stdin
By Date

Most recent messages
283 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Fri Aug 01 2008 - 17:42:20 EEST
Ending: Sat Aug 30 2008 - 21:36:32 EEST

[ GLSA 200807-16 ] Python: Multiple vulnerabilities Robert Buchholz (Fri Aug 01 2008 - 02:33:28 EEST)
CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability Williams, James K (Fri Aug 01 2008 - 13:52:07 EEST)
[CVE-2008-2370] Apache Tomcat information disclosure vulnerability Mark Thomas (Fri Aug 01 2008 - 17:06:33 EEST)
libxslt heap overflow chris@scary.beasts.org (Fri Aug 01 2008 - 04:03:11 EEST)
[SECURITY] [DSA 1625-1] New cupsys packages fix arbitrary code execution Thijs Kinkhorst (Fri Aug 01 2008 - 10:52:06 EEST)
[SECURITY] [DSA 1626-1] New httrack packages fix arbitrary code execution Thijs Kinkhorst (Fri Aug 01 2008 - 10:52:19 EEST)
[CVE-2008-1232] Apache Tomcat XSS vulnerability Mark Thomas (Fri Aug 01 2008 - 17:06:19 EEST)
[USN-634-1] OpenLDAP vulnerability Kees Cook (Fri Aug 01 2008 - 18:27:01 EEST)
eVision 2.0 Sql Injection/Remote File Disclosure/Remote File Upload/IG r3d.w0rm@yahoo.com (Fri Aug 01 2008 - 11:19:22 EEST)
DNS Multiple Race Exploiting Tool AR (Fri Aug 01 2008 - 18:33:21 EEST)
[USN-633-1] libxslt vulnerabilities Kees Cook (Fri Aug 01 2008 - 18:26:31 EEST)
[USN-632-1] Python vulnerabilities Kees Cook (Fri Aug 01 2008 - 17:51:27 EEST)
iDefense Security Advisory 07.31.08: Apple Mac OS X CoreGraphics PDF Type1 Font Integer Overflow Vulnerability iDefense Labs (Fri Aug 01 2008 - 21:06:47 EEST)
n.runs-SA-2008.005 - Apple Inc. - CoreSevices Framework’s CarbonCore Framework - Arbtrary Code Execution (remote security@nruns.com (Fri Aug 01 2008 - 20:29:59 EEST)
Re: how to request a cve id? William A. Rowe, Jr. (Fri Aug 01 2008 - 23:39:18 EEST)
Re: Windows Vista Power Management & Local Security Policy William A. Rowe, Jr. (Fri Aug 01 2008 - 23:43:56 EEST)
[ MDVSA-2008:160 ] libxslt security@mandriva.com (Fri Aug 01 2008 - 23:48:00 EEST)
file upload exploit win32.exe@w.cn (Fri Aug 01 2008 - 20:21:45 EEST)
iDefense Security Advisory 08.01.08: Ingres Database for Linux verifydb Insecure File Permissions Modification Vulnerability iDefense Labs (Sat Aug 02 2008 - 07:28:45 EEST)
iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability iDefense Labs (Sat Aug 02 2008 - 07:29:53 EEST)
iDefense Security Advisory 08.01.08: Ingres Database for Linux ingvalidpw Untrusted Library Path Vulnerability iDefense Labs (Sat Aug 02 2008 - 07:30:27 EEST)
Pligg Auto-Voter Using XSS to Bypass CSRF Protection michaelbrooks@rooksecurity.com (Sat Aug 02 2008 - 03:04:40 EEST)
Homes 4 Sale Remote XSS Vulnerabilitiy Ghost hacker (Sat Aug 02 2008 - 10:59:48 EEST)
Server termination in America's Army 2.8.3.1 Luigi Auriemma (Sat Aug 02 2008 - 21:15:17 EEST)
Keld: PHP-MySQL News Script 0.7.1 Remote SQL injection Vulnerability crimson.loyd@gmail.com (Sun Aug 03 2008 - 13:07:30 EEST)
TGS CMS Remote Code Execution Exploit 0in.email@gmail.com (Sun Aug 03 2008 - 21:21:43 EEST)
[SECURITY] [DSA 1627-1] New opensc packages fix smart card vulnerability Thijs Kinkhorst (Mon Aug 04 2008 - 12:00:29 EEST)
UNAK-CMS Lfi r3d.w0rm@yahoo.com (Mon Aug 04 2008 - 07:19:35 EEST)
[USN-626-2] Devhelp, Epiphany, Midbrowser and Yelp update Jamie Strandboge (Mon Aug 04 2008 - 16:46:45 EEST)
Team SHATTER Security Advisory: SQL Injection in Oracle Application Server (WWEXP_API_ENGINE) Team SHATTER (Mon Aug 04 2008 - 19:16:01 EEST)
Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter) Team SHATTER (Mon Aug 04 2008 - 19:43:27 EEST)
Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Team SHATTER (Mon Aug 04 2008 - 19:41:30 EEST)
CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability CORE Security Technologies Advisories (Mon Aug 04 2008 - 23:38:32 EEST)
Xampp Linux 1.6.7 Multiple Cross Site Scripting Vulnerabilities irancrash@gmail.com (Mon Aug 04 2008 - 17:13:04 EEST)
