTOLINK Router Models - Backdoor Credentials

8 TOTOLINK Router Models - Backdoor and RCE

16.7.2015

Bugtraq

Backdoor credentials found in 4 TOTOLINK router models 2015-07-15
Pierre Kim (pierre kim sec gmail com)

4 TOTOLINK router models vulnerable to CSRF and XSS attacks 2015-07-15
Pierre Kim (pierre kim sec gmail com)

15 TOTOLINK router models vulnerable to multiple RCEs 2015-07-15
Pierre Kim (pierre kim sec gmail com)

Cisco Security Advisory: Cisco Videoscape Delivery System Denial of Service Vulnerability 2015-07-15
Cisco Systems Product Security Incident Response Team (psirt cisco com)

XSS, Code Execution, DOS, Password Leak, Weak Authentication in GetSimpleCMS 3.3.5 2015-07-15
Tim Coen (tc coen gmail com)

XSS vulnerability in OFBiz forms 2015-07-15
lilian_iatco yahoo com

Malware

TrojanDownloader:MSIL/Prardrukat.A 
Backdoor:Win32/Venik.I 
Backdoor:Win32/Venik.J 

Phishing

Lloyds Bank

15th July 2015

UPDATE NOTICE

Storage Limit

15th July 2015

howiem@bigfoot.com Mailbox
Exceeded Limit,Verify Your
Password

Vulnerebility

redcarpet CVE-2015-5147 Stack Buffer Overflow Vulnerability
2015-07-30
http://www.securityfocus.com/bid/75508

Novius OS 'tab' parameter Local File Include Vulnerability
2015-07-29
http://www.securityfocus.com/bid/75533

Linux Kernel CVE-2015-3636 Local Privilege Escalation Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74450

Oracle MySQL Server CVE-2015-0511 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74130

Oracle MySQL Server CVE-2015-0498 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74133

Oracle MySQL Server CVE-2015-0507 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74121

Oracle MySQL Server CVE-2015-2566 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74126

Oracle MySQL Server CVE-2015-2567 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74123

Oracle Java SE CVE-2015-4749 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75890

Oracle Java SE CVE-2015-2625 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75895

Oracle Java SE CVE-2015-2632 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75861

Oracle Java SE CVE-2015-2621 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75874

Oracle Java SE CVE-2015-2601 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75867

Oracle Java SE CVE-2015-4748 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75854

Oracle Java SE CVE-2015-4732 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75823

Oracle Java SE CVE-2015-4733 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75832

Oracle Java SE CVE-2015-2590 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75818

Oracle Java SE CVE-2015-2628 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75796

Oracle Java SE CVE-2015-4731 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75812

Oracle Java SE CVE-2015-4760 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/75784

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-16
http://www.securityfocus.com/bid/73684

Oracle MySQL Server CVE-2015-0405 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74110

Oracle MySQL Server CVE-2015-0506 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74120

Oracle MySQL Server CVE-2015-0423 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74091

Oracle MySQL Server CVE-2015-0433 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74089

Oracle MySQL Server CVE-2015-2571 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74095

Oracle MySQL Server CVE-2015-0503 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74102

Oracle MySQL Server CVE-2015-0441 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74103

Oracle MySQL Server CVE-2015-0505 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74112

Oracle MySQL Server CVE-2015-0438 Remote Security Vulnerability
2015-07-16
http://www.securityfocus.com/bid/74098

SANS News

After Flash, what will exploit kits focus on next?

Exploit

Kaseya Virtual System Administrator - Multiple Vulnerabilities

Joomla DOCman Component - Multiple Vulnerabilities

15.7.2015

Bugtraq

 

Malware

TrojanDropper:MSIL/Golbla.B 
VirTool:MSIL/Injector.EW 
TrojanSpy:Win32/Nivdort.BO 
TrojanSpy:Win32/Nivdort.BN 
Trojan:Win32/Kovter.C!reg 
TrojanSpy:Win32/Bradop.E 
TrojanDownloader:Win32/Travalork.A 
TrojanSpy:Win32/Bradop.G 
Trojan:Win32/Apmit.A!plock 
Trojan:Win32/Banload.E 

Phishing

Storage Limit

15th July 2015

howiem@bigfoot.com Mailbox
Exceeded Limit,Verify Your
Password

Vulnerebility

OpenSSL Session Ticket Memory Leak Remote Denial of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/70586

MIT Kerberos 5 1.7.x Checksum Multiple Remote Security Bypass Vulnerabilities
2015-07-15
http://www.securityfocus.com/bid/45116

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability
2015-07-15
http://www.securityfocus.com/bid/72325

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-07-15
http://www.securityfocus.com/bid/71939

ModSecurity 'mod_headers' module Security Bypass Vulnerability
2015-07-15
http://www.securityfocus.com/bid/66550

X.Org X Server 'xkb/xkb.c' Information Disclosure Vulnerability
2015-07-15
http://www.securityfocus.com/bid/72578

Apache Tomcat CVE-2014-0227 Chunk Request Remote Denial Of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/72717

RETIRED: Oracle E-Business Suite CVE-2014-3571 Remote Security Vulnerability
2015-07-15
http://www.securityfocus.com/bid/75769

X.Org X Server CVE-2014-8102 Out of Bounds Denial of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/71608

OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/71937

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/73225

X.Org libXfont 'bitmap/bdfread.c' Local Denial of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/73280

Mozilla Network Security Services CVE-2014-1568 Security Bypass Vulnerability
2015-07-15
http://www.securityfocus.com/bid/70116

Apache Tomcat CVE-2014-0230 Denial of Service Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74475

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-07-15
http://www.securityfocus.com/bid/73684

Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities
2015-07-15
http://www.securityfocus.com/bid/61189

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-07-15
http://www.securityfocus.com/bid/70574

Apache Struts CVE-2014-7809 Security Bypass Vulnerability
2015-07-15
http://www.securityfocus.com/bid/71548

SSL/TLS LogJam Man in the Middle Security Bypass Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74733

Apache Commons FileUpload 'DiskFileItem' Class Null Byte Arbitrary File Write Vulnerability
2015-07-15
http://www.securityfocus.com/bid/63174

Mozilla Network Security Services CVE-2014-1569 Security Bypass Vulnerability
2015-07-15
http://www.securityfocus.com/bid/71675

cURL/libcURL Remote Input Validation Vulnerability
2015-07-15
http://www.securityfocus.com/bid/51665

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74640

Microsoft Windows Adobe Font Driver 'atmfd.dll' Remote Privilege Escalation Vulnerability
2015-07-15
http://www.securityfocus.com/bid/75587

Oracle MySQL Server CVE-2015-0498 Remote Security Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74133

Oracle MySQL Server CVE-2015-2566 Remote Security Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74126

Oracle MySQL Server CVE-2015-0511 Remote Security Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74130

Oracle MySQL Server CVE-2015-0499 Remote Security Vulnerability
2015-07-15
http://www.securityfocus.com/bid/74115

SANS News

July 2015 Microsoft Patch Tuesday

Adobe Updates Flash Player, Shockwave and PDF Reader

PHP 5.x Security Updates

freq.py super powers?

VMware Security Bulletins

OPENSSL update fixes Certificate Verification issue

Cisco PSIRT reporting Customers affected by ASA VPN DoS attacks

Detecting Random - Finding Algorithmically chosen DNS names (DGA)

SSL, SSL - Where Art Thou SSL?

BizCN gate actor changes from Fiesta to Nuclear exploit kit

Working with base64

A .BUP File Is An OLE File

Analyzing Quarantine Files

Another example of Angler exploit kit pushing CryptoWall 3.0

Apple "Patch Tuesday"

Exploit

Impero Education Pro - SYSTEM Remote Command Execution

Pimcore CMS Build 3450 - Directory Traversal

Internet Download Manager - (.ief) Crash PoC

Internet Download Manager - (Find Download) Crash PoC

ZOC Terminal Emulator 7 - (Quick Connection) Crash PoC

14.7.2015

Bugtraq

CFP: Passwords 2015, Dec 7-9, Cambridge, UK 2015-07-10
Per Thorsheim (per thorsheim net)

CVE-2015-4670 - AjaxControlToolkit File Upload Directory Traversal 2015-07-13
Brian Cardinale (brian cardinaleconsulting com)

[SYSS-2015-031] sysPass - SQL Injection 2015-07-13
disclosure syss de

phpSQLiteCMS CSRF, Unrestricted File Type Upload, Privilege Escalation & XSS CSRF, Unrestricted File Type Upload, Privilege Escalation & XSS 2015-07-13
apparitionsec gmail com

[slackware-security] mozilla-thunderbird (SSA:2015-192-01) 2015-07-12
Slackware Security Team (security slackware com)

SQL Injection, Reflected XSS, Path Traversal, Function Execution in ZenPhoto 1.4.8 2015-07-10
Tim Coen (tc coen gmail com)

[security bulletin] HPSBGN03373 rev.1 - HP Release Control running TLS, Remote Disclosure of Information 2015-07-10
security-alert hp com

Cisco Security Advisory: OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products 2015-07-10
Cisco Systems Product Security Incident Response Team (psirt cisco com)

ESA-2015-115: EMC RecoverPoint for Virtual Machines (VMs) Restriction Bypass Vulnerability 2015-07-10
Security Alert (Security_Alert emc com)

CVE-2014-7952, Android ADB backup APK injection vulnerability 2015-07-10
Imre RAD (imre rad search-lab hu)

[security bulletin] HPSBGN03351 rev.2 - HP IceWall SSO Dfw, SSO Certd, MCRP, and Federation Agent running OpenSSL, Remote Disclosure of Information 2015-07-10
security-alert hp com

[security bulletin] HPSBGN03371 rev.1 - HP IceWall Products running OpenSSL, Remote Denial of Service (DoS) 2015-07-10
security-alert hp com

NEW VMSA-2015-0005 : VMware Workstation, Player and Horizon View Client for Windows updates address a host privilege escalation vulnerability 2015-07-10
VMware Security Response Center (security vmware com)

[SECURITY] [DSA 3307-1] pdns-recursor security update 2015-07-09
Alessandro Ghedini (ghedo debian org)

[SECURITY] [DSA 3306-1] pdns security update 2015-07-09
Alessandro Ghedini (ghedo debian org)

[slackware-security] openssl (SSA:2015-190-01) 2015-07-09
Slackware Security Team (security slackware com)

FreeBSD Security Advisory FreeBSD-SA-15:12.openssl 2015-07-09
FreeBSD Security Advisories (security-advisories freebsd org)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2015-07-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Extra information for CVE-2014-2513 - EMC Documentum Content Server: arbitrary code execution 2015-07-08
andrew panfilov tel

[SECURITY] [DSA 3305-1] python-django security update 2015-07-08
Alessandro Ghedini (ghedo debian org)

[CORE-2015-0011] - AirLink101 SkyIPCam1620W OS Command Injection 2015-07-08
CORE Advisories Team (advisories coresecurity com)

[security bulletin] HPSBUX03363 rev.1 - HP-UX Apache Web Server running OpenSSL, Remote Disclosure of Information 2015-07-08
security-alert hp com

Merethis Centreon - Unauthenticated blind SQLi and Authenticated Remote Command Execution 2015-07-08
hdau deloitte fr

SQL Injection in easy2map-photos wordpress plugin v1.09 2015-07-08
Larry W. Cashdollar (larry0 me com)

Remote file download vulnerability in wordpress plugin wp-ecommerce-shop-styling v2.5 2015-07-08
Larry W. Cashdollar (larry0 me com)

Symantec EP 12.1.4013 Disabling Vulnerability 2015-07-08
apparitionsec gmail com

[slackware-security] bind (SSA:2015-188-04) 2015-07-08
Slackware Security Team (security slackware com)

[slackware-security] ntp (SSA:2015-188-03) 2015-07-08
Slackware Security Team (security slackware com)

[slackware-security] cups (SSA:2015-188-01) 2015-07-08
Slackware Security Team (security slackware com)

[slackware-security] mozilla-firefox (SSA:2015-188-02) 2015-07-08
Slackware Security Team (security slackware com)

Malware

 

Phishing

USAA

14th July 2015

New Message From Usaa Bank

Paypal service

12th July 2015

YOUR ACCOUNT WILL BE LIMITED

Mail User

11th July 2015

INCOMING EMAILS

Virgin Money UK

11th July 2015

VIRGIN E-MAIL ALERT !

PayPal

11th July 2015

WE'RE INVESTIGATING A PAYPAI
PAYMENT REVERSAI (CASE ID
#PP-003-498-237-832)

Chase

10th July 2015

ACTION NEEDED: ONLINE BANKING
ALERT!?

Vulnerebility

redcarpet CVE-2015-5147 Stack Buffer Overflow Vulnerability
2015-07-30
http://www.securityfocus.com/bid/75508

Novius OS 'tab' parameter Local File Include Vulnerability
2015-07-29
http://www.securityfocus.com/bid/75533

OpenSSL CVE-2014-3511 Man in the Middle Security Bypass Vulnerability
2015-07-10
http://www.securityfocus.com/bid/69079

OpenSSL CVE-2014-3509 Remote Denial of Service Vulnerability
2015-07-10
http://www.securityfocus.com/bid/69084

OpenSSL NULL Pointer Dereference CVE-2014-5139 Local Denial of Service Vulnerability
2015-07-10
http://www.securityfocus.com/bid/69077

OpenSSL 'no-ssl3' Build Option Security Bypass Vulnerability
2015-07-10
http://www.securityfocus.com/bid/70585

Multiple PowerDNS Products CVE-2015-1868 Remote Denial of Service Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74306

OpenSSL CVE-2015-1793 Certificate Verification Security Bypass Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75652

OpenSSL CVE-2014-3508 Information Disclosure Vulnerability
2015-07-10
http://www.securityfocus.com/bid/69075

WordPress ReFlex Gallery Plugin 'php.php' Arbitrary File Upload Vulnerability
2015-07-10
http://www.securityfocus.com/bid/57100

SSL/TLS LogJam Man in the Middle Security Bypass Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74733

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74147

PHP CVE-2015-4599 Remote Memory Corruption Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75251

PHP 'exception::getTraceAsString' CVE-2015-4603 Remote Security Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75252

PHP 'incomplete_class.c' Memory Corruption Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75249

PHP NULL Character CVE-2015-3412 Multiple Security Bypass Vulnerabilities
2015-07-10
http://www.securityfocus.com/bid/75250

PHP CVE-2015-3411 Null Character Security Bypass Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75255

PHP CVE-2015-4601 Multiple Memory Corruption Vulnerabilities
2015-07-10
http://www.securityfocus.com/bid/75246

PHP CVE-2015-3329 Buffer Overflow Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74240

PHP 'do_soap_call()' Function Type Confusion Information Disclosure Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75103

PHP 'pcnt_exec()' Function Null Character Security Bypass Vulnerability
2015-07-10
http://www.securityfocus.com/bid/75056

PHP PHAR 'phar_tar_process_metadata()' Function Heap Memory Corruption Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74703

PHP 'ftp_genlist()' Function Integer Overflow Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74902

PHP CVE-2015-4598 Multiple Security Bypass Vulnerabilities
2015-07-10
http://www.securityfocus.com/bid/75244

PHP 'unserialize()' Function Information Disclosure and Remote Code Execution Vulnerabilities
2015-07-10
http://www.securityfocus.com/bid/74413

PHP PHAR 'phar_parse_tarfile()' Function Remote Memory Corruption Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74700

PHP 'main/rfc1867.c' Remote Denial Of Service Vulnerability
2015-07-10
http://www.securityfocus.com/bid/74903

PHP LibGD Extension 'gd_gif_in.c' Stack Buffer Overflow Vulnerability
2015-07-10
http://www.securityfocus.com/bid/73306

PHP 'ext/phar/phar_object.c' Double Free Denial of Service Vulnerability
2015-07-10
http://www.securityfocus.com/bid/73037

PHP CVE-2014-9425 Double Free Denial of Service Vulnerability
2015-07-10
http://www.securityfocus.com/bid/71800

SANS News

Jump List Files Are OLE Files

Exploit

Accellion FTA getStatus verify_oauth_token Command Execution

VNC Keyboard Remote Code Execution

Adobe Flash opaqueBackground Use After Free

Western Digital Arkeia Remote Code Execution

phpSQLiteCMS - Multiple Vulnerabilities

FreiChat 9.6 - SQL Injection

Arab Portal 3 - SQL Injection Vulnerability

phpVibe - Aribtrary File Disclosure ArticleFR 3.0.6 - Multiple Vulnerabilities

WordPress Swim Team Plugin 1.44.10777 - Arbitrary File Download

ZenPhoto 1.4.8 - Multiple Vulnerabilities

Full Player 8.2.1 - Memory Corruption PoC

2.7.2015

Bugtraq

iTunes 12.2 and QuickTime 7.7.7 for Windows: still outdated and VULNERABLE 3rd party libraries, still UNQUOTED and VULNERABLE pathnames C:\Program Files\... 2015-07-01
Stefan Kanthak (stefan kanthak nexgo de)

Exploit Code for ipTIME firmwares < 9.58 (root RCE against 127 router models) 2015-07-01
Pierre Kim (pierre kim sec gmail com)

ESA-2015-112: EMC Isilon OneFS Command Injection Vulnerability 2015-07-01
Security Alert (Security_Alert emc com)

Path Traversal in BlackCat CMS 2015-07-01
High-Tech Bridge Security Research (advisory htbridge ch)

Blueberry Express v5.9.x - SEH Buffer Overflow Vulnerability 2015-07-01
Vulnerability Lab (research vulnerability-lab com)

ESA-2015-108: EMC Documentum D2 Multiple DQL Injection Vulnerabilities 2015-07-01
Security Alert (Security_Alert emc com)

ESA-2015-111: EMC Documentum WebTop Client Products Multiple Vulnerabilities 2015-07-01
Security Alert (Security_Alert emc com)

FCS Scanner v1.0 & v1.4 - Command Inject Vulnerability 2015-07-01
Vulnerability Lab (research vulnerability-lab com)

Ebay Magento Bug Bounty #14 - Persistent Description Vulnerability 2015-07-01
Vulnerability Lab (research vulnerability-lab com)

Pinterest Bug Bounty #1 - Persistent contact_name Vulnerability 2015-07-01
Vulnerability Lab (research vulnerability-lab com)

Extra information for CVE-2014-4626 - EMC Documentum Content Server: authenticated user is able to elevate privileges, hijack Content Server filesystem, execute arbitrary commands by creating malicious dm_job objects 2015-07-01

Malware

Infostealer.Bancos.BE

W97M.Downloader.E

W97M.Downloader.D

W97M.Downloader.C

Phishing

Apple

1st July 2015

[ APPLE ] : VIEW YOUR RECENT
SECURITY-ACCOUNT

Mail User

30th June 2015

INCOMING MAIL

iTunes

30th June 2015

ITUNES ACCOUNT HAS BEEN FROZEN
ID1381A4C512582B66FF55

Dear Valued Member

30th June 2015

WARNINGS!!

Mr. Martin

30th June 2015

APPROVED PAYMENT.

Microsoft

29th June 2015

You just need to confirm your
billing address.

Vulnerebility

 

Exploit

D-Link DSP-W w110 v1.05b01 - Multiple Vulnerabilities

McAfee SiteAdvisor 3.7.2 (firefox) Use After Free PoC

1.7.2015

Bugtraq

APPLE-SA-2015-06-30-3 Mac EFI Security Update 2015-001 2015-06-30
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2015-06-30-4 Safari 8.0.7, Safari 7.1.7, and Safari 6.2.7 2015-06-30
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2015-06-30-2 OS X Yosemite v10.10.4 and Security Update 2015-005 2015-06-30
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2015-06-30-1 iOS 8.4 2015-06-30
Apple Product Security (product-security-noreply lists apple com)

Google Chrome Address Spoofing (Request For Comment) 2015-06-30
David Leo (david leo deusen co uk)

CVE-2015-4674 - TimeDoctor autoupdate over plain-HTTP 2015-06-29
Fernando MuÃoz (fernando null-life com)

Malware

Trojan:Win32/Lodbak

Boot.Pitou

Trojan.Pitou

Phishing

Mail User

30th June 2015

INCOMING MAIL

iTunes

30th June 2015

ITUNES ACCOUNT HAS BEEN FROZEN
ID1381A4C512582B66FF55

Dear Valued Member

30th June 2015

WARNINGS!

Mr. Martin

30th June 2015

APPROVED PAYMENT.

Microsoft

29th June 2015

You just need to confirm your
billing address.

Vulnerebility

 

Exploit

 

30.6.2015

Bugtraq

[SECURITY] [DSA 3297-1] unattended-upgrades security update 2015-06-29
Alessandro Ghedini (ghedo debian org)

novius-os.5.0.1 Persistent XSS, LFI & Open Redirect Vulnerabilities 2015-06-29
apparitionsec gmail com

Malware

Trojan.Rerdom!gm

Trojan.Rerdom

Exp.CVE-2015-3113

Win32 / Huradikal.AB

Phishing

Mail User

30th June 2015

INCOMING MAIL

iTunes

30th June 2015

ITUNES ACCOUNT HAS BEEN FROZEN
ID1381A4C512582B66FF55

Dear Valued Member

30th June 2015

WARNINGS!!

Mr. Martin

30th June 2015

APPROVED PAYMENT.

Microsoft

29th June 2015

You just need to confirm your
billing address.

