stdin
By Subject

283 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Fri Aug 01 2008 - 17:42:20 EEST
Ending: Sat Aug 30 2008 - 21:36:32 EEST

8e6 Technologies R3000 Internet Filter Bypass with Host Decoy
- jyoung01@americafirst.com (Wed Aug 06 2008 - 00:09:35 EEST)
- nnposter@disclosed.not (Tue Aug 05 2008 - 10:19:46 EEST)
[ GLSA 200807-16 ] Python: Multiple vulnerabilities
- Robert Buchholz (Fri Aug 01 2008 - 02:33:28 EEST)
[ GLSA 200808-01 ] xine-lib: User-assisted execution of arbitrary code
- Robert Buchholz (Wed Aug 06 2008 - 03:02:36 EEST)
[ GLSA 200808-02 ] Net-SNMP: Multiple vulnerabilities
- Robert Buchholz (Wed Aug 06 2008 - 03:30:01 EEST)
[ GLSA 200808-03 ] Mozilla products: Multiple vulnerabilities
- Robert Buchholz (Wed Aug 06 2008 - 03:42:21 EEST)
[ GLSA 200808-04 ] Wireshark: Denial of Service
- Robert Buchholz (Wed Aug 06 2008 - 03:46:00 EEST)
[ GLSA 200808-05 ] ISC DHCP: Denial of Service
- Tobias Heinlein (Wed Aug 06 2008 - 23:16:35 EEST)
[ GLSA 200808-06 ] libxslt: Execution of arbitrary code
- Tobias Heinlein (Wed Aug 06 2008 - 23:18:44 EEST)
[ GLSA 200808-07 ] ClamAV: Multiple Denials of Service
- Raphael Marichez (Fri Aug 08 2008 - 20:09:00 EEST)
[ GLSA 200808-08 ] stunnel: Security bypass
- Raphael Marichez (Fri Aug 08 2008 - 20:26:38 EEST)
[ GLSA 200808-09 ] OpenLDAP: Denial of Service vulnerability
- Raphael Marichez (Fri Aug 08 2008 - 20:31:00 EEST)
[ GLSA 200808-10 ] Adobe Reader: User-assisted execution of arbitrary code
- Robert Buchholz (Sun Aug 10 2008 - 01:43:57 EEST)
[ GLSA 200808-11 ] UUDeview: Insecure temporary file creation
- Pierre-Yves Rofes (Mon Aug 11 2008 - 21:49:08 EEST)
[ GLSA 200808-12 ] Postfix: Local privilege escalation vulnerability
- Raphael Marichez (Fri Aug 15 2008 - 01:41:07 EEST)
[ MDVSA-2008:160 ] libxslt
- security@mandriva.com (Fri Aug 01 2008 - 23:48:00 EEST)
[ MDVSA-2008:161 ] rxvt
- security@mandriva.com (Thu Aug 07 2008 - 23:51:00 EEST)
[ MDVSA-2008:162 ] qemu
- security@mandriva.com (Fri Aug 08 2008 - 02:55:00 EEST)
[ MDVSA-2008:163 ] python
- security@mandriva.com (Fri Aug 08 2008 - 04:26:00 EEST)
[ MDVSA-2008:164 ] python
- security@mandriva.com (Fri Aug 08 2008 - 04:38:00 EEST)
[ MDVSA-2008:166 ] clamav
- security@mandriva.com (Wed Aug 13 2008 - 03:15:00 EEST)
[ MDVSA-2008:167 ] kernel
- security@mandriva.com (Wed Aug 13 2008 - 03:10:00 EEST)
[ MDVSA-2008:168 ] stunnel
- security@mandriva.com (Thu Aug 14 2008 - 07:11:01 EEST)
[ MDVSA-2008:169 ] hplip
- security@mandriva.com (Thu Aug 14 2008 - 07:15:00 EEST)
[ MDVSA-2008:170 ] cups
- security@mandriva.com (Thu Aug 14 2008 - 07:43:00 EEST)
[ MDVSA-2008:171 ] postfix
- security@mandriva.com (Fri Aug 15 2008 - 23:44:00 EEST)
[ MDVSA-2008:172 ] amarok
- security@mandriva.com (Sat Aug 16 2008 - 00:54:00 EEST)
[ MDVSA-2008:173 ] kdegraphics
- security@mandriva.com (Tue Aug 19 2008 - 23:46:00 EEST)
[ MDVSA-2008:174 ] kernel
- security@mandriva.com (Wed Aug 20 2008 - 04:14:01 EEST)
[ MDVSA-2008:175 ] yelp
- security@mandriva.com (Wed Aug 20 2008 - 22:16:00 EEST)
[ MDVSA-2008:176 ] mtr
- security@mandriva.com (Thu Aug 21 2008 - 00:11:00 EEST)
[ MDVSA-2008:177 ] xine-lib
- security@mandriva.com (Thu Aug 21 2008 - 06:32:01 EEST)
[ MDVSA-2008:178 ] xine-lib
- security@mandriva.com (Thu Aug 21 2008 - 08:38:01 EEST)
[ MDVSA-2008:179 ] metisse
- security@mandriva.com (Fri Aug 22 2008 - 00:41:01 EEST)
[ MDVSA-2008:180 ] libxml2
- security@mandriva.com (Fri Aug 22 2008 - 02:57:01 EEST)
[ MDVSA-2008:180-1 ] libxml2
- security@mandriva.com (Tue Aug 26 2008 - 22:51:00 EEST)
[ MDVSA-2008:181 ] ipsec-tools
