NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2009-08

263 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Mon Aug 03 2009 - 09:16:44 CDT
Ending: Mon Aug 31 2009 - 14:51:41 CDT

Adam Baldwin
- [NGENUITY] - Spiceworks Multiple Vulnerabilities (XSS & CSRF) (Sat Aug 08 2009 - 14:16:21 CDT)
- [NGENUITY] - Ticket Subject Persistent XSS in Kayako SupportSuite (Sat Aug 08 2009 - 11:07:37 CDT)
advisoriesintern0t.net
- Re: DoS vulnerability in Google Chrome (Wed Aug 26 2009 - 03:41:18 CDT)
- RE: DoS vulnerability in Google Chrome (Tue Aug 25 2009 - 02:03:00 CDT)
Alex Legler
- [ GLSA 200908-06 ] CDF: User-assisted execution of arbitrary code (Tue Aug 18 2009 - 16:37:06 CDT)
- [ GLSA 200908-09 ] DokuWiki: Local file inclusion (Tue Aug 18 2009 - 16:37:46 CDT)
- [ GLSA 200908-10 ] Dillo: User-assisted execution of arbitrary code (Tue Aug 18 2009 - 16:37:51 CDT)
- [ GLSA 200908-08 ] ISC DHCP: dhcpd Denial of Service (Tue Aug 18 2009 - 16:37:39 CDT)
- [ GLSA 200908-05 ] Subversion: Remote execution of arbitrary code (Tue Aug 18 2009 - 16:36:51 CDT)
- [ GLSA 200908-07 ] Perl Compress::Raw modules: Denial of Service (Tue Aug 18 2009 - 16:37:23 CDT)
- [ GLSA 200908-02 ] BIND: Denial of Service (Sat Aug 01 2009 - 15:04:23 CDT)
Alexandr Polyakov
- [DSECRG-09-033] SAP Netweaver UDDI - XSS Security Vulnerability (Wed Aug 12 2009 - 08:04:50 CDT)
Amit Klein
- Writeup by Amit Klein (Trusteer): "Google Chrome 3.0 (Beta) Math.random vulnerability" (Mon Aug 31 2009 - 06:25:54 CDT)
Andrew Horton
- [MORNINGSTAR-2009-01] Multiple security issues in Open Auto Classifieds version <= 1.5.9 (Wed Aug 26 2009 - 13:14:18 CDT)
Andrzej Targosz
- CONFidence 2009, November, CfP (Mon Aug 24 2009 - 16:46:13 CDT)
ascii
- Vtiger CRM 5.0.4 Multiple Vulnerabilities (Tue Aug 18 2009 - 03:49:13 CDT)
Asterisk Security Team
- AST-2009-005: Remote Crash Vulnerability in SIP channel driver (Tue Aug 11 2009 - 09:00:15 CDT)
- AST-2009-004: Remote Crash Vulnerability in RTP stack (Sun Aug 02 2009 - 23:30:14 CDT)
Bkis
- [Bkis-11-2009] ProShow Gold Buffer Overflow Vulnerabilities (Wed Aug 19 2009 - 23:29:17 CDT)
Bonsai - Information Security
- [BONSAI] SQL Injection in CS-Cart (Tue Aug 04 2009 - 13:49:05 CDT)
brad.antoniewiczfoundstone.com
- ntop <= 3.3.10 Basic Authentication Null Pointer Denial of Service (Tue Aug 18 2009 - 12:13:05 CDT)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities (Wed Aug 26 2009 - 11:00:00 CDT)
- Cisco Security Advisory: Firewall Services Module Crafted ICMP Message Vulnerability (Wed Aug 19 2009 - 12:12:26 CDT)
- Cisco Security Advisory: Cisco Security Advisory: Cisco IOS XR Software Border Gateway Protocol Vulnerability (Sat Jul 18 2009 - 11:25:00 CDT)
ClubHack
- ClubHack2009: Call for Papers/Speakers (Fri Aug 14 2009 - 14:02:42 CDT)
contact.fingersgmail.com
- TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local (Mon Aug 17 2009 - 11:08:41 CDT)
contactonuryilmaz.info
- JibberBook GuestBook 2.3 Multiple Vulnerabilities (Tue Aug 11 2009 - 17:22:18 CDT)
core collapse
- ASUS Eee PC and other series: BIOS SMM privilege escalation vulnerabilities (Fri Aug 07 2009 - 14:08:04 CDT)
CORE Security Technologies Advisories
- CORE-2009-0727: Libpurple msn_slplink_process_msg() Arbitrary Write Vulnerability (Tue Aug 18 2009 - 16:52:29 CDT)
dann frazier
- [SECURITY] [DSA 1872-1] New Linux 2.6.18 packages fix several vulnerabilities (Mon Aug 24 2009 - 13:59:41 CDT)
- [SECURITY] [DSA 1865-1] New Linux 2.6.18 packages fix several vulnerabilities (Sun Aug 16 2009 - 15:52:35 CDT)
- [SECURITY] [DSA 1864-1] New Linux 2.6.24 packages fix privilege escalation (Sun Aug 16 2009 - 11:42:51 CDT)
- [SECURITY] [DSA 1862-1] New Linux 2.6.26 packages fix privilege escalation (Fri Aug 14 2009 - 14:31:10 CDT)
David Litchfield
- Oracle 11g (11.1.0.6) Password Policy and Compliance (Tue Aug 25 2009 - 15:45:41 CDT)
- Bypassing DBMS_ASSERT in certain situations (Tue Aug 25 2009 - 15:25:15 CDT)
- Oracle PL/SQL Injection Flaw in REPCAT_RPC.VALIDATE_REMOTE_RC (Tue Aug 25 2009 - 15:18:58 CDT)