Vodafone

28th June 2015

You Have One Unread Message

Vulnerebility

 

Exploit

Adobe Flash Player Drawing Fill Shader Memory Corruption

Watchguard XCS <=10.0 - Multiple Vulnerabilities

Novius 5.0.1 - Multiple Vulnerabilities

WedgeOS <= 4.0.4 - Multiple Vulnerabilities

CollabNet Subversion Edge Management 4.0.11 - Local File Inclusion

Fiyo CMS 2.0_1.9.1 - SQL Injection

C2Box 4.0.0(r19171) - CSRF Vulnerability

Polycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities

encoded 64 bit execve shellcode

Novius 5.0.1 - Multiple Vulnerabilities

29.6.2015

Bugtraq

novius-os.5.0.1 Persistent XSS, LFI & Open Redirect Vulnerabilities 2015-06-29
apparitionsec gmail com

CollabNet Subversion Edge indes local file inclusion 2015-06-28
Oliver-Tobias Ripka (otr bockcay de)

CollabNet Subversion Edge missing single login restriction 2015-06-28
Oliver-Tobias Ripka (otr bockcay de)

CollabNet Subversion Edge weak password storage mechanism 2015-06-28
Oliver-Tobias Ripka (otr bockcay de)

CollabNet Subversion Edge missing XSRF protection 2015-06-28
Oliver-Tobias Ripka (otr bockcay de)

CollabNet Subversion Edge weak password policy 2015-06-28
Oliver-Tobias Ripka (otr bockcay de)

Malware

Trojan:Win32/Lodbak

Phishing

Microsoft

29th June 2015

You just need to confirm your
billing address.

Vodafone

28th June 2015

You Have One Unread Message

Vulnerebility

 

Exploit

 

27.6.2015

Bugtraq

 

Malware

 

Phishing

Bank Of America

27th June 2015

* IMPORTANT * Ensure The Safty
For Your Online Banking
Account

iTunes

26th June 2015

ITUNES ACCOUNT HAS BEEN FROZEN
ID2108A4C525152AF4847A

PayPal Service

26th June 2015

You just need to confirm your
billing address.

Bank of Scotland

25th June 2015

Account Review Notification.

Vulnerebility

 

Exploit

Thycotic Secret Server 8.8.000004 - Stored XSS

ManageEngine Asset Explorer 6.1 - Stored XSS

26.6.2015

Bugtraq

Cisco Security Advisory: Multiple Default SSH Keys Vulnerabilities in Cisco Virtual WSA, ESA, and SMA 2015-06-25
Cisco System

Cisco Security Advisory: Multiple Default SSH Keys Vulnerabilities in Cisco Virtual WSA, ESA, and SMA 2015-06-25
Cisco Systems Product Security Incident Response Team (psirt cisco com)

ESA-2015-102: EMC Unisphere for VMAX Remote Code Execution Vulnerability 2015-06-25
Security Alert (Security_Alert emc com)

Netgear Prosafe VPN Firewalls - Multiple vulnerabilities 2015-06-25
post encripto no

[ERPSCAN-15-011] SAP Mobile Platform 3.0 - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-008] SAP Afaria 7 XcListener - DoS in the module XeClient.Dll 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-010] SYBASE SQL Anywhere 12 and 16 - DoS 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-009] SAP Afaria 7 XcListener - Missing authorization check 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-007] SAP Management Console ReadProfile Parameters - Information disclosure 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-005] SAP Mobile Platform - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-006] SAP NetWeaver Portal ReportXmlViewer - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-004] SAP NetWeaver Portal XMLValidationComponent - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-003] SAP NetWeaver Dispatcher Buffer Overflow - RCE, DoS 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[SECURITY] [DSA 3295-1] cacti security update 2015-06-24
Salvatore Bonaccorso (carnil debian org)

s Product Security Incident Response Team (psirt cisco com)

ESA-2015-102: EMC Unisphere for VMAX Remote Code Execution Vulnerability 2015-06-25
Security Alert (Security_Alert emc com)

Netgear Prosafe VPN Firewalls - Multiple vulnerabilities 2015-06-25
post encripto no

[ERPSCAN-15-011] SAP Mobile Platform 3.0 - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-008] SAP Afaria 7 XcListener - DoS in the module XeClient.Dll 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-010] SYBASE SQL Anywhere 12 and 16 - DoS 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-009] SAP Afaria 7 XcListener - Missing authorization check 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-007] SAP Management Console ReadProfile Parameters - Information disclosure 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-005] SAP Mobile Platform - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-006] SAP NetWeaver Portal ReportXmlViewer - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-004] SAP NetWeaver Portal XMLValidationComponent - XXE 2015-06-25
Darya Maenkova (d maenkova erpscan com)

[ERPSCAN-15-003] SAP NetWeaver Dispatcher Buffer Overflow - RCE, DoS 2015-06-25
Darya Maenkova (d maenkova erpscan com)

Malware

Trojan:JS/HideLink.A 

PWS:Win32/Emotet.G

Gen1 Trojan.Shunnael!

Trojan.Shunnael

Phishing

PayPal Service

26th June 2015

You just need to confirm your
billing address.

Bank of Scotland

25th June 2015

Account Review Notification.

System Notification

24th June 2015

EMAIL ACCOUNT DE-ACTIVATION
ALERT...

Barclays Bank

24th June 2015

1 New Security Message From
Barclays Online Personal
Banking!

Apple

24th June 2015

Your Apple ID has been
suspended [#487298]

USAA

24th June 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Vulnerebility

 

Exploit

Koha <= 3.20.1 - Multiple SQL Injections

Koha <= 3.20.1 - Path Traversal

Koha <= 3.20.1 - Multiple XSS and XSRF Vulnerabilities

Linux/x86 - chmod('/etc/passwd',0777) shellcode (42 bytes)

Linux/x86 - chmod('/etc/gshadow') shellcode (37 bytes)

Linux/x86 chmod('/etc/shadow','0777') shellcode (42 bytes)

25.6.2015

Bugtraq

[SECURITY] [DSA 3295-1] cacti security update 2015-06-24
Salvatore Bonaccorso (carnil debian org)

CVE-2015-4464 Insufficient Authorization Checks Request Handling Remote Authentication Bypass for Kguard Digital Video Recorders 2015-06-24
Federick Joe P Fajardo (fjpfajardo ph ibm com)

CVE-2015-3443 XSS in Thycotic Secret Server version 8.6.000000 to 8.8.000004 2015-06-24
Marco Delai (Marco Delai csnc ch)

[SECURITY] [DSA 3294-1] wireshark security update 2015-06-23
Moritz Muehlenhoff (jmm debian org)

Malware

Backdoor:Win32/Tenpeq.D

PowerShell / Filecoder.A

Win32 / Filecoder.NBR

Trojan.Sofacy.B

Backdoor.Layork.B

Backdoor.Credmines

Phishing

System Notification

24th June 2015

EMAIL ACCOUNT DE-ACTIVATION
ALERT...

Barclays Bank

24th June 2015

1 New Security Message From
Barclays Online Personal
Banking!

Apple

24th June 2015

Your Apple ID has been
suspended [#487298]

USAA

24th June 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Dropbox_notification

23rd June 2015

IMPORTANT DOCUMENT

PayPal

23rd June 2015

Receipt for your payment to
peter.hall53@btopenworld.com

Vulnerebility

 

Exploit

Adobe Flash Player ShaderJob Buffer Overflow

GeniXCMS 0.0.3 - XSS Vulnerabilities

WordPress Huge-IT Slider 2.7.5 - Multiple Vulnerabilities

GeniXCMS 0.0.3 - register.php SQL Injection Vulnerabilities

Joomla SimpleImageUpload - Arbitrary File Upload

Vesta Control Panel 0.9.8 - OS Command Injection

Windows ClientCopyImage Win32k Exploit

Linux/x86 - mkdir HACK & chmod 777 and exit(0) - 29 Bytes

Linux/x86 - Netcat BindShell Port 5555 - 60 bytes

linux/x86-64 execve(/bin/sh) 30 bytes

Linux/x86 Downloand & Execute

Linux/x86 Reboot - 28 Bytes

24.6.2015

Bugtraq

ESA-2015-110: EMC Documentum Thumbnail Server Directory Traversal Vulnerability 2015-06-23
Security Alert (Security_Alert emc com)

ESA-2015-109: EMC Documentum D2 Cross-Site Scripting 2015-06-23
Security Alert (Security_Alert emc com)

KMPlayer 3.9.1.136 Capture Unicode Buffer Overflow (ASLR Bypass) 2015-06-23
n4ser farhadi gmail com

The "localhosed" attack - stealing IE local machine cookies and exposing its internal IP address 2015-06-22
Amit Klein (aksecurity gmail com)

ManageEngine Asset Explorer v6.1 - Persistent Vulnerability 2015-06-22
Vulnerability Lab (research vulnerability-lab com)

Malware

Win32 / Bamital.GI

JS / Kryptik.AVZ

Win32 / TrojanDownloader.Rottentu.A

Win32 / Potao.D

Win32 / Potao

Phishing

Apple

24th June 2015

Your Apple ID has been
suspended [#487298]

USAA

24th June 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Dropbox_notification

23rd June 2015

IMPORTANT DOCUMENT

PayPal

23rd June 2015

Receipt for your payment to
peter.hall53@btopenworld.com

Barclays

22nd June 2015

Suspicious Activity Detected
On Your Account

Vulnerebility

 

Exploit

 

23.6.2015

Bugtraq

KMPlayer 3.9.1.136 Capture Unicode Buffer Overflow (ASLR Bypass) 2015-06-23
n4ser farhadi gmail com

The "localhosed" attack - stealing IE local machine cookies and exposing its internal IP address 2015-06-22
Amit Klein (aksecurity gmail com)

ManageEngine Asset Explorer v6.1 - Persistent Vulnerability 2015-06-22
Vulnerability Lab (research vulnerability-lab com)

[oCERT-2015-008] FreeRADIUS insufficent CRL application 2015-06-22
Andrea Barisani (lcars ocert org)

mysql-lite-administrator XSS vulnerabilities 2015-06-21
apparitionsec gmail com

mysql-lite-administrator XSS vulnerabilities 2015-06-21
apparitionsec gmail com

[security bulletin] HPSBMU03356 rev.1 - HP Business Service Automation Essentials (BSAE) running TLS, Remote Disclosure of Information 2015-06-22
security-alert hp com

GeniXCMS XSS Vulnerabilities 2015-06-22
apparitionsec gmail com

[SECURITY] [DSA 3293-1] pyjwt security update 2015-06-20
Alessandro Ghedini (ghedo debian org)

[CVE-2015-3188] Apache Storm remote code execution vulnerability 2015-06-20
P. Taylor Goetz (ptgoetz apache org)

Malware

Linux.Chikdos.C

Linux.Shelldos.A

Win32 / Agent.XFW

Win32 / Bayrob.Y

Win32 / Turulum.B

Win32 / Pliskal.A

Win32 / Spy.Zbot.ABV

Win32 / LockScreen.BMA

Win32 / Sopinar.A

Win32 / Spy.Bizzana.A

Win32 / Zacom.G

Win32 / Agent.VNL

Phishing

PayPal

23rd June 2015

Receipt for your payment to
peter.hall53@btopenworld.com

Barclays

22nd June 2015

Suspicious Activity Detected
On Your Account

USAA

22nd June 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Wells Fargo

22nd June 2015

IMPORTANT NOTICE REGARDING
YOUR ACCOUNT

Vulnerebility

CUPS < 2.0.3 - Multiple Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 PDF Parsing Memory Corruption Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 PNG Parsing Memory Corruption Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 Gif Parsing Memory Corruption Vulnerabilities

Paintshop Pro X7 GIF Conversion Heap Memory Corruption Vulnerabilities (LZWMinimumCodeSize)

Exploit

CUPS < 2.0.3 - Multiple Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 PDF Parsing Memory Corruption Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 PNG Parsing Memory Corruption Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 Gif Parsing Memory Corruption Vulnerabilities

Paintshop Pro X7 GIF Conversion Heap Memory Corruption Vulnerabilities (LZWMinimumCodeSize)

22.6.2015

Bugtraq

Ebay Magento Bug Bounty #17 - Client Side Cross Site Scripting Web Vulnerability 2015-06-19
Vulnerability Lab (research vulnerability-lab com)

Ebay Magento Bug Bounty #10 - Persistent Filename Vulnerability 2015-06-19
Vulnerability Lab (research vulnerability-lab com)

Ebay Magento Bug Bounty #12 - Cross Site Request Forgery Web Vulnerability 2015-06-19
Vulnerability Lab (research vulnerability-lab com)

ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Delete Vulnerability 2015-06-19
Vulnerability Lab (research vulnerability-lab com)

ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities 2015-06-19
Vulnerability Lab (research vulnerability-lab com)

[SECURITY] [DSA 3292-1] cinder security update 2015-06-19
Sebastien Delafond (seb debian org)

DUO Security push Timing Attack 2015-06-18
jpierini paysw com

[SECURITY] [DSA 3291-1] drupal7 security update 2015-06-18
Sebastien Delafond (seb debian org)

[SECURITY] [DSA 3290-1] linux security update 2015-06-18
Ben Hutchings (benh debian org)

Malware

Exploit:JS/Sevdaq.A 

Linux.Shelldos.A

Phishing

USAA

22nd June 2015

YOUR USAA ONLINE CONFIRMATION
ALERT

Wells Fargo

22nd June 2015

IMPORTANT NOTICE REGARDING
YOUR ACCOUNT

iTunes Service

21st June 2015

ITUNES ID UPDATE

PayPal support

21st June 2015

UPDATE YOUR PAYPAL ACCOUNT

PayPal Inc œ

21st June 2015

YOUR ACCOUNT HAS BEEN LIMITED
œ

PayPal Service

21st June 2015

You just need to confirm your
billing address.

PayPal

20th June 2015

Your Account Access Has Been
Limited

Vulnerebility

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-06-18
http://www.securityfocus.com/bid/71936

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0486 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74145

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74111

PHP libmagick 'libmagic/softmagic.c' Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75241

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73232

OpenSSL '/evp/encode.c' Remote Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73228

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-06-18
http://www.securityfocus.com/bid/71935

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73237

OpenSSL 'pk7_doit.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73231

OpenSSL 'tasn_dec.c' Remote Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73227

PHP CVE-2015-4599 Remote Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75251

PHP 'exception::getTraceAsString' CVE-2015-4603 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75252

PHP 'incomplete_class.c' Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75249

PHP CVE-2015-4601 Multiple Memory Corruption Vulnerabilities
2015-06-18
http://www.securityfocus.com/bid/75246

PHP CVE-2015-4598 Multiple Security Bypass Vulnerabilities
2015-06-18
http://www.securityfocus.com/bid/75244

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74097

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74083

Oracle Java SE CVE-2015-0458 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74141

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74119

Oracle Java SE CVE-2015-0492 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74129

Oracle Java SE CVE-2015-0484 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74135

Oracle Java SE CVE-2015-0491 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74094

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74147

Oracle Java SE CVE-2015-0470 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74149

Linux Kernel 'fs/pipe.c' Multiple Local Memory Corruption Vulnerabilities
2015-06-18
http://www.securityfocus.com/bid/74951

CUPS cupsRasterReadPixels Buffer Overflow Vulnerability
2015-06-18
http://www.securityfocus.com/bid/72594

CUPS CVE-2015-1159 Cross Site Scripting Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75106

Exploit

 

18.6.2015

Bugtraq

[SECURITY] [DSA 3291-1] drupal7 security update 2015-06-18
Sebastien Delafond (seb debian org)

[SECURITY] [DSA 3290-1] linux security update 2015-06-18
Ben Hutchings (benh debian org)

[security bulletin] HPSBGN03338 rev.1 - HP Service Manager running RC4, Remote Disclosure of Information 2015-06-17
security-alert hp com

Malware

Backdoor.Wecoym

Trojan.Gatak.B

Trojan.Feratuser

Phishing

Lloyds

18th June 2015

YOUR LLYODS ACCOUNT WILL BE
BLOCKED #LY739268029

PayPal Service

18th June 2015

You just need to confirm your
billing address.

Chase

17th June 2015

CHASE ALERT!

paypal

17th June 2015

WE'VE IIMITED ACCESS TO YOUR
PAYPAI ACCOUNT

Michelle

17th June 2015

INTERESTED IN A GUARANTEED
FIRST PAGE GOOGLE RANK?

PayPal Service

17th June 2015

WE NOTICE UNUSUAL ACTIVITY
LOGIN

Vulnerebility

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-06-18
http://www.securityfocus.com/bid/71936

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0486 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74145

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74111

PHP libmagick 'libmagic/softmagic.c' Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75241

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73232

OpenSSL '/evp/encode.c' Remote Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73228

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-06-18
http://www.securityfocus.com/bid/71935

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73237

OpenSSL 'pk7_doit.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73231

OpenSSL 'tasn_dec.c' Remote Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/73227

PHP CVE-2015-4599 Remote Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75251

PHP 'exception::getTraceAsString' CVE-2015-4603 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75252

PHP 'incomplete_class.c' Memory Corruption Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75249

PHP CVE-2015-4601 Multiple Memory Corruption Vulnerabilities
2015-06-18
http://www.securityfocus.com/bid/75246

PHP CVE-2015-4598 Multiple Security Bypass Vulnerabilities
2015-06-18
http://www.securityfocus.com/bid/75244

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74097

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74083

Oracle Java SE CVE-2015-0458 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74141

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74119

Oracle Java SE CVE-2015-0492 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74129

Oracle Java SE CVE-2015-0484 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74135

Oracle Java SE CVE-2015-0491 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74094

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74147

Oracle Java SE CVE-2015-0470 Remote Security Vulnerability
2015-06-18
http://www.securityfocus.com/bid/74149

Linux Kernel 'fs/pipe.c' Multiple Local Memory Corruption Vulnerabilities
2015-06-18
http://www.securityfocus.com/bid/74951

CUPS cupsRasterReadPixels Buffer Overflow Vulnerability
2015-06-18
http://www.securityfocus.com/bid/72594

CUPS CVE-2015-1159 Cross Site Scripting Vulnerability
2015-06-18
http://www.securityfocus.com/bid/75106

Exploit

ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities

ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Delete Vulnerability

WinylPlayer 3.0.3 Memory Corruption PoC

HansoPlayer 3.4.0 Memory Corruption PoC

18.6.2015

Bugtraq

[security bulletin] HPSBGN03338 rev.1 - HP Service Manager running RC4, Remote Disclosure of Information 2015-06-17
security-alert hp com

[security bulletin] HPSBGN03350 rev.1 - HP SiteScope Using RC4, Remote Disclosure of Information 2015-06-17
security-alert hp com

VCE3570: VCE Vision(TM) Intelligent Operations Cryptographic and Cleartext Vulnerabilities 2015-06-17
VCE - PSIRT (VCEPSIRT vce com)

Reflected Cross-Site Scripting (XSS) in SearchBlox 2015-06-17
High-Tech Bridge Security Research (advisory htbridge ch)

OS Command Injection in Vesta Control Panel 2015-06-17
High-Tech Bridge Security Research (advisory htbridge ch)

ESA-2015-043: RSA Validation Manager Security Update for Multiple Vulnerabilities 2015-06-16
Security Alert (Security_Alert emc com)

ESA-2015-106: EMC Unified Infrastructure Manager/Provisioning (UIM/P) Authentication Bypass Vulnerability 2015-06-16
Security Alert (Security_Alert emc com)

BlackCat CMS v1.1.1 Arbitrary File Download Vulnerability 2015-06-16
d4rkr0id gmail com

Malware

Backdoor:MSIL/IRCbot.J

Backdoor.Wecoym

Trojan.Gatak.B

Phishing

PayPal Service

18th June 2015

You just need to confirm your
billing address.

Chase

17th June 2015

CHASE ALERT!

paypal

17th June 2015

WE'VE IIMITED ACCESS TO YOUR
PAYPAI ACCOUNT

Michelle

17th June 2015

INTERESTED IN A GUARANTEED
FIRST PAGE GOOGLE RANK?

