stdin
By Date

Most recent messages
287 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Mon Dec 01 2008 - 17:56:27 EET
Ending: Wed Dec 31 2008 - 21:58:33 EET

[SECURITY] [DSA 1673-1] New wireshark packages fix several vulnerabilities Moritz Muehlenhoff (Sun Nov 30 2008 - 01:07:40 EET)
[SECURITY] [DSA 1674-1] New jailer packages fix denial of service Moritz Muehlenhoff (Sun Nov 30 2008 - 10:33:23 EET)
[SECURITY] [DSA 1675-1] New phpmyadmin packages fix cross site scripting Thijs Kinkhorst (Sun Nov 30 2008 - 14:53:28 EET)
[TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability Tobias Klein (Sun Nov 30 2008 - 16:54:47 EET)
/bin/login gives root to group utmp Paul Szabo (Sun Nov 30 2008 - 21:51:11 EET)
Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability het_ebadi@yahoo.com (Sun Nov 30 2008 - 10:39:26 EET)
Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability zimpel@t-online.de (Mon Dec 01 2008 - 10:43:27 EET)
[BMSA 2008-09] Two buffer overflow vulnerabilities in Rumpus v6.0 Nam Nguyen (Mon Dec 01 2008 - 18:56:19 EET)
[USN-681-1] ImageMagick vulnerability Marc Deslauriers (Mon Dec 01 2008 - 19:11:08 EET)
[USN-682-1] libvorbis vulnerabilities Marc Deslauriers (Mon Dec 01 2008 - 19:11:59 EET)
[SECURITY] [DSA 1676-1] New flamethrower packages fix denial of service dann frazier (Tue Dec 02 2008 - 00:49:35 EET)
Dates for SyScan'09 organiser@syscan.org (Tue Dec 02 2008 - 14:16:44 EET)
Cpanel fantastico Privilege Escalation "ModSec and PHP restriction Bypass" l1un@hotmail.com (Tue Dec 02 2008 - 03:07:03 EET)
Re: /bin/login gives root to group utmp 0xjbrown41@gmail.com (Mon Dec 01 2008 - 19:35:20 EET)
[ GLSA 200812-01 ] OptiPNG: User-assisted execution of arbitrary code Robert Buchholz (Tue Dec 02 2008 - 19:25:54 EET)
[ GLSA 200812-06 ] libxml2: Multiple vulnerabilities Robert Buchholz (Tue Dec 02 2008 - 19:42:03 EET)
[ GLSA 200812-03 ] IPsec-Tools: racoon Denial of Service Robert Buchholz (Tue Dec 02 2008 - 19:30:56 EET)
[USN-683-1] Imlib2 vulnerability Marc Deslauriers (Tue Dec 02 2008 - 18:24:02 EET)
[ GLSA 200812-05 ] libsamplerate: User-assisted execution of arbitrary code Robert Buchholz (Tue Dec 02 2008 - 19:40:19 EET)
[ GLSA 200812-04 ] lighttpd: Multiple vulnerabilities Robert Buchholz (Tue Dec 02 2008 - 19:33:06 EET)
[ GLSA 200812-02 ] enscript: User-assisted execution of arbitrary code Robert Buchholz (Tue Dec 02 2008 - 19:28:07 EET)
[ GLSA 200812-07 ] Mantis: Multiple vulnerabilities Robert Buchholz (Tue Dec 02 2008 - 19:55:03 EET)
[SECURITY] [DSA 1677-1] New CUPS packages fix arbitrary code execution Martin Schulze (Tue Dec 02 2008 - 23:09:10 EET)
Re: Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability zimpel@t-online.de (Wed Dec 03 2008 - 09:48:44 EET)
VMSA-2008-0019 VMware Hosted products and patches for ESX and ESXi resolve a critical security issue and update bzip2 VMware Security team (Wed Dec 03 2008 - 07:24:01 EET)
[HACKATTACK Advisory 20081203]Pro Clan Manager 0.4.2 - Session Fixation office@hackattack.at (Wed Dec 03 2008 - 14:40:59 EET)
[SECURITY] [DSA 1678-1] New perl packages fix privilege escalation Steffen Joeris (Wed Dec 03 2008 - 08:15:24 EET)
[SECURITY] [DSA 1679-1] New awstats packages fix cross-site scripting Florian Weimer (Wed Dec 03 2008 - 13:05:53 EET)
[USN-684-1] ClamAV vulnerability Kees Cook (Wed Dec 03 2008 - 00:20:25 EET)
[SVRT-06-08] MULTI SECURITY VULNERABILITIES IN MVNFORUM SVRT-Bkis (Wed Dec 03 2008 - 15:02:19 EET)
[security bulletin] HPSBUX02389 SSRT080141 rev.1 - HP-UX, Local Denial of Service (DoS) security-alert@hp.com (Wed Dec 03 2008 - 16:41:40 EET)
Re: [HACKATTACK Advisory 20081127]Social Impress CMS 1.1 - Session Fixation rene.sato@gmx.de (Wed Dec 03 2008 - 19:47:38 EET)
Re: VMSA-2008-0019 VMware Hosted products and patches for ESX and ESXi resolve a critical security issue and update bzip2 Steve Shockley (Wed Dec 03 2008 - 20:42:11 EET)
[USN-685-1] Net-SNMP vulnerabilities Kees Cook (Thu Dec 04 2008 - 00:41:30 EET)
Re: [USN-684-1] ClamAV vulnerability 0xjbrown41@gmail.com (Thu Dec 04 2008 - 04:31:41 EET)