8e6 Technologies R3000 Internet Filter Bypass with Host Decoy nnposter@disclosed.not (Tue Aug 05 2008 - 10:19:46 EEST)
Plogger <= 3.0 SQL Injection GulfTech Security Research (Tue Aug 05 2008 - 17:19:41 EEST)
IGES CMS <=2.0 Multiple Vulnerabilities admin@bugreport.ir (Tue Aug 05 2008 - 12:59:11 EEST)
Pluck 4.5.2 Multiple Cross Site Scripting Vulnerabilities irancrash@gmail.com (Tue Aug 05 2008 - 02:48:27 EEST)
[ GLSA 200808-01 ] xine-lib: User-assisted execution of arbitrary code Robert Buchholz (Wed Aug 06 2008 - 03:02:36 EEST)
[ GLSA 200808-02 ] Net-SNMP: Multiple vulnerabilities Robert Buchholz (Wed Aug 06 2008 - 03:30:01 EEST)
[ GLSA 200808-03 ] Mozilla products: Multiple vulnerabilities Robert Buchholz (Wed Aug 06 2008 - 03:42:21 EEST)
[ GLSA 200808-04 ] Wireshark: Denial of Service Robert Buchholz (Wed Aug 06 2008 - 03:46:00 EEST)
rPSA-2008-0245-1 cups rPath Update Announcements (Wed Aug 06 2008 - 03:48:11 EEST)
rPSA-2008-0246-1 gaim rPath Update Announcements (Wed Aug 06 2008 - 03:52:00 EEST)
PHP-NUKE module Kleinanzeigen SQL injection (lid) lovebug@hotmail.it (Wed Aug 06 2008 - 04:43:39 EEST)
MyClan Sql Injection r3d.w0rm@yahoo.com (Wed Aug 06 2008 - 07:21:26 EEST)
Re: 8e6 Technologies R3000 Internet Filter Bypass with Host Decoy jyoung01@americafirst.com (Wed Aug 06 2008 - 00:09:35 EEST)
Interesting things at sec-consult.com, DNS-whitepaper available tomorrow Bernhard Mueller (Wed Aug 06 2008 - 01:28:12 EEST)
CA Products That Embed Ingres Multiple Vulnerabilities Williams, James K (Wed Aug 06 2008 - 18:48:35 EEST)
Google Notebook and Google Bookmarks Cross Site Scripting Vulnerabilities alfredo.melloni@gmail.com (Wed Aug 06 2008 - 17:26:23 EEST)
Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting marc_bevand@rapid7.com (Wed Aug 06 2008 - 20:26:48 EEST)
[ GLSA 200808-05 ] ISC DHCP: Denial of Service Tobias Heinlein (Wed Aug 06 2008 - 23:16:35 EEST)
[USN-635-1] xine-lib vulnerabilities Jamie Strandboge (Wed Aug 06 2008 - 22:37:14 EEST)
[ GLSA 200808-06 ] libxslt: Execution of arbitrary code Tobias Heinlein (Wed Aug 06 2008 - 23:18:44 EEST)
[security bulletin] HPSBUX02351 SSRT080058 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning security-alert@hp.com (Wed Aug 06 2008 - 23:45:32 EEST)
[security bulletin] HPSBUX02355 SSRT080023 rev.1 - HP-UX Using libc, Remote Denial of Service (DoS) security-alert@hp.com (Thu Aug 07 2008 - 00:00:00 EEST)
OpenVMS fingerd remote stack overflow Shaun Colley (Thu Aug 07 2008 - 02:08:53 EEST)
Re: [funsec] facebook messages worm Gadi Evron (Thu Aug 07 2008 - 04:45:30 EEST)
Endless loop and resources consumption in Halo 1.0.7.0615 Luigi Auriemma (Thu Aug 07 2008 - 02:00:31 EEST)
Re: [Full-disclosure] [funsec] facebook messages worm Juha-Matti Laurio (Thu Aug 07 2008 - 08:00:13 EEST)
Re: [funsec] facebook messages worm Gadi Evron (Thu Aug 07 2008 - 00:50:16 EEST)
facebook messages worm Gadi Evron (Thu Aug 07 2008 - 00:44:03 EEST)
Whitepaper: DNS zone redelegation Bernhard Mueller (Thu Aug 07 2008 - 11:25:30 EEST)
Re: [funsec] facebook messages worm Gadi Evron (Thu Aug 07 2008 - 08:15:24 EEST)
SecurityFocus Newsletter #465 sfa@securityfocus.com (Thu Aug 07 2008 - 03:44:29 EEST)
SecurityFocus Microsoft Newsletter #406 sfa@securityfocus.com (Thu Aug 07 2008 - 03:45:23 EEST)
SecurityFocus Linux Newsletter #401 sfa@securityfocus.com (Thu Aug 07 2008 - 03:45:28 EEST)
[SE-2008-01] J2ME Security Vulnerabilities 2008 Security Explorations (Thu Aug 07 2008 - 18:26:14 EEST)
Re: [SE-2008-01] J2ME Security Vulnerabilities 2008 0xjbrown41@gmail.com (Thu Aug 07 2008 - 21:55:06 EEST)
Re: OpenVMS fingerd remote stack overflow Alexander Sotirov (Thu Aug 07 2008 - 20:40:16 EEST)
Re: OpenVMS fingerd remote stack overflow Kevin Finisterre (lists) (Thu Aug 07 2008 - 20:54:30 EEST)
e107 <= 0.7.11 Arbitrary Variable Overwriting GulfTech Security Research (Thu Aug 07 2008 - 22:13:33 EEST)