PayPal Service

17th June 2015

WE NOTICE UNUSUAL ACTIVITY
LOGIN

PayPal Service

16th June 2015

WE NOTICE UNUSUAL ACTIVITY
LOGIN

Vulnerebility

 

Exploit

BlackCat CMS 1.1.1 Arbitrary File Download

16.6.2015

Bugtraq

[SECURITY] [DSA 3289-1] p7zip security update 2015-06-15
Ben Hutchings (benh debian org)

WebdesignJiNi Cms Sql Injection Vulnerability 2015-06-14
iedb team gmail com

Productsurf Cms Sql Injection Vulnerability 2015-06-14
iedb team gmail com

[SECURITY] [DSA 3252-2] sqlite3 security update 2015-06-14
Alessandro Ghedini (ghedo debian org)

[RT-SA-2015-002] SQL Injection in TYPO3 Extension Akronymmanager 2015-06-15
RedTeam Pentesting GmbH (release redteam-pentesting de)

[SECURITY] [DSA 3287-1] openssl security update 2015-06-13

Malware

Backdoor.Wecoym

Trojan.Gatak.B

Phishing

EARTHLINK

16th June 2015

BUY GENUINE EARTHLINK RDP NO
SMTP NEEDED AND EMAILS

Chase

16th June 2015

ONLINE BANKING VERIFICATION
FROM CHASE ONLINE

Amazon UK

15th June 2015

IMPORTANT SECURITY MESSAGE

Apple

15th June 2015

You May To Update Your AccounT
ID

google help desk

15th June 2015

YOU HAVE A PENDING INCOMING
DOC SHARED WITH YOU VIA GOOGLE
DOC

Vulnerebility

 

Exploit

Cisco AnyConnect Secure Mobility 2.x, 3.x, 4.x - Client DoS PoC

Ektron CMS 9.10 SP1 (Build 9.1.0.184.1.114) - CSRF Vulnerability

E-Detective Lawful Interception System - Multiple Vulnerabilities

 TYPO3 Akronymmanager Extension 0.5.0 - SQL Injection

Apexis IP CAM - Information Disclosure

Linux/x86 - /etc/passwd Reader (58 bytes)

Ubuntu 12.04, 14.04, 14.10, 15.04 - overlayfs Local Root (Shell)

Ektron CMS 9.10 SP1 (Build 9.1.0.184.1.114) - CSRF Vulnerability

Ubuntu 12.04, 14.04, 14.10, 15.04 - overlayfs Local Root (Shadow File)

Filezilla 3.11.0.2 - SFTP Module Denial of Service Vulnerability

Putty 0.64 - Denial of Service Vulnerability

15.6.2015

Bugtraq

[RT-SA-2015-002] SQL Injection in TYPO3 Extension Akronymmanager 2015-06-15
RedTeam Pentesting GmbH (release redteam-pentesting de)

[SECURITY] [DSA 3287-1] openssl security update 2015-06-13
Alessandro Ghedini (ghedo debian org)

[SECURITY] [DSA 3288-1] libav security update 2015-06-13
Moritz Muehlenhoff (jmm debian org)

Buffer Overflow in My Wifi Router Software 2015-06-13
sudson08 gmail com

[SECURITY] [DSA 3286-1] xen security update 2015-06-13
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 3285-1] qemu-kvm security update 2015-06-12
Salvatore Bonaccorso (carnil debian org)

[slackware-security] openssl (SSA:2015-162-01) 2015-06-11
Slackware Security Team (security slackware com)

Malware

 

Phishing

Apple

15th June 2015

You May To Update Your AccounT
ID

google help desk

15th June 2015

YOU HAVE A PENDING INCOMING
DOC SHARED WITH YOU VIA GOOGLE
DOC

iTunes

14th June 2015

ITUNES ACCOUNT HAS BEEN FROZEN
ID3348A4BA153409F53151

EARTHLINK

14th June 2015

BUY GENUINE EARTHLINK RDP NO
SMTP NEEDED AND EMAILS

Support

14th June 2015

ACCOUNT NOTIFICATION

Pay Pal

14th June 2015

YOUR ACCOUNT WILL BE LIMITED
œ

PayPal Security Team

14th June 2015

REMINDER - ACTION REQUIRED:
IMPORTANT ACCOUNT SECURITY
INTEGRATION

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74640

Stunnel CVE-2014-0016 PRNG Initialization Weakness
2015-06-09
http://www.securityfocus.com/bid/65964

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74097

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74147

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74119

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74111

Sun J2SE Software Development Kit Java Archive Tool Directory Traversal Vulnerability
2015-06-09
http://www.securityfocus.com/bid/13083

Microsoft Internet Explorer CVE-2015-1712 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74515

Module::Signature Multiple Remote Command Execution and Security Bypass Vulnerabilities
2015-06-09
http://www.securityfocus.com/bid/73935

Microsoft Internet Explorer CVE-2015-1704 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74521

Module::Signature 'Signature.pm' Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/73937

Microsoft Internet Explorer CVE-2015-1692 Clipboard Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74517

Microsoft Internet Explorer CVE-2015-1705 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74509

Microsoft Internet Explorer CVE-2015-1706 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74510

Microsoft Internet Explorer CVE-2015-1694 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74508

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74490

Microsoft Internet Explorer CVE-2015-1710 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74513

Oracle Solaris CVE-2015-2577 Local Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74122

Microsoft Internet Explorer CVE-2015-1718 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74607

Microsoft Internet Explorer CVE-2015-1713 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74518

Microsoft Internet Explorer CVE-2015-1691 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74507

libFLAC 'src/libFLAC/stream_decoder.c' Heap Buffer Overflow Vulnerability
2015-06-09
http://www.securityfocus.com/bid/71282

Microsoft Internet Explorer CVE-2015-1711 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74514

Microsoft Windows GDI+ CVE-2015-1670 OpenType Font Parsing Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74485

Microsoft .NET Framework CVE-2015-1672 Remote Denial of Service Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74482

Microsoft VBScript and JScript CVE-2015-1686 ASLR Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74530

Microsoft .NET Framework CVE-2015-1673 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74487

Exploit

Milw0rm Clone Script 1.0 - (Auth Bypass) SQL Injection Vulnerability

Filezilla 3.11.0.2 - SFTP Module Denial of Service Vulnerability

Putty 0.64 - Denial of Service Vulnerability

13.6.2015

Bugtraq

[slackware-security] openssl (SSA:2015-162-01) 2015-06-11
Slackware Security Team (security slackware com)

FreeBSD Security Advisory FreeBSD-SA-15:10.openssl 2015-06-12
FreeBSD Security Advisories (security-advisories freebsd org)

[SYSS-2015-020] ZENWorks Mobile Management - Cross-Site Scripting 2015-06-12
ludwig stage syss de

ZCMS SQL Injection & Persistent XSS 2015-06-12
apparitionsec gmail com

[slackware-security] php (SSA:2015-162-02) 2015-06-11
Slackware Security Team (security slackware com)

Nakid-CMS CSRF, Persistent XSS & LFI 2015-06-11
apparitionsec gmail com

[KIS-2015-03] Concrete5 <= 5.7.4 (Access.php) SQL Injection Vulnerability 2015-06-11
Egidio Romano (research karmainsecurity com)

Malware

TrojanDropper:AutoIt/Bokill.A

Win32 / Spy.Zbot.ABV

Win32 / Bundpil.A

Win32 / Adware.MultiPlug.EE

Win32 / Adware.MultiPlug.DJ

Phishing

USAA

13th June 2015

Update Your Account

American Express

13th June 2015

Confirm your American Express
online details.

PayPal Security Team

12th June 2015

REMINDER - ACTION REQUIRED:
IMPORTANT ACCOUNT SECURITY
INTEGRATION

Mercantile

11th June 2015

EARTHLINK RDP, COMCAST RDP,
UNLIMITED SMTP

Vulnerebility

 

Exploit

ClickHeat <= 1.14 Change Admin Password CSRF

Nakid CMS - Multiple Vulnerabilities

Opsview <= 4.6.2 - Multiple XSS Vulnerabilities

ZCMS 1.1 - Multiple Vulnerabilities

WordPress SE HTML5 Album Audio Player 1.1.0 - Directory Traversal

WordPress Aviary Image Editor Add On For Gravity Forms 3.0 Beta Shell Upload

12.6.2015

Bugtraq

[KIS-2015-03] Concrete5 <= 5.7.4 (Access.php) SQL Injection Vulnerability 2015-06-11
Egidio Romano (research karmainsecurity com)

[KIS-2015-02] Concrete5 <= 5.7.3.1 Multiple Reflected Cross-Site Scripting Vulnerabilities 2015-06-11
Egidio Romano (research karmainsecurity com)

[KIS-2015-01] Concrete5 <= 5.7.3.1 (sendmail) Remote Code Execution Vulnerability 2015-06-11
Egidio Romano (research karmainsecurity com)

Remote file upload vulnerability in aviary-image-editor-add-on-for-gravity-forms v3.0beta Wordpress plugin 2015-06-10
Larry W. Cashdollar (larry0 me com)

Cisco Security Advisory: Cisco IOS XR Software Crafted IPv6 Packet Denial of Service Vulnerability 2015-06-11
Cisco Systems Product Security Incident Response Team (psirt cisco com)

D-Link DSP-W110 - multiple vulnerabilities 2015-06-11
Peter Adkins (peter adkins kernelpicnic net)

[security bulletin] HPSBUX03337 SSRT102066 rev.1 - HP-UX Apache Web Server Suite running Apache Web Server, Tomcat v6.x, or PHP v5.4.x, Remote Denial of Service (DoS) and Other Vulnerabilities 2015-06-11
security-alert hp com

Malware

Linux / Moose

BAT / Filecoder.AQ

Win32 / Agent.QKJ

Win32 / TrojanDownloader.Wauchos.AK

Win32 / Neurevt.I

Win32 / Spy.Zbot.ABV

Phishing

Mercantile

11th June 2015

EARTHLINK RDP, COMCAST RDP,
UNLIMITED SMTP

PayPal

11th June 2015

Update your PayPal !

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74640

Stunnel CVE-2014-0016 PRNG Initialization Weakness
2015-06-09
http://www.securityfocus.com/bid/65964

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74097

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74147

Sun J2SE Software Development Kit Java Archive Tool Directory Traversal Vulnerability
2015-06-09
http://www.securityfocus.com/bid/13083

Module::Signature Multiple Remote Command Execution and Security Bypass Vulnerabilities
2015-06-09
http://www.securityfocus.com/bid/73935

Module::Signature 'Signature.pm' Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/73937

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74111

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74119

Oracle Solaris CVE-2015-2577 Local Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74122

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74490

Microsoft Internet Explorer CVE-2015-1694 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74508

Microsoft Internet Explorer CVE-2015-1705 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74509

Microsoft Internet Explorer CVE-2015-1706 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74510

Microsoft Internet Explorer CVE-2015-1710 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74513

Microsoft Internet Explorer CVE-2015-1712 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74515

Microsoft Internet Explorer CVE-2015-1692 Clipboard Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74517

Microsoft Internet Explorer CVE-2015-1704 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74521

libFLAC 'src/libFLAC/stream_decoder.c' Heap Buffer Overflow Vulnerability
2015-06-09
http://www.securityfocus.com/bid/71282

Microsoft .NET Framework CVE-2015-1672 Remote Denial of Service Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74482

Microsoft Windows GDI+ CVE-2015-1670 OpenType Font Parsing Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74485

Microsoft .NET Framework CVE-2015-1673 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74487

Microsoft Internet Explorer CVE-2015-1691 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74507

Microsoft Internet Explorer CVE-2015-1711 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74514

Microsoft Internet Explorer CVE-2015-1713 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74518

Microsoft VBScript and JScript CVE-2015-1686 ASLR Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74530

Microsoft Internet Explorer CVE-2015-1718 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74607

Exploit

OSSEC 2.7 <= 2.8.1 - Local Root Escalation

11.6.2015

Bugtraq

Heroku Bug Bounty #2 - (API) Re Auth Session Bypass Vulnerability 2015-06-10
Vulnerability Lab (research vulnerability-lab com)

Use-After-Free in PHP 2015-06-10
High-Tech Bridge Security Research (advisory htbridge ch)

Multiple Vulnerabilities in ISPConfig 2015-06-10
High-Tech Bridge Security Research (advisory htbridge ch)

Arbitrary File Disclosure and Open Redirect in Bonita BPM 2015-06-10
High-Tech Bridge Security Research (advisory htbridge ch)

[RT-SA-2015-004] Alcatel-Lucent OmniSwitch Web Interface Cross-Site Request Forgery 2015-06-10
RedTeam Pentesting GmbH (release redteam-pentesting de)

[RT-SA-2015-003] Alcatel-Lucent OmniSwitch Web Interface Weak Session ID 2015-06-10
RedTeam Pentesting GmbH (release redteam-pentesting de)

[security bulletin] HPSBUX03341 SSRT102068 rev.1 - HP-UX Apache Tomcat v7.x, Remote Denial of Service (DoS) and Other Vulnerabilities 2015-06-09
security-alert hp com

Malware

Backdoor:MSIL/Bladabindi.BG 
Worm:Win32/Rebhip.Y 
Worm:Win32/Rebhip.Z 
Backdoor:Win32/Zegost.THD 

Backdoor:Win32/Zegost.THD 
TrojanDownloader:Win32/Redosdru.C 

Win32/Critroni 

Trojan.Dokabot

Trojan.Hepbot

W32.Duqu.B

Phishing

PayPal

11th June 2015

Receipt for your PayPal
payment to
farmville,games@facebook.com

ÐÐннРСÐÑгÐÐвнÐ

10th June 2015

СÐÐ¹Ñ ÐÑÑÑÑо Ð
ÐÐшÐво

楼åå?åè¯åå¼èŒ¿¡æ¯

10th June 2015

5:28:42

EARTHLINK

10th June 2015

WE SELL ONLY GENUINE EARTHLINK
RDP NO SMTP NEEDE

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74640

Stunnel CVE-2014-0016 PRNG Initialization Weakness
2015-06-09
http://www.securityfocus.com/bid/65964

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74097

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74147

Sun J2SE Software Development Kit Java Archive Tool Directory Traversal Vulnerability
2015-06-09
http://www.securityfocus.com/bid/13083

Module::Signature Multiple Remote Command Execution and Security Bypass Vulnerabilities
2015-06-09
http://www.securityfocus.com/bid/73935

Module::Signature 'Signature.pm' Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/73937

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74111

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74119

Oracle Solaris CVE-2015-2577 Local Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74122

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74490

Microsoft Internet Explorer CVE-2015-1694 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74508

Microsoft Internet Explorer CVE-2015-1705 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74509

Microsoft Internet Explorer CVE-2015-1706 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74510

Microsoft Internet Explorer CVE-2015-1710 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74513

Microsoft Internet Explorer CVE-2015-1712 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74515

Microsoft Internet Explorer CVE-2015-1692 Clipboard Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74517

Microsoft Internet Explorer CVE-2015-1704 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74521

libFLAC 'src/libFLAC/stream_decoder.c' Heap Buffer Overflow Vulnerability
2015-06-09
http://www.securityfocus.com/bid/71282

Microsoft .NET Framework CVE-2015-1672 Remote Denial of Service Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74482

Microsoft Windows GDI+ CVE-2015-1670 OpenType Font Parsing Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74485

Microsoft .NET Framework CVE-2015-1673 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74487

Microsoft Internet Explorer CVE-2015-1691 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74507

Microsoft Internet Explorer CVE-2015-1711 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74514

Microsoft Internet Explorer CVE-2015-1713 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74518

Microsoft VBScript and JScript CVE-2015-1686 ASLR Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74530

Microsoft Internet Explorer CVE-2015-1718 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74607

Exploit

ProFTPD 1.3.5 Mod_Copy Command Execution

Paypal Currencucy Converter Basic For Woocommerce File Read

Wordpress History Collection <=1.1.1 Arbitrary File Download

Pandora FMS 5.0, 5.1 - Authentication Bypass

Wordpress RobotCPA Plugin V5 - Local File Inclusion

HP WebInspect <= 10.4 XML External Entity Injection

Heroku Bug Bounty #2 - (API) Re Auth Session Bypass Vulnerability

Libmimedir VCF Memory Corruption PoC

FiverrScript CSRF Vulnerability (Add New Admin)

GeoVision (GeoHttpServer) Webcams Remote File Disclosure Exploit

ISPConfig 3.0.5.4p6 - Multiple Vulnerabilities

Bonita BPM 6.5.1 - Multiple Vulnerabilities

Alcatel-Lucent OmniSwitch - CSRF Vulnerability

AnimaGallery 2.6 - Local File Inclusion

WordPress Encrypted Contact Form Plugin 1.0.4 - CSRF Vulnerability

10.6.2015

Bugtraq

Heroku Bug Bounty #2 - (API) Re Auth Session Bypass Vulnerability 2015-06-10
Vulnerability Lab (research vulnerability-lab com)

Use-After-Free in PHP 2015-06-10
High-Tech Bridge Security Research (advisory htbridge ch)

Multiple Vulnerabilities in ISPConfig 2015-06-10
High-Tech Bridge Security Research (advisory htbridge ch)

Arbitrary File Disclosure and Open Redirect in Bonita BPM 2015-06-10
High-Tech Bridge Security Research (advisory htbridge ch)

[RT-SA-2015-004] Alcatel-Lucent OmniSwitch Web Interface Cross-Site Request Forgery 2015-06-10
RedTeam Pentesting GmbH (release redteam-pentesting de)

[RT-SA-2015-003] Alcatel-Lucent OmniSwitch Web Interface Weak Session ID 2015-06-10
RedTeam Pentesting GmbH (release redteam-pentesting de)

[security bulletin] HPSBUX03341 SSRT102068 rev.1 - HP-UX Apache Tomcat v7.x, Remote Denial of Service (DoS) and Other Vulnerabilities 2015-06-09
security-alert hp com

Elasticsearch vulnerability CVE-2015-4165 2015-06-09
Kevin Kluge (kevin elastic co)

Malware

Trojan.Dokabot

Trojan.Hepbot

W32.Duqu.B

Phishing

楼åå?åè¯åå¼èŒ¿¡æ¯

10th June 2015

5:28:42

EARTHLINK

10th June 2015

WE SELL ONLY GENUINE EARTHLINK
RDP NO SMTP NEEDED

EARTHLINK

9th June 2015

WE SELL ONLY GENUINE EARTHLINK
RDP NO SMTP NEEDED

iTunes

9th June 2015

ITUNES ACCOUNT HAS BEEN FROZEN
ID2725A4B441384E14AFD3

Apple

8th June 2015

Verify your Apple ID
information

PayPal

8th June 2015

Update Your PayPal Account !

Chase

8th June 2015

ALERT MESSAGE FROM CHASE
ONLINE(SM)

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74640

Stunnel CVE-2014-0016 PRNG Initialization Weakness
2015-06-09
http://www.securityfocus.com/bid/65964

Oracle Java SE CVE-2015-0460 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74097

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74147

Sun J2SE Software Development Kit Java Archive Tool Directory Traversal Vulnerability
2015-06-09
http://www.securityfocus.com/bid/13083

Module::Signature Multiple Remote Command Execution and Security Bypass Vulnerabilities
2015-06-09
http://www.securityfocus.com/bid/73935

Module::Signature 'Signature.pm' Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/73937

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74111

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74119

Oracle Solaris CVE-2015-2577 Local Security Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74122

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74490

Microsoft Internet Explorer CVE-2015-1694 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74508

Microsoft Internet Explorer CVE-2015-1705 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74509

Microsoft Internet Explorer CVE-2015-1706 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74510

Microsoft Internet Explorer CVE-2015-1710 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74513

Microsoft Internet Explorer CVE-2015-1712 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74515

Microsoft Internet Explorer CVE-2015-1692 Clipboard Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74517

Microsoft Internet Explorer CVE-2015-1704 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74521

libFLAC 'src/libFLAC/stream_decoder.c' Heap Buffer Overflow Vulnerability
2015-06-09
http://www.securityfocus.com/bid/71282

Microsoft .NET Framework CVE-2015-1672 Remote Denial of Service Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74482

Microsoft Windows GDI+ CVE-2015-1670 OpenType Font Parsing Information Disclosure Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74485

Microsoft .NET Framework CVE-2015-1673 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74487

Microsoft Internet Explorer CVE-2015-1691 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74507

Microsoft Internet Explorer CVE-2015-1711 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74514

Microsoft Internet Explorer CVE-2015-1713 Remote Privilege Escalation Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74518

Microsoft VBScript and JScript CVE-2015-1686 ASLR Security Bypass Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74530

Microsoft Internet Explorer CVE-2015-1718 Remote Memory Corruption Vulnerability
2015-06-09
http://www.securityfocus.com/bid/74607

Exploit

SV: Milw0rm Clone Script v1.0 - (time based) SQLi

9.6.2015

Bugtraq

[SECURITY] [DSA 3282-1] strongswan security update 2015-06-08
Yves-Alexis Perez (corsac debian org)

Symphony CMS XSS Vulnerability 2015-06-08
apparitionsec gmail com

AnimaGallery 2.6 (theme and lang cookie parameter) Local File Include Vulnerability 2015-06-08
d4rkr0id gmail com

[SECURITY] [DSA 3281-1] Debian Security Team PGP/GPG key change notice 2015-06-07
Thijs Kinkhorst (thijs debian org)

[SECURITY] [DSA 3280-1] php5 security update 2015-06-07
Moritz Muehlenhoff (jmm debian org)

Malware

Trojan.Woolerg

Backdoor:MSIL/NetWiredRC.A 
TrojanDropper:Win32/Plugx.J 
TrojanDownloader:MSIL/Dowector.A 
BrowserModifier:Win32/IminentSProtection 
BrowserModifier:Win32/AskToolbarNotifier 

Phishing

Apple

8th June 2015

Verify your Apple ID
information

PayPal

8th June 2015

Update Your PayPal Account !

Chase

8th June 2015

ALERT MESSAGE FROM CHASE
ONLINE(SM)

ÐÑÐнÐÑ? ÐÐÐÐовнÐ

7th June 2015

Ð?Ð ÐÐÐÑÐ,
ÐÐйÑÑвуйÑÐ!

