Databáze Hot News - Rok - Úvod  2018  2017  2016  2015  2014  2013  - 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  List  - 2018  2017  2016  2015  2014  2013 
Poslední aktualizace v 08.10.2016 14:19:38

1.7.2014

Bugtraq

ESA-2014-060: EMC Documentum eRoom Multiple Cross-Site Scripting Vulnerabilities 2014-06-30
Security Alert (Security_Alert emc com)

APPLE-SA-2014-06-30-4 Apple TV 6.1.2 2014-06-30
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2014-06-30-3 iOS 7.1.2 2014-06-30
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBST03000 rev.4 - HP StoreEver ESL G3 Tape Library and Enterprise Library LTO-6 Tape Drives running OpenSSL, Remote Disclosure of Information 2014-06-30
security-alert hp com

APPLE-SA-2014-06-30-2 OS X Mavericks 10.9.4 and Security Update 2014-003 2014-06-30
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2014-06-30-1 Safari 6.1.5 and Safari 7.0.5 2014-06-30
Apple Product Security (product-security-noreply lists apple com)

SEC Consult SA-20140630-0 :: Multiple vulnerabilities in IBM Algorithmics RICOS 2014-06-30
SEC Consult Vulnerability Lab (research sec-consult com)

ESA-2014-046: EMC Documentum Content Server Multiple Vulnerabilities 2014-06-30
Security Alert (Security_Alert emc com)

ESA-2014-055: EMC Network Configuration Manager (NCM) Session Fixation Vulnerability 2014-06-30
Security Alert (Security_Alert emc com)

[SECURITY] [DSA 2970-1] cacti security update 2014-06-29
Moritz Muehlenhoff (jmm debian org)

Malware

Generic PUP.x!93DB3237A4D1

Generic PUP.x!93E10B991CFA

Generic PUP.x!951E0B7659D1

Generic PUP.x!8B5C18C5E644

Generic PUP.x!D6930E4AFEBD

Generic PUP.x!9479C88D1A67

Generic PUP.x!94BD0030A0DB

Generic PUP.x!9512BE780657

Generic PUP.x!95E8625E8A02

Generic PUP.x!95D86D1D1336

VTFlooder!C5F06FED1331

RDN/Generic PUP.x!chq!C4B9B0C203AE

RDN/Generic.bfr!hk!F0BC4B9DCB30

CryptDomaIQ!C4BB069D06D2

Generic PUP.x!957C671F593C

Generic PUP.x!74BEF60535CB

RDN/Generic.dx!C066F1153E2A

Generic PUP.x!93A9E519B758

RDN/Generic PUP.x!chq!EE50B8ED8B7B

RDN/Generic PUP.x!chq!B198F82FFAA1

Generic PUP.x!8FC1ECEFE4F0

Generic PUP.x!C4AAC334568E

RDN/Generic PUP.x!chq!A086B86A9A1A

Generic PUP.x!A0B28B4F669C

RDN/Generic BackDoor!yx!71E31325F7C8

Generic PUP.x!955A7DE45E55

Generic PUP.x!6A55F77A7C51

Downloader.gen.a!D97BF6A09159

CryptInno!C4AA33CA967E

Generic.bfr!93B2DBA6AFA0

Phishing

NATWEST

1st July 2014

Verification of Account

Natwest

1st July 2014

NatWest YourPoints Online

Halifax

30th June 2014

DEAR HALIFAX MEMBER,

Amazon Security Team

30th June 2014

UPDATE MISSING INFORMATION

Apple

30th June 2014

NOTIFICATION OF EXPIRATION OF
YOUR ACCOUNT.

Vulnerebility

GnuPG 'compress.c' Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/68156

kdelibs CVE-2014-3494 SSL Certificate Validation Security Bypass Vulnerability
2014-07-01
http://www.securityfocus.com/bid/68113

kdelibs CVE-2013-2074 Local Password Disclosure Vulnerability
2014-07-01
http://www.securityfocus.com/bid/59808

KDE KSSL Common Name SSL Certificate Spoofing Vulnerability
2014-07-01
http://www.securityfocus.com/bid/49925

OpenLDAP 'modrdn' Request Multiple Vulnerabilities
2014-07-01
http://www.securityfocus.com/bid/41770

KDE kdelibs IP Address SSL Certificate Security Bypass Vulnerability
2014-07-01
http://www.securityfocus.com/bid/46789

Wireshark Frame Metadissector CVE-2014-4020 Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/68044

Wireshark M3UA Dissector CVE-2014-2282 Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/66070

Wireshark NFS Dissector CVE-2014-2281 Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/66068

Wireshark RLC Dissector 'packet-rlc.c' CVE-2014-2283 Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/66072

Wireshark MPEG File Parser 'wiretap/mpeg.c' Buffer Overflow Vulnerability
2014-07-01
http://www.securityfocus.com/bid/66066

Wireshark RTP Dissector CVE-2014-2907 Remote Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/67046

Wireshark 'libpcap' File Parsing Memory Corruption Vulnerability
2014-07-01
http://www.securityfocus.com/bid/66755

OpenLDAP Weak Cipher Encryption Security Weakness
2014-07-01
http://www.securityfocus.com/bid/53823

OpenLDAP Multiple Security Bypass Vulnerabilities
2014-07-01
http://www.securityfocus.com/bid/46363

OpenLDAP 'UTF8StringNormalize()' Remote Buffer Overflow Vulnerability
2014-07-01
http://www.securityfocus.com/bid/50384

OpenLDAP 'modrdn' NULL OldDN Remote Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/46831

OpenLDAP X.509 Certificate NULL Character Certificate Validation Security Bypass Vulnerability
2014-07-01
http://www.securityfocus.com/bid/36844

OpenLDAP LDAP Search Request Remote Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/52404

GNU Libtasn1 CVE-2014-3467 Multiple Denial of Service Vulnerabilities
2014-07-01
http://www.securityfocus.com/bid/67749

GNU Libtasn1 CVE-2014-3468 Remote Code Execution Vulnerability
2014-07-01
http://www.securityfocus.com/bid/67745

GNU Libtasn1 'asn1_read_value_type()' Function Denial of Service Vulnerability
2014-07-01
http://www.securityfocus.com/bid/67748

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-07-01
http://www.securityfocus.com/bid/67741

WebKit CVE-2014-1346 Cross-Origin Security Bypass Vulnerability
2014-07-01
http://www.securityfocus.com/bid/67554

WebKit CVE-2013-2927 Use After Free Remote Code Execution Vulnerability
2014-07-01
http://www.securityfocus.com/bid/63025

WebKit Multiple Unspecified Memory Corruption Vulnerabilities
2014-07-01
http://www.securityfocus.com/bid/67553

WebKit CVE-2014-1731 Unspecified Memory Corruption Vulnerability
2014-07-01
http://www.securityfocus.com/bid/67572

WebKit CVE-2013-2875 Out of Bounds Memory Corruption Vulnerability
2014-07-01
http://www.securityfocus.com/bid/61057

cURL/libcURL NTLM connection Remote Security Bypass Vulnerability
2014-07-01
http://www.securityfocus.com/bid/65270

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2014-07-01
http://www.securityfocus.com/bid/63154

Exploit

Gitlist <= 0.4.0 - Remote Code Execution

28.6.2014

Bugtraq

[SECURITY] [DSA 2969-1] libemail-address-perl security update 2014-06-27
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU03056 rev.1 - HP Version Control Repository Manager (HP VCRM) running OpenSSL on Linux and Windows, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-27
security-alert hp com

[security bulletin] HPSBMU03057 rev.1 - HP Version Control Agent (HP VCA) running OpenSSL on Linux and Windows, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-27
security-alert hp com

[security bulletin] HPSBMU03061 rev.1 - HP Release Control, Disclosure of Privileged Information and Elevation of Privilege 2014-06-27
security-alert hp com

[SECURITY] [DSA 2968-1] gnupg2 security update 2014-06-27
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU03058 rev.1 - HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL, Remote Disclosure of Information 2014-06-26
security-alert hp com

CFP 1st International Conference on Information Systems Security and Privacy - ICISSP 2015 2014-06-26
calendarsites insticc org

Malware

Generic.dx!DD45C6E12E29

RDN/Generic PUP.x!chh!DAA38AB4DE9F

RDN/Generic PUP.x!chh!9F6E1C267D86

PUP-FIC!D9053AB0B92C

Generic PUP.x!B42006DCFF9C

RDN/Generic PUP.x!149DD9EE882C

RDN/Generic.bfr!hk!B95C1F129AC0

CryptDomaIQ!D6BEEEA7373A

CryptInno!D81699977BF5

Generic PUP.x!FB1FFC9699B5

Generic PUP.x!836453BB5662

Generic PUP.x!F56E8A0EEA04

PowerPack!D810D3298DCB

Generic PUP.x!17FB5D425C7B

Generic PUP.x!650243FDD8DA

RDN/Generic PUP.x!chh!5C0A7D3FB576

RDN/Generic PUP.x!chh!1441C619E994

RDN/Generic PUP.x!chh!ACDAEF506CA2

Generic PUP.x!177E6935325C

Generic PUP.x!B18ADA577322

PUP-FIC!D9DF4AA80AB5

RDN/Generic.dx!ddl!2693385997A9

PUP-FIC!D9D9CD118F72

Generic PUP.x!316079CB4CF2

Generic PUP.x!18D674774C40

RDN/Generic.bfr!hk!D8E5C6E7482D

RDN/Generic PUP.x!chh!16291336ADCE

RDN/Generic PUP.x!chh!D94559862157

RDN/Generic PUP.x!chh!B83AF37C7798

Generic PUP.x!E3EF0A5A4696

Phishing

NatWest

28th June 2014

IMPORTANT INFORMATION ABOUT
YOUR ACCOUNT

Paypal Customers Service

27th June 2014

NOTICE OF CHANGES TO THE
PAYPAL USER AGREEMENT

Vulnerebility

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67899

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67901

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67193

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-28
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-28
http://www.securityfocus.com/bid/66363

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67900

Perl 'Email::Address' Module Local Denial of Service Vulnerability
2014-06-28
http://www.securityfocus.com/bid/68084

WordPress TimThumb WebShot Feature Arbitrary Code Execution Vulnerability
2014-06-28
http://www.securityfocus.com/bid/68180

KDE Konqueror Multiple Security Vulnerabilities
2014-06-28
http://www.securityfocus.com/bid/55879

Gnew Multiple SQL Injection and Cross Site Scripting Vulnerabilities
2014-06-28
http://www.securityfocus.com/bid/61721

SAP Enterprise Portal Information Disclosure Vulnerability
2014-06-28
http://www.securityfocus.com/bid/58156

SAP Solution Manager Diagnostics Agent Code Injection Vulnerability
2014-06-28
http://www.securityfocus.com/bid/58179

DataLife Engine Session Fixation Vulnerability
2014-06-28
http://www.securityfocus.com/bid/57766

LZ4 'lz4.c' Memory Corruption Vulnerability
2014-06-28
http://www.securityfocus.com/bid/68218

UnrealIRCd Unspecified Multiple Denial of Service Vulnerabilities
2014-06-28
http://www.securityfocus.com/bid/63910

Red Hat sos GRUB Bootloader Password Information Disclosure Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67634

SAP J2EE Core Service Remote Arbitrary File Access Vulnerability
2014-06-28
http://www.securityfocus.com/bid/58175

Google Android PRNG Entropy Weakness
2014-06-28
http://www.securityfocus.com/bid/61813

Todd Miller Sudo 'validate_env_vars()' Local Privilege Escalation Vulnerability
2014-06-28
http://www.securityfocus.com/bid/65997

PHP-Fusion 'Authenticate.class.php' SQL Injection Vulnerabilities
2014-06-28
http://www.securityfocus.com/bid/58011

Python JSON Module '_json.c' Local Information Disclosure Vulnerability
2014-06-28
http://www.securityfocus.com/bid/68119

GnuPG RSA Key Extraction Information Disclosure Vulnerability
2014-06-28
http://www.securityfocus.com/bid/64424

Linux Kernel 'filter.c' CVE-2014-3145 Local Denial of Service Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67321

Linux Kernel 'filter.c' CVE-2014-3144 Multiple Local Denial of Service Vulnerabilities
2014-06-28
http://www.securityfocus.com/bid/67309

Linux Kernel '/drivers/media/media-device.c' Local Information Disclosure Vulnerability
2014-06-28
http://www.securityfocus.com/bid/68048

HP Service Virtualization CVE-2013-6221 Unspecified Remote Code Execution Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67989

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67300

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-06-28
http://www.securityfocus.com/bid/66779

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-28
http://www.securityfocus.com/bid/67302

Exploit

  HP AutoPass License Server File Upload

  chkrootkit 0.49 - Local Root Vulnerability

  MS14-009 .NET Deployment Service IE Sandbox Escape

  MS13-097 Registry Symlink IE Sandbox Escape

  Python CGIHTTPServer Encoded Path Traversal

  Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities

  Wordpress Simple Share Buttons Adder Plugin 4.4 - Multiple Vulnerabilities

  Endeca Latitude 2.2.2 - CSRF Vulnerability

27.6.2014

Bugtraq

[SECURITY] [DSA 2967-1] gnupg security update 2014-06-25
Salvatore Bonaccorso (carnil debian org)

CVE-2014-3752 - Arbitrary Code Execution in G Data TotalProtection 2014 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-2385 - Multiple Cross Site Scripting in Sophos Antivirus Configuration Console (Linux) 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

[RT-SA-2013-003] Endeca Latitude Cross-Site Scripting 2014-06-25
RedTeam Pentesting GmbH (release redteam-pentesting de)

Malware

RDN/Generic Dropper!519351F39961

Generic PUP.x!712AFDF8BA0C

Generic PUP.x!1F6D8B9B4A52

Generic PUP.x!DA16F7696035

Generic PUP.x!CDA9011EC4CF

Generic PUP.x!D9CA13D500DE

RDN/Downloader.a!ro!D948D19D991A

RDN/Generic PUP.x!chc!D984241F0DD7

Generic PUP.x!36BCDDAC7BB5

Generic PUP.x!46EFFD09EE21

RDN/Generic PUP.x!chc!D9876E6D3135

Generic PUP.x!D9873F64A666

Generic PUP.x!C25DFA615C1A

Generic PUP.x!7BC6BE55EBB8

Generic PUP.x!1C6314A32637

Generic.bfr!5D160AD64001

Generic PUP.x!6678F1B9A35D

RDN/Generic PUP.x!chc!D8BD43949AE4

Generic PUP.x!51DDC635A811

Generic PUP.x!D8CFF4F8ADF5

Generic.dx!D8B3DE4D8D8B

RDN/Generic PUP.x!chc!D8822D3F2C1D

RDN/Generic.dx!dd3!D6A830D12603

RDN/Generic PUP.x!chc!E4BE1CDFBB3F

RDN/Generic.dx!dd3!D8B51BE6EC72

RDN/Generic PUP.x!chc!61375B2B6D7F

RDN/Generic.bfr!hk!D7F58DED75AC

Generic PUP.x!5FDEC90E7243

Generic.dx!D84345A0C9D0

Generic.dx!D646C1124843

Phishing

BT

27th June 2014

BT Planned Software Uprade

Chase

26th June 2014

Your Chase Account Has Been
Blocked!

Natwest Bank UK

26th June 2014

NOTIFICATION FROM NATWEST BANK

Vulnerebility

Samba CVE-2014-3493 Memory Corruption Vulnerability
2014-06-27
http://www.securityfocus.com/bid/68150

GnuPG 'compress.c' Denial of Service Vulnerability
2014-06-27
http://www.securityfocus.com/bid/68156

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-06-27
http://www.securityfocus.com/bid/66920

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-27
http://www.securityfocus.com/bid/64493

Oracle Java SE CVE-2014-2427 Remote Security Vulnerability
2014-06-27
http://www.securityfocus.com/bid/66909

Oracle Java SE CVE-2014-2428 Remote Security Vulnerability
2014-06-27
http://www.securityfocus.com/bid/66870

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-06-27
http://www.securityfocus.com/bid/63676

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-06-27
http://www.securityfocus.com/bid/66883

Samba DNS Protocol Handling Denial of Service Vulnerability
2014-06-27
http://www.securityfocus.com/bid/67691

Samba 'nmbd' NetBIOS Name Serives Daemon Denial of Service Vulnerability
2014-06-27
http://www.securityfocus.com/bid/68148

Samba Uninitialized Memory Information Disclosure Vulnerability
2014-06-27
http://www.securityfocus.com/bid/67686

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67193

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67898

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66801

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67900

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67899

Oracle Java SE CVE-2014-2423 Remote Security Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66887

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66891

JBoss Seam CVE-2014-0248 Remote Code Execution Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68174

RETIRED: ISC BIND EDNS Options CVE-2014-3859 Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68193

Openstack Swift 'WWW-Authenticate' Header Cross Site Scripting Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68116

OpenStack Neutron L3-agent Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68064

Dovecot Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67306

OpenStack Neutron CVE-2014-0187 CIDR Security Bypass Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67012

OpenStack Neutron Sudo Configuration Local Privilege Escalation Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67804

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-2401 Remote Security Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66911

Exploit

 

26.6.2014

Bugtraq

[SECURITY] [DSA 2967-1] gnupg security update 2014-06-25
Salvatore Bonaccorso (carnil debian org)

CVE-2014-3752 - Arbitrary Code Execution in G Data TotalProtection 2014 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-2385 - Multiple Cross Site Scripting in Sophos Antivirus Configuration Console (Linux) 2014-06-25
Portcullis Advisories (advisories portcullis-security com)

[RT-SA-2013-003] Endeca Latitude Cross-Site Scripting 2014-06-25
RedTeam Pentesting GmbH (release redteam-pentesting de)

[RT-SA-2013-002] Endeca Latitude Cross-Site Request Forgery 2014-06-25
RedTeam Pentesting GmbH (release redteam-pentesting de)

Reflected Cross-Site Scripting (XSS) Vulnerability in Storesprite 2014-06-25
High-Tech Bridge Security Research (advisory htbridge com)

NEW VMSA-2014-0007 - VMware product updates address security vulnerabilities in Apache Struts library 2014-06-25
\VMware Security Response Center\ (security vmware com)

[slackware-security] seamonkey (SSA:2014-175-05) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] samba (SSA:2014-175-04) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] bind (SSA:2014-175-01) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] gnupg (SSA:2014-175-02) 2014-06-24
Slackware Security Team (security slackware com)

[slackware-security] gnupg2 (SSA:2014-175-03) 2014-06-24
Slackware Security Team (security slackware com)

Malware

Generic PUP.x!57025514A1C2

Generic PUP.x!763FC5832083

Generic PUP.x!5A55896FF1D3

Generic PUP.x!DA74D30E6D29

Generic PUP.x!5FE39A6278AC

Generic.bfr!65CD782E4227

Generic PUP.x!F08A5F859774

Generic.bfr!1FD0EE705E19

Generic PUP.x!584FF73826D4

RDN/Generic PUP.x!chb!A9834259B392

Generic.dx!D4C63EB71468

Generic PUP.x!655F4AB04646

PUP-FIC!6769CE595E59

PUP-FIC!20E55DAA81CF

Generic PUP.x!65E0D554FA54

Generic PUP.x!65CD62C5CC8E

Generic PUP.x!CAE2FEB28033

Generic PUP.x!21F1AA74E35C

Generic PUP.x!568A32EF018E

Generic PUP.x!68C616C778AB

Generic PUP.x!9A9BE2BA555D

Generic PUP.x!9FFC53664E62

RDN/Generic.dx!ddh!B4314B5EC1DD

Generic PUP.x!64D9F8D732F3

Generic PUP.x!660BE3F12BDC

Generic PUP.x!A3B1A268391C

Generic PUP.x!9A64E1CC2CAC

Generic PUP.x!7D48D926469A

Generic PUP.x!CE26A4A57B4B

RDN/Generic.bfr!hn!98888CEA430B

Phishing

 

Vulnerebility

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67193

Piwigo 'picture_modify.php' SQL Injection Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68142

Xen CVE-2014-3968 Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67824

Xen 'HVM MSI injection' CVE-2014-3967 Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67794

Dnsmasq Multiple Remote Denial of Service Vulnerabilities
2014-06-26
http://www.securityfocus.com/bid/57458

Dnsmasq Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/54353

Sophos Antivirus Configuration Console Multiple Cross Site Scripting Vulnerabilities
2014-06-26
http://www.securityfocus.com/bid/68190

Samba Uninitialized Memory Information Disclosure Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67686

Samba 'nmbd' NetBIOS Name Serives Daemon Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68148

Samba CVE-2014-3493 Memory Corruption Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68150

OpenStack Neutron L3-agent Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68064

DenyHosts 'regex.py' Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/64478

Network Audio System CVE-2013-4258 Format String Vulnerability
2014-06-26
http://www.securityfocus.com/bid/61852

Network Audio System CVE-2013-4256 Multiple Buffer Overflow Vulnerabilities
2014-06-26
http://www.securityfocus.com/bid/61848

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67899

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67900

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-26
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-26
http://www.securityfocus.com/bid/66363

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67901

Apache 'mod_wsgi' Module CVE-2014-0242 Information Disclosure Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67534

Apache 'mod_wsgi' Module Local Privilege Escalation Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67532

Dovecot Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67306

PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
2014-06-26
http://www.securityfocus.com/bid/68007

PHP 'cdf_unpack_summary_info()' Function Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67759

PHP 'cdf_read_property_info()' Function Denial of Service Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67765

PHP FPM 'php-fpm.conf.in' Local Privilege Escalation Vulnerability
2014-06-26
http://www.securityfocus.com/bid/67118

GnuPG 'compress.c' Denial of Service Vulnerability
2014-06-25
http://www.securityfocus.com/bid/68156

ownCloud Multiple Cross Site Scripting Vulnerabilities
2014-06-25
http://www.securityfocus.com/bid/67451

A10 Networks ACOS Remote Buffer Overflow Vulnerability
2014-06-25
http://www.securityfocus.com/bid/66588

Exploit

  Cogent DataHub Command Injection

  Thomson TWG87OUIR - POST Password CSRF

25.6.2014

Bugtraq

Boolean algebra and CSS history theft 2014-06-24
Michal Zalewski (lcamtuf coredump cx)

Android KeyStore Stack Buffer Overflow (CVE-2014-3100) 2014-06-23
Roee Hay (roeeh il ibm com)

Malware

Generic PUP.x!5EAFB530CA33

Generic PUP.x!BEB8B2EDC03F

Generic PUP.x!E8F851101498

RDN/Generic PUP.x!cg3!6CFF23DCDFAB

RDN/Generic PUP.x!cg3!626654FA80ED

RDN/Generic PUP.x!cg3!2E0C998A069E

RDN/Generic PUP.x!cg3!3E36FBD462F6

RDN/Generic PUP.x!cg3!00C75AB6FD3B

Generic PUP.x!19967A9C9946

Generic.dx!0633E858ACFB

Generic PUP.x!87E1CAE71B9E

Generic PUP.x!6E6496FB2926

RDN/Generic.dx!ddf!2A51443A7FBC

RDN/Generic PUP.x!cg3!2B248D60478D

RDN/Generic PUP.x!cg3!F49584D3FA43

Generic PUP.x!9E98AFC50D3E

Generic PUP.x!F4F43218B2D6

RDN/Generic PUP.x!cg3!6A9C916A7735

Generic PUP.x!DC9650147541

Generic PUP.x!1955117CFE02

Generic PUP.x!C3FADE6BCF1A

Generic PUP.x!1B5B20EEFC93

Generic PUP.x!E7517CC902D0

Generic PUP.x!A0D0FF04F031

Generic PUP.x!D10E289661EC

Generic PUP.x!1488CAB73074

Generic PUP.x!0119B33BE5E1

RDN/Generic PUP.x!cg3!F496DEFB066C

RDN/Generic PUP.x!cg3!F4AAD471C131

RDN/Generic PUP.x!cg3!F4BF1187A70A

Phishing

Halifax Bank

24th June 2014

We need to update some
important information.

