stdin
By Thread

Most recent messages
277 messages sorted by: [ author ] [ date ] [ subject ]

Starting: Mon Jun 01 2009 - 17:12:10 EEST
Ending: Tue Jun 30 2009 - 23:55:43 EEST

Linksys WAG54G2 Web Management Console Local Arbitrary Shell Command Injection Vulnerability michal.sajdak@securitum.pl (Fri May 29 2009 - 21:54:20 EEST)
[ MDVSA-2009:125 ] wireshark security@mandriva.com (Sun May 31 2009 - 22:59:00 EEST)
ICQ 6.5 URL Search Hook/ICQToolBar.dll .URL file processing Windows Explorer remote buffer overflow poc nospam@gmail.com (Sat May 30 2009 - 11:56:16 EEST)
FIREFOX URL space character SPOOF xushaopei (Sun May 31 2009 - 04:14:43 EEST)
[SECURITY] [DSA 1807-1] New cyrus-sasl2/cyrus-sasl2-heimdal packages fix arbitrary code execution Nico Golde (Mon Jun 01 2009 - 15:42:10 EEST)
[ MDVSA-2009:124 ] apache security@mandriva.com (Sun May 31 2009 - 18:19:00 EEST)
(Post Form --> Parent Register (name)) Credentials Changer (SQLi) EXPLOIT -- Online Grades & Attendance v-3.2.6--> y3nh4ck3r@gmail.com (Mon Jun 01 2009 - 03:53:44 EEST)
- Re: (Post Form --> Parent Register (name)) Credentials Changer (SQLi) EXPLOIT -- Online Grades & Attendance v-3.2.6--> Jeremy Brown (Mon Jun 01 2009 - 19:55:21 EEST)
- Re: Re: (Post Form --> Parent Register (name)) Credentials Changer (SQLi) EXPLOIT -- Online Grades & Attendance v-3.2.6--> y3nh4ck3r@gmail.com (Mon Jun 01 2009 - 22:54:01 EEST)
OCS Inventory NG 1.02 - Multiple SQL Injections Nico Leidecker (Sat May 30 2009 - 15:56:06 EEST)
CFP 26C3 / 26th Chaos Communication Congress lists@foo.io (Sun May 31 2009 - 14:10:20 EEST)
ASMAX AR 804 gu Web Management Console Arbitrary Shell Command Injection Vulnerability michal.sajdak@securitum.pl (Fri May 29 2009 - 22:15:46 EEST)
MULTIPLE SQL INJECTION VULNERABILITIES -- Online Grades & Attendance v-3.2.6 --> y3nh4ck3r@gmail.com (Mon Jun 01 2009 - 03:52:37 EEST)
FRHACK 2009 Final Call For Papers extended Jerome Athias (Sun May 31 2009 - 18:31:47 EEST)
Re: MULTIPLE REMOTE VULNERABILITIES --Small Pirates v-2.1--> y3nh4ck3r@gmail.com (Mon Jun 01 2009 - 18:21:55 EEST)
[SECURITY] [DSA 1808-1] New drupal6 packages fix insufficient input sanitising Steffen Joeris (Mon Jun 01 2009 - 17:40:59 EEST)
ACSAC 2009 submissions due June 8 and June 10 (extended) acsac.publicity@gmail.com (Mon Jun 01 2009 - 18:42:37 EEST)
ZDI-09-024: Safenet SoftRemote IKE Service Remote Stack Overflow Vulnerability ZDI Disclosures (Mon Jun 01 2009 - 19:42:42 EEST)
Zemana Antilogger 1.9.2 DoS attack loginit@gmail.com (Mon Jun 01 2009 - 21:18:52 EEST)
The father of all bombs - another webdav fiasco Kingcope (Mon Jun 01 2009 - 23:46:20 EEST)
(Post Form --> 'cc') Blind (SQLi) EXPLOIT --Online Grades & Attendance <= v-3.2.6--> y3nh4ck3r@gmail.com (Tue Jun 02 2009 - 17:03:09 EEST)
Secunia Research: QuickTime Sorenson Video 3 Content Parsing Vulnerability Secunia Research (Tue Jun 02 2009 - 11:15:37 EEST)
ACDSee Products TIFF and Font Parsing Buffer Overflow Vulnerabilities VUPEN Security Research (Tue Jun 02 2009 - 16:49:01 EEST)
Secunia Research: Apple QuickTime MS ADPCM Encoding Buffer Overflow Secunia Research (Tue Jun 02 2009 - 11:11:29 EEST)
[ MDVSA-2009:126 ] eggdrop security@mandriva.com (Tue Jun 02 2009 - 02:15:00 EEST)
[SECURITY] [DSA 1809-1] New Linux 2.6.26 packages fix several vulnerabilities dann frazier (Tue Jun 02 2009 - 07:57:13 EEST)
MULTIPLE LOCAL FILE INCLUSION VULNERABILITIES -- Online Grades & Attendance <= v-3.2.6 --> y3nh4ck3r@gmail.com (Tue Jun 02 2009 - 17:05:03 EEST)
[security bulletin] HPSBUX02429 SSRT090058 rev.2 - HP-UX Running Java, Remote Execution of Arbitrary Code and Other Vulnerabilities security-alert@hp.com (Tue Jun 02 2009 - 12:52:11 EEST)
ZDI-09-025: Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability ZDI Disclosures (Tue Jun 02 2009 - 20:21:37 EEST)
ZDI-09-026: Apple QuickTime Packed-bit Decoding Heap Overflow Vulnerability ZDI Disclosures (Tue Jun 02 2009 - 20:23:49 EEST)
ZDI-09-027: Apple Quicktime PICT Opcode 0x8201 Heap Overflow Vulnerability ZDI Disclosures (Tue Jun 02 2009 - 20:25:11 EEST)
