Security Intelligence Operations

Security Intelligence Operations
Inform, Protect, Respond
Early-warning intelligence, threat and vulnerability analysis, and proven Cisco mitigation solutions to help protect networks

Latest Threat Information

Resources

Cisco Products and Services

Cisco Emergency Response

Cisco Emergency Response Overview

Report a potential vulnerability in Cisco products: psirt@cisco.com

Urgent technical assistance for nonsecurity issues that involve Cisco products: Cisco Technical Support 800 553 2447 (U.S.) Worldwide Contacts

Emergency response to active security incidents that involve Cisco products: PSIRT 877 228 7302 (U.S.) +1 408 525 6532 (outside U.S.)

Report an incident involving the Cisco corporate network: csirt-notify@cisco.com

Notification Registration

Security Highlights

Security Alerts

Upcoming Security Events

Security Blog

Title

Last Updated

HangOver Malicious Software Used in Targeted Attacks

Related Resources:

Hangover Malicious Software Traffic

2013 May 20

Linux Kernel PERF_EVENT perf_swevent_init() Function Privilege Escalation Vulnerability

2013 May 21

Network Threat Defense at Black Hat 2013

2013 May 21

Cisco Event Response: Microsoft Security Bulletin Release for May 2013

2013 May 14

Adobe Flash Player and AIR Security Updates for May 14, 2013

2013 May 14

Adobe Reader and Acrobat Security Updates for May 14th, 2013

2013 May 14

Microsoft Internet Explorer Memory Corruption Arbitrary Code Execution Vulnerability

Related Resources:

Microsoft Internet Explorer 8 Remote Code Execution Vulnerability

Cisco Event Response: Microsoft Security Bulletin Release for May 2013

2013 May 04

Adobe ColdFusion download.cfm Arbitrary File Retrieval Vulnerability

Related Resources:

Adobe ColdFusion Arbitrary File Retrieval Vulnerability

2013 May 08

Nginx Web Server Stack-Based Buffer Overflow Vulnerability

Related Resources:

Nginx HTTP Server Stack Based Buffer Overflow Vulnerability

2013 May 09

Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability

2013 May 15

Cisco Security Advisory
Cisco IPS Signature
Cisco Applied Mitigation Bulletin
Blog
Event Response
Alerts

CVSS Score

Title

Last Published

3.5/2.7

OpenStack Keystone XML Parser File Upload Information Disclosure Vulnerability

2013 May 24

6.6/5.2

Stunnel NTLM Authentication Enabled Remote Code Execution Vulnerability

2013 May 24

4.3/3.4

GNOME Evolution Remote Information Disclosure Vulnerability

2013 May 24

4.3/3.2

GNU Debugger Insecure Automatic File Loading Vulnerability

2013 May 24

4.0/3.0

OpenSSL SSL, TLS, and DTLS Plaintext Recovery Attack Vulnerability

2013 May 24

N/A

Threat Outbreak Alert: Fake Xerox Scan Attachment E-mail Messages on May 24, 2013

2013 May 24

N/A

Threat Outbreak Alert: Fake Product Order Quotation E-mail Messages on May 24, 2013

2013 May 24

N/A

Threat Outbreak Alert: Fake CashPro Online Digital Certificate Notification E-mail Messages on May 24, 2013

2013 May 24

N/A

Threat Outbreak Alert: Fake Money Transfer Notification E-mail Messages on May 23, 2013

2013 May 24

N/A

Threat Outbreak Alert: Fake Invoice Statement Attachment E-mail Messages on May 23, 2013

2013 May 24

Cisco Security Advisory
Cisco IPS Signature
Cisco Applied Mitigation Bulletin
Blog
Event Response
» View More

2013 May 25 BSidesNOLA, New Orleans, LA USA

2013 May 28 Confidence 2013, Krakow, Poland (Cisco Sponsored)

2013 Jun 03 NANOG 58, New Orleans, LA, USA

2013 Jun 04 International Conference on Cyber Conflict (CyCon), Tallinn, Estonia

2013 Jun 07 BSidesCLT, Charlotte, NC USA

2013 Jun 14 BSidesPGH, Pittsburgh, PA USA

2013 Jun 15 BSidesRI, Providence, RI USA

2013 Jun 23 Cisco Live Orlando

2013 Jul 27 Black Hat, Las Vegas, NV USA

(Cisco Presenting)

2013 Aug 01 Def Con 21

2013 Aug 13 WOOT '13, Washington, D.C.

2013 Aug 14 22nd USENIX Security Symposium

2013 Aug 20 AppSec Research 2013-OWASP, Emporio, Hamburg. Germany

Microsoft Security Bulletin Release for May 2013

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player

This video contains insights on the Microsoft Security Bulletin Release for May 2013.

