Databáze Hot News - Rok - Úvod  2018  2017  2016  2015  2014  2013  - 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  List  - 2018  2017  2016  2015  2014  2013 
Poslední aktualizace v 08.10.2016 14:19:38
 

15.11.2013

Bugtraq

NEW VMSA-2013-0013 VMware Workstation host privilege escalation vulnerability 2013-11-15
\VMware Security Response Center\ (security vmware com)

Re: Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-14
Kevin Cernekee (cernekee gmail com)

APPLE-SA-2013-11-14-1 iOS 7.0.4 2013-11-14
Apple Product Security (product-security-noreply lists apple com)

Re: [security bulletin] HPSBUX02922 SSRT101305 rev.1 - HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Malware

Generic Dropper!33DF8776AEA2

RDN/Generic.dx!ctk!199146A8D660

RDN/Generic.dx!ctk!28934CD9D34A

Generic.dx!0B5495E394D2

RDN/Generic PWS.y!vu!97202FBAAD50

Generic Dropper!65BFF61A1BC0

Generic FakeAlert!0A8FB147CCD8

RDN/Generic PUP.x!7212B3F2B299

RDN/Downloader.a!nv!F10FD6947918

BackDoor-AWQ.b!9F45DAC9CE74

RDN/Generic StartPage!br!C06CFF574094

Cutwail-FCTP!AE860EC124A5!AE860EC124A5

RDN/Generic.tfr!dt!DB339E59E61E

RDN/Autorun.worm.gen!7B366EB58733

Generic PUP.z!188006D91F53

Generic Dropper!B36E97415CE9

Generic Downloader.x!3D8C5C4FE7A4

BackDoor-AWQ!1BCD28ACE8D6

RDN/Generic.dx!ctk!DC9CF62095F2

Downloader.gen.a!C89AA1401F1D

PWS-Mmorpg.gen!BD69200E41A0

RDN/Generic Dropper!99EDCD9DB3B8

RDN/Generic.dx!365401D1A743

Downloader.gen.a!4FD024842184

BackDoor-AWQ.b!5D095E112BA6

RDN/Generic BackDoor!B7C4745AFCB7

Downloader-BIA!C22909325B13

PWS-Mmorpg.gen!9AD8D21FDC81

BackDoor-CEP!A0A508064E2C

Generic.bfr!AE26FC5F1E9C

Phishing

Lloyds Bank

14th November 2013

ACCESS TO ONLINE BANKING
SERVICE

National Westminster Bank

14th November 2013

*** *** Account Reveiw

Vulnerebility

Microsoft Windows #GP Trap Handler Local Privilege Escalation Vulnerability
2013-11-15
http://www.securityfocus.com/bid/37864

Oracle Java SE CVE-2013-5842 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63150

Oracle Java SE CVE-2013-5843 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63151

Oracle Java SE CVE-2013-5848 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63124

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63106

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63153

Oracle Java SE CVE-2013-5851 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63142

RETIRED: Google Chrome Unspecified Remote Sandbox Security Bypass Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63727

RETIRED: Google Chrome Unspecified Integer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63725

yaSSL CVE-2013-1492 Unspecified Buffer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/58595

Oracle MySQL Server CVE-2012-1702 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/57388

yaSSL CVE-2012-0553 Unspecified Buffer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/58594

Oracle MySQL Server CVE-2013-3801 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/61269

Oracle MySQL Server CVE-2012-3147 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/56022

Oracle MySQL Server CVE-2012-3163 Remote MySQL Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/56036

Oracle MySQL Server CVE-2013-0385 Local Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/57412

Oracle MySQL CVE-2011-2262 Remote MySQL Server Vulnerability
2013-11-15
http://www.securityfocus.com/bid/51493

Oracle MySQL Server CVE-2012-0486 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/51514

Oracle MySQL Server CVE-2012-3158 Remote Security Vulnerability
2013-11-15
http://www.securityfocus.com/bid/56017

MySQL 'yaSSL' Remote Code Execution Vulnerability
2013-11-15
http://www.securityfocus.com/bid/51925

Cisco Unified Communications Manager CVE-2013-3472 Cross Site Request Forgery Vulnerability
2013-11-15
http://www.securityfocus.com/bid/62032

Cisco Wireless LAN Controller CVE-2013-6684 Multiple Remote Denial of Service Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63684

Cisco IOS SSL VPN Interface CVE-2013-6686 Remote Denial of Service Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63699

Cisco Prime Data Center Network Manager CVE-2013-5487 Information Disclosure Vulnerability
2013-11-15
http://www.securityfocus.com/bid/62483

Cisco Prime Data Center Network Manager Multiple Remote Command Execution Vulnerabilities
2013-11-15
http://www.securityfocus.com/bid/62484

Multiple EMC Documentum Products CVE-2013-3281 Cross Site Scripting Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63526

Linux Kernel CVE-2013-6763 Integer Overflow Vulnerability
2013-11-15
http://www.securityfocus.com/bid/63707

DS3 Authentication Server 'ServerAdmin/ErrorViewer.jsp' Security Bypass Vulnerability
2013-11-15
http://www.securityfocus.com/bid/60936

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-11-15
http://www.securityfocus.com/bid/60107

IBM WebSphere Application Server CVE-2013-4005 Cross Site Scripting Vulnerability
2013-11-15
http://www.securityfocus.com/bid/61901

Exploit

Watermark Master v2.2.23 .wstyle - Buffer Overflow (SEH)

14.11.2013

Bugtraq

Re: [security bulletin] HPSBUX02922 SSRT101305 rev.1 - HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-11-14
Rodzbry27 yahoo com

Re: DS3 Authentication Server - Multiple Issues 2013-11-13
support ds3global com

Dahua DVR Authentication Bypass - CVE-2013-6117 2013-11-13
Jake Reynolds (Jake depthsecurity com)

[SECURITY] [DSA 2797-1] icedove security update 2013-11-13
Moritz Muehlenhoff (jmm debian org)

Android Superuser shell character escape vulnerability 2013-11-13
Kevin Cernekee (cernekee gmail com)

Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-13
Kevin Cernekee (cernekee gmail com)

Superuser "su --daemon" vulnerability on Android >= 4.3 2013-11-13
Kevin Cernekee (cernekee gmail com)

Malware

RDN/Qhost-Gen!bb!79CD780AAF28

RDN/Generic Dropper!8CC41A715404

RDN/Generic.bfr!F1EADB7AF0EA

RDN/Generic PUP.x!bmj!FBD068B62B4C

RDN/Generic.bfr!2FCC1F088249

RDN/Generic BackDoor!uu!80D4045AFFAB

RDN/Generic PUP.x!1FD82489DB0D

Generic PUP.x!648AFC14924E

BackDoor-DVB.e!9E25F9BFB203

RDN/Generic PUP.x!bmj!E8F598F1F26D

Generic.dx!0AD9598992C5

RDN/Generic BackDoor!571F21312E86

Ransom-FEB!2E3B1705298D!2E3B1705298D

RDN/Generic PWS.y!vt!C0D75D1B84F2

RDN/Generic.grp!gh!60C40A6FF21A

FakeSecTool-FCH!41DED40502B7!41DED40502B7

RDN/Generic PUP.x!0126EAE1647E

RDN/Generic.tfr!dt!C517D74749AE

RDN/Generic.grp!gh!F1A9C784C173

PUP-FEI!A7F1A6864F80!A7F1A6864F80

RDN/Generic.dx!C6C9898C523B

RDN/Generic PUP.x!bmj!6CA28902EA6F

RDN/Generic BackDoor!uu!8A9575639F40

RDN/Spybot.bfr!h!B24A856DD66E

RDN/Generic PUP.x!bmj!6673C6ECEF6B

FakeSecTool-FCH!BFEADED9C7B8!BFEADED9C7B8

RDN/Generic.bfr!fh!993E777BB43C

FakeSecTool-FCH!A57A613519DA!A57A613519DA

RDN/Generic PUP.x!bmj!273FAC1847DD

RDN/Generic PUP.x!bmj!272770A46156

Phishing

National Westminster Bank

14th November 2013

*** *** Account Reveiw

Customer Service Apple

13th November 2013

Confirm that you are the
account holder

AOL

13th November 2013

Suspension Message From AOL

Email Team

13th November 2013

Account Update
(2013)*******************Last
Warning

Vulnerebility

Multiple EMC Documentum Products CVE-2013-3281 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63526

Linux Kernel CVE-2013-6763 Integer Overflow Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63707

DS3 Authentication Server 'ServerAdmin/ErrorViewer.jsp' Security Bypass Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60936

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60107

IBM WebSphere Application Server CVE-2013-4005 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61901

IBM WebSphere Application Server CVE-2013-3029 Cross-Site Request Forgery Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61937

IBM WebSphere Application Server CVE-2013-4004 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61935

IBM WebSphere Application Server CVE-2013-4052 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/62336

IBM WebSphere Virtual Enterprise CVE-2013-5425 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63700

IBM Eclipse Help System CVE-2013-0467 Information Disclosure Vulnerability
2013-11-14
http://www.securityfocus.com/bid/58000

Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
2013-11-14
http://www.securityfocus.com/bid/59826

Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61129

IBM Eclipse Help System CVE-2013-0464 Cross Site Scripting Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60246

Apache Commons Compress and Apache Ant CVE-2012-2098 Denial Of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/53676

IBM WebSphere Application Server CVE-2013-4053 Remote Privilege Escalation Vulnerability
2013-11-14
http://www.securityfocus.com/bid/62338

DS3 Authentication Server 'TestTelnetConnection.jsp' Remote Command Execution Vulnerability
2013-11-14
http://www.securityfocus.com/bid/60287

Oracle Solaris CVE-2013-5862 Local Security Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63072

Oracle Solaris CVE-2013-5864 Local Security Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63073

GitLab 'Code Search' Feature CVE-2013-4489 Remote Code Execution Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63505

Apache Tomcat CVE-2012-5568 Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/56686

Apache Tomcat DIGEST Authentication Multiple Security Weaknesses
2013-11-14
http://www.securityfocus.com/bid/56403

Oracle Sun Products Suite CVE-2013-5781 Local SPARC Enterprise T4 Servers Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63051

Apache Tomcat Parameter Handling Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/51447

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63428

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63415

Linux Kernel 'skbuff.c' Local Denial of Service Vulnerability
2013-11-14
http://www.securityfocus.com/bid/61411

Samba ACL Check Security Bypass Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63646

IBM WebSphere Application Server CVE-2013-0460 Cross-Site Request Forgery Vulnerability
2013-11-14
http://www.securityfocus.com/bid/57510

Oracle Solaris CVE-2013-5839 Remote Security Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63078

IBus CVE-2013-4509 Local Password Information Disclosure Vulnerability
2013-11-14
http://www.securityfocus.com/bid/63516

Exploit

  TOSHIBA e-Studio 232/233/282/283 - Change Admin Password CSRF Vulnerability

13.11.2013

Bugtraq

[security bulletin] HPSBHF02939 rev.1 - HP Integrated Lights-Out 4 (iLO4), Remote Cross Site Scripting (XSS), Unauthorized Disclosure of Information 2013-11-12
security-alert hp com

Fwd: RUCKUS ADVISORY ID 111113-2: Authenticated persistent cross site scripting vulnerability in guest pass provisioning web interface on ZoneDirector controllers 2013-11-12
Ruckus Product Security Team (security ruckuswireless com)

Fwd: vulnerability issue for DB2 express 2013-11-12
Jonathan Yu (jonathan i yu gmail com)

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (john stamatakis sunrisetech gr)

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (srgn ml googlemail com)

XSS on Juniper JUNOS 11.4 Embedthis Appweb 3.2.3 2013-11-11
info andreabodei com

RUCKUS ADVISORY ID 111113-1: Authenticated code injection vulnerability in ZoneDirector administrative web interface 2013-11-12
Ruckus Product Security Team (security ruckuswireless com)

vulnerability issue for DB2 express 2013-11-11
bhavyasethi atcs gmail com

Malware

RDN/Generic PUP.x!bmf!A6D3E737689E

RDN/Generic PUP.x!bmf!E800BD75A601

Generic.bfr!E1E0699CB67C

RDN/Generic PUP.x!919F51CCF226

Generic PUP.x!32CEFB9DC2BF

RDN/Generic PUP.x!bmf!ADD25FC93420

Generic.dx!0D97971F16FE

Generic PUP.x!66C3D25F73F7

Generic PUP.x!0F6DA34115FA

RDN/Generic PUP.x!bmf!92ACA44F1EFA

RDN/Generic PUP.x!bmf!5927EF53E00A

RDN/Generic Dropper!C8A4C3D5600A

RDN/Generic Dropper!6EEF16DD438E

RDN/Generic.bfr!fh!506AB1AB80EE

RDN/Generic Dropper!A1D00398CE5C

RDN/Generic PUP.x!bmf!8C8EC3FF8F9B

RDN/Downloader.gen.a!C7D1BE3A5F69

RDN/Generic.dx!cth!51B26EEDF477

RDN/Generic PUP.x!bmf!32689CB7AF1B

Generic BackDoor!B9085DF4B130

RDN/Generic Dropper!3DE521C68343

RDN/Vundo!dn!69B7C38A0992

RDN/Generic Dropper!DF8D8A511DCA

RDN/Generic PUP.x!bmf!39A958BD2113

Generic PWS.y!D406AAE60600

RDN/Generic PUP.x!bmf!E5BBA3221B9A

RDN/Generic BackDoor!ut!C2258A33D47F

RDN/Generic PUP.x!bmf!1020FF15E0D0

RDN/Generic PUP.x!bmf!01788F73333D

Generic.bfr!2E3AB0CDF029

Phishing

Email Team

13th November 2013

Account Update
(2013)*******************Last
Warning

NatWest Bank Online

12th November 2013

IMPORTANT NATWEST CREDIT CARD
NOTIFICATION!

Adobe Customer Care

12th November 2013

Important Password Reset
Information

Vulnerebility

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62696

Linux Kernel 'sctp_v6_xmit()' Function CVE-2013-4350 Information Disclosure Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62405

Linux Kernel CVE-2013-2897 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62044

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62050

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62048

Linux Kernel CVE-2013-2899 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62046

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-11-13
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62045

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62049

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-11-13
http://www.securityfocus.com/bid/60280

WordPress Curvo Theme Cross Site Request Forgery Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63410

WordPress Kernel Theme 'upload-handler.php' Arbitrary File Upload Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63623

Oracle Java SE CVE-2013-1557 Remote Java Runtime Environment Vulnerability
2013-11-13
http://www.securityfocus.com/bid/59170

Oracle Java SE CVE-2013-1478 Remote Java Runtime Environment Vulnerability
2013-11-13
http://www.securityfocus.com/bid/57686

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-11-13
http://www.securityfocus.com/bid/60634

IBM Cognos Business Intelligence CVE-2013-2978 Access Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62006

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-11-13
http://www.securityfocus.com/bid/60627

IBM Cognos Business Intelligence CVE-2013-0586 Unspecified Cross Site Scripting Vulnerability
2013-11-13
http://www.securityfocus.com/bid/61998

IBM Cognos Business Intelligence CVE-2013-2988 Access Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/62003

Microsoft Windows 'icardie.dll' ActiveX Control CVE-2013-3918 Remote Code Execution Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63631

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/60846

ISC BIND 'localnets' ACL Security Bypass Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63610

VideoSpirit Pro and Lite '.visprj' File Multiple Buffer Overflow Vulnerabilities
2013-11-13
http://www.securityfocus.com/bid/45741

strongSwan CVE-2013-6075 Authorization Security Bypass and Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63489

strongSwan NULL Pointer Dereference Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63540

Xen CVE-2013-4494 Denial of Service Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63494

libvirt 'virt-login-shell' Local Privilege Escalation Vulnerability
2013-11-13
http://www.securityfocus.com/bid/63324

Review Board CVE-2013-4519 Multiple HTML Injection Vulnerabilities
2013-11-13
http://www.securityfocus.com/bid/63601

Exploit

  Symantec Altiris DS SQL Injection

ALLPlayer 5.6.2 (.m3u) - Local Buffer Overflow (SEH/Unicode)

FortiAnalyzer 5.0.4 - CSRF Vulnerability

12.11.2013

Bugtraq

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (john stamatakis sunrisetech gr)

WebSurgery v1.1 released (Web application security testing suite) 2013-11-11
John Stamatakis (srgn ml googlemail com)

XSS on Juniper JUNOS 11.4 Embedthis Appweb 3.2.3 2013-11-11
info andreabodei com

RUCKUS ADVISORY ID 111113-1: Authenticated code injection vulnerability in ZoneDirector administrative web interface 2013-11-12
Ruckus Product Security Team (security ruckuswireless com)

vulnerability issue for DB2 express 2013-11-11
bhavyasethi atcs gmail com

Re: Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08
jsibley1 gmail com

Malware

RDN/Generic PUP.x!bmb!79ADE1E87322

RDN/Generic PUP.x!bmb!07815DE1DDA9

RDN/Generic PUP.x!bmb!0EBF6CA1905F

RDN/Generic PUP.x!bmb!C2D3E01E5E45

RDN/Generic PUP.x!bmb!88EAF43F806B

Generic PUP.x!32C8836E7A52

RDN/Generic PUP.x!A7DB920A42BE

RDN/Generic.bfr!fh!95F976C5B201

RDN/Generic.dx!ctf!3F430D5F5DD0

RDN/Generic.dx!ctf!6822E7DF7F3E

RDN/Generic.bfr!fh!A506EECD9CEB

Generic.bfr!6F08553420E3

RDN/Generic PUP.x!bmb!25F106EAD9B1

RDN/Generic PUP.x!CBCEBE45A2A9

Generic.bfr!E3F250386080

Obfuscated-FBU!hb!1A94B6B95CE3

RDN/Ransom!du!705BB28F8359

RDN/Generic PWS.y!vr!000E4CCA24D2

Generic PUP.x!C23450078B1A

RDN/Generic BackDoor!us!E9D4703CDBA4

RDN/Generic StartPage!br!56A007D2995E

RDN/Generic BackDoor!us!F336DF996C50

RDN/Generic PUP.x!bmb!BA120F31F719

RDN/Generic PUP.x!DB3DD5E513D6

Generic PUP.x!C6BB72E2CED6

RDN/Generic.tfr!ds!56E2DE56FC5A

RDN/Generic PUP.x!bmb!CBD61B732967

RDN/Generic PUP.x!bmb!F62CED90CCBA

RDN/Generic PUP.x!bmb!B1AC206D0DA2

Obfuscated-FBU!hb!88D7BA383411

Phishing

Adobe Customer Care

12th November 2013

Important Password Reset
Information

National Westminster Bank

11th November 2013

Account Reveiw

NatWest Card Services

11th November 2013

YOUR NATWEST CREDIT CARD
NOTIFICATION.

Facebook

11th November 2013

Your 2 unread messages will be
deleted soon

Vulnerebility

SaltStack Salt Security Bypass Vulnerability
2013-11-12
http://www.securityfocus.com/bid/62995

SaltStack Salt CVE-2013-4438 Multiple Remote Code Execution Vulnerabilities
2013-11-12
http://www.securityfocus.com/bid/63243

SaltStack Salt CVE-2013-4436 Man in the Middle Spoofing Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63239

SaltStack Salt CVE-2013-4437 Insecure Temporary File Handling Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63242

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63416

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63429

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-12
http://www.securityfocus.com/bid/63421

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63418

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63415

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63430

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63420

Microsoft Internet Explorer Unspecfied Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63631

Multiple Microsoft Products CVE-2013-3906 Remote Code Execution Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63530

Bugzilla 'attachment.cgi' Cross Site Request Forgery Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63199

pyOpenSSL SSL Client Certificate Validation Security Bypass Vulnerability
2013-11-12
http://www.securityfocus.com/bid/62258

Python 'ssl.match_hostname()' Function Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/59877

Bugzilla CVE-2013-1743 Cross Site Scripting Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63205

Bugzilla 'editflagtypes.cgi' Multiple Cross Site Scripting Vulnerabilities
2013-11-12
http://www.securityfocus.com/bid/63204

Xen CVE-2013-4494 Local Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63494

Xen OXenstored CVE-2013-4416 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63404

RoundCube Webmail '_session' Parameter Remote Security Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63300

Cisco Adaptive Security Appliance Auto-Update Remote Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63628

Cisco Adaptive Security Appliance Phone Proxy Database Security Bypass Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63624

Wireshark SIP Dissector CVE-2013-6338 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63502

Wireshark ActiveMQ OpenWire Dissector CVE-2013-6339 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63501

Wireshark NBAP Dissector CVE-2013-6337 Denial of Service Vulnerability
2013-11-12
http://www.securityfocus.com/bid/63504

Exploit

  VideoSpirit Pro 1.90 - (SEH) Buffer Overflow

  VideoSpirit Lite 1.77 - (SEH) Buffer Overflow

  Hanso Converter 2.4.0 - 'ogg' Buffer Overflow(DoS)

  Provj 5.1.5.8 - 'm3u' Buffer Overflow (PoC)

11.11.2013

Bugtraq

Re: Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08
jsibley1 gmail com

[SECURITY] [DSA 2794-1] spip security update 2013-11-10
Salvatore Bonaccorso (carnil debian org)

Vulnerability in Pydio/AjaXplorer <= 5.0.3 2013-11-10
advisories redfsec com

Vulnerability in Pydio/AjaXplorer < = 5.0.3 2013-11-10
advisories redfsec com

[ MDVSA-2013:265 ] kernel 2013-11-10
security mandriva com

XADV-2013003 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow 2013-11-09
geinblues gmail com

[SECURITY] [DSA 2793-1] libav security update 2013-11-09
Moritz Muehlenhoff (jmm debian org)

Malware

RDN/Generic PWS.y!vr!B9FEAC1C45A5

Generic PUP.x!287F1366EAB8

Generic.bfr!5463AD42CC33

Generic.bfr!CF90D1FA803A

RDN/Generic PUP.x!blz!5F47376B1BDE

RDN/Generic PUP.x!blz!7F44DBAFA6F6

RDN/Generic PUP.x!blz!AB059426C51B

RDN/Generic PUP.x!blz!4409BD79104F

RDN/Generic PUP.x!blz!E14920F23BFE

Generic.bfr!9609AF325ED0

RDN/Generic Downloader.x!E39C43D85796

RDN/Downloader.a!nq!7AF76AA101F2

RDN/Generic Dropper!75D2892A5FC8

RDN/Generic PUP.x!05ED11722764

Generic PUP.x!278C5D1D57B0

Generic.bfr!DA15394365E7

Adware-FOO!3FB603E06D1B!3FB603E06D1B

Generic PUP.x!EAAE8C06DBBA

RDN/Generic PUP.x!8834131B6F9B

RDN/Generic Dropper!FD6EEE7348AD

Generic.bfr!726E6ABBD255

RDN/Generic PUP.x!DAAC2EE130A0

RDN/Generic PUP.x!blz!0ED9047047DD

RDN/Generic PUP.x!F90DED8021BB

Generic PUP.x!B9A9D6B9BB7D

Generic PUP.x!9C8DBDCD5F69

RDN/Generic BackDoor!D2122A4BA67B

RDN/Generic PUP.x!blz!3345073C7D93

RDN/Generic PUP.x!blz!515CED712DD1

RDN/Generic Dropper!sd!A8BBA9E7182F

Phishing

Facebook

11th November 2013

Your 2 unread messages will be
deleted soon

Barclays Bank PLC

10th November 2013

YOUR BARCLAYS ACCOUNT ALERT

Vulnerebility

Oracle Java SE CVE-2013-3829 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63120

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63148

IBM Integration Bus XML4J Parser Entity Expansion Denial of Service Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63224

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63110

Oracle Java SE CVE-2013-5829 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63137

Oracle Java SE CVE-2013-5848 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63124

Oracle Java SE CVE-2013-5849 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63106

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-11-11
http://www.securityfocus.com/bid/61310

drupalauth Module For SimpleSAMLphp Security Bypass Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63537

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5800 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63111

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63134

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63102

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63098

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63089

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63095

Oracle Java SE CVE-2013-5789 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63156

Oracle Java SE CVE-2013-5832 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63158

Oracle Java SE CVE-2013-5818 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63157

Oracle Java SE CVE-2013-5787 Remote Security Vulnerability
2013-11-11
http://www.securityfocus.com/bid/63155

Exploit

 

9.11.2013

Bugtraq

Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08
jsibley1 gmail com

RE: FP BugCON 2014 - Mexico City 2013-11-07
Tamara Vera (tverac satelcorp net)

Malware

RDN/Generic.bfr!4028C2B22E82

Generic.bfr!271FB545E0D7

Generic Downloader.x!B72489D1CC9D

RDN/Ransom!du!1A7CB371F000

Generic FakeAlert!A439AE631F2A

RDN/Generic.bfr!0816476A0116

Generic PUP.x!15BC625DD9A3

Generic PUP.x!B0639657C1A0

RDN/Generic PUP.x!bl3!0F389721C3F6

Generic.bfr!11E23424F33C

Generic Downloader.x!B498DEE38DC7

Generic.bfr!0D1852E25781

RDN/Generic PUP.x!2E37D3FB1A43

Generic Dropper!E2EA61F430BD

RDN/Generic PUP.x!E4BD595BAC0E

RDN/Downloader.gen.a!194899EB5AC8

RDN/Generic PUP.x!bl3!0FCA63F253BF

RDN/Generic.dx!ctc!C069ABC3A083

Generic Downloader.x!3CA0BA550419

Generic PUP.x!9CFDEC389CA6

W32/Virut.gen!CCA93DA58959

RDN/Generic BackDoor!ur!10F8BE6B7545

Generic.bfr!0FE67A0EB5A7

RDN/Generic.bfr!fh!0F13C2FF51C9

Generic.bfr!0A47903226A3

Generic PUP.x!C3BDC536EC4A

Generic PUP.x!79AA6A9FCAD9

Generic Downloader.x!0C1225DD3DCD

Generic.bfr!6229D606F73C

Generic Dropper!1ED9D1A3EB08

Phishing

Nationwide.co.uk

8th November 2013

Nationwide Internet Banking

Lloyds Bank

8th November 2013

ACCESS TO ONLINE BANKING
SERVICE

NatWest

8th November 2013

NATWEST BANK NOTICE

Vulnerebility

VICIDIAL 'manager_send.php' CVE-2013-4468 Command Injection Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63288

VICIDIAL 'manager_send.php' CVE-2013-4467 SQL Injection Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63340

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62049

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62045

Linux Kernel CVE-2013-4299 Information Disclosure Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63183

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-11-09
http://www.securityfocus.com/bid/60280

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62050

Linux Kernel ext4 Local Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/59512

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62048

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-11-09
http://www.securityfocus.com/bid/58795

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-09
http://www.securityfocus.com/bid/63421

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62463

Zikula Application Framework Unspecified Cross Site Scripting Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63186

VideoCharge Studio '.vsc' File Remote Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/45183

RETIRED: VideoCharge Studio '.vsc' File Handling Remote Buffer Overflow Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63364

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63416

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63430

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63423

Mozilla Firefox 'PDF.js' Javascript Security Bypass Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63419

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63420

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63429

Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63417

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/63418

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-11-09
http://www.securityfocus.com/bid/62478

Exploit

 

8.11.2013

Bugtraq

Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability 2013-11-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)

CFP BugCON 2014 - Mexico City 2013-11-07
Carlos A. Lozano (vendetta bugcon org)

Cisco Security Advisory: Cisco WAAS Mobile Remote Code Execution Vulnerability 2013-11-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)

CVE-2013-4425: Private key disclosure, Osirix (lite, 64bit and FDA cleader version) (Medical Application) 2013-11-06
Dirk-Willem van Gulik (dirkx webweaving org)

