NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2009-12

Most recent messages
318 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Tue Dec 01 2009 - 09:31:48 CST
Ending: Thu Dec 31 2009 - 11:19:45 CST

** FreeBSD local r00t zeroday Kingcope (Mon Nov 30 2009 - 16:12:20 CST)
Re: [Full-disclosure] ** FreeBSD local r00t zeroday Ed Carp (Mon Nov 30 2009 - 16:49:26 CST)
WinAppDbg 1.3 is out! Mario Alejandro Vilas Jerez (Mon Nov 30 2009 - 21:47:55 CST)
[oCERT-2009-017] PHP multiple issues Andrea Barisani (Mon Nov 30 2009 - 15:52:04 CST)
Re: [Full-disclosure] ** FreeBSD local r00t zeroday Ryan Steinmetz (Mon Nov 30 2009 - 19:40:59 CST)
Upcoming FreeBSD Security Advisory FreeBSD Security Officer (Mon Nov 30 2009 - 19:20:32 CST)
AST-2009-010: RTP Remote Crash Vulnerability Asterisk Security Team (Mon Nov 30 2009 - 15:58:49 CST)
Theeta CMS (Cross Site Scripting,SQL Injection) Multiple Vulnerabilities c0dyr00tDefaced.net (Tue Dec 01 2009 - 10:14:06 CST)
Re: [rejected] Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others Andrea Purificato (Wed Dec 02 2009 - 04:21:30 CST)
Secunia Research: Roxio Creator Image Rendering Integer Overflow Vulnerability Secunia Research (Wed Dec 02 2009 - 06:27:18 CST)
40 vulnerabilities in SMF 1.1.10/SMF 2.0RC2 by elhacker.net (Simple Audit) smf2.reviewgmail.com (Tue Dec 01 2009 - 21:37:26 CST)
Re: [Full-disclosure] Remote Command Execution in dotDefender Site Management Andrew Farmer (Tue Dec 01 2009 - 11:00:57 CST)
[ GLSA 200912-01 ] OpenSSL: Multiple vulnerabilities Alex Legler (Tue Dec 01 2009 - 15:32:14 CST)
Re: ** FreeBSD local r00t zeroday Robert BARABAS (Tue Dec 01 2009 - 14:01:13 CST)
Same-origin policy bypass vulnerabilities in several VPN products reported Juha-Matti Laurio (Wed Dec 02 2009 - 05:51:14 CST)
Secunia Research: Lateral Arts Photobox uploader ActiveX Control Buffer Overflow Secunia Research (Wed Dec 02 2009 - 05:53:35 CST)
Re: ** FreeBSD local r00t zeroday Barkýn KILIÇ (Wed Dec 02 2009 - 10:44:29 CST)
Call for Papers - you Sh0t the Sheriff 4 - Security Conference, Brazil Luiz Eduardo (Wed Dec 02 2009 - 14:57:29 CST)
[SECURITY] [DSA 1943-1] New openldap2.3/openldap packages fix SSL certificate verification weakness Giuseppe Iuculano (Wed Dec 02 2009 - 15:45:40 CST)
[ MDVSA-2009:121-1 ] lcms securitymandriva.com (Wed Dec 02 2009 - 16:41:00 CST)
Adobe Illustrator CS4 (V14.0.0) Encapsulated Postscript (.eps) Overlong DSC Comment Buffer Overflow Exploit nospamgmail.it (Wed Dec 02 2009 - 22:05:49 CST)
Re: Millions of PDF invisibly embedded with your internal disk paths Pavel Machek (Thu Dec 03 2009 - 03:01:53 CST)
FreeBSD Security Advisory FreeBSD-SA-09:15.ssl FreeBSD Security Advisories (Thu Dec 03 2009 - 03:30:38 CST)
FreeBSD Security Advisory FreeBSD-SA-09:16.rtld FreeBSD Security Advisories (Thu Dec 03 2009 - 03:30:43 CST)
FreeBSD Security Advisory FreeBSD-SA-09:17.freebsd-update FreeBSD Security Advisories (Thu Dec 03 2009 - 03:30:48 CST)
[SECURITY] [DSA 1944-1] New request-tracker packages fix session hijack vulnerability Steffen Joeris (Thu Dec 03 2009 - 05:04:51 CST)
[ MDVSA-2009:197-3 ] nss securitymandriva.com (Thu Dec 03 2009 - 09:29:00 CST)
[SECURITY] [DSA 1945-1] New gforge packages fix denial of service Steffen Joeris (Thu Dec 03 2009 - 06:46:30 CST)
[ MDVSA-2009:217-3 ] mozilla-thunderbird securitymandriva.com (Thu Dec 03 2009 - 09:07:01 CST)
[ MDVSA-2009:107-1 ] acpid securitymandriva.com (Thu Dec 03 2009 - 11:46:00 CST)
[ MDVSA-2009:112-1 ] ipsec-tools securitymandriva.com (Thu Dec 03 2009 - 12:14:00 CST)
[ MDVSA-2009:103-1 ] udev securitymandriva.com (Thu Dec 03 2009 - 11:05:00 CST)
[ MDVSA-2009:106-1 ] libwmf securitymandriva.com (Thu Dec 03 2009 - 11:39:01 CST)
[ MDVSA-2009:108-1 ] zsh securitymandriva.com (Thu Dec 03 2009 - 12:00:01 CST)
U.S. Defense Information Systems Agency (DISA) Unix Security Readiness Review (SRR) root compromise / VU#433821 Frank Stuart (Wed Dec 02 2009 - 23:40:52 CST)
[ MDVSA-2009:309 ] ntp securitymandriva.com (Thu Dec 03 2009 - 13:48:01 CST)
[ MDVSA-2009:113-1 ] cyrus-sasl securitymandriva.com (Thu Dec 03 2009 - 12:25:01 CST)
[USN-863-1] QEMU vulnerability Jamie Strandboge (Thu Dec 03 2009 - 14:01:04 CST)