DeepSec Conference
- DeepSec 2009 - Preliminary Schedule is online (Sat Aug 15 2009 - 08:38:45 CDT)
dmsecurityfocus.com
- (Reposting truncated message) Re: ntop <= 3.3.10 Basic Authentication Null Pointer Denial of Service (Tue Aug 18 2009 - 14:11:29 CDT)
dvlabs
- TPTI-09-06: Microsoft Windows Workstation Service NetrGetJoinInformation Heap Corruption Vulnerability (Tue Aug 11 2009 - 13:04:07 CDT)
elkekasgmail.com
- Re: Re: Re: Back door trojan in acajoom-3.2.6 for joomla (Thu Aug 13 2009 - 04:26:11 CDT)
Eloy Paris
- Re: Clear Text Storage of Password in CS-MARS v6.0.4 and Earlier (Fri Aug 21 2009 - 12:00:16 CDT)
faghaninsec.ir
- Elkapax CMS Cross site scripting vulnerability (Thu Aug 13 2009 - 01:03:19 CDT)
- Chavoosh CMS SQL Injection Vulnerability (Wed Aug 12 2009 - 05:15:43 CDT)
Florian Weimer
- [SECURITY] [DSA 1833-2] New dhcp3 packages fix arbitrary code execution (Tue Aug 25 2009 - 14:57:28 CDT)
- [SECURITY] [DSA 1860-1] New Ruby packages fix several issues (Wed Aug 12 2009 - 14:49:54 CDT)
- [SECURITY] [DSA 1855-1] New subversion packages fix arbitrary code execution (Sat Aug 08 2009 - 14:07:27 CDT)
- [SECURITY] [DSA 1854-1] New APR packages fix arbitrary code execution (Sat Aug 08 2009 - 13:55:09 CDT)
- [SECURITY] [DSA 1849-1] New xml-security-c packages fix signature forgery (Sun Aug 02 2009 - 08:48:02 CDT)
- [SECURITY] [DSA 1848-1] New znc packages fix remote code execution (Sun Aug 02 2009 - 08:17:42 CDT)
Francesco Bianchino
- Radvision's Scopia Cross Site Scripting Vulnerabilities (Mon Aug 24 2009 - 04:46:59 CDT)
gamr-14hotmail.com
- Infinity <= v2.X.X (Local File Disclosure/Auth Bypass) Vulnerabilities (Fri Aug 21 2009 - 11:49:27 CDT)
Glenn Rossi
- Re: Multiple vulnerabilities in several ATEN IP KVM Switches (Mon Aug 17 2009 - 10:56:13 CDT)
gmcbr0 gmcbr0
- Sql injection in OCS Inventory NG Server 1.2.1 (Tue Aug 11 2009 - 13:05:59 CDT)
hadikiamarsihotmail.com
- XSS in SqLiteManager (Mon Aug 10 2009 - 01:59:13 CDT)
Henri Lindberg - Smilehouse Oy
- Xerox WorkCentre multiple models Denial of Service (Tue Aug 25 2009 - 07:11:30 CDT)
heverhever.com.br
- Cuteflow Version 2.10.3 "edituser.php" Security Bypass Vulnerability (Fri Aug 21 2009 - 13:17:35 CDT)
hkm
- 2WIRE Gateway Authentication Bypass & Password Reset (Tue Aug 11 2009 - 22:54:46 CDT)
iDefense Labs
- iDefense Security Advisory 08.25.09: Autonomy KeyView Excel File SST Parsing Integer Overflow Vulnerability (Tue Aug 25 2009 - 15:05:52 CDT)
- iDefense Security Advisory 07.28.09: Multiple Vendor Microsoft ATL/MFC ActiveX Information Disclosure Vulnerability (Wed Aug 19 2009 - 23:24:35 CDT)
- iDefense Security Advisory 07.28.09: Multiple Vendor Microsoft ATL/MFC ActiveX Security Bypass Vulnerability (Wed Aug 19 2009 - 23:20:15 CDT)
- iDefense Security Advisory 08.11.09: Multiple Vendor Microsoft ATL/MFC ActiveX Type Confusion Vulnerability (Wed Aug 19 2009 - 23:32:43 CDT)
- iDefense Security Advisory 08.11.09: Microsoft Office Web Components 2000 Buffer Overflow Vulnerability (Wed Aug 19 2009 - 16:02:45 CDT)
- iDefense Security Advisory 08.07.09: Adobe Flash Player Invalid Loader Object Reference Vulnerability (Fri Aug 07 2009 - 12:49:03 CDT)
- iDefense Security Advisory 08.06.09: Microsoft Internet Explorer HTML TIME 'ondatasetcomplete' Use After Free Vulnerability (Thu Aug 06 2009 - 16:06:00 CDT)
- iDefense Security Advisory 08.06.09: Adobe Flash Player URL Parsing Heap Overflow Vulnerability (Thu Aug 06 2009 - 14:57:15 CDT)
- iDefense Security Advisory 08.06.09: IBM AIX libC _LIB_INIT_DBG Arbitrary File Creation Vulnerability (Thu Aug 06 2009 - 14:38:13 CDT)
- iDefense Security Advisory 08.06.09: Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability (Thu Aug 06 2009 - 14:19:26 CDT)
Inferno
- Bypassing OWASP ESAPI XSS Protection inside Javascript (Thu Aug 20 2009 - 03:18:00 CDT)
- Hijacking Safari 4 Top Sites with Phish Bombs (Tue Aug 11 2009 - 19:27:16 CDT)
itwebitweb.fi
- SQL Injection vulnerabilities in Subdreamer CMS (Thu Aug 20 2009 - 11:19:28 CDT)
James C. Slora Jr.