[ MDVSA-2008:161 ] rxvt security@mandriva.com (Thu Aug 07 2008 - 23:51:00 EEST)
Re: OpenVMS fingerd remote stack overflow mlbugtraq@noci.xs4all.nl (Thu Aug 07 2008 - 23:51:23 EEST)
[ MDVSA-2008:162 ] qemu security@mandriva.com (Fri Aug 08 2008 - 02:55:00 EEST)
[ MDVSA-2008:163 ] python security@mandriva.com (Fri Aug 08 2008 - 04:26:00 EEST)
re: [SE-2008-01] J2ME Security Vulnerabilities 2008 Security Explorations (Fri Aug 08 2008 - 01:51:37 EEST)
[ MDVSA-2008:164 ] python security@mandriva.com (Fri Aug 08 2008 - 04:38:00 EEST)
Re: Re: [SE-2008-01] J2ME Security Vulnerabilities 2008 0xjbrown41@gmail.com (Fri Aug 08 2008 - 03:49:21 EEST)
Re: [funsec] facebook messages worm Juha-Matti Laurio (Fri Aug 08 2008 - 12:56:17 EEST)
OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Fri Aug 08 2008 - 17:41:53 EEST)
[AJECT] NoticeWare IMAP Email Server 4.6.2 DoS vulnerability Jo�o Antunes (Fri Aug 08 2008 - 13:41:13 EEST)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Gerald Beuchelt (Fri Aug 08 2008 - 16:17:51 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Fri Aug 08 2008 - 18:06:25 EEST)
[AJECT] WinGate Email Server (IMAP) vulnerability Jo�o Antunes (Fri Aug 08 2008 - 17:16:08 EEST)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Fri Aug 08 2008 - 17:51:34 EEST)
Vim: Unfixed Vulnerabilities in Tar Plugin Version 20 Jan Minář (Fri Aug 08 2008 - 17:29:53 EEST)
RE: OpenID/Debian PRNG/DNS Cache poisoning advisory Dave Korn (Fri Aug 08 2008 - 19:31:15 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Fri Aug 08 2008 - 19:57:30 EEST)
[ GLSA 200808-07 ] ClamAV: Multiple Denials of Service Raphael Marichez (Fri Aug 08 2008 - 20:09:00 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Fri Aug 08 2008 - 20:11:42 EEST)
[ GLSA 200808-08 ] stunnel: Security bypass Raphael Marichez (Fri Aug 08 2008 - 20:26:38 EEST)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Dick Hardt (Fri Aug 08 2008 - 20:29:24 EEST)
[DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3 Digital Security Research Group [DSecRG] (Fri Aug 08 2008 - 20:29:49 EEST)
[ GLSA 200808-09 ] OpenLDAP: Denial of Service vulnerability Raphael Marichez (Fri Aug 08 2008 - 20:31:00 EEST)
RE: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Fri Aug 08 2008 - 20:04:16 EEST)
RE: OpenID/Debian PRNG/DNS Cache poisoning advisory Dave Korn (Fri Aug 08 2008 - 20:08:03 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Gutmann (Fri Aug 08 2008 - 20:49:42 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dan Kaminsky (Fri Aug 08 2008 - 20:43:53 EEST)
New paper: An Illustrated Guide to the Kaminsky DNS Vulnerability Steve Friedl (Fri Aug 08 2008 - 20:56:53 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Perry E. Metzger (Fri Aug 08 2008 - 21:08:37 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Fri Aug 08 2008 - 21:20:15 EEST)
Re: OpenVMS fingerd remote stack overflow Tim Newsham (Fri Aug 08 2008 - 21:24:16 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Fri Aug 08 2008 - 22:10:41 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Fri Aug 08 2008 - 21:47:01 EEST)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Fri Aug 08 2008 - 22:41:01 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Paul Hoffman (Fri Aug 08 2008 - 22:35:43 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Fri Aug 08 2008 - 23:08:57 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Fri Aug 08 2008 - 22:52:07 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Fri Aug 08 2008 - 23:33:18 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Fri Aug 08 2008 - 22:33:10 EEST)
key blacklisting & file size (was: OpenID/Debian PRNG/DNS Cache poisoning advisory) Solar Designer (Fri Aug 08 2008 - 23:04:34 EEST)
[security bulletin] HPSBUX02351 SSRT080058 rev.4 - HP-UX Running BIND, Remote DNS Cache Poisoning security-alert@hp.com (Sat Aug 09 2008 - 13:19:35 EEST)
