|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
305 messages sorted by: [ author ] [ date ] [ thread ]
Starting: Tue Jul 01 2008 - 09:09:54 CDT
Ending: Thu Jul 31 2008 - 15:24:15 CDT
- [ GLSA 200807-01 ] Python: Multiple integer overflows
- [ GLSA 200807-02 ] Motion: Execution of arbitrary code
- [ GLSA 200807-04 ] Poppler: User-assisted execution of arbitrary code
- [ GLSA 200807-05 ] OpenOffice.org: User-assisted execution of arbitrary code
- [ GLSA 200807-06 ] Apache: Denial of Service
- [ GLSA 200807-07 ] NX: User-assisted execution of arbitrary code
- [ GLSA 200807-08 ] BIND: Cache poisoning
- [ GLSA 200807-09 ] Mercurial: Directory traversal
- [ GLSA 200807-10 ] Bacula: Information disclosure
- [ GLSA 200807-11 ] PeerCast: Buffer overflow
- [ GLSA 200807-12 ] BitchX: Multiple vulnerabilities
- [ GLSA 200807-13 ] VLC: Multiple vulnerabilities
- [ GLSA 200807-14 ] Linux Audit: Buffer overflow
- [ GLSA 200807-15 ] Pan: User-assisted execution of arbitrary code
- [ MDVSA-2008:125 ] - Updated PHP packages fix multiple vulnerabilities
- [ MDVSA-2008:126 ] - Updated PHP packages fix multiple vulnerabilities
- [ MDVSA-2008:127 ] - Updated PHP packages fix multiple vulnerabilities
- [ MDVSA-2008:128 ] - Updated PHP packages fix multiple vulnerabilities
- [ MDVSA-2008:129 ] - Updated PHP packages fix multiple vulnerabilities
- [ MDVSA-2008:130 ] - Updated PHP packages fix multiple vulnerabilities
- [ MDVSA-2008:131 ] - Updated phpMyAdmin packages fix multiple vulnerabilities
- [ MDVSA-2008:132 ] - Updated gnome-screensaver packages fix authentication vulnerability
- [ MDVSA-2008:133 ] - Updated sympa packages fix DoS vulnerability
- [ MDVSA-2008:134 ] - Updated squid packages fix DoS vulnerability
- [ MDVSA-2008:135 ] - Updated gnome-screensaver packages fix authentication vulnerability
- [ MDVSA-2008:136 ] - Updated Firefox packages fix vulnerabilities
- [ MDVSA-2008:137 ] - Updated OpenOffice.org fix vulnerability, and a few other bugs
- [ MDVSA-2008:138 ] - Updated OpenOffice.org packages fix vulnerability
- [ MDVSA-2008:138-1 ] - Updated OpenOffice.org packages fix vulnerability
- [ MDVSA-2008:139 ] - Updated BIND packages fix critical DNS vulnerability
- [ MDVSA-2008:140 ] - Updated ruby packages fix vulnerabilities
- [ MDVSA-2008:141 ] - Updated ruby packages fix vulnerabilities
- [ MDVSA-2008:142 ] - Updated ruby packages fix vulnerabilities
- [ MDVSA-2008:143 ] - Updated pidgin packages fix MSN protocol handler vulnerability
- [ MDVSA-2008:144 ] - Updated openldap packages fix slapd DoS vulnerability
- [ MDVSA-2008:145 ] - Updated bluez/bluez-utils packages fix SDP packet parsing vulnerability
- [ MDVSA-2008:146 ] - Updated poppler packages fix arbitrary code execution vulnerability
- [ MDVSA-2008:147 ] - Updated pcre packages fix vulnerability
- [ MDVSA-2008:148 ] - Updated Firefox packages fix vulnerabilities
- [ MDVSA-2008:149 ] - Updated mysql packages fix vulnerabilities
- [ MDVSA-2008:150 ] - Updated mysql packages fix vulnerabilities
- [ MDVSA-2008:151 ] - Updated libxslt packages fix buffer overflow vulnerability
- [ MDVSA-2008:152 ] - Updated wireshark packages fix denial of service vulnerability
- [ MDVSA-2008:153 ] - Updated emacs packages fix vulnerability
- [ MDVSA-2008:154 ] - Updated xemacs packages fix vulnerability
- [ MDVSA-2008:155 ] - Updated Thunderbird packages fix multiple vulnerabilities
- [ MDVSA-2008:155-1 ] - Updated Thunderbird packages fix multiple vulnerabilities
- [ MDVSA-2008:156 ] - Updated libpng packages fix vulnerability
- [ MDVSA-2008:157 ] - ffmpeg
- [ MDVSA-2008:158 ] silc-toolkit
- [ MDVSA-2008:159 ] licq
- [DSECRG-08-027] Multiple RFI-LFI in 1024 CMS 1.4.3, 1.4.4 RFC
- [DSECRG-08-028] File read in Velocity web-server
- [DSECRG-08-029] Local File Include in Dokeos E-Learning System 1.8.5
