NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2008-03

448 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Sat Mar 01 2008 - 10:51:42 CST
Ending: Mon Mar 31 2008 - 17:59:42 CDT

0in.emailgmail.com
- phpBB PJIRC mod LFI (Tue Mar 25 2008 - 15:19:56 CDT)
- Home FTP Server DoS (Mon Mar 17 2008 - 14:49:27 CDT)
- Livebox Router vulnerability to REMOTE BUFFER OVERFLOW DoS (FTPD)_ (Sat Mar 01 2008 - 15:31:07 CST)
Abel Cheung
- Fedora, Ubuntu publish wrong advisories for CVE-2007-6318 (Fri Mar 21 2008 - 18:46:06 CDT)
ACROS Security
- ACROS Security: Session Fixation Vulnerability in WebLogic Administration Console (#2008-03-11-2) (Tue Mar 11 2008 - 10:57:33 CDT)
- ACROS Security: HTML Injection in BEA WebLogic Server Console (ASPR #2008-03-11-1) (Tue Mar 11 2008 - 10:57:33 CDT)
- ACROS Security: Session Fixation Vulnerability in WebLogic Administration Console (#2008-03-11-2) (Tue Mar 11 2008 - 10:57:33 CDT)
adminnexact.net
- Airspan WiMAX ProST Authentication Bypass Vulnerability (Thu Mar 13 2008 - 20:52:50 CDT)
Alexandr Polyakov
- [DSECRG-08-018] Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory traversal file Download Vulnerability (Thu Mar 06 2008 - 02:34:39 CST)
Amit Klein
- Paper by Amit Klein (Trusteer): "PowerDNS Recursor DNS Cache Poisoning [pharming]" (Mon Mar 31 2008 - 07:07:19 CDT)
- Update+Errata: Re: A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability" (Thu Mar 13 2008 - 11:53:15 CDT)
andrelogaholic.com
- Re: Logaholic Web Analytics Software (Wed Mar 26 2008 - 08:06:24 CDT)
AnonymousAnonymous.com
- MS08-014 (Fri Mar 21 2008 - 02:34:14 CDT)
Ansgar -59cobalt- Wiechers
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Mon Mar 10 2008 - 11:58:17 CDT)
appgmail.com
- Re: Re: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit (Wed Mar 12 2008 - 11:09:47 CDT)
arsalan1991gmail.com
- aeries browser interface(ABI) 3.8.3.14 Remote SQL Injection (Tue Mar 25 2008 - 02:32:31 CDT)
Asterisk Security Team
- AST-2008-004: Format String Vulnerability in Logger and Manager (Tue Mar 18 2008 - 18:32:25 CDT)
- AST-2008-002: Two buffer overflows in RTP Codec Payload Handling (Tue Mar 18 2008 - 18:25:59 CDT)
- AST-2008-003: Unauthenticated calls allowed from SIP channel driver (Tue Mar 18 2008 - 18:29:23 CDT)
- AST-2008-005: HTTP Manager ID is predictable (Tue Mar 18 2008 - 18:37:03 CDT)
Ben Klang
- Re: Horde Webmail file inclusion proof of concept & patch. (Sat Mar 08 2008 - 13:22:16 CST)
Bernhard Mueller
- Firewire Attack on Windows Vista (Wed Mar 05 2008 - 09:53:36 CST)
bzhbfzj3001sneakemail.com
- RE: Firewire Attack on Windows Vista (Thu Mar 06 2008 - 04:01:45 CST)
Chris Evans
- Sun JDK image parsing vulnerabilities (Wed Mar 05 2008 - 20:04:32 CST)
Chris Porter
- ircu/snircd remote crash vulnerability (Sun Mar 23 2008 - 20:29:50 CDT)
Chris Withers
- Re: hacking the mitsubishi GB-50A (Wed Mar 26 2008 - 12:47:34 CDT)
- Re: hacking the mitsubishi GB-50A (Tue Mar 25 2008 - 08:48:18 CDT)
- hacking the mitsubishi GB-50A (Fri Mar 21 2008 - 20:50:13 CDT)
- hacking the mitsubishi GB-50A (Fri Mar 21 2008 - 20:50:13 CDT)
Christos Zoulas
- Re: [securityreason] *BSD libc (strfmon) Multiple vulnerabilities (Thu Mar 27 2008 - 12:49:08 CDT)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability (Wed Mar 26 2008 - 11:00:00 CDT)
- Cisco Security Advisory: Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak (Wed Mar 26 2008 - 11:00:00 CDT)
- Cisco Security Advisory: Cisco IOS User Datagram Protocol Delivery Issue For IPv4/IPv6 Dual-stack Routers (Wed Mar 26 2008 - 11:00:00 CDT)
- Cisco Security Advisory: Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720 (Wed Mar 26 2008 - 11:00:00 CDT)
- Cisco Security Advisory: Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS (Wed Mar 26 2008 - 11:00:00 CDT)
- Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability (Thu Mar 13 2008 - 17:30:00 CDT)
- Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities (Wed Mar 12 2008 - 11:00:00 CDT)
cmzshotmail.com
- Re: Crafty Syntax Xss Vulnerability (Tue Mar 04 2008 - 11:47:16 CST)
Collin R. Mulliner
- raidsonic nas-4220 crypt disk key leak (stored in plain on unencrypted partition) (Sun Mar 16 2008 - 07:28:16 CDT)
Core Security Technologies Advisories
- CORE-2007-1212: SILC pkcs_decode buffer overflow (Tue Mar 25 2008 - 15:09:10 CDT)
- CORE-2008-0123: Leopard Server Remote Path Traversal (Tue Mar 18 2008 - 14:36:31 CDT)
- CORE-2008-0204: Timbuktu Pro Remote Path Traversal and Log Injection (Tue Mar 11 2008 - 15:42:23 CDT)
- CORE-2008-0124: Multiple vulnerabilities in Google's Android SDK (Tue Mar 04 2008 - 12:26:56 CST)
cxibsecurityreason.com
- [securityreason] *BSD libc (strfmon) Multiple vulnerabilities (Thu Mar 27 2008 - 09:09:49 CDT)
- {securityreason.com}PHP 5 *printf() - Integer Overflow (Fri Mar 21 2008 - 10:58:44 CDT)
Daniel O'Connor
- Re: Firewire Attack on Windows Vista (Wed Mar 05 2008 - 18:57:58 CST)
dann frazier
- [SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues (Thu Mar 06 2008 - 01:47:54 CST)
David Morton
- Re: Horde Webmail file inclusion proof of concept & patch. (Fri Mar 21 2008 - 09:55:37 CDT)
david130490hotmail.com
- Pizco vulnerable to buffer overflow in activex (Wed Mar 19 2008 - 20:53:56 CDT)
- Pizco vulnerable to buffer overflow in activex (Wed Mar 19 2008 - 20:53:56 CDT)
- Re: Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow (Sun Mar 16 2008 - 18:03:20 CDT)
dcastroentwash.org
- Re: Potential SQL injection vulnerability in Apache::AuthCAS (Sun Mar 23 2008 - 17:54:30 CDT)
Desai, Ashish
- RE: hacking the mitsubishi GB-50A (Mon Mar 24 2008 - 10:06:44 CDT)
Devin Carraway
- [SECURITY] [DSA 1533-1] New exiftags packages fix several vulnerabilities (Thu Mar 27 2008 - 17:26:38 CDT)