Kayako SupportSuite < 3.30.00 Multiple Vulnerabilities GulfTech Security Research (Sat Aug 09 2008 - 18:21:33 EEST)
[ GLSA 200808-10 ] Adobe Reader: User-assisted execution of arbitrary code Robert Buchholz (Sun Aug 10 2008 - 01:43:57 EEST)
Ovidentia Sql Injection r3d.w0rm@yahoo.com (Sun Aug 10 2008 - 08:20:16 EEST)
[SECURITY] [DSA 1627-1] New PowerDNS packages reduce DNS spoofing risk Florian Weimer (Sun Aug 10 2008 - 23:34:06 EEST)
Re: [DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3 o_0.iahumeil@yahoo.com (Sun Aug 10 2008 - 23:13:39 EEST)
K-Links Directory Blind SQL Injection Exploit hadihadi_zedehal_2006@yahoo.com (Mon Aug 11 2008 - 04:07:24 EEST)
rPSA-2008-0249-1 openldap openldap-clients openldap-servers rPath Update Announcements (Mon Aug 11 2008 - 21:22:51 EEST)
[ GLSA 200808-11 ] UUDeview: Insecure temporary file creation Pierre-Yves Rofes (Mon Aug 11 2008 - 21:49:08 EEST)
rPSA-2008-0247-1 gvim vim vim-minimal rPath Update Announcements (Mon Aug 11 2008 - 21:18:27 EEST)
Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability emericboit@yahoo.fr (Mon Aug 11 2008 - 11:52:44 EEST)
Re: Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Team SHATTER (Tue Aug 12 2008 - 00:29:15 EEST)
Layered Defense Research Advisory: Alcatel-Lucent OmniSwitch products, Stack Buffer Overflow dh@layereddefense.com (Tue Aug 12 2008 - 06:56:22 EEST)
RE: OpenID/Debian PRNG/DNS Cache poisoning advisory Clausen, Martin (DK - Copenhagen) (Tue Aug 12 2008 - 11:55:53 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Tue Aug 12 2008 - 16:31:00 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Tue Aug 12 2008 - 17:42:59 EEST)
Re: TGS CMS Remote Code Execution Exploit lcat (Mon Aug 11 2008 - 22:58:44 EEST)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Format String Vulnerabilities iDefense Labs (Tue Aug 12 2008 - 19:42:23 EEST)
[AJECT] hMailServer 4.4.1 DoS vulnerability Jo�o Antunes (Tue Aug 12 2008 - 19:53:35 EEST)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Stack Buffer Overflow Vulnerabilities iDefense Labs (Tue Aug 12 2008 - 19:42:08 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Stefan Kanthak (Sat Aug 09 2008 - 01:29:52 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Florian Weimer (Sat Aug 09 2008 - 00:28:19 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Forrest J. Cavalier III (Sat Aug 09 2008 - 04:37:44 EEST)
Internet attacks against Georgian web sites Gadi Evron (Mon Aug 11 2008 - 09:40:16 EEST)
VMSA-2008-0013 Updated ESX packages for OpenSSL, net-snmp, perl VMware Security Team (Tue Aug 12 2008 - 21:13:44 EEST)
VMSA-2008-0012 Updated VirtualCenter addresses User Account Disclosure Vulnerability VMware Security Team (Tue Aug 12 2008 - 21:11:06 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Fri Aug 08 2008 - 23:51:10 EEST)
rPSA-2008-0253-1 git gitweb rPath Update Announcements (Tue Aug 12 2008 - 21:47:50 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory \ (Sat Aug 09 2008 - 01:14:46 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Tim Dierks (Fri Aug 08 2008 - 22:52:47 EEST)
CA Host-Based Intrusion Prevention System SDK kmxfw.sys Multiple Vulnerabilities Williams, James K (Tue Aug 12 2008 - 21:53:20 EEST)
Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Mon Aug 11 2008 - 09:52:56 EEST)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Sat Aug 09 2008 - 11:29:09 EEST)
Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Mon Aug 11 2008 - 10:12:46 EEST)
Surf Jack - HTTPS will not save you lists@enablesecurity.com (Mon Aug 11 2008 - 12:30:37 EEST)
[security bulletin] HPSBUX02356 SSRT080051 rev.1 - HP-UX Running ftpd, Remote Privileged Access security-alert@hp.com (Tue Aug 12 2008 - 22:50:23 EEST)
ZDI-08-048: Microsoft Excel COUNTRY Record Memory Corruption Vulnerability zdi-disclosures@3com.com (Wed Aug 13 2008 - 00:42:11 EEST)