- security@mandriva.com (Fri Aug 29 2008 - 08:16:01 EEST)
[Advisory] Invision Power Board <= 2.3.5 Multiple Vulnerabilities and Security Bypass
- gmdarkfig@gmail.com (Sat Aug 30 2008 - 11:36:01 EEST)
- gmdarkfig@gmail.com (Fri Aug 29 2008 - 13:49:51 EEST)
[AJECT] hMailServer 4.4.1 DoS vulnerability
- João Antunes (Tue Aug 12 2008 - 19:53:35 EEST)
[AJECT] NoticeWare IMAP Email Server 4.6.2 DoS vulnerability
- João Antunes (Fri Aug 08 2008 - 13:41:13 EEST)
[AJECT] WinGate Email Server (IMAP) vulnerability
- João Antunes (Fri Aug 08 2008 - 17:16:08 EEST)
[CVE-2008-1232] Apache Tomcat XSS vulnerability
- Mark Thomas (Fri Aug 01 2008 - 17:06:19 EEST)
[CVE-2008-2370] Apache Tomcat information disclosure vulnerability
- Mark Thomas (Fri Aug 01 2008 - 17:06:33 EEST)
[DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3
- o_0.iahumeil@yahoo.com (Sun Aug 10 2008 - 23:13:39 EEST)
- Digital Security Research Group [DSecRG] (Fri Aug 08 2008 - 20:29:49 EEST)
[DSECRG-08-036] Multiple Security Vulnerabilities in Freeway eCommerce 1.4.1.171
- Digital Security Research Group [DSecRG] (Mon Aug 18 2008 - 15:39:24 EEST)
[DSECRG-08-037] Multiple Local File Include Vulnerabilities in Pluck CMS 4.5.2
- Digital Security Research Group [DSecRG] (Mon Aug 25 2008 - 16:51:28 EEST)
[DSECRG-08-038] Multiple Local File Include Vulnerabilities in ezContents CMS 2.0.3
- Digital Security Research Group [DSecRG] (Mon Aug 25 2008 - 16:53:13 EEST)
[Exploit] Invision Power Board <= 2.3.5 Multiple Vulnerabilities
- gmdarkfig@gmail.com (Fri Aug 29 2008 - 13:34:49 EEST)
- gmdarkfig@gmail.com (Fri Aug 29 2008 - 13:50:37 EEST)
[Full-disclosure] [funsec] facebook messages worm
- Juha-Matti Laurio (Thu Aug 07 2008 - 08:00:13 EEST)
[funsec] facebook messages worm
- Juha-Matti Laurio (Fri Aug 08 2008 - 12:56:17 EEST)
- Gadi Evron (Thu Aug 07 2008 - 08:15:24 EEST)
- Gadi Evron (Thu Aug 07 2008 - 00:50:16 EEST)
- Gadi Evron (Thu Aug 07 2008 - 04:45:30 EEST)
[funsec] Internet attacks against Georgian web sites
- Paul Ferguson (Mon Aug 11 2008 - 10:12:46 EEST)
- Paul Ferguson (Mon Aug 11 2008 - 09:52:56 EEST)
[IVIZ-08-002] Hewlett-Packard BIOS Plain Text Password Disclosure
- iViZ Security Advisories (Mon Aug 25 2008 - 11:54:50 EEST)
[IVIZ-08-003] TrueCrypt Security Model bypass exploiting wrong BIOS API usage
- iViZ Security Advisories (Mon Aug 25 2008 - 11:57:22 EEST)
[IVIZ-08-004] Intel BIOS Plain Text Password Disclosure
- iViZ Security Advisories (Mon Aug 25 2008 - 12:06:37 EEST)
[IVIZ-08-005] IBM Lenovo BIOS Plain Text Password Disclosure
- iViZ Security Advisories (Mon Aug 25 2008 - 12:09:06 EEST)
[IVIZ-08-006] DiskCryptor Security Model bypass exploiting wrong BIOS API usage
- iViZ Security Advisories (Mon Aug 25 2008 - 12:11:40 EEST)
[IVIZ-08-007] DriveCrypt Security Model bypass exploiting wrong BIOS API usage
- iViZ Security Advisories (Mon Aug 25 2008 - 12:13:23 EEST)
[IVIZ-08-008] LILO Security Model bypass exploiting wrong BIOS API usage
- iViZ Security Advisories (Mon Aug 25 2008 - 12:15:28 EEST)
[IVIZ-08-009] Grub Legacy Security Model bypass exploiting wrong BIOS API usage
- iViZ Security Advisories (Mon Aug 25 2008 - 12:17:36 EEST)
[oCERT-2008-008] multiple heap overflows in xine-lib
- Will Drewry (Fri Aug 22 2008 - 21:11:52 EEST)
[OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory
- Ben Laurie (Fri Aug 08 2008 - 22:41:01 EEST)
- Dick Hardt (Fri Aug 08 2008 - 20:29:24 EEST)
- Ben Laurie (Fri Aug 08 2008 - 17:51:34 EEST)
- Gerald Beuchelt (Fri Aug 08 2008 - 16:17:51 EEST)
[scip_Advisory 3807] Dreambox DM500 webserver long URL request denial of service
- Marc Ruef (Fri Aug 29 2008 - 11:41:13 EEST)