Vulnerebility

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-25
http://www.securityfocus.com/bid/67898

PHP Fileinfo Component Out of Bounds Memory Corruption Vulnerability
2014-06-25
http://www.securityfocus.com/bid/66002

file Composite Document File Format Denial of Service Vulnerability
2014-06-25
http://www.securityfocus.com/bid/52225

File Utility CVE-2014-1943 Remote Code Execution Vulnerability
2014-06-25
http://www.securityfocus.com/bid/65596

PHP Fileinfo Component Remote Denial of Service Vulnerability
2014-06-25
http://www.securityfocus.com/bid/66406

Cogent Real-Time Systems DataHub 'GetPermissions.asp' Remote Code Execution Vulnerability
2014-06-25
http://www.securityfocus.com/bid/67486

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-25
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-25
http://www.securityfocus.com/bid/67899

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66891

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-24
http://www.securityfocus.com/bid/66363

Oracle Java SE CVE-2013-5775 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/63144

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/63135

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67900

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67193

Oracle Java SE CVE-2013-5852 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/63130

Oracle Java SE CVE-2014-0373 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/64922

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-0387 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/64882

Oracle Java SE CVE-2014-0424 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/64919

Linux Kernel 'filter.c' CVE-2014-3144 Multiple Local Denial of Service Vulnerabilities
2014-06-24
http://www.securityfocus.com/bid/67309

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66779

Linux Kernel 'filter.c' CVE-2014-3145 Local Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67321

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67302

Linux Kernel CVE-2014-2568 Information Disclosure Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66348

Oracle Java SE CVE-2014-2427 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66909

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability
2014-06-24
http://www.securityfocus.com/bid/57714

Exploit

  D-Link authentication.cgi Buffer Overflow

  D-Link hedwig.cgi Buffer Overflow in Cookie Header

  AlienVault OSSIM av-centerd Command Injection

24.6.2014

Bugtraq

[security bulletin] HPSBHF03052 rev.1 - HP Intelligent Management Center (iMC), HP Network Products including H3C and 3COM Routers and Switches running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Modification or Disclosur 2014-06-23
security-alert hp com

[SECURITY] [DSA 2966-1] samba security update 2014-06-23
Yves-Alexis Perez (corsac debian org)

[SECURITY] [DSA 2965-1] tiff security update 2014-06-22
Michael Gilbert (mgilbert debian org)

[SECURITY] [DSA 2964-1] iodine security update 2014-06-21
Salvatore Bonaccorso (carnil debian org)

Malware

Generic PUP.x!845A337B7CAB

RDN/Generic PUP.x!cgv!1E4F529FFD96

Generic PUP.x!E93D39CF5CF7

Generic PUP.x!B4C08821EEC6

RDN/Generic PUP.x!cgv!E21AAC96E391

RDN/Generic PUP.x!cgv!72B162893D2F

Generic PUP.x!E224642A7BEA

Generic PUP.x!1C017613EA83

RDN/Generic BackDoor!206E36311129

PUP-FIC!4F06C455F02F

Generic PUP.x!1B9625D1AC3E

PUP-FIC!6DDCA7D5E6FE

CryptInno!5ECD15839320

Generic PUP.x!715C159D2297

PUP-FIC!6B1DD24DEC15

RDN/Generic.bfr!hl!197CA99C6F23

PUP-FIC!6B764068CD58

PUP-FIC!6C12A1A336C6

Generic PUP.x!55D81AD7384C

RDN/Generic.dx!dd3!1FBDAFD0A797

Generic PUP.x!21D4E2A22B89

Generic PUP.x!E9C7F1AA152A

RDN/Generic PUP.x!41FFF4209106

PUP-FIC!7321F7B27891

Generic PUP.x!E6006C4F967D

Generic PUP.x!4758A21D2913

PUP-FIC!5DF61D0598AE

Generic.bfr!3BE4DE6A9480

Generic PUP.x!A4F364A45152

RDN/Generic BackDoor!yu!174561120742

Phishing

 

Vulnerebility

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67899

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67900

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-24
http://www.securityfocus.com/bid/66363

PHP 'cdf_unpack_summary_info()' Function Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67759

PHP 'cdf_read_property_info()' Function Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67765

PHP DNS TXT Record Handling Heap Buffer Overflow Vulnerability
2014-06-24
http://www.securityfocus.com/bid/68007

PHP FPM 'php-fpm.conf.in' Local Privilege Escalation Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67118

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/65943

Mozilla Firefox CVE-2014-1543 Heap Buffer Overflow Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67969

Mozilla Firefox CVE-2014-1540 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67978

Mozilla Firefox CVE-2014-1542 Remote Buffer Overflow Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67968

Mozilla Firefox/Thunderbird CVE-2014-1539 Clickjacking Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67967

Mozilla Firefox/Thunderbird CVE-2014-1541 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67979

Mozilla Firefox/Thunderbird CVE-2014-1533 Multiple Memory Corruption Vulnerabilities
2014-06-24
http://www.securityfocus.com/bid/67965

Mozilla Netscape Portable Runtime CVE-2014-1545 Out of Bounds Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67975

Mozilla Firefox/Thunderbird CVE-2014-1538 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67976

Mozilla Firefox/Thunderbird CVE-2014-1536 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67966

Mozilla Firefox/Thunderbird CVE-2014-1534 Multiple Memory Corruption Vulnerabilities
2014-06-24
http://www.securityfocus.com/bid/67964

Mozilla Firefox/Thunderbird CVE-2014-1537 Memory Corruption Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67971

Castor Library CVE-2014-3004 XML External Entity Information Disclosure Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67676

WordPress WP GPX Maps Plugin Arbitrary File Upload Vulnerability
2014-06-24
http://www.securityfocus.com/bid/53909

D-Bus 'activation.c' Denial of Service Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67986

Linux Kernel CVE-2014-4014 Local Privilege Escalation Vulnerability
2014-06-24
http://www.securityfocus.com/bid/67988

Piwigo 'ws.php' Cross-Site Request Forgery Vulnerability
2014-06-24
http://www.securityfocus.com/bid/65811

Drupal Custom Meta Module Multiple Cross Site Scripting Vulnerabilities
2014-06-24
http://www.securityfocus.com/bid/68108

OpenSSL Multiple Vulnerabilities
2014-06-23
http://www.securityfocus.com/bid/51281

Drupal Easy Breadcrumb Module Unspecified Cross Site Scripting Vulnerability
2014-06-23
http://www.securityfocus.com/bid/68106

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67193

Exploit

 

23.6.2014

Bugtraq

 

Malware

Generic PUP.x!555FC8381E5C

Generic PUP.x!AFE2B4FC1CD1

Generic PUP.x!0101C4D9DB67

Generic PUP.x!91B18C63604E

Generic PUP.x!A7E1F62F0E51

Generic PUP.x!617DBE14481F

RDN/Generic PUP.x!cgs!5E26CA1346AD

Generic PUP.x!FCD84A5EC4D5

Generic PUP.x!D51801D0B6F7

Generic PUP.x!45C376F6A0D1

RDN/Generic PUP.x!cgs!2062220D4C15

Generic PUP.x!BF9DF4473170

Generic.bfr!0E980D79F8D9

Generic PUP.x!77AE04B0A1F7

Generic PUP.x!F8C1EA6E8A95

Generic.tfr!F717C0B148A1

Downloader.gen.a!E09A773F6BEE

RDN/Generic PUP.x!cgs!2BF2C01480BB

RDN/Generic PUP.x!cgs!E0398A53D28B

RDN/Downloader.a!rm!FD2271A95A64

RDN/Downloader.a!rm!0A012D809CDF

Generic PUP.x!B5A147CDA395

RDN/Generic PWS.y!zq!992A623F3816

Generic PUP.x!51289A4A0253

Generic PUP.x!F6128E23BD67

Generic PUP.x!75D6061751DA

Generic PUP.x!9DD266EE22B1

RDN/Generic.dx!ddd!6674365A217F

Generic PUP.x!62166E4E60AB

Generic PUP.x!9B85DC5B9AB1

Phishing

Barclays

22nd June 2014

Dear Barclays Memeber,

Barclays

21st June 2014

Restriction On Your Account

Barclays

21st June 2014

Dear Barclays Memeber,

Vulnerebility

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67302

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/65459

Linux Kernel CVE-2013-6378 Local Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/63886

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67300

cURL/libcURL CVE-2014-0139 SSL Certificate Validation Security Bypass Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66458

cURL/libcURL CVE-2014-0138 Remote Security Bypass Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66457

nginx SPDY Implementation Heap Based Buffer Overflow Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66537

Mozilla Netscape Portable Runtime CVE-2013-5607 Integer Overflow Vulnerability
2014-06-23
http://www.securityfocus.com/bid/63802

Mozilla Network Security Services CVE-2013-5605 Remote Arbitrary Code Execution Vulnerability
2014-06-23
http://www.securityfocus.com/bid/63738

Mozilla Network Security Services CVE-2013-5606 Certificate Validation Security Bypass Vulnerability
2014-06-23
http://www.securityfocus.com/bid/63737

SSL/TLS RC4 CVE-2013-2566 Information Disclosure Weakness
2014-06-23
http://www.securityfocus.com/bid/58796

Network Security Services Uninitialized Data Read Security Vulnerability
2014-06-23
http://www.securityfocus.com/bid/62966

Mozilla Network Security Services CVE-2013-1741 Integer Overflow Vulnerability
2014-06-23
http://www.securityfocus.com/bid/63736

Mozilla Network Security Services CVE-2013-1620 Information Disclosure Vulnerability
2014-06-23
http://www.securityfocus.com/bid/57777

LibTIFF CVE-2013-4243 Heap Buffer Overflow Vulnerability
2014-06-23
http://www.securityfocus.com/bid/62082

iodine Authentication Bypass Vulnerability
2014-06-23
http://www.securityfocus.com/bid/68069

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-0455 Remote Code Execution Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66899

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66920

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67900

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67901

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-23
http://www.securityfocus.com/bid/66801

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67193

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-23
http://www.securityfocus.com/bid/66363

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-23
http://www.securityfocus.com/bid/67899

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-06-23
http://www.securityfocus.com/bid/63676

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-23
http://www.securityfocus.com/bid/64493

Exploit

 

21.6.2014

Bugtraq

[security bulletin] HPSBOV03047 rev.1 - HP OpenVMS running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-18
security-alert hp com

Secunia CSI/VIM - Filter Bypass & Persistent Validation Vulnerabilities 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #36 - SecurityKey Card Serialnumber Module Vulnerability 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Multiple SQL Injection Vulnerabilities in web2Project 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

Malware

Generic PUP.x!31FE28CB292D

Generic PUP.x!04906D4BC409

RDN/Generic PUP.x!cgp!6DCF6B78BC72

CryptInno!6DDE07C3A56D

Generic.dx!2F9F060940CA

RDN/Generic PUP.x!cgp!6D8D4E3C08F5

Generic PUP.x!70F5E218A860

Generic.dx!9CFC834D3873

RDN/Generic.tfr!ea!8849F119F147

PUP-FIC!51C9458E889A

RDN/Generic PUP.x!cgp!6B3CB1F4DACE

Generic PUP.x!9D29A7265FA0

Generic Downloader.x!1135C1EF78F9

CryptInno!0CD05D3BDEB3

CryptInno!6B0F2EC1FF9A

Generic PUP.x!04E3754EDDE5

Generic PUP.x!32E0C96B2973

Generic PUP.x!2929829EFDC8

RDN/Generic PUP.x!cgp!6D29C2820CCA

CryptInno!2CBC2CB70445

RDN/Generic.bfr!gf!3F6760B91319

RDN/Generic PUP.x!cgp!4C10595F92CC

Generic PUP.x!77653A3AA19C

RDN/Generic PUP.x!cgp!35ADA0CE755E

Generic PUP.x!E0748F386FEC

RDN/Generic.bfr!gf!35B0F0E15F7E

Generic PUP.x!FD9C373723BD

RDN/Generic PUP.x!cgp!16B3B8A0DCB0

RDN/Generic PUP.x!cgp!09658492B174

RDN/Generic PUP.x!cgp!20405291A078

Phishing

Barclays

21st June 2014

Restriction On Your Account

Barclays

21st June 2014

Dear Barclays Memeber,

Barclays

20th June 2014

Dear Barclays Memeber,

PayPal

20th June 2014

Your account has been
temporarily blocked

Lloyds

20th June 2014

Important Security Message.
from Lloyds Bank

Lloyds

20th June 2014

Lloyds Bank Important
Notification.

David Gibson

20th June 2014

Important Document!

Lloyds

19th June 2014

Important Security Message.
from Lloyds Bank

PayPal

19th June 2014

PAYPAL ISSUE ; INFORMATIONS
REQUIRED

Bank Of America

19th June 2014

ONLINE BANKING : IMPORTANT
MESSAGE

Vulnerebility

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-06-21
http://www.securityfocus.com/bid/66914

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67121

Cisco WebEx Meetings Server CVE-2014-3296 Information Disclosure Vulnerability
2014-06-21
http://www.securityfocus.com/bid/68118

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67193

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67899

Linux Kernel Unspecified Local Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/68126

Webmin Usermin Popup Windows Multiple Cross Site Scripting Vulnerabilities
2014-06-21
http://www.securityfocus.com/bid/67649

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67898

OpenSSH CVE-2010-5107 Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/58162

Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability
2014-06-21
http://www.securityfocus.com/bid/65999

Apache Struts ClassLoader Manipulation Incomplete Fix Security Bypass Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67064

Apache Struts 'getClass()' Method Security Bypass Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67081

Webmin Multiple Unspecified Cross Site Scripting Vulnerabilities
2014-06-21
http://www.securityfocus.com/bid/67647

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/65400

TYPO3 HTTP Host Header Spoofing Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67626

TYPO3 Backend Subcomponent Unspecified Cross Site Scripting Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67625

TYPO3 Unspecified PHP Object Injection Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67630

Linux Kernel 'tcp_rcv_state_process()' Function Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/65654

Linux Kernel CVE-2014-2039 Local Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/65700

Linux Kernel 'mm/slab.c' Local Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/68125

Linux Kernel CVE-2013-6378 Local Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/63886

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-06-21
http://www.securityfocus.com/bid/65459

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67302

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67300

Ubisoft Rayman Legends 'memset()' Function Stack Based Buffer Overflow Vulnerability
2014-06-21
http://www.securityfocus.com/bid/68080

BarracudaDrive '/rtl/protected/admin/ddns/' Multiple Cross Site Scripting Vulnerabilities
2014-06-21
http://www.securityfocus.com/bid/68079

LibTIFF 'DOTRANGE' Tags Handling Remote Buffer Overflow Vulnerability
2014-06-21
http://www.securityfocus.com/bid/56715

ntopng 'lua/host_details.lua' Cross Site Scripting Vulnerability
2014-06-21
http://www.securityfocus.com/bid/66456

Sendmail File Descriptor Security Vulnerability
2014-06-21
http://www.securityfocus.com/bid/67791

PolarSSL RSA Private Key Recovery Security Bypass Vulnerability
2014-06-21
http://www.securityfocus.com/bid/62771

Exploit

  Linux Kernel <= 3.13 - Local Privilege Escalation PoC (gid)

  D-link DSL-2760U-E1 - Persistent XSS

  Wordpress 3.9.1 - CSRF Vulnerability

20.6.2014

Bugtraq

[security bulletin] HPSBOV03047 rev.1 - HP OpenVMS running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information 2014-06-18
security-alert hp com

Secunia CSI/VIM - Filter Bypass & Persistent Validation Vulnerabilities 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #36 - SecurityKey Card Serialnumber Module Vulnerability 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Multiple SQL Injection Vulnerabilities in web2Project 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

SQL Injection in Dolphin 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

Malware

Generic PUP.x!BA11BD630B2C

Generic PUP.x!E525FBDB37FB

RDN/Generic PUP.x!cg3!39AD02A26B5A

Generic.bfr!AD4ACB86B1F9

Generic PUP.x!6796644345FA

Generic PUP.x!3C55BFC32BAB

Generic PUP.x!39168612C3D9

Generic PUP.x!3A23B43C5640

Downloader.gen.a!4366E53CC071

Generic.bfr!10F3AFAA0E8F

Generic PUP.x!7D7F1323A9A3

RDN/Generic PUP.x!4C2E1F975110

Generic PUP.x!B16A538D9C90

RDN/Generic PUP.x!cg3!C2E423FE781A

Generic PUP.x!649C3D0062F2

Generic PUP.x!45436234A249

RDN/Generic.bfr!hl!66810F6BC4C8

RDN/Generic PUP.x!cg3!373F24778006

Generic PUP.x!AE71ADCD47E8

RDN/Generic PUP.x!cg3!366B86D2C73F

Generic PUP.x!A7E02EF02D52

Generic PUP.x!9B7AC2BB60B7

Generic.bfr!6CE986507AE6

Generic PUP.x!664084FD98C0

Generic PUP.x!3842B7537A2D

Generic PUP.x!7B4645A7F55B

RDN/Generic PUP.x!cg3!D98A60698BF4

Generic.bfr!66FE555355A5

Generic PUP.x!8256D3B41D14

Generic PUP.x!1576034F8AC2

Phishing

Lloyds

19th June 2014

Important Security Message.
from Lloyds Bank

PayPal

19th June 2014

PAYPAL ISSUE ; INFORMATIONS
REQUIRED

Bank Of America

19th June 2014

ONLINE BANKING : IMPORTANT
MESSAGE

Barclays

19th June 2014

Dear Barclays Memeber,

Vulnerebility

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67900

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67899

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-20
http://www.securityfocus.com/bid/66363

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67898

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67193

Linux Kernel 'filter.c' CVE-2014-3145 Local Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67321

Linux Kernel 'filter.c' CVE-2014-3144 Multiple Local Denial of Service Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/67309

AlienVault OSSIM CVE-2014-3804 Multiple Unspecified Remote Code Execution Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/67999

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/65459

Linux Kernel 'mm/slab.c' Local Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/68125

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2014-2039 Local Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/65700

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67302

Linux Kernel CVE-2013-6378 Local Denial of Service Vulnerability
2014-06-20
http://www.securityfocus.com/bid/63886

Apache HTTP Server Multiple Denial of Service Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/66303

Wireshark 'libpcap' File Parsing Memory Corruption Vulnerability
2014-06-20
http://www.securityfocus.com/bid/66755

Novell Open Enterprise Server CVE-2014-0599 Unspecified Cross Site Scripting Vulnerability
2014-06-20
http://www.securityfocus.com/bid/68068

Novell Open Enterprise Server CVE-2014-0598 Unspecified Directory Traversal Vulnerability
2014-06-20
http://www.securityfocus.com/bid/68066

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-20
http://www.securityfocus.com/bid/66801

Parallels Plesk Panel XML External Entity Injection and Cross Site Scripting Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/68030

Ajenti Multiple Cross Site Scripting Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/68047

AlienVault Multiple Security Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/68018

WebTitan 4.01 Multiple Security Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/67921

Drupal Touch Theme Cross Site Scripting Vulnerability
2014-06-20
http://www.securityfocus.com/bid/68045

NICE Recording eXpress Multiple Security Vulnerabilities
2014-06-20
http://www.securityfocus.com/bid/67677

SQL Buddy 'browse.php' Cross Site Scripting Vulnerability
2014-06-20
http://www.securityfocus.com/bid/68017

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67741

Mozilla Firefox/Thunderbird CVE-2014-1538 Memory Corruption Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67976

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-20
http://www.securityfocus.com/bid/67121

Exploit

  Ericom AccessNow Server Buffer Overflow

  web2Project 3.1 - Multiple Vulnerabilities

19.6.2014

Bugtraq

Secunia CSI/VIM - Filter Bypass & Persistent Validation Vulnerabilities 2014-06-18
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #36 - SecurityKey Card Serialnumber Module Vulnerability 2014-06-18
[SECURITY] [DSA 2963-1] lucene-solr security updateVulnerability Lab (research vulnerability-lab com)

Multiple SQL Injection Vulnerabilities in web2Project 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

SQL Injection in Dolphin 2014-06-18
High-Tech Bridge Security Research (advisory htbridge com)

[security bulletin] HPSBMU03048 rev.1 - HP Software Executive Scorecard, Remote Execution of Code, Directory Traversal 2014-06-17
security-alert hp com

 2014-06-17
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBUX03046 SSRT101590 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Code Execution, Security Restriction Bypass, Disclosure of Information, or Unauthorized Access 2014-06-17
security-alert hp com

[SECURITY] [DSA 2962-1] nspr security update 2014-06-17
Moritz Muehlenhoff (jmm debian org)

Malware

Generic PUP.x!267F3DA9E607

Generic PUP.x!BFC93059E2BE

Downloader.gen.a!1DCCE9873B75

Generic PUP.x!BB6A43BFE064

Generic PUP.x!507E8D0DD6F2

Generic PUP.x!9828046AD4F9

Generic PUP.x!694E30BDE4A7

Generic PUP.x!6974FC58BF4B

Generic PUP.x!66DCCAFB8FFF

RDN/Generic PUP.x!cgd!21E4309AA7D2

Generic PUP.x!28B090B4D259

Generic PUP.x!A1B1E949C14C

Generic PUP.x!059A59DA575B

Generic PUP.x!7F29EB48D7BE

W32/Sdbot.worm!A99B7DB3BFA9

Generic PUP.x!535A0D9D16C0

Generic PUP.x!09952FBE2E44

Generic.bfr!8E43DE1BC26D

Generic PUP.x!212DA14CAD53

Generic PUP.x!1869C2B209A0

Generic PUP.x!505B9B4FE884

Generic PUP.x!11071D5A690B

Generic PUP.x!61E9478AEEF8

Generic PUP.x!5612D5F770B4

Generic PUP.x!687B8CA787B6

Generic PUP.x!625D31A5A1EC

Generic PUP.x!4B62EB784166

Generic PUP.x!60EBCABF40E3

Generic PUP.x!40B4BA6790A0

Generic PUP.x!22B6459FEF2C

Phishing

Barclays

19th June 2014

Dear Barclays Memeber,

Financial Services Authority

18th June 2014

[WARNING: VIRUS REMOVED]New
eDocument arrived

Barclays

18th June 2014

Dear Barclays Memeber,

Vulnerebility

Microsoft Internet Explorer CVE-2014-0282 Remote Memory Corruption Vulnerability
2014-06-19
http://www.securityfocus.com/bid/67862

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-19
http://www.securityfocus.com/bid/64493

Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-06-19
http://www.securityfocus.com/bid/64918

Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-06-19
http://www.securityfocus.com/bid/64937

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-06-19
http://www.securityfocus.com/bid/63676

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-06-19
http://www.securityfocus.com/bid/66881

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-06-19
http://www.securityfocus.com/bid/66914

Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66397

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/65400

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2014-06-18
http://www.securityfocus.com/bid/63135

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/61310

Linux Kernel 'futex.c' Function Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67395

Linux Kernel CVE-2014-2678 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66543

Linux Kernel CVE-2013-7339 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66351

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-06-18
http://www.securityfocus.com/bid/66279

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67302

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/65459

Linux Kernel Memory Leak Multiple Local Information Disclosure Vulnerabilities
2014-06-18
http://www.securityfocus.com/bid/64685

Linux Kernel 'pn_recvmsg()' Function Local Information Disclosure Vulnerability
2014-06-18
http://www.securityfocus.com/bid/64677

Linux Kernel CVE-2013-7263 Multiple Information Disclosure Vulnerabilities
2014-06-18
http://www.securityfocus.com/bid/64686

Linux Kernel 'ieee80211_radiotap_iterator_init()' Function Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/64013

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/65943

AMD 16h Model Processor CVE-2013-6885 Local Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/63983

Linux Kernel 'mlock_vma_page()' Function Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67162

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67899

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67901

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67900

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67193

Exploit

  Rocket Servergraph Admin Center fileRequestor Remote Code Execution

  docker 0.11 VMM-container Breakout

  Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerability

18.6.2014

Bugtraq

[SECURITY] [DSA 2961-1] php5 security update 2014-06-16
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2950-2] openssl update 2014-06-16
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2960-1] icedove security update 2014-06-16
Moritz Muehlenhoff (jmm debian org)

[CFP] Hacktivity 2014 CFP is open 2014-06-16
ferenc spala hacktivity com

Malware

Generic PUP.x!37E10FBE2F52

Generic PUP.x!F9B822B9D814

RDN/Generic PUP.x!cgc!D93DA4732D0C

Generic PUP.x!12F14387945A

Generic PUP.x!9C7C61B5420C

Generic.bfr!08AD80AB7225

Generic.bfr!73130BE0F5E5

Generic PUP.x!9D7FCB428829

Generic PUP.x!C9AE208BDED4

Generic.bfr!E45969B7095A

Generic PUP.x!9B2FAE1F0CAB

Generic PUP.x!FF8528A56AA8

Generic PUP.x!C8FE2389E1EB

Generic PUP.x!D09E2F20A02E

Generic.bfr!DA7134C80F06

Generic PUP.x!E04A8C400321

RDN/Downloader.a!rk!BB444E4C2511

Generic.bfr!4DD466D249D1

Generic PUP.x!5F480E05098A

Generic PUP.x!1D9F6F878920

Generic PUP.x!46B3139B48FB

Generic PUP.x!AAD4131FE4CD

Generic.bfr!E97F199F1D90

Generic PUP.x!999325794ADA

Generic.bfr!A96F54140456

Generic PUP.x!5D5E8D894EC3

Generic PUP.x!F0932739C8D0

Generic PUP.x!2994640F0756

Generic PUP.x!E914D9D2BA0F

Generic PUP.x!F42939053A8A

Phishing

Barclays

18th June 2014

Dear Barclays Memeber,

Virgin Media

18th June 2014

Virgin Media Update

Virgin Media

17th June 2014

[Norton Anti]Virgin Media
Automated Billing Reminder

Virgin Media Online

17th June 2014

Virgin Media Automated Billing
Reminder

Vulnerebility

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-18
http://www.securityfocus.com/bid/66363

Cisco Adaptive Security Appliance WebVPN Portal Information Disclosure Vulnerability
2014-06-18
http://www.securityfocus.com/bid/68063

Apache Solr CVE-2013-6407 XML External Entity Injection Vulnerability
2014-06-18
http://www.securityfocus.com/bid/64008

Apache Solr 'SolrResourceLoader' Directory Traversal Vulnerability
2014-06-18
http://www.securityfocus.com/bid/63935

Apache Solr CVE-2013-6408 XML External Entity Injection Vulnerability
2014-06-18
http://www.securityfocus.com/bid/64009

Mozilla Netscape Portable Runtime CVE-2014-1545 Out of Bounds Memory Corruption Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67975

apt CVE-2014-0478 Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/68034

Libxml2 Entity Substituton CVE-2014-0191 Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67233

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67898

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66801

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-06-18
http://www.securityfocus.com/bid/66279

openSUSE rubygems Unspecified Security Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66062

Symantec Web Gateway CVE-2014-1651 SQL Injection Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67754

Symantec Web Gateway CVE-2014-1652 Multiple Cross Site Scripting Vulnerabilities
2014-06-18
http://www.securityfocus.com/bid/67755

Adobe Flash Player and AIR CVE-2014-0535 Unspecified Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67970

Adobe Flash Player and AIR CVE-2014-0531 Unspecified Cross Site Scripting Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67962

Adobe Flash Player and AIR CVE-2014-0532 Unspecified Cross Site Scripting Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67973

Adobe Flash Player and AIR CVE-2014-0533 Unspecified Cross Site Scripting Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67974

Adobe Flash Player and AIR CVE-2014-0534 Unspecified Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67963

Adobe Flash Player and AIR CVE-2014-0536 Unspecified Memory Corruption Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67961

Linux Kernel CVE-2014-3940 Unspecified Security Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67786

Linux Kernel AACRAID Driver Compat IOCTL Local Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/63888

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/66678

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67900

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67193

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67899

Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
2014-06-18
http://www.securityfocus.com/bid/61050

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-18
http://www.securityfocus.com/bid/67121

SAP NetWeaver Business Client Multiple Cross Site Scripting Vulnerabilities
2014-06-18
http://www.securityfocus.com/bid/67995

Exploit

  Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerability

  Java Debug Wire Protocol Remote Code Execution

  Adobe Reader for Android addJavascriptInterface Exploit

  Motorola SBG901 Wireless Modem - CSRF Vulnerability

  ZTE WXV10 W300 - Multiple Vulnerabilities

17.6.2014

Bugtraq

[SECURITY] [DSA 2960-1] icedove security update 2014-06-16
Moritz Muehlenhoff (jmm debian org)

[CFP] Hacktivity 2014 CFP is open 2014-06-16
ferenc spala hacktivity com

[SECURITY] [DSA 2959-1] chromium-browser security update 2014-06-14
Michael Gilbert (mgilbert debian org)

[SE-2014-01] Security vulnerabilities in Oracle Database Java VM 2014-06-16
Security Explorations (contact security-explorations com)

ClipBucket CMS Xss Vulnerability 2014-06-14
iedb team gmail com

Malware

Generic PUP.x!9029A777A670

Generic PUP.x!C5CEB22DBF83

Generic.dx!000FD2678BBF

Generic PUP.x!D7EF75B8630D

Generic PUP.x!C265D53056C7

Generic PUP.x!764E467BC1DD

Generic PUP.x!87EF977E4594

Generic PUP.x!31288963B755

RDN/Generic PUP.z!eb!464CB826686D

Generic PUP.x!E0799769F010

RDN/Spybot.bfr!0C03E8DD073E

Generic PUP.x!E0973C17EBAA

Generic.bfr!A4B811716CA6

RDN/Generic.dx!dcv!F68323707D19

Generic Downloader.x!9DAE48EBE350

Generic PUP.x!C6AA7C6F3AEA

Generic PUP.x!C637D8DB5531

Generic PUP.x!9D21D00C8A16

Generic PUP.x!D3EA96D37E55

RDN/Generic.dx!5E2FCF93265B

Generic PUP.x!0011B6E185E0

RDN/Generic PUP.x!C9A177CB1CC3

Generic PUP.x!C70ACE58DEED

Generic PUP.x!154A2E87A0BE

Generic Downloader.x!243ABCD5E169

Generic PUP.x!B278B6BA8A54

Generic PUP.x!AE1E8DF6EE0F

Generic PUP.x!B4EEDD0714A6

Generic PUP.x!C71E3E29E0AC

RDN/Generic.bfr!hj!2A7B0881C811

Phishing

Barclays

17th June 2014

Dear Barclays Memeber,

Halifax

16th June 2014

IMPORTANT - Halifax Online
Service Message.

