Databáze Hot News - Rok - Úvod  2018  2017  2016  2015  2014  2013  - 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  List  - 2018  2017  2016  2015  2014  2013 
Poslední aktualizace v 08.10.2016 14:19:38
 

8.2.2017

Bugtraq

ESA-2017-001: EMC Isilon InsightIQ Authentication Bypass Vulnerability 2017-02-07
EMC Product Security Response Center (Security_Alert emc com)

SEC Consult SA-20170207 :: Path Traversal, Backdoor accounts & KNX group address password bypass in JUNG Smart Visu server 2017-02-07
SEC Consult Vulnerability Lab (research sec-consult com)

[security bulletin] HPESBUX03699 SSRT110304 rev.1 - HP-UX BIND, Multiple Remote Denial of Service (DoS) 2017-02-06
HPE Product Security Response Team (security-alert hpe com)

Teleopti WFM <= 7.1.0 Multiple Vulnerabilities 2017-02-06
Graph-X (graphx sigaint org)

[SECURITY] [DSA 3781-1] svgsalamander security update 2017-02-05
Moritz Muehlenhoff (jmm debian org)

ZoneMinder - multiple vulnerabilities 2017-02-05
john terabyteit com au

Malware

Trojan.Vimnaspu

Phishing

Apple

7th February 2017

YOUR APPIE LD IS AUTOMATICALLY
LOCKED.

AOL

7th February 2017

you have got a new message

AOL

7th February 2017

you have got an incoming
message

Chase

7th February 2017

CHASE BANK - NOTIFICATION!

Chase

7th February 2017

CHASE BANK - NOTICE!

Vulnerebility

OpenSSH CVE-2016-10009 Remote Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/94968

OpenSSH 'ssh/kex.c' Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/93776

OpenSSH CVE-2016-10012 Security Bypass Vulnerability
2017-02-08
http://www.securityfocus.com/bid/94975

OpenSSH CVE-2016-10011 Local Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/94977

PostfixAdmin CVE-2017-5930 Session Management Security Bypass Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96142

Tor Browser Launcher CVE-2016-3180 Arbitrary Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96140

QEMU 'virtio-crypto.c' Integer Overflow Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96141

Symfony CVE-2016-2403 Authentication Bypass Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96137

GNU Bash CVE-2017-5932 Multiple Arbitrary Code Execution Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96136

SimpleSAMLphp CVE-2016-3124 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96134

GraphicsMagick CVE-2016-7800 Remote Integer Underflow Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96135

Trend Micro Control Manager Multiple Directory Traversal Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96131

Trend Micro Control Manager Multiple Information Disclosure Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/95972

IBM Security Access Manager Products CVE-2016-3029 Cross Site Request Forgery Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96133

SendQuick Entera and Avera SMS Gateway Appliances Remote Command Injection Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96129

ZoneMinder CVE-2017-5368 Cross Site Request Forgery Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96126

IBM Security Access Manager CVE-2016-3024 Local Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96132

IBM Security Access Manager Products CVE-2016-3027 XML External Entity Injection Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96127

IBM Security Access Manager Products CVE-2016-3022 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96130

Multiple Samsung Android Mobile Devices InputMethod Application Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96128

Trend Micro Control Manager Multiple SQL Injection Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96123

Alaris 8015 PC unit CVE-2016-9355 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96116

Sielco Sistemi Winlog Pro/ Winlog Lite CVE-2017-5161 DLL Loading Local Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96119

Linux Kernel CVE-2016-10150 Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/95672

dotCMS Multiple Cross Site Scripting Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96115

Spice CVE-2016-9578 Remote Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96118

Plone Incomplete Fix CVE-2016-7147 Cross-Site Scripting Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96117

ZoneMinder 'web/views/file.php' Local File Include Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96125

IBM Security Access Manager Products CVE-2016-3023 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96124

Alaris 8000 and 8015 PC units CVE-2016-8375 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96113Trend Micro Control Manager Multiple Information Disclosure Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/95972

IBM Security Access Manager Products CVE-2016-3029 Cross Site Request Forgery Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96133

SendQuick Entera and Avera SMS Gateway Appliances Remote Command Injection Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96129

ZoneMinder CVE-2017-5368 Cross Site Request Forgery Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96126

IBM Security Access Manager CVE-2016-3024 Local Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96132

IBM Security Access Manager Products CVE-2016-3027 XML External Entity Injection Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96127

IBM Security Access Manager Products CVE-2016-3022 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96130

Multiple Samsung Android Mobile Devices InputMethod Application Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96128

Trend Micro Control Manager Multiple SQL Injection Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96123

Alaris 8015 PC unit CVE-2016-9355 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96116

Sielco Sistemi Winlog Pro/ Winlog Lite CVE-2017-5161 DLL Loading Local Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96119

Linux Kernel CVE-2016-10150 Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/95672

dotCMS Multiple Cross Site Scripting Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96115

Spice CVE-2016-9578 Remote Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96118

Plone Incomplete Fix CVE-2016-7147 Cross-Site Scripting Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96117

ZoneMinder 'web/views/file.php' Local File Include Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96125

IBM Security Access Manager Products CVE-2016-3023 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96124

Alaris 8000 and 8015 PC units CVE-2016-8375 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96113

ZoneMinder CVE-2017-5367 Multiple Cross Site Scripting Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96120

Google Nexus Kernel File System CVE-2016-10044 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96122

Linux kernel 'ip6_gre.c' Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96037

QEMU 'hw/usb/dev-smartcard-reader.c' Integer Overflow Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96112

Google Android CVE-2016-8414 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96111

IBM Security Access Manager CVE-2016-3021 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96114

Google Nexus Broadcom Wi-Fi Driver CVE-2017-0449 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96110

Google Android Qualcomm Sound Driver CVE-2017-0451 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96108

Google Nexus Audioserver CVE-2017-0450 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96109

Google Nexus NVIDIA Video Driver CVE-2017-0448 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96105

Google Nexus Realtek Sound Driver CVE-2017-0444 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96107

Google Android Audioserver CVE-2017-0425 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96106Linux kernel 'ip6_gre.c' Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96037

Google Android CVE-2016-8414 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96111

IBM Security Access Manager CVE-2016-3021 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96114

Google Nexus Broadcom Wi-Fi Driver CVE-2017-0449 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96110

Google Android Qualcomm Sound Driver CVE-2017-0451 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96108

Google Nexus Audioserver CVE-2017-0450 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96109

Google Nexus NVIDIA Video Driver CVE-2017-0448 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96105

Google Nexus Realtek Sound Driver CVE-2017-0444 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96107

Google Android Audioserver CVE-2017-0425 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96106

Google Android AOSP Messaging CVE-2017-0424 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96104

Google Android Bluetooth CVE-2017-0423 Remote Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96102

Google Android Kernel Networking Subsystem CVE-2014-9914 Remote Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96100

Google Android CVE-2016-8480 Remote Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96101

Google Android Filesystem CVE-2017-0426 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96099

Google Android Bionic DNS CVE-2017-0422 Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96097

Google Android AOSP Mail CVE-2017-0420 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96093

Google Android libgdx CVE-2017-0408 Remote Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96092

IBM Security Access Manager Products CVE-2015-5013 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96090

Google Android libstagefright CVE-2017-0409 Arbitrary Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96091

Google Android Framework APIs CVE-2017-0421 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96096

Google Android Mediaserver CVE-2017-0415 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96089

IBM WebSphere Application Server CVE-2016-9736 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96076

IBM Sterling Order Management CVE-2016-9991 Cross Site Request Forgery Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96084

Multiple IBM Products CVE-2016-9748 Remote Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96074

Google Nexus Kernel File System CVE-2017-0427 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96071

podofo 'PdfOutputStream.cpp' Null Pointer Dereference Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96072

Google Nexus NVIDIA GPU Driver Multiple Privilege Escalation Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96070

Google Android Synaptics Touchscreen Driver Multiple Privilege Escalation Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96061

AES-GCM CVE-2016-0270 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96062

Google Android MediaTek Driver CVE-2017-0432 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96067Google Android Qualcomm Sound Driver CVE-2017-0451 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96108

Google Nexus Audioserver CVE-2017-0450 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96109

Google Nexus NVIDIA Video Driver CVE-2017-0448 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96105

Google Nexus Realtek Sound Driver CVE-2017-0444 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96107

Google Android Audioserver CVE-2017-0425 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96106

Google Android AOSP Messaging CVE-2017-0424 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96104

Google Android Bluetooth CVE-2017-0423 Remote Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96102

Google Android Kernel Networking Subsystem CVE-2014-9914 Remote Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96100

Google Android CVE-2016-8480 Remote Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96101

Google Android Filesystem CVE-2017-0426 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96099

Google Android Bionic DNS CVE-2017-0422 Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96097

Google Android AOSP Mail CVE-2017-0420 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96093

Google Android libgdx CVE-2017-0408 Remote Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96092

IBM Security Access Manager Products CVE-2015-5013 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96090

Google Android libstagefright CVE-2017-0409 Arbitrary Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96091

Google Android Framework APIs CVE-2017-0421 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96096

Google Android Mediaserver CVE-2017-0415 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96089

IBM WebSphere Application Server CVE-2016-9736 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96076

IBM Sterling Order Management CVE-2016-9991 Cross Site Request Forgery Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96084

Multiple IBM Products CVE-2016-9748 Remote Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96074

Google Nexus Kernel File System CVE-2017-0427 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96071

podofo 'PdfOutputStream.cpp' Null Pointer Dereference Denial of Service Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96072

Google Nexus NVIDIA GPU Driver Multiple Privilege Escalation Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96070

Google Android Synaptics Touchscreen Driver Multiple Privilege Escalation Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96061

AES-GCM CVE-2016-0270 Information Disclosure Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96062

Google Android MediaTek Driver CVE-2017-0432 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96067

Google Android Qualcomm components CVE-2017-0431 Multiple Unspecified Security Vulnerabilities
2017-02-08
http://www.securityfocus.com/bid/96068

podofo CVE-2017-5853 Integer Overflow Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96066

Google Nexus Broadcom Wi-Fi Driver CVE-2017-0430 Privilege Escalation Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96065

Google Nexus Qualcomm Crypto Driver CVE-2016-8418 Remote Code Execution Vulnerability
2017-02-08
http://www.securityfocus.com/bid/96058

SANS News

My Password is [taco] Using Emojis for Stronger Passwords

Threatpost

Popular iOS Apps Vulnerable to TLS Interception Attacks

Attackers Capitalizing on Unpatched WordPress Sites

Consortium Publishes Manifesto on Autonomous Vehicle Security

Uber Debuts SSH Key Authentication Module

Valve Patches Trivial XSS Bug in Steam

Exploit

Muviko Video CMS - SQL Injection

Multi Outlets POS 3.1 - 'id' Parameter SQL Injection

Fully Featured News CMS 1.0 - 'id' Parameter SQL Injection

OpenBSD HTTPd < 6.0 - Memory Exhaustion Denial of Service

Easy Support Tools 1.0 - 'stt' Parameter SQL Injection

7.2.2017

Bugtraq

SEC Consult SA-20170207 :: Path Traversal, Backdoor accounts & KNX group address password bypass in JUNG Smart Visu server 2017-02-07
SEC Consult Vulnerability Lab (research sec-consult com)

[security bulletin] HPESBUX03699 SSRT110304 rev.1 - HP-UX BIND, Multiple Remote Denial of Service (DoS) 2017-02-06
HPE Product Security Response Team (security-alert hpe com)

Teleopti WFM <= 7.1.0 Multiple Vulnerabilities 2017-02-06
Graph-X (graphx sigaint org)

[SECURITY] [DSA 3781-1] svgsalamander security update 2017-02-05
Moritz Muehlenhoff (jmm debian org)

ZoneMinder - multiple vulnerabilities 2017-02-05
john terabyteit com au

[FOXMOLE SA 2016-07-05] ZoneMinder - Multiple Issues 2017-02-02
FOXMOLE Advisories (advisories foxmole com)

Ghostscript 9.20 Filename Command Execution 2017-02-02
apparitionsec gmail com (hyp3rlinx)

[security bulletin] HPSBST03588 rev 1. - HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS, Remote Arbitrary Command Execution 2017-02-01
security-alert hpe com

Malware

OSX.Addkeysteal

TrojanDownloader:Win32/Mato
PWS:Win32/Passew
PWS:MSIL/Tosnir.A

Phishing

Chase

7th February 2017

CHASE BANK - NOTICE!

BB&T Alerts

6th February 2017

Request to Update Your BB&T
Online Information!

Apple Online - Store

6th February 2017

APPLE ONLINE - WE'VE RECEIVED
YOUR ORDER: [MMMH36GLV6]

Vulnerebility

Google Android Synaptics Touchscreen Driver Multiple Privilege Escalation Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96061

AES-GCM CVE-2016-0270 Information Disclosure Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96062

Google Android MediaTek Driver CVE-2017-0432 Privilege Escalation Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96067

Google Android Qualcomm components CVE-2017-0431 Multiple Unspecified Security Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96068

podofo CVE-2017-5853 Integer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96066

Google Nexus Broadcom Wi-Fi Driver CVE-2017-0430 Privilege Escalation Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96065

Google Nexus Qualcomm Crypto Driver CVE-2016-8418 Remote Code Execution Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96058

Google Android AOSP Messaging Multiple Information Disclosure Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96063

Google Pixel/Pixel XL HTC touchscreen Driver Multiple Privilege Escalation Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96054

Google Nexus/ Pixel Products Qualcomm Sound Driver Multiple Privilege Escalation Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96053

Google Android Framework APIs Multiple Privilege Escalation Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96056

Google Android Audioserver Multiple Privilege Escalation Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96055

Google Nexus/ Pixel Products Qualcomm Wi-Fi Driver Multiple Privilege Escalation Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96047

LibTIFF CVE-2016-5102 Remote Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96049

Google Android Surfaceflinger CVE-2017-0405 Remote Code Execution Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96048

Google Android Mediaserver Multiple Remote Code Execution Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96046

PEAR HTML_AJAX CVE-2017-5677 PHP Object Injection Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96044

NetApp OnCommand Insight Data Warehouse CVE-2017-5600 Security Bypass Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96041

Exponent CMS CVE-2017-5879 SQL Injection Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96039

Spice CVE-2016-9577 Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96040

SanaCMS CVE-2017-5882 Cross Site Scripting Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96038

Red Hat JBoss Enterprise Application Platform CVE-2016-8656 Local Privilege Escalation Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96035

Linux kernel 'ip6_gre.c' Denial of Service Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96037

Hawtio CVE-2017-2617 Arbitrary File Upload Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96036

SendQuick Entera & Avera SMS Gateway Appliances Multiple Security Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96031

libplist Multiple Local Heap Buffer Overflow and Denial-of-Service Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96022

Citrix License Server for Windows and License Server VPX CVE-2017-5571 Open Redirect Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96028

iucode-tool CVE-2017-0357 Heap Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95432

libXpm CVE-2016-10164 Heap Based Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95785

Irssi Multiple Memory Corruption Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/95310PEAR HTML_AJAX CVE-2017-5677 PHP Object Injection Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96044

NetApp OnCommand Insight Data Warehouse CVE-2017-5600 Security Bypass Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96041

Exponent CMS CVE-2017-5879 SQL Injection Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96039

Spice CVE-2016-9577 Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96040

SanaCMS CVE-2017-5882 Cross Site Scripting Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96038

Red Hat JBoss Enterprise Application Platform CVE-2016-8656 Local Privilege Escalation Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96035

Linux kernel 'ip6_gre.c' Denial of Service Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96037

Hawtio CVE-2017-2617 Arbitrary File Upload Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96036

SendQuick Entera & Avera SMS Gateway Appliances Multiple Security Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96031

libplist Multiple Local Heap Buffer Overflow and Denial-of-Service Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96022

Citrix License Server for Windows and License Server VPX CVE-2017-5571 Open Redirect Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96028

iucode-tool CVE-2017-0357 Heap Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95432

libXpm CVE-2016-10164 Heap Based Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95785

Irssi Multiple Memory Corruption Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/95310

Irssi 'buf.pl' Local Information Disclosure Vulnerability
2017-02-07
http://www.securityfocus.com/bid/93155

GnuTLS 'lib/opencdk/read-packet.c' Multiple Heap Buffer Overflow Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/95372

GnuTLS CVE-2017-5336 Stack Buffer Overflow Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95377

GnuTLS GNUTLS-SA-2016-3 Certificate Validation Security Bypass Vulnerability
2017-02-07
http://www.securityfocus.com/bid/92893

GnuTLS CVE-2017-5334 Security Bypass Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95370

GnuTLS CVE-2017-5335 Multiple Buffer Overflow Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/95374

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-02-07
http://www.securityfocus.com/bid/93841

gtk-vnc Remote Code Execution Vulnerability and Multiple Integer Overflow Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96016

libevent Multiple Security Vulnerabilities
2017-02-07
http://www.securityfocus.com/bid/96014

Multiple IBM Products CVE-2017-1127 Cross Site Scripting Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96019

Multiple IBM Products CVE-2017-1128 Unspecified Cross Site Scripting Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96017

Linux Kernel 'EXT4 image' Local Denial of Service Vulnerability
2017-02-07
http://www.securityfocus.com/bid/94354

TigerVNC CVE-2016-10207 Denial of Service Vulnerability
2017-02-07
http://www.securityfocus.com/bid/96012

Microsoft Windows CVE-2017-0016 Memory Corruption Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95969

Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-07
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-07
http://www.securityfocus.com/bid/95407

SANS News

Malicious Or Not? You decide...

My Password is [taco] Using Emojis for Stronger Passwords

Threatpost

ICS, SCADA Security Woes Linger On

InterContinental Hotels Confirms Credit Card Breach

St. Jude Patches Additional Cardiac Device

Smart TV Manufacturer Vizio Fined $2.2M for Tracking Customers

Exploit

IVPN Client 2.6.1 - Privilege Escalation

6.2.2017

Bugtraq

Teleopti WFM <= 7.1.0 Multiple Vulnerabilities 2017-02-06
Graph-X (graphx sigaint org)

[SECURITY] [DSA 3781-1] svgsalamander security update 2017-02-05
Moritz Muehlenhoff (jmm debian org)

ZoneMinder - multiple vulnerabilities 2017-02-05
john terabyteit com au

Malware

 

Phishing

 

Vulnerebility

Irssi Multiple Memory Corruption Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/95310

Irssi 'buf.pl' Local Information Disclosure Vulnerability
2017-02-06
http://www.securityfocus.com/bid/93155

GnuTLS 'lib/opencdk/read-packet.c' Multiple Heap Buffer Overflow Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/95372

GnuTLS CVE-2017-5336 Stack Buffer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95377

GnuTLS GNUTLS-SA-2016-3 Certificate Validation Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/92893

GnuTLS CVE-2017-5334 Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95370

GnuTLS CVE-2017-5335 Multiple Buffer Overflow Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/95374

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/93841

libevent Multiple Security Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/96014

Multiple IBM Products CVE-2017-1127 Cross Site Scripting Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96019

Multiple IBM Products CVE-2017-1128 Unspecified Cross Site Scripting Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96017

Linux Kernel 'EXT4 image' Local Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/94354

TigerVNC CVE-2016-10207 Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96012

Microsoft Windows CVE-2017-0016 Memory Corruption Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95969

Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95407

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95406

Artifex MuJS 'regexp.c' Integer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96006

Mini-XML Stack Exhaustion Multiple Denial of Service Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/90315

SOGo CVE-2016-6188 Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96007

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/91319

Business LaLa Call App CVE-2017-2104 SSL Certificate Validation Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96005

LaLa Call App for Android CVE-2017-2103 SSL Certificate Validation Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96004

IBM Jazz for Service Management CVE-2016-5935 Information Disclosure Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96003

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95998Microsoft Windows CVE-2017-0016 Memory Corruption Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95969

Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95407

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95406

Artifex MuJS 'regexp.c' Integer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96006

Mini-XML Stack Exhaustion Multiple Denial of Service Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/90315

SOGo CVE-2016-6188 Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96007

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/91319

Business LaLa Call App CVE-2017-2104 SSL Certificate Validation Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96005

LaLa Call App for Android CVE-2017-2103 SSL Certificate Validation Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96004

IBM Jazz for Service Management CVE-2016-5935 Information Disclosure Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96003

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-06
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95998

QEMU 'hw/scsi/megasas.c' Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95999

OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95997

Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95995

FFmpeg CVE-2016-10192 Heap Buffer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95991

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-06
http://www.securityfocus.com/bid/95983

SANS News

What Are These Odd POP3 (Port 110/tcp) Scans About?

Threatpost

 

Exploit

ThisIsWhyImBroke Clone Script 4.0 - 'id' Parameter SQL Injection

Upworthy Clone Script 1.1.0 - 'id' Parameter SQL Injection

Ultimate Viral Media Script 1.0 - 'id' Parameter SQL Injection

Visual Link Sharing Websites Builder Script 2.1.0 - SQL Injection

ThisIsWhyImBroke Clone Script 4.0.0 - 'id' Parameter SQL Injection

Funny Image and Video Script 2.0.0 - 'id' Parameter SQL Injection

Clone Script Directory Script 1.1.0 - 'cid' Parameter SQL Injection

Viral Pictures and Video Script 2.0.0 - 'id' Parameter SQL Injection

NewsBee CMS - SQL Injection

Web Inspiration Gallery Script 1.0.0 - 'id' Parameter SQL Injection

Viral Fun Facts Sharing Script 1.1.0 - 'id' Parameter SQL Injection

5.2.2017

Bugtraq

 

Malware

Trojan.Zherotee

Phishing

Information

4th February 2017

Account Information

PayPal

3rd February 2017

Tracking Number For
sunmtnsft@aol.com

Vulnerebility

Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95407

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95406

Artifex MuJS 'regexp.c' Integer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96006

Mini-XML Stack Exhaustion Multiple Denial of Service Vulnerabilities
2017-02-05
http://www.securityfocus.com/bid/90315

SOGo CVE-2016-6188 Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96007

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/91319

Business LaLa Call App CVE-2017-2104 SSL Certificate Validation Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96005

LaLa Call App for Android CVE-2017-2103 SSL Certificate Validation Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96004

IBM Jazz for Service Management CVE-2016-5935 Information Disclosure Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96003

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-05
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95998

QEMU 'hw/scsi/megasas.c' Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95999

OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95997

Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95995

FFmpeg CVE-2016-10192 Heap Buffer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95991

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95983

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-02-05
http://www.securityfocus.com/bid/95875Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95407

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95406

Artifex MuJS 'regexp.c' Integer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96006

Mini-XML Stack Exhaustion Multiple Denial of Service Vulnerabilities
2017-02-05
http://www.securityfocus.com/bid/90315

SOGo CVE-2016-6188 Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96007

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/91319

Business LaLa Call App CVE-2017-2104 SSL Certificate Validation Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96005

LaLa Call App for Android CVE-2017-2103 SSL Certificate Validation Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96004

IBM Jazz for Service Management CVE-2016-5935 Information Disclosure Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96003

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-05
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95998

QEMU 'hw/scsi/megasas.c' Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95999

OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95997

Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95995

FFmpeg CVE-2016-10192 Heap Buffer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95991

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-05
http://www.securityfocus.com/bid/95983

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-02-05
http://www.securityfocus.com/bid/95875Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95407

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95406

Artifex MuJS 'regexp.c' Integer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96006

Mini-XML Stack Exhaustion Multiple Denial of Service Vulnerabilities
2017-02-04
http://www.securityfocus.com/bid/90315

SOGo CVE-2016-6188 Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96007

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/91319

Business LaLa Call App CVE-2017-2104 SSL Certificate Validation Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96005

LaLa Call App for Android CVE-2017-2103 SSL Certificate Validation Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96004

IBM Jazz for Service Management CVE-2016-5935 Information Disclosure Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96003

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-04
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95998

QEMU 'hw/scsi/megasas.c' Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95999

OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95997

Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95995

FFmpeg CVE-2016-10192 Heap Buffer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95991

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95983

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-02-04
http://www.securityfocus.com/bid/95875Libreswan CVE-2016-3071 Remote Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/87295

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95407

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95406

Artifex MuJS 'regexp.c' Integer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96006

Mini-XML Stack Exhaustion Multiple Denial of Service Vulnerabilities
2017-02-04
http://www.securityfocus.com/bid/90315

SOGo CVE-2016-6188 Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96007

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/91319

Business LaLa Call App CVE-2017-2104 SSL Certificate Validation Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96005

LaLa Call App for Android CVE-2017-2103 SSL Certificate Validation Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96004

IBM Jazz for Service Management CVE-2016-5935 Information Disclosure Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96003

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-04
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95998

QEMU 'hw/scsi/megasas.c' Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95999

OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95997

Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95995

FFmpeg CVE-2016-10192 Heap Buffer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95991

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-04
http://www.securityfocus.com/bid/95983

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-02-04
http://www.securityfocus.com/bid/95875

SANS News

Detecting Undisclosed Vulnerabilities with Security Tools & Features

Many Malware Samples Found on Pastebin

Threatpost

 

Exploit

Alstrasoft EPay Enterprise 5.17 - SQL Injection

Alstrasoft ProTaxi Enterprise 3.5 - Arbitrary File Upload

Alstrasoft e-Friends 5.12 - SQL Injection

Alstrasoft Video Share Enterprise 4.72 - SQL Injection

Alstrasoft Flippa Clone MarketPlace Script 4.10 - Cross-Site Request Forgery (Add Admin)

Alstrasoft FMyLife Pro 1.02 - Cross-Site Request Forgery (Add Admin)

Alstrasoft Forum Pay Per Post Exchange Script 2.01 - SQL Injection

SlimarUSER Management 1.0 - 'id' Parameter SQL Injection

Debian 9 ntfs-3g - Privilege Escalation

ntfs-3g (Debian 9) - Privilege Escalation

3.2.2017

Bugtraq

[FOXMOLE SA 2016-07-05] ZoneMinder - Multiple Issues 2017-02-02
FOXMOLE Advisories (advisories foxmole com)

Ghostscript 9.20 Filename Command Execution 2017-02-02
apparitionsec gmail com (hyp3rlinx)

Malware

JS.Kopiwak

Ransom.Spora!gm

Trojan.Zherotee

Phishing

PayPal

3rd February 2017

Tracking Number For
sunmtnsft@aol.com

Vulnerebility

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95983

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95875

IBM Security Key Lifecycle Manager CVE-2016-6093 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95985

IBM Security Key Lifecycle Manager CVE-2016-6094 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95984

Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95352

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95813

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95814

OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95375

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/93841

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/94242

Libgd CVE-2016-6912 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95843

libgd Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95869

libgd 'gdImageCreate()' Function Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95841

RubyGems minitar and archive-tar-minitar CVE-2016-10173 Local Directory Traversal Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95874

IBM Tivoli Key Lifecycle Manager CVE-2016-6104 Arbitrary File Upload Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95980

Adobe Flash Player and AIR APSB16-08 Multiple Unspecified Integer Overflow Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/84308