[SE-2008-01] J2ME Security Vulnerabilities 2008
- 0xjbrown41@gmail.com (Fri Aug 08 2008 - 03:49:21 EEST)
- Security Explorations (Fri Aug 08 2008 - 01:51:37 EEST)
- 0xjbrown41@gmail.com (Thu Aug 07 2008 - 21:55:06 EEST)
- Security Explorations (Thu Aug 07 2008 - 18:26:14 EEST)
[security bulletin] HPSBMA02345 SSRT080039 rev.2 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS)
- security-alert@hp.com (Mon Aug 18 2008 - 18:18:13 EEST)
[security bulletin] HPSBMA02363 SSRT080106 rev.1 - HP Enterprise Discovery Running on Windows, Remote Authorized User, Gain Extended Privileges
- security-alert@hp.com (Wed Aug 27 2008 - 16:01:08 EEST)
[security bulletin] HPSBOV02357 SSRT080058 rev.1 - HP OpenVMS TCP/IP Services running BIND, Remote DNS Cache Poisoning
- security-alert@hp.com (Thu Aug 14 2008 - 14:58:33 EEST)
[security bulletin] HPSBST02360 SSRT080117 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-041 to MS08-051
- security-alert@hp.com (Tue Aug 19 2008 - 15:13:55 EEST)
[security bulletin] HPSBTU02358 SSRT080058 rev.1 - HP Tru64 UNIX running BIND, Remote DNS Cache Poisoning
- security-alert@hp.com (Wed Aug 13 2008 - 23:02:59 EEST)
[security bulletin] HPSBUX02351 SSRT080058 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning
- security-alert@hp.com (Wed Aug 06 2008 - 23:45:32 EEST)
[security bulletin] HPSBUX02351 SSRT080058 rev.4 - HP-UX Running BIND, Remote DNS Cache Poisoning
- security-alert@hp.com (Sat Aug 09 2008 - 13:19:35 EEST)
[security bulletin] HPSBUX02355 SSRT080023 rev.1 - HP-UX Using libc, Remote Denial of Service (DoS)
- security-alert@hp.com (Thu Aug 07 2008 - 00:00:00 EEST)
[security bulletin] HPSBUX02356 SSRT080051 rev.1 - HP-UX Running ftpd, Remote Privileged Access
- security-alert@hp.com (Tue Aug 12 2008 - 22:50:23 EEST)
[security bulletin] HPSBUX02365 SSRT080118 rev.1 - HP-UX Running Apache, Remote Cross Site Scripting (XSS) or Denial of Service (DoS)
- security-alert@hp.com (Thu Aug 28 2008 - 15:22:25 EEST)
[SECURITY] [DSA 1625-1] New cupsys packages fix arbitrary code execution
- Thijs Kinkhorst (Fri Aug 01 2008 - 10:52:06 EEST)
[SECURITY] [DSA 1626-1] New httrack packages fix arbitrary code execution
- Thijs Kinkhorst (Fri Aug 01 2008 - 10:52:19 EEST)
[SECURITY] [DSA 1627-1] New opensc packages fix smart card vulnerability
- Thijs Kinkhorst (Mon Aug 04 2008 - 12:00:29 EEST)
[SECURITY] [DSA 1627-1] New PowerDNS packages reduce DNS spoofing risk
- Florian Weimer (Sun Aug 10 2008 - 23:34:06 EEST)
[SECURITY] [DSA 1629-1] New postfix packages fix privilege escalation
- Thijs Kinkhorst (Mon Aug 18 2008 - 23:51:28 EEST)
[SECURITY] [DSA 1629-2] New postfix packages fix installability problem on i386
- Thijs Kinkhorst (Tue Aug 19 2008 - 12:02:12 EEST)
[SECURITY] [DSA 1630-1] New Linux 2.6.18 packages fix several vulnerabilities
- dann frazier (Thu Aug 21 2008 - 19:34:06 EEST)
[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service
- Steve Kemp (Tue Aug 26 2008 - 20:53:23 EEST)
- Steve Kemp (Fri Aug 22 2008 - 22:19:24 EEST)
[SECURITY] [DSA 1632-1] New tiff packages fix arbitrary code execution
- Thijs Kinkhorst (Tue Aug 26 2008 - 19:22:23 EEST)
[SECURITY] [DSA-1597-2] New mt-daapd package fix regression
- Devin Carraway (Sat Aug 30 2008 - 20:33:39 EEST)
[TKADV2008-006] CA HIPS KmxFw.sys Kernel Memory Corruption
- Tobias Klein (Wed Aug 13 2008 - 00:27:12 EEST)
[USN-626-2] Devhelp, Epiphany, Midbrowser and Yelp update
- Jamie Strandboge (Mon Aug 04 2008 - 16:46:45 EEST)
[USN-632-1] Python vulnerabilities
- Kees Cook (Fri Aug 01 2008 - 17:51:27 EEST)
[USN-633-1] libxslt vulnerabilities
