stdin
By Date

• KeePass version 2.12 <= Insecure DLL Hijacking Vulnerability (dwmapi.dll) YGN Ethical Hacker Group (Tue Aug 31 2010 - 22:28:47 EEST)
• [SECURITY] [DSA 2101-1] New wireshark packages fix several vulnerabilities Moritz Muehlenhoff (Wed Sep 01 2010 - 00:28:44 EEST)
• [ MDVSA-2010:167 ] perl-libwww-perl security@mandriva.com (Wed Sep 01 2010 - 02:23:00 EEST)
• VMSA-2010-0013 VMware Security Team (Wed Sep 01 2010 - 09:30:35 EEST)
• XSS vulnerability in Amiro.CMS FAQ advisory@htbridge.ch (Wed Sep 01 2010 - 13:36:52 EEST)
• VMSA-2010-0013 VMware ESX third party updates for Service Console VMware Security Team (Wed Sep 01 2010 - 09:34:33 EEST)
• XSS vulnerability in Rumba CMS advisory@htbridge.ch (Wed Sep 01 2010 - 13:36:46 EEST)
• Tortoise SVN DLL Hijacking Vulnerability nikhil_uitrgpv@yahoo.co.in (Wed Sep 01 2010 - 05:46:07 EEST)
• Online Binary Planting Exposure Test ACROS Lists (Wed Sep 01 2010 - 14:20:34 EEST)
• XSS vulnerability in ArtGK CMS forum advisory@htbridge.ch (Wed Sep 01 2010 - 13:37:02 EEST)
• XSS vulnerability in Rumba CMS tags advisory@htbridge.ch (Wed Sep 01 2010 - 13:36:37 EEST)
• XSS vulnerability in ArtGK CMS advisory@htbridge.ch (Wed Sep 01 2010 - 13:36:41 EEST)
• {PRL} Novell Netware OpenSSH Remote Stack Overflow Francis Provencher (Thu Sep 02 2010 - 17:26:36 EEST)
• Vulnerabilities in CMS WebManager-Pro MustLive (Thu Sep 02 2010 - 16:59:40 EEST)
• [USN-982-1] Wget vulnerability Marc Deslauriers (Thu Sep 02 2010 - 16:49:11 EEST)
• [ MDVSA-2010:169 ] mozilla-thunderbird security@mandriva.com (Thu Sep 02 2010 - 16:54:01 EEST)
• [ MDVSA-2010:168 ] openssl security@mandriva.com (Wed Sep 01 2010 - 19:27:01 EEST)
• Moovida Media Player version 2.0.0.15 Insecure DLL Hijacking Vulnerability (libc.dll,quserex.dll) YGN Ethical Hacker Group (Thu Sep 02 2010 - 10:23:54 EEST)
• [ MDVSA-2010:170 ] wget security@mandriva.com (Fri Sep 03 2010 - 01:18:01 EEST)
• [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution Sebastien Delafond (Fri Sep 03 2010 - 13:13:50 EEST)
• Rooted CON 2011 - Call for Papers Román Ramírez (Wed Sep 01 2010 - 15:36:44 EEST)
• [security bulletin] HPSBMA02572 SSRT100082 rev.1 - HP Operations Agent Running on Windows, Local Elevation of Privileges and Remote Execution of Arbitrary Code security-alert@hp.com (Fri Sep 03 2010 - 00:27:25 EEST)
• [ GLSA 201009-01 ] wxGTK: User-assisted execution of arbitrary code Alex Legler (Fri Sep 03 2010 - 00:19:49 EEST)
• nullcon Goa dwitiya (2.0) Call For Papers nullcon (Wed Sep 01 2010 - 15:55:12 EEST)
• VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249) VUPEN Security Research (Fri Sep 03 2010 - 15:59:19 EEST)
• Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation? steve.povolny@hp.com (Fri Sep 03 2010 - 19:53:06 EEST)
• Microsoft Internet explorer 8 DLL Hijacking (IESHIMS.DLL) YGN Ethical Hacker Group (Sat Sep 04 2010 - 07:16:06 EEST)
• chillyCMS Multiple Vulnerabilities admin@bugreport.ir (Sun Sep 05 2010 - 14:14:13 EEST)
• Joomla Component Clantools version 1.2.3 Multiple Blind SQL Injection Vulnerabilities sattler@solidmedia.de (Sun Sep 05 2010 - 14:22:38 EEST)
• [SECURITY] [DSA-2104-1] New quagga packages fix denial of service Florian Weimer (Mon Sep 06 2010 - 22:20:44 EEST)
• Joomla Component Clantools version 1.5 Blind SQL Injection Vulnerability sattler@solidmedia.de (Sun Sep 05 2010 - 14:23:18 EEST)
• Re: KeePass version 2.12 <= Insecure DLL Hijacking Vulnerability (dwmapi.dll) YGN Ethical Hacker Group (Tue Sep 07 2010 - 08:57:51 EEST)