PayPal

6th June 2015

[Notice] : Update Your Account
Information Case ID PP
003-498-237

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

Linux Kernel 'fs/pipe.c' Multiple Local Memory Corruption Vulnerabilities
2015-06-04
http://www.securityfocus.com/bid/74951

Apache Tomcat 'mod_jk' CVE-2014-8111 Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74265

Cisco AnyConnect Secure Mobility Client CVE-2015-0761 Local Privilege Escalation Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74954

Attic 'attic/archiver.py' Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74821

WordPress wp-smiley Plugin HTML Injection and Cross Site Request Forgery Vulnerabilities
2015-06-04
http://www.securityfocus.com/bid/74914

PHP 'SoapClient's __call()' Function Type Confusion Remote Code Execution Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73357

Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72155

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72165

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72583

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72584

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73225

OpenSSL 'tasn_dec.c' Remote Memory Corruption Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73227

OpenSSL 'pk7_doit.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73231

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73232

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73237

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73239

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73326

cURL/libcURL NTLM connection CVE-2015-3143 Remote Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74299

cURL/libcURL CVE-2015-3148 Remote Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74301

cURL/libcURL CVE-2015-3153 Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74408

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/71936

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-06-04
http://www.securityfocus.com/bid/71939

Oracle Java SE CVE-2015-0412 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72136

Oracle Java SE CVE-2015-0408 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72140

Oracle Java SE CVE-2015-0437 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72146

Oracle Java SE CVE-2015-0403 Local Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72148

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74083

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74104

Exploit

Wordpress Plugin 'WP Mobile Edition' - LFI Vulnerability

8.6.2015

Bugtraq

Symphony CMS XSS Vulnerability 2015-06-08
apparitionsec gmail com

AnimaGallery 2.6 (theme and lang cookie parameter) Local File Include Vulnerability 2015-06-08
d4rkr0id gmail com

[SECURITY] [DSA 3281-1] Debian Security Team PGP/GPG key change notice 2015-06-07
Thijs Kinkhorst (thijs debian org)

[SECURITY] [DSA 3280-1] php5 security update 2015-06-07
Moritz Muehlenhoff (jmm debian org)

Hardcoded AES 256 bit key used in Kankun IoT/Smart socket and its mobile App 2015-06-06
Payatu Research (research payatu com)

[SECURITY] [DSA 3279-1] redis security update 2015-06-06
Alessandro Ghedini (ghedo debian org)

Symphony CMS 2.6.2 2015-06-06
apparitionsec gmail com

CVE-2015-4010 - Cross-site Request Forgery & Cross-site Scripting in Encrypted Contact Form Wordpress Plugin v1.0.4 2015-06-06
venkatesh nitin gmail com

Xloner v3.1.2 wordpress plugin authenticated command execution and XSS 2015-06-05
Larry W. Cashdollar (larry0 me com)

Expedia Product Security Advisory: Cruise Ship Centers Information Disclosure 2015-06-05
Mike Sheward (msheward expedia com)

CVE-2015-4109 - WordPress Users Ultra Plugin [SQL injection] 2015-06-05
pan vagenas gmail com

1 Click Extract Audio v2.3.6 - Activex Buffer Overflow 2015-06-05
Vulnerability Lab (research vulnerability-lab com)

1 Click Audio Converter v2.3.6 - Activex Buffer Overflow 2015-06-05
Vulnerability Lab (research vulnerability-lab com)

1 Click Audio Converter v2.3.6 - Activex Buffer Overflow 2015-06-05
Vulnerability Lab (research vulnerability-lab com)

Wing FTP Server Remote Code Execution vulnerability 2015-06-05
alex_haynes outlook com

Malware

Infostealer.Malumpos

TrojanDownloader:Win32/Noucti.A 

Backdoor.Kickesgo

Backdoor.Gwapoors

Backdoor.Salgorea.B

Phishing

ÐÑÐнÐÑ? ÐÐÐÐовнÐ

7th June 2015

Ð?Ð ÐÐÐÑÐ,
ÐÐйÑÑвуйÑÐ!

PayPal

6th June 2015

[Notice] : Update Your Account
Information Case ID PP
003-498-237

PayPal Service œ

6th June 2015

YOUR PAYPAL ACCOUNT WILL BE
LIMITED UPDATE IT NOW . œ

PayPal Service

6th June 2015

You just need to confirm your
billing address.

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

Linux Kernel 'fs/pipe.c' Multiple Local Memory Corruption Vulnerabilities
2015-06-04
http://www.securityfocus.com/bid/74951

Apache Tomcat 'mod_jk' CVE-2014-8111 Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74265

Cisco AnyConnect Secure Mobility Client CVE-2015-0761 Local Privilege Escalation Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74954

Attic 'attic/archiver.py' Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74821

WordPress wp-smiley Plugin HTML Injection and Cross Site Request Forgery Vulnerabilities
2015-06-04
http://www.securityfocus.com/bid/74914

PHP 'SoapClient's __call()' Function Type Confusion Remote Code Execution Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73357

Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72155

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72165

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72583

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72584

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73225

OpenSSL 'tasn_dec.c' Remote Memory Corruption Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73227

OpenSSL 'pk7_doit.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73231

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73232

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73237

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73239

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73326

cURL/libcURL NTLM connection CVE-2015-3143 Remote Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74299

cURL/libcURL CVE-2015-3148 Remote Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74301

cURL/libcURL CVE-2015-3153 Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74408

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/71936

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-06-04
http://www.securityfocus.com/bid/71939

Oracle Java SE CVE-2015-0412 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72136

Oracle Java SE CVE-2015-0408 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72140

Oracle Java SE CVE-2015-0437 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72146

Oracle Java SE CVE-2015-0403 Local Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72148

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74083

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74104

Exploit

D-Link DSL-2780B DLink_1.01.14 - Unauthenticated Remote DNS Change

TP-Link ADSL2+ TD-W8950ND - Unauthenticated Remote DNS Change

D-Link DSL-2730B AU_2.01 - Authentication Bypass DNS Change

D-Link DSL-526B ADSL2+ AU_2.01 - Unauthenticated Remote DNS Change

5.6.2015

Bugtraq

1 Click Extract Audio v2.3.6 - Activex Buffer Overflow 2015-06-05
Vulnerability Lab (research vulnerability-lab com)

1 Click Audio Converter v2.3.6 - Activex Buffer Overflow 2015-06-05
Vulnerability Lab (research vulnerability-lab com)

1 Click Audio Converter v2.3.6 - Activex Buffer Overflow 2015-06-05
Vulnerability Lab (research vulnerability-lab com)

Wing FTP Server Remote Code Execution vulnerability 2015-06-05
alex_haynes outlook com

[CVE-2015-4108] Wing FTP Server Cross-site Request Forgery vulnerabilities 2015-06-05
alex_haynes outlook com

CA20150604-01: Security Notice for CA Common Services 2015-06-04
Kotas, Kevin J (Kevin Kotas ca com)

[security bulletin] HPSBGN03343 rev.1 - HP WebInspect, Remote Unauthorized Access 2015-06-04
security-alert hp com

CVE-2015-4153 - WordPress zM Ajax Login & Register Plugin [Local File Inclusion] 2015-06-04
pan vagenas gmail com

Malware

TrojanDownloader:Win32/Noucti.A 

Backdoor.Kickesgo

Backdoor.Gwapoors

Backdoor.Salgorea.B

Phishing

Verfaction Paypal

4th June 2015

YOUR ACCOUNT HAS BEEN IIMITED
UNTII WE HEAR FROM YOU

Chase Bank

3rd June 2015

UNLOCK YOUR USER ID

Vulnerebility

Multiple Cisco Products CVE-2015-0744 Denial of Service Vulnerability
2015-06-29
http://www.securityfocus.com/bid/74916

Linux Kernel 'fs/pipe.c' Multiple Local Memory Corruption Vulnerabilities
2015-06-04
http://www.securityfocus.com/bid/74951

Apache Tomcat 'mod_jk' CVE-2014-8111 Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74265

Cisco AnyConnect Secure Mobility Client CVE-2015-0761 Local Privilege Escalation Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74954

Attic 'attic/archiver.py' Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74821

WordPress wp-smiley Plugin HTML Injection and Cross Site Request Forgery Vulnerabilities
2015-06-04
http://www.securityfocus.com/bid/74914

PHP 'SoapClient's __call()' Function Type Confusion Remote Code Execution Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73357

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72584

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72583

cURL/libcURL CVE-2015-3148 Remote Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74301

cURL/libcURL NTLM connection CVE-2015-3143 Remote Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74299

cURL/libcURL CVE-2015-3153 Information Disclosure Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74408

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73239

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73232

OpenSSL 'pk7_doit.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73231

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73237

OpenSSL 'tasn_dec.c' Remote Memory Corruption Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73227

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73225

Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72155

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72165

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/73326

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72169

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-06-04
http://www.securityfocus.com/bid/71936

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-06-04
http://www.securityfocus.com/bid/71939

Oracle Java SE CVE-2015-0403 Local Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72148

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-06-04
http://www.securityfocus.com/bid/74083

Oracle Java SE CVE-2015-0412 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72136

Oracle Java SE CVE-2015-0408 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72140

Oracle Java SE CVE-2015-0437 Remote Java SE Vulnerability
2015-06-04
http://www.securityfocus.com/bid/72146

Exploit

JDownloader 2 Beta - Directory Traversal Vulnerability

Seagate Central 2014.0410.0026-F Remote Root Exploit

Wordpress Really Simple Guest Post <= 1.0.6 - File Include

WordPress zM Ajax Login & Register Plugin 1.0.9 Local File Inclusion

1 Click Audio Converter 2.3.6 - Activex Buffer Overflow

1 Click Extract Audio 2.3.6 - Activex Buffer Overflow

Jildi FTP Client 1.5.6 (SEH) BOF

ZTE AC 3633R USB Modem Multiple Vulnerabilities

4.6.2015

Bugtraq

ESA-2015-091: RSA Web Threat Detection Cross-Site Request Forgery Vulnerability 2015-06-03
Security Alert (Security_Alert emc com)

Local PHP File Inclusion in ResourceSpace 2015-06-03
High-Tech Bridge Security Research (advisory htbridge ch)

Jildi FTP Client 1.5.2 b1138 - Buffer Overflow Vulnerability 2015-06-03
banana88 inbox com

Safari Address Spoofing - Impact, Code, How It Works, History 2015-06-03
David Leo (david leo deusen co uk)

[SECURITY] [DSA 3249-2] jqueryui security update 2015-06-02
Sebastien Delafond (seb debian org)

Malware

Bot-FKS

TrojanDownloader:Win32/Upatre.BJ 

TrojanDownloader:Win32/Upatre.BG 

Ransom:Win32/Roduk.A!dllDefCon
Ransom:PowerShell/Roduk.ADefCon
TrojanDownloader:PowerShell/Roduk.ADefCon

Trojan.Ransomcrypt.T

Backdoor.Salgorea.B

Ransom:PowerShell/Polock.A 

Phishing

Chase Bank

3rd June 2015

UNLOCK YOUR USER ID

Apple

3rd June 2015

Your Apple ID has expired in
less than 48 hours! Sign in To
Comfirm Your Apple Id Now .

NatWest

2nd June 2015

PROACTIVELY TAKEN ACTION TO
DISABLE ONLINE ACCESS !

Vulnerebility

 

Exploit

vfront-0.99.2 CSRF & Persistent XSS

WebDrive 12.2 (B4172) - Buffer Overflow Vulnerability

Jildi FTP Client Buffer Overflow PoC

3.6.2015

Bugtraq

[SECURITY] [DSA 3277-1] wireshark security update 2015-06-02
Moritz Muehlenhoff (jmm debian org)

WebDrive 12.2 (B4172) - Buffer Overflow Vulnerability 2015-06-02
Vulnerability Lab (research vulnerability-lab com)

vfront-0.99.2 CSRF & Persistent XSS 2015-06-02
apparitionsec gmail com

Enhanced SQL Portal 5.0.7961 XSS Vulnerability 2015-06-02
apparitionsec gmail com

Freebox OS Web interface 3.0.2 XSS, CSRF 2015-06-01
huyngocbk gmail com

t2'15: Call for Papers 2015 (Helsinki / Finland) 2015-06-01
Tomi Tuominen (tomi tuominen t2 fi)

Malware

Ransom:PowerShell/Polock.A PWS:Win32/OnLineGames.AH 

IOS.Oneclickfraud

Phishing

Apple

3rd June 2015

Your Apple ID has expired in
less than 48 hours! Sign in To
Comfirm Your Apple Id Now .

NatWest

2nd June 2015

PROACTIVELY TAKEN ACTION TO
DISABLE ONLINE ACCESS !

limited.services@paypal.com

2nd June 2015

YOUR PAYPAI ACCOUNT WILL BE
DEACTIVATED (#PP - 2015)

Joey

1st June 2015

FASHION GIFT

Vulnerebility

 

Exploit

PonyOS <= 3.0 - tty ioctl() Local Kernel Exploit

2.6.2015

Bugtraq

CVE-2015-4039 - WordPress WP Membership plugin [Stored XSS] 2015-06-01
pan vagenas gmail com

CVE-2015-4038 - WordPress WP Membership plugin [Privilege escalation] 2015-06-01
pan vagenas gmail com

WebDrive Buffer OverFlow PoC 2015-06-01
banana88 inbox com

Ektron CMS 9.10 SP1 - XSS Vulnerability 2015-05-31
jerold v00d00sec com

Ektron CMS 9.10 SP1 - CSRF Vulnerability 2015-05-31
jerold v00d00sec com

[SECURITY] [DSA 3276-1] symfony security update 2015-05-31
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 3269-2] postgresql-9.1 regression update 2015-05-31
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3275-1] fusionforge security update 2015-05-30
Salvatore Bonaccorso (carnil debian org)

Malware

IOS.Oneclickfraud

Trojan.Cryptolocker.V

Trojan.ChangeDNS! Html

Exp.CVE-2015-1711

Exp.CVE-2015-1691

Exp.CVE-2015-1718

Exp.CVE-2015-1708

Exp.CVE-2015-1710

Exp.CVE-2015-1705

Exp.CVE-2015-1689

Exp.CVE-2015-1686

Exp.CVE-2015-1685

Exp.CVE-2015-1681

Phishing

limited.services@paypal.com

2nd June 2015

YOUR PAYPAI ACCOUNT WILL BE
DEACTIVATED (#PP - 2015)

Joey

1st June 2015

FASHION GIFT

Ms. Carman L. Lapointe

1st June 2015

UNPAID BENEFICIARY!!!

Paypal

1st June 2015

YOUR ACCOUNT LIMITED - UPDATE
YOUR INFORMATION ACCOUNT !!

iTunes

1st June 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID2310A4AB53348E4546EA

Service œ

1st June 2015

YOUR PAYPAL ACCOUNT WILL BE
LIMITED . œ

Vulnerebility

WordPress ReFlex Gallery Plugin 'php.php' Arbitrary File Upload Vulnerability
2015-05-30
http://www.securityfocus.com/bid/57100

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74147

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70574

OpenSSL DTLS CVE-2014-3505 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69081

OpenSSL Session Ticket Memory Leak Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70586

OpenSSL DTLS CVE-2014-3510 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69082

OpenSSL DTLS CVE-2014-3506 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69076

OpenSSL DTLS CVE-2014-3507 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69078

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-05-30
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74111

IBM WebSphere Application Server CVE-2015-1920 Remote Code Execution Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74439

OpenSSL CVE-2015-0205 Man in the Middle Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71941

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71935

OpenSSL CVE-2014-3572 Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71942

OpenSSL 'dtls1_buffer_record()' Function Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71940

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-30
http://www.securityfocus.com/bid/71939

OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71937

OpenSSL 'ssl23_get_client_hello()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71934

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/73326

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-30
http://www.securityfocus.com/bid/72165

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-30
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2014-6512 IP Address Spoofing Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70567

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70538

PHPWind Cross Site Scripting and Open Redirection Vulnerabilities
2015-05-30
http://www.securityfocus.com/bid/74804

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74640

WordPress church_admin Plugin 'address' Field HTML Injection Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74782

Drupal Entity API Module Field Labels Cross Site Scripting Vulnerability
2015-05-30
http://www.securityfocus.com/bid/72806

Red Hat SETroubleShoot CVE-2015-1815 Remote Privilege Escalation Vulnerability
2015-05-30
http://www.securityfocus.com/bid/73374

openSUSE OSC 'osc/core.py' Command Injection Vulnerability
2015-05-30
http://www.securityfocus.com/bid/73114

slapi-nis Directory Server Plugin CVE-2015-0283 Multiple Remote Denial of Service Vulnerabilities
2015-05-30
http://www.securityfocus.com/bid/73377

Exploit

Realtek SDK Miniigd UPnP SOAP Command Execution

Airties login-cgi Buffer Overflow

IBM Security AppScan Standard <= 9.0.2 - OLE Automation Array Remote Code Execution

WebDrive 12.2 (Build # 4172) - Buffer OverFlow PoC

D-Link Devices HNAP SOAPAction-Header Command Execution

WordPress dzs-zoomsounds Plugins <= 2.0 - Remote File Upload Vulnerability

Aruba ClearPass Policy Manager Stored XSS

PonyOS <= 3.0 - VFS Permissions Exploit

PonyOS <= 3.0 - ELF Loader Privilege Escalation

1.6.2015

Bugtraq

CVE-2015-4039 - WordPress WP Membership plugin [Stored XSS] 2015-06-01
pan vagenas gmail com

CVE-2015-4038 - WordPress WP Membership plugin [Privilege escalation] 2015-06-01
pan vagenas gmail com

WebDrive Buffer OverFlow PoC 2015-06-01
banana88 inbox com

Ektron CMS 9.10 SP1 - XSS Vulnerability 2015-05-31
jerold v00d00sec com

Ektron CMS 9.10 SP1 - CSRF Vulnerability 2015-05-31
jerold v00d00sec com

[SECURITY] [DSA 3276-1] symfony security update 2015-05-31
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 3269-2] postgresql-9.1 regression update 2015-05-31
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3275-1] fusionforge security update 2015-05-30
Salvatore Bonaccorso (carnil debian org)

Malware

 

Phishing

Paypal

1st June 2015

YOUR ACCOUNT LIMITED - UPDATE
YOUR INFORMATION ACCOUNT !!

iTunes

1st June 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID2310A4AB53348E4546EA

Service œ

1st June 2015

YOUR PAYPAL ACCOUNT WILL BE
LIMITED . œ

EARTHLINK

1st June 2015

EARTHLINK RDP AND EMAILS FOR
SALE OFFICIAL RESELLER

Vulnerebility

WordPress ReFlex Gallery Plugin 'php.php' Arbitrary File Upload Vulnerability
2015-05-30
http://www.securityfocus.com/bid/57100

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74147

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70574

OpenSSL DTLS CVE-2014-3505 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69081

OpenSSL Session Ticket Memory Leak Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70586

OpenSSL DTLS CVE-2014-3510 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69082

OpenSSL DTLS CVE-2014-3506 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69076

OpenSSL DTLS CVE-2014-3507 Remote Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/69078

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-05-30
http://www.securityfocus.com/bid/73684

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74111

IBM WebSphere Application Server CVE-2015-1920 Remote Code Execution Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74439

OpenSSL CVE-2015-0205 Man in the Middle Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71941

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71935

OpenSSL CVE-2014-3572 Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71942

OpenSSL 'dtls1_buffer_record()' Function Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71940

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-30
http://www.securityfocus.com/bid/71939

OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71937

OpenSSL 'ssl23_get_client_hello()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-30
http://www.securityfocus.com/bid/71934

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-30
http://www.securityfocus.com/bid/73326

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-30
http://www.securityfocus.com/bid/72165

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-30
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2014-6512 IP Address Spoofing Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70567

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2015-05-30
http://www.securityfocus.com/bid/70538

PHPWind Cross Site Scripting and Open Redirection Vulnerabilities
2015-05-30
http://www.securityfocus.com/bid/74804

QEMU 'hw/block/fdc.c' VENOM Remote Memory Corruption Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74640

WordPress church_admin Plugin 'address' Field HTML Injection Vulnerability
2015-05-30
http://www.securityfocus.com/bid/74782

Drupal Entity API Module Field Labels Cross Site Scripting Vulnerability
2015-05-30
http://www.securityfocus.com/bid/72806

Red Hat SETroubleShoot CVE-2015-1815 Remote Privilege Escalation Vulnerability
2015-05-30
http://www.securityfocus.com/bid/73374

openSUSE OSC 'osc/core.py' Command Injection Vulnerability
2015-05-30
http://www.securityfocus.com/bid/73114

slapi-nis Directory Server Plugin CVE-2015-0283 Multiple Remote Denial of Service Vulnerabilities
2015-05-30
http://www.securityfocus.com/bid/73377

Exploit

IBM Security AppScan Standard <= 9.0.2 - OLE Automation Array Remote Code Execution

WebDrive 12.2 (Build # 4172) - Buffer OverFlow PoC

WordPress dzs-zoomsounds Plugins <= 2.0 - Remote File Upload Vulnerability

PonyOS <= 3.0 - VFS Permissions Exploit

PonyOS <= 3.0 - ELF Loader Privilege Escalation

29.5.2015

Bugtraq

[security bulletin] HPSBHF03340 rev.1 - HP ThinPro Linux and HP Smart Zero Core running HP Easy Setup Wizard, Local Unauthorized Access, Elevation of Privilege 2015-05-28
security-alert hp com

Audacity 2.0.5 contains Arbitrary DLL Injection Code Execution 2015-05-28
mystyle_rahul yahoo co in

[SEARCH-LAB advisory] More than fifty vulnerabilities in D-Link NAS and NVR devices 2015-05-28
Gergely Eberhardt (gergely eberhardt search-lab hu)

DbNinja 3.2.6 Flash XSS Vulnerabilities 2015-05-28
apparitionsec gmail com

DbNinja 3.2.6 Flash XSS Vulnerabilities 2015-05-28
apparitionsec gmail com

Malware

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

WellsFargo Alert

29th May 2015

Important Update On Your
WELLSFARGO Account

PayPal

29th May 2015

Your account PayPal is limited
you have to solve the problem
in 24 hours

Barclays Bank

28th May 2015

Your Barclays monthly
e-statement/document has just
arrived.