PayPal

16th June 2014

REQUIRE: UPDATE YOUR PAYPAL
PROFILE INFORMATION

UNITED NATIONS ORGANIZATION

14th June 2014

CONFIRM THE CHANGE OF ACCOUNT

Vulnerebility

Microsoft Internet Explorer CVE-2014-1794 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67886

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67899

Microsoft Internet Explorer CVE-2014-2757 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67842

Microsoft Internet Explorer CVE-2014-1788 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67880

Microsoft Internet Explorer CVE-2014-2756 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67841

Microsoft Internet Explorer CVE-2014-2755 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67840

Microsoft Internet Explorer CVE-2014-2753 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67838

Microsoft Internet Explorer CVE-2014-2754 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67839

Microsoft Internet Explorer CVE-2014-1781 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67874

Microsoft Internet Explorer CVE-2014-1783 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67876

Microsoft Internet Explorer CVE-2014-1780 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67873

Microsoft Internet Explorer CVE-2014-1789 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67881

Microsoft Internet Explorer CVE-2014-1782 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67875

Microsoft Internet Explorer CVE-2014-1797 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67890

Microsoft Internet Explorer CVE-2014-1796 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67889

Microsoft Internet Explorer CVE-2014-1779 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67872

Microsoft Internet Explorer CVE-2014-1784 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67877

Microsoft Internet Explorer CVE-2014-1799 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67891

Microsoft Internet Explorer CVE-2014-1791 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67884

Microsoft Internet Explorer CVE-2014-1795 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67887

Microsoft Internet Explorer CVE-2014-1792 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67885

Microsoft Internet Explorer CVE-2014-1786 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67879

Microsoft Internet Explorer CVE-2014-1790 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67883

Microsoft Internet Explorer CVE-2014-1785 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67878

Microsoft Internet Explorer CVE-2014-1777 Information Disclosure Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67869

Microsoft Internet Explorer CVE-2014-1771 Information Disclosure Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67861

Microsoft Internet Explorer CVE-2014-1802 Remote Memory Corruption Vulnerability
2014-06-17
http://www.securityfocus.com/bid/67833

Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities
2014-06-17
http://www.securityfocus.com/bid/61189

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67898

Microsoft Internet Explorer CVE-2014-2759 Remote Memory Corruption Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67845

Exploit

  Java Debug Wire Protocol Remote Code Execution

  Easy File Management Web Server Stack Buffer Overflow

  Adobe Reader for Android addJavascriptInterface Exploit

16.6.2014

Bugtraq

[ MDVSA-2014:124 ] kernel 2014-06-13
security mandriva com

[SECURITY] CVE-2013-2251: Apache Continuum affected by Remote Command Execution 2014-06-13
Brett Porter (brett apache org)

[security bulletin] HPSBUX03046 SSRT101590 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Code Execution, Security Restriction Bypass, Disclosure of Information, or Unauthorized Access 2014-06-13
security-alert hp com

AST-2014-006: Asterisk Manager User Unauthorized Shell Access 2014-06-12
Asterisk Security Team (security asterisk org)

CVE-2014-0228: Apache Hive Authorization vulnerability 2014-06-12
Thejas Nair (thejas hortonworks com)

[security bulletin] HPSBST03016 rev.4 - HP P2000 G3 MSA Array Systems, HP MSA 2040 Storage, and HP MSA 1040 Storage running OpenSSL, Remote Disclosure of Information 2014-06-12
security-alert hp com

AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions 2014-06-12
Asterisk Security Team (security asterisk org)

AST-2014-007: Exhaustion of Allowed Concurrent HTTP Connections 2014-06-12
Asterisk Security Team (security asterisk org)

Malware

Phishing

 

Vulnerebility

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67900

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67899

Linux Kernel 'drivers/net/wireless/ath/ath9k/xmit.c' Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/66492

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-06-16
http://www.securityfocus.com/bid/66779

Microsoft Internet Explorer CVE-2014-1776 Remote Code Execution Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67075

Mozilla Netscape Portable Runtime CVE-2014-1545 Out of Bounds Memory Corruption Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67975

chkrootkit 'slapper()' Function Local Privilege Escalation Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67813

Microsoft Windows 'Windows Shell' Handler Local Privilege Escalation Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67276

Microsoft .NET Framework TypeFilterLevel CVE-2014-1806 Remote Privilege Escalation Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67286

AlienVault Multiple Security Vulnerabilities
2014-06-16
http://www.securityfocus.com/bid/68018

Linux Kernel 'filter.c' CVE-2014-3145 Local Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67321

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67302

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67300

Linux Kernel 'filter.c' CVE-2014-3144 Multiple Local Denial of Service Vulnerabilities
2014-06-16
http://www.securityfocus.com/bid/67309

RETIRED: Linux Kernel 'n_tty.c' Memory Corruption Vulnerability
2014-06-16
http://www.securityfocus.com/bid/67282

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/66678

Linux Kernel CVE-2014-2678 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/66543

Linux Kernel 'mac80211/sta_info.c' NULL Pointer Dereference Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/66591

Linux Kernel 'ip6_route_add()' Function Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/66095

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/65943

Linux Kernel CVE-2014-2039 Local Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/65700

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-06-16
http://www.securityfocus.com/bid/66279

Linux Kernel '/fs/cifs/file.c' Local Memory Corruption Vulnerability
2014-06-16
http://www.securityfocus.com/bid/65588

Linux Kernel CVE-2013-2897 Heap Buffer Overflow Vulnerability
2014-06-16
http://www.securityfocus.com/bid/62044

Linux Kernel KVM 'kvm_set_irq()' Function Local Buffer Overflow Vulnerability
2014-06-16
http://www.securityfocus.com/bid/54063

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-06-16
http://www.securityfocus.com/bid/65459

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-16
http://www.securityfocus.com/bid/66363

Horde_Ldap Authentication Bypass Vulnerability
2014-06-16
http://www.securityfocus.com/bid/68014

Exploit

 

13.6.2014

Bugtraq

[security bulletin] HPSBUX03046 SSRT101590 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Code Execution, Security Restriction Bypass, Disclosure of Information, or Unauthorized Access 2014-06-13
security-alert hp com

AST-2014-006: Asterisk Manager User Unauthorized Shell Access 2014-06-12
Asterisk Security Team (security asterisk org)

CVE-2014-0228: Apache Hive Authorization vulnerability 2014-06-12
Thejas Nair (thejas hortonworks com)

[security bulletin] HPSBST03016 rev.4 - HP P2000 G3 MSA Array Systems, HP MSA 2040 Storage, and HP MSA 1040 Storage running OpenSSL, Remote Disclosure of Information 2014-06-12
security-alert hp com

AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions 2014-06-12
Asterisk Security Team (security asterisk org)

Malware

Generic PUP.x!4F1625E56C9B

Generic PUP.x!0198BF5519FE

Generic PUP.x!BA0593BA83E8

Generic PUP.x!171D190F2C4D

Generic PUP.x!7DA4C250F12A

Generic PUP.x!55E0AEB7BA42

Generic PUP.x!97BDACE8E7CD

Generic PUP.x!0EC8F4CB1FAB

Generic PUP.x!621E0719B7A5

Generic PUP.x!B65B10AC52BA

Generic PUP.x!35C2A3037941

Generic Downloader.x!D8D229A8DBA5

Generic PUP.x!0524DCBEA108

Generic PUP.x!080FAF320D0C

RDN/Generic.bfr!hi!47151F64FC74

Generic.tfr!CDE55C90FABA

Generic PUP.x!2EA9A94CFE76

Generic PUP.x!61F61748AA90

RDN/Generic.dx!dct!8E8A69E6EB99

Generic PUP.x!30F52F6C113F

RDN/Generic.bfr!CB88D6B1DCED

Generic PUP.x!45A22F141692

Generic PUP.z!DB70A042E285

Generic PUP.x!0185FBDF05AA

Generic.bfr!0B8A7331E835

Generic PUP.x!4215D1838140

Generic PUP.x!B16BB740F0FD

RDN/Generic BackDoor!AA03C9F4FB1C

RDN/Downloader.a!rh!535C9F1AA3DC

RDN/Generic.bfr!CEF77754A1B2

Phishing

 

Vulnerebility

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67899

MediaWiki 'Special:PasswordReset' Cross Site Scripting Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67787

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67302

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2013-7339 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/66351

GNU Libtasn1 CVE-2014-3468 Remote Code Execution Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67745

GNU Libtasn1 CVE-2014-3467 Multiple Denial of Service Vulnerabilities
2014-06-13
http://www.securityfocus.com/bid/67749

GNU Libtasn1 'asn1_read_value_type()' Function Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67748

JSON-C 'printbuf' API CVE-2013-6370 Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/66720

JSON-C Weak Hash Function CVE-2013-6371 Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/66715

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-06-13
http://www.securityfocus.com/bid/66690

GnuTLS 'gnutls_x509_dn_oid_name()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67739

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67741

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67901

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67193

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67900

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-13
http://www.securityfocus.com/bid/66363

MediaWiki 'InfoAction.php' HTML Injection Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67068

MediaWiki Multiple Security Vulnerabilities
2014-06-13
http://www.securityfocus.com/bid/65003

MediaWiki Multiple Remote Code Execution Vulnerabilities
2014-06-13
http://www.securityfocus.com/bid/65223

Microsoft Internet Explorer CVE-2014-2772 Remote Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67857

Microsoft Internet Explorer CVE-2014-1797 Remote Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67890

Microsoft Internet Explorer CVE-2014-1800 Remote Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67831

Microsoft Internet Explorer CVE-2014-2758 Remote Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67843

Microsoft Internet Explorer CVE-2014-2757 Remote Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67842

Microsoft Internet Explorer CVE-2014-1799 Remote Memory Corruption Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67891

Microsoft Internet Explorer CVE-2014-1766 Remote Code Execution Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67518

HP Service Virtualization CVE-2013-6221 Unspecified Remote Code Execution Vulnerability
2014-06-13
http://www.securityfocus.com/bid/67989

Exploit

  ZTE and TP-Link RomPager - DoS Exploit

  Yealink VoIP Phone SIP-T38G - Default Credentials

  Yealink VoIP Phone SIP-T38G - Local File Inclusion

  Yealink VoIP Phone SIP-T38G - Remote Command Execution

  Yealink VoIP Phone SIP-T38G - Privileges Escalation

  IBM AIX 6.1.8 libodm - Arbitrary File Write

  Plesk 10.4.4/11.0.9 - SSO XXE/XSS Injection Exploit

  ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation

  PostgreSQL <= 8.4.1 JOIN Hashtable Size Integer Overflow Denial Of Service Vulnerability

12.6.2014

Bugtraq

CVE-2014-3977 - Privilege Escalation in IBM AIX 2014-06-11
Portcullis Advisories (advisories portcullis-security com)

NEW : VMSA-2014-0006 - VMware product updates address OpenSSL security vulnerabilities 2014-06-11
\VMware Security Response Center\ (security vmware com)

[security bulletin] HPSBMU03045 rev.1 - HP Service Virtualization Running AutoPass License Server, Remote Code Execution 2014-06-10
security-alert hp com

[ MDVSA-2014:120 ] miniupnpc 2014-06-10
security mandriva com

[ MDVSA-2014:118 ] emacs 2014-06-10
security mandriva com

[ MDVSA-2014:121 ] libgadu 2014-06-10
security mandriva com

[ MDVSA-2014:119 ] mediawiki 2014-06-10
security mandriva com

Malware

Generic PUP.x!F93D22F0E33F

Generic PUP.x!7672ACD56EBE

Generic PUP.x!072D6D6054AC

Generic PUP.x!C2748F3EC2E7

Generic PUP.x!7FF5C943DA82

Generic PUP.x!4BCD152F7D0E

Generic PUP.x!4A6DCAC40FFC

Generic PUP.x!88BC09237709

Generic PUP.x!FEFC4E7AFB7B

Generic PUP.x!9BCA1F78621C

Generic PUP.x!85BD48782369

Generic PUP.x!522D40DCB069

Generic PUP.x!FC6F7A573369

Generic PUP.x!C80042A441AA

Generic PUP.x!DD92459A447B

Generic PUP.x!C411C1230619

RDN/Generic.dx!dcs!FD781559041C

Generic PUP.x!DBB008C9BE05

RDN/Generic Downloader.x!kj!DAC04D843D16

Generic PUP.x!C1D8CE5A57A9

RDN/Generic PUP.x!9787D6E4CEEA

Generic PUP.x!55492CEF3146

Generic PUP.x!8055B6FEE4B9

Generic PUP.x!DDCD2123DA43

RDN/Generic.bfr!C25B1F188E9D

Generic PUP.x!C1F1A46AC736

Generic PUP.x!C20EFFCDDF75

Generic PUP.x!225516523A47

Generic PUP.x!496EF6F5A803

Generic PUP.x!FAF3C3A40927

Phishing

PayPal

12th June 2014

PAYPAL ISSUE ; INFORMATIONS
REQUIRED

Vulnerebility

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67302

Linux Kernel CVE-2013-7339 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66351

Mozilla Firefox CVE-2014-1542 Remote Buffer Overflow Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67968

Mozilla Firefox/Thunderbird CVE-2014-1536 Memory Corruption Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67966

Mozilla Firefox/Thunderbird CVE-2014-1537 Memory Corruption Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67971

Mozilla Firefox CVE-2014-1540 Memory Corruption Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67978

Mozilla Firefox/Thunderbird CVE-2014-1534 Multiple Memory Corruption Vulnerabilities
2014-06-12
http://www.securityfocus.com/bid/67964

Mozilla Firefox/Thunderbird CVE-2014-1541 Memory Corruption Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67979

Mozilla Firefox/Thunderbird CVE-2014-1538 Memory Corruption Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67976

Mozilla Firefox/Thunderbird CVE-2014-1533 Multiple Memory Corruption Vulnerabilities
2014-06-12
http://www.securityfocus.com/bid/67965

Linux Kernel CVE-2014-3940 Unspecified Security Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67786

QEMU CVE-2013-4541 Remote Code Execution Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67394

QEMU Multiple Memory Corruption Vulnerabilities
2014-06-12
http://www.securityfocus.com/bid/67483

QEMU IDE SMART Out of Bounds Local Privilege Escalation Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66932

QEMU 'hw/usb/bus.c' Heap Based Buffer Overflow Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67392

QEMU 'virtio_load()' Function Memory Corruption Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66976

Cisco NX-OS Software HSRP Packet Parsing Denial of Service Vulnerability
2014-06-12
http://www.securityfocus.com/bid/67983

Jinja2 'jinja2.bccache.FileSystemBytecodeCache' Insecure File Permissions Vulnerability
2014-06-12
http://www.securityfocus.com/bid/64759

Oracle Java SE CVE-2014-2427 Remote Security Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66909

Multiple Oracle Java Products 'unpack.cpp' Insecure Temporary File Creation Vulnerability
2014-06-12
http://www.securityfocus.com/bid/65568

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-0457 Remote Code Execution Vulnerability
2014-06-12
http://www.securityfocus.com/bid/66866

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2014-06-11
http://www.securityfocus.com/bid/62857

GnuPG CVE-2012-6085 Multiple Remote Memory Corruption Vulnerabilities
2014-06-11
http://www.securityfocus.com/bid/57102

GnuPG Key Flags Subpacket Security Bypass Vulnerability
2014-06-11
http://www.securityfocus.com/bid/62921

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67900

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66801

Exploit

  IBM AIX 6.1.8 libodm - Arbitrary File Write

  SHOUTcast DNAS 2.2.1 - Stored XSS

11.6.2014

Bugtraq

[ MDVSA-2014:110 ] curl 2014-06-10
security mandriva com

[ MDVSA-2014:112 ] python-django 2014-06-10
security mandriva com

[ MDVSA-2014:111 ] otrs 2014-06-10
security mandriva com

[slackware-security] php (SSA:2014-160-01) 2014-06-09
Slackware Security Team (security slackware com)

[ MDVSA-2014:108 ] gnutls 2014-06-09
security mandriva com

[ MDVSA-2014:109 ] gnutls 2014-06-09
security mandriva com

[ MDVSA-2014:107 ] libtasn1 2014-06-09
security mandriva com

[ MDVSA-2014:106 ] openssl 2014-06-09
security mandriva com

Malware

Generic PUP.x!111575284A48

Generic PUP.x!4F5F4A758BB8

Generic PUP.x!0F7CEEDFAA63

Generic PUP.x!64EEF4389131

RDN/Downloader.gen.a!2E7ADA774FD1

Generic PUP.x!1251462A26C1

Generic PUP.x!37C2EBF0D8F5

Generic PUP.x!0337F0A07839

Generic PUP.x!26F3718D140D

RDN/Generic BackDoor!yq!2EDB24D22CE8

RDN/Generic PUP.x!cfj!E292C00DED1D

Generic PUP.x!102BAE03B849

Generic PUP.x!05E8B7251755

Generic PUP.x!599A253690F2

Generic PUP.x!2F59A309CEC4

RDN/Generic PUP.x!cfj!115726B125F0

Generic PUP.x!9E69E93404B9

Generic PUP.x!0CDE94974D16

Generic PUP.x!7C916743B019

Generic Downloader.x!2393AE519CA7

Generic PUP.x!0722916ABE18

Generic PUP.x!0FEBB92C71C1

Generic PUP.x!05B95F218D4D

Generic PUP.x!025B8C3004F3

Generic PUP.x!4FC95EF53F79

Generic PUP.x!10915721DA17

RDN/Generic PUP.x!cfj!D5C321490E1B

Generic.bfr!007416AEAB61

RDN/Generic PUP.x!cfj!411CC75E3F2E

Generic PUP.x!11F9CFF0BC87

Phishing

 

Vulnerebility

Linux Kernel CVE-2013-7339 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66351

Linux Kernel CVE-2014-1737 Function Local Privilege Escalation Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2014-1738 Local Privilege Escalation Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67302

Mozilla Firefox/Thunderbird CVE-2014-1541 Memory Corruption Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67979

Mozilla Firefox/Thunderbird CVE-2014-1538 Memory Corruption Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67976

Mozilla Firefox/Thunderbird CVE-2014-1533 Multiple Memory Corruption Vulnerabilities
2014-06-11
http://www.securityfocus.com/bid/67965

QEMU 'hw/usb/bus.c' Heap Based Buffer Overflow Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67392

QEMU CVE-2013-4541 Remote Code Execution Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67394

QEMU 'virtio_load()' Function Memory Corruption Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66976

QEMU Multiple Memory Corruption Vulnerabilities
2014-06-11
http://www.securityfocus.com/bid/67483

QEMU IDE SMART Out of Bounds Local Privilege Escalation Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66932

libgadu CVE-2014-3775 Memory Corruption Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67471

MediaWiki 'Special:PasswordReset' Cross Site Scripting Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67787

GNU Emacs Multiple Insecure Temporary File Handling Vulnerabilities
2014-06-11
http://www.securityfocus.com/bid/67253

SAP System Landscape Directory Unauthorized Access Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67923

Multiple SAP Components Hardcoded Credentials Information Disclosure Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67920

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67899

Microsoft Internet Explorer CVE-2014-1770 Remote Code Execution Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67544

Microsoft Internet Explorer CVE-2014-1762 Remote Code Execution Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67511

Microsoft Internet Explorer CVE-2014-1766 Remote Code Execution Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67518

Microsoft Internet Explorer CVE-2014-1764 Remote Code Execution Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67295

Squid CVE-2014-0128 Remote Denial of Service Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66112

policycoreutils seunshare CVE-2014-3215 Local Privilege Escalation Vulnerability
2014-06-11
http://www.securityfocus.com/bid/67341

Oracle MySQL Server CVE-2014-2438 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66846

Oracle MySQL Client CVE-2014-2440 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66850

Oracle MySQL Server CVE-2014-2432 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66875

Oracle MySQL Server CVE-2014-2419 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66880

Oracle MySQL Server CVE-2014-2430 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66858

Oracle MySQL Server CVE-2014-2436 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66896

Oracle MySQL Server CVE-2014-0384 Remote Security Vulnerability
2014-06-11
http://www.securityfocus.com/bid/66835

Exploit

  ZeroCMS 1.0 - (zero_view_article.php, article_id param) - SQL Injection Vulnerability

10.6.2014

Bugtraq

DNN (DotNetNuke®) dnnUI_NewsArticlesSlider Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) responsivesidebar Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) eventscalendar Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) EasyDnnGallery Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) CodeEditor Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

DNN (DotNetNuke®) ASPSlideshow Module Arbitrary File Download Vulnerability 2014-06-09
cseye_ut yahoo com

[security bulletin] HPSBMU03024 rev.3 - HP Insight Control Server Deployment on Linux and Windows running OpenSSL with System Management Homepage and Systems Insight Manager, Remote Disclosure of Information 2014-06-09
security-alert hp com

[slackware-security] mozilla-firefox (SSA:2014-157-01) 2014-06-07
Slackware Security Team (security slackware com)

Malware

Generic PUP.x!7C5A3325FCEC

Generic PUP.x!12F22DFC8AD1

Generic PUP.x!A6ADAE3F9CF3

Generic PUP.x!FE26847681A4

Generic PUP.x!ADE94005CD99

RDN/Generic.dx!dcq!DB63662E0BF9

RDN/Generic PUP.x!cfg!EB20AD8996A4

Generic PUP.x!7C0FD9937783

Generic PUP.x!19EE3BADE782

Generic.bfr!7F7577CBADA9

RDN/Generic PUP.x!C255F4C64905

Generic PUP.x!ADF7A4C54546

Generic PUP.x!384FE196A48A

RDN/Generic.bfr!4AF476E6A56E

Generic PUP.x!A25041135656

Generic PUP.x!5681B27945E9

RDN/Generic.bfr!4E6ED20147E7

Generic PUP.x!A6C4B816CEF3

Generic PUP.x!F4BC373E428E

RDN/Generic.bfr!hh!5B83ABA70043

RDN/Generic PUP.x!cfg!25EFDD87B095

Generic.bfr!57499CD3A0B4

Generic PUP.x!CFF5E95181F5

Generic PUP.x!F86BACEEEDF0

Generic PUP.x!79F5F0ADF99A

Generic-FAGW!E2E07755233B

Generic-FAGW!BC91A2D7E0BD

Generic PUP.x!7DE260264754

Generic PUP.x!769F8329AE60

Generic PUP.x!81E4AA889B2F

Phishing

BT

9th June 2014

BT Planned Software Uprade

CService@btinternet.com DnGMod

8th June 2014

CASE BT-0225-199852

Vulnerebility

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67121

Cisco Wireless LAN Controller CVE-2014-3291 Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67926

Cisco AsyncOS Software CVE-2014-3289 Cross Site Scripting Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67943

GnuTLS 'gnutls_x509_dn_oid_name()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67739

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67741

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67898

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67900

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67899

GNU Libtasn1 CVE-2014-3468 Remote Code Execution Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67745

GNU Libtasn1 'asn1_read_value_type()' Function Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67748

GNU Libtasn1 CVE-2014-3467 Multiple Denial of Service Vulnerabilities
2014-06-10
http://www.securityfocus.com/bid/67749

Dovecot Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67306

Libxml2 Entity Substituton CVE-2014-0191 Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67233

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-06-10
http://www.securityfocus.com/bid/66690

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/67193

RubyGems i18n Cross Site Scripting Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64076

Ruby on Rails CVE-2013-6416 Cross Site Scripting Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64071

Ruby on Rails 'NumberHelper' Module Multiple Cross Site Scripting Vulnerabilities
2014-06-10
http://www.securityfocus.com/bid/65647

RubyGems Action Mailer CVE-2013-4389 Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/63179

Ruby on Rails 'number_to_currency' Helper Cross Site Scripting Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64077

RubyGems actionpack CVE-2013-6414 Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64074

SUSE Studio CVE-2013-3712 Unspecified Security Vulnerability
2014-06-10
http://www.securityfocus.com/bid/65782

Ruby on Rails CVE-2014-0082 Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/65604

will_paginate Ruby Gem unspecified Cross Site Scripting Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64509

Samba SAMR Server Password Lockout Bypass Information Disclosure Weakness
2014-06-10
http://www.securityfocus.com/bid/66336

Samba CVE-2013-4124 Local Denial of Service Vulnerability
2014-06-10
http://www.securityfocus.com/bid/61597

Samba 'dcerpc_read_ncacn_packet_done()' Function Heap Buffer Overflow Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64191

Samba SWAT Cross Site Request Forgery and Clickjacking Vulnerabilities
2014-06-10
http://www.securityfocus.com/bid/57631

Samba 'pam_winbind' Configuration File Security Bypass Vulnerability
2014-06-10
http://www.securityfocus.com/bid/64101

Exploit

  eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability

  WebTitan 4.01 (Build 68) - Multiple Vulnerabilities

  DevExpress ASPxFileManager 10.2 to 13.2.8 - Directory Traversal

9.6.2014

Bugtraq

[Onapsis Security Advisories] Multiple Hard-coded Usernames in SAP Components 2014-06-06
Onapsis Research Labs (research onapsis com)

[Onapsis Security Advisory 2014-020] SAP SLD Information Tampering 2014-06-06
Onapsis Research Labs (research onapsis com)

[slackware-security] openssl (SSA:2014-156-03) 2014-06-06
Slackware Security Team (security slackware com)

[slackware-security] sendmail (SSA:2014-156-04) 2014-06-06
Slackware Security Team (security slackware com)

SEC Consult SA-20140606-0 :: Multiple critical vulnerabilities in WebTitan 2014-06-06
SEC Consult Vulnerability Lab (research sec-consult com)

[slackware-security] gnutls (SSA:2014-156-01) 2014-06-06
Slackware Security Team (security slackware com)

Malware

Generic PUP.x!D80B3F6AD766

RDN/Generic PUP.x!cfd!0F50C95951F4

RDN/Generic PUP.x!cfd!F1E914B0CFDD

Generic PUP.x!C05435681930

RDN/Generic PUP.x!cfd!6E51A1FC88E1

Generic PUP.x!F6DB70E195FB

Generic PUP.x!D5609B0651BB

RDN/Generic.dx!dcp!F9391C1B5D90

Generic PUP.x!D35AEF182A39

RDN/Generic PUP.x!52FF5F06C734

RDN/Generic PUP.x!cfd!B8F87A78A83C

Generic PUP.x!F8681B881486

Generic PUP.x!9CEB91358F94

RDN/Generic PUP.x!FC6155B85663

Generic PUP.x!3D72D657DFE3

Generic PUP.x!DA00B9E4D148

Generic PUP.x!4D422777C91C

Generic PUP.x!5468D5696DCE

RDN/Generic PUP.x!cfd!464EB9F883EF

Generic PUP.x!09877B7FEF30

RDN/Generic PUP.x!cfd!862E808D6D86

Generic Downloader.x!9B43100FE244

RDN/Generic PUP.x!F8306E03A4D0

RDN/Generic PUP.x!cfd!0C7475760A6A

Generic Downloader.x!BF52BDC92BF3

RDN/Generic PUP.x!cfd!099EB89A8407

Generic PUP.x!C5F5D26E76B1

RDN/Generic PUP.x!cfd!6C92A726D4C7

Generic PUP.x!391509E22613

Generic Downloader.x!BB6CE32DA5E4

Phishing

CService@btinternet.com DnGMod

8th June 2014

CASE BT-0225-199852

Paypal

7th June 2014

YOUR PAYPAL HAS BEEN LIMITED

BT

7th June 2014

Update For June 2014

Vulnerebility

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67898

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-06-09
http://www.securityfocus.com/bid/66690

dpkg Source Package Header Line Processing Local Directory Traversal Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67725

dpkg Source Package Index: pseudo-header Processing Multiple Local Directory Traversal Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67727

