NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2008-10

269 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Wed Oct 01 2008 - 10:21:10 CDT
Ending: Fri Oct 31 2008 - 15:25:47 CDT

Adam Laurie
- ANNOUNCE - RFIDIOt version 0.1t released (Wed Oct 08 2008 - 09:28:43 CDT)
Aditya K Sood
- Google Chrome OnbeforeUload and OnUnload Null Check Vulnerability. (Mon Oct 20 2008 - 22:42:02 CDT)
adminbugreport.ir
- CMME Multiple Information disclosure vulnerabilities (Sat Oct 04 2008 - 03:17:24 CDT)
adminirist.ir
- HostAdmin 3.* Remote File Include Vulnerabilities (Tue Oct 07 2008 - 00:04:22 CDT)
- HostAdmin Cross-Site Scripting Vulnerabilities (Thu Oct 02 2008 - 11:20:25 CDT)
adminmajorsecurity.de
- Re: HostAdmin 3.* Remote File Include Vulnerabilities (Tue Oct 07 2008 - 17:52:49 CDT)
- Re: [MajorSecurity Advisory #53]BLUEPAGE CMS - Cross Site Scripting and Session Fixation Issues (Thu Oct 02 2008 - 05:00:04 CDT)
Adrian P
- Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day (Thu Oct 30 2008 - 21:31:03 CDT)
alighieri_mlibero.it
- Re: MJGuest 6.8 GT Cross Site Scripting Vulnerability (Thu Oct 23 2008 - 04:38:55 CDT)
Amit Klein
- Re: Writeup by Amit Klein (Trusteer): Address Bar Spoofing for IE6 (Mon Oct 27 2008 - 12:01:49 CDT)
- Writeup by Amit Klein (Trusteer): Address Bar Spoofing for IE6 (Mon Oct 27 2008 - 11:14:20 CDT)
angelch4ng.cc
- Webscene eCommerce (level) Remote Sql Injection (Tue Oct 14 2008 - 11:29:29 CDT)
artful38yahoo.com
- Re: Motorola Timbuktu's Internet Locator Service real-time data exposed to public. (Tue Oct 07 2008 - 15:06:24 CDT)
atomo64gmail.com
- phpMyID can act as a redirector and as headers injector (Mon Sep 29 2008 - 19:55:49 CDT)
beenudel1986gmail.com
- phpWebSite links.php Sql Injection (Thu Oct 30 2008 - 23:20:52 CDT)
- spitfirephoto Pro pages.php Sql Injection (Thu Oct 30 2008 - 23:18:18 CDT)
- harlandscripts Mypage.php Sql Injection (Wed Oct 29 2008 - 23:26:34 CDT)
Berend-Jan Wever
- Re: Advanced application-level OS fingerprinting (Thu Oct 30 2008 - 12:28:47 CDT)
Bernardo Damele A. G.
- [Tool] sqlmap 0.6.1 released (Mon Oct 20 2008 - 09:45:16 CDT)
Bernhard Mueller
- SEC Consult SA-20081016-0 :: Remote command execution in Instant Expert Analysis (Thu Oct 16 2008 - 08:16:03 CDT)
blapostgmail.com
- [tool] crapto1 released (Tue Oct 21 2008 - 12:17:14 CDT)
brad.antoniewiczfoundstone.com
- MetaGauge 1.0.0.17 Directory Traversal (Fri Oct 03 2008 - 15:02:11 CDT)
Brett Moore
- Insomnia : ISVA-081020.1 - Altiris Deployment Server Agent - Privilege Escalation (Mon Oct 20 2008 - 18:29:43 CDT)
Cesar
- Token Kidnapping Windows 2003 PoC exploit (Wed Oct 08 2008 - 16:33:39 CDT)
ch0p83gmail.com
- flashchat severe bug (Fri Oct 17 2008 - 09:44:38 CDT)
Chip Panarchy
- MS08-067 - Where can I find an exploit for this? (Fri Oct 24 2008 - 00:06:31 CDT)
Chris Clark
- iSEC Partners Security Advisory - 2008-002-lenovornr - Lenovo Rescue and Recovery 4.20 (Fri Oct 10 2008 - 17:24:59 CDT)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA (Wed Oct 22 2008 - 10:45:17 CDT)
- Cisco Security Advisory: Authentication Bypass in Cisco Unity (Wed Oct 08 2008 - 11:18:26 CDT)
ClubHack
- ClubHack2008 [India] - CFP Closing Soon (Mon Oct 27 2008 - 07:41:11 CDT)
cocoruder
- CA BrightStor ARCServe BackUp Message Engine Remote Command Injection Vulnerability (Fri Oct 10 2008 - 19:43:41 CDT)
CORE Security Technologies Advisories
- CORE-2008-1010: VLC media player XSPF Memory Corruption (Tue Oct 14 2008 - 16:16:57 CDT)
crimson.loydgmail.com
- DebugDiag (CrashHangExt.dll 1.0) NULL Pointer Dereference (Thu Oct 30 2008 - 04:57:49 CDT)
