NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2010-05

296 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Mon May 03 2010 - 10:09:18 CDT
Ending: Mon May 31 2010 - 13:54:21 CDT

29o3 CMS (LibDir) Multiple Remote File Inclusion Vulnerability
- eidelweisscyberservices.com (Mon May 10 2010 - 23:47:36 CDT)
[ MDVSA-2010:082-1 ] clamav
- securitymandriva.com (Thu May 20 2010 - 09:05:01 CDT)
[ MDVSA-2010:089 ] gnutls
- securitymandriva.com (Mon May 03 2010 - 13:48:01 CDT)
[ MDVSA-2010:090 ] samba
- securitymandriva.com (Tue May 04 2010 - 06:35:00 CDT)
[ MDVSA-2010:090-1 ] samba
- securitymandriva.com (Mon May 10 2010 - 18:08:00 CDT)
[ MDVSA-2010:091 ] openoffice.org
- securitymandriva.com (Tue May 04 2010 - 16:54:01 CDT)
[ MDVSA-2010:092 ] cacti
- securitymandriva.com (Thu May 06 2010 - 16:09:01 CDT)
[ MDVSA-2010:093 ] mysql
- securitymandriva.com (Fri May 07 2010 - 13:06:00 CDT)
[ MDVSA-2010:094 ] tetex
- securitymandriva.com (Wed May 12 2010 - 12:49:01 CDT)
[ MDVSA-2010:095 ] libxext
- securitymandriva.com (Wed May 12 2010 - 19:13:01 CDT)
[ MDVSA-2010:096 ] tetex
- securitymandriva.com (Mon May 17 2010 - 11:21:01 CDT)
[ MDVSA-2010:097 ] pidgin
- securitymandriva.com (Tue May 18 2010 - 09:07:01 CDT)
[ MDVSA-2010:098 ] kdenetwork4
- securitymandriva.com (Tue May 18 2010 - 11:29:00 CDT)
[ MDVSA-2010:099 ] wireshark
- securitymandriva.com (Tue May 18 2010 - 14:04:00 CDT)
[ MDVSA-2010:100 ] krb5
- securitymandriva.com (Wed May 19 2010 - 10:28:01 CDT)
[ MDVSA-2010:101 ] mysql
- securitymandriva.com (Wed May 19 2010 - 11:24:00 CDT)
[ MDVSA-2010:102 ] ghostscript
- securitymandriva.com (Wed May 19 2010 - 15:34:00 CDT)
[ MDVSA-2010:103 ] postgresql
- securitymandriva.com (Thu May 20 2010 - 16:39:00 CDT)
[ MDVSA-2010:104 ] dovecot
- securitymandriva.com (Fri May 21 2010 - 08:39:00 CDT)
[ MDVSA-2010:105 ] openoffice.org
- securitymandriva.com (Fri May 21 2010 - 16:27:01 CDT)
[ MDVSA-2010:106 ] aria2
- securitymandriva.com (Mon May 24 2010 - 12:12:01 CDT)
[ MDVSA-2010:107 ] mysql
- securitymandriva.com (Tue May 25 2010 - 16:28:01 CDT)
[ MDVSA-2010:108 ] kolab-horde-framework
- securitymandriva.com (Wed May 26 2010 - 09:53:01 CDT)
- securitymandriva.com (Wed May 26 2010 - 10:22:00 CDT)
- securitymandriva.com (Wed May 26 2010 - 10:03:00 CDT)
[ MDVSA-2010:109 ] gtk+2.0
- securitymandriva.com (Thu May 27 2010 - 10:28:00 CDT)
[ MDVSA-2010:110 ] clamav
- securitymandriva.com (Thu May 27 2010 - 11:44:00 CDT)
[Bkis-01-2010] Multiple Vulnerabilities in BigAce - Bkis
- Bkis (Sun May 23 2010 - 01:10:08 CDT)
- Bkis (Sat May 22 2010 - 05:27:02 CDT)
[CAL-20100204-1]Adobe Shockwave Player Director File Parsing ATOM size infinite loop vulnerability
- Code Audit Labs (Tue May 11 2010 - 20:37:49 CDT)
[CAL-20100204-2]Adobe Shockwave Player Director File Parsing integer overflow vulnerability
- Code Audit Labs (Tue May 11 2010 - 20:39:33 CDT)
[CAL-20100204-3]Adobe Shockwave Player Director File Parsing RCSL Pointer Overwrite
- Code Audit Labs (Tue May 11 2010 - 20:40:38 CDT)
[CORE-2010-0405] Adobe Director Invalid Read
- Core Security Technologies Advisories (Thu May 13 2010 - 15:49:32 CDT)
- Core Security Technologies Advisories Team (Tue May 11 2010 - 14:57:23 CDT)
[CORE-2010-0427] Windows SMTP Service DNS query Id vulnerabilities
- Core Security Technologies Advisories (Tue May 04 2010 - 17:11:04 CDT)
[CORE-2010-0428] Microsoft Office Visio DXF File Insertion Buffer Overflow
- Core Security Technologies Advisories Team (Tue May 04 2010 - 13:54:05 CDT)
[Full-disclosure] Month of PHP Security - Summary - 1st May - 10th May
- Eren Türkay (Tue May 11 2010 - 03:55:24 CDT)
[HITB-Announce] HITBSecConf2010 - Malaysia Call for Papers
