stdin
By Thread

Most recent messages
310 messages sorted by: [ author ] [ date ] [ subject ]

Starting: Thu Jan 01 2009 - 00:38:50 EET
Ending: Fri Jan 30 2009 - 22:50:34 EET

Re: apache 1.x <=> 2.x suphp (suPHP_ConfigPath) bypass safe mode exploit‎ ms5ote@hotmail.fr (Thu Jan 01 2009 - 00:38:50 EET)
Linux Kernel 2.6.18/2.6.24/2.6.20/2.6.22/2.6.21 denial of service exploit i9p@hotmail.fr (Thu Jan 01 2009 - 18:15:17 EET)
- Re: Linux Kernel 2.6.18/2.6.24/2.6.20/2.6.22/2.6.21 denial of service exploit joris@infogroep.be (Sat Jan 03 2009 - 17:37:50 EET)
- Re: Linux Kernel 2.6.18/2.6.24/2.6.20/2.6.22/2.6.21 denial of service exploit Eugene Teo (Sun Jan 04 2009 - 03:12:21 EET)
- Re: Linux Kernel 2.6.18/2.6.24/2.6.20/2.6.22/2.6.21 denial of service exploit Shaochun Wang (Fri Jan 09 2009 - 10:52:08 EET)
A tool to identify the MD5 certs on FF Memisyazici, Aras (Fri Jan 02 2009 - 01:19:01 EET)
[SECURITY] [DSA 1694-1] New xterm packages fix remote code execution Florian Weimer (Fri Jan 02 2009 - 21:07:44 EET)
[SECURITY] [DSA 1695-1] New Ruby packages fix denial of service Florian Weimer (Fri Jan 02 2009 - 23:47:08 EET)
Top 5-ish Threats to Watch for in 2009 Pete Herzog (Sat Jan 03 2009 - 21:17:17 EET)
PollPro 3.0 XSRF VuLn. b4DchiLd@msn.Com (Sun Jan 04 2009 - 00:02:59 EET)
Call for papers and trainers - SeacureIT 2009 Stefano Zanero (Mon Jan 05 2009 - 00:12:05 EET)
SolucionWeb (main.php?id_area) Remote SQL injection Vulnerability Ehsan_Hp200@Hotmail.com (Sun Jan 04 2009 - 22:17:21 EET)
php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass‏ l1un@hotmail.com (Sun Jan 04 2009 - 21:39:08 EET)
- Re: php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass‏ a@bd.cd (Mon Jan 05 2009 - 18:14:23 EET)
- Re: php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass‏ faze0r@aim.com (Mon Jan 05 2009 - 20:32:22 EET)
- Re: php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass‏ Slack Traq (Tue Jan 06 2009 - 14:36:13 EET)
Destiny Media Player 1.61 (.lst File) Local Stack Overflow Exploit crimson.loyd@gmail.com (Sun Jan 04 2009 - 14:57:33 EET)
Google Chrome FTP PASV IP Malicious Port Scanning Vulnerability. Aditya K Sood (Sun Jan 04 2009 - 18:30:24 EET)
ANNOUNCE: RFIDIOt ver 01.v released - Jan 2009 Adam Laurie (Mon Jan 05 2009 - 16:53:49 EET)
MSFXDC Metasploit eXploits Development Contest Jerome Athias (Sun Jan 04 2009 - 17:53:29 EET)
Walusoft TFTPServer2000 Version 3.6.1 Directory Traversal vuln_research@princeofnigeria.org (Mon Jan 05 2009 - 19:22:08 EET)
[USN-702-1] Samba vulnerability Marc Deslauriers (Mon Jan 05 2009 - 22:16:46 EET)
[Suspected Spam]"Security Assessment of the Internet Protocol" & the IETF Fernando Gont (Tue Jan 06 2009 - 03:43:03 EET)
- Re: [Suspected Spam]"Security Assessment of the Internet Protocol" & the IETF Jerome Athias (Thu Jan 08 2009 - 00:21:08 EET)
[USN-703-1] xterm vulnerability Kees Cook (Tue Jan 06 2009 - 03:23:08 EET)
[SECURITY] [DSA 1694-2] New xterm packages fix regression Florian Weimer (Tue Jan 06 2009 - 13:40:11 EET)
New WHID web hacking incidents Ofer Shezaf (Tue Jan 06 2009 - 15:55:05 EET)
VUPLAYER BufferOver flow POC alphanix00@gmail.com (Tue Jan 06 2009 - 22:08:59 EET)
[oCERT-2008-016] Multiple OpenSSL signature verification API misuses Will Drewry (Wed Jan 07 2009 - 16:56:49 EET)
Secunia Research: HP OpenView Network Node Manager Multiple Vulnerabilities Secunia Research (Wed Jan 07 2009 - 13:43:23 EET)
Plunet BusinessManager failure in access controls and multiple stored cross site scripting Matteo Ignaccolo (Wed Jan 07 2009 - 17:30:18 EET)
- Plunet BusinessManager failure in access controls and multiple stored cross site scripting Matteo Ignaccolo (Wed Jan 07 2009 - 19:58:40 EET)
- Re: Plunet BusinessManager failure in access controls and multiple stored cross site scripting Stefano Zanero (Fri Jan 09 2009 - 12:09:34 EET)
CFP: COLSEC 2009 Patrice CLEMENTE (Wed Jan 07 2009 - 18:11:26 EET)
[USN-701-2] Thunderbird vulnerabilities Jamie Strandboge (Wed Jan 07 2009 - 01:33:14 EET)
PHP-Fusion Mod Members Bewerb Sql Injection r3d.w0rm@yahoo.com (Wed Jan 07 2009 - 13:49:55 EET)
Cisco Security Advisory: Cisco Global Site Selector Appliances DNS Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jan 07 2009 - 18:00:00 EET)