• [TEHTRI-Security Training + 0days] "Hunting Web Attackers" at HITBSecConf Laurent OUDOT at TEHTRI-Security (Tue Sep 07 2010 - 16:01:09 EEST)
• nmap <= 5.21 is vulnerable to Windows DLL Hijacking Vulnerability. nikhil_uitrgpv@yahoo.co.in (Sun Sep 05 2010 - 16:27:53 EEST)
• [USN-983-1] Sudo vulnerability Jamie Strandboge (Tue Sep 07 2010 - 16:46:35 EEST)
• Call for Papers H2HC Cancun/Mexico and H2HC Sao Paulo/Brazil Rodrigo Rubira Branco (BSDaemon) (Sun Sep 05 2010 - 22:45:20 EEST)
• XSS in Horde Application Framework <=3.3.8, icon_browser.php Moritz Naumann (Mon Sep 06 2010 - 19:31:13 EEST)
• H2HC São Paulo - Capture the Captcha Rodrigo Rubira Branco (BSDaemon) (Sun Sep 05 2010 - 22:59:04 EEST)
• [ GLSA 201009-03 ] sudo: Privilege Escalation Alex Legler (Tue Sep 07 2010 - 15:08:02 EEST)
• [SECURITY] [DSA-2103-1] New smbind packages fix sql injection Giuseppe Iuculano (Mon Sep 06 2010 - 00:30:12 EEST)
• The Zed Attack Proxy (ZAP) version 1.0.0 psiinon (Mon Sep 06 2010 - 23:21:56 EEST)
• [ MDVSA-2010:171 ] lvm2 security@mandriva.com (Mon Sep 06 2010 - 17:05:01 EEST)
• Security problems in Zenphoto version 1.3 Bogdan Calin (Tue Sep 07 2010 - 16:09:33 EEST)
• Recent developments in FireWire Attacks Freddie Witherden (Tue Sep 07 2010 - 19:14:03 EEST)
• Re: etax 2010 failure to validate remote ssl certificate properly dave b (Tue Sep 07 2010 - 22:17:18 EEST)
• [SECURITY] [DSA-2105-1] New freetype packages fix several vulnerabilities Giuseppe Iuculano (Tue Sep 07 2010 - 23:39:32 EEST)
• [ GLSA 201009-04 ] SARG: User-assisted execution of arbitrary code Stefan Behte (Tue Sep 07 2010 - 22:13:56 EEST)
• [SECURITY] [DSA 2098-2] New typo3-src packages fix regression Thijs Kinkhorst (Tue Sep 07 2010 - 21:45:57 EEST)
• Joomla Component Aardvertiser 2.1 free Blind SQL Injection Vulnerability sattler@solidmedia.de (Tue Sep 07 2010 - 19:48:40 EEST)
• Call for Participation - GameSec 2010 - Berlin, Germany Albert Levi (Tue Sep 07 2010 - 19:07:36 EEST)
• [USN-984-1] LFTP vulnerability Marc Deslauriers (Tue Sep 07 2010 - 21:40:33 EEST)
• [security bulletin] HPSBMA02574 SSRT100038 rev.1 - HP ProLiant G6 Lights-Out 100, Remote Management, Denial of Service (DoS) security-alert@hp.com (Tue Sep 07 2010 - 23:17:19 EEST)
• [ GLSA 201009-05 ] Adobe Reader: Multiple vulnerabilities Stefan Behte (Tue Sep 07 2010 - 22:15:27 EEST)
• etax 2010 failure to validate remote ssl certificate properly dave b (Tue Sep 07 2010 - 22:09:38 EEST)
• [ GLSA 201009-06 ] Clam AntiVirus: Multiple vulnerabilities Tobias Heinlein (Tue Sep 07 2010 - 22:23:49 EEST)
• Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers Cisco Systems Product Security Incident Response Team (Wed Sep 08 2010 - 18:30:00 EEST)
• ESA-2010-014: RSA, The Security Division of EMC, releases security hot fixes for potential vulnerability in RSA® Access Manager Server under certain conditions. Security_Alert@emc.com (Wed Sep 08 2010 - 23:24:38 EEST)
• ESA-2010-016: RSA, The Security Division of EMC, releases security hot fix for a potential vulnerability in RSA® Access Manager Agent when working with RSA® Adaptive Authentication. Security_Alert@emc.com (Wed Sep 08 2010 - 23:26:21 EEST)
• [USN-985-1] mountall vulnerability Kees Cook (Wed Sep 08 2010 - 23:28:03 EEST)
• ESA-2010-015: EMC Celerra NFS authentication bypass vulnerability using IP spoofing. Security_Alert@emc.com (Thu Sep 09 2010 - 00:03:09 EEST)
• [security bulletin] HPSBMA02516 SSRT090232 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition (SSE), Local security-alert@hp.com (Thu Sep 09 2010 - 07:22:29 EEST)
