stdin
By Date

Most recent messages
269 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Tue Jun 01 2010 - 17:46:28 EEST
Ending: Wed Jun 30 2010 - 23:28:39 EEST

Winamp v5.571 malicious AVI file handling DoS Vulnerability praveen_recker@sify.com (Mon May 31 2010 - 15:32:39 EEST)
RE: Ghostscript 8.64 executes random code at startup Michael Wojcik (Mon May 31 2010 - 23:25:43 EEST)
Re: DoS vulnerabilities in Firefox, Internet Explorer, Chrome and Opera John Smith (Tue Jun 01 2010 - 00:02:15 EEST)
RE: Nginx 0.8.35 Space Character Remote Source Disclosure reply-to-list@mailinator.com (Tue Jun 01 2010 - 03:02:05 EEST)
Re: Nginx 0.8.35 Space Character Remote Source Disclosure Zach (Tue Jun 01 2010 - 05:26:22 EEST)
[Bkis-02-2010] Multiple Vulnerabilities in CMS Made Simple - Bkis Bkis (Mon Jun 21 2010 - 13:36:40 EEST)
DoS vulnerability in Internet Explorer MustLive (Tue Jun 01 2010 - 15:40:53 EEST)
SQL injection vulnerability in Ecomat CMS advisory@htbridge.ch (Tue Jun 01 2010 - 18:37:36 EEST)
XSS vulnerability in Ecomat CMS advisory@htbridge.ch (Tue Jun 01 2010 - 18:37:16 EEST)
[ GLSA 201006-01 ] FreeType 1: User-assisted execution of arbitrary code Alex Legler (Tue Jun 01 2010 - 18:39:19 EEST)
Applicure dotDefender 4.0 administrative interface cross site scripting Sandro Gauci (Tue Jun 01 2010 - 21:16:46 EEST)
Re: [Full-disclosure] PuTTY private key passphrase stealing attack halfdog (Tue Jun 01 2010 - 09:26:11 EEST)
[ GLSA 201006-02 ] CamlImages: User-assisted execution of arbitrary code Alex Legler (Tue Jun 01 2010 - 18:39:28 EEST)
PuTTY private key passphrase stealing attack Jan Schejbal (Tue Jun 01 2010 - 03:47:07 EEST)
[ GLSA 201006-03 ] ImageMagick: User-assisted execution of arbitrary code Alex Legler (Tue Jun 01 2010 - 18:39:32 EEST)
Re: [Full-disclosure] PuTTY private key passphrase stealing attack Rob Fuller (Tue Jun 01 2010 - 08:07:39 EEST)
Re: [Full-disclosure] PuTTY private key passphrase stealing attack Borja Marcos (Tue Jun 01 2010 - 13:37:16 EEST)
[ GLSA 201006-04 ] xine-lib: User-assisted execution of arbitrary code Alex Legler (Tue Jun 01 2010 - 18:39:36 EEST)
Onapsis Research Labs: Onapsis Bizploit - The opensource ERP Penetration Testing framework Onapsis Research Labs (Tue Jun 01 2010 - 17:31:25 EEST)
[ GLSA 201006-05 ] Wireshark: Multiple vulnerabilities Tobias Heinlein (Tue Jun 01 2010 - 18:41:05 EEST)
[ GLSA 201006-06 ] Transmission: Multiple vulnerabilities Tobias Heinlein (Tue Jun 01 2010 - 18:41:48 EEST)
[ GLSA 201006-07 ] SILC: Multiple vulnerabilities Tobias Heinlein (Tue Jun 01 2010 - 18:43:12 EEST)
ZDI-10-090: Novell ZENworks Configuration Management Preboot Service Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 01 2010 - 20:00:13 EEST)
[ GLSA 201006-08 ] nano: Multiple vulnerabilities Tobias Heinlein (Tue Jun 01 2010 - 18:43:39 EEST)
[ GLSA 201006-09 ] sudo: Privilege escalation Tobias Heinlein (Tue Jun 01 2010 - 18:44:17 EEST)
Re: RE: Nginx 0.8.35 Space Character Remote Source Disclosure info@securitylab.ir (Tue Jun 01 2010 - 18:42:51 EEST)
SFCB vulnerabilities Nicolas Grégoire (Tue Jun 01 2010 - 23:12:16 EEST)
Re: Nginx 0.8.35 Space Character Remote Source Disclosure Mailing lists at Core Security Technologies (Tue Jun 01 2010 - 23:44:21 EEST)
[20100501] - Core - Joomla! Multiple XSS Vulnerabilities in Back End Administrative Module Core Components Riyaz Walikar (Wed Jun 02 2010 - 00:19:40 EEST)
Trend Micro Data Loss Prevention 5.2 Data Leakage nitrØus (Wed Jun 02 2010 - 04:11:29 EEST)
Wing FTP Server - Cross Site Scripting Vulnerability werew01f (Wed Jun 02 2010 - 12:35:33 EEST)
TEHTRI-Security: Many 0days soon released at SyScan Singapore 2010 Laurent OUDOT at TEHTRI-Security (Wed Jun 02 2010 - 13:12:46 EEST)
[ GLSA 201006-10 ] multipath-tools: World-writeable socket Stefan Behte (Wed Jun 02 2010 - 19:45:35 EEST)
[ GLSA 201006-11 ] BIND: Multiple vulnerabilities Stefan Behte (Wed Jun 02 2010 - 19:47:45 EEST)
[ GLSA 201006-12 ] Fetchmail: Multiple vulnerabilities Stefan Behte (Wed Jun 02 2010 - 19:48:40 EEST)