ZDI-09-028: Apple QuickTime CRGN Atom Parsing Heap Buffer Overflow Vulnerability ZDI Disclosures (Tue Jun 02 2009 - 20:26:01 EEST)
ZDI-09-029: Apple QuickTime Jpeg2000 Marker Size Heap Overflow Vulnerability ZDI Disclosures (Tue Jun 02 2009 - 20:26:41 EEST)
ZDI-09-030: Apple Quicktime PICT Opcode 0x71 Heap Overflow Vulnerability ZDI Disclosures (Tue Jun 02 2009 - 20:27:27 EEST)
TPTI-09-04: Apple Terminal xterm Resize Escape Sequence Memory Corruption Vulnerability dvlabs (Tue Jun 02 2009 - 23:27:07 EEST)
[SECURITY] [DSA 1810-1] New cups/cupsys packages fix denial of service Nico Golde (Tue Jun 02 2009 - 23:58:55 EEST)
TPTI-09-03: Apple iTunes Multiple Protocol Handler Buffer Overflow Vulnerabilities dvlabs (Tue Jun 02 2009 - 23:27:05 EEST)
- Re: TPTI-09-03: Apple iTunes Multiple Protocol Handler Buffer Overflow Vulnerabilities Will Drewry (Wed Jun 03 2009 - 01:20:46 EEST)
CORE-2009-0420 - Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability CORE Security Technologies Advisories (Tue Jun 02 2009 - 23:42:47 EEST)
[SECURITY] [DSA 1810-1] New libapache-mod-jk packages fix information disclosure Stefan Fritsch (Tue Jun 02 2009 - 22:40:04 EEST)
Advisory: Apple QuickTime Image Description Atom Sign Extension Memory Corruption Roee Hay (Wed Jun 03 2009 - 00:41:28 EEST)
[USN-781-2] Gaim vulnerabilities Marc Deslauriers (Wed Jun 03 2009 - 17:20:54 EEST)
[USN-781-1] Pidgin vulnerabilities Marc Deslauriers (Wed Jun 03 2009 - 17:20:19 EEST)
[USN-780-1] CUPS vulnerability Marc Deslauriers (Wed Jun 03 2009 - 17:19:41 EEST)
[SECURITY] CVE-2009-0033 Apache Tomcat DoS when using Java AJP connector Mark Thomas (Wed Jun 03 2009 - 18:42:06 EEST)
[SECURITY] CVE-2009-0580 Apache Tomcat User enumeration vulnerability with FORM authentication Mark Thomas (Wed Jun 03 2009 - 18:42:01 EEST)
- Re: [SECURITY] CVE-2009-0580 Apache Tomcat User enumeration vulnerability with FORM authentication Christopher Schultz (Thu Jun 04 2009 - 19:48:19 EEST)
[ MDVSA-2009:127 ] gaim security@mandriva.com (Wed Jun 03 2009 - 19:21:00 EEST)
OCS Inventory NG 1.02 - Directory Traversal Nico Leidecker (Wed Jun 03 2009 - 02:07:04 EEST)
[SECURITY] CVE-2009-0783 Apache Tomcat Information disclosure Mark Thomas (Thu Jun 04 2009 - 15:52:49 EEST)
[InterN0T] moziloCMS 1.11.1 - XSS Vulnerability security@intern0t.net (Thu Jun 04 2009 - 00:51:18 EEST)
[InterN0T] LightNEasy 2.2.2 - HTML Injection Vulnerability security@intern0t.net (Thu Jun 04 2009 - 00:51:24 EEST)
[InterN0T] SiteCore.NET 6.0.0 - XSS Vulnerability security@intern0t.net (Thu Jun 04 2009 - 00:51:30 EEST)
[InterN0T] Geeklog 1.5 - Pre-Installation Vulnerabilities security@intern0t.net (Thu Jun 04 2009 - 00:51:37 EEST)
- Re: [InterN0T] Geeklog 1.5 - Pre-Installation Vulnerabilities Dirk Haun (Thu Jun 04 2009 - 22:29:02 EEST)
  - Re: Re: [InterN0T] Geeklog 1.5 - Pre-Installation Vulnerabilities peter@peter.com (Fri Jun 05 2009 - 00:53:59 EEST)
[InterN0T] Flatnux 2009-03-27 - XSS Vulnerabilities + More security@intern0t.net (Thu Jun 04 2009 - 00:51:42 EEST)
SQL INJECTION VULNERABILITY--LightOpen CMS Devel 0.1--> y3nh4ck3r@gmail.com (Thu Jun 04 2009 - 21:08:21 EEST)
[ MDVSA-2009:128 ] libmodplug security@mandriva.com (Thu Jun 04 2009 - 20:22:01 EEST)
[SECURITY] [DSA 1812-1] New apr-util packages fix several vulnerabilities Stefan Fritsch (Thu Jun 04 2009 - 22:22:36 EEST)
[Security] XM Easy Personal FTP Server Multiple DoS vulnerabilities neeraj.thakar@nevisnetworks.com (Fri Jun 05 2009 - 12:16:50 EEST)
[ MDVSA-2009:129 ] file security@mandriva.com (Fri Jun 05 2009 - 14:08:00 EEST)
[SECURITY] CVE-2009-0580 UPDATED Apache Tomcat User enumeration vulnerability with FORM authentication Mark Thomas (Fri Jun 05 2009 - 14:12:45 EEST)
[ISecAuditors Security Advisories] Joomla! 1.5.10 JA_Purity Multiple Persistent XSS ISecAuditors Security Advisories (Fri Jun 05 2009 - 16:14:14 EEST)
LightOpenCMS 0.1 pre-alpha Remote SQL Injection Salvatore \ (Fri Jun 05 2009 - 16:38:17 EEST)