CORE-2009-0911: DAZ Studio Arbitrary Command Execution CORE Security Technologies Advisories (Thu Dec 03 2009 - 14:07:53 CST)
[ MDVSA-2009:310 ] openssl securitymandriva.com (Thu Dec 03 2009 - 14:11:00 CST)
FreeBSD Security Advisory FreeBSD-SA-09:15.ssl [REVISED] FreeBSD Security Advisories (Thu Dec 03 2009 - 14:43:16 CST)
[ MDVSA-2009:308 ] gnutls securitymandriva.com (Thu Dec 03 2009 - 13:29:01 CST)
[ MDVSA-2009:292-1 ] wireshark securitymandriva.com (Thu Dec 03 2009 - 16:00:00 CST)
[ MDVSA-2009:132-1 ] libsndfile securitymandriva.com (Thu Dec 03 2009 - 16:46:01 CST)
RE: Millions of PDF invisibly embedded with your internal disk paths Thor (Hammer of God) (Thu Dec 03 2009 - 16:26:45 CST)
[ MDVSA-2009:313-1 ] bind securitymandriva.com (Thu Dec 03 2009 - 19:44:00 CST)
Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection Dawid Golunski (Thu Dec 03 2009 - 21:16:48 CST)
[ MDVSA-2009:290-1 ] firefox securitymandriva.com (Thu Dec 03 2009 - 15:23:01 CST)
[ MDVSA-2009:169-1 ] libtiff securitymandriva.com (Thu Dec 03 2009 - 18:40:00 CST)
[ MDVSA-2009:203-1 ] curl securitymandriva.com (Thu Dec 03 2009 - 21:22:00 CST)
[InterN0T] Google Analytics plugin for Wordpress - XSS Vulnerability advisoriesintern0t.net (Fri Dec 04 2009 - 05:47:24 CST)
[ MDVSA-2009:208-1 ] libgadu securitymandriva.com (Fri Dec 04 2009 - 08:13:00 CST)
[ MDVSA-2009:158-3 ] pango securitymandriva.com (Thu Dec 03 2009 - 19:18:00 CST)
Secunia Research: DevIL DICOM "GetUID()" Buffer Overflow Vulnerability Secunia Research (Fri Dec 04 2009 - 07:21:21 CST)
PHP 5.3.1 open_basedir bypass cxibsecurityreason.com (Thu Dec 03 2009 - 18:10:42 CST)
[ MDVSA-2009:287-1 ] xpdf securitymandriva.com (Thu Dec 03 2009 - 20:37:00 CST)
[ MDVSA-2009:311 ] ghostscript securitymandriva.com (Thu Dec 03 2009 - 18:18:00 CST)
[ MDVSA-2009:142-1 ] jasper securitymandriva.com (Thu Dec 03 2009 - 17:17:01 CST)
[ MDVSA-2009:157-1 ] perl-Compress-Raw-Zlib securitymandriva.com (Thu Dec 03 2009 - 19:07:00 CST)
[ MDVSA-2009:212-1 ] python securitymandriva.com (Fri Dec 04 2009 - 10:24:01 CST)
[ MDVSA-2009:315 ] libneon securitymandriva.com (Fri Dec 04 2009 - 11:37:00 CST)
[ MDVSA-2009:223-1 ] xerces-c securitymandriva.com (Fri Dec 04 2009 - 12:00:00 CST)
[ MDVSA-2009:211-1 ] expat securitymandriva.com (Fri Dec 04 2009 - 08:31:00 CST)
[ MDVSA-2009:312 ] dhcp securitymandriva.com (Thu Dec 03 2009 - 18:52:00 CST)
[ MDVSA-2009:206-1 ] wget securitymandriva.com (Fri Dec 04 2009 - 07:35:00 CST)
[ MDVSA-2009:218-1 ] w3c-libwww securitymandriva.com (Fri Dec 04 2009 - 11:07:00 CST)
[ MDVSA-2009:130-1 ] gstreamer0.10-plugins-good securitymandriva.com (Thu Dec 03 2009 - 16:33:00 CST)
[ MDVSA-2009:213-1 ] wxgtk securitymandriva.com (Fri Dec 04 2009 - 07:54:01 CST)
[ MDVSA-2009:200-1 ] libxml securitymandriva.com (Thu Dec 03 2009 - 21:00:00 CST)
[ MDVSA-2009:314 ] apr securitymandriva.com (Thu Dec 03 2009 - 20:16:00 CST)
[ MDVSA-2009:224-1 ] postfix securitymandriva.com (Fri Dec 04 2009 - 13:53:00 CST)
[ MDVSA-2009:128-1 ] libmodplug securitymandriva.com (Thu Dec 03 2009 - 16:11:01 CST)
RE: Millions of PDF invisibly embedded with your internal disk paths Ian Bradshaw (Fri Dec 04 2009 - 09:27:29 CST)
[ MDVSA-2009:201-1 ] fetchmail securitymandriva.com (Thu Dec 03 2009 - 21:11:00 CST)
[ MDVSA-2009:231-1 ] htmldoc securitymandriva.com (Mon Dec 07 2009 - 07:43:00 CST)
[ MDVSA-2009:232-1 ] libsamplerate securitymandriva.com (Sat Dec 05 2009 - 09:40:01 CST)
[ MDVSA-2009:297-1 ] ffmpeg securitymandriva.com (Sat Dec 05 2009 - 14:00:00 CST)
[ MDVSA-2009:249-1 ] newt securitymandriva.com (Sat Dec 05 2009 - 10:29:01 CST)
[ MDVSA-2009:318 ] xmlsec1 securitymandriva.com (Sat Dec 05 2009 - 11:38:01 CST)
[ MDVSA-2009:319 ] xine-lib securitymandriva.com (Sat Dec 05 2009 - 14:39:00 CST)
[ MDVSA-2009:316 ] expat securitymandriva.com (Sat Dec 05 2009 - 09:23:01 CST)
[ MDVSA-2009:307-1 ] libtool securitymandriva.com (Sun Dec 06 2009 - 12:40:00 CST)
[ MDVSA-2009:272-1 ] libmikmod securitymandriva.com (Sat Dec 05 2009 - 11:55:00 CST)
[ MDVSA-2009:284-1 ] gd securitymandriva.com (Sat Dec 05 2009 - 12:26:00 CST)
[ MDVSA-2009:320 ] samba securitymandriva.com (Sun Dec 06 2009 - 13:19:01 CST)
[ MDVSA-2009:321 ] pidgin securitymandriva.com (Sun Dec 06 2009 - 13:33:01 CST)
[ MDVSA-2009:215-1 ] audacity securitymandriva.com (Sun Dec 06 2009 - 13:49:00 CST)