Linux Kernel CVE-2014-3153 Local Privilege Escalation Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67906

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67899

OpenSSL ECC Private Key Information Disclosure Vulnerability
2014-06-09
http://www.securityfocus.com/bid/50882

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67900

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67741

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67121

echoping CVE-2010-5111 Multiple Remote Buffer Overflow Vulnerabilities
2014-06-09
http://www.securityfocus.com/bid/45394

Mumble CVE-2014-0044 Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/65369

Mumble CVE-2014-3756 Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67401

Mumble CVE-2014-3755 Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67400

Mumble CVE-2014-0045 Heap Based Buffer Overflow Vulnerability
2014-06-09
http://www.securityfocus.com/bid/65374

EMC Documentum Content Server CVE-2014-2507 Shell Command Injection Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67916

EMC Documentum Content Server Remote Privilege Escalation Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67917

libfep Local Privilege Escalation Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67903

Linux Kernel CVE-2014-2568 Information Disclosure Vulnerability
2014-06-09
http://www.securityfocus.com/bid/66348

Linux Kernel 'mlock_vma_page()' Function Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67162

Linux Kernel 'get_rx_bufs()' Function Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/66441

Linux Kernel 'ipc_rcu_putref()' Function Local Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/63445

Linux Kernel 'fpu-internal.h' Local Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/64781

Linux Kernel CVE-2013-4470 Multiple Local Memory Corruption Vulnerabilities
2014-06-09
http://www.securityfocus.com/bid/63359

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2014-06-09
http://www.securityfocus.com/bid/62696

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-06-09
http://www.securityfocus.com/bid/66914

FreeBSD CVE-2014-3000 Remote Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/67153

FreeBSD CVE-2014-1453 Remote Denial of Service Vulnerability
2014-06-09
http://www.securityfocus.com/bid/66726

MuPDF 'xps_parse_color()' Function Stack Buffer Overflow Vulnerability
2014-06-09
http://www.securityfocus.com/bid/65036

Exploit

  Wordpress Theme Elegance - Post Local File Disclosure

  Wordpress Theme Infocus - Post Local File Disclosure

6.6.2014

Bugtraq

[security bulletin] HPSBMU03029 rev.2 - HP Insight Control Server Migration running OpenSSL, Remote Disclosure of Information 2014-06-05
security-alert hp com

Details for CVE-2014-0220 2014-06-05
tucu cloudera com

Malware

RDN/Generic PUP.x!c2y!EB5FAA71EF8C

RDN/Generic PUP.x!7600A1238FA6

RDN/Generic.tfr!ea!386341CF2D89

RDN/Generic PUP.x!c2y!F2EFB045DFE3

Generic PUP.x!76EFE6939698

Generic PUP.x!F52A87CCFA47

Generic PWS.y!7D9CAC5560F5

Generic.dx!EB45BC2DF903

RDN/Generic PUP.x!c2y!E9F01E0DADC3

RDN/Generic PUP.x!c2y!EB75D283D4E9

Generic PUP.x!3A20000D22A6

RDN/Generic.bfr!hf!A23E1F7B3455

RDN/Generic PUP.x!c2y!EA7D762016AB

Generic.dx!00B4A0A43678

RDN/Generic PUP.x!c2y!EA09FC0416CE

Generic.bfr!F77A91B7716C

Generic PUP.x!1D2D93E46AEB

Generic PUP.x!32234E455B90

Generic PUP.x!27CF59080F8E

RDN/Generic PUP.x!c2y!EA1B0CA3E1CD

RDN/Generic.bfr!hf!C95D10A92F7D

Generic.tfr!DD170D0A79E1

Generic PUP.x!7D7B75252EE7

Generic PUP.x!170768B54CBC

Generic.tfr!A308180AD4EF

RDN/Generic PUP.x!c2y!EA0A83B2F5F1

Generic PUP.x!B78AF7551054

Generic.tfr!480709465CA4

Generic.tfr!63D42A974ED6

Generic PUP.x!EAACDFCCA9CE

Phishing

 

Vulnerebility

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67193

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2014-06-06
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-06
http://www.securityfocus.com/bid/66363

Linux Kernel 'filter.c' CVE-2014-3144 Multiple Local Denial of Service Vulnerabilities
2014-06-06
http://www.securityfocus.com/bid/67309

Linux Kernel 'filter.c' CVE-2014-3145 Local Denial of Service Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67321

DIR-505 and DIR-505L Stack Buffer Overflow Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67651

Drupal Addressfield Tokens Module HTML Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67545

CoSoSys Endpoint Protector Multiple Security Vulnerabilities
2014-06-06
http://www.securityfocus.com/bid/67565

Glossaire Module for XOOPS '/modules/glossaire/glossaire-aff.php' SQL Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67460

PHP-Nuke 'Submit_News' Component SQL Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67656

Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability
2014-06-06
http://www.securityfocus.com/bid/66397

TYPO3 Unspecified PHP Object Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67630

TYPO3 HTTP Host Header Spoofing Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67626

Multiple F5 BIG-IP and Enterprise Manager 'list.jsp' Multiple Cross Site Scripting Vulnerabilities
2014-06-06
http://www.securityfocus.com/bid/67771

TYPO3 Extbase Framework Information Disclosure Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67624

TYPO3 Authentication Subcomponent Security Bypass Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67627

TYPO3 Session Hijacking Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67629

TYPO3 Backend Subcomponent Unspecified Cross Site Scripting Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67625

Mutt Mailreader 'mutt_copy_hdr()' Function Heap Based Buffer Overflow Vulnerability
2014-06-06
http://www.securityfocus.com/bid/66165

SystemTap DWARF Expression Local Denial of Service Vulnerability
2014-06-06
http://www.securityfocus.com/bid/52121

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-06-06
http://www.securityfocus.com/bid/66678

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-06-06
http://www.securityfocus.com/bid/66279

X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability
2014-06-06
http://www.securityfocus.com/bid/64127

X.Org X11 CVE-2013-1940 Local Information Disclosure Vulnerability
2014-06-06
http://www.securityfocus.com/bid/59282

python-gnupg CVE-2014-1928 Incomplete Fix Unspecified Remote Command Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/65548

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2014-06-06
http://www.securityfocus.com/bid/62892

Python-gnupg CVE-2014-1929 Remote Command Execution Vulnerability
2014-06-06
http://www.securityfocus.com/bid/65539

python-gnupg CVE-2014-1927 Incomplete Fix Unspecified Remote Command Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/65546

python-gnupg CVE-2013-7323 Unspecified Remote Command Injection Vulnerability
2014-06-06
http://www.securityfocus.com/bid/65540

Python Bottle JSON 'content-type' Parsing Security Bypass Vulnerability
2014-06-06
http://www.securityfocus.com/bid/67711

Exploit

  Madness Pro <= 1.14 - Persistent XSS

  Madness Pro <= 1.14 - SQL Injection

5.6.2014

Bugtraq

multiple Vulnerability in "WahmShoppes eStore" 2014-06-05
cseye_ut yahoo com

FreeBSD Security Advisory FreeBSD-SA-14:14.openssl 2014-06-05
FreeBSD Security Advisories (security-advisories freebsd org)

[SECURITY] [DSA 2949-1] linux security update 2014-06-05
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2950-1] openssl security update 2014-06-05
Moritz Muehlenhoff (jmm debian org)

[RT-SA-2014-006] Directory Traversal in DevExpress ASP.NET File Manager 2014-06-05
RedTeam Pentesting GmbH (release redteam-pentesting de)

[security bulletin] HPSBMU03033 rev.3 - HP Insight Control Software Components running OpenSSL, Remote Disclosure of Information 2014-06-04
security-alert hp com

[SECURITY] [DSA 2946-1] python-gnupg security update 2014-06-04
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2948-1] python-bottle security update 2014-06-04
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2947-1] libav security update 2014-06-04
Moritz Muehlenhoff (jmm debian org)

ESA-2014-024: EMC Documentum Digital Asset Manager Blind DQL Injection Vulnerability 2014-06-04
Security Alert (Security_Alert emc com)

Malware

RDN/Generic PWS.y!9C1F2B1B1648

RDN/Generic PUP.x!c2w!87C59D9E1472

RDN/Generic PWS.y!zu!13FEFBC65F7A

Generic PUP.x!2CA377AEF0D6

RDN/Generic.bfr!E693324ABD1F

RDN/FakeAV-N.bfr!d!160827D79093

Generic PUP.x!AA6BBA23F5A5

Generic PUP.x!9AF572CE6AB3

RDN/Generic.bfr!8776C0B44E4B

Generic PUP.x!09A1ECDB9A9D

Generic PUP.x!7DCF086C5064

Generic PUP.x!E697361019C0

Generic PUP.x!BDF57308CE55

Generic PUP.x!3C44A5571661

RDN/Generic PUP.x!c2w!D4DBC992B9DD

Generic PUP.x!B572D60E1FA1

Generic PUP.x!13D1B2CA15FB

Generic PUP.x!8C08D99CF5EB

RDN/Generic.bfr!hh!06D7859350FA

Generic PUP.x!4162735CA253

RDN/Downloader.a!rf!FC13041FD272

Generic PUP.x!0DBB857D2324

RDN/Generic.tfr!ea!D43FA5992107

Generic PUP.x!2C06409A68F5

Generic PUP.x!0BC934A0B5D1

Generic.bfr!E76D5AAD07D1

Generic PUP.x!4B5A138366C9

RDN/Generic Downloader.x!ki!066132901776

Generic PUP.x!5D5A0E147C22

Generic PUP.x!0CD56578BE2E

Phishing

Barclays

5th June 2014

For security purposes, your
online account has been
locked.

NatWest

4th June 2014

Access to Online Banking
Service !

Vulnerebility

Mutt Mailreader 'mutt_copy_hdr()' Function Heap Based Buffer Overflow Vulnerability
2014-06-05
http://www.securityfocus.com/bid/66165

SystemTap DWARF Expression Local Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/52121

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/66678

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-06-05
http://www.securityfocus.com/bid/66279

X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/64127

X.Org X11 CVE-2013-1940 Local Information Disclosure Vulnerability
2014-06-05
http://www.securityfocus.com/bid/59282

python-gnupg CVE-2014-1928 Incomplete Fix Unspecified Remote Command Injection Vulnerability
2014-06-05
http://www.securityfocus.com/bid/65548

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2014-06-05
http://www.securityfocus.com/bid/62892

Python-gnupg CVE-2014-1929 Remote Command Execution Vulnerability
2014-06-05
http://www.securityfocus.com/bid/65539

python-gnupg CVE-2014-1927 Incomplete Fix Unspecified Remote Command Injection Vulnerability
2014-06-05
http://www.securityfocus.com/bid/65546

python-gnupg CVE-2013-7323 Unspecified Remote Command Injection Vulnerability
2014-06-05
http://www.securityfocus.com/bid/65540

Python Bottle JSON 'content-type' Parsing Security Bypass Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67711

chkrootkit 'slapper()' Function Local Privilege Escalation Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67813

Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability
2014-06-05
http://www.securityfocus.com/bid/66397

Xen 'HVM MSI injection' CVE-2014-3967 Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67794

PulseAudio 'pa_rtp_recv()' Function Remote Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67814

SAP CCMS Agent Code Injection Vulnerability
2014-06-05
http://www.securityfocus.com/bid/58181

F-Secure Multiple Products ActiveX Remote Code Execution Vulnerability
2014-06-05
http://www.securityfocus.com/bid/59443

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-06-05
http://www.securityfocus.com/bid/66690

MediaWiki 'Special:PasswordReset' Cross Site Scripting Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67787

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-06-05
http://www.securityfocus.com/bid/66363

Sendmail File Descriptor Security Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67791

GNU Libtasn1 'asn1_read_value_type()' Function Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67748

GNU Libtasn1 CVE-2014-3468 Remote Code Execution Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67745

GNU Libtasn1 CVE-2014-3467 Multiple Denial of Service Vulnerabilities
2014-06-05
http://www.securityfocus.com/bid/67749

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67741

Squid CVE-2014-0128 Remote Denial of Service Vulnerability
2014-06-05
http://www.securityfocus.com/bid/66112

GNU Libtasn1 ASN1 Length DER Decoding Memory Corruption Vulnerability
2014-06-05
http://www.securityfocus.com/bid/52668

Apache Tomcat CVE-2014-0096 XML External Entity Information Disclosure Vulnerability
2014-06-05
http://www.securityfocus.com/bid/67667

Daktronics Vanguard Hardcoded Credentials Information Disclosure Vulnerability
2014-06-04
http://www.securityfocus.com/bid/67828

Exploit

 

4.6.2014

Bugtraq

 

Malware

Generic PUP.x!AAE8957666BD

Generic PUP.x!D541D667CF68

Generic PUP.x!47F3B3A343CA

RDN/Generic PUP.x!c2u!6626FEBC0A28

RDN/PWS-Mmorpg!lc!199F51629939

RDN/Generic PUP.x!c2u!9774AD7E768F

Generic PUP.x!20177D5E8A85

Generic PUP.x!2955127D41D3

RDN/Generic PUP.x!c2u!5D58ECC527CD

Generic PUP.x!2B93E5B30B37

Generic.bfr!D4D1287CD744

RDN/Generic PUP.x!c2u!C8DC32918F57

Generic PUP.x!85D888B8F3D4

RDN/Generic.dx!dcn!1104216282F2

Generic PUP.x!27105BD056C4

Generic PUP.x!2A8832560725

Generic PUP.x!285FD908C7B9

Generic PUP.x!1A1D087D1B8C

Generic PUP.x!1FA6488261F0

Generic PUP.x!2A085ED290E8

Generic PWS.y!D2AEF481312A

Generic PUP.x!67434C542DEB

Downloader.gen.a!72BC09BEE4DC

Generic PUP.x!4819D84E392C

RDN/Spybot.bfr!8A53BE91A8E7

Generic PUP.x!E99CA192D78D

RDN/Generic.dx!dcn!1193EB2925E5

RDN/Generic PUP.x!c2u!AD3A4D2C8337

RDN/Generic.bfr!hh!BFEA75D7ED1D

RDN/Generic.bfr!hh!250CEB1E740D

Phishing

Apple

4th June 2014

YOUR APPLE ITUNES ACCOUNT HAS
BEEN LIMITED

NatWest

3rd June 2014

Access to Online Banking
Service.

Vulnerebility

GNU Libtasn1 CVE-2014-3468 Remote Code Execution Vulnerability
2014-06-04
http://www.securityfocus.com/bid/67745

GNU Libtasn1 'asn1_read_value_type()' Function Denial of Service Vulnerability
2014-06-04
http://www.securityfocus.com/bid/67748

GNU Libtasn1 CVE-2014-3467 Multiple Denial of Service Vulnerabilities
2014-06-04
http://www.securityfocus.com/bid/67749

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-04
http://www.securityfocus.com/bid/67741

Squid CVE-2014-0128 Remote Denial of Service Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66112

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/60627

IBM DB2 and DB2 Connect CVE-2013-6717 Remote Denial of Service Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64336

Multiple IBM DB2 Products CVE-2014-0907 Local Privilege Escalation Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67617

Apache Struts 'CookieInterceptor' Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67218

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67121

RETIRED: Linux Kernel CVE-2014-0691 Local Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67543

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1518 Multiple Memory Corruption Vulnerabilities
2014-06-03
http://www.securityfocus.com/bid/67123

Mozilla Firefox and SeaMonkey CVE-2014-1522 Out of Bounds Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67127

Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66356

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66903

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1529 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67135

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64493

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1532 Use After Free Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67130

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1531 Use After Free Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67134

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1530 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67137

Mozilla Firefox CVE-2014-1520 Local Privilege Escalation Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67126

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1519 Multiple Memory Corruption Vulnerabilities
2014-06-03
http://www.securityfocus.com/bid/67125

Mozilla Firefox and SeaMonkey CVE-2014-1525 Use After Free Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67136

Mozilla Firefox and Seamonkey CVE-2014-1526 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67132

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1524 Remote Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67131

Mozilla Firefox/SeaMonkey CVE-2014-1528 Out of Bounds Memory Corruption Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67133

Linux Kernel 'tcp_rcv_state_process()' Function Denial of Service Vulnerability
2014-06-03
http://www.securityfocus.com/bid/65654

Apache HTTP Server Multiple Denial of Service Vulnerabilities
2014-06-03
http://www.securityfocus.com/bid/66303

Exploit

 

3.6.2014

Bugtraq

iScan Online Mobile 2.0.1 iOS - Command Inject Vulnerability 2014-06-03
Vulnerability Lab (admin vulnerability-lab com)

Bluetooth Photo-File Share v2.1 iOS - Multiple Web Vulnerabilities 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

TigerCom My Assistant v1.1 iOS - File Include Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

Privacy Pro v1.2 HZ iOS - File Include Web Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

AllReader v1.0 iOS - Multiple Web Vulnerabilities 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

Files Desk Pro v1.4 iOS - File Include Web Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

NG WifiTransfer Pro 1.1 - File Include Vulnerability 2014-06-03
Vulnerability Lab (research vulnerability-lab com)

LSE Leading Security Experts GmbH - LSE-2014-05-22 - F*EX - Multiple Issues 2014-06-03
advisories (advisories lsexperts de)

CVE-2013-6825 DCMTK Root Privilege escalation 2014-06-02
Hector Marco (hecmargi upv es)

FCKedtior 2.6.10 Reflected Cross-Site Scripting (XSS) 2014-06-02
Robin Bailey (Robin Bailey dionach com)

VUPEN Security Research - Adobe Acrobat & Reader XI-X "AcroBroker" Sandbox Bypass (Pwn2Own) 2014-06-02
VUPEN Security Research (advisories vupen com)

[FD] CVE-2013-6876 s3dvt Root shell 2014-06-02
Hector Marco (hecmargi upv es)

ESA-2014-032: RSA® Adaptive Authentication (Hosted) DOM Cross-Site Scripting Vulnerability 2014-06-02
Security Alert (Security_Alert emc com)

CVE-2014-2843 - "Reflected Cross-Site Scripting (XSS)" (CWE-79) vulnerability in "infoware MapSuite" 2014-06-01
Christian Schneider (mail Christian-Schneider net)

CVE-2014-2233 - "Server-Side Request Forgery" (CWE-918) vulnerability in "infoware MapSuite" 2014-06-01
Christian Schneider (mail Christian-Schneider net)

CVE-2014-2232 - "Absolute Path Traversal" (CWE-36) vulnerability in "infoware MapSuite" 2014-06-01
Christian Schneider (mail Christian-Schneider net)

CVE-2014-1226 s3dvt Root shell (still) 2014-06-02
Hector Marco (hecmargi upv es)

[SECURITY] [DSA 2942-1] typo3-src security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2944-1] gnutls26 security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[slackware-security] mariadb (SSA:2014-152-01) 2014-06-01
Slackware Security Team (security slackware com)

Yarubo #1: Arbitrary SQL Execution in Participants Database for Wordpress 2014-06-01
Yarubo Internet Security Scan (no-reply yarubo com)

[SECURITY] [DSA 2941-1] lxml security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2943-1] php5 security update 2014-06-01
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2939-1] chromium-browser security update 2014-05-31
Michael Gilbert (mgilbert debian org)

Malware

Generic PUP.x!D5E0C6072B90

Generic PUP.x!30C01ED0E752

Generic PUP.x!A13A89F8DD4C

Generic PUP.x!40FF02EC873F

CryptInno!802EB529CFF2

Generic PUP.x!A8C5DA3113A5

CryptInno!809A7EC333CA

Generic PUP.x!04B028E481A6

RDN/Generic PUP.x!c2t!B9ED56936303

RDN/Spybot.bfr!743083F1D483

Generic PUP.x!03908C72AEB8

RDN/Generic PUP.x!214E7B9D27B3

Generic PUP.x!1BF43F7C82B2

Generic PUP.x!D077D267F39F

Generic PUP.x!5F0BB90DECFB

Generic.dx!9BC2DF2204C6

Generic PUP.x!E4581479CCFF

Generic PUP.x!43E29B009CF2

Generic Downloader.x!97695520F876

Generic PUP.x!B1A73FB7DD2C

Generic Downloader.x!B12557644E02

Generic PUP.x!397227FE0799

Generic PUP.x!625C37A9A2FB

RDN/Generic PUP.x!B9217C35E968

Generic PUP.x!183A2858F123

RDN/Generic Dropper!D021E091B859

Generic PUP.x!3E5A168C779E

Generic PUP.x!571A39DB4F36

Generic PUP.x!109DEA995E6D

Generic PUP.x!4DB67AA6F5A5

Phishing

Sainsburysbank.co.uk

3rd June 2014

LOCKED OUT OF SAINSBURY’S
ONLINE BANKING

Apple Europe

2nd June 2014

APPLE STORE PURCHASE
CONFIRMATION.

Vulnerebility

Apache Struts 'CookieInterceptor' Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67218

Apache Struts 'getClass()' Method Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67081

Apache Struts ClassLoader Manipulation Incomplete Fix Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67064

Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/65999

cURL/libcURL CVE-2014-0138 Remote Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66457

Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64937

Oracle Java SE CVE-2014-0423 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64914

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-06-03
http://www.securityfocus.com/bid/66279

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67121

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-06-03
http://www.securityfocus.com/bid/66678

Linux Kernel AACRAID Driver Compat IOCTL Local Security Bypass Vulnerability
2014-06-03
http://www.securityfocus.com/bid/63888

IBM Security Access Manager for Web CVE-2014-0963 Remote Denial of Service Vulnerability
2014-06-03
http://www.securityfocus.com/bid/67238

Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64918

Oracle Java SE CVE-2013-5910 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64933

Oracle Java SE CVE-2013-5899 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64928

Oracle Java SE CVE-2013-5896 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64926

Oracle Java SE CVE-2014-0376 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64907

Oracle Java SE CVE-2013-5888 Local Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64925

Oracle Java SE CVE-2013-5898 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64912

Oracle Java SE CVE-2013-5887 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64875

Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64930

Oracle Java SE CVE-2014-0373 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64922

Oracle Java SE CVE-2014-0375 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64916

Oracle Java SE CVE-2014-0403 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64920

Oracle Java SE CVE-2013-5878 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64927

Oracle Java SE CVE-2014-0415 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64899

Oracle Java SE CVE-2014-0387 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64882

Oracle Java SE CVE-2013-5889 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64931

Oracle Java SE CVE-2014-0410 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64915

Oracle Java SE CVE-2014-0424 Remote Security Vulnerability
2014-06-03
http://www.securityfocus.com/bid/64919

Exploit

     Wordpress Participants Database 1.5.4.8 - SQL Injection

  dbus-glib pam_fprintd - Local Root Exploit

  PHPBTTracker+ 2.2 - SQL Injection

  NG WifiTransfer Pro 1.1 - Local File Inclusion

  Files Desk Pro v1.4 iOS - Local File Inclusion

  Privacy Pro v1.2 HZ iOS - Local File Inclusion

  TigerCom My Assistant 1.1 iOS - Local File Inclusion

  AllReader 1.0 iOS - Multiple Vulnerabilities

  Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities

2.6.2014

Bugtraq

 

Malware

W32/Virus.gen!1DF570344FE4

Generic PUP.x!191734D6FAC7

Generic PUP.x!A1FFD41C222A

Generic PUP.x!E9B17414975B

Generic PUP.x!9FDADB0C7140

Generic PUP.x!EE9B03D7C7CB

Generic PUP.x!832058952004

Generic BackDoor!3313FA31AA71

Generic PUP.x!8793A2923140

Generic PUP.x!64B4C3ECD18E

Generic PUP.x!E12DA6D82DF1

Generic PUP.x!0F797399567C

Generic PUP.x!302BADDE926F

Generic PUP.x!8DD4F7A9F18C

Generic PUP.x!561EB04C21CB

Generic PUP.x!A00EE0E4AB23

Generic.dx!482D14CE2CC7

Generic PUP.x!E826B86E2A70

Generic PUP.x!7ED2ED8AD089

Generic PUP.x!108CA96A4DF9

Generic PUP.x!36AC110255BE

Generic PUP.x!06F6F4A4EF15

Generic PUP.x!0D351CE92788

Generic PUP.x!D08B9049E708

Generic.bfr!80FE41CA6CEA

Generic PUP.x!FF0A8477F1B5

Generic PUP.x!303CE7D61662

Generic PUP.x!9FDA1D6C6789

Generic PUP.x!DBF739FCB26B

Generic PUP.x!5E27C42520C3

Phishing

Sainsburysbank.co.uk

2nd June 2014

LOCKED OUT OF SAINSBURY’S
ONLINE BANKING

PayPal

2nd June 2014

PAYPAL ISSUE ; INFORMATIONS
REQUIRED

Sainsburysbank.co.uk

1st June 2014

LOCKED OUT OF SAINSBURY’S
ONLINE BANKING

PayPal

1st June 2014

PAYPAL ISSUE ; INFORMATIONS
REQUIRED

Vulnerebility

IBM WebSphere Application Server CVE-2014-0964 Denial of Service Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67322

Apache Struts 'CookieInterceptor' Security Bypass Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67218

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67121

Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-06-02
http://www.securityfocus.com/bid/64918

Oracle Java SE CVE-2014-0416 Remote Security Vulnerability
2014-06-02
http://www.securityfocus.com/bid/64937

Oracle Java SE CVE-2014-0423 Remote Security Vulnerability
2014-06-02
http://www.securityfocus.com/bid/64914

Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability
2014-06-02
http://www.securityfocus.com/bid/65767

dbus-glib CVE-2013-0292 Local Privilege Escalation Vulnerability
2014-06-02
http://www.securityfocus.com/bid/57985

Linux Kernel CVE-2013-2094 Local Privilege Escalation Vulnerability
2014-06-02
http://www.securityfocus.com/bid/59846

Cisco Unified Web and E-Mail Interaction Manager XML External Entity Injection Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67458

Fail2ban Multiple Denial of Service Vulnerabilities
2014-06-02
http://www.securityfocus.com/bid/60467

Fail2ban Postfix Filter Remote Denial of Service Vulnerability
2014-06-02
http://www.securityfocus.com/bid/65184

'libarchive' Multiple Remote Vulnerabilities
2014-06-02
http://www.securityfocus.com/bid/47737

libarchive 'archive_write_zip_data()' Function Local Denial of Service Vulnerability
2014-06-02
http://www.securityfocus.com/bid/58926

libdbus 'DBUS_SYSTEM_BUS_ADDRESS' Variable Local Privilege Escalation Vulnerability
2014-06-02
http://www.securityfocus.com/bid/55517

GnuTLS 'gnutls_handshake.c' Memory Corruption Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67741

PHP FPM 'php-fpm.conf.in' Local Privilege Escalation Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67118

PHP Fileinfo Component Out of Bounds Memory Corruption Vulnerability
2014-06-02
http://www.securityfocus.com/bid/66002

lxml 'clean_html' Function Security Bypass Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67159