DoS vulnerabilities in Firefox, Internet Explorer, Chrome and Opera MustLive (Wed Jun 02 2010 - 23:04:12 EEST)
[Suspected Spam][USN-946-1] Net-SNMP vulnerability Kees Cook (Wed Jun 02 2010 - 23:30:57 EEST)
[ GLSA 201006-13 ] Smarty: Multiple vulnerabilities Alex Legler (Thu Jun 03 2010 - 00:18:15 EEST)
[ GLSA 201006-14 ] Newt: User-assisted execution of arbitrary code Alex Legler (Thu Jun 03 2010 - 00:18:32 EEST)
[security bulletin] HPSBUX02524 SSRT100089 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities security-alert@hp.com (Thu Jun 03 2010 - 01:02:58 EEST)
[security bulletin] HPSBUX02531 SSRT100108 rev.1 - HP-UX Running Apache-based Web Server, Remote Denial of Service (DoS), Unauthorized Access security-alert@hp.com (Thu Jun 03 2010 - 01:33:47 EEST)
[ GLSA 201006-15 ] XEmacs: User-assisted execution of arbitrary code Alex Legler (Thu Jun 03 2010 - 16:01:04 EEST)
[ GLSA 201006-16 ] GD: User-assisted execution of arbitrary code Alex Legler (Thu Jun 03 2010 - 16:01:08 EEST)
[ GLSA 201006-17 ] lighttpd: Denial of Service Alex Legler (Thu Jun 03 2010 - 16:01:13 EEST)
[security bulletin] HPSBST02536 SSRT100057 rev.1 - HP StorageWorks Storage Mirroring, Remote Unauthorized Access security-alert@hp.com (Thu Jun 03 2010 - 16:25:20 EEST)
[security bulletin] HPSBMA02538 SSRT100136 rev.1 - HP ServiceCenter Running on AIX, HP-UX, Linux, Solaris, and Windows, Remote Cross Site Scripting (XSS) security-alert@hp.com (Thu Jun 03 2010 - 16:32:58 EEST)
RE: [ GLSA 201006-13 ] Smarty: Multiple vulnerabilities Andrew Morum (Thu Jun 03 2010 - 17:57:05 EEST)
eFront Multiple Parameter Cross Site Scripting Vulnerabilities VUPEN Web Security (Thu Jun 03 2010 - 19:43:53 EEST)
Multiple vulnerabilities in Exim Dan Rosenberg (Thu Jun 03 2010 - 21:20:54 EEST)
RSA Key Manager SQL injection Vulnerability ( CVE-2010-1904 ) Kyle Quest (Thu Jun 03 2010 - 21:26:37 EEST)
Re[3]: DoS vulnerabilities in Firefox, Internet Explorer, Chrome, Opera and other browsers MustLive (Thu Jun 03 2010 - 23:12:52 EEST)
CA20100603-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Fri Jun 04 2010 - 02:47:50 EEST)
[Suspected Spam][USN-947-2] Linux kernel regression Kees Cook (Fri Jun 04 2010 - 09:35:36 EEST)
[ GLSA 201006-19 ] Bugzilla: Multiple vulnerabilities Alex Legler (Fri Jun 04 2010 - 08:15:02 EEST)
[ GLSA 201006-18 ] Oracle JRE/JDK: Multiple vulnerabilities Alex Legler (Fri Jun 04 2010 - 08:12:18 EEST)
[ GLSA 201006-20 ] Asterisk: Multiple vulnerabilities Alex Legler (Fri Jun 04 2010 - 08:15:14 EEST)
[USN-948-1] GnuTLS vulnerability Jamie Strandboge (Fri Jun 04 2010 - 02:08:54 EEST)
Vulnerabilities in Gigya Socialize for WordPress MustLive (Fri Jun 04 2010 - 20:12:21 EEST)
[security bulletin] HPSBUX02451 SSRT090137 rev.3 - HP-UX Running BIND, Remote Denial of Service (DoS) security-alert@hp.com (Sat Jun 05 2010 - 00:21:36 EEST)
Core FTP mini-sftp-server Several DoS and Directory Traversal Vulnerabilities leinakesi@gmail.com (Mon Jun 07 2010 - 11:35:47 EEST)
[SECURITY] [DSA 2055-1] New OpenOffice.org packages fix arbitrary code execution Nico Golde (Sat Jun 05 2010 - 20:40:15 EEST)
[SECURITY] [DSA 2054-1] New bind9 packages fix cache poisoning Florian Weimer (Fri Jun 04 2010 - 22:22:30 EEST)
[SECURITY] [DSA 2057-1] New mysql-dfsg-5.0 packages fix several vulnerabilities Giuseppe Iuculano (Mon Jun 07 2010 - 16:23:07 EEST)
SQL injection vulnerability in CuteSITE CMS advisory@htbridge.ch (Sat Jun 05 2010 - 17:43:33 EEST)
[SECURITY] [DSA 2056-1] New zonecheck packages fix cross-site scripting Sebastien Delafond (Sun Jun 06 2010 - 17:36:20 EEST)
Core FTP Server(SFTP module) 'open' and 'stat' Commands Remote Denial of Service Vulnerability leinakesi@gmail.com (Sun Jun 06 2010 - 13:27:14 EEST)
XSS vulnerability in CuteSITE CMS advisory@htbridge.ch (Sat Jun 05 2010 - 17:44:15 EEST)
XSRF (CSRF) in CuteSITE CMS advisory@htbridge.ch (Sat Jun 05 2010 - 17:43:49 EEST)
XSS vulnerability in boastMachine advisory@htbridge.ch (Sat Jun 05 2010 - 17:44:04 EEST)
