stdin
By Date

Most recent messages
309 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Wed Apr 01 2009 - 00:01:01 EEST
Ending: Thu Apr 30 2009 - 18:13:14 EEST

CORE-2009-0108: Multiple vulnerabilities in Sun Calendar Express Web Server CORE Security Technologies Advisories (Tue Mar 31 2009 - 23:01:43 EEST)
Secunia Research: UltraISO Image Name Parsing Format String Vulnerabilities Secunia Research (Wed Apr 01 2009 - 11:38:19 EEST)
[security bulletin] HPSBUX02418 SSRT090002 rev.1 - HP-UX Running OpenSSL, Remote Unauthorized Access security-alert@hp.com (Wed Apr 01 2009 - 16:15:34 EEST)
VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim VMware Security team (Wed Apr 01 2009 - 05:57:48 EEST)
[ MDVSA-2009:084 ] firefox security@mandriva.com (Wed Apr 01 2009 - 16:39:00 EEST)
Microsoft Internet Explorer 8 - Anti Spoofing is a Myth Aditya K Sood (Wed Apr 01 2009 - 16:59:28 EEST)
Massive exploitation of instant messaging applications proved feasible Julien TINNES (Wed Apr 01 2009 - 06:00:30 EEST)
[SecNiche Whitepaper] Evading Web XSS Filters with Microsoft Word - WAPT Perspective Aditya K Sood (Wed Apr 01 2009 - 16:59:55 EEST)
[ MDVSA-2009:083 ] mozilla-thunderbird security@mandriva.com (Wed Apr 01 2009 - 15:40:01 EEST)
Secunia Research: UltraISO Image Parsing Buffer Overflow Vulnerabilities Secunia Research (Wed Apr 01 2009 - 11:38:08 EEST)
Re: Microsoft Internet Explorer 8 - Anti Spoofing is a Myth Michal Zalewski (Wed Apr 01 2009 - 18:44:58 EEST)
OpenX 2.6.4 multiple vulnerabilities publists@enablesecurity.com (Wed Apr 01 2009 - 23:35:56 EEST)
EUSecWest 2009 CFP (May 27/28, Deadline April 7 2009) Dragos Ruiu (Thu Apr 02 2009 - 00:28:45 EEST)
[OPENX-SA-2009-002] OpenX 2.4.11, 2.6.5, 2.8.0 fix multiple vulnerabilities Matteo Beccati (Thu Apr 02 2009 - 01:33:16 EEST)
OSCommerce Session Fixation Vulnerability laurent.desaulniers@gmail.com (Thu Apr 02 2009 - 02:35:34 EEST)
Layered Defense Research Advisory: Format String Vulnerability: FortiClient Version 3 dh@layereddefense.com (Thu Apr 02 2009 - 05:25:25 EEST)
Remote access vulnerability using File Thingie v2.5.4 xiashing@gmail.com (Thu Apr 02 2009 - 12:09:03 EEST)
Asbru Web Content Management Vulnerabilities Patrick Webster (Thu Apr 02 2009 - 15:18:46 EEST)
Q2 Solutions ConnX - SQL Injection Vulnerability Patrick Webster (Thu Apr 02 2009 - 16:14:56 EEST)
[SECURITY] [DSA 1762-1] New icu packages fix cross site scripting Steffen Joeris (Thu Apr 02 2009 - 16:41:03 EEST)
ContentKeeper - Remote command execution and privilege escalation Patrick Webster (Thu Apr 02 2009 - 16:44:36 EEST)
[TZO-05-2009] Clamav 0.94 and below - Evasion /bypass Thierry Zoller (Thu Apr 02 2009 - 17:27:54 EEST)
[TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details) Thierry Zoller (Thu Apr 02 2009 - 18:10:48 EEST)
[TZO-07-2009] F-PROT ZIP Method evasion Thierry Zoller (Thu Apr 02 2009 - 18:25:37 EEST)
[ MDVSA-2009:085 ] gstreamer0.10-plugins-base security@mandriva.com (Thu Apr 02 2009 - 18:30:01 EEST)
[SECURITY] [DSA 1761-1] New moodle packages fix file disclosure Nico Golde (Fri Apr 03 2009 - 16:35:39 EEST)
Autodesk IDrop ActiveX Control Heap Corruption Vulnerability Elazar Broad (Thu Apr 02 2009 - 22:00:06 EEST)
glFusion <= 1.1.2 COM_applyFilter()/cookies remote blind sql injection exploit nospam@gmail.it (Fri Apr 03 2009 - 12:40:41 EEST)
IBM DB2 Dennis Yurichev (Thu Apr 02 2009 - 22:52:23 EEST)
Family Connections 1.8.2 Arbitrary File Upload Salvatore \ (Fri Apr 03 2009 - 19:07:51 EEST)
rPSA-2009-0057-1 m2crypto openssl openssl-scripts rPath Update Announcements (Fri Apr 03 2009 - 08:38:42 EEST)
Family Connections <= 1.8.2 - Remote Shell Upload Exploit Salvatore \ (Fri Apr 03 2009 - 19:13:15 EEST)
[ GLSA 200904-02 ] GLib: Execution of arbitrary code Robert Buchholz (Fri Apr 03 2009 - 16:47:56 EEST)
[ GLSA 200904-03 ] Gnumeric: Untrusted search path Robert Buchholz (Fri Apr 03 2009 - 16:48:30 EEST)
Cyber Warfare Conference: Agenda k g (Thu Apr 02 2009 - 22:30:36 EEST)
AST-2009-003: SIP responses expose valid usernames Asterisk Security Team (Thu Apr 02 2009 - 21:59:45 EEST)
Family Connections 1.8.2 Blind SQL Injection (Correct Version) Salvatore \ (Fri Apr 03 2009 - 16:35:01 EEST)
[ GLSA 200904-01 ] Openfire: Multiple vulnerabilities Pierre-Yves Rofes (Thu Apr 02 2009 - 23:51:15 EEST)
VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues VMware Security Team (Sat Apr 04 2009 - 08:22:07 EEST)
[ MDVSA-2009:086 ] gstreamer-plugins security@mandriva.com (Sat Apr 04 2009 - 03:27:00 EEST)
Joomla Component com_bookjoomlas SQL Injection Vulnerability Salvatore \ (Mon Apr 06 2009 - 12:13:44 EEST)
[ MDVSA-2009:087 ] openssl security@mandriva.com (Sat Apr 04 2009 - 01:39:01 EEST)
[ GLSA 200904-04 ] WeeChat: Denial of Service Tobias Heinlein (Sat Apr 04 2009 - 20:22:54 EEST)
[Aria-Security.com] vBulletin multiple XSS dontcontactorspamme@aria-security.com (Sat Apr 04 2009 - 09:50:23 EEST)
[TKADV2009-005] xine-lib Quicktime STTS Atom Integer Overflow Tobias Klein (Sat Apr 04 2009 - 13:43:01 EEST)
Amaya 11.1 XHTML Parser Buffer Overflow c1c4tr1z@voodoo-labs.org (Sat Apr 04 2009 - 08:11:59 EEST)
[ GLSA 200904-05 ] ntp: Certificate validation error Pierre-Yves Rofes (Sun Apr 05 2009 - 16:56:49 EEST)
SecurityFocus Newsletter #497 sfa@securityfocus.com (Mon Apr 06 2009 - 18:51:41 EEST)
SecurityFocus Microsoft Newsletter #438 sfa@securityfocus.com (Mon Apr 06 2009 - 18:51:45 EEST)
SecurityFocus Linux Newsletter #433 sfa@securityfocus.com (Mon Apr 06 2009 - 18:52:05 EEST)
[SECURITY] [DSA 1763-1] New openssl packages fix denial of service Moritz Muehlenhoff (Mon Apr 06 2009 - 19:25:35 EEST)
[security bulletin] HPSBMA02416 SSRT090008 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Mon Apr 06 2009 - 23:31:15 EEST)
ZDI-09-016: Novell Client/NetIdentity Agent Remote Arbitrary Pointer Dereference Code Execution Vulnerability ZDI Disclosures (Mon Apr 06 2009 - 23:51:00 EEST)
[ GLSA 200904-07 ] Xpdf: Untrusted search path Robert Buchholz (Tue Apr 07 2009 - 13:18:22 EEST)
[ GLSA 200904-08 ] OpenSSL: Denial of Service Robert Buchholz (Tue Apr 07 2009 - 13:19:17 EEST)
TPTI-09-02: VMWare VMnc Codec Open-DML Standard Index dwSize Heap Overflow dvlabs (Mon Apr 06 2009 - 23:44:02 EEST)
Secunia Research: IrfanView Formats Plug-in XPM Parsing Integer Overflow Secunia Research (Tue Apr 07 2009 - 14:52:20 EEST)
TPTI-09-01: VMWare VMnc Codec Invalid RFB Message Type Heap Overflow dvlabs (Mon Apr 06 2009 - 23:43:55 EEST)
[security bulletin] HPSBUX02415 SSRT090023 rev.1 - HP-UX Running PAM Kerberos, Local Privilege Escalation, Unauthorized Access security-alert@hp.com (Tue Apr 07 2009 - 16:04:26 EEST)
POC - Sun Java System Acccess Manager & Identity Manager Users Enumeration Marco Mella (Tue Apr 07 2009 - 15:51:00 EEST)
[USN-753-1] PostgreSQL vulnerability Marc Deslauriers (Tue Apr 07 2009 - 18:43:17 EEST)
[ GLSA 200904-06 ] Eye of GNOME: Untrusted search path Pierre-Yves Rofes (Tue Apr 07 2009 - 00:56:18 EEST)
OSSTMM 3 Sample Released Pete Herzog (Mon Apr 06 2009 - 23:08:30 EEST)
[USN-752-1] Linux kernel vulnerabilities Kees Cook (Tue Apr 07 2009 - 20:37:12 EEST)
MITKRB5-SA-2009-001: multiple vulnerabilities in SPNEGO, ASN.1 decoder [CVE-2009-0844 CVE-2009-0845 CVE-2009-0847] Tom Yu (Tue Apr 07 2009 - 21:11:37 EEST)
LayerOne 2009 - Registration Open, Initial Speakers Announced LayerOne Call For Papers (Tue Apr 07 2009 - 20:25:12 EEST)
MITKRB5-SA-2009-002: ASN.1 decoder frees uninitialized pointer [CVE-2009-0846] Tom Yu (Tue Apr 07 2009 - 21:11:57 EEST)
[USN-754-1] ClamAV vulnerabilities Jamie Strandboge (Tue Apr 07 2009 - 22:32:12 EEST)
[SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability Mark Thomas (Tue Apr 07 2009 - 23:42:40 EEST)
[SECURITY] [DSA 1765-1] New horde3 packages fix several vulnerabilities Steffen Joeris (Wed Apr 08 2009 - 16:22:34 EEST)
Re: Adgregate ShopAd widget validation is vulnerable to replay attack Matthew Dempsky (Wed Apr 08 2009 - 10:21:53 EEST)
[Bkis-06-2009] GOM Player Subtitle Buffer Overflow Vulnerability Bkis (Wed Apr 08 2009 - 11:00:05 EEST)
[SECURITY] [DSA 1764-1] New tunapie packages fix several vulnerabilities Moritz Muehlenhoff (Wed Apr 08 2009 - 00:44:14 EEST)
Re: Adgregate ShopAd widget validation is vulnerable to replay attack Matthew Dempsky (Wed Apr 08 2009 - 04:56:50 EEST)
rPSA-2009-0058-1 krb5 krb5-server krb5-services krb5-test krb5-workstation rPath Update Announcements (Wed Apr 08 2009 - 00:07:18 EEST)
[USN-755-1] Kerberos vulnerabilities Kees Cook (Wed Apr 08 2009 - 02:34:59 EEST)
Re: [Aria-Security.com] vBulletin multiple XSS security@intern0t.net (Wed Apr 08 2009 - 17:07:19 EEST)