Secunia Research: TSC2 Help Desk CTab ActiveX Control Buffer Overflow Secunia Research (Wed Jan 07 2009 - 14:52:47 EET)
[USN-701-1] Thunderbird vulnerabilities Jamie Strandboge (Wed Jan 07 2009 - 01:25:58 EET)
PHP-Fusion Mod E-Cart Sql Injection r3d.w0rm@yahoo.com (Wed Jan 07 2009 - 13:53:43 EET)
SecurityFocus Newsletter #485 sfa@securityfocus.com (Wed Jan 07 2009 - 20:52:16 EET)
SecurityFocus Linux Newsletter #421 sfa@securityfocus.com (Wed Jan 07 2009 - 20:52:28 EET)
SecurityFocus Microsoft Newsletter #426 sfa@securityfocus.com (Wed Jan 07 2009 - 20:52:22 EET)
[SECURITY] [DSA 1696-1] New icedove packages fix several vulnerabilities Steffen Joeris (Wed Jan 07 2009 - 23:32:09 EET)
[SECURITY] [DSA 1697-1] New iceape packages fix several vulnerabilities Steffen Joeris (Wed Jan 07 2009 - 23:41:42 EET)
FreeBSD Security Advisory FreeBSD-SA-09:02.openssl FreeBSD Security Advisories (Wed Jan 07 2009 - 23:37:17 EET)
FreeBSD Security Advisory FreeBSD-SA-09:01.lukemftpd FreeBSD Security Advisories (Wed Jan 07 2009 - 23:36:19 EET)
CA20090107-01: CA Service Metric Analysis and CA Service Level Management smmsnmpd Arbitrary Command Execution Vulnerability Williams, James K (Wed Jan 07 2009 - 23:51:18 EET)
[USN-704-1] OpenSSL vulnerability Jamie Strandboge (Thu Jan 08 2009 - 00:24:22 EET)
PHP-Fusion Mod vArcade 1.8 Sql Injection Vulnerability irancrash@gmail.com (Thu Jan 08 2009 - 16:19:08 EET)
[IBM Datapower XS40] Denial of Service erik@psafe.nl (Thu Jan 08 2009 - 12:14:51 EET)
- Re: [IBM Datapower XS40] Denial of Service terrordactylspam@gmail.com (Thu Jan 08 2009 - 20:22:00 EET)
CORE-2008-1128: Openfire multiple vulnerabilities CORE Security Technologies Advisories (Thu Jan 08 2009 - 19:34:11 EET)
LayerOne 2009 Call for Papers LayerOne Call For Papers (Thu Jan 08 2009 - 20:46:39 EET)
[USN-705-1] NTP vulnerability Jamie Strandboge (Thu Jan 08 2009 - 20:39:57 EET)
AST-2009-001: Information leak in IAX2 authentication Asterisk Security Team (Thu Jan 08 2009 - 21:28:57 EET)
[USN-706-1] Bind vulnerability Jamie Strandboge (Fri Jan 09 2009 - 02:21:18 EET)
[SECURITY] [DSA 1698-1] New gforge packages fix SQL injection Thijs Kinkhorst (Fri Jan 09 2009 - 10:02:46 EET)
ShakaCon 2009 Call for Papers and Trainers Shakacon (Fri Jan 09 2009 - 10:54:48 EET)
Leak of SNMP write password via SNMP read community in NETGEAR WG102 - Prosafe 802.11g Access Point mad-vaittes@ida.ing.tu-bs.de (Fri Jan 09 2009 - 10:56:26 EET)
- Re: Leak of SNMP write password via SNMP read community in NETGEAR WG102 - Prosafe 802.11g Access Point Simon Richter (Fri Jan 09 2009 - 18:52:08 EET)
  - Re: Leak of SNMP write password via SNMP read community in NETGEAR WG102 - Prosafe 802.11g Access Point Steve Shockley (Fri Jan 09 2009 - 22:25:44 EET)
    - Re: Leak of SNMP write password via SNMP read community in NETGEAR WG102 - Prosafe 802.11g Access Point Simon Richter (Fri Jan 09 2009 - 22:56:10 EET)
Java Runtime UTF-8 Decoder Smuggling Vector William A. Rowe, Jr. (Fri Jan 09 2009 - 18:23:04 EET)
Re: Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (DB11) security curmudgeon (Sat Jan 10 2009 - 13:11:41 EET)
- Re: Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (DB11) Joxean Koret (Sat Jan 10 2009 - 20:26:32 EET)
  - RE: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (Oracle CPU April 2008 DB11) Integrigy Alerts (Mon Jan 12 2009 - 18:29:04 EET)
[ MDVSA-2009:003 ] python security@mandriva.com (Sat Jan 10 2009 - 03:20:01 EET)
[ MDVSA-2009:004 ] pam_mount security@mandriva.com (Sat Jan 10 2009 - 06:54:00 EET)
[ MDVSA-2009:002 ] bind security@mandriva.com (Sat Jan 10 2009 - 10:42:00 EET)
[ GLSA 200901-01 ] NDISwrapper: Arbitrary remote code execution Robert Buchholz (Sun Jan 11 2009 - 02:38:26 EET)
[ GLSA 200901-02 ] JHead: Multiple vulnerabilities Robert Buchholz (Sun Jan 11 2009 - 02:40:01 EET)
Comersus Shopping Cart <= v6 Remote User Pass Exploit ajannhwt@hotmail.com (Mon Jan 12 2009 - 14:47:41 EET)
[ GLSA 200901-03 ] pdnsd: Denial of Service and cache poisoning Robert Buchholz (Sun Jan 11 2009 - 02:41:31 EET)
[ GLSA 200901-04 ] D-Bus: Denial of Service Robert Buchholz (Sun Jan 11 2009 - 02:42:12 EET)
[SECURITY] [DSA 1699-1] New zaptel packages fix privilege escalation Florian Weimer (Sun Jan 11 2009 - 14:01:27 EET)
[ GLSA 200901-05 ] Streamripper: Multiple vulnerabilities Pierre-Yves Rofes (Sun Jan 11 2009 - 16:10:28 EET)