Google Chrome 35.0.1916.114 Multiple Security Vulnerabilities
2014-06-02
http://www.securityfocus.com/bid/67517

Moodle CVE-2014-0218 Cross Site Scripting Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67479

Moodle CVE-2014-0215 Remote Information Disclosure Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67476

Moodle CVE-2014-0213 Cross Site Request Forgery Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67477

Moodle MoodleMobile Token Expiry Security Bypass Weakness
2014-06-02
http://www.securityfocus.com/bid/67478

Moodle CVE-2014-0216 Unauthorized Access Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67475

Moodle courses Remote Information Disclosure Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67480

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1518 Multiple Memory Corruption Vulnerabilities
2014-06-02
http://www.securityfocus.com/bid/67123

Dojo Versions Prior to 1.4.2 Multiple Cross Site Scripting Vulnerabilities
2014-06-02
http://www.securityfocus.com/bid/38739

Mumble CVE-2014-0045 Heap Based Buffer Overflow Vulnerability
2014-06-02
http://www.securityfocus.com/bid/65374

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1524 Remote Memory Corruption Vulnerability
2014-06-02
http://www.securityfocus.com/bid/67131

Exploit

Easy File Management Web Server v5.3 - UserID Remote Buffer Overflow (ROP)

31.5.2014

Bugtraq

Google Compute Engine Multiple DOS Vulnerabilities 2014-05-30
Scott T. Cameron (routehero gmail com)

Google Compute Engine - Lateral Compromise 2014-05-30
Scott T. Cameron (routehero gmail com)

Malware

Generic PUP.x!83FF61379B73

RDN/Generic BackDoor!yn!4A11329D913C

Generic BackDoor!7A43FD6A0317

Generic PUP.x!23E64623AA33

Generic PUP.x!07E5DC888F0C

Generic PUP.x!2F5449BCD908

Generic.dx!AAE51DBB4D9D

Generic PUP.x!7C19EEBA8334

RDN/Generic Downloader.x!ki!688116E11209

RDN/Generic PWS.y!zt!349C5C9B097C

Generic.bfr!089A9547DF4D

RDN/Generic.bfr!5F82042E369C

RDN/Generic.bfr!63FC38E32EAD

Generic PUP.x!5ABAE9D4B892

Generic PUP.x!001AD2BA1CCB

Generic.bfr!E181A55D167B

Generic PUP.x!B5D13B322CCB

Generic PUP.x!4A486AB6D291

RDN/Generic PWS.y!49E3C93399D4

Generic PUP.x!7D09E5CEFB3A

Generic PUP.x!4B4B9C276CA1

Generic PUP.x!9E7A6D6F36FE

Generic PUP.x!AD5345A0382E

Generic PUP.x!9A701495049E

Generic PUP.x!5834EBF3BD46

Generic PUP.x!0A03140D2BC6

Generic PUP.x!94676B95C989

RDN/Generic PUP.x!457639667636

Generic.bfr!7DF5DCB0C870

FakeAV-N.bfr!58E5E20F5CB5

Phishing

 

Vulnerebility

Moodle CVE-2014-0218 Cross Site Scripting Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67479

Moodle CVE-2014-0215 Remote Information Disclosure Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67476

Moodle CVE-2014-0213 Cross Site Request Forgery Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67477

Moodle MoodleMobile Token Expiry Security Bypass Weakness
2014-05-31
http://www.securityfocus.com/bid/67478

Moodle CVE-2014-0216 Unauthorized Access Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67475

Moodle courses Remote Information Disclosure Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67480

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1518 Multiple Memory Corruption Vulnerabilities
2014-05-31
http://www.securityfocus.com/bid/67123

Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-05-31
http://www.securityfocus.com/bid/64918

Dojo Versions Prior to 1.4.2 Multiple Cross Site Scripting Vulnerabilities
2014-05-31
http://www.securityfocus.com/bid/38739

Mumble CVE-2014-0045 Heap Based Buffer Overflow Vulnerability
2014-05-31
http://www.securityfocus.com/bid/65374

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1524 Remote Memory Corruption Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67131

Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability
2014-05-31
http://www.securityfocus.com/bid/66356

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1529 Security Bypass Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67135

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1523 Out of Bounds Denial of Service Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67129

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1531 Use After Free Memory Corruption Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67134

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1530 Security Bypass Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67137

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1532 Use After Free Memory Corruption Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67130

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67121

Cumin CVE-2013-6445 Password Hash Algorithm Security Weakness
2014-05-31
http://www.securityfocus.com/bid/67733

Ruby on Rails 'implicit render' Functionality Directory Traversal Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67244

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-05-31
http://www.securityfocus.com/bid/64493

Oracle Java SE CVE-2014-2420 Remote Security Vulnerability
2014-05-31
http://www.securityfocus.com/bid/66919

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-05-31
http://www.securityfocus.com/bid/66881

Joomla! Youtube Gallery Component 'flvthumbnail.php' Cross-Site Scripting Vulnerability
2014-05-31
http://www.securityfocus.com/bid/66245

PCMan's FTP Server 'USER' Command Buffer Overflow Vulnerability
2014-05-31
http://www.securityfocus.com/bid/60837

libgadu CVE-2014-3775 Memory Corruption Vulnerability
2014-05-31
http://www.securityfocus.com/bid/67471

Pidgin 'gg_http_watch_fd()' Function Buffer Overflow Vulnerability
2014-05-31
http://www.securityfocus.com/bid/65188

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-05-31
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-05-31
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-05-31
http://www.securityfocus.com/bid/64935

Exploit

  Ubuntu 12.04.0-2LTS x64 perf_swevent_init - Kernel Local Root Exploit   

   ElasticSearch Dynamic Script Arbitrary Java Execution

  Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

30.5.2014

Bugtraq

Mybb Sendthread Page Denial of Service Vulnerability 2014-05-29
iedb team gmail com

OpenCart 1.5.6.4 Directory Traversal Vulnerability 2014-05-29
iedb team gmail com

Defense in depth -- the Microsoft way (part 15): unquoted arguments in 120 (of 462) command lines 2014-05-28
Stefan Kanthak (stefan kanthak nexgo de)

[RT-SA-2014-005] SQL Injection in webEdition CMS File Browser Installer Script 2014-05-28
RedTeam Pentesting GmbH (release redteam-pentesting de)

[RT-SA-2014-004] Remote Command Execution in webEdition CMS Installer Script 2014-05-28
RedTeam Pentesting GmbH (release redteam-pentesting de)

Multiple vulnerabilities in Sharetronix 2014-05-28
High-Tech Bridge Security Research (advisory htbridge com)

Malware

RDN/Generic Dropper!un!12F9D56754B2

Generic PUP.x!18F0A2DA27FD

Generic PUP.x!F9D12A1E03B2

RDN/Generic Downloader.x!ki!EEB108329182

FakeAV-N.bfr!EC3B0D5CEABA

Generic PUP.x!30FF6135E193

Generic PUP.x!103DD23C805F

RDN/Generic PUP.x!2A19A7E5C8D2

RDN/Generic.dx!5BAE6013A2D1

Generic PUP.x!7564A95AC3CE

Generic PUP.x!6AE3FE1AE44F

Generic PUP.x!BF4738DB8E7F

RDN/Generic PUP.x!978E91A686C9

W32/Spybot.bfr!0F122DDB9AD7

Generic PUP.x!8CE7B92AA0FB

RDN/Generic Downloader.x!ki!4369EDD8D776

RDN/Generic.bfr!hh!FECD3B62B663

RDN/Generic BackDoor!yn!28D9096A563B

RDN/Generic BackDoor!yn!EDF03E0CCC4F

RDN/Generic PUP.x!c2o!D1BBE83FC935

RDN/Generic PUP.x!c2o!F7CA7415471B

RDN/Generic BackDoor!F9C711C918B9

Generic PUP.x!22DA11B38296

Generic PUP.x!938CB624D92C

Generic.tfr!23087CD83CA2

Generic PUP.x!7BF6439D78ED

RDN/Generic.tfr!ea!E6B259491C63

RDN/DNSChanger.bfr!F910B4271B2C

RDN/Generic.bfr!hh!DB61BD435DDB

RDN/Generic PWS.y!zt!D56C061125A4

Phishing

Barclays

30th May 2014

ONLINE ACCESS SUSPENDED

Barclays

29th May 2014

Errors Were Detected On Your
Account

VirginMedia

29th May 2014

VirginMedia account disabled,
please confirm your profile!

Security-team

29th May 2014

POLICY UPDATES !

Vulnerebility

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-05-30
http://www.securityfocus.com/bid/64493

Oracle Java SE CVE-2014-2420 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66919

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66881

Joomla! Youtube Gallery Component 'flvthumbnail.php' Cross-Site Scripting Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66245

PCMan's FTP Server 'USER' Command Buffer Overflow Vulnerability
2014-05-30
http://www.securityfocus.com/bid/60837

libgadu CVE-2014-3775 Memory Corruption Vulnerability
2014-05-30
http://www.securityfocus.com/bid/67471

Pidgin 'gg_http_watch_fd()' Function Buffer Overflow Vulnerability
2014-05-30
http://www.securityfocus.com/bid/65188

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/64935

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2014-2412 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66873

Oracle Java SE CVE-2014-0451 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66879

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66920

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-2428 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66870

Oracle Java SE CVE-2014-0457 Remote Code Execution Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66866

Oracle Java SE CVE-2014-2409 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66915

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66891

Oracle Java SE CVE-2014-2423 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66887

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-2401 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66911

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-05-30
http://www.securityfocus.com/bid/63676

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-2427 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66909

Multiple Oracle Java Products 'unpack.cpp' Insecure Temporary File Creation Vulnerability
2014-05-30
http://www.securityfocus.com/bid/65568

Oracle Java SE CVE-2014-0449 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66907

IBM Java SDK CVE-2014-0878 Security Bypass Vulnerability
2014-05-30
http://www.securityfocus.com/bid/67601

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-05-30
http://www.securityfocus.com/bid/66894

Exploit

ElasticSearch Dynamic Script Arbitrary Java Execution

29.5.2014

Bugtraq

Multiple vulnerabilities in Sharetronix 2014-05-28
High-Tech Bridge Security Research (advisory htbridge com)

SEC Consult SA-20140528-0 :: Root Backdoor & Unauthenticated access to voice recordings in NICE Recording eXpress 2014-05-28
SEC Consult Vulnerability Lab (research sec-consult com)

LSE Leading Security Experts GmbH - LSE-2014-05-21 - Check_MK - Arbitrary File Disclosure Vulnerability 2014-05-28
LSE Leading Security Experts GmbH \(Security Advisories\) (advisories lsexperts de)

[SECURITY] [DSA 2938-1] Availability of LTS support for Debian 6.0 / squeeze 2014-05-27
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2937-1] mod-wsgi security update 2014-05-27
Moritz Muehlenhoff (jmm debian org)

Malware

Generic PUP.x!9B254EFD85AC

Generic PUP.x!1F3C30D9A005

Generic PUP.x!A0E7FA903DA6

Generic PUP.x!098881D6E5EE

Generic PUP.x!27975741C7AD

Generic PUP.x!46D397D6EFC4

Generic PUP.x!C99D273A6A97

RDN/Vundo!du!E02BFE2312CF

RDN/Generic PUP.x!10B67E4AA5EB

Generic.bfr!4689A84BA6EE

Generic PUP.x!79B04CE8DB8D

RDN/Generic PUP.x!c2n!45A491358600

RDN/Generic BackDoor!ym!5038B00A7079

RDN/Generic PUP.x!c2n!4585910A42B6

RDN/Vundo!du!7D44804BCD91

RDN/Generic.dx!8382D4DF9074

Generic PUP.x!C62208F8BCC2

RDN/Generic PUP.z!06033F1D7E8E

Generic PUP.x!666F1DB1EFDA

RDN/Generic.bfr!hh!F4C4C4712763

RDN/Vundo!du!C0D426A88952

Generic PUP.x!417A64EA2F45

Generic PUP.x!14D1F6EFCCE3

RDN/Vundo!du!0DFB32B79158

Generic PUP.x!76DC83C19BA4

Generic.bfr!A9BBA92CAB4D

Generic PUP.x!B34248F7A063

RDN/Generic BackDoor!ym!3E8A6EEC7448

RDN/Generic.dx!FA250364F172

Generic PUP.x!EE2363ACD6B2

Phishing

Halifax

28th May 2014

Account Suspended

no-reply@bt.com

28th May 2014

WARNING:Your BT security is
still not active.

NatWest

28th May 2014

*** CACTUS *** NatWest -
Security centre

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1532 Use After Free Memory Corruption Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67130

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1530 Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67137

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67121

Multiple IBM DB2 Products CVE-2014-0907 Local Privilege Escalation Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67617

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1524 Remote Memory Corruption Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67131

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1531 Use After Free Memory Corruption Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67134

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1523 Out of Bounds Denial of Service Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67129

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1518 Multiple Memory Corruption Vulnerabilities
2014-05-29
http://www.securityfocus.com/bid/67123

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1529 Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67135

Mozilla Network Security Services CVE-2014-1492 Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/66356

Apache Tomcat CVE-2013-4590 XML External Entity Information Disclosure Vulnerability
2014-05-29
http://www.securityfocus.com/bid/65768

Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability
2014-05-29
http://www.securityfocus.com/bid/65767

Apache Tomcat CVE-2014-0033 Session Fixation Vulnerability
2014-05-29
http://www.securityfocus.com/bid/65769

Apache Tomcat CVE-2013-4286 Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/65773

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-05-29
http://www.securityfocus.com/bid/65400

Cisco Unified Communications Domain Manager Self-Care HTTP Open Redirection Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67665

Cisco Unified Communications Domain Manager Number Translation Information Disclosure Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67666

Cisco Unified Communications Domain Manager Remote Information Disclosure Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67664

Cisco Unified Communications Domain Manager VOSS Operating System User Enumeration Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67663

Cisco Unified Communications Domain Manager Remote Information Disclosure Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67661

Wireshark CVE-2013-4074 Denial of Service Vulnerability
2014-05-29
http://www.securityfocus.com/bid/60500

TORQUE CVE-2014-0749 Stack Buffer Overflow Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67420

GeoCore Multiple SQL Injection Vulnerabilities
2014-05-29
http://www.securityfocus.com/bid/67078

D-Link DAP-1350 SQL Injection Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67310

WordPress bib2html Plugin 'styleShortName' Parameter Cross Site Scripting Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67589

libvirt XML Entity Expansion CVE-2014-0179 Information Disclosure Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67289

cURL/libcURL NTLM connection Remote Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/65270

cURL/libcURL CVE-2014-0138 Remote Security Bypass Vulnerability
2014-05-29
http://www.securityfocus.com/bid/66457

Mozilla Firefox and SeaMonkey CVE-2014-1525 Use After Free Memory Corruption Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67136

Mozilla Firefox and SeaMonkey CVE-2014-1522 Out of Bounds Memory Corruption Vulnerability
2014-05-29
http://www.securityfocus.com/bid/67127

Exploit

 

28.5.2014

Bugtraq

call for papers- £Ã£Ó£Ó£Å£²£°£±£´ 2014-05-27
cfp-conf2014.org (cfp-conf2014 org securityfocus com)

[security bulletin] HPSBGN03041 rev.1 - HP IceWall Configuration Manager running Apache Struts, Remote Execution of Arbitrary Code 2014-05-27
security-alert hp com

Malware

Generic PUP.x!BBE4894EE120

Generic PUP.x!82E302BB710B

RDN/Generic PUP.x!c2h!D52C8D42FC26

Generic PUP.x!7B42B4C64BCB

RDN/Generic PUP.x!E887D72B93D5

Generic PUP.x!72B54558F0A6

RDN/Generic PUP.x!c2h!1A48881BCC65

Generic PUP.x!83FF28D41404

FakeAV-N.bfr!F4E9C18DBABD

RDN/Generic PUP.x!c2h!496E79A4C717

Generic PUP.x!B00D2BAD552A

Generic PUP.x!71D6E054EAAB

Generic PUP.x!94B8F4967EF2

Generic PUP.x!EC5C1051FA52

RDN/Generic Downloader.x!kg!090CB7C8CF94

Generic PUP.x!491147C73839

Generic PUP.x!FAEBCBF47A5A

Generic PUP.x!89711471ADAC

Generic PUP.x!72FA4A8656E8

Generic PUP.x!FA374ECEDD02

RDN/FakeAV-N.bfr!898797CFC6FB

Generic PUP.x!868453B1DC2B

Generic PUP.x!07C90FB621C1

Generic PUP.x!30E15049258C

Generic.bfr!727BFFC68B13

RDN/Generic Downloader.x!kg!F0A3CF698CB2

RDN/Generic PUP.x!23855027A93D

Generic PUP.x!7D2B3A5440D7

RDN/DNSChanger.bfr!c!5742FFB8A101

RDN/Generic PUP.x!c2h!8A7681CCAECD

Phishing

 

Vulnerebility

IBM Security Access Manager for Web CVE-2014-0963 Remote Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67238

Linux Kernel 'raw_cmd_copyout()' Function Local Privilege Escalation Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67302

Linux Kernel 'raw_cmd_copyin()' Function Local Privilege Escalation Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67300

Linux Kernel CVE-2014-2678 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66543

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66779

Linux Kernel 'get_rx_bufs()' Function Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66441

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66678

Linux Kernel 'arch_dup_task_struct()' Function Local Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66477

Linux Kernel 'drivers/net/wireless/ath/ath9k/xmit.c' Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66492

Linux Kernel 'mac80211/sta_info.c' NULL Pointer Dereference Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66591

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-05-28
http://www.securityfocus.com/bid/66279

Linux Kernel 'ip6_route_add()' Function Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66095

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/65943

IBM DB2 and DB2 Connect CVE-2013-6744 Privilege Escalation Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67616

Multiple IBM DB2 Products CVE-2014-0907 Local Privilege Escalation Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67617

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-05-28
http://www.securityfocus.com/bid/66690

Multiple IBM Products CVE-2013-6747 Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/65156

cURL/libcURL CVE-2014-0138 Remote Security Bypass Vulnerability
2014-05-28
http://www.securityfocus.com/bid/66457

NTP 'ntp_request.c' Remote Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/64692

cURL/libcURL NTLM connection Remote Security Bypass Vulnerability
2014-05-28
http://www.securityfocus.com/bid/65270

Cisco IOS XE Software PPPoE Packet Handling Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67603

libvirt XML Entity Expansion CVE-2014-0179 Information Disclosure Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67289

Apache 'mod_wsgi' Module Local Privilege Escalation Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67532

Apache 'mod_wsgi' Module CVE-2014-0242 Information Disclosure Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67534

Easy File Sharing FTP Server Pass Command Remote Buffer Overflow Vulnerability
2014-05-28
http://www.securityfocus.com/bid/19243

Django 'Vary Header' Information Disclosure Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67408

Django 'is_safe_url()' Function URI Redirection Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67410

Linux Kernel '/fs/cifs/file.c' Local Memory Corruption Vulnerability
2014-05-28
http://www.securityfocus.com/bid/65588

Linux Kernel 'ipc_rcu_putref()' Function Local Denial of Service Vulnerability
2014-05-28
http://www.securityfocus.com/bid/63445

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-05-28
http://www.securityfocus.com/bid/67121

Exploit

  TORQUE Resource Manager 2.5.x-2.5.13 - Stack Based Buffer Overflow Stub

  Sharetronix 3.3 - Multiple Vulnerabilities

  Wireshark CAPWAP Dissector - Denial of Service (msf)

27.5.2014

Bugtraq

VUPEN Security Research - Adobe Acrobat & Reader XI-X Barcode Heap Overflow (Pwn2Own) 2014-05-26
VUPEN Security Research (advisories vupen com)

[security bulletin] HPSBUX02960 SSRT101419 rev.3 - HP-UX Running NTP, Remote Denial of Service (DoS) 2014-05-23
security-alert hp com

Malware

RDN/Generic PUP.x!E6AA67E46656

Generic PUP.x!8319E282C059

Generic PUP.x!6008B4D237A3

Generic PUP.x!D9AEE9FE982F

Generic.bfr!01A1E12AD9FD

Generic PUP.x!1D2BEF715D4D

Generic PUP.x!C6551035145E

RDN/Generic.dx!dcg!D3200BAB4D3D

Generic PUP.x!0A2F2F41C8CC

Generic PUP.x!FA1B6DEDED4B

Generic PUP.x!29D257030B43

Generic PUP.x!BF011DF65137

Generic PUP.x!B413A6DC162E

Generic PUP.x!57111F2A6485

Generic PUP.x!855D852A0559

Generic PUP.x!CA95600FCD22

RDN/Generic.bfr!hf!485C446CE83D

Generic PUP.x!BE625E9A5DE6

Generic PUP.x!4D3C06776156

Generic PUP.x!2F48853498A3

RDN/Generic.bfr!A6E8F04F5C19

RDN/Generic PUP.x!c2d!065CB1B1BDCA

RDN/Generic PUP.x!180980CE0A6A

RDN/Generic PUP.x!c2d!E8CCD53F5BEC

RDN/Vundo!du!37816C3E3CB6

RDN/Vundo!du!D4874EC3AB33

RDN/Generic PUP.x!c2d!133E7583B785

Generic PUP.x!867AAAFDA6C5

Generic PUP.x!8D69D010F3DD

Generic PUP.x!02423737DF3E

Phishing

BT

27th May 2014

Verify Your Account

Microsoft

27th May 2014

Your itunes account has been
frozen !

Microsoft

27th May 2014

Notification itunes !

Santander

26th May 2014

Irregular account activity
detected

BT

26th May 2014

Verify Your Account

Vulnerebility

User Cake Cross Site Request Forgery Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67604

Perl libwww-perl (LWP) Module Peer Certificate Validation Security Bypass Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67202

IBM Security Access Manager for Web CVE-2014-0963 Remote Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67238

Multiple IBM Products CVE-2013-6747 Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/65156

Linux Kernel 'raw_cmd_copyout()' Function Local Privilege Escalation Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67302

Linux Kernel 'drivers/net/wireless/ath/ath9k/xmit.c' Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66492

X.Org libXfont Multiple Integer Overflow and Memory Corruption Vulnerabilities
2014-05-27
http://www.securityfocus.com/bid/67382

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-05-27
http://www.securityfocus.com/bid/66279

Linux Kernel 'raw_cmd_copyin()' Function Local Privilege Escalation Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67300

Apache 'mod_wsgi' Module CVE-2014-0242 Information Disclosure Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67534

Apache 'mod_wsgi' Module Local Privilege Escalation Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67532

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66779

Linux Kernel CVE-2014-2678 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66543

Linux Kernel 'mac80211/sta_info.c' NULL Pointer Dereference Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66591

Linux Kernel 'ip6_route_add()' Function Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66095

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/65400

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/65943

Pimcore 'Pimcore_Tool_Newsletter::getObjectByToken()' PHP Object Injection Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66812

Linux Kernel 'handle_rx()' Function Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66678

Linux Kernel '/fs/cifs/file.c' Local Memory Corruption Vulnerability
2014-05-27
http://www.securityfocus.com/bid/65588

Linux Kernel 'ipc_rcu_putref()' Function Local Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/63445

Linux Kernel CVE-2013-7339 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66351

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67121

OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/64691

OpenSSL 'ssl_get_algorithm2()' Function Remote Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/64530

OpenSSL DTLS Implementations Man in the Middle Multiple Security Bypass Vulnerabilities
2014-05-27
http://www.securityfocus.com/bid/64618

Qt QtGui GIF Image Handler Local Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67087

Mutt Mailreader 'mutt_copy_hdr()' Function Heap Based Buffer Overflow Vulnerability
2014-05-27
http://www.securityfocus.com/bid/66165

IBM WebSphere Application Server CVE-2014-0964 Denial of Service Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67322

libvirt XML Entity Expansion CVE-2014-0179 Information Disclosure Vulnerability
2014-05-27
http://www.securityfocus.com/bid/67289

Exploit

    Easy File Sharing FTP Server 3.5 - Stack Buffer Overflow

  D-Link Routers - Multiple Vulnerabilities

  Zyxel P-660HW-T1 v3 Wireless Router - CSRF Vulnerability

Symantec Workspace Streaming Arbitrary File Upload

  Linux kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition (x64) Local Privilege Escalation

  D-Link Routers - Multiple Vulnerabilities

26.5.2014

Bugtraq

ESA-2014-021: RSA Archer® GRC Multiple Cross-Site Scripting Vulnerabilities 2014-05-23
Security Alert (Security_Alert emc com)

[SECURITY] [DSA 2936-1] torque security update 2014-05-23
Salvatore Bonaccorso (carnil debian org)

Malware

Generic PUP.x!9245A4AB1143

Generic Downloader.x!1A817239502E

Generic PUP.x!FB62C913D24A

Generic PUP.x!CD3171280F90

Generic PUP.x!8479F4A7A8E3

Generic PUP.x!4FBBF1A71BB5

Generic PUP.x!EFDC814CDC74

Generic.tfr!A9B92A730178

Generic PUP.x!62B86900010B

Generic.tfr!D34D473118F8

Generic.tfr!D239C3916207

Generic PUP.x!118D1F5BD9E1

RDN/Generic BackDoor!yk!E62116BF450B

Generic PUP.x!98789BF26851

Generic PUP.x!486DE4E05F2C

Generic PUP.x!94126A428D65

RDN/Generic PUP.x!c2b!C38FED8A9766

Generic PUP.x!A536DBEDFEAA

RDN/Generic Downloader.x!E089555D5F8F

Generic PUP.x!68EF7234B68F

Generic PUP.x!3FC6785CD346

Generic PUP.x!417526705A16

Generic PUP.x!AA2681B96A51

Generic PUP.x!05B1C43AC45B

Generic PUP.x!D72AE03E257E

Generic PUP.x!6BCAD99F478D

Generic PUP.x!A72E4C561EF3

Generic PUP.x!B13C25D1DBE0

RDN/Generic PUP.x!50DD086D5F97

Generic PUP.x!8EDAD4085A71

Phishing

BT

26th May 2014

Verify Your Account

Nationwide Building Society

25th May 2014

YOUR ONLINE BANKING ACCESS
LOCKED

Santander

25th May 2014

[SUSPECTED ] IRREGULAR ACCOUNT
ACTIVITY DETECTED

NatWest.co.uk

24th May 2014

NatWest Statement

Lloyds Commercial Bank

24th May 2014

FW: Important - Commercial
Documents

Vulnerebility

Linux Kernel Memory Leak Multiple Local Information Disclosure Vulnerabilities
2014-05-26
http://www.securityfocus.com/bid/64685

Linux Kernel 'pn_recvmsg()' Function Local Information Disclosure Vulnerability
2014-05-26
http://www.securityfocus.com/bid/64677

Linux Kernel '/fs/cifs/file.c' Local Memory Corruption Vulnerability
2014-05-26
http://www.securityfocus.com/bid/65588

Linux Kernel 'net/ieee802154/dgram.c' Local Information Disclosure Vulnerability
2014-05-26
http://www.securityfocus.com/bid/64747

Linux Kernel 'fpu-internal.h' Local Denial of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/64781

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-05-26
http://www.securityfocus.com/bid/66279

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/65943

Linux Kernel 'drivers/net/wireless/ath/ath9k/xmit.c' Denial of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/66492

