stdin
By Date

Most recent messages
286 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Mon Jan 04 2010 - 17:13:25 EET
Ending: Fri Jan 29 2010 - 22:41:00 EET

Latest Intel Pro/10* ethernet adaptor drivers contain vulnerable MSVC runtime! Stefan Kanthak (Sat Jan 02 2010 - 05:36:47 EET)
WASC Announcement: WASC Threat Classification v2.0 Published announcements@webappsec.org (Sun Jan 03 2010 - 13:15:41 EET)
Secunia Research: PDF-XChange Viewer Content Parsing Memory Corruption Vulnerability Secunia Research (Mon Jan 04 2010 - 15:57:33 EET)
[USN-876-1] PostgreSQL vulnerabilities Jamie Strandboge (Sun Jan 03 2010 - 22:48:39 EET)
[ GLSA 201001-02 ] Adobe Flash Player: Multiple vulnerabilities Alex Legler (Sun Jan 03 2010 - 19:24:13 EET)
Java vulnerability Paul (Mon Jan 04 2010 - 01:17:53 EET)
[Tool] DeepToad 1.1.0 Joxean Koret (Sun Jan 03 2010 - 13:37:45 EET)
[ GLSA 201001-01 ] NTP: Denial of Service Stefan Behte (Sun Jan 03 2010 - 18:29:56 EET)
httpdx webserver v1.5 Remote Source Disclosure info@securitylab.ir (Sat Jan 02 2010 - 10:10:45 EET)
Y2K10 spamassassin bug, 2010 year mails discared as spam Eduardo Romero (Mon Jan 04 2010 - 16:53:33 EET)
Re: Y2K10 spamassassin bug, 2010 year mails discared as spam Steve Shockley (Mon Jan 04 2010 - 23:02:16 EET)
Re: [Full-disclosure] [Tool] DeepToad 1.1.0 T Biehn (Tue Jan 05 2010 - 16:56:42 EET)
REWTERZ-20100102 - Nemesis Player (NSP) Local Denial of Service (DoS) Vulnerability rewterz security team (Tue Jan 05 2010 - 17:35:28 EET)
Link Injection Redirection Attacks - Exploiting Google Chrome Design Flaw Aditya K Sood (Tue Jan 05 2010 - 16:02:44 EET)
Re: Y2K10 spamassassin bug, 2010 year mails discared as spam Rudy Zijlstra (Tue Jan 05 2010 - 01:32:47 EET)
SyScan'10 Call For Training (CFT) organiser@syscan.org (Tue Jan 05 2010 - 09:22:09 EET)
REWTERZ-20100101 - n.player Local Heap Overflow Vulnerability rewterz security team (Tue Jan 05 2010 - 17:35:22 EET)
REWTERZ-20100103 - Ofilter Player Local Denial of Service (DoS) Vulnerability rewterz security team (Tue Jan 05 2010 - 17:35:35 EET)
Re: [Full-disclosure] [Tool] DeepToad 1.1.0 Joxean Koret (Tue Jan 05 2010 - 17:00:12 EET)
Re: [Full-disclosure] [Tool] DeepToad 1.1.0 T Biehn (Tue Jan 05 2010 - 16:41:58 EET)
UPDATE: MITKRB5-SA-2009-003 [CVE-2009-3295] KDC denial of service in cross-realm referral processing Tom Yu (Tue Jan 05 2010 - 06:59:32 EET)
Multiple vulnerabilities in LineWeb 1.0.5 ign.sec@gmail.com (Tue Jan 05 2010 - 11:14:06 EET)
[ MDVSA-2009:220-1 ] davfs security@mandriva.com (Tue Jan 05 2010 - 21:24:02 EET)
Re: Link Injection Redirection Attacks - Exploiting Google Chrome Design Flaw Michal Zalewski (Tue Jan 05 2010 - 20:49:07 EET)
[ GLSA 201001-03 ] PHP: Multiple vulnerabilities Tobias Heinlein (Tue Jan 05 2010 - 23:10:07 EET)
{PRL} Novell Netware CIFS And AFP Remote Memory Consumption DoS Protek Research Lab (Tue Jan 05 2010 - 23:00:28 EET)
Re: Secunia Research: TSC2 Help Desk CTab ActiveX Control Buffer Overflow sales@servantix.com (Tue Jan 05 2010 - 20:59:58 EET)
Re: Link Injection Redirection Attacks - Exploiting Google Chrome Design Flaw Peter Watkins (Wed Jan 06 2010 - 00:59:49 EET)
[USN-879-1] Kerberos vulnerability Kees Cook (Wed Jan 06 2010 - 08:22:53 EET)
Critical PowerDNS Recursor Security Vulnerabilities: please upgrade ASAP to 3.1.7.2 bert hubert (Wed Jan 06 2010 - 17:34:10 EET)
[TOOL RELEASE] Microsoft SQL Server Fingerprint Too BETA-3l!!! Nelson Brito (Wed Jan 06 2010 - 01:20:47 EET)
Re: [WEB SECURITY] Re: Link Injection Redirection Attacks - Exploiting Google Chrome Design Flaw Aditya K Sood (Wed Jan 06 2010 - 05:51:22 EET)
Re: Multiple vulnerabilities in LineWeb 1.0.5 ign.sec@gmail.com (Wed Jan 06 2010 - 11:55:46 EET)
HTTP Digest Integrity: Another look, in light of recent attacks Timothy D. Morgan (Wed Jan 06 2010 - 03:15:19 EET)