- Kees Cook (Fri Aug 01 2008 - 18:26:31 EEST)
[USN-634-1] OpenLDAP vulnerability
- Kees Cook (Fri Aug 01 2008 - 18:27:01 EEST)
[USN-635-1] xine-lib vulnerabilities
- Jamie Strandboge (Wed Aug 06 2008 - 22:37:14 EEST)
[USN-636-1] Postfix vulnerability
- Kees Cook (Wed Aug 20 2008 - 01:11:12 EEST)
[USN-638-1] Yelp vulnerability
- Kees Cook (Thu Aug 28 2008 - 00:54:46 EEST)
Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting
- marc_bevand@rapid7.com (Wed Aug 06 2008 - 20:26:48 EEST)
Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability
- emericboit@yahoo.fr (Mon Aug 11 2008 - 11:52:44 EEST)
Apple OSX Leopard (10.5+), inadequate ACL insight can create vuln
- bgtrq.tryfixingit@antichef.net (Tue Aug 19 2008 - 15:44:38 EEST)
Arbitrary Code Execution in Commands: K, Control-], g]
- Michael Wojcik (Mon Aug 25 2008 - 16:57:15 EEST)
CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability
- Williams, James K (Fri Aug 01 2008 - 13:52:07 EEST)
CA Host-Based Intrusion Prevention System SDK kmxfw.sys Multiple Vulnerabilities
- Williams, James K (Tue Aug 12 2008 - 21:53:20 EEST)
CA Products That Embed Ingres Multiple Vulnerabilities
- Williams, James K (Wed Aug 06 2008 - 18:48:35 EEST)
Call For Papers - Hackers 2 Hackers Conference 5th Edition - Brazil
- cfp@h2hc.com.br (Fri Aug 22 2008 - 06:40:19 EEST)
Cisco Security Advisory: Vulnerability in Cisco WebEx Meeting Manager ActiveX Control
- Cisco Systems Product Security Incident Response Team (Fri Aug 15 2008 - 06:15:00 EEST)
Contest: Best Advances for OpenVAS Network Vulnerability Tests
- Michael Wiegand (Fri Aug 22 2008 - 15:09:08 EEST)
CORE-2008-0103: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass
- CORE Security Technologies Advisories (Thu Aug 14 2008 - 00:01:10 EEST)
CORE-2008-0624: Anzio Web Print Object Buffer Overflow
- CORE Security Technologies Advisories (Thu Aug 21 2008 - 00:23:21 EEST)
CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability
- CORE Security Technologies Advisories (Mon Aug 04 2008 - 23:38:32 EEST)
CORE-2008-0813 - vBulletin Cross Site Scripting Vulnerability
- CORE Security Technologies Advisories (Thu Aug 21 2008 - 00:56:10 EEST)
Crafty Syntax Live Help <= 2.14.6 SQL Injection
- GulfTech Security Research (Mon Aug 25 2008 - 22:48:27 EEST)
DNS Multiple Race Exploiting Tool
- AR (Fri Aug 01 2008 - 18:33:21 EEST)
e107 <= 0.7.11 Arbitrary Variable Overwriting
- GulfTech Security Research (Thu Aug 07 2008 - 22:13:33 EEST)
Endless loop and resources consumption in Halo 1.0.7.0615
- Luigi Auriemma (Thu Aug 07 2008 - 02:00:31 EEST)
eVision 2.0 Sql Injection/Remote File Disclosure/Remote File Upload/IG
- r3d.w0rm@yahoo.com (Fri Aug 01 2008 - 11:19:22 EEST)
facebook messages worm
- Gadi Evron (Thu Aug 07 2008 - 00:44:03 EEST)
Fedora confirms: Our servers were breached
- Juha-Matti Laurio (Fri Aug 22 2008 - 17:41:59 EEST)
- Dragos Ruiu (Fri Aug 22 2008 - 23:25:41 EEST)
file upload exploit
- win32.exe@w.cn (Fri Aug 01 2008 - 20:21:45 EEST)
FlexCMS <= 2.5 Cross Site Scripting Vulnerability
- irancrash@gmail.com (Fri Aug 15 2008 - 13:33:35 EEST)
Folder Lock <= 5.9.5 Local Password Information Disclosure
- glafkos@infosec.org.uk (Wed Aug 20 2008 - 05:11:29 EEST)
Google Notebook and Google Bookmarks Cross Site Scripting Vulnerabilities
- alfredo.melloni@gmail.com (Wed Aug 06 2008 - 17:26:23 EEST)
Homes 4 Sale Remote XSS Vulnerabilitiy
- Ghost hacker (Sat Aug 02 2008 - 10:59:48 EEST)
Hopeless comments regarding the pointless "HP System Management Homepage (SMH) Unspecified XSS"
- Luca.carettoni (Tue Aug 26 2008 - 13:25:58 EEST)
how to request a cve id?
