Last updated:
Mon Jan 26 11:07:56 2015 GMT
  2014 FIRST Annual Conference in Boston - Register now


Recent bugs
via SecurityFocus,
JasPer 'jpc_dec_process_sot()' Remote Heap Buffer Overflow Vulnerability
JasPer 'jpc_qmfb.c' Arbitrary Code Execution Vulnerability
Adobe Flash Player CVE-2015-0311 Unspecified Security Vulnerability
McAfee ePolicy Orchestrator 'conditionXML' Parameter XML External Entity Injection Vulnerability
Oracle MySQL Server CVE-2015-0374 Remote Security Vulnerability
Oracle MySQL Server CVE-2015-0411 Remote Security Vulnerability
Oracle MySQL Server CVE-2015-0432 Remote Security Vulnerability
Oracle Java SE CVE-2014-6601 Remote Java SE Vulnerability
Oracle Java SE CVE-2014-6593 Remote Java SE, Java SE Embedded, JRockit Vulnerability
Oracle MySQL Server CVE-2014-6568 Remote Security Vulnerability
Recent advisories
via Secunia, US-CERT,
TA12-073A: Microsoft Updates for Multiple Vulnerabilities
TA12-045A: Microsoft Updates for Multiple Vulnerabilities
TA12-024A: "Anonymous" DDoS Activity
TA12-010A: Microsoft Updates for Multiple Vulnerabilities
TA12-006A: Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack
TA11-350A: Adobe Updates for Multiple Vulnerabilities
TA11-347A: Microsoft Updates for Multiple Vulnerabilities
TA11-312A: Microsoft Updates for Multiple Vulnerabilities
TA11-286A: Apple Updates for Multiple Vulnerabilities
TA11-284A: Microsoft Updates for Multiple Vulnerabilities
TA11-256A: Microsoft Updates for Multiple Vulnerabilities
TA11-222A: Adobe Updates for Multiple Vulnerabilities
TA11-221A: Microsoft Updates for Multiple Vulnerabilities
TA11-201A: Oracle Updates for Multiple Vulnerabilities
TA11-200A: Security Recommendations to Prevent Cyber Intrusions
TA11-193A: Microsoft Updates for Multiple Vulnerabilities
TA11-165A: Microsoft Updates for Multiple Vulnerabilities
TA11-166A: Adobe Updates for Multiple Vulnerabilities
TA11-130A: Microsoft Updates for Multiple Vulnerabilities
TA11-102A: Microsoft Updates for Multiple Vulnerabilities
Bugtraq Topics
via SecurityFocus,
[HITB-Announce] #HITB2015AMS Call for Papers 1st Round is Closing in 10 Days
REWTERZ-20140101 - ManageEngine ServiceDesk SQL Injection Vulnerability
REWTERZ-20140102 - ManageEngine ServiceDesk Plus User Enumeration Vulnerability
Fwd: REWTERZ-20140103 - ManageEngine ServiceDesk Plus User Privileges Management Vulnerability
CVE-2015-1179-xss-mango-automation-scada
CVE-2015-1180-xss-eventsentry
Program-O v2.4.6 - Multiple Web Vulnerabilities
PhotoSync 1.1.3 Android - Command Inject Vulnerability
[oCERT-2015-001] JasPer input sanitization errors
SEC Consult SA-20150122-0 :: Multiple critical vulnerabilities in Symantec Data Center Security: Server Advanced (SDCS:SA) & SCSP
Top Worms and Viruses
via Sophos,
Troj/Invo-Zip
W32/Netsky
Mal/EncPk-EI
Troj/Pushdo-Gen
Troj/Agent-HFU
Mal/Iframe-E
Troj/Mdrop-BTV
Troj/Mdrop-BUF
Troj/Agent-HFZ
Troj/Agent-HGT
Latest MS bulletins
via Microsoft,
MS11-703 - Important: Test MNP bulletin #3 (test0703)
MS11-702 - Moderate: Test MNP bulletin #2 (test0702)
MS11-701 - Low: Test MNP bulletin #1 (test0701)
MS11-069 - Moderate: Vulnerability in .NET Framework Could Allow Information Disclosure (2567951)
MS11-068 - Moderate: Vulnerability in Windows Kernel Could Allow Denial of Service (2556532)
MS11-067 - Important: Vulnerability in Microsoft Report Viewer Could Allow Information Disclosure (2578230)
MS11-066 - Important: Vulnerability in Microsoft Chart Control Could Allow Information Disclosure (2567943)
MS11-065 - Important: Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (2570222)
MS11-064 - Important: Vulnerabilities in TCP/IP Stack Could Allow Denial of Service (2563894)
MS11-063 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2567680)
Stock Watch
via Yahoo! Finance
Updated 1/23/2015
NASDAQ 4757.879 +7.481
JNPR 22.01 -0.04
SYMC 26.645 -0.045
CSCO 28.21 -0.29
CKP 13.44 unch
MSFT 47.18 +0.05
IBM 155.87 +0.48
INTC 36.445 -0.465
AMD 2.45 -0.02
CIC.TO 10.40 +0.14
CA 31.01 +0.47
BCSI 0.00 N/A
VRSN 56.81 +0.61
INTC 36.445 -0.465
CUDA 35.00 -0.29
SPLK 56.89 +0.95
FEYE 34.93 +1.39
QLYS 39.65 +0.33
PANW 126.81 +3.13
HPQ 40.08 +0.02
IMPV 44.44 +1.08
PFPT 51.57 +1.38