[USN-686-1] AWStats vulnerability Kees Cook (Thu Dec 04 2008 - 02:16:57 EET)
[ MDVSA-2008:236 ] vim security@mandriva.com (Thu Dec 04 2008 - 06:16:00 EET)
Advisory 06/2008: PHP ZipArchive::extractTo() Directory Traversal Vulnerability Stefan Esser (Thu Dec 04 2008 - 09:39:36 EET)
DDIVRT-2008-18 Orb Denial of Service DDI.VulnerabilityAlert@ddifrontline.com (Thu Dec 04 2008 - 16:51:15 EET)
[SECURITY] [DSA 1680-1] New clamav packages fix potential code execution Florian Weimer (Thu Dec 04 2008 - 10:26:17 EET)
Joomla Component GameQ r3d.w0rm@yahoo.com (Thu Dec 04 2008 - 17:20:16 EET)
CVE-2008-2086: Java Web Start File Inclusion via System Properties Override VSR Advisories (Thu Dec 04 2008 - 06:13:54 EET)
[UPRSN] Ubuntu Privacy Remix 8.04r1 fixes security issues Ubuntu Privacy Remix Team (Thu Dec 04 2008 - 16:46:55 EET)
Re: XSS in Internet Explorer 6 and 7 MustLive (Thu Dec 04 2008 - 19:50:06 EET)
[SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities dann frazier (Thu Dec 04 2008 - 19:59:11 EET)
iDefense Security Advisory 12.04.08: Sun Java JRE TrueType Font Parsing Heap Overflow Vulnerability iDefense Labs (Thu Dec 04 2008 - 21:41:13 EET)
Joomla Component mydyngallery r3d.w0rm@yahoo.com (Thu Dec 04 2008 - 22:33:03 EET)
iDefense Security Advisory 12.04.08: Sun Java Web Start GIF Decoding Memory Corruption Vulnerability iDefense Labs (Thu Dec 04 2008 - 23:39:20 EET)
iDefense Security Advisory 12.04.08: Sun Java JRE Pack200 Decompression Integer Overflow Vulnerability iDefense Labs (Fri Dec 05 2008 - 00:00:47 EET)
Re: Joomla Component GameQ packet@packetstormsecurity.org (Fri Dec 05 2008 - 00:08:05 EET)
[ MDVSA-2008:237 ] apache2 security@mandriva.com (Fri Dec 05 2008 - 00:15:00 EET)
[USN-687-1] nfs-utils vulnerability Marc Deslauriers (Fri Dec 05 2008 - 00:29:05 EET)
iDefense Security Advisory 12.04.08: Sun Java JRE TrueType Font Parsing Integer Overflow Vulnerability iDefense Labs (Fri Dec 05 2008 - 00:35:06 EET)
SecurityFocus Newsletter #481 sfa@securityfocus.com (Fri Dec 05 2008 - 08:16:59 EET)
SecurityFocus Microsoft Newsletter #422 sfa@securityfocus.com (Fri Dec 05 2008 - 08:17:05 EET)
SecurityFocus Linux Newsletter #417 sfa@securityfocus.com (Fri Dec 05 2008 - 08:17:10 EET)
ZDI-08-077: Trillian AIM IMG Tag Parsing Stack Overflow Vulnerability zdi-disclosures@3com.com (Fri Dec 05 2008 - 02:17:48 EET)
ZDI-08-078: Trillian IMG SRC ID Memory Corruption Vulnerability zdi-disclosures@3com.com (Fri Dec 05 2008 - 02:18:08 EET)
ZDI-08-079: Trillian AIM Plugin Malformed XML Tag Heap Overflow Vulnerability zdi-disclosures@3com.com (Fri Dec 05 2008 - 02:18:26 EET)
ZDI-08-080: Sun Java AWT Library Sandbox Violation Vulnerability zdi-disclosures@3com.com (Fri Dec 05 2008 - 02:18:45 EET)
ZDI-08-081: Sun Java Web Start and Applet Multiple Sandbox Bypass Vulnerabilities zdi-disclosures@3com.com (Fri Dec 05 2008 - 02:19:04 EET)
[ MDVSA-2008:238 ] libsamplerate security@mandriva.com (Fri Dec 05 2008 - 03:34:00 EET)
CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table Hugo Dias (Fri Dec 05 2008 - 04:06:02 EET)
RE: DDIVRT-DDIVRT-2008-15 iPhone Configuration Web Utility 1.0 for Windows Directory Traversal VulnerabilityAlert@ddifrontline.com (Fri Dec 05 2008 - 18:17:59 EET)
Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file Eygene Ryabinkin (Sat Dec 06 2008 - 14:47:14 EET)
Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file Ilia Alshanetsky (Sat Dec 06 2008 - 17:00:14 EET)
[ MDVSA-2008:239 ] clamav security@mandriva.com (Sat Dec 06 2008 - 04:42:00 EET)
Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file Eygene Ryabinkin (Sat Dec 06 2008 - 19:48:05 EET)
[ GLSA 200812-08 ] Mgetty: Insecure temporary file usage Pierre-Yves Rofes (Sat Dec 06 2008 - 19:53:43 EET)
SecurityReason: PHP 5.2.6 SAPI php_getuid() overload cxib@securityreason.com (Sat Dec 06 2008 - 21:40:48 EET)
[SECURITY] [DSA 1682-1] New squirrelmail packages fix cross site scripting Thijs Kinkhorst (Sun Dec 07 2008 - 18:22:55 EET)
