Virus and Security Alerts

CVE-2017-14626 (imagemagick)

2017-09-21 05:29:01
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.
National Vulnerability Database
CVE-2017-14624 (imagemagick)

2017-09-21 05:29:00
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.
National Vulnerability Database
CVE-2017-14625 (imagemagick)

2017-09-21 05:29:00
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.
National Vulnerability Database
CVE-2015-5608 (joomla!)

2017-09-20 18:29:01
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
National Vulnerability Database
CVE-2014-9758 (e-commerce)

2017-09-20 18:29:00
Cross-site scripting (XSS) vulnerability in Magento E-Commerce Platform 1.9.0.1.
National Vulnerability Database
CVE-2017-14607 (imagemagick)

2017-09-20 17:29:00
In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.
National Vulnerability Database
CVE-2015-4074 (helpdesk_pro)

2017-09-20 16:29:00
Directory traversal vulnerability in the Helpdesk Pro plugin before 1.4.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter in a ticket.download_attachment task.
National Vulnerability Database
CVE-2015-4073 (helpdesk_pro)

2017-09-20 16:29:00
Multiple SQL injection vulnerabilities in the Helpdesk Pro plugin before 1.4.0 for Joomla!
National Vulnerability Database
CVE-2015-4075 (helpdesk_pro)

2017-09-20 16:29:00
The Helpdesk Pro plugin before 1.4.0 for Joomla! allows remote attackers to write to arbitrary .ini files via a crafted language.save task.
National Vulnerability Database
CVE-2015-4072 (helpdesk_pro)

2017-09-20 16:29:00
Multiple cross-site scripting (XSS) vulnerabilities in the Helpdesk Pro plugin before 1.4.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via vectors related to name and message.
National Vulnerability Database
CVE-2017-12168 (linux_kernel)

2017-09-20 08:29:00
The access_pmu_evcntr function in arch/arm64/kvm/sys_regs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service (assertion failure and host OS crash) by accessing the Performance Monitors Cycl
National Vulnerability Database
Troj/DwnLdr-ULM

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/Locky-ABW

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/OleDl-AR

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/VBSDl-AS

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/RTFDldr-U

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KMZ

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/Banker-GUN

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BEN

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-BBD

2017-09-20 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CRU

2017-09-20 00:00:00

Sophos latest virus and spyware detection
CVE-2015-4685 (realpresence_resource_manager)

2017-09-19 19:29:00
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users with access to the plcm account to gain privileges via a script in /var/polycom/cma/upgrade/scripts, related to a sudo misconfiguration.
National Vulnerability Database
CVE-2015-4683 (realpresence_resource_manager)

2017-09-19 19:29:00
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with HTTP GET requests.
National Vulnerability Database
CVE-2015-4684 (realpresence_resource_manager)

2017-09-19 19:29:00
Multiple directory traversal vulnerabilities in Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allow (1) remote authenticated users to read arbitrary files via a ..
National Vulnerability Database
CVE-2015-4681 (realpresence_resource_manager)

2017-09-19 19:29:00
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users to have unspecified impact via vectors related to weak passwords.
National Vulnerability Database
CVE-2015-4682 (realpresence_resource_manager)

2017-09-19 19:29:00
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows remote authenticated users to obtain the installation path via an HTTP POST request to PlcmRmWeb/JConfigManager.
National Vulnerability Database
CVE-2015-0689 (cloud_web_security)

2017-09-19 15:29:00
Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.
National Vulnerability Database
CVE-2017-14597 (aurora, webmail)

2017-09-19 07:29:00
AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain.
National Vulnerability Database
CVE-2017-14601 (pragyan_cms)

2017-09-19 07:29:00
Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $_GET['forwhat'], resulting in Information Disclosure.
National Vulnerability Database
CVE-2017-14600 (pragyan_cms)