Digital Security Research Group
- [DSECRG-08-022] Multiple Security Vulnerabilities in Bolinos 4.6.1 (Tue Mar 25 2008 - 12:12:51 CDT)
- [DSECRG-08-021] Multiple LFI in PowerPHPBoard 1.00b (Mon Mar 24 2008 - 11:49:30 CDT)
- [DSECRG-08-020] RFI-LFI in PowerClan 1.14a (Mon Mar 24 2008 - 11:44:17 CDT)
- [DSECRG-08-019] LFI in PowerBook 1.21 (Mon Mar 24 2008 - 11:42:20 CDT)
- [DSECRG-08-017] Flyspray 0.9.9.4 Multiple Security Vulnerabilities (Mon Mar 03 2008 - 02:59:25 CST)
dj_remix_20hotmail.com
- Efestech Video v5,0 (id) Remote Sql Injection (Sat Mar 29 2008 - 15:13:03 CDT)
- EfesTech E-Kontr (id) Remote SQL INJECTION (Sun Mar 23 2008 - 10:25:38 CDT)
DoZHackersCenter.com
- WordPress Multiple Cross-Site Scripting Vulnerabilities (Thu Mar 06 2008 - 21:50:36 CST)
Dragos Ruiu
- CanSecWest 2008 PWN2OWN - Mar 26-28 (Thu Mar 20 2008 - 22:54:17 CDT)
DVLabs
- TPTI-08-03: Microsoft Excel Rich Text Memory Corruption Vulnerability (Tue Mar 11 2008 - 16:43:32 CDT)
- TPTI-08-03: Microsoft Excel Rich Text Memory Corruption Vulnerability (Tue Mar 11 2008 - 16:43:32 CDT)
Enno Rey
- Troopers08 Security Conference, April 23/24 (Munich/Germany) (Sat Mar 15 2008 - 13:37:10 CDT)
ericscraftysyntax.com
- Re: Crafty Syntax Xss Vulnerability (Sat Mar 01 2008 - 19:25:37 CST)
evilcrygmail.com
- XChat 2.8.4-1 - Multiple Vulnerabilities (Fri Mar 28 2008 - 11:37:52 CDT)
- Hamachi Password Disclosure Vulnerability (Mon Mar 24 2008 - 11:33:36 CDT)
fabio
- Re: XChat 2.8.4-1 - Multiple Vulnerabilities (Fri Mar 28 2008 - 13:13:36 CDT)
fakenoreply.org
- Re: Smf 1.1.4 Remote File Inclusion Vulnerabilities (Fri Mar 28 2008 - 11:23:04 CDT)
FD
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Mon Mar 10 2008 - 13:50:28 CDT)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Mon Mar 10 2008 - 13:50:28 CDT)
Felix 'FX' Lindner
- Cisco ACS UCP Remote Pre-Authentication Buffer Overflows (Wed Mar 12 2008 - 11:41:51 CDT)
Florian Weimer
- [SECURITY] [DSA 1523-1] New ikiwiki packages fix cross-site scripting (Mon Mar 17 2008 - 15:51:09 CDT)
- [SECURITY] [DSA 1522-1] New unzip packages fix potential code execution (Mon Mar 17 2008 - 15:03:43 CDT)
- [SECURITY] [DSA 1516-1] New dovecot packages fix privilege escalation (Fri Mar 14 2008 - 18:29:19 CDT)
- [SECURITY] [DSA 1515-1] New libnet-dns-perl packages fix several vulnerabilities (Tue Mar 11 2008 - 17:17:18 CDT)
Gadi Evron
- hacking a pacemaker (Wed Mar 12 2008 - 03:57:55 CDT)
Gerardo García Peña
- Summer Camp 2008 - La Garrotxa (Sun Mar 09 2008 - 19:37:30 CDT)
Glenn.Everhartchase.com
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 15:13:15 CST)
gmdarkfiggmail.com
- VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit (Sun Mar 09 2008 - 16:07:45 CDT)
greentea-lemonblueyonder.co.uk
- Re: Format string in McAfee Framework 3.6.0.569 (ePolicy Orchestrator 4.0) (Mon Mar 17 2008 - 11:35:17 CDT)
Guns0x90.com.ar
- phpAddressBook v2.11 Multiple Local File Inclusion Vulnerabilities (Sat Mar 22 2008 - 07:21:46 CDT)
H D Moore
- Re: [DSECRG-08-018] Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory traversal file Download Vulnerability (Thu Mar 06 2008 - 11:28:00 CST)
hadihadi_zedehal_2006yahoo.com
- CuteFlow Version 1.5.0 Multiple Remote Vulnerabilities (Sat Mar 29 2008 - 09:21:16 CDT)
- php-addressbook v2.0 SQL Injection Vulnerbility (Wed Mar 26 2008 - 05:11:27 CDT)
Hanno BÃ¶ck
- Cross Site Scripting (XSS) in phpstats 0.1_alpha, CVE-2008-0125 (Mon Mar 17 2008 - 17:36:14 CDT)
Henri Lindberg - Smilehouse Oy
- Checkpoint VPN-1 UTM Edge cross-site scripting (Thu Mar 06 2008 - 06:24:49 CST)
houssamixhotmail.fr
- PHP-Nuke Module NukeC30 sql injection (Tue Mar 11 2008 - 07:22:18 CDT)
iDefense Labs
- iDefense Security Advisory 03.18.08: Multiple Vendor CUPS CGI Heap Overflow Vulnerability (Tue Mar 18 2008 - 16:46:41 CDT)
- iDefense Security Advisory 03.11.08: Microsoft Outlook mailto Command Line Switch Injection (Tue Mar 11 2008 - 18:16:04 CDT)
- iDefense Security Advisory 03.11.08: Microsoft Excel 2003 Malformed Formula Memory Corruption Vulnerability (Tue Mar 11 2008 - 18:14:01 CDT)
- iDefense Security Advisory 03.11.08: Microsoft Excel DVAL Heap Corruption Vulnerability (Tue Mar 11 2008 - 18:04:13 CDT)
- iDefense Security Advisory 03.10.08: SAP MaxDB sdbstarter Privilege Escalation Vulnerability (Mon Mar 10 2008 - 16:38:15 CDT)
- iDefense Security Advisory 03.10.08: SAP MaxDB Signedness Error Heap Corruption Vulnerability (Mon Mar 10 2008 - 16:35:59 CDT)
- iDefense Security Advisory 03.10.08: SAP MaxDB sdbstarter Privilege Escalation Vulnerability (Mon Mar 10 2008 - 16:38:15 CDT)
- iDefense Security Advisory 03.10.08: SAP MaxDB Signedness Error Heap Corruption Vulnerability (Mon Mar 10 2008 - 16:35:59 CDT)
- iDefense Security Advisory 03.10.08: SAP MaxDB Signedness Error Heap Corruption Vulnerability (Mon Mar 10 2008 - 16:35:59 CDT)
infodigitalarmaments.com
- Digital Armaments March-April Hacking Challenge: 5,000$ Prize - Client Vulnerabilities and Exploit (Tue Mar 18 2008 - 11:54:48 CDT)
infoshadowturk.org
- Easy-Clanpage 2.2 (id) Remote SQL Injection Vulnerability (Thu Mar 20 2008 - 05:45:38 CDT)
- Easy-Clanpage 2.2 (id) Remote SQL Injection Vulnerability (Thu Mar 20 2008 - 05:45:38 CDT)
infocus
- [INFIGO-2008-03-07]: Surgemail 38k4 IMAP server remote stack overflow (Fri Mar 21 2008 - 04:07:42 CDT)
J. Oquendo
- Re: Linksys phone adapter denial of service (Mon Mar 24 2008 - 11:53:00 CDT)
- Re: Linksys phone adapter denial of service (Mon Mar 24 2008 - 10:55:34 CDT)
Jacob Appelbaum
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Mon Mar 10 2008 - 22:56:48 CDT)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Sat Mar 08 2008 - 18:28:02 CST)
James C. Slora Jr.