- [DSECRG-08-030] Claroline 1.8.9 Multiple Security Vulnerabilities
- [DSECRG-08-031] Local File Include Vulnerability in Interact 2.4.1
- [DSECRG-08-032] Claroline 1.8.10 Multiple XSS Vulnerabilities
- [DSECRG-08-033] Local File Include Vulnerability in Pixelpost 1.7.1
- [DSECRG-08-034] Local File Include Vulnerability in Minishowcase v09b136
- [ECHO_ADV_100$2008] Comdev Web Blogger <= 4.1.3 (arcmonth) Sql Injection Vulnerability
- [Full-disclosure] [tool] SDT Cleaner 1.0
- [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning
- [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
- [Full-disclosure] iDefense Security Advisory 07.08.08: Microsoft SQL Server Restore Integer Underflow Vulnerability
- [Full-disclosure] Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution
- [ISecAuditors Security Advisories] SmbClientParser Perl module allows remote command execution
- [NETRAGARD SECURITY ADVISORY][Apple Core Image Fun House <= 2.0 OS X -- Arbitrary Code Execution][NETRAGARD-20080711]
- [oCERT-2008-007] libpoppler uninitialized pointer
- [oCERT-2008-009] libxslt heap overflow
- [SCANIT-2008-001] QNX phgrafx Privilege Escalation Vulnerability
- [SCANIT-2008-002] Wordtrans-web Remote Command Execution Vulnerability
- [SCANIT-2008-003] Wordtrans-web Remote Command Execution Vulnerability
- [security bulletin] HPSBMA02133 SSRT061201 rev.9 - HP Oracle for OpenView (OfO) Critical Patch Update
- [security bulletin] HPSBMA02345 SSRT080039 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS)
- [security bulletin] HPSBMA02346 SSRT080097 rev.1 - HP Select Identity Active Directory Bidirectional LDAP Connector, Remote Unauthorized Access
- [security bulletin] HPSBMA02346 SSRT080097 rev.3 - HP OpenView Select Identity Active Directory Bidirectional LDAP Connector, Remote Unauthorized Access
- [security bulletin] HPSBMA02348 SSRT080033 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Denial of Service (DoS)
- [security bulletin] HPSBMA02349 SSRT080043 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Unauthorized Access to Data
- [security bulletin] HPSBMA02353 SSRT080066 rev.1 - HP OpenView Internet Services Running Probe Builder, Remote Denial of Service (DoS)
- [security bulletin] HPSBUX02286 SSRT071466 rev.1 - HP-UX Running System Administration Manager (SAM), Unintended Remote Access
- [security bulletin] HPSBUX02351 SSRT080058 rev.1 - HP-UX Running BIND, Remote DNS Cache Poisoning
- [security bulletin] HPSBUX02351 SSRT080058 rev.2 - HP-UX Running BIND, Remote DNS Cache Poisoning
- [SECURITY] [DSA 1540-3] New lighttpd packages fix regression
- [SECURITY] [DSA 1544-2] New pdns-recursor packages fix predictable randomness
- [SECURITY] [DSA 1560-1] New sympa packages fix denial of service
- [SECURITY] [DSA 1569-3] New cacti packages fix regression
- [SECURITY] [DSA 1601-1] New wordpress packages fix several vulnerabilities
- [SECURITY] [DSA 1602-1] New pcre3 packages fix arbitrary code execution
- [SECURITY] [DSA 1603-1] New bind9 packages fix cache poisoning
- [SECURITY] [DSA 1604-1] BIND 8 deprecation notice
- [SECURITY] [DSA 1605-1] DNS vulnerability impact on the libc stub resolver
- [SECURITY] [DSA 1606-1] poppler packages fix execution of arbitrary code
- [SECURITY] [DSA 1607-1] New iceweasel packages fix several vulnerabilities
- [SECURITY] [DSA 1608-1] New mysql-dfsg-5.0 packages fix authorization bypass
- [SECURITY] [DSA 1609-1] New lighttpd packages fix multiple DOS issues
- [SECURITY] [DSA 1610-1] New gaim packages fix execution of arbitrary code
- [SECURITY] [DSA 1611-1] New afuse packages fix privilege escalation
- [SECURITY] [DSA 1612-1] New ruby1.8 packages fix several vulnerabilities
- [SECURITY] [DSA 1613-1] new libgd2 packages fix multiple vulnerabilities
- [SECURITY] [DSA 1614-1] New iceweasel packages fix several vulnerabilities