IBM InfoSphere BigInsights CVE-2016-2992 Unspecified Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95979

IBM Tivoli Key Lifecycle Manager CVE-2016-6098 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95982

McAfee ePolicy Orchestrator CVE-2016-8027 SQL Injection Vulnerabilitiy
2017-02-03
http://www.securityfocus.com/bid/95981

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95397

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95816

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95402
Adobe Flash Player and AIR APSB16-08 Multiple Unspecified Integer Overflow Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/84308

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95397

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95816

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95402

WordPress Cryptographic Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95401

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95399

IBM Tivoli Storage Manager CVE-2016-6034 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95976

IBM Security Key Lifecycle Manager CVE-2016-6097 Local Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95977

IBM UrbanCode Deploy CVE-2016-2941 Local Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95978

IBM UrbanCode Deploy CVE-2016-2942 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95975

Multiple HP Products CVE-2016-8529 Unspecified Remote Code Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95970

IBM UrbanCode Deploy CVE-2016-0320 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95974

IBM InfoSphere BigInsights CVE-2016-2924 Unspecified Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95973

Trend Micro Control Manager Multiple Information Disclosure Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95972

Honeywell XL Web II Controller Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95971

SageCRM SQL Injection and Arbitrary File Upload Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95968

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/94242

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-02-03
http://www.securityfocus.com/bid/91319

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95814

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95813

OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95375

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/93841

Microsoft Windows VU#867968 Memory Corruption Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95969

Multiple GStreamer Plug-ins Buffer Overflow and Denial Of Service Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/96001

Mp3splt 'free_options()' Function Null Pointer Dereference Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/96002

Barracuda NextGen Firewal F-Series Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/96000

Samba CVE-2016-2119 Man in the Middle Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/91700

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/93814

Apache Ranger CVE-2016-8746 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95998

QEMU 'hw/scsi/megasas.c' Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95999

OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95997

Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95995

FFmpeg CVE-2016-10192 Heap Buffer Overflow Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95991

Lenovo XClarity Administrator CVE-2016-8233 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95992

Ghostscript Remote Command Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95988

FFmpeg CVE-2016-10191 Heap Buffer Overflow Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95989

Drupal Better Exposed Filters Module Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95994

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95993

NTFS-3G CVE-2017-0358 Local Privilege Escalation Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95987

QEMU 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95990

FFmpeg CVE-2016-10190 Heap Buffer Overflow Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95986

IBM Security Key Lifecycle Manager CVE-2016-6096 Cross Site Scripting Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95983

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95875

IBM Security Key Lifecycle Manager CVE-2016-6093 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95985

IBM Security Key Lifecycle Manager CVE-2016-6094 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95984

Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95352

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95813

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95814

OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95375

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/93841

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/94242

Libgd CVE-2016-6912 Security Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95843

libgd Multiple Security Vulnerabilities
2017-02-03
http://www.securityfocus.com/bid/95869Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95352

Jenkins CVE-2017-2613 Cross Site Request Forgery Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95967

IBM Security Key Lifecycle Manager CVE-2016-6116 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95966

Linux Kernel CVE-2016-7117 Use-After-Free Remote Code Execution Vulnerability
2017-02-03
http://www.securityfocus.com/bid/93304

Linux Kernel 'fs/pipe.c' Local Denial of Service Vulnerability
2017-02-03
http://www.securityfocus.com/bid/83870

Jenkins CVE-2017-2609 Information Disclosure Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95964

IBM Security Key Lifecycle Manager CVE-2016-6095 Brute Force Authentication Bypass Vulnerability
2017-02-03
http://www.securityfocus.com/bid/95965

SANS News

Cisco - Issue with Clock Signal Component

Threatpost

Printing and Marketing Firm Leaks High-Profile Customers’ Data

Microsoft Waits for Patch Tuesday to Fix SMB Zero Day

Cisco Patches Authentication Bypass in Cisco Prime Home

Locky Ransomware, Kovter Click-Fraud Malware Spreading in Same Campaigns

Honeywell SCADA Controllers Exposed Passwords in Clear Text

Exploit

CUPS < 2.0.3 - Remote Command Execution

Netwave IP Camera - Password Disclosure

SlimarUSER Management 1.0 - 'id' Parameter SQL Injection

Itech Multi Vendor Script 6.49 - SQL Injection

2.2.2017

Bugtraq

[FOXMOLE SA 2016-07-05] ZoneMinder - Multiple Issues 2017-02-02
FOXMOLE Advisories (advisories foxmole com)

Ghostscript 9.20 Filename Command Execution 2017-02-02
apparitionsec gmail com (hyp3rlinx)

[security bulletin] HPSBST03588 rev 1. - HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS, Remote Arbitrary Command Execution 2017-02-01
security-alert hpe com

Cisco Security Advisory: Cisco Prime Home Authentication Bypass Vulnerability 2017-02-01
Cisco Systems Product Security Incident Response Team (psirt cisco com)

ESA-2017-003: EMC Network Configuration Manager (NCM) Multiple Vulnerabilities 2017-02-01
EMC Product Security Response Center (Security_Alert emc com)

[SECURITY] [DSA 3779-1] wordpress security update 2017-02-01
Sebastien Delafond (seb debian org)

[security bulletin] HPESBHF03700 rev.1 - HPE iMC PLAT, Remote Disclosure of Information, Denial of Service (DoS) 2017-01-31
security-alert hpe com

[SECURITY] [DSA 3778-1] ruby-archive-tar-minitar security update 2017-01-31
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPESBGN03696 rev.1 - HPE Helion Eucalyptus, Remote Escalation of Privilege 2017-01-31
security-alert hpe com

[security bulletin] HPSBHF03693 rev.1 - HPE iMC PLAT Network Products running Microsoft SQL Server, Remote Elevation of Privilege 2017-01-31
security-alert hpe com

Malware

 

Phishing

 

Vulnerebility

Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95352

Jenkins CVE-2017-2613 Cross Site Request Forgery Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95967

IBM Security Key Lifecycle Manager CVE-2016-6116 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95966

Linux Kernel CVE-2016-7117 Use-After-Free Remote Code Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/93304

Linux Kernel 'fs/pipe.c' Local Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/83870

Jenkins CVE-2017-2609 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95964

IBM Security Key Lifecycle Manager CVE-2016-6095 Brute Force Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95965

Jenkins CVE-2017-2605 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95961

IBM Security Key Lifecycle Manager CVE-2016-6099 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95958

Jenkins CVE-2017-2608 Remote Code Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95953

Jenkins CVE-2017-2607 HTML Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95963

Jenkins CVE-2017-2606 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95962

Jenkins CVE-2017-2601 HTML Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95960

Jenkins CVE-2017-2612 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95957

Jenkins CVE-2017-2611 Multiple Security Bypass Vulnerabilities
2017-02-02
http://www.securityfocus.com/bid/95956

Jenkins CVE-2017-2604 Privilege Escalation Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95959

Jenkins CVE-2017-2603 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95955

Jenkins CVE-2017-2602 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95952

Jenkins CVE-2017-2600 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95954

IBM Security Key Lifecycle Manager CVE-2016-6103 Cross Site Request Forgery Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95950

Jenkins CVE-2017-2610 HTML Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95951

Jenkins CVE-2017-2599 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95949

Jenkins CVE-2017-2598 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95948

Cisco Prime Service Catalog CVE-2017-3810 Open Redirection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95947

Cisco Industrial Ethernet 2000 Series Switches CVE-2017-3812 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95946

EMC Isilon InsightIQ CVE-2017-2765 Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95945

Cisco Firepower Device Manager CVE-2017-3822 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95944

Multiple Cisco Products CVE-2017-3806 Local Command Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95943

Cisco Firepower System Software CVE-2017-3814 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95942

Cisco Firepower Management Center CVE-2017-3809 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95941
Linux Kernel 'fs/pipe.c' Local Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/83870

IBM Security Key Lifecycle Manager CVE-2016-6095 Brute Force Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95965

Jenkins CVE-2017-2605 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95961

IBM Security Key Lifecycle Manager CVE-2016-6099 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95958

Jenkins CVE-2017-2608 Remote Code Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95953

Jenkins CVE-2017-2607 HTML Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95963

Jenkins CVE-2017-2606 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95962

Jenkins CVE-2017-2601 HTML Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95960

Jenkins CVE-2017-2612 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95957

Jenkins CVE-2017-2611 Multiple Security Bypass Vulnerabilities
2017-02-02
http://www.securityfocus.com/bid/95956

Jenkins CVE-2017-2604 Privilege Escalation Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95959

Jenkins CVE-2017-2603 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95955

Jenkins CVE-2017-2602 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95952

Jenkins CVE-2017-2600 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95954

IBM Security Key Lifecycle Manager CVE-2016-6103 Cross Site Request Forgery Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95950

Jenkins CVE-2017-2610 HTML Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95951

Jenkins CVE-2017-2599 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95949

Jenkins CVE-2017-2598 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95948

Cisco Prime Service Catalog CVE-2017-3810 Open Redirection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95947

Cisco Industrial Ethernet 2000 Series Switches CVE-2017-3812 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95946

EMC Isilon InsightIQ CVE-2017-2765 Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95945

Cisco Firepower Device Manager CVE-2017-3822 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95944

Multiple Cisco Products CVE-2017-3806 Local Command Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95943

Cisco Firepower System Software CVE-2017-3814 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95942

Cisco Firepower Management Center CVE-2017-3809 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95941

WordPress 'class-wp-rest-posts-controller.php' Privilege Escalation Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95940

Cisco Email Security Appliance for AsyncOS CVE-2017-3818 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95939

Cisco cBR Series Converged Broadband Routers CVE-2017-3824 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95937

EMC Smarts Network Configuration Manager CVE-2017-2768 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95936

EMC Smarts Network Configuration Manager CVE-2017-2767 Remote Code Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95938
Jenkins CVE-2017-2598 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95948

Cisco Prime Service Catalog CVE-2017-3810 Open Redirection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95947

Cisco Industrial Ethernet 2000 Series Switches CVE-2017-3812 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95946

EMC Isilon InsightIQ CVE-2017-2765 Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95945

Cisco Firepower Device Manager CVE-2017-3822 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95944

Multiple Cisco Products CVE-2017-3806 Local Command Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95943

Cisco Firepower System Software CVE-2017-3814 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95942

Cisco Firepower Management Center CVE-2017-3809 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95941

WordPress 'class-wp-rest-posts-controller.php' Privilege Escalation Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95940

Cisco Email Security Appliance for AsyncOS CVE-2017-3818 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95939

Cisco cBR Series Converged Broadband Routers CVE-2017-3824 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95937

EMC Smarts Network Configuration Manager CVE-2017-2768 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95936

EMC Smarts Network Configuration Manager CVE-2017-2767 Remote Code Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95938

bitlbee-libpurple CVE-2016-10188 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95935

Cisco ASR 1000 Series Routers CVE-2017-3820 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95934

Cisco Prime Home CVE-2017-3791 Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95933

BitlBee Incomplete Fix CVE-2017-5668 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95932

Brocade Virtual Traffic Manager CVE-2016-8201 Cross Site Request Forgery Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95930

BitlBee CVE-2016-10189 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95931

Apache Groovy CVE-2016-6497 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95929

QEMU 'sdhci.c' Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95885

Bzrtp CVE-2016-6271 Man in the Middle Spoofing Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95928

RoundCube Webmail 'content page' HTML-injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/90880

BlackBerry Enterprise Server CVE-2016-3130 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95924

Zimbra Collaboration Suite CVE-2016-3408 Unspecified Cross-Site Scripting Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95923

Zimbra Collaboration Suite CVE-2016-4019 Unspecified Security Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95922

HexChat CVE-2016-2233 Stack-Based Buffer Overflow Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95920

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95356

Huawei EMUI Directory Traversal and Command Injection Vulnerabilities
2017-02-02
http://www.securityfocus.com/bid/95919

Zimbra Collaboration Suite CVE-2016-3999 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-02
http://www.securityfocus.com/bid/95921Cisco Industrial Ethernet 2000 Series Switches CVE-2017-3812 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95946

EMC Isilon InsightIQ CVE-2017-2765 Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95945

Cisco Firepower Device Manager CVE-2017-3822 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95944

Multiple Cisco Products CVE-2017-3806 Local Command Injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95943

Cisco Firepower System Software CVE-2017-3814 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95942

Cisco Firepower Management Center CVE-2017-3809 Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95941

WordPress 'class-wp-rest-posts-controller.php' Privilege Escalation Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95940

Cisco Email Security Appliance for AsyncOS CVE-2017-3818 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95939

Cisco cBR Series Converged Broadband Routers CVE-2017-3824 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95937

EMC Smarts Network Configuration Manager CVE-2017-2768 Remote Security Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95936

EMC Smarts Network Configuration Manager CVE-2017-2767 Remote Code Execution Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95938

bitlbee-libpurple CVE-2016-10188 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95935

Cisco ASR 1000 Series Routers CVE-2017-3820 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95934

Cisco Prime Home CVE-2017-3791 Authentication Bypass Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95933

BitlBee Incomplete Fix CVE-2017-5668 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95932

Brocade Virtual Traffic Manager CVE-2016-8201 Cross Site Request Forgery Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95930

BitlBee CVE-2016-10189 Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95931

Apache Groovy CVE-2016-6497 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95929

QEMU 'sdhci.c' Denial of Service Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95885

Bzrtp CVE-2016-6271 Man in the Middle Spoofing Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95928

RoundCube Webmail 'content page' HTML-injection Vulnerability
2017-02-02
http://www.securityfocus.com/bid/90880

BlackBerry Enterprise Server CVE-2016-3130 Information Disclosure Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95924

Zimbra Collaboration Suite CVE-2016-3408 Unspecified Cross-Site Scripting Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95923

Zimbra Collaboration Suite CVE-2016-4019 Unspecified Security Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95922

HexChat CVE-2016-2233 Stack-Based Buffer Overflow Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95920

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95356

Huawei EMUI Directory Traversal and Command Injection Vulnerabilities
2017-02-02
http://www.securityfocus.com/bid/95919

Zimbra Collaboration Suite CVE-2016-3999 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-02
http://www.securityfocus.com/bid/95921

Zimbra Collaboration Suite CVE-2016-3415 Unspecified Security Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95917

Zimbra Collaboration Suite CVE-2016-3414 Unspecified Security Vulnerability
2017-02-02
http://www.securityfocus.com/bid/95918

SANS News

Multiple vulnerabilities discovered in popular printer models

Threatpost

Latest Ubuntu Update Includes OpenSSL Fixes

HTTPS Hits 50 Percent Traffic Milestone

Google Adds Security Key Enforcement to G Suite Apps, Hosted S/MIME to Gmail

Exploit

WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection (PoC)

WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection Arbitrary Code Execution

Microsoft Windows 10 - SMBv3 Tree Connect (PoC)

Ghostscript 9.20 - 'Filename' Command Execution

WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection Arbitrary Code Execution

WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection (PoC)

WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection Arbitrary Code Execution

Ghostscript 9.20 - 'Filename' Command Execution

QNAP NVR/NAS - Buffer Overflow

1.2.2017

Bugtraq

[security bulletin] HPESBHF03700 rev.1 - HPE iMC PLAT, Remote Disclosure of Information, Denial of Service (DoS) 2017-01-31
security-alert hpe com

[SECURITY] [DSA 3778-1] ruby-archive-tar-minitar security update 2017-01-31
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPESBGN03696 rev.1 - HPE Helion Eucalyptus, Remote Escalation of Privilege 2017-01-31
security-alert hpe com

[security bulletin] HPSBHF03693 rev.1 - HPE iMC PLAT Network Products running Microsoft SQL Server, Remote Elevation of Privilege 2017-01-31
security-alert hpe com

ESA-2017-007: EMC Documentum eRoom Unverified Password Change Vulnerability 2017-01-31
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-094: RSA BSAFE Micro Edition Suite Multiple Vulnerabilities 2017-01-31
EMC Product Security Response Center (Security_Alert emc com)

[REVIVE-SA-2017-001] Revive Adserver - Multiple vulnerabilities 2017-01-31
Matteo Beccati (matteo beccati com)

[security bulletin] HPESBMU03701 rev.1 - HPE Smart Storage Administrator, Remote Arbitrary Code Execution 2017-01-30
security-alert hpe com

Secunia Research: libarchive "lha_read_file_header_1()" Out-Of-Bounds Memory Access Denial of Service Vulnerability 2017-01-30
Secunia Research (remove-vuln secunia com)

Malware

Backdoor.Mapkill

Trojan.Quasar

Backdoor.Chches

Phishing

MBNA credit card

1st February 2017

YOUR MBNA CREDIT CARD

Vulnerebility

QEMU 'sdhci.c' Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95885

Bzrtp CVE-2016-6271 Man in the Middle Spoofing Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95928

RoundCube Webmail 'content page' HTML-injection Vulnerability
2017-02-01
http://www.securityfocus.com/bid/90880

BlackBerry Enterprise Server CVE-2016-3130 Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95924

Zimbra Collaboration Suite CVE-2016-3408 Unspecified Cross-Site Scripting Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95923

Zimbra Collaboration Suite CVE-2016-4019 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95922

HexChat CVE-2016-2233 Stack-Based Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95920

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95356

Huawei EMUI Directory Traversal and Command Injection Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95919

Zimbra Collaboration Suite CVE-2016-3999 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95921

Zimbra Collaboration Suite CVE-2016-3415 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95917

Zimbra Collaboration Suite CVE-2016-3414 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95918

Huawei HwVmall CVE-2017-2694 Local Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95915

Huawei Smart Phones CVE-2017-2708 Local Authentication Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95911

HP Intelligent Management Center CVE-2016-8525 Remote Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95912

Joyent SmartOS CVE-2016-9039 Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95916

phpMyAdmin CVE-2016-6621 Server Side Request Forgery Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95914

Atlassian JIRA CVE-2016-6285 Cross Site Scripting Vulnerabiliy
2017-02-01
http://www.securityfocus.com/bid/95913

Linux Kernel SCSI arcmsr Driver CVE-2016-7425 Local Heap Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/93037

Google Android CVE-2016-0823 Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/84265

Linux Kernel 'net/rds/recv.c' Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/91021

Red Hat Enterprise Linux 'USB Device Descriptor' Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/77030

Linux Kernel 'net/llc/af_llc.c' Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/90015

HarfBuzz CVE-2015-8947 Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/92039

HarfBuzz CVE-2016-2052 Multiple Security Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/81812

HP Helion Eucalyptus CVE-2016-8528 Remote Privilege Escalation Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95910

Calibre CVE-2016-10187 Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95909

BINOM3 Electric Power Quality Meter Multiple Security Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/93028

Mp3splt 'options_manager.c' Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95908

Mp3splt 'cue.c' Null Pointer Dereference Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95906
HexChat CVE-2016-2233 Stack-Based Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95920

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95356

Huawei EMUI Directory Traversal and Command Injection Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95919

Zimbra Collaboration Suite CVE-2016-3999 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95921

Zimbra Collaboration Suite CVE-2016-3415 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95917

Zimbra Collaboration Suite CVE-2016-3414 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95918

Huawei HwVmall CVE-2017-2694 Local Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95915

Huawei Smart Phones CVE-2017-2708 Local Authentication Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95911

HP Intelligent Management Center CVE-2016-8525 Remote Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95912

Joyent SmartOS CVE-2016-9039 Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95916

phpMyAdmin CVE-2016-6621 Server Side Request Forgery Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95914

Atlassian JIRA CVE-2016-6285 Cross Site Scripting Vulnerabiliy
2017-02-01
http://www.securityfocus.com/bid/95913

Linux Kernel SCSI arcmsr Driver CVE-2016-7425 Local Heap Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/93037

Google Android CVE-2016-0823 Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/84265

Linux Kernel 'net/rds/recv.c' Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/91021

Red Hat Enterprise Linux 'USB Device Descriptor' Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/77030

Linux Kernel 'net/llc/af_llc.c' Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/90015

HarfBuzz CVE-2015-8947 Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/92039

HarfBuzz CVE-2016-2052 Multiple Security Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/81812

HP Helion Eucalyptus CVE-2016-8528 Remote Privilege Escalation Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95910

Calibre CVE-2016-10187 Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95909

BINOM3 Electric Power Quality Meter Multiple Security Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/93028

Mp3splt 'options_manager.c' Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95908

Mp3splt 'cue.c' Null Pointer Dereference Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95906

Ecava IntegraXor CVE-2016-8341 Multiple SQL Injection Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95907

Oracle VM VirtualBox CVE-2017-3316 Remote Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95579

Oracle VM VirtualBox CVE-2017-3332 Local Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95599

Oracle VM VirtualBox CVE-2017-3290 Local Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95601

Oracle VM VirtualBox CVE-2016-5545 Remote Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95590

IBM Security Key Lifecycle Manager CVE-2016-6117 Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95905Oracle VM VirtualBox CVE-2017-3316 Remote Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95579

Oracle VM VirtualBox CVE-2017-3332 Local Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95599

Oracle VM VirtualBox CVE-2017-3290 Local Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95601

Oracle VM VirtualBox CVE-2016-5545 Remote Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95590

IBM Security Key Lifecycle Manager CVE-2016-6117 Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95905

Linux Kernel CVE-2012-6704 Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95135

Linux Kernel CVE-2017-5551 Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95717

Google Android CVE-2016-8399 Remote Privilege Escalation Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94708

Linux Kernel 'kvm/emulate.c' Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94615

Linux Kernel 'net/core/sock.c' Multiple Local Memory Corruption Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/94655

Linux Kernel CVE-2016-9685 Multiple Local Denial of Service Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/94593

Linux Kernel Out-Of-Bounds Read Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94479

Linux Kernel CVE-2016-8632 Local Heap Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94211

Linux Kernel 'crypto/algif_hash.c' Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94309

Linux Kernel CVE-2015-8962 Memory Corruption Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94187

Linux Kernel CVE-2016-8633 Local Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94149

Linux Kernel Multiple Information Disclosure Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/94138

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/93544

Linux kernel Local Use After Free Multiple Denial of Service Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/94135

Google Android Multiple Kernel Components Multiple Information Disclosure Vulnerabilites
2017-02-01
http://www.securityfocus.com/bid/93326

Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/92452

Linux Kernel CVE-2016-6480 Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/92214

Linux Kernel CVE-2016-7117 Use-After-Free Remote Code Execution Vulnerability
2017-02-01
http://www.securityfocus.com/bid/93304

Linux Kernel CVE-2016-3841 Multiple Privilege Escalation Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/92227

Linux Kernel Local Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/92659

Linux kernel 'key_reject_and_link()' Function Local Use After Free Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/91211

Linux kernel 'ppp_generic.c' Use After Free Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/90605

Linux Kernel 'usbhid/hiddev.c' Local Heap Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/91450

Linux Kernel CVE-2016-1583 Stack-Based Buffer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/91157

Linux Kernel 'fs/isofs/rock.c' Local Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/90730IBM Tivoli Key Lifecycle Manager CVE-2016-6105 Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95904

McAfee Agent CVE-2017-3896 Remote Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95903

IBM License Metric Tool and BigFix Inventory CVE-2016-8967 Information Disclosure Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95902

Zimbra Collaboration Suite CVE-2016-3410 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95900

Zimbra Collaboration Suite CVE-2016-3411 Unspecified Cross-Site Scripting Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95901

Zimbra Collaboration Suite CVE-2016-3412 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95899

SHDesigns Resident Download Manager CVE-2016-6567 Remote Code Execution Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95898

Zimbra Collaboration Suite CVE-2016-3407 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95897

Zimbra Collaboration Suite CVE-2016-3409 Unspecified Cross-Site Scripting Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95896

Zimbra Collaboration Suite CVE-2016-3413 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95895

Zimbra Collaboration Suite CVE-2016-3404 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95894

ISC BIND CVE-2016-9444 Remote Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95393

ISC BIND CVE-2016-8864 Remote Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/94067

ISC BIND CVE-2016-9131 Remote Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95386

Airwatch Agent for Android CVE-2017-4895 Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95892

EMC Documentum eRoom CVE-2017-2766 Admin Password Change Authentication Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95893

VMWare Airwatch Inbox for Android CVE-2017-4896 Local Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95889

IBM AIX CVE-2017-1093 Local Privilege Escalation Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95891

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/93841

Cisco WebEx Extension 'magic URL' Remote Command Execution Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95737

Zimbra Collaboration Suite CVE-2016-3406 Multiple Cross Site Request Forgery Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95890

IBM AIX CVE-2016-8944 Local Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95888

PEAR Base System CVE-2017-5630 Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95882

Zimbra Collaboration Suite CVE-2016-3405 Multiple Unspecified Security Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95886

Zimbra Collaboration Suite CVE-2016-3402 Unspecified Security Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95887

Trend Micro Virtual Mobile Infrastructure CVE-2016-6270 Remote Code Execution Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95884

OnionShare '/tmp/onionshare' Directory Local Security Bypass Vulnerability
2017-02-01
http://www.securityfocus.com/bid/90821

Botan CVE-2016-9132 Integer Overflow Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95879

QEMU 'sdhci.c' Denial of Service Vulnerability
2017-02-01
http://www.securityfocus.com/bid/95885

wavpack Multiple Out of Bounds Reads Local Denial of Service Vulnerabilities
2017-02-01
http://www.securityfocus.com/bid/95883

SANS News

Quick Analysis of Data Left Available by Attackers

Threatpost

Nicolas Brulez on Malware Reverse Engineering Tips and Tricks

Ugly Password Gaffe Plagues Cryptkeeper Encryption App

Flaws Found in Popular Printer Models

Trump Cyber Executive Order Calls for 60-Day Review

Zimperium Program Buys Exploits for Patched Mobile Vulnerabilities

Exploit

Google Android - 'cfp_ropp_new_key_reenc' and 'cfp_ropp_new_key' RKP Memory Corruption

Google Android - Unprotected MSRs in EL1 RKP Privilege Escalation

Apple WebKit - 'HTMLFormElement::reset()' Use-After Free

Google Chrome - 'HTMLKeygenElement::shadowSelect()' Type Confusion

Apple WebKit - 'HTMLKeygenElement' Type Confusion

Apple WebKit - Type Confusion in RenderBox with Accessibility Enabled

Google Android - RKP Information Disclosure via s2-remapping Physical Ranges

Netman 204 - Backdoor Account / Password Reset

Multiple Netgear Routers - Password Disclosure

Viscosity 1.6.7 - Privilege Escalation

LogoStore - SQL Injection

Joomla! Component JTAG Calendar 6.2.4 - SQL Injection

Viscosity 1.6.7 - Privilege Escalation

31.1.2017

Bugtraq

[security bulletin] HPSBHF03693 rev.1 - HPE iMC PLAT Network Products running Microsoft SQL Server, Remote Elevation of Privilege 2017-01-31
security-alert hpe com

ESA-2017-007: EMC Documentum eRoom Unverified Password Change Vulnerability 2017-01-31
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-094: RSA BSAFE Micro Edition Suite Multiple Vulnerabilities 2017-01-31
EMC Product Security Response Center (Security_Alert emc com)

