security feeds @ davemoats.com

Blog
Security Info
- Virus Data
- Feeds
- Links
Windows Stuff
- Tools
- Scripts
- Links
Programming
- Source
- Utilities
Fun Stuff
- Games
- Books
Army Days
Personal
- Resume
- Links

The Internet Traffic Report monitors the flow of data around the world. It then displays a value between zero and 100. Higher values indicate faster and more reliable connections.

Internet Storm Center Infocon Status

Internet Security Systems - AlertCon(TM)

US-CERT Cyber Security Bulletins

SB10-242: Vulnerability Summary for the Week of August 23, 2010

SB10-235: Vulnerability Summary for the Week of August 16, 2010

SB10-228: Vulnerability Summary for the Week of August 9, 2010

SB10-221: Vulnerability Summary for the Week of August 2, 2010

SB10-214: Vulnerability Summary for the Week of July 26, 2010

SB10-207: Vulnerability Summary for the Week of July 19, 2010

SB10-200: Vulnerability Summary for the Week of July 12, 2010

SB10-193: Vulnerability Summary for the Week of July 5, 2010

SB10-186: Vulnerability Summary for the Week of June 28, 2010

SB10-179: Vulnerability Summary for the Week of June 21, 2010

SecurityFocus News

News: Change in Focus

News: Twitter attacker had proper credentials

News: PhotoDNA scans images for child abuse

News: Conficker data highlights infected networks

Brief: Google offers bounty on browser bugs

Brief: Cyberattacks from U.S. "greatest concern"

Brief: Microsoft patches as fraudsters target IE flaw

Brief: Attack on IE 0-day refined by researchers

News: Monster botnet held 800,000 people's details

News: Google: 'no timetable' on China talks

News: Latvian hacker tweets hard on banking whistle

News: MS uses court order to take out Waledac botnet

Infocus: Enterprise Intrusion Analysis, Part One

Infocus: Responding to a Brute Force SSH Attack

Infocus: Data Recovery on Linux and ext3

Infocus: WiMax: Just Another Security Challenge?

Gunter Ollmann: Time to Squish SQL Injection

Mark Rasch: Lazy Workers May Be Deemed Hackers

Adam O'Donnell: The Scale of Security

Mark Rasch: Hacker-Tool Law Still Does Little

More rss feeds from SecurityFocus

SecurityFocus Vulnerabilities

Vuln: Trend Micro Internet Security Pro ActiveX Control Remote Code Execution Vulnerability

Vuln: Adobe Flash Player and AIR (CVE-2010-2213) Multiple Unspecified Memory Corruption Vulnerabilities

Vuln: Adobe Flash Player and AIR (CVE-2010-2216) Unspecified Memory Corruption Vulnerability

Vuln: Adobe Flash Player and AIR (CVE-2010-2215) Unspecified Clickjacking Vulnerability

Bugtraq: {PRL} Novell Netware OpenSSH Remote Stack Overflow

Bugtraq: Vulnerabilities in CMS WebManager-Pro

Bugtraq: [ MDVSA-2010:169 ] mozilla-thunderbird

Bugtraq: [USN-982-1] Wget vulnerability

More rss feeds from SecurityFocus

Help Net Security - Advisories

SUSE Security Announcement - kernel (SUSE-SA:2010:038)

Debian Security Advisory - New barnowl packages fix arbitrary code execution (DSA-2102-1)

Mandriva Linux Security Update Advisory - wget (MDVSA-2010:170)

Gentoo Linux Security Advisory - wxGTK: User-assisted execution of arbitrary code (GLSA 201009-01)

Mandriva Linux Security Update Advisory - mozilla-thunderbird (MDVSA-2010:169)

Ubuntu Security Notice - wget vulnerability (USN-982-1)

Apple Product Security - iTunes 10 (APPLE-SA-2010-09-01-1)

Mandriva Linux Security Update Advisory - openssl (MDVSA-2010:168)

SUSE Security Announcement - acroread (SUSE-SA:2010:037)

SUSE Security Announcement - kernel (SUSE-SA:2010:036)

SANS Internet Storm Center, InfoCON: green

Microsoft EMETv2 released, (Thu, Sep 2nd)

SDF, please!, (Thu, Sep 2nd)

Month of Undisclosed 0-day Bugs, (Wed, Sep 1st)

Microsoft issues updates to sysinternals ProcDump and Process Monitor: http://blogs.technet.com/b/sysinternals/archive/2010/08/30/updates-procdump-process-monitor-and-a-new-mark-s-blog-post.aspx, (Wed, Sep 1st)