Cisco Security Advisory: Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability 2013-11-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)

CORE-2013-0704 - Vivotek IP Cameras RTSP Authentication Bypass 2013-11-05
CORE Advisories Team (advisories coresecurity com)

Malware

Ransom!A224FC8A0954

ADWARE-BORAN!B8431FAE3A41

RDN/Generic Downloader.x!is!808404FB4230

Generic PUP.x!DCFEE38E85E2

Generic.bfr!C6868F583BC1

RDN/Generic.tfr!ds!AF0365236BF5

Qhost-Gen!F9818CB4D1BE

W32/Sality.gen!167F868177EC

Generic PUP.x!E3B3901952E4

RDN/Generic Dropper!A89C24021796

RDN/Generic.tfr!ds!8241B48C0908

RDN/Generic.tfr!ds!6EB26EF860EE

RDN/Generic BackDoor!uq!33CBAFE4D156

RDN/Generic PUP.x!blq!9CCFF5145076

RDN/Generic BackDoor!365FD5955954

RDN/Generic PUP.x!blq!57F893B66294

RDN/Generic.bfr!fg!6F191FF09A88

Generic PUP.x!D05AB6D63977

Generic PUP.x!8B005D04D995

PUP-FED!27033546DE95!27033546DE95

Generic Dropper!4E693CEBB601

RDN/Generic.dx!ctb!8DBCE3DB3CAC

Generic.bfr!2A7EA51FBA0E

RDN/Generic.dx!ctb!F8687D760E48

Generic PUP.x!035E65B587A8

RDN/Generic BackDoor!uq!828F797CB3ED

RDN/Generic Downloader.x!is!E12CC2E8F15F

RDN/Qhost-Gen!bb!26003B44F81C

Generic PWS.y!4BE5B6584D4B

Generic.dx!CFAC81C3CC2B

Phishing

PayPal

7th November 2013

Your account has been limited
until we hear from you

Vulnerebility

Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
2013-11-08
http://www.securityfocus.com/bid/63417

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-11-08
http://www.securityfocus.com/bid/62469

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-08
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-08
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63110

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-07
http://www.securityfocus.com/bid/63421

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63416

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63420

Mozilla Firefox 'PDF.js' Javascript Security Bypass Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63419

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63423

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63418

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63415

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63430

Google Chrome CVE-2013-2926 Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63028

Google Chrome CVE-2013-2925 Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63026

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63429

Google Chrome CVE-2013-2927 Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63025

Google Chrome CVE-2013-2928 Multiple Unspecified Security Vulnerabilities
2013-11-07
http://www.securityfocus.com/bid/63024

International Components for Unicode Use After Free Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62968

Google Chrome Prior to 30.0.1599.66 Multiple Security Vulnerabilities
2013-11-07
http://www.securityfocus.com/bid/62752

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62468

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62479

Mozilla Firefox CVE-2013-1729 Information Disclosure Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62474

Exploit

  VICIdial Manager Send OS Command Injection

  WordPress Theme Kernel - Remote File Upload Vulnerability

  RASPcalendar 1.01 - [ASP] Admin Login Vlunerabilities

  Vanilla Forums 2.0 - 2.0.18.5 (class.utilitycontroller.php) - PHP Object Injection Vulnerability

  appRain 3.0.2 - Blind SQL Injection Vulnerability

  Flatpress 1.0 - Remote Code Execution

  Vivotek IP Cameras - RTSP Authentication Bypass

  Project'Or RIA 3.4.0 (objectDetail.php, objectId param) - SQL Injection

  Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities

  Horde Groupware Web Mail Edition 5.1.2 - CSRF Vulnerability

  Microweber 0.905 - Error Based SQL Injection

7.11.2013

Bugtraq

CORE-2013-0704 - Vivotek IP Cameras RTSP Authentication Bypass 2013-11-05
CORE Advisories Team (advisories coresecurity com)

SQL Injection in appRain 2013-11-06
High-Tech Bridge Security Research (advisory htbridge com)

[SOJOBO-ADV-13-03] - Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting 2013-11-05
advisories enkomio com

[ISecAuditors Security Advisories] LinkedIn social network is affected by Persistent Cross-Site Scripting vulnerability 2013-11-05
ISecAuditors Security Advisories (advisories isecauditors com)

Open-Xchange Security Advisory 2013-11-06 2013-11-06
Martin Braun (martin braun open-xchange com)

wordpress jigoshop Plugin path disclosure vulnerabilities 2013-11-05
iedb team gmail com

[ISecAuditors Security Advisories] Multiple XSS vulnerabilities in "Project'Or RIA" 2013-11-05
ISecAuditors Security Advisories (advisories isecauditors com)

[ISecAuditors Security Advisories] SQL Injection vulnerability in "Project'Or RIA" allow arbitrary access to the database and the file system 2013-11-05
ISecAuditors Security Advisories (advisories isecauditors com)

ESA-2013-073: EMC Documentum eRoom Multiple Cross Site Scripting Vulnerabilities. 2013-11-05
Security Alert (Security_Alert emc com)

ESA-2013-070: EMC Documentum Cross Site Scripting Vulnerability. 2013-11-05
Security Alert (Security_Alert emc com)

Malware

RDN/Generic PUP.x!bl3!70CD0411C162

PUP-FED!258BC51F42A1!258BC51F42A1

PUP-FED!1FD302E01D85!1FD302E01D85

PUP-FED!9DB5FEE9BFCB!9DB5FEE9BFCB

Generic PUP.x!E5CCA641B388

PUP-FED!D65A571004C4!D65A571004C4

RDN/Generic PUP.x!bl3!F2B7A19AE6BE

RDN/Generic PUP.x!bl3!BB2D6863F84F

RDN/Generic PUP.x!bl3!F37D6D06F3DB

PUP-FED!945C4D798BD9!945C4D798BD9

PUP-FED!099AC4B806C6!099AC4B806C6

PUP-FED!6BDA3DBF408E!6BDA3DBF408E

RDN/Generic.bfr!fg!326B870981FA

PUP-FED!99298DA458CD!99298DA458CD

PUP-FED!32D8058A2DFC!32D8058A2DFC

PUP-FED!53B62D4589E8!53B62D4589E8

PUP-FED!292359D2AF4A!292359D2AF4A

RDN/Generic PUP.x!bl3!CE0BF408D659

Generic PUP.x!046F803AB1BA

PUP-FED!3B5537C79B20!3B5537C79B20

PUP-FED!72ADF9603C91!72ADF9603C91

PUP-FED!748E0CE0430A!748E0CE0430A

RDN/Qhost-Gen!bb!8BF0E4FC7336

RDN/Generic PUP.x!bl3!5362BEF6788E

Downloader.gen.a!0214E9B92BD6

PUP-FED!645E81828242!645E81828242

PUP-FED!1FC88EA06CAC!1FC88EA06CAC

RDN/Generic.tfr!ds!5B3CA8AD7259

Generic.bfr!686708FAEADA

PUP-FED!91747F392BA0!91747F392BA0

Phishing

NatWest Card Services

6th November 2013

*Email Alert* Resolve Your
Account

Natwest

6th November 2013

NatWest - NatWest Secure
Password Reset Confirmation

Vulnerebility

Google Android Signature Verification Security Bypass Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63547

GNOME Vino VNC Server CVE-2013-5745 Denial of Service Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62443

appRain CVE-2013-6058 SQL Injection Vulnerability
2013-11-07
http://www.securityfocus.com/bid/62937

Tryton 'main.py' CVE-2013-4510 Arbitrary File Write Vulnerability
2013-11-07
http://www.securityfocus.com/bid/63531

IBM Lotus Quickr for Domino ActiveX Control CVE-2013-3026 Buffer Overflow Vulnerability
2013-11-07
http://www.securityfocus.com/bid/60442

Python 'ssl.match_hostname()' Function Denial of Service Vulnerability
2013-11-07
http://www.securityfocus.com/bid/59877

Oracle Java SE CVE-2013-3829 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63120

Oracle Java SE CVE-2013-5772 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63089

Oracle Java SE CVE-2013-5780 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63115

Oracle Java SE CVE-2013-5823 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63110

Oracle Java SE CVE-2013-5825 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63101

Oracle Java SE CVE-2013-5803 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63082

Oracle Java SE CVE-2013-5840 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63148

Mednafen Remote Code Execution Vulnerability
2013-11-06
http://www.securityfocus.com/bid/43125

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2012-5081 Remote Java Runtime Environment Vulnerability
2013-11-06
http://www.securityfocus.com/bid/56071

Oracle Java SE CVE-2013-5804 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63149

Oracle Java SE CVE-2013-5809 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63118

Oracle Java SE CVE-2013-5783 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63154

Oracle Java SE CVE-2013-5778 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63134

Oracle Java SE CVE-2013-5774 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63128

Oracle Java SE CVE-2013-5782 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63103

Oracle Java SE CVE-2013-5790 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63102

Oracle Java SE CVE-2013-5784 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63098

Oracle Java SE CVE-2013-5802 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63135

Oracle Java SE CVE-2013-5830 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63121

Oracle Java SE CVE-2013-5817 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63146

Oracle Java SE CVE-2013-5797 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63095

Oracle Java SE CVE-2013-5814 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63143

Oracle Java SE CVE-2013-5850 Remote Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63153

Exploit

  Microweber 0.905 - Error Based SQL Injection

6.11.2013

Bugtraq

ESA-2013-073: EMC Documentum eRoom Multiple Cross Site Scripting Vulnerabilities. 2013-11-05
Security Alert (Security_Alert emc com)

ESA-2013-070: EMC Documentum Cross Site Scripting Vulnerability. 2013-11-05
Security Alert (Security_Alert emc com)

[SECURITY] [DSA 2792-1] wireshark security update 2013-11-04
Salvatore Bonaccorso (carnil debian org)

Malware

Generic.bfr!B462945E291E

Generic PUP.x!1C12B4E0AD6F

RDN/Generic Dropper!sb!B17F6FAC8B53

Generic PUP.x!728FEAC7E391

RDN/Generic Dropper!6FFF1DFE7689

RDN/Generic PUP.x!12750D45E39E

RDN/Generic PUP.x!blj!BDE0E2037B5F

Adware-DomaIQ!A512F9C43A7E

Generic.bfr!D90E1EFD51A0

Generic.grp!F1293C9A6903

Generic.bfr!9F75D8A058DC

RDN/Generic BackDoor!up!9B23743D50C6

RDN/Generic PUP.x!blj!424CF6AC6C98

Generic.bfr!A1948E282C95

RDN/Generic PUP.x!blj!93DAC9889833

Generic PUP.x!588441AB83F9

RDN/Downloader.a!ns!FA2CDF5AB8F4

RDN/Generic PUP.x!blj!36CF1D48160C

Generic PUP.x!DB7970219D70

Generic.bfr!8106A60D5826

RDN/Generic PUP.x!blj!A9C1EBF790B6

RDN/Generic PUP.x!blj!1A233016BE04

RDN/Generic Dropper!09162DE05662

Generic.bfr!8EB24FF02BE2

RDN/Generic PUP.x!blj!480D915FC8E5

RDN/Generic PUP.x!blj!65D40DCBEAD1

RDN/Generic PUP.x!blj!62D4BAB61885

RDN/Generic BackDoor!63EA6E71E092

RDN/Generic PUP.x!blj!1AE3A1B57ED9

Adware-DomaIQ!F8615E0D683F

Phishing

Lloyds Bank

5th November 2013

LLOYDS BANK - YOUR ESTATEMENT
IS NOW READY

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63430

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/60627

Cisco ASA CX Remote Safe Search Policy Security Bypass Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63492

Cisco Prime Central for Hosted Collaboration Solution CVE-2013-5564 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63490

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63415

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/62892

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/62324

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-11-06
http://www.securityfocus.com/bid/62871

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/63421

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63424

Network Security Services Uninitialized Data Read Security Vulnerability
2013-11-06
http://www.securityfocus.com/bid/62966

GitLab 'Code Search' Feature CVE-2013-4489 Remote Code Execution Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63505

Xinetd CVE-2012-0862 Security Bypass Vulnerability
2013-11-06
http://www.securityfocus.com/bid/53720

Google Chrome Prior to 16.0.912.75 Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/51300

Libxml2 Entities Expansion CVE-2013-0338 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/58180

libxml2 Hash Collision Denial Of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/52107

Libxml2 Entities Expansion CVE-2013-0339 Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/59000

Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61050

Google Chrome Prior to 19 Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/53540

Google Chrome Prior to 23.0.1271.91 Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/56684

libxml2 CVE-2012-2807 Multiple Integer Overflow Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/54718

libguestfs CVE-2013-4419 Insecure Temporary Directory Creation Privilege Escalation Vulnerability
2013-11-06
http://www.securityfocus.com/bid/63226

HP Service Manager Multiple Security Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/63038

phpMyAdmin CVE-2013-5001 Cross Site Scripting Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61919

phpMyAdmin CVE-2013-4996 Multiple Cross Site Scripting Vulnerabilities
2013-11-06
http://www.securityfocus.com/bid/61921

phpMyAdmin CVE-2013-5029 Clickjacking Vulnerability
2013-11-06
http://www.securityfocus.com/bid/61804

Exploit

 

5.11.2013

Bugtraq

[SECURITY] [DSA 2791-1] tryton-client security update 2013-11-04
Florian Weimer (fw deneb enyo de)

XADV-2013003 Linux Kernel eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability 2013-11-04
geinblues gmail com

CSRF Horde Groupware Web mail Edition 2013-11-03
m benetrix e-secure com au

Malware

RDN/Generic PUP.x!bl3!FC0832E73EC3

Generic.dx!98741BBA3062

Generic.dx!DD2BB62DA562

Generic.dx!8545B872D965

RDN/Generic.tfr!ds!D42C0A158CE0

Generic.dx!B88693BFEEC8

RDN/FakeAlert-HDD!c!F760708086D8

Generic.dx!F4AA23688822

RDN/Generic.dx!csz!45628EF46A8B

RDN/Generic.dx!D0088CC5AFA2

RDN/Generic BackDoor!E3C50309E113

RDN/Generic.bfr!fe!8101642C6616

ZeroAccess-FEP!3F35AA99EECF!3F35AA99EECF

RDN/Generic.dx!8EB1A294FF84

RDN/Generic PUP.x!bl3!CC9873B79FEE

RDN/Generic PUP.x!bl3!5B369E55C7EB

Generic.dx!8E5F6735196B

RDN/Generic PUP.x!bl3!1C07F8FC4712

RDN/Generic PUP.x!bl3!4F40D80CD4DB

Generic.dx!73FE6348A690

Generic.dx!6ACDE02F0BCC

Generic.dx!8CB6A60CB626

RDN/Generic Dropper!sb!67E44B5B7152

RDN/Generic BackDoor!un!20E13E1A60C7

RDN/Generic BackDoor!5DF6DC1B23AB

Generic PUP.x!F342F86D37FE

RDN/Generic.bfr!fe!85A894A4F7D6

RDN/Generic.dx!csz!7CFD3C30EFB7

RDN/Generic PUP.x!bl3!F1403E27014F

RDN/Generic PUP.x!bl3!70BB24D83A27

Phishing

Barclays Online Banking

4th November 2013

IMPORTANT ACCOUNT UPDATE

Vulnerebility

phpMyAdmin CVE-2013-5001 Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61919

phpMyAdmin CVE-2013-4996 Multiple Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61921

phpMyAdmin CVE-2013-5029 Clickjacking Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61804

phpMyAdmin CVE-2013-5003 Multiple SQL Injection Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61923

phpMyAdmin CVE-2013-5002 Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61516

phpMyAdmin CVE-2013-5000 Multiple Unspecified Full Path Information Disclosure Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61515

phpMyAdmin 'tbl_gis_visualization.php' Multiple Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/58962

phpMyAdmin CVE-2013-4995 Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/61510

phpMyAdmin Multiple Unspecified Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61511

phpMyAdmin CVE-2013-3238 Multiple Arbitrary PHP Code Execution Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/59460

phpMyAdmin CVE-2013-4999 Multiple Unspecified Full Path Information Disclosure Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61512

phpMyAdmin 'filename_template' Remote Code Execution Vulnerability
2013-11-05
http://www.securityfocus.com/bid/59465

phpMyAdmin CVE-2013-4998 Multiple Unspecified Full Path Information Disclosure Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/61513

Wireshark NBAP Dissector CVE-2013-6337 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63504

Wireshark TCP Dissector CVE-2013-6340 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63500

Wireshark SIP Dissector CVE-2013-6338 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63502

Wireshark IEEE 802.15.4 Dissector CVE-2013-6336 Denial of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63503

Boehm GC malloc()' and 'calloc()' Multiple Buffer Overflow Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/54227

Linux Kernel AACRAID Driver Local Security Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/25216

Drupal Bean Module Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63307

Drupal Spaces Module Access Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63305

Drupal FileField Sources Module Access Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63446

Drupal Feed Element Mapper Module Cross Site Scripting Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63447

Drupal Monster Menus Module Access Bypass Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63450

WordPress AREA53 Theme 'php.php' Arbitrary File Upload Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63306

Apache Struts Multiple Cross Site Scripting Vulnerabilities
2013-11-05
http://www.securityfocus.com/bid/63403

GraphicsMagick 'ExportAlphaQuantumType()' Function Denial Of Service Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63002

Oracle MySQL Server CVE-2013-5807 Remote Security Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63105

Oracle MySQL Server CVE-2013-3839 Remote Security Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63109

Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
2013-11-05
http://www.securityfocus.com/bid/63417

Exploit

 

4.11.2013

Bugtraq

[SECURITY] [DSA 2791-1] tryton-client security update 2013-11-04
Florian Weimer (fw deneb enyo de)

XADV-2013003 Linux Kernel eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability 2013-11-04
geinblues gmail com

CSRF Horde Groupware Web mail Edition 2013-11-03
m benetrix e-secure com au

XSS and CSRF Horde Groupware Web mail Edition 2013-11-03
m benetrix e-secure com au

[slackware-security] mozilla-thunderbird (SSA:2013-307-01) 2013-11-03
Slackware Security Team (security slackware com)

[SECURITY] [DSA 2790-1] nss security update 2013-11-02
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBMU02931 rev.2 - HP Service Manager, Injection of Arbitrary Code, Remote Privilege Elevation, Remote Disclosure of Privileged Information and Cross Site Scripting (XSS) 2013-11-01
security-alert hp com

pdirl PHP Directory Listing 1.0.4 - Cross Site Scripting Web Vulnerabilities 2013-11-01
Vulnerability Lab (research vulnerability-lab com)

[security bulletin] HPSBMU02934 rev.1 - HP Application LifeCycle Management, GossipService SOAP Request, Remote Code Execution 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02935 rev.1 - HP LoadRunner Virtual User Generator, Remote Code Execution 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02932 rev.1 - HP Application LifeCycle Management, ALM client component, Remote Execution of Arbitrary Code 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02872 SSRT101185 rev.3 - HP Service Manager, Remote Disclosure of Information, Cross Site Scripting(XSS) 2013-10-31
security-alert hp com

[security bulletin] HPSBMU02874 SSRT101184 rev.2 - HP Service Manager, Java Runtime Environment (JRE) Security Update 2013-10-31
security-alert hp com

[SECURITY] [DSA 2789-1] strongswan security update 2013-11-01
Yves-Alexis Perez (corsac debian org)

[security bulletin] HPSBMU02933 rev.1 - HP SiteScope, issueSiebelCmd SOAP Request, Remote Code Execution 2013-10-31
security-alert hp com

[ MDVSA-2013:264 ] firefox 2013-10-31
security mandriva com

[SECURITY] [DSA 2788-1] iceweasel security update 2013-10-31
Raphael Geissert (geissert debian org)

nullcon Goa V First Speaker list and CFP closes soon 2013-10-30
nullcon (nullcon nullcon net)

[CVE-2013-4484] DoS vulnerability in Varnish HTTP cache 2013-10-30
Poul-Henning Kamp (phk critter freebsd dk)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS XE Software for 1000 Series Aggregation Services Routers 2013-10-30
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Unicorn Router WB-3300NR CSRF (Factory Reset/DNS Change) 2013-10-30
jsibley1 gmail com

ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability 2013-10-29
Security Alert (Security_Alert emc com)

Apache PHP Remote Exploit - apache-magika.c 2013-10-29
king cope (isowarez isowarez isowarez googlemail com)

[ MDVSA-2013:263 ] roundcubemail 2013-10-29
security mandriva com

Olat CMS 7.8.0.1 - Persistent Calender Web Vulnerability 2013-10-29
Vulnerability Lab (research vulnerability-lab com)

GTX CMS 2013 Optima - Multiple Web Vulnerabilities 2013-10-29
Vulnerability Lab (research vulnerability-lab com)

ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability 2013-10-29
Security Alert (Security_Alert emc com)

CVE-2013-5694 Blind SQL Injection in Ops View 2013-10-28
J. Oquendo (sil e-fensive net)

[PSA-2013-1022-1] Microsoft Silverlight Invalid Typecast / MemoryDisclosure 2013-10-28
bugtraq packetstormsecurity org

[ MDVSA-2013:262 ] python-pycrypto 2013-10-28
security mandriva com

Malware

RDN/Generic PUP.x!blb!1EAE0215A9B5

RDN/Generic PUP.x!blb!9BEE69EEAA04

RDN/Generic PUP.x!blb!6E834D32306F

RDN/Generic PUP.x!blb!E3F639630ACF

RDN/Generic PUP.x!blb!B63D9B0007C6

RDN/Generic PUP.x!blb!2CF527613B15

RDN/Generic PUP.x!blb!7EAAE09DE0FD

RDN/Generic PUP.x!blb!80689356CB71

RDN/Generic PUP.x!blb!3C477439E60E

Obfuscated-FBU!hb!998033B580F3

RDN/Downloader.a!ns!067FF7CE287B

RDN/Generic PUP.x!blb!CA421ED18155

RDN/Generic PUP.x!blb!3300290DBC9D

Generic PUP.x!2B943C89E842

RDN/Ransom!dt!734B7D5F16C5

Obfuscated-FBU!hb!E5E8FD27DF0F

Generic PUP.x!EC65561604F1

Generic PUP.x!4A6DA042F23C

Generic PUP.x!08C7F8DDBD07

RDN/Generic PUP.x!blb!4814D2CE8B2C

RDN/Generic PUP.x!blb!4DD4C644829F

RDN/Generic PUP.x!B3710883954F

RDN/Generic PUP.x!blb!24A43FFC641E

Generic PUP.x!CA9C280CDD3B

RDN/Generic PUP.x!blb!18073AE75664

RDN/Generic PUP.x!blb!F17737F85DD0

RDN/Generic PUP.x!blb!63261801573C

RDN/Generic PUP.x!blb!17FD0E427645

RDN/Generic PUP.x!blb!B53F4A54DA72

RDN/Generic PUP.x!blb!E872649AFA79

Phishing

Barclays Bank PLC

1st November 2013

BARCLAYS: We are unable to
process your new statement.

Lloyds PLC

1st November 2013

Important information: Your
account maintenance

Vulnerebility

Network Security Services Uninitialized Data Read Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/62966

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63422

Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
2013-11-04
http://www.securityfocus.com/bid/63421

Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63418

Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63415

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63427

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63423

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63428

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63424

Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
2013-11-04
http://www.securityfocus.com/bid/63430

Oracle Java SE CVE-2012-4301 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57684

Oracle Java SE CVE-2013-1474 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57690

Oracle Java SE CVE-2013-0448 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57723

Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57711

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57714

HP Service Manager CVE-2013-2321 Unspecified Cross Site Scripting Vulnerability
2013-11-04
http://www.securityfocus.com/bid/59586

HP Service Manager CVE-2012-5222 Unspecified Information Disclosure Vulnerability
2013-11-04
http://www.securityfocus.com/bid/59587

Apache Struts CVE-2013-4316 Remote Code Execution Vulnerability
2013-11-04
http://www.securityfocus.com/bid/62587

Oracle Java SE CVE-2013-0439 Remote JavaFX Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57725

Oracle Java SE CVE-2013-0429 Remote Java Runtime Environment Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57710

Oracle Java SE CVE-2013-1489 Unsigned Java Code Security Bypass Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57707

Oracle Java SE CVE-2013-1479 Remote Code Execution Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57706

Oracle Java SE CVE-2013-0449 Java Runtime Environment Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57704

Oracle Java SE CVE-2013-1472 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57683

Oracle Java SE CVE-2013-1482 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57688

Oracle Java SE CVE-2013-1475 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57694

Oracle Java SE CVE-2013-1485 Security Bypass Vulnerability
2013-11-04
http://www.securityfocus.com/bid/58028

Oracle Java SE CVE-2013-1484 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/58027

Oracle Java SE CVE-2013-1477 JavaFX Remote Security Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57685

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability
2013-11-04
http://www.securityfocus.com/bid/57702

Exploit

 

16.10.2013

Bugtraq

[security bulletin] HPSBMU02931 rev.1 - HP Service Manager, Injection of Arbitrary Code, Remote Privilege Elevation, Remote Disclosure of Privileged Information and Cross Site Scripting (XSS) 2013-10-15
security-alert hp com

ZAPms v1.42 CMS - Client Side Cross Site Scripting Web Vulnerability 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

Training : Advanced Android & iOS Hands-on Exploitation at Toorcon San Diego [16th-17th Oct,2013] 2013-10-15
xys3c team (security xysec com)

DornCMS Application v1.4 - Multiple Web Vulnerabilities 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

Apple iOS 7.2 - Sim Lock Screen Display Bypass Vulnerability 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #105 MOS - Multiple Persistent Print Layout Vulnerabilities 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

My File Explorer v1.3.1 iOS - Multiple Web Vulnerabilities 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

SEC Consult SA-20131015-0 :: Multiple vulnerabilities in SpamTitan 2013-10-15
SEC Consult Vulnerability Lab (research sec-consult com)

OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability 2013-10-15
Vulnerability Lab (research vulnerability-lab com)

[slackware-security] gnupg2 (SSA:2013-287-02) 2013-10-15
Slackware Security Team (security slackware com)

Training : Advanced Android & iOS Hands-on Exploitation at Toorcon San Diego [16th-17th Oct,2013] 2013-10-15
xys3c team (security xysec com)

Critical vulnerabilities discovered in Gazelle and TBDEV.net 2013-10-15
Bogdan Calin (bogdan acunetix com)

[slackware-security] xorg-server (SSA:2013-287-05) 2013-10-15
Slackware Security Team (security slackware com)

[slackware-security] gnupg (SSA:2013-287-01) 2013-10-15
Slackware Security Team (security slackware com)

[slackware-security] gnutls (SSA:2013-287-03) 2013-10-15
Slackware Security Team (security slackware com)

Malware

Generic.bfr!72544520E3D7

RDN/Generic.bfr!3FAF57D97032

RDN/Generic PUP.x!bjp!1D202392AE64

Generic.bfr!767A2E3CAE2E

Generic PUP.x!48D5CC57BEBA

RDN/tdss!g!653022E052EF

RDN/Downloader.a!no!64CC6241697A

Generic PUP.x!3CBA5EF3100E

Generic PUP.x!C798364E6977

Generic PUP.x!F64278513094

Generic PUP.x!5AE196DFC552

RDN/Generic.bfr!ff!10CD9BB7910C

Generic PUP.x!7D8467B9C633

Generic PUP.x!773B01FB2288

Generic Downloader.x!6A636C479E5C

Generic Dropper!3C0AB53B40C0

RDN/Vundo!dn!739427798F28

Generic Downloader.x!7618C9BF742E

Generic PUP.x!3A8379A97EF4

Generic Downloader.x!5C49B60103AD

Generic Downloader.x!5F5D670046C9

Generic PUP.x!1FA321E8BAC6

Generic.bfr!A2ACFBE325EB

RDN/Generic PUP.x!CDDC97B36F57

Generic.bfr!8B8B3F5CB6C9

Generic.bfr!9520EA4BD054

RDN/Generic PUP.x!507B00718F88

RDN/Generic Dropper!361700950512

Generic PUP.x!5E54A9EEECA7

Generic.bfr!3C173F325D6C

Phishing

Barclays Bank Plc

16th October 2013

ACCOUNT SUSPENDED !