 

Recent News

Hoaxer posing as GCHQ boss prank-calls PM Cameron
The Register - Security: Anti-Virus

Hey guys! Who is this chap? LOL

A hoax caller claiming to be GCHQ's chief spy was put through to UK Prime Minister David Camerons phone on Sunday.


Malaysia Air site hacked by group claiming support for IS
Yahoo! News: Security News

Vigil@nce - GNU patch: infinite loop of Line Number, analyzed on 22/01/2015
Vigil@nce - public vulnerabilities
An attacker can create a malicious patch file, to generate an infinite loop in patch, in order to trigger a denial of service.

Game over? Sony FINALLY offers compensation to MEELLIONS of PSN hack victims
The Register - Security: Anti-Virus

Free goodies dished out in U.S.

Millions of PSN gamers, who were hit by a massive data breach on Sony's Playstation network back in 2011, are finally being offered the opportunity to claim compensation from the company.


Vigil@nce - WordPress slideoptinprox: Cross Site Scripting, analyzed on 09/01/2015
Vigil@nce - public vulnerabilities
An attacker can trigger a Cross Site Scripting of WordPress slideoptinprox, in order to execute JavaScript code in the context of the web site.

Vigil@nce - SIMATIC S7-1200: open redirect, analyzed on 21/01/2015
Vigil@nce - public vulnerabilities
An attacker can deceive the user of SIMATIC S7-1200, in order to redirect him to a malicious site.

Tributes to Saudi King spark rights criticism in Britain
Yahoo! News: Security News
As world leaders flew to Saudi Arabia to mark the death of King Abdullah, several prominent British politicians criticized the deference shown to the leader of a country accused of having a poor human rights record. Human rights campaigners and politician

Vigil@nce - Cisco Secure ACS: privilege escalation, analyzed on 09/01/2015
Vigil@nce - public vulnerabilities
An authenticated attacker can manipulate Network Identity Groups of Cisco Secure ACS, in order to escalate his privileges.

Vigil@nce - WordPress Sexy Contact Form: file upload, analyzed on 24/10/2014
Vigil@nce - public vulnerabilities
An attacker can upload a malicious file on WordPress Sexy Contact Form, in order for example to upload a Trojan.

Vigil@nce - Joomla Creative Contact Form: file upload, analyzed on 24/10/2014
Vigil@nce - public vulnerabilities
An attacker can upload a malicious file on Joomla Creative Contact Form, in order for example to upload a Trojan.