[ MDVSA-2009:260-1 ] imagemagick securitymandriva.com (Sat Dec 05 2009 - 11:03:01 CST)
[ MDVSA-2009:219-1 ] kompozer securitymandriva.com (Sun Dec 06 2009 - 15:19:00 CST)
[ MDVSA-2009:317 ] netpbm securitymandriva.com (Sat Dec 05 2009 - 11:29:00 CST)
Re: Millions of PDF invisibly embedded with your internal disk paths Nick FitzGerald (Fri Dec 04 2009 - 14:55:35 CST)
[SECURITY] [DSA 1946-1] New belpic packages fix cryptographic weakness Steffen Joeris (Fri Dec 04 2009 - 15:02:22 CST)
[ MDVSA-2009:322 ] mono securitymandriva.com (Mon Dec 07 2009 - 08:13:01 CST)
Re: Millions of PDF invisibly embedded with your internal disk paths Nick FitzGerald (Fri Dec 04 2009 - 15:50:37 CST)
[ MDVSA-2009:234-2 ] silc-toolkit securitymandriva.com (Sat Dec 05 2009 - 10:02:00 CST)
Re: Re: Re: Re: Back door trojan in acajoom-3.2.6 for joomla anonymousanonymous.com (Sat Dec 05 2009 - 09:08:50 CST)
[ MDVSA-2009:323 ] apache securitymandriva.com (Mon Dec 07 2009 - 10:51:01 CST)
Re: Millions of PDF invisibly embedded with your internal disk paths Pavel Machek (Sun Dec 06 2009 - 13:56:46 CST)
PhpShop Multiple Vulnerabilities Andrea Fabrizi (Sun Dec 06 2009 - 14:46:57 CST)
[ MDVSA-2009:254-1 ] graphviz securitymandriva.com (Sat Dec 05 2009 - 10:54:00 CST)
CVE-2009-3586: CoreHTTP web server off-by-one buffer overflow vulnerability Patroklos Argyroudis (Mon Dec 07 2009 - 03:16:50 CST)
[USN-865-1] Bind vulnerability Marc Deslauriers (Mon Dec 07 2009 - 08:39:49 CST)
[ MDVSA-2009:256-1 ] dbus securitymandriva.com (Sat Dec 05 2009 - 10:43:00 CST)
Mozilla Firefox JavaScript Prompt Spoofing Weakness tcphttp (Sat Dec 05 2009 - 06:05:40 CST)
[ MDVSA-2009:229-1 ] cyrus-imapd securitymandriva.com (Sat Dec 05 2009 - 09:51:00 CST)
[ MDVSA-2008:233-1 ] libcdaudio securitymandriva.com (Mon Dec 07 2009 - 09:04:01 CST)
[ MDVSA-2009:252-1 ] perl-IO-Socket-SSL securitymandriva.com (Sat Dec 05 2009 - 12:14:01 CST)
[ MDVSA-2009:324 ] php securitymandriva.com (Mon Dec 07 2009 - 11:41:01 CST)
[ MDVSA-2009:243-2 ] freetype2 securitymandriva.com (Sat Dec 05 2009 - 10:11:01 CST)
[ MDVSA-2009:199-1 ] subversion securitymandriva.com (Mon Dec 07 2009 - 14:03:00 CST)
[ MDVSA-2009:325 ] ruby securitymandriva.com (Mon Dec 07 2009 - 15:05:00 CST)
[ MDVSA-2009:326 ] mysql securitymandriva.com (Mon Dec 07 2009 - 15:21:00 CST)
[USN-866-1] gnome-screensaver vulnerability Marc Deslauriers (Mon Dec 07 2009 - 15:23:17 CST)
[SECURITY] [DSA 1947-1] New Shibboleth packages fix cross-site scripting Moritz Muehlenhoff (Mon Dec 07 2009 - 16:59:02 CST)
[ MDVSA-2009:282-1 ] cups securitymandriva.com (Mon Dec 07 2009 - 19:06:00 CST)
Secunia Research: Novell iPrint Client "target-frame" Parameter Buffer Overflow Secunia Research (Tue Dec 08 2009 - 03:25:32 CST)
Secunia Research: Novell iPrint Client Date/Time Parsing Buffer Overflow Secunia Research (Tue Dec 08 2009 - 03:29:09 CST)
Security Contact for Netcool at IBM? Michael Gripenstedt (Tue Dec 08 2009 - 08:13:04 CST)
[ MDVSA-2009:251-1 ] postgresql8.2 securitymandriva.com (Tue Dec 08 2009 - 08:59:00 CST)
[security bulletin] HPSBMA02481 SSRT090113 rev.1 - HP OpenView Data Protector Application Recovery Manager, Remote Denial security-alerthp.com (Mon Dec 07 2009 - 22:25:33 CST)
[ MDVSA-2009:191-1 ] OpenEXR securitymandriva.com (Tue Dec 08 2009 - 11:25:01 CST)
Re: Security Contact for Netcool at IBM? Troy Bollinger (Tue Dec 08 2009 - 10:26:12 CST)
[ MDVSA-2009:327 ] clamav securitymandriva.com (Tue Dec 08 2009 - 10:45:01 CST)
Applicure Technologies response tomerapplicure.com (Tue Dec 08 2009 - 11:30:27 CST)
[ MDVSA-2009:133-1 ] irssi securitymandriva.com (Tue Dec 08 2009 - 12:03:01 CST)
[ MDVSA-2009:126-1 ] eggdrop securitymandriva.com (Tue Dec 08 2009 - 12:14:00 CST)
[ MDVSA-2009:098-1 ] krb5 securitymandriva.com (Tue Dec 08 2009 - 13:03:00 CST)
[ MDVSA-2009:099-1 ] openafs securitymandriva.com (Tue Dec 08 2009 - 12:44:01 CST)
[SECURITY] [DSA 1948-1] New ntp packages fix denial of service Nico Golde (Tue Dec 08 2009 - 13:07:15 CST)
ZDI-09-086: Microsoft Internet Explorer XHTML DOM Manipulation Memory Corruption Vulnerability ZDI Disclosures (Tue Dec 08 2009 - 13:42:32 CST)
[ MDVSA-2009:091-1 ] mod_perl securitymandriva.com (Tue Dec 08 2009 - 13:56:00 CST)