Chase Online

14th October 2013

1 NEW CHASE BANK UPDATE

Barclays Online Banking

14th October 2013

YOUR ACCOUNT HAS BEEN
SUSPENDED

Vulnerebility

Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/61189

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/57778

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60846

Baramundi Management Suite CVE-2013-3624 Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62756

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/61310

Multiple Cisco Products CVE-2013-0149 Remote Security Bypass Vulnerability
2013-10-16
http://www.securityfocus.com/bid/61566

Oracle VM VirtualBox 'tracepath' Local Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60794

SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/49778

QEMU CVE-2013-4344 Remote Buffer Overflow Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62773

QEMU CVE-2013-4377 Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62682

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62857

SafeNet Privilege 'PrivAgent.ocx' ActiveX Controls Multiple Buffer Overflow Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/56297

GnuTLS TLS And DTLS Information Disclosure Vulnerability
2013-10-16
http://www.securityfocus.com/bid/57736

GnuTLS CVE-2013-2116 Out of Bounds Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60215

GnuTLS 'gnutls_session_get_data()' Remote Buffer Overflow Vulnerability
2013-10-16
http://www.securityfocus.com/bid/50609

GnuTLS TLS Record Handling Heap Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/52667

GNU Libtasn1 ASN1 Length DER Decoding Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/52668

Little CMS Multiple Remote Buffer Overflow Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/61607

ShoreTel ShoreWare Director Remote Security Bypass Vulnerability
2013-10-16
http://www.securityfocus.com/bid/63019

jQuery 'location.hash' Cross Site Scripting Vulnerability
2013-10-16
http://www.securityfocus.com/bid/58458

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62892

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62811

ZABBIX API and Frontend CVE-2013-5743 Multiple SQL Injection Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/62794

Cisco Unified Computing System CVE-2012-4107 Local Arbitrary Command Execution Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62983

HP Data Protector CVE-2013-2333 Remote Code Execution Vulnerability
2013-10-16
http://www.securityfocus.com/bid/60309

Cisco Unified Computing System CVE-2012-4105 Local Denial of Service Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62980

Cisco Unified Computing System CVE-2012-4106 Local Privilege Escalation Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62981

osCommerce 'products_id' Parameter HTML Injection Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62997

Bilboplanet 'index.php' Multiple Cross-Site Scripting Vulnerabilities
2013-10-16
http://www.securityfocus.com/bid/62988

BilboPlanet 'auth.php' SQL Injection Vulnerability
2013-10-16
http://www.securityfocus.com/bid/62989

Exploit

  Apple iOS 7.2 - Sim Lock Screen Display Bypass Vulnerability

  Dexs PM System Wordpress Plugin - Authenticated Persistent XSS (0day)

  Dolibarr ERP/CMS 3.4.0 (exportcsv.php, sondage param) - SQL Injection

  Zabbix 2.0.8 SQL Injection and Remote Code Execution

  My File Explorer v1.3.1 iOS - Multiple Web Vulnerabilities

  OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability

  UbiDisk File Manager v2.0 iOS - Multiple Web Vulnerabilities

15.10.2013

Bugtraq

[SECURITY] [DSA 2779-1] libxml2 security update 2013-10-13
Michael Gilbert (mgilbert debian org)

[CISTI'2014]: Call for Workshops 2013-10-13
Maria Lemos (marialemos72 gmail com)

CFP: Passwords^13 Bergen (Norway), December 2-3 2013 2013-10-13
Per Thorsheim (per thorsheim net)

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-12
jsibley1 gmail com

[SECURITY] [DSA 2778-1] libapache2-mod-fcgid security update 2013-10-11
Salvatore Bonaccorso (carnil debian org)

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-11
jsibley1 gmail com

[SECURITY] [DSA 2777-1] systemd security update 2013-10-11
Moritz Muehlenhoff (jmm debian org)

Malware

W32/Expiro!48202E3E1D54

RDN/Generic PUP.x!27C24D2D0DF5

RDN/Generic PUP.x!C777401E264F

RDN/Generic PUP.x!9B4E9DCB3310

RDN/Generic BackDoor!tz!717B19B55E87

Generic PUP.x!9023B4F21A95

W32/Expiro!446BD8C94E08

W32/Expiro!37DD3809CAE3

Generic PUP.x!88F036BF1B5E

RDN/Generic PUP.x!13ACB0DCE451

W32/Expiro!39D135ACF0B9

W32/Expiro!019889A3221B

W32/Expiro!3CE238F0DAA4

RDN/PWS-Mmorpg!kf!49885B30AA52

RDN/Autorun.bfr!d!82A40A023BAC

Generic Dropper!3BAE8EF5259C

Generic.bfr!69664B6FC0E1

RDN/Generic.dx!crz!C7B20C943319

Generic.bfr!A5E3A676D6B7

RDN/Generic.dx!crz!472FE3D51BF4

Generic PUP.x!E0414047AD3B

RDN/Generic Downloader.x!iq!3A082B0C1285

W32/Expiro!358AC84DE951

RDN/PWS-Mmorpg!kf!455F46F1068B

RDN/Generic PUP.x!bj3!9F23F98C7D4C

RDN/Generic PUP.x!bj3!BE676240A5AB

W32/Expiro!2F99581EF072

RDN/Generic PUP.x!bj3!B922A101D3B0

RDN/Generic.bfr!fd!62B1A86DC617

RDN/Generic PUP.x!bj3!AD3BE9B3FC72

Phishing

Chase Online

14th October 2013

1 NEW CHASE BANK UPDATE

Barclays Online Banking

14th October 2013

YOUR ACCOUNT HAS BEEN
SUSPENDED

NatWest - Management Team

13th October 2013

Your are locked out of NatWest
Online Banking

National

13th October 2013

Service Information

Barclays Online Banking

13th October 2013

Your account has been
suspended

Vulnerebility

jQuery 'location.hash' Cross Site Scripting Vulnerability
2013-10-15
http://www.securityfocus.com/bid/58458

X.Org X Server 'dixfonts.c' Use-After-Free Remote Memory Corruption Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62892

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62811

ZABBIX API and Frontend CVE-2013-5743 Multiple SQL Injection Vulnerabilities
2013-10-15
http://www.securityfocus.com/bid/62794

Cisco Unified Computing System CVE-2012-4107 Local Arbitrary Command Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62983

HP Data Protector CVE-2013-2333 Remote Code Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/60309

Cisco Unified Computing System CVE-2012-4105 Local Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62980

Cisco Unified Computing System CVE-2012-4106 Local Privilege Escalation Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62981

osCommerce 'products_id' Parameter HTML Injection Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62997

Bilboplanet 'index.php' Multiple Cross-Site Scripting Vulnerabilities
2013-10-15
http://www.securityfocus.com/bid/62988

BilboPlanet 'auth.php' SQL Injection Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62989

Linux Kernel CVE-2013-4387 Memory Corruption Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62696

Cisco Unified Computing System CVE-2012-4108 Local Command Injection Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62979

Network Security Services Uninitialized Data Read Security Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62966

Apache 'mod_fcgid' Module CVE-2013-4365 Heap Buffer Overflow Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62939

PolarSSL RSA Private Key Recovery Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62771

Zabbix 'cURL' API Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/57103

QEMU CVE-2013-4344 Remote Buffer Overflow Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62773

Xen CVE-2013-4361 Information Disclosure Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62710

Xen CVE-2013-4355 Information Disclosure Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62708

Xen CVE-2013-4356 Local Memory Access Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62709

GLPI Multiple PHP Code Execution and SQL Injection Vulnerabilities
2013-10-15
http://www.securityfocus.com/bid/62515

libvirt 'virFileNBDDeviceAssociate()' Remote Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62576

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62508

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62510

Ubuntu 'rtkit' Package CVE-2013-4326 Local Security Bypass Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62505

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62857

International Components for Unicode Use After Free Remote Code Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62968

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-10-15
http://www.securityfocus.com/bid/62871

Google Chrome CVE-2013-2877 Out of Bounds Denial of Service Vulnerability
2013-10-15
http://www.securityfocus.com/bid/61050

Exploit

  Aladdin Knowledge Systems Ltd. PrivAgent ActiveX Control Overflow

  HP Data Protector Cell Request Service Buffer Overflow

  MS13-080 Microsoft Internet Explorer CDisplayPointer Use-After-Free

  Beetel Connection Manager PCW_BTLINDV1.0.0B04 - SEH Buffer Overflow

  Dexs PM System Wordpress Plugin - Authenticated Persistent XSS (0day)

  Dolibarr ERP/CMS 3.4.0 (exportcsv.php, sondage param) - SQL Injection

  Zabbix 2.0.8 SQL Injection and Remote Code Execution

14.10.2013

Bugtraq

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-11
jsibley1 gmail com

[SECURITY] [DSA 2777-1] systemd security update 2013-10-11
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2776-1] drupal6 security update 2013-10-11
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2773-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[security bulletin] HPSBMU02901 rev.1 - HP Business Process Monitor running on Windows, Remote Execution of Arbitrary Code and Disclosure of Information 2013-10-10
security-alert hp com

[SECURITY] [DSA 2774-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[ MDVSA-2013:249 ] libraw 2013-10-10
security mandriva com

[ MDVSA-2013:247 ] gnupg 2013-10-10
security mandriva com

[SECURITY] [DSA 2772-1] typo3-src security update 2013-10-10
Moritz Muehlenhoff (jmm debian org)

Malware

RDN/Generic PUP.x!bjm!4DFDCD71965A

RDN/Generic.dx!32EC7F8233A3

Generic PUP.x!88E3BD680FCB

RDN/Ransom!ds!8A873860FF9A

RDN/Generic PUP.x!bjm!4E43D774C052

RDN/Generic PUP.x!bjm!4FCAF4110CCB

Generic PUP.x!8D883982307C

Generic.bfr!4FB8FFDCEE2F

RDN/FakeAV-Z.bfr!d!59EB2F8AC970

Generic PUP.x!0940D347A235

RDN/Generic PUP.x!bjm!4F0F4FE6435E

Generic PUP.x!B693C393C8BB

Generic PUP.x!806A31EEE3C4

Generic PUP.x!4DE8E53966E6

RDN/Generic PUP.x!bjm!4FA9C3BCA370

RDN/Generic.bfr!fd!1C215DE11F77

RDN/Generic PWS.y!vc!916C0EF0726E

Generic.tfr!747E7F02977A

Generic PUP.x!F83C8B240183

HideWindow!DFE11A8627BA

Generic PUP.x!585689460B5E

Generic PUP.x!078773D1C0FA

Generic PUP.x!6F3292E5A3AD

Generic PUP.x!790DFEC30CB1

RDN/Generic PUP.x!bjm!4D61BCB3C72D

Generic.bfr!4DAEDFE94732

Generic PUP.x!4E9D5A2A38FF

RDN/Generic.bfr!fd!653B026E2866

RDN/Generic.tfr!DF465FA18205

Generic PUP.x!EF3CB60F07BE

Phishing

NatWest - Management Team

13th October 2013

Your are locked out of NatWest
Online Banking

National

13th October 2013

Service Information

Barclays Online Banking

13th October 2013

Your account has been
suspended

NatWest - Online Banking

13th October 2013

ONLINE BANKING : VIEW BALANCES
charset=iso-8859-1">

BT Yahoo!

12th October 2013

E-mail Update

J.P. Morgan Chase & Co.

12th October 2013

November Order

PayPal

11th October 2013

Notification of Limited
Account Access

Vulnerebility

Cisco Unified Communications Manager CVE-2013-5528 Directory Traversal Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62960

Cisco Unified IP Phones 9900 Series CVE-2013-5532 Buffer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62944

Cisco Unified IP Phones 9900 Series CVE-2013-5533 Local Command Injection Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62943

GNU libc glob(3) 'GLOB_LIMIT' Remote Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/43819

Microsoft Windows OpenType Font Parsing CVE-2013-3128 Remote Code Execution Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62819

Ubuntu 'systemd' Package CVE-2013-4327 Local Security Bypass Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62503

systemd X Keyboard Extension Processing Local Privilege Escalation Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62744

systemd 'journald-native.c' Remote Integer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62739

Drupal Core Access Bypass and Arbitrary PHP Code Execution Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/56993

Drupal Core Multiple Access Bypass and Cross Site Scripting Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/57437

Drupal Core Multiple Security Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/51822

Django 'is_safe_url()' Function Cross Site Scripting Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61777

Google Chrome Cookie Verification Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/58857

Google Chrome Prior to 30.0.1599.66 Multiple Security Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/62752

Citrix NetScaler Application Delivery Controller Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62788

Symantec Backup Exec CVE-2013-4677 Local Insecure File Permissions Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61487

Symantec Backup Exec CVE-2013-4678 Information Disclosure Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61488

Symantec Backup Exec CVE-2013-4676 Multiple Cross Site Scripting Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/61486

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62811

Symantec Backup Exec CVE-2013-4575 Remote Heap Buffer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/61485

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62453

FOSCAM IP-Cameras CVE-2013-2574 Unauthorized Access Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/61415

Foscam Prior to 11.37.2.49 Directory Traversal Vulnerability
2013-10-14
http://www.securityfocus.com/bid/58290

GnuPG Key Flags Subpacket Security Bypass Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62921

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62857

Qt PostgreSQL Driver SQL Injection Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62923

libtar 'th_read()' Function Multiple Heap Buffer Overflow Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/62922

XHProf 'run' Parameter Cross Site Scripting Vulnerability
2013-10-14
http://www.securityfocus.com/bid/62928

Quagga CVE-2013-2236 Stack Buffer Overflow Vulnerability
2013-10-14
http://www.securityfocus.com/bid/60955

Quagga Multiple Remote Security Vulnerabilities
2013-10-14
http://www.securityfocus.com/bid/52531

Exploit

VMware Hyperic HQ Groovy Script-Console Java Execution  

Wordpress Cart66 Plugin 1.5.1.14 - Multiple Vulnerabilities

  Android Zygote Socket Vulnerability Fork bomb Attack

  Internet Haut Debit Mobile PCW_MATMARV1.0.0B03 - Buffer Overflow SEH

11.10.2013

Bugtraq

[SECURITY] [DSA 2773-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[security bulletin] HPSBMU02901 rev.1 - HP Business Process Monitor running on Windows, Remote Execution of Arbitrary Code and Disclosure of Information 2013-10-10
security-alert hp com

[SECURITY] [DSA 2774-1] gnupg security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[ MDVSA-2013:249 ] libraw 2013-10-10
security mandriva com

[ MDVSA-2013:247 ] gnupg 2013-10-10
security mandriva com

[SECURITY] [DSA 2772-1] typo3-src security update 2013-10-10
Moritz Muehlenhoff (jmm debian org)

[ MDVSA-2013:248 ] xinetd 2013-10-10
security mandriva com

[SECURITY] [DSA 2775-1] ejabberd security update 2013-10-10
Thijs Kinkhorst (thijs debian org)

[SECURITY] [DSA 2771-1] nas security update 2013-10-09
Moritz Muehlenhoff (jmm debian org)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[SECURITY] [DSA 2770-1] torque security update 2013-10-09
Salvatore Bonaccorso (carnil debian org)

Malware

Generic.dx!5BF53B3ED33F

RDN/PWS-Banker!9894A2B76863

Generic.dx!96223CE65980

RDN/Generic.bfr!fd!174D03480E28

RDN/Generic Downloader.x!ip!8831F696BEDD

RDN/Generic PUP.x!bjg!0DEB4D9F1D70

RDN/Generic PUP.x!bjg!79CF8C2ECFDD

RDN/Generic PUP.x!bjg!9DA2C6FDFECE

RDN/Generic.dx!835A41FD5785

RDN/Generic PUP.x!bjg!48D2CAD65FFC

Generic.dx!F984E3D66E0A

RDN/Generic PUP.x!bjg!7128DAD0D8B6

RDN/Generic PUP.x!CCF2F6590762

Generic Dropper!C649EC4298EA

Generic.dx!D31D80FBC52C

RDN/Generic PUP.x!AEB416905491

RDN/Generic PUP.x!042964BCB075

RDN/Generic PUP.x!11F7C19BC42D

RDN/Generic PUP.x!087B4775B296

RDN/Generic.grp!gb!0EE92F3E8DBF

RDN/Generic Dropper!rt!61BEDA547910

Generic.dx!173F764C8B23

RDN/FakeAV-N.bfr!417F99DD689D

Generic.dx!BE230D5A3B5F

Generic.dx!1C3270A96EEA

Generic.dx!0B4F96644D0F

Generic.dx!CACC25AD190F

Generic.dx!3DF1CDD58B3F

Generic.dx!D683F17C660A

Generic.dx!1D46C2DB00BF

Phishing

Natwest

10th October 2013

Your NatWest Card Important
Notification

Barclays Bank Plc

10th October 2013

ACCOUNT SUSPENDED !

PayPal

10th October 2013

Your PayPal account is limited
- take action now

Chase Online

10th October 2013

1 NEW CHASE BANK UPDATE

PayPal

9th October 2013

Update your account
information

Barclays Bank PLC

9th October 2013

New Security Notice On Your
Barclays Account

Vulnerebility

libtar 'th_read()' Function Multiple Heap Buffer Overflow Vulnerabilities
2013-10-11
http://www.securityfocus.com/bid/62922

XHProf 'run' Parameter Cross Site Scripting Vulnerability
2013-10-11
http://www.securityfocus.com/bid/62928

Quagga CVE-2013-2236 Stack Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/60955

Quagga Multiple Remote Security Vulnerabilities
2013-10-11
http://www.securityfocus.com/bid/52531

PolarSSL RSA Private Key Recovery Security Bypass Vulnerability
2013-10-11
http://www.securityfocus.com/bid/62771

Quagga bgpd 'bgp_capability_orf()' BGP OPEN Message Remote Denial Of Service Vulnerability
2013-10-11
http://www.securityfocus.com/bid/53775

OpenJPEG Heap Based Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/54373

OpenJPEG Heap Based Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/55214

OpenJPEG Gray16 TIFF Image File Memory Corruption Vulnerability
2013-10-11
http://www.securityfocus.com/bid/53012

Python 'setuptools' Man in The Middle Vulnerability
2013-10-11
http://www.securityfocus.com/bid/61827

WordPress Audio Player Plugin 'playerID' Parameter Cross Site Scripting Vulnerability
2013-10-11
http://www.securityfocus.com/bid/57848

Oracle Java SE CVE-2013-2471 Buffer Overflow Vulnerability
2013-10-11
http://www.securityfocus.com/bid/60659

Oracle Java SE CVE-2013-3743 Remote Security Vulnerability
2013-10-11
http://www.securityfocus.com/bid/60626

Oracle Java SE CVE-2013-2443 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60646

Oracle Java SE CVE-2013-2455 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60619

Oracle Java SE CVE-2013-2437 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60636

Oracle Java SE CVE-2013-2449 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60622

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60651

Oracle Java SE CVE-2013-2463 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60655

SolarWinds Server and Application Monitor 'Pepco32c.ocx' ActiveX Overflow Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62585

Oracle Java SE CVE-2013-2469 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60658

Oracle Java SE CVE-2013-2468 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60637

Oracle Java SE CVE-2013-2466 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60624

Oracle Java SE CVE-2013-2459 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60647

Oracle Java SE CVE-2013-2464 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60631

Oracle Java SE CVE-2013-2465 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60657

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60640

Oracle Java SE CVE-2013-2457 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60632

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-2454 Remote Security Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60650

Exploit

  Indusoft Thin Client 7.1 ActiveX - Buffer Overflow

  Linksys WRT110 Remote Command Execution

  Imperva SecureSphere Web Application Firewall MX 9.5.6 - Blind SQL Injection

  ONO Hitron CDE-30364 Router - Denial Of Service

  ALLPlayer 5.6.2 (.m3u) - Local Buffer Overflow PoC

10.10.2013

Bugtraq

[SECURITY] [DSA 2771-1] nas security update 2013-10-09
Moritz Muehlenhoff (jmm debian org)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software 2013-10-09
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[SECURITY] [DSA 2770-1] torque security update 2013-10-09
Salvatore Bonaccorso (carnil debian org)

[ISecAuditors Security Advisories] Multiple Reflected XSS vulnerabilities in BoltWire <= v3.5 2013-10-09
ISecAuditors Security Advisories (advisories isecauditors com)

[ISecAuditors Security Advisories] Multiple Vulnerabilities in Uebimiau <= 2.7.11 2013-10-09
ISecAuditors Security Advisories (advisories isecauditors com)

Cross-Site Scripting (XSS) in Feng Office 2013-10-09
High-Tech Bridge Security Research (advisory htbridge com)

[security bulletin] HPSBGN02930 rev.1 - HP Intelligent Management Center(iMC) and HP IMC Service Operation Management Software Module, Remote Authentication Bypass, Disclosure of Information, Unauthorized Access, SQL Injection 2013-10-08
security-alert hp com

[security bulletin] HPSBGN02929 rev.1 - HP Intelligent Management Center (iMC), HP IMC Branch Intelligent Management System Software Module (BIMS), and Comware Based Switches and Routers, Remote Code Execution, Disclosure of Information 2013-10-08
security-alert hp com

Malware

Generic.bfr!E2BEC9BA4925

RDN/Generic Downloader.x!ip!BB21298A0C3D

Generic.bfr!984720583207

RDN/Generic PUP.x!bj3!A7BB265A9AB0

RDN/Generic.dx!crt!00888DF918E7

Generic.bfr!239FA089C74E

Generic.bfr!0B39CF050437

Generic.bfr!47D1B9933C02

RDN/Generic PUP.z!25DBD5068BF6

Generic.bfr!1E484E50C9EC

Generic.bfr!9DD17993B503

RDN/Generic PUP.x!bj3!2C53A1BF580E

RDN/Generic PUP.x!bj3!626BA04C5D45

RDN/Generic PUP.x!bj3!91B05A5AE681

Downloader.gen.a!320453D0153B

Downloader.gen.a!0BB0F0355148

RDN/Generic PUP.x!bj3!B6E0947D9B3B

Generic PUP.x!59AF78C79249

RDN/Generic PUP.x!bj3!B5187901387F

RDN/Generic PUP.x!bj3!336B290AB3AD

RDN/Generic PUP.x!bj3!C743E7FFA27E

RDN/Generic PUP.x!bj3!FA1C73815784

RDN/Generic PUP.x!bj3!9383B06B5940

RDN/Generic PWS.y!va!73CA2C3EA510

RDN/Generic PUP.x!bj3!582D5376FC3C

Generic.bfr!0E519D55CA27

Generic.bfr!44762CD4A5AD

RDN/Generic.grp!6441CC82087E

RDN/Generic.bfr!292971527B03

RDN/Generic PUP.x!9AA2AD8F1667

Phishing

Chase Online

10th October 2013

1 NEW CHASE BANK UPDATE

PayPal

9th October 2013

Update your account
information

Barclays Bank PLC

9th October 2013

New Security Notice On Your
Barclays Account

Chase

8th October 2013

1 NEW CHASE BANK ACCOUNT ALERT

Vulnerebility

Cisco IOS CVE-2013-5499 Remote Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62866

Cisco NX-OS CVE-2012-4077 Local Arbitrary Command Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62849

Cisco Identity Services Engine CVE-2013-5524 Cross Site Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62870

Cisco Identity Services Engine CVE-2013-5525 SQL Injection Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62799

Cisco Identity Services Engine CVE-2013-5523 Cross Frame Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62869

Cisco Unified Computing System CVE-2012-4084 Cross Site Request Forgery Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62851

systemd 'journald-native.c' Remote Integer Overflow Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62739

systemd X Keyboard Extension Processing Local Privilege Escalation Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62744

systemd Race Condition Local Privilege Escalation Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62738

systemd 'journald' Functionality Local Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62742

Cisco NX-OS 'file name' Parameter Arbitrary File Write Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62839

Cisco NX-OS CVE-2012-4121 Arbitrary File Access Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62846

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62857

Cyrus SASL Library CVE-2013-4122 NULL Pointer Dereference Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/61164

Xen CVE-2013-1442 Information Disclosure Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62630

HP Linux Imaging and Printing System polkit Local Security Bypass Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62499

RubyGems Wicked Arbitrary File Access Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62891

SLiM NULL Pointer Dereference Denial of Service Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62906

Network Audio System CVE-2013-4258 Format String Vulnerability
2013-10-10
http://www.securityfocus.com/bid/61852

Network Audio System CVE-2013-4257 Heap Buffer Overflow Vulnerability
2013-10-10
http://www.securityfocus.com/bid/61843

Network Audio System CVE-2013-4256 Multiple Buffer Overflow Vulnerabilities
2013-10-10
http://www.securityfocus.com/bid/61848

Telaen CVE-2013-2623 Cross Site Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60288

Telaen CVE-2013-2621 Open Redirection Vulnerability
2013-10-10
http://www.securityfocus.com/bid/60290

Torque CVE-2013-4319 Remote Arbitrary Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62273

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-10
http://www.securityfocus.com/bid/62324

Feng Office 'index.php' Cross Site Scripting Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62591

Microsoft Internet Explorer CVE-2013-3874 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62805

Microsoft Internet Explorer CVE-2013-3873 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62804

Microsoft Internet Explorer CVE-2013-3872 Memory Corruption Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62803

Microsoft Windows TrueType Font CMAP Table CVE-2013-3894 Remote Code Execution Vulnerability
2013-10-10
http://www.securityfocus.com/bid/62821

Exploit

 

9.10.2013

Bugtraq

[security bulletin] HPSBGN02930 rev.1 - HP Intelligent Management Center(iMC) and HP IMC Service Operation Management Software Module, Remote Authentication Bypass, Disclosure of Information, Unauthorized Access, SQL Injection 2013-10-08
security-alert hp com

[security bulletin] HPSBGN02929 rev.1 - HP Intelligent Management Center (iMC), HP IMC Branch Intelligent Management System Software Module (BIMS), and Comware Based Switches and Routers, Remote Code Execution, Disclosure of Information 2013-10-08
security-alert hp com

[SECURITY] [DSA-2769-1] kfreebsd-9 security update 2013-10-08
Salvatore Bonaccorso (carnil debian org)

NotSoSecure CTF (in partnership with Appsec USA) 2013-10-08
sid (sid notsosecure com)

[ MDVSA-2013:246 ] openjpa 2013-10-07
security mandriva com

Apple Motion Integer Overflow Vulnerability 2013-10-07
pereira secbiz de

Malware

RDN/Generic PUP.x!bjb!62BEF729ACE4

RDN/Generic PUP.x!bjb!F039608031DE

Generic.bfr!1C6B97C04F08

Generic.bfr!3180A09D7EAD

Generic.bfr!69529F617A76

RDN/Generic.dx!F195A3B70BAF

RDN/Generic.bfr!61AAFB2F4FED

Generic.dx!8CABCE74159F

Generic.dx!DD201A5B943C

Generic PUP.x!376A097B57EF

Generic.bfr!9BC6FF7BFB3C

Generic.dx!0E387946C309

Generic.dx!AA536396042F

Generic.dx!DC274A41F4B2

Generic.dx!39EB59264B96

Generic.dx!C12BCF2D8D40

Generic.dx!2CF49DBFD511

Generic.dx!89C5C02E99B2

Generic.dx!BD21EAB0B686

Generic.dx!79419B97948F

RDN/Generic PUP.x!bjb!139D411C993E

Generic.dx!E83444E5B4F2

Generic.dx!0E111140B930

Generic.dx!A31ADA6C646A

Generic.dx!B1363FCD8ED2

Generic.dx!FD7FCEC8979F

Generic.dx!8743510656C1

Generic.dx!FA5772A64B9E

Generic.dx!D31FCEA0DCCA

RDN/Generic PUP.x!bjb!9DFCF6B48783

Phishing

PayPal

9th October 2013

Update your account
information

Barclays Bank PLC

9th October 2013

New Security Notice On Your
Barclays Account

Chase

8th October 2013

1 NEW CHASE BANK ACCOUNT ALERT

Barclays Bank PLC

8th October 2013

New Security Notice On Your
Barclays Account

Vulnerebility

Microsoft Internet Explorer CVE-2013-3874 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62805