- William A. Rowe, Jr. (Fri Aug 01 2008 - 23:39:18 EEST)
iDefense Security Advisory 07.31.08: Apple Mac OS X CoreGraphics PDF Type1 Font Integer Overflow Vulnerability
- iDefense Labs (Fri Aug 01 2008 - 21:06:47 EEST)
iDefense Security Advisory 08.01.08: Ingres Database for Linux ingvalidpw Untrusted Library Path Vulnerability
- iDefense Labs (Sat Aug 02 2008 - 07:30:27 EEST)
iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability
- iDefense Labs (Sat Aug 02 2008 - 07:29:53 EEST)
iDefense Security Advisory 08.01.08: Ingres Database for Linux verifydb Insecure File Permissions Modification Vulnerability
- iDefense Labs (Sat Aug 02 2008 - 07:28:45 EEST)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Format String Vulnerabilities
- iDefense Labs (Tue Aug 12 2008 - 19:42:23 EEST)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Stack Buffer Overflow Vulnerabilities
- iDefense Labs (Tue Aug 12 2008 - 19:42:08 EEST)
iDefense Security Advisory 08.12.08: Microsoft Excel Chart AxesSet Invalid Array Index Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 04:06:38 EEST)
iDefense Security Advisory 08.12.08: Microsoft Excel FORMAT Record Invalid Array Index Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 04:09:15 EEST)
iDefense Security Advisory 08.12.08: Microsoft Office BMP Input Filter Heap Overflow Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 02:56:30 EEST)
iDefense Security Advisory 08.12.08: Microsoft Office WPG Image File Heap Buffer Overflow Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 03:14:13 EEST)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Cstring Integer Overflow Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 03:58:41 EEST)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Out of Bounds Array Index Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 03:30:34 EEST)
iDefense Security Advisory 08.12.08: Microsoft Windows Color Management Module Heap Buffer Overflow Vulnerability
- iDefense Labs (Wed Aug 13 2008 - 04:34:35 EEST)
IGES CMS <=2.0 Multiple Vulnerabilities
- admin@bugreport.ir (Tue Aug 05 2008 - 12:59:11 EEST)
IMF 2008 - Call for Participation
- Oliver Goebel (Tue Aug 19 2008 - 22:19:40 EEST)
Interesting things at sec-consult.com, DNS-whitepaper available tomorrow
- Bernhard Mueller (Wed Aug 06 2008 - 01:28:12 EEST)
Internet attacks against Georgian web sites
- Gadi Evron (Mon Aug 11 2008 - 09:40:16 EEST)
K-Links Directory Blind SQL Injection Exploit
- hadihadi_zedehal_2006@yahoo.com (Mon Aug 11 2008 - 04:07:24 EEST)
Kayako SupportSuite < 3.30.00 Multiple Vulnerabilities
- GulfTech Security Research (Sat Aug 09 2008 - 18:21:33 EEST)
Keld: PHP-MySQL News Script 0.7.1 Remote SQL injection Vulnerability
- crimson.loyd@gmail.com (Sun Aug 03 2008 - 13:07:30 EEST)
key blacklisting & file size (was: OpenID/Debian PRNG/DNS Cache poisoning advisory)
- Solar Designer (Fri Aug 08 2008 - 23:04:34 EEST)
Layered Defense Research Advisory: Alcatel-Lucent OmniSwitch products, Stack Buffer Overflow
- dh@layereddefense.com (Tue Aug 12 2008 - 06:56:22 EEST)
libxslt heap overflow
- chris@scary.beasts.org (Fri Aug 01 2008 - 04:03:11 EEST)
Mambo 4.6.2 Full Version - Multiple Cross Site Scripting - By Khashayar Fereidani
- irancrash@gmail.com (Fri Aug 15 2008 - 13:13:37 EEST)
ManageEngine Firewall Analyzer arbitrary file disclosure to authorized user
- Eder Wentz (Sun Aug 17 2008 - 05:51:24 EEST)
Microsoft Windows Messenger Remote Illegal Access Vulnerability
- cocoruder (Thu Aug 14 2008 - 07:08:31 EEST)
MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface
- oliver karow (Fri Aug 15 2008 - 13:26:07 EEST)
Mini-NUKE v2.3 Freehost (tr) Multiple Remote SQL Injection Vulnerabilities
- byccc@live.com (Mon Aug 25 2008 - 23:10:14 EEST)
Multiple Vulnerabilities in AWStats Totals
- Elliot Kendall (Tue Aug 26 2008 - 19:54:46 EEST)
munky-bliki lfi
- r3d.w0rm@yahoo.com (Fri Aug 15 2008 - 13:20:09 EEST)
MyClan Sql Injection