[USN-707-1] CUPS vulnerabilities Marc Deslauriers (Mon Jan 12 2009 - 17:42:36 EET)
Hack Aethra SV 1042 Adsl/Voip Router SmoKe (Mon Jan 12 2009 - 13:30:15 EET)
[TKADV2009-001] Sun Solaris aio_suspend() Kernel Integer Overflow Vulnerability Tobias Klein (Sun Jan 11 2009 - 18:49:13 EET)
PHP Buffer Overflow(popen) ew1zz@hotmail.com (Mon Jan 12 2009 - 15:36:37 EET)
[BMSA-2009-01] Authentication bypass in Interspire Shopping Cart v4.0.1 and below Nam Nguyen (Mon Jan 12 2009 - 16:57:42 EET)
[ GLSA 200901-06 ] Tremulous: User-assisted execution of arbitrary code Pierre-Yves Rofes (Sun Jan 11 2009 - 20:41:56 EET)
[SECURITY] [DSA 1700-1] New lasso packages fix validation bypass Moritz Muehlenhoff (Sun Jan 11 2009 - 23:48:23 EET)
[ MDVSA-2009:005 ] xterm security@mandriva.com (Mon Jan 12 2009 - 05:27:00 EET)
SyScan'09 Call For Paper - Shanghai, Hong Kong, Singapore, Taipei organiser@syscan.org (Mon Jan 12 2009 - 12:04:38 EET)
Visuplay CMS SQL injection vulnerability joseph.giron13@gmail.com (Mon Jan 12 2009 - 13:03:05 EET)
[security bulletin] HPSBMA02392 SSRT071481 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) security-alert@hp.com (Mon Jan 12 2009 - 20:17:50 EET)
[TKADV2009-002] Amarok Integer Overflow and Unchecked Allocation Vulnerabilities Tobias Klein (Sun Jan 11 2009 - 19:47:57 EET)
[SECURITY] [DSA 1701-1] New OpenSSL packages fix cryptographic weakness Florian Weimer (Mon Jan 12 2009 - 22:03:29 EET)
[ GLSA 200901-07 ] MPlayer: Multiple vulnerabilities Tobias Heinlein (Mon Jan 12 2009 - 21:46:24 EET)
[SECURITY] [DSA 1702-1] New ntp packages fix cryptographic weakness Florian Weimer (Mon Jan 12 2009 - 22:34:15 EET)
[SECURITY] [DSA 1703-1] New bind9 packages fix cryptographic weakness Florian Weimer (Mon Jan 12 2009 - 23:27:18 EET)
Secunia Research: DevIL "iGetHdrHeader()" Buffer Overflow Vulnerabilities Secunia Research (Tue Jan 13 2009 - 11:22:32 EET)
PDFBuilderX 2.2 Arbitrary File Overwrite fakeperson7 (Tue Jan 13 2009 - 13:41:43 EET)
[ GLSA 200901-09 ] Adobe Reader: User-assisted execution of arbitrary code Robert Buchholz (Tue Jan 13 2009 - 14:18:41 EET)
[ GLSA 200901-08 ] Online-Bookmarks: Multiple vulnerabilities Pierre-Yves Rofes (Tue Jan 13 2009 - 00:31:51 EET)
[ MDVSA-2009:006 ] openoffice.org security@mandriva.com (Tue Jan 13 2009 - 18:53:01 EET)
ANNOUNCE: DEFCON London - DC4420 - January meet - Thursday 15th Jan 2009 Major Malfunction (Tue Jan 13 2009 - 20:21:49 EET)
rPSA-2009-0006-1 samba samba-client samba-server samba-swat rPath Update Announcements (Tue Jan 13 2009 - 21:13:30 EET)
iDefense Security Advisory 01.13.09: RIM BlackBerry Enterprise Server Attachment Service PDF Distiller 'symWidths' Heap Overflow Vulnerability iDefense Labs (Tue Jan 13 2009 - 21:53:17 EET)
ZDI-09-001: Microsoft SMB NT Trans Request Parsing Remote Code Execution Vulnerability zdi-disclosures@3com.com (Tue Jan 13 2009 - 22:03:55 EET)
ZDI-09-002: Microsoft SMB NT Trans2 Request Parsing Remote Code Execution Vulnerability zdi-disclosures@3com.com (Tue Jan 13 2009 - 22:04:00 EET)
rPSA-2009-0005-1 git gitweb rPath Update Announcements (Tue Jan 13 2009 - 20:44:47 EET)
rPSA-2009-0007-1 pam_krb5 rPath Update Announcements (Tue Jan 13 2009 - 20:46:43 EET)
[USN-708-1] HPLIP vulnerability Marc Deslauriers (Tue Jan 13 2009 - 22:50:26 EET)
iDefense Security Advisory 01.13.09: RIM BlackBerry Enterprise Server Attachment Service PDF Distiller 'bitmaps' Heap Overflow Vulnerability iDefense Labs (Tue Jan 13 2009 - 23:00:35 EET)
iDefense Security Advisory 01.13.09: RIM BlackBerry Enterprise Server Attachment Service PDF Distiller Uninitialized Memory Vulnerability iDefense Labs (Tue Jan 13 2009 - 23:34:46 EET)
WowWee Rovio - Insufficient Access Controls - Covert Audio/Video Snooping Possible Brian Dowling (Wed Jan 14 2009 - 10:41:59 EET)
FreeBSD Security Advisory FreeBSD-SA-09:04.bind FreeBSD Security Advisories (Wed Jan 14 2009 - 00:33:56 EET)
iDefense Security Advisory 01.13.09: Oracle Database 10g R2 Summary Advisor Arbitrary File Rewrite Vulnerability iDefense Labs (Wed Jan 14 2009 - 00:36:18 EET)
Cisco Unified IP Phone 7960G and 7940G (SIP) RTP Header Vulnerability Laurent Butti (Wed Jan 14 2009 - 14:29:32 EET)