Reminder: DeepSec 2009 Call for Papers is open DeepSec Conference (Fri Jun 05 2009 - 17:20:34 EEST)
EC2ND 2009 CFP - 5th European Conference on Computer Network Defence Maggi Federico (Fri Jun 05 2009 - 01:32:05 EEST)
Re: Exploiting IE8 UTF-7 XSS Vulnerability using Local Redirection lord.ittk@gmail.com (Fri Jun 05 2009 - 11:32:42 EEST)
Re: [Full-disclosure] Cross Site Scripting in PHP Nuke 8.0 Version Christian Kujau (Fri Jun 05 2009 - 09:03:43 EEST)
Re: [InterN0T] SiteCore.NET 6.0.0 - XSS Vulnerability-fixed pm@sitecore.net (Fri Jun 05 2009 - 19:26:35 EEST)
SQL INJECTION VULNERABILITY--Kjtechforce mailman Beta-1--> y3nh4ck3r@gmail.com (Fri Jun 05 2009 - 22:02:35 EEST)
[security bulletin] HPSBMA02433 SSRT090084 rev.1 - HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Remote Unauthorized Access security-alert@hp.com (Fri Jun 05 2009 - 22:06:43 EEST)
[ MDVSA-2009:130 ] gstreamer0.10-plugins-good security@mandriva.com (Fri Jun 05 2009 - 23:45:00 EEST)
('dest') Blind (SQLi) EXPLOIT --Kjtechforce mailman Beta-1 --> y3nh4ck3r@gmail.com (Fri Jun 05 2009 - 22:03:24 EEST)
[SECURITY] [DSA 1813-1] New evolution-data-server packages fix several vulnerabilities Steffen Joeris (Mon Jun 08 2009 - 10:54:10 EEST)
[DSECRG-09-015] SAP GUI 6.4 Buffer Overflow vulnerability Alexandr Polyakov (Mon Jun 08 2009 - 16:59:45 EEST)
[ MDVSA-2009:131 ] apr-util security@mandriva.com (Sun Jun 07 2009 - 01:27:00 EEST)
[ MDVSA-2009:131-1 ] apr-util security@mandriva.com (Sun Jun 07 2009 - 02:19:01 EEST)
[ MDVSA-2009:132 ] libsndfile security@mandriva.com (Sun Jun 07 2009 - 19:24:01 EEST)
Rasterbar libtorrent arbitrary file overwrite vulnerability Dimitris Glynos (Mon Jun 08 2009 - 20:43:29 EEST)
[USN-783-1] eCryptfs vulnerability Kees Cook (Tue Jun 09 2009 - 00:06:46 EEST)
New paper by Amit Klein (Trusteer) - Temporary user tracking in major browsers and Cross-domain information leakage and attacks Amit Klein (Mon Jun 08 2009 - 22:53:16 EEST)
[USN-784-1] ImageMagick vulnerability Jamie Strandboge (Tue Jun 09 2009 - 02:32:19 EEST)
[SECURITY] CVE-2008-5515 RequestDispatcher directory traversal vulnerability Mark Thomas (Tue Jun 09 2009 - 00:52:21 EEST)
ZDI-09-034: Apple Safari SVG Set.targetElement() Memory Corruption Vulnerability ZDI Disclosures (Tue Jun 09 2009 - 01:56:24 EEST)
ZDI-09-033: Apple WebKit dir Attribute Freeing Dangling Object Pointer Vulnerability ZDI Disclosures (Tue Jun 09 2009 - 01:55:55 EEST)
ZDI-09-031: libpurple MSN Protocol SLP Message Heap Overflow Vulnerability ZDI Disclosures (Tue Jun 09 2009 - 01:53:37 EEST)
ZDI-09-032: Apple WebKit attr() Invalid Attribute Memory Corruption Vulnerability ZDI Disclosures (Tue Jun 09 2009 - 01:54:09 EEST)
Apple Safari local file theft vulnerability Chris Evans (Tue Jun 09 2009 - 03:48:50 EEST)
XMLHttpRequest file upload vulnerability Chrome 2 & Safari 3 pantera_bleed@hotmail.com (Tue Jun 09 2009 - 19:33:09 EEST)
- Re: XMLHttpRequest file upload vulnerability Chrome 2 & Safari 3 Adrian P. (Tue Jun 09 2009 - 22:21:32 EEST)
- Re: XMLHttpRequest file upload vulnerability Chrome 2 & Safari 3 Michal Zalewski (Wed Jun 10 2009 - 00:08:41 EEST)
TELUS Security Labs VR - Microsoft Office Excel Malformed Records Stack Buffer Overflow noreply@telus.com (Tue Jun 09 2009 - 20:09:54 EEST)
[security bulletin] HPSBMA02430 SSRT080094 rev.1 - HP OpenView Network Node Manager (OV NNM) Running SNMP and MIB, Remote Execution of Arbitrary Code, Denial of Service (DoS) security-alert@hp.com (Tue Jun 09 2009 - 20:32:41 EEST)
MULTIPLE LOCAL FILE INCLUSION VULNERABILITIES --S-CMS <= v-2.0 Beta3--> y3nh4ck3r@gmail.com (Tue Jun 09 2009 - 20:31:50 EEST)
MULTIPLE SQL INJECTION VULNERABILITIES --S-CMS <= v-2.0 Beta3--> y3nh4ck3r@gmail.com (Tue Jun 09 2009 - 20:32:28 EEST)
(Post Form var 'username') BLIND SQLi exploit --S-CMS <= v-2.0 Beta3--> y3nh4ck3r@gmail.com (Tue Jun 09 2009 - 20:33:30 EEST)
[USN-785-1] ipsec-tools vulnerabilities Marc Deslauriers (Tue Jun 09 2009 - 21:27:23 EEST)
New paper - Testing the Enterprise Security: Anti-Spam and Anti-Virus Solutions marian.ventuneac@ul.ie (Tue Jun 09 2009 - 16:00:01 EEST)
