NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2009-05

302 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Fri May 01 2009 - 10:15:36 CDT
Ending: Fri May 29 2009 - 14:12:30 CDT

aa.com
- Re: PHP Nuke v.8.0 (referer) SQL Injection (Fri May 29 2009 - 05:53:17 CDT)
abbscanit.be
- Sun IDM Arbitrary Commands Execution Vulnerability (Tue May 12 2009 - 09:40:08 CDT)
Aditya K Sood
- Advisory - Gmail/Google Doc PDF Repurposing Integrated Attacks - Cookie Hijacking / Stealing (Mon May 11 2009 - 09:05:19 CDT)
- [SecNiche WhitePaper ] - PDF Silent HTTP Form Repurposing Attacks (Sun May 03 2009 - 13:15:37 CDT)
Alex Keller
- speaker Bill Blunden on Rootkits... (Fri May 08 2009 - 22:15:22 CDT)
Alex Legler
- [ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code (Wed May 27 2009 - 13:37:21 CDT)
- [ GLSA 200905-08 ] NTP: Remote execution of arbitrary code (Tue May 26 2009 - 11:06:20 CDT)
- [ GLSA 200905-07 ] Pidgin: Multiple vulnerabilities (Mon May 25 2009 - 16:59:01 CDT)
- [ GLSA 200905-05 ] FreeType: Multiple vulnerabilities (Sun May 24 2009 - 13:02:03 CDT)
- [ GLSA 200905-04 ] GnuTLS: Multiple vulnerabilities (Sun May 24 2009 - 08:33:51 CDT)
- [ GLSA 200905-03 ] IPSec Tools: Denial of Service (Sun May 24 2009 - 08:20:38 CDT)
Andrea Barisani
- [oCERT-2009-004] AjaxTerm session id collision (Mon May 11 2009 - 11:43:41 CDT)
Andres Riancho
- [TOOL] moth - vulnerable web application vmware (Thu May 07 2009 - 20:27:03 CDT)
andrzej.targoszgmail.com
- CONFidence 2009 trainings (Tue May 05 2009 - 03:04:54 CDT)
Ansgar Wiechers
- Re: Insufficient Authentication vulnerability in Asus notebook (Fri May 15 2009 - 03:56:59 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 13:11:24 CDT)
arulvadivel1rediffmail.com
- Re: POC & exploit for Apache mod_rewrite off-by-one (Tue May 19 2009 - 07:30:27 CDT)
ascii
- Re: FormMail 1.92 Multiple Vulnerabilities (Wed May 13 2009 - 06:05:24 CDT)
- FormMail 1.92 Multiple Vulnerabilities (Tue May 12 2009 - 05:32:56 CDT)
Ben Hawkes
- DotNetNuke ErrorPage.aspx Cross-Site Scripting Vulnerability (Thu May 21 2009 - 20:10:36 CDT)
Benjilenoob
- Durzosploit v0.1 alpha (Fri May 01 2009 - 05:05:41 CDT)
Bernhard Mueller
- SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability (Tue May 26 2009 - 09:48:10 CDT)
- SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability (Tue May 26 2009 - 09:47:29 CDT)
- SEC Consult SA-20090525-2 :: SonicWALL Global Security Client Local Privilege Escalation Vulnerability (Tue May 26 2009 - 09:46:23 CDT)
- SEC Consult SA-20090525-1 :: Nortel Contact Center Manager Server Password Disclosure Vulnerability (Tue May 26 2009 - 09:45:06 CDT)
- SEC Consult SA-20090525-0 :: Nortel Contact Center Manager Server Authentication Bypass Vulnerability (Tue May 26 2009 - 09:43:57 CDT)
Bkis
- [Bkis-09-2009] XSS vulnerability in 'Monitor_Bandwidth' - PRTG Traffic Grapher (Wed May 27 2009 - 22:59:51 CDT)
- [Bkis-08-2009] Microchip MPLAB IDE Buffer Overflow Vulnerability (Mon May 11 2009 - 00:06:47 CDT)
Bob Fiero
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 20:41:44 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 10:11:51 CDT)
bugdiggeryahoo.cn
- xcon2009 is coming (Tue May 12 2009 - 01:06:17 CDT)
c3rb3rvideotron.ca
- Novell Groupwise fails to properly sanitize emails. (Thu May 28 2009 - 14:46:58 CDT)
Carlos Augusto
- BugCON '09 has swine influenza!! (Mon May 18 2009 - 01:59:43 CDT)
Christopher Kruegel
- Call For Papers – ACM CCS 2009 Workshops (Wed May 27 2009 - 19:03:30 CDT)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: CiscoWorks TFTP Directory Traversal Vulnerability (Wed May 20 2009 - 09:49:33 CDT)
CORE Security Technologies Advisories
- CORE-2009-0401 - StoneTrip S3DPlayers remote command injection (Thu May 28 2009 - 14:04:02 CDT)
- CORE-2009-0109 - Multiple XSS in Sun Communications Express (Wed May 20 2009 - 13:01:57 CDT)
Daniel Hazelton