- FastStone Image Viewer v3.6 (malformed bmp image) DoS Exploit (Sun Oct 05 2008 - 09:29:14 CDT)
- AyeView v2.20 (malformed gif image) DoS Exploit (Sat Oct 04 2008 - 14:49:42 CDT)
Cru3l.b0y
- bcoos 1.0.13 Remote File Include Vulnerability (Mon Oct 27 2008 - 06:36:41 CDT)
dan.crowleygmail.com
- Advanced application-level OS fingerprinting (Wed Oct 29 2008 - 15:55:55 CDT)
- Application-level OS fingerprinting research - pre-release hashes (Fri Oct 17 2008 - 14:22:39 CDT)
dann frazier
- [SECURITY] [DSA 1655-1] New Linux 2.6.24 packages fix several vulnerabilities (Thu Oct 16 2008 - 19:19:48 CDT)
- [SECURITY] [DSA 1653-1] New Linux 2.6.18 packages fix several vulnerabilities (Mon Oct 13 2008 - 15:25:41 CDT)
Davide Dante Del Vecchio
- Re: MS OWA 2003 Redirection Vulnerability - [MSRC7368br] (Sat Oct 18 2008 - 20:16:51 CDT)
Davide Del Vecchio
- Re: MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] (Fri Oct 17 2008 - 14:07:58 CDT)
DeepSec Conference Vienna
- Last Call for DeepSec IDSC 2008 in Vienna (Mon Oct 20 2008 - 14:44:19 CDT)
Devin Carraway
- [SECURITY] [DSA 1646-2] New squid packages fix array bounds check (Sat Oct 11 2008 - 01:46:58 CDT)
- [SECURITY] [DSA-1646-1] New squid packages fix array bounds check (Tue Oct 07 2008 - 01:12:02 CDT)
- [SECURITY] [DSA-1644-1] New mplayer packages fix integer overflows (Sun Oct 05 2008 - 15:55:31 CDT)
dhlayereddefense.com
- Layered Defense Research Advisory: Juniper Netscreen Firewall Cross-Site-Scripting (XSS) event log injection (Wed Oct 01 2008 - 20:59:24 CDT)
djmomolive.com
- Vivid Ads Shopping Cart (cid) Remote SQL Injection (Tue Oct 14 2008 - 23:05:48 CDT)
drpepppperonegmail.com
- Telecom Italia Alice Pirelli routers backdoor discoverd to activate telnet/ftp/tftp from internal LAN/WLAN. (Mon Oct 13 2008 - 17:57:10 CDT)
ds.adv.pubgmail.com
- VMware Emulation Flaw x64 Guest Privilege Escalation (1/2) (Fri Oct 03 2008 - 22:09:28 CDT)
dvlabs
- TPTI-08-07: Microsoft Windows Message Queuing Service Heap Overflow and Memory Disclosure Vulnerability (Tue Oct 14 2008 - 17:51:31 CDT)
Ehsan_Hp200hotmail.com
- PHP-Nuke Module Current_Issue (summary&id) Remote SQL injection Vulnerability (Thu Oct 30 2008 - 08:54:42 CDT)
- PHP-Nuke Module Sectionsnew (printpage&artid) Remote SQL injection Vulnerability (Thu Oct 30 2008 - 09:07:15 CDT)
- IranMC ( detail.php?Kala ) Remote SQL injection Vulnerability (Thu Oct 30 2008 - 09:13:08 CDT)
- PHP-Nuke Module BookCatalog (category&catid) Remote SQL injection Vulnerability (Thu Oct 30 2008 - 09:22:48 CDT)
- PHP-Nuke Module League (team&tid) XSS Vulnerability (Tue Oct 28 2008 - 11:04:23 CDT)
Eygene Ryabinkin
- Re: "Exploit creation - The random approach" or "Playing with random to build exploits" (Fri Oct 03 2008 - 10:43:24 CDT)
Fabian Fingerle
- Cross Site Scripting (XSS) Vulnerabilitiy in cpcommerce, CVE-2008-4121 (Sun Oct 19 2008 - 17:01:42 CDT)
fabio
- KVIrc version 3.4.0 Virgo remote format string proof of concept exploit. (Wed Oct 29 2008 - 12:44:42 CDT)
faghaninsec.ir
- BotNet on the Rise (Sun Oct 26 2008 - 09:02:36 CDT)
Florian Weimer
- [SECURITY] [DSA 1660-1] New clamav packages fix denial of service (Sun Oct 26 2008 - 08:43:46 CDT)
- [SECURITY] [DSA 1659-1] New libspf2 packages fix potential remote code execution (Thu Oct 23 2008 - 15:00:50 CDT)
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-08:10.nd6 (Wed Oct 01 2008 - 19:39:19 CDT)
g30rg3_x
- Re: Doubt in MySQL Quick Admin <= 1.5.5 (COOKIE) Local File Inclusion Vulnerability POC posted on milworm (Fri Oct 17 2008 - 11:30:38 CDT)