- r3d.w0rm@yahoo.com (Wed Aug 06 2008 - 07:21:26 EEST)
n.runs-SA-2008.005 - Apple Inc. - CoreSevices Frameworkâ€™s CarbonCore Framework - Arbtrary Code Execution (remote
- security@nruns.com (Fri Aug 01 2008 - 20:29:59 EEST)
New paper: An Illustrated Guide to the Kaminsky DNS Vulnerability
- Steve Friedl (Fri Aug 08 2008 - 20:56:53 EEST)
NewsHOWLER 1.03 Beta Cookie Handling Via Sql injection
- r3d.w0rm@yahoo.com (Sun Aug 17 2008 - 19:58:12 EEST)
Nokia 6131 NFC URI/URL Spoofing and DoS Advisory
- Collin R. Mulliner (Sat Aug 16 2008 - 20:15:46 EEST)
Null Byte Local file Inclusion in FAR - PHP Project version:1.0
- William McAfee (Fri Aug 22 2008 - 04:46:53 EEST)
- beenudel1986@gmail.com (Thu Aug 21 2008 - 05:56:42 EEST)
NULL pointer in Ventrilo 3.0.2
- Luigi Auriemma (Wed Aug 13 2008 - 21:13:12 EEST)
OneNews Beta 2 Multiple Vulnerabilities
- crimson.loyd@gmail.com (Sat Aug 23 2008 - 09:05:50 EEST)
OpenID/Debian PRNG/DNS Cache poisoning advisory
- Ben Laurie (Sat Aug 09 2008 - 11:29:09 EEST)
- Tim Dierks (Fri Aug 08 2008 - 22:52:47 EEST)
- \ (Sat Aug 09 2008 - 01:14:46 EEST)
- Leichter, Jerry (Fri Aug 08 2008 - 23:51:10 EEST)
- Forrest J. Cavalier III (Sat Aug 09 2008 - 04:37:44 EEST)
- Florian Weimer (Sat Aug 09 2008 - 00:28:19 EEST)
- Stefan Kanthak (Sat Aug 09 2008 - 01:29:52 EEST)
- Ben Laurie (Tue Aug 12 2008 - 17:42:59 EEST)
- Ben Laurie (Tue Aug 12 2008 - 16:31:00 EEST)
- Clausen, Martin (DK - Copenhagen) (Tue Aug 12 2008 - 11:55:53 EEST)
- Nicolas Williams (Fri Aug 08 2008 - 22:33:10 EEST)
- Eric Rescorla (Fri Aug 08 2008 - 23:33:18 EEST)
- Leichter, Jerry (Fri Aug 08 2008 - 22:52:07 EEST)
- Nicolas Williams (Fri Aug 08 2008 - 23:08:57 EEST)
- Paul Hoffman (Fri Aug 08 2008 - 22:35:43 EEST)
- Nicolas Williams (Fri Aug 08 2008 - 21:47:01 EEST)
- Ben Laurie (Fri Aug 08 2008 - 22:10:41 EEST)
- Eric Rescorla (Fri Aug 08 2008 - 21:20:15 EEST)
- Perry E. Metzger (Fri Aug 08 2008 - 21:08:37 EEST)
- Dan Kaminsky (Fri Aug 08 2008 - 20:43:53 EEST)
- Peter Gutmann (Fri Aug 08 2008 - 20:49:42 EEST)
- Dave Korn (Fri Aug 08 2008 - 20:08:03 EEST)
- Leichter, Jerry (Fri Aug 08 2008 - 20:04:16 EEST)
- Ben Laurie (Fri Aug 08 2008 - 20:11:42 EEST)
- Eric Rescorla (Fri Aug 08 2008 - 19:57:30 EEST)
- Dave Korn (Fri Aug 08 2008 - 19:31:15 EEST)
- Eric Rescorla (Fri Aug 08 2008 - 18:06:25 EEST)
- Ben Laurie (Fri Aug 08 2008 - 17:41:53 EEST)
OpenVMS fingerd remote stack overflow
- Tim Newsham (Fri Aug 08 2008 - 21:24:16 EEST)
- mlbugtraq@noci.xs4all.nl (Thu Aug 07 2008 - 23:51:23 EEST)
- Kevin Finisterre (lists) (Thu Aug 07 2008 - 20:54:30 EEST)
- Alexander Sotirov (Thu Aug 07 2008 - 20:40:16 EEST)
- Shaun Colley (Thu Aug 07 2008 - 02:08:53 EEST)
Ovidentia 6.6.5 XSS (index.php)‏
- mostafa_ragab@msn.com (Mon Aug 18 2008 - 13:27:13 EEST)
Ovidentia Sql Injection
- r3d.w0rm@yahoo.com (Sun Aug 10 2008 - 08:20:16 EEST)
PacSec 2008 CFP (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept .30/ Oct. 1)
- Dragos Ruiu (Tue Aug 26 2008 - 22:33:05 EEST)
PHP Live Helper <= 2.0.1 Multiple Vulnerabilities
- GulfTech Security Research (Sat Aug 16 2008 - 18:09:57 EEST)
PHP-NUKE module Kleinanzeigen SQL injection (lid)
- lovebug@hotmail.it (Wed Aug 06 2008 - 04:43:39 EEST)
Pligg Auto-Voter Using XSS to Bypass CSRF Protection
- michaelbrooks@rooksecurity.com (Sat Aug 02 2008 - 03:04:40 EEST)
Plogger <= 3.0 SQL Injection
- GulfTech Security Research (Tue Aug 05 2008 - 17:19:41 EEST)
Pluck 4.5.2 Multiple Cross Site Scripting Vulnerabilities
- irancrash@gmail.com (Tue Aug 05 2008 - 02:48:27 EEST)
Postfix local privilege escalation via hardlinked symlinks
- Wietse Venema (Thu Aug 14 2008 - 15:03:43 EEST)
PR08-20: Bypassing ASP .NET "ValidateRequest" for Script Injection Attacks
- ProCheckUp Research (Thu Aug 21 2008 - 23:08:41 EEST)
reviving the botnets@ mailing list: a new statregy in fighting cyber crime
- Gadi Evron (Thu Aug 28 2008 - 15:43:23 EEST)
rPSA-2008-0243-1 idle python
- rPath Update Announcements (Wed Aug 13 2008 - 16:17:49 EEST)