[SECURITY] [DSA-1965-1] New phpldapadmin packages fix remote file inclusion Giuseppe Iuculano (Wed Jan 06 2010 - 20:28:57 EET)
FreeBSD Security Advisory FreeBSD-SA-10:01.bind FreeBSD Security Advisories (Thu Jan 07 2010 - 00:54:50 EET)
FreeBSD Security Advisory FreeBSD-SA-10:02.ntpd FreeBSD Security Advisories (Thu Jan 07 2010 - 00:55:36 EET)
FreeBSD Security Advisory FreeBSD-SA-10:03.zfs FreeBSD Security Advisories (Thu Jan 07 2010 - 00:55:56 EET)
[SECURITY] [DSA 1966-1] New horde3 packages fix cross-site scripting Steffen Joeris (Thu Jan 07 2010 - 12:33:23 EET)
[USN-880-1] GIMP vulnerabilities Marc Deslauriers (Thu Jan 07 2010 - 18:39:22 EET)
VMSA-2010-0001 ESX Service Console updates for nss and nspr VMware Security team (Thu Jan 07 2010 - 09:23:58 EET)
[ MDVSA-2009:300-1 ] apache-conf security@mandriva.com (Thu Jan 07 2010 - 16:42:00 EET)
[ MDVSA-2009:300-2 ] apache-conf security@mandriva.com (Thu Jan 07 2010 - 16:55:00 EET)
[SECURITY] [DSA 1967-1] New transmission packages fix directory traversal Moritz Muehlenhoff (Thu Jan 07 2010 - 21:41:56 EET)
Security contact at Lexmark? Protek Research Lab (Thu Jan 07 2010 - 21:24:19 EET)
ZDI-10-001: Novell iManager eDirectory Plugin Remote Code Execution Vulnerability ZDI Disclosures (Fri Jan 08 2010 - 00:50:59 EET)
[USN-877-1] Firefox 3.0 and Xulrunner 1.9 regression Jamie Strandboge (Fri Jan 08 2010 - 03:02:05 EET)
[USN-878-1] Firefox 3.5 and Xulrunner 1.9.1 regression Jamie Strandboge (Fri Jan 08 2010 - 03:03:32 EET)
Secunia Research: Adobe Illustrator Encapsulated Postscript Parsing Vulnerability Secunia Research (Fri Jan 08 2010 - 11:09:03 EET)
[HACKATTACK Advisory 080110] Windows Live Messenger 2009 ActiveX DoS Vulnerability advisory@hackattack.com (Fri Jan 08 2010 - 11:52:59 EET)
Google Chrome 3.0.195.38 | Chrome Frame - Reloading Memory Allocation based Tab Crashing Aditya K Sood (Fri Jan 08 2010 - 16:29:19 EET)
[ MDVSA-2009:316-1 ] expat security@mandriva.com (Fri Jan 08 2010 - 18:42:00 EET)
MacOS X 10.5/10.6 libc/strtod(3) buffer overflow cxib@securityreason.com (Fri Jan 08 2010 - 02:04:44 EET)
TELUS Security Labs VR - ACDSee Systems ACDSee Products XBM File Handling Buffer Overflow noreply@telus.com (Fri Jan 08 2010 - 22:15:15 EET)
[CORELAN-10-001] Audiotran 1.4.1 buffer overflow Security (Sat Jan 09 2010 - 21:02:59 EET)
Re: TELUS Security Labs VR - ACDSee Systems ACDSee Products XBM File Handling Buffer Overflow Steve Shockley (Sun Jan 10 2010 - 08:08:45 EET)
[SECURITY] [DSA 1968-1] New pdns-recursor packages fix potential code execution Florian Weimer (Fri Jan 08 2010 - 23:46:14 EET)
NSOADV-2010-001: Panda Security Local Privilege Escalation NSO Research (Sat Jan 09 2010 - 17:54:12 EET)
Cross-Site Scripting vulnerability in JVClouds3D for Joomla MustLive (Sat Jan 09 2010 - 01:35:38 EET)
[ MDVSA-2009:316-2 ] expat security@mandriva.com (Sat Jan 09 2010 - 06:22:01 EET)
Nginx, Varnish, Cherokee, thttpd, mini-httpd, WEBrick, Orion, AOLserver, Yaws and Boa log escape sequence injection ascii (Sun Jan 10 2010 - 22:19:07 EET)
[ MDVSA-2009:316-3 ] expat security@mandriva.com (Sun Jan 10 2010 - 15:59:01 EET)
XSS vulnerabilities in 34 millions flash files MustLive (Sun Jan 10 2010 - 22:39:07 EET)
[ MDVSA-2010:000 ] firefox security@mandriva.com (Mon Jan 11 2010 - 02:00:01 EET)
[ MDVSA-2009:227-1 ] freeradius security@mandriva.com (Mon Jan 11 2010 - 20:16:00 EET)
XSS Vulnerability in Active Calendar 1.2.0 Marty Barbella (Mon Jan 11 2010 - 19:31:51 EET)
[ MDVSA-2009:293-1 ] squidGuard security@mandriva.com (Mon Jan 11 2010 - 20:34:00 EET)
[ MDVSA-2009:241-1 ] squid security@mandriva.com (Mon Jan 11 2010 - 22:29:00 EET)
[ MDVSA-2010:001 ] pidgin security@mandriva.com (Tue Jan 12 2010 - 02:36:00 EET)
[ MDVSA-2010:002 ] pidgin security@mandriva.com (Tue Jan 12 2010 - 03:11:00 EET)
HITB Ezine 'Reloaded' - Issue #001 Hafez Kamal (Mon Jan 11 2010 - 21:40:53 EET)