• [SECURITY] [DSA 2107-1] New couchdb package fixes arbitrary code execution Sebastien Delafond (Thu Sep 09 2010 - 14:02:50 EEST)
• Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability. Fyodor (Thu Sep 09 2010 - 00:38:39 EEST)
• ACROS Security: Remote Binary Planting in Apple Safari for Windows (ASPR #2010-09-08-1) ACROS Security Lists (Thu Sep 09 2010 - 02:58:48 EEST)
• SQL Injection and XSS vulnerabilities in CubeCart version 4.3.3 Bogdan Calin (Thu Sep 09 2010 - 15:36:51 EEST)
• Binary Planting Goes "EXE" ACROS Security Lists (Thu Sep 09 2010 - 03:04:06 EEST)
• [security bulletin] HPSBMA02576 SSRT090231 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition (SSE), Local Denial of Service (DoS), Execution of Arbitrary Code security-alert@hp.com (Thu Sep 09 2010 - 07:23:01 EEST)
• [USN-975-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Thu Sep 09 2010 - 00:54:46 EEST)
• [USN-978-1] Thunderbird vulnerabilities Jamie Strandboge (Thu Sep 09 2010 - 02:47:37 EEST)
• Re: etax 2010 failure to validate remote ssl certificate properly dave b (Thu Sep 09 2010 - 18:09:21 EEST)
• [SECURITY] [DSA 2106-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Wed Sep 08 2010 - 20:50:39 EEST)
• Adobe Flash Player IE version 10.1.x Insecure DLL Hijacking Vulnerability (dwmapi.dll) YGN Ethical Hacker Group (Fri Sep 10 2010 - 09:54:01 EEST)
• [ MDVSA-2010:172 ] kernel security@mandriva.com (Fri Sep 10 2010 - 00:45:01 EEST)
• Re: Binary Planting Goes "EXE" Stefan Kanthak (Fri Sep 10 2010 - 01:35:25 EEST)
• Medium security flaw in Apache Traffic Server Tim Brown (Wed Sep 08 2010 - 17:22:00 EEST)
• Internet Download Accelerator 5.8 Remote Buffer Overflow g1xsystem@windowslive.com (Wed Sep 08 2010 - 14:15:35 EEST)
• Re: Binary Planting Goes "EXE" Christian Sciberras (Thu Sep 09 2010 - 23:18:13 EEST)
• PGP Desktop version 9.10.x-10.0.0 Insecure DLL Hijacking Vulnerability (tsp.dll, tvttsp.dll) YGN Ethical Hacker Group (Thu Sep 09 2010 - 23:29:50 EEST)
• [DCA-00015] YOPS Web Server Remote Command Execution Rodrigo Escobar (Fri Sep 10 2010 - 22:00:22 EEST)
• International Hacking Conference "POC2001" Call for Paper pocadm@gmail.com (Mon Sep 13 2010 - 12:27:36 EEST)
• [SECURITY] [DSA 2097-2] New phpmyadmin packages fix several vulnerabilities Thijs Kinkhorst (Sat Sep 11 2010 - 17:36:05 EEST)
• MVSA-10-009 / CVE-2010-0155 - IBM Proventia Network Mail Security System - CRLF Injection vulnerability marian.ventuneac@gmail.com (Sun Sep 12 2010 - 22:46:19 EEST)
• MVSA-10-008 / CVE-2010-0154 - IBM Proventia Mail Security System - Insecure Direct Object Reference vulnerability marian.ventuneac@gmail.com (Sun Sep 12 2010 - 22:44:29 EEST)
• [ MDVSA-2010:175 ] sudo security@mandriva.com (Sun Sep 12 2010 - 13:23:01 EEST)
• [ MDVSA-2010:179 ] libglpng security@mandriva.com (Sun Sep 12 2010 - 22:18:00 EEST)
• [ MDVSA-2010:174 ] quagga security@mandriva.com (Sat Sep 11 2010 - 21:28:00 EEST)
• [ MDVSA-2010:180 ] rpm security@mandriva.com (Mon Sep 13 2010 - 06:48:01 EEST)
• Wireshark 1.4.0 Malformed SNMP V1 Packet Denial of Service yangdn@nipc.org.cn (Mon Sep 13 2010 - 08:42:10 EEST)
• MVSA-10-006 / CVE-2010-0153 - IBM Proventia Network Mail Security System - Cross-Site Request Forgery vulnerabilities marian.ventuneac@gmail.com (Sun Sep 12 2010 - 22:40:17 EEST)
• Secunia Research: MailEnable SMTP Service Two Denial of Service Vulnerabilities Secunia Research (Mon Sep 13 2010 - 14:49:06 EEST)