Adgregate ShopAd widget validation is vulnerable to replay attack Matthew Dempsky (Wed Apr 08 2009 - 03:42:27 EEST)
SASPCMS Multiple Vulnerabilities admin@bugreport.ir (Wed Apr 08 2009 - 15:13:24 EEST)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Adaptive Security Appliance and Cisco PIX Security Appliances Cisco Systems Product Security Incident Response Team (Wed Apr 08 2009 - 19:01:39 EEST)
OTSTurntables 1.00.027 (.ofl file) Local universal SOF Exploit alphanix00@gmail.com (Wed Apr 08 2009 - 20:34:39 EEST)
net2ftp <= 0.97 Cross-Site Scripting/Request Forgery c1c4tr1z@voodoo-labs.org (Thu Apr 09 2009 - 00:13:10 EEST)
OpenVAS now beyond 10000 Network Vulnerability Tests Michael Wiegand (Thu Apr 09 2009 - 17:23:04 EEST)
FGA-2009-003:EMC RepliStor Buffer Overflow Vulnerability noreply-secresearch@fortinet.com (Thu Apr 09 2009 - 05:01:53 EEST)
AdaptBB 1.0 Beta Multiple Remote Vulnerabilities Salvatore \ (Thu Apr 09 2009 - 16:38:06 EEST)
Geeklog <=1.5.2 'SESS_updateSessionTime()' vulnerability nospam@gmail.it (Thu Apr 09 2009 - 13:35:10 EEST)
[ GLSA 200904-11 ] Tor: Multiple vulnerabilities Robert Buchholz (Thu Apr 09 2009 - 01:48:56 EEST)
Geeklog <=1.5.2 SEC_authenticate()/PHP_AUTH_USER sql injection exploit nospam@gmail.it (Thu Apr 09 2009 - 13:22:57 EEST)
Exjune Guestbook v2 Remote Database Disclosure Exploit alphanix00@gmail.com (Thu Apr 09 2009 - 00:47:30 EEST)
[SECURITY] [DSA 1766-1] New krb5 packages fix several vulnerabilities Nico Golde (Thu Apr 09 2009 - 04:33:24 EEST)
[security bulletin] HPSBMA02396 SSRT080175 rev.1 - HP OpenView Performance Agent and HP Performance Agent Running on Windows, Remote Execution of Arbitrary Code security-alert@hp.com (Thu Apr 09 2009 - 15:55:14 EEST)
[ GLSA 200904-09 ] MIT Kerberos 5: Multiple vulnerabilities Robert Buchholz (Thu Apr 09 2009 - 01:46:10 EEST)
IBM BladeCenter Advanced Management Module Multiple vulnerabilities Henri Lindberg - Smilehouse Oy (Thu Apr 09 2009 - 13:38:52 EEST)
[SECURITY] [DSA 1767-1] New multipath-tools packages fix denial of service Nico Golde (Thu Apr 09 2009 - 17:18:13 EEST)
[ GLSA 200904-10 ] Avahi: Denial of Service Robert Buchholz (Thu Apr 09 2009 - 01:48:04 EEST)
Secunia Research: Ghostscript jbig2dec JBIG2 Processing Buffer Overflow Secunia Research (Thu Apr 09 2009 - 17:07:33 EEST)
[security bulletin] HPSBMA02420 SSRT071458 rev.1 - HP ProCurve Manager and HP ProCurve Manager Plus, Remote Unauthorized Access to Data security-alert@hp.com (Thu Apr 09 2009 - 17:59:41 EEST)
[ MDVSA-2009:088 ] wireshark security@mandriva.com (Thu Apr 09 2009 - 21:36:00 EEST)
Reminder: RAID 2009 CFP Corrado Leita (Thu Apr 09 2009 - 22:13:46 EEST)
SecurityFocus Newsletter #498 sfa@securityfocus.com (Fri Apr 10 2009 - 01:39:50 EEST)
SecurityFocus Microsoft Newsletter #439 sfa@securityfocus.com (Fri Apr 10 2009 - 01:39:54 EEST)
Bid 34130 Invalid vpandey@gmail.com (Fri Apr 10 2009 - 19:36:08 EEST)
PHP-agenda <= 2.2.5 Remote File Overwriting Salvatore \ (Fri Apr 10 2009 - 16:20:54 EEST)
[DSECRG-09-035] Chance-i DiViS DVR ActiveX - Heap Overflow DSecRG (Fri Apr 10 2009 - 15:33:57 EEST)
PHP 5.2.9 curl safe_mode & open_basedir bypass cxib@securityreason.com (Fri Apr 10 2009 - 16:14:32 EEST)
[ MDVSA-2009:089 ] opensc security@mandriva.com (Fri Apr 10 2009 - 05:13:00 EEST)
[SECURITY] [DSA 1754-1] New roundup packages fix privilege escalation Florian Weimer (Thu Apr 09 2009 - 23:53:23 EEST)
Loggix Project 9.4.5 Blind SQL Injection Salvatore \ (Fri Apr 10 2009 - 17:37:29 EEST)
Summer Camp Garrotxa 2009 event Gerardo Garc�a Pe�a (Wed Apr 08 2009 - 08:36:22 EEST)
[SECURITY] [DSA 1768-1] New openafs packages potential code execution Florian Weimer (Fri Apr 10 2009 - 17:51:13 EEST)
[DSECRG-09-036] Chance-i Techno Vision Security System - Directory Traversal File Download DSecRG (Fri Apr 10 2009 - 15:36:39 EEST)
[ MDVSA-2009:090 ] php security@mandriva.com (Fri Apr 10 2009 - 19:12:01 EEST)
[ GLSA 200904-12 ] Wicd: Information disclosure Tobias Heinlein (Fri Apr 10 2009 - 16:57:05 EEST)
Dynamic Flash Forum 1.0 Beta Multiple Remote Vulnerabilities Salvatore \ (Fri Apr 10 2009 - 00:09:52 EEST)
VMSA-2009-0006 VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability VMware Security Team (Fri Apr 10 2009 - 19:22:40 EEST)