- IE7 Script (Tue Aug 11 2009 - 09:48:58 CDT)
Jamie Strandboge
- [USN-817-1] Thunderbird vulnerabilities (Thu Aug 20 2009 - 18:42:26 CDT)
- [USN-809-1] GnuTLS vulnerabilities (Wed Aug 19 2009 - 18:55:26 CDT)
- [USN-812-1] Subversion vulnerability (Fri Aug 07 2009 - 19:56:30 CDT)
- [USN-813-2] Apache vulnerability (Fri Aug 07 2009 - 20:06:16 CDT)
- [USN-813-1] apr vulnerability (Fri Aug 07 2009 - 19:57:13 CDT)
- [USN-813-3] apr-util vulnerability (Sat Aug 08 2009 - 00:56:47 CDT)
- [USN-811-1] Firefox and Xulrunner vulnerability (Tue Aug 04 2009 - 21:34:16 CDT)
- [USN-810-2] NSPR update (Tue Aug 04 2009 - 17:00:59 CDT)
- [USN-810-1] NSS vulnerabilities (Tue Aug 04 2009 - 16:23:07 CDT)
Jeffrey Walton
- Fwd: Follow-up: Heartland CEO on Data Breach: QSAs Let Us Down (Thu Aug 13 2009 - 08:58:31 CDT)
jerome.athiasfree.fr
- Multiple Flaws in Huawei SmartAX MT880 [was: Multiple Flaws in Huawei D100] (Wed Aug 05 2009 - 10:31:57 CDT)
katie.frenchcgifederal.com
- OpenCms (7.5.0) - Vulnerability: Cross-Site Scripting, Phishing Through Frames, Application Error (Thu Aug 06 2009 - 14:25:52 CDT)
Kees Cook
- [USN-818-1] curl vulnerability (Mon Aug 17 2009 - 13:42:06 CDT)
- [USN-816-1] fetchmail vulnerability (Wed Aug 12 2009 - 17:56:28 CDT)
- [USN-814-1] openjdk-6 vulnerabilities (Tue Aug 11 2009 - 00:54:45 CDT)
Kiwicon <3
- KIWICON ]|[ - 2009 Call For Papers (Wed Aug 12 2009 - 21:43:53 CDT)
Kotas, Kevin J
- CA20090818-02: Security Notice for CA Internet Security Suite (Tue Aug 18 2009 - 15:38:40 CDT)
- CA20090818-01: Security Notice for CA Host-Based Intrusion Prevention System (Tue Aug 18 2009 - 15:38:47 CDT)
- CA20090806-01: Security Notice for Data Transport Services (Thu Aug 06 2009 - 18:22:34 CDT)
- CA20090806-02: Security Notice for Unicenter Asset Portfolio Management, Unicenter Desktop and Server Management, Unicenter Patch Management (Thu Aug 06 2009 - 18:22:21 CDT)
labsgdssecurity.com
- Adobe Flex 3.3 SDK DOM-Based XSS (Wed Aug 19 2009 - 15:04:52 CDT)
Leon Juranic
- Safari buffer overflow (Tue Aug 18 2009 - 04:23:30 CDT)
Lists
- Piwigo SQL Injection Vulnerability - Security Advisory - SOS-09-007 (Mon Aug 17 2009 - 01:40:21 CDT)
- Plume CMS Multiple SQL Injection Vulnerabilities - Security Advisory - SOS-09-006 (Wed Aug 12 2009 - 01:02:44 CDT)
Luciano Bello
- [SECURITY] [DSA 1858-1] New imagemagick packages fix several vulnerabilities (Mon Aug 10 2009 - 12:05:37 CDT)
ma+btdt.e-technik.uni-dortmund.de
- fetchmail security announcement fetchmail-SA-2009-01 (CVE-2009-2666) (Wed Aug 05 2009 - 19:12:57 CDT)
Marc Deslauriers
- [USN-826-1] Mono vulnerabilities (Wed Aug 26 2009 - 14:31:55 CDT)
- [USN-825-1] libvorbis vulnerability (Mon Aug 24 2009 - 14:02:18 CDT)
- [USN-824-1] PHP vulnerability (Mon Aug 24 2009 - 14:01:44 CDT)
- [USN-823-1] KDE-Graphics vulnerabilities (Mon Aug 24 2009 - 14:01:12 CDT)
- [USN-822-1] KDE-Libs vulnerabilities (Mon Aug 24 2009 - 14:00:38 CDT)
- [USN-820-1] Pidgin vulnerability (Thu Aug 20 2009 - 08:32:39 CDT)
- [USN-802-2] Apache regression (Wed Aug 19 2009 - 10:32:12 CDT)
- [USN-815-1] libxml2 vulnerabilities (Tue Aug 11 2009 - 13:41:05 CDT)
Matt Lewis
- Subversion heap overflow (Fri Aug 07 2009 - 09:47:24 CDT)