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 15:05:29 CDT)
dann frazier
- [SECURITY] [DSA 1800-1] New Linux 2.6.26 packages fix several vulnerabilities (Fri May 15 2009 - 14:17:51 CDT)
- [SECURITY] [DSA 1794-1] New Linux 2.6.18 packages fix several vulnerabilities (Wed May 06 2009 - 18:23:13 CDT)
- [SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities (Sat May 02 2009 - 13:33:03 CDT)
darkz.gsagmail.com
- Vanilla v.1.1.7 Cross-Site Scripting (Wed May 27 2009 - 02:54:10 CDT)
- PHP Nuke v.8.0 (referer) SQL Injection (Wed May 27 2009 - 02:14:46 CDT)
- Claroline v.1.8.11 Cross-Site Scripting (Fri May 08 2009 - 01:47:17 CDT)
- Coppermine Photo Gallery 1.4.21 Cross-Site Scripting (Mon May 04 2009 - 04:31:26 CDT)
David Cantrell
- Re: FormMail 1.92 Multiple Vulnerabilities (Wed May 13 2009 - 05:10:14 CDT)
David Sánchez Martín
- RE: Insufficient Authentication vulnerability in Acer notebooks (Mon May 11 2009 - 08:55:04 CDT)
ddvulnalertddifronline.com
- DDIVRT-2009-25 IPsession SQL Injection Vulnerability (Thu May 21 2009 - 10:14:22 CDT)
Devin Carraway
- [SECURITY] [DSA 1795-1] New ldns packages fix arbitrary code execution (Thu May 07 2009 - 01:18:29 CDT)
Digital Security Research Group [DSecRG]
- [DSECRG-09-038] Sun Glassfish Woodstock Project - Linked XSS Vulnerability (Tue May 05 2009 - 09:02:19 CDT)
- [DSECRG-09-034] Sun Glassfish Enterprise Server - Multiple Linked XSS vulnerabilies (Tue May 05 2009 - 08:59:23 CDT)
dpo5003gmail.com
- Re: Insufficient Authentication vulnerability in Acer notebooks (Mon May 11 2009 - 21:14:50 CDT)
Dragos Ruiu
- Re: Five days left to find the oldest data loss incident (Mon May 11 2009 - 11:39:47 CDT)
- EUSecWest 2009 (May27/28) London Agenda and PacSec 2009 (Nov 4/5) Tokyo CFP deadline: June 1 2009 (Wed May 06 2009 - 17:26:12 CDT)
Elazar Broad
- Re: Five days left to find the oldest data loss incident (Mon May 11 2009 - 23:39:59 CDT)
Felipe M. Aragon
- Syhunt: A-A-S (Application Access Server) Multiple Security Vulnerabilities (Mon May 11 2009 - 20:05:42 CDT)
Florian Weimer
- [SECURITY] [DSA 1787-1] New quagga packages fix denial of service (Mon May 04 2009 - 15:19:03 CDT)
Garrett M. Groff
- Re: Insufficient Authentication vulnerability in Acer notebooks (Tue May 12 2009 - 09:17:41 CDT)
hack.lu 2009 info
- Call for Papers Hack.lu 2009 (Mon May 04 2009 - 02:54:52 CDT)
iDefense Labs
- iDefense Security Advisory 05.20.09: IBM AIX libc MALLOCDEBUG File Overwrite Vulnerability (Wed May 20 2009 - 13:37:10 CDT)
- iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Spreadsheet Buffer Overflow Vulnerabilities (Fri May 15 2009 - 15:25:08 CDT)
- iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Buffer Overflow Vulnerability (Fri May 15 2009 - 15:19:32 CDT)
- iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Integer Overflow Vulnerability (Fri May 15 2009 - 15:07:19 CDT)
- iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Integer Overflow Vulnerabilities (Fri May 15 2009 - 14:55:36 CDT)
- iDefense Security Advisory 05.14.09: Apple Mac OS X xnu Kernel workqueue_additem/workqueue_removeitem Index Validation Vulnerability (Thu May 14 2009 - 10:40:45 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint Build List Memory Corruption Vulnerability (Tue May 12 2009 - 17:41:24 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint Notes Container Heap Corruption Vulnerability (Tue May 12 2009 - 18:02:29 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint Integer Overflow Vulnerability (Tue May 12 2009 - 18:13:24 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Stack Overflow (Tue May 12 2009 - 16:41:57 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT95 Import Multiple Stack Buffer Overflow Vulnerabilities (Tue May 12 2009 - 17:26:09 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT95 Import Multiple Stack Buffer Overflow Vulnerabilities (Tue May 12 2009 - 17:11:52 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT 4.0 Importer Multiple Stack Buffer Overflow Vulnerabilities (Tue May 12 2009 - 16:58:01 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Heap Corruption Vulnerability (Tue May 12 2009 - 16:28:52 CDT)
- iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Stack Buffer Overflow Vulnerability (Tue May 12 2009 - 16:13:17 CDT)
InfernoSecurethoughts.com
- Exploiting IE8 UTF-7 XSS Vulnerability using Local Redirection (Mon May 11 2009 - 23:53:55 CDT)
- Universal XSS in all Google Services (Fri May 08 2009 - 21:03:15 CDT)
infosecuritylab.ir
- ecshop 2.6.2 (Thu May 28 2009 - 10:00:03 CDT)
- ChinaGames (CGAgent.dll) ActiveX Remote Code Execution Exploit (Sat May 23 2009 - 04:35:46 CDT)
- LxBlog (Fri May 22 2009 - 04:07:19 CDT)
- DMXReady Registration Manager Arbitrary File Upload Vulnerability (Wed May 20 2009 - 04:35:28 CDT)
- Namad Cms Remote File Download (Tue May 19 2009 - 06:52:07 CDT)
- maxcms2.0 creat new admin exploit (Wed May 13 2009 - 11:15:12 CDT)
innategmx.de
- about inactive account hijacking (Sat May 02 2009 - 04:05:55 CDT)
ipsdixgmail.com
- Pinnacle Studio 12 "Hollywood FX Compressed Archive" (.hfz) directory traversal vulnerability poc (Wed May 13 2009 - 11:37:25 CDT)
Jacobo Avariento Gimeno
- Vpopmail/QmailAdmin User's Quota Multiple Integer Overflows (Fri May 08 2009 - 13:37:46 CDT)
Jacques Copeau
- Survey: "MIME/Content-Type-Sniffing" Issues in Image Uploads in Forum Scripts (Thu May 28 2009 - 03:04:40 CDT)
- “Cross-Site Scripting” vulnerability in MyBB 1.4.5 (Sun May 03 2009 - 06:59:59 CDT)
Jakob Lell
- Multiple vulnerabilities in several ATEN IP KVM Switches (Tue May 26 2009 - 07:07:26 CDT)
Jamie Strandboge
- [USN-777-1] Ntp vulnerabilities (Tue May 19 2009 - 17:21:24 CDT)
- [USN-770-1] ClamAV vulnerability (Mon May 04 2009 - 18:06:29 CDT)
Jan van Niekerk
- Backdoor in com_rsgallery2 gallery extension for joomla (Tue May 26 2009 - 01:03:32 CDT)
Jared DeMott
- Whitepaper (Thu May 28 2009 - 18:01:18 CDT)
Jeremy Brown
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 08:37:32 CDT)
Jim Harrison
- RE: Insufficient Authentication vulnerability in Asus notebook (Sun May 17 2009 - 11:10:15 CDT)
Jim Parkhurst
- Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Wed May 27 2009 - 10:56:56 CDT)
jmoss
- BH USA CFP closing next Tuesday (Thu Apr 30 2009 - 18:34:37 CDT)
Jonah Braun
- Re: Backdoor in com_rsgallery2 gallery extension for joomla (Tue May 26 2009 - 17:08:56 CDT)
Juha-Matti Laurio
- Five days left to find the oldest data loss incident (Mon May 11 2009 - 09:29:23 CDT)
Just1n T1mberlake
- Re: Insufficient Authentication vulnerability in Asus notebook (Sat May 16 2009 - 17:05:58 CDT)
Kees Cook
- [USN-776-1] KVM vulnerabilities (Tue May 12 2009 - 17:29:42 CDT)
- [USN-775-1] Quagga vulnerability (Tue May 12 2009 - 17:34:28 CDT)
KF (lists)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 13:07:09 CDT)
kgconferencegmail.com
- Conference on Cyber Warfare: registration open! (Mon May 18 2009 - 08:14:24 CDT)
LayerOne Call For Papers
- LayerOne 2009 - Final Announcement (Mon May 04 2009 - 12:38:22 CDT)
Luca.carettoni
- HTTP Parameter Pollution (Tue May 19 2009 - 07:34:03 CDT)
Marc Deslauriers
- [USN-776-2] KVM regression (Wed May 13 2009 - 09:17:53 CDT)
- [USN-774-1] MoinMoin vulnerability (Mon May 11 2009 - 10:21:34 CDT)
- [USN-773-1] Pango vulnerability (Thu May 07 2009 - 13:27:51 CDT)
- [USN-772-1] MPFR vulnerability (Thu May 07 2009 - 13:27:13 CDT)
- [USN-771-1] libmodplug vulnerabilities (Thu May 07 2009 - 13:26:36 CDT)
- [USN-769-1] libwmf vulnerability (Mon May 04 2009 - 09:46:45 CDT)
Marc Schoenefeld
- Hardening OSX against CVE-2008-5353 (Sun May 24 2009 - 12:58:10 CDT)
Mario Alejandro Vilas Jerez
- WinAppDbg module v1.1 is out! (Fri May 15 2009 - 21:54:26 CDT)
mcyr2csc.com
- Addonics NAS Adapter FTP Remote Denial of Service (Fri May 01 2009 - 09:15:52 CDT)
Michael Scheidell