ZDI-09-089: Microsoft Windows Intel Indeo Codec Parsing Heap Overflow Vulnerability ZDI Disclosures (Tue Dec 08 2009 - 13:42:47 CST)
[ MDVSA-2009:093-1 ] mpg123 securitymandriva.com (Tue Dec 08 2009 - 13:39:00 CST)
[ MDVSA-2009:038-1 ] blender securitymandriva.com (Tue Dec 08 2009 - 15:25:02 CST)
[security bulletin] HPSBUX02495 SSRT090151 rev.1 - HP-UX Running sendmail, Remote Denial of Service (DoS) security-alerthp.com (Tue Dec 08 2009 - 19:10:03 CST)
Notepad++ buffer overflow issue Don HO (Tue Dec 08 2009 - 14:22:09 CST)
ZDI-09-087: Microsoft Internet Explorer CSS Race Condition Code Execution Vulnerability ZDI Disclosures (Tue Dec 08 2009 - 13:42:37 CST)
ZDI-09-091: Hewlett-Packard Application Recovery Manager MSG_PROTOCOL Stack Overflow Vulnerability ZDI Disclosures (Tue Dec 08 2009 - 17:07:20 CST)
[ MDVSA-2009:046-1 ] dia securitymandriva.com (Tue Dec 08 2009 - 14:39:02 CST)
Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec noreply-secresearchfortinet.securityfocus.com (Tue Dec 08 2009 - 16:24:37 CST)
ZDI-09-093: Adobe Flash Player ActionScript Exception Handler Integer Overflow Vulnerability ZDI Disclosures (Wed Dec 09 2009 - 10:41:55 CST)
ZDI-09-092: Adobe Flash Player JPEG Parsing Heap Overflow Vulnerability ZDI Disclosures (Wed Dec 09 2009 - 10:41:50 CST)
ZDI-09-090: Microsoft Windows Intel Indeo Codec Parsing Stack Overflow Vulnerability ZDI Disclosures (Tue Dec 08 2009 - 13:42:52 CST)
IPB v2.x up to 3.0.4 XSS vulnerability Xacker (Wed Dec 09 2009 - 01:50:13 CST)
UPDATE: DISA Unix SRR root compromise / CVE-2009-4211 / VU#433821 Frank Stuart (Wed Dec 09 2009 - 00:24:09 CST)
Advisory 03/2009: Piwik Cookie unserialize() Vulnerability Stefan Esser (Wed Dec 09 2009 - 04:12:12 CST)
Fortinet Advisory: Fortinet Discovers Microsoft Office Project Vulnerability noreply-secresearchfortinet.securityfocus.com (Tue Dec 08 2009 - 16:04:01 CST)
Zen Cart local file disclosure vulnerability Bogdan Calin (Wed Dec 09 2009 - 08:25:39 CST)
[USN-867-1] Ntp vulnerability Jamie Strandboge (Tue Dec 08 2009 - 16:29:02 CST)
[ MDVSA-2009:276-1 ] python-django securitymandriva.com (Tue Dec 08 2009 - 16:07:01 CST)
[ MDVSA-2009:059-1 ] xchat securitymandriva.com (Tue Dec 08 2009 - 14:09:00 CST)
Advisory 02/2009: PHPIDS Unserialize() Vulnerability Stefan Esser (Wed Dec 09 2009 - 04:11:12 CST)
ZDI-09-094: Hewlett-Packard OpenView NNM Multiple Command Injection Vulnerabilities ZDI Disclosures (Wed Dec 09 2009 - 11:39:07 CST)
[USN-868-1] GRUB 2 vulnerability Jamie Strandboge (Tue Dec 08 2009 - 18:47:32 CST)
ZDI-09-096: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable vsprintf Overflow Vulnerability ZDI Disclosures (Wed Dec 09 2009 - 11:39:22 CST)
ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability ZDI Disclosures (Wed Dec 09 2009 - 11:39:12 CST)
ZDI-09-088: Microsoft Internet Explorer IFrame Attributes Circular Reference Dangling Pointer Vulnerability ZDI Disclosures (Tue Dec 08 2009 - 13:42:42 CST)
ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability ZDI Disclosures (Wed Dec 09 2009 - 11:39:17 CST)
TPTI-09-08: HP OpenView NNM ovlogin.exe CGI userid/passwd Heap Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:18:05 CST)
[ MDVSA-2009:328 ] ntp securitymandriva.com (Tue Dec 08 2009 - 20:26:00 CST)
TPTI-09-09: HP OpenView NNM ovsessionmgr.exe userid/passwd Heap Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:20:42 CST)
TPTI-09-10: HP OpenView NNM webappmon.exe CGI Host Header Buffer Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:21:41 CST)
TPTI-09-11: HP OpenView NNM OvWebHelp.exe CGI Topic Heap Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:22:32 CST)
TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:23:19 CST)
TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:24:50 CST)
TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability dvlabs (Wed Dec 09 2009 - 12:25:58 CST)
[ MDVSA-2009:030-1 ] amarok securitymandriva.com (Tue Dec 08 2009 - 15:39:01 CST)
ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability ZDI Disclosures (Wed Dec 09 2009 - 13:24:30 CST)
CA20091208-01: Security Notice for CA Service Desk Kotas, Kevin J (Tue Dec 08 2009 - 13:40:19 CST)