Vigil@nce - Cisco Secure ACS: Cross Site Scripting, analyzed on 09/01/2015
Vigil@nce - public vulnerabilities
An attacker can trigger a Cross Site Scripting of Cisco Secure ACS, in order to execute JavaScript code in the context of the web site.

Vigil@nce - TYPO3 Content Rating: two vulnerabilities, analyzed on 09/01/2015
Vigil@nce - public vulnerabilities
An attacker can use several vulnerabilities of TYPO3 Content Rating.

Vigil@nce - TYPO3 Content Rating Extbase: two vulnerabilities, analyzed on 09/01/2015
Vigil@nce - public vulnerabilities
An attacker can use several vulnerabilities of TYPO3 Content Rating Extbase.

Yealink VOIP Phone Multiple HTML Injection Vulnerabilities
SecuriTeam.com
Multiple cross-site scripting (XSS) vulnerabilities in Local Phone book and Blacklist form in Yealink VOIP Phones allow remote authenticated users to inject arbitrary web script or HTML via the user field to cgi-bin/ConfigManApp.com.

XOOPS Multiple Cross Site Scripting Vulnerabilities
SecuriTeam.com
Multiple cross-site scripting (XSS) vulnerabilities in XOOPS before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via the (1) to_userid parameter to modules/pm/pmlite.php or the (2) current_file, (3) imgcat_id, or (4) target paramete

WordPress Mobile Pack Plugin 'content.php' Information Disclosure Vulnerabilities
SecuriTeam.com
The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not properly restrict access to password protected posts, which allows remote attackers to obtain sensitive information via an exportarticles action to export/content.php.

WordPress Disqus Comment System Plugin Multiple Security Vulnerabilities
SecuriTeam.com
Cross-site scripting (XSS) vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter.

Wireshark Sniffer File Remote Denial Of Service Vulnerabilities
SecuriTeam.com
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not validate bitmask data, which allows remote attackers to cause a denial of service (application crash)

Wireshark Sniffer Dissector Denial Of Service Vulnerabilities
SecuriTeam.com
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not properly handle empty input data, which allows remote attackers to cause a denial of service (applica

WebKit Memory Corruption And Application Crash Vulnerabilities
SecuriTeam.com
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site

WebKit Apple IOS Memory Corruption Vulnerabilities
SecuriTeam.com
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site

Vevo Android Application Fail To Properly Validate SSL Certificates Vulnerabilties
SecuriTeam.com
The Vevo - Watch HD Music Videos (aka com.vevo) application 2.0.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

uTorrent Remote Android Application Fail To Properly Validate SSL Certificates Vulnerabilties
SecuriTeam.com
The uTorrent Remote (aka com.utorrent.web) application 1.0.20110929 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

TYPO3 Address Visualization With Google Maps SQL Injection Vulnerabilities
SecuriTeam.com
SQL injection vulnerability in the Address visualization with Google Maps (st_address_map) extension before 0.3.6 allows remote attackers to execute arbitrary SQL commands

TorrentFlux Session Cookie Security Bypass Vulnerabilities
SecuriTeam.com
TorrentFlux 2.4 allows remote authenticated users to delete or modify other users' cookies via the cid parameter in an editCookies action to profile.php.

TimThumb Cross Site Scripting Vulnerabilities
SecuriTeam.com
Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb 1.09 and earlier, as used in Mimbo Pro 2.3.1 and other products, allows remote attackers to inject arbitrary web script or HTML via the src parameter.