Microsoft Internet Explorer CVE-2013-3873 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62804

Microsoft Internet Explorer CVE-2013-3872 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62803

Microsoft Windows TrueType Font CMAP Table CVE-2013-3894 Remote Code Execution Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62821

Microsoft Internet Explorer CVE-2013-3897 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62811

Microsoft Internet Explorer CVE-2013-3871 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62802

RETIRED: Microsoft October 2013 Advance Notification Multiple Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/62797

RETIRED: Adobe Reader and Acrobat APSB13-25 Prenotification Multiple Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/62777

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/62324

SSSD Multiple Denial of Service Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/57539

Samba CVE-2013-4124 Local Denial of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61597

Samba SWAT Cross Site Request Forgery and Clickjacking Vulnerabilities
2013-10-09
http://www.securityfocus.com/bid/57631

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62453

Microsoft Windows Kernel 'dxgkrnl.sys' CVE-2013-3888 Local Privilege Escalation Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62831

GnuPG CVE-2013-4402 Denial of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62857

FreeBSD CVE-2013-5691 Local Privilege Escalation Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62302

FreeBSD CVE-2013-5710 Local Security Bypass Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62303

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-10-09
http://www.securityfocus.com/bid/60634

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61310

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62871

DavFS2 'system()' Function Local Privilege Escalation Vulnerability
2013-10-09
http://www.securityfocus.com/bid/62445

Oracle MySQL Server CVE-2013-3808 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61227

Oracle MySQL Server CVE-2013-3802 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61244

Oracle MySQL Server CVE-2013-3807 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61238

MySQL and MariaDB Geometry Query Denial Of Service Vulnerability
2013-10-09
http://www.securityfocus.com/bid/58511

Oracle MySQL Server CVE-2013-3805 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61256

Oracle MySQL Server CVE-2013-3809 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61272

Oracle MySQL Server CVE-2013-3811 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61252

Oracle MySQL Server CVE-2013-3801 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61269

Oracle MySQL Server CVE-2013-3810 Remote Security Vulnerability
2013-10-09
http://www.securityfocus.com/bid/61214

Exploit

 

8.10.2013

Bugtraq

[ MDVSA-2013:246 ] openjpa 2013-10-07
security mandriva com

Apple Motion Integer Overflow Vulnerability 2013-10-07
pereira secbiz de

[KIS-2013-09] Vanilla Forums <= 2.0.18.5 (class.utilitycontroller.php) PHP Object Injection Vulnerability 2013-10-07
Egidio Romano (research karmainsecurity com)

Malware

RDN/Generic PUP.x!bj3!8D6710A9BBE3

ZeroAccess-FBJ!64932E143FC5!64932E143FC5

Generic Downloader.x!8AE2C95CB61B

RDN/Generic PUP.x!bj3!5D8670BF5B02

RDN/Generic PUP.x!bj3!704C5CBF03CB

Generic PUP.x!EC5833409666

RDN/Generic PUP.x!bj3!86ACDE5CA6BC

RDN/Generic PUP.x!bj3!523BAC233AA9

Generic.bfr!5A29EC685E11

Generic Downloader.x!816DEE37270E

RDN/Generic StartPage!bp!5D632E2D43BC

Generic Downloader.x!5C0C3017934B

RDN/BackDoor-CEP!bv!697A8016A317

RDN/Generic.tfr!dq!7E9F82ACB825

RDN/Generic PUP.x!bj3!589B9D7A206E

RDN/Generic PUP.x!bj3!8287AF11099B

RDN/Generic PUP.x!bj3!4E9B5C74AA39

RDN/Generic PUP.x!bj3!52A61F582FB5

RDN/Generic PUP.x!bj3!4DD57763B457

RDN/Generic PUP.x!bj3!50DA2044B6F5

RDN/Generic PUP.x!bj3!554BA5711D53

RDN/Generic PUP.x!bj3!60B21B40603C

RDN/Generic PUP.x!bj3!63E93D41126C

RDN/Generic PUP.x!bj3!58ECFE93310C

RDN/Generic PUP.x!bj3!65E8D5ADE079

Generic PUP.x!BBB14720D4CE

RDN/Generic PUP.x!bj3!5095CFA6BE45

Generic Downloader.x!5F155BBA7A31

RDN/Generic PUP.x!bj3!444D8EADA8BD

RDN/Generic.dx!crs!5D9BE5B66BB6

Phishing

ClipBucket 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62776

HP LoadRunner CVE-2013-4800 Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61446

FlashChat 'upload.php' Arbitrary File Upload Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62852

Xinetd CVE-2013-4342 Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62871

Restlet Framework Object Deserialization Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62000

Apache Camel CVE-2013-4330 Information Disclosure Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62706

Restlet Framework XML Deserialization Remote Code Execution Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61694

Oracle Solaris CVE-2013-3757 Remote Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61263

Oracle Sun Products Suite CVE-2012-0570 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59241

Cisco NX-OS CVE-2012-4091 Remote Denial of Service Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62838

Oracle Sun Products Suite CVE-2013-1530 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59221

Cisco Nexus 7000 Series Switches NX-OS CVE-2012-4090 Remote Information Disclosure Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62841

Wireshark Multiple Denial of Service Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/61471

Oracle Sun Products Suite CVE-2012-3128 Local SPARC T-Series Servers Vulnerability
2013-10-08
http://www.securityfocus.com/bid/54564

ISC DHCP Multiple Denial of Service Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/54665

Oracle Solaris CVE-2013-3813 Remote Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61230

Oracle Sun Products Suite CVE-2013-0411 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59174

Apache OpenJPA Object Deserialization Arbitrary File Creation or Overwrite Vulnerability
2013-10-08
http://www.securityfocus.com/bid/60534

Oracle Sun Products Suite CVE-2013-0404 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59230

Oracle Solaris CVE-2013-3786 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61266

Oracle Solaris CVE-2013-3787 Remote Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61248

ISC BIND 9 DNS Resource Records Handling CVE-2012-4244 Remote Denial of Service Vulnerability
2013-10-08
http://www.securityfocus.com/bid/55522

Linux Kernel 'i915_gem_execbuffer.c' Multiple Integer Overflow Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/53971

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/46616

Linux Kernel IPv6 'nf_ct_frag6_reasm()' Remote Denial of Service Vulnerability
2013-10-08
http://www.securityfocus.com/bid/54367

Red Hat JBoss Application Server Multiple Servlets Remote Code Execution Vulnerabilities
2013-10-08
http://www.securityfocus.com/bid/62854

Oracle Sun Products Suite CVE-2013-0408 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59204

PolicyKit CVE-2013-4288 Local Privilege Escalation Vulnerability
2013-10-08
http://www.securityfocus.com/bid/62511

Oracle Sun Products Suite CVE-2013-0413 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/59214

Oracle Solaris CVE-2013-3745 Local Security Vulnerability
2013-10-08
http://www.securityfocus.com/bid/61261

Vulnerebility

  HP LoadRunner magentproc.exe Overflow

  GestioIP Remote Command Execution

  davfs2 1.4.6/1.4.7 - Local Privilege Escalation Exploit

  WHMCS 5.2.7 - SQL Injection Vulnerability

  Wordpress Quick Contact Form Plugin 6.0 - Persistent XSS

  Apple Motion 5.0.7 Integer Overflow Vulnerability

Exploit

Understanding C Integer Boundaries (Overflows & Underflow)

Linux Classic Return-to-libc & Return-to-libc Chaining Tutorial

Linux Stack Based Buffer Overflows

Linux Format String Exploitation

Linux Integer Overflow and Underflow

Linux Off By One Vulnerabilities

Return Oriented Programming (ROP FTW)

7.10.2013

Bugtraq

SEC Consult SA-20131004-0 :: SQL injection vulnerability in Zabbix 2013-10-04
SEC Consult Vulnerability Lab (research sec-consult com)

APPLE-SA-2013-10-03-1 OS X v10.8.5 Supplemental Update 2013-10-03
Apple Product Security (product-security-noreply lists apple com)

Malware

RDN/Generic.grp!60496E72EED3

Generic PUP.x!A81623B834E6

W32/Generic.worm!p2p!47D7A4B36905

RDN/Generic PUP.x!b2x!E14B4394695D

Generic PUP.x!46288039A82A

RDN/Generic PUP.x!147304FB748B

RDN/Generic.grp!67FD53CC7165

W32/Generic.worm!p2p!406845CFAA52

RDN/Qhost-Gen!ba!C115435497E7

RDN/Generic.dx!5676417FF349

W32/Generic.worm!p2p!2ABBEEDA0137

RDN/Generic Exploit!69DEF9DB82C7

W32/Generic.worm!p2p!0875AB03199D

W32/Generic.worm!p2p!7B95394F29E4

W32/Generic.worm!p2p!DD6CBD959076

W32/Generic.worm!p2p!10E0FEBEB3E9

W32/Autorun.worm.gen!84C876E6F9EE

W32/Autorun.worm.gen!8CDF01FC8153

W32/Autorun.worm.gen!8AE92D086305

W32/Generic.worm!p2p!3DBECFC1FBFA

W32/Autorun.worm.gen!90F837FA475F

W32/Generic.worm!p2p!470D23A421A7

W32/Autorun.worm.gen!316FB83A3AC1

W32/Autorun.worm.gen!CE39913AC411

W32/Generic.worm!p2p!B7CD4E98162F

W32/Generic.worm!p2p!9F9FFF3E71C3

W32/Generic.worm!p2p!9AEA4E32E833

W32/Autorun.worm.gen!F2B213C06F5E

W32/Autorun.worm.gen!E5E90861C0F5

W32/Autorun.worm.gen!B51D1F2C0786

Phishing

Halifax Bank PLC

6th October 2013

Halifax Bank: Unconfirmed
Payment Notification

PayPal

5th October 2013

Your PayPal Account
Re-Confirmation Alert

Natwest Credit Cards

4th October 2013

YOUR NATWEST CREDIT CARD
SECURITY & PRIVACY

paypal

4th October 2013

Important: We noticed unusual
activity in your PayPal
account

Vulnerebility

IcedTea-Web CVE-2013-4349 Heap Based Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/62426

Multiple HP LaserJet Printers CVE-2013-4828 PDF Encryption Weakness
2013-10-07
http://www.securityfocus.com/bid/62814

Multiple HP LaserJet Printers CVE-2013-4829 Unspecified Local Information Disclosure Vulnerability
2013-10-07
http://www.securityfocus.com/bid/62813

Open Flash Chart 'ofc_upload_image.php' Remote PHP Code Execution Vulnerability
2013-10-07
http://www.securityfocus.com/bid/37314

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-2472 Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60656

Oracle Java SE CVE-2013-2451 Local Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60625

Oracle Java SE CVE-2013-2471 Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60659

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60651

Oracle Java SE CVE-2013-2466 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60624

Oracle Java SE CVE-2013-2469 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60658

Oracle Java SE CVE-2013-2468 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60637

Oracle Java SE CVE-2013-2464 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60631

Oracle Java SE CVE-2013-2463 Remote Code Execution Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60655

Oracle Java SE CVE-2013-2465 Memory Corruption Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60657

Oracle Java SE CVE-2013-2459 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60647

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60640

Oracle Java SE CVE-2013-2467 Local Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60649

Oracle Java SE CVE-2013-2436 Security Bypass Vulnerability
2013-10-07
http://www.securityfocus.com/bid/59213

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60634

Oracle Java SE CVE-2013-3744 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60654

Oracle Java SE CVE-2013-2453 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60644

Oracle Java SE CVE-2013-2457 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60632

Oracle Java SE CVE-2013-2462 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60630

Oracle Java SE CVE-2013-2444 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60633

Oracle Java SE CVE-2013-2473 Buffer Overflow Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60623

Oracle Java SE CVE-2013-3743 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60626

Oracle Java SE CVE-2013-2400 Remote Security Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60621

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-10-07
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2013-2460 Remote Java Runtime Environment Vulnerability
2013-10-07
http://www.securityfocus.com/bid/60635

Exploit

 

5.10.2013

Bugtraq

APPLE-SA-2013-10-03-1 OS X v10.8.5 Supplemental Update 2013-10-03
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBPI02892 rev.1 - Certain HP FutureSmart MFP, Weak PDF Encryption, Local Disclosure of Information 2013-10-03
security-alert hp com

ESA-2013-062: EMC Atmos Unauthenticated Database Access Vulnerability 2013-10-03
Security Alert (Security_Alert emc com)

[SOJOBO-ADV-13-01] - Zenphoto 1.4.5.2 multiple vulnerabilities 2013-10-03
advisories enkomio com

[ MDVSA-2013:245 ] proftpd 2013-10-03
security mandriva com

SEC Consult SA-20131003-0 :: Denial of service vulnerability in Citrix NetScaler 2013-10-03
SEC Consult Vulnerability Lab (research sec-consult com)

Apple iOS 7 iPad2 Face-Time 1.0.2 - Privacy Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

WebAssist PowerCMS PHP - Multiple Web Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

elproLOG MONITOR WebAccess 2.1 - Multiple Web Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

SilverStripe Framework CMS 3.0.5 - Multiple Web Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Hide Photo+Video Safe v1.6 iOS - Multiple Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Security Guard CMS QT 4.7.3 - Local Stack Buffer Overflow Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #99 - Filter Bypass & Persistent Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion Vulnerability 2013-10-02
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Malware

RDN/Generic PUP.x!4D3706503DDE

RDN/Generic PUP.x!914774D15B79

RDN/Generic PUP.x!b2s!22F2F957486E

RDN/Vundo!dn!419A4CBEDA4D

RDN/Generic Dropper!2024AE1CD52E

RDN/Generic BackDoor!tv!BE97D4150207

Generic PUP.x!D83337C1AF07

RDN/Generic.bfr!fc!751A9AAB20B2

Generic PWS.y!F87575EA00EA

RDN/Generic PUP.x!A1360C61D4FD

RDN/Generic PUP.x!6CC0FECD2148

Generic PUP.x!AF6A9883E803

Generic BackDoor!0040A76FCEED

RDN/Generic PUP.x!F50DE5773951

Generic PUP.x!2DFF6552C3D4

W32/Spybot.bfr!989E79655A78

Generic.bfr!9FA4697080E0

RDN/Autorun.worm.gen!4F18D43878DA

RDN/Generic BackDoor!tv!B1BB354ED024

RDN/Generic BackDoor!tv!74758E0C204B

RDN/Generic.bfr!es!E026191C9F8C

RDN/Generic PUP.x!b2s!61B3649F99E6

RDN/Generic PUP.x!b2s!A2FE7FD855FE

RDN/Downloader.gen.a!9079E592E1AA

Generic PUP.x!4C206AD434C9

Generic BackDoor!880415C853F2

Generic BackDoor!A6C14B74D80C

RDN/Generic.bfr!E7BC4293F243

Generic PUP.x!96C75B8009B5

Downloader.gen.a!839AF5A444E8

Phishing

Lloyds Banking Online

3rd October 2013

ONLINE BANKING - ONLINE
SECURITY - STAYING SAFE ONLINE

auto-confirm1117@amazon.co.uk

3rd October 2013

YOUR AMAZON.CO.UK ORDER
#NRR-6147155-1778100

auto-confirm1318@amazon.co.uk

2nd October 2013

YOUR AMAZON.CO.UK ORDER
#7N:-0644934-8103229

auto-confirm1116@amazon.co.uk

2nd October 2013

YOUR AMAZON.CO.UK ORDER
#NAD-8519638-3736711

Vulnerebility

Wireshark NBAP Dissector Multiple Denial of Service Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/60502

Wireshark CVE-2013-4074 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60500

Wireshark CVE-2013-4082 Heap Buffer Overflow Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60506

Wireshark Websocket Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59998

Wireshark GSM CBCH Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60498

Wireshark PPP Dissector CVE-2013-4076 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60499

Wireshark CVE-2013-4080 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60503

Wireshark CVE-2013-4075 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60501

Wireshark MPEG DSM-CC Dissector 'packet-mpeg-dsmcc.c' Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59999

Wireshark RDP Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60495

Wireshark Multiple Denial of Service Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/61471

Wireshark CVE-2013-4081 Stack Buffer Overflow Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60505

Wireshark ASN.1 BER Dissector CVE-2013-3557 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60021

Wireshark GTPv2 Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59992

Wireshark CVE-2013-4083 Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60504

Wireshark PPP CCP Dissector Denial of Service Vulnerability
2013-10-04
http://www.securityfocus.com/bid/59994

Microsoft Windows CVE-2012-1864 Local Privilege Escalation Vulnerability
2013-10-04
http://www.securityfocus.com/bid/53815

Spring Security 'RunAsManager' Local Privilege Escalation Vulnerability
2013-10-04
http://www.securityfocus.com/bid/49538

Spring Framework Expression Language JSP Attributes Handling Information Disclosure Vulnerability
2013-10-04
http://www.securityfocus.com/bid/49543

Cisco Unified Computing System CVE-2012-4109 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62735

Cisco Unified Computing System CVE-2012-4111 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62734

Cisco Unified Computing System CVE-2012-4103 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62731

Cisco Wireless LAN Controller CVE-2013-5519 Cross Site Scripting Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62787

Cisco Unified Computing System CVE-2012-4102 Local Arbitrary Command Execution Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62728

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60107

IBM Eclipse Help System CVE-2013-0467 Information Disclosure Vulnerability
2013-10-04
http://www.securityfocus.com/bid/58000

IBM Eclipse Help System CVE-2013-0464 Cross Site Scripting Vulnerability
2013-10-04
http://www.securityfocus.com/bid/60246

Cisco Unified Computing System CVE-2012-4110 Local Command Injection Vulnerability
2013-10-04
http://www.securityfocus.com/bid/62737

RETIRED: Adtran Netvanta 7100 and 7060 CVE-2013-5210 Multiple Security Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/62754

Adtran Netvanta 7100 and 7060 CVE-2013-5210 Multiple Security Vulnerabilities
2013-10-04
http://www.securityfocus.com/bid/62498

Exploit

  Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object RCE

  SIEMENS Solid Edge ST4 SEListCtrlX ActiveX Remote Code Execution

  elproLOG MONITOR WebAccess 2.1 - Multiple Vulnerabilities

  CMS Formulasi 2.07 - Multiple Vulnerabilities

  Aanval 7.1 build 70151 - Multiple Vulnerabilities

4.10.2013

Bugtraq

Hide Photo+Video Safe v1.6 iOS - Multiple Vulnerabilities 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Security Guard CMS QT 4.7.3 - Local Stack Buffer Overflow Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Paypal Inc Bug Bounty #99 - Filter Bypass & Persistent Vulnerability 2013-10-03
Vulnerability Lab (research vulnerability-lab com)

Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion Vulnerability 2013-10-02
Cisco Systems Product Security Incident Response Team (psirt cisco com)

RootedCON 2014 - Call For Papers 2013-10-02
Javier Olascoaga (deese spezialk net)

All in One SEO Pack Plugin for WordPress 1.3.6.4 - 2.0.3 XSS 2013-10-02
Charlie Briggs (charlie cysha co uk)

Malware

Generic PUP.x!5BBC9C6446ED

Generic PUP.x!5B5539E2F021

Generic PUP.x!5BC176680D15

Generic.bfr!F0A140351141

Generic.bfr!C7BE047B5C36

RDN/Generic.bfr!5956071BC2AC

Generic PUP.x!5A44C623C821

Generic PUP.x!A8CAF1926700

Generic PUP.x!5BBBF2FFCA12

RDN/Generic PUP.x!b2o!5A80AB6F310F

Generic PUP.x!0E91FDDEF7B6

RDN/Downloader.a!nm!5A7723E3919F

RDN/Generic BackDoor!tv!5AB3F746043E

RDN/Generic PUP.x!b2o!59DF1E0E3D7E

Generic.bfr!834F7569DF65

Generic PUP.x!5B8EAF718DE3

Generic PUP.x!5A42A5B8F604

RDN/Generic PUP.x!b2o!1C2B53886D4B

Generic PUP.x!599D31258941

Generic PUP.x!586DE51B28E4

RDN/Generic.dx!58B6D010617D

Generic.bfr!A62FFF85F562

RDN/Generic BackDoor!tv!84AFEEAE28F4

Generic.bfr!6F7CAF43B2AB

Generic.bfr!1A3D5328812D

Generic PUP.x!0C7195A55BEF

Generic BackDoor!599C8B519651

Generic PUP.x!590D8A370CE0

Generic PUP.x!59327149969A

Generic PUP.x!5B054DC3EC75

 

Phishing

 

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62468

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62472

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62465

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62478

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62469

GNU glibc 'regexec.c' Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/57638

GNU glibc 'getaddrinfo()' Stack Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/58839

GNU glibc 'pt_chown()' Function CVE-2013-2207 Local Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/61960

GNU glibc 'strcoll()' Routine Integer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/55462

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-03
http://www.securityfocus.com/bid/62324

GNU glibc CVE-2013-4237 Remote Buffer Overflow Vulnerability
2013-10-03
http://www.securityfocus.com/bid/61729

WordPress Simple Dropbox Upload 'multi.php' Arbitrary File Upload Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62437

WordPress Complete Gallery Manager Plugin 'upload-images.php' Arbitrary File Upload Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62496

Cisco Identity Services Engine CVE-2013-5505 Cross Site Scripting Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62693

WordPress Lazy SEO Plugin 'lazyseo.php' Arbitrary File Upload Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62589

Review Board Access Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62702

RETIRED: libvirt CVE-2013-5651 Remote Denial Of Service Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62509

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62510

libvirt CVE-2013-4291 Local Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62743

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-10-03
http://www.securityfocus.com/bid/62508

Exploit

  Evince PDF Reader - 2.32.0.145 (Windows) and 3.4.0 (Linux) - Denial Of Service

3.10.2013

Bugtraq

Multiple Vulnerabilities in Gnew 2013-10-02
High-Tech Bridge Security Research (advisory htbridge com)

Remote Code Execution in GLPI 2013-10-02
High-Tech Bridge Security Research (advisory htbridge com)

Defense in depth -- the Microsoft way (part 11): privilege escalation for dummies 2013-10-01
Stefan Kanthak (stefan kanthak nexgo de)

CORE-2013-0828 - PDFCool Studio Buffer Overflow Vulnerability 2013-10-01
CORE Advisories Team (advisories coresecurity com)

CORE-2013-0904 - PinApp Mail-SeCure Access Control Failure 2013-10-01
CORE Advisories Team (advisories coresecurity com)

iOS: List of available trusted root certificates 2013-09-30
Jeffrey Walton (noloader gmail com) (1 replies)

Re: iOS: List of available trusted root certificates 2013-10-01
Jason Hellenthal (jhellenthal dataix net)

Malware

RDN/Generic PUP.x!b2m!741AFA6B8DE6

RDN/Generic PUP.x!b2m!8780E1673DED

Generic PUP.x!8A6C6A73BC8E

Generic.bfr!89E5C4CCCF60

Generic PUP.x!2E11A5394F12

RDN/PWS-Mmorpg.gen!3546150F0CCD

RDN/Generic Dropper!rq!EDAD6524B95F

Generic PUP.x!8F6BF4FE17D1

RDN/Generic PUP.x!b2m!8723DA1F37F5

RDN/Generic PUP.x!b2m!28C7BC127096

Generic PUP.x!8C7CB4C50C81

Generic PUP.x!8F3FBA16D494

Generic.bfr!8AD904D6E326

RDN/Generic.tfr!dq!8BAC33843F3A

RDN/Generic PUP.x!b2m!8A2A1BB07CCF

Generic PUP.x!8809F08CABA5

Generic PUP.x!8B6075C29645

RDN/Generic PUP.x!b2m!888E0C1B04B0

Generic PUP.x!7D7A804B8D08

RDN/Generic PUP.x!897BB88A4DEF

Generic PUP.x!890F2777DC92

Generic PUP.x!8FA7ECEBFE5A

Generic PUP.x!799F5D00FB0E

RDN/Generic PUP.x!b2m!88CA739EA139

RDN/Generic PUP.x!b2m!88A2A4CBC5AE

RDN/Generic BackDoor!tu!8E56445B6667

Generic.bfr!897915142129

Generic.bfr!876EA47F2891

Generic PUP.x!771B4D70F579

RDN/Generic.bfr!fc!858B14602831

Phishing

auto-confirm1116@amazon.co.uk

2nd October 2013

YOUR AMAZON.CO.UK ORDER
#NAD-8519638-3736711

Apple

1st October 2013

Update your apple Account

Amazon

1st October 2013

[!! ] Please Confirm Your
Account Information
 

Ralph Fabiano

1st October 2013

RE: Get prescriptions to
increase energy levels at
discounts

Lindsay Schrupp

1st October 2013

=?utf-8?B?WW91IGNhbiBhY2hpZXZl
IHRoZSB3aG9sZSB3b3JsZCB3aXRoIH
lvdXIgc2Vj?=
=?utf-8?B?cmV0IHBvd2VyIOqzmQ==
?=

Vulnerebility

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62472

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62465

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62478

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62469

GNU glibc 'regexec.c' Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/57638

GNU glibc 'getaddrinfo()' Stack Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/58839

GNU glibc 'pt_chown()' Function CVE-2013-2207 Local Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/61960

GNU glibc 'strcoll()' Routine Integer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/55462

GNU glibc Multiple Integer Overflow Vulnerabilities
2013-10-02
http://www.securityfocus.com/bid/62324

GNU glibc CVE-2013-4237 Remote Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/61729

WordPress Simple Dropbox Upload 'multi.php' Arbitrary File Upload Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62437

WordPress Complete Gallery Manager Plugin 'upload-images.php' Arbitrary File Upload Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62496

Cisco Identity Services Engine CVE-2013-5505 Cross Site Scripting Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62693

WordPress Lazy SEO Plugin 'lazyseo.php' Arbitrary File Upload Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62589

Review Board Access Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62702

RETIRED: libvirt CVE-2013-5651 Remote Denial Of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62509

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62510

libvirt CVE-2013-4291 Local Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62743

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62508

libvirt 'virBitmapParse()' Function Denial of Service Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62070

Linux Kernel CVE-2013-4345 Off-By-One Buffer Overflow Vulnerability
2013-10-02
http://www.securityfocus.com/bid/62740

Exploit

  freeFTPd PASS Command Buffer Overflow

  Micorosft Internet Explorer SetMouseCapture Use-After-Free

  PinApp Mail-SeCure 3.70 - Access Control Failure

  Gnew 2013.1 - Multiple Vulnerabilities

  GLPI 0.84.1 - Multiple Vulnerabilities

  HylaFAX+ 5.2.4 - 5.5.3 - Buffer Overflow

2.10.2013

Bugtraq

iOS: List of available trusted root certificates 2013-09-30
Jeffrey Walton (noloader gmail com) (1 replies)

Re: iOS: List of available trusted root certificates 2013-10-01
Jason Hellenthal (jhellenthal dataix net)