iDefense Security Advisory 01.13.09: Oracle Secure Backup Administration Server login.php Command Injection Vulnerability iDefense Labs (Wed Jan 14 2009 - 01:05:39 EET)
- iDefense Security Advisory 01.13.09: Oracle Secure Backup Administration Server login.php Command Injection Vulnerability iDefense Labs (Wed Jan 14 2009 - 01:36:10 EET)
  - Re: iDefense Security Advisory 01.13.09: Oracle Secure Backup Administration Server login.php Command Injection Vulnerability security curmudgeon (Thu Jan 15 2009 - 08:46:51 EET)
phpList <= 2.10.8 Local File inclusion admin@bugreport.ir (Wed Jan 14 2009 - 10:50:17 EET)
Trigger Abuse of MDSYS.SDO_TOPO_DROP_FTBL in Oracle 10g R1 and R2 David Litchfield (Wed Jan 14 2009 - 01:52:02 EET)
[ MDVSA-2009:007 ] ntp security@mandriva.com (Wed Jan 14 2009 - 03:49:01 EET)
RE: DoS code for Cisco VLAN Trunking Protocol Vulnerability Paul Oxman (poxman) (Wed Jan 14 2009 - 05:50:38 EET)
Oracle CPU Jan 2009 Advisories. Alexandr Polyakov (Wed Jan 14 2009 - 12:45:07 EET)
PR08-19: XSS on Cisco IOS HTTP Server ProCheckUp Research (Wed Jan 14 2009 - 13:37:06 EET)
DoS code for Cisco VLAN Trunking Protocol Vulnerability showrun.lee@gmail.com (Wed Jan 14 2009 - 07:07:03 EET)
[ MDVSA-2009:008 ] qemu security@mandriva.com (Wed Jan 14 2009 - 07:47:01 EET)
Cisco Security Response: Cisco IOS Cross-Site Scripting Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed Jan 14 2009 - 18:00:00 EET)
[ MDVSA-2009:009 ] kvm security@mandriva.com (Wed Jan 14 2009 - 07:57:01 EET)
Cisco Security Advisory: Cisco ONS Platform Crafted Packet Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jan 14 2009 - 18:00:00 EET)
[ MDVSA-2009:010 ] qemu security@mandriva.com (Wed Jan 14 2009 - 09:13:01 EET)
Call for Papers: Cyber Warfare kgconference@gmail.com (Wed Jan 14 2009 - 10:08:57 EET)
Cisco Security Advisory: IronPort Encryption Appliance / PostX and PXE Encryption Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed Jan 14 2009 - 19:15:00 EET)
OTSTurntables 1.00.027 (.ofl) Local Stack Overflow Exploit crimson.loyd@gmail.com (Wed Jan 14 2009 - 19:14:39 EET)
[TZO-2009-1] Avira Antivir - RAR - Division by Zero & Null Pointer Dereference Thierry Zoller (Wed Jan 14 2009 - 19:15:49 EET)
[SECURITY] [DSA 1704-1] New xulrunner packages fix several vulnerabilities Steffen Joeris (Wed Jan 14 2009 - 22:28:56 EET)
ZDI-09-003: Oracle Secure Backup exec_qr() Command Injection Vulnerability zdi-disclosures@3com.com (Wed Jan 14 2009 - 22:29:40 EET)
ZDI-09-004: Oracle TimesTen evtdump Remote Format String Vulnerability zdi-disclosures@3com.com (Wed Jan 14 2009 - 22:30:01 EET)
Oracle Secure Backup 10g Remote Code Execution Joxean Koret (Wed Jan 14 2009 - 22:51:47 EET)
Oracle TimesTen Remote Format String Joxean Koret (Wed Jan 14 2009 - 22:53:05 EET)
[ GLSA 200901-10 ] GnuTLS: Certificate validation error Pierre-Yves Rofes (Thu Jan 15 2009 - 00:49:12 EET)
[ GLSA 200901-11 ] Avahi: Denial of Service Pierre-Yves Rofes (Thu Jan 15 2009 - 01:05:35 EET)
TFTPUtil GUI TFTP Directory Traversal vuln_research@princeofnigeria.org (Thu Jan 15 2009 - 02:04:35 EET)
TFTPUtil GUI TFTP Server Denial of Service Vulnerability vuln_research@princeofnigeria.org (Thu Jan 15 2009 - 02:16:07 EET)
Windows NTP Time Server Syslog Monitor 1.0.000 Denial of Service Vulnerability vuln_research@princeofnigeria.org (Thu Jan 15 2009 - 02:20:49 EET)
Re: Assurent VR - Oracle BEA WebLogic Server Apache Connector Buffer Overflow security curmudgeon (Thu Jan 15 2009 - 03:01:06 EET)
[ MDVSA-2009:011 ] virtualbox security@mandriva.com (Thu Jan 15 2009 - 04:29:00 EET)
Oracle Secure Backup Multiple Denial Of Service vulnerabilities noreply-secresearch@fortinet.com (Thu Jan 15 2009 - 11:24:48 EET)
Oracle Secure Backup's observiced.exe Denial Of Service vulnerability noreply-secresearch@fortinet.com (Thu Jan 15 2009 - 11:25:58 EET)
Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH Command Buffer Overflow Vulnerability noreply-secresearch@fortinet.com (Thu Jan 15 2009 - 11:26:45 EET)
ANNOUNCE: apache_1.3.41+ssl_1.60 released Adam Laurie (Thu Jan 15 2009 - 14:56:14 EET)
[TZO-2009-2] Avira Antivir - Priviledge escalation Thierry Zoller (Thu Jan 15 2009 - 19:43:00 EET)
Errata: [TZO-2009-1] Avira Antivir - RAR - Division by Zero & Null Pointer Dereference Thierry Zoller (Thu Jan 15 2009 - 17:13:07 EET)