ZDI-08-051: Microsoft Internet Explorer Table Layout Memory Corruption Vulnerability zdi-disclosures@3COM.COM (Wed Aug 13 2008 - 00:47:07 EEST)
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption zdi-disclosures@3com.com (Wed Aug 13 2008 - 00:43:24 EEST)
iDefense Security Advisory 08.12.08: Microsoft Office BMP Input Filter Heap Overflow Vulnerability iDefense Labs (Wed Aug 13 2008 - 02:56:30 EEST)
Re: Vim: Netrw: FTP User Name and Password Disclosure Tony Mechelynck (Wed Aug 13 2008 - 01:18:05 EEST)
[ MDVSA-2008:167 ] kernel security@mandriva.com (Wed Aug 13 2008 - 03:10:00 EEST)
ZDI-08-050: Microsoft Internet Explorer XHTML Rendering Memory Corruption Vulnerability zdi-disclosures@3Com.com (Wed Aug 13 2008 - 00:46:03 EEST)
[ MDVSA-2008:166 ] clamav security@mandriva.com (Wed Aug 13 2008 - 03:15:00 EEST)
Vim: Netrw: FTP User Name and Password Disclosure Jan Minář (Wed Aug 13 2008 - 00:59:59 EEST)
iDefense Security Advisory 08.12.08: Microsoft Office WPG Image File Heap Buffer Overflow Vulnerability iDefense Labs (Wed Aug 13 2008 - 03:14:13 EEST)
[TKADV2008-006] CA HIPS KmxFw.sys Kernel Memory Corruption Tobias Klein (Wed Aug 13 2008 - 00:27:12 EEST)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Out of Bounds Array Index Vulnerability iDefense Labs (Wed Aug 13 2008 - 03:30:34 EEST)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Cstring Integer Overflow Vulnerability iDefense Labs (Wed Aug 13 2008 - 03:58:41 EEST)
iDefense Security Advisory 08.12.08: Microsoft Excel Chart AxesSet Invalid Array Index Vulnerability iDefense Labs (Wed Aug 13 2008 - 04:06:38 EEST)
iDefense Security Advisory 08.12.08: Microsoft Excel FORMAT Record Invalid Array Index Vulnerability iDefense Labs (Wed Aug 13 2008 - 04:09:15 EEST)
iDefense Security Advisory 08.12.08: Microsoft Windows Color Management Module Heap Buffer Overflow Vulnerability iDefense Labs (Wed Aug 13 2008 - 04:34:35 EEST)
rPSA-2008-0243-1 idle python rPath Update Announcements (Wed Aug 13 2008 - 16:17:49 EEST)
Vim 7.2c.002 Fixes Arbitrary Command Execution when Handling Tar Archives Jan Minář (Wed Aug 13 2008 - 17:35:37 EEST)
NULL pointer in Ventrilo 3.0.2 Luigi Auriemma (Wed Aug 13 2008 - 21:13:12 EEST)
[security bulletin] HPSBTU02358 SSRT080058 rev.1 - HP Tru64 UNIX running BIND, Remote DNS Cache Poisoning security-alert@hp.com (Wed Aug 13 2008 - 23:02:59 EEST)
CORE-2008-0103: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass CORE Security Technologies Advisories (Thu Aug 14 2008 - 00:01:10 EEST)
[ MDVSA-2008:170 ] cups security@mandriva.com (Thu Aug 14 2008 - 07:43:00 EEST)
Microsoft Windows Messenger Remote Illegal Access Vulnerability cocoruder (Thu Aug 14 2008 - 07:08:31 EEST)
[ MDVSA-2008:168 ] stunnel security@mandriva.com (Thu Aug 14 2008 - 07:11:01 EEST)
[security bulletin] HPSBOV02357 SSRT080058 rev.1 - HP OpenVMS TCP/IP Services running BIND, Remote DNS Cache Poisoning security-alert@hp.com (Thu Aug 14 2008 - 14:58:33 EEST)
[ MDVSA-2008:169 ] hplip security@mandriva.com (Thu Aug 14 2008 - 07:15:00 EEST)
Postfix local privilege escalation via hardlinked symlinks Wietse Venema (Thu Aug 14 2008 - 15:03:43 EEST)
SYM08-015_SFW_SecurityUpdateBypass Mike Prosser (Thu Aug 14 2008 - 21:07:49 EEST)
ZDI-08-053: Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability zdi-disclosures@3com.com (Thu Aug 14 2008 - 22:28:01 EEST)
Security Assessment of the Internet Protocol Fernando Gont (Thu Aug 14 2008 - 22:10:19 EEST)
rPSA-2008-0255-1 freetype rPath Update Announcements (Fri Aug 15 2008 - 00:27:55 EEST)
[ GLSA 200808-12 ] Postfix: Local privilege escalation vulnerability Raphael Marichez (Fri Aug 15 2008 - 01:41:07 EEST)
Cisco Security Advisory: Vulnerability in Cisco WebEx Meeting Manager ActiveX Control Cisco Systems Product Security Incident Response Team (Fri Aug 15 2008 - 06:15:00 EEST)