CFP: WorldCIST'14 - World Conference on IST, at Madeira Island 2013-09-30
Maria Lemos (marialemos72 gmail com)

CVE-2130-5680, HylaFAX+ heap overflow, unchecked network traffic. 2013-09-30
Dennis Jenkins (dennis jenkins 75 gmail com)

[ MDVSA-2013:244 ] davfs2 2013-09-30
security mandriva com

Open-Xchange Security Advisory 2013-09-30 2013-09-30
Martin Braun (martin braun open-xchange com)

Malware

RDN/Generic PUP.x!b2j!8D6F8B441699

RDN/Generic PUP.x!b2j!9F13DD07772B

Generic PUP.x!DDF2F4314652

Generic PUP.x!833EEC2B8751

RDN/Generic PUP.x!b2j!03E29093483B

RDN/Generic PUP.x!b2j!D296D13B5718

RDN/Generic PUP.x!b2j!A5D3302C85B7

RDN/Generic PUP.x!b2j!24E53EED9483

RDN/Generic PUP.x!b2j!904B63766A10

Generic PUP.x!003072D2B841

Generic PUP.x!71356F473A11

Generic.bfr!12253864BF00

Generic PUP.x!112D40BF5E70

Generic PUP.x!C5387ADB0798

Generic PUP.x!947ADF7FA3FD

RDN/Generic PUP.x!b2j!A54D1D155DE2

Generic PUP.x!383952726C0B

Generic PUP.x!DA66BD74EF82

RDN/Generic PUP.x!b2j!98DD307564AD

Generic PUP.x!3EDBAAFA6E10

Generic.bfr!B2FCA710438A

RDN/Generic PUP.x!b2j!3CDB5E72BB0B

RDN/Generic PUP.x!b2j!969628201460

RDN/Generic PUP.x!1C903C5F6E5E

Generic PUP.x!2E365C1F5A73

RDN/Generic BackDoor!tu!A11C742DC94D

RDN/Generic PUP.x!b2j!1CE8549E8E16

Generic PUP.x!4964B80A8EDB

RDN/Generic PUP.x!b2j!7EFC9A5CD12A

RDN/Generic PUP.x!b2j!8CC1FF790B9A

Phishing

BT Yahoo! Mail Policy

30th September 2013

An Update would be made!

auto-confirm1218@amazon.co.uk

30th September 2013

YOUR AMAZON.CO.UK ORDER
#NND-4727068-9691852

Vulnerebility

CCID Card Serial Number Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/45806

Icy Phoenix CMS Cross Site Scripting Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62722

VMware ESX and ESXi CVE-2013-3658 Directory Traversal Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62323

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62453

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/60846

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62049

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62043

PHP CVE-2013-4113 Heap Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61128

Linux Kernel CVE-2013-2094 Local Privilege Escalation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/59846

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62472

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62465

Mozilla Firefox CVE-2013-1727 Same Origin Policy Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62480

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62468

HP Linux Imaging and Printing Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/48892

HP Linux Imaging and Printing CVE-2013-0200 Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58079

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62469

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62478

Mozilla Firefox/SeaMonkey CVE-2013-1705 Use-After-Free Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61871

GNOME Vino VNC Server CVE-2013-5745 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62443

Exploit

  KMPlayer 3.7.0.109 (.wav) - Crash PoC

1.10.2013

Bugtraq

iOS: List of available trusted root certificates 2013-09-30
Jeffrey Walton (noloader gmail com) (1 replies)

Re: iOS: List of available trusted root certificates 2013-10-01
Jason Hellenthal (jhellenthal dataix net)

CFP: WorldCIST'14 - World Conference on IST, at Madeira Island 2013-09-30
Maria Lemos (marialemos72 gmail com)

CVE-2130-5680, HylaFAX+ heap overflow, unchecked network traffic. 2013-09-30
Dennis Jenkins (dennis jenkins 75 gmail com)

[ MDVSA-2013:244 ] davfs2 2013-09-30
security mandriva com

Open-Xchange Security Advisory 2013-09-30 2013-09-30
Martin Braun (martin braun open-xchange com)

Malware

RDN/Generic PUP.x!b2j!8D6F8B441699

RDN/Generic PUP.x!b2j!9F13DD07772B

Generic PUP.x!DDF2F4314652

Generic PUP.x!833EEC2B8751

RDN/Generic PUP.x!b2j!03E29093483B

RDN/Generic PUP.x!b2j!D296D13B5718

RDN/Generic PUP.x!b2j!A5D3302C85B7

RDN/Generic PUP.x!b2j!24E53EED9483

RDN/Generic PUP.x!b2j!904B63766A10

Generic PUP.x!003072D2B841

Generic PUP.x!71356F473A11

Generic.bfr!12253864BF00

Generic PUP.x!112D40BF5E70

Generic PUP.x!C5387ADB0798

Generic PUP.x!947ADF7FA3FD

RDN/Generic PUP.x!b2j!A54D1D155DE2

Generic PUP.x!383952726C0B

Generic PUP.x!DA66BD74EF82

RDN/Generic PUP.x!b2j!98DD307564AD

Generic PUP.x!3EDBAAFA6E10

Generic.bfr!B2FCA710438A

RDN/Generic PUP.x!b2j!3CDB5E72BB0B

RDN/Generic PUP.x!b2j!969628201460

RDN/Generic PUP.x!1C903C5F6E5E

Generic PUP.x!2E365C1F5A73

RDN/Generic BackDoor!tu!A11C742DC94D

RDN/Generic PUP.x!b2j!1CE8549E8E16

Generic PUP.x!4964B80A8EDB

RDN/Generic PUP.x!b2j!7EFC9A5CD12A

RDN/Generic PUP.x!b2j!8CC1FF790B9A

Phishing

BT Yahoo! Mail Policy

30th September 2013

An Update would be made!

auto-confirm1218@amazon.co.uk

30th September 2013

YOUR AMAZON.CO.UK ORDER
#NND-4727068-9691852

Vulnerebility

CCID Card Serial Number Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/45806

Icy Phoenix CMS Cross Site Scripting Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62722

VMware ESX and ESXi CVE-2013-3658 Directory Traversal Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62323

Microsoft Internet Explorer CVE-2013-3893 Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62453

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/60846

Linux Kernel CVE-2013-0343 IPv6 Temporary Addresses Remote Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58795

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62049

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62043

PHP CVE-2013-4113 Heap Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61128

Linux Kernel CVE-2013-2094 Local Privilege Escalation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/59846

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1723 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62472

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62465

Mozilla Firefox CVE-2013-1727 Same Origin Policy Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62480

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62468

HP Linux Imaging and Printing Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/48892

HP Linux Imaging and Printing CVE-2013-0200 Insecure Temporary File Creation Vulnerability
2013-10-01
http://www.securityfocus.com/bid/58079

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62469

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62473

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62479

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62478

Mozilla Firefox/SeaMonkey CVE-2013-1705 Use-After-Free Remote Code Execution Vulnerability
2013-10-01
http://www.securityfocus.com/bid/61871

GNOME Vino VNC Server CVE-2013-5745 Denial of Service Vulnerability
2013-10-01
http://www.securityfocus.com/bid/62443

Exploit

  KMPlayer 3.7.0.109 (.wav) - Crash PoC

30.9.2013

Bugtraq

[SECURITY] [DSA 2766-1] linux-2.6 security update 2013-09-27
dann frazier (dannf debian org)

[SECURITY] [DSA 2765-1] davfs2 security update 2013-09-26
Luciano Bello (luciano debian org)

Malware

Downloader-FLN!BA7BC135830A!BA7BC135830A

Downloader-FLN!3EC0E5AD2A00!3EC0E5AD2A00

Downloader-FLN!6A09884E3A9C!6A09884E3A9C

Downloader-FLN!35E62DE3FE3D!35E62DE3FE3D

RDN/Generic PUP.x!AC3A45FFC0B1

Downloader-FLN!27589605DC63!27589605DC63

RDN/Generic.bfr!fc!66FD9BFE93E7

RDN/Qhost-Gen!ba!C74B68E641DE

Downloader-FLN!9CAE65A75614!9CAE65A75614

Generic PUP.x!A8CD2CC81576

Downloader-FLN!DAEE5B2BAD01!DAEE5B2BAD01

RDN/Generic PUP.x!b2i!E9CC027C3AA2

RDN/Generic PUP.x!3703888DD3F8

RDN/Generic.bfr!B5A990E2C206

Generic.bfr!FB3E3819E71E

Adware-FOO!40638FCD5A30!40638FCD5A30

Adware-FOO!78EC6369BFC5!78EC6369BFC5

Downloader-FLN!2BF23240A8C5!2BF23240A8C5

Downloader-FLN!F4D612841210!F4D612841210

Adware-FOO!19CB9AB51AF1!19CB9AB51AF1

RDN/Generic PUP.x!b2i!BE92D8D16892

Generic PUP.x!17846F31FF44

RDN/Generic PUP.x!410941E682B7

RDN/Generic PUP.x!278899E24B6E

RDN/Generic PUP.x!4135259D1C7C

RDN/Generic PUP.x!A7694143E4E4

Generic PUP.x!A5FA50FAAEDA

RDN/Generic Dropper!rq!767B96D50619

RDN/Generic PUP.x!85C7DD19E80E

Generic PUP.x!9FA58DD4F530

Phishing

Lloyds Bank Online

29th September 2013

Internet Banking : View
Balances & Account Activity

Vodafone

29th September 2013

NEW MESSAGE RECEIVED

Natwest Bank

29th September 2013

NatWest: Your account security
is due!

Paypal

29th September 2013

your paypal account have been
limited

Virgin Money plc Online

28th September 2013

Account Limitations Notice.

auto-confirm1218@amazon.co.uk

28th September 2013

YOUR AMAZON.CO.UK ORDER
#RND-7199393-8735453

auto-confirm1216@amazon.co.uk

28th September 2013

YOUR AMAZON.CO.UK ORDER
#N:R-1517783-3092809

auto-confirm1318@amazon.co.uk

28th September 2013

YOUR AMAZON.CO.UK ORDER
#N:A-2408737-4859504

VIRGIN CREDIT CARD

28th September 2013

RE: MBNA CREDIT CARD

Halifax Bank

28th September 2013

Halifax- Online Security Check

Lloyds Banking Group

28th September 2013

ONLINE BANKING : VIEW BALANCES
charset=iso-8859-1">

Amazon

28th September 2013

Your Amazon account is locked!

Barclays Bank

28th September 2013

Re-instate Your Account

Lloyds Bank.

28th September 2013

LLOYDS BANK - EXISTING
CUSTOMER NOTIFICATION

Nationwide Building Society

28th September 2013

NATIONWIDE NEW SEUCITY UPDATE

Tesco Personal Finance

28th September 2013

REDEEM YOUR FREE TESCO VOUCHER

Vulnerebility

Oracle Java SE CVE-2013-0439 Remote JavaFX Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57725

Oracle Java SE CVE-2013-0436 Remote JavaFX Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57721

Oracle Java SE CVE-2013-0430 Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57722

Oracle Java SE CVE-2012-1543 Remote Code Execution Vulnerabilities
2013-09-30
http://www.securityfocus.com/bid/57705

Oracle Java SE CVE-2012-1721 Remote Code Execution Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53959

Oracle Java SE CVE-2012-1722 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53953

Oracle Java SE CVE-2012-1719 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53950

Oracle Java SE CVE-2012-1720 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53956

Oracle Java SE CVE-2012-1718 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53951

Oracle Java SE CVE-2012-1717 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53952

Oracle Java SE CVE-2012-1713 Remote Code Execution Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53946

Oracle Java SE CVE-2013-0438 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57708

Oracle Java SE CVE-2012-1716 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/53947

Oracle Java SE CVE-2013-0434 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57730

Oracle Java SE CVE-2013-0427 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57724

Oracle Java SE CVE-2013-0423 Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57716

Oracle Java SE CVE-2013-0431 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57726

Oracle Java SE CVE-2013-0428 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57713

Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57711

Oracle Java SE CVE-2013-0433 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57719

Oracle Java SE CVE-2013-0429 Remote Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57710

Oracle Java SE CVE-2013-0425 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57709

Oracle Java SE CVE-2013-0424 Remote Java Runtime Environment Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57715

Oracle Java SE CVE-2013-0419 Java Runtime Environment Remote Security Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57714

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/61310

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57778

ProFTPD 'mod_sftp_pam' Remote Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/62328

Apache Tomcat Hash Collision Denial Of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/51200

OpenSSL CVE-2012-2686 Remote Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/57755

OpenSSL CVE-2013-0166 Remote Denial of Service Vulnerability
2013-09-30
http://www.securityfocus.com/bid/60268

Exploit

  Nodejs js-yaml load() Code Exec

  glibc and eglibc 2.5, 2.7, 2.13 - Buffer Overflow Vulnerability

  Tenda W309R Router 5.07.46 - Configuration Disclosure

  Asus RT-N66U 3.0.0.4.374_720 - CSRF Vulnerability

  mod_accounting Module 0.5 - Blind SQL Injection

  XAMPP 1.8.1 (lang.php, WriteIntoLocalDisk method) - Local Write Access Vulnerability

  SimpleRisk 20130915-01 - Multiple Vulnerabilities

27.9.2013

Bugtraq

[SECURITY] [DSA 2765-1] davfs2 security update 2013-09-26
Luciano Bello (luciano debian org)

Re:joomla com_zimbcomment Components Local File Include vulnerability 2013-09-26
Sergio Tam (tam sergio gmail com)

APPLE-SA-2013-09-26-1 iOS 7.0.2 2013-09-26
Apple Product Security (product-security-noreply lists apple com)

ESA-2013-060: EMC VPLEX Information Disclosure Vulnerability 2013-09-26
Security Alert (Security_Alert emc com)

[ISecAuditors Security Advisories] Multiple Reflected Cross-Site Scripting vulnerabilities 2013-09-26
ISecAuditors Security Advisories (advisories isecauditors com)

XAMPP 1.8.1 Local Write Access Vulnerability 2013-09-26
ISecAuditors Security Advisories (advisories isecauditors com)

[ MDVSA-2013:242 ] kernel 2013-09-26
security mandriva com

[SECURITY] [DSA 2764-1] libvirt security update 2013-09-25
Moritz Muehlenhoff (jmm debian org)

joomla com_zimbcomment Components Local File Include vulnerability 2013-09-25
iedb team gmail com

Malware

Generic.bfr!0CFD07BA93F7

RDN/Generic PUP.x!b2c!84A57AFE08BC

Generic PUP.x!DEF5B1C43756

Generic PUP.x!ACD78F8FDFDA

Generic PUP.x!355F813BEA90

Generic PUP.x!F7F20D5DB184

Generic PUP.x!1409DAAC7370

Generic PUP.x!D5249B6C56BB

Generic Dropper!D4A63040F80A

Generic PUP.x!D7E72923F999

RDN/Generic.bfr!4239BC469190

Generic PUP.x!A07D43EAC97E

Generic PUP.x!843C8F6EBE92

RDN/Generic PWS.y!3D1227BA4C2F

Generic PUP.x!EE6CE3F5DBD9

RDN/Generic.bfr!fc!719479F358FA

Generic PUP.x!CC4B97DB1CED

Generic.bfr!1218451110FF

RDN/Generic PUP.x!b2c!446704B88578

RDN/Generic PUP.x!ED4C8070E471

Generic PUP.x!35F04F1864C8

Generic PUP.x!9036A30CD307

Generic.bfr!C373026E7D49

Generic PUP.x!B8B7480617D6

Generic PUP.x!6F9E819E1869

RDN/Generic BackDoor!tr!464EF2E6D472

Generic.bfr!65070875D1D9

Generic PUP.x!1D4DD762FB49

Generic.bfr!10FFC18F31B2

Generic.bfr!E2FC46C68609

Phishing

HSBC Bank plc

27th September 2013

Your Security is Important :
Please Read !

JPMorgan Chase & Co

27th September 2013

You have one Message Alert

Apple

27th September 2013

Your account is temporarily
Iimeted

PayPal

27th September 2013

Your account is limited - take
action now

PayPal

27th September 2013

Your PayPal account is limited
- take action now

Barclays Bank

27th September 2013

YOUR BARCLAYS DEBIT CARD HAS
BEEN BLOCKED

=====DISCOVER HOW YOUR $12 BEC

27th September 2013

Assurant Mobile Job Search

USAA

27th September 2013

Important Message From Usaa

Lloyds TSB

27th September 2013

Improved Banking System

Google

27th September 2013

Important document

Vulnerebility

GnuTLS TLS And DTLS Information Disclosure Vulnerability
2013-09-27
http://www.securityfocus.com/bid/57736

Linux Kernel 'skbuff.c' Local Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61411

Linux Kernel 'madvise_remove()' Function Local Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/55151

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/60254

OpenStack Keystone Token Revocation Failure Security Bypass Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62331

WordPress WP Ultimate Email Marketer Plugin Cross Site Scripting and Security Bypass Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/62621

IBM AIX CVE-2013-4011 Multiple Local Privilege Escalation Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/61287

Puppet CVE-2013-4761 Arbitrary Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61806

Puppet CVE-2013-3567 Remote Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/60664

Puppet CVE-2013-4956 Security Bypass Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61805

Cisco Unified Computing System Identity Validation CVE-2012-4092 Security Bypass Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62653

Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/52161

Linux Kernel CVE-2013-2897 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62044

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62050

Linux Kernel 'perf_event.c' Local Privilege Escalation Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61793

Linux Kernel CVE-2013-4163 Local Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61412

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62049

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62042

Linux Kernel CVE-2013-2899 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62046

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62045

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62048

Nano-10 PLC Modbus Packet Handling Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/61024

Django CVE-2013-1443 Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62409

Django CVE-2013-4315 Directory Traversal Vulnerability
2013-09-27
http://www.securityfocus.com/bid/62332

Monkey HTTP Daemon NULL Byte Denial of Service Vulnerability
2013-09-27
http://www.securityfocus.com/bid/60210

Monkey HTTP Daemon Multiple Denial of Service Vulnerabilities
2013-09-27
http://www.securityfocus.com/bid/60425

Monkey HTTP Daemon 'memcpy()' Function Buffer Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/60333

Oracle Java SE CVE-2012-1713 Remote Code Execution Vulnerability
2013-09-27
http://www.securityfocus.com/bid/53946

Oracle Java SE CVE-2012-0501 Remote Stack Overflow Vulnerability
2013-09-27
http://www.securityfocus.com/bid/52013

Exploit

 

26.9.2013

Bugtraq

[security bulletin] HPSBMU02872 SSRT101185 rev.2 - HP Service Manager, Remote Disclosure of Information, Cross Site Scripting(XSS) 2013-09-25
security-alert hp com

[ MDVSA-2013:241 ] perl-Crypt-DSA 2013-09-25
security mandriva com

[ MDVSA-2013:240 ] glpi 2013-09-25
security mandriva com

Multiple Vulnerabilities in X2CRM 2013-09-25
High-Tech Bridge Security Research (advisory htbridge com)

GreHack 2013 - 15 Nov. Grenoble, France - Conf. Registration OPEN 2013-09-25
Fab Duchene (f duchene grehack org)

[SECURITY] [DSA 2763-1] pyopenssl security update 2013-09-24
Salvatore Bonaccorso (carnil debian org)

CVE-2013-5118 - XSS Good for Enterprise iOS 2013-09-24
mario roblest com

Malware

RDN/Generic PUP.x!b2b!D6E5475A8B8C

Qhost-Gen!6DB53DD00EAD

RDN/PWS-Banker!cs!B118DEA678CE

RDN/Generic.dx!160844D3AAC7

RDN/Generic Dropper!677C4A01377F

RDN/Generic PUP.x!b2b!31D645572C3A

Generic.dx!64D71B59AD34

RDN/Generic BackDoor!936C3FF5F6EB

Generic PWS.y!339A52AFFE49

Generic.dx!6BB1B1F50FBA

Generic StartPage!D17363B1BCE1

FakeSecTool-FAZ!3777CC95F5D3!3777CC95F5D3

RDN/Ransom!357F8CB73B69

Generic PUP.x!D22CB2FA7206

Generic PUP.x!1103D8AFFA0B

RDN/Qhost-Gen!ba!A6B3EA447A07

RDN/Downloader.gen.a!B4093FB913E5

RDN/Qhost-Gen!B96F549400FD

Generic BackDoor!D7F58024911B

RDN/Qhost-Gen!B3596A7A896C

Generic PUP.x!A7196F7715EE

Generic PUP.x!F2D040F04EA3

Generic PUP.x!7684DCB5B636

RDN/Generic PUP.x!b2b!8FEECED06828

FakeSecTool-FAZ!9C989F30846D!9C989F30846D

RDN/Downloader.a!nl!3B2F9824D5FB

RDN/Qhost-Gen!388745EC9FFD

RDN/Qhost-Gen!ba!4818D519AA91

RDN/Generic.tfr!dp!9C8B0A5156BC

RDN/Generic BackDoor!tq!52096EB53EDD

Phishing

Barclays Uk

26th September 2013

NEW MESSAGE

Lloyds TSB PLC

26th September 2013

IMPORTANT INFORMATION
REGARDING INTERNET BANKING

Nationwide Internet Bank

26th September 2013

Nationwide Building Society
customer helpdesk

Nationwide Building Society

26th September 2013

Urgent Notification (Protect
Your online Banking)

Paypal UK

26th September 2013

Online Access Has been
Suspended

PayPal

25th September 2013

PayPal

Lloydstsb

25th September 2013

YOUR ATTENTION IS NEEDED FROM
LLOYDSTSB BANK

Amazon Service

25th September 2013

AMAZON VERIFICATION ON YOUR
ACCOUNT

Lloyds

25th September 2013

ACCOUNT REVIEW NOTIFICATION!

Vulnerebility

HP ArcSight Enterprise Security Manager Management Web Interface Cross Site Scripting Vulnerability
2013-09-26
http://www.securityfocus.com/bid/62540

Perl CGI.pm 'Set-Cookie' and 'P3P' Headers HTTP Header Injection Vulnerability
2013-09-26
http://www.securityfocus.com/bid/56562

ProFTPD Race Condition Local Privilege Escalation Vulnerability
2013-09-26
http://www.securityfocus.com/bid/57172

X.Org libXp CVE-2013-2062 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60131

X.Org libXt CVE-2013-2005 Multiple Memory Corruption Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60133

X.Org libX11 CVE-2013-2004 Multiple Denial of Service Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60146

X.Org libXi CVE-2013-1998 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60127

X.Org libFS 'FSOpenServer()' Memory Corruption Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60130

X.Org libX11 CVE-2013-1997 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60122

X.Org libXi 'XListInputDevices()' Memory Corruption Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60124

X.Org libXinerama 'XineramaQueryScreens()' Function Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60128

X.Org libXt '_XtResourceConfigurationEH()' Function Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60137

X.Org libXext CVE-2013-1982 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60126

X.Org libXi CVE-2013-1984 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60123

X.Org libX11 CVE-2013-1981 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60120

GnuTLS CVE-2013-2116 Out of Bounds Denial of Service Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60215

Perl CVE-2012-5195 Heap-Based Memory Corruption Vulnerability
2013-09-26
http://www.securityfocus.com/bid/56287

LibTIFF 'DOTRANGE' Tags Handling Remote Buffer Overflow Vulnerability
2013-09-26
http://www.securityfocus.com/bid/56715

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability
2013-09-26
http://www.securityfocus.com/bid/57702

Oracle Java SE CVE-2013-0440 Remote Java Runtime Environment Vulnerability
2013-09-26
http://www.securityfocus.com/bid/57712

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-26
http://www.securityfocus.com/bid/57778

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60634

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60627

Cisco IOS And IOS XE CVE-2013-5475 Remote Denial of Service Vulnerability
2013-09-26
http://www.securityfocus.com/bid/62644

X.Org libXfixes 'XFixesGetCursorImage()' Function Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60125

X.Org libXrandr CVE-2013-1986 Multiple Remote Code Execution Vulnerabilities
2013-09-26
http://www.securityfocus.com/bid/60129

X.Org libXv 'XvQueryPortAttributes()' Function Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60143

X.Org libXxf86vm 'XF86VidModeGetGammaRamp()' Function Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60145

X.Org libXcursor '_XcursorFileHeaderCreate()' Function Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60121

X.Org libXtst CVE-2013-2063 Remote Code Execution Vulnerability
2013-09-26
http://www.securityfocus.com/bid/60141

Exploit

 

25.9.2013

Bugtraq

[SECURITY] [DSA 2763-1] pyopenssl security update 2013-09-24
Salvatore Bonaccorso (carnil debian org)

CVE-2013-5118 - XSS Good for Enterprise iOS 2013-09-24
mario roblest com

Re: DC4420 - London DEFCON - September meet - Tuesday 24th September 2013 2013-09-23
Tony Naggs (tonynaggs gmail com)

[IBliss Security Advisory] Cross-site scripting ( XSS ) in Bradesco gateway wordpress plugin 2013-09-23
Alexandro Silva (alexos ibliss com br)

[SECURITY] [DSA 2762-1] icedove security update 2013-09-23
Moritz Muehlenhoff (jmm debian org)

Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-22
iedb team gmail com

Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-21
iedb team gmail com

Malware

RDN/Generic.tfr!EC5F608D53DA

RDN/Qhost-Gen!C72E83C1222D

Generic PUP.x!24E5B097931F

Generic PUP.x!3324B295FA98

RDN/Generic PUP.x!bhz!74E244EADA19

RDN/Generic PUP.x!bhz!9B025A013937

RDN/Generic PUP.x!3BA7D2FCB0DC

RDN/Generic PUP.x!DD096D4CE8EB

RDN/Generic PUP.x!CCF288B868C7

RDN/Generic PUP.x!E2940CBC06D4

RDN/Generic PUP.x!ADAC8F65F2FA

RDN/Downloader.gen.a!89B7C606D71B

RDN/Generic PUP.x!D5ED60BEC296

RDN/Generic PUP.x!4C3E050A91E4

RDN/Generic.dx!crc!9B4066E34CBA

RDN/Generic PUP.x!C44979C64EB6

RDN/Generic PUP.x!2C2DC8D2F232

RDN/Generic PUP.x!E544D4D1587C

RDN/Generic PUP.x!bhz!B5F7892AD7B5

Generic PUP.x!BF8A46173369

Generic PUP.x!6F8AE7F4B060

Generic PUP.x!2705EF2FD7A0

RDN/Generic PUP.x!6ADE270EC864

RDN/Generic PUP.x!E91F6080EAFF

RDN/Generic PUP.x!F5EE354688A5

RDN/Generic PWS.y!FFEAD3FD509E

Generic PUP.x!AF3D1B23F6F6

RDN/Generic BackDoor.bfr!9BC39D7CBC9B

Generic PUP.x!A23B3770FA51

RDN/Generic.dx!D8BC0CA6EC8C

Phishing

 

Vulnerebility

ZeroShell 'cgi-bin/kerbynet' Local File Disclosure Vulnerability
2013-09-25
http://www.securityfocus.com/bid/61771

Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
2013-09-25
http://www.securityfocus.com/bid/36935

ProFTPD Prior To 1.3.3g Use-After-Free Remote Code Execution Vulnerability
2013-09-25
http://www.securityfocus.com/bid/50631

ProFTPD 'mod_sql' Remote Heap Based Buffer Overflow Vulnerability
2013-09-25
http://www.securityfocus.com/bid/44933

ProFTPD Multiple Remote Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/44562

ProFTPD 'mod_sftp_pam' Remote Denial of Service Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62328

ProFTPD 'mod_sftp' Module Integer Overflow Vulnerability
2013-09-25
http://www.securityfocus.com/bid/46183