SQL injection vulnerability in boastMachine advisory@htbridge.ch (Sat Jun 05 2010 - 17:43:22 EEST)
Re: RSA Key Manager SQL injection Vulnerability ( CVE-2010-1904 ) security_alert@emc.com (Sat Jun 05 2010 - 17:38:55 EEST)
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability (CVE-2010-1392) VUPEN Security Research (Tue Jun 08 2010 - 15:25:06 EEST)
The XCon2010 is coming xcon@huayongxingan.com (Tue Jun 08 2010 - 11:02:11 EEST)
Paessler - PRTG Traffic Grapher XSS Patrick Webster (Tue Jun 08 2010 - 15:56:31 EEST)
Recon 2010 - Speaker list, new additional capacity for sold-out training, party details Hugo Fortier (Mon Jun 07 2010 - 21:06:23 EEST)
Blue Arc Group - IgnitionSuite CMS WebDMailer unsubscribe issue Patrick Webster (Tue Jun 08 2010 - 09:23:09 EEST)
ArpON (Arp handler inspectiON) 2.0 released! Andrea Di Pasquale (Tue Jun 08 2010 - 15:31:47 EEST)
DoS attacks on email clients via protocol handlers MustLive (Sun Jun 06 2010 - 01:32:29 EEST)
[ MDVSA-2010:111 ] glibc security@mandriva.com (Tue Jun 08 2010 - 19:33:00 EEST)
ZDI-10-097: Apple Webkit ContentEditable moveParagraphs Uninitialized Element Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:39:39 EEST)
ZDI-10-091: Apple Webkit Attribute Child Removal Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 18:56:44 EEST)
ZDI-10-098: Apple Webkit First-Letter Pseudo-Element Style Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:45:03 EEST)
ZDI-10-096: Apple Webkit Recursive Use Element Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:34:09 EEST)
ZDI-10-099: Apple Webkit ProcessInstruction Target Error Message Insertion Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:47:29 EEST)
ZDI-10-095: Apple Webkit DOCUMENT_POSITION_DISCONNECTED Attribute Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:29:48 EEST)
ZDI-10-101: Apple Webkit SVG RadialGradiant Run-in Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:57:57 EEST)
ZDI-10-094: Apple Webkit SelectionController via Marquee Event Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:22:52 EEST)
ZDI-10-093: Apple Webkit CSS Charset Text Transformation Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:14:28 EEST)
ZDI-10-100: Apple Webkit ConditionEventListener Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:54:10 EEST)
ZDI-10-092: Apple Webkit Option Element ContentEditable Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 19:08:02 EEST)
ZDI-10-103: Microsoft Office Excel DBQueryExt Record Unspecified ADO Object Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 20:45:39 EEST)
ZDI-10-104: Microsoft Office Excel SxView Record Parsing Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 20:50:48 EEST)
ZDI-10-106: Hewlett-Packard OpenView NNM ovutil.dll getProxiedStorageAddress Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 21:04:03 EEST)
IS-2010-002 - Linksys WAP54Gv3 Remote Debug Root Shell Cristofaro Mune (Tue Jun 08 2010 - 21:57:00 EEST)
ZDI-10-102: Microsoft Internet Explorer Stylesheet Array Removal Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 20:33:45 EEST)
tool: ref_fuzz (CVE-2010-1259 / MS10-035 and more) Michal Zalewski (Tue Jun 08 2010 - 20:55:53 EEST)
ZDI-10-105: Hewlett-Packard OpenView NNM ovwebsnmpsrv.exe Bad Option Remote Code Execution Vulnerability ZDI Disclosures (Tue Jun 08 2010 - 21:02:00 EEST)
[security bulletin] HPSBMA02537 SSRT010027 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Tue Jun 08 2010 - 21:55:23 EEST)
[CORE-2010-0415] SQL Injection in CubeCart PHP Free & Commercial Shopping Cart Application CORE Security Technologies Advisories (Tue Jun 08 2010 - 21:40:30 EEST)
VUPEN Security Research - Microsoft Office Excel OBJ Stack Overflow Vulnerability (CVE-2010-0822) VUPEN Security Research (Wed Jun 09 2010 - 02:28:48 EEST)
VUPEN Security Research - Microsoft Office Excel RTD Heap Corruption Vulnerability (CVE-2010-1247) VUPEN Security Research (Wed Jun 09 2010 - 02:30:28 EEST)
VUPEN Security Research - Microsoft Office Excel EDG Heap Overflow Vulnerability (CVE-2010-1250) VUPEN Security Research (Wed Jun 09 2010 - 02:31:47 EEST)