[waraxe-2009-SA#070] - Multiple Vulnerabilities in MKPortal <= 1.2.1 come2waraxe@yahoo.com (Thu Jan 15 2009 - 20:43:55 EET)
[SECURITY] [DSA 1705-1] New netatalk packages fix arbitrary code execution Nico Golde (Thu Jan 15 2009 - 23:00:47 EET)
[USN-709-1] tar vulnerability Jamie Strandboge (Thu Jan 15 2009 - 23:55:53 EET)
[SECURITY] [DSA 1707-1] New iceweasel packages fix several vulnerabilities Steffen Joeris (Fri Jan 16 2009 - 00:03:27 EET)
[ MDVSA-2009:012 ] mozilla-thunderbird security@mandriva.com (Fri Jan 16 2009 - 00:07:00 EET)
[SECURITY] [DSA 1706-1] New amarok packages fix arbitrary code execution Moritz Muehlenhoff (Thu Jan 15 2009 - 23:42:14 EET)
SecurityFocus Linux Newsletter #422 sfa@securityfocus.com (Thu Jan 15 2009 - 19:21:47 EET)
[USN-700-2] Perl regression Kees Cook (Fri Jan 16 2009 - 00:49:03 EET)
SecurityFocus Microsoft Newsletter #427 sfa@securityfocus.com (Thu Jan 15 2009 - 19:21:37 EET)
SecurityFocus Newsletter #486 sfa@securityfocus.com (Thu Jan 15 2009 - 19:21:30 EET)
Syslserve 1.058 Denial of Service Vulnerability vuln_research@princeofnigeria.org (Fri Jan 16 2009 - 01:54:33 EET)
[ MDVSA-2009:014 ] mplayer security@mandriva.com (Fri Jan 16 2009 - 06:18:00 EET)
[ MDVSA-2009:015 ] ffmpeg security@mandriva.com (Fri Jan 16 2009 - 06:53:00 EET)
DMXReady Blog Manager (SQL/XSS) pouya.s3rver@gmail.com (Fri Jan 16 2009 - 11:33:38 EET)
[ MDVSA-2009:013 ] mplayer security@mandriva.com (Fri Jan 16 2009 - 05:47:00 EET)
Active Bids pouya.s3rver@gmail.com (Fri Jan 16 2009 - 11:34:41 EET)
Announce: RSBAC 1.4.0 released Amon Ott (Fri Jan 16 2009 - 10:56:20 EET)
[ MDVSA-2009:016 ] xen security@mandriva.com (Fri Jan 16 2009 - 20:16:00 EET)
[ MDVSA-2009:017 ] kdebase security@mandriva.com (Fri Jan 16 2009 - 23:04:00 EET)
Excel Viewer OCX 3.1/3.2 Denial of Service PoC alphanix00@gmail.com (Fri Jan 16 2009 - 23:01:17 EET)
Sagem router f@st 2404 remote reset poc alphanix00@gmail.com (Fri Jan 16 2009 - 23:02:56 EET)
FBI XSS Vulnerability sohrab_behroozian@yahoo.com (Sat Jan 17 2009 - 10:06:40 EET)
[ MDVSA-2009:018 ] tomcat5 security@mandriva.com (Sat Jan 17 2009 - 08:50:01 EET)
53KF Web IM 2009 Cross-Site Scripting Vulnerabilities Heart (Mon Jan 19 2009 - 05:26:25 EET)
Ralinktech wireless cards drivers vulnerability springsec@gmail.com (Sun Jan 18 2009 - 13:12:03 EET)
[Wintercore Research ] Fujitsu SystemcastWizard Lite PXEService Remote Buffer Overflow. vulns@wintercore.com (Mon Jan 19 2009 - 15:01:02 EET)
[ GLSA 200901-12 ] noip-updater: Execution of arbitrary code Pierre-Yves Rofes (Mon Jan 19 2009 - 00:18:54 EET)
Advisory: Oracle EBusiness Suite Sensitive Information Disclosure Vulnerability Aditya K Sood (Sun Jan 18 2009 - 15:42:59 EET)
Web Hacking Incidents update for Jan 19th Ofer Shezaf (Mon Jan 19 2009 - 14:41:54 EET)
[ MDVSA-2009:019 ] imlib2 security@mandriva.com (Mon Jan 19 2009 - 21:26:00 EET)
[SECURITY] [DSA 1708-1] New Git packages fix remote code execution Florian Weimer (Mon Jan 19 2009 - 22:53:42 EET)
Secunia Research: EasyHDR Pro Radiance RGBE Buffer Overflow Secunia Research (Tue Jan 20 2009 - 17:37:45 EET)
Cybershade CMS Remote File include vulnerability security@soqor.net (Tue Jan 20 2009 - 05:42:01 EET)
[ANNOUNCE] Apache Jackrabbit 1.5.2 released Jukka Zitting (Tue Jan 20 2009 - 15:20:51 EET)
MoinMoin Wiki Engine XSS Vulnerability swhite@securestate.com (Tue Jan 20 2009 - 18:25:32 EET)
Microsoft Bluetooth Stack OBEX Directory Traversal alberto.morenot@gmail.com (Tue Jan 20 2009 - 01:23:12 EET)
Oracle Containers For Java Directory Traversal (OC4J) Oracle Application Server 10g (10.1.3.1.0) Oracle HTTP Server Eduardo Vela (Tue Jan 20 2009 - 06:56:32 EET)
Secunia Research: Trend Micro Network Security Component Vulnerabilities Secunia Research (Tue Jan 20 2009 - 16:06:41 EET)
[security bulletin] HPSBMA02400 SSRT080144 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Tue Jan 20 2009 - 17:06:28 EET)
Secunia Research: OpenSG Radiance RGBE Buffer Overflow Vulnerability Secunia Research (Tue Jan 20 2009 - 17:42:20 EET)
Videos from HITBSecConf2008 - Malaysia released! Praburaajan (Wed Jan 21 2009 - 00:13:16 EET)
rPSA-2009-0011-1 perl rPath Update Announcements (Tue Jan 20 2009 - 22:34:07 EET)
SecurityFocus Linux Newsletter #423 sfa@securityfocus.com (Wed Jan 21 2009 - 00:59:41 EET)