Re: MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface oliver karow (Fri Aug 15 2008 - 13:26:07 EEST)
munky-bliki lfi r3d.w0rm@yahoo.com (Fri Aug 15 2008 - 13:20:09 EEST)
Mambo 4.6.2 Full Version - Multiple Cross Site Scripting - By Khashayar Fereidani irancrash@gmail.com (Fri Aug 15 2008 - 13:13:37 EEST)
FlexCMS <= 2.5 Cross Site Scripting Vulnerability irancrash@gmail.com (Fri Aug 15 2008 - 13:33:35 EEST)
SecurityFocus Microsoft Newsletter #407 Kim Mansour (Sat Aug 16 2008 - 00:13:30 EEST)
[ MDVSA-2008:171 ] postfix security@mandriva.com (Fri Aug 15 2008 - 23:44:00 EEST)
[ MDVSA-2008:172 ] amarok security@mandriva.com (Sat Aug 16 2008 - 00:54:00 EEST)
PHP Live Helper <= 2.0.1 Multiple Vulnerabilities GulfTech Security Research (Sat Aug 16 2008 - 18:09:57 EEST)
Nokia 6131 NFC URI/URL Spoofing and DoS Advisory Collin R. Mulliner (Sat Aug 16 2008 - 20:15:46 EEST)
Re: ManageEngine Firewall Analyzer arbitrary file disclosure to authorized user Eder Wentz (Sun Aug 17 2008 - 05:51:24 EEST)
NewsHOWLER 1.03 Beta Cookie Handling Via Sql injection r3d.w0rm@yahoo.com (Sun Aug 17 2008 - 19:58:12 EEST)
[DSECRG-08-036] Multiple Security Vulnerabilities in Freeway eCommerce 1.4.1.171 Digital Security Research Group [DSecRG] (Mon Aug 18 2008 - 15:39:24 EEST)
Tool: PorkBind v1.3 Nameserver Security Scanner (New Version) Derek Callaway (Fri Aug 15 2008 - 21:31:41 EEST)
Ovidentia 6.6.5 XSS (index.php)‏ mostafa_ragab@msn.com (Mon Aug 18 2008 - 13:27:13 EEST)
[security bulletin] HPSBMA02345 SSRT080039 rev.2 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS) security-alert@hp.com (Mon Aug 18 2008 - 18:18:13 EEST)
SecurityFocus Newsletter #466 sfa@securityfocus.com (Mon Aug 18 2008 - 21:36:38 EEST)
SecurityFocus Linux Newsletter #402 sfa@securityfocus.com (Mon Aug 18 2008 - 21:36:43 EEST)
[SECURITY] [DSA 1629-1] New postfix packages fix privilege escalation Thijs Kinkhorst (Mon Aug 18 2008 - 23:51:28 EEST)
[security bulletin] HPSBST02360 SSRT080117 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-041 to MS08-051 security-alert@hp.com (Tue Aug 19 2008 - 15:13:55 EEST)
Vanilla <= 1.1.4 Script Injection/ XSS GulfTech Security Research (Tue Aug 19 2008 - 17:38:50 EEST)
SunShop <= 4.1.4 SQL Injection GulfTech Security Research (Tue Aug 19 2008 - 01:06:28 EEST)
[SECURITY] [DSA 1629-2] New postfix packages fix installability problem on i386 Thijs Kinkhorst (Tue Aug 19 2008 - 12:02:12 EEST)
[ MDVSA-2008:173 ] kdegraphics security@mandriva.com (Tue Aug 19 2008 - 23:46:00 EEST)
[ MDVSA-2008:174 ] kernel security@mandriva.com (Wed Aug 20 2008 - 04:14:01 EEST)
ToorCon 10 Call For Papers David Hulton (Wed Aug 20 2008 - 11:33:02 EEST)
Folder Lock <= 5.9.5 Local Password Information Disclosure glafkos@infosec.org.uk (Wed Aug 20 2008 - 05:11:29 EEST)
[USN-636-1] Postfix vulnerability Kees Cook (Wed Aug 20 2008 - 01:11:12 EEST)
[ MDVSA-2008:175 ] yelp security@mandriva.com (Wed Aug 20 2008 - 22:16:00 EEST)
[ MDVSA-2008:176 ] mtr security@mandriva.com (Thu Aug 21 2008 - 00:11:00 EEST)
IMF 2008 - Call for Participation Oliver Goebel (Tue Aug 19 2008 - 22:19:40 EEST)
CORE-2008-0624: Anzio Web Print Object Buffer Overflow CORE Security Technologies Advisories (Thu Aug 21 2008 - 00:23:21 EEST)
Null Byte Local file Inclusion in FAR - PHP Project version:1.0 beenudel1986@gmail.com (Thu Aug 21 2008 - 05:56:42 EEST)
CORE-2008-0813 - vBulletin Cross Site Scripting Vulnerability CORE Security Technologies Advisories (Thu Aug 21 2008 - 00:56:10 EEST)
rPSA-2008-0259-1 postfix rPath Update Announcements (Thu Aug 21 2008 - 03:37:12 EEST)
[ MDVSA-2008:177 ] xine-lib security@mandriva.com (Thu Aug 21 2008 - 06:32:01 EEST)
[ MDVSA-2008:178 ] xine-lib security@mandriva.com (Thu Aug 21 2008 - 08:38:01 EEST)
UPDATE: [ GLSA 200804-22 ] PowerDNS Recursor: DNS Cache Poisoning Robert Buchholz (Thu Aug 21 2008 - 18:38:51 EEST)