AMD 16h Model Processor CVE-2013-6885 Local Denial of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/63983

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/65459

Linux Kernel 'nf_nat_irc.c' Local Information Disclosure Vulnerability
2014-05-26
http://www.securityfocus.com/bid/65180

Linux Kernel 'hamradio/yam.c' Local Information Disclosure Vulnerability
2014-05-26
http://www.securityfocus.com/bid/64954

Linux Kernel 'ath9k_htc_set_bssid_mask()' Function Information Disclosure Vulnerability
2014-05-26
http://www.securityfocus.com/bid/63743

Linux Kernel CVE-2013-7263 Multiple Information Disclosure Vulnerabilities
2014-05-26
http://www.securityfocus.com/bid/64686

Linux Kernel 'raw_cmd_copyout()' Function Local Privilege Escalation Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67302

Linux Kernel 'raw_cmd_copyin()' Function Local Privilege Escalation Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67300

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1529 Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67135

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-05-26
http://www.securityfocus.com/bid/66690

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/65400

Adobe Flash Player and AIR CVE-2014-0520 Unspecified Remote Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67372

Adobe Flash Player and AIR CVE-2014-0518 Unspecified Remote Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67371

Adobe Flash Player and AIR CVE-2014-0517 Unspecified Remote Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67364

Adobe Flash Player and AIR CVE-2014-0519 Unspecified Remote Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67373

Adobe Flash Player and AIR CVE-2014-0516 Same Origin Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67361

Adobe Flash Player and Adobe AIR CVE-2014-0510 Heap Based Buffer Overflow Vulnerability
2014-05-26
http://www.securityfocus.com/bid/66241

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1532 Use After Free Memory Corruption Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67130

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1530 Security Bypass Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67137

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1531 Use After Free Memory Corruption Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67134

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1523 Out of Bounds Denial of Service Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67129

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1524 Remote Memory Corruption Vulnerability
2014-05-26
http://www.securityfocus.com/bid/67131

Exploit

 

23.5.2014

Bugtraq

[SECURITY] [DSA 2936-1] torque security update 2014-05-23
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU03025 rev.2 - HP Diagnostics running OpenSSL, Remote Disclosure of Information 2014-05-22
security-alert hp com

[security bulletin] HPSBMU02995 rev.8 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure 2014-05-22
security-alert hp com

Malware

RDN/Generic.bfr!he!1632BEBEA1FB

RDN/Generic.dx!dc3!DC6C36032694

Generic PUP.x!5DCCA9723B6E

Generic PUP.x!3E4D2A6264C6

Generic PUP.x!A417CE007C87

Generic PUP.x!FF1B89833CE9

RDN/Downloader.a!qx!AD3FF53BE9EB

Generic PUP.x!9F45555CAD08

Generic PUP.x!51F1D690717C

Generic PUP.x!F847D2A634E1

RDN/Generic PUP.x!cdw!B2D479FF1B12

Generic PUP.x!8A2766089EC9

Generic PUP.x!DFE6A4F8EC9C

Generic PUP.x!FB50F6075750

RDN/Generic.dx!dc3!4DA154D64E1A

Generic PUP.x!3D0781E2249A

Generic PUP.x!65CD62422C2B

Generic PUP.x!167C62E72893

Generic.bfr!99D804B2BEFB

Generic PUP.x!0E1538F3D535

Generic PUP.x!01F0BD0968AD

Generic PUP.x!F55FC7E5EA6E

Generic PUP.x!34309573DC23

Generic PUP.x!F9F6E49633D7

Generic PUP.x!322DB7E88B0C

RDN/Generic PUP.x!cdw!C3B135D178C6

Generic PUP.x!0FAF90400A02

Generic PUP.x!72DE032162EA

Generic PUP.x!C1771F0C3470

Generic PUP.x!DA2181FD32C3

Phishing

Lloyds Commercial Bank

23rd May 2014

FW: Important - Commercial
Documents

Vulnerebility

Oracle MySQL Client CVE-2014-2440 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66850

Oracle MySQL Server CVE-2014-0384 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66835

Oracle MySQL Server CVE-2014-2430 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66858

Oracle MySQL Server CVE-2014-2419 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66880

Oracle MySQL Server CVE-2014-2438 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66846

Oracle MySQL Server CVE-2014-2431 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66890

Oracle MySQL Server CVE-2014-2436 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66896

Oracle MySQL Server CVE-2014-2432 Remote Security Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66875

Juniper Junos 'SRX Series Services' Gateway Denial of Service Vulnerability
2014-05-23
http://www.securityfocus.com/bid/64764

Oracle Java SE CVE-2014-0457 Remote Code Execution Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66866

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-05-23
http://www.securityfocus.com/bid/66881

Birebin.com for Android CVE-2014-2993 X.509 Certificate Validation Security Bypass Vulnerability
2014-05-23
http://www.securityfocus.com/bid/67524

Cisco Tidal Enterprise Scheduler Agent CVE-2014-3272 Local Privilege Escalation Vulnerability
2014-05-22
http://www.securityfocus.com/bid/67561

Oracle Java SE CVE-2014-2412 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66873

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66920

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-2413 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66917

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66891

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2014-0455 Remote Code Execution Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66899

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-0454 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66905

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-05-22
http://www.securityfocus.com/bid/64493

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-0451 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66879

Exploit

 

22.5.2014

Bugtraq

Wordpress Booking System (Booking Calendar) plugin SQL Injection 2014-05-21
info sec (omgpdrv gmail com)

Beginners error: Hewlett-Packards driver software executes rogue binary C:\Program.exe 2014-05-20
Stefan Kanthak (stefan kanthak nexgo de)

APPLE-SA-2014-15-20-1 OS X Server 3.1.2 2014-05-20
Apple Product Security (product-security-noreply lists apple com)

CVE-2014-3446 - Unauthenticated Blind SQL Injection in BSS Continuity CMS 2014-05-20
Portcullis Advisories (advisories portcullis-security com)

Malware

Generic PUP.x!CD6202B6D807

RDN/Generic PUP.x!cd3!9EAE5B57F3F8

Obfuscated-FAFB!hb!50B1EC0088ED

Generic Downloader.x!8240E9596EEF

Generic Downloader.x!448C79C63D51

Generic PUP.x!B58A5A676C78

RDN/Vundo!dt!7698567E980F

Generic PUP.x!97199DE3116B

RDN/Generic.bfr!hf!2B93811AB639

Generic.dx!9E4A8AC52E97

Generic PUP.x!203AE1256A51

Generic PUP.x!4516417BCBFF

Generic PUP.x!233EEE6488CD

RDN/Generic PUP.x!50533D613DAC

RDN/Generic PWS.y!zp!66D031558C5B

Generic PUP.x!D65D43DCA447

Generic PUP.x!8AED8844D36B

RDN/Generic Downloader.x!kf!210AA1842EB9

RDN/Generic Downloader.x!kf!67F9CE3FD3F3

RDN/Generic PUP.x!cd3!0D99EEA088B2

Generic.bfr!67604D03A273

Generic PUP.x!85F26F00E61A

Generic PUP.x!1131176A159F

Generic PUP.x!97142E5F9A57

Generic PUP.x!57452E6A886C

Generic PUP.x!08B9C0D43DCE

Generic.bfr!731FFB99F707

Generic PUP.x!4FA779758DE1

Generic PUP.x!01FBDD91E8F9

Generic PUP.x!3E635B5B4794

Phishing

Nationwide

22nd May 2014

Nationwide - Internet banking
service has been temporarily
suspended

Barclays

22nd May 2014

This is an important Barclays
bank security Message

Vulnerebility

Birebin.com for Android CVE-2014-2993 X.509 Certificate Validation Security Bypass Vulnerability
2014-05-23
http://www.securityfocus.com/bid/67524

Oracle Java SE CVE-2014-0451 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66879

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2014-0456 Remote Code Execution Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66877

RETIRED: Linux Kernel 'n_tty.c' Memory Corruption Vulnerability
2014-05-22
http://www.securityfocus.com/bid/67282

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2014-05-22
http://www.securityfocus.com/bid/67121

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66920

OpenJDK CVE-2014-0462 Unspecified Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/67508

Oracle Java SE CVE-2014-2403 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66918

OpenJDK CVE-2014-2405 Unspecified Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/67512

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-2413 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66917

Oracle Java SE CVE-2014-2427 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66909

Oracle Java SE CVE-2014-0454 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66905

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-0455 Remote Code Execution Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66899

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66891

Oracle Java SE CVE-2014-2402 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66898

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-2423 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66887

Oracle Java SE CVE-2014-2412 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66873

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66881

Oracle Java SE CVE-2014-0457 Remote Code Execution Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66866

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-05-22
http://www.securityfocus.com/bid/66856

Multiple Oracle Java Products 'unpack.cpp' Insecure Temporary File Creation Vulnerability
2014-05-22
http://www.securityfocus.com/bid/65568

Linux Kernel 'drivers/isdn/mISDN/socket.c' Local Information Disclosure Vulnerability
2014-05-22
http://www.securityfocus.com/bid/64743

Linux Kernel 'kvm_vm_ioctl_create_vcpu()' Function Local Privilege Escalation Vulnerability
2014-05-22
http://www.securityfocus.com/bid/64328

Exploit

 

21.5.2014

Bugtraq

Wordpress Booking System (Booking Calendar) plugin SQL Injection 2014-05-21
info sec (omgpdrv gmail com)

Beginners error: Hewlett-Packards driver software executes rogue binary C:\Program.exe 2014-05-20
Stefan Kanthak (stefan kanthak nexgo de)

APPLE-SA-2014-15-20-1 OS X Server 3.1.2 2014-05-20
Apple Product Security (product-security-noreply lists apple com)

CVE-2014-3446 - Unauthenticated Blind SQL Injection in BSS Continuity CMS 2014-05-20
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-3447 - Remote Denial Of Service in BSS Continuity CMS 2014-05-20
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-3450 - Privilege Escalation in Panda Security 2014-05-20
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-3448 - Remote Code Execution Via Unauthenticated File Upload in BSS Continuity CMS 2014-05-20
Portcullis Advisories (advisories portcullis-security com)

[security bulletin] HPSBGN03007 rev.1 - HP IceWall MCRP and HP IceWall SSO, Remote Denial of Service (DoS) 2014-05-20
security-alert hp com

Construtiva CIS Manager CMS POST SQLi 2014-05-19
edge bitmessage ch

t2'14: Call for Papers 2014 (Helsinki / Finland) 2014-05-19
Tomi Tuominen (tomi tuominen t2 fi)

[SECURITY] [DSA 2934-1] python-django security update 2014-05-19
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU03022 rev.3 - HP Systems Insight Manager (SIM) Bundled Software running OpenSSL, Remote Disclosure of Information 2014-05-19
security-alert hp com

Malware

RDN/Generic PUP.x!cds!6B7002FF4EC3

RDN/Generic PUP.x!cds!59253C4691AC

RDN/Generic PUP.x!cds!709F6EEA7753

Generic PUP.x!8AF0450175C0

RDN/Generic PUP.x!cds!64D393F8BDB0

RDN/Generic PUP.x!cds!A5DD3839677C

Generic.bfr!2EBD2B0D29F4

Generic PUP.x!FB5AA1BA5869

RDN/Generic Downloader.x!kf!878D2B922011

RDN/Generic.dx!dc3!2DB90235B4CC

RDN/Generic PUP.x!cds!6A05C3D0A2D4

RDN/Generic.bfr!he!4B9E8F00B5B7

Generic.bfr!FB4DF3A594ED

RDN/Generic PUP.x!cds!6D153741AC91

Generic PUP.x!3350611DD34E

Generic PUP.x!C12A701B5BE6

RDN/Generic PUP.x!cds!28EEC57BF651

RDN/Generic PUP.x!cds!8AAC4A73D0B5

RDN/Generic PUP.x!cds!B813F9B6CBC4

RDN/Generic PUP.x!cds!6818644DBBF0

Generic PUP.x!8127732995BB

Generic.bfr!2EF885F97BF1

BackDoor-FBIB!81BCE4B1823E

Generic PUP.x!335E3E8ACE47

RDN/Generic PUP.x!cds!04A63FB77E80

Generic PUP.x!2D5DEB648994

Generic.bfr!2EC46E477AB2

RDN/Generic PUP.x!cds!330118730964

RDN/Generic.bfr!2EF95145C5FA

Generic PUP.x!38297D2234B0

Phishing

Chase

20th May 2014

Your Account Is Suspended

no-reply@bt.com ;

20th May 2014

Verify Your Account.

BT

20th May 2014

VERIFY YOUR BT ACCOUNT

NS&I

19th May 2014

PROTECT YOUR MONEY

Vulnerebility

Birebin.com for Android CVE-2014-2993 X.509 Certificate Validation Security Bypass Vulnerability
2014-05-23
http://www.securityfocus.com/bid/67524

Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
2014-05-21
http://www.securityfocus.com/bid/51706

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-05-21
http://www.securityfocus.com/bid/66690

Apple Mac OS X CVE-2014-1322 Local Security Bypass Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67023

Cisco WebEx Business Suite 'meetinginfo.do' Information Disclosure Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67424

Cisco Unified Web and E-Mail Interaction Manager Session Identifiers Security Bypass Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67495

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3271 Denial of Service Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67488

Cisco IOS Software LLDP Request Processing Denial of Service Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67489

Cisco Email Security Appliance Remote Security Bypass Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67494

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3270 Denial of Service Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67492

Adobe Flash Player and Adobe AIR CVE-2014-0510 Heap Based Buffer Overflow Vulnerability
2014-05-21
http://www.securityfocus.com/bid/66241

Adobe Reader and Acrobat CVE-2014-0527 Use After Free Remote Code Execution Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67367

Symantec Workspace Streaming XMLRPC Unauthorized Access Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67189

Ruby Floating Point Parsing Heap Buffer Overflow Vulnerability
2014-05-21
http://www.securityfocus.com/bid/63873

SAP NetWeaver Central User Administration Information Disclosure Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67448

OpenStack Heat Template URL Information Disclosure Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67505

Microsoft Internet Explorer Multiple Arbitrary Code Execution Vulnerabilities
2014-05-21
http://www.securityfocus.com/bid/66244

MediaWiki Semantic Forms Extension Multiple Cross Site Request Forgery Vulnerabilities
2014-05-21
http://www.securityfocus.com/bid/64966

Microsoft Internet Explorer CVE-2014-0310 Memory Corruption Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67299

Collabtive 'desc' Parameter HTML Injection Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67343

Apple Mac OS X CVE-2014-1318 Remote Security Bypass Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67029

Multiple Apple Products CVE-2014-1320 Local Security Bypass Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67027

Microsoft Internet Explorer CVE-2014-0285 Memory Corruption Vulnerability
2014-05-21
http://www.securityfocus.com/bid/65384

Cisco IOS XR Software CVE-2014-3269 SNMP Request Processing Denial of Service Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67459

Cisco Unified Web and E-Mail Interaction Manager CVE-2014-2192 Cross Site Scripting Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67464

Django CVE-2014-0473 Cross Site Request Forgery Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67040

Django 'is_safe_url()' Function URI Redirection Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67410

Django CVE-2014-0474 Multiple Data Type Injection Vulnerabilities
2014-05-21
http://www.securityfocus.com/bid/67038

Django 'Vary Header' Information Disclosure Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67408

Django 'reverse()' Function Arbitrary Code Execution Vulnerability
2014-05-21
http://www.securityfocus.com/bid/67041

Exploit

  Easy File Management Web Server 5.3 - Stack Buffer Overflow

  Easy Address Book Web Server 1.6 - Stack Buffer Overflow

  Binatone DT 850W Wireless Router - Multiple CSRF Vulnerabilities

20.5.2014

Bugtraq

[SECURITY] [DSA 2932-1] qemu security update 2014-05-19
Giuseppe Iuculano (iuculano debian org)

[SECURITY] [DSA 2931-1] openssl security update 2014-05-18
Moritz Muehlenhoff (jmm debian org)

Malware

Generic PUP.x!DEDA6D50EF85

Generic PUP.x!A30977EA4308

Generic PUP.x!2C12DB9CE9C0

Generic PUP.x!F3F0B4E7ADE6

Generic PUP.x!3379DB5E655E

Generic PUP.x!617B2A57C441

Generic PUP.x!96E1E4801938

Generic PUP.x!1193FAC3DC70

Generic PUP.x!AFC21996A9A0

Generic PUP.x!0C5D1D01A10E

Generic PUP.x!5369F7918687

Generic PUP.x!B37F03929B43

RDN/Generic.dx!1B3BFDC2EB9B

RDN/Generic PUP.x!cdn!237C36DC09A6

RDN/Generic PUP.x!cdn!7F921790A060

RDN/Generic PUP.x!cdn!334D777D8970

RDN/Generic Downloader.x!0B122893DCE0

Generic PUP.x!A2FB857F865E

RDN/Generic.bfr!5D643BEC77F7

Generic PUP.x!B169969E45B4

RDN/Generic PWS.y!zp!B5F4827D2E97

Generic PUP.x!80F7771E0C92

RDN/Generic PUP.x!cdn!BF99387C872F

FakeAV-N.bfr!363DDEACCEC0

RDN/Generic.bfr!2470720C49FE

Generic PUP.x!1414F2903048

Generic PUP.x!B1BDF95C8768

Generic PUP.x!D65BD85ECA9F

Generic.dx!1C8038E419BD

Generic PUP.x!B37808D8C507

Phishing

BT

20th May 2014

VERIFY YOUR BT ACCOUNT

NS&I

19th May 2014

PROTECT YOUR MONEY

.PayPal

19th May 2014

Your PayPal account is limited
until we hear from you

Vulnerebility

Cisco IOS XR Software CVE-2014-3269 SNMP Request Processing Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67459

Cisco Unified Web and E-Mail Interaction Manager CVE-2014-2192 Cross Site Scripting Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67464

Symantec Workspace Streaming XMLRPC Unauthorized Access Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67189

Django CVE-2014-0473 Cross Site Request Forgery Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67040

Django 'is_safe_url()' Function URI Redirection Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67410

Django CVE-2014-0474 Multiple Data Type Injection Vulnerabilities
2014-05-20
http://www.securityfocus.com/bid/67038

Django 'Vary Header' Information Disclosure Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67408

Django 'reverse()' Function Arbitrary Code Execution Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67041

Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/61050

Libxml2 Entity Substituton CVE-2014-0191 Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67233

SolarWinds Server and Application Monitor 'PEstrarg1' ActiveX Heap Buffer Overflow Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67048

InduSoft Web Studio CVE-2014-0780 Directory Traversal Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67056

Linux Kernel 'raw_cmd_copyin()' Function Local Privilege Escalation Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67300

Linux Kernel 'raw_cmd_copyout()' Function Local Privilege Escalation Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67302

Linux Kernel Multiple Function Remote Memory Corruption Vulnerabilities
2014-05-20
http://www.securityfocus.com/bid/66279

Linux Kernel CVE-2014-0101 NULL Pointer Dereference Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/65943

Linux Kernel 'security_context_to_sid_core()' Function Local Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/65459

Linux Kernel 'drivers/net/wireless/ath/ath9k/xmit.c' Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/66492

Linux Kernel 'hamradio/yam.c' Local Information Disclosure Vulnerability
2014-05-20
http://www.securityfocus.com/bid/64954

Linux Kernel 'nf_nat_irc.c' Local Information Disclosure Vulnerability
2014-05-20
http://www.securityfocus.com/bid/65180

Linux Kernel 'wanxl.c' Local Information Disclosure Vulnerability
2014-05-20
http://www.securityfocus.com/bid/64953

Linux Kernel 'ath9k_htc_set_bssid_mask()' Function Information Disclosure Vulnerability
2014-05-20
http://www.securityfocus.com/bid/63743

AMD 16h Model Processor CVE-2013-6885 Local Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/63983

Linux Kernel 'farsync.c' Local Information Disclosure Vulnerability
2014-05-20
http://www.securityfocus.com/bid/64952

Linux Kernel 'fpu-internal.h' Local Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/64781

Linux Kernel 'perf_event.c' Local Privilege Escalation Vulnerability
2014-05-20
http://www.securityfocus.com/bid/61793

QEMU CVE-2013-4541 Remote Code Execution Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67394

Mutt Mailreader 'mutt_copy_hdr()' Function Heap Based Buffer Overflow Vulnerability
2014-05-20
http://www.securityfocus.com/bid/66165

QEMU 'virtio_load()' Function Memory Corruption Vulnerability
2014-05-20
http://www.securityfocus.com/bid/66976

Dovecot Denial of Service Vulnerability
2014-05-20
http://www.securityfocus.com/bid/67306

Exploit

 

19.5.2014

Bugtraq

[SECURITY] [DSA 2931-1] openssl security update 2014-05-18
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2930-1] chromium-browser security update 2014-05-17
Michael Gilbert (mgilbert debian org)

APPLE-SA-2014-05-16-1 iTunes 11.2.1 2014-05-17
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBHF02946 rev.2 - HP Servers with NVIDIA GPU Computing Driver, Elevation of Privilege 2014-05-16
security-alert hp com

Malware

Generic PUP.x!7B75D5C6EB1D

Generic PUP.x!4A56094DA991

Generic PUP.x!CBED42DB175E

Generic PUP.x!311D7EDACB79

Generic PUP.x!FB199BE8197D

Generic PUP.x!ED14377F9F20

Generic PUP.x!F603DB3B2B1A

Generic PUP.x!AB68D2AF9DAF

Generic PUP.x!F1446E58DBD2

Generic PUP.x!A3675F6ADD73

Generic PUP.x!C57BBEE17BE3

Generic PUP.x!36A7A74C6192

RDN/Generic PUP.x!cdl!F9C3AA9EB4CB

Generic.bfr!D72FB94DE737

RDN/Generic PUP.x!cdl!F8DA48AD2F7C

Generic PUP.x!59288C1DD6D4

RDN/Generic PUP.x!cdl!4646595DD77F

Generic PUP.x!10857511BE65

Generic PUP.x!F8AC539DAE4B

Generic.tfr!F1E12B680975

RDN/Generic PUP.x!15630E22075E

Generic PUP.x!AC585035E676

RDN/Generic PUP.x!cdl!BF6F57745BA2

FakeAV-N.bfr!48114AF2B7F4

Generic PUP.x!F992E32CAD9F

Generic PUP.x!9CCBD080E108

Generic PUP.x!98B05270EBB0

Generic PUP.x!435176B012F4

RDN/Generic.bfr!835305335D2A

Generic PUP.x!A98D88FA66F7

Phishing

ebilling@bt.com ;

18th May 2014

ACTION REQUIRED: Activate and
view your BT bill online

Yahoo

18th May 2014

YAHOO DE-ACTIVATION ALERT

Vulnerebility

Pango Font Parsing 'pangoft2-render.c' Heap Corruption Vulnerability
2014-05-19
http://www.securityfocus.com/bid/45842

CoreGraphics Font Glyph Rendering Library Remote Code Execution Vulnerability
2014-05-19
http://www.securityfocus.com/bid/35774

Pango 'pango_glyph_string_set_size()' Integer Overflow Vulnerability
2014-05-19
http://www.securityfocus.com/bid/34870

Pango 'hb_buffer_ensure()' Buffer Overflow Vulnerability
2014-05-19
http://www.securityfocus.com/bid/46632

Ettercap Multiple Stack Buffer Overflow Vulnerabilities
2014-05-19
http://www.securityfocus.com/bid/57175

Ettercap GTK Insecure Temporary File Creation and Format String Vulnerabilities
2014-05-19
http://www.securityfocus.com/bid/44078

Bacula Console ACL Access Security Bypass Vulnerability
2014-05-19
http://www.securityfocus.com/bid/55505

Rack 'Rack::File()' Insecure Temporary File Creation Vulnerability
2014-05-19
http://www.securityfocus.com/bid/57862

Rack Timing Attack Remote Code Execution Vulnerability
2014-05-19
http://www.securityfocus.com/bid/57860

Rack 'multipart/parser.rb' CVE-2013-0183 Denial of Service Vulnerability
2014-05-19
http://www.securityfocus.com/bid/58768

Rack 'Rack::Auth::AbstractRequest' CVE-2013-0184 Denial of Service Vulnerability
2014-05-19
http://www.securityfocus.com/bid/58769

Rack 'lib/rack/multipart.rb' CVE-2012-6109 Denial of Service Vulnerability
2014-05-19
http://www.securityfocus.com/bid/58767

ImageMagick PSD Image File Handling CVE-2014-1947 Remote Buffer Overflow Vulnerability
2014-05-19
http://www.securityfocus.com/bid/65683

Imagemagick 'gif.c' Memory Corruption Vulnerability
2014-05-19
http://www.securityfocus.com/bid/62080

ImageMagick PSD Image File Handling Remote Buffer Overflow Vulnerability
2014-05-19
http://www.securityfocus.com/bid/65478

ImageMagick Buffer Overflow and Denial of Service Vulnerabilities
2014-05-19
http://www.securityfocus.com/bid/51957

WordPress Multiple Security Vulnerabilities
2014-05-19
http://www.securityfocus.com/bid/66765

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-05-19
http://www.securityfocus.com/bid/67193

Google Chrome CVE-2014-1741 Integer Overflow Vulnerability
2014-05-19
http://www.securityfocus.com/bid/67376

Google Chrome CVE-2014-1740 Use After Free Remote Code Execution Vulnerability
2014-05-19
http://www.securityfocus.com/bid/67374

Google Chrome CVE-2014-1742 Use After Free Remote Code Execution Vulnerability
2014-05-19
http://www.securityfocus.com/bid/67375

IBM Security Access Manager for Web CVE-2014-0963 Remote Denial of Service Vulnerability
2014-05-19
http://www.securityfocus.com/bid/67238

Oracle Java SE CVE-2014-2409 Remote Security Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66915

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-2402 Remote Security Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66898

Oracle Java SE CVE-2014-0456 Remote Code Execution Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66877

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66920

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-05-19
http://www.securityfocus.com/bid/66881

Exploit

  AoA MP4 Converter 4.1.2 - ActiveX Exploit

  AoA Audio Extractor Basic 2.3.7 - ActiveX Exploit

  AoA DVD Creator 2.6.2 - ActiveX Exploit

  CyberLink Power2Go Essential 9.0.1002.0 - Registry SEH/Unicode Buffer Overflow

  HP Release Control Authenticated XXE

  SafeNet Sentinel Protection Server 7.0 - 7.4 and Sentinel Keys Server 1.0.3 - 1.0.4 Directory Traversal

18.5.2014

Bugtraq

[ MDVSA-2014:104 ] egroupware 2014-05-16
security mandriva com

[ MDVSA-2014:101 ] owncloud 2014-05-16
security mandriva com

[ MDVSA-2014:093 ] couchdb 2014-05-16
security mandriva com

[ MDVSA-2014:099 ] dovecot 2014-05-16
security mandriva com

[ MDVSA-2014:097 ] libvirt 2014-05-16
security mandriva com

[ MDVSA-2014:091 ] cups 2014-05-16
security mandriva com

[ MDVSA-2014:103 ] wordpress 2014-05-16
security mandriva com

[ MDVSA-2014:100 ] java-1.7.0-openjdk 2014-05-16
security mandriva com

[ MDVSA-2014:102 ] mariadb 2014-05-16
security mandriva com

CA20140413-01: Security Notice for OpenSSL Heartbleed Vulnerability 2014-05-16
Williams, James K (Ken Williams ca com)

[ MDVSA-2014:096 ] python-jinja2 2014-05-16
security mandriva com

[ MDVSA-2014:094 ] rxvt-unicode 2014-05-16
security mandriva com

[ MDVSA-2014:098 ] rawtherapee 2014-05-16
security mandriva com

[ MDVSA-2014:095 ] struts 2014-05-16
security mandriva com

[ MDVSA-2014:092 ] cups 2014-05-16
security mandriva com

Two Cross-Site Scripting (XSS) Vulnerabilities in Seo Panel 2014-05-16
High-Tech Bridge Security Research (advisory htbridge com)

[ MDVSA-2014:089 ] nagios 2014-05-16
security mandriva com

[SECURITY] [DSA 2929-1] ruby-actionpack-3.2 security update 2014-05-16
Florian Weimer (fw deneb enyo de)

APPLE-SA-2014-05-15-2 iTunes 11.2 2014-05-15
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2014-05-15-1 OS X Mavericks v10.9.3 2014-05-15
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBMU02995 rev.7 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure 2014-05-15
security-alert hp com

[ MDVSA-2014:088 ] python-lxml 2014-05-15
security mandriva com

[CVE-2014-0749] TORQUE Buffer Overflow 2014-05-15
john fitzpatrick mwrinfosecurity com

[ MDVSA-2014:087 ] php 2014-05-15
security mandriva com

[REVIVE-SA-2014-001] Revive Adserver 3.0.5 fixes CSRF vulnerability 2014-05-15
Matteo Beccati (php beccati com)

Bilyoner mobile apps prone to various SSL/TLS attacks 2014-05-15
harun esur sceptive com

[SECURITY] [DSA 2928-1] linux-2.6 security update 2014-05-14
dann frazier (dannf debian org)

Paypal Inc Bug Bounty #109 MOS - Bypass & Persistent Vulnerability 2014-05-14
Vulnerability Lab (research vulnerability-lab com)

[security bulletin] HPSBMU03040 rev.1 - HP LoadRunner & HP Performance Center, running OpenSSL, Remote Disclosure of Information 2014-05-14
security-alert hp com

CSRF and Remote Code Execution in EGroupware 2014-05-14
High-Tech Bridge Security Research (advisory htbridge com)

Malware

Generic PUP.x!B218EF14698F

Generic PUP.x!C5D66B45E62F

Generic PUP.x!D97400404E1B

Generic PUP.x!5E6BD8796973

Generic Downloader.x!DD84FC8C5590

Generic PUP.x!6EBD4F00DF3A

Generic PUP.x!69C9610EC7E1

RDN/Generic PUP.x!cdl!40BD9EC476D8

RDN/Generic PUP.x!cdl!BED211CB88C0

Generic PUP.x!BC91E5AD6958

RDN/Ransom!eg!09395F43A99F

Generic.dx!74FEDB2CD52A

Generic.dx!332D9752ECC3

Generic PUP.x!5A2FA8F082D2

RDN/Generic PUP.x!cdl!625925196F70

RDN/Downloader.a!qu!7828414640F7

Generic PUP.x!CF9B6CB60E95

Generic.dx!7DEC80E04128

Generic Downloader.x!F5C0E1EA80A9

Generic.dx!40C597B8E1CF

Generic PUP.x!C97BBD610104

RDN/Generic PUP.x!cdl!1D98390D6285

RDN/Generic PUP.x!cdl!3AC7CEC0F7FE

Generic PUP.x!7D29B0046F3F

RDN/Generic PUP.x!cdl!349C6813ECFB

Generic.dx!6144FAA0B8E9

RDN/Generic PUP.x!cdl!82CFEF882C62

RDN/Generic PUP.x!cdl!6D0633DE7C86

RDN/Generic PUP.x!cdl!82A3AB2D907F

Generic PUP.x!2EBD36585652

Phishing

NatWest ;

15th May 2014

Changes to your account
balance.