iDefense Security Advisory 12.08.09: Microsoft Internet Explorer HTML Layout Engine Uninitialized Memory Vulnerability iDefense Labs (Wed Dec 09 2009 - 15:26:46 CST)
iDefense Security Advisory 12.08.09: Microsoft WordPad Word97 Converter Integer Overflow Vulnerability iDefense Labs (Wed Dec 09 2009 - 15:32:51 CST)
iDefense Security Advisory 12.08.09: Microsoft Windows Indeo32 Codec Parsing Heap Corruption Vulnerability iDefense Labs (Wed Dec 09 2009 - 15:36:09 CST)
RE: Millions of PDF invisibly embedded with your internal disk paths Thor (Hammer of God) (Wed Dec 09 2009 - 15:51:16 CST)
CORE-2009-1013: Multiple XSS and Injection Vulnerabilities in TestLink Test Management and Execution System CORE Security Technologies Advisories (Wed Dec 09 2009 - 17:16:34 CST)
[security bulletin] HPSBUX02480 SSRT090253 rev.1 - HP-UX Running VRTSweb, Remote Execution of Arbitrary Code, Increase of Privilege security-alerthp.com (Wed Dec 09 2009 - 17:21:27 CST)
[ MDVSA-2009:329 ] kernel securitymandriva.com (Wed Dec 09 2009 - 19:22:00 CST)
[security bulletin] HPSBMA02483 SSRT090257 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alerthp.com (Thu Dec 10 2009 - 08:07:54 CST)
[security bulletin] HPSBMA02477 SSRT090177 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) security-alerthp.com (Thu Dec 10 2009 - 08:08:28 CST)
[USN-869-1] Linux kernel vulnerabilities Kees Cook (Wed Dec 09 2009 - 19:09:03 CST)
[ MDVSA-2009:330 ] kdelibs securitymandriva.com (Thu Dec 10 2009 - 11:55:01 CST)
[ MDVSA-2009:331 ] kdegraphics securitymandriva.com (Thu Dec 10 2009 - 12:06:00 CST)
[USN-870-1] PyGreSQL vulnerability Jamie Strandboge (Thu Dec 10 2009 - 18:33:50 CST)
[USN-871-1] KDE vulnerability Jamie Strandboge (Thu Dec 10 2009 - 20:29:40 CST)
[USN-871-2] KDE 4 vulnerabilities Jamie Strandboge (Thu Dec 10 2009 - 20:54:50 CST)
E-Store SQL Injection Vulnerability Salvatore Fresta aka Drosophila (Thu Dec 10 2009 - 22:50:54 CST)
Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Salvatore Fresta aka Drosophila (Fri Dec 11 2009 - 00:25:57 CST)
[USN-872-1] KDE 4 Runtime vulnerabilities Jamie Strandboge (Fri Dec 11 2009 - 06:59:50 CST)
Re: TLS / SSLv3 vulnerability explained (New ways to leverage the vulnerability) Thierry Zoller (Fri Dec 11 2009 - 07:27:10 CST)
[ MDVSA-2009:332 ] gimp securitymandriva.com (Fri Dec 11 2009 - 07:51:01 CST)
[security bulletin] HPSBMA02400 SSRT080144 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alerthp.com (Fri Dec 11 2009 - 09:21:22 CST)
phpCollegeExchange 0.1.5c Multiple SQL Injection Vulnerabilities Salvatore Fresta aka Drosophila (Fri Dec 11 2009 - 09:21:57 CST)
[security bulletin] HPSBMA02424 SSRT080125 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alerthp.com (Fri Dec 11 2009 - 09:22:42 CST)
[security bulletin] HPSBMA02425 SSRT080091 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alerthp.com (Fri Dec 11 2009 - 09:23:29 CST)
[security bulletin] HPSBPI02472 SSRT090196 rev.2 - Certain HP Color LaserJet Printers, Remote Unauthorized Access to Data, Denial of Service security-alerthp.com (Fri Dec 11 2009 - 09:24:15 CST)
[security bulletin] HPSBMA02483 SSRT090257 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alerthp.com (Fri Dec 11 2009 - 09:25:12 CST)
[ MDVSA-2009:296-1 ] gimp securitymandriva.com (Fri Dec 11 2009 - 11:27:00 CST)
Flock 2.5.2 Remote Array Overrun (Arbitrary code execution) cxibsecurityreason.com (Thu Dec 10 2009 - 17:32:49 CST)
Camino 1.6.10 Remote Array Overrun (Arbitrary code execution) cxibsecurityreason.com (Thu Dec 10 2009 - 17:33:31 CST)
[ MDVSA-2009:259-1 ] snort securitymandriva.com (Fri Dec 11 2009 - 13:21:00 CST)
Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover Ofer Maor (Mon Dec 14 2009 - 07:57:32 CST)
[SECURITY] [DSA 1949-1] New php-net-ping packages fix arbitrary code execution Raphael Geissert (Sat Dec 12 2009 - 02:52:41 CST)
Zabbix Server : Multiple remote vulnerabilities Nicob (Sun Dec 13 2009 - 09:28:35 CST)
Loggix Project <= 9.4.5 Multiple Remote File Inclusion Vulnerabilities adminekin0x.com (Sun Dec 13 2009 - 06:44:46 CST)
Miniweb 2.0 Full Path Disclosure Salvatore Fresta aka Drosophila (Fri Dec 11 2009 - 21:01:11 CST)
WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities adminekin0x.com (Sun Dec 13 2009 - 06:45:17 CST)
Re: E-Store SQL Injection Vulnerability Packet Storm (Fri Dec 11 2009 - 22:06:41 CST)