Tapatalk Android Applications Disclose Sensitive Information Vulnerabilities
SecuriTeam.com
The Tapatalk (aka com.quoord.tapatalkpro.activity) application 4.8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Srvx Multiple Denial Of Service Vulnerabilities
SecuriTeam.com
Multiple integer overflows in the HelpServ module (mod-helpserv.c) in srvx 1.3.1 allow remote authenticated IRCops or HelpServ bot managers to cause a denial of service (infinite loop) via a large value in the EmptyInterval parameter or certain other inte

Spiceworks Snmpd.conf Script Insertion Vulnerabilities
SecuriTeam.com
Multiple cross-site scripting (XSS) vulnerabilities in SpiceWorks 5.3.75941 allow remote attackers to inject arbitrary web script or HTML via the (1) syslocation, (2) syscontact, or (3) sysName configuration in snmpd.conf

SOS GmbH JobScheduler Directory Traversal Vulnerabilities
SecuriTeam.com
Directory traversal vulnerability in the JobScheduler Operations Center (JOC) in SOS JobScheduler before 1.6.4246 and 1.7.x before 1.7.4241 allows remote authenticated users with the info permission to read arbitrary files in the webroot

SomNote Android Application Fail To Properly Validate SSL Certificates Vulnerabilties
SecuriTeam.com
The SomNote - Journal/Memo (aka com.somcloud.somnote) application 2.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Security Service MyBranch Android Application Fail To Properly Validate SSL Certificates Vulnerabilties
SecuriTeam.com
The Security Service myBranch App (aka com.tyfone.ssfcu.mbanking) application 7.88.00.145 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a cra

Schrack Emergency Lights System Multiple Security Vulnerabilities
SecuriTeam.com
The web interface in Schrack Technik microControl with firmware before 1.7.0 (937) has a hardcoded password of not for the "user" account, which makes it easier for remote attackers to obtain access

SAP Crystal Reports Remote Code Execution Vulnerabilities
SecuriTeam.com
Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbitrary code via crafted connection string record in an RPT file.

Safari Browser Android Application Fail To Properly Validate SSL Certificates Vulnerabilties
SecuriTeam.com
The Safari Browser (aka safari.safaribrowser.internetexplorer) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certific

RSA Archer GRC Information Disclosure Vulnerabilities
SecuriTeam.com
EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to bypass intended restrictions on resource access

RegisteredAssistant Android Application Fail To Properly Validate SSL Certificates Vulnerabilties
SecuriTeam.com
The RegisteredAssistant (aka Icr.RegisteredAssistant) application 0.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

PrestaShop Mpay24 Payment Module SQL Injection Vulnerabilities
SecuriTeam.com
SQL injection vulnerability in confirm.php in the mPAY24 payment module before 1.6 for PrestaShop allows remote attackers to execute arbitrary SQL commands via the TID parameter.

PhpWiki "edit[content]" OS Command Injection Vulnerabilities
SecuriTeam.com
The Ploticus module in PhpWiki 1.5.0 allows remote attackers to execute arbitrary code via shell metacharacters in a device option in the edit[content] parameter to index.php/HeIp. NOTE: some of these details are obtained from third party information.

PHP 'cdf_read_property_info()' Function Incomplete Fix Denial Of Service Vulnerabilities
SecuriTeam.com
Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause a denial of service (application crash) via a crafted C

Ovirt-Engine-Api Session ID Stored In HTML5 Local Storage Vulnerabilities
SecuriTeam.com
The REST API in oVirt 3.4.0 and earlier stores session IDs in HTML5 local storage, which allows remote attackers to obtain sensitive information via a crafted web page.

OpenStack Glance Image Registry And Delivery Service Denial Of Service Vulnerabilities
SecuriTeam.com
OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the image_size_cap configuration option, which allows remote authenticated users to ca

Ntopng HTTP Host Request Header Lines Multiple HTML Injection Vulnerabilities
SecuriTeam.com
Cross-site scripting (XSS) vulnerability in the nDPI traffic classification library in ntopng (aka ntop) before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header.

Novell Groupwise 'FileUploadServlet' Arbitrary File Access Vulnerabilities
SecuriTeam.com
FileUploadServlet in the Administration service in Novell GroupWise 2014 before SP1 allows remote attackers to read or write to arbitrary files via the poLibMaintenanceFileSave parameter

MyWebSQL Index.php Cross-Site Scripting Vulnerabilities
SecuriTeam.com
Cross-site scripting (XSS) vulnerability in MyWebSQL 3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the table parameter to index.php.