NatWest.co.uk

15th May 2014

NatWest Statement

American Express

14th May 2014

1 NEW MESSAGES !

Vulnerebility

IBM Security Access Manager for Web CVE-2014-0963 Remote Denial of Service Vulnerability
2014-05-18
http://www.securityfocus.com/bid/67238

Oracle Java SE CVE-2014-2409 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66915

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-2402 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66898

Oracle Java SE CVE-2014-0456 Remote Code Execution Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66877

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66920

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66881

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-05-18
http://www.securityfocus.com/bid/63676

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-05-18
http://www.securityfocus.com/bid/64493

eGroupWare 'call_user_func()' Function Remote Code Execution Vulnerability
2014-05-18
http://www.securityfocus.com/bid/67409

eGroupWare CVE-2014-2987 Cross Site Request Forgery Vulnerability
2014-05-18
http://www.securityfocus.com/bid/67303

WordPress Multiple Security Vulnerabilities
2014-05-18
http://www.securityfocus.com/bid/66765

libvirt XML Entity Expansion CVE-2014-0179 Information Disclosure Vulnerability
2014-05-18
http://www.securityfocus.com/bid/67289

libvirt Unsafe Paths Usage Symlink Multiple Security Vulnerabilities
2014-05-18
http://www.securityfocus.com/bid/65743

Oracle Java SE CVE-2014-2401 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66911

Oracle Java SE CVE-2014-0449 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66907

Oracle Java SE CVE-2014-2428 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66870

Oracle Java SE CVE-2014-2420 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66919

LibRaw CVE-2013-1438 Multiple NULL Pointer Dereference Denial of Service Vulnerabilities
2014-05-18
http://www.securityfocus.com/bid/62060

Dovecot Denial of Service Vulnerability
2014-05-18
http://www.securityfocus.com/bid/67306

Oracle Java SE CVE-2014-2413 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66917

Oracle Java SE CVE-2014-2403 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66918

Oracle Java SE CVE-2014-0454 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66905

Oracle Java SE CVE-2014-0455 Remote Code Execution Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66899

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-2427 Remote Security Vulnerability
2014-05-18
http://www.securityfocus.com/bid/66909

Exploit

 

28.4.2014

Bugtraq

[SECURITY] [DSA 2917-1] super security update 2014-04-28
Florian Weimer (fw deneb enyo de)

[SECURITY] [DSA 2916-1] libmms security update 2014-04-28
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2915-1] dpkg security update 2014-04-28
Raphael Geissert (geissert debian org)

[security bulletin] HPSBMU03022 rev.1 - HP Systems Insight Manager (SIM) Bundled Software running OpenSSL, Remote Disclosure of Information 2014-04-26
security-alert hp com

[ANN] Struts 2.3.16.2 GA release available - security fix 2014-04-26
Lukasz Lenart (lukaszlenart apache org)

Malware

Generic.dx!C5D82D44BB86

Generic.bfr!618A32F9C97A

RDN/Generic.dx!dbj!B90CF6E074FD

RDN/Generic PUP.x!025D8193D0F2

q9.s_105021!9CAAEF359236

RDN/Generic.bfr!hb!1C091D9082BA

q9.s_105021!FAF892C6349B

RDN/Generic.dx!dbj!06537F86204D

RDN/Generic.dx!028DBA1F048E

RDN/Generic PUP.x!FB6435D8CC6D

RDN/Spybot.bfr!854E4A92DBAA

RDN/Generic PUP.x!cbv!5F531A29FD2E

Generic PUP.x!4DAF944A6059

Generic.bfr!38DF8C10C23E

q9.s_105021!8B1425F0568A

RDN/Generic PUP.x!cbv!41C657ED6C42

q9.s_105021!EC39D39C6609

RDN/Generic.dx!dbj!476024011E9D

RDN/Generic.bfr!hb!9E0EBCA24736

q9.s_105021!F764359713CE

Generic PUP.x!5C624216D9D5

q9.s_105021!7B45444EED82

RDN/Generic PUP.x!DF667A68C45B

q9.s_105021!9ECEBA1985D0

RDN/Generic.bfr!hb!27DAF7F97E05

Generic.bfr!0A8ED8B313B0

RDN/Generic BackDoor!ya!F6A138126902

Generic.bfr!89D73B696745

RDN/Generic.dx!FC4AF9AB24DA

q9.s_105021!7E35C2C7D78F

Phishing

 

Vulnerebility

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-04-28
http://www.securityfocus.com/bid/66690

Linux Kernel 'tcp_rcv_state_process()' Function Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/65654

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2014-04-28
http://www.securityfocus.com/bid/62043

Drupal Core Information Disclosure Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66977

QEMU CVE-2014-0145 Multiple Buffer Overflow Vulnerabilities
2014-04-28
http://www.securityfocus.com/bid/66464

Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability
2014-04-28
http://www.securityfocus.com/bid/65999

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-04-28
http://www.securityfocus.com/bid/66363

Opera Web Browser 'dtoa()' Remote Code Execution Vulnerability
2014-04-28
http://www.securityfocus.com/bid/37078

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2014-2402 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66898

Mac OS X 'libc/strtod(3)' Memory Corruption Vulnerability
2014-04-28
http://www.securityfocus.com/bid/37687

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/64493

Multiple BSD Distributions 'gdtoa/misc.c' Memory Corruption Vulnerability
2014-04-28
http://www.securityfocus.com/bid/35510

SAP SDM Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/58157

SAP Enterprise Portal Multiple Unspecified Cross Site Scripting Vulnerabilities
2014-04-28
http://www.securityfocus.com/bid/58155

Qemu 'virtio-net.c' Local Integer Overflow Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66821

QEMU 'vhdx' Block Driver Local Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66480

Wireshark RTP Dissector CVE-2014-2907 Remote Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/67046

QEMU CVE-2014-0146 NULL Pointer Dereference Local Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66472

QEMU Division By Zero Error Local Denial of Service Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66481

QEMU Block Drivers CVE-2014-0143 Multiple Integer Overflow Vulnerabilities
2014-04-28
http://www.securityfocus.com/bid/66486

QEMU CVE-2014-0147 Multiple Local Denial of Service Vulnerabilities
2014-04-28
http://www.securityfocus.com/bid/66484

Oracle Java SE CVE-2014-2420 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66919

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66920

KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
2014-04-28
http://www.securityfocus.com/bid/37080

MATLAB 'dtoa' Implementation Memory Corruption Vulnerability
2014-04-28
http://www.securityfocus.com/bid/37688

Oracle Java SE CVE-2014-2409 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66915

Oracle Java SE CVE-2014-0453 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66914

Oracle Java SE CVE-2014-2403 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66918

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-04-28
http://www.securityfocus.com/bid/66916

Exploit

  McAfee ePolicy Orchestrator 4.6.0-4.6.5 (ePowner) - Multiple Vulnerabilities

  Wireshark <= 1.8.12/1.10.5 wiretap/mpeg.c Stack Buffer Overflow

  Adem 0.5.1 - Local File Inclusion

  GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection

  Wordpress iMember360 Plugin 3.8.012 - 3.9.001 - Multiple Vulnerabilities

  NTP ntpd monlist Query Reflection - Denial of Service

  Symantec Endpoint Protection Manager 12.1.x - SEH Overflow POC

25.4.2014

Bugtraq

[security bulletin] HPSBMU03020 rev.1 - HP Version Control Agent (VCA) and Version Control Repository Manager (VCRM) running OpenSSL on Linux and Windows, Remote Disclosure of Information 2014-04-24
security-alert hp com

[security bulletin] HPSBPI03014 rev.1 - HP LaserJet Pro MFP Printers, HP Color LaserJet Pro MFP Printers, Remote Disclosure of Information 2014-04-24
security-alert hp com

[security bulletin] HPSBHF03021 rev.1 - HP Thin Client with ThinPro OS or Smart Zero Core Services, Running OpenSSL, Remote Disclosure of Information 2014-04-24
security-alert hp com

[security bulletin] HPSBHF03006 rev.1 - HP Integrated Lights-Out 2 (iLO 2) Denial of Service 2014-04-24
security-alert hp com

Birebin.com Android App SSL certificate validation weakness 2014-04-24
harun esur sceptive com

Misli.com Android App SSL certificate validation weakness 2014-04-24
harun esur sceptive com

Weak firmware encryption and predictable WPA key on Sitecom routers 2014-04-24
roberto paleari emaze net

Malware

q9.s_105018!EB4BF277ADCD

q9.s_105018!1C066584588E

Generic.dx!952B5E8899BA

q9.s_105018!09CC5A6507AF

q9.s_105018!099C5F3EA8F2

q9.s_105018!6BADED7E9BF7

q9.s_105018!24C0BDA9FADE

Generic PUP.x!0889B1E847ED

Generic.bfr!6A047BD6F5D4

RDN/Generic BackDoor!69114194E654

q9.s_105018!C6A106C31C6B

q9.s_105018!CE5626A10406

q9.s_105018!758DFE49B50B

q9.s_105018!B6F17C2916AC

RDN/PWS-Banker!4519BF4A6D40

q9.s_105018!AA9031CF3A7A

q9.s_105018!E09BF19BEDC1

q9.s_105018!CEDFE316707D

RDN/Generic PWS.y!zh!38B7EA4F4A38

q9.s_105018!B3112FC886E0

q9.s_105018!F6A4B683695F

q9.s_105018!671950091656

q9.s_105018!523F06433325

q9.s_105018!A143365C9DDF

RDN/Generic PUP.x!cbr!BB428DF4E84A

RDN/Generic.dx!dbg!4BAA6121E8D5

q9.s_105018!1EA2358969FC

q9.s_105018!C11867346F88

q9.s_105018!0D6CD2185A9D

RDN/Generic.bfr!ha!29C87A24F792

Phishing

Apple ID

24th April 2014

WARNING ! : YOU MUST VERIFY
YOUR ACCOUNT!

Barclays

24th April 2014

*** ***
BARCLAYS.BANK.ONLINE..

Vulnerebility

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63134

Oracle Java SE TTF Font Parsing Remote Code Execution Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64894

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63089

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/60618

Oracle Java SE CVE-2013-5905 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64934

Oracle Java SE CVE-2013-5906 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64903

Oracle Java SE CVE-2013-5776 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63152

Oracle Java SE CVE-2014-0449 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66907

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5902 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64923

Oracle Java SE CVE-2014-2428 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66870

Oracle Java SE CVE-2014-2421 Buffer Overflow Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66881

Oracle Java SE CVE-2014-0368 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64930

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-2423 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66887

Oracle Java SE CVE-2014-0418 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64917

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63148

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5878 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64927

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63150

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-0428 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64935

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-0415 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/64899

Oracle Java SE CVE-2014-2420 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/66919

Oracle Java SE CVE-2013-2472 Buffer Overflow Vulnerability
2014-04-25
http://www.securityfocus.com/bid/60656

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2014-04-25
http://www.securityfocus.com/bid/63115

Exploit

  Bonefire v.0.7.1 - Reinstall Admin Account Exploit

  dompdf 0.6.0 (dompdf.php, read param) - Arbitrary File Read

  WD Arkeia Virtual Appliance 10.2.9 - Local File Inclusion

  AlienVault 4.3.1 - Unauthenticated SQL Injection

24.4.2014

Bugtraq

[security bulletin] HPSBMU02997 rev.2 - HP Smart Update Manager (SUM) running OpenSSL, Remote Disclosure of Information 2014-04-23
security-alert hp com

[security bulletin] HPSBMU02995 rev.5 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure 2014-04-23
security-alert hp com

CVE-2014-2042 - Unrestricted file upload in Livetecs Timelive 2014-04-23
Portcullis Advisories (advisories portcullis-security com)

AirPhoto WebDisk v4.1.0 iOS - Code Execution Vulnerability 2014-04-23
Vulnerability Lab (research vulnerability-lab com)

CVE-2014-2383 - Arbitrary file read in dompdf 2014-04-23
Portcullis Advisories (advisories portcullis-security com)

CVE-2014-1217 - Unauthenticated access to sensitive information and functionality in Livetecs Timelive 2014-04-23
Portcullis Advisories (advisories portcullis-security com)

SEC Consult SA-20140423-0 :: Path Traversal/Remote Code Execution in WD Arkeia Network Backup Appliances 2014-04-23
SEC Consult Vulnerability Lab (research sec-consult com)

[SECURITY] [DSA 2808-2] openjpeg regression update 2014-04-22
Raphael Geissert (geissert debian org)

[security bulletin] HPSBMU03013 rev.1 - WMI Mapper for HP Systems Insight Manager running OpenSSL, Remote Disclosure of Information 2014-04-22
security-alert hp com

Malware

StartPage-NY!46F2D56AF5DA

Generic PUP.x!65278A193EB1

RDN/Generic PUP.x!cb3!60B2B8F48DBC

RDN/Generic PUP.x!cb3!60AD23211BD7

RDN/Generic PUP.x!cb3!F0CC294B963F

Generic PUP.x!C096F7634D4C

RDN/Generic PUP.x!cb3!252F6955F1BD

RDN/Generic PUP.x!cb3!35ED7296D8FF

Generic.bfr!60C1330CC27C

RDN/Generic PUP.x!cb3!4F29B40FAE80

RDN/Generic PUP.x!cb3!34944EE6B643

RDN/Generic.bfr!60B2197E2168

Generic PUP.x!C907FC075DA0

RDN/Generic PUP.x!cb3!613D6A80C043

RDN/Generic PUP.x!cb3!0B7767D99DFA

RDN/Generic Dropper!uh!EFF729BB6616

RDN/Generic PUP.x!cb3!1B3B01D4F720

Generic.bfr!6077F155B0FB

Generic PUP.x!922C02AE46CD

RDN/Generic PUP.x!cb3!6140DBF049EE

Generic PUP.x!47A7917AD58F

Generic PUP.x!67DF2556B471

RDN/Generic PUP.x!cb3!5FD1D20DC1F4

RDN/Generic PUP.x!cb3!AA7456E9F772

RDN/Generic PUP.x!cb3!608113C06A15

RDN/Generic PUP.x!cb3!47C1A188ED1F

Generic PUP.x!F00BE835330B

RDN/Generic.bfr!gz!613D3EC91A6A

RDN/Generic PUP.x!cb3!60191C682F95

RDN/Generic.bfr!1C1C7407B2FF

Phishing

Tesco

23rd April 2014

CUSTOMER SATISFACTION SURVEY

Service Update

23rd April 2014

WARNING! SOME INFORMATION ON
YOUR ACCOUNT APPEARS TO BE
MISSING OR INCORRECT.?

Dear Client.

23rd April 2014

YOUR ACCOUNT HAS BEEN
TEMPORARILY SUSPENDED .

Nationwide

23rd April 2014

Account Review
 

Vulnerebility

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-04-24
http://www.securityfocus.com/bid/66690

Oracle Java SE CVE-2014-0452 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66891

Oracle Java SE CVE-2014-2397 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66893

Oracle Java SE CVE-2014-0446 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66903

Oracle Java SE CVE-2014-0456 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66877

Oracle Java SE CVE-2014-2398 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66920

Oracle Java SE CVE-2014-2423 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66887

Oracle Java SE CVE-2014-0457 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66866

Oracle Java SE CVE-2014-2428 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66870

Apache Tomcat CVE-2013-4286 Security Bypass Vulnerability
2014-04-24
http://www.securityfocus.com/bid/65773

Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability
2014-04-24
http://www.securityfocus.com/bid/65767

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-04-24
http://www.securityfocus.com/bid/65400

OpenStack Dashboard (Horizon) CVE-2014-0157 Multiple Cross Site Scripting Vulnerabilities
2014-04-24
http://www.securityfocus.com/bid/66706

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-04-24
http://www.securityfocus.com/bid/66363

Oracle Java SE CVE-2014-0432 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66897

Oracle Java SE CVE-2014-2414 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66894

Oracle Java SE CVE-2014-0429 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66856

Oracle Java SE CVE-2014-2401 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66911

Oracle Java SE CVE-2014-2403 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66918

Oracle Java SE CVE-2014-2402 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66898

libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
2014-04-24
http://www.securityfocus.com/bid/64493

libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2014-04-24
http://www.securityfocus.com/bid/63676

Multiple Oracle Java Products 'unpack.cpp' Insecure Temporary File Creation Vulnerability
2014-04-24
http://www.securityfocus.com/bid/65568

Oracle Java SE CVE-2014-0461 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66902

Oracle Java SE CVE-2014-0460 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66916

Oracle Java SE CVE-2014-2409 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66915

Oracle Java SE CVE-2014-0458 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66883

Oracle Java SE CVE-2014-0459 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66910

Oracle Java SE CVE-2014-0448 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66904

Oracle Java SE CVE-2014-0449 Remote Security Vulnerability
2014-04-24
http://www.securityfocus.com/bid/66907

Exploit

  Heartbleed OpenSSL - Information Leak Exploit (2) - DTLS Support

  Acunetix 8 build 20120704 - Remote Stack Based Overflow

  Bonefire v.0.7.1 - Reinstall Admin Account Exploit

23.4.2014

Bugtraq

APPLE-SA-2014-04-22-2 iOS 7.1.1 2014-04-22
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2014-04-22-3 Apple TV 6.1.1 2014-04-22
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2014-04-22-1 Security Update 2014-002 2014-04-22
Apple Product Security (product-security-noreply lists apple com)

[SECURITY] [DSA 2911-1] icedove security update 2014-04-22
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBMU03018 rev.1 - HP Software Asset Manager running OpenSSL, Remote Disclosure of Information 2014-04-22
security-alert hp com

[security bulletin] HPSBMU03017 rev.1 - HP Software Connect-IT running OpenSSL, Remote Disclosure of Information 2014-04-22
security-alert hp com

[security bulletin] HPSBMU03019 rev.1 - HP Software UCMDB Browser and Configuration Manager running OpenSSL, Remote Disclosure of Information 2014-04-22
security-alert hp com

Malware

Generic.dx!CBC4A7701FF9

RDN/Generic PUP.x!cb3!B7FAFA412568

Generic PUP.x!DD1A5171616F

RDN/Generic PUP.x!cb3!B7CF0EB0C75A

Generic PUP.x!FDB6DE4306A4

RDN/Generic PWS.y!zg!3B9A851ABB0D

RDN/Generic.tfr!dz!3269E9D28891

RDN/Generic PUP.x!cb3!4CFFB09B2FC2

RDN/Generic PUP.x!cb3!ABCD4FE6CA29

Generic PUP.x!EA599D14CD99

RDN/Generic PUP.x!cb3!2FED9D7617DB

RDN/Generic.bfr!FCF139FD988D

RDN/Hybris.kit!a!4AF5839BBA00

Generic PUP.x!B0DA62BC3E00

Generic PUP.x!40A70C14DAEE

RDN/Generic.bfr!gy!26D948AB6343

W32/Pate.b!1C0F0A58A7F4

Generic PUP.x!E538CFAC58D8

RDN/Generic PUP.x!cb3!8C3280DC3F49

RDN/Generic.bfr!gy!B1205BAE32CD

RDN/Generic.bfr!gf!0EBE9EE5028F

RDN/Generic.bfr!gf!1504D5903D08

RDN/Generic PUP.x!cb3!33A4684E4FB6

W32/Fujacks!A3A834E4C5C7

Generic.dx!E13047947714

RDN/Generic PUP.x!cb3!298AE814A5A6

Generic PUP.x!40798576C08A

RDN/Generic.tfr!dz!CE9340AA2710

RDN/Generic PUP.x!EF2FEFCA6EFD

RDN/Generic.tfr!dz!E5D9D345D426

Phishing

 

Vulnerebility

WebKit Use-After-Free Remote Code Execution Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66243

WebKit CVE-2014-1305 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66587

WebKit CVE-2014-1308 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66573

WebKit CVE-2014-1307 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66572

WebKit CVE-2014-1304 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66586

WebKit Unspecified Heap Based Buffer Overflow Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66242

WebKit CVE-2014-1302 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66585

WebKit CVE-2014-1299 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66581

WebKit CVE-2014-1311 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66577

WebKit CVE-2014-1298 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66576

WebKit CVE-2013-2871 Use After Free Remote Code Execution Vulnerability
2014-04-23
http://www.securityfocus.com/bid/61054

WebKit CVE-2014-1309 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66574

WebKit CVE-2014-1310 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66575

WebKit CVE-2014-1313 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66579

WebKit CVE-2014-1312 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66578

WebKit CVE-2014-1300 Unspecified Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66583

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63101

Ruby Floating Point Parsing Heap Buffer Overflow Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63873

Apple Mac OS X CoreGraphics PDF Handling Buffer Overflow Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63330

LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2014-04-23
http://www.securityfocus.com/bid/65258

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63143

Oracle Java SE CVE-2013-5818 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63157

IBM Java CVE-2013-5457 Unspecified Arbitrary Code Execution Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63622

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1514 Out of Bounds Memory Corruption Vulnerability
2014-04-23
http://www.securityfocus.com/bid/66240

Oracle Java SE CVE-2013-5820 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63133

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63137

Oracle Java SE CVE-2013-5824 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63139

Apache Tomcat CVE-2013-4322 Incomplete Fix Denial of Service Vulnerability
2014-04-23
http://www.securityfocus.com/bid/65767

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2014-04-23
http://www.securityfocus.com/bid/63121

Exploit

  Sixnet Sixview 2.4.1 - Web Console Directory Traversal

  No-CMS 0.6.6 rev 1 - Admin Account Hijacking / RCE Exploit via Static Encryption Key

  kitForm CRM Extension 0.43 (sorter.php, sorter_value param) - SQL Injection

22.4.2014

Bugtraq

[SECURITY] [DSA 2901-3] wordpress regression update 2014-04-21
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2895-2] prosody regression update 2014-04-20
Luciano Bello (luciano debian org)

Multiple Vulnerabilities in MODX Revolution < = MODX 2.2.13-pl 2014-04-19
craig arendt stratumsecurity com

Blind SQL Injection Vulnerability in KnowledgeTree <= 3.7.0.2 2014-04-19
craig arendt stratumsecurity com

[security bulletin] HPSBMU02994 rev.2 - HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL, Remote Disclosure of Information 2014-04-19
security-alert hp com

[SECURITY] CVE-2013-2187: Apache Archiva Cross-Site Scripting vulnerability 2014-04-19
Brett Porter (brett apache org)

[SECURITY] [DSA 2901-2] wordpress regression update 2014-04-18
Thijs Kinkhorst (thijs debian org)

[security bulletin] HPSBMU03012 rev.1 - HP Insight Management VCEM Web Client SDK (VCEMSDK) running OpenSSL, Remote Disclosure of Information 2014-04-18
security-alert hp com

[security bulletin] HPSBMU02995 rev.4 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure 2014-04-18
security-alert hp com

[SECURITY] [DSA 2910-1] qemu-kvm security update 2014-04-18
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 2909-1] qemu security update 2014-04-18
Salvatore Bonaccorso (carnil debian org)

[SECURITY] CVE-2013-2251: Apache Archiva Remote Command Execution 2014-04-19
Brett Porter (brett apache org)

Remote Command Injection in Ruby Gem sfpagent 0.4.14 2014-04-18
Larry W. Cashdollar (larry0 me com)

[SECURITY] [DSA 2908-1] openssl security update 2014-04-17
Raphael Geissert (geissert debian org)

Security advisory for Bugzilla 4.5.3, 4.4.3, 4.2.8, and 4.0.12 2014-04-17
LpSolit gmail com

[security bulletin] HPSBMU02995 rev.3 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure 2014-04-17
security-alert hp com

[security bulletin] HPSBMU02998 rev.2 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information, Denial of Service (DoS) 2014-04-17
security-alert hp com

[ MDVSA-2014:079 ] json-c 2014-04-17
security mandriva com

[security bulletin] HPSBGN03010 rev.1 - HP Software Server Automation, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information 2014-04-17
security-alert hp com

[security bulletin] HPSBMU02935 rev.2 - HP LoadRunner Virtual User Generator, Remote Code Execution, Disclosure of information 2014-04-17
security-alert hp com

[security bulletin] HPSBMU02988 rev.1 - HP Universal Configuration Management Database, Disclosure of Information 2014-04-17
security-alert hp com

[security bulletin] HPSBMU02982 rev.1 - HP Database and Middleware Automation, Disclosure of Information 2014-04-17
security-alert hp com

[security bulletin] HPSBGN03008 rev.1 - HP Software Service Manager, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information 2014-04-17
security-alert hp com

D-Link DAP-1320 Wireless Range Extender Directory Traversal and XSS Vulnerabilities 2014-04-17
kyle Lovett (krlovett gmail com)

[security bulletin] HPSBMU02987 rev.1 - HP Universal Configuration Management Database Integration Service, Remote Code Execution 2014-04-17
security-alert hp com

[security bulletin] HPSBMU02996 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access, Execution of Arbitrary Code 2014-04-16
security-alert hp com

Buggy insecure "security" software executes rogue binary during installation and uninstallation 2014-04-16
Stefan Kanthak (stefan kanthak nexgo de)

CVE-2014-2597 - Denial of Service in PCNetSoftware RAC Server 2014-04-16
Portcullis Advisories (advisories portcullis-security com)

[SECURITY] [DSA 2907-1] Announcement of long term support for Debian oldstable 2014-04-16
Moritz Muehlenhoff (jmm debian org)

[ MDVSA-2014:078 ] asterisk 2014-04-16
security mandriva com

Malware

Generic.bfr!35129A2B7E30

RDN/Generic BackDoor!xx!7B91C5FE92B9

Generic PUP.x!A6500816AA4B

Generic.bfr!33B0224D5BA4

Generic.bfr!38158E58CAD3

RDN/Generic.bfr!gy!2B12C06A1D75

RDN/Generic.bfr!91EE5232C984

RDN/Generic PUP.x!cbc!0CF95BA4E398

RDN/Generic.bfr!gy!2BBD42F0092C

Generic.bfr!34F614E6E543

RDN/Generic BackDoor!1589EA5207EE

RDN/Generic PUP.x!cbc!18D4A589811C

Generic.bfr!3826350E9A72

Generic.bfr!37C9EBAF812B

Generic.bfr!3804203BF91F

Generic.bfr!3558E34A5A62

RDN/Generic PUP.x!cbc!54DF10F5D7B4

Generic.bfr!381C28F10683

RDN/Generic.bfr!6D80A7553940

RDN/Generic PUP.x!cbc!4CD9C9EB5FC8

Generic.bfr!332AB5CA33B7

RDN/Generic.bfr!gy!85BA101D6A19

RDN/Generic.bfr!gz!30DB7E2467B1

RDN/Generic PUP.x!cbc!A93E16256DE6

Generic.bfr!34EB8099D961

RDN/Generic PUP.x!cbc!D4349F5C692D

Generic.bfr!2E12E902581B

Generic.bfr!AAD3C46509A2

RDN/Generic PUP.x!cbc!4FB6462C7296

RDN/Generic PUP.x!cbc!1CF64C2B3AF2

Phishing

Natwest

21st April 2014

NATWEST OFFERS YOU A BONUS

Dear Client.