Opening Intranets to attack by using Internet Explorer [paper] Cesar (Tue Apr 07 2009 - 21:36:50 EEST)
Re: Layered Defense Research Advisory: Format String Vulnerability: FortiClient Version 3 prabhup@athisayampark.com (Fri Apr 10 2009 - 11:20:58 EEST)
[SECURITY] [DSA 1769-1] New openjdk-6 packages fix arbitrary code execution Florian Weimer (Sat Apr 11 2009 - 17:38:24 EEST)
[BMSA 2009-04] Remote DoS in Internet Explorer Nam Nguyen (Sat Apr 11 2009 - 10:15:15 EEST)
In Response to Bid 34130 Invalid Aditya K Sood (Sat Apr 11 2009 - 12:29:26 EEST)
HP Deskjet 6800 XSS in Web Interface mcyr2@csc.com (Sat Apr 11 2009 - 18:26:13 EEST)
ftpdmin v. 0.96 RNFR remote buffer overflow exploit nospam@gmail.it (Sat Apr 11 2009 - 20:24:49 EEST)
Re: In Response to Bid 34130 Invalid vpandey@gmail.com (Sun Apr 12 2009 - 01:25:23 EEST)
[ MDVSA-2009:091 ] mod_perl security@mandriva.com (Sun Apr 12 2009 - 15:23:00 EEST)
Hacker Space Fest 2009 CFP: Call For Paper Philippe Mailinglist (Mon Apr 13 2009 - 14:15:38 EEST)
Re: Critical SQL Injection PHPNuke <= 7.8 - Your_Account module mefuentes61@hotmail.com (Sun Apr 12 2009 - 20:50:55 EEST)
[SECURITY] [DSA 1770-1] New imp4 packages fix cross-site scripting Steffen Joeris (Mon Apr 13 2009 - 18:10:07 EEST)
[Suspected Spam][Positive Technologies SA 2009-01] PGP Desktop Pgpdisk.sys And Pgpwded.sys Multiple Vulnerabilities Valery Marchuk (Mon Apr 13 2009 - 18:38:47 EEST)
OpenBSD 4.3 up to OpenBSD-current: PF null pointer dereference - remote DoS (kernel panic) rembrandt (Mon Apr 13 2009 - 20:39:15 EEST)
[USN-756-1] ClamAV vulnerability Jamie Strandboge (Mon Apr 13 2009 - 21:58:50 EEST)
[ MDVSA-2009:092 ] ntp security@mandriva.com (Mon Apr 13 2009 - 22:17:01 EEST)
Re: PHP-Revista Multiple vulnerabilities marianiscc@hotmail.com (Mon Apr 13 2009 - 23:49:01 EEST)
Re: [NOBYTES.COM: #12] osCommerce 2.2rc2a - Information Disclosure Anonymous@gmail.com (Tue Apr 14 2009 - 14:35:44 EEST)
BugCON '09, Mexico: Call For Papers Carlos Augusto (Tue Apr 14 2009 - 01:10:01 EEST)
MonGoose 2.4 Directory Traversal Vulnerability ew1zz@hotmail.com (Tue Apr 14 2009 - 02:18:16 EEST)
Re: OSCommerce Session Fixation Vulnerability tech107@gmail.com (Tue Apr 14 2009 - 14:23:55 EEST)
[DSECRG-09-037] abk-soft AbleSpace CMS 1.0 - Multiple security vulnerabilities DSecRG (Tue Apr 14 2009 - 18:49:42 EEST)
iDefense Security Advisory 04.14.09: Microsoft Word 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability iDefense Labs (Tue Apr 14 2009 - 21:59:32 EEST)
[ GLSA 200904-13 ] Ventrilo: Denial of Service Pierre-Yves Rofes (Tue Apr 14 2009 - 23:32:39 EEST)
ZDI-09-017: Oracle Applications Server 10g Format String Vulnerability ZDI Disclosures (Tue Apr 14 2009 - 23:25:36 EEST)
[ GLSA 200904-14 ] F-PROT Antivirus: Denial of Service Pierre-Yves Rofes (Tue Apr 14 2009 - 23:47:07 EEST)
Microsoft Office Excel Remote Memory Corruption Vulnerability noreply-secresearch@fortinet.com (Wed Apr 15 2009 - 04:30:54 EEST)
Secunia Research: SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method Secunia Research (Wed Apr 15 2009 - 10:54:51 EEST)
[USN-757-1] Ghostscript vulnerabilities Marc Deslauriers (Wed Apr 15 2009 - 17:39:15 EEST)
Zervit Webserver Buffer Overflow ewizz@balcansecurity.com (Wed Apr 15 2009 - 00:22:26 EEST)
Secunia Research: Oracle BEA WebLogic Server Plug-ins Integer Overflow Secunia Research (Wed Apr 15 2009 - 12:54:11 EEST)
Secunia Research: DivX Web Player Stream Format Chunk Buffer Overflow Secunia Research (Wed Apr 15 2009 - 10:37:15 EEST)
HITBSecConf2009 - Malaysia: Call for Papers S. Praburaajan (Wed Apr 15 2009 - 07:03:14 EEST)
Secunia Research: Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow Secunia Research (Wed Apr 15 2009 - 12:57:34 EEST)
SEC Consult SA-20090415-0 :: Multiple Vulnerabilities in Novell Teaming Bernhard Mueller (Wed Apr 15 2009 - 17:02:23 EEST)
XSS with mod_perl perl_status utility antonia.goodwin@procheckup.com (Wed Apr 15 2009 - 19:11:39 EEST)
[USN-758-1] udev vulnerabilities Kees Cook (Wed Apr 15 2009 - 20:07:41 EEST)
SEC Consult SA-20090415-1 :: Nortel Application Gateway 2000 Password Disclosure Vulnerability Bernhard Mueller (Wed Apr 15 2009 - 17:03:49 EEST)
SQL Injection in package DBMS_AQIN ak@red-database-security.com (Thu Apr 16 2009 - 08:40:06 EEST)