Invitation: nullcon Goa 2010 International Security & Hacking Conference nullcon (Tue Jan 12 2010 - 12:55:47 EET)
[CORELAN-10-004] TurboFTP Server 1.00.712 remote DoS Security (Tue Jan 12 2010 - 21:25:54 EET)
ZDI-10-002: Oracle Secure Backup observiced.exe Remote Code Execution Vulnerability ZDI Disclosures (Wed Jan 13 2010 - 00:47:44 EET)
MITKRB5-SA-2009-004 [CVE-2009-4212] integer underflow in AES and RC4 decryption Tom Yu (Tue Jan 12 2010 - 21:06:00 EET)
Secunia Research: Microsoft Windows Flash Player Movie Unloading Vulnerability Secunia Research (Tue Jan 12 2010 - 21:07:52 EET)
Cross Site Identification (CSID) attack. Description and demonstration. Ronen Z (Wed Jan 13 2010 - 17:40:12 EET)
iDefense Security Advisory 01.12.10: Adobe Reader and Acrobat JpxDecode Memory Corruption Vulnerability iDefense Labs (Wed Jan 13 2010 - 08:48:03 EET)
[USN-882-1] PHP vulnerabilities Marc Deslauriers (Wed Jan 13 2010 - 17:39:27 EET)
[ MDVSA-2010:003 ] sendmail security@mandriva.com (Tue Jan 12 2010 - 20:35:01 EET)
[SECURITY] [DSA-1969-1] New krb5 packages fix denial of service Giuseppe Iuculano (Tue Jan 12 2010 - 23:36:58 EET)
[USN-881-1] Kerberos vulnerability Kees Cook (Tue Jan 12 2010 - 23:12:00 EET)
[USN-883-1] network-manager-applet vulnerabilities Marc Deslauriers (Wed Jan 13 2010 - 17:39:58 EET)
Yoono Firefox Extension - Privileged Code Injection Nick Freeman (Wed Jan 13 2010 - 12:23:05 EET)
[CORE-2009-1209] Google SketchUp 'lib3ds' 3DS Importer Memory Corruption CORE Security Advisories (Wed Jan 13 2010 - 21:05:44 EET)
[ MDVSA-2010:004 ] bash security@mandriva.com (Wed Jan 13 2010 - 20:38:00 EET)
[security bulletin] HPSBPI02500 SSRT090263 rev.1 - HP Web Jetadmin, Remote Unauthorized Access to Data, Denial of Service (DoS) security-alert@hp.com (Wed Jan 13 2010 - 21:18:30 EET)
[SECURITY] [DSA-1970-1] New openssl packages fix denial of service Stefan Fritsch (Wed Jan 13 2010 - 20:47:58 EET)
[ MDVSA-2010:006 ] krb5 security@mandriva.com (Thu Jan 14 2010 - 04:26:00 EET)
RE: All China, All The Time Thor (Hammer of God) (Thu Jan 14 2010 - 08:09:13 EET)
[ MDVSA-2010:005 ] krb5 security@mandriva.com (Thu Jan 14 2010 - 02:44:00 EET)
[ GLSA 201001-08 ] SquirrelMail: Multiple vulnerabilities Stefan Behte (Thu Jan 14 2010 - 00:09:39 EET)
Hellcode Research: OpenOffice File Parsing Null Pointer Vulnerability karakorsankara@hotmail.com (Thu Jan 14 2010 - 11:28:20 EET)
[ GLSA 201001-04 ] VirtualBox: Multiple vulnerabilities Stefan Behte (Thu Jan 14 2010 - 00:04:02 EET)
[ GLSA 201001-06 ] aria2: Multiple vulnerabilities Stefan Behte (Thu Jan 14 2010 - 00:07:44 EET)
XSS Vulnerability in Drupal's Node Blocks contributed module (6.x-1.3 and 5.x-1.1) Marty Barbella (Thu Jan 14 2010 - 16:53:21 EET)
[ GLSA 201001-09 ] Ruby: Terminal Control Character Injection Alex Legler (Thu Jan 14 2010 - 17:05:11 EET)
[ GLSA 201001-07 ] Blender: Untrusted search path Stefan Behte (Thu Jan 14 2010 - 00:08:43 EET)
All China, All The Time Thor (Hammer of God) (Wed Jan 13 2010 - 22:28:59 EET)
[USN-884-1] OpenSSL vulnerability Kees Cook (Thu Jan 14 2010 - 03:57:21 EET)
[ GLSA 201001-05 ] net-snmp: Authorization bypass Stefan Behte (Thu Jan 14 2010 - 00:06:35 EET)
[security bulletin] HPSBMA02433 SSRT090084 rev.2 - HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Remote Unauthorized Access, Execution of Arbitrary Code security-alert@hp.com (Thu Jan 14 2010 - 20:55:57 EET)
[USN-885-1] Transmission vulnerabilities Jamie Strandboge (Thu Jan 14 2010 - 20:44:22 EET)
[SECURITY] [DSA-1971-1] New libthai packages fix arbitrary code execution Giuseppe Iuculano (Fri Jan 15 2010 - 11:23:37 EET)
SEC Consult SA-20100115-0 :: Local file inclusion/execution and multiple CSRF vulnerabilities in LetoDMS (formerly MyDMS) Lukas Weichselbaum (Fri Jan 15 2010 - 16:16:02 EET)
Sprint / Verizon MiFi CSRF+CSS Gives up GPS info to attacker Adam Baldwin (Fri Jan 15 2010 - 18:12:48 EET)