Two XSS Flaws in PrestaShop 1.1.0.3 th3.r00k.ieatpork@gmail.pork.com (Mon Dec 08 2008 - 05:32:37 EET)
XSS in PHPepperShop v 1.4 th3.r00k.ieatpork@gmail.pork.com (Mon Dec 08 2008 - 05:48:39 EET)
RadAsm <=2.2.1.5 Local Command Execution xhakerman2006@yahoo.com (Mon Dec 08 2008 - 07:54:45 EET)
Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload Eygene Ryabinkin (Mon Dec 08 2008 - 12:49:03 EET)
[DSECRG-08-040] Multiple Local File Include Vulnerabilities in Xoops 2.3.x Digital Security Research Group [DSecRG] (Mon Dec 08 2008 - 14:18:39 EET)
[DSECRG-08-041] Stored XSS Vulnerability in Xoops 2.3.x Digital Security Research Group [DSecRG] (Mon Dec 08 2008 - 14:21:47 EET)
Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload Maksymilian Arciemowicz (Mon Dec 08 2008 - 15:14:36 EET)
Multiple Vendor Anti-Virus Software Malicious WebPage Detection Bypass xhakerman2006@yahoo.com (Mon Dec 08 2008 - 08:26:16 EET)
Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload Eygene Ryabinkin (Mon Dec 08 2008 - 15:47:36 EET)
[SVRT-07-08] Vulnerability in Face Recognition Authentication Mechanism of Lenovo-Asus-Toshiba Laptops SVRT-Bkis (Mon Dec 08 2008 - 06:39:48 EET)
Re: RadAsm <=2.2.1.5 Local Command Execution Li Gen (Mon Dec 08 2008 - 18:07:57 EET)
[security bulletin] HPSBMA02391 SSRT071481 rev.1 - HP OpenView Reporter and HP Reporter Running on Windows, Remote Denial of Service (DoS) security-alert@hp.com (Mon Dec 08 2008 - 21:23:19 EET)
Neostrada Livebox Remote Network Down PoC Exploit 0in.email@gmail.com (Mon Dec 08 2008 - 21:12:51 EET)
[SECURITY] [DSA 1683-1] New streamripper packages fix potential code execution Florian Weimer (Mon Dec 08 2008 - 20:58:30 EET)
[security bulletin] HPSBMA02390 SSRT071481 rev.1 - HP OpenView Performance Agent, HP Performance Agent, Remote Denial of Service (DoS) security-alert@hp.com (Mon Dec 08 2008 - 21:22:27 EET)
DoS Vulnerability in Aruba Mobility Controller Caused by Malformed EAP Frame (Aruba Advisory ID: AID-12808) Robbie (Rupinder) Gill (Mon Dec 08 2008 - 21:20:58 EET)
ZDI-08-082: BMC PatrolAgent Version Logging Format String Vulnerability zdi-disclosures@3com.com (Mon Dec 08 2008 - 21:38:32 EET)
Multiple XSRF in DD-WRT (Remote Root Command Execution) th3.r00k.ieatpork@gmail.pork.com (Mon Dec 08 2008 - 23:35:28 EET)
Re: [Full-disclosure] MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] Peter Watkins (Mon Dec 08 2008 - 23:50:14 EET)
DoS attacks on MIME-capable software via complex MIME emails bruhns@recurity-labs.com (Tue Dec 09 2008 - 00:52:17 EET)
[ MDVSA-2008:236-1 ] vim security@mandriva.com (Tue Dec 09 2008 - 04:38:00 EET)
PHP safe_mode can be bypassed via proc_open() and custom environment. gat3way@gat3way.eu (Tue Dec 09 2008 - 09:52:55 EET)
SEC Consult SA-20081109-0 :: Microsoft SQL Server 2000 sp_replwritetovarbin limited memory overwrite vulnerability Bernhard Mueller (Tue Dec 09 2008 - 14:16:34 EET)
rPSA-2008-0332-1 kernel rPath Update Announcements (Tue Dec 09 2008 - 18:21:52 EET)
Re: DoS attacks on MIME-capable software via complex MIME emails Vladimir '3APA3A' Dubrovin (Tue Dec 09 2008 - 18:53:27 EET)
Multiple Vendor Anti-Virus Software Malicious WebPage Detection Bypass -Update- xhakerman2006@yahoo.com (Tue Dec 09 2008 - 18:34:48 EET)
Secunia Research: Microsoft Word RTF Polyline/Polygon Integer Overflow Secunia Research (Tue Dec 09 2008 - 20:38:46 EET)
Secunia Research: Microsoft Excel NAME Record Array Indexing Vulnerability Secunia Research (Tue Dec 09 2008 - 21:06:04 EET)
CORE-2008-1127 - Vinagre show_error() format string vulnerability CORE Security Technologies Advisories (Tue Dec 09 2008 - 21:49:36 EET)
iDefense Security Advisory 12.09.08: Microsoft Internet Explorer 5.01 EMBED tag Long File Name Extension Stack Buffer Overflow Vulnerability (iDefense Exclusive) iDefense Labs (Tue Dec 09 2008 - 22:16:41 EET)
iDefense Security Advisory 12.09.08: Microsoft Windows Graphics Device Interface Integer Overflow Vulnerability iDefense Labs (Tue Dec 09 2008 - 22:50:39 EET)