rPSA-2008-0245-1 cups
- rPath Update Announcements (Wed Aug 06 2008 - 03:48:11 EEST)
rPSA-2008-0246-1 gaim
- rPath Update Announcements (Wed Aug 06 2008 - 03:52:00 EEST)
rPSA-2008-0247-1 gvim vim vim-minimal
- rPath Update Announcements (Mon Aug 11 2008 - 21:18:27 EEST)
rPSA-2008-0249-1 openldap openldap-clients openldap-servers
- rPath Update Announcements (Mon Aug 11 2008 - 21:22:51 EEST)
rPSA-2008-0253-1 git gitweb
- rPath Update Announcements (Tue Aug 12 2008 - 21:47:50 EEST)
rPSA-2008-0255-1 freetype
- rPath Update Announcements (Fri Aug 15 2008 - 00:27:55 EEST)
rPSA-2008-0259-1 postfix
- rPath Update Announcements (Thu Aug 21 2008 - 03:37:12 EEST)
SECOBJADV-2008-03.2: PartyGaming PartyPoker Malicious Update Vulnerability
- Security Objectives Corporation (Mon Aug 25 2008 - 07:22:23 EEST)
Secunia Research: Calendarix Basic Two SQL Injection Vulnerabilities
- Secunia Research (Mon Aug 25 2008 - 16:08:05 EEST)
Secunia Research: Novell iPrint Client ActiveX Control "GetFileList()" Information Disclosure
- Secunia Research (Mon Aug 25 2008 - 15:14:25 EEST)
Secunia Research: Novell iPrint Client ActiveX Control Multiple Buffer Overflows
- Secunia Research (Mon Aug 25 2008 - 13:59:53 EEST)
Secunia Research: Trend Micro Products Web Management Authentication Bypass
- Secunia Research (Fri Aug 22 2008 - 13:33:36 EEST)
Security Assessment of the Internet Protocol
- Fernando Gont (Thu Aug 14 2008 - 22:10:19 EEST)
SecurityFocus Linux Newsletter #401
- sfa@securityfocus.com (Thu Aug 07 2008 - 03:45:28 EEST)
SecurityFocus Linux Newsletter #402
- sfa@securityfocus.com (Mon Aug 18 2008 - 21:36:43 EEST)
SecurityFocus Linux Newsletter #403
- sfa@securityfocus.com (Tue Aug 26 2008 - 02:01:47 EEST)
SecurityFocus Linux Newsletter #404
- sfa@securityfocus.com (Sat Aug 30 2008 - 01:41:17 EEST)
SecurityFocus Microsoft Newsletter #406
- sfa@securityfocus.com (Thu Aug 07 2008 - 03:45:23 EEST)
SecurityFocus Microsoft Newsletter #407
- Kim Mansour (Sat Aug 16 2008 - 00:13:30 EEST)
SecurityFocus Microsoft Newsletter #408
- sfa@securityfocus.com (Tue Aug 26 2008 - 02:01:40 EEST)
SecurityFocus Microsoft Newsletter #409
- sfa@securityfocus.com (Sat Aug 30 2008 - 01:41:04 EEST)
SecurityFocus Newsletter #465
- sfa@securityfocus.com (Thu Aug 07 2008 - 03:44:29 EEST)
SecurityFocus Newsletter #466
- sfa@securityfocus.com (Mon Aug 18 2008 - 21:36:38 EEST)
SecurityFocus Newsletter #467
- sfa@securityfocus.com (Tue Aug 26 2008 - 02:01:34 EEST)
SecurityFocus Newsletter #468
- sfa@securityfocus.com (Sat Aug 30 2008 - 01:41:12 EEST)
Server termination in America's Army 2.8.3.1
- Luigi Auriemma (Sat Aug 02 2008 - 21:15:17 EEST)
SunShop <= 4.1.4 SQL Injection
- GulfTech Security Research (Tue Aug 19 2008 - 01:06:28 EEST)
Surf Jack - HTTPS will not save you
- lists@enablesecurity.com (Mon Aug 11 2008 - 12:30:37 EEST)
SYM08-015_SFW_SecurityUpdateBypass
- Mike Prosser (Thu Aug 14 2008 - 21:07:49 EEST)
Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter)
- Team SHATTER (Mon Aug 04 2008 - 19:43:27 EEST)
Team SHATTER Security Advisory: SQL Injection in Oracle Application Server (WWEXP_API_ENGINE)
- Team SHATTER (Mon Aug 04 2008 - 19:16:01 EEST)
Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN)
- Team SHATTER (Tue Aug 12 2008 - 00:29:15 EEST)
- Team SHATTER (Mon Aug 04 2008 - 19:41:30 EEST)
TGS CMS Remote Code Execution Exploit
- lcat (Mon Aug 11 2008 - 22:58:44 EEST)
- 0in.email@gmail.com (Sun Aug 03 2008 - 21:21:43 EEST)
TimeTrex Time and Attendance Cookie Theft
- Mike (Sat Aug 23 2008 - 01:49:18 EEST)
- hi@hi.com (Fri Aug 22 2008 - 21:53:29 EEST)
- Alex Eden (Fri Aug 22 2008 - 00:09:59 EEST)
- DoZ@HackersCenter.com (Thu Aug 21 2008 - 19:50:07 EEST)
Tool: PorkBind v1.3 Nameserver Security Scanner (New Version)
- Derek Callaway (Fri Aug 15 2008 - 21:31:41 EEST)
ToorCon 10 Call For Papers
- David Hulton (Wed Aug 20 2008 - 11:33:02 EEST)
ToorCon X CFP Closing and Workshops and Seminars discounted until Friday!