Major security risk in the unlock pattern for Android devices Dan Dascalescu (Fri Jan 15 2010 - 03:16:41 EET)
rPSA-2010-0004-1 openssl openssl-scripts rPath Update Announcements (Fri Jan 15 2010 - 01:07:58 EET)
VUPEN Security Research - Adobe Acrobat and Reader U3D Integer Overflow Vulnerability VUPEN Security Research (Fri Jan 15 2010 - 12:01:05 EET)
RE: Major security risk in the unlock pattern for Android devices Francis, Shannon (Fri Jan 15 2010 - 18:34:41 EET)
Re: Major security risk in the unlock pattern for Android devices Brian Altenhofel (Fri Jan 15 2010 - 19:00:03 EET)
Re: All China, All The Time Gadi Evron (Fri Jan 15 2010 - 19:15:39 EET)
RE: All China, All The Time Thor (Hammer of God) (Fri Jan 15 2010 - 20:04:43 EET)
C4 SCADA Security Advisory - Rockwell Automation (Allen Bradley) Multiple Vulnerabilities in Micrologix 1100 & 1400 Series Controllers Eyal Udassin (Fri Jan 15 2010 - 14:15:10 EET)
[security bulletin] HPSBUX02495 SSRT090151 rev.2 - HP-UX Running sendmail, Remote Denial of Service (DoS) security-alert@hp.com (Fri Jan 15 2010 - 21:23:28 EET)
[ATHCON2010] CFP/1st Call for Papers - AthCon IT Security Conference Kyprianos Vasilopoulos (Sat Jan 16 2010 - 14:54:18 EET)
[ MDVSA-2010:007 ] php security@mandriva.com (Sat Jan 16 2010 - 00:53:01 EET)
[ MDVSA-2010:008 ] php security@mandriva.com (Sat Jan 16 2010 - 01:23:00 EET)
[ MDVSA-2010:009 ] php security@mandriva.com (Sat Jan 16 2010 - 01:45:00 EET)
GDT and LDT in Windows kernel vulnerability exploitation (paper) Gynvael Coldwind (Sun Jan 17 2010 - 02:53:48 EET)
RE: All China, All The Time Jim Harrison (Sat Jan 16 2010 - 16:17:18 EET)
Re: [Full-disclosure] Sprint / Verizon MiFi CSRF+CSS Gives up GPS info to attacker A. Ramos (Sat Jan 16 2010 - 18:13:22 EET)
Browser Fuzzer 3 krakowlabs@gmail.com (Sat Jan 16 2010 - 17:48:33 EET)
[ MDVSA-2010:010 ] libthai security@mandriva.com (Sat Jan 16 2010 - 20:39:00 EET)
Code to mitigate IE event zero-day (CVE-2010-0249) ds.adv.pub@gmail.com (Mon Jan 18 2010 - 07:35:03 EET)
[USN-886-1] Pidgin vulnerabilities Marc Deslauriers (Mon Jan 18 2010 - 18:00:02 EET)
Re: [Full-disclosure] Sprint / Verizon MiFi CSRF+CSS Gives up GPS info to attacker Adam Baldwin (Sat Jan 16 2010 - 19:09:43 EET)
[USN-885-1] LibThai vulnerability Marc Deslauriers (Mon Jan 18 2010 - 17:59:18 EET)
AOL 9.5 ActiveX Heap Overflow Vulnerability karakorsankara@hotmail.com (Mon Jan 18 2010 - 16:23:26 EET)
Reminder: Campus Party EU 2010 Call For Participants Campus Party EU Spain (Mon Jan 18 2010 - 16:44:22 EET)
[ MDVSA-2010:012 ] mysql security@mandriva.com (Mon Jan 18 2010 - 01:43:00 EET)
[ MDVSA-2010:011 ] mysql security@mandriva.com (Mon Jan 18 2010 - 00:15:01 EET)
Re: All China, All The Time Steven J. Koch (Fri Jan 15 2010 - 22:43:13 EET)
[USN-887-1] LibThai vulnerability Marc Deslauriers (Mon Jan 18 2010 - 19:45:55 EET)
[ MDVSA-2010:013 ] transmission security@mandriva.com (Mon Jan 18 2010 - 20:47:00 EET)
[ MDVSA-2010:014 ] transmission security@mandriva.com (Mon Jan 18 2010 - 21:05:00 EET)
Zenoss Multiple Admin CSRF Adam Baldwin (Sat Jan 16 2010 - 19:22:50 EET)
[SECURITY] [DSA-1972-1] New audiofile packages fix buffer overflow Stefan Fritsch (Sun Jan 17 2010 - 11:36:43 EET)
0day vulnerability Sogou input method to obtain system privileges k4mr4n_st@yahoo.com (Mon Jan 18 2010 - 21:15:56 EET)
facebook 'routing flaw'? Michael Scheidell (Sat Jan 16 2010 - 14:39:25 EET)
QvodPlayer ColorFilter Codec ActiveX Remote Exec info@securitylab.ir (Sun Jan 17 2010 - 22:28:24 EET)
Re: All China, All The Time Marcello Magnifico (Mon Jan 18 2010 - 12:54:39 EET)
Study of BlackBerry Proof-of-Concept Malicious Applications (Whitepaper) Mayank Aggarwal (Mon Jan 18 2010 - 18:26:18 EET)
JBroFuzz 1.9 Fuzzer Released! subere@uncon.org (Tue Jan 19 2010 - 02:52:45 EET)