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 11:25:57 CDT)
michaelmdempfle.de
- Re: TinyWebGallery <= 1.7.6 LFI / Remote Code Execution Exploit (Mon May 11 2009 - 10:24:20 CDT)
Michal Zalewski
- Re: [Full-disclosure] [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Wed May 27 2009 - 13:43:42 CDT)
Michelangelo Sidagni
- W3af ninja training class in NYC (Tue May 26 2009 - 15:43:16 CDT)
Mike Vasquez
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 10:02:38 CDT)
Mike Wilson
- RE: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 15:13:38 CDT)
- RE: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 11:17:48 CDT)
militan.c7gmail.com
- Security Advisory: Banks in Australia (Tue May 12 2009 - 08:13:33 CDT)
Moritz Muehlenhoff
- [SECURITY] [DSA 1806-1] New cscope packages fix arbitrary code execution (Sun May 24 2009 - 03:27:51 CDT)
- [SECURITY] [DSA 1805-1] New pidgin packages fix several vulnerabilities (Fri May 22 2009 - 15:04:08 CDT)
- [SECURITY] [DSA 1799-1] New qemu packages fix several vulnerabilities (Mon May 11 2009 - 16:13:09 CDT)
- [SECURITY] [DSA 1797-1] New xulrunner packages fix several vulnerabilities (Sat May 09 2009 - 08:00:16 CDT)
- [SECURITY] [DSA 1785-1] New wireshark packages fix several vulnerabilities (Fri May 01 2009 - 09:46:49 CDT)
MustLive
- Re: Insufficient Authentication vulnerability in Acer notebooks (Tue May 26 2009 - 15:54:54 CDT)
- Re: Insufficient Authentication vulnerability in Acer notebooks (Thu May 14 2009 - 17:02:18 CDT)
- Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 08:23:53 CDT)
- Insufficient Authentication vulnerability in Acer notebooks (Sun May 10 2009 - 08:22:32 CDT)
Nam Nguyen
- Re: Universal XSS in all Google Services (Tue May 12 2009 - 05:11:32 CDT)
nameless
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 16:09:20 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 11:42:43 CDT)
naudefjtelkomsa.net
- Re: FUD Forum < 2.7.1 PHP code injection vurnelability (Mon May 25 2009 - 04:33:57 CDT)
Nick FitzGerald
- Re: Symantec Fax Viewer Control v10 (DCCFAXVW.DLL) remote buffer overflow exploit (Thu Apr 30 2009 - 18:45:50 CDT)
Nico Golde
- [SECURITY] [DSA 1804-1] New ipsec-tools packages fix denial of service (Wed May 20 2009 - 09:06:43 CDT)
- [SECURITY] [DSA 1796-1] New libwmf packages fix denial of service (Thu May 07 2009 - 11:21:33 CDT)
- [SECURITY] [DSA 1784-1] New freetype packages fix arbitrary code execution (Thu Apr 30 2009 - 13:14:37 CDT)
Niels Teusink
- Grabit <= 1.7.2 beta 3 NZB file parsing stack overflow (Sun May 03 2009 - 16:27:56 CDT)
Noah Meyerhans
- [SECURITY] [DSA 1793-1] New kdegraphics packages fix multiple vulnerabilities (Wed May 06 2009 - 11:47:53 CDT)
- [SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities (Wed May 06 2009 - 10:54:22 CDT)
- [SECURITY] [DSA 1790-1] New xpdf packages fix multiple vulnerabilities (Tue May 05 2009 - 15:05:20 CDT)
nospamgmail.it
- COWON America jetCast 2.0.4.1109 (.mp3) local heap buffer overlow exploit (Tue May 26 2009 - 04:30:49 CDT)
- Bitweaver <= 2.6 /boards/boards_rss.php / saveFeed() remote code execution exploit (Mon May 11 2009 - 20:44:40 CDT)
Oliver Goebel
- [IMF 2009] 3rd Call - Deadline Extended (Tue May 26 2009 - 14:03:21 CDT)
Patrick Webster
- SonicWALL SSL-VPN Appliance Format String Vulnerability (Fri May 29 2009 - 00:14:19 CDT)
pen-testcomodo.com
- Persistent XSS in Kayako Support Suite (Wed May 06 2009 - 16:34:59 CDT)
Pierre-Yves Rofes
- [ GLSA 200905-02 ] Cscope: User-assisted execution of arbitrary code (Sun May 24 2009 - 08:05:12 CDT)
- [ GLSA 200905-06 ] acpid: Denial of Service (Sun May 24 2009 - 13:41:43 CDT)
Piotr Bania
- PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs (Mon May 25 2009 - 11:18:32 CDT)
- PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) (Mon May 18 2009 - 07:32:01 CDT)
publistsenablesecurity.com