Sun Trust Banking

27th May 2015

Avoid Notification

Apple

27th May 2015

ALERT: UPDATE YOUR APPLE
ACCOUNT. 26/05/2015 08:10:38

Vulnerebility

 

Exploit

 

28.5.2015

Bugtraq

[Onapsis Security Advisory 2015-006] SAP HANA Information Disclosure via SQL IMPORT FROM statement 2015-05-27
Onapsis Research Labs (research onapsis com)

[Onapsis Security Advisory 2015-007] SAP HANA Log Injection Vulnerability 2015-05-27
Onapsis Research Labs (research onapsis com)

Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability 2015-05-27
David Coomber (davidcoomber infosec gmail com)

[SECURITY] [DSA 3268-2] ntfs-3g security update 2015-05-26
Salvatore Bonaccorso (carnil debian org)

CVE-2015-4084 - WordPress Free Counter Plugin [Stored XSS] 2015-05-26
pan vagenas gmail com

[SECURITY] [DSA 3273-1] tiff security update 2015-05-25
Moritz Muehlenhoff (jmm debian org)

Synology Photo Station multiple Cross-Site Scripting vulnerabilities 2015-05-25
Securify B.V. (lists securify nl)

Reflected Cross-Site Scripting in Synology DiskStation Manager 2015-05-25
Securify B.V. (lists securify nl)

Command injection vulnerability in Synology Photo Station 2015-05-25
Securify B.V. (lists securify nl)

Malware

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

Sun Trust Banking

27th May 2015

Avoid Notification

Apple

27th May 2015

ALERT: UPDATE YOUR APPLE
ACCOUNT. 26/05/2015 08:10:38

service@paypal.co.uk

26th May 2015

Limited Account

Apple

26th May 2015

œ Your recent purchase with
your Apple ID.

Skype

25th May 2015

Receipt for your PayPal
payment to Skype !

Vulnerebility

Drupal Views Module Access Bypass Vulnerability
2015-05-29
http://www.securityfocus.com/bid/74462

Exploit

WordPress Plugin Free Counter 1.1 Stored XSS

27.5.2015

Bugtraq

Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability 2015-05-27
David Coomber (davidcoomber infosec gmail com)

[SECURITY] [DSA 3268-2] ntfs-3g security update 2015-05-26
Salvatore Bonaccorso (carnil debian org)

CVE-2015-4084 - WordPress Free Counter Plugin [Stored XSS] 2015-05-26
pan vagenas gmail com

[SECURITY] [DSA 3273-1] tiff security update 2015-05-25
Moritz Muehlenhoff (jmm debian org)

Synology Photo Station multiple Cross-Site Scripting vulnerabilities 2015-05-25
Securify B.V. (lists securify nl)

Reflected Cross-Site Scripting in Synology DiskStation Manager 2015-05-25
Securify B.V. (lists securify nl)

Command injection vulnerability in Synology Photo Station 2015-05-25
Securify B.V. (lists securify nl)

[SECURITY] [DSA 3265-2] zendframework regression update 2015-05-24
Alessandro Ghedini (ghedo debian org)

[SECURITY] [DSA 3272-1] ipsec-tools security update 2015-05-23
Salvatore Bonaccorso (carnil debian org)

Malware

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

Apple

27th May 2015

ALERT: UPDATE YOUR APPLE
ACCOUNT. 26/05/2015 08:10:38

service@paypal.co.uk

26th May 2015

Limited Accounta

Apple

26th May 2015

œ Your recent purchase with
your Apple ID.
 

Vulnerebility

Drupal Views Module Access Bypass Vulnerability
2015-05-29
http://www.securityfocus.com/bid/74462

php-gd 'gdxpm.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/66233

PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
2015-05-25
http://www.securityfocus.com/bid/68007

PHP OpenSSL Extension 'openssl_x509_parse()' Remote Memory Corruption Vulnerability
2015-05-25
http://www.securityfocus.com/bid/64225

PHP SSL Certificate Validation CVE-2013-4248 Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/61776

OpenSSL CVE-2014-3509 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69084

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73326

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-05-25
http://www.securityfocus.com/bid/73684

IPsec-Tools NULL Pointer Dereference Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74739

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73225

NVIDIA Display Driver CVE-2015-1170 Local Privilege Escalation Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73442

OpenSSL DTLS CVE-2014-3506 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69076

OpenSSL SRP CVE-2014-3512 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69083

OpenSSL CVE-2014-3508 Information Disclosure Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69075

OpenSSL NULL Pointer Dereference CVE-2014-5139 Local Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69077

OpenSSL DTLS CVE-2014-3507 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69078

OpenSSL CVE-2014-3511 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69079

OpenSSL DTLS CVE-2014-3510 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69082

t1utils Buffer Overflow Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74674

WordPress Landing Pages Plugin Unspecified SQL Injection and Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74777

Wordpress Roomcloud Plugin 'roomcloud.php' Multiple Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74580

PgBouncer src/client.c' Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74751

WordPress GigPress Plugin 'handlers.php' Multiple SQL Injection Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74747

WordPress NewStatPress Plugin Unspecified SQL Injection and Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74773

Ruby on Rails Action Pack Comp CVE-2014-7829 Incomplete Fix Information Disclosure Vulnerability
2015-05-25
http://www.securityfocus.com/bid/71183

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/71936

Google Chrome Prior to 43.0.2357.65 Multiple Security Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74723

Google Chrome CVE-2015-1265 Multiple Unspecified Security Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74727

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73239

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-25
http://www.securityfocus.com/bid/71939

Exploit

WordPress Plugin Free Counter 1.1 Stored XSS

Acoustica Pianissimo 1.0 Build 12 (Registration ID) Buffer Overflow PoC

26.5.2015

Bugtraq

Synology Photo Station multiple Cross-Site Scripting vulnerabilities 2015-05-25
Securify B.V. (lists securify nl)

Reflected Cross-Site Scripting in Synology DiskStation Manager 2015-05-25
Securify B.V. (lists securify nl)

Command injection vulnerability in Synology Photo Station 2015-05-25
Securify B.V. (lists securify nl)

[SECURITY] [DSA 3265-2] zendframework regression update 2015-05-24
Alessandro Ghedini (ghedo debian org)

[SECURITY] [DSA 3272-1] ipsec-tools security update 2015-05-23
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3271-1] nbd security update 2015-05-23
Alessandro Ghedini (ghedo debian org)

Malware

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

Apple

26th May 2015

œ Your recent purchase with
your Apple ID.

Skype

25th May 2015

Receipt for your PayPal
payment to Skype !

iTunes

25th May 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID5377A4A560411EFA6B89

iTunes

25th May 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID5431A4A501521EFAB94D

iTunes

25th May 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID7146A4A545301DC8F95D

Mercantile

25th May 2015

FRESH TOOLS ADDED TO THE SHOP
NOW

Vulnerebility

Drupal Views Module Access Bypass Vulnerability
2015-05-29
http://www.securityfocus.com/bid/74462

php-gd 'gdxpm.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/66233

PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
2015-05-25
http://www.securityfocus.com/bid/68007

PHP OpenSSL Extension 'openssl_x509_parse()' Remote Memory Corruption Vulnerability
2015-05-25
http://www.securityfocus.com/bid/64225

PHP SSL Certificate Validation CVE-2013-4248 Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/61776

OpenSSL CVE-2014-3509 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69084

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73326

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-05-25
http://www.securityfocus.com/bid/73684

IPsec-Tools NULL Pointer Dereference Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74739

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73225

NVIDIA Display Driver CVE-2015-1170 Local Privilege Escalation Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73442

OpenSSL DTLS CVE-2014-3506 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69076

OpenSSL SRP CVE-2014-3512 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69083

OpenSSL CVE-2014-3508 Information Disclosure Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69075

OpenSSL NULL Pointer Dereference CVE-2014-5139 Local Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69077

OpenSSL DTLS CVE-2014-3507 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69078

OpenSSL CVE-2014-3511 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69079

OpenSSL DTLS CVE-2014-3510 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69082

t1utils Buffer Overflow Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74674

WordPress Landing Pages Plugin Unspecified SQL Injection and Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74777

Wordpress Roomcloud Plugin 'roomcloud.php' Multiple Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74580

PgBouncer src/client.c' Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74751

WordPress GigPress Plugin 'handlers.php' Multiple SQL Injection Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74747

WordPress NewStatPress Plugin Unspecified SQL Injection and Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74773

Ruby on Rails Action Pack Comp CVE-2014-7829 Incomplete Fix Information Disclosure Vulnerability
2015-05-25
http://www.securityfocus.com/bid/71183

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/71936

Google Chrome Prior to 43.0.2357.65 Multiple Security Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74723

Google Chrome CVE-2015-1265 Multiple Unspecified Security Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74727

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73239

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-25
http://www.securityfocus.com/bid/71939

Exploit

Wordpress Video Gallery Plugin 2.8 Arbitrary Mail Relay

WordPress NewStatPress Plugin 0.9.8 Multiple Vulnerabilities

WordPress Landing Pages Plugin 1.8.4 Multiple Vulnerabilities

WordPress GigPress Plugin 2.3.8 - SQL Injection

Apache Jackrabbit WebDAV XXE Exploit

Wordpress MailChimp Subscribe Forms 1.1 Remote Code Execution

Wordpress church_admin Plugin 0.800 Stored XSS

Wordpess Simple Photo Gallery 1.7.8 Blind SQL Injection

Sendio ESP Information Disclosure Vulnerability

Clickheat 1.13+ Remote Command Execution

25.5.2015

Bugtraq

[CORE-2015-0010] - Sendio ESP Information Disclosure Vulnerability 2015-05-22
CORE Advisories Team (advisories coresecurity com)

[SECURITY] [DSA 3270-1] postgresql-9.4 security update 2015-05-22
Christoph Berg (myon debian org)

[SECURITY] [DSA 3268-1] ntfs-3g security update 2015-05-22
Salvatore Bonaccorso (carnil debian org)

Malware

RDN/Generic.grp!hy

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

iTunes

25th May 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID5377A4A560411EFA6B89

iTunes

25th May 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID5431A4A501521EFAB94D

iTunes

25th May 2015

ITUNES ACCOUNT WAS BEEN FROZEN
ID7146A4A545301DC8F95D

Mercantile

25th May 2015

FRESH TOOLS ADDED TO THE SHOP
NOW

Vulnerebility

Drupal Views Module Access Bypass Vulnerability
2015-05-29
http://www.securityfocus.com/bid/74462

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-25
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74083

Oracle Java SE CVE-2015-0491 Remote Security Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74094

Dojo Toolkit CVE-2014-8917 Multiple Cross Site Scripting Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/72903

CKEditor Preview Plugin CVE-2014-5191 Unspecified Cross Site Scripting Vulnerability
2015-05-25
http://www.securityfocus.com/bid/69161

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-05-25
http://www.securityfocus.com/bid/73684

OpenSSL Session Ticket Memory Leak Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/70586

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73232

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73239

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73237

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73225

GNU glibc 'swscanf' Local Heap Buffer Overflow Vulnerability
2015-05-25
http://www.securityfocus.com/bid/72428

GNU glibc 'send_dg()' Function Local Information Disclosure Weakness
2015-05-25
http://www.securityfocus.com/bid/72844

FUSE CVE-2015-3202 Local Privilege Escalation Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74765

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73326

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-25
http://www.securityfocus.com/bid/72165

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-05-25
http://www.securityfocus.com/bid/70574

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2015-05-25
http://www.securityfocus.com/bid/70538

Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/68795

Multiple OleumTech Products CVE-2014-2362 Predictable Random Number Generator Weakness
2015-05-25
http://www.securityfocus.com/bid/68800

OleumTech WIO DH2 Wireless Gateway CVE-2014-2360 Remote Denial of Service Vulnerability
2015-05-25
http://www.securityfocus.com/bid/68797

X.Org libXfont 'bitmap/bdfread.c' Out of Bounds Local Buffer Overflow Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73277

X.Org X Server Protocol Handling Out-of-Bounds Multiple Denial of Service Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/71603

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-25
http://www.securityfocus.com/bid/71939

MIT Kerberos 5 CVE-2014-5355 Multiple Denial of Service Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74042

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/71935

OpenSSL '/evp/encode.c' Remote Memory Corruption Vulnerability
2015-05-25
http://www.securityfocus.com/bid/73228

WordPress WP Membership Plugin Multiple Security Vulnerabilities
2015-05-25
http://www.securityfocus.com/bid/74766

Exploit

FTP Media Server 3.0 - Authentication Bypass and Denial of Service

22.5.2015

Bugtraq

[SECURITY] [DSA 3266-1] fuse security update 2015-05-21
Salvatore Bonaccorso (carnil debian org)

Webgrind XSS vulnerability 2015-05-21
hyp3rlinx gmail com

CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability) 2015-05-21
Julian Reschke (julian reschke greenbytes de)

CVE for Apple's ECDHE-ECDSA SecureTransport bug? 2015-05-20
Jeffrey Walton (noloader gmail com)

[SECURITY] [DSA 3261-2] libmodule-signature-perl regression update 2015-05-20
Salvatore Bonaccorso (carnil debian org)

Malware

Exploit-SWF.x

RDN/Generic.grp!hy

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

Barclays

21st May 2015

IMPORTANT - ONLINE BANKING
UPDATE

Halifax Bank

21st May 2015

PLEASE CHECK ACCOUNT

PayPal Inc,

21st May 2015

NOTICE : YOUR ACCOUNT PAYPAL
HAS BEEN LIMITED !

Vulnerebility

Drupal Views Module Access Bypass Vulnerability
2015-05-29
http://www.securityfocus.com/bid/74462

ownCloud CVE-2015-3013 Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74451

WordPress WP Symposium Plugin CVE-2015-3325 SQL Injection Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74237

Oracle Java SE CVE-2015-0478 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74147

Oracle Java SE CVE-2015-0459 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74083

SSL/TLS RC4 CVE-2015-2808 Information Disclosure Weakness
2015-05-22
http://www.securityfocus.com/bid/73684

Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74490

Sun J2SE Software Development Kit Java Archive Tool Directory Traversal Vulnerability
2015-05-22
http://www.securityfocus.com/bid/13083

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-05-22
http://www.securityfocus.com/bid/70574

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-22
http://www.securityfocus.com/bid/73326

Oracle Java SE CVE-2015-0469 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74072

Oracle Java SE CVE-2015-0491 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74094

Oracle Java SE CVE-2015-0480 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74104

Oracle Java SE CVE-2015-0488 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74111

Oracle Java SE CVE-2015-0477 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74119

Oracle Java SE CVE-2015-0458 Remote Security Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74141

Elasticsearch CVE-2015-3337 Directory Traversal Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74353

Microsoft Windows GDI+ CVE-2015-1670 OpenType Font Parsing Information Disclosure Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74485

IBM SDK CVE-2015-1914 Sandbox Security Bypass Vulnerability
2015-05-22
http://www.securityfocus.com/bid/74645

Google Chrome Prior to 43.0.2357.65 Multiple Security Vulnerabilities
2015-05-22
http://www.securityfocus.com/bid/74723

Google V8 Prior to 4.3.61.21 Multiple Unspecified Security Vulnerabilities
2015-05-22
http://www.securityfocus.com/bid/74730

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-05-22
http://www.securityfocus.com/bid/71935

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-05-22
http://www.securityfocus.com/bid/71936

OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-22
http://www.securityfocus.com/bid/71937

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-22
http://www.securityfocus.com/bid/71939

OpenSSL 'dtls1_buffer_record()' Function Denial of Service Vulnerability
2015-05-22
http://www.securityfocus.com/bid/71940

OpenSSL CVE-2015-0205 Man in the Middle Security Bypass Vulnerability
2015-05-22
http://www.securityfocus.com/bid/71941

OpenSSL CVE-2014-3572 Security Bypass Vulnerability
2015-05-22
http://www.securityfocus.com/bid/71942

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-22
http://www.securityfocus.com/bid/72169

Google Chrome CVE-2015-1265 Multiple Unspecified Security Vulnerabilities
2015-05-22
http://www.securityfocus.com/bid/74727

Exploit

Microsoft Windows - Local Privilege Escalation (MS15-051)

Windows - CNG.SYS Kernel Security Feature Bypass PoC (MS15-052)

Windows 8.0 - 8.1 x64 - TrackPopupMenu Privilege Escalation (MS14-058)

Forma LMS 1.3 Multiple SQL Injection Vulnerabilities

WordPress WP Symposium Plugin 15.1 SQL Injection Vulnerability

21.5.2015

Bugtraq

[security bulletin] HPSBUX03333 SSRT102029 rev.1 - HP-UX Running NTP, Remote Denial of Service (DoS), or Other Vulnerabilities 2015-05-20
security-alert hp com

[security bulletin] HPSBUX03334 SSRT102000 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilities 2015-05-20
security-alert hp com

EisbÃr SCADA (All Versions - iOS, Android & W8) - Persistent UI Vulnerability 2015-05-20
Vulnerability Lab (research vulnerability-lab com)

Stored XSS in WP Photo Album Plus WordPress Plugin 2015-05-20
High-Tech Bridge Security Research (advisory htbridge ch)

WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability 2015-05-20
Vulnerability Lab (research vulnerability-lab com)

[SECURITY] [DSA 3265-1] zendframework security update 2015-05-20
David PrÃvot (david tilapin org)

ManageEngine EventLog Analyzer V:10.0 CSRF Vulnerability 2015-05-19
akashchavan0708 gmail com

Staff FTP v3.04 Software - DLL Hijacking Vulnerability 2015-05-19
metacom27 gmail com

[SECURITY] [DSA 3263-1] proftpd-dfsg security update 2015-05-19
Sebastien Delafond (seb debian org)

Staff FTP v3.04 Software - DLL Hijacking Vulnerability 2015-05-20
Vulnerability Lab (research vulnerability-lab com)

HiDisk 2.4 iOS - (currentFolderPath) Persistent Vulnerability 2015-05-20
Vulnerability Lab (research vulnerability-lab com)

[SECURITY] [DSA 3264-1] icedove security update 2015-05-19
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBGN03286 rev.1 - HP LoadRunner, Buffer Overflow 2015-05-19
security-alert hp com

APPLE-SA-2015-05-19-1 Watch OS 1.0.1 2015-05-19
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBPI03322 rev.1 - HP Access Control Software, Local Unauthorized Access 2015-05-19
security-alert hp com

[SECURITY] [DSA 3175-2] kfreebsd-9 security update 2015-05-18
Alessandro Ghedini (ghedo debian org)

WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability 2015-05-19
metacom27 gmail com

iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability 2015-05-18
Vulnerability Lab (research vulnerability-lab com)

[SECURITY] [DSA 3262-1] xen security update 2015-05-18
Moritz Muehlenhoff (jmm debian org)

OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities 2015-05-18
Vulnerability Lab (research vulnerability-lab com)

Wireless Photo Transfer v3.0 iOS - File Include Vulnerability 2015-05-18
Vulnerability Lab (research vulnerability-lab com)

CRUCMS Crucial Networking - SQL Injection Vulnerability 2015-05-18
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] mozilla-thunderbird (SSA:2015-137-01) 2015-05-17
Slackware Security Team (security slackware com)

ESA-2015-087 EMC Document Sciences xPression SQL Injection Vulnerability 2015-05-16
Security Alert (Security_Alert emc com)

[SECURITY] [DSA 3261-1] libmodule-signature-perl security update 2015-05-15
Salvatore Bonaccorso (carnil debian org)

[SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine 2015-05-15
Security Explorations (contact security-explorations com)

phpMyAdmin 4.4.6 Man-In-the-Middle API Github 2015-05-14
submit cxsec org

[SECURITY] CVE-2014-7810: Apache Tomcat Security Manager Bypass 2015-05-14
Mark Thomas (markt apache org)

SEC Consult SA-20150514-0 :: Multiple vulnerabilities in Loxone Smart Home (part 2) 2015-05-14
SEC Consult Vulnerability Lab (research sec-consult com)

Sidu 5.2 Admin XSS Vulnerability 2015-05-14
apparitionsec gmail com

Malware

Exploit-SWF.x

RDN/Generic.grp!hy

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

Phishing

Microsoft

21st May 2015

Dear Gumtree Member,

USAA

20th May 2015

NEW MESSAGE FROM USAA

Alisha Tarologist

20th May 2015

TELL ME WHAT YOUR BIGGEST
WORRY IS

Chase

20th May 2015

Account Security Update

Nationwide Building Society

19th May 2015

NATIONWIDE ACCESS RESTRICTED
NOTICE

Barclays

19th May 2015

We need to verify your account

Vulnerebility

Drupal Views Module Access Bypass Vulnerability
2015-05-29
http://www.securityfocus.com/bid/74462

ownCloud CVE-2015-3013 Security Bypass Vulnerability
2015-05-25
http://www.securityfocus.com/bid/74451

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-21
http://www.securityfocus.com/bid/72169

Dojo Toolkit CVE-2014-8917 Multiple Cross Site Scripting Vulnerabilities
2015-05-21
http://www.securityfocus.com/bid/72903

OpenSSL CVE-2015-0288 Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73237

OpenSSL '/evp/encode.c' Remote Memory Corruption Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73228

OpenSSL 'tasn_dec.c' Remote Memory Corruption Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73227

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71935

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71936

OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71937

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-05-21
http://www.securityfocus.com/bid/71939

OpenSSL 'dtls1_buffer_record()' Function Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71940

OpenSSL CVE-2015-0205 Man in the Middle Security Bypass Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71941

OpenSSL CVE-2014-3572 Security Bypass Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71942

OpenSSL 'ASN1_TYPE_cmp()' Function Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73225

OpenSSL 'pk7_doit.c' NULL Pointer Dereference Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73231

OpenSSL CVE-2015-0293 Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73232

OpenSSL CVE-2015-0209 Remote Memory Corruption Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73239

NTP CVE-2015-1799 Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73950

NTP CVE-2015-1798 Man in the Middle Security Bypass Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73951

Google Chrome Prior to 43.0.2357.65 Multiple Security Vulnerabilities
2015-05-21
http://www.securityfocus.com/bid/74723

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2015-05-21
http://www.securityfocus.com/bid/70538

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-05-21
http://www.securityfocus.com/bid/70574

libpng 'png_combine_row()' Heap Buffer Overflow Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71820

OpenSSL 'ssl23_get_client_hello()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/71934

libpng CVE-2015-0973 Multiple Heap Based Buffer Overflow Vulnerabilities
2015-05-21
http://www.securityfocus.com/bid/71994

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-05-21
http://www.securityfocus.com/bid/72165

Apache Tomcat CVE-2014-0227 Chunk Request Remote Denial Of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/72717

IBM Security Directory Server CVE-2015-0138 Man in the Middle Security Bypass Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73326

Linux Kernel 'nf_conntrack_extend.h' NULL Pointer Dereference Denial of Service Vulnerability
2015-05-21
http://www.securityfocus.com/bid/73953

Exploit

Phoenix Contact ILC 150 ETH PLC Remote Control Script

WordPress FeedWordPress Plugin 2015.0426 - SQL Injection

Comodo GeekBuddy < 4.18.121 - Local Privilege Escalation

ZOC SSH Client Buffer Overflow Vulnerability (SEH)

Linux/x86 execve "/bin/sh" - shellcode 26 bytes

7.3.2015

Bugtraq

Last Call - Workhsops of CISTI'2015: 10th Iberian Conference on Information Systems and Technologies 2015-03-05
ML (marialemos72 gmail com)

Ultimate PHP Board (UPB) 2.2.7 Cross Site Scripting Vulnerability 2015-03-05
prathan ptr gmail com

[ MDVSA-2015:054 ] bind 2015-03-04
security mandriva com

WeBid 1.1.1 Unrestricted File Upload Exploit 2015-03-04
prathan ptr gmail com

[ MDVSA-2015:055 ] freetype2 2015-03-04
security mandriva com

Malware

RDN/Generic.grp!hy

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

RDN/Generic.bfr!1A1B5134B133

Phishing

TV Stream

7th March 2015

Watch TV!