Unprivileged DB users can see APEX password hashes ak@red-database-security.com (Thu Apr 16 2009 - 08:43:43 EEST)
Phorum < 5.2.10 Cross-Site Scripting/Request Forgery research@voodoo-labs.org (Thu Apr 16 2009 - 03:42:54 EEST)
Secunia Research: Danske Bank e-Sec Control Module Error Logging Buffer Overflow Secunia Research (Thu Apr 16 2009 - 11:00:35 EEST)
Geeklog <= 1.5.2 savepreferences()/*blocks[] remote sql injection exploit nospam@gmail.it (Thu Apr 16 2009 - 12:24:10 EEST)
[SECURITY] [DSA 1771-1] New clamav packages fix several vulnerabilities Florian Weimer (Wed Apr 15 2009 - 22:48:10 EEST)
[SECURITY] [DSA 1772-1] New udev packages fix privilege escalation Florian Weimer (Thu Apr 16 2009 - 13:30:59 EEST)
SQL Injection in package DBMS_AQADM_SYS ak@red-database-security.com (Thu Apr 16 2009 - 08:40:55 EEST)
webSPELL 4.2.0c--XSS (BYPASS BBCODE) COOKIES STEALING VULNERABILITY-- y3nh4ck3r@gmail.com (Thu Apr 16 2009 - 17:43:25 EEST)
DDIVRT-2009-23 Apache ActiveMQ Numerous Cross Site Scripting Issues ddvulnalert@ddifronline.com (Thu Apr 16 2009 - 18:00:10 EEST)
iDefense Security Advisory 04.15.09: IBM AIX muxatmd Buffer Overflow Vulnerability iDefense Labs (Wed Apr 15 2009 - 23:11:25 EEST)
iDefense Security Advisory 04.15.09: Microsoft WordPad Word97 Converter Stack Buffer Overflow Vulnerability iDefense Labs (Wed Apr 15 2009 - 22:25:53 EEST)
skpd: A tool to dump processes to executable ELF files Albert Sellar�s (Wed Apr 15 2009 - 23:35:55 EEST)
[DSECRG-09-018] Apache Geronimo - Directory Traversal vulnerabilities DSecRG (Thu Apr 16 2009 - 20:13:13 EEST)
[DSECRG-09-019] Apache Geronimo - XSS vulnerabilities.txt DSecRG (Thu Apr 16 2009 - 20:17:28 EEST)
[DSECRG-09-020] Apache Geronimo - XSRF vulnerabilities DSecRG (Thu Apr 16 2009 - 20:18:47 EEST)
Miniweb server Multiple Vulnerabilities ew1zz@bs.com (Thu Apr 16 2009 - 18:11:06 EEST)
Miniweb Buffer Overflow ew1zz@dontspammepls.com (Thu Apr 16 2009 - 18:44:45 EEST)
rPSA-2009-0062-1 tshark wireshark rPath Update Announcements (Fri Apr 17 2009 - 08:09:06 EEST)
ERNW Security Advisory 01-2009: XSS in Blackberries Mobile Data Service Connection Service mozilla@ids-guide.de (Fri Apr 17 2009 - 15:21:57 EEST)
[USN-759-1] poppler vulnerabilities Marc Deslauriers (Fri Apr 17 2009 - 00:24:01 EEST)
[SECURITY] [DSA 1773-1] New cups packages fix arbitrary code execution Steffen Joeris (Fri Apr 17 2009 - 05:53:46 EEST)
[TZO-08-2009] Bitdefender generic bypass/evasion Thierry Zoller (Fri Apr 17 2009 - 17:08:49 EEST)
[TZO-09-2009] Avast bypass / evasion (Limited details) Thierry Zoller (Fri Apr 17 2009 - 17:23:25 EEST)
rPSA-2009-0061-1 cups rPath Update Announcements (Fri Apr 17 2009 - 08:06:43 EEST)
rPSA-2009-0063-1 udev rPath Update Announcements (Fri Apr 17 2009 - 08:10:07 EEST)
[USN-760-1] CUPS vulnerability Jamie Strandboge (Fri Apr 17 2009 - 00:28:21 EEST)
[IMF 2009] 2nd Call for Papers - Submission Open Oliver Goebel (Fri Apr 17 2009 - 03:51:56 EEST)
rPSA-2009-0064-1 icu rPath Update Announcements (Fri Apr 17 2009 - 08:11:47 EEST)
Tiny Blogr 1.0.0 rc4 Authentication Bypass Salvatore \ (Fri Apr 17 2009 - 15:30:46 EEST)
[SECURITY] [DSA 1774-1] New ejabberd packages fix cross-site scripting Steffen Joeris (Fri Apr 17 2009 - 10:12:42 EEST)
[ GLSA 200904-15 ] mpg123: User-assisted execution of arbitrary code Robert Buchholz (Fri Apr 17 2009 - 01:02:51 EEST)
Secunia Research: CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow Secunia Research (Fri Apr 17 2009 - 11:26:02 EEST)
rPSA-2009-0060-1 ghostscript rPath Update Announcements (Fri Apr 17 2009 - 08:05:09 EEST)
[TZO-09-2009] NOD32 (Eset) bypass / evasion (Limited details) Thierry Zoller (Fri Apr 17 2009 - 17:33:50 EEST)
[TZO-11-2009] Fortinet bypass / evasion (Limited details) Thierry Zoller (Fri Apr 17 2009 - 17:42:34 EEST)
Secunia Research: Xpdf JBIG2 Symbol Dictionary Buffer Overflow Vulnerability Secunia Research (Fri Apr 17 2009 - 10:40:40 EEST)
rPSA-2009-0059-1 poppler rPath Update Announcements (Fri Apr 17 2009 - 08:02:58 EEST)
[ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code Pierre-Yves Rofes (Fri Apr 17 2009 - 22:03:02 EEST)
CLAN TIGER CMS--(module custompage.php) BLIND SQL INJECTION--> y3nh4ck3r@gmail.com (Fri Apr 17 2009 - 21:38:45 EEST)
CLAN TIGER CMS--MULTIPLE COOKIES HANDLING VULNERABILITIES--> y3nh4ck3r@gmail.com (Fri Apr 17 2009 - 21:35:44 EEST)