Secunia Research: Microsoft Excel Record Parsing Array Indexing Vulnerability Secunia Research (Tue Jun 09 2009 - 22:38:44 EEST)
Secunia Research: Microsoft Excel String Parsing Integer Overflow Vulnerability Secunia Research (Tue Jun 09 2009 - 22:42:09 EEST)
CVE-2009-1151: phpMyAdmin Remote Code Execution Proof of Concept Adrian P. (Tue Jun 09 2009 - 22:47:33 EEST)
- Re: CVE-2009-1151: phpMyAdmin Remote Code Execution Proof of Concept lord.iitk@gmail.com (Wed Jun 17 2009 - 13:46:00 EEST)
CORE-2009-0521 - DX Studio Player Firefox plug-in command injection CORE Security Technologies Advisories (Wed Jun 10 2009 - 00:19:05 EEST)
CORE-2008-0826 - Internet Explorer Security Zone restrictions bypass CORE Security Technologies Advisories (Wed Jun 10 2009 - 00:26:28 EEST)
catching up on several recently fixed bugs of note Michal Zalewski (Wed Jun 10 2009 - 01:01:44 EEST)
[USN-775-2] Quagga regression Kees Cook (Wed Jun 10 2009 - 03:36:32 EEST)
FreeBSD Security Advisory FreeBSD-SA-09:11.ntpd FreeBSD Security Advisories (Wed Jun 10 2009 - 13:41:45 EEST)
FreeBSD Security Advisory FreeBSD-SA-09:10.ipv6 FreeBSD Security Advisories (Wed Jun 10 2009 - 13:41:49 EEST)
FreeBSD Security Advisory FreeBSD-SA-09:09.pipe FreeBSD Security Advisories (Wed Jun 10 2009 - 13:41:54 EEST)
[SECURITY] UPDATED CVE-2008-5515 RequestDispatcher directory traversal vulnerability Mark Thomas (Wed Jun 10 2009 - 14:28:12 EEST)
[security bulletin] HPSBUX02435 SSRT090059 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Bypass Security Restrictions security-alert@hp.com (Wed Jun 10 2009 - 15:50:25 EEST)
FortiGuard Advisory: Microsoft Internet Explorer DHTML Handling Remote Memory Corruption Vulnerability noreply-secresearch@fortinet.com (Wed Jun 10 2009 - 04:42:16 EEST)
ZDI-09-038: Microsoft Internet Explorer Event Handler Memory Corruption Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:20 EEST)
ZDI-09-041: Microsoft Internet Explorer 8 Rows Property Dangling Pointer Code Execution Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:31 EEST)
FortiGuard Advisory: Apple Safari Remote Memory Corruption Vulnerability noreply-secresearch@fortinet.com (Wed Jun 10 2009 - 04:46:48 EEST)
ZDI-09-035: Microsoft Word Document Stack Based Buffer Overflow Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:10 EEST)
XM Easy Personal FTP Server HELP and TYPE command Remote Denial of Service exploit vinodsharma.mimit@gmail.com (Wed Jun 10 2009 - 05:01:11 EEST)
ZDI-09-040: Microsoft Office Excel QSIR Record Pointer Corruption Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:27 EEST)
[ECHO_ADV_110$2009] Firefox (GNU/Linux version) <= 3.0.10 Denial Of Services y3dips@echo.or.id (Wed Jun 10 2009 - 06:18:43 EEST)
ZDI-09-037: Microsoft Internet Explorer Concurrent Ajax Request Memory Corruption Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:16 EEST)
Secunia Research: Microsoft PowerPoint Freelance Layout Parsing Vulnerability Secunia Research (Wed Jun 10 2009 - 10:40:58 EEST)
ZDI-09-039: Microsoft Internet Explorer onreadystatechange Memory Corruption Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:24 EEST)
Secunia Research: Adobe Reader JBIG2 Text Region Segment Buffer Overflow Secunia Research (Wed Jun 10 2009 - 10:56:03 EEST)
Apple Safari cross-domain XML theft vulnerability Chris Evans (Wed Jun 10 2009 - 00:14:05 EEST)
ZDI-09-036: Microsoft Internet Explorer setCapture Memory Corruption Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 18:28:14 EEST)
[USN-786-1] apr-util vulnerabilities Jamie Strandboge (Wed Jun 10 2009 - 23:12:45 EEST)
F5 FirePass Cross-Site Scripting vulnerability Sjoerd Resink (Thu Jun 11 2009 - 15:34:52 EEST)
ZDI-09-042: Adobe Reader U3D RHAdobeMeta Stack Overflow Vulnerability ZDI Disclosures (Wed Jun 10 2009 - 19:04:27 EEST)
(Post Form login var 'username') BLIND SQLi exploit--Open Biller 0.1--> y3nh4ck3r@gmail.com (Wed Jun 10 2009 - 23:36:04 EEST)