- Armorlogic Profense Web Application Firewall 2.4 multiple vulnerabilities. (Wed May 20 2009 - 05:05:08 CDT)
RedTeam Pentesting GmbH
- [RT-SA-2009-003] IceWarp WebMail Server: SQL Injection in Groupware Component (Tue May 05 2009 - 07:47:51 CDT)
- [RT-SA-2009-002] IceWarp WebMail Server: User-assisted Cross Site Scripting in RSS Feed Reader (Tue May 05 2009 - 07:46:27 CDT)
- [RT-SA-2009-004] IceWarp WebMail Server: Client-Side Specification of "Forgot Password" eMail Content (Tue May 05 2009 - 07:49:16 CDT)
- [RT-SA-2009-001] IceWarp WebMail Server: Cross Site Scripting in Email View (Tue May 05 2009 - 07:43:48 CDT)
rembrandt
- multiple vendor - PF NULL pointer dereference (Thu Apr 30 2009 - 16:22:05 CDT)
Robert Buchholz
- [ GLSA 200905-01 ] Asterisk: Multiple vulnerabilities (Sat May 02 2009 - 12:54:49 CDT)
robiecn.org
- Re: MULTIPLE REMOTE SQL INJECTION VULNERABILITIES---MIM:InfiniX v1.2.003---> (Thu May 14 2009 - 04:39:23 CDT)
roland.gruber.externunicreditgroup.eu
- Serena Dimensions CM Desktop Client does not validate the server SSL certificate (Fri May 22 2009 - 02:57:09 CDT)
romain
- Re: [WEB SECURITY] [TOOL] moth - vulnerable web application vmware (Thu May 07 2009 - 22:41:14 CDT)
rPath Update Announcements
- rPSA-2009-0091-1 cyrus-sasl cyrus-sasl-server (Wed May 27 2009 - 16:56:26 CDT)
- rPSA-2009-0095-1 tshark wireshark (Wed May 27 2009 - 17:36:56 CDT)
- rPSA-2009-0092-1 ntp ntp-utils (Wed May 27 2009 - 17:03:53 CDT)
- rPSA-2009-0084-1 kernel (Fri May 15 2009 - 21:39:42 CDT)
- rPSA-2009-0086-1 postgresql postgresql-contrib postgresql-server (Tue May 19 2009 - 14:03:40 CDT)
Secunia Research
- Secunia Research: Sun Solaris "sadmind" Buffer Overflow Vulnerability (Sat May 23 2009 - 02:35:48 CDT)
- Secunia Research: Sun Solaris "sadmind" Integer Overflow Vulnerability (Sat May 23 2009 - 02:37:13 CDT)
- Secunia Research: Microsoft PowerPoint Atom Parsing Buffer Overflows (Tue May 12 2009 - 12:56:04 CDT)
- Secunia Research: Garmin Communicator Plug-In Domain Locking Security Bypass (Thu May 07 2009 - 02:28:06 CDT)
- Secunia Research: IBM Tivoli Storage Manager Remote Agent Service Buffer Overflows (Mon May 04 2009 - 07:13:27 CDT)
security-alerthp.com
- [security bulletin] HPSBUX02429 SSRT090058 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code and Other Vulnerabilities (Wed May 27 2009 - 08:42:21 CDT)
- [security bulletin] HPSBPI02398 SSRT080166 rev.3 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files (Wed May 20 2009 - 11:57:25 CDT)
- [security bulletin] HPSBMA02427 SSRT090069 rev.1 - HP Remote Graphics Software (RGS) Sender Running Easy Login, Remote Unauthorized Access (Fri May 15 2009 - 08:06:40 CDT)
- [security bulletin] HPSBMA02426 SSRT090053 rev.1 - HP System Management Homepage (SMH) for Linux and Windows Running PHP and OpenSSL, Remote Cross Site Scripting (XSS), Unauthorized Access (Fri May 15 2009 - 08:03:15 CDT)
- [security bulletin] HPSBMA02428 SSRT090048 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS) (Mon May 18 2009 - 13:49:50 CDT)
- [security bulletin] HPSBMA02417 SSRT090031 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition (SSE), Local Denial of Service (DoS), Execution of Arbitrary Code (Thu May 14 2009 - 08:26:10 CDT)
- [security bulletin] HPSBMA02348 SSRT080033 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Denial of Service (DoS) (Mon May 11 2009 - 13:41:00 CDT)
- [security bulletin] HPSBMA02349 SSRT080043 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Unauthorized Access to Data (Mon May 11 2009 - 13:41:40 CDT)
- [security bulletin] HPSBUX02366 SSRT080120 rev.2 - HPUX Running useradd(1M), Local Unauthorized Access (Fri May 08 2009 - 08:18:38 CDT)
- [security bulletin] HPSBMA02419 SSRT090060 rev.1 - Insight Control Suite For Linux (ICE-LX) Multiple Remote Vulnerabilities In Nagios (Tue May 05 2009 - 15:51:02 CDT)
- [security bulletin] HPSBMA02374 SSRT080046 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) (Mon May 04 2009 - 12:35:55 CDT)