- David Hulton (Tue Aug 26 2008 - 02:03:57 EEST)
UNAK-CMS Lfi
- r3d.w0rm@yahoo.com (Mon Aug 04 2008 - 07:19:35 EEST)
UPDATE: [ GLSA 200804-22 ] PowerDNS Recursor: DNS Cache Poisoning
- Robert Buchholz (Thu Aug 21 2008 - 18:38:51 EEST)
Vanilla <= 1.1.4 Script Injection/ XSS
- GulfTech Security Research (Tue Aug 19 2008 - 17:38:50 EEST)
Vim 7.2c.002 Fixes Arbitrary Command Execution when Handling Tar Archives
- Jan MinÃ¡Å™ (Wed Aug 13 2008 - 17:35:37 EEST)
Vim: Arbitrary Code Execution in Commands: K, Control-], g]
- Jan MinÃ¡Å™ (Fri Aug 22 2008 - 17:25:52 EEST)
Vim: Netrw: FTP User Name and Password Disclosure
- Jan MinÃ¡Å™ (Wed Aug 13 2008 - 00:59:59 EEST)
- Tony Mechelynck (Wed Aug 13 2008 - 01:18:05 EEST)
Vim: Unfixed Vulnerabilities in Tar Plugin Version 20
- Jan MinÃ¡Å™ (Fri Aug 08 2008 - 17:29:53 EEST)
VMSA-2008-0012 Updated VirtualCenter addresses User Account Disclosure Vulnerability
- VMware Security Team (Tue Aug 12 2008 - 21:11:06 EEST)
VMSA-2008-0013 Updated ESX packages for OpenSSL, net-snmp, perl
- VMware Security Team (Tue Aug 12 2008 - 21:13:44 EEST)
VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.
- VMware Security team (Sat Aug 30 2008 - 03:08:36 EEST)
White Wolf Labs #080826-1: Kyocera Mita Scanner File Utility (Multiple)
- Seth Fogie (Tue Aug 26 2008 - 21:05:20 EEST)
Whitepaper: DNS zone redelegation
- Bernhard Mueller (Thu Aug 07 2008 - 11:25:30 EEST)
Windows Vista Power Management & Local Security Policy
- William A. Rowe, Jr. (Fri Aug 01 2008 - 23:43:56 EEST)
Xampp Linux 1.6.7 Multiple Cross Site Scripting Vulnerabilities
- irancrash@gmail.com (Mon Aug 04 2008 - 17:13:04 EEST)
XSS and Data Manipulation attacks found in CMS PHPCart.
- vaibhav aher (Thu Aug 28 2008 - 06:57:48 EEST)
ZDI-08-048: Microsoft Excel COUNTRY Record Memory Corruption Vulnerability
- zdi-disclosures@3com.com (Wed Aug 13 2008 - 00:42:11 EEST)
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption
- zdi-disclosures@3com.com (Wed Aug 13 2008 - 00:43:24 EEST)
ZDI-08-050: Microsoft Internet Explorer XHTML Rendering Memory Corruption Vulnerability
- zdi-disclosures@3Com.com (Wed Aug 13 2008 - 00:46:03 EEST)
ZDI-08-051: Microsoft Internet Explorer Table Layout Memory Corruption Vulnerability
- zdi-disclosures@3COM.COM (Wed Aug 13 2008 - 00:47:07 EEST)
ZDI-08-053: Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability
- zdi-disclosures@3com.com (Thu Aug 14 2008 - 22:28:01 EEST)
ZDI-08-054: Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow Vulnerability
- zdi-disclosures@3com.com (Thu Aug 28 2008 - 23:13:41 EEST)
ZoneMinder Multiple Vulnerabilities
- filip.palian@pjwstk.edu.pl (Tue Aug 26 2008 - 15:53:12 EEST)

Last message date: Sat Aug 30 2008 - 21:36:32 EEST
Archived on: Sat Aug 30 2008 - 21:36:32 EEST

283 messages sorted by: [ author ] [ date ] [ thread ]

This archive was generated by hypermail 2b28 : Sat Aug 30 2008 - 21:36:32 EEST

stdinBy Subject

stdin
By Subject