MULTIPLE SQL INJECTION VULNERABILITIES --Splog <= v-1.2 Beta--> y3nh4ck3r@gmail.com (Thu Jun 11 2009 - 11:54:57 EEST)
iDefense Security Advisory 06.11.09: Microsoft Active Directory Hexdecimal DN AttributeValue Invalid Free Vulnerability iDefense Labs (Thu Jun 11 2009 - 22:24:25 EEST)
iDefense Security Advisory 06.11.09: Multiple Vendor WebKit Error Handling Use After Free Vulnerability iDefense Labs (Thu Jun 11 2009 - 21:45:46 EEST)
FortiGuard Advisory: Adobe Reader/Acrobat TrueType Font Processing Memory Corruption Vulnerability noreply-secresearch@fortinet.com (Thu Jun 11 2009 - 21:21:33 EEST)
iDefense Security Advisory 06.11.09: Microsoft Excel SST Record Integer Overflow Vulnerability iDefense Labs (Thu Jun 11 2009 - 22:47:03 EEST)
ModSecurity (Core Rules) HTTP Parameter Pollution Filter Bypass Vulnerability lavakumar kuppan (Thu Jun 11 2009 - 22:11:22 EEST)
iDefense Security Advisory 06.11.09: Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability iDefense Labs (Thu Jun 11 2009 - 23:18:33 EEST)
iDefense Security Advisory 06.11.09: Adobe Reader and Acrobat FlateDecode Integer Overflow Vulnerability iDefense Labs (Thu Jun 11 2009 - 23:32:45 EEST)
SecurityFocus Newsletter #504 sfa@securityfocus.com (Fri Jun 12 2009 - 02:17:35 EEST)
SecurityFocus Microsoft Newsletter #445 sfa@securityfocus.com (Fri Jun 12 2009 - 02:17:40 EEST)
SecurityFocus Linux Newsletter #440 sfa@securityfocus.com (Fri Jun 12 2009 - 02:17:44 EEST)
VUPEN Security - Microsoft Office Word Document Parsing Buffer Overflow Vulnerability VUPEN Security Research (Fri Jun 12 2009 - 00:14:48 EEST)
- Re: VUPEN Security - Microsoft Office Word Document Parsing Buffer Overflow Vulnerability Nick Boyce (Tue Jun 16 2009 - 03:29:55 EEST)
VUPEN Security - Adobe Acrobat and Reader JBIG2 Filter Heap Overflow Vulnerability VUPEN Security Research (Fri Jun 12 2009 - 00:26:23 EEST)
[USN-787-1] Apache vulnerabilities Jamie Strandboge (Fri Jun 12 2009 - 03:51:45 EEST)
Secunia Research: Mozilla Firefox Java Applet Loading Vulnerability Secunia Research (Fri Jun 12 2009 - 10:33:55 EEST)
Serena Dimensions CM has insufficient default privileges roland.gruber.extern@unicreditgroup.eu (Fri Jun 12 2009 - 13:56:33 EEST)
SugarCRM 5.2.0e Remote Code Execution ascii (Sat Jun 13 2009 - 14:47:13 EEST)
[USN-779-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Sat Jun 13 2009 - 03:22:03 EEST)
[TZO-31-2009] Ikarus multiple generic evasions (CAB,ZIP,RAR) Thierry Zoller (Sat Jun 13 2009 - 20:37:24 EEST)
[TZO-32-2009] Norman generic bypass (RAR) Thierry Zoller (Sun Jun 14 2009 - 21:50:55 EEST)
[TZO-33-2009] Frisk F-prot evasion (TAR) Thierry Zoller (Sun Jun 14 2009 - 22:09:40 EEST)
[TZO-36-2009] Apple Safari & Quicktime Denial of Service Thierry Zoller (Sun Jun 14 2009 - 23:44:11 EEST)
[SECURITY] [DSA 1815-1] New libtorrent-rasterbar packages fix denial of service Moritz Muehlenhoff (Mon Jun 15 2009 - 01:15:57 EEST)
[waraxe-2009-SA#074] - Multiple Vulnerabilities in TorrentTrader Classic 1.09 come2waraxe@yahoo.com (Mon Jun 15 2009 - 15:30:46 EEST)
[TZO-37-2009] Apple Safari <v4 Remote code execution Thierry Zoller (Mon Jun 15 2009 - 01:19:12 EEST)
[TZO-30-2009] Kaspersky and the silent patch that wasn't (PDF evasion, forced full disclosure) Thierry Zoller (Sat Jun 13 2009 - 14:42:28 EEST)
Link Logger syslogd resource overwhelm DoS mcyr2@csc.com (Sat Jun 13 2009 - 17:54:12 EEST)
CakeCMS XSRF Vulnerability onur.turkeshan@hotmail.com (Fri Jun 12 2009 - 01:29:50 EEST)
[InterN0T] Pivot 1.40.4-7 - Multiple Vulnerabilities security@intern0t.net (Fri Jun 12 2009 - 22:13:15 EEST)
[InterN0T] SkyBlueCanvas 1.1 r237 - Multiple Vulnerabilities security@intern0t.net (Fri Jun 12 2009 - 22:13:57 EEST)
[InterN0T] TBDev 01-01-2008 - Multiple Vulnerabilities security@intern0t.net (Fri Jun 12 2009 - 22:13:55 EEST)
[InterN0T] transLucid 1.75 - Multiple Vulnerabilities security@intern0t.net (Fri Jun 12 2009 - 22:14:22 EEST)
[InterN0T] Webmedia Explorer - XSS Vulnerability security@intern0t.net (Fri Jun 12 2009 - 22:14:50 EEST)