- RE: hacking the mitsubishi GB-50A (Mon Mar 24 2008 - 12:09:18 CDT)
James Connery
- Question on CERT-FI and CPNI Joint Vulnerability Advisory on Archive Formats? (Tue Mar 18 2008 - 20:37:45 CDT)
Jamie Strandboge
- [USN-592-1] Firefox vulnerabilities (Wed Mar 26 2008 - 10:59:34 CDT)
- [USN-591-1] libicu vulnerabilities (Mon Mar 24 2008 - 14:02:22 CDT)
- [USN-588-1] MySQL vulnerabilities (Thu Mar 20 2008 - 07:10:58 CDT)
- [USN-588-1] MySQL vulnerabilities (Thu Mar 20 2008 - 07:10:58 CDT)
- [USN-582-2] Thunderbird vulnerabilities (Thu Mar 06 2008 - 15:30:37 CST)
- [USN-584-1] OpenLDAP vulnerabilities (Wed Mar 05 2008 - 16:46:06 CST)
Jerome Athias
- e107 My_Gallery Plugin Arbitrary File Download Vulnerability (Tue Mar 25 2008 - 10:33:39 CDT)
- e107 My_Gallery Plugin Arbitrary File Download Vulnerability (Tue Mar 25 2008 - 10:33:39 CDT)
Jindrich Kubec
- Re: Smf 1.1.4 Remote File Inclusion Vulnerabilities (Fri Mar 28 2008 - 11:07:13 CDT)
jkouns
- Google SoC 2008: Security Projects (Sat Mar 22 2008 - 13:01:25 CDT)
jmoss
- Black Hat Announcements: New CFP system and Japan '08 confirmed (Fri Mar 14 2008 - 19:37:49 CDT)
Joe
- Re: [BUGTRAQ] RE: hacking the mitsubishi GB-50A (Mon Mar 24 2008 - 13:54:49 CDT)
- Re: [BUGTRAQ] RE: hacking the mitsubishi GB-50A (Mon Mar 24 2008 - 13:54:49 CDT)
joseeyeos.org
- Minigal 2 critical XSS (Tue Mar 04 2008 - 15:18:47 CST)
joseph.giron13gmail.com
- h2desk helpdesk path disclosure vulnerability (Sat Mar 01 2008 - 08:31:00 CST)
jplopezygmail.com
- Internet explorer 7.0 spoofing (Fri Mar 28 2008 - 14:02:17 CDT)
- Safari browser 3.1 (525.13) spoofing (Fri Mar 21 2008 - 15:00:20 CDT)
- Safari browser 3.1 (525.13) spoofing (Fri Mar 21 2008 - 15:00:20 CDT)
- Safari 3.1 for windows download bug (Fri Mar 21 2008 - 16:50:44 CDT)
- Internet Explorer 7.0 crash (Mon Mar 17 2008 - 22:58:03 CDT)
jsavillsybase.com
- Re: Heap overflow in Sybase MobiLink 10.0.1.3629 (Fri Mar 28 2008 - 10:49:04 CDT)
Kees Cook
- [USN-595-1] SDL_image vulnerabilities (Wed Mar 26 2008 - 17:13:50 CDT)
- [USN-596-1] Ruby vulnerabilities (Wed Mar 26 2008 - 17:15:15 CDT)
- [USN-594-1] libnet-dns-perl vulnerability (Wed Mar 26 2008 - 17:12:24 CDT)
- [USN-593-1] Dovecot vulnerabilities (Wed Mar 26 2008 - 17:09:50 CDT)
- [USN-590-1] bzip2 vulnerability (Mon Mar 24 2008 - 15:47:17 CDT)
- [USN-589-1] unzip vulnerability (Thu Mar 20 2008 - 15:12:44 CDT)
- [USN-587-1] Kerberos vulnerabilities (Tue Mar 18 2008 - 23:52:21 CDT)
- [USN-586-1] mailman vulnerability (Sat Mar 15 2008 - 13:07:36 CDT)
- [USN-585-1] Python vulnerabilities (Mon Mar 10 2008 - 19:42:30 CDT)
- [USN-583-1] Evolution vulnerability (Wed Mar 05 2008 - 14:37:28 CST)
knight4vnyahoo.com
- Blackboard Academic Suite Multiple XSS Vulnerabilities (Tue Mar 25 2008 - 23:13:44 CDT)
kralorcoromputer.net
- Rapid7 Advisory R7-0032: Microsoft Internet Explorer FTP Command Injection Vulnerability (Thu Mar 13 2008 - 07:16:15 CDT)
L4teral
- Squid Analysis Report Generator <= 2.2.3.1 buffer overflow (Sun Mar 02 2008 - 16:10:30 CST)
labsgdssecurity.com
- DotNetNuke Default Machine Key Exposure (Fri Mar 21 2008 - 08:41:32 CDT)
Larry Seltzer
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sun Mar 09 2008 - 22:36:33 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sun Mar 09 2008 - 21:14:08 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sun Mar 09 2008 - 22:36:33 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sun Mar 09 2008 - 21:14:08 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sun Mar 09 2008 - 22:36:33 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sun Mar 09 2008 - 21:14:08 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sat Mar 08 2008 - 06:12:32 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Sat Mar 08 2008 - 16:03:09 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Fri Mar 07 2008 - 13:51:07 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Fri Mar 07 2008 - 13:51:07 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Fri Mar 07 2008 - 13:44:12 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 14:35:46 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 14:13:33 CST)
- RE: Firewire Attack on Windows Vista (Thu Mar 06 2008 - 11:50:47 CST)
Layer One
- LayerOne 2008 Update (Mon Mar 03 2008 - 13:58:45 CST)
Liquidmatrix Security Digest
- Advisory Adobe LiveCycle Workflow XSS Vulnerability (Tue Mar 11 2008 - 15:20:30 CDT)
lovebughotmail.it
- PHP-Nuke Module ZClassifieds [cat] SQL Injection (Tue Mar 11 2008 - 15:21:32 CDT)
- PHP-Nuke SQL injection Module "Hadith" [cat] (Sat Mar 08 2008 - 14:13:16 CST)
- PHP-Nuke KutubiSitte "kid" SQL Injection (Thu Mar 06 2008 - 11:24:09 CST)
Luigi Auriemma
- Directory traversal in 2X ThinClientServer v5.0_sp1-r3497 (Mon Mar 31 2008 - 14:48:47 CDT)
- Multiple vulnerabilities in solidDB 06.00.1018 (Wed Mar 26 2008 - 15:29:48 CDT)
- Buffer-overflow in ASUS Remote Console 2.0.0.24 (Fri Mar 21 2008 - 17:16:40 CDT)
- Multiple heap overflows in xine-lib 1.1.11 (Thu Mar 20 2008 - 15:13:13 CDT)
- Buffer-overflow in BootManage TFTPD 1.99 (Mon Mar 17 2008 - 13:13:32 CDT)
- Multiple vulnerabilities in Net Inspector 6.5.0.828 (Mon Mar 17 2008 - 13:04:00 CDT)
- VLC highlander bug (Mon Mar 17 2008 - 12:35:25 CDT)
- Format string in McAfee Framework 3.6.0.569 (ePolicy Orchestrator 4.0) (Wed Mar 12 2008 - 14:33:28 CDT)
- Re: [Full-disclosure] Vulnerabilities in Timbuktu Pro 8.6.5 (Tue Mar 11 2008 - 07:12:32 CDT)
- Directory traversal and NULL pointer in Acronis PXE Server 2.0.0.1076 (Mon Mar 10 2008 - 16:47:11 CDT)