[REVIVE-SA-2017-001] Revive Adserver - Multiple vulnerabilities 2017-01-31
Matteo Beccati (matteo beccati com)

[security bulletin] HPESBMU03701 rev.1 - HPE Smart Storage Administrator, Remote Arbitrary Code Execution 2017-01-30
security-alert hpe com

Secunia Research: libarchive "lha_read_file_header_1()" Out-Of-Bounds Memory Access Denial of Service Vulnerability 2017-01-30
Secunia Research (remove-vuln secunia com)

secuvera-SA-2017-01: Privilege escalation in an OPSI Managed Client environment ("rise of the machines") 2017-01-30
sbieber secuvera de

Persistent Cross-Site Scripting vulnerability in User Access Manager WordPress Plugin 2017-01-28
Summer of Pwnage (lists securify nl)

Multiple blind SQL injection vulnerabilities in FormBuilder WordPress Plugin 2017-01-28
Summer of Pwnage (lists securify nl)

Malware

Ransom:Win32/Wagcrypt.A 

Phishing

Information

30th January 2017

Account Information

AOL

30th January 2017

incoming message

AOL

30th January 2017

youve got a new request

Vulnerebility

ISC BIND CVE-2016-9444 Remote Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95393

ISC BIND CVE-2016-8864 Remote Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94067

ISC BIND CVE-2016-9131 Remote Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95386

IBM AIX CVE-2017-1093 Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95891

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/93841

Cisco WebEx Extension 'magic URL' Remote Command Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95737

Zimbra Collaboration Suite CVE-2016-3406 Multiple Cross Site Request Forgery Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95890

IBM AIX CVE-2016-8944 Local Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95888

PEAR Base System CVE-2017-5630 Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95882

Zimbra Collaboration Suite CVE-2016-3405 Multiple Unspecified Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95886

Zimbra Collaboration Suite CVE-2016-3402 Unspecified Security Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95887

Trend Micro Virtual Mobile Infrastructure CVE-2016-6270 Remote Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95884

OnionShare '/tmp/onionshare' Directory Local Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/90821

Botan CVE-2016-9132 Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95879

QEMU 'sdhci.c' Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95885

wavpack Multiple Out of Bounds Reads Local Denial of Service Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95883

Artifex MUJS CVE-2016-10141 Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95876

HexChat 'src/common/text.c' Directory Traversal Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95881

libquicktime 'quicktime_read_pascal()' Function Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95880

Linux Kernel CVE-2017-2596 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95878

Dlink DWR-932B Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95877

GNU Screen 'screen.c' Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95873

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95875

RubyGems minitar and archive-tar-minitar CVE-2016-10173 Local Directory Traversal Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95874

Adobe Flash Player APSB16-10 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/85926

Squashfs and sasquatch 'read_fragment_table_4' Multiple Stack Buffer Overflow Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/75272

Adobe Reader and Acrobat CVE-2016-1008 Remote Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/84216

Cisco Unified Communications Manager CVE-2017-3798 Cross Site Scripting Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95872

SVG Salamander CVE-2017-5617 Server Side Request Forgery Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95871

cgiemail and cgiecho Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95870Trend Micro Virtual Mobile Infrastructure CVE-2016-6270 Remote Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95884

OnionShare '/tmp/onionshare' Directory Local Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/90821

Botan CVE-2016-9132 Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95879

QEMU 'sdhci.c' Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95885

wavpack Multiple Out of Bounds Reads Local Denial of Service Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95883

Artifex MUJS CVE-2016-10141 Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95876

HexChat 'src/common/text.c' Directory Traversal Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95881

libquicktime 'quicktime_read_pascal()' Function Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95880

Linux Kernel CVE-2017-2596 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95878

Dlink DWR-932B Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95877

GNU Screen 'screen.c' Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95873

Revive Adserver REVIVE-SA-2017-001 Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95875

RubyGems minitar and archive-tar-minitar CVE-2016-10173 Local Directory Traversal Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95874

Adobe Flash Player APSB16-10 Multiple Use After Free Remote Code Execution Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/85926

Squashfs and sasquatch 'read_fragment_table_4' Multiple Stack Buffer Overflow Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/75272

Adobe Reader and Acrobat CVE-2016-1008 Remote Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/84216

Cisco Unified Communications Manager CVE-2017-3798 Cross Site Scripting Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95872

SVG Salamander CVE-2017-5617 Server Side Request Forgery Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95871

cgiemail and cgiecho Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95870

Microsoft Office CVE-2016-7276 Information Disclosure Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94666

Microsoft Office CVE-2016-7262 Remote Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94660

Perl CVE-2015-8853 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/86707

Perl CVE-2016-6185 Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/91685

Perl CVE-2016-1238 Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/92136

Perl 'File::Spec' module CVE-2015-8607 Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/80504

Perl 'perl.c' CVE-2016-2381 Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/83802

Pivotal RabbitMQ Products CVE-2016-9877 Authentication Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95065

lcms2 CVE-2016-10165 Out-of-Bounds Read Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95808

GNU a2ps CVE-2014-0466 Arbitrary Command Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/66660

KDE Ark CVE-2017-5330 Arbitrary Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95349Perl CVE-2015-8853 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/86707

Perl CVE-2016-6185 Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/91685

Perl CVE-2016-1238 Local Privilege Escalation Vulnerability
2017-01-31
http://www.securityfocus.com/bid/92136

Perl 'File::Spec' module CVE-2015-8607 Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/80504

Perl 'perl.c' CVE-2016-2381 Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/83802

Pivotal RabbitMQ Products CVE-2016-9877 Authentication Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95065

lcms2 CVE-2016-10165 Out-of-Bounds Read Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95808

GNU a2ps CVE-2014-0466 Arbitrary Command Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/66660

KDE Ark CVE-2017-5330 Arbitrary Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95349

FirewallD CVE-2016-5410 Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/92481

libgd Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95869

FFmpeg 'libavformat/avidec.c' Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94839

FFmpeg CVE-2016-7555 Information Disclosure Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94838

FFmpeg 'libavcodec/g726.c' Out of Bounds Read Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94841

FFmpeg CVE-2016-7905 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94837

FFmpeg CVE-2016-7562 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94835

FFmpeg CVE-2016-7785 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94833

FFmpeg CVE-2016-7502 Out of Bounds Read Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/94834

HP Smart Storage Administrator CVE-2016-8523 Remote Code Execution Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95868

Netgear WNR2000 Multiple Security Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95867

JasPer 'jpc_dec.c' Null Pointer Dereference Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95864

JasPer CVE-2016-8883 Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95865

CubeCart CVE-2017-2098 Directory Traversal Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95866

pecl_http CVE-2016-5873 Buffer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95863

FFmpeg CVE-2016-6164 Integer Overflow Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95862

ownCloud Direct Request Security Bypass Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95861

Huawei OceanStor 5800 CVE-2016-5822 Remote Denial of Service Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95854

Skype for Windows CVE-2016-5720 Untrusted Search Path vulnerability
2017-01-31
http://www.securityfocus.com/bid/95859

Zimbra Collaboration Suite CVE-2016-3401 Unspecified Security Vulnerability
2017-01-31
http://www.securityfocus.com/bid/95860

tcpdump Multiple Buffer Overflow Vulnerabilities
2017-01-31
http://www.securityfocus.com/bid/95852

SANS News

Malicious Office files using fileless UAC bypass to drop KEYBASE malware

Threatpost

Telemarketing Firm Leaks 400,000 Recorded Calls

Facebook Tackles Account Recovery with Delegated Recovery Protocol

Nested, Targeted Attacks Built for Reconnaissance

Nicolas Brulez on Malware Reverse Engineering Tips and Tricks

Exploit

Multiple Netgear Routers - Password Disclosure

Viscosity 1.6.7 - Privilege Escalation

30.1.2017

Bugtraq

[security bulletin] HPESBMU03701 rev.1 - HPE Smart Storage Administrator, Remote Arbitrary Code Execution 2017-01-30
security-alert hpe com

Secunia Research: libarchive "lha_read_file_header_1()" Out-Of-Bounds Memory Access Denial of Service Vulnerability 2017-01-30
Secunia Research (remove-vuln secunia com)

secuvera-SA-2017-01: Privilege escalation in an OPSI Managed Client environment ("rise of the machines") 2017-01-30
sbieber secuvera de

Persistent Cross-Site Scripting vulnerability in User Access Manager WordPress Plugin 2017-01-28
Summer of Pwnage (lists securify nl)

Multiple blind SQL injection vulnerabilities in FormBuilder WordPress Plugin 2017-01-28
Summer of Pwnage (lists securify nl)

CVE-2017-3160: Gradle Distribution URL used by Cordova-Android does not use https by default 2017-01-27
bowserj gmail com

[SECURITY] [DSA 3773-1] openssl security update 2017-01-27
Moritz Muehlenhoff (jmm debian org)

ESA-2016-133: EMC Data Protection Advisor Path Traversal Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-154: RSA BSAFE® Crypto-J Multiple Security Vulnerabilities 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-037: EMC PowerPath Management Appliance Information Disclosure Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

Secunia Research: Oracle Outside In VSDX Use-After-Free Vulnerability 2017-01-27
Secunia Research (remove-vuln secunia com)

[slackware-security] mozilla-thunderbird (SSA:2017-026-01) 2017-01-27
Slackware Security Team (security slackware com)

Malware

Trojan:Win32/Mupad.A
Ransom:Win32/Cerber.HVT
Ransom:Win32/Cerber.A
Trojan:Win32/Pdfphish
PWS:HTML/Misfhing.B
Trojan:Win32/Pdfphish.BU
TrojanSpy:MSIL/Lachemp.A
Ransom:Win32/Wagcrypt.A

Phishing

Paypal

29th January 2017

Important update required.

Chase

29th January 2017

CHASE BANK - SECURITY NOTICE!

Credit Union

29th January 2017

Navy Federal Credit Union :
Account Security Verification
Alert

Vulnerebility

ASUS RT-N56U CVE-2017-5632 Unspecified Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95857

Cisco WebEx Extension 'magic URL' Remote Command Execution Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95737

Sophos Web Appliance CVE-2016-9554 Remote Command Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95858

MuJS CVE-2017-5628 Integer Overflow Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95855

Artifex MuJS 'mujs/jsrun.c' Integer Overflow Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95856

Sophos Web Appliance CVE-2016-9553 Multiple Remote Command Injection Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95853

Moment.js CVE-2016-4055 Remote Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95849

Piwigo CVE-2017-5608 Cross Site Scripting Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95848

RETIRED: ownCloud DLL Loading Local Code Execution Vulnerability
2017-01-30
http://www.securityfocus.com/bid/92574

jwt CVE-2016-7037 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95847

python-jose CVE-2016-7036 Unspecified Security Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95845

IBM BladeCenter Advanced Management Module CVE-2016-8232 Cross Site Scripting Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95839

CakePHP CVE-2016-4793 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95846

Apache Cordova For Android CVE-2017-3160 Man in the Middle Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95838

ownCloud Desktop Client Local Code Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/92627

libgd 'dynamicGetbuf()' Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95840

libgd 'gdImageCreate()' Function Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95841

Multiple Lenovo Products CVE-2016-8226 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95844

Libgd CVE-2016-6912 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95843

Lenovo Edge USB Keyboard Driver CVE-2016-8225 Local Privilege Escalation Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95842

libarchive 'lha_read_file_header_1()' Function Memory Corruption Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95837

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95813

OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95375

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/93841

eClinicalWorks healow@work CVE-2017-5598 SQL Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95836

eClinicalWorks Patient Portal CVE-2017-5599 Cross Site Scripting Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95835

Microsoft ASP.NET Core MVC Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95834

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95816

EMC Data Protection Advisor CVE-2016-8211 Directory Traversal Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95833

EMC RSA BSAFE Crypto-J Security Bypass and Information Disclosure Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95831RETIRED: ownCloud DLL Loading Local Code Execution Vulnerability
2017-01-30
http://www.securityfocus.com/bid/92574

jwt CVE-2016-7037 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95847

python-jose CVE-2016-7036 Unspecified Security Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95845

IBM BladeCenter Advanced Management Module CVE-2016-8232 Cross Site Scripting Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95839

CakePHP CVE-2016-4793 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95846

Apache Cordova For Android CVE-2017-3160 Man in the Middle Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95838

ownCloud Desktop Client Local Code Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/92627

libgd 'dynamicGetbuf()' Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95840

libgd 'gdImageCreate()' Function Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95841

Multiple Lenovo Products CVE-2016-8226 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95844

Libgd CVE-2016-6912 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95843

Lenovo Edge USB Keyboard Driver CVE-2016-8225 Local Privilege Escalation Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95842

libarchive 'lha_read_file_header_1()' Function Memory Corruption Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95837

Cisco WebEx Extension 'magic URL' Remote Command Execution Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95737

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95813

OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95375

OpenSSL CVE-2016-8610 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/93841

eClinicalWorks healow@work CVE-2017-5598 SQL Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95836

eClinicalWorks Patient Portal CVE-2017-5599 Cross Site Scripting Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95835

Microsoft ASP.NET Core MVC Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95834

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95816

EMC Data Protection Advisor CVE-2016-8211 Directory Traversal Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95833

EMC RSA BSAFE Crypto-J Security Bypass and Information Disclosure Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95831

EMC PowerPath Virtual (Management) Appliance CVE-2016-0890 Information Disclosure Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95832

EMC Data Domain OS CVE-2016-8216 Local Command Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95829

Drupal Microblog Remote Security Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95830

Multiple F5 BIG-IP Products CVE-2016-9249 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95825

EMC Documentum D2 CVE-2016-9873 DQL Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95828

Drupal OAuth Module Access Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95826

EMC RecoverPoint Local Information Disclosure and Command Injection Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95821
WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95816

EMC Data Protection Advisor CVE-2016-8211 Directory Traversal Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95833

EMC RSA BSAFE Crypto-J Security Bypass and Information Disclosure Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95831

EMC PowerPath Virtual (Management) Appliance CVE-2016-0890 Information Disclosure Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95832

EMC Data Domain OS CVE-2016-8216 Local Command Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95829

Drupal Microblog Remote Security Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95830

Multiple F5 BIG-IP Products CVE-2016-9249 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95825

EMC Documentum D2 CVE-2016-9873 DQL Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95828

Drupal OAuth Module Access Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95826

EMC RecoverPoint Local Information Disclosure and Command Injection Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95821

Drupal SalesCloud Module Access Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95822

OpenStack oslo.middleware CVE-2017-2592 Information Disclosure Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95827

Terminal Services Agent CVE-2017-5328 Spoofing Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95823

EMC Documentum D2 CVE-2016-9872 Multiple Cross Site Scripting Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95824

CA Common Services CVE-2016-9795 Local Privilege Escalation Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95819

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95769

Mozilla Firefox CVE-2017-5376 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95758

Mozilla Firefox CVE-2017-5373 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95762

Mozilla Firefox CVE-2017-5375 ASLR and DEP Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95757

EMC RSA Web Threat Detection CVE-2016-0919 Unspecified HTML Injection Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95820

Multiple Eaton ePDU Products CVE-2016-9357 Directory Traversal Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95817

Palo Alto Networks Terminal Services Agent CVE-2017-5329 Local Privilege Escalation Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95818

libXpm CVE-2016-10164 Heap Based Buffer Overflow Vulnerability
2017-01-30
http://www.securityfocus.com/bid/95785

Microsoft Internet Explorer XSS Filter CVE-2016-3212 Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/91105

RETIRED: Microsoft Internet Explorer XSS Filter Security Bypass Vulnerability
2017-01-30
http://www.securityfocus.com/bid/91166

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-01-30
http://www.securityfocus.com/bid/94242

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-30
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-9576 Use After Free Memory Corruption Vulnerability
2017-01-30
http://www.securityfocus.com/bid/94821

Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/94953

Google Chrome Multiple Security Vulnerabilities
2017-01-30
http://www.securityfocus.com/bid/95792

SANS News

py2exe Decompiling - Part 2

Threatpost

Many Android VPN Apps Breaking Privacy Promises

Exploit

VirtualBox < 5.0.32 / < 5.1.14 - Privilege Escalation

OpenSSL 1.1.0 - Remote Client Denial of Service

Itech Freelancer Script 5.13 - SQL Injection

Itech Dating Script 3.26 - SQL Injection

Itech Classifieds Script 7.27 - SQL Injection

Itech B2B Script 4.28 - SQL Injection

Auction Script 6.49 - SQL Injection

Caregiver Script 2.57 - SQL Injection

PEAR Base System 1.10.1 - Arbitrary File Download

TrueConf Server 4.3.7 - Multiple Vulnerabilities

Linux - Multi/Dual mode execve("/bin/sh", NULL, 0) Shellcode (37 bytes)

29.1.2017

Bugtraq

 

Malware

TrojanSpy:MSIL/Lachemp.A

Phishing

Bank of America Online.

28th January 2017

You Have 1 New Message..

AOL

26th January 2017

A woman has tagged your
account

AOL

26th January 2017

youve got an incoming request

AOL

26th January 2017

A woman appears to have tagged
your very own profile page

Vulnerebility

EMC Data Protection Advisor CVE-2016-8211 Directory Traversal Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95833

EMC RSA BSAFE Crypto-J Security Bypass and Information Disclosure Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95831

EMC PowerPath Virtual (Management) Appliance CVE-2016-0890 Information Disclosure Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95832

EMC Data Domain OS CVE-2016-8216 Local Command Injection Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95829

Drupal Microblog Remote Security Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95830

Multiple F5 BIG-IP Products CVE-2016-9249 Denial of Service Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95825

EMC Documentum D2 CVE-2016-9873 DQL Injection Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95828

Drupal OAuth Module Access Bypass Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95826

EMC RecoverPoint Local Information Disclosure and Command Injection Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95821

Drupal SalesCloud Module Access Bypass Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95822

OpenStack oslo.middleware CVE-2017-2592 Information Disclosure Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95827

Terminal Services Agent CVE-2017-5328 Spoofing Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95823

EMC Documentum D2 CVE-2016-9872 Multiple Cross Site Scripting Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95824

CA Common Services CVE-2016-9795 Local Privilege Escalation Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95819

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95769

Mozilla Firefox CVE-2017-5376 Denial of Service Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95758

Mozilla Firefox CVE-2017-5373 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95762

Mozilla Firefox CVE-2017-5375 ASLR and DEP Security Bypass Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95757

EMC RSA Web Threat Detection CVE-2016-0919 Unspecified HTML Injection Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95820

Multiple Eaton ePDU Products CVE-2016-9357 Directory Traversal Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95817

Palo Alto Networks Terminal Services Agent CVE-2017-5329 Local Privilege Escalation Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95818

libXpm CVE-2016-10164 Heap Based Buffer Overflow Vulnerability
2017-01-29
http://www.securityfocus.com/bid/95785

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95816

Microsoft Internet Explorer XSS Filter CVE-2016-3212 Security Bypass Vulnerability
2017-01-29
http://www.securityfocus.com/bid/91105

RETIRED: Microsoft Internet Explorer XSS Filter Security Bypass Vulnerability
2017-01-29
http://www.securityfocus.com/bid/91166

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-01-29
http://www.securityfocus.com/bid/94242

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-29
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-9576 Use After Free Memory Corruption Vulnerability
2017-01-29
http://www.securityfocus.com/bid/94821

Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/94953

Google Chrome Multiple Security Vulnerabilities
2017-01-29
http://www.securityfocus.com/bid/95792
EMC Data Protection Advisor CVE-2016-8211 Directory Traversal Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95833

EMC RSA BSAFE Crypto-J Security Bypass and Information Disclosure Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95831

EMC PowerPath Virtual (Management) Appliance CVE-2016-0890 Information Disclosure Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95832

EMC Data Domain OS CVE-2016-8216 Local Command Injection Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95829

Drupal Microblog Remote Security Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95830

Multiple F5 BIG-IP Products CVE-2016-9249 Denial of Service Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95825

EMC Documentum D2 CVE-2016-9873 DQL Injection Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95828

Drupal OAuth Module Access Bypass Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95826

EMC RecoverPoint Local Information Disclosure and Command Injection Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95821

Drupal SalesCloud Module Access Bypass Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95822

OpenStack oslo.middleware CVE-2017-2592 Information Disclosure Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95827

Terminal Services Agent CVE-2017-5328 Spoofing Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95823

EMC Documentum D2 CVE-2016-9872 Multiple Cross Site Scripting Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95824

CA Common Services CVE-2016-9795 Local Privilege Escalation Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95819

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95769

Mozilla Firefox CVE-2017-5376 Denial of Service Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95758

Mozilla Firefox CVE-2017-5373 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95762

Mozilla Firefox CVE-2017-5375 ASLR and DEP Security Bypass Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95757

EMC RSA Web Threat Detection CVE-2016-0919 Unspecified HTML Injection Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95820

Multiple Eaton ePDU Products CVE-2016-9357 Directory Traversal Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95817

Palo Alto Networks Terminal Services Agent CVE-2017-5329 Local Privilege Escalation Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95818

libXpm CVE-2016-10164 Heap Based Buffer Overflow Vulnerability
2017-01-28
http://www.securityfocus.com/bid/95785

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95816

Microsoft Internet Explorer XSS Filter CVE-2016-3212 Security Bypass Vulnerability
2017-01-28
http://www.securityfocus.com/bid/91105

RETIRED: Microsoft Internet Explorer XSS Filter Security Bypass Vulnerability
2017-01-28
http://www.securityfocus.com/bid/91166

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-01-28
http://www.securityfocus.com/bid/94242

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-28
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-9576 Use After Free Memory Corruption Vulnerability
2017-01-28
http://www.securityfocus.com/bid/94821

Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/94953

Google Chrome Multiple Security Vulnerabilities
2017-01-28
http://www.securityfocus.com/bid/95792

SANS News

What Keeps My Honeypot Busy These Days

Packet Analysis - Where do you start?

Request for Packets and Logs - TCP 5358

Threatpost

Google to Operate its Own Root CA

Dridex Returns With Windows UAC Bypass Method

WordPress 4.7.2 Update Fixes XSS, SQL Injection Bugs

Cisco Warns of Critical Flaw in Teleconferencing Gear

Exploit

WordPress Plugin Online Hotel Booking System Pro 1.0 - SQL Injection

Online Hotel Booking System Pro 1.2 - SQL Injection

WordPress Plugin WP Private Messages 1.0.1 - SQL Injection

Maian Weblog 4.0 - SQL Injection

My Photo Gallery 1.0 - SQL Injection

Palo Alto Networks Terminal Services Agent 7.0.3-13 - Integer Overflow

27.1.2017

Bugtraq

ESA-2016-133: EMC Data Protection Advisor Path Traversal Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-154: RSA BSAFE® Crypto-J Multiple Security Vulnerabilities 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-037: EMC PowerPath Management Appliance Information Disclosure Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

Secunia Research: Oracle Outside In VSDX Use-After-Free Vulnerability 2017-01-27
Secunia Research (remove-vuln secunia com)

[slackware-security] mozilla-thunderbird (SSA:2017-026-01) 2017-01-27
Slackware Security Team (security slackware com)

CA20170126-01: Security Notice for CA Common Services casrvc 2017-01-26
Kotas, Kevin J (Kevin Kotas ca com)

[SECURITY] [DSA 3772-1] libxpm security update 2017-01-26
Salvatore Bonaccorso (carnil debian org)

ESA-2016-167: EMC Documentum D2 Multiple Vulnerabilities 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-160: EMC Data Domain DD OS Command Injection Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-132: EMC RecoverPoint Multiple Vulnerabilities 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-092: RSA® Web Threat Detection Cross Site Scripting Vulnerability 2017-01-26
EMC Product Security Response Center (Security_Alert emc com)

PEAR HTTP_Upload v1.0.0b3 Arbitrary File Upload 2017-01-26
apparitionsec gmail com (hyp3rlinx)

Malware

Trojan:Win32/Pdfphish
PWS:HTML/Misfhing.B
Trojan:Win32/Pdfphish.BU

Phishing

AOL

26th January 2017

A woman has tagged your
account

AOL

26th January 2017

youve got an incoming request

AOL

26th January 2017

A woman appears to have tagged
your very own profile page

auto-confirrm Amazon.co.uk

26th January 2017

Order ID : ID : 83771 "Your
Amazon.co.uk order "Apple
Leather..."

