Security Intelligence Operations

Security Intelligence Operations
Inform, Protect, Respond
Early-warning intelligence, threat and vulnerability analysis, and proven Cisco mitigation solutions to help protect networks

Latest Threat Information

Resources

Cisco Products and Services

Cisco Emergency Response

Cisco Emergency Response Overview

Report a potential vulnerability in Cisco products: psirt@cisco.com

Urgent technical assistance for nonsecurity issues that involve Cisco products: Cisco Technical Support 800 553 2447 (U.S.) Worldwide Contacts

Emergency response to active security incidents that involve Cisco products: PSIRT 877 228 7302 (U.S.) +1 408 525 6532 (outside U.S.)

Report an incident involving the Cisco corporate network: csirt-notify@cisco.com

Notification Registration

Security Highlights

Security Alerts

Upcoming Security Events

Security Blog

Title

Last Updated

Cisco Event Response: Microsoft Security Bulletin Release for May 2013

2013 May 14

Adobe Flash Player and AIR Security Updates for May 14, 2013

2013 May 14

Adobe Reader and Acrobat Security Updates for May 14th, 2013

2013 May 14

U.S. Department of Labor Watering Hole Attack

2013 May 04

Microsoft Internet Explorer Memory Corruption Arbitrary Code Execution Vulnerability

Related Resources:

Microsoft Internet Explorer 8 Remote Code Execution Vulnerability

Cisco Event Response: Microsoft Security Bulletin Release for May 2013

2013 May 04

Adobe ColdFusion download.cfm Arbitrary File Retrieval Vulnerability

Related Resources:

Adobe ColdFusion Arbitrary File Retrieval Vulnerability

2013 May 08

Nginx Web Server Stack-Based Buffer Overflow Vulnerability

Related Resources:

Nginx HTTP Server Stack Based Buffer Overflow Vulnerability

2013 May 09

Possible Exploit Vector for DarkLeech Compromises

2013 Apr 24

Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability

2013 May 15

Oracle Java performSSVValidation Security Warning Dialog Bypass Vulnerability

2013 May 07

Java Security Best Practices (white paper)

2013 Apr 05

Cisco Security Advisory
Cisco IPS Signature
Cisco Applied Mitigation Bulletin
Blog
Event Response
Alerts

CVSS Score

Title

Last Published

N/A

Threat Outbreak Alert: Fake Product Order Quotation Attachment E-mail Messages on May 16, 2013

2013 May 17

6.8/5.6

Linux Kernel PERF_EVENT perf_swevent_init() Function Privilege Escalation Vulnerability

2013 May 17

N/A

Threat Outbreak Alert: Fake Product Order E-mail Messages on May 17, 2013

2013 May 17

N/A

Threat Outbreak Alert: Fake Purchase Order E-mail Messages on May 17, 2013

2013 May 17

N/A

Threat Outbreak Alert: Fake Account Compromise Notification E-mail Messages on May 17, 2013

2013 May 17

N/A

Threat Outbreak Alert: Fake Scanned Document Attachment E-mail Messages on May 17, 2013

2013 May 17

4.3/3.6

Cisco Carrier Routing System Security Bypass Vulnerability

2013 May 17

5.0/3.7

Cisco NX-OS igmp_snoop_orib_fill_source_update() Function Remote Denial of Service Vulnerability

2013 May 17

N/A

Sudo Uninstall Script Insecure Temporary File Creation Vulnerability

2013 May 17

N/A

Threat Outbreak Alert: Fake Social Media User Notification E-mail Messages on May 16, 2013

2013 May 17

Cisco Security Advisory
Cisco IPS Signature
Cisco Applied Mitigation Bulletin
Blog
Event Response
» View More

2013 May 15 NoSuchCon, Paris France

2013 May 18 BSidesBoston, Boston, MA USA

2013 May 19 IEEE Symposium on Security and Privacy, San Francisco, CA USA

2013 May 25 BSidesNOLA, New Orleans, LA USA

2013 May 28 Confidence 2013, Krakow, Poland (Cisco Sponsored)

2013 Jun 07 BSidesCLT, Charlotte, NC USA

2013 Jun 14 BSidesPGH, Pittsburgh, PA USA

2013 Jun 15 BSidesRI, Providence, RI USA

2013 Jun 23 Cisco Live Orlando

2013 Jul 27 Black Hat, Las Vegas, NV USA

(Cisco Presenting)

2013 Aug 01 Def Con 21

Microsoft Security Bulletin Release for May 2013

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player

This video contains insights on the Microsoft Security Bulletin Release for May 2013.