Cisco Event Response: Microsoft Security Bulletin Release May 2013

Intelligence to help identify and mitigate vulnerabilities in the monthly Microsoft security bulletins

Cyber Risk Report: May 13-19

Cyber Risk Reports provide strategic intelligence that highlights current security activity.

Threat Outbreak Alerts

Get the latest data about malicious email-based and web-based threats, including spam, phishing, viruses, malware, and botnet activity.

Threat Outbreak Alert: Fake Invoice Statement Attachment E-mail Messages on May 23, 2013
Threat Type:	IntelliShield
IntelliShield ID:	27077
Version:	21
First Published:	2012 October 01 21:39 GMT
Last Published:	2013 May 24 19:36 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Money Transfer Notification E-mail Messages on May 23, 2013
Threat Type:	IntelliShield
IntelliShield ID:	26690
Version:	47
First Published:	2012 August 20 19:55 GMT
Last Published:	2013 May 24 19:38 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Xerox Scan Attachment E-mail Messages on May 24, 2013
Threat Type:	IntelliShield
IntelliShield ID:	25325
Version:	57
First Published:	2012 March 06 18:23 GMT
Last Published:	2013 May 24 19:55 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake CashPro Online Digital Certificate Notification E-mail Messages on May 24, 2013
Threat Type:	IntelliShield
IntelliShield ID:	28320
Version:	24
First Published:	2013 February 20 19:42 GMT
Last Published:	2013 May 24 19:41 GMT
Urgency:	3
Credibility:	5
Severity:	3

OpenSSL SSL, TLS, and DTLS Plaintext Recovery Attack Vulnerability
Threat Type:	CWE-310
IntelliShield ID:	28097
Version:	16
First Published:	2013 February 06 17:29 GMT
Last Published:	2013 May 24 19:57 GMT
Vector:	Network
Authentication:	None
Exploit:	Unproven
CVE:	CVE-2013-0169
Urgency:	2
Credibility:	5
Severity:	3
CVSS Base:	4
CVSS Temporal:	3

Stunnel NTLM Authentication Enabled Remote Code Execution Vulnerability
Threat Type:	CWE-119
IntelliShield ID:	28456
Version:	2
First Published:	2013 March 04 18:45 GMT
Last Published:	2013 May 24 20:39 GMT
Vector:	Network
Authentication:	None
Exploit:	Proof-of-Concept
CVE:	CVE-2013-1762
Urgency:	2
Credibility:	5
Severity:	3
CVSS Base:	6.6
CVSS Temporal:	5.2

OpenStack Keystone XML Parser File Upload Information Disclosure Vulnerability
Threat Type:	CWE-200
IntelliShield ID:	28496
Version:	2
First Published:	2013 March 06 17:07 GMT
Last Published:	2013 May 24 20:40 GMT
Vector:	Network
Authentication:	Single
Exploit:	Proof-of-Concept
CVE:	CVE-2013-1665
Urgency:	2
Credibility:	5
Severity:	2
CVSS Base:	3.5
CVSS Temporal:	2.7

GNU Debugger Insecure Automatic File Loading Vulnerability
Threat Type:	CWE-94
IntelliShield ID:	28339
Version:	2
First Published:	2013 February 22 16:23 GMT
Last Published:	2013 May 24 20:15 GMT
Vector:	Local
Authentication:	Single
Exploit:	Unproven
CVE:	CVE-2011-4355
Urgency:	2
Credibility:	5
Severity:	3
CVSS Base:	4.3
CVSS Temporal:	3.2

Threat Outbreak Alert: Fake Product Order Quotation E-mail Messages on May 24, 2013
Threat Type:	IntelliShield
IntelliShield ID:	25838
Version:	34
First Published:	2012 May 07 17:05 GMT
Last Published:	2013 May 24 19:51 GMT
Urgency:	3
Credibility:	5
Severity:	2

GNOME Evolution Remote Information Disclosure Vulnerability
Threat Type:	CWE-20
IntelliShield ID:	28341
Version:	2
First Published:	2013 February 22 17:41 GMT
Last Published:	2013 May 24 20:25 GMT
Vector:	Network
Authentication:	None
Exploit:	Proof-of-Concept
CVE:	CVE-2011-3201
Urgency:	2
Credibility:	5
Severity:	3
CVSS Base:	4.3
CVSS Temporal:	3.4

Product Support

Product Categories

Downloads

Popular Downloads

Contact / Support Cases

Small Business

For Home

For Business

Training

Events

Certifications

Already a Partner?

Microsoft Security Bulletin Release for May 2013

Cisco Event Response: Microsoft Security Bulletin Release May 2013

Cyber Risk Report: May 13-19

Threat Outbreak Alerts