- Denial of Service in PacketTrap TFTP server 2.0.3901.0 (Mon Mar 10 2008 - 16:46:45 CDT)
- Vulnerabilities in Timbuktu Pro 8.6.5 (Mon Mar 10 2008 - 16:45:50 CDT)
- NULL pointer in Remotely Anywhere 8.0.668 (Mon Mar 10 2008 - 16:44:54 CDT)
- Directory traversal in Argon Client Management Services 1.31 (Mon Mar 10 2008 - 16:44:33 CDT)
- NULL pointer in Acronis True Image Windows Agent 1.0.0.54 (Mon Mar 10 2008 - 16:44:02 CDT)
- Multiple vulnerabilities in ASG-Sentry 7.0.0 (Mon Mar 10 2008 - 16:45:17 CDT)
- Vulnerabilities in Timbuktu Pro 8.6.5 (Mon Mar 10 2008 - 16:45:50 CDT)
- Directory traversal and NULL pointer in Acronis PXE Server 2.0.0.1076 (Mon Mar 10 2008 - 16:47:11 CDT)
- NULL pointer in Remotely Anywhere 8.0.668 (Mon Mar 10 2008 - 16:44:54 CDT)
- Denial of Service in PacketTrap TFTP server 2.0.3901.0 (Mon Mar 10 2008 - 16:46:45 CDT)
- Invalid memory access in Acronis True Image Group Server 1.5.19.191 (Mon Mar 10 2008 - 16:47:28 CDT)
- Multiple vulnerabilities in MailEnable Professional/Enterprise 3.13 (Fri Mar 07 2008 - 13:00:40 CST)
- Directory traversal in MicroWorld eScan Server 9.0.742.98 (Thu Mar 06 2008 - 12:18:40 CST)
- Multiple vulnerabilities in Perforce Server 2007.3/143793 (Wed Mar 05 2008 - 14:59:59 CST)
- Arbitrary commands execution in Versant Object Database 7.0.1.3 (Tue Mar 04 2008 - 14:55:45 CST)
- Multiple integer overflows in Borland StarTeam server 10.0.0.57 (Mon Mar 03 2008 - 13:52:31 CST)
Major Malfunction
- London DEFCON meet - DC4420 - New Venue - Wednesday 2nd April, 2008 (Mon Mar 31 2008 - 05:28:20 CDT)
Maximiliano MÃ¼ller
- Re: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit (Tue Mar 11 2008 - 20:47:29 CDT)
Michael VERGOZ
- Re: Linksys phone adapter denial of service (Mon Mar 24 2008 - 23:53:16 CDT)
Mike Duncan
- Re: Smf 1.1.4 Remote File Inclusion Vulnerabilities (Fri Mar 28 2008 - 13:50:41 CDT)
Milen Rangelov
- Zabbix (zabbix_agentd) denial of service (Thu Mar 13 2008 - 05:39:11 CDT)
Minded Security Research Labs
- [MSA01240108] IE7 Transfer-Encoding: chunked allows Request Splitting/Smuggling. (Fri Mar 21 2008 - 06:07:10 CDT)
- [MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling. (Fri Mar 21 2008 - 06:09:05 CDT)
morin.joshgmail.com
- Re: XSS in cPanel 11.x (Mon Mar 24 2008 - 10:41:35 CDT)
Moritz Muehlenhoff
- [SECURITY] [DSA 1535-1] New iceweasel packages fix several vulnerabilities (Sun Mar 30 2008 - 07:22:31 CDT)
- [SECURITY] [DSA 1534-1] New iceape packages fix several vulnerabilities (Fri Mar 28 2008 - 08:48:02 CDT)
- [SECURITY] [DSA 1532-1] New xulrunner packages fix several vulnerabilities (Thu Mar 27 2008 - 17:01:06 CDT)
- [SECURITY] [DSA 1529-1] New Firebird packages fix several vulnerabilities (Wed Mar 26 2008 - 17:19:10 CDT)
- [SECURITY] [DSA 1525-1] New asterisk packages fix several vulnerabilities (Thu Mar 20 2008 - 06:25:39 CDT)
- [SECURITY] [DSA 1506-2] New iceape packages fix regression (Wed Mar 19 2008 - 20:41:06 CDT)
- [SECURITY] [DSA 1525-1] New asterisk packages fix several vulnerabilities (Thu Mar 20 2008 - 06:25:39 CDT)
- [SECURITY] [DSA 1506-2] New iceape packages fix regression (Wed Mar 19 2008 - 20:41:06 CDT)
- [SECURITY] [DSA 1485-2] New icedove packages fix regression (Mon Mar 17 2008 - 15:39:07 CDT)
- [SECURITY] [DSA 1514-1] New moin packages fix several vulnerabilities (Sun Mar 09 2008 - 09:39:08 CDT)
mouss
- Re: Internet explorer 7.0 spoofing (Sat Mar 29 2008 - 15:21:55 CDT)
muuratsalo experimental hack lab
- travelsized cms 0.4.1 multiple local file inclusion vulnerabilities (Tue Mar 11 2008 - 18:04:45 CDT)
- uberghey cms 0.3.1 multiple local file inclusion vulnerabilities (Tue Mar 11 2008 - 18:04:05 CDT)
- kcwiki 1.0 multiple remote file inclusion vulnerabilities. (Sun Mar 02 2008 - 17:40:28 CST)
my_msn_my_msn_mymsn.com
- Re: PHP-Nuke Module NukeC30 sql injection (Tue Mar 11 2008 - 14:41:33 CDT)
Nathanael Hoyle
- Re: Firewire Attack on Windows Vista (Fri Mar 07 2008 - 12:59:03 CST)
nbbngmx.net
- phpBB 2.0.23 Session Hijacking Vulnerability (Tue Mar 18 2008 - 17:00:52 CDT)
- WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability (Sat Mar 08 2008 - 11:55:32 CST)
nebelfrost23web.de
- Proviso SiteKiosk File Download Vulnerability (Sat Mar 29 2008 - 17:08:56 CDT)
neodwijagmail.com
- Re: Format string in McAfee Framework 3.6.0.569 (ePolicy Orchestrator 4.0) (Mon Mar 17 2008 - 09:19:22 CDT)
Nicolas Waisman
- Immunity Debugger 1.5 (Thu Mar 27 2008 - 17:23:07 CDT)
nima_501yahoo.com
- XSS in PHP-Nuke (eWeather module) (Thu Mar 13 2008 - 04:11:27 CDT)
- XSS in Neptune Web Server (Fri Mar 07 2008 - 14:52:46 CST)
nnposterdisclosed.not
- Alkacon OpenCms users_list.jsp searchfilter XSS (Sat Mar 22 2008 - 22:03:04 CDT)
- F5 BIG-IP Web Management Audit Log XSS (Sat Mar 22 2008 - 21:49:46 CDT)
- Alkacon OpenCms logfileViewSettings.jsp XSS, file disclosure (Sat Mar 08 2008 - 13:49:25 CST)
- F5 BIG-IP Web Management Console XSS (Sat Mar 08 2008 - 12:36:50 CST)
no-replyaria-security.net
- Mambo/joomla com_intellect "page" LFI [Aria-Security] (Tue Mar 18 2008 - 22:34:00 CDT)
- Joomla components com_guide "category" Remote SQL Injection [Aria-Security] (Sat Mar 15 2008 - 18:56:22 CDT)
- Office XP Remote SQL Injection (Thu Mar 13 2008 - 12:32:04 CDT)
- Office XP Remote SQL Injection (Thu Mar 13 2008 - 12:32:04 CDT)
- Mambo Components ensenanzas "id" Remote SQL Injection (Mon Mar 10 2008 - 21:36:32 CDT)
- PHP-Nuke Module "seminar" Local FIle Inclusion (Tue Mar 04 2008 - 01:08:45 CST)