- WP Comment Remix 1.4.3 Multiple Vulnerabilities (Mon Oct 13 2008 - 23:37:16 CDT)
Gadi Evron
- [funsec] ICANN Terminates EstDomains' Registrar Accreditation (fwd) (Wed Oct 29 2008 - 03:28:46 CDT)
Ghost hacker
- iPei cross site scripting Vulnerablity (Thu Oct 23 2008 - 17:31:27 CDT)
- News Manager Remote SQL Injection Vulnerability (Thu Oct 09 2008 - 04:21:25 CDT)
- Website Directory - XSS Exploit (Fri Oct 03 2008 - 08:01:50 CDT)
groovydudemywasteofbandwidth.com
- Re: Token Kidnapping Windows 2003 PoC exploit (Thu Oct 09 2008 - 07:25:41 CDT)
hadikiamarsihotmail.com
- XSS in phpMyadmin (Mon Oct 27 2008 - 07:02:51 CDT)
ideaburneryahoo.com
- Re: Re: Token Kidnapping Windows 2003 PoC exploit (Sat Oct 11 2008 - 13:42:28 CDT)
iDefense Labs
- iDefense Security Advisory 10.31.08: Oracle WebLogic Apache Connector (Fri Oct 31 2008 - 13:19:27 CDT)
- iDefense Security Advisory 10.31.08: OpenOffice EMF Record Parsing Multiple Integer Overflow Vulnerabilities (Fri Oct 31 2008 - 11:54:39 CDT)
- iDefense Security Advisory 10.30.08: Adobe PageMaker Key Strings Stack Buffer Overflow (Thu Oct 30 2008 - 15:24:35 CDT)
- iDefense Security Advisory 10.14.08: Microsoft Host Integration Server 2006 Command Execution Vulnerability (Tue Oct 14 2008 - 14:22:42 CDT)
illumina7i
- Re: MS08-067 - Where can I find an exploit for this? (Wed Oct 29 2008 - 20:26:15 CDT)
ipsdixgmail.com
- Blaze Media Pro 8.02 SE vulnerability (Mon Oct 27 2008 - 13:28:39 CDT)
irancrashgmail.com
- Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani (Fri Oct 31 2008 - 08:03:55 CDT)
Isaias Calderon
- Re: MS08-067 - Where can I find an exploit for this? (Thu Oct 30 2008 - 01:14:11 CDT)
Ivan Fratric
- Internet Explorer 6 componentFromPoint() remote memory disclosure and remote code execution (Wed Oct 15 2008 - 08:42:42 CDT)
Jamie Strandboge
- [USN-661-1] Linux kernel regression (Thu Oct 30 2008 - 12:40:31 CDT)
- [USN-657-1] Amarok vulnerability (Tue Oct 21 2008 - 08:34:22 CDT)
- [USN-656-1] CUPS vulnerabilities (Wed Oct 15 2008 - 16:53:16 CDT)
- [USN-651-1] Ruby vulnerabilities (Thu Oct 09 2008 - 21:25:50 CDT)
- [USN-650-1] cpio vulnerability (Thu Oct 02 2008 - 17:20:07 CDT)
Jerome Athias
- MSF eXploit Builder v2 Alpha Sources Released (Sun Oct 26 2008 - 17:53:46 CDT)
- HTTPBruteForcer released (Sat Oct 25 2008 - 09:43:48 CDT)
- [Off-Topic] How I was busted. Story of a poor lonesome hacker (Mon Oct 20 2008 - 15:05:25 CDT)
Jim Harrison
- RE: Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day (Fri Oct 31 2008 - 15:05:15 CDT)
Joanna Rutkowska
- Paper: Adventures with a certain Xen vulnerability (Wed Oct 15 2008 - 08:39:21 CDT)
Jose Luis
- Re: vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability (Thu Oct 23 2008 - 04:33:24 CDT)
Juha-Matti Laurio
- Re: [Full-disclosure] [funsec] ICANN Terminates EstDomains' Registrar Accreditation (fwd) (Wed Oct 29 2008 - 17:56:07 CDT)
- Windows RPC MS08-067 FAQ document updated (Mon Oct 27 2008 - 10:41:23 CDT)
- Windows RPC MS08-067 FAQ document released (Sat Oct 25 2008 - 21:26:22 CDT)
- Lee has posted more detailed response to Fyodor's TCP/IP DoS post (Mon Oct 20 2008 - 07:47:32 CDT)
- Re: Motorola Timbuktu's Internet Locator Service real-time data exposed to public. (Wed Oct 08 2008 - 15:58:41 CDT)
kadfroxgmail.com
- Remote and Local File Inclusion Vulnerability <= 1.1 Rportal (Wed Oct 01 2008 - 14:24:23 CDT)
Kees Cook
- [USN-658-1] Moodle vulnerability (Thu Oct 23 2008 - 16:33:41 CDT)
- [USN-655-1] exiv2 vulnerabilities (Tue Oct 14 2008 - 21:27:22 CDT)
- [USN-654-1] libexif vulnerabilities (Tue Oct 14 2008 - 19:32:47 CDT)