rPSA-2009-0009-1 bind bind-utils rPath Update Announcements (Tue Jan 20 2009 - 22:32:23 EET)
SecurityFocus Microsoft Newsletter #428 sfa@securityfocus.com (Wed Jan 21 2009 - 00:59:35 EET)
SecurityFocus Newsletter #487 sfa@securityfocus.com (Wed Jan 21 2009 - 00:59:29 EET)
rPSA-2009-0010-1 ntp ntp-utils rPath Update Announcements (Tue Jan 20 2009 - 22:33:11 EET)
rPSA-2009-0008-1 openssl rPath Update Announcements (Tue Jan 20 2009 - 22:31:22 EET)
[ GLSA 200901-13 ] Pidgin: Multiple vulnerabilities Pierre-Yves Rofes (Wed Jan 21 2009 - 00:01:50 EET)
rPSA-2009-0014-1 hplip rPath Update Announcements (Tue Jan 20 2009 - 22:37:53 EET)
[SECURITY] [DSA 1693-2] New phppgadmin packages fix regression Thijs Kinkhorst (Wed Jan 21 2009 - 12:21:28 EET)
[SECURITY] [DSA 1709-1] New shadow packages fix privilege escalation Thijs Kinkhorst (Wed Jan 21 2009 - 12:03:41 EET)
CfP: 16th ACM Conference on Computer and Communications Security (CCS) 2009 Christopher Kruegel (Wed Jan 21 2009 - 04:07:04 EET)
[DSECRG-09-004] AXIS 70U Network Document Server - Privilege Escalation and XSS Digital Security Research Group (Wed Jan 21 2009 - 17:38:47 EET)
Cisco Security Advisory: Cisco Security Manager Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jan 21 2009 - 18:00:00 EET)
Cisco Security Advisory: Cisco Unified Communications Manager CAPF Denial of Service Vulnerability` Cisco Systems Product Security Incident Response Team (Wed Jan 21 2009 - 18:15:00 EET)
Joomla component beamospetition 1.0.12 Sql Injection vds_s@yahoo.com (Wed Jan 21 2009 - 19:16:21 EET)
Re: [Full-disclosure] Oracle Containers For Java Directory Traversal (OC4J) Oracle Application Server 10g (10.1.3.1.0) Oracle HTTP Server Mark Thomas (Wed Jan 21 2009 - 23:08:29 EET)
Digital Security opens a site of its research center DSec Research Group Digital Security Research Group (Wed Jan 21 2009 - 19:53:11 EET)
[ GLSA 200901-14 ] Scilab: Insecure temporary file usage Pierre-Yves Rofes (Thu Jan 22 2009 - 00:20:53 EET)
[IMF 2009] Call for Papers Oliver Goebel (Wed Jan 21 2009 - 23:21:24 EET)
[ MDVSA-2009:024 ] php4 security@mandriva.com (Thu Jan 22 2009 - 03:21:00 EET)
Asp-project Cookie Handling r3d.w0rm@yahoo.com (Thu Jan 22 2009 - 15:25:08 EET)
[ MDVSA-2009:020 ] xine-lib security@mandriva.com (Thu Jan 22 2009 - 00:37:00 EET)
ZDI-09-006: Apple QuickTime AVI Header nBlockAlign Heap Corruption Vulnerability zdi-disclosures@3com.com (Thu Jan 22 2009 - 00:27:48 EET)
ZDI-09-008: Apple QuickTime STSD JPEG Atom Heap Corruption Vulnerability zdi-disclosures@3com.com (Thu Jan 22 2009 - 00:29:28 EET)
[ MDVSA-2009:022 ] php security@mandriva.com (Thu Jan 22 2009 - 01:34:00 EET)
ZDI-09-005: Apple QuickTime VR Track Header Atom Heap Corruption Vulnerability zdi-disclosures@3com.com (Thu Jan 22 2009 - 00:26:12 EET)
[ GLSA 200901-15 ] Net-SNMP: Denial of Service Pierre-Yves Rofes (Thu Jan 22 2009 - 00:31:59 EET)
VUPlayer 2.49 .ASX local universal BOF exploit maroc-anti-connexion@hotmail.com (Thu Jan 22 2009 - 15:41:54 EET)
[ MDVSA-2009:023 ] php security@mandriva.com (Thu Jan 22 2009 - 02:03:00 EET)
[ MDVSA-2009:021 ] php security@mandriva.com (Thu Jan 22 2009 - 01:03:00 EET)
ZDI-09-007: Apple QuickTime Cinepak Codec MDAT Heap Corruption Vulnerability zdi-disclosures@3com.com (Thu Jan 22 2009 - 00:28:34 EET)
- Re: ZDI-09-007: Apple QuickTime Cinepak Codec MDAT Heap Corruption Vulnerability security curmudgeon (Sat Jan 24 2009 - 12:36:13 EET)
[TKADV2009-003] GStreamer Heap Overflow and Array Index out of Bounds Vulnerabilities Tobias Klein (Thu Jan 22 2009 - 23:19:30 EET)
[ MDVSA-2009:025 ] pidgin security@mandriva.com (Fri Jan 23 2009 - 03:02:00 EET)
PHP-Nuke 8.0 Downloads Blind Sql Injection r3d.w0rm@yahoo.com (Fri Jan 23 2009 - 12:45:34 EET)
Secunia Research: AXIS Camera Control "image_pan_tilt" Property Buffer Overflow Secunia Research (Fri Jan 23 2009 - 10:59:20 EET)
BBSxp Xss vulnerability arashps0@gmail.com (Fri Jan 23 2009 - 17:08:23 EET)
[ MDVSA-2009:026 ] phpMyAdmin security@mandriva.com (Fri Jan 23 2009 - 20:47:00 EET)
Oblog XSS valnerability arash.setayeshi@gmail.com (Fri Jan 23 2009 - 21:02:26 EET)
- Re: Oblog XSS valnerability dan.crowley@gmail.com (Sat Jan 24 2009 - 21:57:22 EET)
ZDI-09-009: EMC AutoStart Backbone Engine Trusted Pointer Code Execution Vulnerability zdi-disclosures@3com.com (Fri Jan 23 2009 - 22:08:32 EET)