2017-09-19 07:29:00
Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $_GET['del_black'], resulting in Information Disclosure.
National Vulnerability Database
CVE-2017-14571 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14564 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file,
National Vulnerability Database
CVE-2017-14569 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to a "Read Access Violation starting at STDUXPSFile!DllUnregisterServer+0x0000000000005bd5."
National Vulnerability Database
CVE-2017-14565 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file,
National Vulnerability Database
CVE-2017-14580 (xnview)

2017-09-18 17:29:01
XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000000000870f."
National Vulnerability Database
CVE-2017-14576 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to a "Possible Stack Corruption starting at Unknown Symbol @ 0x00000000049f0281."
National Vulnerability Database
CVE-2017-14573 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14567 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14562 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to an "Error Code (0xe06d7363) starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
National Vulnerability Database
CVE-2017-14570 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV near NULL starting at wow64!Wow64LdrpInitialize+0x00000000000008e1."
National Vulnerability Database
CVE-2017-14574 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV starting at Unknown Symbol @ 0x0000000004940490."
National Vulnerability Database
CVE-2017-14579 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "Read Access Violation on Control Flow starting at STDUJBIG2File!DllGetClassObject+0x0000000000005b70."
National Vulnerability Database
CVE-2017-14572 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14568 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14578 (irfanview)

2017-09-18 17:29:01
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file,
National Vulnerability Database
CVE-2017-14566 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14575 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14577 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14563 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "Read Access Violation on Block Data Move starting at STDUXPSFile!DllUnregisterServer+0x0000000000005311."
National Vulnerability Database
CVE-2017-14561 (stdu_viewer)

2017-09-18 17:29:01
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file,
National Vulnerability Database
CVE-2017-14554 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to a "Possible Stack Corruption starting at STDUDjVuFile!DllUnregisterServer+0x000000000000d908."
National Vulnerability Database
CVE-2017-14556 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at STDUDjVuFile!DllUnregisterServer+0x000000000000da27."
National Vulnerability Database
CVE-2017-14547 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .mobi file, related to a "Read Access Violation starting at STDUMOBIFile!DllUnregisterServer+0x000000000002efc0."
National Vulnerability Database
CVE-2017-14553 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at STDUDjVuFile!DllUnregisterServer+0x00000000000085f5."
National Vulnerability Database
CVE-2017-14540 (irfanview)

2017-09-18 17:29:00
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .svg file,
National Vulnerability Database
CVE-2017-14558 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at STDUDjVuFile!DllUnregisterServer+0x0000000000018cc2."
National Vulnerability Database
CVE-2017-14549 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "Heap Corruption starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
National Vulnerability Database
CVE-2017-14539 (irfanview)

2017-09-18 17:29:00
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .svg file,
National Vulnerability Database
CVE-2017-14541 (xnview)

2017-09-18 17:29:00
XnView Classic for Windows Version 2.40 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .svg file,
National Vulnerability Database
CVE-2017-14555 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file,
National Vulnerability Database
CVE-2017-14551 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file,
National Vulnerability Database
CVE-2017-14545 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file,
National Vulnerability Database
CVE-2017-14557 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at STDUDjVuFile!DllUnregisterServer+0x000000000000dd3f."
National Vulnerability Database
CVE-2017-14546 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file, related to an "Error Code (0xe06d7363) starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
National Vulnerability Database
CVE-2017-14559 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "Read Access Violation on Block Data Move starting at STDUXPSFile!DllUnregisterServer+0x0000000000005af2."
National Vulnerability Database
CVE-2017-14548 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at STDUDjVuFile!DllUnregisterServer+0x000000000000854d."
National Vulnerability Database
CVE-2017-14560 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file,
National Vulnerability Database
CVE-2017-14544 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file,
National Vulnerability Database
CVE-2017-14542 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .epub file, related to a "Read Access Violation on Block Data Move starting at STDUEPubFile!DllUnregisterServer+0x0000000000010262."
National Vulnerability Database
CVE-2017-14552 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at STDUDjVuFile!DllUnregisterServer+0x000000000000d9a9."
National Vulnerability Database
CVE-2017-14550 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to a "Possible Stack Corruption starting at STDUDjVuFile!DllUnregisterServer+0x000000000000e8b8."
National Vulnerability Database
CVE-2017-14538 (xnview)