VUPEN Security Research - Microsoft Office Excel SxView Memory Corruption Vulnerability (CVE-2010-1245) VUPEN Security Research (Wed Jun 09 2010 - 02:29:37 EEST)
Dlink Di-604 router authenticated user ping tool Xss and DoS Crash (Wed Jun 09 2010 - 01:05:11 EEST)
VUPEN Security Research - Microsoft Office Excel RTD Stack Overflow Vulnerability (CVE-2010-1246) VUPEN Security Research (Wed Jun 09 2010 - 02:30:02 EEST)
Re: [oss-security] [oCERT-2010-001] multiple http client unexpected download filename vulnerability Marcus Meissner (Wed Jun 09 2010 - 19:16:39 EEST)
[USN-950-1] MySQL vulnerabilities Marc Deslauriers (Wed Jun 09 2010 - 17:41:22 EEST)
[MajorSecurity SA-070]Plume CMS - change Admin Password via Cross-site Request Forgery david.kurz@majorsecurity.net (Wed Jun 09 2010 - 11:25:12 EEST)
RE: RSA Key Manager SQL injection Vulnerability ( CVE-2010-1904 ) Kyle Quest (Tue Jun 08 2010 - 23:06:02 EEST)
VUPEN Security Research - Microsoft Office Excel WOPT Heap Corruption Vulnerability (CVE-2010-0824) VUPEN Security Research (Wed Jun 09 2010 - 02:29:14 EEST)
Cisco Security Advisory: Vulnerabilities in Cisco Unified Contact Center Express Cisco Systems Product Security Incident Response Team (Wed Jun 09 2010 - 19:00:00 EEST)
Cisco Security Advisory: Cisco Application Extension Platform Privilege Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jun 09 2010 - 19:00:00 EEST)
CA20100608-01: Security Notice for CA PSFormX and WebScan ActiveX Controls Kotas, Kevin J (Wed Jun 09 2010 - 19:53:56 EEST)
VUPEN Security Research - Microsoft Office Excel HFPicture Buffer Overflow Vulnerability (CVE-2010-1248) VUPEN Security Research (Wed Jun 09 2010 - 02:30:52 EEST)
[MajorSecurity SA-068]Anantasoft Gazelle CMS - change admin password via Cross-site Request Forgery david.kurz@majorsecurity.net (Wed Jun 09 2010 - 11:15:59 EEST)
VUPEN Security Research - Microsoft Windows Kernel "GetDCEx()" Memory Corruption Vulnerability (CVE-2010-0484) VUPEN Security Research (Wed Jun 09 2010 - 02:32:06 EEST)
[MajorSecurity SA-069]Invision Power Board - stored Cross site Scripting david.kurz@majorsecurity.net (Wed Jun 09 2010 - 11:16:51 EEST)
VUPEN Security Research - Microsoft Office Excel ExternName Buffer Overflow Vulnerability (CVE-2010-1249) VUPEN Security Research (Wed Jun 09 2010 - 02:31:15 EEST)
McAfee UTM Firewall Help Reflected Cross-Site Scripting Adam Baldwin (Wed Jun 09 2010 - 23:26:34 EEST)
Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Tavis Ormandy (Thu Jun 10 2010 - 02:46:21 EEST)
PR09-17: Juniper Secure Access seriers (Juniper IVE) authenticated XSS & REDIRECTION research (Thu Jun 10 2010 - 11:33:41 EEST)
TPTI-10-03: Sophos Anti-Virus SAVOnAccessFilter Local Privilege Escalation Vulnerability ZDI Disclosures (Thu Jun 10 2010 - 00:58:57 EEST)
[ MDVSA-2010:113 ] wireshark security@mandriva.com (Thu Jun 10 2010 - 17:41:00 EEST)
Awcm Cms Local File Inclusion Vulnerability x0.root@gmail.com (Thu Jun 10 2010 - 03:19:57 EEST)
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities Aurelien Jarno (Thu Jun 10 2010 - 11:13:46 EEST)
Re: Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Susan Bradley (Thu Jun 10 2010 - 18:36:09 EEST)
Re: Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Tavis Ormandy (Thu Jun 10 2010 - 19:00:07 EEST)
Re: Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Susan Bradley (Thu Jun 10 2010 - 19:26:47 EEST)
Re: Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Tavis Ormandy (Thu Jun 10 2010 - 19:16:09 EEST)
Re: Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Susan Bradley (Thu Jun 10 2010 - 19:02:37 EEST)
Vulnerabilities in Belavir for WordPress MustLive (Thu Jun 10 2010 - 19:26:21 EEST)
[MajorSecurity SA-071]phpFaber CMS - Multiple stored Cross-site Scripting issues david.kurz@majorsecurity.net (Thu Jun 10 2010 - 22:53:46 EEST)
Re: Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly Jhfjjf Hfdsjj (Thu Jun 10 2010 - 21:28:03 EEST)