[SECURITY] [DSA 1814-1] New libsndfile packages fix arbitrary code execution Nico Golde (Sat Jun 13 2009 - 18:03:09 EEST)
[USN-788-1] Tomcat vulnerabilities Marc Deslauriers (Mon Jun 15 2009 - 18:22:27 EEST)
[DSF-02-2009] - Zoki Catalog SQL Injection SmOk3 (Mon Jun 15 2009 - 21:56:49 EEST)
Netgear DG632 Router Authentication Bypass Vulnerability Tom Neaves (Mon Jun 15 2009 - 21:40:47 EEST)
Netgear DG632 Router Remote DoS Vulnerability Tom Neaves (Mon Jun 15 2009 - 21:37:53 EEST)
- Re: Netgear DG632 Router Remote DoS Vulnerability Tom Neaves (Tue Jun 16 2009 - 01:11:27 EEST)
  - Re[2]: [Full-disclosure] Netgear DG632 Router Remote DoS Vulnerability Vladimir '3APA3A' Dubrovin (Tue Jun 16 2009 - 14:11:48 EEST)
- Re: [Full-disclosure] Netgear DG632 Router Remote DoS Vulnerability Hanno Böck (Tue Jun 16 2009 - 13:42:06 EEST)
[TZO-33-2009] Fprot generic bypass (TAR) Thierry Zoller (Tue Jun 16 2009 - 14:04:42 EEST)
[TZO-40-2009] Clamav generic bypass (RAR,CAB,ZIP) Thierry Zoller (Tue Jun 16 2009 - 14:13:19 EEST)
CA20090615-01: CA ARCserve Backup Message Engine Denial of Service Vulnerabilities Williams, James K (Tue Jun 16 2009 - 14:21:04 EEST)
CA20090615-01: CA ARCserve Backup Message Engine Denial of Service Vulnerabilities (Updated) Williams, James K (Tue Jun 16 2009 - 14:30:54 EEST)
CA20090615-02: CA Service Desk Tomcat Cross Site Scripting Vulnerability Williams, James K (Tue Jun 16 2009 - 15:05:26 EEST)
Official release of "Keykeriki" open source wireless keyboard sniffer Max Moser (Tue Jun 16 2009 - 16:27:10 EEST)
[ MDVSA-2009:133 ] irssi security@mandriva.com (Tue Jun 16 2009 - 17:05:02 EEST)
phpMyTourney adminfunctions.php Remote File Include Vulnerabilities IrIsT.Ir@Gmail.Com (Tue Jun 16 2009 - 17:09:51 EEST)
WinAppDbg version 1.2 is out! Mario Alejandro Vilas Jerez (Tue Jun 16 2009 - 21:35:16 EEST)
Re: [Full-disclosure] WinAppDbg version 1.2 is out! Jared DeMott (Tue Jun 16 2009 - 21:26:40 EEST)
- Re: [Full-disclosure] WinAppDbg version 1.2 is out! Mario Alejandro Vilas Jerez (Tue Jun 16 2009 - 21:45:27 EEST)
ZDI-09-043: Apple Java CColorUIResource Pointer Derference Code Execution Vulnerability ZDI Disclosures (Tue Jun 16 2009 - 19:55:29 EEST)
[SECURITY] [DSA 1816-1] New apache2 packages fix privilege escalation Stefan Fritsch (Tue Jun 16 2009 - 22:56:30 EEST)
CERT-FI statement on the Outpost24 TCP issues updated Juha-Matti Laurio (Wed Jun 17 2009 - 13:41:47 EEST)
[ MDVSA-2009:134 ] firefox security@mandriva.com (Wed Jun 17 2009 - 18:54:01 EEST)
[ MDVSA-2009:135 ] kernel security@mandriva.com (Wed Jun 17 2009 - 22:00:01 EEST)
[SECURITY] [DSA 1817-1] New ctorrent packages fix arbitrary code execution Nico Golde (Thu Jun 18 2009 - 01:07:51 EEST)
[SECURITY] [DSA 1818-1] New gforge packages fix insufficient input sanitising Steffen Joeris (Thu Jun 18 2009 - 04:33:22 EEST)
[TZO-43-2009] - Clamav generic evasion (CAB) Thierry Zoller (Thu Jun 18 2009 - 17:01:34 EEST)
iPhone Safari phone-auto-dial vulnerability (original date: Nov. 2008) Collin Mulliner (Thu Jun 18 2009 - 10:59:13 EEST)
- Re: iPhone Safari phone-auto-dial vulnerability (original date: Nov. 2008) Collin Mulliner (Thu Jun 18 2009 - 20:29:05 EEST)
Nokia 6212 classic URI spoofing and DoS advisory (original date: Dec. 2008) Collin Mulliner (Thu Jun 18 2009 - 11:02:16 EEST)
[SECURITY] [DSA 1820-1] New xulrunner packages fix several vulnerabilities Steffen Joeris (Thu Jun 18 2009 - 17:13:03 EEST)
ERRATA: [TZO-32-2009] Norman generic bypass (RAR) Thierry Zoller (Thu Jun 18 2009 - 13:38:34 EEST)
[TZO-34-2009] Frisk FPROT generic evasion (RAR,ARJ,LHA) Thierry Zoller (Thu Jun 18 2009 - 15:50:27 EEST)
The M�bius Defense, the end of Defense in Depth Pete Herzog (Thu Jun 18 2009 - 17:14:24 EEST)
[SECURITY] [DSA 1819-1] New vlc packages fix several vulnerabilities Steffen Joeris (Thu Jun 18 2009 - 16:13:47 EEST)
Re: Advisory: Apple QuickTime Image Description Atom Sign Extension Memory Corruption rajendra.palnaty@freescale.com (Thu Jun 18 2009 - 12:14:50 EEST)
SecurityFocus Newsletter #505 sfa@securityfocus.com (Fri Jun 19 2009 - 01:29:12 EEST)