- [security bulletin] HPSBMA02425 SSRT080091 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code (Mon May 04 2009 - 12:33:45 CDT)
securityintern0t.net
- Re: [InterN0T] Achievo 1.3.4 - XSS Vulnerability (Fri May 29 2009 - 02:31:13 CDT)
- Re: Re: [InterN0T] AMember 3.1.7 - Multiple Vulnerabilities (Thu May 28 2009 - 16:27:00 CDT)
- [InterN0T] Achievo 1.3.4 - XSS Vulnerability (Thu May 28 2009 - 15:52:12 CDT)
- [InterN0T] AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities (Wed May 27 2009 - 14:16:54 CDT)
- [InterN0T] AMember 3.1.7 - Multiple Vulnerabilities (Sun May 24 2009 - 11:35:15 CDT)
securitymandriva.com
- [ MDVSA-2009:123 ] opensc (Wed May 27 2009 - 14:12:00 CDT)
- [ MDVSA-2009:122 ] squirrelmail (Sat May 23 2009 - 05:24:00 CDT)
- [ MDVSA-2009:121 ] lcms (Thu May 21 2009 - 16:23:00 CDT)
- [ MDVSA-2009:120 ] openssl (Thu May 21 2009 - 11:11:01 CDT)
- [ MDVSA-2009:119 ] kernel (Tue May 19 2009 - 14:55:00 CDT)
- [ MDVSA-2009:113 ] cyrus-sasl (Mon May 18 2009 - 07:08:01 CDT)
- [ MDVSA-2009:114 ] ipsec-tools (Mon May 18 2009 - 08:36:00 CDT)
- [ MDVSA-2009:118 ] kernel (Tue May 19 2009 - 13:58:00 CDT)
- [ MDVSA-2009:115 ] phpMyAdmin (Mon May 18 2009 - 09:47:00 CDT)
- [ MDVSA-2009:116 ] gnutls (Mon May 18 2009 - 10:17:00 CDT)
- [ MDVSA-2009:117 ] ntp (Tue May 19 2009 - 09:50:00 CDT)
- [ MDVSA-2009:112 ] ipsec-tools (Wed May 13 2009 - 16:44:01 CDT)
- [ MDVSA-2009:110 ] squirrelmail (Tue May 12 2009 - 18:10:00 CDT)
- [ MDVSA-2009:111-1 ] firefox (Wed May 13 2009 - 08:18:00 CDT)
- [ MDVSA-2009:111 ] firefox (Tue May 12 2009 - 21:17:01 CDT)
- [ MDVSA-2009:109 ] quagga (Sun May 10 2009 - 10:32:00 CDT)
- [ MDVSA-2009:108 ] zsh (Thu May 07 2009 - 08:06:01 CDT)
- [ MDVSA-2009:107 ] acpid (Wed May 06 2009 - 17:51:01 CDT)
- [ MDVSA-2009:106 ] libwmf (Tue May 05 2009 - 17:02:00 CDT)
- [ MDVSA-2009:105 ] memcached (Mon May 04 2009 - 08:05:00 CDT)
- [ MDVSA-2009:102 ] apache (Fri May 01 2009 - 08:37:01 CDT)
- [ MDVSA-2009:104 ] udev (Thu Apr 30 2009 - 22:09:00 CDT)
- [ MDVSA-2009:103 ] udev (Thu Apr 30 2009 - 22:01:00 CDT)
securitynruns.com
- n.runs-SA-2009.001 - OS X CFNetwork advisory (Fri May 15 2009 - 03:47:14 CDT)
Shakacon
- Shakacon Security Conference - Trainers and Speakers Finalized (Tue May 19 2009 - 17:39:31 CDT)
SmOk3
- Arcade Trade Script XSS (Mon May 25 2009 - 14:03:33 CDT)
srublevptsecurity.ru
- (whitepaper) Microsoft WPAD Technology Weaknesses [PTResearch Team] (Fri May 29 2009 - 10:59:19 CDT)
Stefan Frei
- New Browser Security Paper: Why Silent Updates Boost Security (Tue May 05 2009 - 16:46:23 CDT)
Steffen Joeris
- [SECURITY] [DSA 1798-1] New pango1.0 packages fix arbitrary code execution (Sun May 10 2009 - 04:29:15 CDT)
- [SECURITY] [DSA 1791-1] New moin packages fix cross-site scripting (Wed May 06 2009 - 06:41:28 CDT)
- [SECURITY] [DSA 1786-1] New acpid packages fix denial of service (Fri May 01 2009 - 20:52:49 CDT)
Stephen Mullins
- Re: The security tools list, new version with more than 200 new tools! (Tue May 12 2009 - 12:52:09 CDT)
Steve Friedl
- New paper: Understanding Microsoft's KB971492 IIS WebDAV Vuln (Wed May 27 2009 - 14:51:50 CDT)
Steve Quan
- RE: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 15:36:49 CDT)
Steve Shockley
- Re: [security bulletin] HPSBMA02426 SSRT090053 rev.1 - HP System Management Homepage (SMH) for Linux and Windows Running PHP and OpenSSL, Remote Cross Site Scripting (XSS), Unauthorized Access (Wed May 20 2009 - 14:46:10 CDT)
supportadpeeps.com
- Re: [InterN0T] AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities (Thu May 28 2009 - 18:05:40 CDT)
Susan Bradley
- Re: Insufficient Authentication vulnerability in Acer notebooks (Thu May 28 2009 - 15:41:53 CDT)
- Re: Insufficient Authentication vulnerability in Acer notebooks (Tue May 19 2009 - 19:42:30 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Fri May 15 2009 - 01:38:00 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 14:39:29 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 14:35:33 CDT)