Mike Duncan
- Re: [DSECRG-09-022] Adobe Coldfusion 8 Multiple Linked XSS Vulnerabilies (Mon Aug 17 2009 - 10:25:55 CDT)
mikey27hotmail.com
- SAP Business One 2005 Remote Buffer Overflow Vulnerability. (Tue Aug 04 2009 - 10:22:01 CDT)
Moritz Muehlenhoff
- [SECURITY] [DSA 1875-1] New ikiwiki packages fix information disclosure (Mon Aug 31 2009 - 12:27:34 CDT)
- [SECURITY] [DSA 1874-1] New nss packages fix several vulnerabilities (Wed Aug 26 2009 - 14:01:32 CDT)
- [SECURITY] [DSA 1873-1] New xulrunner packages fix spoofing vulnerabilities (Wed Aug 26 2009 - 13:51:42 CDT)
murderkeygmail.com
- Microsoft Wordpad Memory Exhaustion (msftedit) (Wed Aug 12 2009 - 12:45:59 CDT)
MustLive
- Cross-Site Scripting vulnerability in Mozilla, Firefox, SeaMonkey, Orca Browser and Maxthon (Fri Aug 28 2009 - 14:07:40 CDT)
- Re: DoS vulnerability in Google Chrome (Tue Aug 25 2009 - 11:07:49 CDT)
- DoS vulnerability in Google Chrome (Sun Aug 23 2009 - 10:21:23 CDT)
- DoS vulnerabilities in Mozilla Firefox, Internet Explorer and Chrome (Fri Aug 21 2009 - 12:58:21 CDT)
- Cross-Site Scripting vulnerabiliy in Firefox and Opera (Sat Aug 01 2009 - 13:45:44 CDT)
Nick Freeman
- WizzRSS Firefox Extension - Privileged Code Injection (Sun Aug 23 2009 - 23:49:50 CDT)
- ScribeFire Firefox Extension - Privileged Code Injection (Sun Aug 23 2009 - 23:48:49 CDT)
- Feed Sidebar Firefox Extension - Privileged Code Injection (Sun Aug 23 2009 - 23:23:28 CDT)
Nico Golde
- [SECURITY] [DSA 1870-1] New pidgin packages fix arbitrary code execution (Wed Aug 19 2009 - 17:29:43 CDT)
- [SECURITY] [DSA 1869-1] New curl packages fix SSL certificate verification weakness (Wed Aug 19 2009 - 16:22:07 CDT)
- [SECURITY] [DSA 1863-1] New zope2.10/zope2.9 packages fix arbitrary code execution (Sat Aug 15 2009 - 10:56:00 CDT)
- [SECURITY] [DSA 1861-1] New libxml packages fix several issues (Thu Aug 13 2009 - 15:40:37 CDT)
- [SECURITY] [DSA 1859-1] New libxml2 packages fix several issues (Mon Aug 10 2009 - 13:55:11 CDT)
- [SECURITY] [DSA 1843-2] New squid3 packages fix regression (Sun Aug 09 2009 - 11:54:21 CDT)
- [SECURITY] [DSA 1853-1] New memcached packages fix arbitrary code execution (Fri Aug 07 2009 - 10:33:32 CDT)
- [SECURITY] [DSA 1852-1] New fetchmail packages fix SSL certificate verification weakness (Fri Aug 07 2009 - 10:31:48 CDT)
Oliver Goebel
- [IMF 2009] Call for Participation (Thu Aug 13 2009 - 13:13:15 CDT)
ostoure.sazangmail.com
- Easy Music Player 1.0.0.2 (wav) Universal Local Buffer Exploit (Fri Aug 14 2009 - 20:08:33 CDT)
- new vulnerability founded by ostoure (Thu Aug 13 2009 - 15:36:02 CDT)
Packet Storm
- Packet Storm is back online. (Sat Aug 22 2009 - 00:11:14 CDT)
palmprehackergmail.com
- Palm Pre WebOS 1.0.4 Remote execution of arbitrary HTML code vulnerability (Mon Aug 03 2009 - 22:06:32 CDT)
phcodergmail.com
- Re: [IVIZ-08-009] Grub Legacy Security Model bypass exploiting wrong BIOS API usage (Tue Aug 25 2009 - 10:27:34 CDT)
Przemyslaw Frasunek
- FreeBSD <= 6.1 kqueue() NULL pointer dereference (Sat Aug 22 2009 - 12:06:23 CDT)
- Re: Linux NULL pointer dereference due to incorrect proto_ops initializations (Fri Aug 14 2009 - 06:11:37 CDT)