SecurityFocus Microsoft Newsletter #446 sfa@securityfocus.com (Fri Jun 19 2009 - 01:29:17 EEST)
SecurityFocus Linux Newsletter #441 sfa@securityfocus.com (Fri Jun 19 2009 - 01:29:22 EEST)
PhpPortal v1 Insecure Cookie Handling Vulnerability ceza_fuat_kolik@hotmail.com (Fri Jun 19 2009 - 10:55:34 EEST)
MULTIPLE LOCAL FILE INCLUSION VULNERABILITIES --FretsWeb 1.2--> y3nh4ck3r@gmail.com (Fri Jun 19 2009 - 18:22:23 EEST)
(GET var 'name') BLIND SQL INJECTION EXPLOIT --FretsWeb 1.2--> y3nh4ck3r@gmail.com (Fri Jun 19 2009 - 18:23:52 EEST)
[ MDVSA-2009:137 ] java-1.6.0-openjdk security@mandriva.com (Fri Jun 19 2009 - 20:47:01 EEST)
[USN-789-1] GStreamer Good Plugins vulnerability Marc Deslauriers (Mon Jun 22 2009 - 16:22:14 EEST)
CMS Buzz (XSS/PC/HI) Multiple Remote Vulnerabilities ceza_fuat_kolik@hotmail.com (Sun Jun 21 2009 - 22:02:21 EEST)
FretsWeb 1.2 (name) Remote Blind SQL Injection Exploit ceza_fuat_kolik@hotmail.com (Sun Jun 21 2009 - 22:03:44 EEST)
phportal 1.0 Insecure Cookie Handling Vulnerability ceza_fuat_kolik@hotmail.com (Sun Jun 21 2009 - 22:03:05 EEST)
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC ceza_fuat_kolik@hotmail.com (Sun Jun 21 2009 - 22:05:17 EEST)
FretsWeb 1.2 Multiple Local File Inclusion Vulnerabilities ceza_fuat_kolik@hotmail.com (Sun Jun 21 2009 - 22:04:47 EEST)
[RISE-2009001] ToolTalk rpc.ttdbserverd _tt_internal_realpath Buffer Overflow Vulnerability RISE Security (Sat Jun 20 2009 - 05:37:29 EEST)
Back door trojan in acajoom-3.2.6 for joomla Jan van Niekerk (Mon Jun 22 2009 - 21:38:57 EEST)
[ MDVSA-2009:136 ] tomcat5 security@mandriva.com (Tue Jun 23 2009 - 02:45:00 EEST)
[SECURITY] [DSA 1821-1] New amule packages fix insufficient input sanitising Steffen Joeris (Tue Jun 23 2009 - 02:45:52 EEST)
[ MDVSA-2009:138 ] tomcat5 security@mandriva.com (Tue Jun 23 2009 - 03:02:00 EEST)
CFP: ISOI 7 - Sept 17, 18 - San Diego Gadi Evron (Tue Jun 23 2009 - 03:16:31 EEST)
[SECURITY] [DSA 1822-1] New mahara packages fix cross-site scripting Nico Golde (Tue Jun 23 2009 - 12:08:41 EEST)
n.runs-SA-2009.006 - Apple Safari - Null pointer dereference security@nruns.com (Tue Jun 23 2009 - 12:23:49 EEST)
n.runs-SA-2009.005 - Apple Safari - Information disclosure security@nruns.com (Tue Jun 23 2009 - 12:23:49 EEST)
Authentication Bypas in BASE version 1.2.4 and prior timmedin@gmail.com (Tue Jun 23 2009 - 23:31:26 EEST)
- Re: Authentication Bypas in BASE version 1.2.4 and prior timmedin@gmail.com (Wed Jun 24 2009 - 05:54:31 EEST)
[ MDVSA-2009:139 ] libtorrent-rasterbar security@mandriva.com (Wed Jun 24 2009 - 17:53:02 EEST)
Trustwave's SpiderLabs Security Advisory TWSL2009-002 Trustwave Advisories (Wed Jun 24 2009 - 17:57:02 EEST)
Re: Authentication Bypass in BASE version 1.2.4 and prior timmedin@gmail.com (Wed Jun 24 2009 - 06:20:10 EEST)
CHASE - 2009 Lahoe Pakistan | Call for Papers Muhammad Farooq-i-Azam (Wed Jun 24 2009 - 10:04:34 EEST)
Cisco Security Advisory: Cisco Physical Access Gateway Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jun 24 2009 - 19:00:00 EEST)
Cisco Security Advisory: Vulnerabilities in Cisco Video Surveillance Products Cisco Systems Product Security Incident Response Team (Wed Jun 24 2009 - 20:42:19 EEST)
[USN-790-1] Cyrus SASL vulnerability Kees Cook (Wed Jun 24 2009 - 21:28:43 EEST)
[USN-791-1] Moodle vulnerabilities Kees Cook (Wed Jun 24 2009 - 23:00:21 EEST)
[USN-791-2] Moodle vulnerability Kees Cook (Wed Jun 24 2009 - 23:02:45 EEST)
[USN-791-3] Smarty vulnerability Kees Cook (Wed Jun 24 2009 - 23:02:12 EEST)
[ MDVSA-2009:140 ] gaim security@mandriva.com (Thu Jun 25 2009 - 18:33:00 EEST)
(POST var 'resetpwemail') BLIND SQL INJECTION EXPLOIT --AlumniServer v-1.0.1--> y3nh4ck3r@gmail.com (Thu Jun 25 2009 - 20:43:13 EEST)
[USN-792-1] OpenSSL vulnerabilities Marc Deslauriers (Thu Jun 25 2009 - 21:25:55 EEST)
iDefense Security Advisory 06.25.09: Unisys Business Information Server Stack Buffer Overflow iDefense Labs (Thu Jun 25 2009 - 20:54:09 EEST)