B2C Booking Centre Systems - SQL Injection Vulnerability Salvatore Fresta aka Drosophila (Fri Dec 11 2009 - 15:04:27 CST)
Re: IPB v2.x up to 3.0.4 XSS vulnerability MustLive (Sun Dec 13 2009 - 08:55:01 CST)
Cross-Site Scripting vulnerabilities in Invision Power Board MustLive (Sun Dec 13 2009 - 13:55:33 CST)
EEGshop v1.2 secu_lab_iryahoo.com (Sun Dec 13 2009 - 15:46:25 CST)
Monkey HTTPd improper input validation vulnerability Patroklos Argyroudis (Mon Dec 14 2009 - 04:18:55 CST)
[SECURITY] [DSA-1950-1] New webkit packages fix several vulnerabilities Giuseppe Iuculano (Sat Dec 12 2009 - 04:10:15 CST)
Zabbix Agent : Bypass of EnableRemoteCommands=0 Nicob (Sun Dec 13 2009 - 09:28:30 CST)
DC4420 - London DEFCON - Christmas drinks - Wednesday 16th December Major Malfunction (Mon Dec 14 2009 - 09:19:00 CST)
[security bulletin] HPSBUX02409 SSRT080171 rev.3 - HP-UX Running VERITAS File System (VRTSvxfs) or VERITAS Oracle Disk security-alerthp.com (Mon Dec 14 2009 - 14:20:52 CST)
Exposing HMS HICP Protocol + Intellicom NetBiterConfig.exe Remote Buffer Overflow (Not patched) Reversemode (Mon Dec 14 2009 - 14:34:43 CST)
[security bulletin] HPSBUX02482 SSRT090249 rev.2 - HP-UX Running OpenSSL, Remote Unauthorized Data Injection, Denial of Service (DoS) security-alerthp.com (Mon Dec 14 2009 - 16:29:12 CST)
Re: WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities Packet Storm (Mon Dec 14 2009 - 19:35:00 CST)
APC Switched Rack PDU XSS Vulnerability jpecougmail.com (Mon Dec 14 2009 - 15:19:04 CST)
WSCreator 1.1 Blind SQL Injection Salvatore Fresta aka Drosophila (Mon Dec 14 2009 - 20:48:51 CST)
Trango Broadband Wireless Rogue SU Authentication Bug Blair (Tue Dec 15 2009 - 05:00:19 CST)
[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing Steffen Joeris (Tue Dec 15 2009 - 05:55:16 CST)
[SECURITY] [DSA 1952-2] End-of-life announcement for asterisk in oldstable Steffen Joeris (Tue Dec 15 2009 - 07:06:34 CST)
[SECURITY] [DSA 1952-1] New asterisk packages fix several vulnerabilities Steffen Joeris (Tue Dec 15 2009 - 07:06:23 CST)
Daloradius XSS Vulnerability hadikiamarsihotmail.com (Tue Dec 15 2009 - 07:08:15 CST)
[BMSA-2009-08] Multiple Vulnerabilities in PyForum Nam Nguyen (Mon Dec 14 2009 - 21:26:16 CST)
[scip-Advisory 4063] PasswordManager Pro 6.1 Script Injection Vulnerability Stefan Friedli (Tue Dec 15 2009 - 03:26:02 CST)
[ MDVSA-2009:333 ] postgresql securitymandriva.com (Tue Dec 15 2009 - 12:27:01 CST)
VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues VMware Security Team (Tue Dec 15 2009 - 12:33:49 CST)
[SECURITY] [DSA-1953-1] New expat packages fix denial of service Stefan Fritsch (Tue Dec 15 2009 - 14:23:03 CST)
FW: [Full-disclosure] File Access Vulnerability in Easy File Sharing Web Server Thor (Hammer of God) (Tue Dec 15 2009 - 20:35:38 CST)
[ISecAuditors Security Advisories] WP-Forum <= 2.3 SQL Injection vulnerabilities ISecAuditors Security Advisories (Wed Dec 16 2009 - 03:58:07 CST)
Family Connections <= 2.1.3 Multiple Remote Vulnerabilities Salvatore Fresta aka Drosophila (Wed Dec 16 2009 - 00:52:33 CST)
File Access Vulnerability in Easy File Sharing Web Server Thor (Hammer of God) (Tue Dec 15 2009 - 18:16:51 CST)
[SECURITY] [DSA 1954-1] New cacti packages fix insufficient input sanitising Steffen Joeris (Wed Dec 16 2009 - 05:47:37 CST)
VideoCache 1.9.2 vccleaner root vulnerability Dominick LaTrappe (Wed Dec 16 2009 - 06:37:51 CST)
Kaspersky Lab Multiple Products Local Privilege Escalation Vulnerability Maxim A. Kulakov (Wed Dec 16 2009 - 06:58:17 CST)
[security bulletin] HPSBMA02416 SSRT090008 rev.4 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code security-alerthp.com (Wed Dec 16 2009 - 07:55:57 CST)
[SECURITY] [DSA 1955-1] New network-manager/network-manager-applet packages fix information disclosure Steffen Joeris (Wed Dec 16 2009 - 11:27:35 CST)
{PRL} QuickHeal antivirus 2010 Local Privilege Escalation Protek Research Lab (Wed Dec 16 2009 - 10:55:33 CST)
Cisco Security Advisory: Multiple Cisco WebEx WRF Player Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed Dec 16 2009 - 10:55:47 CST)
rPSA-2009-0161-1 hwdata kernel rPath Update Announcements (Wed Dec 16 2009 - 13:20:28 CST)