- PHP-Nuke Module eGallery "pid" Remote SQL Injection (Mon Mar 03 2008 - 19:41:31 CST)
- Dynamic photo gallery V1.02 SQL Injection (Sat Mar 01 2008 - 21:34:18 CST)
- Mambo com_Musica "id" Remote SQL Injection (Fri Feb 29 2008 - 20:45:03 CST)
Noah Meyerhans
- [SECURITY] [DSA 1530-1] New cupsys packages fix multiple vulnerabilities (Tue Mar 25 2008 - 10:10:49 CDT)
- [SECURITY] [DSA 1530-1] New cupsys packages fix multiple vulnerabilities (Tue Mar 25 2008 - 10:10:49 CDT)
- [SECURITY] [DSA 1524-1] New krb5 packages fix multiple vulnerabilities (Tue Mar 18 2008 - 14:11:14 CDT)
nyubicrewirc.mildnet.cn
- SolpotCrew Advisory #16 - Mitra Informatika Solusindo cart Remote Sql Injection Exploit (Tue Mar 04 2008 - 14:08:52 CST)
omnipresentemail.it
- Re: Re: XChat 2.8.4-1 - Multiple Vulnerabilities (Sat Mar 29 2008 - 12:41:01 CDT)
- eForum 0.4 XSS (Mon Mar 17 2008 - 19:38:44 CDT)
opexocgmail.com
- Re: Re: Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow (Mon Mar 17 2008 - 18:27:31 CDT)
- Re: Re: Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow (Mon Mar 17 2008 - 18:28:47 CDT)
- Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow (Fri Mar 14 2008 - 21:23:02 CDT)
orsino
- Re: Linksys phone adapter denial of service (Mon Mar 24 2008 - 11:29:53 CDT)
paraw
- Re: Local persistent DoS in Windows XP SP2 Taskmgr (Sat Mar 15 2008 - 14:59:13 CDT)
patrickaushack.com
- Re: Remotely Anywhere 'Accept-Charset' Parameter NULL Pointer (Mon Mar 10 2008 - 22:03:56 CDT)
Peter Watkins
- Re: Firewire Attack on Windows Vista (Wed Mar 05 2008 - 18:37:45 CST)
Petko D. Petkov
- Agile Hacking (Mon Mar 17 2008 - 15:46:41 CDT)
- The Router Hacking Challenge is Over! (Sat Mar 01 2008 - 16:08:29 CST)
phintermate.com
- Re: Directory traversal and DoS in WinIPDS G52-33-021 (Thu Mar 13 2008 - 08:43:10 CDT)
Pierre-Yves Rofes
- [ GLSA 200803-32 ] Wireshark: Denial of Service (Mon Mar 24 2008 - 15:55:06 CDT)
- [ GLSA 200803-28 ] OpenLDAP: Denial of Service vulnerabilities (Wed Mar 19 2008 - 17:56:02 CDT)
- [ GLSA 200803-27 ] MoinMoin: Multiple vulnerabilities (Tue Mar 18 2008 - 18:36:09 CDT)
- [ GLSA 200803-23 ] Website META Language: Insecure temporary file usage (Sat Mar 15 2008 - 16:53:13 CDT)
- [ GLSA 200803-22 ] LIVE555 Media Server: Denial of Service (Thu Mar 13 2008 - 18:10:08 CDT)
- [ GLSA 200803-20 ] International Components for Unicode: Multiple vulnerabilities (Tue Mar 11 2008 - 18:01:08 CDT)
- [ GLSA 200803-19 ] Apache: Multiple vulnerabilities (Tue Mar 11 2008 - 17:38:42 CDT)
- [ GLSA 200803-18 ] Cacti: Multiple vulnerabilities (Mon Mar 10 2008 - 17:48:11 CDT)
- [ GLSA 200803-17 ] PDFlib: Multiple buffer overflows (Mon Mar 10 2008 - 17:33:22 CDT)
- [ GLSA 200803-16 ] MPlayer: Multiple buffer overflows (Mon Mar 10 2008 - 16:46:34 CDT)
- [ GLSA 200803-15 ] phpMyAdmin: SQL injection vulnerability (Sun Mar 09 2008 - 16:44:42 CDT)
- [ GLSA 200803-14 ] Ghostscript: Buffer overflow (Sat Mar 08 2008 - 12:57:37 CST)
- [ GLSA 200803-13 ] VLC: Multiple vulnerabilities (Fri Mar 07 2008 - 17:17:12 CST)
- [ GLSA 200803-11 ] Vobcopy: Insecure temporary file creation (Wed Mar 05 2008 - 16:50:27 CST)
- [ GLSA 200803-12 ] Evolution: Format string vulnerability (Wed Mar 05 2008 - 17:01:11 CST)
- [ GLSA 200803-10 ] lighttpd: Multiple vulnerabilities (Wed Mar 05 2008 - 15:42:36 CST)
- [ GLSA 200803-09 ] Opera: Multiple vulnerabilities (Tue Mar 04 2008 - 17:03:04 CST)
- [ GLSA 200803-08 ] Win32 binary codecs: Multiple vulnerabilities (Tue Mar 04 2008 - 16:38:56 CST)
- [ GLSA 200803-04 ] Mantis: Cross-Site Scripting (Mon Mar 03 2008 - 15:42:05 CST)
- [ GLSA 200803-07 ] Paramiko: Information disclosure (Mon Mar 03 2008 - 16:11:00 CST)
- [ GLSA 200803-06 ] SWORD: Shell command injection (Mon Mar 03 2008 - 16:00:10 CST)
- [ GLSA 200803-05 ] SplitVT: Privilege escalation (Mon Mar 03 2008 - 15:48:59 CST)
- [ GLSA 200803-03 ] Audacity: Insecure temporary file creation (Sun Mar 02 2008 - 18:15:21 CST)
- [ GLSA 200803-01 ] Adobe Acrobat Reader: Multiple vulnerabilities (Sun Mar 02 2008 - 18:01:07 CST)
- [ GLSA 200803-02 ] Firebird: Multiple vulnerabilities (Sun Mar 02 2008 - 18:11:38 CST)
ppelannehostgator.com
- Horde Webmail file inclusion proof of concept & patch. (Thu Mar 06 2008 - 21:25:23 CST)
ProCheckUp Research
- PR08-02: Plone CMS Security Research - the Art of Plowning (Thu Mar 13 2008 - 12:32:47 CDT)
quentin.berdugohapsis.fr
- Security Advisory on RSA Web ID (XSS) (Mon Mar 17 2008 - 09:58:08 CDT)
r080cy90rgmail.com
- PHP-Nuke KutubiSitte "kid" SQL Injection exploit code adding (Thu Mar 06 2008 - 15:28:28 CST)
- PHP-Nuke KutubiSitte "kid" SQL Injection exploit code adding (Thu Mar 06 2008 - 15:28:28 CST)
r57blggmail.com
- PacketTrap Networks pt360 2.0.39 TFTPD Remote DoS Exploit (Sat Mar 29 2008 - 17:06:52 CDT)
- JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities (Thu Mar 27 2008 - 09:34:14 CDT)
- TopperMod 2.0 Remote SQL Injection Vulnerability (Thu Mar 27 2008 - 09:35:26 CDT)
- Cuteflow Bin v1.5.0 Local File Inclusion Vuln (Tue Mar 25 2008 - 11:47:43 CDT)
raeburnMIT.EDU
- MITKRB5-SA-2008-002: array overrun in RPC library used by kadmin (resend, corrected subject) (Tue Mar 18 2008 - 13:36:56 CDT)
- MITKRB5-SA-2008-001: double-free, uninitialized data vulnerabilities in krb5kdc (Tue Mar 18 2008 - 13:15:34 CDT)
- MITKRB5-SA-2008-001: double-free, uninitialized data vulnerabilities in krb5kdc (Tue Mar 18 2008 - 13:14:53 CDT)
Raphael Marichez
- [ GLSA 200803-21 ] Sarg: Remote execution of arbitrary code (Wed Mar 12 2008 - 13:59:10 CDT)