[SECURITY] [DSA 2059-1] New pcsc-lite packages fix privilege escalation Thijs Kinkhorst (Thu Jun 10 2010 - 21:59:47 EEST)
iDefense Security Advisory 06.07.10: Multiple Vendor WebKit HTML Caption Use After Free Vulnerability iDefense Labs (Thu Jun 10 2010 - 23:50:22 EEST)
ZDI-10-107: Multiple Sourcefire Products Static Web SSL Keys Vulnerability ZDI Disclosures (Fri Jun 11 2010 - 01:53:54 EEST)
iDefense Security Advisory 06.10.10: Adobe Flash Player Out Of Bounds Memory Indexing Vulnerability iDefense Labs (Fri Jun 11 2010 - 02:04:00 EEST)
iDefense Security Advisory 06.10.10: Adobe Flash Player Use-After-Free Vulnerability iDefense Labs (Fri Jun 11 2010 - 02:06:49 EEST)
Secunia Research: Creative Software AutoUpdate Engine 2 ActiveX Control Buffer Overflow Secunia Research (Fri Jun 11 2010 - 13:32:59 EEST)
[ MDVSA-2010:114 ] dhcp security@mandriva.com (Fri Jun 11 2010 - 15:51:00 EEST)
Re: [oss-security] [oCERT-2010-001] multiple http client unexpected download filename vulnerability Solar Designer (Fri Jun 11 2010 - 11:53:25 EEST)
SQL injection vulnerability in MODx CMS and Application Framework advisory@htbridge.ch (Fri Jun 11 2010 - 23:02:59 EEST)
[ MDVSA-2010:115 ] perl security@mandriva.com (Sat Jun 12 2010 - 00:12:00 EEST)
SQL injection vulnerability in MODx CMS and Application Framework advisory@htbridge.ch (Fri Jun 11 2010 - 23:03:20 EEST)
SQL injection vulnerability in AneCMS advisory@htbridge.ch (Fri Jun 11 2010 - 23:03:49 EEST)
Cherokee Web Server 0.5.3 Multiple Vulnerabilities info@securitylab.ir (Sat Jun 12 2010 - 17:56:42 EEST)
Stored XSS vulnerability in AneCMS blog module advisory@htbridge.ch (Fri Jun 11 2010 - 23:03:41 EEST)
[ MDVSA-2010:116 ] perl security@mandriva.com (Sat Jun 12 2010 - 01:09:00 EEST)
[advisory] httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068 William A. Rowe Jr. (Fri Jun 11 2010 - 22:50:51 EEST)
SQL injection vulnerability in MODx CMS advisory@htbridge.ch (Fri Jun 11 2010 - 23:02:37 EEST)
[MajorSecurity SA-073]Subdreamer CMS - SQL injection vulnerability david.kurz@majorsecurity.net (Mon Jun 14 2010 - 20:10:05 EEST)
Re: SQL injection vulnerability in boastMachine security curmudgeon (Sun Jun 13 2010 - 09:41:09 EEST)
[security bulletin] HPSBMA02537 SSRT010027 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Mon Jun 14 2010 - 21:45:02 EEST)
[security bulletin] HPSBPI02532 SSRT100111 rev.2 - HP MFP Digital Sending Software Running on Windows, Local Unauthorized Access security-alert@hp.com (Sat Jun 12 2010 - 19:13:51 EEST)
DoS vulnerabilities in Firefox, Internet Explorer, Chrome and Opera MustLive (Sun Jun 13 2010 - 19:55:04 EEST)
[SECURITY] [DSA 2060-1] New cacti packages fix SQL injection Nico Golde (Sun Jun 13 2010 - 18:27:18 EEST)
[ GLSA 201006-21 ] UnrealIRCd: Multiple vulnerabilities Alex Legler (Mon Jun 14 2010 - 22:20:25 EEST)
[SECURITY] [DSA 2054-2] New bind9 packages fix cache poisoning Martin Schulze (Tue Jun 15 2010 - 23:05:57 EEST)
CORE-2010-0514: XnView MBM Processing Heap Overflow CORE Security Technologies Advisories (Mon Jun 14 2010 - 23:23:14 EEST)
Re: Dlink Di-604 router authenticated user ping tool Xss and DoS swbaes@shinbiro.com (Wed Jun 16 2010 - 04:48:53 EEST)
TitanFTP Server Arbitrary File Disclosure bill@accensussecurity.com (Wed Jun 16 2010 - 01:06:37 EEST)
VUPEN Security Research - Adobe Flash Player "newfunction" Invalid Pointer Vulnerability (CVE-2010-2174) VUPEN Security Research (Wed Jun 16 2010 - 11:46:09 EEST)
VUPEN Security Research - Adobe Flash Player GIF/JPEG Data Parsing Heap Overflow Vulnerabilities (CVE-2010-2167) VUPEN Security Research (Wed Jun 16 2010 - 12:03:42 EEST)
Nakid CMS (fckeditor) Remote Arbitrary File Upload Exploit g1xsystem@windowslive.com (Wed Jun 16 2010 - 19:29:47 EEST)
VUPEN Security Research - Adobe Flash Player "newclass" Invalid Pointer Vulnerability (CVE-2010-2173) VUPEN Security Research (Wed Jun 16 2010 - 11:44:08 EEST)
ZDI-10-108: HP OpenView NNM ovwebsnmpsrv.exe Command Line Argument Remote Code Execution Vulnerability ZDI Disclosures (Wed Jun 16 2010 - 21:30:27 EEST)