[SECURITY] [DSA 1956-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Wed Dec 16 2009 - 15:15:39 CST)
[security bulletin] HPSBMA02252 SSRT061258, SSRT061259 rev.1 - HP OpenView Storage Data Protector, Remote Arbitrary Code Execution security-alerthp.com (Wed Dec 16 2009 - 18:23:02 CST)
Secunia Research: Winamp Impulse Tracker Instrument Parsing Buffer Overflows Secunia Research (Thu Dec 17 2009 - 02:49:40 CST)
[ MDVSA-2009:334 ] poppler securitymandriva.com (Wed Dec 16 2009 - 18:51:01 CST)
Secunia Research: Winamp Ultratracker File Parsing Buffer Overflow Secunia Research (Thu Dec 17 2009 - 02:49:27 CST)
SEC Consult SA-20091217-0 :: Authentication bypass and file manipulation in Sitecore Staging Module Lukas Weichselbaum (Thu Dec 17 2009 - 06:17:56 CST)
Secunia Research: Winamp Impulse Tracker Sample Parsing Buffer Overflow Secunia Research (Thu Dec 17 2009 - 02:49:34 CST)
Secunia Research: Winamp Oktalyzer Parsing Integer Overflow Vulnerability Secunia Research (Thu Dec 17 2009 - 02:49:20 CST)
[ISecAuditors Security Advisories] Cisco ASA <= 8.x VPN SSL module Clientless URL-list control bypass ISecAuditors Security Advisories (Thu Dec 17 2009 - 06:48:41 CST)
[ISecAuditors Security Advisories] Horde 3.3.5 "PHP_SELF" Cross-Site Scripting vulnerability ISecAuditors Security Advisories (Thu Dec 17 2009 - 09:39:01 CST)
VUPEN Security Research - Winamp PNG and JPEG Data Integer Overflow Vulnerabilities VUPEN Security Research (Thu Dec 17 2009 - 09:53:44 CST)
[ISecAuditors Security Advisories] QuiXplorer <=2.4.1beta Remote Code Execution vulnerability ISecAuditors Security Advisories (Thu Dec 17 2009 - 10:34:05 CST)
[ MDVSA-2009:335 ] ffmpeg securitymandriva.com (Thu Dec 17 2009 - 13:06:01 CST)
[Suspected Spam][oCERT-2009-019] Ganeti path sanitization errors Andrea Barisani (Thu Dec 17 2009 - 10:26:31 CST)
Rumba XML XSS vulnerability hadikiamarsihotmail.com (Thu Dec 17 2009 - 06:02:16 CST)
Campus Party Eu 2010 Security Challenge - Call For Participants Campus Party EU Spain (Wed Dec 16 2009 - 18:34:52 CST)
ZDI-09-099: Hewlett-Packard OpenView Data Protector Backup Client Service Buffer Overflow Vulnerability ZDI Disclosures (Thu Dec 17 2009 - 16:25:04 CST)
TPTI-09-15: HP OpenView Data Protector Cell Manager Heap Overflow Vulnerability dvlabs (Thu Dec 17 2009 - 16:41:10 CST)
Re: Powered By Dvbbs Version 7.1.0 Sp1 By Pass macaco-listohotmail.com (Thu Dec 17 2009 - 16:41:29 CST)
[ MDVSA-2009:336 ] koffice securitymandriva.com (Thu Dec 17 2009 - 18:28:01 CST)
[ISecAuditors Security Advisories] Simple PHP Blog <= 0.5.1 Local File Include vulnerability ISecAuditors Security Advisories (Fri Dec 18 2009 - 06:14:03 CST)
[ISecAuditors Security Advisories] PHP-Calendar <= v1.1 'configfile' Remote and Local File Inclusion vulnerability ISecAuditors Security Advisories (Fri Dec 18 2009 - 06:18:04 CST)
[USN-875-1] Red Hat Cluster Suite vulnerabilities Jamie Strandboge (Fri Dec 18 2009 - 10:29:11 CST)
SMF (Simple Machine Forum) 1.1.11 XSS - Discovered by : Khashayar Fereidani irancrashgmail.com (Fri Dec 18 2009 - 11:52:52 CST)
[USN-873-1] Firefox 3.0 and Xulrunner 1.9 vulnerabilities Jamie Strandboge (Fri Dec 18 2009 - 16:04:18 CST)
[USN-874-1] Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities Jamie Strandboge (Fri Dec 18 2009 - 16:33:42 CST)
[SECURITY] [DSA-1959-1] New ganeti packages fix arbitrary command execution Raphael Geissert (Sat Dec 19 2009 - 07:49:31 CST)
[SECURITY] [DSA 1960-1] New acpid packages fix weak file permissions Raphael Geissert (Sat Dec 19 2009 - 13:52:34 CST)
[ GLSA 200912-02 ] Ruby on Rails: Multiple vulnerabilities Alex Legler (Sun Dec 20 2009 - 05:33:32 CST)
phpPollScript - 1.3 Remote File Include adminekin0x.com (Sun Dec 20 2009 - 05:43:25 CST)
pragmaMx CMS Blind SQL/XPath Injection vulnerability hadikiamarsihotmail.com (Sun Dec 20 2009 - 17:15:51 CST)
TLS Renegotiation Vulnerability: Proof of Concept Code (Python) RedTeam Pentesting GmbH (Mon Dec 21 2009 - 07:03:47 CST)
SQL-Ledger â€“ several vulnerabilities Alexander Klink (Mon Dec 21 2009 - 08:17:21 CST)
ClarkConnect XSS vulnerability edgard.chammasbeyond-security.org (Mon Dec 21 2009 - 17:49:01 CST)
[security bulletin] HPSBUX02498 SSRT090264 rev.1 - HP-UX Running Apache, Remote Unauthorized Data Injection, Denial of security-alerthp.com (Tue Dec 22 2009 - 10:42:14 CST)