Vulnerebility

OpenStack oslo.middleware CVE-2017-2592 Information Disclosure Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95827

Terminal Services Agent CVE-2017-5328 Spoofing Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95823

EMC Documentum D2 CVE-2016-9872 Multiple Cross Site Scripting Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95824

CA Common Services CVE-2016-9795 Local Privilege Escalation Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95819

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95769

Mozilla Firefox CVE-2017-5376 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95758

Mozilla Firefox CVE-2017-5373 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95762

Mozilla Firefox CVE-2017-5375 ASLR and DEP Security Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95757

EMC RSA Web Threat Detection CVE-2016-0919 Unspecified HTML Injection Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95820

Multiple Eaton ePDU Products CVE-2016-9357 Directory Traversal Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95817

Palo Alto Networks Terminal Services Agent CVE-2017-5329 Local Privilege Escalation Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95818

libXpm CVE-2016-10164 Heap Based Buffer Overflow Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95785

WordPress Prior to 4.7.2 Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95816

Microsoft Internet Explorer XSS Filter CVE-2016-3212 Security Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/91105

RETIRED: Microsoft Internet Explorer XSS Filter Security Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/91166

OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/94242

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-27
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-9576 Use After Free Memory Corruption Vulnerability
2017-01-27
http://www.securityfocus.com/bid/94821

Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/94953

Google Chrome Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95792

Oracle MySQL CVE-2016-6663 Unspecified Security Vulnerability
2017-01-27
http://www.securityfocus.com/bid/92911

Oracle MySQL CVE-2016-6662 Remote Code Execution Vulnerability
2017-01-27
http://www.securityfocus.com/bid/92912

Belden Hirschmann GECKO CVE-2017-5163 Information Disclosure Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95815

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95814

OpenSSL CVE-2017-3730 NULL Pointer Dereference Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95812

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95813

JasPer 'jpc_t2dec.c' Remote Heap Buffer Overflow Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95811

JasPer 'jas_seq.c' Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95809

JasPer 'jp2_cod.c' Null Pointer Dereference Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95810

libarchive Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/93781OpenSSL CVE-2016-7055 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/94242

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-27
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-9576 Use After Free Memory Corruption Vulnerability
2017-01-27
http://www.securityfocus.com/bid/94821

Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/94953

Google Chrome Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95792

Oracle MySQL CVE-2016-6663 Unspecified Security Vulnerability
2017-01-27
http://www.securityfocus.com/bid/92911

Oracle MySQL CVE-2016-6662 Remote Code Execution Vulnerability
2017-01-27
http://www.securityfocus.com/bid/92912

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95769

Mozilla Firefox CVE-2017-5376 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95758

Mozilla Firefox CVE-2017-5375 ASLR and DEP Security Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95757

Mozilla Firefox CVE-2017-5373 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95762

Belden Hirschmann GECKO CVE-2017-5163 Information Disclosure Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95815

OpenSSL CVE-2017-3732 Information Disclosure Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95814

OpenSSL CVE-2017-3730 NULL Pointer Dereference Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95812

OpenSSL CVE-2017-3731 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95813

JasPer 'jpc_t2dec.c' Remote Heap Buffer Overflow Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95811

JasPer 'jas_seq.c' Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95809

JasPer 'jp2_cod.c' Null Pointer Dereference Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95810

libarchive Multiple Security Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/93781

lcms2 CVE-2016-10165 Out-of-Bounds Read Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95808

Autodesk FBX-SDK CVE-2016-9306 Multiple Buffer Overflow Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95807

PageKit CVE-2017-5594 Authentication Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95806

Splunk Unspecified Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95804

Network Time Protocol CVE-2015-5300 Man in the Middle Security Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/77312

Network Time Protocol CVE-2015-7704 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/77280

Network Time Protocol CVE-2015-7705 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/77284

Autodesk FBX-SDK CVE-2016-9305 Security Bypass Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95803

Autodesk FBX-SDK CVE-2016-9303 Multiple Buffer Overflow Vulnerabilities
2017-01-27
http://www.securityfocus.com/bid/95805

EMC Isilon OneFS CVE-2016-9871 Remote Privilege Escalation Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95800

Citrix XenServer CVE-2017-5572 Denial of Service Vulnerability
2017-01-27
http://www.securityfocus.com/bid/95801

SANS News

IOC's: Risks of False Positive Alerts Flood Ahead

Threatpost

Google to Block .js Attachments in Gmail

Bill Calls for Study of Cybersecurity Standards for Cars

Facebook Touts ‘Safer’ Security Key Login

Exploit

macOS 10.12.1 / iOS Kernel - 'host_self_trap' Use-After-Free

macOS 10.12.1 / iOS Kernel - 'IOService::matchPassive' Use-After-Free

macOS 10.12.1 / iOS 10.2 - Kernel Userspace Pointer Memory Corruption

Google Android - 'pm_qos' KASLR Bypass

Linux/x86_64 - execve /bin/sh Shellcode (22 bytes)

Haraka < 2.8.9 - Remote Command Execution

Autodesk Backburner Manager 3 < 2016.0.0.2150 - Null Dereference Denial of Service

Polycom VVX Web Interface - Change Admin Password

PHPBack < 1.3.1 - SQL Injection / Cross-Site Scripting

TM RG4332 Wireless Router - Arbitrary File Disclosure

Web Based TimeSheet Script - Authentication Bypass

KB Messages PHP Script 1.0 - Authentication Bypass

KB Login Authentication Script 1.1 - Authentication Bypass

KB Affiliate Referral Script 1.0 - Authentication Bypass

OpenSSH 6.8 < 6.9 - 'PTY' Privilege Escalation

Systemd 228 - Privilege Escalation (PoC)

26.1.2017

Bugtraq

PEAR HTTP_Upload v1.0.0b3 Arbitrary File Upload 2017-01-26
apparitionsec gmail com (hyp3rlinx)

[SECURITY] [DSA 3771-1] firefox-esr security update 2017-01-25
Moritz Muehlenhoff (jmm debian org)

Google Forms WordPress Plugin unauthenticated PHP Object injection vulnerability 2017-01-25
Summer of Pwnage (lists securify nl)

Cisco Security Advisory: Cisco TelePresence Multipoint Control Unit Remote Code Execution Vulnerability 2017-01-25
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Cisco Expressway Series and TelePresence VCS Denial of Service Vulnerability 2017-01-25
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Cisco Security Advisory: Cisco Adaptive Security Appliance CX Context-Aware Security Denial of Service Vulnerability 2017-01-25
Cisco Systems Product Security Incident Response Team (psirt cisco com)

ESA-2016-166: EMC Isilon OneFS Privilege Escalation Vulnerability 2017-01-25
EMC Product Security Response Center (Security_Alert emc com)

OpenCart 2.3.0.2 CSRF - User Account Takeover 2017-01-25
Open Security (open opensecurity ca)

Malware

Trojan:Win32/Derbit.B

Phishing

AOL

26th January 2017

A woman has tagged your
account

AOL

26th January 2017

youve got an incoming request

AOL

26th January 2017

A woman appears to have tagged
your very own profile page

Vulnerebility

JasPer 'jpc_t2dec.c' Remote Heap Buffer Overflow Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95811

JasPer 'jas_seq.c' Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95809

JasPer 'jp2_cod.c' Null Pointer Dereference Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95810

libarchive Multiple Security Vulnerabilities
2017-01-26
http://www.securityfocus.com/bid/93781

lcms2 CVE-2016-10165 Out-of-Bounds Read Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95808

Autodesk FBX-SDK CVE-2016-9306 Multiple Buffer Overflow Vulnerabilities
2017-01-26
http://www.securityfocus.com/bid/95807

PageKit CVE-2017-5594 Authentication Bypass Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95806

Splunk Unspecified Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95804

Network Time Protocol CVE-2015-5300 Man in the Middle Security Bypass Vulnerability
2017-01-26
http://www.securityfocus.com/bid/77312

Network Time Protocol CVE-2015-7704 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/77280

Network Time Protocol CVE-2015-7705 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/77284

Autodesk FBX-SDK CVE-2016-9305 Security Bypass Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95803

Autodesk FBX-SDK CVE-2016-9303 Multiple Buffer Overflow Vulnerabilities
2017-01-26
http://www.securityfocus.com/bid/95805

EMC Isilon OneFS CVE-2016-9871 Remote Privilege Escalation Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95800

Citrix XenServer CVE-2017-5572 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95801

Autodesk FBX-SDK CVE-2016-9307 Multiple Buffer Overflow Vulnerabilities
2017-01-26
http://www.securityfocus.com/bid/95802

Autodesk FBX-SDK CVE-2016-9304 Multiple Buffer Overflow Vulnerabilities
2017-01-26
http://www.securityfocus.com/bid/95799

IETF IPv6 Protocol CVE-2016-10142 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95797

Wireshark CVE-2017-5597 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95798

OpenSSL CVE-2014-0224 Man in the Middle Security Bypass Vulnerability
2017-01-26
http://www.securityfocus.com/bid/67899

OpenSSL CVE-2014-0076 Information Disclosure Weakness
2017-01-26
http://www.securityfocus.com/bid/66363

OpenSSL 'ssl3_release_read_buffer()' Use-After-Free Memory Corruption Vulnerability
2017-01-26
http://www.securityfocus.com/bid/66801

OpenSSL CVE-2014-0195 Memory Corruption Vulnerability
2017-01-26
http://www.securityfocus.com/bid/67900

Citrix XenServer CVE-2017-5573 Security Bypass Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95796

OpenSSL CVE-2016-0705 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/83754

OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/67193

OpenSSL DTLS CVE-2014-0221 Remote Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/67901

OpenSSL CVE-2014-3470 Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/67898

Wireshark CVE-2017-5596 ASTERIX Dissector Denial of Service Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95795

Hawtio CVE-2017-2594 Directory Traversal Vulnerability
2017-01-26
http://www.securityfocus.com/bid/95793

SANS News

IOC's: Risks of False Positive Alerts Flood Ahead

Threatpost

Default Credentials Found in Schneider Electric Wonderware Historian

Half of Ransomware Victims Pay Criminals’ Demands to Recover Data

High-Severity Chrome Vulnerabilities Earn Researcher $32K in Rewards

Google to Block .js Attachments in Gmail

Exploit

Haraka <= 2.8.9 - Remote Command Execution

Autodesk Backburner Manager 3 < 2016.0.0.2150 - Null Dereference Denial of Service

Geutebrueck GCore 1.3.8.42/1.4.2.37 - Remote Code Execution (Metasploit)

Pear HTTP_Upload 1.0.0b3 - Arbitrary File Upload

Joomla! < 3.6.4 - Admin TakeOver

Joomla! < 2.5.2 - Admin Creation

Movie Portal Script 7.36 - Multiple Vulnerabilities

Man-db 2.6.7.1 - Privilege Escalation (PoC)

GNU Screen 4.5.0 - Privilege Escalation

GNU Screen 4.5.0 - Privilege Escalation (PoC)

25.1.2017

Bugtraq

OpenCart 2.3.0.2 CSRF - User Account Takeover 2017-01-25
Open Security (open opensecurity ca)

[security bulletin] HPSBST03642 rev.3 - HPE StoreVirtual Products running LeftHand OS using OpenSSL and OpenSSH, Remote Arbitrary Code Execution, Denial of Service (DoS), Disclosure of Sensitive Information, Unauthorized Access 2017-01-24
security-alert hpe com

[security bulletin] HPSBHF03695 rev.1 - HPE Ethernet Adaptors, Remote Denial of Service (DoS) 2017-01-24
security-alert hpe com

[security bulletin] HPSBHF03441 rev.2 - HPE iLO 3, iLO 4 and iLO 4 mRCA, Remote Multiple Vulnerabilities 2017-01-24
security-alert hpe com

Cisco Security Advisory: Cisco WebEx Browser Extension Remote Code Execution Vulnerability 2017-01-24
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[security bulletin] HPSBGN03690 rev.1 - HPE Real User Monitor (RUM), Remote Disclosure of Information 2017-01-24
security-alert hpe com

CVE-2017-3241 - [ERPSCAN-17-006] Oracle OpenJDK - Java Serialization DoS 2017-01-24
ERPScan inc (erpscan online gmail com)

[ERPSCAN-17-005] Oracle PeopleSoft - XSS vulnerability CVE-2017-3300 2017-01-24
ERPScan inc (erpscan online gmail com)

[slackware-security] mozilla-firefox (SSA:2017-023-01) 2017-01-24
Slackware Security Team (security slackware com)

Malware

Trojan:MSIL/Upadter.A

Phishing

AOL

25th January 2017

A person has now tagged your
current user profile

Amazon UK

25th January 2017

Your Amazon.co.uk order "Apple
Leather..."

USAA

24th January 2017

You Have An Incoming Payment
Transfer

NatWest.

24th January 2017

NatWest - Account Review
Notification

Vulnerebility

PHP CVE-2016-10160 Remote Code Execution Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95783

QEMU CVE-2017-5579 Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95780

IBM PowerKVM CVE-2016-7076 Local Command Execution Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95778

QEMU 'virtio-gpu.c' Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95781

Support-Project Knowledge CVE-2017-2097 Unspecified Cross-Site Request Forgery Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95779

IBM Forms Experience Builder CVE-2016-6001 Server Side Request Forgery Security Bypass Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95777

QEMU 'virtio-gpu-3d.c' Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95773

smalruby-editor CVE-2017-2096 OS Command Injection Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95775

Nessus CVE-2016-9260 HTML Injection Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95772

PHP CVE-2016-10159 Integer Overflow Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95774

QEMU CVE-2016-10155 Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95770

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-25
http://www.securityfocus.com/bid/95769

Linux Kernel CVE-2017-5576 Integer Overflow Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95767

PHP 'wddx.c' NULL Pointer Dereference Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95668

PHP CVE-2016-10161 Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95768

Schneider Electric Wonderware CVE-2017-5155 Historian Insecure Default Password Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95766

Linux Kernel CVE-2017-5577 Remote Buffer Overflow Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95765

PHP CVE-2016-10158 Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95764

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-25
http://www.securityfocus.com/bid/95763

Multiple Intel Ethernet Controller CVE-2016-8106 Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95333

Mozilla Firefox CVE-2017-5373 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-25
http://www.securityfocus.com/bid/95762

Mozilla Firefox CVE-2017-5377 Memory Corruption Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95761

Cisco WebEx Extension 'magic URL' Remote Command Execution Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95737

Mozilla Firefox CVE-2017-5376 Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95758

Mozilla Firefox CVE-2017-5374 Multiple Memory Corruption Vulnerabilities
2017-01-25
http://www.securityfocus.com/bid/95759

Mozilla Firefox CVE-2017-5375 ASLR and DEP Security Bypass Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95757

ImageMagick CVE-2017-5511 Local Heap Buffer Overflow Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95746

ImageMagick CVE-2017-5510 Local Denial of Service Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95755

ImageMagick CVE-2017-5507 Local Information Disclosure Vulnerability
2017-01-25
http://www.securityfocus.com/bid/95752

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-25
http://www.securityfocus.com/bid/92630

SANS News

Malicious SVG Files in the Wild

Threatpost

AG Nominee Backs Law Enforcement’s Ability to ‘Overcome’ Encryption

SpyNote RAT Now Disguised As Netflix App
Charger Mobile Ransomware Removed from Google Play

Exploit

Mozilla Firefox < 50.0.2 - 'nsSMILTimeContainer::NotifyTimeChange()' Remote Code...

MyBB < 1.8.3 (with PHP 5.6 < 5.6.11) - Remote Code Execution

24.1.2017

Bugtraq

CVE-2017-3241 - [ERPSCAN-17-006] Oracle OpenJDK - Java Serialization DoS 2017-01-24
ERPScan inc (erpscan online gmail com)

[ERPSCAN-17-005] Oracle PeopleSoft - XSS vulnerability CVE-2017-3300 2017-01-24
ERPScan inc (erpscan online gmail com)

[slackware-security] mozilla-firefox (SSA:2017-023-01) 2017-01-24
Slackware Security Team (security slackware com)

APPLE-SA-2017-01-23-7 iTunes for Windows 12.5.5 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2017-01-23-6 iCloud for Windows 6.1.1 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2017-01-23-2 macOS 10.12.3 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2017-01-23-5 Safari 10.0.3 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2017-01-23-4 tvOS 10.1.1 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2017-01-23-3 watchOS 3.1.3 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

APPLE-SA-2017-01-23-1 iOS 10.2.1 2017-01-23
Apple Product Security (product-security-noreply lists apple com)

ESA-2016-150: RSA® Security Analytics Reflected Cross-Site Scripting Vulnerability 2017-01-23
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-146: EMC Avamar Data Store and Avamar Virtual Edition Privilege Escalation Vulnerability 2017-01-23
EMC Product Security Response Center (Security_Alert emc com)

Malware

Trojan.Klonzyrat

Phishing

USAA

24th January 2017

You Have An Incoming Payment
Transfer

NatWest.

24th January 2017

NatWest - Account Review
Notification

Vulnerebility

Cisco WebEx Extension 'magic URL' Remote Command Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95737

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-24
http://www.securityfocus.com/bid/92630

phpMyAdmin PMASA-2017-7 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95738

WebKit Multiple Memory Corruption Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95736

Apple iOS/watchOS/macOS CVE-2016-7644 Remote Code Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94904

Apple macOS/watchOS/iOS/tvOS Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/94905

Apple iOS/WatchOS/tvOS/Safari/iTunes/iCloud CVE-2016-7589 Memory Corruption Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94908

Apple iOS/macOS/tvOS/watchOS CVE-2016-4688 Buffer Overflow Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94572

Apple iOS/WatchOS/tvOS CVE-2016-7626 Memory Corruption Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94852

Apple iOS and watchOS CVE-2016-7651 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94851

Apple iTunes/iCloud/Safari/iOS CVE-2017-2366 Multiple Memory Corruption Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95733

Webkit CVE-2017-2371 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95735

phpMyAdmin Incomplete Fix PMASA-2017-5 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95734

phpMyAdmin PMASA-2017-6 Server Side Request Forgery Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95732

libarchive Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/93781

Apple iOS/macOS/tvOS/watchOS Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95731

Neovim CVE-2016-1248 Command Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94478

PHP LibGD CVE-2016-8670 Stack Buffer Overflow Vulnerability
2017-01-24
http://www.securityfocus.com/bid/93594

PHP 'ext/wddx/wddx.c' NULL pointer Dereference Remote Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94845

PHP 'src/gd.c' Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94865

Apple iOS and watchOS CVE-2017-2352 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95730

Apple iOS/tvOS/watchOS CVE-2017-2360 Arbitray Code Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95729

WebKit CVE-2017-2363 Cross-Origin Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95728

WebKit Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95727

WebKit CVE-2017-2364 Cross-Origin Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95725

phpMyAdmin PMASA-2017-4 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95726

Apple macOS APPLE-SA-2017-01-23-2 Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95723

Apple Safari CVE-2017-2359 Address Bar Spoofing Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95724

Apple iOS APPLE-SA-2017-01-23-1 Denial of Service and Security Bypass Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95722

phpMyAdmin PMASA-2017-3 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95721libarchive Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/93781

Apple iOS/macOS/tvOS/watchOS Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95731

Neovim CVE-2016-1248 Command Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94478

PHP LibGD CVE-2016-8670 Stack Buffer Overflow Vulnerability
2017-01-24
http://www.securityfocus.com/bid/93594

PHP 'ext/wddx/wddx.c' NULL pointer Dereference Remote Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94845

PHP 'src/gd.c' Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94865

Apple iOS and watchOS CVE-2017-2352 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95730

Apple iOS/tvOS/watchOS CVE-2017-2360 Arbitray Code Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95729

WebKit CVE-2017-2363 Cross-Origin Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95728

WebKit Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95727

WebKit CVE-2017-2364 Cross-Origin Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95725

phpMyAdmin PMASA-2017-4 Security Bypass Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95726

Apple macOS APPLE-SA-2017-01-23-2 Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95723

Apple Safari CVE-2017-2359 Address Bar Spoofing Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95724

Apple iOS APPLE-SA-2017-01-23-1 Denial of Service and Security Bypass Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95722

phpMyAdmin PMASA-2017-3 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95721

phpMyAdmin PMASA-2017-1 Open Redirection Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95720

EMC Avamar Data Store and Avamar Virtual Edition Local Privilege Escalation Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95719

EMC RSA Security Analytics CVE-2016-8215 Unspecified Cross Site Scripting Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95718

Linux Kernel CVE-2017-5550 Local Information Disclosure Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95716

Linux Kernel CVE-2017-5549 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95715

Linux Kernel CVE-2017-5546 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95711

Linux Kernel CVE-2017-5551 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95717

PHP 'ext/pcre/php_pcre.c' Information Disclosure Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95712

Cisco IOS Software CVE-2016-6473 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94815

Linux Kernel CVE-2016-10153 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95713

Linux Kernel CVE-2016-10154 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95714

Linux Kernel CVE-2017-5548 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95710

Linux Kernel CVE-2017-5547 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95709

Foxit Reader and PhantomPDF Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95353phpMyAdmin PMASA-2017-3 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95721

phpMyAdmin PMASA-2017-1 Open Redirection Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95720

EMC Avamar Data Store and Avamar Virtual Edition Local Privilege Escalation Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95719

EMC RSA Security Analytics CVE-2016-8215 Unspecified Cross Site Scripting Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95718

Linux Kernel CVE-2017-5550 Local Information Disclosure Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95716

Linux Kernel CVE-2017-5549 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95715

Linux Kernel CVE-2017-5546 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95711

Linux Kernel CVE-2017-5551 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95717

PHP 'ext/pcre/php_pcre.c' Information Disclosure Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95712

Cisco IOS Software CVE-2016-6473 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94815

Linux Kernel CVE-2016-10153 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95713

Linux Kernel CVE-2016-10154 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95714

Linux Kernel CVE-2017-5548 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95710

Linux Kernel CVE-2017-5547 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95709

Foxit Reader and PhantomPDF Multiple Security Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/95353

PHP 'process_nested_data()' Incomplete Fix Use After Free Remote Code Execution Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95707

FiberHome Fengine S5800 Switches CVE-2017-5544 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95708

b2evolution CVE-2017-5553 Cross Site Scripting Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95704

LibTIFF CVE-2017-5563 Heap Based Buffer Overflow Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95705

OnePlus 3 and 3T CVE-2017-5554 Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95706

Libimobiledevice Libplist 'plistutil.c' Heap Buffer Overflow Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95702

Wireshark Multiple Denial of Service Vulnerabilities
2017-01-24
http://www.securityfocus.com/bid/94369

Red Hat JBoss Enterprise Application Platform CVE-2016-8627 Remote Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95698

GeniXCMS CVE-2017-5575 SQL Injection Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95703

b2evolution Incomplete Fix CVE-2017-5539 Directory Traversal Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95700

GeniXCMS CVE-2017-5574 SQL Injection Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95701

NetBSD 'uipc_usrreq.c' Local Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/95697

Apache Tomcat CVE-2016-8745 Information Disclosure Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94828

Oracle Java SE and JRockit CVE-2016-3427 Remote Security Vulnerability
2017-01-24
http://www.securityfocus.com/bid/86421

Apache Tomcat CVE-2016-6817 Denial of Service Vulnerability
2017-01-24
http://www.securityfocus.com/bid/94462

SANS News

Critical Vulnerability in Cisco WebEx Chrome Plugin

Threatpostpost

Heartbleed Persists on 200,000 Servers, Devices

Secure Email Service Lavabit Relaunches

Apple Patches Critical Kernel Vulnerabilities

Apps Carrying HummingBad Variant Booted From Google Play


Cisco Patches Critical Flaw in WebEx Chrome Plugin

Exploit

MyBB < 1.8.3 (with PHP 5.6 < 5.6.11) - Remote Code Execution

Cisco WebEx - 'nativeMessaging' Arbitrary Remote Command Execution

WD My Cloud Mirror 2.11.153 - Authentication Bypass / Remote Code Execution

Microsoft Remote Desktop Client for Mac 8.0.36 - Remote Code Execution

DiskSavvy Enterprise - GET Buffer Overflow (Metasploit)

Oracle OpenJDK Runtime Environment 1.8.0_112-b15 - Java Serialization Denial Of...

23.1.2017

Bugtraq

ESA-2016-150: RSA® Security Analytics Reflected Cross-Site Scripting Vulnerability 2017-01-23
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-146: EMC Avamar Data Store and Avamar Virtual Edition Privilege Escalation Vulnerability 2017-01-23
EMC Product Security Response Center (Security_Alert emc com)

Microsoft Remote Desktop Client for Mac Remote Code Execution - Update 2017-01-23
Filippo Cavallarin (filippo cavallarin wearesegment com)

[SECURITY] [DSA 3770-1] mariadb-10.0 security update 2017-01-22
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3769-1] libphp-swiftmailer security update 2017-01-22
Sebastien Delafond (seb debian org)

Executable installers are vulnerable^WEVIL (case 46): Pelles C allows arbitrary code execution 2017-01-21
Stefan Kanthak (stefan kanthak nexgo de)

Malware

Ransom:Win32/Spora.A

Phishing

EASY SETTLEMENT

23rd January 2017

Online Banking (Wire Transfer
)*************************Paym
ent Alert From Royal Bank Of
Scotland(R)****

service@intl.paypal.com

22nd January 2017

Reminder: We have updates on
our Policy Update page.

Vulnerebility

Wireshark Multiple Denial of Service Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/94369

Red Hat JBoss Enterprise Application Platform CVE-2016-8627 Remote Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95698

GeniXCMS CVE-2017-5575 SQL Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95703

b2evolution Incomplete Fix CVE-2017-5539 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95700

GeniXCMS CVE-2017-5574 SQL Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95701

NetBSD 'uipc_usrreq.c' Local Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95697

Apache Tomcat CVE-2016-8745 Information Disclosure Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94828

Oracle Java SE and JRockit CVE-2016-3427 Remote Security Vulnerability
2017-01-23
http://www.securityfocus.com/bid/86421

Apache Tomcat CVE-2016-6817 Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94462

Apache Tomcat CVE-2016-8735 Remote Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94463

Apache Tomcat CVE-2016-6816 Security Bypass Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94461

Multiple TIBCO Products CVE-2017-3180 Multiple Unspecified Cross-Site Scripting Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/95699

Mozilla Firefox ESR CVE-2016-9905 Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94884

Mozilla Network Security Services CVE-2016-9074 Multiple Security Bypass Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/94341

python-xdg '/tmp' Insecure Temporary File Creation Vulnerability
2017-01-23
http://www.securityfocus.com/bid/65042

Mozilla Firefox MFSA2016-94 and MFSA2016-95 Multiple Security Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/94885

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/92260

Wireshark Profinet I/O Dissector CVE-2016-9372 Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94368

Stunnel CVE-2014-0016 PRNG Initialization Weakness
2017-01-23
http://www.securityfocus.com/bid/65964

Mozilla Firefox CVE-2016-5290 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/94335

Mozilla Firefox CVE-2016-5296 Heap Buffer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94339

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/94336

GIMP 'app/xcf/xcf-load.c' Multiple Remote Code Execution Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/91425

Memcached Multiple Integer Overflow Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/94083

Mozilla Firefox CVE-2016-9079 Use After Free Remote Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/94591

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/93049

Multiple TIBCO Products CVE-2017-3181 Multiple Unspecified SQL Injection Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/95696

Brocade Network Advisor CVE-2016-8204 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95695

Brocade Network Advisor CVE-2016-8205 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95694

Docker CVE-2016-9962 Local Privilege Escalation Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95361
Brocade Network Advisor CVE-2016-8204 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95695

Brocade Network Advisor CVE-2016-8205 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95694

Docker CVE-2016-9962 Local Privilege Escalation Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95361

Adobe Acrobat Extension for Chrome CVE-2017-2929 Cross Site Scripting Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95693

Brocade Network Advisor CVE-2016-8206 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95692

Adobe Acrobat and Reader APSB17-01 Multiple Heap Buffer Overflow Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/95690

Brocade Network Advisor CVE-2016-8207 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95691

VLC Media Player CVE-2016-5108 Arbitrary Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/90924

xdelta3 CVE-2014-9765 Local Buffer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/83109

MiniUPnP 'miniwget.c' Remote Buffer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/67152

PHP libmagick 'src/softmagic.c' Out-of-Bounds Read Vulnerability
2017-01-23
http://www.securityfocus.com/bid/72505

PHP 'finfo_open()' Function Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/85802

file 'readelf.c' Out-of-Bounds Read Vulnerability
2017-01-23
http://www.securityfocus.com/bid/72516

PHP 'donote()' Function Out-of-Bounds Read Vulnerability
2017-01-23
http://www.securityfocus.com/bid/70807

JasPer 'jas_seq.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95687

Symphony CVE-2017-5541 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95689

Subrion CMS CVE-2017-5543 PHP Object Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95688

Symphony CMS CVE-2017-5542 Cross Site Scripting Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95686

Ghost 'Your profile' Page HTML Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95685

GeniXCMS CVE-2017-5347 SQL Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95684

GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/95680

JasPer 'jpc_t1dec.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95683

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/91068

JasPer 'jpc/jpc_dec.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95682

IBM Cognos Business Intelligence Server CVE-2016-0217 Cross Site Scripting Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95681

icoutils CVE-2017-5333 Local Integer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95678

Plone CVE-2017-5524 Sandbox Security Bypass Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95679

Apache Struts Remote Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95675

Weblate CVE-2017-5537 Information Disclosure Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95676

Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95677VLC Media Player CVE-2016-5108 Arbitrary Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/90924

xdelta3 CVE-2014-9765 Local Buffer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/83109

MiniUPnP 'miniwget.c' Remote Buffer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/67152