Recon
- Recon 2008 - Call For Paper (Sun Mar 02 2008 - 22:39:59 CST)
RedTeam Pentesting GmbH
- Advisory: SQL-Injections in Mapbender (Tue Mar 11 2008 - 06:35:15 CDT)
Robert Buchholz
- [ GLSA 200803-31 ] MIT Kerberos 5: Multiple vulnerabilities (Mon Mar 24 2008 - 14:37:31 CDT)
- [ GLSA 200803-30 ] ssl-cert eclass: Certificate disclosure (Wed Mar 19 2008 - 20:18:37 CDT)
- [ GLSA 200803-30 ] ssl-cert eclass: Certificate disclosure (Wed Mar 19 2008 - 20:18:37 CDT)
- [ GLSA 200803-26 ] Adobe Acrobat Reader: Insecure temporary file creation (Tue Mar 18 2008 - 13:18:36 CDT)
- [ GLSA 200803-25 ] Dovecot: Multiple vulnerabilities (Tue Mar 18 2008 - 07:12:55 CDT)
- ERRATA: [ GLSA 200801-09 ] X.Org X server and Xfont library: Multiple vulnerabilities (Wed Mar 05 2008 - 14:48:03 CST)
Roger A. Grimes
- RE: Firewire Attack on Windows Vista (Wed Mar 05 2008 - 15:30:35 CST)
rPath Update Announcements
- rPSA-2008-0132-1 lighttpd (Mon Mar 31 2008 - 14:32:09 CDT)
- rPSA-2008-0128-1 firefox (Thu Mar 27 2008 - 13:02:17 CDT)
- rPSA-2008-0123-1 ruby (Tue Mar 25 2008 - 12:06:13 CDT)
- rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server (Tue Mar 25 2008 - 11:51:04 CDT)
- rPSA-2008-0116-1 unzip (Fri Mar 21 2008 - 17:44:28 CDT)
- rPSA-2008-0118-1 bzip2 (Fri Mar 21 2008 - 17:50:37 CDT)
- rPSA-2008-0116-1 unzip (Fri Mar 21 2008 - 17:44:28 CDT)
- rPSA-2008-0118-1 bzip2 (Fri Mar 21 2008 - 17:50:37 CDT)
- rPSA-2008-0116-1 unzip (Fri Mar 21 2008 - 17:44:28 CDT)
- rPSA-2008-0112-1 krb5 krb5-server krb5-services krb5-test krb5-workstation (Wed Mar 19 2008 - 18:44:09 CDT)
- rPSA-2008-0108-1 dovecot (Wed Mar 12 2008 - 15:48:19 CDT)
- rPSA-2008-0106-1 lighttpd (Wed Mar 12 2008 - 13:07:20 CDT)
- rPSA-2008-0099-1 dbus dbus-glib dbus-qt dbus-x11 (Fri Mar 07 2008 - 14:47:45 CST)
sad_wabi_usernowhere.com
- Re: Re: Re: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit (Thu Mar 13 2008 - 11:41:06 CDT)
security-alerthp.com
- [security bulletin] HPSBGN02319 SSRT080027 rev.1 - HP Compaq Notebook PC BIOS, Local Unauthorized Access (Fri Mar 28 2008 - 08:03:32 CDT)
- [security bulletin] HPSBGN02305 SSRT080004 rev.1 - HP Compaq Business Notebook PC BIOS, Local Denial of Service (DoS) (Fri Mar 28 2008 - 08:02:45 CDT)
- [security bulletin] HPSBOV02278 SSRT071479 rev.1 - HP OpenVMS SSH Using TCP/IP Services for OpenVMS, Remote Unauthorized Access (Fri Mar 28 2008 - 08:04:18 CDT)
- [security bulletin] HPSBGN02319 SSRT080027 rev.1 - HP Compaq Notebook PC BIOS, Local Unauthorized Access (Fri Mar 28 2008 - 08:03:32 CDT)
- [security bulletin] HPSBGN02305 SSRT080004 rev.1 - HP Compaq Business Notebook PC BIOS, Local Denial of Service (DoS) (Fri Mar 28 2008 - 08:02:45 CDT)
- [security bulletin] HPSBTU02322 SSRT080011 rev.1 - HP Tru64 UNIX running SSH/SFTP Server, Remote Execution of Arbitrary Code or Denial of Service (DoS) (Wed Mar 26 2008 - 07:28:25 CDT)
- HPSBST02321 SSRT080029 rev.1 - HP StorageWorks Library and Tape Tools (LTT) Running on HP-UX, Local Unauthorized Access (Wed Mar 19 2008 - 10:05:54 CDT)
- [security bulletin] HPSBST02320 SSRT080028 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-014 to MS08-017 (Tue Mar 18 2008 - 07:33:28 CDT)
- [security bulletin] HPSBUX02313 SSRT080015 rev.2 - HP-UX Running Apache, Remote Cross Site Scripting (XSS) (Tue Mar 11 2008 - 09:24:19 CDT)
- [security bulletin] HPSBUX02316 SSRT071495 rev.1 - HP-UX running HP CIFS Server (Samba), Remote Execution of Arbitrary Code (Tue Mar 11 2008 - 09:25:09 CDT)
- [security bulletin] HPSBUX02306 SSRT071463 rev.2 - HP-UX Running ARPA Transport, Remote Denial of Service (DoS) (Mon Mar 10 2008 - 07:27:02 CDT)
securitymandriva.com
- [ MDVSA-2008:080 ] - Updated Firefox packages fix multiple vulnerabilities (Fri Mar 28 2008 - 19:03:00 CDT)
- [ MDVSA-2008:079 ] - Updated sarg packages fix multiple vulnerabilities (Thu Mar 27 2008 - 17:14:05 CDT)
- [ MDVSA-2008:078 ] - Updated openssh packages fix X connection hijacking (Wed Mar 26 2008 - 20:37:09 CDT)
- [ MDVSA-2008:077 ] - Updated perl-Tk packages fix GIF processing vulnerability (Wed Mar 26 2008 - 19:11:13 CDT)
- [ MDVSA-2008:076 ] - Updated wml packages fix symlink vulnerabilities (Wed Mar 26 2008 - 15:53:01 CDT)
- [ MDVSA-2008:075 ] - Updated bzip2 packages fix denial of service vulnerability (Sun Mar 23 2008 - 16:45:21 CDT)
- [ MDVSA-2008:074 ] - Updated audacity package fixes insecure temporary directory creation (Thu Mar 20 2008 - 17:37:09 CDT)
- [ MDVSA-2008:073 ] - Updated perl-Net-DNS packages fix DoS vulnerability (Thu Mar 20 2008 - 15:44:10 CDT)
- [ MDVSA-2008:073 ] - Updated perl-Net-DNS packages fix DoS vulnerability (Thu Mar 20 2008 - 15:44:10 CDT)
- [ MDVSA-2008:072 ] - Updated kernel packages fix vulnerability (Thu Mar 20 2008 - 12:38:23 CDT)
- [ MDVSA-2008:072 ] - Updated kernel packages fix vulnerability (Thu Mar 20 2008 - 12:38:23 CDT)
- [ MDVSA-2008:072 ] - Updated kernel packages fix vulnerability (Thu Mar 20 2008 - 12:38:23 CDT)
- [ MDVSA-2008:071 ] - Updated Kerberos packages fix multiple vulnerabilities (Wed Mar 19 2008 - 17:08:56 CDT)
- [ MDVSA-2008:071 ] - Updated Kerberos packages fix multiple vulnerabilities (Wed Mar 19 2008 - 17:08:56 CDT)
- [ MDVSA-2008:071 ] - Updated Kerberos packages fix multiple vulnerabilities (Wed Mar 19 2008 - 17:08:56 CDT)
- [ MDVSA-2008:070 ] - Updated Kerberos packages fix multiple vulnerabilities (Wed Mar 19 2008 - 17:03:49 CDT)
- [ MDVSA-2008:069 ] - Updated Kerberos packages fix multiple vulnerabilities (Wed Mar 19 2008 - 16:57:32 CDT)