Re: phpPollScript - 1.3 Remote File Include Packet Storm (Mon Dec 21 2009 - 17:57:26 CST)
[ MDVSA-2009:337 ] proftpd securitymandriva.com (Tue Dec 22 2009 - 08:55:01 CST)
Remote Buffer Overflow Exploit (TFTP Daemon Version 1.9) by Socket_0x03 Socket_0x03teraexe.com (Mon Dec 21 2009 - 20:18:37 CST)
RE: TLS Renegotiation Vulnerability: Proof of Concept Code (Python) Barry Raveendran Greene (Mon Dec 21 2009 - 14:16:16 CST)
[ MDVSA-2009:338 ] firefox securitymandriva.com (Tue Dec 22 2009 - 12:26:01 CST)
[ MDVSA-2009:339 ] firefox securitymandriva.com (Tue Dec 22 2009 - 13:01:00 CST)
[SECURITY] [DSA 1961-1] New bind9 packages fix cache poisoning Florian Weimer (Wed Dec 23 2009 - 01:07:33 CST)
[SECURITY] [DSA-1962-1] New kvm packages fix several vulnerabilities Giuseppe Iuculano (Wed Dec 23 2009 - 05:54:01 CST)
XSS Vulnerability in JpGraph 3.0.6 Martin Barbella (Tue Dec 22 2009 - 14:34:42 CST)
RE: TLS Renegotiation Vulnerability: Proof of Concept Code (Python) Ivan Buetler (Wed Dec 23 2009 - 01:20:36 CST)
Remote Buffer Overflow Exploit (TFTP Daemon Version 1.9) by Socket_0x03 Socket_0x03teraexe.com (Thu Dec 24 2009 - 03:01:20 CST)
Vulnerability in Joomulus for Joomla MustLive (Fri Dec 25 2009 - 12:14:13 CST)
ClubHack2009 presentations are now online ClubHack (Sat Dec 26 2009 - 02:20:21 CST)
Microsoft IIS 0Day Vulnerability in Parsing Files (semi-colon bug) bugreportitguard.info (Wed Dec 23 2009 - 15:34:07 CST)
[SECURITY] [DSA 1963-1] New unbound packages fix DNSSEC validation Florian Weimer (Wed Dec 23 2009 - 14:35:17 CST)
[ MDVSA-2009:340 ] jpgraph securitymandriva.com (Sat Dec 26 2009 - 09:30:01 CST)
[ MDVSA-2009:341 ] dstat securitymandriva.com (Sat Dec 26 2009 - 10:18:00 CST)
[tools] hostmap-0.2.1 released Alessandro Tanasi (Sat Dec 26 2009 - 13:57:28 CST)
[ MDVSA-2009:342 ] acpid securitymandriva.com (Sat Dec 26 2009 - 15:56:00 CST)
[ MDVSA-2009:343 ] acpid securitymandriva.com (Sat Dec 26 2009 - 16:53:00 CST)
[InterN0T] LiveZilla - XSS Vulnerability advisoriesintern0t.net (Sun Dec 27 2009 - 10:19:50 CST)
DBHCMS Web Content Management System v1.1.4 RFI Vulnerability infosecuritylab.ir (Mon Dec 28 2009 - 00:40:56 CST)
Sheedravi CMS SQL Injection Vulnerability faghaninsec.ir (Mon Dec 28 2009 - 01:32:58 CST)
[SECURITY] [DSA 1957-1] New aria2 packages fix arbitrary code execution Steffen Joeris (Mon Dec 28 2009 - 03:58:08 CST)
[ MDVSA-2009:244-1 ] xfig securitymandriva.com (Mon Dec 28 2009 - 10:45:01 CST)
[ MDVSA-2009:344 ] perl-DBD-Pg securitymandriva.com (Mon Dec 28 2009 - 11:53:00 CST)
Code to mitigate IIS semicolon zero-day ds.adv.pubgmail.com (Mon Dec 28 2009 - 12:29:19 CST)
[ MDVSA-2009:189-1 ] apache-mod_auth_mysql securitymandriva.com (Mon Dec 28 2009 - 14:38:01 CST)
MITKRB5-SA-2009-003 [CVE-2009-3295] KDC denial of service in cross-realm referral processing Tom Yu (Mon Dec 28 2009 - 13:05:25 CST)
[ MDVSA-2009:146-1 ] imap securitymandriva.com (Mon Dec 28 2009 - 15:04:01 CST)
Tests about semicolon zero-day (BID 37460) Crash - DcLabs (Mon Dec 28 2009 - 16:27:51 CST)
[ MDVSA-2009:345 ] acl securitymandriva.com (Mon Dec 28 2009 - 18:33:01 CST)
FreeWebshop.org: multiple vulnerabilities Akita Software Security (Tue Dec 29 2009 - 04:34:07 CST)
Secunia Research: AproxEngine Multiple Vulnerabilities Secunia Research (Tue Dec 29 2009 - 07:58:17 CST)
RE: Tests about semicolon zero-day (BID 37460) Nelson Brito (Tue Dec 29 2009 - 11:14:46 CST)
[SECURITY] [DSA 1958-1] New libtool packages fix privilege escalation Raphael Geissert (Tue Dec 29 2009 - 11:27:07 CST)
RE: Tests about semicolon zero-day (BID 37460) Nelson Brito (Tue Dec 29 2009 - 15:03:59 CST)
Re: RE: Tests about semicolon zero-day (BID 37460) crashbrzgmail.com (Wed Dec 30 2009 - 06:59:55 CST)
[ MDVSA-2009:346 ] kde securitymandriva.com (Tue Dec 29 2009 - 15:11:00 CST)
[SECURITY] [DSA-1953-2] New expat packages fix regression Stefan Fritsch (Thu Dec 31 2009 - 08:15:48 CST)
[SECURITY] [DSA-1964-1] New PostgreSQL packages fix several vulnerabilities Florian Weimer (Thu Dec 31 2009 - 10:38:37 CST)

Last message date: Thu Dec 31 2009 - 11:19:45 CST
Archived on: Thu Dec 31 2009 - 11:19:46 CST

318 messages sorted by: [ author ] [ thread ] [ subject ]