PHP libmagick 'src/softmagic.c' Out-of-Bounds Read Vulnerability
2017-01-23
http://www.securityfocus.com/bid/72505

PHP 'finfo_open()' Function Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/85802

file 'readelf.c' Out-of-Bounds Read Vulnerability
2017-01-23
http://www.securityfocus.com/bid/72516

PHP 'donote()' Function Out-of-Bounds Read Vulnerability
2017-01-23
http://www.securityfocus.com/bid/70807

JasPer 'jas_seq.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95687

Symphony CVE-2017-5541 Directory Traversal Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95689

Subrion CMS CVE-2017-5543 PHP Object Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95688

Symphony CMS CVE-2017-5542 Cross Site Scripting Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95686

Ghost 'Your profile' Page HTML Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95685

GeniXCMS CVE-2017-5347 SQL Injection Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95684

GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
2017-01-23
http://www.securityfocus.com/bid/95680

JasPer 'jpc_t1dec.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95683

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/91068

JasPer 'jpc/jpc_dec.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95682

IBM Cognos Business Intelligence Server CVE-2016-0217 Cross Site Scripting Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95681

icoutils CVE-2017-5333 Local Integer Overflow Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95678

Plone CVE-2017-5524 Sandbox Security Bypass Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95679

Apache Struts Remote Code Execution Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95675

Weblate CVE-2017-5537 Information Disclosure Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95676

Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95677

Samsung CVE-2017-5538 Remote Memory Corruption Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95674
10150 Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95672

QEMU 'ac97.c' Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95671

PHP CVE-2016-7479 Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95151

Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95076

Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-01-23
http://www.securityfocus.com/bid/95077

SANS News

 

Threatpost

Massive Twitter Botnet Dormant Since 2013

Sage and Satan Ransomware, Double Trouble

Exploit

Microsoft Power Point 2016 - Java Code Execution

PageKit 1.0.10 - Password Reset

NTOPNG 2.4 Web Interface - Cross-Site Request Forgery

SunOS 5.11 ICMP - Denial of Service

22.1.2017

Bugtraq

[SECURITY] [DSA 3767-1] mysql-5.5 security update 2017-01-19
Salvatore Bonaccorso (carnil debian org)

Novel Contributions to the field - How I broke MySQL's code-base (Part 2) [CVE-2016-5541] MySQL cluster remote 0day 2017-01-19
Nicholas Lemonias. (lem nikolas googlemail com)

Novel Contributions to the Field - How I broke MySQL's codebase (Part 2) [CVE-2016-5541] MySQL Cluster 0day 2017-01-18
lem nikolas gmail com

[RCESEC-2016-012] Mattermost <= 3.5.1 "/error" Unauthenticated Reflected Cross-Site Scripting / Content Injection 2017-01-18
Julien Ahrens (info rcesecurity com)

Malware

 

Phishing

Bank of America Alerts

21st January 2017

Bank of America Alert:
Irregular Activity On Your
Account

USAA

20th January 2017

Your Incoming Payment Transfer
On Hold

AOL

20th January 2017

you were matched up with
Savannah

AOL

20th January 2017

youre matched with India

Ritchie, Jennifer

20th January 2017

cwwfamily

Vulnerebility

Symphony CVE-2017-5541 Directory Traversal Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95689

Subrion CMS CVE-2017-5543 PHP Object Injection Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95688

Symphony CMS CVE-2017-5542 Cross Site Scripting Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95686

Ghost 'Your profile' Page HTML Injection Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95685

GeniXCMS CVE-2017-5347 SQL Injection Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95684

GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
2017-01-22
http://www.securityfocus.com/bid/95680

JasPer 'jpc_t1dec.c' Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95683

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-01-22
http://www.securityfocus.com/bid/91068

JasPer 'jpc/jpc_dec.c' Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95682

IBM Cognos Business Intelligence Server CVE-2016-0217 Cross Site Scripting Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95681

icoutils CVE-2017-5333 Local Integer Overflow Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95678

Plone CVE-2017-5524 Sandbox Security Bypass Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95679

Apache Struts Remote Code Execution Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95675

Weblate CVE-2017-5537 Information Disclosure Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95676

Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95677

Samsung CVE-2017-5538 Remote Memory Corruption Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95674

Linux Kernel CVE-2017-2583 Privilege Escalation Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95673

Linux Kernel CVE-2016-10150 Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95672

QEMU 'ac97.c' Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95671

PHP CVE-2016-7479 Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95151

Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95076

Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95077

Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95078

Apache HTTP Server 'mod_proxy_fcgi' Module Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/71657

Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/94650

Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
2017-01-22
http://www.securityfocus.com/bid/91816

ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95390

389 Directory Server CVE-2017-2591 Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95670

QEMU 'es1370.c' Denial of Service Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95669

icoutils CVE-2017-5332 Local Code Execution Vulnerability
2017-01-22
http://www.securityfocus.com/bid/95380Symphony CVE-2017-5541 Directory Traversal Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95689

Subrion CMS CVE-2017-5543 PHP Object Injection Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95688

Symphony CMS CVE-2017-5542 Cross Site Scripting Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95686

Ghost 'Your profile' Page HTML Injection Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95685

GeniXCMS CVE-2017-5347 SQL Injection Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95684

GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
2017-01-21
http://www.securityfocus.com/bid/95680

JasPer 'jpc_t1dec.c' Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95683

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-01-21
http://www.securityfocus.com/bid/91068

JasPer 'jpc/jpc_dec.c' Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95682

IBM Cognos Business Intelligence Server CVE-2016-0217 Cross Site Scripting Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95681

icoutils CVE-2017-5333 Local Integer Overflow Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95678

Plone CVE-2017-5524 Sandbox Security Bypass Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95679

Apache Struts Remote Code Execution Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95675

Weblate CVE-2017-5537 Information Disclosure Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95676

Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95677

Samsung CVE-2017-5538 Remote Memory Corruption Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95674

Linux Kernel CVE-2017-2583 Privilege Escalation Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95673

Linux Kernel CVE-2016-10150 Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95672

QEMU 'ac97.c' Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95671

PHP CVE-2016-7479 Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95151

Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95076

Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95077

Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95078

Apache HTTP Server 'mod_proxy_fcgi' Module Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/71657

Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/94650

Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
2017-01-21
http://www.securityfocus.com/bid/91816

ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95390

389 Directory Server CVE-2017-2591 Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95670

QEMU 'es1370.c' Denial of Service Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95669

icoutils CVE-2017-5332 Local Code Execution Vulnerability
2017-01-21
http://www.securityfocus.com/bid/95380

SANS News

Sage 2.0 Ransomware

Threatpost

Hadoop, CouchDB Next Targets in Wave of Database Attacks

Coalition of Cryptographers, Researchers Urge Guardian to Retract WhatsApp Story

Mozilla’s First Internet Health Report Tackles Security, Privacy

Exploit

 

20.1.2017

Bugtraq

[SECURITY] [DSA 3767-1] mysql-5.5 security update 2017-01-19
Salvatore Bonaccorso (carnil debian org)

Novel Contributions to the field - How I broke MySQL's code-base (Part 2) [CVE-2016-5541] MySQL cluster remote 0day 2017-01-19
Nicholas Lemonias. (lem nikolas googlemail com)

Novel Contributions to the Field - How I broke MySQL's codebase (Part 2) [CVE-2016-5541] MySQL Cluster 0day 2017-01-18
lem nikolas gmail com

[RCESEC-2016-012] Mattermost <= 3.5.1 "/error" Unauthenticated Reflected Cross-Site Scripting / Content Injection 2017-01-18
Julien Ahrens (info rcesecurity com)

[security bulletin] HPSBMU03685 rev.1 - HPE Insight Control server provisioning (ICsp), Multiple Remote Vulnerabilities 2017-01-18
security-alert hpe com

ESA-2016-161: EMC Isilon OneFS LDAP Injection Vulnerability 2017-01-18
EMC Product Security Response Center (Security_Alert emc com)

Malware

TrojanDownloader:Win32/Gendwndrop!rfn

Phishing

AOL

19th January 2017

A person has tagged your
current profile page

Capitalone360

19th January 2017

IMPORTANT MESSAGE FROM
CAPITALONE360 BANK.

BT Mail

19th January 2017

Important informations about
your BT email account

iCloud Support

19th January 2017

[ICLOUD] : YOUR SUBSCRIPTION
WITH ITUNIS HAS BEEN EXPIRED

Vulnerebility

Symphony CVE-2017-5541 Directory Traversal Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95689

Subrion CMS CVE-2017-5543 PHP Object Injection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95688

Symphony CMS CVE-2017-5542 Cross Site Scripting Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95686

Ghost 'Your profile' Page HTML Injection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95685

GeniXCMS CVE-2017-5347 SQL Injection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95684

GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
2017-01-20
http://www.securityfocus.com/bid/95680

JasPer 'jpc_t1dec.c' Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95683

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2017-01-20
http://www.securityfocus.com/bid/91068

JasPer 'jpc/jpc_dec.c' Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95682

IBM Cognos Business Intelligence Server CVE-2016-0217 Cross Site Scripting Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95681

icoutils CVE-2017-5333 Local Integer Overflow Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95678

Plone CVE-2017-5524 Sandbox Security Bypass Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95679

Apache Struts Remote Code Execution Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95675

Weblate CVE-2017-5537 Information Disclosure Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95676

Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95677

Samsung CVE-2017-5538 Remote Memory Corruption Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95674

Linux Kernel CVE-2017-2583 Privilege Escalation Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95673

Linux Kernel CVE-2016-10150 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95672

QEMU 'ac97.c' Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95671

PHP CVE-2016-7479 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95151

Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95076

Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95077

Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95078

Apache HTTP Server 'mod_proxy_fcgi' Module Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/71657

Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/94650

Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
2017-01-20
http://www.securityfocus.com/bid/91816

ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95390

389 Directory Server CVE-2017-2591 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95670

QEMU 'es1370.c' Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95669

icoutils CVE-2017-5332 Local Code Execution Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95380icoutils CVE-2017-5332 Local Code Execution Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95380

icoutils CVE-2017-5331 Incomplete Fix Local Integer Overflow Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95378

GStreamer Good Plug-ins Incomplete Fix CVE-2016-9808 Buffer Overflow Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95446

Gstreamer CVE-2016-9810 Invalid Memory Read Denial Of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95163

GStreamer Good Plug-ins Multiple Buffer Overflow Vulnerabilities
2017-01-20
http://www.securityfocus.com/bid/94499

GStreamer Good Plug-ins CVE-2016-9807 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95148

python-pysaml2 CVE-2016-10127 XML External Entity Injection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95376

PostgreSQL CVE-2016-5423 NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-20
http://www.securityfocus.com/bid/92433

PostgreSQL CVE-2016-5424 Multiple Local Privilege Escalation Vulnerabilities
2017-01-20
http://www.securityfocus.com/bid/92435

PostgreSQL CVE-2015-5289 Remote Denial Of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/77048

PostgreSQL Integer Overflow and Privilege Escalation Vulnerabilities
2017-01-20
http://www.securityfocus.com/bid/83184

PostgreSQL 'pgcrypto' Module CVE-2015-5288 Memory Corruption Vulnerability
2017-01-20
http://www.securityfocus.com/bid/77049

PHP 'gdImageCreateFromGd2Ctx()' Function Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95667

JasPer Multiple Denial of Service Vulnerabilities
2017-01-20
http://www.securityfocus.com/bid/95666

Schneider homeLYnk Controller LSS1001003 CVE-2017-5157 Cross Site Scripting Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95665

Huawei Smart Phones CVE-2017-2698 Local Buffer Overflow Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95664

Huawei S3300 Remote Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95662

Huawei Smart Phones CVE-2017-2703 Security Bypass Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95657

Huawei P9 Plus CVE-2017-2711 Local Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95663

Huawei Smart Phones CVE-2017-2705 Security Bypass Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95661

Huawei Smart Phones CVE-2017-2691 Security Bypass Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95658

Serendipity CVE-2017-5475 Cross Site Request Forgery Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95656

GeniXCMS CVE-2017-5345 SQL Injection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95660

Serendipity CVE-2017-5476 Cross Site Request Forgery Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95659

ntopng CVE-2017-5473 Multiple Cross Site Request Forgery Vulnerabilities
2017-01-20
http://www.securityfocus.com/bid/95654

Serendipity CVE-2017-5474 Open Redirection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95652

IBM InfoSphere DataStage CVE-2016-8982 Information Disclosure Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95651

GeniXCMS CVE-2017-5346 SQL Injection Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95655

IBM WebSphere Application Server CVE-2016-8919 Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/95650

SAP Adaptive Server Enterprise Denial of Service Vulnerability
2017-01-20
http://www.securityfocus.com/bid/93545

SANS News

PowerShell 5.1 for Windows 7 and later

Threatpost

Hack the Army Bounty Pays Out $100,000; 118 Flaws Fixed

Facebook, Researcher at Odds Over Messenger Issue

Locky Limps Back into Action After Lull

ProtonMail Gets Own Tor-Accessible .Onion Hidden Service

The Changing Face of Carbanak

Exploit

Google Android TSP sysfs - 'cmd_store' Multiple Overflows

Classifieds Script - SQL Injection

Video Site Creator Script - SQL Injection

Home of Viral Images, Videos and Articles Script - SQL Injection

Job Vacancy Script - SQL Injection

Vine VideoSite Creator Script - SQL Injection

Viral Image Sharing Script - SQL Injection

Social News and Bookmarking Script - SQL Injection

Viral Image Sharing Script - SQL Injection

Vine VideoSite Creator Script - SQL Injection

Job Vacancy Script - SQL Injection

Home of Viral Images, Videos and Articles Script - SQL Injection

Video Site Creator Script - SQL Injection

Classifieds Script - SQL Injection

19.1.2017

Bugtraq

Novel Contributions to the field - How I broke MySQL's code-base (Part 2) [CVE-2016-5541] MySQL cluster remote 0day 2017-01-19
Nicholas Lemonias. (lem nikolas googlemail com)

Novel Contributions to the Field - How I broke MySQL's codebase (Part 2) [CVE-2016-5541] MySQL Cluster 0day 2017-01-18
lem nikolas gmail com

[RCESEC-2016-012] Mattermost <= 3.5.1 "/error" Unauthenticated Reflected Cross-Site Scripting / Content Injection 2017-01-18
Julien Ahrens (info rcesecurity com)

[security bulletin] HPSBMU03685 rev.1 - HPE Insight Control server provisioning (ICsp), Multiple Remote Vulnerabilities 2017-01-18
security-alert hpe com

ESA-2016-161: EMC Isilon OneFS LDAP Injection Vulnerability 2017-01-18
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-143: EMC Documentum Webtop and Clients Stored Cross-Site Scripting Vulnerability 2017-01-18
EMC Product Security Response Center (Security_Alert emc com)

[SECURITY] CVE-2016-8748: Apache NiFi XSS vulnerability in connection details dialogue 2017-01-16
Joe Witt (joewitt apache org)

Malware

W97M.Downloader.K

Trojan.Carberp.E

OSX.Quimitchin

Phishing

Amazon.co.uk

18th January 2017

Your Amazon.co.uk Account

NatWest

18th January 2017

1 New Message

AOL

18th January 2017

An individual has recently
tagged your current personal
profile

AOL

18th January 2017

youve been matched with Lena

AOL

18th January 2017

A person has already tagged
your current personal profile

AOL

18th January 2017

Someone seems to have tagged
your very own account

PayPal Support

18th January 2017

We recently contacted you
after noticing an issue on
your account

reminder

18th January 2017

We�re writing to confirm your
PayPal account has been closed

Vulnerebility

Cisco IOS Software and IOx Software CVE-2017-3805 Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95644

Cisco Email Security Appliance for AsyncOS CVE-2017-3800 Remote Security Bypass Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95637

Cisco WebEx Meetings Server CVE-2017-3796 Remote Command Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95641

Cisco WebEx Meetings Server CVE-2017-3797 Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95639

Cisco WebEx Meetings Server CVE-2017-3795 Local Security Bypass Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95643

Cisco WebEx Meeting Center CVE-2017-3799 Open Redirection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95642

Cisco NetFlow Generation Appliance CVE-2016-9222 Cross Site Scripting Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95640

Multiple Cisco Nexus Devices CVE-2017-3804 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95638

Cisco Unified Communications Manager CVE-2017-3802 Cross Site Scripting Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95636

Cisco WebEx Meetings Server CVE-2017-3794 Cross Site Request Forgery Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95635

Cisco Hybrid Meeting Server CVE-2016-9218 Cross Site Request Forgery Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95634

Cisco Mobility Express 2800 and 3800 Access Points CVE-2016-9220 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95633

Cisco Catalyst 2960 and 3750 Series Switches CVE-2017-3803 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95632

Cisco Mobility Express 2800 and 3800 Access Points CVE-2016-9221 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95631

Multiple GE Products CVE-2016-9360 Local Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95630

Cisco ASR 5000 Series Software CVE-2016-9216 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95629

Apple Logic Pro X and GarageBand CVE-2017-2372 Memory Corruption Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95627

IBM dashDB Local CVE-2016-8954 Hardcoded Credentials Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95628

GeniXCMS CVE-2017-5515 Multiple Cross Site Scripting Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95623

EMC Isilon OneFS CVE-2016-9870 Local LDAP Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95626

Multiple EMC Products CVE-2016-8213 HTML Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95625

BlackBerry Enterprise Server CVE-2016-3128 Spoofing Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95624

Citrix Provisioning Services Remote Code Execution and Information Disclosure Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95620

GeniXCMS CVE-2017-5516 Multiple Cross Site Scripting Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95622

Apache NiFi CVE-2106-8748 Cross Site Scripting Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95621

OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/89760

OpenSSL CVE-2016-6309 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93177

OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/92987

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2015-1790 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75157Cisco WebEx Meetings Server CVE-2017-3794 Cross Site Request Forgery Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95635

Cisco Hybrid Meeting Server CVE-2016-9218 Cross Site Request Forgery Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95634

Cisco Mobility Express 2800 and 3800 Access Points CVE-2016-9220 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95633

Cisco Catalyst 2960 and 3750 Series Switches CVE-2017-3803 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95632

Cisco Mobility Express 2800 and 3800 Access Points CVE-2016-9221 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95631

Multiple GE Products CVE-2016-9360 Local Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95630

Cisco ASR 5000 Series Software CVE-2016-9216 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95629

Apple Logic Pro X and GarageBand CVE-2017-2372 Memory Corruption Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95627

IBM dashDB Local CVE-2016-8954 Hardcoded Credentials Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95628

GeniXCMS CVE-2017-5515 Multiple Cross Site Scripting Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95623

EMC Isilon OneFS CVE-2016-9870 Local LDAP Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95626

Multiple EMC Products CVE-2016-8213 HTML Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95625

BlackBerry Enterprise Server CVE-2016-3128 Spoofing Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95624

Citrix Provisioning Services Remote Code Execution and Information Disclosure Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95620

GeniXCMS CVE-2017-5516 Multiple Cross Site Scripting Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95622

Apache NiFi CVE-2106-8748 Cross Site Scripting Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95621

OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/89760

OpenSSL CVE-2016-6309 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93177

OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/92987

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2015-1790 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75157

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-19
http://www.securityfocus.com/bid/91319

OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93153

OpenSSL CVE-2016-6305 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93149

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93152

OpenSSL CVE-2016-6308 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93151

OpenSSL CMS CVE-2015-1792 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75154

OpenSSL CVE-2016-7052 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93171

Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75919GeniXCMS CVE-2017-5515 Multiple Cross Site Scripting Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95623

EMC Isilon OneFS CVE-2016-9870 Local LDAP Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95626

Multiple EMC Products CVE-2016-8213 HTML Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95625

BlackBerry Enterprise Server CVE-2016-3128 Spoofing Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95624

Citrix Provisioning Services Remote Code Execution and Information Disclosure Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95620

GeniXCMS CVE-2017-5516 Multiple Cross Site Scripting Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/95622

Apache NiFi CVE-2106-8748 Cross Site Scripting Vulnerability
2017-01-19
http://www.securityfocus.com/bid/95621

OpenSSL Padding Oracle Incomplete Fix Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/89760

OpenSSL CVE-2016-6309 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93177

OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-01-19
http://www.securityfocus.com/bid/92987

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2015-1790 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75157

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-19
http://www.securityfocus.com/bid/91319

OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93153

OpenSSL CVE-2016-6305 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93149

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93152

OpenSSL CVE-2016-6308 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93151

OpenSSL CMS CVE-2015-1792 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75154

OpenSSL CVE-2016-7052 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93171

Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75919

Apache POI CVE-2016-5000 XML External Entity Injection Vulnerability
2017-01-19
http://www.securityfocus.com/bid/92100

Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2017-01-19
http://www.securityfocus.com/bid/91869

Bouncy Castle CVE-2015-7940 Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/79091

Apache MyFaces Trinidad CVE-2016-5019 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/93236

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-19
http://www.securityfocus.com/bid/92630

OpenSSL CVE-2016-2181 Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/92982

OpenSSL 'BN_bn2dec()' Function Out of Bounds Write Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/92557

Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability
2017-01-19
http://www.securityfocus.com/bid/78215

OpenSSL CVE-2015-1789 Out of Bounds Read Denial of Service Vulnerability
2017-01-19
http://www.securityfocus.com/bid/75156

SANS News

Making Windows 10 a bit less "Creepy" - Common Privacy Settings

Threatpost

Oracle Patches 270 Vulnerabilities in Year’s First Critical Patch Update

Docker Patches Container Escape Vulnerability

Carbanak Using Google Services for Command and Control

Exploit

B2B Script 4.27 - SQL Injection

Flippa Website Script - SQL Injection

Courier Management System - SQL Injection

18.1.2017

Bugtraq

ESA-2016-161: EMC Isilon OneFS LDAP Injection Vulnerability 2017-01-18
EMC Product Security Response Center (Security_Alert emc com)

ESA-2016-143: EMC Documentum Webtop and Clients Stored Cross-Site Scripting Vulnerability 2017-01-18
EMC Product Security Response Center (Security_Alert emc com)

[SECURITY] CVE-2016-8748: Apache NiFi XSS vulnerability in connection details dialogue 2017-01-16
Joe Witt (joewitt apache org)

[SECURITY] [DSA 3765-1] icoutils security update 2017-01-14
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3743-2] python-bottle regression update 2017-01-15
Sebastien Delafond (seb debian org)

[security bulletin] HPSBGN03689 rev.1 - HPE Diagnostics, Remote Cross-Site Scripting and Click Jacking 2017-01-13
security-alert hpe com

[security bulletin] HPSBST03671 rev.2 - HPE StoreEver MSL6480 Tape Library Management Interface, Multiple Remote Vulnerabilities 2017-01-13
security-alert hpe com

Malware

 

Phishing

NatWest

17th January 2017

Important New Message

iCloud Support

17th January 2017

[ICLOUD] : YOUR SUBSCRIPTION
WITH ITUNIS HAS BEEN EXPIRED

Apple

17th January 2017

YOUR APPLE ID WAS USED TO SIGN
IN TO IMESSAGE ON AN IPHONE 6.