[Onapsis Security Advisory 2010-005] SAP J2EE Telnet Administration Security Check Bypass Onapsis Research Labs (Wed Jun 16 2010 - 23:38:31 EEST)
[ MDVSA-2010:117 ] cacti security@mandriva.com (Wed Jun 16 2010 - 21:09:00 EEST)
[SECURITY] [DSA 2061-1] New samba packages fix arbitrary code execution Nico Golde (Wed Jun 16 2010 - 23:40:50 EEST)
[USN-951-1] Samba vulnerability Kees Cook (Wed Jun 16 2010 - 20:40:05 EEST)
ZDI-10-110: Adobe Flash Player Multiple Tag JPEG Parsing Remote Code Execution Vulnerability ZDI Disclosures (Wed Jun 16 2010 - 22:13:10 EEST)
ZDI-10-109: Adobe Flash Player Multiple Atom MP4 Parsing Remote Code Execution Vulnerability ZDI Disclosures (Wed Jun 16 2010 - 22:09:59 EEST)
[security bulletin] HPSBOV02540 SSRT090249 rev.1 - HP SSL for OpenVMS, Remote Unauthorized Data Injection, Denial of Service(Dos) security-alert@hp.com (Thu Jun 17 2010 - 01:02:17 EEST)
iDefense Security Advisory 06.16.10: Samba 3.3.12 Memory Corruption Vulnerability iDefense Labs (Thu Jun 17 2010 - 01:36:48 EEST)
[MajorSecurity SA-074]CMS RedAks 2.0 - Multiple Cross-site Scripting issues david.kurz@majorsecurity.net (Thu Jun 17 2010 - 10:20:11 EEST)
TurboFTP Server Directory Traversal Vulnerability leinakesi@gmail.com (Thu Jun 17 2010 - 10:30:41 EEST)
[SECURITY] [DSA 2062-1] New sudo packages fix environment sanitization bypass vulnerability Giuseppe Iuculano (Thu Jun 17 2010 - 12:19:00 EEST)
[ MDVSA-2010:118 ] sudo security@mandriva.com (Thu Jun 17 2010 - 16:23:00 EEST)
TEHTRI-Security released 13 0days against web tools used by evil attackers Laurent OUDOT at TEHTRI-Security (Thu Jun 17 2010 - 20:23:10 EEST)
[ MDVSA-2010:119 ] samba security@mandriva.com (Thu Jun 17 2010 - 18:37:00 EEST)
Vulnerabilities in Firebook MustLive (Thu Jun 17 2010 - 21:57:58 EEST)
[SECURITY] [DSA 2063-1] New pmount packages fix denial of service Giuseppe Iuculano (Thu Jun 17 2010 - 22:02:14 EEST)
TitanFTP Server COMB directory traversal bill@accensussecurity.com (Thu Jun 17 2010 - 22:56:21 EEST)
[security bulletin] HPSBUX02543 SSRT100152 rev.1 - HP-UX Running Apache with PHP, Remote Denial of Service (DoS), Unauthorized Access, security-alert@hp.com (Thu Jun 17 2010 - 20:44:54 EEST)
CVE-2010-1622: Spring Framework execution of arbitrary code s2-security (Fri Jun 18 2010 - 13:05:28 EEST)
XCon 2010 XFocus Information Security Conference Call for Paper xcon@huayongxingan.com (Fri Jun 18 2010 - 10:48:03 EEST)
Re: Nakid CMS (fckeditor) Remote Arbitrary File Upload Exploit Jaison Salu John (Thu Jun 17 2010 - 12:32:41 EEST)
NSOADV-2010-008: AnNoText Third-Party ActiveX Control Buffer Overflow NSO Research (Sat Jun 19 2010 - 18:50:59 EEST)
NSOADV-2010-009: AnNoText Third-Party ActiveX Control file overwrite vulnerability NSO Research (Sat Jun 19 2010 - 18:51:05 EEST)
Vulnerabilities in eSitesBuilder MustLive (Sat Jun 19 2010 - 21:28:26 EEST)
Wing FTP Server PORT Command DoS Vulnerability sk (Mon Jun 21 2010 - 09:46:58 EEST)
XSS vulnerability in Scribe CMS advisory@htbridge.ch (Mon Jun 21 2010 - 10:49:46 EEST)
XSS vulnerability in Scribe CMS advisory@htbridge.ch (Mon Jun 21 2010 - 10:50:18 EEST)
[MajorSecurity SA-075]CMS RedAks 2.0 - SQL injection vulnerability david.kurz@majorsecurity.net (Sat Jun 19 2010 - 10:46:05 EEST)
XSS vulnerability in Scribe CMS advisory@htbridge.ch (Mon Jun 21 2010 - 10:51:15 EEST)
Stored XSS vulnerability in synType CMS comment text field advisory@htbridge.ch (Mon Jun 21 2010 - 10:51:40 EEST)
XSS vulnerability in the search module of synType CMS advisory@htbridge.ch (Mon Jun 21 2010 - 10:51:47 EEST)
Sysax Multi Server "open", "unlink", "mkdir", "scp_get" Commands DoS Vulnerabilities leinakesi@gmail.com (Mon Jun 21 2010 - 13:31:41 EEST)
Remote Arbitrary Code Execution Vulnerability in UFO: Alien Invasion jason@ngssoftware.com (Fri Jun 18 2010 - 23:37:12 EEST)
[ MDVSA-2010:120 ] squirrelmail security@mandriva.com (Mon Jun 21 2010 - 18:43:00 EEST)
[USN-954-1] tiff vulnerabilities Kees Cook (Mon Jun 21 2010 - 22:39:25 EEST)