Problems with syscall filtering technologies on Linux Chris Evans (Fri Jan 23 2009 - 23:42:03 EET)
VUplayer (.wax file) local buffer overflow crash exploit storms0uth@hotmail.com (Sat Jan 24 2009 - 00:47:36 EET)
Browser3D 3.5 (.sfs File) Local Stack Overflow Exploit (c) maroc-anti-connexion@hotmail.com (Sat Jan 24 2009 - 02:57:03 EET)
[HACKATTACK Advisory 25012009]ConPresso CMS 4.07 - Session Fixation, XFS, XSS office@hackattack.at (Sun Jan 25 2009 - 10:51:00 EET)
Lootan(kedor) Sql Injection vulnerability arash.setayeshi@gmail.com (Sat Jan 24 2009 - 05:12:08 EET)
SonyEricsson WAP Push Denial of Service Mobile Security Lab (Mon Jan 26 2009 - 12:16:37 EET)
LDF Sql injection vulnerability arash.setayeshi@gmail.com (Sat Jan 24 2009 - 05:19:31 EET)
Nokia Multimedia Player (.AVI File) Null Dereference Pointer Exploit alphanix00@gmail.com (Sun Jan 25 2009 - 16:15:55 EET)
/bin/login DoS remains after DSA-1709 Paul Szabo (Sat Jan 24 2009 - 07:06:29 EET)
MediaMonkey 3.0.6 (.m3u file) Local Buffer Overflow PoC alphanix00@gmail.com (Sun Jan 25 2009 - 16:14:49 EET)
Re: [Full-disclosure] ZDI-09-007: Apple QuickTime Cinepak Codec MDAT Heap Corruption Vulnerability Juha-Matti Laurio (Sat Jan 24 2009 - 13:42:50 EET)
Re: munky-bliki lfi security curmudgeon (Sun Jan 25 2009 - 12:27:09 EET)
Browse3d (.sfs file) Local Stack Overflow Exploit alphanix00@gmail.com (Sun Jan 25 2009 - 16:15:18 EET)
Benchmarking attacks and major security weakness on all recent Windows versions up to Windows 200 thadeum@gmail.com (Sat Jan 24 2009 - 13:32:11 EET)
EleCard MPEG PLAYER (.m3u file) Local Stack Overflow Exploit alphanix00@gmail.com (Sun Jan 25 2009 - 16:14:21 EET)
[ MDVSA-2009:027 ] cups security@mandriva.com (Sat Jan 24 2009 - 20:45:00 EET)
CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities Williams, James K (Sat Jan 24 2009 - 20:36:56 EET)
WB News v2.0.X Remote File include .. security@soqor.net (Sun Jan 25 2009 - 05:13:47 EET)
[SECURITY] [DSA 1710-1] New ganglia-monitor-core packages fix remote code execution Steffen Joeris (Sun Jan 25 2009 - 22:26:55 EET)
[SECURITY] [DSA 1711-1] New TYPO3 packages fix remote code execution Nico Golde (Mon Jan 26 2009 - 22:54:10 EET)
[USN-710-1] xine-lib vulnerabilities Marc Deslauriers (Mon Jan 26 2009 - 22:40:28 EET)
[USN-711-1] KTorrent vulnerabilities Marc Deslauriers (Mon Jan 26 2009 - 22:40:58 EET)
Re: FUD Forum < 2.7.1 PHP code injection vurnelability riklaunim@gmail.com (Tue Jan 27 2009 - 06:42:45 EET)
NewsCMSlite Insecure Cookie Handling admin@bugreport.ir (Tue Jan 27 2009 - 09:00:53 EET)
ACROS Security: HTML Injection in BEA (Oracle) WebLogic Server Console (ASPR #2009-01-27-1) ACROS Security (Tue Jan 27 2009 - 13:48:58 EET)
[USN-712-1] Vim vulnerabilities Marc Deslauriers (Tue Jan 27 2009 - 14:53:00 EET)
Secunia Research: OpenX Multiple Vulnerabilities Secunia Research (Tue Jan 27 2009 - 17:13:19 EET)
- Re: Secunia Research: OpenX Multiple Vulnerabilities scott.switzer@openx.org (Thu Jan 29 2009 - 01:34:50 EET)
OpenX 2.6.3 - Local File Inclusion admin@elites0ft.com (Tue Jan 27 2009 - 02:20:48 EET)
CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities (Updated - v1.1) Williams, James K (Tue Jan 27 2009 - 02:26:13 EET)
JetAudio Basic 7.0.3 BufferOverFlow PoC alphanix00@gmail.com (Tue Jan 27 2009 - 08:21:33 EET)
SAP NetWeaver XSS Vulnerability Martin Suess (Tue Jan 27 2009 - 10:57:08 EET)
Total video player 1.3.7 local buffer overflow universal exploit maroc-anti-connexion@hotmail.com (Tue Jan 27 2009 - 17:02:39 EET)
CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities Williams, James K (Tue Jan 27 2009 - 17:08:01 EET)
Max.Blog <= 1.0.6 (show_post.php) SQL Injection Vulnerability Salvatore \ (Tue Jan 27 2009 - 17:27:06 EET)
[ MDVSA-2009:030 ] amarok security@mandriva.com (Tue Jan 27 2009 - 18:11:00 EET)
Max.Blog <= 1.0.6 (submit_post.php) SQL Injection Vulnerability Salvatore \ (Tue Jan 27 2009 - 22:47:56 EET)
Max.Blog <= 1.0.6 (offline_auth.php) Offline Authentication Bypass Salvatore \ (Tue Jan 27 2009 - 23:13:59 EET)
[USN-713-1] openjdk-6 vulnerabilities Kees Cook (Wed Jan 28 2009 - 00:37:30 EET)
CONFidence 2009, Final CfP Andrzej Targosz (Wed Jan 28 2009 - 00:45:55 EET)