Ramon de Carvalho Valle
- Illustrating the Linux sock_sendpage() NULL pointer dereference on Power/Cell BE Architecture (Mon Aug 31 2009 - 07:32:02 CDT)
RedTeam Pentesting GmbH
- [RT-SA-2009-005] Papoo CMS: Authenticated Arbitrary Code Execution (Mon Aug 10 2009 - 07:32:56 CDT)
researchdsecrg.com
- [DSECRG-09-051] Adobe JRun 4 Multiple XSS (Mon Aug 17 2009 - 09:46:45 CDT)
- [DSECRG-09-052] Adobe JRun 4 Directory Traversal Vulnerabilities (Mon Aug 17 2009 - 09:46:47 CDT)
- [DSECRG-09-022] Adobe Coldfusion 8 Multiple Linked XSS Vulnerabilies (Mon Aug 17 2009 - 09:44:20 CDT)
Robert Buchholz
- [ GLSA 200908-04 ] Adobe products: Multiple vulnerabilities (Fri Aug 07 2009 - 07:01:32 CDT)
- [ GLSA 200908-03 ] libTIFF: User-assisted execution of arbitrary code (Fri Aug 07 2009 - 06:49:24 CDT)
Roberto Suggi Liverani
- Update Scanner - Firefox Extension - Chrome Privileged Code Injection (Mon Aug 24 2009 - 07:27:16 CDT)
- CoolPreviews - Firefox Extension - Chrome Privileged Code Injection (Mon Aug 24 2009 - 07:25:56 CDT)
Roee Hay
- Advisory: Adobe Flash Player and AIR AVM2 intf_count Integer Overflow Remote Code Execution (CVE-2009-1869) (Sat Aug 01 2009 - 21:13:12 CDT)
rPath Update Announcements
- rPSA-2009-0124-1 curl (Mon Aug 24 2009 - 14:48:27 CDT)
- rPSA-2009-0122-1 idle python (Mon Aug 24 2009 - 14:36:53 CDT)
- rPSA-2009-0123-1 apr-util (Mon Aug 24 2009 - 14:38:00 CDT)
- rPSA-2009-0121-1 kernel open-vm-tools (Tue Aug 18 2009 - 17:10:31 CDT)
- rPSA-2009-0119-1 apr apr-util (Tue Aug 18 2009 - 17:06:40 CDT)
- rPSA-2009-0118-1 mod_dav_svn subversion (Tue Aug 18 2009 - 17:05:28 CDT)
ryan.wesselskohler.com
- Clear Text Storage of Password in CS-MARS v6.0.4 and Earlier (Fri Aug 21 2009 - 10:24:18 CDT)
s.leberresysdream.com
- Local Kernel Buffer Overflow vulnerability in Avast! (Mon Aug 24 2009 - 07:09:01 CDT)
saik0podgmail.com
- Re: common dns misconfiguration can lead to "same site" scripting (Mon Aug 17 2009 - 15:38:53 CDT)
Salvatore Fresta aka Drosophila
- Discloser 0.0.4-rc2 SQL Injection Vulnerability (Mon Aug 03 2009 - 04:27:02 CDT)
- Blink Blog System Authentication Bypass (Mon Aug 03 2009 - 12:28:04 CDT)
Schmidt, Chris
- RE: Bypassing OWASP ESAPI XSS Protection inside Javascript (Thu Aug 20 2009 - 10:28:03 CDT)
Scott Miles
- [CSS09-01] SlideShowPro Director File Disclosure Vulnerability (Thu Aug 06 2009 - 11:23:15 CDT)
secsesislab.no
- CFP: International workshop on Secure Software Engineering (Fri Aug 07 2009 - 06:06:45 CDT)
security curmudgeon
- Re: Elkapax CMS Cross site scripting vulnerability (Wed Aug 19 2009 - 00:09:30 CDT)
Security Research Publications
- Windows 7 Firewire Attacks - and Defense Techniques (Thu Aug 13 2009 - 07:13:36 CDT)
security-alerthp.com
- [security bulletin] HPSBTU02453 SSRT091037 rev.2 - HP Tru64 UNIX or HP Tru64 Internet Express Running BIND Server, Denial of Service (DoS) (Tue Aug 25 2009 - 12:51:44 CDT)
- [security bulletin] HPSBMA02448 SSRT061231 rev.1 - HP Network Node Manager (NNM) Remote Console Running on Windows, Local Execution of Arbitrary Code, Denial of Service (DoS) (Tue Aug 18 2009 - 14:30:44 CDT)
