Debian: Security Advisory (DSA-4165-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-4162-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Suspicious Exploit Kit Website Redirection

An exploit kit is a type of toolkit cybercriminals use to attack vulnerabilities in systems so they can distribute malware or perform other malicious activities. Remote attackers can infect users by redirecting them to a malicious web page. Successful infection will allow the attacker to download...

[SECURITY] [DSA 4156-1] drupal7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4156-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 29, 2018 https://www.debian.org/security/faq -...

Debian DSA-4143-1 : firefox-esr - security update

Richard Zhu and Huzaifa Sidhpurwala discovered that an out-of-bounds memory write when playing Vorbis media files could result in the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

Micro Focus openSUSE obs-service-source_validator code execution vulnerability

Micro Focus openSUSE obs-service-sourcevalidator is a default source validator used by the Factory distribution from Micro Focus UK. A security vulnerability exists in Micro Focus openSUSE obs-service-sourcevalidator versions prior to 0.7. An attacker could exploit the vulnerability to execute co...

New Web-Based Malware Distribution Channel ‘BlackTDS’ Surfaces

A new traffic distribution system for malware is being offered as a service on the Dark Web and is promoting itself as an affordable way to deploy exploit kits and malware. The traffic distribution system TDS is being called BlackTDS by the Proofpoint researchers that found it. Traffic distributi...

Starbucks: Subdomain takeover on svcgatewayus.starbucks.com

Hello, this is pretty serious security issue in some context, so please act as fast as possible. Overview: One of the starbucks.com subdomains is pointing to Azure, which has unclaimed CNAME record. ANYONE is able to own starbucks.com subdomain at the moment. This vulnerability is called subdomai...

CVE-2016-8782

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatedly. Due to improper validation of some specific fields of the...

CVE-2016-8784

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices. When the values of some parameters in the packet are abnormal, the LDP...

CVE-2016-8782

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatedly. Due to improper validation of some specific fields of the...

Memory corruption

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatedly. Due to improper validation of some specific fields of the...

CVE-2016-8784

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices. When the values of some parameters in the packet are abnormal, the LDP...

CVE-2016-8782

Huawei CloudEngine 12800 firmware versions V100R003C00, V100R003C10, V100R005C00, V100R005C10, and V100R006C00 are affected by a memory-leak vulnerability in the LDP processing path caused by improper validation of certain fields in LDP packets. An unauthenticated attacker can repeatedly send cra...

CVE-2016-8784

Huawei CloudEngine 12800 devices running firmware V100R003C00, V100R003C10, V100R005C00, V100R005C10, or V100R006C00 are affected by a memory-leak vulnerability in the LDP processing module. An unauthenticated attacker can send crafted LDP packets; when certain parameters are abnormal, the device...

Behavior monitoring combined with machine learning spoils a massive Dofoil coin mining campaign

Update: Further analysis of this campaign points to a poisoned update for a peer-to-peer P2P application. For more information, read Poisoned peer-to-peer app kicked off Dofoil coin miner outbreak. Just before noon on March 6 PST, Windows Defender Antivirus blocked more than 80,000 instances of...

Threat Outbreak Alert RuleID32138: Email Messages Distributing Malicious Software on February 27, 2018

Medium Alert ID: 56944 First Published: 2018 February 27 17:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID32138 may contain the following files: Name |...

Threat Outbreak Alert RuleID32149: Email Messages Distributing Malicious Software on February 27, 2018

Medium Alert ID: 56948 First Published: 2018 February 27 16:31 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID32149 may contain the following files: Name |...

Debian DSA-4123-1 : drupal7 - security update

Multiple vulnerabilities have been found in the Drupal content management framework. For additional information, please refer to the upstream advisory at https://www.drupal.org/sa-core-2018-001 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Threat Outbreak Alert RuleID32123: Email Messages Distributing Malicious Software on February 23, 2018

Medium Alert ID: 56925 First Published: 2018 February 23 17:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID32123 may contain the following files: Name |...