- Hafez Kamal (Wed May 19 2010 - 21:40:16 CDT)
[Kil13r-SA-20100513] Adobe Flash Player 10.0 Denial Of Service Vulnerability
- unknown user (Wed May 19 2010 - 10:05:51 CDT)
[oCERT-2010-001] multiple http client unexpected download filename vulnerability
- Daniele Bianco (Mon May 17 2010 - 07:03:22 CDT)
[security bulletin] HPSBGN02315 SSRT071487 rev.1 - HP TestDirector for Quality Center running on AIX, Linux and Solaris, Remote Unauthorized Access
- security-alerthp.com (Wed May 26 2010 - 08:25:09 CDT)
[security bulletin] HPSBGN02511 SSRT100022 rev.3 - Certain HP Small Form Factor, Microtower and Workstations PC's with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code
- security-alerthp.com (Tue May 18 2010 - 08:15:18 CDT)
[security bulletin] HPSBMA02201 SSRT071328 rev.1 - HP LoadRunner Agent on Windows, Remote Unauthenticated Arbitrary Code Execution
- security-alerthp.com (Thu May 06 2010 - 09:22:11 CDT)
[security bulletin] HPSBMA02400 SSRT080144 rev.4 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
- security-alerthp.com (Wed May 05 2010 - 08:28:34 CDT)
[security bulletin] HPSBMA02416 SSRT090008 rev.5 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
- security-alerthp.com (Wed May 05 2010 - 08:28:18 CDT)
[security bulletin] HPSBMA02442 SSRT090108 rev.1 - HP Business Availability Center Running Apache, Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), Denial of Service (DoS)
- security-alerthp.com (Wed May 26 2010 - 08:25:50 CDT)
[security bulletin] HPSBMA02483 SSRT090257 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
- security-alerthp.com (Wed May 05 2010 - 08:27:46 CDT)
[security bulletin] HPSBMA02520 SSRT100071 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Unauthorized Access to Data
- security-alerthp.com (Wed May 12 2010 - 09:18:16 CDT)
[security bulletin] HPSBMA02522 SSRT100086 rev.1 - HP Insight Control Server Migration for Windows, Remote Cross Site Scripting (XSS)
- security-alerthp.com (Wed May 12 2010 - 09:18:38 CDT)
[security bulletin] HPSBMA02527 SSRT010098 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
- security-alerthp.com (Tue May 11 2010 - 13:13:09 CDT)
[security bulletin] HPSBMA02528 SSRT100106 rev.1 - HP Performance Center Agent on Windows, Remote Unauthenticated Arbitrary Code Execution
- security-alerthp.com (Mon May 10 2010 - 16:28:41 CDT)
[security bulletin] HPSBMA02534 SSRT090180 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Unauthorized Information Disclosure, Unauthorized Data Modification, Denial of Service (DoS)
- security-alerthp.com (Tue May 18 2010 - 06:33:48 CDT)
[security bulletin] HPSBMA02535 SSRT100029 rev.1 - HP Performance Manager, Remote Unauthorized Access, Cross Site Scripting (XSS), Denial of Service (DoS)
- security-alerthp.com (Tue May 18 2010 - 11:19:48 CDT)
[security bulletin] HPSBOV02497 SSRT090245 rev.3 - HP TCP/IP Services for OpenVMS Running NTP, Remote Execution of Arbitrary Code, Denial of Service (DoS)
- security-alerthp.com (Mon May 17 2010 - 16:08:33 CDT)
[security bulletin] HPSBPI02532 SSRT100111 rev.1 - HP MFP Digital Sending Software Running on Windows, Local Unauthorized Access
- security-alerthp.com (Thu May 13 2010 - 09:04:18 CDT)
[security bulletin] HPSBUX02523 SSRT100036 rev.1 - HP-UX Running ONCPlus, Remote Denial of Service (DoS), Increase in Privilege
- security-alerthp.com (Tue May 18 2010 - 16:54:30 CDT)
[security bulletin] HPSBUX02523 SSRT100036 rev.2 - HP-UX Running ONCplus rpc.pcnfsd, Remote Denial of Service (DoS), Increase in Privilege
- security-alerthp.com (Fri May 28 2010 - 15:58:45 CDT)
[SECURITY] [DSA 2038-2] New pidgin packages fix regression