Older News

Multiple IBM Emptoris Products Cross Site Request Forgery Vulnerabilities
SecuriTeam.com

Multiple EMC Documentum Products Multiple Cross Site Scripting Vulnerabilities
SecuriTeam.com

Multiple Android Applications Spoof Servers Vulnerabilities
SecuriTeam.com

Multiple Android Applications Credential Stealing Vulnerabilities
SecuriTeam.com

Google Chrome V8 Multiple Remote Code Execution Vulnerabilities
SecuriTeam.com

Exim Execute Arbitrary Code Vulnerabilities
SecuriTeam.com

Cobham Aviator 700D And 700E CVE-2014-2942 Local Information Disclosure Vulnerabilities
SecuriTeam.com

Cisco Transport Gateway For Smart Call Home (TG-SCH) Denial Of Service Vulnerabilities
SecuriTeam.com

Apple IOS Local Information Disclosure Vulnerabilities
SecuriTeam.com

Adobe Flash Player And AIR And SDK Denial Of Service Vulnerabilities
SecuriTeam.com

Abode For Android SSL Certificate Validation Security Bypass Vulnerabilities
SecuriTeam.com

Able Remote Android Applications Arbitrary Code Execution Vulnerabilities
SecuriTeam.com

365 Links Cross Site Scripting Vulnerabilities
SecuriTeam.com

Vigil@nce - PHP: multiple vulnerabilities, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Linux kernel: information disclosure via evdev_handle_get_val, analyzed on 20/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - OpenSSL: multiple vulnerabilities, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

How to set up a VPN on Android and why you should do it right now
Yahoo! News: Security News

Vigil@nce - SAP NetWeaver Business Client for HTML 3.0: Cross Site Scripting, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

FBI-baiter Barrett Brown gets five years in chokey plus $890,000 fine
The Register - Security: Anti-Virus

UK Scouts database 'flaws' raise concerns
The Register - Security: Anti-Virus

Snoopy Fujitsu tech KNOWS you'll click that link before YOU do
The Register - Security: Anti-Virus

Panicked teen hanged himself after receiving ransomware scam email
The Register - Security: Anti-Virus

Vigil@nce - Drupal OPAC: Cross Site Request Forgery, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Course: Cross Site Scripting, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Cloudwords for Multilingual: multiple vulnerabilities, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal PHPlist Integration Module: SQL injection, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Htaccess: Cross Site Request Forgery, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal WikiWiki: SQL injection, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Batch Jobs: Cross Site Request Forgery, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Linkit: Cross Site Scripting, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Jammer: Cross Site Request Forgery, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Log Watcher: Cross Site Request Forgery, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Todo Filter: Cross Site Request Forgery, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Drupal Field Display Label: Cross Site Scripting, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - TYPO3 LDAP / SSO Authentication: privilege escalation, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - cURL: two vulnerabilities, analyzed on 08/01/2015
Vigil@nce - public vulnerabilities

Vigil@nce - Mulesoft Mule ESB: code execution, analyzed on 23/10/2014
Vigil@nce - public vulnerabilities

Symantec data centre security software has security holes
The Register - Security: Anti-Virus

Vigil@nce - EMC Avamar: vulnerability of Password Storage, analyzed on 23/10/2014
Vigil@nce - public vulnerabilities

Vigil@nce - EMC Avamar: information disclosure, analyzed on 23/10/2014
Vigil@nce - public vulnerabilities

Vigil@nce - EMC NetWorker: information disclosure via NMMEDI, analyzed on 23/10/2014
Vigil@nce - public vulnerabilities


all content is copyright its respective owner or owners. the tools and components behind this page are copyright © 2003-2010 jose nazario, all rights reserved. this page is available as RSS 2.0.