David

6th March 2015

POST FREE CLASSIFIED ADS ON
ADSROAD

Paypal

6th March 2015

YOUR PAYPAL ACCOUNT HAS BEEN
LIMITED

Wells Fargo

6th March 2015

[ WELLS FARGO ] IMPORTANT
NOTIFICATION

PayPal

6th March 2015

PayPal: View your recent
activity

Security Centre

5th March 2015

UPDATE YOUR INFORMATION

Barclays

4th March 2015

Barclays - Important
Notification.

PayPal

4th March 2015

Issue PP-001-487-280-335

Vulnerebility

Drupal Global Redirect Module Open Redirection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/54002

Bitweaver 'rankings.php' Local File Include Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52176

IBM DB2 Administration Server (DAS) 'validateUser()' Stack Buffer Overflow Vulnerability
2015-02-28
http://www.securityfocus.com/bid/46077

IBM WebSphere Application Server for z/OS Multiple Unspecified Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43874

ENOVIA Unspecified Security Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44509

SilverStripe Unspecified Cross Site Request Forgery Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44768

IBM Systems Director Agent 'reset_diragent_keys' Insecure File Permissions Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44839

SilverStripe Multiple Remote Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/45367

TYPO3 Core TYPO3-SA-2010-022 Multiple Remote Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/45470

webConductor 'default.asp' SQL Injection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/41042

IBM Tivoli Directory Server 'DIGEST-MD5' Denial of Service Vulnerability
2015-02-28
http://www.securityfocus.com/bid/42093

IBM WebSphere Service Registry and Repository Multiple Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/42281

IBM Tivoli Storage Manager FastBack Remote Code Execution and Denial of Service Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/42549

IBM Records Manager Multiple Unspecified Remote Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43136

IBM AIX Local Privilege Escalation and Security Bypass Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43207

IBM DB2 prior to 9.7 Fix Pack 3 Multiple Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43291

Blue Coat ProxySG Unspecified Cross Site Scripting Vulnerability
2015-02-28
http://www.securityfocus.com/bid/43675

IBM Tivoli Access Manager for e-business Multiple Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/44382

IBM Tivoli Directory Server Multiple Denial of Service Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/44604

Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52323

eGroupware Multiple Input Validation Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/52770

IBM WebSphere ILOG JRules Cross Site Scripting Vulnerability
2015-02-28
http://www.securityfocus.com/bid/41030

IBM Rational ClearQuest Unspecified Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/41205

IBM FileNet Application Engine Multiple Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43271

MyBB Multiple Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/50816

XChat Remote Denial of Service Vulnerability
2015-02-28
http://www.securityfocus.com/bid/50820

AnGuanJia Remote Unauthorized Access Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51695

Apple Mac OS X Apple Type Services '.dfont' Font File Memory Corruption Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51832

WordPress s2Member Pro Plugin 'Coupon Code' Field HTML Injection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51997

Dotclear 'swfupload.swf' Remote Arbitrary File Upload Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52173

Exploit

  HP Data Protector 8.10 Remote Command Execution

  ProjectSend r561 - SQL Injection Vulnerability

4.3.2015

Bugtraq

[ MDVSA-2015:054 ] bind 2015-03-04
security mandriva com

WeBid 1.1.1 Unrestricted File Upload Exploit 2015-03-04
prathan ptr gmail com

[ MDVSA-2015:055 ] freetype2 2015-03-04
security mandriva com

[CVE-2015-2102] Clipbucket 2.7 RC3 0.9 - Blind SQL Injection 2015-03-04
prathan ptr gmail com

[SECURITY] [DSA 3179-1] icedove security update 2015-03-03
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBST03265 rev.1 - HP VMA SAN Gateway running Bash Shell and OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, and Disclosure of Information 2015-03-03
security-alert hp com

[ MDVSA-2015:052 ] tomcat 2015-03-03
security mandriva com

Malware

RDN/Generic.grp!hy

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

RDN/Generic.bfr!1A1B5134B133

Phishing

Barclays

4th March 2015

Barclays - Important
Notification.

PayPal

4th March 2015

Issue PP-001-487-280-335

Vulnerebility

Drupal Global Redirect Module Open Redirection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/54002

Bitweaver 'rankings.php' Local File Include Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52176

IBM DB2 Administration Server (DAS) 'validateUser()' Stack Buffer Overflow Vulnerability
2015-02-28
http://www.securityfocus.com/bid/46077

IBM WebSphere Application Server for z/OS Multiple Unspecified Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43874

ENOVIA Unspecified Security Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44509

SilverStripe Unspecified Cross Site Request Forgery Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44768

IBM Systems Director Agent 'reset_diragent_keys' Insecure File Permissions Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44839

SilverStripe Multiple Remote Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/45367

TYPO3 Core TYPO3-SA-2010-022 Multiple Remote Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/45470

webConductor 'default.asp' SQL Injection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/41042

IBM Tivoli Directory Server 'DIGEST-MD5' Denial of Service Vulnerability
2015-02-28
http://www.securityfocus.com/bid/42093

IBM WebSphere Service Registry and Repository Multiple Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/42281

IBM Tivoli Storage Manager FastBack Remote Code Execution and Denial of Service Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/42549

IBM Records Manager Multiple Unspecified Remote Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43136

IBM AIX Local Privilege Escalation and Security Bypass Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43207

IBM DB2 prior to 9.7 Fix Pack 3 Multiple Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43291

Blue Coat ProxySG Unspecified Cross Site Scripting Vulnerability
2015-02-28
http://www.securityfocus.com/bid/43675

IBM Tivoli Access Manager for e-business Multiple Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/44382

IBM Tivoli Directory Server Multiple Denial of Service Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/44604

Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52323

eGroupware Multiple Input Validation Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/52770

IBM WebSphere ILOG JRules Cross Site Scripting Vulnerability
2015-02-28
http://www.securityfocus.com/bid/41030

IBM Rational ClearQuest Unspecified Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/41205

IBM FileNet Application Engine Multiple Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43271

MyBB Multiple Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/50816

XChat Remote Denial of Service Vulnerability
2015-02-28
http://www.securityfocus.com/bid/50820

AnGuanJia Remote Unauthorized Access Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51695

Apple Mac OS X Apple Type Services '.dfont' Font File Memory Corruption Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51832

WordPress s2Member Pro Plugin 'Coupon Code' Field HTML Injection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51997

Dotclear 'swfupload.swf' Remote Arbitrary File Upload Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52173

Exploit

  Symantec Web Gateway 5 restore.php Post Authentication Command Injection

  Seagate Business NAS Unauthenticated Remote Command Execution

  Solarwinds Orion Service - SQL Injection Vulnerabilities

  BEdita CMS 3.5.0 - Multiple Vulnerabilities

  PHPMoAdmin Unauthorized Remote Code Execution (0-Day)

  Linux Kernel IRET Instruction #SS Fault Handling - Crash PoC

  Linux Kernel PPP-over-L2TP Socket Level Handling - Crash PoC

  Linux Kernel Associative Array Garbage Collection - Crash PoC

2.3.2015

Bugtraq

[ MDVSA-2015:049 ] cups 2015-03-02
security mandriva com

[CVE-2015-1583] ATutor LCMS - CSRF Vulnerability in Version 2.2 2015-02-28
edricteo outlook sg

BEdita CMS - XSS & CSRF Vulnerability in Version 3.5.0 2015-02-28
edricteo outlook sg

SEC Consult SA-20150227-0 :: Multiple vulnerabilities in Loxone Smart Home 2015-02-27
SEC Consult Vulnerability Lab (research sec-consult com)

Wordpress Media Cleaner Plugin - XSS Vulnerability 2015-02-27
iletisim ismailsaygili com tr

[SECURITY] CVE-2015-0254 XXE and RCE via XSL extension in JSTL XML tags 2015-02-27
Jeremy Boynes (jboynes apache org)

Malware

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

RDN/Generic.bfr!1A1B5134B133

Generic.dx!E87F1C1B381E

Phishing

Satya Vathi

2nd March 2015

BANCA IMI SECURITIES CORP.

Satya Vathi

2nd March 2015

BANK ASIA LTD

PayPal

2nd March 2015

[PayPal] your account
information appears to be
missing

PayPal

2nd March 2015

IMPORTANT: Please re-update
your account information.

EARTH LINK RDP

1st March 2015

WE RE-SELL GENUINE EARTHLINK
RDPS( CHANGE OF WEBSITE)

Santander UK

1st March 2015

Santander Bank Important
Notification

Halifax

1st March 2015

Update Your Online Account

Payments

1st March 2015

YOUR PENDING PURCHASE

Marilynn Johengen

1st March 2015

Now you can take control over
every situation, Deb S!!

service@paypal.co.uk

28th February 2015

YOUR ACCOUNT PAYPAL HAS BEEN
LIMITED.

Service PayPal

27th February 2015

Your account is currently
restricted.

Alert

27th February 2015

3гԁ NotÑcÐ | PÐymÐnt
DeclÑnÐԁ

Apple Team

27th February 2015

VERIFY YOUR APPLE ID

Vulnerebility

Drupal Global Redirect Module Open Redirection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/54002

Bitweaver 'rankings.php' Local File Include Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52176

IBM DB2 Administration Server (DAS) 'validateUser()' Stack Buffer Overflow Vulnerability
2015-02-28
http://www.securityfocus.com/bid/46077

IBM WebSphere Application Server for z/OS Multiple Unspecified Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43874

ENOVIA Unspecified Security Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44509

SilverStripe Unspecified Cross Site Request Forgery Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44768

IBM Systems Director Agent 'reset_diragent_keys' Insecure File Permissions Vulnerability
2015-02-28
http://www.securityfocus.com/bid/44839

SilverStripe Multiple Remote Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/45367

TYPO3 Core TYPO3-SA-2010-022 Multiple Remote Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/45470

webConductor 'default.asp' SQL Injection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/41042

IBM Tivoli Directory Server 'DIGEST-MD5' Denial of Service Vulnerability
2015-02-28
http://www.securityfocus.com/bid/42093

IBM WebSphere Service Registry and Repository Multiple Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/42281

IBM Tivoli Storage Manager FastBack Remote Code Execution and Denial of Service Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/42549

IBM Records Manager Multiple Unspecified Remote Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43136

IBM AIX Local Privilege Escalation and Security Bypass Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43207

IBM DB2 prior to 9.7 Fix Pack 3 Multiple Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43291

Blue Coat ProxySG Unspecified Cross Site Scripting Vulnerability
2015-02-28
http://www.securityfocus.com/bid/43675

IBM Tivoli Access Manager for e-business Multiple Cross Site Scripting Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/44382

IBM Tivoli Directory Server Multiple Denial of Service Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/44604

Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52323

eGroupware Multiple Input Validation Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/52770

IBM WebSphere ILOG JRules Cross Site Scripting Vulnerability
2015-02-28
http://www.securityfocus.com/bid/41030

IBM Rational ClearQuest Unspecified Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/41205

IBM FileNet Application Engine Multiple Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/43271

MyBB Multiple Security Vulnerabilities
2015-02-28
http://www.securityfocus.com/bid/50816

XChat Remote Denial of Service Vulnerability
2015-02-28
http://www.securityfocus.com/bid/50820

AnGuanJia Remote Unauthorized Access Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51695

Apple Mac OS X Apple Type Services '.dfont' Font File Memory Corruption Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51832

WordPress s2Member Pro Plugin 'Coupon Code' Field HTML Injection Vulnerability
2015-02-28
http://www.securityfocus.com/bid/51997

Dotclear 'swfupload.swf' Remote Arbitrary File Upload Vulnerability
2015-02-28
http://www.securityfocus.com/bid/52173

Exploit

Seagate Business NAS <= 2014.00319 - Pre-Authentication Remote Code Execution (0day)

27.2.2015

Bugtraq

[SECURITY] [DSA 3176-1] request-tracker4 security update 2015-02-26
Salvatore Bonaccorso (carnil debian org)

Wireless File Transfer Pro Android - Multiple CSRF Vulnerabilities 2015-02-26
Vulnerability Lab (research vulnerability-lab com)

Data Source: Scopus CMS - SQL Injection Web Vulnerability 2015-02-26
Vulnerability Lab (research vulnerability-lab com)

DSS TFTP 1.0 Server - Path Traversal Vulnerability 2015-02-26
Vulnerability Lab (research vulnerability-lab com)

D-Link and TRENDnet 'ncc2' service - multiple vulnerabilities 2015-02-26
Peter Adkins (peter adkins kernelpicnic net)

[slackware-security] mozilla-firefox (SSA:2015-056-01) 2015-02-26
Slackware Security Team (security slackware com)

[slackware-security] mozilla-thunderbird (SSA:2015-056-02) 2015-02-26
Slackware Security Team (security slackware com)

[security bulletin] HPSBUX03273 SSRT101951 rev.1 - HP-UX running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2015-02-26
security-alert hp com

[security bulletin] HPSBUX03244 SSRT101885 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites 2015-02-26
security-alert hp com

[SECURITY] [DSA 3175-1] kfreebsd-9 security update 2015-02-25
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBUX03162 SSRT101885 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Other Vulnerabilites 2015-02-25
security-alert hp com

[SECURITY] [DSA 3174-1] iceweasel security update 2015-02-25
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 3173-1] libgtk2-perl security update 2015-02-25
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3172-1] cups security update 2015-02-25
Sebastien Delafond (seb debian org)

Malware

Generic PUP.x!47D5B92EC2DE

Generic Downloader.x!C3BE171842B5

RDN/Generic BackDoor!bbv!681E8DE9F748

Generic.bfr!6EABCAE20244

RDN/Generic.bfr!id!89DA4F0B9AFE

RDN/Generic BackDoor!bbv!63D0D36E010A

Generic.dx!9DA85BB0FFAB

Generic FakeAlert!E35608C04D28

RDN/Generic.tfr!ei!40A74770E65E

RDN/Generic.tfr!ei!57CF1966A13B

RDN/Generic.bfr!id!744B66331525

W32/Spybot.bfr!0391BECB1EFF

RDN/Generic.dx!64703124682A

RDN/Generic PUP.x!C3C9518B2E91

Generic.bfr!AC16DBD5D6E8

RDN/Generic.bfr!id!3A6E60A6E410

RDN/Generic.tfr!ei!2DD5F2DB4CCF

RDN/Generic PWS.y!FA849BA90082

Generic Downloader.x!3F5003F05153

RDN/Generic.dx!djn!3316DFE3E56C

RDN/Generic.dx!djn!3104020682F0

RDN/Generic BackDoor!bbv!3B3C64828E7B

RDN/Generic BackDoor!bbv!4882A71A6585

RDN/Generic PUP.x!0AF6343C4EAB

RDN/Generic.bfr!id!26DB9531DF97

RDN/Generic.dx!djn!3BAFE3140147

Generic PUP.x!DDE5C72A8342

Generic PUP.z!F996094B0BA4

RDN/Generic.bfr!1A1B5134B133

Generic.dx!E87F1C1B381E

Phishing

Mus½¼e.Gaⅰns

26th February 2015

Boost Perfor¿an½e an¾
Ma¹ⅰ¿ize Your
Ath¼eti½ En¾uran½e

Paypal Support

26th February 2015

YOUR PAYPAL ACCOUNT HAS BEEN
LIMITEDœ

PayPal

26th February 2015

Important: We noticed unusual
activity in your PayPal
account (Ref
#PP-004-621-793-008)3

Internal Revenue Service

26th February 2015

INCOME TAX REFUND REJECTED

Csloxinfo Internet Service ser

26th February 2015

System Warning!!!

Apple Team

25th February 2015

VERIFY YOUR APPLE ID

Diego Glenn

25th February 2015

After trying this you will
never diet again!

Barclays Online

25th February 2015

ACCOUNT SECURITY ALERT.

Bank of America

25th February 2015

Bank of America Alert: Sign in
to Online Banking Locked
 

Vulnerebility

Oracle Java SE CVE-2014-6585 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72173

Oracle Java SE CVE-2015-0408 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72140

OpenSSL 'dtls1_get_record()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-02-27
http://www.securityfocus.com/bid/71937

OpenSSL 'ssl23_get_client_hello()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-02-27
http://www.securityfocus.com/bid/71934

Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72169

Oracle Java SE CVE-2015-0400 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72159

Oracle Java SE CVE-2015-0410 Remote Java SE, Java SE Embedded, JRockit Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72165

Oracle Java SE CVE-2015-0403 Local Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72148

Oracle Java SE CVE-2014-6601 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72132

OpenSSL CVE-2014-3570 Unspecified Security Weakness
2015-02-27
http://www.securityfocus.com/bid/71939

Oracle Java SE CVE-2014-6591 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72175

OpenSSL CVE-2015-0204 Man in the Middle Security Bypass Vulnerability
2015-02-27
http://www.securityfocus.com/bid/71936

OpenSSL CVE-2014-3572 Security Bypass Vulnerability
2015-02-27
http://www.securityfocus.com/bid/71942

Oracle Java SE CVE-2015-0406 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72154

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-02-27
http://www.securityfocus.com/bid/70574

Oracle Java SE CVE-2015-0412 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72136

OpenSSL Certificate Fingerprints CVE-2014-8275 Local Security Bypass Vulnerability
2015-02-27
http://www.securityfocus.com/bid/71935

Oracle Java SE CVE-2015-0383 Local Java SE, Java SE Embedded, JRockit Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72155

Oracle Java SE CVE-2015-0395 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72142

Oracle Java SE CVE-2014-6587 Local Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72168

Oracle Java SE CVE-2015-0407 Remote Java SE Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72162

Mozilla Firefox/Thunderbird CVE-2015-0831 Use After Free Denial of Service Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72746

Mozilla Firefox/Thunderbird CVE-2015-0822 Arbitrary File Read Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72756

Mozilla Firefox/Thunderbird CVE-2015-0836 Unspecified Memory Corruption Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72742

Mozilla Firefox/Thunderbird CVE-2015-0835 Unspecified Memory Corruption Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72748

Mozilla Firefox Firefox ESR and Thunderbird DLL Loading Arbitrary Code Execution Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72747

Mozilla Firefox CVE-2015-0827 Heap Buffer Overflow Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72755

ISC BIND CVE-2015-1349 Remote Denial of Service Vulnerability
2015-02-27
http://www.securityfocus.com/bid/72673

Google Android 'GraphicBuffer::unflatten()' Function Multiple Integer Overflow Vulnerabilities
2015-02-27
http://www.securityfocus.com/bid/72788

Oracle Java SE CVE-2013-0440 Remote Java Runtime Environment Vulnerability
2015-02-27
http://www.securityfocus.com/bid/57712

Exploit

 

26.2.2015

Bugtraq

[SECURITY] [DSA 3169-1] eglibc security update 2015-02-23
Aurelien Jarno (aurel32 debian org)

[SECURITY] [DSA 3168-1] ruby-redcloth security update 2015-02-22
Sebastien Delafond (seb debian org)

CVE-2014-8487: Kony EMM insecurity Direct Object Reference 2015-02-22
michael hendrickx helpag com

[SECURITY] [DSA 3167-1] sudo security update 2015-02-22
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3166-1] e2fsprogs security update 2015-02-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 3165-1] xdg-utils security update 2015-02-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 3171-1] samba security update 2015-02-23
Salvatore Bonaccorso (carnil debian org)

Malware

RDN/Generic.dx!djl!A782C2548727

Generic PUP.x!A8E86E585ADA

Generic PUP.x!A7779D616CA5

Generic PUP.z!2C1F2C934005

RDN/Generic.bfr!id!BBF9DB1F1E3D

RDN/Generic BackDoor!bb3!3E23EEAE42AA

RDN/StartPage-CQ!c!12A6C161820C

RDN/Spybot.bfr!40F29AB4C339

RDN/Spybot.bfr!41743C60B87A

Generic PUP.z!393D64577F4B

RDN/Generic.dx!djl!B177488FF277

Generic BackDoor!B3B73964FE47

RDN/Generic.dx!djl!B1F83451D13D

RDN/Generic.dx!2866436408EA

RDN/Generic.bfr!B49CADDC45EA

RDN/Generic.bfr!id!B8E2EB87196D

RDN/Generic BackDoor!bb3!BD9FA1986446

RDN/Generic.dx!djl!9B51352A08D4

RDN/Generic PUP.x!A0A0B84662B6

W32/Spybot.bfr!A053813168FD

RDN/Generic.grp!ia!003F4ABAFC5D

RDN/Spybot.bfr!17A0546D71D1

W32/Nabucur!2002CBEA82DD

RDN/Spybot.bfr!2805CF524AF8

RDN/Generic PWS.y!bct!890FCC431415

Ransom!0AA2F54E9FFA

Generic.dx!8022F8836C59

RDN/Generic PWS.y!A3A716E2192E

RDN/Downloader.gen.a!6903120E1CCB

RDN/Generic PUP.x!c2a!9E0DE784E882

Phishing

Csloxinfo Internet Service ser

26th February 2015

System Warning!!!

