{"id":11704,"date":"2018-03-09T08:00:13","date_gmt":"2018-03-09T16:00:13","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/03\/09\/news-5474\/"},"modified":"2018-03-09T08:00:13","modified_gmt":"2018-03-09T16:00:13","slug":"news-5474","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2018\/03\/09\/news-5474\/","title":{"rendered":"TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of March 5, 2018"},"content":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 09 Mar 2018 15:40:21 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Today marks the first day of South by Southwest (SXSW) here in Austin and if you happen to be in town for the event, Trend Micro will be there! Starting tomorrow, Trend Micro will be exhibiting at the SXSW Job Market<\/a> in booth 523. The SXSW Job Market is being held on March 10-11, 2018 at the Palmer Events Center. In addition, our very own Mark Nunnikhoven<\/a> will be speaking during SXSW Interactive on Monday, March 12th<\/sup> at 11am Central on the topic of \u201cRogue Robots and the Potential for Cyber Attack.\u201d For a sneak peek of what his session will cover, you can watch Marc\u2019s two minute video here: https:\/\/youtu.be\/O0fTloMXKns<\/a>.<\/p>\n

Next week, a number of us will be at CanSecWest in Vancouver where the Zero Day Initiative will host the 2018 Pwn2Own contest. For the latest developments during the contest, please follow the Zero Day Initiative on Twitter at twitter.com\/thezdi<\/a>. Daily wrap-ups will be posted on the Zero Day Initiative blog at www.zerodayinitiative.com\/blog<\/a>. I\u2019ll also be blogging on the upcoming coverage we\u2019ll have for any of the vulnerabilities found during the contest. Stay tuned!<\/p>\n

Zero-Day Filters<\/strong><\/p>\n

There are 20 new zero-day filters covering seven vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and\/or optimize performance. You can browse the list of published advisories<\/a> and upcoming advisories<\/a> on the Zero Day Initiative<\/a> website. You can also follow the Zero Day Initiative on Twitter @thezdi<\/a> and on their blog<\/a>.<\/p>\n

Adobe (9)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30494: HTTP: Adobe Acrobat Pro DC colorConvertPage Buffer Overflow Vulnerability (ZDI-18-212)<\/li>\n
  • 30511: HTTP: Adobe Acrobat Pro DC XFA picture Use-After-Free Vulnerability (ZDI-18-176)<\/li>\n
  • 30515: HTTP: Adobe Acrobat Pro DC XPS Font Parsing Memory Corruption Vulnerability (ZDI-18-172)<\/li>\n
  • 30527: HTTP: Adobe Acrobat Pro TIFF Information Disclosure Vulnerability (ZDI-18-210)<\/li>\n
  • 30528: HTTP: Adobe Acrobat Pro XPS Vector Memory Corruption Vulnerability (ZDI-18-208)<\/li>\n
  • 30531: HTTP: Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Vulnerability(ZDI-18-194)<\/li>\n
  • 30535: HTTP: Adobe Acrobat Pro JP2 Vector Information Disclosure Vulnerability (ZDI-18-175)<\/li>\n
  • 30538: HTTP: Adobe Acrobat Pro XPS Parsing Information Disclosure Vulnerability (ZDI-18-211)<\/li>\n
  • 30539: HTTP: Adobe Acrobat Reader OCG objects Array Memory Corruption Vulnerability (ZDI-18-173)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Advantech (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30463: HTTP: Advantech WebAccess SCADA certUpdate.asp filename Directory Traversal (ZDI-18-142)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Dell (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30480: HTTPS: Dell EMC Storage Manager EmConfigMigration Servlet Directory Traversal (ZDI-18-129)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Foxit (4)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30406: ZDI-CAN-5437: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n
  • 30407: ZDI-CAN-5438: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n
  • 30485: ZDI-CAN-5489: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n
  • 30486: ZDI-CAN-5491: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

GE (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30516: ZDI-CAN-5517: Zero Day Initiative Vulnerability (GE MDS PulseNET)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Microsoft (3)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30389: HTTP: Microsoft Edge Select Element Information Disclosure Vulnerability (ZDI-18-167)<\/li>\n
  • 30493: SMB: Microsoft JET Database Engine Excel Component Buffer Overflow (ZDI-17-839)<\/li>\n
  • 30505: HTTP: Microsoft JET Database Engine Excel Component Buffer Overflow (ZDI-17-839)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Rockwell (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30487: ZDI-CAN-5496: Zero Day Initiative Vulnerability (Rockwell Automation Arena)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Missed Last Week\u2019s News?<\/strong><\/p>\n

Catch up on last week\u2019s news in my weekly recap<\/a>.<\/p>\n

The post TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of March 5, 2018<\/a> appeared first on <\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 09 Mar 2018 15:40:21 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Today marks the first day of South by Southwest (SXSW) here in Austin and if you happen to be in town for the event, Trend Micro will be there! Starting tomorrow, Trend Micro will be exhibiting at the SXSW Job Market in booth 523. The SXSW Job Market is being held on March 10-11, 2018…<\/p>\n

The post TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of March 5, 2018<\/a> appeared first on <\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10384,714,10415],"class_list":["post-11704","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-network","tag-security","tag-zero-day-initiative"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/11704","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=11704"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/11704\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=11704"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=11704"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=11704"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}