OpenOffice for Windows ".slk" File Parsing Null Pointer Vulnerability karakorsankara@hotmail.com (Tue Jan 19 2010 - 03:02:05 EET)
Re: All China, All The Time Neil Dickey (Tue Jan 19 2010 - 18:19:34 EET)
Re: facebook 'routing flaw'? Manny Ponce (Tue Jan 19 2010 - 03:44:29 EET)
Multiple Vulnerabilities in XOOPS 2.4.3 and earlier CodeScan Labs Advisories (Tue Jan 19 2010 - 04:18:47 EET)
Xunlei XPPlayer ActiveX Remote Exec 0day POC superli@safe-mail.net (Tue Jan 19 2010 - 05:02:20 EET)
Baidu Security Center FireFoxProxy ActiveX Remote Exec 0day POC superli@safe-mail.net (Tue Jan 19 2010 - 05:05:58 EET)
Kingsoft DuBa Browser Shield ActiveX Remote Exec 0day POC superli@safe-mail.net (Tue Jan 19 2010 - 05:05:56 EET)
ezContents CMS Multiple Vulnerabilities admin@bugreport.ir (Tue Jan 19 2010 - 08:39:13 EET)
Blaze Apps Multiple Vulnerabilities admin@bugreport.ir (Tue Jan 19 2010 - 08:46:50 EET)
[ MDVSA-2010:015 ] roundcubemail security@mandriva.com (Tue Jan 19 2010 - 18:41:01 EET)
RE: facebook 'routing flaw'? Sacks, Cailan C (Tue Jan 19 2010 - 09:08:13 EET)
Re: facebook 'routing flaw'? Suramya Tomar (Tue Jan 19 2010 - 20:17:42 EET)
[ MDVSA-2010:017 ] ruby security@mandriva.com (Tue Jan 19 2010 - 20:04:01 EET)
[security bulletin] HPSBMA02485 SSRT090252 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code security-alert@hp.com (Tue Jan 19 2010 - 21:00:13 EET)
Re: facebook 'routing flaw'? Matthew Leeds (Tue Jan 19 2010 - 19:45:19 EET)
[ MDVSA-2010:018 ] phpMyAdmin security@mandriva.com (Tue Jan 19 2010 - 22:09:01 EET)
[ MDVSA-2010:016 ] wireshark security@mandriva.com (Tue Jan 19 2010 - 22:49:01 EET)
[CORELAN-10-006] BOF Vulnerability in S.O.M.P.L. Player Security (Tue Jan 19 2010 - 23:24:24 EET)
Secunia Research: Adobe Shockwave Player Four Integer Overflow Vulnerabilities Secunia Research (Wed Jan 20 2010 - 10:40:31 EET)
[SECURITY] [DSA 1973-1] New glibc packages fix information disclosure Aurelien Jarno (Wed Jan 20 2010 - 00:32:45 EET)
Cisco Security Advisory: Cisco IOS XR Software SSH Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jan 20 2010 - 18:09:20 EET)
Secunia Research: HP Power Manager "formExportDataLogs" Buffer Overflow Secunia Research (Wed Jan 20 2010 - 14:22:15 EET)
[security bulletin] HPSBMA02474 SSRT090107 rev.2 - HP Power Manager, Remote Execution of Arbitrary Code security-alert@hp.com (Wed Jan 20 2010 - 15:58:07 EET)
Secunia Research: Adobe Shockwave Player Integer Overflow Vulnerability Secunia Research (Wed Jan 20 2010 - 10:32:04 EET)
Secunia Research: Adobe Shockwave Player 3D Model Two Integer Overflows Secunia Research (Wed Jan 20 2010 - 10:36:58 EET)
vBulletin nulled (validator.php) files/directories disclosure kw3rln@ratati.org (Wed Jan 20 2010 - 14:46:27 EET)
Re: Kingsoft DuBa Browser Shield ActiveX Remote Exec 0day POC hanzhengqi@kingsoft.com (Wed Jan 20 2010 - 16:11:02 EET)
[Onapsis Security Advisory 2010-001] SAP WebAS Integrated ITS Remote Command Execution Onapsis Research Labs (Wed Jan 20 2010 - 00:41:47 EET)
Secunia Research: Adobe Shockwave Player 3D Model Buffer Overflow Secunia Research (Wed Jan 20 2010 - 10:34:55 EET)
[SECURITY] [DSA 1974-1] New gzip packages fix arbitrary code execution Steffen Joeris (Wed Jan 20 2010 - 16:16:48 EET)
Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor CORBA GIOP Overflow Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jan 20 2010 - 22:31:43 EET)
Secunia Research: HP Power Manager "formExportDataLogs" Directory Traversal Secunia Research (Wed Jan 20 2010 - 14:22:30 EET)
Re: All China, All The Time Lawrence Pingree (Wed Jan 20 2010 - 18:29:18 EET)
RE: All China, All The Time Tim Mullen (Wed Jan 20 2010 - 18:44:40 EET)
[ MDVSA-2010:019 ] gzip security@mandriva.com (Wed Jan 20 2010 - 20:31:00 EET)
[USN-888-1] Bind vulnerabilities Marc Deslauriers (Wed Jan 20 2010 - 20:45:11 EET)
[USN-889-1] gzip vulnerabilities Marc Deslauriers (Wed Jan 20 2010 - 20:45:47 EET)