• H2HC 2010 Sao Paulo - Capture the Flag Rodrigo Rubira Branco (BSDaemon) (Mon Sep 13 2010 - 15:49:40 EEST)
• [ MDVSA-2010:176 ] tomcat5 security@mandriva.com (Sun Sep 12 2010 - 18:02:00 EEST)
• Adobe LiveCycle ES DLL Hijacking Exploit (.dll) admin@bugreport.ir (Mon Sep 13 2010 - 17:11:21 EEST)
• [ MDVSA-2010:177 ] tomcat5 security@mandriva.com (Sun Sep 12 2010 - 18:56:01 EEST)
• [ MDVSA-2010:178 ] ocsinventory security@mandriva.com (Sun Sep 12 2010 - 20:34:01 EEST)
• MVSA-10-007 / CVE-2010-0152 - IBM Proventia Mail Security System - Multiple persistent and reflected XSS vulnerabilities marian.ventuneac@gmail.com (Sun Sep 12 2010 - 22:42:35 EEST)
• ZDI-10-172: Mozilla Firefox tree Object Removal Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 19:25:27 EEST)
• ZDI-10-171: Mozilla Firefox nsTreeContentView Dangling Pointer Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 19:19:16 EEST)
• ZDI-10-169: Novell Netware SSHD.NLM Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 18:43:11 EEST)
• ZDI-10-170: Apple Safari Webkit Runin Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 18:56:08 EEST)
• ZDI-10-173: Mozilla Firefox nsTreeSelection Dangling Pointer Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 19:38:39 EEST)
• ZDI-10-174: Hewlett-Packard Data Protector DtbClsLogin Utf8cpy Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 22:03:37 EEST)
• CVE-2010-3200 : Microsoft Word 2003 MSO Null Pointer Dereference Vulnerability Aditya K Sood (Tue Sep 14 2010 - 05:39:51 EEST)
• [DCA-00016 - Nokia E72 Keyboard Password bypass] Crash (Mon Sep 13 2010 - 20:49:39 EEST)
• [SECURITY] [DSA 2108-1] New cvsnt package fixes arbitrary code execution Sébastien Delafond (Tue Sep 14 2010 - 09:47:05 EEST)
• Web challenges from RootedCON'2010 CTF - Contest Roman Medina-Heigl Hernandez (Mon Sep 13 2010 - 20:44:52 EEST)
• [ MDVSA-2010:181 ] ntop security@mandriva.com (Tue Sep 14 2010 - 14:14:00 EEST)
• rPSA-2010-0056-1 httpd mod_ssl rPath Update Announcements (Mon Sep 13 2010 - 23:58:18 EEST)
• [security bulletin] HPSBMA02566 SSRT100045 rev.1 - HP System Management Homepage (SMH) for Linux, Remote Disclosure of Sensitive Information security-alert@hp.com (Tue Sep 14 2010 - 16:18:39 EEST)
• [USN-987-1] Samba vulnerability Marc Deslauriers (Tue Sep 14 2010 - 17:18:37 EEST)
• ZDI-10-176: Mozilla Firefox normalizeDocument Remote Code Execution Vulnerability ZDI Disclosures (Mon Sep 13 2010 - 21:27:26 EEST)
• [FLOCK-SA-2010-01] Flock Browser: A malformed favourite can bypass cross origin protection (XSS) Lyndon Nerenberg (Tue Sep 14 2010 - 20:01:28 EEST)
• [FLOCK-SA-2010-02] Flock Browser: A malicious RSS feed can bypass cross origin protection (XSS) Lyndon Nerenberg (Tue Sep 14 2010 - 20:02:48 EEST)
• [FLOCK-SA-2010-03] Flock Browser: javascript: url with a leading NULL byte can bypass cross origin protection (XSS) Lyndon Nerenberg (Tue Sep 14 2010 - 20:04:40 EEST)
• ZDI-10-177: IBM Lotus Domino iCalendar MAILTO Stack Overflow Vulnerability ZDI Disclosures (Tue Sep 14 2010 - 20:59:13 EEST)
• [ MDVSA-2010:182 ] kdegraphics security@mandriva.com (Tue Sep 14 2010 - 20:06:00 EEST)
• Secunia Research: Microsoft Outlook Content Parsing Integer Underflow Vulnerability Secunia Research (Tue Sep 14 2010 - 22:26:54 EEST)
• New writeup by Amit Klein (Trusteer): "Cross-domain information leakage in Firefox 3.6.4-3.6.8, Firefox 3.5.10-3.5.11 and Firefox 4.0 Beta1" Amit Klein (Tue Sep 14 2010 - 18:48:26 EEST)