- [SECURITY] [DSA 1615-1] New xulrunner packages fix several vulnerabilities
- [SECURITY] [DSA 1616-1] new clamav packages fix denial of service
- [SECURITY] [DSA 1616-2] New clamav packages fix denial of service
- [SECURITY] [DSA 1617-1] New refpolicy packages fix incompatible policy
- [SECURITY] [DSA 1618-1] New ruby1.9 packages fix several vulnerabilities
- [SECURITY] [DSA 1619-1] New python-dns packages fix DNS response spoofing
- [SECURITY] [DSA 1620-1] New python2.5 packages fix several vulnerabilities
- [SECURITY] [DSA 1621-1] New icedove packages fix several vulnerabilities
- [SECURITY] [DSA 1622-1] New newsx packages fix arbitrary code execution
- [SECURITY] [DSA 1623-1] New dnsmasq packages fix cache poisoning
- [SECURITY] [DSA 1624-1] New libxslt packages fix arbitrary code execution
- [tool] ratproxy - passive web application security assessment tool
- [USN-617-2] Samba regression
- [USN-619-1] Firefox vulnerabilities
- [USN-622-1] Bind vulnerability
- [USN-623-1] Firefox vulnerabilities
- [USN-624-1] PCRE vulnerability
- [USN-626-1] Firefox and xulrunner vulnerabilities
- [USN-627-1] Dnsmasq vulnerability
- [USN-628-1] PHP vulnerabilities
- [USN-629-1] Thunderbird vulnerabilities
- [USN-630-1] ffmpeg vulnerability
- [USN-631-1] poppler vulnerability
- [White Paper] Abusing HTML 5 Structured Client-side Storage
- [~] Greetz : Me93fg & Mr.SaFa7
- Arbitrary code execution in Netrw version 127, Vim 7.2b
- AST-2008-010: Asterisk IAX 'POKE' resource exhaustion
- AST-2008-011: Traffic amplification in IAX2 firmware provisioning system
- Buffer overflow
- Call for Papers for the MEITSEC 2008 is now open.
- CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
- CFP 25C3 - The 25th Chaos Communication Congress 2008
- CFP now open for ClubHack2008 - India
- Cisco IOS shellcode explanation
- Cisco IOS shellcode explanation - additional
- Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks
- Citrix MetaFrame Privilege Escalation
- Collection of Vulnerabilities in Fully Patched Vim 7.1
- communitycms-0.1 Remote File Includion
- Context IS Advisory - MS08-39 OWA XSS
- Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100
- DeepSec 2008 - Last call for submissions
- Deepsec Talks 2007 are online - registration for 2008 is open
- Def_Blog 1.0.3 Multiple Remote SQL Injection Vulnerabilities
- DEV WMS Multiple Vulnerabilities
- E-Mail header Injection in HiFriend
- Easybookmarker 40tr Xss Vulnerability By Khashayar Fereidani
- Easydynamicpages 30tr Multipe Vulerabilities ( Xss / Sql Injection Exploit / File Disclosure Exploit )
- Easyecards 310a Multipe Vulerabilities ( Xss / Sql Injection Exploit / File Disclosure Exploit ) By Khashayar Fereidani
- EasyPublish 3.0tr Multiple Vulnerabilities ( Xss / Sql Injection Exploit / File Disclosure Exploit )
- ekoparty security trainings (2008) announcement
- EMC Dantz Retrospect 7 backup Client PlainText Password Hash Disclosure Vulnerability
- Endless loop in Soldner 33724
- ezContents CMS Renote File inclusion
- EZWebAlbum (dlfilename) Remote File Disclosure Vulnerability
- F5 FirePass 1200 SNMP daemon DoS
- FGA-2008-16: EMC Dantz Retrospect 7 backup Client 7.5.116 NULL-Pointer reference Denial of Service Vulnerability
- FGA-2008-16: EMC Dantz Retrospect 7 backup Client 7.5.116 Remote Memory corruption Vulnerability
- FGA-2008-16: EMC Dantz Retrospect 7 backup Server Authentication Module Weak Password Hash Arithmetic Vulnerability
- Flip V3.0 final
- FreeBSD Security Advisory FreeBSD-SA-08:06.bind
- gapicms v9.0.2 (dirDepth) Remote File Inclusion Vulnerability
- Gregarius <= 0.5.4 SQL Injection
- HIOX Browser Statistics 2.0 Remote File Inclusion Vulnerability
- HIOX Random Ad 1.3 (hioxRandomAd.php hm) RFI Vulnerability
- HIOX Star Rating System 1.0 Remote File Inclusion Vulnerability
- how to request a cve id?