[ MDVSA-2010:020 ] gzip security@mandriva.com (Wed Jan 20 2010 - 20:58:01 EET)
[USN-890-1] Expat vulnerabilities Jamie Strandboge (Wed Jan 20 2010 - 21:07:03 EET)
[UPDATE] NSOADV-2010-001: Panda Security Local Privilege Escalation NSO Research (Wed Jan 20 2010 - 21:10:55 EET)
[ MDVSA-2010:021 ] bind security@mandriva.com (Wed Jan 20 2010 - 22:25:01 EET)
[SECURITY] [DSA-1975-1] Security Support for Debian 4.0 to be discontinued on February 15th Stefan Fritsch (Wed Jan 20 2010 - 22:51:17 EET)
Insufficient User Input Validation in VP-ASP 6.50 Demo Code CodeScan Labs Advisories (Thu Jan 21 2010 - 00:33:10 EET)
ZDI-10-003: Novell ZENworks Asset Management docfiledownload Remote SQL Injection Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 00:47:46 EET)
RE: All China, All The Time Jim Harrison (Thu Jan 21 2010 - 03:26:17 EET)
TheGreenBow VPN Client Local Stack Overflow Vulnerability - Security Advisory - SOS-10-001 Lists (Thu Jan 21 2010 - 05:54:49 EET)
eWebeditor Directory Traversal Vulnerability info@securitylab.ir (Thu Jan 21 2010 - 10:37:14 EET)
[ MDVSA-2010:022 ] openssl security@mandriva.com (Thu Jan 21 2010 - 15:14:01 EET)
ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 18:58:32 EET)
ZDI-10-006: RealNetworks RealPlayer GIF Handling Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 18:48:56 EET)
[ MDVSA-2010:023 ] phpldapadmin security@mandriva.com (Thu Jan 21 2010 - 17:19:01 EET)
ZDI-10-008: RealNetworks RealPlayer SIPR Codec Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 18:56:29 EET)
[SECURITY] [DSA-1972-2] New audiofile packages fix buffer overflow Stefan Fritsch (Thu Jan 21 2010 - 18:07:25 EET)
ZDI-10-005: RealNetworks RealPlayer ASMRulebook Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 18:41:41 EET)
ZDI-10-004: Cisco CiscoWorks IPM GIOP getProcessName Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 18:22:09 EET)
ZDI-10-007: RealNetworks RealPlayer SMIL getAtom Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 18:53:45 EET)
ZDI-10-014: Microsoft Internet Explorer item Object Memory Corruption Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 22:16:12 EET)
ZDI-10-013: Microsoft Internet Explorer Table Layout Reuse Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 22:14:17 EET)
ZDI-10-010: RealNetworks RealPlayer Skin Parsing Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 19:03:27 EET)
ZDI-10-011: Microsoft Internet Explorer Table Layout Col Tag Cache Update Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 22:07:14 EET)
ZDI-10-012: Microsoft Internet Explorer Baseline Tag Rendering Remote Code Execution Vulnerability ZDI Disclosures (Thu Jan 21 2010 - 22:10:22 EET)
Microsoft Windows NT #GP Trap Handler Allows Users to Switch Kernel Stack Tavis Ormandy (Tue Jan 19 2010 - 21:11:17 EET)
FortiGuard Advisory: Microsoft Internet Explorer Remote Memory Corruption Vulnerability noreply-secresearch@fortinet.com (Fri Jan 22 2010 - 03:29:59 EET)
IdeaCMS v1.0 (fck) Remote Arbitrary File Upload whh_iran@yahoo.com (Fri Jan 22 2010 - 11:18:41 EET)
[USN-890-2] Python 2.5 vulnerabilities Jamie Strandboge (Fri Jan 22 2010 - 00:06:46 EET)
[SECURITY] [DSA-1976-1] New dokuwiki packages fix several vulnerabilities Giuseppe Iuculano (Fri Jan 22 2010 - 18:11:52 EET)
iBoutique v4.0 flashcreazione@gmail.com (Fri Jan 22 2010 - 17:13:09 EET)
Kayako SupportSuite Multiple Persistent Cross Site Scripting (Current Versions) pen-test@comodo.com (Fri Jan 22 2010 - 00:17:16 EET)
[USN-890-3] Python 2.4 vulnerabilities Jamie Strandboge (Fri Jan 22 2010 - 16:43:44 EET)
Silverstripe <= v2.3.4: two XSS vulnerabilities Moritz Naumann (Fri Jan 22 2010 - 21:04:01 EET)
Publique! CMS SQL Injection Vulnerabilities Christophe dlf (Mon Jan 25 2010 - 16:48:02 EET)
Abusing weak PRNGs in PHP applications gat3way@gat3way.eu (Sun Jan 24 2010 - 01:02:27 EET)