Ubuntu 'rtkit' Package CVE-2013-4326 Local Security Bypass Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62505

MoinMoin CVE-2012-6495 Multiple Directory Traversal Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/57147

MoinMoin CVE-2012-6082 Cross-Site Scripting Vulnerability
2013-09-25
http://www.securityfocus.com/bid/57089

MoinMoin wiki CVE-2012-6080 Directory Traversal Vulnerability
2013-09-25
http://www.securityfocus.com/bid/57076

MoinMoin CVE-2012-6081 Multiple Arbitrary Code Execution Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/57082

GNU ZRTP CVE-2013-2223 Information Disclosure Vulnerability
2013-09-25
http://www.securityfocus.com/bid/60871

GNU ZRTP CVE-2013-2222 Multiple Stack Buffer Overflow Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/60873

GNU ZRTP 'ZRtp::storeMsgTemp()' Function Heap Buffer Overflow Vulnerability
2013-09-25
http://www.securityfocus.com/bid/60872

Django CVE-2013-4315 Directory Traversal Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62332

Django CVE-2013-1443 Denial of Service Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62409

Cisco Unified Computing System CVE-2012-4089 Local Command Injection Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62619

Samba CVE-2013-4124 Local Denial of Service Vulnerability
2013-09-25
http://www.securityfocus.com/bid/61597

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-25
http://www.securityfocus.com/bid/57778

pyOpenSSL SSL Client Certificate Validation Security Bypass Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62258

libupnp Multiple Buffer Overflow Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/57602

Cisco MediaSense CVE-2013-5502 Information Disclosure Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62601

IBM AIX CVE-2013-4011 Multiple Local Privilege Escalation Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/61287

LibRaw CVE-2013-1439 Multiple NULL Pointer Dereference Denial of Service Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/62057

LibRaw CVE-2013-1438 Multiple NULL Pointer Dereference Denial of Service Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/62060

Sophos UTM WebAdmin Unspecified Security Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62417

Multiple IBM Products CVE-2013-4025 Local Information Disclosure Vulnerability
2013-09-25
http://www.securityfocus.com/bid/62604

Apache Subversion CVE-2013-2112 Remote Denial of Service Vulnerability
2013-09-25
http://www.securityfocus.com/bid/60264

RaidSonic IB-NAS5220 and IB-NAS4220-B Multiple Security Vulnerabilities
2013-09-25
http://www.securityfocus.com/bid/57958

Exploit

  Good for Enterprise 2.2.2.1611 - XSS Vulnerability

  X2CRM 3.4.1 - Multiple Vulnerabilities

  ZeroShell 'cgi-bin/kerbynet' - Local File Disclosure Vulnerability

24.9.2013

Bugtraq

[IBliss Security Advisory] Cross-site scripting ( XSS ) in Bradesco gateway wordpress plugin 2013-09-23
Alexandro Silva (alexos ibliss com br)

[SECURITY] [DSA 2762-1] icedove security update 2013-09-23
Moritz Muehlenhoff (jmm debian org)

Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-22
iedb team gmail com

Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-21
iedb team gmail com

[ANN] Struts 2.3.15.2 GA release available - security fix 2013-09-21
Lukasz Lenart (lukaszlenart apache org) (1 replies)

Re: [ANN] Struts 2.3.15.2 GA release available - security fix 2013-09-23
Emi Lu (emilu encs concordia ca)

Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-21
iedb team gmail com

Malware

PWS-Zbot-FCZA!2612B4BB0ED5!2612B4BB0ED5

Generic PUP.x!29DC5D1A11FE

Generic PUP.x!0EF227C77D03

PWS-Zbot-FCZA!265F8EE18091!265F8EE18091

Generic.bfr!61772CDB4418

PWS-Zbot-FBFW!9F1868332CBF!9F1868332CBF

RDN/Generic.tfr!dp!B256A32071E0

PWS-Zbot-FCZA!9E3D1380F6A2!9E3D1380F6A2

Generic PUP.x!61153EF8605D

Generic.bfr!7428BA323EE6

Generic.bfr!F93E7A874BF5

Generic.bfr!0BB2AF4B1E53

RDN/Generic Dropper!ro!A6B79A6D486B

PWS-Zbot-FCZA!2E4A3AE1B9C9!2E4A3AE1B9C9

Generic PUP.x!4464A63183B6

Generic.bfr!88B73D6F99FC

Generic.bfr!8A772A9E7671

Generic PUP.x!B7D704C35DEF

PWS-Zbot-FBFW!2E5CB008E0C2!2E5CB008E0C2

PWS-Zbot-FCZA!30E27C7BE8E9!30E27C7BE8E9

Generic PWS.y!4089EBDB404E

PWS-Zbot-FCZA!6FBEA9DF85B5!6FBEA9DF85B5

PWS-Zbot-FBFW!6EE759D1E3A4!6EE759D1E3A4

Generic PUP.x!0E26B8D95185

Generic PUP.x!66A1A1F1ADAD

PWS-Zbot-FCZA!6A121AA961A7!6A121AA961A7

PWS-Zbot-FCZA!6D04E45044B5!6D04E45044B5

PWS-Zbot-FCZA!6CD21282E4F5!6CD21282E4F5

PWS-Zbot-FBFW!6B793558CA73!6B793558CA73

PWS-Zbot-FCZA!6C205E87073C!6C205E87073C

Phishing

 

Vulnerebility

RaidSonic IB-NAS5220 and IB-NAS4220-B Multiple Security Vulnerabilities
2013-09-24
http://www.securityfocus.com/bid/57958

TLS Protocol CVE-2012-4929 Information Disclosure Vulnerability
2013-09-24
http://www.securityfocus.com/bid/55704

Apache And Microsoft IIS Range Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/21865

Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/61129

Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
2013-09-24
http://www.securityfocus.com/bid/59826

Apache Subversion CVE-2013-2088 Command Injection Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60265

Apache Subversion CVE-2013-1884 Remote Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/58898

Apache Subversion 'mod_dav_svn/lock.c' Remote Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/58897

Subversion 'mod_dav_svn' Apache Server NULL Pointer Dereference Denial Of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/46734

Apache Subversion 'mod_dav_svn' Remote Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/58895

Apache Subversion CVE-2013-1968 Remote Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60267

Subversion 'mod_dav_svn' CVE-2013-1845 Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/58896

Apache Subversion 'svn_fs_file_length()' Remote Denial of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/58323

Subversion 'mod_dav_svn' Multiple Denial of Service and Information Disclosure Vulnerabilities
2013-09-24
http://www.securityfocus.com/bid/48091

Apache Subversion CVE-2013-4131 Denial Of Service Vulnerability
2013-09-24
http://www.securityfocus.com/bid/61454

Apache Subversion CVE-2013-4277 Insecure Temporary File Creation Vulnerability
2013-09-24
http://www.securityfocus.com/bid/62266

Apache Subversion Server Component Multiple Remote Denial Of Service Vulnerabilities
2013-09-24
http://www.securityfocus.com/bid/45655

Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
2013-09-24
http://www.securityfocus.com/bid/51046

SPICE CVE-2013-4130 Multiple Denial of Service Vulnerabilities
2013-09-24
http://www.securityfocus.com/bid/61192

Moodle CVE-2013-4313 SQL Injection Vulnerability
2013-09-24
http://www.securityfocus.com/bid/62410

Moodle 'external.php' CVE-2013-5674 PHP Object Injection Vulnerability
2013-09-24
http://www.securityfocus.com/bid/62412

Moodle CVE-2013-4341 Multiple Cross Site Scripting Vulnerabilities
2013-09-24
http://www.securityfocus.com/bid/62411

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60640

PolicyKit CVE-2013-4288 Local Privilege Escalation Vulnerability
2013-09-24
http://www.securityfocus.com/bid/62511

Tinyproxy 'conf.c' Integer Overflow Security Bypass Vulnerability
2013-09-24
http://www.securityfocus.com/bid/47715

Tinyproxy ACL Security Bypass Vulnerability
2013-09-24
http://www.securityfocus.com/bid/47276

Oracle Java SE CVE-2013-2473 Buffer Overflow Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60623

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60618

Oracle Java SE CVE-2013-3744 Remote Security Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60654

Oracle Java SE CVE-2013-2458 Remote Security Vulnerability
2013-09-24
http://www.securityfocus.com/bid/60652

Exploit

  Raidsonic NAS Devices Unauthenticated Remote Command Execution

  Raidsonic NAS Devices Unauthenticated Remote Command Execution

23.9.2013

Bugtraq

[security bulletin] HPSBST02919 rev.1 - HP XP P9000 Command View Advanced Edition Suite Software, Remote Cross Site Scripting (XSS) 2013-09-20
security-alert hp com

APPLE-SA-2013-09-20-1 Apple TV 6.0 2013-09-20
Apple Product Security (product-security-noreply lists apple com)

Monstra CMS v1.2.0 - Blind SQL Injection Vulnerability 2013-09-20
Vulnerability Lab (research vulnerability-lab com)

Malware

RDN/Generic PWS.y!01846A98D527

RDN/Generic Dropper!ro!B19335B6BA5A

RDN/Generic Downloader.x!in!A81E1F940FD1

Generic PUP.x!D4BAF1E039F5

RDN/Spybot.bfr!h!34C680E1207E

RDN/Generic.grp!FA9B8BA7E5B2

RDN/Generic.grp!1814744D798E

RDN/Generic.dx!cr3!D7ABD818EEFD

RDN/Generic PUP.x!bh3!F1C0695E35C1

RDN/Autorun.worm!cw!5FCB3234EEE3

Generic.bfr!CDA977F32F4F

Generic PUP.x!5F075706FF32

Generic PUP.x!316CFC7F5F76

RDN/Generic BackDoor!tp!7B1699BEDF42

RDN/Generic PUP.x!bh3!4C00D421C302

Generic PUP.x!C8C8D070FA66

RDN/Generic Dropper!840F6DB99AA2

RDN/Generic Dropper!ro!C4B47DE355AA

RDN/FakeAlert-HDD!1814744D798E

RDN/Generic PUP.x!bh3!F46DA3AB7B30

Generic PUP.x!A8103FCC9BAD

Generic PUP.x!022C0F327F3D

RDN/Generic.bfr!fb!DBB9D65FDAE7

RDN/Generic.grp!fy!16768E91C177

RDN/Generic PUP.x!bh3!306397254CA2

RDN/Generic PUP.x!bh3!E78CB2026ECC

Generic PUP.x!ECD7A013BB47

RDN/Generic PUP.x!bh3!CF2671DB9C0C

RDN/Generic PUP.x!bh3!4F8AAC9CE90F

Generic PUP.x!BC6E346E5FB3

Phishing

 

Vulnerebility

Google Chrome Prior to 21.0.1180.89 Multiple Security Vulnerabilities
2013-09-23
http://www.securityfocus.com/bid/55331

WebKit CVE-2013-0993 Unspecified Memory Corruption Vulnerability
2013-09-23
http://www.securityfocus.com/bid/59954

Apple iPhone/iPad/iPod touch Prior to iOS 7 CVE-2013-5142 Information Disclosure Vulnerabilities
2013-09-23
http://www.securityfocus.com/bid/62522

Google Chrome Prior to 19 Multiple Security Vulnerabilities
2013-09-23
http://www.securityfocus.com/bid/53540

WebKit CVE-2013-1038 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62565

Google Chrome and Mozilla Firefox Browser Cookie Verification Security Weakness
2013-09-21
http://www.securityfocus.com/bid/58857

WebKit CVE-2013-1011 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59974

WebKit CVE-2013-5126 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62567

WebKit CVE-2013-5125 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62560

WebKit CVE-2013-1047 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62563

WebKit CVE-2013-5127 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62568

WebKit CVE-2013-1046 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62559

Google Chrome Prior to 27.0.1453.93 CVE-2013-2842 Use-After-Free Remote Code Execution Vulnerability
2013-09-21
http://www.securityfocus.com/bid/60067

WebKit CVE-2013-1037 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62551

WebKit CVE-2013-1045 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62558

WebKit CVE-2013-1010 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59976

WebKit CVE-2013-1008 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59977

WebKit CVE-2013-1041 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62556

WebKit CVE-2013-1040 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62554

WebKit CVE-2013-1039 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62553

WebKit CVE-2013-1042 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62557

WebKit CVE-2013-1044 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62571

RETIRED: Microsoft .NET Framework 'SaveAs()' Function Security Bypass Vulnerability
2013-09-21
http://www.securityfocus.com/bid/50110

WebKit CVE-2013-1043 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/62570

WebKit CVE-2013-1007 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59970

WebKit CVE-2013-1006 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59973

WebKit CVE-2013-1004 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59971

WebKit CVE-2013-1005 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59972

WebKit CVE-2013-0996 Unspecified Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59957

WebKit CVE-2013-0998 Memory Corruption Vulnerability
2013-09-21
http://www.securityfocus.com/bid/59959

Exploit

    CA BrightStor ARCserve Tape Engine 0x8A Buffer Overflow

  MS13-069 Microsoft Internet Explorer CCaret Use-After-Free

  MS13-071 Microsoft Windows Theme File Handling Arbitrary Code Execution

  GLPI install.php Remote Command Execution

  Linksys WRT110 Remote Command Execution

  Wordpress NOSpamPTI Plugin - Blind SQL Injection

  Linux/x86 Multi-Egghunter

Wordpress Lazy SEO plugin Shell Upload Vulnerability

  SolarWinds Server and Application Monitor ActiveX (Pepco32c) Buffer Overflow

  Share KM 1.0.19 - Remote Denial Of Service

20.9.2013

Bugtraq

Paypal Inc Bug Bounty #99 - Filter Bypass & Persistent Web Vulnerability 2013-09-20
Vulnerability Lab (research vulnerability-lab com)

[security bulletin] HPSBGN02925 rev.1 - HP IceWall SSO, IceWall File Manager and IceWall Federation Agent, Multiple Remote Unauthorized Access Vulnerabilities 2013-09-20
security-alert hp com

[SECURITY] [DSA 2761-1] puppet security update 2013-09-19
Raphael Geissert (geissert debian org)

[security bulletin] HPSBGN02923 rev.1 - HP ArcSight Enterprise Security Manager Management Web Interface, Remote Cross Site Scripting (XSS) 2013-09-19
security-alert hp com

[ MDVSA-2013:239 ] wordpress 2013-09-19
security mandriva com

[ MDVSA-2013:238 ] wireshark 2013-09-19
security mandriva com

[PT-2013-41] Arbitrary Code Execution in Ajax File and Image Manager 2013-09-19
noreply ptsecurity ru

An Analysis of the (In)Security State of the GameHouse Game Installation Mechanism 2013-09-19
RBS Research (research riskbasedsecurity com)

[slackware-security] glibc (SSA:2013-260-01) 2013-09-18
Slackware Security Team (security slackware com)

[security bulletin] HPSBMU02900 rev.3 - HP System Management Homepage (SMH) running on Linux and Windows, Multiple Remote and Local Vulnerabilities 2013-09-18
security-alert hp com

Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability 2013-09-18
Vulnerability Lab (research vulnerability-lab com)

CVE-2013-5210 Adtran Netvanta Remote Code Injection via XSS 2013-09-18
J. Oquendo (joquendo e-fensive net)

Malware

RDN/Generic BackDoor!tn!AD961C618680

Generic PUP.x!00BD8DA3A86B

Generic PUP.x!D8D9909CCF83

Generic PUP.x!591FAF5A9B51

RDN/Generic BackDoor!tn!486ACA604DBD

RDN/Generic PUP.x!7BC6E2A1F756

RDN/Generic PUP.x!bh3!92D4D1C7D2D8

Generic PUP.x!F5A74D7986A6

RDN/Generic Dropper!EBD505748D5F

Generic Downloader.x!AAC5065B6D1A

Generic PUP.x!3FE0074BED98

RDN/Generic Dropper!94940E843381

RDN/Generic.bfr!fb!05796A513B47

Generic PUP.x!79E3EC606444

RDN/Generic Dropper!FEA9462F8163

RDN/Generic PUP.x!bh3!AC858FD0100D

RDN/Generic PUP.x!7A49424ADC24

Generic Downloader.x!BB09BB12165B

Generic PUP.x!10BAB0591DAE

RDN/Generic PUP.z!dh!39E08945B3DD

RDN/Generic PUP.x!C42DF0AF39B2

Generic.bfr!D5CF0102303C

Generic.bfr!6952135F6B87

RDN/Generic Dropper!1A94CDD90874

RDN/Generic PUP.x!bh3!3037326670ED

Generic PUP.x!D5BFE7D8E7D3

Generic Downloader.x!738E451C9DD5

RDN/Generic PUP.x!bh3!F88E6A028C37

Generic PUP.x!F558FDC33777

RDN/Downloader.a!nk!B37E4FE07510

Phishing

 

Vulnerebility

Puppet CVE-2013-4761 Arbitrary Code Execution Vulnerability
2013-09-20
http://www.securityfocus.com/bid/61806

Puppet CVE-2013-4956 Security Bypass Vulnerability
2013-09-20
http://www.securityfocus.com/bid/61805

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1732 Buffer Overflow Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62469

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1736 Remote Memory Corruption Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62478

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1737 Security Bypass Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62475

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1728 Security Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62468

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1722 Remote Code Execution Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62460

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1719 Remote Memory Corruption Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62462

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1720 Heap Buffer Overflow Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62465

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1725 Remote Memory Corruption Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62467

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1738 Remote Code Execution Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62466

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1735 Remote Memory Corruption Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62479

Mozilla Firefox CVE-2013-1729 Information Disclosure Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62474

Mozilla Firefox/SeaMonkey CVE-2013-1721 Integer Overflow Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62470

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1726 Security Bypass Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62482

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1724 Remote Code Execution Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62464

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1718 Remote Memory Corruption Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62463

HP Linux Imaging and Printing System polkit Local Security Bypass Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62499

PolicyKit CVE-2013-4288 Local Privilege Escalation Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62511

libvirt 'remoteDispatchDomainMemoryStats()' Denial of Service Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62510

libvirt CVE-2013-4311 Local Security Bypass Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62508

Microsoft Access CVE-2013-3155 Memory Corruption Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62229

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1730 Remote Code Execution Vulnerability
2013-09-20
http://www.securityfocus.com/bid/62473

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-20
http://www.securityfocus.com/bid/57778

Oracle Java SE CVE-2013-0440 Remote Java Runtime Environment Vulnerability
2013-09-20
http://www.securityfocus.com/bid/57712

IBM SPSS Data Collection CVE-2013-0464 Cross Site Scripting Vulnerability
2013-09-20
http://www.securityfocus.com/bid/60246

IBM Data Studio CVE-2013-0467 Information Disclosure Vulnerability
2013-09-20
http://www.securityfocus.com/bid/58000

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-09-20
http://www.securityfocus.com/bid/60107

Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability
2013-09-20
http://www.securityfocus.com/bid/57702

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-09-20
http://www.securityfocus.com/bid/60634

Exploit

  Western Digital Arkeia Remote Code Execution

  OpenEMR 4.1.1 Patch 14 SQLi Privilege Escalation Remote Code Execution

19.9.2013

Bugtraq

[ MDVSA-2013:239 ] wordpress 2013-09-19
security mandriva com

[ MDVSA-2013:238 ] wireshark 2013-09-19
security mandriva com

[PT-2013-41] Arbitrary Code Execution in Ajax File and Image Manager 2013-09-19
noreply ptsecurity ru

An Analysis of the (In)Security State of the GameHouse Game Installation Mechanism 2013-09-19
RBS Research (research riskbasedsecurity com)

[slackware-security] glibc (SSA:2013-260-01) 2013-09-18
Slackware Security Team (security slackware com)

[security bulletin] HPSBMU02900 rev.3 - HP System Management Homepage (SMH) running on Linux and Windows, Multiple Remote and Local Vulnerabilities 2013-09-18
security-alert hp com

Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability 2013-09-18
Vulnerability Lab (research vulnerability-lab com)

CVE-2013-5210 Adtran Netvanta Remote Code Injection via XSS 2013-09-18
J. Oquendo (joquendo e-fensive net)

APPLE-SA-2013-09-18-3 Xcode 5.0 2013-09-18
Apple Product Security (product-security-noreply lists apple com)

[security bulletin] HPSBUX02927 SSRT101288 rev.1 - HP-UX Apache Web Server, Remote Execution of Arbitrary Code, Denial of Service (DoS) 2013-09-18
security-alert hp com

APPLE-SA-2013-09-18-2 iOS 7 2013-09-18
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2013-09-18-1 iTunes 11.1 2013-09-18
Apple Product Security (product-security-noreply lists apple com)

Cisco Security Advisory: Cisco Prime Central for Hosted Collaboration Solution Assurance Unauthenticated Username and Password Enumeration Vulnerability 2013-09-18
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager 2013-09-18
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[security bulletin] HPSBMU02917 rev.1 - HP System Management Homepage (SMH) running on Linux and Windows, Remote Command Execution and Privilege Escalation 2013-09-18
security-alert hp com

[SECURITY] [DSA 2760-1] chrony security update 2013-09-18
Moritz Muehlenhoff (jmm debian org)

[SECURITY] [DSA 2759-1] iceweasel security update 2013-09-18
Moritz Muehlenhoff (jmm debian org)

SQL Injection in vtiger CRM 2013-09-18
High-Tech Bridge Security Research (advisory htbridge com)

Malware

Generic PUP.x!651375EC31D7

Generic PUP.x!736D95B8BB9D

Generic PUP.x!A1829EBC845B

Generic PUP.x!21F2915B9148

Generic PUP.x!EF70E6FA3A19

Generic PUP.x!A771266A4003

Generic PUP.x!38EC1DF44486

Generic PUP.x!CAB0D8E05703

Generic PUP.x!2CE58D6C818A

Generic PUP.x!56433D88A9CB

Generic PUP.x!39A76665D029

Generic PUP.x!39BEBE841060

Generic PUP.x!FDE34437E727

Generic PUP.x!1A201788B021

Generic PUP.x!59024E278147

Generic PUP.x!4F492214DBE0

Generic PUP.x!8538A5329153

Generic PUP.x!2D1342638378

Generic PUP.x!266A79E6CEBF

Generic PUP.x!280349E6BFA8

Generic PUP.x!98522B2BD5CD

Generic PUP.x!D9C5568D3F1A

Generic PUP.x!939587B6A9C3

Generic PUP.x!5471779683CC

Generic PUP.x!7EB9ABE7AAB9

Generic PUP.x!2BABD978624C

Generic PUP.x!1F99CF207411

Generic PUP.x!7042A6864523

Generic PUP.x!1D6E79D822A3

Generic PUP.x!FEB10603CD9F

Phishing

 

Vulnerebility

Oracle Java SE CVE-2013-1557 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59170

Microsoft ATL/MFC Trace Tool 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/42811

Ubuntu 'Jockey' Package CVE-2013-1065 Local Security Bypass Vulnerability
2013-09-19
http://www.securityfocus.com/bid/62507

Ubuntu 'systemd' Package CVE-2013-4327 Local Security Bypass Vulnerability
2013-09-19
http://www.securityfocus.com/bid/62503

Cisco Unified Computing System CVE-2012-4081 Local Denial of Service Vulnerability
2013-09-19
http://www.securityfocus.com/bid/62488

Oracle Java SE CVE-2013-1558 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59219

Oracle Java SE CVE-2013-2429 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59184

Oracle Java SE CVE-2013-2417 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59187

Oracle Java SE CVE-2013-2438 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59185

Oracle Java SE CVE-2013-2426 Multiple Remote Code Execution Vulnerabilities
2013-09-19
http://www.securityfocus.com/bid/59206

Oracle Java SE CVE-2013-1518 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59141

Oracle Java SE CVE-2013-2418 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59145

Oracle Java SE CVE-2013-2433 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59220

Oracle Java SE CVE-2013-2430 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59243

Oracle Java SE CVE-2013-2436 Security Bypass Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59213

Oracle Java SE CVE-2013-1537 Remote Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59194

Oracle Java SE CVE-2013-2431 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59165

Oracle Java SE CVE-2013-2440 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59124

Oracle Java SE CVE-2013-1569 Stack Buffer Overflow Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59166

Oracle Java SE CVE-2013-2432 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59154

Oracle Java SE CVE-2013-2435 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59089

Oracle Java SE CVE-2013-2383 Remote Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59190

Oracle Java SE CVE-2013-2384 Remote Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59179

Oracle Java SE CVE-2013-2434 Remote Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59137

Oracle Java SE CVE-2013-1563 Remote Java Runtime Environment Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59208

Ubuntu 'software-properties' Package Local Security Bypass Vulnerability
2013-09-19
http://www.securityfocus.com/bid/62504

Ubuntu 'rtkit' Package CVE-2013-4326 Local Security Bypass Vulnerability
2013-09-19
http://www.securityfocus.com/bid/62505

Ubuntu 'language-selector' Package Local Security Bypass Vulnerability
2013-09-19
http://www.securityfocus.com/bid/62500

Oracle Java SE CVE-2013-1491 Remote Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/58493

Oracle Java SE CVE-2013-2419 Remote Code Execution Vulnerability
2013-09-19
http://www.securityfocus.com/bid/59131

Exploit

  Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability

  TeraCopy 2.3 (default.mo) Language File Integer Overflow Vulnerability

18.9.2013

Bugtraq

[SECURITY] [DSA 2758-1] python-django security update 2013-09-17
Salvatore Bonaccorso (carnil debian org)

APPLE-SA-2013-09-17-1 OS X Server v2.2.2 2013-09-17
Apple Product Security (product-security-noreply lists apple com)

[ MDVSA-2013:236 ] subversion 2013-09-17
security mandriva com

EarthVPN certificate configuration vulnerabilities 2013-09-17
y6whynrzab snkmail com

Malware

RDN/Generic.dx!cq3!9BF887847DC9

Generic PUP.x!477339F2DD31

RDN/Generic Dropper!rn!58159C567EF3

RDN/Generic.dx!D13EC446DF78

Generic PUP.x!5F455B94CE97

RDN/Generic Downloader.x!im!746D46DDACCE

RDN/Generic PUP.x!bhs!1D7F12A14059

Generic PUP.x!1B2B4CCB4D18

Generic PUP.x!2267D7011062

Generic Downloader.x!141EE2DBE68A

Generic.bfr!1D55207E9023

Generic PUP.x!18932F89DA8A

Generic PUP.x!0FEDBA26ED0C

Generic Downloader.x!FC7EA6A2B7A4

Generic PUP.x!E4476355580D

RDN/Generic.dx!cq3!CE79790F156F

Generic PUP.x!B7AE64EAD556

RDN/Generic Downloader.x!im!9B94B698DFC2

Generic PUP.x!9820C86CA83E

RDN/Generic PWS.y!ut!7CB5267EA3C1

RDN/Generic.dx!4563DABD66C0

RDN/Generic PWS.y!ut!7400C34ED0F4

Generic PUP.x!0C955922DBD9

Generic PUP.x!015248D62336

Generic PUP.x!C302FA697C22

Generic PUP.x!B3F8ACBFA74F

Generic PUP.x!B03CD8BBBA22

Ransom-FAC!B0A011D9E203!B0A011D9E203

RDN/Generic BackDoor!tm!A36B706C2D87

RDN/Generic.dx!172115ABCB34

Phishing

 

Vulnerebility

Red Hat JBoss Enterprise Application Platform CVE-2013-2185 Arbitrary File Upload Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62156

PostgreSQL CVE-2013-1901 Security Bypass Vulnerability
2013-09-18
http://www.securityfocus.com/bid/58878

Linux Kernel CVE-2013-2891 Heap Buffer Overflow Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62047

Linux Kernel CVE-2013-2894 Heap Buffer Overflow Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62052