VMWARE releases 2 security advisories for ESX Service Console: http://lists.vmware.com/pipermail/security-announce/2010/000103.html and http://lists.vmware.com/pipermail/security-announce/2010/000104.html, (Wed, Sep 1st)

Interesting PHP injection, (Tue, Aug 31st)

Abandoned free email accounts, (Sun, Aug 29th)

Apple QuickTime potential vulnerability/backdoor, (Mon, Aug 30th)

New poll on mobile device security http://isc.sans.edu/poll.html, (Mon, Aug 30th)

Cisco IOS XR Software Border Gateway Protocol Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4411f.shtml, (Mon, Aug 30th)

Help Net Security - Vulnerabilities

PHPCMS2008 "download.php" Information Disclosure Issue

Online Work Order Suite Lite Edition Multiple Cross-Site Scripting Vulnerabilities

QEMU KVM Multiple Issues

Serv-U Denial of Service and Security Bypass Vulnerabilities

Linux Kernel KVM Intel VT-x Extension NULL Pointer Denial of Service

Netpet CMS "confirm.php" Local File Include

PHP City Portal "login.php" Multiple SQL Injection Issues

ACCESSGUARDIAN Unspecified Cross-Site Scripting Issue

Novell iPrint Client Multiple Security Vulnerabilities

CA Security Advisor Threat Alerts

Microsoft Windows DNS Server RPC interface remote code execution vulnerability

Microsoft Windows MsgBox remote code execution vulnerability

Microsoft Windows Animated Cursor remote code execution vulnerability

Microsoft UPnP HTTP Request arbitrary code execution vulnerability

Microsoft Agent URL Parsing remote code execution vulnerability

Packet Storm Security Exploits

webmanagerpro-sql.txt

PRL-2010-07.txt

moovida-dllhijack.tgz

moaub-quicktime.txt

vbshout-rfilfi.txt

moaub-rainbowportal.txt

shopalacart-sqlxss.txt

accton-backdoor.txt

amirocmsfaq-xss.txt

Packet Storm Security Headlines

Microsoft Freshens Retro Code Lock-Down Tool

Murdoch Reporters' Phone-Hacking Was Endemic, Victimized Hundreds

What's A Hacker's Biggest Fear?