• [FLOCK-SA-2010-04] Flock Browser: window.open() Method Javascript Same-Origin Policy Violation (XSS) Lyndon Nerenberg (Tue Sep 14 2010 - 20:05:46 EEST)
• XSS vulnerability in AContent search advisory@htbridge.ch (Wed Sep 15 2010 - 16:09:31 EEST)
• XSS vulnerability in Atutor edit content folder advisory@htbridge.ch (Wed Sep 15 2010 - 16:09:40 EEST)
• XSS vulnerability in AContent advisory@htbridge.ch (Wed Sep 15 2010 - 16:09:46 EEST)
• XSS vulnerability in AContent advisory@htbridge.ch (Wed Sep 15 2010 - 16:09:52 EEST)
• XSS vulnerability in ATutor advisory@htbridge.ch (Wed Sep 15 2010 - 16:09:57 EEST)
• XSS vulnerability in AChecker advisory@htbridge.ch (Wed Sep 15 2010 - 16:10:02 EEST)
• [Suspected Spam]Directory Traversal in Axigen v7.4.1 running on Windows Bogdan Calin (Wed Sep 15 2010 - 12:05:12 EEST)
• XSS (cross site scripting) vulnerability in Serendipity advisory@htbridge.ch (Wed Sep 15 2010 - 16:10:09 EEST)
• XSS vulnerability in SantaFox search module advisory@htbridge.ch (Wed Sep 15 2010 - 16:10:15 EEST)
• XSRF (CSRF) in SantaFox advisory@htbridge.ch (Wed Sep 15 2010 - 16:10:21 EEST)
• ZDI-10-178: Novell PlateSpin Orchestrate Graph Rendering Remote Code Execution Vulnerability ZDI Disclosures (Wed Sep 15 2010 - 19:13:16 EEST)
• [ MDVSA-2010:183 ] socat security@mandriva.com (Wed Sep 15 2010 - 18:24:00 EEST)
• MVSA-10-001 - Google Message Security SaaS - SQL Injection vulnerabilities marian.ventuneac@gmail.com (Wed Sep 15 2010 - 23:22:23 EEST)
• MVSA-10-002 - Google Message Security SaaS - Multiple XSS vulnerabilities marian.ventuneac@gmail.com (Wed Sep 15 2010 - 23:24:37 EEST)
• [security bulletin] HPSBGN02577 SSRT100224 rev.2 - 3Com OfficeConnect Gigabit VPN Firewall (3CREVF100-73), Remote Cross Site Scripting (XSS) security-alert@hp.com (Thu Sep 16 2010 - 14:36:52 EEST)
• [security bulletin] HPSBMA02568 SSRT100219 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), HTTP Response Splitting, and Other Vulnerabilities security-alert@hp.com (Thu Sep 16 2010 - 13:26:01 EEST)
• [SECURITY] [DSA-2109-1] New samba packages fix buffer overflow Stefan Fritsch (Thu Sep 16 2010 - 19:56:00 EEST)
• [oCERT-2010-003] Free Simple CMS path sanitization errors Andrea Barisani (Fri Sep 17 2010 - 12:21:03 EEST)
• [ MDVSA-2010:184 ] samba security@mandriva.com (Thu Sep 16 2010 - 23:35:01 EEST)
• [SECURITY] [DSA 2110-1] New Linux 2.6.26 packages fix several issues dann frazier (Fri Sep 17 2010 - 18:45:07 EEST)
• [USN-978-2] Thunderbird regression Jamie Strandboge (Fri Sep 17 2010 - 05:05:58 EEST)
• [security bulletin] HPSBUX02546 SSRT100159 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS), Unauthorized Disclosure of Information security-alert@hp.com (Thu Sep 16 2010 - 21:13:55 EEST)
• [USN-975-2] Firefox and Xulrunner regression Jamie Strandboge (Fri Sep 17 2010 - 05:04:45 EEST)
• Searching for DropBox security contact Rebecca Menessec (Sun Sep 19 2010 - 03:12:55 EEST)
• SQL injection vulnerability in e107 advisory@htbridge.ch (Mon Sep 20 2010 - 13:06:20 EEST)
• [security bulletin] HPSBMA02568 SSRT100219 rev.2 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), HTTP Response Splitting, and Other Vulnerabilities security-alert@hp.com (Fri Sep 17 2010 - 18:40:35 EEST)
• [USN-986-1] bzip2 vulnerability Jamie Strandboge (Mon Sep 20 2010 - 17:03:09 EEST)
• SQL injection vulnerability in e107 advisory@htbridge.ch (Mon Sep 20 2010 - 13:06:07 EEST)
• [SECURITY] [DSA 2113-1] New drupal6 packages fix several vulnerabilities Steffen Joeris (Mon Sep 20 2010 - 17:15:04 EEST)