- HPSBMA02346 SSRT080097 rev.2 - HP Select Identity Active Directory Bidirectional LDAP Connector, Remote Unauthorized Access
- HPSBST02350 SSRT080102 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-037 to MS08-040
- http://www.zerodayinitiative.com/advisories/ZDI-08-046
- iDefense Security Advisory 07.08.08: Microsoft SQL Server Restore Integer Underflow Vulnerability
- iDefense Security Advisory 07.09.08: Novell eDirectory LDAP Search Request Heap Corruption Vulnerability
- iDefense Security Advisory 07.15.08: Oracle Database DBMS_AQELM Package Buffer Overflow Vulnerability
- iDefense Security Advisory 07.15.08: Oracle Database Local Untrusted Library Path Vulnerability
- iDefense Security Advisory 07.15.08: Oracle Internet Directory Pre-Authentication LDAP DoS Vulnerability
- iDefense Security Advisory 07.28.08: Hewlett-Packard OVIS Probe Builder Arbitrary Process Termination Vulnerability
- iDefense Security Advisory 07.30.08: SAP MaxDB dbmsrv Untrusted Execution Path Vulnerability
- IETF Internet-Draft on TCP Port randomization
- Insomnia : ISVA-080709.1 - Microsoft SQL Server - Corrupt Backup File Heap Overflow
- ISEC 2008(Information Security Conference) Guide
- JamRoom <= 3.3.8 Authentication Bypass
- Lateral SQL Injection Revisited - No Special Privs Required
- Local information disclosure in WeFi Client v3.3.3.0
- Local vulnerability in WeFi Client v3.2.1.4.1(Update)
- London DEFCON July meet - DC4420 - Thursday 10th July (today!)
- Maran PHP Blog Xss By Khashayar Fereidani
- Memory corruption and NULL pointer in Unreal Tournament III 1.2
- Microsoft DNS patch KB951748 incompatible with Zonealarm
- Microsoft DNS patch KB951748 incompatible with Zonealarm FIXED
- Minneapolis DC612 Meeting July 10th, 2008<img src="/imgs/at.gif" border=0 align=middle>6pm
- MJGuest 6.8 GT Cross Site Scripting Vulnerability
- Multiple Cross-Site Scripting Vulnerabilities in Web Wiz Rich Text Editor version 4.02
- Multiple vulnerabilities in TietoEnator's Procapita school administration system, at least version
- MyBlog <=0.9.8 Multiple Vulnerabilities
- n.runs-SA-2008.002 - F-Prot Out-of-Bound Memory Access DoS (remote)
- n.runs-SA-2008.004 - AVG Anti-Virus Divide by Zero - DoS (remote)
- Nessus plugins for recent MS Bulletins
- New Paper: More than 600 million users surf at high risk
- Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow
- NULL pointer in Unreal Tournament 2004 v3369
- NULL pointer in ZDaemon 1.08.07
- openPro 1.3.1 (LIBPATH) Remote RFI Vulnerability
- Oracle Application Server PLSQL injection flaw
- Oracle Database Local Untrusted Library Path Vulnerability
- Oracle Portal XSS fixed by CPU July 2008
- Outpost Security Suite Pro ver. 2009 Multiple vulnerabilities
- PHP-NUKE SQL Module's Name 4ndvddb
- PhpJobScheduler 3.1 Remote File Inclusion Vulnerability
- phpuserbase 1.3 (menu) Remote File Inclusion Vulnerability
- Pligg <= 9.9.0 Multiple Vulnerabilities
- Pluck Local File inclusion
- plugin Rss Remote File Inclusion Vulnerability