Secunia Research: Microsoft Hierarchical FlexGrid Control Integer Overflows Secunia Research (Tue Dec 09 2008 - 22:17:03 EET)
ZDI-08-083: Microsoft Animation ActiveX Control Malformed AVI Parsing Code Execution Vulnerability zdi-disclosures@3com.com (Tue Dec 09 2008 - 23:07:25 EET)
ZDI-08-084: Microsoft Office RTF Consecutive Drawing Object Parsing Heap Corruption Vulnerability zdi-disclosures@3com.com (Tue Dec 09 2008 - 23:08:20 EET)
ZDI-08-085: Microsoft Office RTF Drawing Object Heap Overflow Vulnerability zdi-disclosures@3com.com (Tue Dec 09 2008 - 23:09:35 EET)
ZDI-08-086: Microsoft Office Word Document Table Property Stack Overflow Vulnerability zdi-disclosures@3com.com (Tue Dec 09 2008 - 23:10:15 EET)
ZDI-08-087: Microsoft Internet Explorer Webdav Request Parsing Heap Corruption Vulnerability zdi-disclosures@3com.com (Tue Dec 09 2008 - 23:10:54 EET)
Insomnia : ISVA-081209.1 - IE Webdav Request Parsing Heap Corruption Vulnerability Brett Moore (Wed Dec 10 2008 - 01:32:12 EET)
ISOI 6, Dallas, TX - January 29, 30 Gadi Evron (Wed Dec 10 2008 - 02:33:32 EET)
[USN-689-1] Vinagre vulnerability Kees Cook (Wed Dec 10 2008 - 02:37:07 EET)
[USN-678-2] GnuTLS regression Jamie Strandboge (Wed Dec 10 2008 - 03:00:46 EET)
[SECURITY] [DSA 1684-1] New lcms packages fix multiple vulnerabilities Devin Carraway (Wed Dec 10 2008 - 09:51:43 EET)
[IVIZ-08-011] ClamAV lzh unpacking segmentation fault iViZ Security Advisories (Wed Dec 10 2008 - 13:48:40 EET)
[IVIZ-08-012] Bitdefender antivirus for Linux multiple vulnerabilities iViZ Security Advisories (Wed Dec 10 2008 - 13:51:28 EET)
[IVIZ-08-013] Avast antivirus for Linux multiple vulnerabilities iViZ Security Advisories (Wed Dec 10 2008 - 13:57:26 EET)
[IVIZ-08-014] AVG antivirus for Linux vulnerability iViZ Security Advisories (Wed Dec 10 2008 - 14:01:09 EET)
[IVIZ-08-015] Sophos Antivirus for Linux vulnerability iViZ Security Advisories (Wed Dec 10 2008 - 14:02:49 EET)
[IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted ELF header Security Bypass iViZ Security Advisories (Wed Dec 10 2008 - 14:09:51 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) s.gottschall@dd-wrt.com (Wed Dec 10 2008 - 14:22:56 EET)
Microsoft SQL Server 2005 sp_replwritetovarbin memory overwrite (update to SEC Consult SA-20081209) Bernhard Mueller (Wed Dec 10 2008 - 14:45:02 EET)
CORE-2008-0228: Microsoft Word Malformed FIB Arbitrary Free Vulnerability CORE Security Technologies Advisories (Wed Dec 10 2008 - 17:25:32 EET)
[security bulletin] HPSBUX02393 SSRT080057 rev.1 - HP-UX Running DCE, Remote Denial of Service (DoS) security-alert@hp.com (Wed Dec 10 2008 - 18:36:07 EET)
[ GLSA 200812-09 ] OpenSC: Insufficient protection of smart card PIN Robert Buchholz (Wed Dec 10 2008 - 18:51:45 EET)
[ GLSA 200812-10 ] Archive::Tar: Directory traversal vulnerability Robert Buchholz (Wed Dec 10 2008 - 18:53:21 EET)
Max's Guestbook (XSS) Remote Vulnerability 08253@maurickcollege.nl (Wed Dec 10 2008 - 22:29:05 EET)
iDefense Security Advisory 12.10.08: Microsoft Excel Malformed Object Memoy Corruption Vulnerability iDefense Labs (Wed Dec 10 2008 - 21:55:11 EET)
[ MDVSA-2008:240 ] vinagre security@mandriva.com (Wed Dec 10 2008 - 23:01:00 EET)
CA ARCserve Backup LDBserver Vulnerability Williams, James K (Wed Dec 10 2008 - 23:04:37 EET)
[ GLSA 200812-11 ] CUPS: Multiple vulnerabilities Pierre-Yves Rofes (Thu Dec 11 2008 - 00:16:48 EET)
Browser Security Handbook Michal Zalewski (Thu Dec 11 2008 - 01:05:06 EET)
AST-2008-012: Remote crash vulnerability in IAX2 Asterisk Security Team (Thu Dec 11 2008 - 01:36:45 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) Hanno Böck (Thu Dec 11 2008 - 01:42:59 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) David E. Thiel (Thu Dec 11 2008 - 01:51:01 EET)
Black Hat: New Webinar, Japan audio now on-line. jmoss (Thu Dec 11 2008 - 02:57:41 EET)
aspProductCatalog Sql Injection r3d.w0rm@yahoo.com (Thu Dec 11 2008 - 08:21:42 EET)
Meta Cart Free Database Disclosure r3d.w0rm@yahoo.com (Thu Dec 11 2008 - 10:06:50 EET)