2017-09-18 17:29:00
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file,
National Vulnerability Database
CVE-2017-14543 (stdu_viewer)

2017-09-18 17:29:00
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file,
National Vulnerability Database
CVE-2014-6106 (security_identity_manager)

2017-09-18 15:29:00
Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of users for requests that can cause cross-site scripting attacks, web cache poisoning,
National Vulnerability Database
CVE-2017-14534 (nexusphp)

2017-09-18 04:29:00
Cross Site Scripting (XSS) exists in NexusPHP 1.5.beta5.20120707 via the PATH_INFO to location.php, related to PHP_SELF.
National Vulnerability Database
CVE-2017-12156 (moodle)

2017-09-18 04:29:00
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
National Vulnerability Database
CVE-2017-14532 (imagemagick)

2017-09-18 01:29:00
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
National Vulnerability Database
CVE-2017-14531 (imagemagick)

2017-09-18 01:29:00
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c.
National Vulnerability Database
CVE-2017-14533 (imagemagick)

2017-09-18 01:29:00
ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c.
National Vulnerability Database
CVE-2017-9333 (openwebif)

2017-09-18 01:29:00
OpenWebif 1.2.5 allows remote code execution via a URL to the CallOPKG function in the IpkgController class in plugin/controllers/ipkg.py, when the URL refers to an attacker-controlled web site with a Trojan horse package.
National Vulnerability Database
CVE-2017-14528 (imagemagick)

2017-09-18 00:29:00
The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has incorrect expectations about whether LibTIFF TIFFGetField return values imply that data validation has occurred,
National Vulnerability Database
CVE-2017-14529 (binutils)

2017-09-18 00:29:00
The pe_print_idata function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles HintName vector entries,
National Vulnerability Database
Java/Adwind-BDO

2017-09-18 00:00:00

Sophos latest virus and spyware detection
Troj/VBS-OR

2017-09-18 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AXES

2017-09-18 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DQJ

2017-09-18 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BDN

2017-09-18 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CQP

2017-09-18 00:00:00

Sophos latest virus and spyware detection
Troj/Delf-GFO

2017-09-18 00:00:00

Sophos latest virus and spyware detection
CVE-2017-14519 (poppler)

2017-09-17 23:29:00
In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opShowText, and Gfx::doShowText calls (aka a Gfx.cc infinite loop).
National Vulnerability Database
CVE-2017-14520 (poppler)

2017-09-17 23:29:00
In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files.
National Vulnerability Database
CVE-2017-14517 (poppler)

2017-09-17 23:29:00
In Poppler 0.59.0, a NULL Pointer Dereference exists in the XRef::parseEntry() function in XRef.cc via a crafted PDF document.
National Vulnerability Database
CVE-2017-14518 (poppler)

2017-09-17 23:29:00
In Poppler 0.59.0, a floating point exception exists in the isImageInterpolationRequired() function in Splash.cc via a crafted PDF document.
National Vulnerability Database
CVE-2017-14515 (w15e_firmware)

2017-09-17 22:29:00
Heap-based Buffer Overflow on Tenda W15E devices before 15.11.0.14 allows remote attackers to cause a denial of service (temporary HTTP outage and forced logout) via unspecified vectors.
National Vulnerability Database
CVE-2017-14514 (w15e_firmware)

2017-09-17 22:29:00
Directory Traversal on Tenda W15E devices before 15.11.0.14 allows remote attackers to read unencrypted files via a crafted URL.
National Vulnerability Database
CVE-2017-14513 (metinfo)

2017-09-17 21:29:00
Directory traversal vulnerability in MetInfo 5.3.17 allows remote attackers to read information from any ini format file via the f_filename parameter in a fingerprintdo action to admin/app/physical/physical.php.
National Vulnerability Database
CVE-2017-14512 (nexusphp)