Vulnerebility

PHP 'ext/zip/php_zip.c' Use After Free Remote Code Execution Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91397

Libxml2 'xmlsave.c' Denial of Service Vulnerability
2017-01-18
http://www.securityfocus.com/bid/90013

PHP '_gdContributionsAlloc()' Function Integer Overflow Vulnerability
2017-01-18
http://www.securityfocus.com/bid/92080

PHP CVE-2016-5772 Double Free Memory Corruption Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91398

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-01-18
http://www.securityfocus.com/bid/93152

PHP 'ext/spl/spl_directory.c' Type Confusion Remote Denial Of Service Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91403

PHP CVE-2016-5769 Multiple Integer Overflow Vulnerabilities
2017-01-18
http://www.securityfocus.com/bid/91399

PHP CVE-2016-5768 Double Free Memory Corruption Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91396

PHP 'ext/spl/spl_array.c' Use After Free Remote Code Execution Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91401

PHP CVE-2016-5767 Integer Overflow Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91395

PHP 'php_html_entities()' Function Integer Overflow Vulnerability
2017-01-18
http://www.securityfocus.com/bid/90857

PHP LibGD CVE-2016-3074 Heap Buffer Overflow Vulnerability
2017-01-18
http://www.securityfocus.com/bid/87087

PHP CVE-2016-5093 Information Disclosure Vulnerability
2017-01-18
http://www.securityfocus.com/bid/90946

PHP CVE-2016-5385 Security Bypass Vulnerability
2017-01-18
http://www.securityfocus.com/bid/91821

PHP 'ext/standard/file.c' Multiple Denial of Service Vulnerabilities
2017-01-18
http://www.securityfocus.com/bid/90861

PHP 'imagescale' Function Out of Bounds Read Denial of Service Vulnerability
2017-01-18
http://www.securityfocus.com/bid/90859

b2evolution CVE-2017-5480 Directory Traversal Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95454

b2evolution CVE-2017-5494 Multiple Cross Site Scripting Vulnerabilities
2017-01-18
http://www.securityfocus.com/bid/95452

Oracle Java SE CVE-2014-6512 IP Address Spoofing Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70567

CMS Made Simple CVE-2016-7904 Cross Site Request Forgery Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95453

Oracle Java SE CVE-2014-6457 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70538

Oracle Java SE CVE-2014-6531 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70572

Oracle Java SE CVE-2014-6511 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70548

Oracle Java SE CVE-2014-6515 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70565

Oracle Java SE CVE-2014-6506 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70556

Oracle Java SE CVE-2014-6458 Local Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70460

Oracle Java SE CVE-2014-6492 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70456

Oracle Java SE CVE-2014-6532 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70507

Oracle Java SE CVE-2014-6503 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70518

Oracle Java SE CVE-2014-6466 Local Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/70484Oracle E-Business Suite CVE-2017-3277 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95617

Oracle E-Business Suite CVE-2017-3287 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95616

Oracle E-Business Suite CVE-2017-3285 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95615

Oracle E-Business Suite CVE-2017-3279 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95614

Oracle E-Business Suite CVE-2017-3284 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95613

Oracle E-Business Suite CVE-2017-3443 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95612

Oracle E-Business Suite CVE-2017-3326 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95611

Oracle E-Business Suite CVE-2017-3328 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95610

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-18
http://www.securityfocus.com/bid/92630

RETIRED: Oracle Java SE CVE-2016-2183 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95568

Oracle FLEXCUBE Core Banking CVE-2016-8323 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95556

Oracle FLEXCUBE Core Banking CVE-2016-8322 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95608

Oracle FLEXCUBE Core Banking CVE-2016-8324 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95607

Oracle E-Business Suite CVE-2017-3246 Local Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95604

Oracle FLEXCUBE Core Banking CVE-2016-8314 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95609

Oracle Java SE CVE-2016-8328 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95581

Oracle FLEXCUBE Universal Banking CVE-2016-8307 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95551

Oracle FLEXCUBE Universal Banking CVE-2017-3235 Local Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95555

Oracle FLEXCUBE Universal Banking CVE-2016-8304 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95550

Oracle FLEXCUBE Universal Banking CVE-2016-8302 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95554

Oracle FLEXCUBE Universal Banking CVE-2016-8310 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95545

Oracle FLEXCUBE Universal Banking CVE-2016-8303 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95548

Oracle FLEXCUBE Universal Banking CVE-2016-8311 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95546

Oracle FLEXCUBE Universal Banking CVE-2017-3314 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95549

Oracle FLEXCUBE Universal Banking CVE-2017-3236 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95552

Oracle FLEXCUBE Universal Banking CVE-2016-8299 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95547

Oracle FLEXCUBE Universal Banking CVE-2016-8301 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95553

Oracle FLEXCUBE Universal Banking CVE-2016-8297 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95540

Oracle FLEXCUBE Investor Servicing CVE-2016-8306 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95515

Oracle FLEXCUBE Direct Banking CVE-2017-3245 Remote Security Vulnerability
2017-01-18
http://www.securityfocus.com/bid/95606

SANS News

Making Windows 10 a bit less "Creepy" - Common Privacy Settings

Threatpost

Router Vulnerabilities Disclosed in July Remain Unpatched

Vulnerabilities Leave iTunes, App Store Open to Script Injection

New RCE Flaws Found in Samsung Smartcam

Spora Ransomware Offers Victims Unique Payment Options

Exploit

Linux/x86-64 - mkdir Shellcode (25 bytes)

Openexpert 0.5.17 - SQL Injection

Check Box 2016 Q2 Survey - Multiple Vulnerabilities

BoZoN 2.4 - Remote Code Execution

dirLIST 0.3.0 - Arbitrary File Upload

17.1.2017

Bugtraq

[SECURITY] CVE-2016-8748: Apache NiFi XSS vulnerability in connection details dialogue 2017-01-16
Joe Witt (joewitt apache org)

[SECURITY] [DSA 3765-1] icoutils security update 2017-01-14
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3743-2] python-bottle regression update 2017-01-15
Sebastien Delafond (seb debian org)

Malware

TrojanDownloader:Win32/Gendwndrop.C!bit
TrojanDownloader:Win32/Gendwnurl.J!bit

TrojanDownloader:Win32/Gendwndrop!rfn

TrojanDownloader:Win32/Banload.BGW

TrojanDownloader:Win32/Wopfig.A

TrojanDownloader:Win32/Smordess.A

Exp.CVE-2016-7256

Phishing

USAA.Web.Services

16th January 2017

You Have A New Payment
Transfer

NatWest

16th January 2017

Important New Message

Halifax Uk

16th January 2017

Your account needs 2-step
security verification

Vulnerebility

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2014-6519 Remote Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/70570

Oracle Java SE CVE-2014-6493 Remote Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/70468

Oracle Java SE CVE-2014-6476 Remote Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/70531

PHP 'bzread()' Function Out of Bounds Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92051

ISC BIND CVE-2016-8864 Remote Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/94067

ISC BIND 'buffer.c' Remote Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/93188

PHP '/xmlrpc/libxmlrpc/simplestring.c' Heap Buffer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92095

PHP 'zip_stream.c' Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92099

PHP 'snmp.c' Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92094

ICU CVE-2016-6293 Out of Bounds Read Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92127

PHP 'exif_process_IFD_in_MAKERNOTE' Out of Bounds Read Information Disclosure Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92073

PHP CVE-2016-6294 Local Information Disclosure Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92115

PHP 'exif.c' NULL Pointer Dereference Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92078

PHP 'session.c' Use After Free Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92097

PHP 'zend_virtual_cwd.c' Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92074

OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-01-17
http://www.securityfocus.com/bid/92987

PHP 'ext/zip/php_zip.c' Use After Free Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91397

Libxml2 'xmlsave.c' Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/90013

PHP '_gdContributionsAlloc()' Function Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92080

PHP CVE-2016-5772 Double Free Memory Corruption Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91398

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/93152

PHP 'ext/spl/spl_directory.c' Type Confusion Remote Denial Of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91403

PHP CVE-2016-5769 Multiple Integer Overflow Vulnerabilities
2017-01-17
http://www.securityfocus.com/bid/91399

PHP CVE-2016-5768 Double Free Memory Corruption Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91396

PHP 'ext/spl/spl_array.c' Use After Free Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91401

PHP CVE-2016-5767 Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91395

PHP 'php_html_entities()' Function Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/90857

PHP LibGD CVE-2016-3074 Heap Buffer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/87087

PHP CVE-2016-5093 Information Disclosure Vulnerability
2017-01-17
http://www.securityfocus.com/bid/90946Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2014-6519 Remote Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/70570

Oracle Java SE CVE-2014-6493 Remote Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/70468

Oracle Java SE CVE-2014-6476 Remote Security Vulnerability
2017-01-17
http://www.securityfocus.com/bid/70531

PHP 'bzread()' Function Out of Bounds Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92051

ISC BIND CVE-2016-8864 Remote Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/94067

ISC BIND 'buffer.c' Remote Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/93188

PHP '/xmlrpc/libxmlrpc/simplestring.c' Heap Buffer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92095

PHP 'zip_stream.c' Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92099

PHP 'snmp.c' Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92094

ICU CVE-2016-6293 Out of Bounds Read Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92127

PHP 'exif_process_IFD_in_MAKERNOTE' Out of Bounds Read Information Disclosure Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92073

PHP CVE-2016-6294 Local Information Disclosure Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92115

PHP 'exif.c' NULL Pointer Dereference Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92078

PHP 'session.c' Use After Free Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92097

PHP 'zend_virtual_cwd.c' Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92074

OpenSSL CVE-2016-2179 Multiple Denial of Service Vulnerabilities
2017-01-17
http://www.securityfocus.com/bid/92987

PHP 'ext/zip/php_zip.c' Use After Free Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91397

Libxml2 'xmlsave.c' Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/90013

PHP '_gdContributionsAlloc()' Function Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/92080

PHP CVE-2016-5772 Double Free Memory Corruption Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91398

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/93152

PHP 'ext/spl/spl_directory.c' Type Confusion Remote Denial Of Service Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91403

PHP CVE-2016-5769 Multiple Integer Overflow Vulnerabilities
2017-01-17
http://www.securityfocus.com/bid/91399

PHP CVE-2016-5768 Double Free Memory Corruption Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91396

PHP 'ext/spl/spl_array.c' Use After Free Remote Code Execution Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91401

PHP CVE-2016-5767 Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/91395

PHP 'php_html_entities()' Function Integer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/90857

PHP LibGD CVE-2016-3074 Heap Buffer Overflow Vulnerability
2017-01-17
http://www.securityfocus.com/bid/87087

PHP CVE-2016-5093 Information Disclosure Vulnerability
2017-01-17
http://www.securityfocus.com/bid/90946

SANS News

domain_stats.py a web api for SEIM phishing hunts

Threatpost

White House Approves New Rules for Sharing of Raw Intelligence Data

Andrew Macpherson on Intelligence Gathering with Maltego

Exploit

DiskBoss Enterprise - GET Buffer Overflow (Metasploit)

WinaXe Plus 8.7 - Buffer Overflow

BoZoN 2.4 - Remote Code Execution

dirLIST 0.3.0 - Arbitrary File Upload

ManagEnegine ADManager Plus 6.5.40 - Multiple Vulnerabilities

Million Pixels 3 - Authentication Bypass

Image Sharing Script 4.13 - Multiple Vulnerabilities

Tenda ADSL2/2+ Modem D840R - Unauthenticated DNS Change

Pirelli DRG A115 ADSL Router - Unauthenticated DNS Change

Million Pixels 3 - Authentication Bypass

iSelect v1.4 - Local Buffer Overflow

16.1.2017

Bugtraq

[SECURITY] [DSA 3765-1] icoutils security update 2017-01-14
Salvatore Bonaccorso (carnil debian org)

[SECURITY] [DSA 3743-2] python-bottle regression update 2017-01-15
Sebastien Delafond (seb debian org)

[security bulletin] HPSBGN03689 rev.1 - HPE Diagnostics, Remote Cross-Site Scripting and Click Jacking 2017-01-13
security-alert hpe com

[security bulletin] HPSBST03671 rev.2 - HPE StoreEver MSL6480 Tape Library Management Interface, Multiple Remote Vulnerabilities 2017-01-13
security-alert hpe com

[SECURITY] [DSA 3764-1] pdns security update 2017-01-13
Salvatore Bonaccorso (carnil debian org)

[security bulletin] HPSBGN03694 rev.1 - HPE SiteScope, Remote Disclosure of Information 2017-01-12
security-alert hpe com

Malware

Hacktool:Win32/Mimikatz
HackTool:Win32/Mikatz

TrojanDownloader:JS/Nemucod.RH

Trojan.Mestep

Phishing

AOL

16th January 2017

A woman has already marked
your current profile

USAA

15th January 2017

USAA Payment Received

Microsoft

15th January 2017

Confirm your account

Vulnerebility

IBM Kenexa LMS on Cloud CVE-2016-8928 Unspecified SQL-Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95447

LibTIFF CVE-2016-3990 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/86000

LibTIFF CVE-2016-5317 Out Of Bounds Write Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/91208

RETIRED: Symantec Norton Download Manager DLL Loading Remote Code Execution Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94695

IBM Kenexa LMS on Cloud CVE-2016-5942 Unspecified Cross-Site Scripting Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95440

IBM Kenexa LMS on Cloud CVE-2016-5941 Directory Traversal Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95438

WordPress Prior to 4.7.1 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95391

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95397

RETIRED: Matroska libEBML CVE-2015-8790 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/85307

Matroska libEBML CVE-2016-1514 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95124

IBM TS3100/TS3200 Tape Library CVE-2016-9005 Authentication Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95436

LibTIFF CVE-2016-10093 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95215

LibTIFF CVE-2016-9538 Integer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94753

LibTIFF CVE-2016-10092 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95218

LibTIFF CVE-2016-9540 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94747

LibTIFF CVE-2016-10094 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95214

LibTIFF CVE-2016-9535 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94744

LibTIFF CVE-2016-9536 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94745

LibTIFF CVE-2016-9537 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94746

LibTIFF CVE-2016-9534 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94743

RETIRED: LibTIFF Multiple Security Vulnerabilites
2017-01-16
http://www.securityfocus.com/bid/94484

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95429

LibTIFF CVE-2016-9533 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94742

LibTIFF 'tools/tiffcrop.c' Multiple Heap Buffer Overflow Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/94424

LibTIFF 'tif_dirread.c' Incomplete Fix Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94420

LibTIFF 'tif_print.c' Out Of Bounds Read Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94419

LibTIFF CVE-2016-5652 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/93902

LibTIFF 'libtiff/tif_pixarlog.c' Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/91500

LibTIFF CVE-2016-9273 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94271

LibTIFF Out of Bounds Read Multiple Memory Corruption Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/91741
WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95402

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95406

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95407

WordPress Cryptographic Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95401

Mozilla Firefox CVE-2016-9079 Use After Free Remote Code Execution Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94591

Libgraphite Multiple Security Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/82991

Pivotal RabbitMQ Products CVE-2016-9877 Authentication Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95065

HP Diagnostics Cross Site Scripting and Click Jacking Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/95427

Microsoft Identity Model Extensions Token Signing Verification Privilege Escalation Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95425

Multiple Samsung Android Mobile Devices CVE-2017-5350 Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95424

ICU CVE-2016-6293 Out of Bounds Read Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/92127

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-16
http://www.securityfocus.com/bid/93636

Zabbix CVE-2016-10134 SQL Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95423

GNU ed CVE-2017-5357 Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95422

Oracle January 2017 Critical Patch Update Multiple Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/95409

ikiwiki CVE-2017-0356 Authentication Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95420

Aerospike Database Server CVE-2016-9054 Stack Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95421

Aerospike Database Server CVE-2016-9052 Stack Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95419

Lenovo XClarity Administrator CVE-2016-8221 Privilege Escalation Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95417

Multiple Samsung Android Mobile Devices CVE-2017-5351 Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95418

Aerospike Database Server CVE-2016-9050 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95415

Web Client CVE-2017-5151 Unspecified SQL Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95416

LibTIFF CVE-2017-5225 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95413

Splunk Enterprise CVE-2016-10126 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95412

Multiple Carlo Gavazzi Products ICSA-17-012-03 Multiple Security Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/95411

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/84314

OpenSSH CVE-2015-6565 Local Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/76497

OpenSSH CVE-2016-0777 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/80695

OpenSSH CVE-2016-0778 Heap Based Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/80698

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/86187Multiple Samsung Android Mobile Devices CVE-2017-5350 Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95424

ICU CVE-2016-6293 Out of Bounds Read Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/92127

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-16
http://www.securityfocus.com/bid/93636

Zabbix CVE-2016-10134 SQL Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95423

GNU ed CVE-2017-5357 Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95422

Oracle January 2017 Critical Patch Update Multiple Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/95409

ikiwiki CVE-2017-0356 Authentication Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95420

Aerospike Database Server CVE-2016-9054 Stack Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95421

Aerospike Database Server CVE-2016-9052 Stack Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95419

Lenovo XClarity Administrator CVE-2016-8221 Privilege Escalation Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95417

Multiple Samsung Android Mobile Devices CVE-2017-5351 Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95418

Aerospike Database Server CVE-2016-9050 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95415

Web Client CVE-2017-5151 Unspecified SQL Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95416

LibTIFF CVE-2017-5225 Heap Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95413

Splunk Enterprise CVE-2016-10126 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/95412

Multiple Carlo Gavazzi Products ICSA-17-012-03 Multiple Security Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/95411

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-16
http://www.securityfocus.com/bid/84314

OpenSSH CVE-2015-6565 Local Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/76497

OpenSSH CVE-2016-0777 Information Disclosure Vulnerability
2017-01-16
http://www.securityfocus.com/bid/80695

OpenSSH CVE-2016-0778 Heap Based Buffer Overflow Vulnerability
2017-01-16
http://www.securityfocus.com/bid/80698

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/86187

OpenSSH Login Handling Security Bypass Weakness
2017-01-16
http://www.securityfocus.com/bid/75990

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-16
http://www.securityfocus.com/bid/75525

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/76317

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/93544

Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/92452

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-8666 Stack Overflow Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/93562

Linux Kernel CVE-2016-9806 Local Denial of Service Vulnerability
2017-01-16
http://www.securityfocus.com/bid/94653

Linux Kernel 'net/core/sock.c' Multiple Local Memory Corruption Vulnerabilities
2017-01-16
http://www.securityfocus.com/bid/94655

SANS News

Whitelisting File Extensions in Apache

Threatpost

 

Exploit

Windows x64 - CreateRemoteThread() DLL Injection Shellcode (584 bytes)

WinaXe Plus 8.7 - Buffer Overflow

Business Networking Script 8.11 - SQL Injection / Cross-Site Scripting

Huawei Flybox B660 - Cross-Site Request Forgery

15.1.2017

Bugtraq

 

Malware

Backdoor.Akdoor

Phishing

 

Vulnerebility

Multiple Samsung Android Mobile Devices CVE-2017-5350 Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95424

ICU CVE-2016-6293 Out of Bounds Read Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/92127

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-15
http://www.securityfocus.com/bid/93636

Zabbix CVE-2016-10134 SQL Injection Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95423

GNU ed CVE-2017-5357 Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95422

Oracle January 2017 Critical Patch Update Multiple Vulnerabilities
2017-01-15
http://www.securityfocus.com/bid/95409

ikiwiki CVE-2017-0356 Authentication Bypass Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95420

Aerospike Database Server CVE-2016-9054 Stack Buffer Overflow Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95421

Aerospike Database Server CVE-2016-9052 Stack Buffer Overflow Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95419

Lenovo XClarity Administrator CVE-2016-8221 Privilege Escalation Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95417

Multiple Samsung Android Mobile Devices CVE-2017-5351 Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95418

Aerospike Database Server CVE-2016-9050 Information Disclosure Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95415

Web Client CVE-2017-5151 Unspecified SQL Injection Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95416

LibTIFF CVE-2017-5225 Heap Buffer Overflow Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95413

Splunk Enterprise CVE-2016-10126 Information Disclosure Vulnerability
2017-01-15
http://www.securityfocus.com/bid/95412

Multiple Carlo Gavazzi Products ICSA-17-012-03 Multiple Security Vulnerabilities
2017-01-15
http://www.securityfocus.com/bid/95411

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-15
http://www.securityfocus.com/bid/84314

OpenSSH CVE-2015-6565 Local Security Bypass Vulnerability
2017-01-15
http://www.securityfocus.com/bid/76497

OpenSSH CVE-2016-0777 Information Disclosure Vulnerability
2017-01-15
http://www.securityfocus.com/bid/80695

OpenSSH CVE-2016-0778 Heap Based Buffer Overflow Vulnerability
2017-01-15
http://www.securityfocus.com/bid/80698

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-15
http://www.securityfocus.com/bid/86187

OpenSSH Login Handling Security Bypass Weakness
2017-01-15
http://www.securityfocus.com/bid/75990

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-15
http://www.securityfocus.com/bid/75525

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-15
http://www.securityfocus.com/bid/76317

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/93544

Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/92452

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-15
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-8666 Stack Overflow Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/93562

Linux Kernel CVE-2016-9806 Local Denial of Service Vulnerability
2017-01-15
http://www.securityfocus.com/bid/94653

Linux Kernel 'net/core/sock.c' Multiple Local Memory Corruption Vulnerabilities
2017-01-15
http://www.securityfocus.com/bid/94655Multiple Samsung Android Mobile Devices CVE-2017-5350 Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95424

ICU CVE-2016-6293 Out of Bounds Read Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/92127

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-14
http://www.securityfocus.com/bid/93636

Zabbix CVE-2016-10134 SQL Injection Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95423

GNU ed CVE-2017-5357 Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95422

Oracle January 2017 Critical Patch Update Multiple Vulnerabilities
2017-01-14
http://www.securityfocus.com/bid/95409

ikiwiki CVE-2017-0356 Authentication Bypass Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95420

Aerospike Database Server CVE-2016-9054 Stack Buffer Overflow Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95421

Aerospike Database Server CVE-2016-9052 Stack Buffer Overflow Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95419

Lenovo XClarity Administrator CVE-2016-8221 Privilege Escalation Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95417

Multiple Samsung Android Mobile Devices CVE-2017-5351 Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95418

Aerospike Database Server CVE-2016-9050 Information Disclosure Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95415

Web Client CVE-2017-5151 Unspecified SQL Injection Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95416

LibTIFF CVE-2017-5225 Heap Buffer Overflow Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95413

Splunk Enterprise CVE-2016-10126 Information Disclosure Vulnerability
2017-01-14
http://www.securityfocus.com/bid/95412

Multiple Carlo Gavazzi Products ICSA-17-012-03 Multiple Security Vulnerabilities
2017-01-14
http://www.securityfocus.com/bid/95411

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-14
http://www.securityfocus.com/bid/84314

OpenSSH CVE-2015-6565 Local Security Bypass Vulnerability
2017-01-14
http://www.securityfocus.com/bid/76497

OpenSSH CVE-2016-0777 Information Disclosure Vulnerability
2017-01-14
http://www.securityfocus.com/bid/80695

OpenSSH CVE-2016-0778 Heap Based Buffer Overflow Vulnerability
2017-01-14
http://www.securityfocus.com/bid/80698

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-14
http://www.securityfocus.com/bid/86187

OpenSSH Login Handling Security Bypass Weakness
2017-01-14
http://www.securityfocus.com/bid/75990

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-14
http://www.securityfocus.com/bid/75525

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-14
http://www.securityfocus.com/bid/76317

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/93544

Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/92452

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-14
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-8666 Stack Overflow Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/93562

Linux Kernel CVE-2016-9806 Local Denial of Service Vulnerability
2017-01-14
http://www.securityfocus.com/bid/94653

Linux Kernel 'net/core/sock.c' Multiple Local Memory Corruption Vulnerabilities
2017-01-14
http://www.securityfocus.com/bid/94655

SANS News

Backup Files Are Good but Can Be Evil

Threatpost

Google’s Key Transparency Simplifies Public Key Lookups

WhatsApp Says ‘Backdoor’ Claim Bogus

Exploit

Zeroshell 3.6.0/3.7.0 Net Services - Remote Code Execution

Mozilla Firefox < 50.1.0 - Use After Free

Courier Business Website Script - Authentication Bypass

Professional Service Booking Script - SQL Injection

Education Website Script - Authentication Bypass

Inout Celebrities 1.0 Script - Improper Access Restrictions

Inout SocialTiles 2.0 Script - Improper Access Restrictions

Inout CareerLamp 1.0 Script - Improper Access Restrictions

Inout QuerySpace 1.0 Script - Improper Access Restrictions

14.1.2017

Bugtraq

[security bulletin] HPSBGN03694 rev.1 - HPE SiteScope, Remote Disclosure of Information 2017-01-12
security-alert hpe com

ICMPv6 PTBs and IPv6 frag filtering (particularly at BGP peers) 2017-01-12
Fernando Gont (fgont si6networks com)

Malware

 

Phishing

service@intl.paypal.com

13th January 2017

your account need update
immediatly

PayPaI Support

12th January 2017

[ALERT] CONFIRM YOUR PAYPAI
ACCOUNT (CASE ID #AP 26G 082
391)

Vulnerebility

ikiwiki CVE-2017-0356 Authentication Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95420

Aerospike Database Server CVE-2016-9054 Stack Buffer Overflow Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95421

Aerospike Database Server CVE-2016-9052 Stack Buffer Overflow Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95419

Lenovo XClarity Administrator CVE-2016-8221 Privilege Escalation Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95417

Multiple Samsung Android Mobile Devices CVE-2017-5351 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95418

Aerospike Database Server CVE-2016-9050 Information Disclosure Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95415

Web Client CVE-2017-5151 Unspecified SQL Injection Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95416

LibTIFF CVE-2017-5225 Heap Buffer Overflow Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95413

Splunk Enterprise CVE-2016-10126 Information Disclosure Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95412

Multiple Carlo Gavazzi Products ICSA-17-012-03 Multiple Security Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/95411

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-13
http://www.securityfocus.com/bid/84314

OpenSSH CVE-2015-6565 Local Security Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/76497

OpenSSH CVE-2016-0777 Information Disclosure Vulnerability
2017-01-13
http://www.securityfocus.com/bid/80695

OpenSSH CVE-2016-0778 Heap Based Buffer Overflow Vulnerability
2017-01-13
http://www.securityfocus.com/bid/80698

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/86187

OpenSSH Login Handling Security Bypass Weakness
2017-01-13
http://www.securityfocus.com/bid/75990

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/75525

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/76317

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93636

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93544

Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/92452

Linux Kernel 'sound/core/pcm_lib.c' Local Use After Free Memory Corruption Vulnerability
2017-01-13
http://www.securityfocus.com/bid/94654

Linux Kernel CVE-2016-8666 Stack Overflow Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93562

Linux Kernel CVE-2016-9806 Local Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/94653

Linux Kernel 'net/core/sock.c' Multiple Local Memory Corruption Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/94655

Linux Kernel CVE-2016-8655 Local Race Condition Vulnerability
2017-01-13
http://www.securityfocus.com/bid/94692

Advantech WebAccess 'updateTemplate.aspx' SQL Injection and Authentication Bypass Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/95410

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5582 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93623

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93643Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5582 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93623

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93643

Oracle Java SE CVE-2016-5554 Remote Security Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93637

ISC BIND CVE-2016-9131 Remote Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95386

Linux Kernel 'tcp_xmit_retransmit_queue()' Function Use After Free Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/92452

Linux Kernel CVE-2016-7117 Use-After-Free Remote Code Execution Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93304

Linux Kernel Multiple Local Memory Corruption Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/91451

Docker CVE-2016-9962 Local Privilege Escalation Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95361

ISC BIND CVE-2016-9444 Remote Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95393

ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95390

libxml2 CVE-2016-1762 Multiple Memory Corruption Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/85059

Linux Kernel Multiple Remote Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/75510

Multiple Juniper Products Ethernet Packet CVE-2017-2304 Information Disclosure Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95403

Juniper Junos CVE-2017-2303 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95408

Oracle MySQL CVE-2016-6662 Remote Code Execution Vulnerability
2017-01-13
http://www.securityfocus.com/bid/92912

Libxml2 'xmlParseName' CVE-2016-4447 Remote Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/90864

Linux Kernel CVE-2015-8104 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/77524

Linux Kernel CVE-2016-5195 Local Privilege Escalation Vulnerability
2017-01-13
http://www.securityfocus.com/bid/93793

libxml2 CVE-2016-3705 Stack Buffer Overflow Vulnerability
2017-01-13
http://www.securityfocus.com/bid/89854

Linux Kernel CVE-2015-5307 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/77528

OpenSSH CVE-2016-1907 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/81293

Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/91816

Apple Mac OS X APPLE-SA-2016-05-16-4 Multiple Security Vulnerabilities
2017-01-13
http://www.securityfocus.com/bid/90696

Libxml2 'malloc.c' CVE-2016-3627 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/84992

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/86187

Libxml2 'xmlLoadEntityContent()' Function CVE-2016-4449 Security Bypass Vulnerability
2017-01-13
http://www.securityfocus.com/bid/90865

Libxml2 CVE-2016-4448 Remote Format String Vulnerability
2017-01-13
http://www.securityfocus.com/bid/90856

OpenSSH CVE-2016-6515 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/92212

Multiple F5 BIG-IP Products CVE-2016-9247 Denial of Service Vulnerability
2017-01-13
http://www.securityfocus.com/bid/95405

SANS News

Who's Attacking Me?

Threatpost

WordPress 4.7.1 Fixes CSRF, XSS, PHPMailer Vulnerabilities

ShadowBrokers Bid Farewell, Close Door

Marie Moe on Medical Device Security

Exploit

ECommerce-Multi-Vendor Software - Arbitrary File Upload

ECommerce-TIBSECART - Arbitrary File Upload

ECommerce-TIBSECART - Arbitrary File Upload

Cisco Firepower Management Console 6.0 - Post Authentication UserAdd

13.1.2017

Bugtraq

ICMPv6 PTBs and IPv6 frag filtering (particularly at BGP peers) 2017-01-12
Fernando Gont (fgont si6networks com)

[SECURITY] [DSA 3760-1] ikiwiki security update 2017-01-12
Moritz Muehlenhoff (jmm debian org)

CVE-2017-5350: Unexpected SystemUI FC driven by arbitrary application 2017-01-12
unlimitsec gmail com

[slackware-security] bind (SSA:2017-011-01) 2017-01-12
Slackware Security Team (security slackware com)

[slackware-security] gnutls (SSA:2017-011-02) 2017-01-12
Slackware Security Team (security slackware com)

CA20170109-01: Security Notice for CA Service Desk Manager 2017-01-12
Kotas, Kevin J (Kevin Kotas ca com)

[SECURITY] [DSA 3758-1] bind9 security update 2017-01-11
Florian Weimer (fw deneb enyo de)

Multiple Vulnerabilities in cPanel 2017-01-11
Open Security (open opensecurity ca)

IKEv1 cipher suite configuration mismatch in Siemens SIMATIC CP 343-1 Advanced 2017-01-11
Andrea Barisani (andrea inversepath com)

[SECURITY] [DSA 3757-1] icedove security update 2017-01-11
Moritz Muehlenhoff (jmm debian org)

Malware

W32.Kribz

Phishing

YAHOO !!!