facto Database Disclosure r3d.w0rm@yahoo.com (Thu Dec 11 2008 - 10:15:25 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) pUm (Thu Dec 11 2008 - 10:57:05 EET)
Re[2]: Multiple XSRF in DD-WRT (Remote Root Command Execution) Vladimir '3APA3A' Dubrovin (Thu Dec 11 2008 - 11:55:26 EET)
Secunia Research: CA ARCserve Backup RPC "handle_t" Argument Vulnerability Secunia Research (Thu Dec 11 2008 - 13:10:59 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) Sebastian Gottschall (DD-WRT) (Thu Dec 11 2008 - 15:07:43 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) Sebastian Gottschall (DD-WRT) (Thu Dec 11 2008 - 15:14:58 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) dan.crowley@gmail.com (Thu Dec 11 2008 - 04:14:10 EET)
Aspect9: Internet Explorer 8.0 Beta 2 Anti-XSS Filter Vulnerabilities Rafel Ivgi (Thu Dec 11 2008 - 18:27:43 EET)
Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) David E. Thiel (Thu Dec 11 2008 - 19:57:03 EET)
Re: Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) dan.crowley@gmail.com (Thu Dec 11 2008 - 21:42:58 EET)
ASP-CMS v.1.0 Sql Injection/Database Disclosure r3d.w0rm@yahoo.com (Thu Dec 11 2008 - 22:12:51 EET)
rPSA-2008-0336-1 tshark wireshark rPath Update Announcements (Fri Dec 12 2008 - 00:52:40 EET)
Nokia N70/N73 Bluetooth Stack OBEX Implementation Denial of Service yangdn@nipc.org.cn (Fri Dec 12 2008 - 05:12:13 EET)
[SECURITY] [DSA 1685-1] New uw-imap packages fix multiple vulnerabilities Steffen Joeris (Fri Dec 12 2008 - 08:36:28 EET)
Moodle 1.9.3 Remote Code Execution ascii (Fri Dec 12 2008 - 19:52:25 EET)
SecurityFocus Newsletter #482 sfa@securityfocus.com (Fri Dec 12 2008 - 19:34:08 EET)
SecurityFocus Microsoft Newsletter #423 sfa@securityfocus.com (Fri Dec 12 2008 - 19:34:13 EET)
SecurityFocus Linux Newsletter #418 sfa@securityfocus.com (Fri Dec 12 2008 - 19:34:19 EET)
[ GLSA 200812-12 ] Honeyd: Insecure temporary file creation Tobias Heinlein (Fri Dec 12 2008 - 22:50:27 EET)
[ GLSA 200812-13 ] OpenOffice.org: Multiple vulnerabilities Pierre-Yves Rofes (Sat Dec 13 2008 - 01:01:11 EET)
[ GLSA 200812-14 ] aview: Insecure temporary file usage Tobias Heinlein (Sun Dec 14 2008 - 02:38:30 EET)
[SECURITY] [DSA 1686-1] New no-ip packages fix arbitrary code execution Moritz Muehlenhoff (Sun Dec 14 2008 - 22:23:27 EET)
[ GLSA 200812-15 ] POV-Ray: User-assisted execution of arbitrary code Pierre-Yves Rofes (Sun Dec 14 2008 - 19:15:31 EET)
[ GLSA 200812-16 ] Dovecot: Multiple vulnerabilities Tobias Heinlein (Mon Dec 15 2008 - 15:45:23 EET)
CFAGCMS Remote File Inclusion admin@bugreport.ir (Sun Dec 14 2008 - 09:04:13 EET)
[TKADV2008-014] MPlayer TwinVQ Processing Stack Buffer Overflow Vulnerability Tobias Klein (Sun Dec 14 2008 - 18:32:40 EET)
Re: Moodle 1.9.3 Remote Code Execution lent@cooper.edu (Mon Dec 15 2008 - 07:00:03 EET)
Multiple XSS Vulnerabilities in World Recipe 2.11 security@armorize.com (Mon Dec 15 2008 - 10:34:46 EET)
phpList vulnerability phplist (Mon Dec 15 2008 - 14:28:31 EET)
Re: Moodle 1.9.3 Remote Code Execution Jamie Riden (Mon Dec 15 2008 - 19:22:32 EET)
TmaxSoft JEUS Alternate Data Streams Vulnerability Simon Ryeo (Fri Dec 12 2008 - 19:51:37 EET)
Re: Re: Multiple XSRF in DD-WRT (Remote Root Command Execution) 0xjbrown41@gmail.com (Mon Dec 15 2008 - 20:47:15 EET)
Fwd: TmaxSoft JEUS Alternate Data Streams Vulnerability Simon Ryeo (Sun Dec 14 2008 - 06:12:06 EET)
[ MDVSA-2008:242 ] wireshark security@mandriva.com (Mon Dec 15 2008 - 23:35:00 EET)
[SECURITY] [DSA 1687-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier (Mon Dec 15 2008 - 23:33:39 EET)
[ MDVSA-2008:243 ] enscript security@mandriva.com (Tue Dec 16 2008 - 01:31:00 EET)
Re: Re: Moodle 1.9.3 Remote Code Execution martin@moodle.com (Tue Dec 16 2008 - 06:47:01 EET)
Re: Moodle 1.9.3 Remote Code Execution hackeriri@yahoo.com (Tue Dec 16 2008 - 09:21:58 EET)
[USN-691-1] Ruby vulnerability Marc Deslauriers (Tue Dec 16 2008 - 17:18:46 EET)
Re: ooVoo 1.7.1.35 (URL Protocol) remote unicode buffer overflow poc philip.robertson@oovoo.com (Tue Dec 16 2008 - 19:38:38 EET)
