Diaries by Keyword - SANS Internet Storm Center

Handler on Duty: Xavier Mertens

Threat Level: green

Date	Author	Title
2018-04-30	Remco Verhoef	Another approach to webapplication fingerprinting
2015-11-09	John Bambenek	ICYMI: Widespread Unserialize Vulnerability in Java
2015-04-23	Bojan Zdrnja	When automation does not help
2014-11-25	Adrien de Beaupre	Less is, umm, less?
2014-01-24	Chris Mohan	Security Update for OS X for CVE-2014-1252 http://support.apple.com/kb/HT6117
2014-01-17	Russ McRee	Massive RFI scans likely a free web app vuln scanner rather than bots
2013-04-19	Russ McRee	Java 8 release schedule delayed for renewed focus on security
2012-09-01	Russ McRee	Blackhole targeting Java vulnerability via fake Microsoft Services Agreement email phish
2012-08-31	Russ McRee	Not so fast: Java 7 Update 7 critical vulnerability discovered in less than 24 hours
2010-12-24	Daniel Wesemann	A question of class
2010-12-10	Mark Hofman	EXIM MTA vulnerability
2010-08-05	Manuel Humberto Santander Pelaez	Adobe Acrobat Font Parsing Integer Overflow Vulnerability
2010-07-20	Manuel Humberto Santander Pelaez	LNK vulnerability now with Metasploit module implementing the WebDAV method
2010-07-20	Manuel Humberto Santander Pelaez	iTunes buffer overflow vulnerability
2010-07-20	Manuel Humberto Santander Pelaez	Lowering infocon back to green
2010-07-04	Manuel Humberto Santander Pelaez	Interesting analysis of the PHP SplObjectStorage Vulnerability
2010-06-24	Jason Lam	Help your competitor - Advise them of vulnerability
2010-06-15	Manuel Humberto Santander Pelaez	Apple releases advisory for Mac OS X - Multiple vulnerabilities discovered
2010-05-23	Manuel Humberto Santander Pelaez	Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability
2009-12-24	Guy Bruneau	Microsoft IIS File Parsing Extension Vulnerability
2009-11-13	Adrien de Beaupre	TLS & SSLv3 renegotiation vulnerability explained
2009-11-13	Adrien de Beaupre	Flash Origin Policy Attack
2009-11-05	Swa Frantzen	TLS Man-in-the-middle on renegotiation vulnerability made public
2009-07-13	Adrien de Beaupre	Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution
2008-12-23	Patrick Nolan	MS ACK's Vulnerability in SQL Server which Could Allow Remote Code Execution
2008-12-10	Mark Hofman	Microsoft wordpad text converter issue
2008-07-17	Mari Nichols	Firefox Releases 3.0.1 and fixes 3 security vulnerabilities
2008-07-16	Maarten Van Horenbeeck	Firefox 2.0.0.16 fixes two security vulnerabilities
2008-07-15	Maarten Van Horenbeeck	Oracle (and BEA, Hyperion and TimesTen) critical patch update July 15th, 2008
2008-07-15	Maarten Van Horenbeeck	BlackBerry PDF parsing vulnerability
2008-06-19	William Stearns	Firefox vunerability