FCC Delays Net Neutrality Decision

Barbers And Security Professionals

Facebook Adds New Remote Log-Out Security Feature

The FCC Queries Google's Take On Wireless Net Neutrality

iTunes Update Plugs WebKit Flaw

Symantec And Snoop Dogg Launch Cybercrime Rap Contest

Taoist Temple Blog Falls Victim To Hacker

Hacker Spikes Voting For New Dick's Drive-In Location

Cybersecurity Researcher Finds Scanning Flaw In HP Printers

Packet Storm Security Advisories

MDVSA-2010-170.txt

glsa-201009-01.txt

moaub02-apple.pdf

MDVSA-2010-169.txt

moaub01-cpanel.pdf

moaub01-adobe.pdf

MDVSA-2010-168.txt

macosxparental-bypass.txt

VMSA-2010-0013.txt

Packet Storm Security Tools

suricata-1.0.2.tar.gz

cvechecker-0.5.tar.gz

openssh-5.6p1.tar.gz

fwbuilder-4.1.1.tar.gz

winappdbg-1.4.tar.bz2

athena-ssl-cipher-check_v052.tar.gz

peludo-cachicamo-v1.0.0.tar.gz

WVE Recent Entries

WVE-2008-0013: TKIP Replay and Plaintext Discovery

WVE-2008-0012: Active Https Cookie Hijacking

WVE-2008-0011: Auto Immune Attack

WVE-2008-0010: Marvell Null SSID Association Request

WVE-2008-0009: Marvell EAPOL-Key Length Overflow

WVE-2008-0008: Atheros IE Tag Overflow

WVE-2008-0007: Weaknesses in the A5/1 Cipher

WVE-2008-0006: Block ACK DoS

WVE-2008-0005: GF Mode WIDS Rogue AP Evasion

WVE-2008-0004: HT Intolerant Degradation of Service

eEye Digital Security - Zero-Day Tracker

Excel Invalid Object

Adobe PDF Buffer Overflow

Creative Software AutoUpdate Engine ActiveX stack buffer overflow

Internet Connection Sharing DoS

RPC Memory Exhaustion

US-CERT Technical Alerts and Bulletins

SB10-242: Vulnerability Summary for the Week of August 23, 2010

TA10-238A: Microsoft Windows Insecurely Loads Dynamic Libraries

SB10-235: Vulnerability Summary for the Week of August 16, 2010

TA10-231A: Adobe Reader and Acrobat Vulnerabilities

SB10-228: Vulnerability Summary for the Week of August 9, 2010

TA10-223A: Adobe Flash and AIR Vulnerabilities

TA10-222A: Microsoft Updates for Multiple Vulnerabilities

SB10-221: Vulnerability Summary for the Week of August 2, 2010

SB10-214: Vulnerability Summary for the Week of July 26, 2010

SB10-207: Vulnerability Summary for the Week of July 19, 2010

US-CERT Technical Cyber Security Alerts

TA10-238A: Microsoft Windows Insecurely Loads Dynamic Libraries

TA10-231A: Adobe Reader and Acrobat Vulnerabilities

TA10-223A: Adobe Flash and AIR Vulnerabilities

TA10-222A: Microsoft Updates for Multiple Vulnerabilities

TA10-194B: Oracle Updates for Multiple Vulnerabilities

TA10-194A: Microsoft Updates for Multiple Vulnerabilities

TA10-162A: Adobe Flash and AIR Vulnerabilities

TA10-159B: Microsoft Updates for Multiple Vulnerabilities

TA10-159A: Adobe Flash, Reader, and Acrobat Vulnerability

TA10-131A: Microsoft Updates for Multiple Vulnerabilities

SecuriTeam

Mozilla Firefox nsTreeSelection Dangling Pointer Code Execution Vulnerability

TANDBERG Video Communication Server Arbitrary File Retrieval Vulnerability

Mozilla Firefox Plugin Parameter EnsureCachedAttrParamArrays Code Execution Vulnerability

VMWare VMnc Codec HexTile Encoding Buffer Overflow Vulnerability

VMware Products Movie Decoder Heap Overflow Vulnerability

Netifera - Modular Open Source Platform for Security Tools

WarVOX - Tools for Exploring, Classifying, and Auditing Telephone Systems

Webshag - Web Server Audit Tool

FSpy - Linux Filesystem Activity Monitoring

Krb5 kadmind Denial Of Service vulnerability

HP Insight Control for Linux Multiple Vulnerabilities

Skype Client for Mac Chat Unicode Denial of Service vulnerability

Multiple Sourcefire Products Static Web SSL Keys Vulnerability

Samba 3.3.12 Memory Corruption Vulnerability

Ipswitch Imail Server Queuemgr Format String Code Execution Vulnerability

Ipswitch Imail Server List Mailer Reply-To Address Code Execution Vulnerability

HP OpenView Network Node Manager Execution of Arbitrary Code Vulnerability

HP OpenView NNM webappmon.exe execvp_nc Code Execution Vulnerability

HP Virtual Connect Enterprise Manager for Windows XSS vulnerability

Trango Broadband Wireless Rogue SU Authentication Bug

Exposing HMS HICP Protocol and Intellicom NetBiterConfig.exe Remote Buffer Overflow

Family Connections Multiple Remote Vulnerabilities

VideoCache vccleaner Root Vulnerability

QuickHeal Antivirus 2010 Local Privilege Escalation

Why Silent Updates Boost Security

PDF Silent HTTP Form Repurposing Attacks

Frame Pointer Overwrite Demonstration (Linux)

Format String Exploitation Demonstration (Linux)

Hacking SOHO Routers

Security Central - Infoworld

Women perform well on Defcon social engineering test

Secunia security program automatically tracks down, applies patches

Skyrocketing viruses, less danger?

Global spam hits all-time high

Microsoft still mum on programs prone to DLL hijacking attacks

Eight great virtual appliances for VMware, free for the downloading

What it takes to shut down a botnet

Google disputes bug patching report

Scammers prey on required Twitter update

Escape from Windows DLL security hell

Mobile security: Your smartphone is safer than your PC, for now

Cisco patches bug that caused partial Internet blackout

No good can come of a malware convention

How to thwart the new DLL hijacks

Updated 'blue screen of death' rootkit now targeting 64-bit Windows

The Pentagon plays security catch-up

Microsoft boosts access to secure development guidelines

Sun, Microsoft, and Mozilla leave the most vulnerabilities unpatched

Windows DLL exploits boom

Zero-day exploits spur uptick in Adobe updates

Help Net Security - Linux Software

Shorewall 4.4.12.1

Firewall Builder 4.1.1

fwknop 2.0.0 RC1

strongSwan 4.4.1

Hardening Patch for PHP 5.1.6 0.4.15

Microsoft Security Bulletins

MS10-060 - Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime and in Microsoft Silverlight Could Allow Remote Code Execution (2265906)