- [USN-652-1] LittleCMS vulnerability (Tue Oct 14 2008 - 12:24:07 CDT)
- [USN-653-1] D-Bus vulnerabilities (Tue Oct 14 2008 - 12:24:46 CDT)
- [USN-649-1] OpenSSH vulnerabilities (Wed Oct 01 2008 - 17:31:03 CDT)
krzysztof.kozlowskikozik.net.pl
- Re: MyBB 1.4.2: Multiple Vulnerabilties (Mon Oct 27 2008 - 16:14:29 CDT)
L4teral
- Typo <= 5.1.3 Multiple Vulnerabilities (Fri Oct 31 2008 - 13:21:35 CDT)
labs-no-replyidefense.com
- iDefense Security Advisory 10.30.08: Novell eDirectory NCP Get Extension Information Request Memory Corruption Vulnerability (Thu Oct 30 2008 - 12:56:30 CDT)
- iDefense Security Advisory 10.14.08: Sun Java Web Proxy Server FTP Resource Handling Heap-Based Buffer Overflow (Tue Oct 14 2008 - 19:43:22 CDT)
- iDefense Security Advisory 10.14.08: Microsoft Visual Basic for Applications - Multiple Vulnerabilities (Tue Oct 14 2008 - 18:12:29 CDT)
Laurent Butti
- Marvell Driver Malformed Association Request Vulnerability (Mon Oct 13 2008 - 06:29:40 CDT)
lee.e.riancensus.gov
- Re: PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection (Thu Oct 09 2008 - 16:24:27 CDT)
Liu Die Yu
- Firefox Privacy Broken If Used to Open Web Page File (Tue Oct 07 2008 - 03:32:09 CDT)
Lostmongmail.com
- Re: iFoto, CSS-based GD2 photo gallery <= 1.0: Remote File Disclosure Vulnerability (Tue Oct 07 2008 - 13:52:48 CDT)
luca.carettoniikkisoft.com
- [LC-2008-04] Nokia Browser Array Sort Denial Of Service Vulnerability (Fri Oct 10 2008 - 11:04:01 CDT)
Major Malfunction
- London DEFCON meet - DC4420 - Thursday October 23rd (Mon Oct 20 2008 - 12:34:05 CDT)
Mark Thomas
- [SECURITY] CVE-2008-3271 - Apache Tomcat information disclosure (Thu Oct 09 2008 - 17:46:19 CDT)
Martin Schulze
- [SECURITY] [DSA 1661-1] New OpenOffice.org packages fix several vulnerabilities (Wed Oct 29 2008 - 13:16:58 CDT)
Martin Suess
- MS OWA 2003 Redirection Vulnerability (Wed Oct 15 2008 - 04:18:24 CDT)
martin.suesscsnc.ch
- Re: Re: MS OWA 2003 Redirection Vulnerability (Wed Oct 15 2008 - 14:55:53 CDT)
Matteo Beccati
- [OPENX-SA-2008-002] OpenX 2.4.9 and 2.6.2 fix SQL injection vulnerability (Tue Oct 07 2008 - 11:58:45 CDT)
Matthew Dempsky
- Adobe Flash Player plug-in null pointer dereference and browser crash (Wed Oct 01 2008 - 19:46:09 CDT)
MC Iglo
- Windows Mobile 6 insecure password handling and too short WLAN-password (Wed Oct 08 2008 - 13:54:47 CDT)
Michael Scheidell
- Re: MySQL command-line client HTML injection vulnerability (Wed Oct 08 2008 - 15:26:52 CDT)
- Re: Verizon FIOS (and DSL?) wireless access point insecure default WEP key (Mon Oct 06 2008 - 17:38:05 CDT)
Micheal Cottingham
- MyBB 1.4.2: Multiple Vulnerabilties (Mon Oct 27 2008 - 10:15:11 CDT)
Mike Benham
- FireGPG Passphrase And Cleartext Vulnerability (Mon Oct 20 2008 - 00:33:21 CDT)
Moritz Muehlenhoff
- [SECURITY] [DSA 1656-1] New cupsys packages fix several vulnerabilities (Mon Oct 20 2008 - 12:21:43 CDT)
- [SECURITY] [DSA 1651-1] New ruby1.8 packages fix several vulnerabilities (Sun Oct 12 2008 - 04:36:52 CDT)
- [SECURITY] [DSA 1650-1] New openldap2.3 packags fix denial of service (Sun Oct 12 2008 - 04:35:44 CDT)
- [SECURITY] [DSA 1652-1] New ruby1.9 packages fix several vulnerabilities (Sun Oct 12 2008 - 04:37:58 CDT)
- [SECURITY] [DSA 1649-1] New iceweasel packages fix several vulnerabilities (Wed Oct 08 2008 - 15:15:55 CDT)
- [SECURITY] [DSA 1643-1] New feta packages fix denial of service (Sun Oct 05 2008 - 06:08:24 CDT)
Morning Wood
- Re: [Full-disclosure] MS OWA 2003 Redirection Vulnerability - [MSRC7368br] (Sat Oct 18 2008 - 13:19:07 CDT)
mrry.dmlogmail.com