Web Hacking Incidents update for Jan 28th Ofer Shezaf (Wed Jan 28 2009 - 12:26:39 EET)
Internet explorer 7.0 stack overflow jplopezy@gmail.com (Wed Jan 28 2009 - 02:31:09 EET)
- Re: Internet explorer 7.0 stack overflow jplopezy@gmail.com (Thu Jan 29 2009 - 17:31:05 EET)
  - Re[2]: Internet explorer 7.0 stack overflow Vladimir '3APA3A' Dubrovin (Thu Jan 29 2009 - 23:58:03 EET)
Re: DoS attacks on MIME-capable software via complex MIME emails Dave English (Tue Jan 27 2009 - 17:22:25 EET)
CORE-2008-1211: Amaya web editor XML and HTML parser vulnerabilities Core Security Technologies Advisories (Wed Jan 28 2009 - 20:24:41 EET)
Advisory: Google Chrome 1.0.154.43 ClickJacking Vulnerability. Aditya K Sood (Wed Jan 28 2009 - 21:54:52 EET)
- Re: Advisory: Google Chrome 1.0.154.43 ClickJacking Vulnerability. Michal Zalewski (Thu Jan 29 2009 - 01:40:40 EET)
[SECURITY] [DSA 1712-1] New rt2400 packages fix arbitrary code execution Moritz Muehlenhoff (Wed Jan 28 2009 - 23:45:32 EET)
[TKADV2009-004] FFmpeg Type Conversion Vulnerability Tobias Klein (Wed Jan 28 2009 - 23:07:30 EET)
[SECURITY] [DSA 1713-1] New rt2500 packages fix arbitrary code execution Moritz Muehlenhoff (Wed Jan 28 2009 - 23:51:07 EET)
[SECURITY] [DSA 1714-1] New rt2570 packages fix arbitrary code execution Moritz Muehlenhoff (Wed Jan 28 2009 - 23:55:19 EET)
[security bulletin] HPSBMA02403 SSRT090007 rev.1 - HP Select Access Running on HP-UX, Linux, Solaris, and Windows, Remote Cross Site Scripting (XSS) security-alert@hp.com (Thu Jan 29 2009 - 16:03:10 EET)
dBpowerAMP Audio Player v2 ( .pls file) LoCaL BufferOverFlow Exploit alphanix00@gmail.com (Thu Jan 29 2009 - 18:29:25 EET)
[security bulletin] HPSBMP02404 SSRT090014 rev.1 - MPE/iX Running BIND/iX, Remote DNS Cache Poisoning security-alert@hp.com (Thu Jan 29 2009 - 16:14:36 EET)
[SECURITY] [DSA 1715-1] New moin packages fix insufficient input sanitising Devin Carraway (Thu Jan 29 2009 - 09:14:15 EET)
Oracle Forms Cross site Scripting in (iFcgi60.exe / f60servlet) DoZ@HackersCenter.com (Thu Jan 29 2009 - 16:12:07 EET)
Oracle Application Server 10g Cross Site Scripting Vulnerability DoZ@HackersCenter.com (Thu Jan 29 2009 - 15:57:02 EET)
Motorola Wimax Modem CPEi300 Multiple Vulnerabilities usman (Thu Jan 29 2009 - 20:40:43 EET)
rPSA-2009-0021-1 sudo rPath Update Announcements (Thu Jan 29 2009 - 21:29:29 EET)
[SECURITY] [DSA 1704-2] Updated netatalk packages fix denial of service Nico Golde (Thu Jan 29 2009 - 23:53:18 EET)
PerlSoft Guestbook v1.7b Bruteforcer + RCE! Perforin (Thu Jan 29 2009 - 19:18:12 EET)
Re: XSS vulnerabilty in ASP.Net [with details] m.rajeshpawar@gmail.com (Thu Jan 29 2009 - 23:49:18 EET)
SecurityFocus Newsletter #488 sfa@securityfocus.com (Thu Jan 29 2009 - 23:17:50 EET)
SecurityFocus Microsoft Newsletter #429 sfa@securityfocus.com (Thu Jan 29 2009 - 23:17:54 EET)
SecurityFocus Linux Newsletter #424 sfa@securityfocus.com (Thu Jan 29 2009 - 23:18:00 EET)
[OPENX-SA-2009-001] OpenX 2.4.10 and 2.6.4 fix multiple vulnerabilities Matteo Beccati (Fri Jan 30 2009 - 11:27:20 EET)
ANNOUNCE - RFIDIOt 0.1w released - January 2009 Adam Laurie (Fri Jan 30 2009 - 15:32:40 EET)
Bugs Online v2.14 Sql Injection r3d.w0rm@yahoo.com (Fri Jan 30 2009 - 12:15:47 EET)
CVE-2008-4990 Enomaly ECP/Enomalism: Insecure temporary file creation vulnerabilities Sam Johnston (Fri Jan 30 2009 - 15:57:09 EET)
[USN-715-1] Linux kernel vulnerabilities Kees Cook (Fri Jan 30 2009 - 04:21:49 EET)
[USN-716-1] MoinMoin vulnerabilities Jamie Strandboge (Fri Jan 30 2009 - 06:29:57 EET)
PR08-21: Cross-site Request Forgery (CSRF) on Novell GroupWise WebAccess allows email theft and other attacks ProCheckUp Research (Fri Jan 30 2009 - 13:14:12 EET)
PR08-22: Persistent XSS on Novell GroupWise WebAccess ProCheckUp Research (Fri Jan 30 2009 - 13:20:41 EET)
PR08-23: XSS on Novell GroupWise WebAccess ProCheckUp Research (Fri Jan 30 2009 - 13:24:42 EET)
Re: Re: Google Chrome Browser (ChromeHTML://) remote parameter injection POC come2waraxe@yahoo.com (Fri Jan 30 2009 - 19:58:54 EET)

Last message date: Fri Jan 30 2009 - 22:50:34 EET
Archived on: Fri Jan 30 2009 - 22:50:34 EET

310 messages sorted by: [ author ] [ date ] [ subject ]

This archive was generated by hypermail 2b28 : Fri Jan 30 2009 - 22:50:34 EET

stdinBy Thread

stdin
By Thread