- [ MDVSA-2008:068 ] - Updated unzip packages vulnerability (Tue Mar 18 2008 - 20:26:42 CDT)
- [ MDVSA-2008:067 ] - Updated nagios packages fix multiple vulnerabilities (Tue Mar 18 2008 - 16:04:27 CDT)
- [ MDVSA-2008:066 ] - Updated gcc packages fix directory traversal vulnerability in fastjar (Thu Mar 13 2008 - 14:36:09 CDT)
- [ MDVSA-2008:065 ] - Updated pulseaudio packages fix denial of service vulnerabilities (Sun Mar 09 2008 - 16:49:59 CDT)
- [ MDVSA-2008:064 ] - Updated tomboy packages fix improper LD_LIBRARY_PATH handling (Fri Mar 07 2008 - 15:06:13 CST)
- [ MDVSA-2008:063 ] - Updated Evolution packages fix critical vulnerability (Thu Mar 06 2008 - 20:42:37 CST)
- [ MDVSA-2008:062 ] - Updated Thunderbird packages fix multiple vulnerabilities (Thu Mar 06 2008 - 19:49:53 CST)
- [ MDVSA-2008:061 ] - Updated mailman packages fix multiple XSS vulnerabilities (Thu Mar 06 2008 - 15:17:33 CST)
- [ MDVSA-2008:060 ] - Updated Joomla! packages fix multiple vulnerabilities (Wed Mar 05 2008 - 16:57:42 CST)
- [ MDVSA-2008:058 ] - Updated openldap packages fix multiple vulnerabilities (Wed Mar 05 2008 - 13:32:25 CST)
- [ MDVSA-2008:059 ] - Updated tcl packages fix vulnerability (Wed Mar 05 2008 - 16:04:46 CST)
- [ MDVSA-2008:057 ] - Updated wireshark packages fix denial of service vulnerabilities (Mon Mar 03 2008 - 15:57:37 CST)
Seth Fogie
- Airscanner Mobile Security Advisory #07122001: Eye-Fi Multiple Vulnerabilities (Mon Mar 03 2008 - 15:10:11 CST)
shaheemirzagmail.com
- Invision Power Board <=2.3.x iFrame Vuln (Wed Mar 26 2008 - 11:19:01 CDT)
sibertrwolflive.com
- Smf 1.1.4 Remote File Inclusion Vulnerabilities (Fri Mar 28 2008 - 05:00:13 CDT)
- Smf 1.1.4 Remote File Inclusion Vulnerabilities (Fri Mar 28 2008 - 05:00:13 CDT)
sipherrgmail.com
- Aztech ADSL2/2+ 4 Port remote root (Tue Mar 25 2008 - 19:08:49 CDT)
- Re: Re: Linksys phone adapter denial of service (Mon Mar 24 2008 - 11:20:53 CDT)
- Linksys phone adapter denial of service (Sun Mar 23 2008 - 22:53:34 CDT)
SkyOut
- Local persistent DoS in Windows XP SP2 Taskmgr (Fri Mar 14 2008 - 14:47:50 CDT)
Stefan Kanthak
- Re: Firewire Attack on Windows Vista (Tue Mar 11 2008 - 17:55:42 CDT)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Mon Mar 10 2008 - 09:12:31 CDT)
- Re: Firewire Attack on Windows Vista (Sun Mar 09 2008 - 11:27:26 CDT)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Mon Mar 10 2008 - 09:12:31 CDT)
- Re: Firewire Attack on Windows Vista (Sun Mar 09 2008 - 11:27:26 CDT)
Steve Kemp
- [SECURITY] [DSA 1522-1] New xwine packages fix several vulnerabilities (Thu Mar 20 2008 - 14:08:27 CDT)
- [SECURITY] [DSA 1521-1] New lighttpd packages fix arbitrary file disclosure (Sun Mar 16 2008 - 10:45:09 CDT)
- [SECURITY] [DSA 1513-1] New lighttpd packages fix CGI source disclosure (Thu Mar 06 2008 - 12:36:59 CST)
- [SECURITY] [DSA 1511-1] New libicu packages fix multiple problems (Mon Mar 03 2008 - 15:14:41 CST)
Steve Shockley
- Re: Office XP Remote SQL Injection (Fri Mar 14 2008 - 00:47:29 CDT)
- Re: Firewire Attack on Windows Vista (Mon Mar 10 2008 - 19:51:15 CDT)
- Re: Multiple vulnerabilities in Double-Take 5.0.0.2865 (Thu Mar 06 2008 - 15:14:03 CST)
Steven M. Christey
- Re: hacking the mitsubishi GB-50A (Tue Mar 25 2008 - 17:42:38 CDT)
str0ke
- Re: JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities (Thu Mar 27 2008 - 11:42:51 CDT)
swhitesecurestate.com
- IBM Rational ClearQuest Web Multiple XSS Vulnerabilities (Wed Mar 19 2008 - 13:39:11 CDT)
- CS-Cart XSS (Wed Mar 19 2008 - 13:33:05 CDT)
Sylvain
- XNview 1.92.1 Long Filename Overflow (Sat Mar 15 2008 - 07:20:05 CDT)
sys-projecthotmail.com
- KAPhotoservice (album.asp) Remote SQL Injection Exploit (Thu Mar 20 2008 - 07:31:04 CDT)
- Mutiple Timesheets <= 5.0 - Multiple Remote Vulnerabilities (Mon Mar 17 2008 - 05:19:46 CDT)
- EasyCalendar <= 4.0tr - Multiple Remote Vulnerabilities (Mon Mar 17 2008 - 05:17:44 CDT)
- EasyGallery <= 5.0tr - Multiple Remote Vulnerabilities (Fri Mar 14 2008 - 06:09:14 CDT)
- Koobi CMS 4.3.0 - 4.2.3 (categ) Remote SQL Injection Vulnerability (Sat Mar 01 2008 - 05:01:54 CST)
Thierry Zoller
- Re: Firewire Attack on Windows Vista (Wed Mar 05 2008 - 12:29:58 CST)
Thijs Kinkhorst
- [SECURITY] [DSA 1531-2] New policyd-weight packages fix insecure temporary files (Sat Mar 29 2008 - 13:29:43 CDT)
- [SECURITY] [DSA 1531-1] New policyd-weight packages fix insecure temporary files (Thu Mar 27 2008 - 10:36:22 CDT)
- [SECURITY] [DSA 1528-1] New serendipity packages fix cross site scripting (Mon Mar 24 2008 - 11:38:21 CDT)
- [SECURITY] [DSA 1528-1] New serendipity packages fix cross site scripting (Mon Mar 24 2008 - 11:38:21 CDT)
- [SECURITY] [DSA 1527-1] New debian-goodies packages fix privilege escalation (Mon Mar 24 2008 - 09:47:58 CDT)
- [SECURITY] [DSA 1493-2] New sdl-image1.2 packages fix arbitrary code execution (Sun Mar 16 2008 - 15:20:04 CDT)
- [SECURITY] [DSA 1520-1] New smarty packages fix arbitrary code execution (Sun Mar 16 2008 - 06:36:42 CDT)
- [SECURITY] [DSA 1519-1] New horde3 packages fix information disclosure (Sat Mar 15 2008 - 18:31:57 CDT)
- [SECURITY] [DSA 1518-1] New backup-manager packages fix information disclosure (Sat Mar 15 2008 - 17:16:33 CDT)
- [SECURITY] [DSA 1517-1] New ldapscripts packages fix information disclosure (Sat Mar 15 2008 - 17:16:22 CDT)
- [SECURITY] [DSA 1512-1] New evolution packages fix arbitrary code execution (Wed Mar 05 2008 - 08:43:46 CST)
Thor (Hammer of God)