Apple Team

25th February 2015

VERIFY YOUR APPLE ID

Diego Glenn

25th February 2015

After trying this you will
never diet again!

Barclays Online

25th February 2015

ACCOUNT SECURITY ALERT.

Bank of America

25th February 2015

Bank of America Alert: Sign in
to Online Banking Locked

Apple Team

24th February 2015

VERIFY YOUR APPLE ID

PayPal

24th February 2015

Your PayPal Account Will Be
Closed ! Please Update Your
Account

Vulnerebility

Mozilla Firefox CVE-2015-0827 Heap Buffer Overflow Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72755

WordPress Photo Gallery Plugin 'wp-admin/admin-ajax.php' SQL Injection Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72015

Microsoft Internet Explorer CVE-2014-6369 Remote Memory Corruption Vulnerability
2015-02-26
http://www.securityfocus.com/bid/71452

Samba 'TALLOC_FREE()' Function Remote Code Execution Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72711

Mozilla Firefox/Thunderbird CVE-2015-0831 Use After Free Denial of Service Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72746

Mozilla Firefox/Thunderbird CVE-2015-0822 Arbitrary File Read Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72756

Mozilla Firefox/Thunderbird CVE-2015-0836 Unspecified Memory Corruption Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72742

RETIRED: RPCBind CVE-2012-3541 Remote Information Disclosure Vulnerability
2015-02-26
http://www.securityfocus.com/bid/68750

grep 'kwset.c' Remote Buffer Overflow Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72281

IOServer CVE-2014-5425 Out-of-Bounds Read Denial of Service Vulnerability
2015-02-26
http://www.securityfocus.com/bid/70639

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72325

Wireshark '.pcap' File Memory Corruption Vulnerability
2015-02-26
http://www.securityfocus.com/bid/46167

PHPKIT WCMS 'include.php' Cross Site Scripting Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72001

Croogo CMS Cross Site Scripting Vulnerability
2015-02-26
http://www.securityfocus.com/bid/71999

Sefrengo CMS 'main.php' Cross Site Scripting and Multiple SQL Injection Vulnerabilities
2015-02-26
http://www.securityfocus.com/bid/71885

Cisco AsyncOS Software CVE-2015-0624 Open Redirection Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72702

Drupal Context Module Open Redirection Vulnerability
2015-02-26
http://www.securityfocus.com/bid/71925

Kajona 'admin.php' Cross Site Scripting Vulnerability
2015-02-26
http://www.securityfocus.com/bid/71886

CreA8social 'Add Game' field HTML Injection Vulnerability
2015-02-26
http://www.securityfocus.com/bid/71966

e2fsprogs 'lib/ext2fs/openfs.c' Local Heap Based Buffer Overflow Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72520

e2fsprogs CVE-2015-1572 Incomplete Fix Local Heap Based Buffer Overflow Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72709

Network Time Protocol CVE-2014-9295 Multiple Stack Based Buffer Overflow Vulnerabilities
2015-02-26
http://www.securityfocus.com/bid/71761

NTP 'ntp_config.c' Insufficient Entropy Security Weakness
2015-02-26
http://www.securityfocus.com/bid/71757

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72584

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72583

NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness
2015-02-26
http://www.securityfocus.com/bid/71762

Network Time Protocol CVE-2014-9296 Unspecified Security Vulnerability
2015-02-26
http://www.securityfocus.com/bid/71758

Cisco Desktop Collaboration Experience DX650 CVE-2015-0584 Command Injection Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72696

Oracle Database Server CVE-2015-0373 Remote Security Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72145

Microsoft Internet Explorer CVE-2015-0035 Remote Memory Corruption Vulnerability
2015-02-26
http://www.securityfocus.com/bid/72447

Exploit

 

25.2.2015

Bugtraq

[SECURITY] [DSA 3169-1] eglibc security update 2015-02-23
Aurelien Jarno (aurel32 debian org)

[SECURITY] [DSA 3168-1] ruby-redcloth security update 2015-02-22
Sebastien Delafond (seb debian org)

CVE-2014-8487: Kony EMM insecurity Direct Object Reference 2015-02-22
michael hendrickx helpag com

[SECURITY] [DSA 3167-1] sudo security update 2015-02-22
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3166-1] e2fsprogs security update 2015-02-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 3165-1] xdg-utils security update 2015-02-22
Michael Gilbert (mgilbert debian org)

Malware

RDN/Generic Downloader.x!mt!A1EB06E12558

RDN/Downloader.gen.a!4D289BA21246

RDN/Downloader.gen.a!3996A43F450A

Generic.bfr!3E093AD84312

Generic.dx!2B110F720C58

RDN/Generic.tfr!ei!6BB2D748BD16

RDN/Downloader.gen.a!6B691EF24F81

RDN/Generic BackDoor!bb3!1388A03040C3

RDN/Downloader.gen.a!51D92143C853

RDN/Downloader.gen.a!4FAAEBFBDDB6

RDN/Generic Downloader.x!B5B7D38EC65C

RDN/Downloader.gen.a!51E5D557C592

RDN/Downloader.gen.a!518E5A2DE8F8

RDN/Downloader.gen.a!50971DB1FCFD

Generic.bfr!193EC9CF4578

W32/Sality.gen!37B24D6FE482

RDN/Downloader.gen.a!031BA981D8BB

RDN/Generic.dx!4C60DEBFDE55

RDN/Generic.dx!380F439A2BDD

RDN/Generic Dropper!wd!F77DD033EEAD

RDN/Downloader.gen.a!6DDE6FAEC82F

GenericR-DAM!83465DB5A767

RDN/Downloader.gen.a!5EFBA7E7E18E

RDN/Downloader.gen.a!5F4A1C61B63C

RDN/Downloader.gen.a!4B347FD38EAD

RDN/Generic.dx!djl!A37382DAE042

RDN/Downloader.gen.a!4E2922DC3BED

Generic.tfr!304E7F9A4793

RDN/Downloader.gen.a!45FB9D6371A6

Generic.dx!45A6CB5637E1

Phishing

Apple Team

24th February 2015

VERIFY YOUR APPLE ID

PayPal

24th February 2015

Your PayPal Account Will Be
Closed ! Please Update Your
Account

AppeID Support

23rd February 2015

Verify Your Apple ID

Daniel Paez

23rd February 2015

Account Notification!!

Vulnerebility

Wireshark '.pcap' File Memory Corruption Vulnerability
2015-02-25
http://www.securityfocus.com/bid/46167

Samba 'TALLOC_FREE()' Function Remote Code Execution Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72711

PHPKIT WCMS 'include.php' Cross Site Scripting Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72001

Croogo CMS Cross Site Scripting Vulnerability
2015-02-25
http://www.securityfocus.com/bid/71999

Sefrengo CMS 'main.php' Cross Site Scripting and Multiple SQL Injection Vulnerabilities
2015-02-25
http://www.securityfocus.com/bid/71885

Cisco AsyncOS Software CVE-2015-0624 Open Redirection Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72702

Drupal Context Module Open Redirection Vulnerability
2015-02-25
http://www.securityfocus.com/bid/71925

Kajona 'admin.php' Cross Site Scripting Vulnerability
2015-02-25
http://www.securityfocus.com/bid/71886

CreA8social 'Add Game' field HTML Injection Vulnerability
2015-02-25
http://www.securityfocus.com/bid/71966

e2fsprogs 'lib/ext2fs/openfs.c' Local Heap Based Buffer Overflow Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72520

e2fsprogs CVE-2015-1572 Incomplete Fix Local Heap Based Buffer Overflow Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72709

Network Time Protocol CVE-2014-9295 Multiple Stack Based Buffer Overflow Vulnerabilities
2015-02-25
http://www.securityfocus.com/bid/71761

NTP 'ntp_config.c' Insufficient Entropy Security Weakness
2015-02-25
http://www.securityfocus.com/bid/71757

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72584

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72583

NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness
2015-02-25
http://www.securityfocus.com/bid/71762

Network Time Protocol CVE-2014-9296 Unspecified Security Vulnerability
2015-02-25
http://www.securityfocus.com/bid/71758

Cisco Desktop Collaboration Experience DX650 CVE-2015-0584 Command Injection Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72696

Oracle Database Server CVE-2015-0373 Remote Security Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72145

Microsoft Internet Explorer CVE-2015-0035 Remote Memory Corruption Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72447

glibc CVE-2015-1473 Unspecified Security Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72499

GNU glibc 'getaddrinfo.c' Remote Code Execution Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72710

GNU glibc 'getanswer_r()' Function Infinite Loop Denial of Service Vulnerability
2015-02-25
http://www.securityfocus.com/bid/71670

GNU glibc 'swscanf' Local Heap Buffer Overflow Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72428

GNU glibc 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability
2015-02-25
http://www.securityfocus.com/bid/68006

GNU glibc Formatted Printing Functionality Multiple Security Vulnerabilities
2015-02-25
http://www.securityfocus.com/bid/54374

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-02-25
http://www.securityfocus.com/bid/70574

Todd Miller Sudo CVE-2014-9680 Local Security Bypass Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72649

xdg-utils 'xdg-open' CVE-2015-1877 Remote Command Injection Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72675

Cisco Hosted Collaboration Solution CVE-2015-0626 Information Disclosure Vulnerability
2015-02-25
http://www.securityfocus.com/bid/72666

Exploit

HP Client Automation Command Injection

24.2.2015

Bugtraq

[SECURITY] [DSA 3169-1] eglibc security update 2015-02-23
Aurelien Jarno (aurel32 debian org)

[SECURITY] [DSA 3168-1] ruby-redcloth security update 2015-02-22
Sebastien Delafond (seb debian org)

CVE-2014-8487: Kony EMM insecurity Direct Object Reference 2015-02-22
michael hendrickx helpag com

[SECURITY] [DSA 3167-1] sudo security update 2015-02-22
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3166-1] e2fsprogs security update 2015-02-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 3165-1] xdg-utils security update 2015-02-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 3171-1] samba security update 2015-02-23
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3164-1] typo3-src security update 2015-02-21
Moritz Muehlenhoff (jmm debian org)

Malware

RDN/Generic PWS.y!bct!23B47C46A0FF

RDN/Generic BackDoor!7A67E3986342

W32/Nabucur!82A06F7CE023

RDN/Generic PWS.y!bct!8F8333ABA99C

RDN/Generic.bfr!ic!86022D6615B1

RDN/Generic.tfr!ei!572B20E1C2DD

RDN/Generic Downloader.x!ms!ADE709B3A8E4

RDN/Generic BackDoor!9EF080A50A42

RDN/Generic PWS.y!bct!65598F56A633

RDN/Generic BackDoor!bbs!00AB15DA7E1F

RDN/Generic.dx!djk!A6BD6E0F1E20

Generic.bfr!B6B12D427296

RDN/Generic.dx!djk!00542E465F70

RDN/Generic Downloader.x!ms!006958E9507D

Generic PUP.z!C9469E0932BC

RDN/Generic.dx!djk!0071BE0F2EA1

Generic.bfr!B53D1E4C2C12

RDN/Generic Downloader.x!ms!001AF8671137

Generic.bfr!0606718B719F

Generic.bfr!A199BA80C2D0

RDN/Generic.dx!djk!7666C239638F

RDN/Generic PUP.z!70847FF10C68

RDN/Generic.bfr!C301BE4517A6

Generic PUP.z!F8BE0AC8530D

Generic BackDoor!985306BD6598

Generic PUP.z!5368C10B75C2

W32/Nabucur!822542E984B0

RDN/Generic BackDoor!40931031274F

RDN/Generic BackDoor!bbk!4AEAB9A14588

RDN/Spybot.bfr!746832399280

Phishing

PayPal

24th February 2015

Your PayPal Account Will Be
Closed ! Please Update Your
Account

AppeID Support

23rd February 2015

Verify Your Apple ID

Daniel Paez

23rd February 2015

Account Notification!!

Vulnerebility

Network Time Protocol CVE-2014-9295 Multiple Stack Based Buffer Overflow Vulnerabilities
2015-02-24
http://www.securityfocus.com/bid/71761

NTP 'ntp_config.c' Insufficient Entropy Security Weakness
2015-02-24
http://www.securityfocus.com/bid/71757

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72584

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72583

NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness
2015-02-24
http://www.securityfocus.com/bid/71762

Network Time Protocol CVE-2014-9296 Unspecified Security Vulnerability
2015-02-24
http://www.securityfocus.com/bid/71758

Cisco Desktop Collaboration Experience DX650 CVE-2015-0584 Command Injection Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72696

Oracle Database Server CVE-2015-0373 Remote Security Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72145

Microsoft Internet Explorer CVE-2015-0035 Remote Memory Corruption Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72447

Samba 'TALLOC_FREE()' Funtion Remote Code Execution Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72711

glibc CVE-2015-1473 Unspecified Security Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72499

GNU glibc 'getaddrinfo.c' Remote Code Execution Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72710

GNU glibc 'getanswer_r()' Function Infinite Loop Denial of Service Vulnerability
2015-02-24
http://www.securityfocus.com/bid/71670

GNU glibc 'swscanf' Local Heap Buffer Overflow Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72428

GNU glibc 'xc_cpupool_getinfo()' Function Use After Free Memory Corruption Vulnerability
2015-02-24
http://www.securityfocus.com/bid/68006

GNU glibc Formatted Printing Functionality Multiple Security Vulnerabilities
2015-02-24
http://www.securityfocus.com/bid/54374

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
2015-02-24
http://www.securityfocus.com/bid/70574

Todd Miller Sudo CVE-2014-9680 Local Security Bypass Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72649

e2fsprogs 'lib/ext2fs/openfs.c' Local Heap Based Buffer Overflow Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72520

xdg-utils 'xdg-open' CVE-2015-1877 Remote Command Injection Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72675

Cisco Hosted Collaboration Solution CVE-2015-0626 Information Disclosure Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72666

Persistent Systems Radia Client Automation CVE-2015-1498 Remote Privilege Escalation Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72613

Multiple Schneider Electric Products CVE-2014-9200 Stack Based Buffer Overflow Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72335

Cisco Web Security Appliance CVE-2015-0623 Cross Site Scripting Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72663

Cisco Unified Communications Manager CVE-2014-8008 File Disclosure Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72263

Adobe Flash Player Multiple Unspecified Security Vulnerabilities
2015-02-24
http://www.securityfocus.com/bid/72514

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72325

Mozilla Network Security Services CVE-2014-1569 Security Bypass Vulnerability
2015-02-24
http://www.securityfocus.com/bid/71675

Microsoft Internet Explorer CVE-2015-0046 Remote Memory Corruption Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72416

Microsoft Internet Explorer CVE-2015-0043 Remote Memory Corruption Vulnerability
2015-02-24
http://www.securityfocus.com/bid/72413

Exploit

  WeBid 1.1.1 Unrestricted File Upload Exploit

  Clipbucket 2.7 RC3 0.9 - Blind SQL Injection

  Zabbix 2.0.5 - Cleartext ldap_bind_password Password Disclosure (MSF)

  Zeuscart v.4 - Multiple Vulnerabilities

  phpBugTracker 1.6.0 - Multiple Vulnerabilities

  WordPress Easy Social Icons Plugin 1.2.2 - CSRF Vulnerability

  PHP DateTime Use After Free Vulnerability

23.2.2015

Bugtraq

iTunes 12.1.1 for Windows: still outdated and VULNERABLE 3rd party libraries, still UNQUOTED and VULNERABLE pathnames C:\Program Files\... 2015-02-19
Stefan Kanthak (stefan kanthak nexgo de)

Defense in depth -- the Microsoft way (part 28): yes, we can (create even empty, but properly quoted pathnames) 2015-02-19
Stefan Kanthak (stefan kanthak nexgo de)

[SECURITY] [DSA 3163-1] libreoffice security update 2015-02-19
Alessandro Ghedini (ghedo debian org)

Malware

W32/Nabucur!FD0A5300782D

Generic.bfr!C883EEC3831C

RDN/Generic Dropper!DDEF940D1C24

RDN/Generic.bfr!ic!F856C2392213

RDN/Generic.tfr!ei!619A673BFADE

Generic Downloader.x!1726C3C24D5B

Generic.bfr!AA26B5366EBC

Generic.bfr!D9478C899259

Generic.bfr!080AD7EA055F

RDN/Generic Downloader.bfr!4D600F4637D9

RDN/Generic PUP.x!FC9265D268D2

RDN/Generic Dropper!0BFD505E7330

RDN/Generic.bfr!A5F8CFB9ACC3

RDN/Generic.dx!05D6F6B7C44E

Generic.dx!6267083D71F2

Generic.bfr!EC597019C9D3

Generic.bfr!EB62AEDC43EE

Generic.bfr!BB1134E71CE2

Generic.bfr!D874E401DA49

RDN/Generic.dx!7323DCABA891

W32/Nabucur!BE65C017F802

RDN/Generic PUP.x!BD5C35234657

Generic.bfr!E0DA23D8A3A5

RDN/Downloader.a!uo!6435998D37B7

RDN/Generic BackDoor!C8A687CD3B2D

Generic.bfr!E3469AA9FAF8

Generic.bfr!07A826E33C9D

Generic.dx!FDA67CEDBF74

Generic.bfr!CFEEB5875C54

Generic.bfr!E1ED4A23684A

Phishing

Virgin Media

22nd February 2015

An update from Virgin Media

Vulnerebility

Cisco Hosted Collaboration Solution CVE-2015-0626 Information Disclosure Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72666

Persistent Systems Radia Client Automation CVE-2015-1498 Remote Privilege Escalation Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72613

Multiple Schneider Electric Products CVE-2014-9200 Stack Based Buffer Overflow Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72335

Cisco Web Security Appliance CVE-2015-0623 Cross Site Scripting Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72663

Cisco Unified Communications Manager CVE-2014-8008 File Disclosure Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72263

Adobe Flash Player Multiple Unspecified Security Vulnerabilities
2015-02-23
http://www.securityfocus.com/bid/72514

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72325

Mozilla Network Security Services CVE-2014-1569 Security Bypass Vulnerability
2015-02-23
http://www.securityfocus.com/bid/71675

Microsoft Internet Explorer CVE-2015-0046 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72416

Microsoft Internet Explorer CVE-2015-0043 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72413

Microsoft Internet Explorer CVE-2015-0042 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72412

Microsoft Internet Explorer CVE-2015-0045 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72415

Microsoft Internet Explorer CVE-2015-0044 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72414

Microsoft Internet Explorer CVE-2015-0041 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72411

Microsoft Internet Explorer CVE-2015-0040 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72410

Microsoft Internet Explorer CVE-2015-0038 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72404

Microsoft Internet Explorer CVE-2015-0037 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72448

Microsoft Internet Explorer CVE-2015-0036 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72446

Multiple VMware Products CVE-2015-1044 Denial Of Service Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72336

Microsoft Windows Kernel 'Win32k.sys' CVE-2015-0058 Local Privilege Escalation Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72468

Microsoft Internet Explorer CVE-2015-0053 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72421

Cisco Wireless LAN Controller CVE-2015-0622 Denial of Service Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72665

Microsoft Internet Explorer CVE-2015-0031 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72445

Microsoft Internet Explorer CVE-2015-0027 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72441

Microsoft Internet Explorer CVE-2015-0025 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72439

Microsoft Internet Explorer CVE-2015-0017 Remote Memory Corruption Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72402

Microsoft Windows Kernel 'Win32k.sys' CVE-2015-0003 Local Privilege Escalation Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72457

Adobe Flash Player CVE-2015-0311 Unspecified Security Vulnerability
2015-02-23
http://www.securityfocus.com/bid/72283

Microsoft Virtual PC Hypervisor Virtual Machine Monitor Security Bypass Vulnerability
2015-02-23
http://www.securityfocus.com/bid/38764

xdg-utils 'xdg-open' Remote Command Injection Vulnerability
2015-02-23
http://www.securityfocus.com/bid/71284

Exploit

 

22.2.2015

Bugtraq

iTunes 12.1.1 for Windows: still outdated and VULNERABLE 3rd party libraries, still UNQUOTED and VULNERABLE pathnames C:\Program Files\... 2015-02-19
Stefan Kanthak (stefan kanthak nexgo de)

Defense in depth -- the Microsoft way (part 28): yes, we can (create even empty, but properly quoted pathnames) 2015-02-19
Stefan Kanthak (stefan kanthak nexgo de)

[SECURITY] [DSA 3163-1] libreoffice security update 2015-02-19
Alessandro Ghedini (ghedo debian org)

[SECURITY] [DSA 3162-1] bind9 security update 2015-02-18
Florian Weimer (fw deneb enyo de)

PHP Code Execution in jui_filter_rules Parsing Library 2015-02-18
Timo Schmid (tschmid ernw de)

Malware

Phishing

RXX_VIAGRA

22nd February 2015

Save 30%

PayPal

22nd February 2015

[ PayPal ] : View your recent
activity . #PP =
69901296200527096

PayPal Inc Service

21st February 2015

IMPORTANT NOTICE

Pvsatyanarayana Raju

21st February 2015

LLOYDS TSB BANK PLC.