• [SECURITY] [DSA 2111-1] New squid3 packages fix denial of service Steffen Joeris (Sun Sep 19 2010 - 16:55:53 EEST)
• [USN-986-2] ClamAV vulnerability Jamie Strandboge (Mon Sep 20 2010 - 17:04:02 EEST)
• [SECURITY] [DSA-2112-1] New bzip2 packages fix integer overflow Stefan Fritsch (Mon Sep 20 2010 - 14:05:59 EEST)
• [SECURITY] [DSA-2106-2] New xulrunner packages fix regression Stefan Fritsch (Sun Sep 19 2010 - 22:35:13 EEST)
• Vulnerabilities in IB Promotion Advanced Business Web Suite MustLive (Mon Sep 20 2010 - 18:53:52 EEST)
• n.runs-SA-2010.002 - Alcatel-Lucent - arbitrary code execution on OmniVista 4760 security@nruns.com (Mon Sep 20 2010 - 18:59:59 EEST)
• n.runs-SA-2010.001 - Alcatel-Lucent - unauthenticated administrative access to CTI CCA Server security@nruns.com (Mon Sep 20 2010 - 18:58:28 EEST)
• n.runs-SA-2010.002 - Alcatel-Lucent - arbitrary code execution on OmniVista 4760 security@nruns.com (Mon Sep 20 2010 - 19:01:41 EEST)
• FreeBSD Security Advisory FreeBSD-SA-10:08.bzip2 FreeBSD Security Advisories (Mon Sep 20 2010 - 18:06:07 EEST)
• [ MDVSA-2010:185 ] bzip2 security@mandriva.com (Mon Sep 20 2010 - 21:10:01 EEST)
• Vulnerable 3rd-party DLLs used in TrendMicro's malware scanner HouseCall Stefan Kanthak (Mon Sep 20 2010 - 22:45:29 EEST)
• Binary Planting Attack Vectors - There's more than one way to skin a cat... or plant a binary, for that matter ACROS Security Lists (Mon Sep 20 2010 - 19:52:19 EEST)
• [USN-986-3] dpkg vulnerability Jamie Strandboge (Mon Sep 20 2010 - 20:21:12 EEST)
• Battle.net Mobile Authenticator MITM Vulnerability yawninglol@gmail.com (Mon Sep 20 2010 - 21:07:20 EEST)
• [USN-989-1] PHP vulnerabilities Marc Deslauriers (Mon Sep 20 2010 - 21:39:01 EEST)
• Security Contact Allianz IT-Infrastructure - Germany Stefan Bauer (Tue Sep 21 2010 - 10:38:40 EEST)
• [ MDVSA-2010:186 ] phpmyadmin security@mandriva.com (Tue Sep 21 2010 - 15:56:00 EEST)
• Exploit Next Generation® Methodology Nelson Brito (Sun Sep 19 2010 - 17:42:14 EEST)
• [USN-990-2] Apache vulnerability Marc Deslauriers (Tue Sep 21 2010 - 17:37:50 EEST)
• [USN-990-1] OpenSSL vulnerability Marc Deslauriers (Tue Sep 21 2010 - 17:36:50 EEST)
• CollabNet Subversion Edge Log Parser XSS/Code Injection Vulnerability sk (Tue Sep 21 2010 - 19:12:22 EEST)
• [ISecAuditors Security Advisories] Insecure Direct Object Reference in tuenti.com allow to read of any message user ISecAuditors Security Advisories (Tue Sep 21 2010 - 21:00:36 EEST)
• [ISecAuditors Security Advisories] Reflected XSS in Atmail WebMail < v6.2.0 ISecAuditors Security Advisories (Tue Sep 21 2010 - 21:03:25 EEST)
• [ GLSA 201009-08 ] python-updater: Untrusted search path Stefan Behte (Wed Sep 22 2010 - 00:42:58 EEST)
• Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed Sep 22 2010 - 19:00:00 EEST)
• Cisco Security Advisory: Cisco IOS SSL VPN Vulnerability Cisco Systems Product Security Incident Response Team (Wed Sep 22 2010 - 19:00:00 EEST)
• Cisco Security Advisory: Cisco IOS Software Internet Group Management Protocol Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Sep 22 2010 - 19:00:00 EEST)
• [ GLSA 201009-07 ] libxml2: Denial of Service Stefan Behte (Wed Sep 22 2010 - 00:41:58 EEST)
• Cisco Security Advisory: Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed Sep 22 2010 - 19:00:00 EEST)
• Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed Sep 22 2010 - 19:00:00 EEST)
• TimeTrack 1.2.4 Joomla Component Multiple SQL Injection Vulnerabilities Salvatore Fresta aka Drosophila (Wed Sep 22 2010 - 21:36:53 EEST)