21st April 2014

YOUR ACCOUNT HAS BEEN
TEMPORARILY SUSPENDED .

Barclays Bank Plc

21st April 2014

Please Unflag Your Barclays
Accounts

MBNA

18th April 2014

YOUR MBNA/VIRGIN CARD..

Chase

18th April 2014

IMPORTANT MESSAGE FROM CHASE

Vulnerebility

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-04-22
http://www.securityfocus.com/bid/66690

OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/64691

Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities
2014-04-22
http://www.securityfocus.com/bid/61189

libmms MMSH Server Response Heap-Based Buffer Overflow Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66933

Apache Tomcat CVE-2014-0033 Session Fixation Vulnerability
2014-04-22
http://www.securityfocus.com/bid/65769

Apache Tomcat CVE-2013-4286 Security Bypass Vulnerability
2014-04-22
http://www.securityfocus.com/bid/65773

Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/65400

Apache Tomcat CVE-2013-4590 XML External Entity Information Disclosure Vulnerability
2014-04-22
http://www.securityfocus.com/bid/65768

Prosody XMPP Server CVE-2014-2744 XMPP-Layer Compression Denial of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66723

Prosody XMPP Server CVE-2014-2745 XMPP-Layer Compression Denial of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66724

OpenSSL DTLS Implementations Man in the Middle Multiple Security Bypass Vulnerabilities
2014-04-22
http://www.securityfocus.com/bid/64618

Multiple IBM Products CVE-2013-6747 Denial of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/65156

WordPress Multiple Security Vulnerabilities
2014-04-22
http://www.securityfocus.com/bid/66765

Oracle Outside In Technology CVE-2013-5791 Stack Buffer Overflow Vulnerability
2014-04-22
http://www.securityfocus.com/bid/63076

Oracle Outside In Technology CVE-2013-5763 Stack Buffer Overflow Vulnerability
2014-04-22
http://www.securityfocus.com/bid/63741

Oracle Outside In Technology CVE-2013-5879 Local Security Vulnerability
2014-04-22
http://www.securityfocus.com/bid/64825

Adobe Flash Player CVE-2013-0634 Remote Memory Corruption Vulnerability
2014-04-22
http://www.securityfocus.com/bid/57787

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-04-22
http://www.securityfocus.com/bid/66363

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2014-04-22
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2014-0411 Remote Security Vulnerability
2014-04-22
http://www.securityfocus.com/bid/64918

Google Chrome Prior to 34.0.1847.116 Multiple Security Vulnerabilities
2014-04-22
http://www.securityfocus.com/bid/66704

phpMyID 'openid_error' Parameter Cross Site Scripting Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66665

Linux Kernel 'bpf_jit_compile()' Function Denial of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66931

QEMU IDE SMART Out of Bounds Local Privilege Escalation Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66932

X.Org libXfont BDF Font File Handling Stack Buffer Overflow Vulnerability
2014-04-22
http://www.securityfocus.com/bid/64694

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2014-04-22
http://www.securityfocus.com/bid/62892

X.Org X Server CVE-2013-6424 Local Denial of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/64127

Sfpagent Ruby Gem Remote Command Injection Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66935

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66779

Siemens SINEMA Server CVE-2014-2733 Denial of Service Vulnerability
2014-04-22
http://www.securityfocus.com/bid/66967

Exploit

     Adobe Flash Player Regular Expression Heap Overflow

  SAP Router - Timing Attack Password Disclosure

  Teracom Modem T2-B-Gawv1.4U10Y-BI - CSRF Vulnerability

17.4.2014

Bugtraq

[SECURITY] [DSA 2907-1] Announcement of long term support for Debian oldstable 2014-04-16
Moritz Muehlenhoff (jmm debian org)

[ MDVSA-2014:078 ] asterisk 2014-04-16
security mandriva com

[CORE-2014-0003] - SAP Router Password Timing Attack 2014-04-16
CORE Advisories Team (advisories coresecurity com)

[SECURITY] Stored Cross Site Scripting in Ektron CMS 8.7 2014-04-16
webmaster josephzeng com

[Security Advisory] Stored Cross Site Scripting in Ektron CMS 8.7 2014-04-16
webmaster josephzeng com

ESA-2014-028: EMC Cloud Tiering Appliance XML External Entity (XXE) and Information Disclosure Vulnerabilities 2014-04-16
Security Alert (Security_Alert emc com)

[security bulletin] HPSBMU02999 rev.1 - HP Software Autonomy WorkSite Server (On-Premises Software), Running OpenSSL, Remote Disclosure of Information 2014-04-16
security-alert hp com

SQL Injection in mAdserve 2014-04-16
High-Tech Bridge Security Research (advisory htbridge com)

CVE-2014-2735 - WinSCP: missing X.509 validation 2014-04-16
Micha Borrmann (micha borrmann syss de)

[SECURITY] [DSA 2905-1] chromium-browser security update 2014-04-16
Michael Gilbert (mgilbert debian org)

Malware

RDN/Generic PUP.x!bzw!DD65E7C49E9D

RDN/Generic PUP.x!bzw!CA7FCF6BFAC4

Generic PUP.x!220090B85E2B

RDN/Generic PWS.y!ze!2B21F38E19FE

Generic.bfr!A9364122DB0C

RDN/Generic PUP.x!bzw!48FD2EE78379

RDN/Generic PUP.x!bzw!3C6D11423297

Generic PUP.x!1E1B19288276

Generic PUP.x!DA081F4DC549

Generic PUP.x!29E9DC26EF73

Generic PUP.x!96625FD13F56

Generic PUP.x!76C7AFE36883

Generic PUP.x!62BEBB5ECE80

Generic PUP.x!8277EA469CC8

RDN/Generic BackDoor!3774B700C629

Generic PUP.x!D0A87A0F7810

RDN/Generic PUP.x!bzw!36DF9747F557

RDN/Spybot.bfr!B70079A52842

Generic PUP.x!B1995FFCD3A0

Generic PUP.x!5D562C54EFF6

RDN/Generic PUP.x!bzw!27A613BF0902

Generic PUP.x!D975614CB3A0

Generic PUP.x!8C06D1ACF437

Generic PUP.x!B4D15B4CB7A0

RDN/Generic PUP.x!A47D6F67BE9F

Generic PUP.x!0A62B729EE42

RDN/Generic PUP.x!bzw!83E053030AC4

W32/Sdbot.worm!7E735FDF0862

RDN/Downloader.a!pz!29107EFB9690

RDN/Generic PUP.x!bzw!F23BE4276A9D

Phishing

 

Vulnerebility

OpenJPEG CVE-2013-6887 Multiple Denial Of Service Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/64140

OpenJPEG CVE-2013-6053 Multiple Out of Bounds Memory Corruption Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/64121

OpenJPEG CVE-2013-6052 Multiple Out of Bounds Memory Corruption Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/64118

OpenJPEG CVE-2013-6054 Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/64113

OpenJPEG CVE-2013-4290 Multiple Stack Buffer Overflow Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/62362

OpenJPEG CVE-2013-6045 Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/64109

OpenJPEG CVE-2013-1447 Multiple Denial Of Service Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/64142

OpenJPEG CVE-2013-4289 Multiple Heap Buffer Overflow Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/62363

Puppet CVE-2013-4761 Arbitrary Code Execution Vulnerability
2014-04-17
http://www.securityfocus.com/bid/61806

WordPress Multiple Security Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/66765

OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
2014-04-17
http://www.securityfocus.com/bid/64691

Multiple Rockwell Automation Products CVE-2012-4690 Remote Denial of Service Vulnerability
2014-04-17
http://www.securityfocus.com/bid/56872

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/66690

'pam_cifscreds' PAM Module 'cifskey.c' Stack Buffer Overflow Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66743

OpenStack Keystone V3 API Authentication Denial of Service Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66736

IOServer CVE-2014-0777 Out-of-Bounds Read Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66761

Microsoft Word File Converting CVE-2014-1757 Remote Code Execution Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66614

JBIG-KIT LibJbig Image File Handling CVE-2013-6369 Remote Buffer Overflow Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66697

GNU a2ps CVE-2014-0466 Arbitrary Command Execution Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66660

PHP Fileinfo Component Remote Denial of Service Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66406

Samba 'pam_winbind' Configuration File Security Bypass Vulnerability
2014-04-17
http://www.securityfocus.com/bid/64101

Samba SAMR Server Password Lockout Bypass Information Disclosure Weakness
2014-04-17
http://www.securityfocus.com/bid/66336

Samba 'smbcacls' Command Security Bypass Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66232

Sophos Web Appliance Privilege Escalation and Remote Code Execution Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/66734

qEngine Database Backup Information Disclosure Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66395

LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66478

Python 'readline()' Function Denial of Service Vulnerability
2014-04-17
http://www.securityfocus.com/bid/63804

Zend Framework Multiple Information Disclosure and Security Bypass Vulnerabilities
2014-04-17
http://www.securityfocus.com/bid/66358

LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2014-04-17
http://www.securityfocus.com/bid/65258

OSIsoft PI Interface for DNP3 CVE-2013-2828 Local Denial of Service Vulnerability
2014-04-17
http://www.securityfocus.com/bid/66712

Exploit

MS14-012 Microsoft Internet Explorer CMarkup Use-After-Free

16.4.2014

Bugtraq

[SECURITY] [DSA 2904-1] virtualbox security update 2014-04-15
Moritz Muehlenhoff (jmm debian org)

[security bulletin] HPSBST03001 rev.1 - HP XP P9500 Disk Array running OpenSSL, Remote Disclosure of Information 2014-04-15
security-alert hp com

[SECURITY] CVE-2014-0111 Apache Syncope 2014-04-15
Francesco Chicchiriccò (ilgrosso apache org)

RUCKUS ADVISORY ID 041414: OpenSSL 1.0.1 library's "Heart bleed" vulnerability - CVE-2014-0160 2014-04-14
Ruckus Product Security Team (security ruckuswireless com)

VUPEN Security Research - Adobe Flash ExternalInterface Use-After-Free Code Execution (Pwn2Own) 2014-04-14
VUPEN Security Research (advisories vupen com)

[SECURITY] [DSA 2903-1] strongswan security update 2014-04-14
Moritz Muehlenhoff (jmm debian org)

PDF Album v1.7 iOS - File Include Web Vulnerability 2014-04-14
Vulnerability Lab (research vulnerability-lab com)

Malware

Generic PUP.x!A1A6C8335AE1

Generic PUP.x!240E7127CAA7

Generic Downloader.x!B7910320D00A

Generic PUP.x!19AFA7066E57

RDN/Generic PUP.x!bzp!8D921007BCAB

Generic PUP.x!F844FBA4F882

Generic PUP.x!2AA958169F15

RDN/Generic.bfr!gv!C9B382DCB5D4

RDN/Generic.bfr!gv!EC4E83CE0A77

Generic PUP.x!E2EAC351FA35

Generic PUP.x!3B5B9BB262F5

RDN/Generic PUP.x!bzp!FC781C33472F

RDN/Generic PUP.x!bzp!2815D329BAD5

RDN/Generic Dropper!uf!457228228207

Generic PUP.x!77679D973EB6

Generic PUP.x!8480093F96A9

RDN/Generic PUP.x!bzp!C4458C4B7CDE

Downloader.gen.a!738F858DBD38

RDN/Generic PUP.x!bzp!D4479B0A9F49

Generic PUP.x!D86FC2AF37A1

RDN/Generic PUP.x!bzp!1469EF91EFA5

Generic PUP.x!80E2BAF0F5C6

Generic.bfr!ECBACFA82AFA

Generic PUP.x!8AF1ECC67E45

RDN/Generic PUP.x!7CB77D8ECED9

Generic.tfr!31C2255D6751

RDN/Generic.bfr!gv!ECC2D5826E26

Generic PUP.x!301E94758B71

Generic PUP.x!F9A755CA00C6

RDN/Generic PUP.x!bzp!1682110C691B

Phishing

REGIONS BANK

16th April 2014

Security Change To Your Online
Banking Profile

BT Yahoo Mail

14th April 2014

Account Verification

Linda Spells

14th April 2014

RE: ATTENTION: ACCOUNT
RESTRICTED

Vulnerebility

OpenJPEG CVE-2013-6887 Multiple Denial Of Service Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/64140

OpenJPEG CVE-2013-6053 Multiple Out of Bounds Memory Corruption Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/64121

OpenJPEG CVE-2013-6052 Multiple Out of Bounds Memory Corruption Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/64118

OpenJPEG CVE-2013-6054 Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/64113

OpenJPEG CVE-2013-4290 Multiple Stack Buffer Overflow Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/62362

OpenJPEG CVE-2013-6045 Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/64109

OpenJPEG CVE-2013-1447 Multiple Denial Of Service Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/64142

OpenJPEG CVE-2013-4289 Multiple Heap Buffer Overflow Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/62363

Puppet CVE-2013-4761 Arbitrary Code Execution Vulnerability
2014-04-16
http://www.securityfocus.com/bid/61806

WordPress Multiple Security Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/66765

OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
2014-04-16
http://www.securityfocus.com/bid/64691

Multiple Rockwell Automation Products CVE-2012-4690 Remote Denial of Service Vulnerability
2014-04-16
http://www.securityfocus.com/bid/56872

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/66690

'pam_cifscreds' PAM Module 'cifskey.c' Stack Buffer Overflow Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66743

OpenStack Keystone V3 API Authentication Denial of Service Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66736

IOServer CVE-2014-0777 Out-of-Bounds Read Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66761

Microsoft Word File Converting CVE-2014-1757 Remote Code Execution Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66614

JBIG-KIT LibJbig Image File Handling CVE-2013-6369 Remote Buffer Overflow Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66697

GNU a2ps CVE-2014-0466 Arbitrary Command Execution Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66660

PHP Fileinfo Component Remote Denial of Service Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66406

Samba 'pam_winbind' Configuration File Security Bypass Vulnerability
2014-04-16
http://www.securityfocus.com/bid/64101

Samba SAMR Server Password Lockout Bypass Information Disclosure Weakness
2014-04-16
http://www.securityfocus.com/bid/66336

Samba 'smbcacls' Command Security Bypass Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66232

Sophos Web Appliance Privilege Escalation and Remote Code Execution Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/66734

qEngine Database Backup Information Disclosure Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66395

LibYAML 'yaml_parser_scan_uri_escapes()' Function Remote Heap Based Buffer Overflow Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66478

Python 'readline()' Function Denial of Service Vulnerability
2014-04-16
http://www.securityfocus.com/bid/63804

Zend Framework Multiple Information Disclosure and Security Bypass Vulnerabilities
2014-04-16
http://www.securityfocus.com/bid/66358

LibYAML 'scanner.c' Remote Heap Based Buffer Overflow Vulnerability
2014-04-16
http://www.securityfocus.com/bid/65258

OSIsoft PI Interface for DNP3 CVE-2013-2828 Local Denial of Service Vulnerability
2014-04-16
http://www.securityfocus.com/bid/66712

Exploit

  Unitrends Enterprise Backup 7.3.0 - Unauthenticated Root RCE

  Adobe Reader for Android 11.1.3 - Arbitrary JavaScript Execution

  NETGEAR N600 WIRELESS DUAL BAND WNDR3400 - Multiple Vulnerabilities

  Xerox DocuShare - SQL Injection

13.4.2014

Bugtraq

ESA-2014-026: EMC Documentum Content Server Information Disclosure Vulnerability 2014-04-11
Security Alert (Security_Alert emc com)

ESA-2012-032: RSA BSAFE® Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks 2014-04-11
Security Alert (Security_Alert emc com)

ESA-2014-003: RSA® Data Loss Prevention Improper Session Management Vulnerability 2014-04-11
Security Alert (Security_Alert emc com)

ESA-2014-019: RSA BSAFE® Micro Edition Suite Certificate Chain Processing Vulnerability 2014-04-11
Security Alert (Security_Alert emc com)

Woltlab Burning Board 3.9.1 pl1 - Persistent Web Vulnerability & Editor Reverse Encoding Issue 2014-04-11
Vulnerability Lab (research vulnerability-lab com)

SEC Consult SA-20140411-0 :: Multiple vulnerabilities in Plex Media Server 2014-04-11
SEC Consult Vulnerability Lab (research sec-consult com)

[security bulletin] HPSBMU02995 rev.1 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, Performance Center, "HeartBleed" OpenSSL Vulnerability, Remote Disclosure of Information 2014-04-11
security-alert hp com

[SECURITY] [DSA 2900-1] jbigkit security update 2014-04-10
Moritz Muehlenhoff (jmm debian org)

[ MDVSA-2014:076 ] a2ps 2014-04-10
security mandriva com

OWASP ZAP 2.3.0 2014-04-10
psiinon (psiinon gmail com)

Sendy 1.1.9.1 - SQL Injection Vulnerability 2014-04-10
marduk369 gmail com

[ MDVSA-2014:075 ] php 2014-04-10
security mandriva com

BlueMe Bluetooth v5.0 iOS - Code Execution Vulnerability 2014-04-10
Vulnerability Lab (research vulnerability-lab com)

iVault Private P&V 1.1 iOS - Path Traversal Vulnerability 2014-04-10
Vulnerability Lab (research vulnerability-lab com)

AppFish Offline Coder v2.2 iOS - Persistent Software Vulnerability 2014-04-10
Vulnerability Lab (research vulnerability-lab com)

[SECURITY] [DSA 2899-1] openafs security update 2014-04-09
Thijs Kinkhorst (thijs debian org)

[SECURITY] [DSA 2898-1] imagemagick security update 2014-04-09
Moritz Muehlenhoff (jmm debian org)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2014-04-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[ MDVSA-2014:073 ] file 2014-04-09
security mandriva com

[ MDVSA-2014:070 ] yaml 2014-04-09
security mandriva com

[ MDVSA-2014:072 ] php-ZendFramework 2014-04-09
security mandriva com

[ MDVSA-2014:071 ] yaml 2014-04-09
security mandriva com

[ MDVSA-2014:069 ] perl-YAML-LibYAML 2014-04-09
security mandriva com

[ MDVSA-2014:068 ] openssh 2014-04-09
security mandriva com

SQL Injection in Orbit Open Ad Server 2014-04-09
High-Tech Bridge Security Research (advisory htbridge com)

Сross-Site Request Forgery (CSRF) in XCloner Standalone 2014-04-09
High-Tech Bridge Security Research (advisory htbridge com)

CVE-2014-0160 mitigation using iptables 2014-04-09
Fabien Bourdaire (lists ecsc co uk)

[ MDVSA-2014:067 ] openssl 2014-04-09
security mandriva com

Cisco Security Advisory: OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products 2014-04-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Malware

Generic.bfr!C047E34DDE75

StartPage-NY!24B3F9B4CDA2

RDN/Generic.bfr!42FDD3B7953B

Generic.bfr!C09C0D4C218D

Generic.bfr!3D2B9AECC8C8

Generic.bfr!0F868CB52202

Adware-FFN!33A333319A6B

Generic.bfr!09B5676E4579

Generic.bfr!BBDD9902881C

Generic.dx!339D728BEA78

Generic.bfr!1A2F56EA1536

RDN/Generic.bfr!gu!C084B6E43002

RDN/Generic.bfr!gu!C0A6470E8916

RDN/Generic.bfr!gu!6393677B46DE

RDN/Generic.bfr!gu!C0C7E4CCD8B8

Generic.bfr!BAA06577B7BC

RDN/Generic.bfr!gu!9B69F4336EA6

RDN/Generic.bfr!gu!E316330276A0

RDN/Generic.bfr!gu!D5ECB1041720

RDN/Generic.bfr!gu!B58BDF9DFEC5

RDN/Generic.bfr!CB75B9FA6DEA

RDN/Generic.bfr!gu!1A5994F205AD

RDN/Generic.bfr!gu!99F17568919A

RDN/Generic PUP.x!bzl!617FDBA6DB01

RDN/Generic PUP.x!bzl!3D76C1877F21

Generic.bfr!3C748870C1EC

RDN/Generic PUP.x!55BBC49E4458

RDN/Generic.bfr!gu!5C64E1807536

RDN/Generic.bfr!6649A570A523

RDN/Generic PUP.x!863E49053C27

Phishing

Microsoft

13th April 2014

Dear Westpac Customer,

Halifax

12th April 2014

OFFICIAL NOTIFICATION FROM
HALIFAX BANK

AKIN BADMUS

12th April 2014

RE:SECURE THIS OFFER!!!

eBay

12th April 2014

Your question from an eBay
member

Barclays Bank PLC

11th April 2014

YOUR ACCOUNT HAS BEEN FLAGGED
!

www.apple.com

11th April 2014

The important updates !

PayPal

10th April 2014

Update Your information

Vulnerebility

JBIG-KIT LibJbig Image File Handling CVE-2013-6369 Remote Buffer Overflow Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66697

Fortinet FortiADC 'locale' Parameter Cross Site Scripting Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66642

OpenSSL TLS 'heartbeat' Extension Multiple Information Disclosure Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/66690

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2014-04-14
http://www.securityfocus.com/bid/66363

SAP ERP Enhancement Packages Security Bypass Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66683

SAP HANA Information Disclosure Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66675

Linux Kernel 'ping_init_sock()' Local Privilege Escalation Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66779

OpenJPEG CVE-2013-6887 Multiple Denial Of Service Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/64140

OpenJPEG CVE-2013-6053 Multiple Out of Bounds Memory Corruption Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/64121

OpenJPEG CVE-2013-6052 Multiple Out of Bounds Memory Corruption Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/64118

OpenJPEG CVE-2013-6054 Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/64113

OpenJPEG CVE-2013-4290 Multiple Stack Buffer Overflow Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/62362

OpenJPEG CVE-2013-6045 Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/64109

OpenJPEG CVE-2013-1447 Multiple Denial Of Service Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/64142

OpenJPEG CVE-2013-4289 Multiple Heap Buffer Overflow Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/62363

Puppet CVE-2013-4761 Arbitrary Code Execution Vulnerability
2014-04-14
http://www.securityfocus.com/bid/61806

WordPress Multiple Security Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/66765

OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
2014-04-14
http://www.securityfocus.com/bid/64691

Multiple Rockwell Automation Products CVE-2012-4690 Remote Denial of Service Vulnerability
2014-04-14
http://www.securityfocus.com/bid/56872

'pam_cifscreds' PAM Module 'cifskey.c' Stack Buffer Overflow Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66743

OpenStack Keystone V3 API Authentication Denial of Service Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66736

IOServer CVE-2014-0777 Out-of-Bounds Read Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66761

Microsoft Word File Converting CVE-2014-1757 Remote Code Execution Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66614

GNU a2ps CVE-2014-0466 Arbitrary Command Execution Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66660

PHP Fileinfo Component Remote Denial of Service Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66406

Samba 'pam_winbind' Configuration File Security Bypass Vulnerability
2014-04-14
http://www.securityfocus.com/bid/64101

Samba SAMR Server Password Lockout Bypass Information Disclosure Weakness
2014-04-14
http://www.securityfocus.com/bid/66336

Samba 'smbcacls' Command Security Bypass Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66232

Sophos Web Appliance Privilege Escalation and Remote Code Execution Vulnerabilities
2014-04-14
http://www.securityfocus.com/bid/66734

qEngine Database Backup Information Disclosure Vulnerability
2014-04-14
http://www.securityfocus.com/bid/66395

Exploit

CubeCart 5.2.8 - Session Fixation

  Microweber CMS 0.93 - CSRF Vulnerability

8.4.2014

Bugtraq

MacOSX/XNU HFS Multiple Vulnerabilities 2014-04-07
submit cxsec org

Pearson eSIS Enterprise Student Information System SQL I