Cisco Event Response: Microsoft Security Bulletin Release May 2013

Intelligence to help identify and mitigate vulnerabilities in the monthly Microsoft security bulletins

Cyber Risk Report: May 6-12

Cyber Risk Reports provide strategic intelligence that highlights current security activity.

Threat Outbreak Alerts

Get the latest data about malicious email-based and web-based threats, including spam, phishing, viruses, malware, and botnet activity.

Linux Kernel PERF_EVENT perf_swevent_init() Function Privilege Escalation Vulnerability
Threat Type:	CWE-119
IntelliShield ID:	29336
Version:	4
First Published:	2013 May 15 21:29 GMT
Last Published:	2013 May 17 19:44 GMT
Vector:	Local
Authentication:	Single
Exploit:	Functional
CVE:	CVE-2013-2094
Urgency:	2
Credibility:	5
Severity:	4
CVSS Base:	6.8
CVSS Temporal:	5.6

Threat Outbreak Alert: Fake Account Compromise Notification E-mail Messages on May 17, 2013
Threat Type:	IntelliShield
IntelliShield ID:	29357
Version:	2
First Published:	2013 May 17 14:22 GMT
Last Published:	2013 May 17 17:47 GMT
Urgency:	3
Credibility:	5
Severity:	2

Sudo Uninstall Script Insecure Temporary File Creation Vulnerability
Threat Type:	CWE
IntelliShield ID:	26601
Version:	1
First Published:	2012 August 08 16:03 GMT
Last Published:	2013 May 17 16:08 GMT
CVE:	CVE-2012-3440
Urgency:	2
Credibility:	5
Severity:	2

Cisco NX-OS igmp_snoop_orib_fill_source_update() Function Remote Denial of Service Vulnerability
Threat Type:	CWE-119
IntelliShield ID:	26613
Version:	1
First Published:	2012 August 10 21:27 GMT
Last Published:	2013 May 17 16:12 GMT
Vector:	Network
Authentication:	None
Exploit:	Unproven
CVE:	CVE-2012-1357
Urgency:	2
Credibility:	5
Severity:	3
CVSS Base:	5
CVSS Temporal:	3.7

Cisco Carrier Routing System Security Bypass Vulnerability
Threat Type:	CWE-264
IntelliShield ID:	26618
Version:	1
First Published:	2012 August 10 14:48 GMT
Last Published:	2013 May 17 16:15 GMT
Vector:	Network
Authentication:	None
Exploit:	Functional
CVE:	CVE-2012-1342
Urgency:	2
Credibility:	5
Severity:	3
CVSS Base:	4.3
CVSS Temporal:	3.6

Threat Outbreak Alert: Fake Purchase Order E-mail Messages on May 17, 2013
Threat Type:	IntelliShield
IntelliShield ID:	29364
Version:	1
First Published:	2013 May 17 17:51 GMT
Last Published:	2013 May 17 17:51 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Social Media User Notification E-mail Messages on May 16, 2013
Threat Type:	IntelliShield
IntelliShield ID:	29363
Version:	1
First Published:	2013 May 17 16:00 GMT
Last Published:	2013 May 17 16:00 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Scanned Document Attachment E-mail Messages on May 17, 2013
Threat Type:	IntelliShield
IntelliShield ID:	28724
Version:	10
First Published:	2013 March 26 13:15 GMT
Last Published:	2013 May 17 17:41 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Product Order E-mail Messages on May 17, 2013
Threat Type:	IntelliShield
IntelliShield ID:	27710
Version:	23
First Published:	2012 December 21 18:20 GMT
Last Published:	2013 May 17 18:36 GMT
Urgency:	3
Credibility:	5
Severity:	3

Product Support

Product Categories

Downloads

Popular Downloads

Contact / Support Cases

Small Business

For Home

For Business

Training

Events

Certifications

Already a Partner?

Microsoft Security Bulletin Release for May 2013

Cisco Event Response: Microsoft Security Bulletin Release May 2013

Cyber Risk Report: May 6-12

Threat Outbreak Alerts