- Re: RE: MySQL command-line client HTML injection vulnerability (Fri Oct 03 2008 - 01:53:43 CDT)
Nelson Brito
- Re: "Exploit creation - The random approach" or "Playing with random to build exploits" (Thu Oct 02 2008 - 16:53:43 CDT)
nnp
- Tool update: VoIPER v0.07 (Tue Oct 28 2008 - 18:33:13 CDT)
noreply-secresearchfortinet.com
- FGA-2008-23:EMC NetWorker Denial of Service Vulnerability (Wed Oct 22 2008 - 00:31:42 CDT)
officehackattack.at
- HACKATTACK Advisory 20081016]WEB//NEWS SQL Injection and Cookie Manipulation (Thu Oct 16 2008 - 06:48:13 CDT)
okunomysql.com
- Re: MySQL command-line client HTML injection vulnerability (Tue Oct 28 2008 - 19:57:22 CDT)
ozdemirtravelgmail.com
- İltaweb Alışveriş Sistemi (tr) Sql inj (Sat Oct 11 2008 - 03:08:54 CDT)
packetpacketstormsecurity.org
- Re: News Manager Remote SQL Injection Vulnerability (Thu Oct 09 2008 - 17:20:30 CDT)
Paul Craig
- Multiple Flash Authoring Heap Overflows - Malformed SWF Files (Wed Oct 15 2008 - 16:02:28 CDT)
paul.wrightoracleforensics.com
- CREATE ANY DIRECTORY to SYSDBA (Sat Oct 11 2008 - 04:39:46 CDT)
Pepelux
- txtshop - beta 1.0 / Local File Inclusion Vulnerability (Thu Oct 23 2008 - 04:32:12 CDT)
- vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability (Wed Oct 22 2008 - 16:47:08 CDT)
- phpcrs <= 2.06 / Local File Inclusion Vulnerability (this is the correct :) (Wed Oct 22 2008 - 16:44:55 CDT)
- NewLife Blogger <= v3.0 / Insecure Cookie Handling & SQL Injection Vulnerability (Sun Oct 12 2008 - 18:55:59 CDT)
- Yerba SACphp <= 6.3 / Local File Inclusion Exploit (Mon Oct 06 2008 - 18:12:02 CDT)
- FOSS Gallery Public Version <= 1.0 / Arbitrary file upload Vulnerabilities (Sat Oct 04 2008 - 19:40:52 CDT)
- FOSS Gallery Admin Version <= 1.0 / Remote Arbitrary Upload Vulnerability (Sat Oct 04 2008 - 19:30:48 CDT)
- PHPWebExplorer <= 0.09b: Local File Inclusion Vulnerability (Sat Oct 04 2008 - 10:58:05 CDT)
- iFoto, CSS-based GD2 photo gallery <= 1.0: Remote File Disclosure Vulnerability (Sat Oct 04 2008 - 17:59:40 CDT)
- Printlog <= 0.4: Remote File Edition Vulnerability (Tue Sep 30 2008 - 20:02:45 CDT)
Pete Finnigan
- Advisory for Oracle CPU October 2008 - APEX Flows excessive privileges (Wed Oct 22 2008 - 07:36:36 CDT)
petepetefinnigan.com
- Oracle Password Cracker written in PL/SQL (Wed Oct 01 2008 - 06:37:51 CDT)
pocadmgmail.com
- Final notification about "POC2008" Conference (Fri Oct 31 2008 - 14:48:34 CDT)
Praburaajan
- HITBSecConf2008 - Malaysia: Online registration closes on 24th Oct (Sat Oct 18 2008 - 18:09:43 CDT)
ProCheckUp Research
- SNMP Injection: Achieving Persistent HTML Injection via SNMP on Embedded Devices (Wed Oct 22 2008 - 12:07:40 CDT)
- Re: PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection (Fri Oct 10 2008 - 03:35:33 CDT)
- PR07-31: Unauthenticated SQL Injection, XSS on Login Page and Username Enumeration on DPSnet Case Progress (Thu Oct 09 2008 - 04:35:35 CDT)
- PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection (Thu Oct 09 2008 - 08:02:44 CDT)
Pruett, Mike
- Re: MS Internet Explorer 7 Denial Of Service Exploit (Wed Oct 01 2008 - 17:28:54 CDT)
publistsenablesecurity.com
- [ENABLESECURITY] Apple's Mail.app stores your S/MIME encrypted emails in clear text (Mon Oct 06 2008 - 03:05:45 CDT)
Quark IT - Hilton Travis
- RE: RE: MySQL command-line client HTML injection vulnerability (Sat Oct 04 2008 - 00:47:13 CDT)
- RE: MySQL command-line client HTML injection vulnerability (Tue Sep 30 2008 - 17:59:58 CDT)
Raphael Geissert
- XSS vulnerability in phpMyID (Wed Oct 01 2008 - 20:08:06 CDT)
raven