CLAN TIGER CMS--AUTH BYPASS LOGIN FORM (SQL INJECTION)--> y3nh4ck3r@gmail.com (Fri Apr 17 2009 - 21:36:54 EEST)
Malleo 1.2.3 Local File Inclusion Vulnerability Salvatore \ (Fri Apr 17 2009 - 21:18:37 EEST)
SecurityFocus Newsletter #499 sfa@securityfocus.com (Fri Apr 17 2009 - 20:02:36 EEST)
SecurityFocus Microsoft Newsletter #440 sfa@securityfocus.com (Fri Apr 17 2009 - 20:02:41 EEST)
SecurityFocus Linux Newsletter #435 sfa@securityfocus.com (Fri Apr 17 2009 - 20:02:46 EEST)
[ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code Robert Buchholz (Sat Apr 18 2009 - 14:11:39 EEST)
[ GLSA 200904-18 ] udev: Multiple vulnerabilities Pierre-Yves Rofes (Sat Apr 18 2009 - 22:10:15 EEST)
[ GLSA 200904-19 ] LittleCMS: Multiple vulnerabilities Pierre-Yves Rofes (Sun Apr 19 2009 - 18:43:29 EEST)
[SECURITY] [DSA 1775-1] New php-json-ext packages fix denial of service Steffen Joeris (Mon Apr 20 2009 - 12:28:51 EEST)
CLAN TIGER CMS 1.1.1 (AUTH BYPASS) SQL-INJECTION y3nh4ck3r@gmail.com (Fri Apr 17 2009 - 22:23:09 EEST)
Cross-site Scripting vulnerability in Stronghold/2.3 Apache/1.2.6 C2NetUS/2007 XiaShing@gmail.com (Sat Apr 18 2009 - 13:24:32 EEST)
Linksys WRT54GC - Admin Password Change (POC) gabriel@falandodeseguranca.com (Sun Apr 19 2009 - 07:48:09 EEST)
Multi-lingual E-Commerce System 0.2 Multiple Remote Vulnerabilities Salvatore \ (Sun Apr 19 2009 - 18:31:40 EEST)
Sungard Banner System XSS reportback@readthepost.com (Mon Apr 20 2009 - 06:48:57 EEST)
WysGui CMS 1.2 BETA(Insecure Cookie Handling)--Blind-sql-injection-exploit--> y3nh4ck3r@gmail.com (Mon Apr 20 2009 - 08:03:51 EEST)
Multiple Remote Vulnerabilities--SQLi-(INSECURE-COOKIE-HANDLING)-LFI--> y3nh4ck3r@gmail.com (Mon Apr 20 2009 - 17:53:51 EEST)
Creasito e-commerce content manager Authentication Bypass Salvatore \ (Mon Apr 20 2009 - 18:08:20 EEST)
Windows Update (re-)installs outdated Flash ActiveX on Windows XP Stefan Kanthak (Mon Apr 20 2009 - 19:17:24 EEST)
[security bulletin] HPSBMA02414 SSRT080185 rev.1 - HP Storage Essentials Running Secure NaviCLI, Remote Unauthorized Access, Gain Extended Privileges security-alert@hp.com (Mon Apr 20 2009 - 21:24:29 EEST)
Addendum :[TZO-09-2009] Avast bypass / evasion (Limited details) Thierry Zoller (Mon Apr 20 2009 - 19:40:43 EEST)
[security bulletin] HPSBMA02422 SSRT080146 rev.1 - HP StorageWorks Storage Mirroring, Remote Execution of Arbitrary Code, Denial of Service (DoS), Unauthorized Access security-alert@hp.com (Mon Apr 20 2009 - 21:25:31 EEST)
Addonics NAS Adapter (bts.cgi) Remote DoS Exploit (post-auth) mcyr2@csc.com (Mon Apr 20 2009 - 23:12:59 EEST)
[USN-761-1] PHP vulnerabilities Marc Deslauriers (Tue Apr 21 2009 - 00:38:13 EEST)
[USN-762-1] APT vulnerabilities Jamie Strandboge (Tue Apr 21 2009 - 00:39:54 EEST)
[USN-763-1] xine-lib vulnerabilities Marc Deslauriers (Tue Apr 21 2009 - 00:38:47 EEST)
CVE-2009-0991 PoC Dennis Yurichev (Tue Apr 21 2009 - 00:53:02 EEST)
[SECURITY] [DSA 1777-1] New git-core packages fix privilege escalation Thijs Kinkhorst (Tue Apr 21 2009 - 13:22:59 EEST)
Trend Micro OfficeScan Client - DOS jplopezy@gmail.com (Tue Apr 21 2009 - 17:55:04 EEST)
[SECURITY] [DSA 1776-1] New slurm-llnl packages fix privilege escalation Thijs Kinkhorst (Tue Apr 21 2009 - 13:02:31 EEST)
Re: Addonics NAS Adapter (bts.cgi) Remote DoS Exploit (post-auth) Jeremy Brown (Tue Apr 21 2009 - 00:12:53 EEST)
Re: Trend Micro OfficeScan Client - DOS Thierry Zoller (Tue Apr 21 2009 - 19:13:11 EEST)
MixedCMS 1.0--Multiple Remote Vulnerabilities--> y3nh4ck3r@gmail.com (Tue Apr 21 2009 - 19:29:50 EEST)
Python winappdbg module v1.0 is out! Mario Alejandro Vilas Jerez (Tue Apr 21 2009 - 19:24:55 EEST)
CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator CORE Security Technologies Advisories (Tue Apr 21 2009 - 21:46:09 EEST)
SAP Cfolders Multiple Linked XSS Vulnerabilities Digital Security Research Group [DSecRG] (Wed Apr 22 2009 - 02:47:01 EEST)
SAP Cfolders Multiple Stored XSS Vulnerabilies Digital Security Research Group [DSecRG] (Wed Apr 22 2009 - 02:46:05 EEST)
[TZO-12-2009] SUN / Oracle JVM Remote code execution Thierry Zoller (Wed Apr 22 2009 - 16:34:03 EEST)
[Bkis-07-2009] 010 Editor Multiple Buffer Overflow Vulnerabilities Bkis (Wed Apr 22 2009 - 08:25:07 EEST)