ClamAV CVE-2013-2021 Remote Code Execution Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60118

ClamAV Remote Code Execution And Denial of Service Vulnerabilities
2013-09-18
http://www.securityfocus.com/bid/59434

Django CVE-2013-1443 Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62409

PostgreSQL 'contrib/pgcrypto' Functions Information Disclosure Weakness
2013-09-18
http://www.securityfocus.com/bid/58879

PostgreSQL CVE-2013-1899 Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/58876

Adobe Flash Player and AIR CVE-2013-3362 Remote Memory Corruption Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62294

Multiple Asterisk Products Invalid SDP Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62022

Multiple Asterisk Products SIP ACK With SDP Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62021

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60638

Linux Kernel CVE-2013-2892 Heap Buffer Overflow Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62049

pyrad Password Hash Information Disclosure Vulnerability and Packet Spoofing Vulnerability
2013-09-18
http://www.securityfocus.com/bid/57984

Oracle Java SE CVE-2013-2454 Remote Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60650

Linux Kernel CVE-2013-2893 Heap Buffer Overflow Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62050

Oracle Java SE CVE-2013-2459 Remote Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60647

Linux Kernel CVE-2013-2896 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62048

Linux Kernel CVE-2013-2899 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62046

Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62043

Linux Kernel CVE-2013-2897 Heap Buffer Overflow Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62044

Linux Kernel CVE-2013-2895 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62045

Linux Kernel CVE-2013-2889 Heap Buffer Overflow Vulnerability
2013-09-18
http://www.securityfocus.com/bid/62042

Oracle Java SE CVE-2013-2467 Local Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60649

Oracle Java SE CVE-2013-2461 Remote Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60645

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60634

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60618

Oracle Java SE CVE-2013-2445 Remote Security Vulnerability
2013-09-18
http://www.securityfocus.com/bid/60639

Wireshark Multiple Denial of Service Vulnerabilities
2013-09-18
http://www.securityfocus.com/bid/61471

Exploit

 

17.9.2013

Bugtraq

[ MDVSA-2013:235 ] mediawiki 2013-09-16
security mandriva com

Botconf 2013 - Pre-programme pubished & registration open (Nantes, France, 5-6/12/2013) 2013-09-15
Eric Freyssinet (eric freyssinet gmail com)

OWASP ESAPI Security Advisory: MAC Bypass in ESAPI Symmetric Encryption 2013-09-15
Kevin W. Wall (kevin w wall gmail com)

Malware

RDN/Generic.bfr!fb!34F6ACD618A9

RDN/Generic PUP.x!12C57800867E

W32/Spybot.bfr!E9A5C8E12495

Generic.dx!C13EAD70B298

RDN/Generic.bfr!fb!5382482ABE5F

RDN/Generic.bfr!fb!D13D07854B4C

RDN/Generic.bfr!fb!4C8DF84D4E52

RDN/Generic.bfr!fb!584909CED393

RDN/Generic.bfr!54D15A2F4779

Ransom-FAC!9DE9BBC6678F!9DE9BBC6678F

RDN/Generic BackDoor!tm!7506F0A8687F

RDN/Generic.bfr!fb!10FCA9FBA83C

Generic.bfr!5921C2E2F7F4

RDN/Generic Dropper!rn!D890F6612F3B

RDN/Generic PUP.x!bhs!FF72DD6C20EC

RDN/Generic.dx!cqs!F4DAE4801E17

RDN/Generic PUP.x!bhs!4825E938AA09

RDN/Generic PUP.x!bhs!EE9065F3D07A

W32/Spybot.bfr!E272892D2966

RDN/Generic BackDoor!tm!27183A48B62A

RDN/Generic PUP.x!bhs!E84FC2EC34BD

RDN/Autorun.bfr!d!9258B87E17A2

W32/Spybot.bfr!B77843F50D32

W32/Spybot.bfr!4E451B5756DB

RDN/Generic.bfg!c!AFB6AF529304

RDN/Generic PUP.x!bhs!245005701ADE

RDN/Generic.dx!cqs!76D2BEB6C9E2

Generic PUP.x!F7CD1851A06B

RDN/Generic PUP.x!bhs!1DA387A198BD

RDN/Generic.bfr!fb!FC0BB9E53953

Phishing

 

Vulnerebility

Moodle 'external.php' CVE-2013-5674 PHP Object Injection Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62412

RETIRED: Adobe Reader and Acrobat APSB13-22 Prenotification Multiple Vulnerabilities
2013-09-17
http://www.securityfocus.com/bid/62234

RETIRED: Adobe Acrobat and Reader APSB13-22 Multiple Remote Code Execution Vulnerabilities
2013-09-17
http://www.securityfocus.com/bid/62293

Adobe Flash Player and AIR CVE-2013-1380 Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/58949

Xen Page Reference Counting CVE-2013-1432 Denial of Service Vulnerability
2013-09-17
http://www.securityfocus.com/bid/60799

Adobe Flash Player CVE-2013-3347 Integer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/61048

Adobe Flash Player CVE-2013-3345 Unspecified Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/61045

Adobe Flash Player and AIR CVE-2013-3363 Remote Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62295

Adobe Flash Player and AIR CVE-2013-3361 Remote Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62290

Adobe Flash Player and AIR CVE-2013-2728 Remote Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/59889

Adobe Flash Player and AIR CVE-2013-5324 Remote Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62296

Adobe Flash Player and AIR CVE-2013-3343 Remote Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/60478

Adobe Flash Player CVE-2013-3344 Unspecified Heap Buffer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/61043

Adobe Flash Player and AIR CVE-2013-3362 Remote Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62294

Adobe Flash Player and AIR CVE-2013-2555 Remote Integer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/58396

Adobe Flash Player and AIR CVE-2013-1375 Remote Heap Based Buffer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/58439

Adobe Flash Player and AIR CVE-2013-1372 Buffer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/57912

Adobe Flash Player and AIR CVE-2013-1373 Buffer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/57917

Adobe Flash Player and AIR CVE-2013-1374 Use After Free Remote Code Execution Vulnerability
2013-09-17
http://www.securityfocus.com/bid/57932

Adobe Flash Player and AIR CVE-2013-1378 Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/58947

Adobe Flash Player and AIR CVE-2013-1371 Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/58438

Adobe Flash Player and AIR CVE-2013-1379 Memory Corruption Vulnerability
2013-09-17
http://www.securityfocus.com/bid/58951

Mediawiki CVE-2013-4302 Multiple Cross Site Request Forgery Vulnerabilities
2013-09-17
http://www.securityfocus.com/bid/62215

Django CVE-2013-4315 Directory Traversal Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62332

Mediawiki CVE-2013-4303 Cross Site Scripting Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62194

pyOpenSSL SSL Client Certificate Validation Security Bypass Vulnerability
2013-09-17
http://www.securityfocus.com/bid/62258

libmodplug CVE-2013-4234 Multiple Heap Buffer Overflow Vulnerabilities
2013-09-17
http://www.securityfocus.com/bid/61714

libmodplug CVE-2013-4233 Integer Overflow Vulnerability
2013-09-17
http://www.securityfocus.com/bid/61713

Oracle Java SE CVE-2013-2462 Remote Security Vulnerability
2013-09-17
http://www.securityfocus.com/bid/60630

IBM Java CVE-2013-3006 Unspecified Arbitrary Code Execution Vulnerability
2013-09-17
http://www.securityfocus.com/bid/61302

Exploit

  PCMAN FTP 2.07 STOR Command - Stack Overflow Exploit (MSF)

  Oracle Java ShortComponentRaster.verify() Memory Corruption

  D-Link Devices UPnP SOAP Telnetd Command Execution

  Sophos Web Protection Appliance sblistpack Arbitrary Command Execution

  HP ProCurve Manager SNAC UpdateDomainControllerServlet File Upload

  HP ProCurve Manager SNAC UpdateCertificatesServlet File Upload

  Sophos Web Protection Appliance clear_keys.pl Local Privilege Escalation

  Agnitum Outpost Internet Security Local Privilege Escalation

  OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities

  Western Digital Arkeia Appliance 10.0.10 - Multiple Vulnerabilities

  Vino VNC Server 3.7.3 - Persistent Denial of Service

16.9.2013

Bugtraq

[ MDVSA-2013:234 ] python-django 2013-09-13
security mandriva com

[ MDVSA-2013:232 ] libmodplug 2013-09-13
security mandriva com

Zimbra Collaboration Suite (ZCS) Session Replay Vulnerability 2013-09-13
brianwarehime gmail com

[SECURITY] [DSA 2756-1] wireshark security update 2013-09-13
Moritz Muehlenhoff (jmm debian org)

[ MDVSA-2013:233 ] python-OpenSSL 2013-09-13
security mandriva com

[SECURITY] [DSA 2753-1] mediawiki security update 2013-09-13
Thijs Kinkhorst (thijs debian org)

OpenSSL,OpenSSH ecdsa authentication code inconsistent return values.. no vulnerability? 2013-09-13
king cope (isowarez isowarez isowarez googlemail com)

APPLE-SA-2013-09-12-2 Safari 5.1.10 2013-09-12
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004 2013-09-12
Apple Product Security (product-security-noreply lists apple com)

WordPress Fixes Multiple Vulnerabilities With 3.6.1 Release 2013-09-13
danielthomson72 gmail com

[iBliss Security Advisory] Cross-Site Scripting (XSS) vulnerability in Design-approval-system wordpress plugin 2013-09-12
Alexandro Silva (alexos ibliss com br)

[ MDVSA-2013:231 ] openswan 2013-09-12
security mandriva com

[ MDVSA-2013:230 ] gdm 2013-09-11
security mandriva com

Malware

RDN/Generic BackDoor!tm!7A9283CE46E8

ZeroAccess-FBE!AEBA617D955D!AEBA617D955D

RDN/Generic Dropper!rn!ED77EB0E35EC

RDN/Generic BackDoor!tm!FF960366DD8F

RDN/Downloader.a!nk!52EA1F59F837

RDN/Generic.dx!67E7242C1625

RDN/Generic Dropper!rn!49FAE358E4A2

RDN/Generic BackDoor!tm!DE1325C5FD52

W32/Virut.gen!157FCCF394F5

ZeroAccess-FBE!E28B7800030D!E28B7800030D

RDN/Generic BackDoor!tm!8FD96BDB688D

RDN/Generic BackDoor!tm!A5DD6087AD59

RDN/Generic BackDoor!tm!5AB94CCD9785

RDN/Generic.bfr!fb!CD9B2EA54F89

Generic PUP.x!7AACDE9C7442

ZeroAccess-FBE!4907050028C3!4907050028C3

Generic Dropper!6C7935C162CD

RDN/Generic.dx!cqs!03508E608CF6

RDN/Generic.bfr!fb!77F0E5BE4105

RDN/Generic BackDoor!tm!DD1F4410C32F

RDN/Generic Dropper!rn!2BE5CE1AED7D

Generic PUP.x!CD3230879C58

Generic PUP.x!038DE3361C3C

Generic PUP.x!46B2CD0EE3AA

RDN/Generic BackDoor!E2BAB51A6C74

RDN/Generic Dropper!rn!A25568221FAB

RDN/Generic.bfr!789A25996AA6

RDN/Generic PUP.x!bhr!AF5AB4B3E0C5

Generic PUP.x!22C362A1C0F0

RDN/Generic PUP.x!bhr!2BBD9D0B3715

Phishing

 

Vulnerebility

Squid 'idnsALookup()' Function Remote Buffer Overflow Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61111

Squid 'cachemgr.cgi' Incomplete Fix Remote Denial of Service Vulnerability
2013-09-16
http://www.securityfocus.com/bid/57646

Squid 'cachemgr.cgi' Remote Denial of Service Vulnerability
2013-09-16
http://www.securityfocus.com/bid/56957

FFmpeg Prior to 1.1.2 Multiple Remote Security Vulnerabilities
2013-09-16
http://www.securityfocus.com/bid/57868

Mozilla Firefox/Thunderbird/Seamonkey CVE-2013-1701 Multiple Memory Corruption Vulnerabilities
2013-09-16
http://www.securityfocus.com/bid/61874

IBM Rational Directory Server CVE-2013-0599 Information Disclosure Vulnerability
2013-09-16
http://www.securityfocus.com/bid/60107

Cisco Unified MeetingPlace CVE-2013-5495 Cross Site Scripting Vulnerability
2013-09-16
http://www.securityfocus.com/bid/62389

Python SSL Module CVE-2013-4238 Security Bypass Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61738

Cisco Unified Communications Manager CVE-2013-3472 Cross Site Request Forgery Vulnerability
2013-09-16
http://www.securityfocus.com/bid/62032

Google Chrome CVE-2013-2903 Use After Free Remote Code Execution Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61888

Google Chrome CVE-2013-2904 Use After Free Remote Code Execution Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61889

Google Chrome CVE-2013-2905 Information Disclosure Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61890

Google Chrome CVE-2013-2887 Multiple Unspecified Security Vulnerabilities
2013-09-16
http://www.securityfocus.com/bid/61885

Google Chrome CVE-2013-2900 Unspecified Security Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61887

Google Chrome CVE-2013-2901 Integer Overflow Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61891

Google Chrome CVE-2013-2902 Use After Free Remote Code Execution Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61886

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2013-1717 Information Disclosure Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61896

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1713 Same Origin Policy Security Bypass Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61876

Mozilla Firefox/SeaMonkey CVE-2013-1711 Cross Site Scripting Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61872

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1714 Same Origin Policy Security Bypass Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61882

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1710 Arbitrary Code Execution Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61900

Mozilla Firefox/SeaMonkey CVE-2013-1705 Use-After-Free Remote Code Execution Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61871

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1707 Local Stack Buffer Overflow Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61873

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1709 Cross Site Scripting Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61867

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1706 Local Stack Buffer Overflow Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61869

Mozilla Firefox/SeaMonkey CVE-2013-1704 Use-After-Free Memory Corruption Vulnerability
2013-09-16
http://www.securityfocus.com/bid/61864

Mozilla Firefox/Thunderbird/Seamonkey CVE-2013-1702 Multiple Memory Corruption Vulnerabilities
2013-09-16
http://www.securityfocus.com/bid/61875

IBM SPSS Data Collection CVE-2013-0464 Cross Site Scripting Vulnerability
2013-09-16
http://www.securityfocus.com/bid/60246

Cisco SocialMiner 'administration.jsp' CVE-2013-5492 Information Disclosure Vulnerability
2013-09-16
http://www.securityfocus.com/bid/62334

WordPress Design Approval System Plugin 'step' Parameter Cross Site Scripting Vulnerability
2013-09-16
http://www.securityfocus.com/bid/62271

Exploit

  Mitsubishi MC-WorkX 8.02 ActiveX Control (IcoLaunch) File Execution

  Router ONO Hitron CDE-30364 - CSRF Vulnerability

13.9.2013

Bugtraq

OpenSSL,OpenSSH ecdsa authentication code inconsistent return values.. no vulnerability? 2013-09-13
king cope (isowarez isowarez isowarez googlemail com)

APPLE-SA-2013-09-12-2 Safari 5.1.10 2013-09-12
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004 2013-09-12
Apple Product Security (product-security-noreply lists apple com)

WordPress Fixes Multiple Vulnerabilities With 3.6.1 Release 2013-09-13
danielthomson72 gmail com

[iBliss Security Advisory] Cross-Site Scripting (XSS) vulnerability in Design-approval-system wordpress plugin 2013-09-12
Alexandro Silva (alexos ibliss com br)

[ MDVSA-2013:231 ] openswan 2013-09-12
security mandriva com

Malware

Generic.bfr!EE12488F6ED7

RDN/Generic PUP.x!bhp!4BDA1FE200DD

Generic.bfr!F94C01BBBB94

RDN/Generic BackDoor!tk!2C70E9A7E010

RDN/Generic BackDoor!tk!E9341AEB3143

RDN/Generic PWS.y!us!FEAC52C9CD85

Generic PUP.x!CA7A0F0CD260

Generic Downloader.x!AAD0CBB0B6F2

RDN/Generic Qhost!j!C11A92141A4E

RDN/Generic.bfr!fa!C1A9D6917FF4

Generic Downloader.x!2D3BCACB2C31

Generic.bfr!F0AFEB664817

Generic PUP.x!5D841266AAC4

Generic.bfr!111ECA46D7F4

RDN/Generic PUP.x!bhp!0AF9064BAB8E

RDN/Generic.bfr!fa!6954A59CEAFA

Generic PUP.x!DFDD2FCECBE3

Generic.bfr!5DA1FCC7A671

Generic.dx!367BABA4AD65

RDN/Vundo!0044383E5DF9

RDN/Generic PUP.x!bhp!23F0ADAE1FCB

RDN/Generic PUP.x!bhp!EBED3BB85942

RDN/Generic PUP.x!bhp!DFA31FA1A207

RDN/Generic.tfr!A213A571745B

Generic BackDoor!8CDD81436F3B

Generic.tfr!B98A22FF5B2B

Generic.bfr!DE65672636C2

RDN/Generic PUP.x!bhp!EC2262C35C7A

RDN/Generic PUP.x!82ECEDE81D07

Generic.tfr!EDCCE71EEC2C

Phishing

 

Vulnerebility

Linux Kernel CVE-2013-2206 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-13
http://www.securityfocus.com/bid/60715

RETIRED: Multiple HP Products Multiple Unspecified Remote Security Vulnerabilities
2013-09-13
http://www.securityfocus.com/bid/62301

Linux Kernel 'key_notify_policy_flush()' Function Local Information Disclosure Vulnerability
2013-09-13
http://www.securityfocus.com/bid/60953

Linux Kernel CVE-2012-6544 Multiple Local Information Disclosure Vulnerabilities
2013-09-13
http://www.securityfocus.com/bid/58990

Linux Kernel 'perf' Multiple Denial of Service and Information Disclosure Vulnerabilities
2013-09-13
http://www.securityfocus.com/bid/60324

Linux Kernel 'inet->opt ip_options' Local Denial of Service Vulnerability
2013-09-13
http://www.securityfocus.com/bid/55359

Microsoft Internet Explorer CVE-2013-3845 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62214

Microsoft Internet Explorer CVE-2013-3202 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62204

Microsoft Internet Explorer CVE-2013-3203 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62206

Microsoft Internet Explorer CVE-2013-3201 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62187

Microsoft Internet Explorer CVE-2013-3207 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62211

Microsoft Internet Explorer CVE-2013-3209 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62213

Microsoft Internet Explorer CVE-2013-3205 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62208

Microsoft Internet Explorer CVE-2013-3204 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62207

Microsoft Internet Explorer CVE-2013-3208 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62212

Microsoft Internet Explorer CVE-2013-3206 Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62209

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3866 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62199

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3865 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62198

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-1342 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62193

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-1343 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62195

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-1341 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62180

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3864 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62197

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-1344 Local Privilege Escalation Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62196

Multiple Cisco Products ActiveMQ CVE-2013-5488 Denial of Service Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62333

Cisco Digital Media Manager CVE-2013-3446 Open Redirection Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62337

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-13
http://www.securityfocus.com/bid/57778

OpenSSL CVE-2013-0166 Remote Denial of Service Vulnerability
2013-09-13
http://www.securityfocus.com/bid/60268

OpenSSL CVE-2012-2686 Remote Denial of Service Vulnerability
2013-09-13
http://www.securityfocus.com/bid/57755

OpenSSL CVE-2012-2131 Encoded ASN.1 Data Incomplete Fix Memory Corruption Vulnerability
2013-09-13
http://www.securityfocus.com/bid/53212

LightDM 'xauthority.c' File Insecure File Permissions Vulnerability
2013-09-13
http://www.securityfocus.com/bid/62329

Exploit

  Zimplit CMS 3.0 - Multiple Vulnerabilities

  Vestel TV 42pf9322 - Denial of Service

12.9.2013

Bugtraq

[ MDVSA-2013:230 ] gdm 2013-09-11
security mandriva com

OWASP Zed Attack Proxy 2.2.0 2013-09-11
psiinon (psiinon gmail com)

[security bulletin] HPSBUX02928 SSRT101274 rev.1 - HP-UX running perl, Remote Denial of Service (DoS) 2013-09-11
security-alert hp com

[SECURITY] [DSA 2755-1] python-django security update 2013-09-11
Salvatore Bonaccorso (carnil debian org)

ProFTPd mod_sftp/mod_sftp_pam invalid pool allocation in kbdint authentication 2013-09-11
king cope (isowarez isowarez isowarez googlemail com)

Cross-Site Scripting (XSS) in WikkaWiki 2013-09-11
High-Tech Bridge Security Research (advisory htbridge com)

Insecure CHIASMUS encryption in GSTOOL 2013-09-11
Jan Schejbal (jan mailinglisten googlemail com)

Microsoft SharePoint 2013 (Cloud) - Persistent Exception Handling Web Vulnerability 2013-09-11
Vulnerability Lab (research vulnerability-lab com)

[SECURITY] [DSA 2754-1] exactimage security update 2013-09-10
Raphael Geissert (geissert debian org)

Malware

RDN/Generic Dropper!rm!C9D1EA617273

RDN/Generic BackDoor!tj!1F8D8A14F415

Generic.dx!0F0FE4F79B71

RDN/Generic.tfr!952CFD96878E

RDN/Generic PUP.z!df!0463FA823C97

Generic.dx!95226EF37D70

RDN/Generic.tfr!dp!1766622B0C74

W32/Virus.gen!085288DB0C40

RDN/Generic PUP.x!C350B8993451

RDN/Generic BackDoor!tj!C08EEAE73CB0

Generic.dx!0DE4091CFA04

RDN/Generic BackDoor!tj!0E98A55CBF49

RDN/Generic.dx!cqn!1DF57CFCD063

RDN/Generic Downloader.x!im!143D5C0CB829

RDN/Generic BackDoor!tj!CEB27161FA60

RDN/Generic.bfr!fa!51D0BD923E68

Generic.bfr!6BB7B6AC2AF4

W32/Autorun.bfr!A0EC55888F2E

Generic StartPage!A2798BEC102F

RDN/Generic.bfr!6DC0B95EA6EA

RDN/Generic BackDoor!tj!34635E347C35

Generic.bfr!5989EC468F70

Generic Dropper!5B7BD00E9164

Generic PUP.x!6634CF5543B8

Generic PUP.x!A039001F81B6

RDN/Generic PUP.x!E3ABE1D5A6A0

Generic.dx!73F1ABF1395D

Generic PUP.x!CF69E499B8EF

Generic BackDoor!C8A52DC46AC3

RDN/Generic PUP.x!79BE52ED89D9

Phishing

 

Vulnerebility

Oracle Java SE CVE-2013-2451 Local Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60625

Oracle Java SE CVE-2013-2434 Remote Code Execution Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59137

Oracle Java SE CVE-2013-2433 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59220

Oracle Java SE CVE-2013-1484 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/58027

IBM Lotus Notes Unspecified Remote Buffer Overflow Vulnerability
2013-09-12
http://www.securityfocus.com/bid/38300

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-2449 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60622

Oracle Java SE CVE-2013-2453 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60644

Oracle Java SE CVE-2013-2443 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60646

Oracle Java SE CVE-2013-2446 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60620

Oracle Java SE CVE-2013-2444 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60633

Oracle Java SE CVE-2013-2448 Remote Code Execution Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60640

Oracle Java SE CVE-2013-2452 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60617

Oracle Java SE CVE-2013-2447 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60629

Oracle Java SE CVE-2013-2440 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59124

Oracle Java SE CVE-2013-2438 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59185

Oracle Java SE CVE-2013-2435 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59089

Oracle Java SE CVE-2013-2436 Security Bypass Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59213

Oracle Java SE CVE-2013-2419 Remote Code Execution Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59131

Oracle Java Runtime Environment CVE-2013-2423 Security Bypass Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59162

Oracle Java SE CVE-2013-2418 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/59145

Oracle Java SE CVE-2013-2437 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60636

Oracle Java SE CVE-2013-1485 Security Bypass Vulnerability
2013-09-12
http://www.securityfocus.com/bid/58028

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60618

Oracle Java SE CVE-2013-2442 Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/60643

Oracle Java SE CVE-2013-1486 Remote Java Runtime Environment Vulnerability
2013-09-12
http://www.securityfocus.com/bid/58029

Oracle Java SE CVE-2013-1480 Remote Code Execution Vulnerability
2013-09-12
http://www.securityfocus.com/bid/57691

Oracle Java SE CVE-2013-1481 Remote Code Execution Vulnerability
2013-09-12
http://www.securityfocus.com/bid/57718

Oracle Java SE CVE-2013-1473 Java Runtime Environment Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/57731

Oracle Java SE CVE-2013-0444 Java Runtime Environment Remote Security Vulnerability
2013-09-12
http://www.securityfocus.com/bid/57701

Exploit

  Talkie Bluetooth Video iFiles 2.0 iOS - Multiple Vulnerabilities

  Microsoft SharePoint 2013 (Cloud) - Persistent Exception Handling Vulnerability MS13-067

  D-Link DSL-2740B - Multiple CSRF Vulnerabilities

  Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities

11.9.2013

Bugtraq

[security bulletin] HPSBPV02918 rev.1 - HP ProCurve Manager (PCM), HP PCM+ and HP Identity Driven Manager (IDM), SQL Injection, Remote Code Execution, Session Reuse 2013-09-10
security-alert hp com

[ MDVSA-2013:229 ] bzr 2013-09-10
security mandriva com

FreeBSD Security Advisory FreeBSD-SA-13:09.ip_multicast [REVISED] 2013-09-10
FreeBSD Security Advisories (security-advisories freebsd org)

FreeBSD Security Advisory FreeBSD-SA-13:11.sendfile 2013-09-10
FreeBSD Security Advisories (security-advisories freebsd org)

FreeBSD Security Advisory FreeBSD-SA-13:10.sctp [REVISED] 2013-09-10
FreeBSD Security Advisories (security-advisories freebsd org)

FreeBSD Security Advisory FreeBSD-SA-13:13.nullfs 2013-09-10
FreeBSD Security Advisories (security-advisories freebsd org)

[ MDVSA-2013:228 ] cacti 2013-09-10
security mandriva com

FreeBSD Security Advisory FreeBSD-SA-13:12.ifioctl 2013-09-10
FreeBSD Security Advisories (security-advisories freebsd org)

Open-Xchange Security Advisory 2013-09-10 2013-09-10
Martin Braun (martin braun open-xchange com)

Multiple vulnerabilities on D-Link Dir-505 devices 2013-09-09
alessandro dipinto artificialstudios org

[ MDVSA-2013:227 ] python-setuptools 2013-09-09
security mandriva com

Malware

RDN/Generic.bfr!fa!0F965C4684FF

RDN/Generic Dropper!rl!003C6588491B

RDN/Generic PUP.x!bhn!6ADA0B770BC2

Generic PUP.x!616DE9AE3B73

Generic PUP.x!970AB25FBCD7

RDN/Generic.grp!fw!ED1165E94312

RDN/Generic.bfg!c!17DD3D00282F

RDN/Generic BackDoor!tj!68523B38437E

RDN/Generic.bfr!5A9C417B82EF

RDN/Generic.tfr!D9F7DC826636

RDN/Generic.bfr!74C63FAAB1BF

RDN/Generic.tfr!B2379838E0D7

RDN/Generic.dx!A3D8C25BA32B

RDN/Generic Dropper!rl!D3193E806BCF

Generic.bfr!1D47CBA3E8FF

RDN/Generic PUP.x!bhn!D70968990E3A

RDN/Generic PUP.x!05EDF221A2F6

RDN/Generic PUP.z!df!0B8C34DFF202

RDN/Generic.grp!fw!38155B6821FD

Generic PUP.x!100CE46646F6

Generic Dropper!AF30F8DB7D46

RDN/Generic Downloader.x!A6F892E58C77

RDN/Generic.bfr!29128AE5FDE1

RDN/Generic PUP.x!bhn!EA2DA4A682E5

Generic PUP.x!C2800831127F

RDN/Generic PUP.x!bhn!7B96AB5917B1

RDN/Generic PUP.x!bhn!1B9C72FDFB44

Generic PUP.x!C8CE55A8A74C

RDN/Generic.bfr!fa!42FBFF23FB79

RDN/Generic PUP.x!838598397530

Phishing

 