12th January 2017

Unexpected security alert!

AOL

11th January 2017

Someone has already tagged
your account

AOL

11th January 2017

An individual has marked your
very own account

Vulnerebility

    Oracle MySQL CVE-2016-6662 Remote Code Execution Vulnerability
2017-01-12
http://www.securityfocus.com/bid/92912

Libxml2 'xmlParseName' CVE-2016-4447 Remote Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/90864

Linux Kernel CVE-2015-8104 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/77524

Linux Kernel CVE-2016-5195 Local Privilege Escalation Vulnerability
2017-01-12
http://www.securityfocus.com/bid/93793

libxml2 CVE-2016-3705 Stack Buffer Overflow Vulnerability
2017-01-12
http://www.securityfocus.com/bid/89854

Linux Kernel CVE-2015-5307 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/77528

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-12
http://www.securityfocus.com/bid/93628

OpenSSH CVE-2016-1907 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/81293

Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/91816

Apple Mac OS X APPLE-SA-2016-05-16-4 Multiple Security Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/90696

Libxml2 'malloc.c' CVE-2016-3627 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/84992

OpenSSH 'session.c' Local Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/86187

Libxml2 'xmlLoadEntityContent()' Function CVE-2016-4449 Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/90865

Libxml2 CVE-2016-4448 Remote Format String Vulnerability
2017-01-12
http://www.securityfocus.com/bid/90856

OpenSSH CVE-2016-6515 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/92212

Multiple F5 BIG-IP Products CVE-2016-9247 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95405

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95407

Microsoft Windows LSASS CVE-2017-0004 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95318

WordPress Cryptographic Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95401

Juniper Junos CVE-2017-2300 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95400

WordPress Prior to 4.7.1 Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95406

LXC CVE-2016-10124 Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95404

WordPress Prior to 4.7.1 Cross Site Request Forgery Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95399

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95402

Genexis DRGOS CVE-2015-3441 Multiple Remote Command Execution Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95398

Juniper Junos CVE-2017-2301 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95396

WordPress Prior to 4.7.1 Cross Site Scripting Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95397

cPanel Multiple Security Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95395

Juniper Junos CVE-2017-2302 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95394

Huawei M8 Products CVE-2016-8758 Local Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95384

Drupal OpenLucius Module Cross Site Scripting and Cross Site Request Forgery Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95392

WordPress Prior to 4.7.1 Information Disclosure Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95391

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-7255 Local Privilege Escalation Vulnerability
2017-01-12
http://www.securityfocus.com/bid/94064

ISC BIND CVE-2016-9778 Remote Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95388

ISC BIND CVE-2016-9147 Remote Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95390

PHPMailer CVE-2016-10033 Remote Code Execution Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95108

PHPMailer CVE-2016-10045 Incomplete Fix Remote Code Execution Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95130

Drupal Autocomplete Deluxe Module Cross Site Scripting Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95387

ISC BIND CVE-2016-9131 Remote Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95386

Libimobiledevice Libplist CVE-2017-5209 Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95385

Multiple Huawei Products CVE-2017-2690 Local Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95382

Zimbra CVE-2016-3403 Multiple Cross Site Request Forgery Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95383

SAP Single Sign On Denial of Service Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95363

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95357

libgit2 'smart_pkt.c' Buffer Overflow Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95338

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95354

libgit2 'src/transports/http.c' Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95359

libgit2 Multiple NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95339

icoutils CVE-2017-5331 Incomplete Fix Local Integer Overflow Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95378

Cybozu Remote Service Manager CVE-2016-7815 Certificate Validation Security Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95379

icoutils CVE-2017-5332 Local Code Execution Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95380

Adobe Flash Player APSB17-02 Memory Corruption Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95350

Adobe Flash Player APSB17-02 Multiple Heap Buffer Overflow Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95347

Adobe Flash Player APSB17-02 Unspecified Use After Free Remote Code Execution Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95342

GnuTLS CVE-2017-5336 Stack Buffer Overflow Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95377

GnuTLS CVE-2017-5335 Multiple Buffer Overflow Vulnerabilities
2017-01-12
http://www.securityfocus.com/bid/95374

OpenSSL CVE-2016-7056 Local Information Disclosure Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95375

python-pysaml2 CVE-2016-10127 XML External Entity Injection Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95376

SAP NetWeaver XML External Entity Information Disclosure Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95373

SAP ERP Defence Forces and Public Security Remote Authorization Bypass Vulnerability
2017-01-12
http://www.securityfocus.com/bid/95367

SANS News

System Resource Utilization Monitor

Some tools updates

Threatpost

Spammers Revive Hancitor Downloader Campaigns

Second Try at Windows LSASS Patch Addresses Vulnerability

ShadowBrokers Selling Windows Exploits, Attack Tools

Cloudflare Shares National Security Letter It Received in 2013

Exploit

Ansible 2.1.4 / 2.2.1 - Command Execution

Online Food Delivery 2.04 - Authentication Bypass

Job Portal Script 9.11 - Authentication Bypass

Movie Portal Script 7.35 - SQL Injection

Travel Portal Script 9.33 - SQL Injection

Huawei Flybox B660 - Cross-Site Request Forgery

Blackboard LMS 9.1 SP14 - Cross-Site Scripting

My Link Trader 1.1 - 'id' Parameter SQL Injection

Firejail - Privilege Escalation

Cemu 1.6.4b - Information Leak + Buffer Overflow (Emulator Breakout)

Microsoft Windows 8.1 (x64) - RGNOBJ Integer Overflow (MS16-098)

Microsoft Windows Kernel - 'win32k.sys' 'NtSetWindowLongPtr' Privilege Escalation...

SapLPD 7.40 - Denial of Service

VideoLAN VLC Media Player 2.2.1 - 'DecodeAdpcmImaQT' Buffer Overflow

Boxoft Wav 1.0 - Buffer Overflow

12.1.2017

Bugtraq

[SECURITY] [DSA 3757-1] icedove security update 2017-01-11
Moritz Muehlenhoff (jmm debian org)

Re: [oss-security] Docker 1.12.6 - Security Advisory 2017-01-11
Andreas Stieger (astieger suse com)

Cobi Tools v1.0.8 iOS - Persistent Web Vulnerability 2017-01-11
Vulnerability Lab (research vulnerability-lab com)

Bit Defender #39 - Auth Token Bypass Vulnerability 2017-01-11
Vulnerability Lab (research vulnerability-lab com)

BlackBoard LMS 9.1 SP14 - (Title) Persistent Vulnerability 2017-01-11
Vulnerability Lab (research vulnerability-lab com)

Blackboard LMS 9.1 SP14 - (Profile) Persistent Vulnerability 2017-01-11
Vulnerability Lab (research vulnerability-lab com)

FreeBSD Security Advisory FreeBSD-SA-17:01.openssh 2017-01-11
FreeBSD Security Advisories (security-advisories freebsd org)

ESA-2016-096: EMC Celerra, VNX1, VNX2 and VNXe SMB NTLM Authentication Weak Nonce Vulnerability 2017-01-10
EMC Product Security Response Center (Security_Alert emc com)

Directadmin ControlPanel 1.50.1 denial of service Vulnerability 2017-01-10
iedb team gmail com

Malware

Ransom.Spora

Phishing

Amazon.co.uk

11th January 2017

Your Amazon security is still
not active.

Support

10th January 2017

[PAYPAL]: YOU'VE GOT NEW (1)
LETTER !

Vulnerebility

SAP NetWeaver XML External Entity Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95373

SAP ERP Defence Forces and Public Security Remote Authorization Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95367

HP Helion Eucalyptus CVE-2016-8520 Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95369

GnuTLS CVE-2017-5334 Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95370

Microsoft Office CVE-2017-0003 Memory Corruption Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95287

PHP CVE-2017-5340 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95371

GnuTLS 'lib/opencdk/read-packet.c' Multiple Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95372

SAP ERP Defence Forces and Public Security Remote Authorization Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95365

Computer Associates Service Desk Manager CVE-2016-10086 Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95366

Flexera Software FlexNet Publisher CVE-2015-8277 Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/83334

SAP NetWeaver Application Server Java Portal App Component Cross Site Scripting Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95368

Apache HttpComponents Incomplete Fix CVE-2014-3577 SSL Validation Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/69258

Ghostscript CVE-2016-7978 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95336

SAP NetWeaver AS JAVA 'getUserUddiElements' SQL Injection Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95364

Huawei AnyOffice Remote Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/93010

Ghostscript CVE-2016-7976 Remote Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95332

SAP Single Sign On Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95363

SAP ERP Defence Forces and Public Security Remote Authorization Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95362

Ghostscript CVE-2016-7977 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95334

Ghostscript CVE-2016-7979 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95337

Docker CVE-2016-9962 Local Privilege Escalation Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95361

ThreatpostMetrix SDK for iOS CVE-2017-3182 SSL Certificate Validation Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95360

Foxit Reader for Linux Unspecified Stack Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95358

Foxit Reader and PhantomPDF Multiple Security Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95353

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95356

OSIsoft PI Coresight and PI Web API CVE-2017-5153 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95355

libgit2 'src/transports/http.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95359

libgit2 Multiple NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95339

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95357

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95354Flexera Software FlexNet Publisher CVE-2015-8277 Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/83334

Apache HttpComponents Incomplete Fix CVE-2014-3577 SSL Validation Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/69258

Ghostscript CVE-2016-7978 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95336

SAP NetWeaver AS JAVA 'getUserUddiElements' SQL Injection Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95364

Huawei AnyOffice Remote Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/93010

Ghostscript CVE-2016-7976 Remote Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95332

SAP Single Sign On Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95363

SAP ERP Defence Forces and Public Security Remote Authorization Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95362

Ghostscript CVE-2016-7977 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95334

Ghostscript CVE-2016-7979 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95337

Docker CVE-2016-9962 Local Privilege Escalation Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95361

ThreatpostMetrix SDK for iOS CVE-2017-3182 SSL Certificate Validation Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95360

Foxit Reader for Linux Unspecified Stack Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95358

Foxit Reader and PhantomPDF Multiple Security Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95353

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95356

OSIsoft PI Coresight and PI Web API CVE-2017-5153 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95355

libgit2 'src/transports/http.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95359

libgit2 Multiple NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95339

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95357

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95354

Microsoft Edge CVE-2017-0002 Remote Privilege Escalation Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95284

Microsoft Windows LSASS CVE-2017-0004 Local Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95318

Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95352

KDE Ark CVE-2017-5330 Arbitrary Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95349

Shutter CVE-2016-10081 Arbitrary Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95351

Adobe Flash Player APSB17-02 Memory Corruption Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95350

libgit2 'smart_pkt.c' Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95338

Adobe Acrobat and Reader APSB17-01 Multiple Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95346

Adobe Flash Player APSB17-02 Multiple Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95347

Adobe Acrobat and Reader Multiple Unspecified Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95344
Huawei AnyOffice Remote Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/93010

Ghostscript CVE-2016-7976 Remote Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95332

SAP Single Sign On Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95363

SAP ERP Defence Forces and Public Security Remote Authorization Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95362

Ghostscript CVE-2016-7977 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95334

Ghostscript CVE-2016-7979 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95337

Docker CVE-2016-9962 Local Privilege Escalation Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95361

ThreatpostMetrix SDK for iOS CVE-2017-3182 SSL Certificate Validation Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95360

Foxit Reader for Linux Unspecified Stack Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95358

Foxit Reader and PhantomPDF Multiple Security Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95353

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95356

OSIsoft PI Coresight and PI Web API CVE-2017-5153 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95355

libgit2 'src/transports/http.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95359

libgit2 Multiple NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95339

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95357

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95354

Microsoft Edge CVE-2017-0002 Remote Privilege Escalation Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95284

Microsoft Windows LSASS CVE-2017-0004 Local Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95318

Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95352

KDE Ark CVE-2017-5330 Arbitrary Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95349

Shutter CVE-2016-10081 Arbitrary Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95351

Adobe Flash Player APSB17-02 Memory Corruption Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95350

libgit2 'smart_pkt.c' Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95338

Adobe Acrobat and Reader APSB17-01 Multiple Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95346

Adobe Flash Player APSB17-02 Multiple Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95347

Adobe Acrobat and Reader Multiple Unspecified Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95344

Adobe Acrobat and Reader CVE-2017-2947 Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95348

Adobe Acrobat and Reader APSB17-01 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95345

Adobe Acrobat and Reader APSB17-01 Use-After-Free Multiple Remote Code Execution Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95343

Adobe Flash Player APSB17-02 Unspecified Use After Free Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95342Foxit Reader for Linux Unspecified Stack Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95358

Foxit Reader and PhantomPDF Multiple Security Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95353

Foxit PDF Toolkit Memory Corruption Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95356

OSIsoft PI Coresight and PI Web API CVE-2017-5153 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95355

libgit2 'src/transports/http.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95359

libgit2 Multiple NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95339

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95357

libgit2 'badssl.c' Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95354

Microsoft Edge CVE-2017-0002 Remote Privilege Escalation Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95284

Microsoft Windows LSASS CVE-2017-0004 Local Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95318

Ansible CVE-2016-9587 Arbitrary Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95352

KDE Ark CVE-2017-5330 Arbitrary Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95349

Shutter CVE-2016-10081 Arbitrary Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95351

Adobe Flash Player APSB17-02 Memory Corruption Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95350

libgit2 'smart_pkt.c' Buffer Overflow Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95338

Adobe Acrobat and Reader APSB17-01 Multiple Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95346

Adobe Flash Player APSB17-02 Multiple Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95347

Adobe Acrobat and Reader Multiple Unspecified Heap Buffer Overflow Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95344

Adobe Acrobat and Reader CVE-2017-2947 Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95348

Adobe Acrobat and Reader APSB17-01 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95345

Adobe Acrobat and Reader APSB17-01 Use-After-Free Multiple Remote Code Execution Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/95343

Adobe Flash Player APSB17-02 Unspecified Use After Free Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95342

Adobe Acrobat and Reader CVE-2017-2962 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95340

Adobe Flash Player CVE-2017-2938 Unspecified Security Bypass Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95341

RETIRED: Ghostscript Multiple Security Vulnerabilities
2017-01-11
http://www.securityfocus.com/bid/93447

Ghostscript CVE-2016-7979 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95337

Ghostscript CVE-2016-7978 Remote Code Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95336

Ghostscript CVE-2016-7977 Information Disclosure Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95334

Ghostscript CVE-2016-7976 Remote Command Execution Vulnerability
2017-01-11
http://www.securityfocus.com/bid/95332

OpenSSL CVE-2016-6304 Denial of Service Vulnerability
2017-01-11
http://www.securityfocus.com/bid/93150

SANS News

Hancitor/Pony/Vawtrak malspam

Threatpost

Lawmakers Reintroduce Popular Email Privacy Act

Adobe Patches Code Execution Flaws in Flash, Reader, Acrobat

Netflix Phishing Campaign Targeted User Information, Credit Card Data

Microsoft Issues Record Low Number of Patch Tuesday Bulletins

Exploit

Microsoft Windows Kernel - 'win32k.sys' 'NtSetWindowLongPtr' Privilege Escalation...

Boxoft Wav 1.0 - Buffer Overflow

Huawei Flybox B660 - Cross-Site Request Forgery

Blackboard LMS 9.1 SP14 - Cross-Site Scripting

Adobe Flash Player 24.0.0.186 - 'ActionGetURL2' Out-of-Bounds Memory Corruption

11.1.2017

Bugtraq

Directadmin ControlPanel 1.50.1 Cross-Site-Scripting Vulnerability 2017-01-10
iedb team gmail com

QuickBooks 2017 Admin Credentials Disclosure 2017-01-06
info thegrideon com

Malware

TrojanDownloader:Win32/Trulop.A 
TrojanSpy:Win32/Bancos.AMZ 
Ransom:Win32/Firecrypt.A 

Ransom.Evil

JS.Downloader.E

Phishing

AOL

9th January 2017

Somebody has already tagged
your current profile

AOL

9th January 2017

A girl has marked your current
profile page

AOL

9th January 2017

A woman has recently tagged
your current profile

PayPal

9th January 2017

YOUR PAYPAL ACCOUNT IS
TEMPORARILY LIMITED

Capital One capitalone@notific

9th January 2017

Action Required: Your online
access has been locked

Vulnerebility

Adobe Acrobat and Reader Multiple Unspecified Heap Buffer Overflow Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/95344

Adobe Acrobat and Reader CVE-2017-2947 Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95348

Adobe Acrobat and Reader APSB17-01 Multiple Unspecified Memory Corruption Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/95345

Adobe Acrobat and Reader APSB17-01 Use-After-Free Multiple Remote Code Execution Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/95343

Adobe Flash Player APSB17-02 Unspecified Use After Free Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95342

Adobe Acrobat and Reader CVE-2017-2962 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95340

Adobe Flash Player CVE-2017-2938 Unspecified Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95341

RETIRED: Ghostscript Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/93447

Ghostscript CVE-2016-7979 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95337

Ghostscript CVE-2016-7978 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95336

Ghostscript CVE-2016-7977 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95334

Ghostscript CVE-2016-7976 Remote Command Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95332

OpenSSL CVE-2016-6304 Denial of Service Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93150

Multiple Intel Ethernet Controller CVE-2016-8106 Denial of Service Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95333

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91319

Node.js CVE-2016-7099 Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93191

Node.js CVE-2016-5325 CRLF Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93483

PHPMailer CVE-2017-5223 Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95328

DLink DGS-1100 Switch CVE-2016-10125 Local Hardcoded SSL Certificate Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95329

Apache Hadoop CVE-2016-3086 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95335

Merlin@home CVE-2017-5149 Man in the Middle Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95331

IBM Security Identity Manager Virtual Appliance Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95327

Libgraphite Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/82991

IBM Security Identity Manager CVE-2016-9739 Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95326

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/91075

IBM Security Identity Manager Virtual Appliance Cross Site Scripting Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95323

IBM InfoSphere Information Server CVE-2016-8999 Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95325

Multiple IBM Products CVE-2016-9000 Clickjacking Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95324

Apache Standard Taglibs CVE-2015-0254 XML External Entity Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/72809

IBM Security Network Protection and Mobile Connect Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/80883
Node.js CVE-2016-7099 Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93191

Node.js CVE-2016-5325 CRLF Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93483

PHPMailer CVE-2017-5223 Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95328

DLink DGS-1100 Switch CVE-2016-10125 Local Hardcoded SSL Certificate Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95329

Apache Hadoop CVE-2016-3086 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95335

Merlin@home CVE-2017-5149 Man in the Middle Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95331

IBM Security Identity Manager Virtual Appliance Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95327

Libgraphite Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/82991

IBM Security Identity Manager CVE-2016-9739 Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95326

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/91075

IBM Security Identity Manager Virtual Appliance Cross Site Scripting Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95323

IBM InfoSphere Information Server CVE-2016-8999 Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95325

Multiple IBM Products CVE-2016-9000 Clickjacking Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95324

Apache Standard Taglibs CVE-2015-0254 XML External Entity Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/72809

IBM Security Network Protection and Mobile Connect Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/80883

IBM MQ Appliance CVE-2015-7420 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/82301

IBM WebSphere Application Server Liberty Profile CVE-2016-2923 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91518

IBM MQ Appliance CVE-2015-7421 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/82303

IBM WebSphere Application Server CVE-2016-5983 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93162

Multiple EMC Products CVE-2016-0917 Authentication Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93023

Multiple F5 BIG-IP Products CVE-2016-7469 HTML Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95320

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91453

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91956

Matroska libEBML CVE-2016-1514 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95124

IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability
2017-01-10
http://www.securityfocus.com/bid/92986

Multiple Samsung Android Mobile Phones CVE-2017-5217 Denial of Service Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95319

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/84314

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93013
IBM Security Identity Manager Virtual Appliance Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95327

Libgraphite Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/82991

IBM Security Identity Manager CVE-2016-9739 Local Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95326

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/91075

IBM Security Identity Manager Virtual Appliance Cross Site Scripting Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95323

IBM InfoSphere Information Server CVE-2016-8999 Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95325

Multiple IBM Products CVE-2016-9000 Clickjacking Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95324

Apache Standard Taglibs CVE-2015-0254 XML External Entity Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/72809

IBM Security Network Protection and Mobile Connect Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/80883

IBM MQ Appliance CVE-2015-7420 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/82301

IBM WebSphere Application Server Liberty Profile CVE-2016-2923 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91518

IBM MQ Appliance CVE-2015-7421 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/82303

IBM WebSphere Application Server CVE-2016-5983 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93162

Multiple EMC Products CVE-2016-0917 Authentication Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93023

Multiple F5 BIG-IP Products CVE-2016-7469 HTML Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95320

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91453

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91956

Matroska libEBML CVE-2016-1514 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95124

IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability
2017-01-10
http://www.securityfocus.com/bid/92986

Multiple Samsung Android Mobile Phones CVE-2017-5217 Denial of Service Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95319

OpenSSH CVE-2016-3115 Remote Command Injection Vulnerability
2017-01-10
http://www.securityfocus.com/bid/84314

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93013

IBM WebSphere MQ CVE-2016-0360 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95317

Netop Remote Control CVE-2017-5216 Stack Buffer Overflow Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95316

icoutils CVE-2017-5208 Local Integer Overflow Vulnerability
2017-01-10
http://www.securityfocus.com/bid/95315

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-10
http://www.securityfocus.com/bid/75525

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93643

Oracle Java SE CVE-2016-5556 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93618
Oracle Java SE CVE-2016-5554 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93637

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5568 Use-After-Free Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/93621

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91956

Oracle Java SE CVE-2016-3458 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91945

Oracle Java SE CVE-2016-3550 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91951

Oracle Java SE and JRockit CVE-2016-3508 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91972

Oracle Java SE CVE-2016-3511 Local Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91990

Oracle Java SE CVE-2016-3606 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91912

Oracle Java SE CVE-2016-3587 Remote Code Execution Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91904

Oracle Fusion Middleware CVE-2016-3596 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91942

Oracle Fusion Middleware CVE-2016-3594 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91939

Oracle Fusion Middleware CVE-2016-3590 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91935

Oracle Fusion Middleware CVE-2016-3595 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91940

Oracle Fusion Middleware CVE-2016-3593 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91908

Oracle Fusion Middleware CVE-2016-3578 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91925

Oracle Fusion Middleware CVE-2016-3592 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91937

Oracle Fusion Middleware CVE-2016-3583 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91934

Oracle Fusion Middleware CVE-2016-3591 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91936

Oracle Fusion Middleware CVE-2016-3577 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91924

Oracle Fusion Middleware CVE-2016-3579 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91927

Oracle Fusion Middleware CVE-2016-3582 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91933

Oracle Fusion Middleware CVE-2016-3581 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91931

Oracle Fusion Middleware CVE-2016-3580 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91929

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/93049

Oracle Fusion Middleware CVE-2016-3575 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91921

Oracle Fusion Middleware CVE-2016-3574 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91914

Oracle Fusion Middleware CVE-2016-3576 Remote Security Vulnerability
2017-01-10
http://www.securityfocus.com/bid/91923

Libgraphite Multiple Security Vulnerabilities
2017-01-10
http://www.securityfocus.com/bid/82991

SANS News

January 2017 Microsoft Patch Tuesday

Adobe January 2017 Patches

Port 37777 "MapTable" Requests

Realtors Be Aware: You Are a Target

Threatpost

Following Extortion Attempt, Gaming Network ESEA Breached, 1.5M Profiles Leaked

Hello Kitty Database of 3.3 Million Breached Credentials Surfaces

St. Jude Medical Patches Vulnerable Cardiac Devices

MongoDB Attacks Jump From Hundreds to 28,000 In Just Days

Exploit

FMyLife Clone Script (Pro Edition) 1.1 - Cross-Site Request Forgery (Add Admin)

WordPress Plugin WP Support Plus Responsive Ticket System 7.1.3 - Privilege...

Freepbx < 2.11.1.5 - Remote Code Execution  

My Php Dating 2.0 - 'id' Parameter SQL Injection

My Php Dating 2.0 - 'path' Parameter SQL Injection

My Link Trader 1.1 - Authentication Bypass

DiskBoss Enterprise 7.5.12 - 'POST' Buffer Overflow (SEH)

Friends in War Make or Break 1.7 - 'imgid' Parameter SQL Injection

10.1.2017

Bugtraq

QuickBooks 2017 Admin Credentials Disclosure 2017-01-06
info thegrideon com

Malware

Ransom.FireCrypt

Phishing

service@intl.paypal.com

8th January 2017

your account has been limited
until we hear from you

NatWest

8th January 2017

Your account has been
suspended

Notice

8th January 2017

Important !