2017-09-17 21:29:00
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an editforum action, a different vulnerability than CVE-2017-12981.
National Vulnerability Database
CVE-2017-14508 (sugarcrm)

2017-09-17 21:29:00
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 (and Sugar Community Edition 6.5.26).
National Vulnerability Database
CVE-2017-14509 (sugarcrm)

2017-09-17 21:29:00
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 (and Sugar Community Edition 6.5.26).
National Vulnerability Database
CVE-2017-14510 (sugarcrm)

2017-09-17 21:29:00
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 (and Sugar Community Edition 6.5.26).
National Vulnerability Database
CVE-2017-14504 (graphicsmagick)

2017-09-17 19:29:00
ReadPNMImage in coders/pnm.c in GraphicsMagick 1.3.26 does not ensure the correct number of colors for the XV 332 format, leading to a NULL Pointer Dereference.
National Vulnerability Database
CVE-2017-14505 (imagemagick)

2017-09-17 19:29:00
DrawGetStrokeDashArray in wand/drawing-wand.c in ImageMagick 7.0.7-1 mishandles certain NULL arrays,
National Vulnerability Database
CVE-2017-14502 (libarchive)

2017-09-17 18:29:00
read_header in archive_read_support_format_rar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read in archive_read_format_rar_read_header.
National Vulnerability Database
CVE-2017-14501 (libarchive)

2017-09-17 18:29:00
An out-of-bounds read flaw exists in parse_file_info in archive_read_support_format_iso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archive_read_format_iso9660_read_header.
National Vulnerability Database
CVE-2017-14503 (libarchive)

2017-09-17 18:29:00
libarchive 3.3.2 suffers from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a specially crafted lha archive, related to lha_crc16.
National Vulnerability Database
Troj/NanoCor-SP