[USN-955-1] OPIE vulnerability Marc Deslauriers (Mon Jun 21 2010 - 21:49:30 EEST)
ZDI-10-112: Novell Access Manager Arbitrary File Upload Remote Code Execution Vulnerability ZDI Disclosures (Mon Jun 21 2010 - 20:39:41 EEST)
[USN-953-1] fastjar vulnerability Marc Deslauriers (Mon Jun 21 2010 - 21:48:49 EEST)
CSRF in PHPWCMS 1.4.5 labs@redteamsecure.com (Mon Jun 21 2010 - 20:32:06 EEST)
ZDI-10-111: Adobe Flash Player LocalConnection Memory Corruption Remote Code Execution Vulnerability ZDI Disclosures (Mon Jun 21 2010 - 20:16:19 EEST)
[USN-955-2] libpam-opie vulnerability Marc Deslauriers (Mon Jun 21 2010 - 21:50:03 EEST)
[USN-952-1] CUPS vulnerabilities Marc Deslauriers (Mon Jun 21 2010 - 21:48:03 EEST)
[scip_Advisory 4142] Skype Client for Mac Chat Unicode Denial of Service Marc Ruef (Tue Jun 22 2010 - 10:51:14 EEST)
[ MDVSA-2010:121 ] pango security@mandriva.com (Tue Jun 22 2010 - 18:56:01 EEST)
[security bulletin] HPSBUX02541 SSRT100145 rev.1 - HP-UX Running Tomcat Servlet Engine, Remote Increase in Privilege, Arbitrary File Morris, John R. (SSRT) (Tue Jun 22 2010 - 20:49:14 EEST)
[ MDVSA-2010:122 ] fastjar security@mandriva.com (Tue Jun 22 2010 - 23:52:00 EEST)
IS-2010-003 - Linksys WAP54Gv3 debug.cgi Cross-Site Scripting Cristofaro Mune (Wed Jun 23 2010 - 10:26:11 EEST)
[security bulletin] HPSBMA02439 SSRT080082 rev.2 - HP OpenView SNMP Emanate Master Agent Running on HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access security-alert@hp.com (Wed Jun 23 2010 - 16:24:19 EEST)
Apache Axis Session Fixation Vulnerability Tiago Ferreira Barbosa (Wed Jun 23 2010 - 17:28:52 EEST)
Microsoft Help Files (.CHM): 'Locked File' Feature Bypass Paul Craig (Wed Jun 23 2010 - 05:05:56 EEST)
Weborf DCA-00012 Vulnerability Report Crash (Wed Jun 23 2010 - 15:08:12 EEST)
RE: [Full-disclosure] Microsoft Help Files (.CHM): 'Locked File' Feature Bypass Thor (Hammer of God) (Wed Jun 23 2010 - 18:23:27 EEST)
[ MDVSA-2010:123 ] libneon0.27 security@mandriva.com (Wed Jun 23 2010 - 20:31:01 EEST)
ZDI-10-113: Mozilla Firefox XSLT Sort Remote Code Execution Vulnerability ZDI Disclosures (Wed Jun 23 2010 - 21:06:33 EEST)
CORE-2010-0316 - Novell iManager Multiple Vulnerabilities CORE Security Technologies Advisories (Thu Jun 24 2010 - 00:30:45 EEST)
[ MDVSA-2010:124 ] pulseaudio security@mandriva.com (Thu Jun 24 2010 - 03:41:00 EEST)
[ MDVSA-2010:125 ] firefox security@mandriva.com (Thu Jun 24 2010 - 11:40:00 EEST)
SQL injection vulnerability in WebDB advisory@htbridge.ch (Thu Jun 24 2010 - 17:58:10 EEST)
XSS vulnerability in ForumCMS advisory@htbridge.ch (Thu Jun 24 2010 - 17:57:29 EEST)
SQL injection vulnerability in WebDB advisory@htbridge.ch (Thu Jun 24 2010 - 17:57:53 EEST)
[ MDVSA-2010:126 ] mozilla-thunderbird security@mandriva.com (Thu Jun 24 2010 - 18:06:00 EEST)
[Suspected Spam]Vulnerabilities in Cimy Counter for WordPress MustLive (Thu Jun 24 2010 - 20:48:25 EEST)
VMSA-2010-0010 ESX 3.5 third party update for Service Console kernel VMware Security team (Fri Jun 25 2010 - 08:40:03 EEST)
ZDI-10-114: Adobe Flash Player AVM2 getouterscope Opcode Remote Code Execution Vulnerability ZDI Disclosures (Fri Jun 25 2010 - 19:17:31 EEST)
ZDI-10-115: Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability ZDI Disclosures (Fri Jun 25 2010 - 19:24:22 EEST)
[SWRX-2010-001] Cisco ASA HTTP Response Splitting Vulnerability ctu-no-reply@secureworks.com (Fri Jun 25 2010 - 01:09:02 EEST)
[security bulletin] HPSBUX02544 SSRT100107 rev.1 - HP-UX Running Kerberos, Remote Denial of Service (DoS), Execution of Arbitrary Code security-alert@hp.com (Fri Jun 25 2010 - 05:02:46 EEST)
Denial-of-Service Vulnerability in IDA Pro jason@ngssoftware.com (Mon Jun 28 2010 - 13:54:35 EEST)
Nuance OmniPage 16 Professional installs multiple vulnerable Microsoft runtime libraries Stefan Kanthak (Sat Jun 26 2010 - 17:29:29 EEST)
Re: Sysax Multi Server "open", "unlink", "mkdir", "scp_get" Commands DoS Vulnerabilities rob@accensussecurity.com (Sun Jun 27 2010 - 02:45:59 EEST)