- [security bulletin] HPSBMA02447 SSRT090062 rev.1 - Insight Control Suite For Linux (ICE-LX) Cross Site Request Forgery (CSRF) , Remote Execution of Arbitrary Code, Denial of Service (DoS), and Other Vulnerabilities (Thu Aug 13 2009 - 07:46:43 CDT)
- [security bulletin] HPSBUX02437 SSRT090038 rev.2 - HP-UX Running XNTP, Remote Execution of Arbitrary Code (Wed Aug 12 2009 - 07:41:26 CDT)
- [security bulletin] HPSBTU02454 SSRT080172 rev.1 - HP Internet Express for Tru64 UNIX Running Samba, Remote Information Disclosure (Tue Aug 11 2009 - 16:06:12 CDT)
- [security bulletin] HPSBUX02450 SSRT090141 rev1 - HP-UX ttrace(2), Local Denial of Service (DoS) (Tue Aug 11 2009 - 08:23:56 CDT)
- [security bulletin] HPSBTU02453 SSRT091037 rev.1 - HP Tru64 UNIX BIND Server, Denial of Service (DoS) (Fri Aug 07 2009 - 08:03:04 CDT)
- [security bulletin] HPSBOV02452 SSRT090161 rev.1 - HP TCP/IP Services for OpenVMS BIND Server Remote Denial of Service (DoS) (Fri Aug 07 2009 - 08:02:34 CDT)
- [security bulletin] HPSBUX02451 SSRT090137 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS) (Fri Aug 07 2009 - 08:02:06 CDT)
- [security bulletin] HPSBUX02181 SSRT061289 rev.4 - HP-UX Running IPFilter, Remote Denial of Service (DoS) (Mon Aug 03 2009 - 13:06:00 CDT)
- [security bulletin] HPSBMA02445 SSRT090058 rev.1 - HP Serviceguard Manager, Remote Execution of Arbitrary Code, Denial of Service (DoS) (Mon Aug 03 2009 - 08:08:00 CDT)
securitymandriva.com
- [ MDVSA-2009:224 ] postfix (Sun Aug 30 2009 - 16:52:01 CDT)
- [ MDVSA-2009:223 ] xerces-c (Sun Aug 30 2009 - 13:00:00 CDT)
- [ MDVSA-2009:222 ] squirrelmail (Fri Aug 28 2009 - 13:11:01 CDT)
- [ MDVSA-2009:221 ] libneon0.27 (Mon Aug 24 2009 - 18:23:01 CDT)
- [ MDVSA-2009:220 ] davfs (Mon Aug 24 2009 - 14:19:00 CDT)
- [ MDVSA-2009:219 ] kompozer (Mon Aug 24 2009 - 13:18:01 CDT)
- [ MDVSA-2009:218 ] w3c-libwww (Mon Aug 24 2009 - 10:37:00 CDT)
- [ MDVSA-2009:217 ] mozilla-thunderbird (Sun Aug 23 2009 - 17:13:00 CDT)
- [ MDVSA-2009:216 ] mozilla-thunderbird (Sun Aug 23 2009 - 16:40:00 CDT)
- [ MDVSA-2009:215 ] audacity (Sun Aug 23 2009 - 16:22:00 CDT)
- [ MDVSA-2009:214 ] python-celementtree (Sun Aug 23 2009 - 15:37:00 CDT)
- [ MDVSA-2009:213 ] wxgtk (Sun Aug 23 2009 - 14:53:00 CDT)
- [ MDVSA-2009:213 ] wxgtk (Sun Aug 23 2009 - 13:57:00 CDT)
- [ MDVSA-2009:212 ] python (Sun Aug 23 2009 - 13:30:01 CDT)
- [ MDVSA-2009:212 ] python (Sun Aug 23 2009 - 13:12:00 CDT)
- [ MDVSA-2009:211 ] expat (Sun Aug 23 2009 - 12:37:02 CDT)
- [ MDVSA-2009:210 ] gnutls (Thu Aug 20 2009 - 22:35:01 CDT)
- [ MDVSA-2009:209 ] java-1.6.0-openjdk (Thu Aug 20 2009 - 19:54:01 CDT)
- [ MDVSA-2009:208 ] libgadu (Thu Aug 20 2009 - 12:36:01 CDT)
- [ MDVSA-2009:207 ] perl-Compress-Raw-Bzip2 (Wed Aug 19 2009 - 17:09:01 CDT)
- [ MDVSA-2009:206 ] wget (Tue Aug 18 2009 - 18:29:00 CDT)
- [ MDVSA-2009:205 ] kernel (Mon Aug 17 2009 - 19:21:00 CDT)
- [ MDVSA-2009:204 ] wxgtk (Sun Aug 16 2009 - 19:13:00 CDT)
- [ MDVSA-2009:203 ] curl (Sat Aug 15 2009 - 11:03:00 CDT)
- [ MDVSA-2009:202 ] memcached (Fri Aug 14 2009 - 13:23:01 CDT)
- [ MDVSA-2009:201 ] fetchmail (Wed Aug 12 2009 - 15:16:01 CDT)
- [ MDVSA-2009:200 ] libxml (Wed Aug 12 2009 - 09:43:01 CDT)
- [ MDVSA-2009:199 ] subversion (Sat Aug 08 2009 - 18:26:00 CDT)