- Re: Insufficient Authentication vulnerability in Asus notebook (Thu May 14 2009 - 09:16:58 CDT)
swhitesecurestate.com
- Novell GroupWise Web Access Multiple XSS (Thu May 21 2009 - 11:18:44 CDT)
Tavis Ormandy
- Re: [TZO-27-2009] Firefox Denial of Service (Keygen) (Thu May 28 2009 - 06:01:07 CDT)
Thierry Zoller
- [TZO-28-2009] - Avira Antivir generic RAR,CAB,ZIP (Fri May 29 2009 - 06:25:10 CDT)
- Re[2]: [TZO-27-2009] Firefox Denial of Service (Keygen) (Thu May 28 2009 - 12:48:21 CDT)
- [TZO-27-2009] Firefox Denial of Service (Keygen) (Wed May 27 2009 - 20:14:38 CDT)
- Re[2]: [Full-disclosure] [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Wed May 27 2009 - 14:03:07 CDT)
- Re[2]: [Full-disclosure] Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Wed May 27 2009 - 13:38:18 CDT)
- Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Tue May 26 2009 - 13:13:21 CDT)
- [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Tue May 26 2009 - 07:20:52 CDT)
- [TZO-25-2009] Panda generic evasion (TAR) (Fri May 22 2009 - 08:57:35 CDT)
- [TZO-24-2009] Panda generic evasion (CAB) (Fri May 22 2009 - 08:55:40 CDT)
- Fwd: [Full-disclosure] IIS6 + webdav and unicode rides again in 2009 (Fri May 15 2009 - 18:22:46 CDT)
- [TZO-22-2009] Bitdefender generic evasion of heuristics (for PDF) (Mon May 18 2009 - 10:37:23 CDT)
- [TZO-23-2009] Avira antivir generic evasion of heuristics (for PDF) (Mon May 18 2009 - 10:38:46 CDT)
- [TZO-21-2009] Fprot CAB bypass / evasion (Sat May 09 2009 - 07:07:52 CDT)
- Changes : [TZO-17-2009]Trendmicro multiple bypass/evasions (Sat May 09 2009 - 05:24:24 CDT)
- [TZO-20-2009] AVG ZIP evasion / bypass (Sat May 09 2009 - 07:05:35 CDT)
- Update: [TZO-15-2009] Aladdin eSafe generic bypass - Forced release (Thu May 07 2009 - 03:55:12 CDT)
- [TZO-18-2009] Mcafee multiple evasions/bypasses (RAR, ZIP) (Fri May 01 2009 - 14:10:53 CDT)
Thijs Kinkhorst
- [SECURITY] [DSA 1802-2] New squirrelmail packages correct incomplete fix (Thu May 21 2009 - 13:50:30 CDT)
- [SECURITY] [DSA 1803-1] New nsd packages fix denial of service (Wed May 20 2009 - 09:43:39 CDT)
- [SECURITY] [DSA 1801-1] New ntp packages fix several vulnerabilities (Tue May 19 2009 - 08:55:33 CDT)
- [SECURITY] [DSA 1802-1] New squirrelmail packages fix several vulnerabilities (Tue May 19 2009 - 12:17:37 CDT)
- [SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities (Mon May 04 2009 - 15:57:57 CDT)
Thomas Sader
- eggdrop/windrop remote crash vulnerability (Thu May 14 2009 - 22:54:08 CDT)
TK147TheArchitect.com
- Re: [InterN0T] AMember 3.1.7 - Multiple Vulnerabilities (Thu May 28 2009 - 11:19:56 CDT)
Tobias Klein
- [TKADV2009-006] libsndfile/Winamp VOC Processing Heap Buffer Overflow (Sat May 16 2009 - 03:21:27 CDT)
Tomas Kuliavas
- Re: MULTIPLE REMOTE SQL INJECTION VULNERABILITIES---MIM:InfiniX v1.2.003---> (Thu May 14 2009 - 11:42:29 CDT)
travestitravesti.in
- TinyWebGallery <= 1.7.6 LFI / Remote Code Execution Exploit (Sat May 09 2009 - 20:42:20 CDT)
Ulises2k
- Re: Security tools list: First Version (Thu Apr 30 2009 - 10:05:08 CDT)
Vladimir '3APA3A' Dubrovin
- Re[2]: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) (Wed May 27 2009 - 13:59:18 CDT)
VMware Security team
- VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues (Thu May 28 2009 - 23:09:52 CDT)
vuln_researchprinceofnigeria.org
- NetDecision TFTP Server 4.2 TFTP Directory Traversal (Sun May 17 2009 - 11:45:35 CDT)
VUPEN Security Research
- Novell GroupWise Internet Agent Remote Buffer Overflow Vulnerabilities (Thu May 21 2009 - 21:17:36 CDT)
WebAppSec
- New WebApp security paper: Anti-fraud Image Solutions (Thu Apr 30 2009 - 21:50:26 CDT)
Will Drewry
- [oCERT-2009-006] Android improper package verification when using shared uids (Fri May 22 2009 - 16:29:53 CDT)
