TippingPoint Threat Intelligence and Zero-Day Coverage

On Wednesday night, the Chicago Cubs won the Major League Baseball World Series for the first time since 1908, breaking the longest drought in all major North American sports of 108 years. They were down three games to one and the probability of them winning the last three games to win the series was a longshot. But after winning two games and enduring a crazy game seven that included a rain delay and an extra inning, the Cubs finally broke the Curse of the Billy Goat. I’m not a fan of the team (too long of a story for this blog) but I can appreciate a great sports story. Congratulations to the Chicago Cubs for a great comeback.

In last week’s blog, I highlighted the fact that our Zero Day Initiative was recognized by Frost & Sullivan as the leading vulnerability research organization for 2015 and I congratulated the team for being the leading vulnerability research organization since 2010. I’m usually never wrong (I’ll stick to that story!), but when I am, I make sure to correct any errors as soon as possible. While our ZDI streak isn’t close to the 108-year streak the Cubs just broke, it’s a little longer than I originally indicated. The Zero Day Initiative has been the leader in vulnerability research since 2007! So I’ll extend my congratulations to the team again on this tremendous accomplishment! If you’d like to see the results, you can download the full report: Analysis of Global Public Vulnerability Research Market, 2015.

Zero-Day Filters

There are 24 new zero-day filters covering seven vendors in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative website.

Adobe (7)

25462: ZDI-CAN-4042: Zero Day Initiative Vulnerability (Adobe Flash)
25463: ZDI-CAN-4043: Zero Day Initiative Vulnerability (Adobe Flash)
25464: ZDI-CAN-4044: Zero Day Initiative Vulnerability (Adobe Flash)
25465: ZDI-CAN-4046: Zero Day Initiative Vulnerability (Adobe Flash)
25466: ZDI-CAN-4048: Zero Day Initiative Vulnerability (Adobe Flash)
25467: ZDI-CAN-4047: Zero Day Initiative Vulnerability (Adobe Flash)
25468: ZDI-CAN-4049: Zero Day Initiative Vulnerability (Adobe Flash)

Apple (2)

	25559: PWN2OWN ZDI-CAN-4187: Zero Day Initiative Vulnerability (Apple Safari) 25561: PWN2OWN ZDI-CAN-4182: Zero Day Initiative Vulnerability (Apple Safari)

Google (3)

	25556: PWN2OWN ZDI-CAN-4179: Zero Day Initiative Vulnerability (Google Chrome) 25557: ZDI-CAN-4185: Zero Day Initiative Vulnerability (Google Chrome) 25558: PWN2OWN ZDI-CAN-4180: Zero Day Initiative Vulnerability (Google Chrome)

Hewlett Packard Enterprise (8)

25469: ZDI-CAN-4053: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25470: ZDI-CAN-4053: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25471: ZDI-CAN-4054: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25472: ZDI-CAN-4054: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25482: ZDI-CAN-4055: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25483: ZDI-CAN-4055: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25484: ZDI-CAN-4057: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)
25496: ZDI-CAN-4056: Zero Day Initiative Vulnerability (Hewlett Packard Enterprise Intelligent Management)

Novell (1)

	12481: HTTP: Novell Messenger Import Command Buffer Overflow Vulnerability (ZDI-13-036)

Microsoft (1)

	25485: ZDI-CAN-4058: Zero Day Initiative Vulnerability (Microsoft Internet Explorer)

Trend Micro (2)

	25440: HTTP: Trend Micro Control Manager DeploymentPlan_Event_Handler Information Disclosure (ZDI-16-459) 25553: HTTPS: Trend Micro Control Manager DeploymentPlan_Event_Handler Information Disclosure (ZDI-16-459)

Missed Last Week’s News?

Catch up on last week’s news in my weekly recap.

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of October 31, 2016

Trending Articles

Practice Sheet of Right form of verbs for HSC Students

Download: FK ft Shenky – Nakuyewa ”Prod by: Shenky”

How to win at Markstrat (Markstrat Tips and Tricks) – Vodites

Ominde Commission Report and Recommendations – Ominde Report of 1964

Bureau of Internal Revenue: Regional Offices (Directory)

GO 53 on Enhancement of Ex-gratia upto 5 Lakhs Toddy Tappers in Telangana

Cakewalk CA-2A Leveling Amplifier v2.0.1.97 WiN, v2.0.1.96 OSX Incl Keygen

Mp3 Download: Mdu - Kunjenjenjena

How the kill the job , when DTP request running for long hours.

Microsoft Intune から展開しているアプリのアップデートについて

18-year-old girl was beaten for half an hour by two Northampton men in 'an...

Car crash in Dunton Bassett leaves driver in critical condition

Macky 2, Two Others In Road Accident

Application log 00000000000000089514: Could not convert queue DLVST90CLNT

Detroit mafia: D’Anna Brothers agree to plea deal

Delivery block field greyed out using VA02

Muloraki Au

【個人撮影】スマホのプライベート映像♪「中に出さないで///」カラオケ屋での生ハメ撮りが流出ｗ【リベンジポルノ】＠PornHub

BREAKING NEWS: Diamond Platnumz Is Reported Dead After Ghastly Car Accident

FIAT 500 B0111 B0112