[Tool] sqlmap 0.7rc1 released Bernardo Damele A. G. (Wed Apr 22 2009 - 17:29:26 EEST)
FreeBSD Security Advisory FreeBSD-SA-09:07.libc FreeBSD Security Advisories (Wed Apr 22 2009 - 17:19:12 EEST)
[ MDVSA-2009:093 ] mpg123 security@mandriva.com (Wed Apr 22 2009 - 11:06:00 EEST)
Re: [Bkis-07-2009] 010 Editor Multiple Buffer Overflow Vulnerabilities Tavis Ormandy (Wed Apr 22 2009 - 12:31:25 EEST)
FreeBSD Security Advisory FreeBSD-SA-09:08.openssl FreeBSD Security Advisories (Wed Apr 22 2009 - 17:19:08 EEST)
[SECURITY] [DSA 1778-1] New mahara packages fix cross-site scripting Nico Golde (Wed Apr 22 2009 - 19:50:47 EEST)
[ MDVSA-2009:094 ] mysql security@mandriva.com (Wed Apr 22 2009 - 19:39:00 EEST)
Re: Windows Update (re-)installs outdated Flash ActiveX on Windows XP Vladimir '3APA3A' Dubrovin (Wed Apr 22 2009 - 22:00:00 EEST)
[USN-764-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Thu Apr 23 2009 - 05:12:23 EEST)
Re: [DSECRG-09-037] abk-soft AbleSpace CMS 1.0 - Multiple security vulnerabilities sales@abk-soft.net (Thu Apr 23 2009 - 17:58:10 EEST)
Re: Windows Update (re-)installs outdated Flash ActiveX on Windows XP Andrew Kuriger (Thu Apr 23 2009 - 01:59:06 EEST)
FOWLCMS 1.1--Multiple Remote Vulnerabilities--> y3nh4ck3r@gmail.com (Thu Apr 23 2009 - 02:20:47 EEST)
[ GLSA 200904-20 ] CUPS: Multiple vulnerabilities Pierre-Yves Rofes (Fri Apr 24 2009 - 00:55:36 EEST)
WOOT'09 call for papers Alexander Sotirov (Fri Apr 24 2009 - 02:14:50 EEST)
CVE-2009-1190: Spring Framework Remote Denial of Service Vulnerability Mark Thomas (Fri Apr 24 2009 - 11:51:35 EEST)
Formshield Captcha - Older Version vulnerable to replay attacks arvind doraiswamy (Fri Apr 24 2009 - 13:26:33 EEST)
RE: Cisco ASA5520 Web VPN Host Header XSS Mark-David McLaughlin (marmclau) (Fri Apr 24 2009 - 17:45:10 EEST)
Pragyan CMS 2.6.4 Multiple SQL Injection Vulnerabilities Salvatore \ (Fri Apr 24 2009 - 18:14:55 EEST)
REMOTE SQL INJECTION (SQLi) VULNERABILITY--Photo-Rigma.BiZ v30--> y3nh4ck3r@gmail.com (Fri Apr 24 2009 - 18:30:25 EEST)
Juniper Advisory security@procheckup.com (Fri Apr 24 2009 - 19:33:28 EEST)
[ MDVSA-2009:095 ] ghostscript security@mandriva.com (Fri Apr 24 2009 - 21:49:01 EEST)
MSL-2009-001 - Samsung Missing Provisioning Authentication Mobile Security Lab (Fri Apr 24 2009 - 18:45:52 EEST)
[ MDVSA-2009:096 ] printer-drivers security@mandriva.com (Fri Apr 24 2009 - 22:36:00 EEST)
Aruba Advisory ID: AID-42309 Management User Authentication Bypass Vulnerability When Using Public Key Based SSH Authentication Robbie Gill (Fri Apr 24 2009 - 20:19:23 EEST)
SecurityFocus Newsletter #500 sfa@securityfocus.com (Sat Apr 25 2009 - 00:18:18 EEST)
SecurityFocus Linux Newsletter #436 sfa@securityfocus.com (Sat Apr 25 2009 - 00:18:29 EEST)
SecurityFocus Microsoft Newsletter #441 sfa@securityfocus.com (Sat Apr 25 2009 - 00:18:24 EEST)
[ MDVSA-2009:097 ] clamav security@mandriva.com (Sat Apr 25 2009 - 00:55:00 EEST)
[ MDVSA-2009:097 ] clamav security@mandriva.com (Sat Apr 25 2009 - 01:43:00 EEST)
T2'09: Call for Papers 2009 (Helsinki / Finland) Tomi Tuominen (Mon Apr 27 2009 - 14:48:15 EEST)
MataChat Cross-Site Scripting Vulnerabilities IrIsT.Ir@gmail.com (Sat Apr 25 2009 - 08:58:40 EEST)
[TZO-13-2009] Avira Antivir generic CAB evasion / bypass Thierry Zoller (Mon Apr 27 2009 - 17:39:32 EEST)
Remote iodinetd DoS vulnerability on Debian Lenny Albert Sellar�s (Sun Apr 26 2009 - 20:00:41 EEST)
[TZO-15-2009] Aladdin eSafe generic bypass - Forced release Thierry Zoller (Mon Apr 27 2009 - 17:49:22 EEST)
[SECURITY] [DSA 1779-1] New apt packages fix several vulnerabilities Thijs Kinkhorst (Sun Apr 26 2009 - 18:36:06 EEST)
SQL INJECTION (SHELL UPLOAD)--EZ-blog Beta2--> y3nh4ck3r@gmail.com (Mon Apr 27 2009 - 04:03:27 EEST)
[TZO-14-2009] Comodo Antivirus RAR evasion Thierry Zoller (Mon Apr 27 2009 - 17:41:57 EEST)
DDIVRT-2009-24 Precidia Ether232 Memory Corruption ddivulnalert@ddifrontline.com (Mon Apr 27 2009 - 20:58:49 EEST)
[ MDVSA-2009:096-1 ] printer-drivers security@mandriva.com (Mon Apr 27 2009 - 20:53:00 EEST)
[security bulletin] HPSBMA02424 SSRT080125 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Mon Apr 27 2009 - 21:23:40 EEST)
[ MDVSA-2009:098 ] krb5 security@mandriva.com (Mon Apr 27 2009 - 19:15:01 EEST)