[SECURITY] [DSA 1630-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier (Thu Aug 21 2008 - 19:34:06 EEST)
TimeTrex Time and Attendance Cookie Theft DoZ@HackersCenter.com (Thu Aug 21 2008 - 19:50:07 EEST)
PR08-20: Bypassing ASP .NET "ValidateRequest" for Script Injection Attacks ProCheckUp Research (Thu Aug 21 2008 - 23:08:41 EEST)
Call For Papers - Hackers 2 Hackers Conference 5th Edition - Brazil cfp@h2hc.com.br (Fri Aug 22 2008 - 06:40:19 EEST)
[ MDVSA-2008:179 ] metisse security@mandriva.com (Fri Aug 22 2008 - 00:41:01 EEST)
RE: TimeTrex Time and Attendance Cookie Theft Alex Eden (Fri Aug 22 2008 - 00:09:59 EEST)
Vim: Arbitrary Code Execution in Commands: K, Control-], g] Jan Minář (Fri Aug 22 2008 - 17:25:52 EEST)
[ MDVSA-2008:180 ] libxml2 security@mandriva.com (Fri Aug 22 2008 - 02:57:01 EEST)
Contest: Best Advances for OpenVAS Network Vulnerability Tests Michael Wiegand (Fri Aug 22 2008 - 15:09:08 EEST)
Secunia Research: Trend Micro Products Web Management Authentication Bypass Secunia Research (Fri Aug 22 2008 - 13:33:36 EEST)
Apple OSX Leopard (10.5+), inadequate ACL insight can create vuln bgtrq.tryfixingit@antichef.net (Tue Aug 19 2008 - 15:44:38 EEST)
Re: Null Byte Local file Inclusion in FAR - PHP Project version:1.0 William McAfee (Fri Aug 22 2008 - 04:46:53 EEST)
[oCERT-2008-008] multiple heap overflows in xine-lib Will Drewry (Fri Aug 22 2008 - 21:11:52 EEST)
Re: RE: TimeTrex Time and Attendance Cookie Theft hi@hi.com (Fri Aug 22 2008 - 21:53:29 EEST)
[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service Steve Kemp (Fri Aug 22 2008 - 22:19:24 EEST)
Re: Fedora confirms: Our servers were breached Dragos Ruiu (Fri Aug 22 2008 - 23:25:41 EEST)
Fedora confirms: Our servers were breached Juha-Matti Laurio (Fri Aug 22 2008 - 17:41:59 EEST)
OneNews Beta 2 Multiple Vulnerabilities crimson.loyd@gmail.com (Sat Aug 23 2008 - 09:05:50 EEST)
Re: TimeTrex Time and Attendance Cookie Theft Mike (Sat Aug 23 2008 - 01:49:18 EEST)
Secunia Research: Novell iPrint Client ActiveX Control "GetFileList()" Information Disclosure Secunia Research (Mon Aug 25 2008 - 15:14:25 EEST)
RE: Arbitrary Code Execution in Commands: K, Control-], g] Michael Wojcik (Mon Aug 25 2008 - 16:57:15 EEST)
[DSECRG-08-038] Multiple Local File Include Vulnerabilities in ezContents CMS 2.0.3 Digital Security Research Group [DSecRG] (Mon Aug 25 2008 - 16:53:13 EEST)
Secunia Research: Calendarix Basic Two SQL Injection Vulnerabilities Secunia Research (Mon Aug 25 2008 - 16:08:05 EEST)
Secunia Research: Novell iPrint Client ActiveX Control Multiple Buffer Overflows Secunia Research (Mon Aug 25 2008 - 13:59:53 EEST)
[DSECRG-08-037] Multiple Local File Include Vulnerabilities in Pluck CMS 4.5.2 Digital Security Research Group [DSecRG] (Mon Aug 25 2008 - 16:51:28 EEST)
[IVIZ-08-009] Grub Legacy Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Mon Aug 25 2008 - 12:17:36 EEST)
SECOBJADV-2008-03.2: PartyGaming PartyPoker Malicious Update Vulnerability Security Objectives Corporation (Mon Aug 25 2008 - 07:22:23 EEST)
Crafty Syntax Live Help <= 2.14.6 SQL Injection GulfTech Security Research (Mon Aug 25 2008 - 22:48:27 EEST)
[IVIZ-08-006] DiskCryptor Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Mon Aug 25 2008 - 12:11:40 EEST)
SecurityFocus Linux Newsletter #403 sfa@securityfocus.com (Tue Aug 26 2008 - 02:01:47 EEST)
SecurityFocus Microsoft Newsletter #408 sfa@securityfocus.com (Tue Aug 26 2008 - 02:01:40 EEST)
SecurityFocus Newsletter #467 sfa@securityfocus.com (Tue Aug 26 2008 - 02:01:34 EEST)
ToorCon X CFP Closing and Workshops and Seminars discounted until Friday! David Hulton (Tue Aug 26 2008 - 02:03:57 EEST)
Mini-NUKE v2.3 Freehost (tr) Multiple Remote SQL Injection Vulnerabilities byccc@live.com (Mon Aug 25 2008 - 23:10:14 EEST)
ZoneMinder Multiple Vulnerabilities filip.palian@pjwstk.edu.pl (Tue Aug 26 2008 - 15:53:12 EEST)