London DEFCON January meet - DC4420 - Wed 27th Jan 2010 Major Malfunction (Mon Jan 25 2010 - 15:57:18 EET)
e107 latest download link is backdoored Bogdan Calin (Mon Jan 25 2010 - 12:58:50 EET)
[SECURITY] CVE-2009-2693 Apache Tomcat unexpected file deletion and/or alteration Mark Thomas (Sun Jan 24 2010 - 23:54:03 EET)
[SECURITY] CVE-2009-2902 Apache Tomcat unexpected file deletion in work directory Mark Thomas (Sun Jan 24 2010 - 23:54:19 EET)
Safari 4.0.4 Crash systemx00@gmail.com (Sun Jan 24 2010 - 21:22:24 EET)
[SECURITY] CVE-2009-2901 Apache Tomcat insecure partial deploy after failed undeploy Mark Thomas (Sun Jan 24 2010 - 23:54:32 EET)
CVE-2009-3583, confirming problem and adding info Chris Travers (Fri Jan 22 2010 - 19:59:45 EET)
Re: e107 latest download link is backdoored Chris Travers (Mon Jan 25 2010 - 20:48:40 EET)
Re: e107 latest download link is backdoored Valery Marchuk (Mon Jan 25 2010 - 20:07:10 EET)
[ MDVSA-2010:024 ] coreutils security@mandriva.com (Sun Jan 24 2010 - 00:48:01 EET)
DDIVRT-2009-27 F2L-3000 files2links SQL Injection Vulnerability ddivulnalert@ddifrontline.com (Mon Jan 25 2010 - 20:36:42 EET)
[ MDVSA-2010:025 ] php-pear-Mail security@mandriva.com (Mon Jan 25 2010 - 17:57:01 EET)
Security improvements of Microsoft Silverlight Build 3.0.50106.0? Juha-Matti Laurio (Mon Jan 25 2010 - 14:55:51 EET)
FWD: LedgerSMB Security Advisory: Multiple Vulnerabilities Chris Travers (Mon Jan 25 2010 - 19:21:14 EET)
[SECURITY] [DSA-1977-1] New python packages fix several vulnerabilities Giuseppe Iuculano (Tue Jan 26 2010 - 00:01:20 EET)
Secunia Research: Google Chrome Pop-Up Block Menu Handling Vulnerability Secunia Research (Tue Jan 26 2010 - 11:24:06 EET)
Setting arbitrary Personas without user interaction in Firefox 3.6 Artur Janc (Tue Jan 26 2010 - 11:26:56 EET)
Re: e107 latest download link is backdoored Carsten Eilers (Tue Jan 26 2010 - 13:17:57 EET)
Re: [Full-disclosure] e107 latest download link is backdoored David Sopas (Tue Jan 26 2010 - 13:37:16 EET)
Re: [Full-disclosure] e107 latest download link is backdoored Gregor Schneider (Tue Jan 26 2010 - 13:37:27 EET)
Microsoft IE 6&7 Crash Exploit info@securitylab.ir (Tue Jan 26 2010 - 13:35:39 EET)
[IBM Datapower XS40] Denial of Service erik@psafe.nl (Tue Jan 26 2010 - 16:02:06 EET)
[security bulletin] HPSBMA02477 SSRT090177 rev.4 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) security-alert@hp.com (Tue Jan 26 2010 - 19:01:05 EET)
[ MDVSA-2010:026 ] openldap security@mandriva.com (Tue Jan 26 2010 - 20:22:01 EET)
Paper: Weaning the Web off of Session Cookies Timothy D. Morgan (Tue Jan 26 2010 - 21:05:09 EET)
Cross-Site Scripting vulnerability in 3D Cloud for Joomla MustLive (Tue Jan 26 2010 - 20:51:47 EET)
The future of XSS attacks MustLive (Fri Jan 22 2010 - 21:08:45 EET)
Netsupport gateway remote DoS watcher60@hotmail.com (Tue Jan 26 2010 - 21:49:14 EET)
[SECURITY] [DSA 1978-1] New phpgroupware packages fix several vulnerabilities Moritz Muehlenhoff (Tue Jan 26 2010 - 22:51:58 EET)
Re: [Full-disclosure] e107 latest download link is backdoored Fernando Augusto (Tue Jan 26 2010 - 18:49:59 EET)
More information on CVE-2009-3580 Chris Travers (Tue Jan 26 2010 - 20:56:14 EET)
RE: Microsoft IE 6&7 Crash Exploit Santhosh (Tue Jan 26 2010 - 21:09:28 EET)
Re: Re: e107 latest download link is backdoored track@darksnet.org (Tue Jan 26 2010 - 09:18:35 EET)
[USN-890-4] PyXML vulnerabilities Jamie Strandboge (Tue Jan 26 2010 - 21:23:55 EET)
Re: Microsoft IE 6&7 Crash Exploit Berend-Jan Wever (Tue Jan 26 2010 - 22:01:55 EET)
[InterN0T] ShareTronix 1.0.4 - HTML Injection Vulnerability advisories@intern0t.net (Wed Jan 27 2010 - 00:12:10 EET)
Re: RE: Microsoft IE 6&7 Crash Exploit sdasdasd@asdasd.com (Wed Jan 27 2010 - 02:44:05 EET)
PR09-02 Multiple Cross-Site Scripting (XSS) / Cross Domain redirects and Server path information disclosure on SAP BusinessObjects version 12 Rolando Fuentes (Wed Jan 27 2010 - 15:48:30 EET)