[SECURITY] [DSA 1823-1] New samba packages fix several vulnerabilities Thijs Kinkhorst (Thu Jun 25 2009 - 22:08:42 EEST)
iDefense Security Advisory 06.25.09: Motorola Timbuktu Pro PlughNTCommand Stack Based Buffer Overflow Vulnerability iDefense Labs (Thu Jun 25 2009 - 22:32:22 EEST)
SQL INJECTION VULNERABILITY --AlumniServer v-1.0.1--> y3nh4ck3r@gmail.com (Thu Jun 25 2009 - 20:42:21 EEST)
[SECURITY] [DSA 1824-1] New phpmyadmin packages fix several vulnerabilities Thijs Kinkhorst (Thu Jun 25 2009 - 23:55:52 EEST)
[USN-782-1] Thunderbird vulnerabilities Jamie Strandboge (Fri Jun 26 2009 - 03:17:35 EEST)
Security Assessment of TCP at the IETF Fernando Gont (Fri Jun 26 2009 - 07:28:49 EEST)
aMSN SSL Certificate Vulnerability Gabriel Menezes Nunes (Fri Jun 26 2009 - 16:33:25 EEST)
Gizmo SSL Certificate Vulnerability Gabriel Menezes Nunes (Fri Jun 26 2009 - 16:35:05 EEST)
Trillian SSL Certificate Vulnerability Gabriel Menezes Nunes (Fri Jun 26 2009 - 16:36:22 EEST)
- Re: Trillian SSL Certificate Vulnerability krymson@gmail.com (Fri Jun 26 2009 - 21:28:15 EEST)
Report vulnerabilities JP (Thu Jun 25 2009 - 23:29:04 EEST)
SecurityFocus Linux Newsletter #442 sfa@securityfocus.com (Fri Jun 26 2009 - 20:21:59 EEST)
evil little dictionary Pavel Machek (Fri Jun 26 2009 - 21:24:44 EEST)
SecurityFocus Newsletter #506 sfa@securityfocus.com (Fri Jun 26 2009 - 20:21:49 EEST)
SecurityFocus Microsoft Newsletter #447 sfa@securityfocus.com (Fri Jun 26 2009 - 20:21:54 EEST)
MULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.x--> y3nh4ck3r@gmail.com (Fri Jun 26 2009 - 21:58:26 EEST)
[ MDVSA-2009:141 ] mozilla-thunderbird security@mandriva.com (Fri Jun 26 2009 - 21:36:00 EEST)
iDefense Security Advisory 06.26.09: HP Network Node Manager rping Stack Buffer Overflow Vulnerability iDefense Labs (Fri Jun 26 2009 - 23:10:21 EEST)
[ GLSA 200906-01 ] libpng: Information disclosure Tobias Heinlein (Sun Jun 28 2009 - 02:57:05 EEST)
Mega File Manager Remote File Vuln ceza_fuat_kolik@hotmail.com (Mon Jun 29 2009 - 02:23:16 EEST)
osTicket v1.6 RC4 Admin Login Blind SQLi Adam Baldwin (Sat Jun 27 2009 - 08:12:15 EEST)
[ MDVSA-2009:143 ] netpbm security@mandriva.com (Sat Jun 27 2009 - 01:43:00 EEST)
[ MDVSA-2009:145 ] php security@mandriva.com (Sun Jun 28 2009 - 20:50:01 EEST)
Shakacon III - Presentations Posted to site Shakacon (Sun Jun 28 2009 - 03:07:12 EEST)
[ MDVSA-2009:142 ] jasper security@mandriva.com (Sat Jun 27 2009 - 01:04:00 EEST)
AjaxPortal v3.0 Remote File Inclusion Vulnerability Cru3l.b0y (Mon Jun 29 2009 - 17:04:35 EEST)
[ MDVSA-2009:144 ] ghostscript security@mandriva.com (Sat Jun 27 2009 - 22:04:01 EEST)
[ GLSA 200906-02 ] Ruby: Denial of Service Alex Legler (Mon Jun 29 2009 - 00:35:18 EEST)
[ MDVSA-2009:146 ] imap security@mandriva.com (Mon Jun 29 2009 - 19:25:00 EEST)
[ GLSA 200906-03 ] phpMyAdmin: Multiple vulnerabilities Alex Legler (Tue Jun 30 2009 - 01:39:40 EEST)
[ GLSA 200906-04 ] Apache Tomcat JK Connector: Information disclosure Alex Legler (Tue Jun 30 2009 - 01:44:41 EEST)
Multiple Flaws in Huawei D100 filip.palian@pjwstk.edu.pl (Tue Jun 30 2009 - 14:16:38 EEST)
[ GLSA 200906-05 ] Wireshark: Multiple vulnerabilities Tobias Heinlein (Tue Jun 30 2009 - 16:14:34 EEST)
SIPS v0.2.2 Remote File Inclusion Vulnerability Cru3l.b0y (Tue Jun 30 2009 - 18:20:48 EEST)
- Re: SIPS v0.2.2 Remote File Inclusion Vulnerability Vladimir '3APA3A' Dubrovin (Tue Jun 30 2009 - 21:29:48 EEST)
- Re: SIPS v0.2.2 Remote File Inclusion Vulnerability Joe (Tue Jun 30 2009 - 22:38:06 EEST)
XAMPP for Windows (Xss/PHPinfo) Multiple Vulnerability Cru3l.b0y (Tue Jun 30 2009 - 18:21:52 EEST)
[ MDVSA-2009:147 ] pidgin security@mandriva.com (Tue Jun 30 2009 - 23:20:00 EEST)
Empire Cms 5.1 sql injection info@securitylab.ir (Tue Jun 30 2009 - 23:13:06 EEST)

Last message date: Tue Jun 30 2009 - 23:55:43 EEST
Archived on: Tue Jun 30 2009 - 23:55:44 EEST

277 messages sorted by: [ author ] [ date ] [ subject ]

This archive was generated by hypermail 2b28 : Tue Jun 30 2009 - 23:55:44 EEST

stdinBy Thread

stdin
By Thread