- RE: Local persistent DoS in Windows XP SP2 Taskmgr (Sat Mar 15 2008 - 17:41:12 CDT)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Fri Mar 07 2008 - 13:55:19 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Fri Mar 07 2008 - 13:40:11 CST)
- RE: [Full-disclosure] Firewire Attack on Windows Vista (Fri Mar 07 2008 - 11:42:28 CST)
- RE: Firewire Attack on Windows Vista (Thu Mar 06 2008 - 15:11:43 CST)
Tim
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Sat Mar 08 2008 - 16:51:00 CST)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Sat Mar 08 2008 - 12:32:33 CST)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 16:30:22 CST)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 14:44:19 CST)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 14:20:28 CST)
- Re: [Full-disclosure] Firewire Attack on Windows Vista (Thu Mar 06 2008 - 14:00:09 CST)
Timo Sirainen
- Dovecot mail_extra_groups setting is often used insecurely (Tue Mar 04 2008 - 00:47:53 CST)
titonbastardlabs.com
- Re: [Full-disclosure] Vulnerabilities in Timbuktu Pro 8.6.5 (Tue Mar 11 2008 - 05:29:48 CDT)
Tobias Heinlein
- [ GLSA 200803-29 ] ViewVC: Multiple vulnerabilities (Wed Mar 19 2008 - 17:52:13 CDT)
- [ GLSA 200803-29 ] ViewVC: Multiple vulnerabilities (Wed Mar 19 2008 - 17:52:13 CDT)
- [ GLSA 200803-29 ] ViewVC: Multiple vulnerabilities (Wed Mar 19 2008 - 17:52:13 CDT)
- [ GLSA 200803-24 ] PCRE: Buffer overflow (Mon Mar 17 2008 - 19:32:20 CDT)
Tobias Klein
- [TKADV2008-002] avast! 4.7 aavmker4.sys Kernel Memory Corruption (Sun Mar 30 2008 - 07:43:46 CDT)
- [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability (Sat Mar 08 2008 - 15:39:37 CST)
Tonnerre Lombard
- Re: Firewire Attack on Windows Vista (Fri Mar 07 2008 - 01:51:11 CST)
- Re: Firewire Attack on Windows Vista (Thu Mar 06 2008 - 01:54:37 CST)
turkish-warriorrhotmail.com
- Powered by phpBB 2001, 2006 (SQL) (Wed Mar 12 2008 - 12:36:33 CDT)
- PHP-Nuke Copyright 2005 SQL (Sat Mar 01 2008 - 10:47:24 CST)
underwateritdefence.ru
- Firebird remote BOF POC (Sun Mar 09 2008 - 08:02:19 CDT)
Valery Marchuk
- Cross-site Scripting and CSRF in TorrentTrader Classic v1.08 (Mon Mar 03 2008 - 14:09:06 CST)
vermskymotomoddinguk.info
- Re: Simple Machines Forum "SMF Shoutbox" Mod Persistent XSS (Fri Mar 21 2008 - 15:36:21 CDT)
Vincent Archer
- Re: hacking the mitsubishi GB-50A (Tue Mar 25 2008 - 03:02:59 CDT)
vivek_infosecyahoo.com
- CSRF in joomla 1.0.11 stable version (Mon Mar 03 2008 - 03:23:28 CST)
VMware Security team
- VMSA-2008-0006 Updated libxml2 service console package (Fri Mar 28 2008 - 19:32:21 CDT)
- VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues (Mon Mar 17 2008 - 21:12:06 CDT)
- VMSA-2008-0004 Low: Updated e2fsprogs service console package (Mon Mar 03 2008 - 16:10:58 CST)
vulnerabilityresearchdigitaldefense.net
- DDIVRT-2008-09 PacketTrap PT360 Tool Suite TFTP Denial of Service Vulnerability (Mon Mar 03 2008 - 08:22:27 CST)
- DDIVRT-2008-09 PacketTrap PT360 Tool Suite TFTP Denial of Service Vulnerability (Mon Mar 03 2008 - 08:22:27 CST)
- DDIVRT-2008-09 PacketTrap PT360 Tool Suite TFTP Denial of Service Vulnerability (Mon Mar 03 2008 - 08:22:27 CST)
- DDIVRT-2008-10 PacketTrap TFTP Directory Traversal Vulnerability (Mon Mar 03 2008 - 08:18:45 CST)
- DDIVRT-2008-10 PacketTrap TFTP Directory Traversal Vulnerability (Mon Mar 03 2008 - 08:18:45 CST)
vulnswintercore.com
- Rise of the spammers (Thu Mar 13 2008 - 06:46:16 CDT)
w0lfd33mhotmail.com
- Re: Internet explorer 7.0 spoofing (Sat Mar 29 2008 - 00:24:31 CDT)
Williams, James K
- CA Multiple Products DSM ListCtrl ActiveX Control Buffer Overflow Vulnerability (Fri Mar 28 2008 - 08:16:49 CDT)
- Note about recently publicized CA BrightStor ActiveX exploit code (Thu Mar 20 2008 - 09:08:42 CDT)
wsn1983gmail.com
- Directory traversal in EdiorCMS V3.0 (Thu Mar 13 2008 - 00:48:56 CDT)
www.yo.bygmail.com
- vuln in snewscms Rus v 2.3 (Sun Mar 16 2008 - 12:05:54 CDT)
xx_hack_xx_2004hotmail.com
- Multiple XSS in DigiDomain (Wed Mar 26 2008 - 22:13:48 CDT)
- XSS in cPanel 11.x (Fri Mar 21 2008 - 15:21:50 CDT)
- cPanel 11.x => List Directories and Folders (Tue Mar 18 2008 - 08:21:22 CDT)
- XSS in XP Book version 3.0 (Sun Mar 02 2008 - 15:59:08 CST)
zdi-disclosures3com.com
- ZDI-08-013: Novell eDirectory for Linux Stack Overflow (Wed Mar 26 2008 - 12:31:52 CDT)
- ZDI-08-012: IBM Informix Dynamic Server Authentication Password Stack Overflow Vulnerability (Thu Mar 13 2008 - 15:57:58 CDT)
- ZDI-08-011: IBM Informix Dynamic Server DBPATH Buffer Overflow Vulnerability (Thu Mar 13 2008 - 15:57:34 CDT)
- ZDI-08-009: Java Web Start tempbuff Stack Buffer Overflow (Wed Mar 12 2008 - 12:24:26 CDT)
- ZDI-08-010: Java Web Start encoding Stack Buffer Overflow (Wed Mar 12 2008 - 12:24:40 CDT)
- ZDI-08-008: Microsoft Excel BIFF File Format Cell Record Parsing Memory Corruption Vulnerability (Tue Mar 11 2008 - 16:16:48 CDT)
zero-xlinuxmail.org
- HIS-webshop is vulnerable against Directory-Traversal (www.shoppark.de) (Mon Mar 24 2008 - 12:02:43 CDT)
- HIS-webshop is vulnerable against Directory-Traversal (www.shoppark.de) (Mon Mar 24 2008 - 12:02:43 CDT)
- webutil.pl is still vulnerable against Remote Command Execution. (Fri Mar 21 2008 - 12:08:36 CDT)
zinhohackerscenter.com
- Re: CSRF in joomla 1.0.11 stable version (Mon Mar 03 2008 - 12:49:01 CST)

Last message date: Mon Mar 31 2008 - 17:59:42 CDT
Archived on: Mon Mar 31 2008 - 17:59:42 CDT

448 messages sorted by: [ date ] [ thread ] [ subject ]