MS10-059 - Important: Vulnerabilities in the Tracing Feature for Services Could Allow Elevation of Privilege (982799)

MS10-058 - Important: Vulnerabilities in TCP/IP Could Allow Elevation of Privilege (978886)

MS10-057 - Important: Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707)

MS10-056 - Critical: Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638)

MS10-055 - Critical: Vulnerability in Cinepak Codec Could Allow Remote Code Execution (982665)

MS10-054 - Critical: Vulnerabilities in SMB Server Could Allow Remote Code Execution (982214)

MS10-053 - Critical: Cumulative Security Update for Internet Explorer (2183461)

MS10-052 - Critical: Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (2115168)

MS10-051 - Critical: Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (2079403)

MS10-050 - Important: Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (981997)

MS10-049 - Critical: Vulnerabilities in SChannel could allow Remote Code Execution (980436)

MS10-048 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2160329)

MS10-047 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (981852)

MS10-046 - Critical: Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198)

MS10-045 - Important: Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)

MS10-044 - Critical: Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution (982335)

MS10-043 - Critical: Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276)

MS10-042 - Critical: Vulnerability in Help and Support Center Could Allow Remote Code Execution (2229593)

MS10-041 - Important: Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)

MS10-040 - Important: Vulnerability in Internet Information Services Could Allow Remote Code Execution (982666)

MS10-039 - Important: Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2028554)

MS10-038 - Important: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (2027452)

MS10-037 - Important: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege (980218)

MS10-036 - Important: Vulnerability in COM Validation in Microsoft Office Could Allow Remote Code Execution (983235)

SecurityDOT Articles

Using TAR with Bunzip2 files

Setting the SUID/SGID bits: Giving a program YOUR permissions when it runs

Setting up hamachi on linux

How to disable opera 9 torrents support

How Shellcodes Work

How To Automate Spamcop Submissions

How To Save Traffic With Apache2's mod_deflate

How to scan your Linux-Distro for Root Kits

How To Test Your Linux Firewall

Optimizing DSPAM + MySQL 4.1

SecurityDOT Exploits

XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability

XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability

XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability

Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)

Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)

Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)

Safari 3 for Windows Beta Remote Command Execution PoC

Ace-FTP Client 1.24a Remote Buffer Overflow PoC

MoviePlay 4.76 .lst File Local Buffer Overflow Exploit

e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit

Help Net Security - Windows Software

RegRun Reanimator 6.9.7.03

Comodo Internet Security 5.0.161695.1120 RC

WinGuard Pro 7.3.5

Rising PC Doctor 6.0.2.39

CCleaner 2.35.1223

REFOG Personal Monitor 6.2.2.1107

BestCrypt 8.20.7.2

Wireshark 1.4.0

Outpost Security Suite Pro 7.0.3 (3392.517.1242)

Spytech SpyAgent 7.20.10

WindowSecurity.com

How To Protect Against Eves Droppers

Security Log Management Tips

GFI LANguard - Voted WindowSecurity.com Readers' Choice Award Winner - Patch Management

Product Review: ObserveIT Remote Access Auditor

Securing Remote Desktop Services in Windows Server 2008 R2

Analyzing Wireless Network Security at the Packet Level

Reasons to Look at Event Viewer in Windows 2008 and Windows 7

Quest GPOADmin - Voted WindowSecurity.com Readers' Choice Award Winner -Group Policy Management

VulnWatch

milw0rm.com

BigAnt Server <= 2.50 SP6 Local (ZIP File) Buffer Overflow PoC #2

Joomla com_mytube (user_id) Blind SQL Injection Exploit

Joomla com_jinc (newsid) Blind SQL Injection Vulnerability

Snort < 2.8.5 Unified1 Output Denial of Service Exploit

WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities

Loggix Project <= 9.4.5 Multiple Remote File Inclusion Vulnerabilities

ProdLer <= 2.0 (prodler.class.php sPath) RFI Vulnerability

CMScontrol 7.x (index.php id_menu) SQL Injection Vulnerability

cP Creator 2.7.1 (Cookie tickets) Remote SQL Injection Exploit

Winplot (.wp2 File) Local Buffer Overflow Exploit

Bugtraq

Vulnerabilities in CMS WebManager-Pro

{PRL} Novell Netware OpenSSH Remote Stack Overflow

Moovida Media Player version 2.0.0.15 Insecure DLL Hijacking Vulnerability (libc.dll,quserex.dll)