First Online

21st February 2015

Login Alert

service@paypal

20th February 2015

CP A Y P A L : ACCOUNT
SUSPENDED

PayPaI Service

20th February 2015

DEAR COSTUMER : PLEASE CHECK
YOUR ACCOUNT

PayPal

20th February 2015

[ PayPal ] : 39View your
recent activity . œ #PP
896482440

PayPal

20th February 2015

[ PayPal ] : 36View your
recent activity . œ #PP
15935677467159348

Apple

20th February 2015

[SUSPICIOUS MESSAGE] Please
verify your Apple ID
20/02/2015 12:38:14

PayPal

20th February 2015

Reminder: Your account will be
limted until we hear from you

Vulnerebility

Cisco Hosted Collaboration Solution CVE-2015-0626 Information Disclosure Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72666

Persistent Systems Radia Client Automation CVE-2015-1498 Remote Privilege Escalation Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72613

Multiple Schneider Electric Products CVE-2014-9200 Stack Based Buffer Overflow Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72335

Cisco Web Security Appliance CVE-2015-0623 Cross Site Scripting Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72663

Cisco Unified Communications Manager CVE-2014-8008 File Disclosure Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72263

Adobe Flash Player Multiple Unspecified Security Vulnerabilities
2015-02-22
http://www.securityfocus.com/bid/72514

GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72325

Mozilla Network Security Services CVE-2014-1569 Security Bypass Vulnerability
2015-02-22
http://www.securityfocus.com/bid/71675

Microsoft Internet Explorer CVE-2015-0046 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72416

Microsoft Internet Explorer CVE-2015-0043 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72413

Microsoft Internet Explorer CVE-2015-0042 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72412

Microsoft Internet Explorer CVE-2015-0045 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72415

Microsoft Internet Explorer CVE-2015-0044 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72414

Microsoft Internet Explorer CVE-2015-0041 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72411

Microsoft Internet Explorer CVE-2015-0040 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72410

Microsoft Internet Explorer CVE-2015-0038 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72404

Microsoft Internet Explorer CVE-2015-0037 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72448

Microsoft Internet Explorer CVE-2015-0036 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72446

Multiple VMware Products CVE-2015-1044 Denial Of Service Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72336

Microsoft Windows Kernel 'Win32k.sys' CVE-2015-0058 Local Privilege Escalation Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72468

Microsoft Internet Explorer CVE-2015-0053 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72421

Cisco Wireless LAN Controller CVE-2015-0622 Denial of Service Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72665

Microsoft Internet Explorer CVE-2015-0031 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72445

Microsoft Internet Explorer CVE-2015-0027 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72441

Microsoft Internet Explorer CVE-2015-0025 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72439

Microsoft Internet Explorer CVE-2015-0017 Remote Memory Corruption Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72402

Microsoft Windows Kernel 'Win32k.sys' CVE-2015-0003 Local Privilege Escalation Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72457

Adobe Flash Player CVE-2015-0311 Unspecified Security Vulnerability
2015-02-22
http://www.securityfocus.com/bid/72283

Microsoft Virtual PC Hypervisor Virtual Machine Monitor Security Bypass Vulnerability
2015-02-22
http://www.securityfocus.com/bid/38764

xdg-utils 'xdg-open' Remote Command Injection Vulnerability
2015-02-22
http://www.securityfocus.com/bid/71284

Exploit

 

19.2.2015

Bugtraq

PHP Code Execution in jui_filter_rules Parsing Library 2015-02-18
Timo Schmid (tschmid ernw de)

[CVE-2015-1517] Piwigo - SQL Injection in Version 2.7.3 2015-02-18
sven bsddaemon org

[RT-SA-2014-016] Directory Traversal and Arbitrary File Disclosure in hybris Commerce Software Suite 2015-02-18
RedTeam Pentesting GmbH (release redteam-pentesting de)

Crushftp 7.2.0 - Multiple CSRF & XSS Vulnerabilitiesþ 2015-02-17
Rehan Ahmed (knight_rehan hotmail com)

Malware

RDN/Generic.dx!djf!593D91D70983

RDN/Generic.dx!djf!EF9E818ADF54

Generic.bfr!200B84809135

Generic PUP.z!E8F0A6126272

Generic PUP.z!B94221B67251

RDN/Generic.tfr!41A3490AE7FA

Generic PUP.x!00DE2BA47CAD

RDN/Generic Downloader.x!mr!4B928E0F961B

RDN/Generic PUP.z!fc!3509A1A98309

RDN/Generic Downloader.x!mr!4A67720CAB96

RDN/Generic.dx!3449D60DBB8D

Generic Downloader.x!1E7DE45A54C2

RDN/Generic.dx!2276A6EE5296

Generic PUP.z!B27B3E6740A2

RDN/Generic PUP.z!fc!0F64E56F768D

RDN/Generic PUP.z!fc!D7D856F3B930

Generic PUP.z!DFB9DCB9BD6B

Generic Downloader.x!D6BEA77C1868

Generic.dx!06EEFBD1DAFB

RDN/Generic BackDoor!bbr!DDC86D6259BF

RDN/Spybot.bfr!D2EC7DD2981A

RDN/Generic Dropper!wc!9D9CCDDC3B05

Generic PUP.x!AD99F29BF3DA

Generic PUP.z!45A2ABC5485A

Generic.dx!43FBE27F15CF

Generic.tfr!CBBF86C4038D

Generic PUP.z!84D36C4F703E

Generic.grp!1C1139948DF1

Generic PUP.x!CD5109DB400A

RDN/Generic PUP.z!CD5C1A0114B7

Phishing

 

Vulnerebility

GNU patch Directory Traversal Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72074

Fortinet FortiAuthenticator Appliance Multiple Security Vulnerabilities
2015-02-19
http://www.securityfocus.com/bid/72378

ClamAV 'libclamav/petite.c' Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72641

ClamAV CVE-2014-9328 Multiple Heap Buffer Overflow Vulnerabilities
2015-02-19
http://www.securityfocus.com/bid/72372

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/67898

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2015-02-19
http://www.securityfocus.com/bid/66801

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/67193

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2015-02-19
http://www.securityfocus.com/bid/67899

PHP CVE-2015-0231 Incomplete Fix Use After Free Remote Code Execution Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72539

PHP 'exif_process_unicode()' Function Remote Code Execution Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72541

PHP 'cgi_main.c' Out of Bounds Read Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/71833

PHP libmagick 'src/softmagic.c' Out-of-Bounds Read Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72505

PHP 'process_nested_data()' Function Use After Free Remote Code Execution Vulnerability
2015-02-19
http://www.securityfocus.com/bid/71791

PHP '/ext/opcache/zend_shared_alloc.c' Use After Free Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/71929

Cisco Adaptive Security Appliance (ASA) Software CVE-2014-8023 Remote Security Bypass Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72618

Siemens SIMATIC STEP 7 CVE-2015-1356 Security Bypass Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72627

Siemens SIMATIC STEP 7 TIA Portal CVE-2015-1355 Information Disclosure Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72624

PHP '/ext/pgsql/pgsql.c' Null Pointer Deference Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/71932

Siemens SIMATIC WinCC TIA Portal Man in the Middle Information Disclosure Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72625

Siemens SIMATIC WinCC and PCS7 CVE-2014-4686 Privilege Escalation Vulnerability
2015-02-19
http://www.securityfocus.com/bid/68875

X.Org X Server 'xkb/xkb.c' Information Disclosure Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72578

X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability
2015-02-19
http://www.securityfocus.com/bid/64127

NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness
2015-02-19
http://www.securityfocus.com/bid/71762

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72584

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-02-19
http://www.securityfocus.com/bid/72583

NTP 'ntp_config.c' Insufficient Entropy Security Weakness
2015-02-19
http://www.securityfocus.com/bid/71757

Moodle CVE-2015-0212 Cross Site Scripting Vulnerability
2015-02-18
http://www.securityfocus.com/bid/72662

InstantASP InstantForum.NET CVE-2014-9468 Multiple Cross Site Scripting Vulnerabilities
2015-02-18
http://www.securityfocus.com/bid/72660

ClamAV CVE-2015-1461 Out of Bounds Multiple Memory Corruption Vulnerabilities
2015-02-18
http://www.securityfocus.com/bid/72654

FLAC libFLAC 'encoder.c' Unspecified Security Vulnerability
2015-02-18
http://www.securityfocus.com/bid/72650

Exploit

 

18.2.2015

Bugtraq

NetGear WNDR Authentication Bypass / Information Disclosure 2015-02-17
Peter Adkins (peter adkins kernelpicnic net)

Ebay Inc Magento Bug Bounty #5 - Persistent Validation & Mail Encoding Web Vulnerability 2015-02-17
Vulnerability Lab (research vulnerability-lab com)

CVE-2015-1614 csrf/xss in in wordpress Plugin Image Metadata cruncher 2015-02-17
kingkaustubh me com

[slackware-security] sudo (SSA:2015-047-03) 2015-02-16
Slackware Security Team (security slackware com)

[slackware-security] patch (SSA:2015-047-01) 2015-02-16
Slackware Security Team (security slackware com)

[slackware-security] seamonkey (SSA:2015-047-02) 2015-02-16
Slackware Security Team (security slackware com)

Reflected File Download in AOL Search Website 2015-02-16
Ricardo Iramar dos Santos (riramar gmail com) (1 replies)

Malware

Generic PUP.z!C29AE8EB56F2

RDN/Generic Dropper!wc!8C2FAE708392

RDN/Generic BackDoor!bbr!8FF602F4CE68

RDN/Generic.dx!djf!9D4149CAD8E5

W32/Nabucur!7738F75816CC

RDN/Generic PUP.z!034E7ED7020A

Generic.bfr!52394B4514BD

Downloader-FSH!3BBFA0A910A7

RDN/Generic.bfr!ic!042D515141E2

Generic.bfr!20EBAE286C06

RDN/Generic.dx!djf!FDE7BDE7B04D

RDN/Spybot.bfr!205842EFEB7B

Generic BackDoor!627CB67F126D

Generic.dx!1E23B8D32CE2

Downloader.gen.a!1A3AEABD19B8

RDN/Generic.tfr!497531700FB7

Generic PUP.z!B9D958C7DD4C

Generic.bfr!1EFE872D0991

RDN/Downloader.gen.a!6D9121989853

RDN/Generic.dx!EEA4D30599B7

Generic.bfr!032C04E9E284

RDN/Spybot.bfr!p!3200F8126047

RDN/Generic.grp!39FE3510BDD4

RDN/Generic.tfr!2042030924D6

RDN/Generic PUP.z!fc!7CFE40E19108

RDN/Generic.hra!ce!3DEEED3B0108

Generic.tfr!C654A8719DC3

GenericR-CZG!8BC197C4F35C

RDN/Generic PUP.z!6A9EF519BB05

RDN/Generic.bfr!00153955E305

Phishing

Customer Service.Amazon

16th February 2015

Verification-Amazon:Ticket
Number
PA8-9UP-P84-398SD2-5RD91X099P.

Barclays Online

16th February 2015

ACCOUNT SECURITY ALERT.

Chase Bank

16th February 2015

[ CHASE BANK ] Important
Notification

PayPal

16th February 2015

[PayPal]:You Account Has Been
Limited !!

PayPal

16th February 2015

IMPORTANT MESSAGE FROM
PAYPAL-TEAM.

Vulnerebility

X.Org X Server 'xkb/xkb.c' Information Disclosure Vulnerability
2015-02-18
http://www.securityfocus.com/bid/72578

X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability
2015-02-18
http://www.securityfocus.com/bid/64127

Siemens SIMATIC WinCC and PCS7 CVE-2014-4686 Privilege Escalation Vulnerability
2015-02-18
http://www.securityfocus.com/bid/68875

NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness
2015-02-18
http://www.securityfocus.com/bid/71762

NTP 'ntp_io.c' Authentication Security Bypass Vulnerability
2015-02-18
http://www.securityfocus.com/bid/72584

NTP 'ntp_crypto.c' Information Disclosure Vulnerability
2015-02-18
http://www.securityfocus.com/bid/72583

NTP 'ntp_config.c' Insufficient Entropy Security Weakness
2015-02-18
http://www.securityfocus.com/bid/71757

Cpio Symlink Directory Traversal Vulnerability
2015-02-17
http://www.securityfocus.com/bid/71914

Linux Kernel cpio 'list_file()' Function Heap Based Buffer Overflow Vulnerability
2015-02-17
http://www.securityfocus.com/bid/71248

Oracle Java SE CVE-2014-0449 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66907

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-4218 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/68583

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66881

Oracle Java SE CVE-2014-0457 Remote Code Execution Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66866

Oracle Java SE CVE-2014-6531 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70572

Oracle Java SE CVE-2014-6519 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70570

Oracle Java SE CVE-2014-6513 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70569

Oracle Java SE CVE-2014-6512 IP Address Spoofing Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70567

Oracle Java SE CVE-2014-6515 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70565

Oracle Java SE CVE-2014-6504 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70564

Oracle Java SE CVE-2014-6527 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70560

Oracle Java SE CVE-2014-6506 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70556

Oracle Java SE CVE-2014-6511 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70548

Oracle Java SE CVE-2014-6517 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70552

Oracle Java SE CVE-2014-6558 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70544

Oracle Java SE CVE-2014-6502 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70533

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70538

Oracle Java SE CVE-2014-6476 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70531

Exploit

  X360 VideoPlayer ActiveX Control Buffer Overflow

  Java JMX Server Insecure Configuration Java Code Execution

  Guppy CMS 5.0.9 & 5.00.10 Authentication Bypass/Change Email

  GuppY CMS 5.0.9 & 5.00.10 Multiple CSRF Vulnerabilities

17.2.2015

Bugtraq

Reflected File Download in AOL Search Website 2015-02-16
Ricardo Iramar dos Santos (riramar gmail com) (1 replies)

Re: Reflected File Download in AOL Search Website 2015-02-16
Mike Antcliffe (mikeantcliffe logicallysecure com)

Multiple Cross site scripting in wordpress Plugin Image Metadata cruncher 2015-02-15
kingkaustubh me com

Cosmoshop - XSS on Admin-Login Mask 2015-02-14
innate gmx de

[CVE-2015-1585] Fat Free CRM - CSRF Vulnerability in Version 0.13.5 2015-02-14
sven bsddaemon org

CVE-2015-1593 - Linux ASLR integer overflow: Reducing stack entropy by four 2015-02-14
Hector Marco (hecmargi upv es)

CVE-2015-1600 - Netatmo Weather Station Cleartext Password Leak 2015-02-13
jullrich sans edu

UNIT4 Prosoft HRMS XSS Vulnerability 2015-02-13
jerold v00d00sec com

[security bulletin] HPSBGN03258 rev.1 - HP Insight Control server deployment Windows Pre-boot Execution Environment, Microsoft Schannel (Winshock) Remote Code Execution 2015-02-13
security-alert hp com

Malware

RDN/Generic.dx!3E341076E464

Generic.tfr!4CB617EB1566

RDN/Generic.bfr!ic!E73DC74F1535

RDN/Generic BackDoor!bbr!C8AA35AD149F

Generic PUP.x!3A88AE4B6F1E

Generic Downloader.x!A8F0F1BCBC06

Generic PUP.z!8BDD6503D1C4

Generic PUP.z!8B17A24F05B0

Generic.grp!8B00F6BBB60E

Generic.dx!6FBBFDA98466

RDN/Generic PWS.y!E5FB0B1F0FAC

RDN/Generic.dx!E614E42DBD43

RDN/Generic Downloader.x!4ADDC8DE73DE

4shared!7FCBB00E3590

RDN/Generic Dropper!wc!E4A3C7D614A4

RDN/Generic.tfr!ei!3975B00C3B35

Generic Downloader.x!39A9182DDB11

4shared!D0948D6919DD

Generic PUP.z!8A5627477584

4shared!74A37CF83F82

RDN/Generic Dropper!wc!E5A37F87EAE8

Generic PUP.x!8D91BF01B5D9

RDN/Generic Downloader.x!mr!0ECF7FB6409F

RDN/Generic PWS.y!bcr!E34453E576F3

RDN/Generic PWS.y!E41C09AAF3AF

RDN/Generic PWS.y!E37CCF377091

RDN/Generic Malware.jb!c!59DB7B3C21B2

Generic PUP.z!8945C6981CD3

Generic PUP.z!88DC5000E5BB

RDN/Generic.bfr!E3295DF5E207

Phishing

Customer Service.Amazon

16th February 2015

Verification-Amazon:Ticket
Number
PA8-9UP-P84-398SD2-5RD91X099P.

Barclays Online

16th February 2015

ACCOUNT SECURITY ALERT.

Chase Bank

16th February 2015

[ CHASE BANK ] Important
Notification

PayPal

16th February 2015

[PayPal]:You Account Has Been
Limited !!

PayPal

16th February 2015

IMPORTANT MESSAGE FROM
PAYPAL-TEAM.

Tesco Bank

15th February 2015

PLEASE CONFIRM YOUR ONLINE
BANKING ACCOUNT
 

Vulnerebility

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-4218 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/68583

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66881

Oracle Java SE CVE-2014-0457 Remote Code Execution Vulnerability
2015-02-17
http://www.securityfocus.com/bid/66866

Oracle Java SE CVE-2014-6531 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70572

Oracle Java SE CVE-2014-6519 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70570

Oracle Java SE CVE-2014-6513 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70569

Oracle Java SE CVE-2014-6512 IP Address Spoofing Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70567

Oracle Java SE CVE-2014-6515 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70565

Oracle Java SE CVE-2014-6504 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70564

Oracle Java SE CVE-2014-6527 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70560

Oracle Java SE CVE-2014-6506 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70556

Oracle Java SE CVE-2014-6511 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70548

Oracle Java SE CVE-2014-6517 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70552

Oracle Java SE CVE-2014-6558 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70544

Oracle Java SE CVE-2014-6502 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70533

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70538

Oracle Java SE CVE-2014-6476 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70531

Oracle Java SE CVE-2014-6562 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70523

Oracle Java SE CVE-2014-6456 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70522

Oracle Java SE CVE-2014-6485 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70519

Oracle Java SE CVE-2014-6532 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70507

Oracle Java SE CVE-2014-6503 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70518

Oracle Java SE CVE-2014-6468 Local Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70488

Oracle Java SE CVE-2014-6466 Local Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70484

Oracle Java SE CVE-2014-4288 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70470

Oracle Java SE CVE-2014-6493 Remote Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70468

Oracle Java SE CVE-2014-6458 Local Security Vulnerability
2015-02-17
http://www.securityfocus.com/bid/70460

Exploit

eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities

16.2.2015

Bugtraq

UNIT4 Prosoft HRMS XSS Vulnerability 2015-02-13
jerold v00d00sec com

[security bulletin] HPSBGN03258 rev.1 - HP Insight Control server deployment Windows Pre-boot Execution Environment, Microsoft Schannel (Winshock) Remote Code Execution 2015-02-13
security-alert hp com

CVE-2015-1574 - Google Email App 4.2.2 remote denial of service 2015-02-13
Hector Marco (hecmargi upv es)

Malware

W32/Nabucur!FE3B8E2429A5

RDN/Generic PUP.z!CD2A27BA3335

W32/Nabucur!AB261E1FF731

RDN/Spybot.bfr!p!7456266404ED

RDN/Generic BackDoor!4F3454D621E2

GenericR-CYY!D5CF39E97A22

RDN/Generic.dx!djf!036825D51B88

RDN/Generic.tfr!ei!037A5BBFD289

RDN/Generic.dx!djf!74D9ACEB45AC

RDN/Generic BackDoor!bbr!FB30C90F4A32

W32/Nabucur!D402DFB53514

RDN/DNSChanger.bfr!f!1C0649EF0A43

RDN/Generic PWS.y!965091106961

Downloader.gen.a!80D48BCEA30B

Generic Downloader.x!7E5A7D349451

RDN/Generic BackDoor!AB7086BDE935

RDN/Downloader.a!uo!F9C8DF52B261

RDN/Generic.tfr!9B55D1D14EDE

Generic BackDoor!CB24BA5414CD

RDN/FakeAV-M.bfr!i!A328729FFD12

W32/Nabucur!AE618BF80BED

RDN/Generic.dx!djf!98B59D41374C