- [oCERT-2009-001] Pango integer overflow in heap allocation size calculations (Thu May 07 2009 - 12:42:27 CDT)
Williams, James K
- CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities [Updated] (Tue May 12 2009 - 09:19:35 CDT)
- CA20090429-01: CA ARCserve Backup Apache HTTP Server Multiple Vulnerabilities (Thu Apr 30 2009 - 14:49:30 CDT)
y3nh4ck3rgmail.com
- MULTIPLE REMOTE VULNERABILITIES --Small Pirates v-2.1--> (Wed May 27 2009 - 17:10:42 CDT)
- MULTIPLE SQL INJECTION VULNERABILITIES --Joomla Component 'Boy Scout Advancement' <= v-0.3 (com_bsadv)--> (Sun May 24 2009 - 20:26:59 CDT)
- MULTIPLE REMOTE VULNERABILITIES --MiniTwitter<=v0.3-Beta--> (Fri May 22 2009 - 17:50:26 CDT)
- MULTIPLE SQL INJECTION VULNERABILITIES --Flash Quiz Beta 2--> (Thu May 21 2009 - 11:45:09 CDT)
- (GET vars 'x' & 'y') ADMIN FUNCTION EXECUTION--Jorp v-1.3.05.09--> (Wed May 20 2009 - 12:15:51 CDT)
- MULTIPLE REMOTE VULNERABILITIES --my-Gesuad 0.9.14--> (Fri May 15 2009 - 14:28:41 CDT)
- MULTIPLE REMOTE VULNERABILITIES --my-colex 1.4.2--> (Fri May 15 2009 - 14:28:04 CDT)
- INSECURE COOKIE HANDLING VULNERABILITIES --Dog Pedigree Online Database v1.0.1-Beta--> (Tue May 19 2009 - 11:47:23 CDT)
- (GET var 'id') BLIND SQL INJECTION EXPLOIT --Dog Pedigree Online Database v1.0.1-Beta --> (Tue May 19 2009 - 11:48:00 CDT)
- Re: Re: MULTIPLE REMOTE SQL INJECTION VULNERABILITIES---MIM:InfiniX v1.2.003---> (Thu May 14 2009 - 12:16:54 CDT)
- MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1--> (Thu May 14 2009 - 11:49:09 CDT)
- MULTIPLE CODE INJECTION VULNERABILITIES --TUENTI--SPAIN--> (Thu May 14 2009 - 11:47:57 CDT)
- (GET var 'member') BLIND SQL INJECTION EXPLOIT --FAMILY CONNECTIONS <= v1.9 --> (Wed May 13 2009 - 11:30:37 CDT)
- User options changer (SQLi) EXPLOIT --Bigace CMS -stable release- 2.5--> (Tue May 12 2009 - 12:01:40 CDT)
- (POST var 'rating') BLIND SQL INJECTION--microTopic v1 Initial Release--> (Mon May 11 2009 - 12:16:28 CDT)
- BLIND SQL INJECTION exploit (GET var 'AlbumID')--RTWebalbum 1.0.462--> (Fri May 08 2009 - 11:39:42 CDT)
- SQL INJECTION VULNERABILITIES--ST-Gallery version 0.1 alpha--> (Thu May 07 2009 - 10:13:50 CDT)
- BLIND SQL INJECTION EXPLOIT--TemaTres 1.0.3--> (Tue May 05 2009 - 12:15:52 CDT)
- MULTIPLE REMOTE VULNERABILITIES--TemaTres 1.0.3--> (Tue May 05 2009 - 12:07:02 CDT)
- MULTPLE REMOTE VULNERABILITIES --ProjectCMS v-1.1 Beta--> (Mon May 04 2009 - 12:17:46 CDT)
- USER OPTIONS CHANGER EXPLOIT --MiniTwitter v0.2-Beta+-> (Fri May 01 2009 - 09:24:53 CDT)
- MULTIPLE SQL INJECTION VULNERABILITIES --MiniTwitter v0.2-Beta--> (Fri May 01 2009 - 09:26:14 CDT)
- BLIND SQL INJECTION--Leap CMS 0.1.4--> (Thu Apr 30 2009 - 11:47:53 CDT)
Ying
- Re: The security tools list, new version with more than 200 new tools! (Wed May 13 2009 - 07:58:17 CDT)
- Re: The security tools list, new version with more than 200 new tools! (Tue May 12 2009 - 13:28:19 CDT)
- The security tools list, new version with more than 200 new tools! (Tue May 12 2009 - 08:02:16 CDT)
ZDI Disclosures
- ZDI-09-021: Apple QuickTime PICT Unspecified Tag Heap Overflow Vulnerability (Wed May 27 2009 - 17:40:32 CDT)
- ZDI-09-022: Apple Safari Malformed SVGList Parsing Code Execution Vulnerability (Tue May 19 2009 - 14:07:05 CDT)
- ZDI-09-023: Apple OS X ATSServer Compact Font Format Parsing Memory Corruption Vulnerability (Tue May 19 2009 - 14:08:27 CDT)
- ZDI-09-020: Microsoft Office PowerPoint Notes Container Heap Overflow Vulnerability (Tue May 12 2009 - 14:21:59 CDT)
- ZDI-09-019: Microsoft Office PowerPoint OutlineTextRefAtom Parsing Memory Corruption Vulnerability (Tue May 12 2009 - 14:21:54 CDT)
Øystein Larsen
- Re: Insufficient Authentication vulnerability in Acer notebooks (Tue May 12 2009 - 02:20:00 CDT)

Last message date: Fri May 29 2009 - 14:12:30 CDT
Archived on: Fri May 29 2009 - 14:12:31 CDT

302 messages sorted by: [ date ] [ thread ] [ subject ]