[ MDVSA-2010:168 ] openssl

[ MDVSA-2010:169 ] mozilla-thunderbird

[USN-982-1] Wget vulnerability

XSS vulnerability in ArtGK CMS

Online Binary Planting Exposure Test

XSS vulnerability in Rumba CMS tags

XSS vulnerability in ArtGK CMS forum

XSS vulnerability in Rumba CMS

Tortoise SVN DLL Hijacking Vulnerability

XSS vulnerability in Amiro.CMS FAQ

VMSA-2010-0013 VMware ESX third party updates for Service Console

SecurityDot Vulnerabilities

Oracle Highly Interactive Client CVE-2009-1981 Unspecified Local Vulnerability

Oracle E-Business Suite CVE-2009-1986 Remote Oracle Applications Manager Vulnerability

Oracle PeopleSoft CVE-2009-1989 Remote PeopleSoft Enterprise FMS Vulnerability

Oracle Database CVE-2009-1020 Network Foundation Remote Vulnerability

Oracle Database CVE-2009-1969 Remote Auditing Vulnerability

Oracle PeopleSoft Enterprise HRMS eProfile Manager CVE-2009-1988 Remote Vulnerability

Oracle E-Business Suite CVE-2009-1982 Remote Oracle Applications Framework Vulnerability

Oracle Database CVE-2009-1973 Remote Virtual Private Database Vulnerability

Oracle Database CVE-2009-1015 Remote Core RDBMS Vulnerability

Oracle Database CVE-2009-1019 Remote Network Authentication Vulnerability

Oracle E-Business Suite CVE-2009-1980 Remote Vulnerability

Oracle Config Management CVE-2009-1967 Remote Unspecified Vulnerability

Oracle Complex Event Processing CVE-2009-1523 Remote Vulnerability

Oracle Secure Backup CVE-2009-1978 Remote Oracle Secure Backup Vulnerability

Oracle Database CVE-2009-1968 Remote Secure Enterprise Search Vulnerability

Hack In The Box

HITBSecConf back with new features

IBM X-Force backs-off Google as major patch offender

Murdoch Reportersâ€™ Phone Hacking Was Endemic, Victimized Hundreds

Northrop Grumman takes blame for Va. IT services outage

India wants local servers from RIM, Google, Skype

IT security workers oblivious to social networking risks

Privacy in iTunes Ping

Phishing scam targets fast food customers

Microsoft Releases Application Security Toolkit for Developers

HP to Buy 3Par for $2.35 Billion as Dell Walks Away

Facebook adds new remote log-out security feature

20 Must-Have Firefox Add-ons

Hackers leak 'Survivor' finalists' names

Recruiter faces possible reprimand for throwing away sensitive info

Cesar Cerrudo to demo bypass of Windows Service Isolation feature

New Apple TV - Did Jobs really just introduce a $99 Mac?

That iPhone could rat you out

Mobile Device Poll's Chilling Results

Five Ways to Stop Mass SQL Injection Attacks

Microsoft Releases 'Fix It' for DLL Hole

German ID cards hacked by the CCC

Apple's elephant in the cloud

Russian cops cuff 10 ransomware Trojan suspects

How to Design a Secure DMZ

Feds crack phone clone scam that cost Sprint $15m

Infosec Writers Latest Security Papers

Experimental Review of IPSec Features to Enhance IP Security

Cloud Computing – Storm Clouds or is it Smooth Flying?

The Evolving World of Computer Security and Laws

Web Access Management and Single Sign-On

Reverse Honey Trap

The Phishing Guide

Shedding Light on Quantum Cryptography

Securing a Virtual Environment

Investigating the SANS/CWE Top 25 Most Dangerous Programming Errors List

Hacking Tools & Techniques and How to Protect Your Network from Them

This page should reload every hour to keep this information up to date.
If your browser does not support automatic reloads, you will need to reload your browser manually.

Copyright © 2010 Dave Moats.  All rights reserved.  Links: Copyright © by their respective owners.
NO WARRANTIES EXTENDED.  Void where prohibited by law.  Please report any issues or broken links.
You may link to this site freely from your own site.  You may quote from this site, but please include a link to the original source on the originating site.