• [ECHO_ADV_113$2010] BSI Hotel Booking System Admin Login Bypass Vulnerability adv@e-rdc.org (Wed Sep 22 2010 - 18:17:51 EEST)
• CONFidence 2.0 2010 - Call for Papers - 29-30.11.2010 Prague Andrzej Targosz (Wed Sep 22 2010 - 01:27:24 EEST)
• ESA-2010-017: RSA, The Security Division of EMC, announces a security update for RSA Authentication Agent 7.0 for Web, which addresses a potential directory traversal vulnerability Security_Alert@emc.com (Wed Sep 22 2010 - 22:47:12 EEST)
• [ MDVSA-2010:188 ] kernel security@mandriva.com (Thu Sep 23 2010 - 10:29:01 EEST)
• [ISecAuditors Security Advisories] SQL Injection and XSS in Motorito < v2.0 Ni 483 ISecAuditors Security Advisories (Thu Sep 23 2010 - 16:52:37 EEST)
• [security bulletin] HPSBMA02584 SSRT100230 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection security-alert@hp.com (Thu Sep 23 2010 - 16:03:14 EEST)
• [security bulletin] HPSBMA02585 SSRT100256 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) security-alert@hp.com (Thu Sep 23 2010 - 16:04:38 EEST)
• Opera Web Browser v10.62 (CSS) Cross Domain Vulnerability info@securitylab.ir (Thu Sep 23 2010 - 13:23:47 EEST)
• [security bulletin] HPSBMA02578 SSRT100069 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Information Disclosure security-alert@hp.com (Thu Sep 23 2010 - 16:03:39 EEST)
• [ MDVSA-2010:187 ] squid security@mandriva.com (Wed Sep 22 2010 - 21:52:00 EEST)
• [security bulletin] HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection security-alert@hp.com (Thu Sep 23 2010 - 16:04:16 EEST)
• Netscape Web Browser (CSS) Cross Domain Vulnerability info@securitylab.ir (Thu Sep 23 2010 - 19:51:35 EEST)
• Re: Opera Web Browser v10.62 (CSS) Cross Domain Vulnerability phara0h (Thu Sep 23 2010 - 20:02:19 EEST)
• Re: Netscape Web Browser (CSS) Cross Domain Vulnerability Michal Zalewski (Fri Sep 24 2010 - 00:20:32 EEST)
• Re: Opera Web Browser v10.62 (CSS) Cross Domain Vulnerability security@opera.com (Fri Sep 24 2010 - 13:41:40 EEST)
• TWSL2010-005: FreePBX recordings interface allows remote code execution Trustwave Advisories (Fri Sep 24 2010 - 00:51:37 EEST)
• VMSA-2010-0014 VMware Workstation, Player, and ACE address several security issues VMware Security team (Fri Sep 24 2010 - 09:52:46 EEST)
• [ MDVSA-2010:189 ] pcsc-lite security@mandriva.com (Fri Sep 24 2010 - 15:43:01 EEST)
• [ MDVSA-2010:189-1 ] pcsc-lite security@mandriva.com (Fri Sep 24 2010 - 17:39:01 EEST)
• Vulnerabilities in CMS MYsite MustLive (Sat Sep 25 2010 - 16:28:57 EEST)
• Exploit Next Generation(R) Example Codes Nelson Brito (Sun Sep 26 2010 - 00:46:00 EEST)
• Web commands injection through FTP Login in Synology Disk Station - CVE-2010-2453 Rodrigo Branco (Sun Sep 26 2010 - 11:15:03 EEST)
• [SECURITY] [DSA-2114-1] New git-core packages fix regression Stefan Fritsch (Sun Sep 26 2010 - 21:57:06 EEST)
• SQL injection vulnerability in e107 advisory@htbridge.ch (Mon Sep 27 2010 - 13:32:10 EEST)
• XSS vulnerability in Entrans advisory@htbridge.ch (Mon Sep 27 2010 - 13:32:13 EEST)
• SQL injection vulnerability in Entrans advisory@htbridge.ch (Mon Sep 27 2010 - 13:32:17 EEST)
• SQL injection vulnerability in Entrans advisory@htbridge.ch (Mon Sep 27 2010 - 13:32:20 EEST)
• XSS in Horde IMP <=4.3.7, fetchmailprefs.php Moritz Naumann (Mon Sep 27 2010 - 19:32:36 EEST)
• [oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference Andrea Barisani (Tue Sep 28 2010 - 16:47:46 EEST)
