# SANS ISC

# threatpost.com

# Reddit netsec

# Krebs On Security

  • Scientology Seeks Captive Converts Via Google Maps, Drug Rehab Centers Mon, 27 Jun 2016 18:32:44 +0000
    Fake online reviews generated by unscrupulous marketers blanket the Internet these days. Although online review pollution isn't exactly a hot-button consumer issue, there are plenty of cases in which phony reviews may endanger one's life or well-being. This is the story about how searching for drug abuse treatment services online could cause concerned loved ones to send their addicted, vulnerable friends or family members straight into the arms of the Church of Scientology.
  • How to Spot Ingenico Self-Checkout Skimmers Fri, 24 Jun 2016 14:36:36 +0000
    A KrebsOnSecurity story last month about credit card skimmers found in self-checkout lanes at some Walmart locations got picked up by quite a few publications. Since then I've heard from several readers who work at retailers that use hundreds of thousands of these Ingenico credit card terminals across their stores, and all wanted to know the same thing: How could they tell if their self-checkout lanes were compromised? This post provides a few pointers.
  • Rise of Darknet Stokes Fear of The Insider Wed, 22 Jun 2016 20:49:56 +0000
    With the proliferation of shadowy black markets on the so-called "darknet" -- hidden crime bazaars that can only be accessed through special software that obscures one's true location online -- it has never been easier for disgruntled employees to harm their current or former employer. At least, this is the fear driving a growing stable of companies seeking technical solutions to detect would-be insiders.

# Bruce Schneier's blog

# WIRED Threat Level

# exploit-db.com

# Securiteam

  • Huawei P8 Smart Phones Local Privilege Escalation Vulnerabilities Tue, 28 Jun 2016 00:00 GMT
    The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application with the graphics permission, aka an "interface access control vulnerability,"
  • Apple IOS Execution Of Arbitrary Code In A Privileged Context Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Use-after-free vulnerability in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context via a crafted app.
  • AQUOS Photo Player Disruption Of Service Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player HN-PP150 1.02.00.04 through 1.03.01.04 allows remote attackers to hijack the authentication of arbitrary users.
  • Cisco Nexus 3000 Series Default Account And Credentials Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Cisco NX-OS 6.0(2)U6(1) through 6.0(2)U6(5) on Nexus 3000 devices and 6.0(2)A6(1) through 6.0(2)A6(5) and 6.0(2)A7(1) on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a (1) TELNET or (2) SSH session.
  • Cyber-Will Social-Button Premium Plugin Injection Of Arbitrary Web Script Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Cross-site scripting (XSS) vulnerability in the Cyber-Will Social-button Premium plugin before 1.1 for EC-CUBE 2.13.x allows remote attackers to inject arbitrary web script.
  • Cybozu Office Cross-Site Scripting Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML.
  • Debian Jessie Lacks A Namespace Check Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    pt_chown in the glibc package before 2.19-18+deb8u4 on Debian jessie lacks a namespace check associated with file-descriptor passing, which allows local users to capture keystrokes and spoof data, and possibly gain privileges, via pts read and write operations, related to debian/sysdeps/linux.mk. because the upstream documentation has a clear security recommendation against the --enable-pt_chown optio .
  • Google Chrome Extensions Implementation Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Use-after-free vulnerability in the GetLoadTimes function in renderer/loadtimes_extension_bindings.cc in the Extensions implementation in Google Chrome before 49.0.2623.108 allows remote attackers to cause a denial of service .
  • HPE Network Automation Obtain Potentially Sensitive Information Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information.
  • IBM Tivoli Monitoring Privileges Escalation Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    The portal client in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, 6.2.3 through FP5, and 6.3.0 through FP6 allows remote authenticated users to gain privileges .
  • Microsoft Windows USB Mass Storage Elevation Of Privilege Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    The USB Mass Storage Class driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows physically proximate attackers to execute arbitrary code by inserting a crafted USB device.
  • MIT Kerberos 5 Denial of Service Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by specifying KADM5_POLICY with a NULL policy name.
  • Moodle Remote Injection Of Arbitrary Web Script Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Cross-site scripting (XSS) vulnerability in group/overview.php in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x before 2.8.8, and 2.9.x before 2.9.2 allows remote authenticated users to inject arbitrary web script or HTML via a modified grouping description.
  • Mozilla Firefox CentOS Issues Memory Leak Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Memory leak in libstagefright in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to cause a denial of service (memory consumption) via an MPEG-4 file that triggers a delete operation on an array.
  • OpenSSL Value For An Arbitrary Cipher Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a accepts a nonzero CLIENT-MASTER-KEY CLEAR-KEY-LENGTH value for an arbitrary cipher, which allows man-in-the-middle attackers to determine the MASTER-KEY value and decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle.
  • Perl Context-Dependent Taint Protection Mechanism Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.
  • PostgreSQL Custom Configuration Settings Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges.
  • Squid Proceeds Response-Parsing Failure Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    http.cc in Squid 3.x before 3.5.15 and 4.x before 4.0.7 proceeds with the storage of certain data after a response-parsing failure, which allows remote HTTP servers to cause a denial of service (assertion failure and daemon exit) via a malformed response.
  • WildFly Read The Sensitive Files Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    Incomplete blacklist vulnerability in the servlet filter restriction mechanism in WildFly (formerly JBoss Application Server) before 10.0.0.Final on Windows allows remote attackers to read the sensitive files in the (1) WEB-INF or (2) META-INF directory via a request that contains (a) lowercase or (b) "meaningless" characters.
  • Win32k The kernel-mode driver Vulnerabilities Wed, 29 Jun 2016 00:00 GMT
    The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application.