- [ MDVSA-2009:197 ] nss (Fri Aug 07 2009 - 16:59:00 CDT)
- [ MDVSA-2009:161-1 ] squid (Sat Aug 08 2009 - 07:14:00 CDT)
- [ MDVSA-2009:198 ] firefox (Fri Aug 07 2009 - 17:17:00 CDT)
- [ MDVSA-2009:196 ] samba (Fri Aug 07 2009 - 11:45:01 CDT)
- [ MDVSA-2009:195-1 ] apr (Thu Aug 06 2009 - 14:32:01 CDT)
- [ MDVSA-2009:195 ] apr (Thu Aug 06 2009 - 09:55:00 CDT)
- [ MDVSA-2009:194 ] wireshark (Wed Aug 05 2009 - 22:17:00 CDT)
- [ MDVSA-2009:193 ] ruby (Wed Aug 05 2009 - 18:10:00 CDT)
- [ MDVSA-2009:192 ] phpmyadmin (Wed Aug 05 2009 - 09:07:00 CDT)
- [ MDVSA-2009:191 ] OpenEXR (Sun Aug 02 2009 - 17:31:00 CDT)
- [ MDVSA-2009:190 ] OpenEXR (Sun Aug 02 2009 - 17:21:00 CDT)
- [ MDVSA-2009:189 ] apache-mod_auth_mysql (Sat Aug 01 2009 - 09:29:00 CDT)
- [ MDVSA-2009:188 ] php4-eaccelerator (Fri Jul 31 2009 - 22:21:00 CDT)
- [ MDVSA-2009:187 ] nagios (Fri Jul 31 2009 - 21:40:00 CDT)
- [ MDVSA-2009:186 ] firebird (Fri Jul 31 2009 - 20:52:01 CDT)
- [ MDVSA-2009:185 ] firefox (Fri Jul 31 2009 - 17:41:00 CDT)
Shatter
- Team SHATTER Security Advisory: Buffer Overflow in Resource Manager of Oracle Database - Plan name parameter (Fri Aug 28 2009 - 10:20:40 CDT)
- Team SHATTER Security Advisory: Multiple SQL Injection vulnerabilities in Oracle Enterprise Manager (Mon Aug 03 2009 - 18:31:16 CDT)
spymetayahoo.com
- DUgallery 3.0 / Remote Admin Bug (Sun Aug 16 2009 - 13:39:20 CDT)
ss_contactshotmail.com
- ICQ 6.5 HTML-injection vulnerability (Fri Aug 14 2009 - 05:42:46 CDT)
starchangaten.com.tw
- Re: Multiple vulnerabilities in several ATEN IP KVM Switches (Wed Aug 12 2009 - 05:34:18 CDT)
Stefan Kanthak
- Vulnerable MSVC++ runtime distributed with OpenOffice.org 3.1.1 for Windows (Mon Aug 31 2009 - 11:42:53 CDT)
Steffen Joeris
- [SECURITY] [DSA 1871-2] New wordpress packages fix regression (Wed Aug 26 2009 - 20:39:01 CDT)
- [SECURITY] [DSA 1871-1] New wordpress packages fix several vulnerabilities (Sat Aug 22 2009 - 22:41:14 CDT)
- [SECURITY] [DSA 1867-1] New kdelibs packages fix several vulnerabilities (Wed Aug 19 2009 - 07:33:02 CDT)
- [SECURITY] [DSA 1868-1] New kde4libs packages fix several vulnerabilities (Wed Aug 19 2009 - 07:33:14 CDT)
- [SECURITY] [DSA 1866-1] New kdegraphics packages fix several vulnerabilities (Wed Aug 19 2009 - 07:32:52 CDT)
- [SECURITY] [DSA 1857-1] New camlimages packages fix arbitrary code execution (Sun Aug 09 2009 - 19:55:14 CDT)
- [SECURITY] [DSA 1851-1] New gst-plugins-bad0.10 packages fix arbitrary code execution (Thu Aug 06 2009 - 03:28:57 CDT)
- [SECURITY] [DSA 1850-1] New libmodplug packages fix arbitrary code execution (Tue Aug 04 2009 - 03:57:58 CDT)
Tavis Ormandy
- Linux NULL pointer dereference due to incorrect proto_ops initializations (Thu Aug 13 2009 - 13:57:53 CDT)
the_3dit0ryahoo.com
- EesySec Personal Firewall Remote Buffer Overflow Exploit (Tue Aug 25 2009 - 09:20:40 CDT)
- FLIP Flash Album Deluxe 1.8.407.1 (.fft File) Crash Vulnerability Exploit (Mon Aug 24 2009 - 04:31:13 CDT)
- AiO ( All into One) Flash Mixer 3 (.afp File) Crash Vulnerability Exploit (Mon Aug 24 2009 - 04:17:15 CDT)
- WM Downloader (.Smi/ .Ram/ .pls/ .smil/ .wax/ .wpl File) Local Buffer Overflow Exploit (Sun Aug 23 2009 - 14:51:05 CDT)