• Re: XSS vulnerability in CompuCMS security curmudgeon (Wed Sep 29 2010 - 02:50:43 EEST)
• Fwd: 2.6.6 <= phpMyFAQ <= 2.6.8 XSS Yam Mesicka (Tue Sep 28 2010 - 21:23:19 EEST)
• [USN-995-1] libMikMod vulnerabilities Marc Deslauriers (Wed Sep 29 2010 - 19:44:49 EEST)
• [USN-996-1] Mako vulnerability Marc Deslauriers (Wed Sep 29 2010 - 19:45:27 EEST)
• XSS vulnerability in GetSimple CMS advisory@htbridge.ch (Wed Sep 29 2010 - 16:56:10 EEST)
• [USN-994-1] libHX vulnerability Marc Deslauriers (Wed Sep 29 2010 - 19:39:19 EEST)
• XSRF (CSRF) in Zimplit advisory@htbridge.ch (Wed Sep 29 2010 - 16:55:59 EEST)
• Re: XSS vulnerability in Auto CMS security curmudgeon (Wed Sep 29 2010 - 02:58:05 EEST)
• [USN-993-1] libgdiplus vulnerability Marc Deslauriers (Wed Sep 29 2010 - 19:38:16 EEST)
• [security bulletin] HPSBUX02587 SSRT100215 rev.1 - HP-UX Directory Server and Red Hat Directory Server for HP-UX, Local Disclosure of Information, Privilege Escalation security-alert@hp.com (Wed Sep 29 2010 - 20:32:47 EEST)
• XSS vulnerability in Pluck advisory@htbridge.ch (Wed Sep 29 2010 - 16:56:16 EEST)
• [Onapsis Security Advisory 2010-007] SAP Management Console Multiple Denial of Service Onapsis Research Labs (Wed Sep 29 2010 - 23:11:11 EEST)
• [USN-992-1] Avahi vulnerabilities Marc Deslauriers (Wed Sep 29 2010 - 19:37:32 EEST)
• [ GLSA 201009-09 ] fence: Multiple symlink vulnerabilites Stefan Behte (Wed Sep 29 2010 - 23:52:00 EEST)
• VMSA-2010-0015 VMware ESX third party updates for Service Console VMware Security team (Thu Sep 30 2010 - 11:31:05 EEST)
• [SECURITY] [DSA-2115-1] New moodle packages fix several vulnerabilities Florian Weimer (Thu Sep 30 2010 - 00:04:56 EEST)
• [security bulletin] HPSBMA02558 SSRT100158 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alert@hp.com (Thu Sep 30 2010 - 17:30:45 EEST)
• ZDI-10-179: IBM TSM FastBack Mount Service Arbitrary Overwrite Remote Code Execution Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:19 EEST)
• ZDI-10-182: IBM TSM FastBack Server FXCLI_OraBR_Exec_Command Remote Code Execution Vulnerabilities ZDI Disclosures (Thu Sep 30 2010 - 02:26:34 EEST)
• JE Guestbook 1.0 Joomla Component Multiple Remote Vulnerabilities Salvatore Fresta aka Drosophila (Thu Sep 30 2010 - 12:49:53 EEST)
• ZDI-10-185: IBM TSM FastBack Server _Eventlog Format String Remote Code Execution Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:49 EEST)
• ZDI-10-187: IBM TSM FastBack Server _DAS_ReadBlockReply Remote Denial of Service Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:59 EEST)
• ZDI-10-180: IBM TSM FastBack Server _SendToLog Remote Code Execution Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:24 EEST)
• ZDI-10-184: IBM TSM FastBack Server USER_S_AddADGroup Remote Code Execution Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:44 EEST)
• ZDI-10-186: IBM TSM FastBack _CalcHashValueWithLength Remote Denial of Service Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:54 EEST)
• ZDI-10-181: IBM TSM FastBack Server ActivateLTScriptReply Remote Code Execution Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:29 EEST)
• ZDI-10-183: IBM TSM FastBack Server FXCLI_checkIndexDBLocation Remote Code Execution Vulnerability ZDI Disclosures (Thu Sep 30 2010 - 02:26:39 EEST)
• [ MDVSA-2010:190 ] libtiff security@mandriva.com (Thu Sep 30 2010 - 18:23:00 EEST)

Last message date: Thu Sep 30 2010 - 21:02:58 EEST
Archived on: Thu Sep 30 2010 - 21:02:59 EEST

This archive was generated by hypermail 2b28 : Thu Sep 30 2010 - 21:02:59 EEST