- Re: HTTPBruteForcer released (Sat Oct 25 2008 - 13:11:57 CDT)
Reversemode
- Exploit for MS08-066 - AFD.sys kernel memory overwrite. (Wed Oct 15 2008 - 08:03:11 CDT)
RISE Security
- [RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path() Buffer Overflow Vulnerability (Tue Oct 14 2008 - 09:43:29 CDT)
Robert Buchholz
- [ GLSA 200810-03 ] libspf2: DNS response buffer overflow (Thu Oct 30 2008 - 16:27:08 CDT)
- [ GLSA 200810-02 ] Portage: Untrusted search path local root vulnerability (Thu Oct 09 2008 - 12:36:48 CDT)
Roberto Suggi
- Opera Stored Cross Site Scripting Vulnerability (Wed Oct 22 2008 - 02:10:33 CDT)
roeehil.ibm.com
- Advisory: Graphviz Buffer Overflow Code Execution (Wed Oct 08 2008 - 13:51:19 CDT)
rPath Update Announcements
- rPSA-2008-0308-1 samba samba-client samba-server samba-swat (Thu Oct 30 2008 - 08:42:40 CDT)
- rPSA-2008-0307-1 nfs-client nfs-server nfs-utils (Thu Oct 30 2008 - 08:31:22 CDT)
- rPSA-2008-0309-1 lighttpd (Thu Oct 30 2008 - 08:55:07 CDT)
- rPSA-2008-0306-1 libxslt (Mon Oct 27 2008 - 12:53:27 CDT)
- rPSA-2008-0305-1 pcre (Mon Oct 27 2008 - 12:47:50 CDT)
- rPSA-2008-0294-1 postfix (Thu Oct 16 2008 - 12:16:00 CDT)
- rPSA-2008-0295-1 rails (Thu Oct 16 2008 - 12:16:44 CDT)
Salvador III Manaois
- Re: MS08-067 - Where can I find an exploit for this? (Fri Oct 24 2008 - 11:27:06 CDT)
- Re: MS08-067 - Where can I find an exploit for this? (Fri Oct 24 2008 - 11:50:19 CDT)
Secunia Research
- Secunia Research: Interact SQL Injection and Cross-Site Request Forgery (Fri Oct 31 2008 - 10:45:04 CDT)
- Secunia Research: Adobe PageMaker PMD File Processing Buffer Overflows (Wed Oct 29 2008 - 10:57:37 CDT)
- Secunia Research: Trend Micro OfficeScan CGI Parsing Buffer Overflows (Wed Oct 22 2008 - 06:54:10 CDT)
- Secunia Research: GNU Enscript "setfilename" Special Escape Buffer Overflow (Wed Oct 22 2008 - 06:53:51 CDT)
- Secunia Research: HP OpenView Products Shared Trace Service Denial of Service (Wed Oct 22 2008 - 07:10:26 CDT)
- Secunia Research: HP SiteScope SNMP Trap Script Insertion Vulnerability (Mon Oct 20 2008 - 05:11:15 CDT)
- Secunia Research: Trend Micro OfficeScan Directory Traversal Vulnerability (Fri Oct 03 2008 - 00:41:32 CDT)
Security Objectives Corporation
- SECOBJADV-2008-05: Symantec Veritas Storage Foundation Arbitrary File Read Vulnerability (Wed Oct 22 2008 - 11:41:37 CDT)
- SECOBJADV-2008-04: Symantec Veritas Storage Foundation Memory Disclosure Vulnerability (Tue Oct 21 2008 - 10:29:14 CDT)
security-alerthp.com
- [security bulletin] HPSBMA02373 SSRT071467 rev.2 - HP Insight Diagnostics Running on Linux and Windows, Remote Unauthorized Access to Files (Mon Oct 27 2008 - 06:59:57 CDT)
- [security bulletin] HPSBST02379 SSRT080143 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-056 to MS08-066 (Thu Oct 23 2008 - 14:55:52 CDT)
- [security bulletin] HPSBMA02349 SSRT080043 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Unauthorized Access to Data (Wed Oct 15 2008 - 13:28:14 CDT)
- [security bulletin] HPSBMA02374 SSRT080046 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) (Thu Oct 09 2008 - 07:25:01 CDT)
- [security bulletin] HPSBMA02362 SSRT080044, SSRT080045, SSRT080042 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS), Execute Arbitrary Code (Thu Oct 09 2008 - 07:24:21 CDT)
- [security bulletin] HPSBMA02376 SSRT080099 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS) (Thu Oct 09 2008 - 07:25:35 CDT)
- [security bulletin] HPSBUX02375 SSRT080122 rev.1 - HP-UX Running NFS/ONCplus, Remote Denial of Service (DoS) (Tue Oct 07 2008 - 07:28:56 CDT)
securitymandriva.com