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/PHPMailr-E

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-BAJ

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/NanoCor-SV

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BDL

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/RTFDldr-Q

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BDM

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KLQ

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/Ransom-ERC

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KIG

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BDK

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KLO

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/Lethic-CB

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KLP

2017-09-17 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-BAH

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/Lethic-CA

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/Inject-CTJ

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-BAI

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/Java-AIE

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/JavaDl-AAL

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CQO

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KIH

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AXEP

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BDJ

2017-09-16 00:00:00

Sophos latest virus and spyware detection
VBS/Drop-OU

2017-09-16 00:00:00

Sophos latest virus and spyware detection
Troj/Remcos-V

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Banker-GUL

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/VB-JNU

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Delf-GFM

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BDH

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Java/DwnLdr-UKS

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AXEG

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Decept-BC

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KIF

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/HTADl-CB

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DOZ

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/HtmlDl-Z

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Emogen-CY

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KLG

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Emogen-CW

2017-09-15 00:00:00

Sophos latest virus and spyware detection
OSX/Bckdr-RVC

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Decept-BD

2017-09-15 00:00:00

Sophos latest virus and spyware detection
JS/DwnLdr-UKT

2017-09-15 00:00:00

Sophos latest virus and spyware detection
OSX/FkCodec-F

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AXEH

2017-09-15 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KGD

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Troj/Nanocor-SH

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KHD

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-BAA

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Troj/Mdrop-HYY

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Troj/Nanocor-SK

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KGG

2017-09-05 00:00:00

Sophos latest virus and spyware detection
JS/DwnLdr-UIM

2017-09-05 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-COD

2017-09-04 00:00:00

Sophos latest virus and spyware detection
Troj/Lethic-BZ

2017-09-04 00:00:00

Sophos latest virus and spyware detection
Troj/fareit-DPX

2017-09-04 00:00:00

Sophos latest virus and spyware detection
Troj/TrickBo-AA

2017-09-04 00:00:00

Sophos latest virus and spyware detection
Troj/Spy-AMQ

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Lethic-BX

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Delf-GDY

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-AZW

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Andr/Clicker-HQ

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Miner-CZ

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AYP

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DPW

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Lethic-BY

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AYM

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Andr/Xgen-JU

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Remcos-AA

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AYO

2017-09-03 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KFR

2017-09-03 00:00:00

Sophos latest virus and spyware detection
VBS/DwnLdr-UIF

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KFP

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-AZU

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMF

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/Zbot-LTY

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DPV

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/Delph-B

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/PDFDwnl-BF

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/Delf-GDZ

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/PDFDwn-O

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/Trickbo-Z

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-AZT

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/FakeMS-AT

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AWZX

2017-09-02 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-COA

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AYI

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/Drop-OT

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CNY

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KFF

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/Elenoo-B

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/Wonton-ABP

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KFE

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/Elenoo-C

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KFC

2017-09-01 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AYE

2017-08-31 00:00:00

Sophos latest virus and spyware detection
JS/DwnLdr-UHZ

2017-08-31 00:00:00

Sophos latest virus and spyware detection
VBS/DwnLdr-UHV

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KCA

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/Ransom-EQO

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AYH

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KBZ

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/Gozi-KD

2017-08-31 00:00:00

Sophos latest virus and spyware detection
VBS/DwnLdr-UHR

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/TrickBt-E

2017-08-31 00:00:00

Sophos latest virus and spyware detection
Troj/VBInjec-LZ

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Troj/Locky-AAX

2017-08-29 00:00:00

Sophos latest virus and spyware detection
JS/DwnLdr-UHD

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Troj/Lnk-AP

2017-08-29 00:00:00

Sophos latest virus and spyware detection
VBS/Drop-OP

2017-08-29 00:00:00

Sophos latest virus and spyware detection
VBS/Dldr-PX

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-AYK

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DPC

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Andr/Fyec-E

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KGO

2017-08-29 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KDP

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-GG

2017-08-28 00:00:00

Sophos latest virus and spyware detection
OSX/GetShell-AC

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-AYC

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Androm-SX

2017-08-28 00:00:00

Sophos latest virus and spyware detection
JS/DwnLdr-UHB

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DPA

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Gozi-JX

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KDO

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KDN

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Gozi-JY

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AXZ

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KDM

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/DocDro-K

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KGM

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Mal/Emotet-H

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Delf-GDM

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DPB

2017-08-28 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KDL

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMV

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMU

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KGG

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-FW

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AXAA

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AXW

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-GD

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/PDFDl-X

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Andr/Xgen-JG

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-GF

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-GE

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AXX

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Dridex-YZ

2017-08-27 00:00:00

Sophos latest virus and spyware detection
JS/Drop-OO

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AXY

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Fareit-DOR

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AWZ

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KDK

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/DocDro-I

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMY

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-GB

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Qbot-DU

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/JavaBz-ASG

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/MSILInj-OJ

2017-08-27 00:00:00

Sophos latest virus and spyware detection
Troj/Zbot-LTR

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KGF

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/QBotMem-C

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Miner-DD

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/MsilKlg-Q

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Dldr-PW

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AWZY

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/TrikBot-N

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Recam-X

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Injecto-UI

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Locky-AAW

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Miner-DC

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-FY

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AWZZ

2017-08-26 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMQ

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMP

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/Locky-AAT

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Mal/PSDL-F

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-FS

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/Locky-AAU

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Java/Adwind-AXZ

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMO

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Java/DwnLdr-UGT

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KGC

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Mal/Inject-GB

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/MSIL-KGE

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/NanoCor-SI

2017-08-25 00:00:00

Sophos latest virus and spyware detection
Troj/Swrort-AT

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Pupy-A

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/BGen-AH

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Wonton-ABO

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AXO

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/PDFUri-CMC

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Inject-CSO

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Agent-AWZR

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KCU

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/PDFJs-AJP

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Phish-AXN

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-FM

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/DocDl-KCV

2017-08-24 00:00:00

Sophos latest virus and spyware detection
Troj/Emotet-FP

2017-08-24 00:00:00

Sophos latest virus and spyware detection