- PR07-37: XSS on Apache HTTP Server 413 error pages via malformed HTTP method
- PR08-13: Persistent Cross-site Scripting (XSS) on Moodle via blog entry title
- PR08-15: Several Webroot Disclosures on Moodle
- PR08-16: CSRF (Cross-site Request Forgery) on Moodle edit profile page
- Pwnie Awards 2008
- RealNetworks RealPlayer ActiveX Illegal Resource Reference Vulnerability
- Release of Pass-The-Hash Toolkit v1.4
- Remote Cisco IOS FTP exploit
- Rhythmbox Vulnerability
- rPSA-2008-0035-1 httpd mod_ssl
- rPSA-2008-0211-1 mercurial mercurial-hgk
- rPSA-2008-0212-1 tshark wireshark
- rPSA-2008-0216-1 firefox
- rPSA-2008-0217-1 vsftpd
- rPSA-2008-0218-1 ruby
- rPSA-2008-0223-1 poppler
- rPSA-2008-0231-1 bind bind-utils
- rPSA-2008-0235-1 fetchmail fetchmailconf
- rPSA-2008-0236-1 httpd mod_ssl
- rPSA-2008-0237-1 tshark wireshark
- rPSA-2008-0238-1 firefox
- SchoolCenter URL Handling Cross Site Scripting Vulnerability
- SECOBJADV-2008-02: Cygwin Installation and Update Process can be Subverted Vulnerability
- Secunia Research: Blue Coat K9 Web Protection "Referer" Header Buffer Overflow
- Secunia Research: Blue Coat K9 Web Protection Response Handling Buffer Overflows
- Secunia Research: RealPlayer SWF Frame Handling Buffer Overflow
- Secunia Research: VLC Media Player WAV Processing Integer Overflow
- Security Bypass Vulnerabilities AXESSTEL
- Security Vacation Guide
- shoutbox Remote Database Dawnload Exploit
- Simple DNS Plus 5.0/4.1 < remote Denial of Service exploit
- Tool release: [evilgrade] - Using DNS cache poisoning to exploit poor update implementations
- Tool: PorkBind Nameserver Security Scanner
- ViArt <= 3.5 SQL Injection
- Vim: Flawed Fix of Arbitrary Code Execution Vulnerability in filetype.vim
- Vim: Improper Implementation of shellescape()/Arbitrary Code Execution
- Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution
- VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix
- Vuln name: Ruby rb_ary_fill() DOS
- Vulnerability CVE-2008-3671 - MyReview's vulnerability in the access control system
- Vulnerability: SocialEngine (SocialEngine.net) high risk security flaw
- Windows Vista Power Management & Local Security Policy
- Wordpress Malicious File Execution Vulnerability
- XRMS 1.99.2 (RFI/XSS/IG) Multiple Remote Vulnerabilities
- XSS in admin logs - vBulletin 3.7.2 and lower, vBulletin 3.6.10 PL2 and lower
- Yuhhu Pubs Black Cat Remote SQL Injection Exploit
- ZDI-08-041: Novell eDirectory dhost Integer Overflow Code Execution Vulnerability
- ZDI-08-042: Sun Java Web Start Sandbox Bypass Vulnerability
- ZDI-08-043: Sun Java Web Start vm args Stack Buffer Overflow
- ZDI-08-044: Mozilla Firefox CSSValue Array Memory Corruption Vulnerability
- ZDI-08-045: Apple Safari StyleSheet ownerNode Heap Corruption Vulnerability
- ZDI-08-047: RealNetworks RealPlayer rmoc3260 ActiveX Control Memory Corruption Vulnerability
langille.org
Last message date: Thu Jul 31 2008 - 15:24:15 CDT
Archived on: Thu Jul 31 2008 - 15:24:15 CDT
305 messages sorted by: [ author ] [ date ] [ thread ]