- [ MDVSA-2008:121-1 ] freetype2 (Fri Oct 31 2008 - 14:23:00 CDT)
- [ MDVSA-2008:222 ] Eterm (Wed Oct 29 2008 - 20:01:00 CDT)
- [ MDVSA-2008:219 ] mplayer (Wed Oct 29 2008 - 18:22:00 CDT)
- [ MDVSA-2008:220 ] kernel (Wed Oct 29 2008 - 18:17:00 CDT)
- [ MDVSA-2008:221 ] aterm (Wed Oct 29 2008 - 19:15:00 CDT)
- [ MDVSA-2008:218 ] lynx (Tue Oct 28 2008 - 16:08:00 CDT)
- [ MDVSA-2008:217 ] lynx (Tue Oct 28 2008 - 15:46:00 CDT)
- [ MDVSA-2008:216 ] emacs (Mon Oct 27 2008 - 17:15:00 CDT)
- [ MDVSA-2008:215 ] wireshark (Mon Oct 27 2008 - 12:35:00 CDT)
- [ MDVSA-2008:208-1 ] pam_mount (Sat Oct 18 2008 - 18:49:00 CDT)
- [ MDVSA-2008:214 ] mon (Thu Oct 16 2008 - 15:01:00 CDT)
- [ MDVSA-2008:213 ] dbus (Wed Oct 15 2008 - 15:40:00 CDT)
- [ MDVSA-2008:212 ] libxml2 (Wed Oct 15 2008 - 12:55:00 CDT)
- [ MDVSA-2008:210-1 ] mono (Sat Oct 11 2008 - 12:50:00 CDT)
- [ MDVSA-2008:211 ] cups (Sat Oct 11 2008 - 03:41:00 CDT)
- [ MDVSA-2008:210 ] mono (Fri Oct 03 2008 - 19:17:00 CDT)
- [ MDVSA-2008:209 ] pam_krb5 (Fri Oct 03 2008 - 18:25:00 CDT)
securitynruns.com
- n.runs-SA-2008.009 - Eaton MGE OPS Network Shutdown Module - authentication bypass vulnerability and remote code execution (Mon Oct 27 2008 - 10:53:48 CDT)
- n.runs-SA-2008.008 - Internet Explorer HTML Object Memory Corruption and Remote Code Execution (Tue Oct 21 2008 - 10:09:24 CDT)
Security_Alertemc.com
- Re: FGA-2008-23:EMC NetWorker Denial of Service Vulnerability (Wed Oct 22 2008 - 10:38:36 CDT)
sflistdigitaloffense.net
- Uninformed Journal Release Announcement: Volume 10 (Mon Oct 13 2008 - 10:28:40 CDT)
shulmanimperva.com
- CVE-2008-4000: Oracle PeopleTools – Authentication Weakness (Sun Oct 19 2008 - 01:28:26 CDT)
- CVE-2008-2625: Oracle DBMS – Proxy Authentication Vulnerability (Sun Oct 19 2008 - 01:26:11 CDT)
sipherrgmail.com
- Re: Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day (Fri Oct 31 2008 - 12:15:14 CDT)
- Re: Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day (Fri Oct 31 2008 - 12:11:40 CDT)
Stefano Di Paola
- Re: MS OWA 2003 Redirection Vulnerability (Wed Oct 15 2008 - 12:51:39 CDT)
stephen_fewerharmonysecurity.com
- [Paper] Reflective Dll Injection (Fri Oct 31 2008 - 12:54:15 CDT)
Steve Kemp
- [SECURITY] [DSA 1657-1] New qemu packages fix denial of service (Mon Oct 20 2008 - 15:29:57 CDT)
- [SECURITY] [DSA 1654-1] New libxml2 packages fix execution of arbitrary code (Tue Oct 14 2008 - 13:04:50 CDT)
- [SECURITY] [DSA-1645-1] New lighttpd packages fix various problems (Mon Oct 06 2008 - 12:29:51 CDT)
The Anarcat
- Re: HTTPBruteForcer released (Sat Oct 25 2008 - 14:45:50 CDT)
The OpenVAS Team
- 2008 OpenVAS Contest (Thu Oct 30 2008 - 18:34:21 CDT)
The-0utl4wAria-Security.com
- Aria-Security.com: Saba 2.0 Cross Site Scripting [PASSIVE] (Wed Oct 29 2008 - 00:09:37 CDT)
therese.vanrynemotorola.com
- Re: Motorola Timbuktu's Internet Locator Service real-time data exposed to public. (Thu Oct 09 2008 - 11:04:02 CDT)
Thijs Kinkhorst
- [SECURITY] [DSA 1658-1] New dbus packages fix denial of service (Wed Oct 22 2008 - 14:50:25 CDT)
- [SECURITY] [DSA 1648-1] New mon packages fix insecure temporary files (Wed Oct 08 2008 - 14:34:19 CDT)
- [SECURITY] [DSA 1647-1] New php5 packages fix several vulnerabilities (Tue Oct 07 2008 - 01:52:54 CDT)
Thomas Dickey
- Re: [ MDVSA-2008:217 ] lynx (Tue Oct 28 2008 - 18:33:15 CDT)
Tobias Heinlein
- [ GLSA 200810-01 ] WordNet: Execution of arbitrary code (Tue Oct 07 2008 - 13:13:38 CDT)
Tobias Klein
- [TKADV2008-010] VLC media player TiVo ty Processing Stack Overflow Vulnerability (Mon Oct 20 2008 - 14:18:36 CDT)