Re: [IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted ELF header Security Bypass security@f-prot.com (Tue Apr 28 2009 - 15:30:33 EEST)
Errata: [TZO-13-2009] Avira Antivir generic CAB evasion / bypass Thierry Zoller (Tue Apr 28 2009 - 17:28:22 EEST)
[security bulletin] HPSBUX02366 SSRT080120 rev.1 - HPUX Running useradd(1M), Local Unauthorized Access security-alert@hp.com (Tue Apr 28 2009 - 15:58:04 EEST)
[ MDVSA-2009:099 ] openafs security@mandriva.com (Tue Apr 28 2009 - 02:14:01 EEST)
security tools list Ying (Tue Apr 28 2009 - 13:13:13 EEST)
Secunia Research: HP OpenView Network Node Manager "ovalarmsrv" Integer Overflow Secunia Research (Tue Apr 28 2009 - 12:05:37 EEST)
Re: Formshield Captcha - Older Version vulnerable to replay attacks arvind doraiswamy (Tue Apr 28 2009 - 10:13:23 EEST)
[USN-767-1] FreeType vulnerability Marc Deslauriers (Tue Apr 28 2009 - 00:26:25 EEST)
[USN-761-2] PHP vulnerabilities Marc Deslauriers (Tue Apr 28 2009 - 00:24:55 EEST)
RE: SQL INJECTION (SHELL UPLOAD)--EZ-blog Beta2--> Memisyazici, Aras (Tue Apr 28 2009 - 02:56:59 EEST)
one shot remote root for linux? Gadi Evron (Tue Apr 28 2009 - 17:07:29 EEST)
MULTIPLE REMOTE SQL INJECTION VULNERABILITIES---MIM:InfiniX v1.2.003---> y3nh4ck3r@gmail.com (Tue Apr 28 2009 - 17:14:49 EEST)
[USN-766-1] acpid vulnerability Marc Deslauriers (Tue Apr 28 2009 - 00:25:44 EEST)
[USN-765-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Tue Apr 28 2009 - 22:34:37 EEST)
iDefense Security Advisory 04.28.09: TIBCO SmartSockets Stack Buffer Overflow Vulnerability iDefense Labs (Tue Apr 28 2009 - 22:53:25 EEST)
[SECURITY] [DSA 1780-1] New libdbd-pg-perl packages fix potential code execution Florian Weimer (Tue Apr 28 2009 - 21:34:37 EEST)
Re: security tools list Andrew L. Davis (Tue Apr 28 2009 - 21:34:06 EEST)
[SECURITY] [DSA 1781-1] New ffmpeg-debian packages fix arbitrary code execution Steffen Joeris (Wed Apr 29 2009 - 10:00:35 EEST)
[ MDVA-2009:057 ] usermode security@mandriva.com (Wed Apr 29 2009 - 03:47:00 EEST)
[ MDVSA-2009:101 ] xpdf security@mandriva.com (Wed Apr 29 2009 - 02:05:00 EEST)
Positron Security Advisory #2009-001: Memcached and MemcacheDB ASLR Bypass Weakness Positron Security (Tue Apr 28 2009 - 22:59:29 EEST)
[SECURITY] [DSA 1782-1] New mplayer packages fix arbitrary code execution Steffen Joeris (Wed Apr 29 2009 - 10:01:08 EEST)
[SECURITY] [DSA 1783-1] New mysql-dfsg-5.0 packages fix multiple vulnerabilities Devin Carraway (Wed Apr 29 2009 - 11:24:32 EEST)
Proxy bypass vulnerability & plain text passwords in LevelOne AMG-2000 SEC Consult Research (Wed Apr 29 2009 - 12:18:11 EEST)
Symantec Fax Viewer Control v10 (DCCFAXVW.DLL) remote buffer overflow exploit nospam@gmail.it (Wed Apr 29 2009 - 12:53:56 EEST)
iDefense Security Advisory 04.29.09: Symantec System Center Alert Management System Console Arbitrary Program Execution Design Error Vulnerability iDefense Labs (Wed Apr 29 2009 - 19:34:45 EEST)
Addendum: [TZO-17-2009]Trendmicro multiple bypass/evasions Thierry Zoller (Wed Apr 29 2009 - 17:20:12 EEST)
SQL INJECTION (SQLi) VULNERABILITY--ProjectCMS v1.0 Beta Final--> y3nh4ck3r@gmail.com (Wed Apr 29 2009 - 17:38:33 EEST)
ZDI-09-018: Symantec Client Security Alert Originator Service Stack Overflow Vulnerability ZDI Disclosures (Tue Apr 28 2009 - 23:39:12 EEST)
[TZO-16-2009] Nod32 CAB bypass/evasion Thierry Zoller (Wed Apr 29 2009 - 17:02:24 EEST)
[security bulletin] HPSBMA02400 SSRT080144 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Wed Apr 29 2009 - 21:57:38 EEST)
[TZO-17-2009]Trendmicro multiple bypass/evasions Thierry Zoller (Wed Apr 29 2009 - 17:06:16 EEST)
Security tools list: First Version Ying (Thu Apr 30 2009 - 09:47:46 EEST)
Re: ZDI-09-018: Symantec Client Security Alert Originator Service Stack Overflow Vulnerability Steve Shockley (Wed Apr 29 2009 - 23:54:00 EEST)
MULTIPLE REMOTE VULNERABILITIES--Leap CMS 0.1.4--> y3nh4ck3r@gmail.com (Thu Apr 30 2009 - 17:53:58 EEST)
Re: Symantec Fax Viewer Control v10 (DCCFAXVW.DLL) remote buffer overflow exploit secure@symantec.com (Thu Apr 30 2009 - 01:14:39 EEST)

Last message date: Thu Apr 30 2009 - 18:13:14 EEST
Archived on: Thu Apr 30 2009 - 18:13:14 EEST

309 messages sorted by: [ author ] [ thread ] [ subject ]

This archive was generated by hypermail 2b28 : Thu Apr 30 2009 - 18:13:14 EEST

stdinBy Date

stdin
By Date