Vulnerebility

Multiple HP Products Multiple Unspecified Remote Security Vulnerabilities
2013-09-11
http://www.securityfocus.com/bid/62301

Imagemagick 'gif.c' Memory Corruption Vulnerability
2013-09-11
http://www.securityfocus.com/bid/62080

Python 'ssl.match_hostname()' Function Denial of Service Vulnerability
2013-09-11
http://www.securityfocus.com/bid/59877

Sophos Web Appliance CVE-2013-4983 Remote Command Injection Vulnerability
2013-09-11
http://www.securityfocus.com/bid/62263

OpenPNE 3 XML External Entity Injection Vulnerability
2013-09-11
http://www.securityfocus.com/bid/62285

Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
2013-09-11
http://www.securityfocus.com/bid/51706

PHP Versions Prior to 5.3.3/5.2.14 Multiple Vulnerabilities
2013-09-11
http://www.securityfocus.com/bid/41991

Cacti Cross Site Scripting and HTML Injection Vulnerabilities
2013-09-11
http://www.securityfocus.com/bid/62001

Cacti 'id' Parameter SQL Injection Vulnerability
2013-09-11
http://www.securityfocus.com/bid/62005

LibRaw CVE-2013-1438 Multiple NULL Pointer Dereference Denial of Service Vulnerabilities
2013-09-11
http://www.securityfocus.com/bid/62060

LibRaw CVE-2013-1439 Multiple NULL Pointer Dereference Denial of Service Vulnerabilities
2013-09-11
http://www.securityfocus.com/bid/62057

Oracle Java SE CVE-2013-2452 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60617

Oracle Java SE CVE-2013-2465 Memory Corruption Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60657

freeFTPd 'PASS' Command Buffer Overflow Vulnerability
2013-09-11
http://www.securityfocus.com/bid/61905

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-2444 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60633

Oracle Java SE CVE-2013-2447 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60629

Oracle Java SE CVE-2013-2459 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60647

Oracle Java SE CVE-2013-2454 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60650

Oracle Java SE CVE-2013-2464 Memory Corruption Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60631

Oracle Java SE CVE-2013-2466 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60624

Oracle Java SE CVE-2013-2456 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60641

Oracle Java SE CVE-2013-2457 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60632

Oracle Java SE CVE-2013-2451 Local Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60625

Oracle Java SE CVE-2013-2463 Remote Code Execution Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60655

Oracle Java SE CVE-2013-2453 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60644

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60651

Oracle Java SE CVE-2013-2455 Remote Code Execution Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60619

Oracle Java SE CVE-2013-2437 Remote Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60636

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-09-11
http://www.securityfocus.com/bid/60627

Exploit

 

10.9.2013

Bugtraq

[slackware-security] subversion (SSA:2013-251-01) 2013-09-09
Slackware Security Team (security slackware com)

[SECURITY] [DSA 2752-1] phpbb3 security update 2013-09-07
Thijs Kinkhorst (thijs debian org)

Event Easy Calendar 1.0.0 WP plugin 2013-09-07
roguecoder hush com

Malware

RDN/Generic BackDoor!ti!A2CB8DBCBFE0

RDN/Generic Qhost!j!2F99A460ACA5

Generic.bfr!303D33C5BE79

RDN/Generic Dropper!85C987283BA6

RDN/Generic.bfr!fa!2F4F14E4A009

RDN/Generic BackDoor!ti!3074EFB60E76

RDN/Generic.bfr!fa!2E52CDE3A45E

Generic PUP.x!2C348A6DC122

Generic.bfr!2F02D7802CD4

RDN/Generic PUP.x!bhn!9C9DD4ABFFB8

Generic.bfr!3031968A744F

RDN/Generic.bfr!2FB6D8AF5825

Generic PUP.x!2DBE76A081C2

Generic.bfr!2DF0AC17F6A4

Generic.bfr!2CD222C8DE20

Generic PUP.x!2D34BCD721C9

Generic.bfr!2F08A3ED853D

Generic.bfr!2CFE594C0DEC

RDN/Generic.bfr!fa!4C2FE553E2BA

RDN/Generic PUP.x!2DABA5C9E4E0

RDN/Generic PUP.x!2C94DF4BC5B1

Generic Downloader.x!2D96479A1FCD

Generic.bfr!2EDF901200FB

Generic BackDoor!8389D577AE5D

RDN/Generic.grp!2C84B701DBF8

Generic PUP.x!2B6BD8AF4612

Generic.bfr!2B24F2472685

Generic PUP.x!2C0663628429

RDN/Generic PUP.x!bhn!2CE1DD8EE432

Generic.bfr!2940A488EF2D

Phishing

 

Vulnerebility

Oracle Java SE CVE-2013-2407 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/60653

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/60618

Oracle Java SE CVE-2013-2443 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/60646

Oracle MySQL Server CVE-2013-3806 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61235

Oracle MySQL Server CVE-2013-3807 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61238

Oracle MySQL Server CVE-2013-3809 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61272

Cisco Adaptive Security Appliance (ASA) Software Denial of Service Vulnerability
2013-09-10
http://www.securityfocus.com/bid/62251

OpenSSL Encoded ASN.1 Data Integer Truncation Memory Corruption Vulnerability
2013-09-10
http://www.securityfocus.com/bid/53158

Oracle MySQL Server CVE-2013-3808 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61227

Cisco SocialMiner CVE-2013-5483 Cross Site Scripting Vulnerability
2013-09-10
http://www.securityfocus.com/bid/62252

Oracle MySQL Server CVE-2013-3811 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61252

Oracle MySQL Server CVE-2013-3805 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61256

Oracle MySQL Server CVE-2013-3812 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61249

Oracle MySQL Server CVE-2013-3810 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61214

Oracle MySQL Server CVE-2013-3804 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61260

Oracle MySQL Server CVE-2013-3796 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61233

Oracle MySQL Server CVE-2013-3794 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61222

Oracle MySQL Server CVE-2013-3783 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61210

Oracle MySQL Server CVE-2013-3802 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61244

Oracle MySQL Server CVE-2013-3801 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61269

Oracle MySQL Server CVE-2013-3798 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61274

Oracle MySQL Server CVE-2013-3795 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61241

MySQL and MariaDB Geometry Query Denial Of Service Vulnerability
2013-09-10
http://www.securityfocus.com/bid/58511

Oracle MySQL Server CVE-2013-3793 Remote Security Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61264

Oracle MySQL and MariaDB 'acl_get()' Buffer Overflow Vulnerability
2013-09-10
http://www.securityfocus.com/bid/56769

pyOpenSSL SSL Client Certificate Validation Security Bypass Vulnerability
2013-09-10
http://www.securityfocus.com/bid/62258

LibTIFF CVE-2013-4244 Out of Bounds Memory Corruption Vulnerability
2013-09-10
http://www.securityfocus.com/bid/62019

Linux Kernel 'skbuff.c' Local Denial of Service Vulnerability
2013-09-10
http://www.securityfocus.com/bid/61411

Linux Kernel Btrfs CRC32C feature Infinite Loop Local Denial of Service Vulnerability
2013-09-10
http://www.securityfocus.com/bid/56939

Linux Kernel Btrfs CRC32C feature CVE-2012-5375 Security Bypass Vulnerability
2013-09-10
http://www.securityfocus.com/bid/56940

Exploit

  HP SiteScope Remote Code Execution

  MS13-055 Microsoft Internet Explorer CAnchorElement Use-After-Free

  eM Client e-mail client v5.0.18025.0 Stored XSS vulnerability

  AjaXplorer 1.0 - Multiple Vulnerabilities

  glFusion 1.3.0 (search.php, cat_id param) - SQL Injection

  D-Link DIR-505 1.06 - Multiple Vulnerabilities

9.9.2013

Bugtraq

[CORE-2013-0809] Sophos Web Protection Appliance Multiple Vulnerabilities 2013-09-06
CORE Advisories Team (advisories coresecurity com)

APPLE-SA-2013-09-06-1 AirPort Base Station Firmware Update 7.6.4 2013-09-06
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2013-09-06-1 AirPort Base Station Firmware Update 7.6.4 2013-09-06
Mihaela Popescu-Stanesti (maru apple com)

CFP: WorldCIST'14 - World Conference on IST; Best papers published in ISI Journals 2013-09-06
Maria Lemos (marialemos72 gmail com)

[ MDVSA-2013:226 ] roundcubemail 2013-09-05
security mandriva com

Malware

Generic PUP.x!3B932F15D278

Generic PUP.x!61293D15A0DA

Generic Dropper!4DFC1F09BB76

Generic PUP.x!7AB1D19791FE

Generic PUP.x!C62B8102FD48

RDN/Generic Dropper!28821439A17A

Generic PUP.x!16847CFA68C4

Generic PUP.x!451D1AD020C8

Generic PUP.x!62875A9D5077

RDN/Generic PUP.x!bhk!27D43BD3D34E

RDN/Generic PUP.x!3084F1D36B1F

Generic StartPage!4F3EDF4487BC

Generic PUP.x!EACE1ED831AA

Generic PUP.x!9359A31018D3

Generic PUP.x!574384B3CD23

RDN/Generic.dx!cqk!098CB5B63690

Generic PUP.x!DF36118278FC

RDN/Generic.bfr!fa!F6BBD632BF5A

RDN/Generic Dropper!38A7F7787CA4

ZeroAccess-FBR!73AFFA1B161B!73AFFA1B161B

Generic Downloader.x!104D2BD63456

Generic PUP.x!7BADA0BABA7E

RDN/Autorun.worm!cw!F3FA81F8245F

RDN/Generic BackDoor!ti!DE10CF07F9AD

Generic PUP.x!6ED63884182F

RDN/Downloader.a!nj!FD88E8DDDD66

RDN/Generic Downloader.x!im!E5FBD5DFB587

RDN/Generic Downloader.x!im!E3014F290C36

RDN/Generic Dropper!rl!D4D86D546A08

RDN/Generic StartPage!bo!C4E93B9A0205

Phishing

 

Vulnerebility

Microsoft Internet Explorer CVE-2013-3184 Memory Corruption Vulnerability
2013-09-09
http://www.securityfocus.com/bid/61668

Graphite 'renderLocalView()' Function Remote Code Execution Vulnerability
2013-09-09
http://www.securityfocus.com/bid/61894

Linux Kernel Btrfs CRC32C feature Infinite Loop Local Denial of Service Vulnerability
2013-09-09
http://www.securityfocus.com/bid/56939

Linux Kernel Btrfs CRC32C feature CVE-2012-5375 Security Bypass Vulnerability
2013-09-09
http://www.securityfocus.com/bid/56940

Linux Kernel CVE-2013-2206 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60715

Linux Kernel 'kvm_set_memory_region()' Function Local Privilege Escalation Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60466

Linux Kernel CVE-2013-4163 Local Denial of Service Vulnerability
2013-09-09
http://www.securityfocus.com/bid/61412

Linux Kernel Ceph CVE-2013-1059 Remote Denial of Service Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60922

Linux Kernel CVE-2013-2851 Memory Corruption Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60409

Linux Kernel 'mmc_ioctl_cdrom_read_data()' Function Local Information Disclosure Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60375

TYPO3 File Handling Security Bypass Vulnerability
2013-09-09
http://www.securityfocus.com/bid/62255

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-09
http://www.securityfocus.com/bid/57778

Zend Server CVE-2012-5382 Insecure File Permissions Vulnerability
2013-09-09
http://www.securityfocus.com/bid/55941

PHP CVE-2012-5381 Insecure File Permissions Vulnerability
2013-09-09
http://www.securityfocus.com/bid/55940

RubyInstaller CVE-2012-5380 Insecure File Permissions Vulnerability
2013-09-09
http://www.securityfocus.com/bid/55885

ActivePython CVE-2012-5379 Insecure File Permissions Vulnerability
2013-09-09
http://www.securityfocus.com/bid/55884

ActiveTcl CVE-2012-5378 Insecure File Permissions Vulnerability
2013-09-09
http://www.securityfocus.com/bid/55886

ActivePerl CVE-2012-5377 Insecure File Permissions Vulnerability
2013-09-09
http://www.securityfocus.com/bid/55881

Apache Santuario XML Security for JAVA XML Signature CVE-2013-2172 Security Bypass Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60846

JGroups 'DiagnosticsHandler::run()' Method Security Bypass Vulnerability
2013-09-09
http://www.securityfocus.com/bid/61179

Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
2013-09-09
http://www.securityfocus.com/bid/59826

Apache HTTP Server Multiple Cross Site Scripting Vulnerabilities
2013-09-09
http://www.securityfocus.com/bid/58165

Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
2013-09-09
http://www.securityfocus.com/bid/61129

Cacti Cross Site Scripting and HTML Injection Vulnerabilities
2013-09-09
http://www.securityfocus.com/bid/62001

Cacti 'id' Parameter SQL Injection Vulnerability
2013-09-09
http://www.securityfocus.com/bid/62005

Citrix CloudPortal Services Manager CVE-2013-2936 Unspecified Security Vulnerability
2013-09-09
http://www.securityfocus.com/bid/62235

Citrix CloudPortal Services Manager CVE-2013-2933 Unspecified Security Vulnerability
2013-09-09
http://www.securityfocus.com/bid/62233

Citrix CloudPortal Services Manager CVE-2013-2939 Unspecified Security Vulnerability
2013-09-09
http://www.securityfocus.com/bid/62236

Linux Kernel 'dispatch_discard_io()' Function Security Bypass Vulnerability
2013-09-09
http://www.securityfocus.com/bid/60414

Linux Kernel 'skbuff.c' Local Denial of Service Vulnerability
2013-09-09
http://www.securityfocus.com/bid/61411

Exploit

  freeFTPd 1.0.10 PASS Command SEH Overflow (msf)

  Moodle 2.3.9, 2.4.6 - Multiple Vulnerabilities

  Sophos Web Protection Appliance - Multiple Vulnerabilities

6.9.2013

Bugtraq

[ MDVSA-2013:226 ] roundcubemail 2013-09-05
security mandriva com

[SECURITY] [DSA 2751-1] libmodplug security update 2013-09-04
Raphael Geissert (geissert debian org)

Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format and Advanced Recording Format Players 2013-09-04
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Call for Paper/Event - nullcon Goa 2014 2013-09-04
nullcon (nullcon nullcon net)

SEC Consult SA-20130904-0 :: GroupLink everything HelpDesk - undocumented password reset/admin takeover and XSS vulnerabilities 2013-09-04
SEC Consult Vulnerability Lab (research sec-consult com)

[PSA-2013-0903-1] Apple Safari Heap Buffer Overflow 2013-09-04
bugtraq packetstormsecurity org

[SECURITY] [DSA 2750-1] imagemagick security update 2013-09-03
Florian Weimer (fw deneb enyo de)

PayPal's "invalid" aksession Padding Oracle Flaw 2013-09-03
Timothy D. Morgan (tmorgan vsecurity com)

Malware

RDN/Generic.dx!cqg!FCC006FAA998

Generic PUP.x!FE0B114E2423

RDN/Generic.dx!cqg!FCEEFF19BAE3

RDN/Generic PUP.x!bhh!A2F596EC9A75

RDN/Generic BackDoor!tg!FC2836637833

Generic PUP.x!FD118FC56D73

Generic PUP.x!A4B166665F97

Generic PUP.x!A3A424549688

RDN/Generic.dx!cqg!FC1A71F4FC91

RDN/Generic BackDoor!tg!A2FCB160BDD5

RDN/Generic BackDoor!tg!FB99FE096DC6

RDN/Generic PUP.x!bhh!A3731351941E

RDN/Generic PWS.y!up!FB2539314383

Generic PUP.x!FC6C4EEFF824

RDN/Downloader.gen.a!FBDF0425EBBD

RDN/tdss!g!FA50B0521CA4

Generic PUP.x!A1E29C70CAB1

RDN/PWS-Mmorpg!kc!FAC6BD2C2F4E

RDN/Generic.dx!cqg!FA935635D4FB

Generic PUP.z!FB3DE0FCDB8D

RDN/Generic BackDoor!tg!FA230B834EE8

RDN/Generic PUP.x!F99AEE0A4E80

RDN/Generic Dropper!rk!F9F12F7037BB

RDN/Generic PWS.y!up!FA1716DA5CC9

RDN/Generic PUP.x!bhh!F99AEE0A4E80

RDN/Generic.bfr!ez!9FED50E6CA04

RDN/Generic PUP.x!F9C2E4AD9D5A

RDN/Generic PUP.x!FA2AC8332E33

Generic.bfr!A04CD3EDA338

Generic PUP.x!F9B70C370232

Phishing

 

Vulnerebility

VMware ESXi and ESX NFC Protocol Handling Remote Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/62077

Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/61129

Xen 'xc_vcpu_setaffinity()' Function Buffer Overflow Vulnerability
2013-09-06
http://www.securityfocus.com/bid/59982

Xen CVE-2013-2078 Remote Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60278

Xen CVE-2013-1919 Multiple Denial of Service Vulnerabilities
2013-09-06
http://www.securityfocus.com/bid/59292

Xen CVE-2013-2076 Information Disclosure Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60282

Xen CVE-2013-1952 Local Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/59617

Xen CVE-2013-2077 Remote Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60277

Linux Kernel CVE-2013-2206 NULL Pointer Dereference Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60715

Oracle Java SE CVE-2013-2412 Remote Security Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60618

QEMU Guest Agent CVE-2013-2007 Insecure File Permissions Vulnerability
2013-09-06
http://www.securityfocus.com/bid/59675

Xen CVE-2013-1917 Remote Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/59291

QEMU CVE-2012-6075 Buffer Overflow Vulnerability
2013-09-06
http://www.securityfocus.com/bid/57420

Xen Page Table Manipulation CVE-2013-1918 Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/59615

Xen CVE-2013-0151 Local Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/57495

Qemu 'qemu-nbd' Tool Local Security Bypass Vulnerability
2013-09-06
http://www.securityfocus.com/bid/59070

Xen Page Reference Counting CVE-2013-1432 Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60799

Oracle Java SE CVE-2013-2450 Remote Security Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60638

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60634

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60627

Oracle Java SE CVE-2013-2407 Remote Security Vulnerability
2013-09-06
http://www.securityfocus.com/bid/60653

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/61310

RoundCube Webmail Multiple HTML-injection Vulnerabilities
2013-09-06
http://www.securityfocus.com/bid/61976

OpenStack Nova XML Parsing CVE-2013-4179 Multiple Denial of Service Vulnerabilities
2013-09-06
http://www.securityfocus.com/bid/61692

OpenStack Nova CVE-2013-2256 Security Bypass Vulnerability
2013-09-06
http://www.securityfocus.com/bid/61637

OpenStack Nova CVE-2013-4185 Denial of Service Vulnerability
2013-09-06
http://www.securityfocus.com/bid/61639

GNU glibc 'pt_chown()' Function CVE-2013-2207 Local Security Bypass Vulnerability
2013-09-06
http://www.securityfocus.com/bid/61960

Python 'setuptools' Man in The Middle Vulnerability
2013-09-06
http://www.securityfocus.com/bid/61827

Cisco Secure Access Control System CVE-2013-5470 Remote Denial of Service Vulnerability
2013-09-05
http://www.securityfocus.com/bid/62145

libmodplug CVE-2013-4233 Integer Overflow Vulnerability
2013-09-05
http://www.securityfocus.com/bid/61713

Exploit

  IKE and AuthIP IPsec Keyring Modules Service (IKEEXT) Missing DLL

  Woltlab Burning Board FLVideo Addon (video.php, value param) - SQL Injection

5.9.2013

Bugtraq

[SECURITY] [DSA 2751-1] libmodplug security update 2013-09-04
Raphael Geissert (geissert debian org)

Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format and Advanced Recording Format Players 2013-09-04
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Call for Paper/Event - nullcon Goa 2014 2013-09-04
nullcon (nullcon nullcon net)

SEC Consult SA-20130904-0 :: GroupLink everything HelpDesk - undocumented password reset/admin takeover and XSS vulnerabilities 2013-09-04
SEC Consult Vulnerability Lab (research sec-consult com)

[PSA-2013-0903-1] Apple Safari Heap Buffer Overflow 2013-09-04
bugtraq packetstormsecurity org

[SECURITY] [DSA 2750-1] imagemagick security update 2013-09-03
Florian Weimer (fw deneb enyo de)

PayPal's "invalid" aksession Padding Oracle Flaw 2013-09-03
Timothy D. Morgan (tmorgan vsecurity com)

ESA-2013-057: RSA Archer(r) GRC Multiple Vulnerabilities 2013-09-03
Security Alert (Security_Alert emc com)

[ MDVSA-2013:225 ] libdigidoc 2013-09-02
security mandriva com

Malware

Obfuscated-FBU!hb!5699B36615B9

Obfuscated-FBU!hb!7C85A3AC19D7

Obfuscated-FBU!hb!A842FD8AC455

Obfuscated-FBU!hb!13778802BB45

Obfuscated-FBU!hb!C7E4F98CF833

Obfuscated-FBU!hb!0890573092FD

Obfuscated-FBU!hb!3D1AD2FC86B9

Obfuscated-FBU!hb!2E55FC577A3B

Obfuscated-FBU!hb!EFBD8D427627

Obfuscated-FBU!hb!342991630844

Obfuscated-FBU!hb!5D20E9D67884

Obfuscated-FBU!hb!19ACE98729D3

Obfuscated-FBU!hb!2B9105DF095A

Obfuscated-FBU!hb!BA287C938D5E

Generic PUP.x!45D878023A42

Generic.bfr!10880AD2B8B6

Obfuscated-FBU!hb!E31933D6F2A8

Obfuscated-FBU!hb!EE94841C6CCE

Obfuscated-FBU!hb!6ABA6F489A4D

RDN/Generic StartPage!4821D0CD8D94

RDN/Generic BackDoor!tg!1F00E7231381

Generic PUP.x!76E46BEB698D

Obfuscated-FBU!hb!85AD18DF59DA

Obfuscated-FBU!hb!5DE97FDEF54E

Obfuscated-FBU!hb!F795DA7ABDF8

Obfuscated-FBU!hb!C4A1DEDA828D

Obfuscated-FBU!hb!98B92FA67FA1

Obfuscated-FBU!hb!8CD07939AC1D

Obfuscated-FBU!hb!573B2EB61FB8

Obfuscated-FBU!hb!A5FE05B7AAF0

Phishing

 

Vulnerebility

Cisco Secure Access Control System CVE-2013-5470 Remote Denial of Service Vulnerability
2013-09-05
http://www.securityfocus.com/bid/62145

libmodplug CVE-2013-4233 Integer Overflow Vulnerability
2013-09-05
http://www.securityfocus.com/bid/61713

libmodplug CVE-2013-4234 Multiple Heap Buffer Overflow Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/61714

Oracle Java SE CVE-2013-0440 Remote Java Runtime Environment Vulnerability
2013-09-05
http://www.securityfocus.com/bid/57712

Oracle Java SE CVE-2013-2407 Remote Security Vulnerability
2013-09-05
http://www.securityfocus.com/bid/60653

Linux Kernel '/net/core/scm.c' nsproxy Local Privilege Escalation Vulnerability
2013-09-05
http://www.securityfocus.com/bid/62072

Oracle E-Business Suite CVE-2013-3749 Remote Password Disclosure Vulnerability
2013-09-05
http://www.securityfocus.com/bid/61268

WebKit CVE-2012-3748 Remote Code Execution Vulnerability
2013-09-05
http://www.securityfocus.com/bid/56362

Linux Kernel Multiple Local Information Disclosure Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/60280

Linux Kernel 'mmc_ioctl_cdrom_read_data()' Function Local Information Disclosure Vulnerability
2013-09-05
http://www.securityfocus.com/bid/60375

Linux Kernel 'key_notify_policy_flush()' Function Local Information Disclosure Vulnerability
2013-09-05
http://www.securityfocus.com/bid/60953

Imagemagick 'gif.c' Memory Corruption Vulnerability
2013-09-05
http://www.securityfocus.com/bid/62080

SPICE CVE-2013-4130 Multiple Denial of Service Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/61192

Multiple TLS And DTLS Implementations CVE-2013-0169 Information Disclosure Vulnerability
2013-09-05
http://www.securityfocus.com/bid/57778

Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/61189

Apache Struts CVE-2013-2248 Multiple Open Redirection Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/61196

Supermicro IPMI Web Interface Multiple Stack-Based Buffer Overflow Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/62094

Supermicro IPMI Web Interface Unspecified Remote Privilege Escalation Vulnerability
2013-09-05
http://www.securityfocus.com/bid/62098

Supermicro IPMI Web Interface Unspecified Remote Arbitrary Shell Command Injection
2013-09-05
http://www.securityfocus.com/bid/62097

lighttpd 'http_request_split_value()' Function Remote Denial of Service Vulnerability
2013-09-05
http://www.securityfocus.com/bid/56619

RoundCube Webmail Multiple HTML-injection Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/61976

HP LoadRunner CVE-2013-4798 Remote Code Execution Vulnerability
2013-09-05
http://www.securityfocus.com/bid/61443

Microsoft Internet Explorer CVE-2013-3184 Memory Corruption Vulnerability
2013-09-05
http://www.securityfocus.com/bid/61668

Oracle Java SE CVE-2013-1500 Local Security Vulnerability
2013-09-05
http://www.securityfocus.com/bid/60627

Oracle Java SE CVE-2012-1533 Remote Code Execution Vulnerability
2013-09-05
http://www.securityfocus.com/bid/56046

Cisco Wireless LAN Controller CVE-2013-3474 Multiple Denial of Service Vulnerabilities
2013-09-05
http://www.securityfocus.com/bid/62084

IBM solidDB Stored Procedure Call Denial of Service Vulnerability
2013-09-04
http://www.securityfocus.com/bid/59637

IBM Java CVE-2013-4002 Denial of Service Vulnerability
2013-09-04
http://www.securityfocus.com/bid/61310

Oracle Java SE CVE-2013-1571 Frame Injection Vulnerability
2013-09-04
http://www.securityfocus.com/bid/60634

Cisco IOS CVE-2013-5469 Remote Denial of Service Vulnerability
2013-09-04
http://www.securityfocus.com/bid/62083

Exploit

  KingView 6.53 - Insecure ActiveX Control (SuperGrid)

  KingView 6.53 - ActiveX Remote File Creation / Overwrite (KChartXY)

4.9.2013

Bugtraq

[PSA-2013-0903-1] Apple Safari Heap Buffer Overflow 2013-09-04
bugtraq packetstormsecurity org

[SECURITY] [DSA 2750-1] imagemagick security update 2013-09-03
Florian Weimer (fw deneb enyo de)

PayPal's "invalid" aksession Padding Oracle Flaw 2013-09-03
Timothy D. Morgan (tmorgan vsecurity com)

ESA-2013-057: RSA Archer(r) GRC Multiple Vulnerabilities 2013-09-03
Security Alert (Security_Alert emc com)

[ MDVSA-2013:225 ] libdigidoc 2013-09-02
security mandriva com

[ MDVSA-2013:224 ] libtiff 2013-09-02
security mandriva com