Bank of America Alert

8th January 2017

Security Alert: Suspicious
Activity

Vulnerebility

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-09
http://www.securityfocus.com/bid/75525

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93643

Oracle Java SE CVE-2016-5556 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93618

Oracle MySQL CVE-2016-6663 Unspecified Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/92911

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93636

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93013

IBM WebSphere Application Server Liberty CVE-2016-0378 Information Disclosure Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93143

IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability
2017-01-09
http://www.securityfocus.com/bid/92986

IBM WebSphere Application Server Liberty Profile CVE-2016-3042 Cross Site Scripting Vulnerability
2017-01-09
http://www.securityfocus.com/bid/92985

OpenSSH CVE-2016-1908 Security Bypass Vulnerability
2017-01-09
http://www.securityfocus.com/bid/84427

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-09
http://www.securityfocus.com/bid/76317

Nginx CVE-2016-1000105 Security Bypass Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91819

PHP CVE-2016-5385 Security Bypass Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91821

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-09
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91319

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-09
http://www.securityfocus.com/bid/92630

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91453

Oracle Java SE CVE-2016-3598 Remote Code Execution Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91918

Oracle Java SE CVE-2016-3610 Remote Code Execution Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91930

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2016-5582 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93623

Oracle Java SE CVE-2016-5554 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93637

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5568 Use-After-Free Remote Code Execution Vulnerability
2017-01-09
http://www.securityfocus.com/bid/93621

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91956

Oracle Java SE CVE-2016-3458 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91945

Oracle Java SE CVE-2016-3550 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91951

Oracle Java SE and JRockit CVE-2016-3508 Remote Security Vulnerability
2017-01-09
http://www.securityfocus.com/bid/91972

SANS News

Merry X-Mas ransomware from Sunday 2017-01-08

Threatpost

 

Exploit

DirectAdmin 1.50.1 - Denial of Service

Advanced Desktop Locker 6.0.0 - Lock Screen Bypass

Brave Browser 1.2.16/1.9.56 - Address Bar URL Spoofing

My Link Trader 1.1 - Authentication Bypass

Splunk 6.1.1 - 'Referer' Header Cross-Site Scripting

9.1.2017

Bugtraq

QuickBooks 2017 Admin Credentials Disclosure 2017-01-06
info thegrideon com

[SECURITY] [DSA 3753-1] libvncserver security update 2017-01-05
Sebastien Delafond (seb debian org)

Malware

 

Phishing

 

Vulnerebility

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-08
http://www.securityfocus.com/bid/75525

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93643

Oracle Java SE CVE-2016-5556 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93618

Oracle MySQL CVE-2016-6663 Unspecified Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/92911

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93636

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93013

IBM WebSphere Application Server Liberty CVE-2016-0378 Information Disclosure Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93143

IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability
2017-01-08
http://www.securityfocus.com/bid/92986

IBM WebSphere Application Server Liberty Profile CVE-2016-3042 Cross Site Scripting Vulnerability
2017-01-08
http://www.securityfocus.com/bid/92985

OpenSSH CVE-2016-1908 Security Bypass Vulnerability
2017-01-08
http://www.securityfocus.com/bid/84427

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-08
http://www.securityfocus.com/bid/76317

Nginx CVE-2016-1000105 Security Bypass Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91819

PHP CVE-2016-5385 Security Bypass Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91821

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-08
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91319

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-08
http://www.securityfocus.com/bid/92630

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91453

Oracle Java SE CVE-2016-3598 Remote Code Execution Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91918

Oracle Java SE CVE-2016-3610 Remote Code Execution Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91930

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2016-5582 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93623

Oracle Java SE CVE-2016-5554 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93637

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5568 Use-After-Free Remote Code Execution Vulnerability
2017-01-08
http://www.securityfocus.com/bid/93621

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91956

Oracle Java SE CVE-2016-3458 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91945

Oracle Java SE CVE-2016-3550 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91951

Oracle Java SE and JRockit CVE-2016-3508 Remote Security Vulnerability
2017-01-08
http://www.securityfocus.com/bid/91972

SANS News

 

Threatpost

 

Exploit

 

8.1.2017

Bugtraq

QuickBooks 2017 Admin Credentials Disclosure 2017-01-06
info thegrideon com

[SECURITY] [DSA 3753-1] libvncserver security update 2017-01-05
Sebastien Delafond (seb debian org)

Malware

 

Phishing

Amazon

7th January 2017

Amazon.com Account Notice!!!

iCloud Support

7th January 2017

[ICLOUD] : YOUR ACCOUNT WILL
BE CLOSED AFTER 48 HOURS ✔

service@paypal.com

7th January 2017

your account has been limited
until we hear from you

Vulnerebility

OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/75525

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93643

Oracle Java SE CVE-2016-5556 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93618

Oracle MySQL CVE-2016-6663 Unspecified Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92911

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93636

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93013

IBM WebSphere Application Server Liberty CVE-2016-0378 Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93143

IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92986

IBM WebSphere Application Server Liberty Profile CVE-2016-3042 Cross Site Scripting Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92985

OpenSSH CVE-2016-1908 Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/84427

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-07
http://www.securityfocus.com/bid/76317

Nginx CVE-2016-1000105 Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91819

PHP CVE-2016-5385 Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91821

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91319

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92630

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91453

Oracle Java SE CVE-2016-3598 Remote Code Execution Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91918

Oracle Java SE CVE-2016-3610 Remote Code Execution Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91930

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2016-5582 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93623

Oracle Java SE CVE-2016-5554 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93637

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5568 Use-After-Free Remote Code Execution Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93621

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91956

Oracle Java SE CVE-2016-3458 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91945

Oracle Java SE CVE-2016-3550 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91951

Oracle Java SE and JRockit CVE-2016-3508 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91972OpenSSH 'x11_open_helper()' Function Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/75525

Oracle Java SE CVE-2016-5542 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93643

Oracle Java SE CVE-2016-5556 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93618

Oracle MySQL CVE-2016-6663 Unspecified Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92911

Oracle Java SE CVE-2016-5597 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93636

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93013

IBM WebSphere Application Server Liberty CVE-2016-0378 Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93143

IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92986

IBM WebSphere Application Server Liberty Profile CVE-2016-3042 Cross Site Scripting Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92985

OpenSSH CVE-2016-1908 Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/84427

OpenSSH PAM Support Multiple Remote Code Execution Vulnerabilities
2017-01-07
http://www.securityfocus.com/bid/76317

Nginx CVE-2016-1000105 Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91819

PHP CVE-2016-5385 Security Bypass Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91821

OpenSSL CVE-2016-2178 Side Channel Attack Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91081

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91319

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92630

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91453

Oracle Java SE CVE-2016-3598 Remote Code Execution Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91918

Oracle Java SE CVE-2016-3610 Remote Code Execution Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91930

Oracle Java SE CVE-2016-3503 Local Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91996

Oracle Java SE CVE-2016-5582 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93623

Oracle Java SE CVE-2016-5554 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93637

Oracle Java SE CVE-2016-3552 Local Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/92000

Oracle Java SE CVE-2016-5573 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93628

Oracle Java SE CVE-2016-5568 Use-After-Free Remote Code Execution Vulnerability
2017-01-07
http://www.securityfocus.com/bid/93621

Oracle Java SE CVE-2016-3498 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91956

Oracle Java SE CVE-2016-3458 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91945

Oracle Java SE CVE-2016-3550 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91951

Oracle Java SE and JRockit CVE-2016-3508 Remote Security Vulnerability
2017-01-07
http://www.securityfocus.com/bid/91972

SANS News

Using Security Tools to Compromize a Network

Threatpost

Google Patches Android Custom Boot Mode Vulnerability

Exploit

Google Android max86902 Driver - 'sysfs' Interfaces Race Condition

7.1.2017

Bugtraq

[SECURITY] [DSA 3753-1] libvncserver security update 2017-01-05
Sebastien Delafond (seb debian org)

[SECURITY][UPDATE] CVE-2016-8745 Apache Tomcat Information Disclosure 2017-01-05
Mark Thomas (markt apache org)

Malware

Ransom.FireCrypt

Android.Sofacy

Trojan.Powecod

Backdoor.Ememkor

Phishing

AOL

5th January 2017

An individual has already
tagged your current profile
page

AOL

5th January 2017

A girl has now tagged your own
account

AOL

5th January 2017

Someone has marked your own
account

AOL

5th January 2017

Somebody has recently marked
your account

PayPal

5th January 2017

OFFICIAL NOTICE FROM PAYPAL

service@paypal.com

5th January 2017

your account has been limited
until we hear from you

Vulnerebility

Oracle Fusion Middleware CVE-2016-3596 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91942

Oracle Fusion Middleware CVE-2016-3594 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91939

Oracle Fusion Middleware CVE-2016-3590 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91935

Oracle Fusion Middleware CVE-2016-3595 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91940

Oracle Fusion Middleware CVE-2016-3593 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91908

Oracle Fusion Middleware CVE-2016-3578 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91925

Oracle Fusion Middleware CVE-2016-3592 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91937

Oracle Fusion Middleware CVE-2016-3583 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91934

Oracle Fusion Middleware CVE-2016-3591 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91936

Oracle Fusion Middleware CVE-2016-3577 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91924

Oracle Fusion Middleware CVE-2016-3579 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91927

Oracle Fusion Middleware CVE-2016-3582 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91933

Oracle Fusion Middleware CVE-2016-3581 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91931

Oracle Fusion Middleware CVE-2016-3580 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91929

Mozilla Firefox Multiple Security Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/93049

Oracle Fusion Middleware CVE-2016-3575 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91921

Oracle Fusion Middleware CVE-2016-3574 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91914

Oracle Fusion Middleware CVE-2016-3576 Remote Security Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91923

Libgraphite Multiple Security Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/82991

Plone Unspecified Local File Include Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95280

Olive Diary DX 'page' Parameter Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95314

Olive Blog CVE-2016-7839 Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95309

Multiple McAfee Products CVE-2016-8006 Local Authentication Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95313

Ghostscript 'psi/zht2.c' NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95311

Olive Design WEB SCHEDULE 'month' Parameter Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95312

IBM License Metric Tool and BigFix Inventory CVE-2016-8977 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95308

Nessus CVE-2017-5179 HTML Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95307

Irssi Multiple Memory Corruption Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/95310

IBM Tivoli Storage Manager CVE-2016-6110 Local Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95306

Game Music Emulators Multiple Memory Corruption Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/95305Plone Unspecified Local File Include Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95280

Olive Blog CVE-2016-7839 Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95309

Multiple McAfee Products CVE-2016-8006 Local Authentication Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95313

Ghostscript 'psi/zht2.c' NULL Pointer Dereference Remote Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95311

Olive Design WEB SCHEDULE 'month' Parameter Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95312

IBM License Metric Tool and BigFix Inventory CVE-2016-8977 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95308

Nessus CVE-2017-5179 HTML Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95307

Irssi Multiple Memory Corruption Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/95310

IBM Tivoli Storage Manager CVE-2016-6110 Local Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95306

Game Music Emulators Multiple Memory Corruption Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/95305

Slurm CVE-2016-10030 Security Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95299

Rockwell Automation Logix5000 Controllers CVE-2016-9343 Stack Buffer Overflow Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95304

PCSC-Lite CVE-2016-10109 Use After Free Local Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95263

Ghostscript Multiple Security Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/93447

Linux Kernel CVE-2016-8666 Stack Overflow Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93562

PHPMailer CVE-2016-10033 Remote Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95108

Dnsmasq 'src/cache.c' Local Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91031

EMC ScaleIO CVE-2016-9869 Local Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95303

Rockwell Automation MicroLogix 1100 and 1400 Multiple Security Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/95302

systemd CVE-2016-7796 Local Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93250

EMC ScaleIO CVE-2016-9868 Local Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95301

EMC ScaleIO CVE-2016-9867 Local Privilege Escalation Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95300

OpenLDAP CVE-2015-6908 Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/76714

Python smtplib CVE-2016-0772 Man in the Middle Security Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91225

Python 'urrlib2/urllib/httplib/http.client' HTTP Header Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91226

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93013

IBM WebSphere Application Server CVE-2015-7417 Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/81738

IBM WebSphere Application Server CVE-2016-0385 Security Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92505

IBM WebSphere Application Server CVE-2016-0359 HTTP Response Splitting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91484

IBM WebSphere Application Server CVE-2016-2960 Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92354OpenLDAP CVE-2015-6908 Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/76714

Python smtplib CVE-2016-0772 Man in the Middle Security Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91225

Python 'urrlib2/urllib/httplib/http.client' HTTP Header Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91226

IBM WebSphere Application Server CVE-2016-5986 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93013

IBM WebSphere Application Server CVE-2015-7417 Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/81738

IBM WebSphere Application Server CVE-2016-0385 Security Bypass Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92505

IBM WebSphere Application Server CVE-2016-0359 HTTP Response Splitting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91484

IBM WebSphere Application Server CVE-2016-2960 Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92354

Apache PDFBox CVE-2016-2175 XML External Entity Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/90902

Firejail CVE-2017-5180 Local Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95298

ISC BIND 'buffer.c' Remote Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93188

ISC BIND CVE-2016-2848 Remote Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93814

IBM BigFix Platform CVE-2016-6082 Remote Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95297

GNU glibc 'getaddrinfo()' Function Incomplete Fix Remote Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/88440

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92630

Action View CVE-2016-6316 Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92430

Ruby on Rails Active Record CVE-2016-6317 SQL Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/92434

Sprecher Automation SPRECON-E Service CVE-2016-10041 Privilege Escalation Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95296

IBM Security Access Manager Products CVE-2016-2908 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95295

Joomla! aWeb Cart Watching System Extension CVE-2016-10114 Multiple SQL Injection Vulnerabilities
2017-01-06
http://www.securityfocus.com/bid/95293

WordPress WooCommerce Plugin CVE-2016-10112 Cross Site Scripting Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95292

IBM BigFix Platform CVE-2016-6085 Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95291

Objective Systems ASN1C CVE-2016-5080 Heap Based Buffer Overflow Vulnerability
2017-01-06
http://www.securityfocus.com/bid/91836

Linux Kernel 'mm/memory.c' Local Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93591

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/93544

Linux Kernel 'path_openat()' Function Use After Free Memory Corruption Vulnerability
2017-01-06
http://www.securityfocus.com/bid/76142

Linux Kernel 'fs/isofs/rock.c' Infinite Loop Denial of Service Vulnerability
2017-01-06
http://www.securityfocus.com/bid/71717

IBM UrbanCode Deploy CVE-2016-8938 Remote Code Execution Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95289

IBM UrbanCode Deploy CVE-2016-6068 Information Disclosure Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95290

Atlassian Confluence CVE-2016-6283 HTML Injection Vulnerability
2017-01-06
http://www.securityfocus.com/bid/95288

SANS News

Ransomware Operators Cold Calling UK Schools to Get Malware Through

Was the Brazilian version of Google hijacked two days ago?

New Year's Resolution: Build Your Own Malware Lab?

Threatpost

U.S. Intelligence Report Due Next Week on Election Hack

Attacks On MongoDB Rise As Hijackings Continue

FTC: D-Link Failed to Secure Routers, IP Cameras

Experts Warn of Novel PDF-Based Phishing Scam

Exploit

Microsoft Windows 10 Edge - 'chakra.dll' Info Leak / Type Confusion Remote Code...

6.1.2017

Bugtraq

[SECURITY][UPDATE] CVE-2016-8745 Apache Tomcat Information Disclosure 2017-01-05
Mark Thomas (markt apache org)

ESA-2016-157: EMC ScaleIO Multiple Vulnerabilities 2017-01-05
EMC Product Security Response Center (Security_Alert emc com)

[security bulletin] HPSBGN03688 rev.1 - HPE Operations Orchestration, Remote Code Execution 2017-01-03
security-alert hpe com

[SECURITY] [DSA 3750-2] libphp-phpmailer regression update 2017-01-03
Thijs Kinkhorst (thijs debian org)

Malware

Ransom:Win32/Dereilock.A
Ransom:Win32/Cerber.D

Ransom:Win32/Cerber.B

Ransom:Win32/Cerber.HVT

Ransom:Win32/Cerber

Ransom:Win32/Cerber.A

TrojanSpy:MSIL/Siplog.B

TrojanSpy:Win32/Banker.APN

TrojanSpy:Win32/Banker.APL

Win32/Clodaconas

Phishing

AOL

5th January 2017

An individual has already
tagged your current profile
page

AOL

5th January 2017

A girl has now tagged your own
account

AOL

5th January 2017

Someone has marked your own
account

AOL

5th January 2017

Somebody has recently marked
your account

PayPal

5th January 2017

OFFICIAL NOTICE FROM PAYPAL

service@paypal.com

5th January 2017

your account has been limited
until we hear from you

Vulnerebility

Joomla! aWeb Cart Watching System Extension CVE-2016-10114 Multiple SQL Injection Vulnerabilities
2017-01-05
http://www.securityfocus.com/bid/95293

WordPress WooCommerce Plugin CVE-2016-10112 Cross Site Scripting Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95292

IBM BigFix Platform CVE-2016-6085 Denial of Service Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95291

Objective Systems ASN1C CVE-2016-5080 Heap Based Buffer Overflow Vulnerability
2017-01-05
http://www.securityfocus.com/bid/91836

Linux Kernel 'mm/memory.c' Local Code Execution Vulnerability
2017-01-05
http://www.securityfocus.com/bid/93591

Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
2017-01-05
http://www.securityfocus.com/bid/93544

Linux Kernel 'path_openat()' Function Use After Free Memory Corruption Vulnerability
2017-01-05
http://www.securityfocus.com/bid/76142

Linux Kernel 'fs/isofs/rock.c' Infinite Loop Denial of Service Vulnerability
2017-01-05
http://www.securityfocus.com/bid/71717

IBM UrbanCode Deploy CVE-2016-8938 Remote Code Execution Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95289

IBM UrbanCode Deploy CVE-2016-6068 Information Disclosure Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95290

Atlassian Confluence CVE-2016-6283 HTML Injection Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95288

Apache HttpComponents Incomplete Fix CVE-2014-3577 SSL Validation Security Bypass Vulnerability
2017-01-05
http://www.securityfocus.com/bid/69258

IBM BigFix Platform CVE-2016-6084 Denial of Service Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95286

Google Pixel Binder CVE-2016-8468 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95285

IBM UrbanCode Deploy CVE-2016-9008 Security Bypass Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95283

Google Android Synaptics CVE-2016-8458 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95279

Google Android Synaptics Touchscreen Driver CVE-2016-8451 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95277

Google Android One Qualcomm Radio Driver CVE-2016-5345 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95273

IBM BigFix Inventory CVE-2016-8963 Local Information Disclosure Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95282

Multiple Google Devices CVE-2017-0404 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95281

Plone Unspecified Local File Include Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95280

Linux Kernel CVE-2016-9754 Local Integer Overflow Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95278

Drupal Doubleclick for Publishers Module Multiple Cross Site Scripting Vulnerabilities
2017-01-05
http://www.securityfocus.com/bid/95276

Google Nexus Qualcomm Wi-Fi Driver CVE-2016-8452 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95275

Pivotal GemFire for PCF CVE-2016-9885 Remote Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95270

Drupal Permissions by Term Module Access Bypass and Information Disclosure Vulnerabilities
2017-01-05
http://www.securityfocus.com/bid/95271

Multiple Google Devices CVE-2017-0403 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95274

IBM General Parallel File System CVE-2016-6115 Unspecified Buffer Overflow Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95272

Multiple Google Devices Qualcomm Sound Driver CVE-2016-8450 Privilege Escalation Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95269

FreeIPA CVE-2016-9575 Insecure File Permissions Vulnerability
2017-01-05
http://www.securityfocus.com/bid/95068

SANS News

Mixed Messages : Novel Phishing Attempts Trying to Steal Your E-mail Password Goes Wrong

Threatpost

Google Patches 29 Critical Android Vulnerabilities Including Holes in Mediaserver, Qualcomm

FTC Issues Public Challenge to Improve IoT Patching


Claudio Guarnieri on Security Without Borders

Exploit

Kaspersky 17.0.0 - Local CA root Incorrectly Protected

Atlassian Confluence 5.9.12 - Persistent Cross-Site Scripting

5.1.2017

Bugtraq

[security bulletin] HPSBGN03688 rev.1 - HPE Operations Orchestration, Remote Code Execution 2017-01-03
security-alert hpe com

[SECURITY] [DSA 3750-2] libphp-phpmailer regression update 2017-01-03
Thijs Kinkhorst (thijs debian org)

0-day: QNAP NAS Devices suffer of heap overflow 2016-12-31
bashis (mcw noemail eu)

Malware

 

Phishing

Google

4th January 2017

Google Drive Unread Messages
From????

AOL

4th January 2017

An individual has already
tagged your current profile

AOL

3rd January 2017

A woman seems to have marked
your current profile

AOL

3rd January 2017

An individual seems to have
tagged your profile page

AOL

3rd January 2017

An individual has now tagged
your current account

AOL

3rd January 2017

A person has already marked
your own personal profile

AOL

3rd January 2017

Someone appears to have tagged
your current user profile

AOL

3rd January 2017

Someone has tagged your very
own personal profile

AOL

3rd January 2017

An individual has now marked
your current profile

service@paypal.com

3rd January 2017

your account has been limited
until we hear from you

Vulnerebility

Google Android Mediaserver Multiple Denial of Service Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/95230

Google Android MediaTek Components Multiple Privilege Escalation Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/95229

Multiple F5 BIG-IP Products CVE-2016-5024 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95228

Google Android Qualcomm components Multiple Unspecified Security Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/95227

musl libc 'tre_tnfa_run_parallel()' Function Integer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93795

Google Android Audioserver Multiple Information Disclosure Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/95226

Linux Kernel 'kvm/emulate.c' Information Disclosure Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94615

QEMU '/hw/char/serial.c' Divide By Zero Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93563

Xen CVE-2016-9381 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94476

HP Operations Orchestration CVE-2016-8519 Remote Code Execution Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95225

Shoretel Mobility Client CVE-2016-6562 SSL Certificate Validation Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95224

Xen CVE-2016-9932 Information Disclosure Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94863

Multiple Kaspersky Products Information Disclosure and Security Bypass Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/95223

Xen CVE-2016-9637 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94699

Xen CVE-2016-9385 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94472

Xen PyGrub Multiple Privilege Escalation Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/94473

Xen CVE-2016-9383 Memory Corruption Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94474

QEMU 'hw/dma/rc4030.c' Divide By Zero Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93567

QEMU CVE-2016-8910 Infinite Loop Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93844

QEMU CVE-2016-8909 Infinite Loop Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93842

Xen CVE-2016-9382 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94470

Xen CVE-2016-9386 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94471

Xen CVE-2016-7777 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93344

QEMU 'hw/net/mcf_fec.c' Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93273

QEMU Infinite Loop CVE-2016-7909 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93275

QEMU 'hw/usb/hcd-xhci.c' Infinite Loop Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93469

Libotr CVE-2016-2851 Integer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/84285

pidgin-otr CVE-2015-8833 Use After Free Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/84295

ImageMagick CVE-2016-10071 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95222

LibTIFF CVE-2016-10092 Heap Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95218
OpenSSL CVE-2016-6304 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93150

OpenSSL 'BN_bn2dec()' Function Out of Bounds Write Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/92557

OpenSSL CVE-2016-2177 Integer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/91319

OpenSSL CVE-2016-6306 Local Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93153

OpenJPEG 'convert.c' Remote Heap Based Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93976

OpenJPEG 'convert.c' Null Pointer Dereference Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93783

OpenSSL CVE-2016-6307 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93152

OpenJPEG CVE-2016-9114 Null Pointer Dereference Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93979

OpenJPEG 'convert.c' CVE-2016-9115 Remote Heap Based Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93977

OpenSSL CVE-2016-2180 Local Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/92117

OpenSSL CVE-2016-6302 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/92628

OpenJPEG CVE-2016-8332 Remote Code Execution Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93242

OpenJPEG 'openjp2/pi.c' Divide-By-Zero Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93978

OpenJPEG CVE-2016-9113 Null Pointer Dereference Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93980

OpenJPEG 'convert.c' CVE-2016-9116 Null Pointer Dereference Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93975

OpenJPEG Multiple Remote Heap Based Buffer Overflow Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/94822

OpenJPEG CVE-2016-7445 Null Pointer Dereference Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93040

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2017-01-04
http://www.securityfocus.com/bid/92630

OpenSSL CVE-2016-2181 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/92982

PHPMailer CVE-2016-10045 Incomplete Fix Remote Code Execution Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95130

QEMU '/hw/char/serial.c' Divide By Zero Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93563

Multiple IBM Products CVE-2016-8961 Open Redirect Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95128

MODX Revolution CVE-2016-10037 Directory Traversal Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95127

QEMU 'hw/net/mcf_fec.c' Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93273

Xen CVE-2016-9381 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94476

Xen CVE-2016-9386 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94471

Xen CVE-2016-9383 Memory Corruption Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94474

Xen PyGrub Multiple Privilege Escalation Vulnerabilities
2017-01-04
http://www.securityfocus.com/bid/94473

Xen CVE-2016-9637 Privilege Escalation Vulnerability
2017-01-04
http://www.securityfocus.com/bid/94699

QEMU Infinite Loop CVE-2016-7909 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93275
Xen CVE-2016-7777 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93344

QEMU 'hw/net/mcf_fec.c' Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93273

QEMU Infinite Loop CVE-2016-7909 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93275

QEMU 'hw/usb/hcd-xhci.c' Infinite Loop Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/93469

Libotr CVE-2016-2851 Integer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/84285

pidgin-otr CVE-2015-8833 Use After Free Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/84295

ImageMagick CVE-2016-10071 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95222

LibTIFF CVE-2016-10092 Heap Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95218

ImageMagick CVE-2016-10068 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95219

ImageMagick CVE-2016-10069 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95216

LibTIFF CVE-2016-10093 Heap Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95215

ImageMagick CVE-2016-10067 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95220

ImageMagick CVE-2016-10070 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95221

LibTIFF CVE-2016-10094 Heap Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95214

ImageMagick CVE-2016-10066 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95217

ImageMagick CVE-2016-10058 Information Disclosure Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95212

ImageMagick CVE-2016-10064 Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95211

Swiftmailer CVE-2016-10074 Remote Code Execution Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95140

ImageMagick CVE-2016-10065 Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95213

ImageMagick CVE-2016-10063 Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95210

ImageMagick CVE-2016-10060 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95208

GNU glibc 'getaddrinfo()' Function Incomplete Fix Remote Denial of Service Vulnerability
2017-01-04
http://www.securityfocus.com/bid/88440

ImageMagick CVE-2016-10062 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95209

ImageMagick CVE-2016-10059 Buffer Overflow Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95206

ImageMagick CVE-2016-10061 Security Bypass Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95207

IBM Security Privileged Identity Manager CVE-2016-5990 Arbitrary File Upload Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95199

Western Digital MyCloud NAS CVE-2016-10107 Remote Command Injection Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95201

Borg Backup CVE-2016-10099 Spoofing Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95205

Borg CVE-2016-10100 Spoofing Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95203

Multiple NETGEAR Products CVE-2016-10106 Directory Traversal Vulnerability
2017-01-04
http://www.securityfocus.com/bid/95204

SANS News

 

Threatpost

Pentagon Subcontractor Inadvertently Leaks 11 Gigs of Sensitive Data

Vermont Grid ‘Hack’ Latest Tumble Down Attribution Rabbit Hole

Costin Raiu on the Importance of Using YARA

Exploit

My Click Counter 1.0 - Authentication Bypass

4.1.2017

Bugtraq

 

Malware

Backdoor:Win32/Sacto.B!dha 
TrojanSpy:Win32/Siblope.A 
Backdoor:Win32/Grabsir.A 
Backdoor:MSIL/Aataki.AC!bit 
TrojanDownloader:Win32/Ulicky.B!bit 
TrojanDownloader:Win32/Ulicky.A!bit 
TrojanDownloader:Win32/Macdowpay.A 
TrojanDownloader:Win32/Apcrewnod 
TrojanDownloader:PowerShell/Ploprolo!rfn 
TrojanDownloader:PowerShell/Hipoele.B!bit 

Phishing

 

Vulnerebility

Samba CVE-2015-5299 Remote Security Bypass Vulnerability
2017-01-03
http://www.securityfocus.com/bid/79729

Samba CVE-2016-2114 Remote Security Bypass Vulnerability
2017-01-03
http://www.securityfocus.com/bid/86011

Samba CVE-2016-2118 Man in the Middle Security Bypass Vulnerability
2017-01-03
http://www.securityfocus.com/bid/86002

Multiple IBM Products CVE-2016-6033 Cross Site Request Forgery Vulnerability
2017-01-03
http://www.securityfocus.com/bid/95102

GraphicsMagick CVE-2016-7996 Heap Buffer Overflow Vulnerability
2017-01-03