[ GLSA 200812-17 ] Ruby: Multiple vulnerabilities Tobias Heinlein (Tue Dec 16 2008 - 22:37:02 EET)
ZDI-08-088: Oracle E-Business Suite Business Intelligence SQL Injection Vulnerability zdi-disclosures@3com.com (Tue Dec 16 2008 - 21:14:14 EET)
CVE-2008-1094 - Barracuda Span Firewall SQL Injection Vulnerability marian.ventuneac@ul.ie (Tue Dec 16 2008 - 23:11:24 EET)
CVE-2008-0971 - Barracuda Networks products Multiple Cross-Site Scripting Vulnerabilities marian.ventuneac@ul.ie (Tue Dec 16 2008 - 23:29:33 EET)
Joomla: Session hijacking vulnerability, CVE-2008-4122 Hanno Böck (Tue Dec 16 2008 - 23:56:23 EET)
[ GLSA 200812-18 ] JasPer: User-assisted execution of arbitrary code Robert Buchholz (Wed Dec 17 2008 - 00:06:16 EET)
Re: [IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted ELF header Security Bypass frisk@f-prot.com (Tue Dec 16 2008 - 19:34:48 EET)
RE: [Full-disclosure] ZDI-08-088: Oracle E-Business Suite Self-Service Web Applications SQL Injection Vulnerability Integrigy Security (Wed Dec 17 2008 - 01:01:00 EET)
n.runs-SA-2008.010 - Opera HTML parsing Code Execution security@nruns.com (Wed Dec 17 2008 - 17:06:27 EET)
Network Security Scanner OpenVAS 2.0.0 Released Michael Wiegand (Wed Dec 17 2008 - 16:40:29 EET)
[ MDVSA-2008:244 ] mozilla-firefox security@mandriva.com (Thu Dec 18 2008 - 01:18:00 EET)
[USN-690-1] Firefox and xulrunner vulnerabilities Jamie Strandboge (Thu Dec 18 2008 - 01:54:48 EET)
Re: Joomla: Session hijacking vulnerability, CVE-2008-4122 darkz.gsa@gmail.com (Thu Dec 18 2008 - 13:40:40 EET)
[USN-692-1] Gadu vulnerability Kees Cook (Thu Dec 18 2008 - 02:12:13 EET)
[USN-693-1] LittleCMS vulnerability Kees Cook (Thu Dec 18 2008 - 02:12:50 EET)
[TKADV2008-015] Sun Solaris SIOCGTUNPARAM IOCTL Kernel NULL pointer dereference Tobias Klein (Thu Dec 18 2008 - 13:22:26 EET)
[USN-690-2] Firefox vulnerabilities Jamie Strandboge (Thu Dec 18 2008 - 02:13:13 EET)
Firefox cross-domain text theft (CESA-2008-011) Chris Evans (Thu Dec 18 2008 - 11:00:22 EET)
[USN-690-3] Firefox vulnerabilities Jamie Strandboge (Thu Dec 18 2008 - 02:19:24 EET)
[SECURITY] CVE-2008-2938 - Apache Tomcat information disclosure vulnerability - Update 2 Mark Thomas (Thu Dec 18 2008 - 18:46:17 EET)
[USN-694-1] libvirt vulnerability Jamie Strandboge (Thu Dec 18 2008 - 02:26:05 EET)
[USN-695-1] shadow vulnerability Kees Cook (Thu Dec 18 2008 - 03:22:19 EET)
php python extension safe_mode bypass amir@salmani.ir (Thu Dec 18 2008 - 03:52:47 EET)
[ MDVSA-2008:245 ] firefox security@mandriva.com (Thu Dec 18 2008 - 06:55:00 EET)
EasySiteNetwork (joke.php?id) Remote SQL injection Vulnerability Ehsan_Hp200@Hotmail.com (Thu Dec 18 2008 - 08:22:35 EET)
CONFidence 2009, CFP Andrzej Targosz (Thu Dec 18 2008 - 21:43:26 EET)
[USN-696-1] Avahi vulnerabilities Jamie Strandboge (Fri Dec 19 2008 - 00:36:54 EET)
SecurityFocus Newsletter #483 sfa@securityfocus.com (Fri Dec 19 2008 - 01:51:23 EET)
SecurityFocus Microsoft Newsletter #424 sfa@securityfocus.com (Fri Dec 19 2008 - 01:51:28 EET)
SecurityFocus Linux Newsletter #419 sfa@securityfocus.com (Fri Dec 19 2008 - 01:51:35 EET)
Re: CONFidence 2009, CFP Dominik 'Rathann' Mierzejewski (Fri Dec 19 2008 - 11:32:34 EET)
SEC Consult SA-20081219-0 :: Fujitsu-Siemens WebTransactions remote command injection vulnerability Bernhard Mueller (Fri Dec 19 2008 - 14:14:58 EET)
[security bulletin] HPSBST02394 SSRT080183 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-070 to MS08-077 security-alert@hp.com (Fri Dec 19 2008 - 15:50:03 EET)
HTC Touch vCard over IP Denial of Service Mobile Security Lab (Fri Dec 19 2008 - 17:23:38 EET)
PHP APC vulnerable to local attacks Moritz Naumann (Fri Dec 19 2008 - 21:21:11 EET)
rPSA-2008-0338-1 cups rPath Update Announcements (Fri Dec 19 2008 - 23:07:47 EET)
[ GLSA 200812-19 ] PowerDNS: Multiple vulnerabilities Pierre-Yves Rofes (Fri Dec 19 2008 - 23:43:05 EET)
[SECURITY] [DSA 1688-1] New courier-authlib packages fix SQL injection Steffen Joeris (Sat Dec 20 2008 - 17:21:38 EET)