[SECURITY] [DSA 1632-1] New tiff packages fix arbitrary code execution Thijs Kinkhorst (Tue Aug 26 2008 - 19:22:23 EEST)
Hopeless comments regarding the pointless "HP System Management Homepage (SMH) Unspecified XSS" Luca.carettoni (Tue Aug 26 2008 - 13:25:58 EEST)
Multiple Vulnerabilities in AWStats Totals Elliot Kendall (Tue Aug 26 2008 - 19:54:46 EEST)
[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service Steve Kemp (Tue Aug 26 2008 - 20:53:23 EEST)
White Wolf Labs #080826-1: Kyocera Mita Scanner File Utility (Multiple) Seth Fogie (Tue Aug 26 2008 - 21:05:20 EEST)
PacSec 2008 CFP (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept .30/ Oct. 1) Dragos Ruiu (Tue Aug 26 2008 - 22:33:05 EEST)
[ MDVSA-2008:180-1 ] libxml2 security@mandriva.com (Tue Aug 26 2008 - 22:51:00 EEST)
[security bulletin] HPSBMA02363 SSRT080106 rev.1 - HP Enterprise Discovery Running on Windows, Remote Authorized User, Gain Extended Privileges security-alert@hp.com (Wed Aug 27 2008 - 16:01:08 EEST)
[IVIZ-08-008] LILO Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Mon Aug 25 2008 - 12:15:28 EEST)
[IVIZ-08-007] DriveCrypt Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Mon Aug 25 2008 - 12:13:23 EEST)
[IVIZ-08-003] TrueCrypt Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Mon Aug 25 2008 - 11:57:22 EEST)
[USN-638-1] Yelp vulnerability Kees Cook (Thu Aug 28 2008 - 00:54:46 EEST)
[IVIZ-08-004] Intel BIOS Plain Text Password Disclosure iViZ Security Advisories (Mon Aug 25 2008 - 12:06:37 EEST)
XSS and Data Manipulation attacks found in CMS PHPCart. vaibhav aher (Thu Aug 28 2008 - 06:57:48 EEST)
[IVIZ-08-002] Hewlett-Packard BIOS Plain Text Password Disclosure iViZ Security Advisories (Mon Aug 25 2008 - 11:54:50 EEST)
[IVIZ-08-005] IBM Lenovo BIOS Plain Text Password Disclosure iViZ Security Advisories (Mon Aug 25 2008 - 12:09:06 EEST)
[security bulletin] HPSBUX02365 SSRT080118 rev.1 - HP-UX Running Apache, Remote Cross Site Scripting (XSS) or Denial of Service (DoS) security-alert@hp.com (Thu Aug 28 2008 - 15:22:25 EEST)
reviving the botnets@ mailing list: a new statregy in fighting cyber crime Gadi Evron (Thu Aug 28 2008 - 15:43:23 EEST)
ZDI-08-054: Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow Vulnerability zdi-disclosures@3com.com (Thu Aug 28 2008 - 23:13:41 EEST)
[scip_Advisory 3807] Dreambox DM500 webserver long URL request denial of service Marc Ruef (Fri Aug 29 2008 - 11:41:13 EEST)
[Advisory] Invision Power Board <= 2.3.5 Multiple Vulnerabilities and Security Bypass gmdarkfig@gmail.com (Fri Aug 29 2008 - 13:49:51 EEST)
[ MDVSA-2008:181 ] ipsec-tools security@mandriva.com (Fri Aug 29 2008 - 08:16:01 EEST)
[Exploit] Invision Power Board <= 2.3.5 Multiple Vulnerabilities gmdarkfig@gmail.com (Fri Aug 29 2008 - 13:50:37 EEST)
Re: [Exploit] Invision Power Board <= 2.3.5 Multiple Vulnerabilities gmdarkfig@gmail.com (Fri Aug 29 2008 - 13:34:49 EEST)
SecurityFocus Linux Newsletter #404 sfa@securityfocus.com (Sat Aug 30 2008 - 01:41:17 EEST)
SecurityFocus Microsoft Newsletter #409 sfa@securityfocus.com (Sat Aug 30 2008 - 01:41:04 EEST)
SecurityFocus Newsletter #468 sfa@securityfocus.com (Sat Aug 30 2008 - 01:41:12 EEST)
VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues. VMware Security team (Sat Aug 30 2008 - 03:08:36 EEST)
Re: [Advisory] Invision Power Board <= 2.3.5 Multiple Vulnerabilities and Security Bypass gmdarkfig@gmail.com (Sat Aug 30 2008 - 11:36:01 EEST)
[SECURITY] [DSA-1597-2] New mt-daapd package fix regression Devin Carraway (Sat Aug 30 2008 - 20:33:39 EEST)

Last message date: Sat Aug 30 2008 - 21:36:32 EEST
Archived on: Sat Aug 30 2008 - 21:36:32 EEST

283 messages sorted by: [ author ] [ thread ] [ subject ]

This archive was generated by hypermail 2b28 : Sat Aug 30 2008 - 21:36:32 EEST

stdinBy Date

stdin
By Date