Thijs Kinkhorst
- [SECURITY] [DSA 1856-1] New mantis packages fix information leak (Sat Aug 08 2009 - 14:34:12 CDT)
Thor (Hammer of God)
- RE: H4RDW4RE presentations updated (Wed Aug 26 2009 - 09:21:02 CDT)
- H4RDW4RE presentations updated (Tue Aug 25 2009 - 16:07:01 CDT)
Timothy (Thor) Mullen
- Chris Paget Defcon RFID Presentation Slides Now Online (Wed Aug 12 2009 - 20:25:48 CDT)
Tobias Heinlein
- [ GLSA 200908-01 ] OpenSC: Multiple vulnerabilities (Sat Aug 01 2009 - 07:37:00 CDT)
Tomi Tuominen
- t2?09 Challenge - Free Tickets Available (Thu Aug 20 2009 - 07:14:37 CDT)
Vadim Okun
- Static analysis tool exposition (SATE) 2009 - call for participation (Wed Aug 12 2009 - 16:35:11 CDT)
Valery Marchuk
- [PT-2009-05] CA Internet Security Suite Denial of Service Vulnerability (Wed Aug 26 2009 - 04:56:56 CDT)
- [PT-2008-09] Microsoft Windows MSMQ Privilege Escalation Vulnerability (Wed Aug 12 2009 - 07:31:38 CDT)
VMware Security team
- VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server (Fri Aug 21 2009 - 01:38:49 CDT)
Walter Sprenger
- Authentication Bypass of Snom Phone Web Interface (Wed Aug 12 2009 - 16:46:27 CDT)
wojwaryahoo.com
- Re: Multiple Flaws in Huawei D100 (Tue Aug 04 2009 - 15:12:05 CDT)
XiaShinggmail.com
- HyperVM File Permissions Local Vulnerability (Tue Aug 25 2009 - 10:46:39 CDT)
ZDI Disclosures
- ZDI-09-059: Oracle Secure Backup Administration Server Multiple Command Injection Vulnerabilities (Tue Aug 18 2009 - 17:58:26 CDT)
- ZDI-09-058: Oracle Secure Backup Administration Server Authentication Bypass Vulnerability (Tue Aug 18 2009 - 17:52:57 CDT)
- ZDI-09-056: Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability (Tue Aug 11 2009 - 15:25:48 CDT)
- ZDI-09-054: Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject() Heap Corruption Vulnerability (Tue Aug 11 2009 - 15:24:24 CDT)
- ZDI-09-053: Microsoft Windows WINS Service Heap Overflow Vulnerability (Tue Aug 11 2009 - 15:23:39 CDT)
- ZDI-09-057: Microsoft Remote Desktop Client Arbitrary Code Execution Vulnerability (Tue Aug 11 2009 - 15:26:28 CDT)
- ZDI-09-055: Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability (Tue Aug 11 2009 - 15:25:11 CDT)
- ZDI-09-052: CA Unicenter Software Delivery dtscore.dll Stack Overflow Vulnerability (Fri Aug 07 2009 - 15:54:31 CDT)
- ZDI-09-051: EMC Replication Manager Client Control Service Remove Code Execution Vulnerability (Fri Aug 07 2009 - 15:53:17 CDT)
- ZDI-09-047: Microsoft Internet Explorer getElementsByTagName Memory Corruption Vulnerability (Wed Aug 05 2009 - 12:44:36 CDT)
- ZDI-09-050: Sun Java Web Start JPEG Header Parsing Integer Overflow Vulnerability (Wed Aug 05 2009 - 12:46:24 CDT)
- ZDI-09-049: Sun Java Pack200 Decoding Inner Class Count Integer Overflow Vulnerability (Wed Aug 05 2009 - 12:45:51 CDT)
- ZDI-09-048: Microsoft Internet Explorer CSS Behavior Memory Corruption Vulnerability (Wed Aug 05 2009 - 12:45:11 CDT)
ziadsubdreamer.com
- Re: SQL Injection vulnerabilities in Subdreamer CMS (Sat Aug 22 2009 - 03:37:56 CDT)

Last message date: Mon Aug 31 2009 - 14:51:41 CDT
Archived on: Mon Aug 31 2009 - 14:51:41 CDT

263 messages sorted by: [ date ] [ thread ] [ subject ]