[security bulletin] HPSBMA02502 SSRT090171 rev.1 - HP OpenView Storage Data Protector, Local Unauthorized Access security-alert@hp.com (Wed Jan 27 2010 - 02:51:53 EET)
Mod_proxy from apache 1.3 - Integer overflow which causes heap overflow. pi3@itsec.pl (Wed Jan 27 2010 - 17:05:07 EET)
Re: [Full-disclosure] e107 latest download link is backdoored Gregor Schneider (Wed Jan 27 2010 - 09:51:04 EET)
[ MDVSA-2010:027 ] kdelibs4 security@mandriva.com (Wed Jan 27 2010 - 13:51:00 EET)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified MeetingPlace Cisco Systems Product Security Incident Response Team (Wed Jan 27 2010 - 18:30:00 EET)
[ MDVSA-2010:028 ] kdelibs4 security@mandriva.com (Wed Jan 27 2010 - 14:16:00 EET)
[RT-SA-2010-001] Geo++(R) GNCASTER: Insecure handling of long URLs RedTeam Pentesting GmbH (Wed Jan 27 2010 - 14:39:48 EET)
[RT-SA-2010-002] Geo++(R) GNCASTER: Insecure handling of NMEA-data RedTeam Pentesting GmbH (Wed Jan 27 2010 - 14:41:28 EET)
[RT-SA-2010-003] Geo++(R) GNCASTER: Faulty implementation of HTTP Digest Authentication RedTeam Pentesting GmbH (Wed Jan 27 2010 - 14:42:53 EET)
[USN-803-2] Dhcp vulnerability Jamie Strandboge (Wed Jan 27 2010 - 19:56:53 EET)
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities Raphael Geissert (Wed Jan 27 2010 - 20:22:26 EET)
PR09-15: XSS injection vulnerability within HP System Management Homepage (Insight Manager) research (Wed Jan 27 2010 - 19:04:15 EET)
[SECURITY] [DSA 1980-1] New ircd-hybrid/ircd-ratbox packages fix arbitrary code execution Steffen Joeris (Wed Jan 27 2010 - 22:29:02 EET)
Firefox Observation Plugin Attack Ivan Buetler (Thu Jan 28 2010 - 00:27:44 EET)
[security bulletin] HPSBMA02502 SSRT090171 rev.1 - HP OpenView Storage Data Protector, Local Unauthorized Access security-alert@hp.com (Thu Jan 28 2010 - 01:33:42 EET)
[USN-891-1] lintian vulnerabilities Kees Cook (Thu Jan 28 2010 - 09:58:07 EET)
Rising AntiVirus 2008/2009/2010 Local Privilege Escalation Exploit dlrow1991@ymail.com (Thu Jan 28 2010 - 11:27:45 EET)
[SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation Steffen Joeris (Thu Jan 28 2010 - 13:37:52 EET)
PR09-19: Cross-Site Scripting (XSS) on CommonSpot server research (Thu Jan 28 2010 - 17:08:23 EET)
[USN-893-1] Samba vulnerability Marc Deslauriers (Thu Jan 28 2010 - 20:44:00 EET)
[SECURITY] [DSA 1981-2] New maildrop packages fix regression Steffen Joeris (Thu Jan 28 2010 - 22:19:50 EET)
[USN-892-1] FUSE vulnerability Kees Cook (Thu Jan 28 2010 - 22:27:11 EET)
[SECURITY] [DSA 1968-2] New pdns-recursor packages fix cache poisoning Florian Weimer (Thu Jan 28 2010 - 23:05:39 EET)
Re: Microsoft IE 6&7 Crash Exploit k4mr4n_st@yahoo.com (Thu Jan 28 2010 - 23:36:52 EET)
Re: [Webappsec] Paper: Weaning the Web off of Session Cookies James Landis (Fri Jan 29 2010 - 00:03:57 EET)
Re: [Webappsec] Paper: Weaning the Web off of Session Cookies Arian J. Evans (Fri Jan 29 2010 - 00:51:59 EET)
Multiple vulnerabilities in XAMPP (advisories #1 and #2) MustLive (Fri Jan 29 2010 - 01:30:16 EET)
Multiple vulnerabilities in XAMPP (advisories #3 and #4) MustLive (Fri Jan 29 2010 - 01:39:37 EET)
Multiple vulnerabilities in XAMPP (advisories #5 and #6) MustLive (Fri Jan 29 2010 - 01:49:09 EET)
Multiple vulnerabilities in XAMPP (advisory #7) MustLive (Fri Jan 29 2010 - 01:55:38 EET)
[ MDVSA-2010:029 ] rootcerts security@mandriva.com (Fri Jan 29 2010 - 02:33:00 EET)
OCS Inventory NG Server <= 1.3b3 (login) Remote Authentication Bypass Nicolas DEROUET (Fri Jan 29 2010 - 11:08:52 EET)

Last message date: Fri Jan 29 2010 - 22:41:00 EET
Archived on: Fri Jan 29 2010 - 22:41:01 EET

286 messages sorted by: [ author ] [ thread ] [ subject ]

This archive was generated by hypermail 2b28 : Fri Jan 29 2010 - 22:41:01 EET

stdinBy Date

stdin
By Date