[SECURITY] [DSA 2064-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Sun Jun 27 2010 - 23:39:12 EEST)
[SECURITY] [DSA 2065-1] New kvirc packages fix several vulnerabilities Moritz Muehlenhoff (Sun Jun 27 2010 - 23:57:31 EEST)
IS-2010-004 - D-Link DAP-1160 Unauthenticated Remote Configuration Cristofaro Mune (Mon Jun 28 2010 - 16:49:56 EEST)
New IETF Internet-Drafts on TCP timestamps Fernando Gont (Sat Jun 26 2010 - 12:01:32 EEST)
ref_fuzz and other fun bugs Michal Zalewski (Mon Jun 28 2010 - 20:15:25 EEST)
London DEFCON June meet - DC4420 - Wed 30th June 2010 alien DC4420 (Mon Jun 28 2010 - 19:10:33 EEST)
SQL injection vulnerability in TomatoCMS advisory@htbridge.ch (Tue Jun 29 2010 - 11:04:49 EEST)
XSS vulnerability in PortalApp advisory@htbridge.ch (Tue Jun 29 2010 - 11:04:58 EEST)
SQL injection vulnerability in Grafik CMS advisory@htbridge.ch (Tue Jun 29 2010 - 11:05:18 EEST)
XSS vulnerability in Grafik CMS advisory@htbridge.ch (Tue Jun 29 2010 - 11:05:35 EEST)
XSS vulnerability in PortalApp advisory@htbridge.ch (Tue Jun 29 2010 - 11:05:42 EEST)
XSS vulnerability in PortalApp advisory@htbridge.ch (Tue Jun 29 2010 - 11:05:49 EEST)
XSS vulnerability in Grafik CMS advisory@htbridge.ch (Tue Jun 29 2010 - 11:06:04 EEST)
Extended deadline, Call for Papers EC2ND 2010 Konrad Rieck (Tue Jun 29 2010 - 14:05:37 EEST)
Secunia Research: TaskFreak "password" SQL Injection Vulnerability Secunia Research (Tue Jun 29 2010 - 18:09:25 EEST)
Secunia Research: TaskFreak "tznMessage" Cross-Site Scripting Vulnerability Secunia Research (Tue Jun 29 2010 - 18:09:34 EEST)
iDefense Security Advisory 06.21.10: Multiple Vendor LibTIFF 3.9.2 Stack Buffer Overflow Vulnerability iDefense Labs (Tue Jun 29 2010 - 01:43:41 EEST)
IS-2010-005 - D-Link DAP-1160 Authentication Bypass Cristofaro Mune (Tue Jun 29 2010 - 13:34:56 EEST)
[USN-927-4] nss vulnerability Jamie Strandboge (Tue Jun 29 2010 - 22:21:00 EEST)
SAP's web module OLK SQL Injection vulnerability salchoman@gmail.com (Tue Jun 29 2010 - 21:44:28 EEST)
[USN-927-5] nspr update Jamie Strandboge (Tue Jun 29 2010 - 22:39:17 EEST)
[USN-930-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Tue Jun 29 2010 - 23:44:58 EEST)
[USN-930-2] apturl, Epiphany, gecko-sharp, gnome-python-extras, liferea, rhythmbox, totem, ubufox, yelp update Jamie Strandboge (Wed Jun 30 2010 - 00:34:41 EEST)
[0day] Microsoft mshtml.dll CTimeoutEventList::InsertIntoTimeoutList memory leak Reversemode (Wed Jun 30 2010 - 01:04:47 EEST)
Secunia Research: Adobe Reader JPEG Uninitialised Memory Vulnerability Secunia Research (Wed Jun 30 2010 - 10:54:39 EEST)
Secunia Research: Adobe Reader GIF Image Parsing Array-Indexing Vulnerability Secunia Research (Wed Jun 30 2010 - 10:55:01 EEST)
Secunia Research: Joomla BookLibrary Component Four SQL Injection Vulnerabilities Secunia Research (Wed Jun 30 2010 - 14:06:07 EEST)
VUPEN Security Research - Adobe Acrobat and Reader #1023 Tag Buffer Overflow Vulnerability (CVE-2010-2212) VUPEN Security Research (Wed Jun 30 2010 - 17:11:47 EEST)
VUPEN Security Research - Adobe Acrobat and Reader "newfunction" Memory Corruption Vulnerability (CVE-2010-2168) VUPEN Security Research (Wed Jun 30 2010 - 17:18:01 EEST)
VUPEN Security Research - Adobe Acrobat and Reader "pushstring" Memory Corruption Vulnerability (CVE-2010-2201) VUPEN Security Research (Wed Jun 30 2010 - 17:22:14 EEST)
VUPEN Security Research - Adobe Acrobat and Reader "newclass" Memory Corruption Vulnerability (CVE-2010-1285) VUPEN Security Research (Wed Jun 30 2010 - 17:15:05 EEST)
ZDI-10-116: Adobe Reader CLOD Progressive Mesh Continuation Resolution Remote Code Execution Vulnerability ZDI Disclosures (Wed Jun 30 2010 - 20:59:14 EEST)
[USN-930-3] Firefox regression Jamie Strandboge (Wed Jun 30 2010 - 22:40:20 EEST)

Last message date: Wed Jun 30 2010 - 23:28:39 EEST
Archived on: Wed Jun 30 2010 - 23:28:40 EEST

269 messages sorted by: [ author ] [ thread ] [ subject ]

This archive was generated by hypermail 2b28 : Wed Jun 30 2010 - 23:28:40 EEST

stdinBy Date

stdin
By Date