Tom Kelly
- Re: Blue Coat xss (Thu Oct 02 2008 - 14:56:59 CDT)
Trancer
- OpenNMS Multiple Vulnerabilities (Sun Oct 05 2008 - 11:44:51 CDT)
varun.srivastavgmail.com
- Re: Java Web start vulnerability (Fri Oct 31 2008 - 13:20:37 CDT)
- Java Web start vulnerability (Sat Oct 25 2008 - 03:18:16 CDT)
vinodsharma.mimitgmail.com
- Doubt in MySQL Quick Admin <= 1.5.5 (COOKIE) Local File Inclusion Vulnerability POC posted on milworm (Fri Oct 17 2008 - 00:04:12 CDT)
Vladimir '3APA3A' Dubrovin
- Re[2]: PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection (Fri Oct 10 2008 - 01:28:43 CDT)
- Re: PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection (Thu Oct 09 2008 - 13:20:45 CDT)
- Re: AyeView v2.20 (malformed gif image) DoS Exploit (Mon Oct 06 2008 - 14:27:53 CDT)
- Re: White Wolf Labs #080922-1: Exploitation Through ActiveSync 4.x (Thu Oct 02 2008 - 09:09:36 CDT)
VMware Security Team
- VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff (Fri Oct 31 2008 - 02:12:34 CDT)
- VMSA-2008-0016 VMware Hosted products, VirtualCenter Update 3 and patches for ESX and ESXi resolve multiple security issues (Fri Oct 03 2008 - 20:43:22 CDT)
vulnswintercore.com
- [W02-1008] GearSoftware Powered Products Local Privilege Escalation (Microsoft Windows Kernel IopfCompleteRequest Integer Overflow) (Tue Oct 07 2008 - 16:02:46 CDT)
- Motorola Timbuktu's Internet Locator Service real-time data exposed to public. (Mon Oct 06 2008 - 07:31:51 CDT)
Williams, James K
- CA ARCserve Backup Multiple Vulnerabilities (Thu Oct 09 2008 - 16:57:05 CDT)
Wouter Coekaerts
- Re: Quassel IRC: connection hijacking (Tue Oct 28 2008 - 18:35:02 CDT)
- Quassel IRC: connection hijacking (Tue Oct 28 2008 - 18:26:57 CDT)
writ3rgmail.com
- freeSSHd (stf - rename) Buffer Overflow Vulnerability (Wed Oct 22 2008 - 18:55:27 CDT)
- GoodTech SSH Remote Buffer Overflow Exploit (Wed Oct 22 2008 - 18:52:20 CDT)
WSN1983GMAIL.COM
- U-Mail Webmail 'edit.php' Arbitrary File Write Vulnerability (Thu Oct 30 2008 - 23:32:43 CDT)
xsp
- FC2 BLOG Cross-Site Scripting Vulnerabilities (Wed Oct 08 2008 - 20:35:29 CDT)
xuanmumugmail.com
- SiteEngine 5.x Multiple Remote Vulnerabilities (Wed Oct 22 2008 - 21:45:00 CDT)
zdi-disclosures3com.com
- ZDI-08-071: IBM Tivoli Storage Manager Express for Microsoft SQL Heap Overflow Vulnerability (Thu Oct 30 2008 - 14:16:43 CDT)
- ZDI-08-070: SonicWALL Content-Filtering Universal Script Injection Vulnerability (Thu Oct 30 2008 - 14:16:25 CDT)
- ZDI-08-069: Microsoft Internet Explorer componentFromPoint Memory Corruption Vulnerability (Tue Oct 14 2008 - 16:46:55 CDT)
- ZDI-08-068: Microsoft Office Excel BIFF File Format Parsing Stack Overflow Vulnerability (Tue Oct 14 2008 - 16:46:51 CDT)
- ZDI-08-067: Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution Vulnerability (Thu Oct 09 2008 - 21:21:04 CDT)
- ZDI-08-066: Novell eDirectory Core Protocol Opcode 0x24 Heap Overflow Vulnerability (Wed Oct 08 2008 - 16:33:44 CDT)
- ZDI-08-065: Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability (Wed Oct 08 2008 - 16:33:21 CDT)
- ZDI-08-064: Novell eDirectory dhost.exe Accept Language Header Heap Overflow Vulnerability (Wed Oct 08 2008 - 16:32:55 CDT)
- ZDI-08-063: Novell eDirectory dhost.exe Content-Length Header Heap Overflow Vulnerability (Wed Oct 08 2008 - 16:32:29 CDT)
zibreegmail.com
- A video can crash ANY iphone/ipod and a few libraries. (Tue Oct 28 2008 - 13:17:11 CDT)

Last message date: Fri Oct 31 2008 - 15:25:47 CDT
Archived on: Fri Oct 31 2008 - 15:25:47 CDT

269 messages sorted by: [ date ] [ thread ] [ subject ]