chicomas <=2.0.4 Multiple Vulnerabilities admin@bugreport.ir (Sat Dec 20 2008 - 09:25:49 EET)
Re: chicomas <=2.0.4 Multiple Vulnerabilities security curmudgeon (Sat Dec 20 2008 - 22:55:01 EET)
[USN-699-1] Blender vulnerabilities Marc Deslauriers (Mon Dec 22 2008 - 16:34:43 EET)
[USN-698-1] Nagios vulnerability Marc Deslauriers (Mon Dec 22 2008 - 16:35:54 EET)
[SECURITY] [DSA 1678-2] New perl packages fix regression Florian Weimer (Sun Dec 21 2008 - 12:04:41 EET)
Secunia Research: Trend Micro HouseCall "notifyOnLoadNative()" Vulnerability Secunia Research (Sun Dec 21 2008 - 10:47:09 EET)
[USN-698-2] Nagios3 vulnerabilities Marc Deslauriers (Mon Dec 22 2008 - 16:36:42 EET)
POC for CVE-2008-5619 (roundcubemail PHP arbitrary code injection) Jacobo Avariento Gimeno (Mon Dec 22 2008 - 14:13:32 EET)
[UPRSN] Ubuntu Privacy Remix 8.04r2 introduces "noexec"-mounting by default Ubuntu Privacy Remix Team (Mon Dec 22 2008 - 11:55:49 EET)
[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities Thijs Kinkhorst (Mon Dec 22 2008 - 10:27:17 EET)
FreeSSHd Multiple Remote Stack Overflow Vulnerabilities writ3r-dont-want-bugtraq-spam-@gmail.com (Mon Dec 22 2008 - 09:42:59 EET)
CoolPlayer 2.19 (Skin File) Local Buffer Overflow Exploit writ3r-dont-want-bugtraq-spam-@gmail.com (Mon Dec 22 2008 - 09:39:55 EET)
[USN-697-1] Imlib2 vulnerability Marc Deslauriers (Mon Dec 22 2008 - 16:35:17 EET)
Secunia Research: Trend Micro HouseCall ActiveX Control Arbitrary Code Execution Secunia Research (Mon Dec 22 2008 - 18:07:31 EET)
CORE-2008-1210: Qemu and KVM VNC server remote DoS CORE Security Technologies Advisories (Mon Dec 22 2008 - 19:30:28 EET)
[SECURITY] [DSA 1689-1] New proftpd-dfsg packages fix Cross-Site Request Forgery Martin Schulze (Sun Dec 21 2008 - 16:24:42 EET)
[ISecAuditors Security Advisories] Wordpress is vulnerable to an unauthorized upgrade and XSS ISecAuditors Security Advisories (Mon Dec 22 2008 - 19:36:14 EET)
[SECURITY] [DSA 1690-1] New avahi packages fix denial of service Florian Weimer (Mon Dec 22 2008 - 08:49:55 EET)
[ISecAuditors Security Advisories] Multiple vulnerabilities in WiFi router COMTREND CT-536/HG-536+ ISecAuditors Security Advisories (Mon Dec 22 2008 - 20:16:29 EET)
rPSA-2008-0341-1 dovecot rPath Update Announcements (Mon Dec 22 2008 - 21:20:06 EET)
Re: [IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted ELF header Security Bypass mikael.albrecht@f-secure.com (Mon Dec 22 2008 - 11:14:25 EET)
[ GLSA 200812-20 ] phpCollab: Multiple vulnerabilities Pierre-Yves Rofes (Sun Dec 21 2008 - 21:25:46 EET)
[ MDVA-2008:241 ] mailscanner security@mandriva.com (Mon Dec 22 2008 - 22:07:00 EET)
[USN-677-2] OpenOffice.org Internationalization update Jamie Strandboge (Tue Dec 23 2008 - 19:57:36 EET)
[security bulletin] HPSBST02397 SSRT080187 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-078 security-alert@hp.com (Tue Dec 23 2008 - 02:03:42 EET)
[ISecAuditors Security Advisories] PSI remote integer overflow DoS ISecAuditors Security Advisories (Tue Dec 23 2008 - 13:19:14 EET)
FreeBSD Security Advisory FreeBSD-SA-08:13.protosw FreeBSD Security Advisories (Tue Dec 23 2008 - 03:39:22 EET)
Re: rPSA-2008-0341-1 dovecot olga@russkoyepole.ru (Tue Dec 23 2008 - 08:42:38 EET)
DDIVRT-2008-16 Citrix Broadcast Server 6.0 login.asp SQL Injection --- Update for BID 32832 VulnerabilityResearch@ddifrontline.com (Tue Dec 23 2008 - 17:01:32 EET)
[USN-700-1] Perl vulnerabilities Kees Cook (Wed Dec 24 2008 - 03:33:54 EET)
[SECURITY] [DSA 1688-2] New courier-authlib packages fix regression Florian Weimer (Tue Dec 23 2008 - 01:18:44 EET)
[USN-698-3] Nagios vulnerabilities Marc Deslauriers (Tue Dec 23 2008 - 16:16:59 EET)
[ GLSA 200812-23 ] Imlib2: User-assisted execution of arbitrary code Pierre-Yves Rofes (Wed Dec 24 2008 - 00:40:26 EET)
Personal Sticky Threads v1.0.3c vbulletin Add-on problem xl4nothing@gmail.com (Tue Dec 23 2008 - 20:52:12 EET)
FRHACK Registration open (Christmas offer) Jerome Athias (Wed Dec 24 2008 - 11:15:04 EET)
[ GLSA 200812-22 ] Ampache: Insecure temporary file usage Pierre-Yves Rofes (Wed Dec 24 2008 - 00:23:43 EET)
FreeBSD Security Advisory FreeBSD-SA-08:12.ftpd FreeBSD Security Advisories (Tue Dec 23 2008 - 03:39:28 EET)
[ GLSA 200812-24 ] VLC: Multiple vulnerabilities Tobias Heinlein (Wed Dec 24 2008 - 02:35:03 EET)
[ GLSA 200812-21 ] ClamAV: Multiple vulnerabilities Pierre-Yves Rofes (Wed Dec 24 2008 - 00:15:19 EET)
PGP Desktop 9.0.6 Denial Of Service - ZeroDay contact.fingers@gmail.com (Tue Dec 23 2008 - 15:11:28 EET)
Google Chrome Browser (ChromeHTML://) remote parameter injection POC nospam@mail.it (Tue Dec 23 2008 - 21:54:29 EET)
Castlecops security site closed for good Michael Scheidell (Thu Dec 25 2008 - 14:35:59 EET)
MS Windows Media Player * (.WAV) Remote Integrer Overflow Laurent.gaffie@gmail.com (Thu Dec 25 2008 - 01:32:58 EET)
Re: Google Chrome Browser (ChromeHTML://) remote parameter injection POC Already-sended-information-to-security-focus@mailinator.com (Thu Dec 25 2008 - 12:03:19 EET)
joomla com_lowcosthotels sql injection lovebug@hotmail.it (Thu Dec 25 2008 - 13:44:32 EET)
PHP-Fusion Mod TI - Blog System Sql Injection r3d.w0rm@yahoo.com (Thu Dec 25 2008 - 17:12:04 EET)
SecurityFocus Newsletter #483 sfa@securityfocus.com (Sat Dec 27 2008 - 22:03:11 EET)
SecurityFocus Linux Newsletter #419 sfa@securityfocus.com (Sat Dec 27 2008 - 22:03:17 EET)
SecurityFocus Microsoft Newsletter #424 sfa@securityfocus.com (Sat Dec 27 2008 - 22:03:22 EET)
ClubHack2008 presentations are now online ClubHack (Fri Dec 26 2008 - 08:46:47 EET)
Joomla Component mdigg 2.2.8 Blind SQL Injection Exploit hadihadi_zedehal_2006@yahoo.com (Fri Dec 26 2008 - 21:40:33 EET)
[SECURITY] [DSA 1692-1] New php-xajax packages fix cross-site scripting Steffen Joeris (Sat Dec 27 2008 - 11:49:06 EET)
hm? new vulnerabilities? wav windows media anonymous@anonym.an (Sun Dec 28 2008 - 06:34:51 EET)
MSN messenger sends IP addresses Public and Private Carmelo Brancato (Mon Dec 29 2008 - 15:55:14 EET)
ViArt Shopping Cart v3.5 Multiple Remote Vulnerabilities XiaShing@gmail.com (Mon Dec 29 2008 - 07:58:07 EET)
Madrese-Portal Sql Injection r3d.w0rm@yahoo.com (Thu Dec 25 2008 - 22:22:03 EET)
MagpieRSS XSS 0day admin@elites0ft.com (Mon Dec 29 2008 - 00:50:56 EET)
[ MDVSA-2008:246 ] kernel security@mandriva.com (Mon Dec 29 2008 - 18:45:01 EET)
Re: Re: Google Chrome Browser (ChromeHTML://) remote parameter injection POC nospam@mail.it (Fri Dec 26 2008 - 02:21:51 EET)
Mavi Emlak Sql Injection r3d.w0rm@yahoo.com (Thu Dec 25 2008 - 22:23:29 EET)
[SECURITY] [DSA 1693-1] New phppgadmin packages fix several vulnerabilities Thijs Kinkhorst (Sat Dec 27 2008 - 13:54:26 EET)
reliable IOS exploitation Gadi Evron (Tue Dec 30 2008 - 00:08:06 EET)
Megacubo 5.0.7 (mega://) remote eval() injection exploit pyro@nospam.it (Tue Dec 30 2008 - 16:45:32 EET)
php-nuke 8.0 module sections artid blind sql inj vuln. the.dumenci@gmail.com (Tue Dec 30 2008 - 16:31:59 EET)
Re: MagpieRSS XSS 0day Antone Roundy (Tue Dec 30 2008 - 00:24:46 EET)
MD5 Considered Harmful Today: Creating a rogue CA certificate Alexander Sotirov (Tue Dec 30 2008 - 18:50:57 EET)
Re: php-nuke 8.0 module sections artid blind sql inj vuln. John Haywood (Tue Dec 30 2008 - 20:01:35 EET)
apache 1.x <=> 2.x suphp (suPHP_ConfigPath) bypass safe mode exploit‎ v8i@hotmail.com (Tue Dec 30 2008 - 20:31:05 EET)
CFP uCon Security Conference 2009 - Recife, Brazil uCon Security Conference (Wed Dec 31 2008 - 05:21:01 EET)
SecurityFocus Microsoft Newsletter #425 sfa@securityfocus.com (Wed Dec 31 2008 - 20:53:04 EET)
SecurityFocus Newsletter #484 sfa@securityfocus.com (Wed Dec 31 2008 - 20:53:00 EET)
SecurityFocus Linux Newsletter #420 sfa@securityfocus.com (Wed Dec 31 2008 - 20:53:08 EET)

Last message date: Wed Dec 31 2008 - 21:58:33 EET
Archived on: Wed Dec 31 2008 - 21:58:34 EET

287 messages sorted by: [ author ] [ thread ] [ subject ]

This archive was generated by hypermail 2b28 : Wed Dec 31 2008 - 21:58:34 EET

stdinBy Date

stdin
By Date