- Thijs Kinkhorst (Mon May 17 2010 - 15:37:56 CDT)
[SECURITY] [DSA 2040-1] New squidguard packages fix several vulnerabilities
- Sebastien Delafond (Sun May 02 2010 - 07:56:52 CDT)
[SECURITY] [DSA 2042-1] New iscsitarget packages fix arbitrary code execution
- Luciano Bello (Wed May 05 2010 - 16:16:13 CDT)
[SECURITY] [DSA 2043-1] New vlc packages fix arbitrary code execution
- Devin Carraway (Tue May 11 2010 - 02:55:34 CDT)
[SECURITY] [DSA 2044-1] New mplayer packages fix arbitrary code execution
- Devin Carraway (Tue May 11 2010 - 03:10:06 CDT)
[SECURITY] [DSA 2045-1] New libtheora packages fix arbitrary code execution
- Sebastien Delafond (Tue May 11 2010 - 14:33:02 CDT)
[SECURITY] [DSA 2047-1] New aria2 packages fix directory traversal
- Thijs Kinkhorst (Mon May 17 2010 - 13:28:36 CDT)
[SECURITY] [DSA 2048-1] New dvipng packages fix arbitrary code execution
- Sebastien Delafond (Sun May 23 2010 - 12:46:17 CDT)
[SECURITY] [DSA 2049-1] New barnowl packages fix arbitrary code execution
- Steffen Joeris (Sat May 22 2010 - 21:58:12 CDT)
[SECURITY] [DSA 2050-1] New kdegraphics packages fix several vulnerabilities
- Moritz Muehlenhoff (Mon May 24 2010 - 10:38:34 CDT)
[SECURITY] [DSA 2051-1] New postgresql-8.3 packages fix several vulnerabilities
- Moritz Muehlenhoff (Mon May 24 2010 - 11:00:11 CDT)
[SECURITY] [DSA 2052-1] New krb5 packages fix denial of service
- Thijs Kinkhorst (Mon May 24 2010 - 14:49:50 CDT)
- Sebastien Delafond (Mon May 24 2010 - 14:48:30 CDT)
[SECURITY] [DSA 2053-1] New Linux 2.6.26 packages fix several issues
- dann frazier (Tue May 25 2010 - 01:51:38 CDT)
[SECURITY] [DSA-2041-1] New mediawiki packages fix cross-site request forgery
- Raphael Geissert (Mon May 03 2010 - 19:25:46 CDT)
[SECURITY] [DSA-2046-1] New phpgroupware packages fix several vulnerabilities
- Giuseppe Iuculano (Thu May 13 2010 - 15:14:54 CDT)
[Suspected Spam][USN-939-1] X.org vulnerabilities
- Kees Cook (Tue May 18 2010 - 16:35:48 CDT)
[Suspected Spam][USN-940-1] Kerberos vulnerabilities
- Kees Cook (Wed May 19 2010 - 14:45:28 CDT)
[Suspected Spam][USN-944-1] GNU C Library vulnerabilities
- Kees Cook (Tue May 25 2010 - 16:38:33 CDT)
[Suspected Spam]DoS vulnerabilities in Firefox, Internet Explorer, Chrome and Opera
- Susan Bradley (Fri May 28 2010 - 11:06:23 CDT)
- MustLive (Fri May 28 2010 - 07:57:48 CDT)
[Suspected Spam]Vulnerability in ArtDesign CMS
- MustLive (Sat May 29 2010 - 06:12:05 CDT)
[USN-919-1] Emacs vulnerability
- Kees Cook (Mon Mar 29 2010 - 16:58:46 CDT)
[USN-936-1] dvipng vulnerability
- Marc Deslauriers (Thu May 06 2010 - 08:34:35 CDT)
[USN-937-1] TeX Live vulnerabilities
- Marc Deslauriers (Thu May 06 2010 - 08:35:17 CDT)
[USN-938-1] KDENetwork vulnerability
- Jamie Strandboge (Thu May 13 2010 - 08:15:24 CDT)
[USN-941-1] MoinMoin vulnerability
- Marc Deslauriers (Thu May 20 2010 - 08:30:00 CDT)
[USN-942-1] PostgreSQL vulnerabilities
- Jamie Strandboge (Fri May 21 2010 - 12:15:46 CDT)
[USN-945-1] ClamAV vulnerabilities
- Jamie Strandboge (Thu May 27 2010 - 16:32:55 CDT)
[Wintercore Research] Consona Products - Multiple vulnerabilities
- vulnswintercore.com (Fri May 07 2010 - 06:02:50 CDT)
A vulnerability in Kaspersky Antivirus
- daniel lopez (Sat May 01 2010 - 10:47:48 CDT)
Administrivia: Real domain names in PoC/exploit examples
- dmsecurityfocus.com (Fri May 28 2010 - 11:10:55 CDT)
- Nate Eldredge (Fri May 28 2010 - 10:38:57 CDT)
- dmsecurityfocus.com (Fri May 28 2010 - 09:29:56 CDT)
Arbitrary UNC file read in IE 8
- Tim Starling (Sun May 23 2010 - 19:52:18 CDT)
BaoFeng Storm M3U File Processing Buffer Overflow Vulnerability
- lilf (Wed May 05 2010 - 22:27:50 CDT)
Blind SQL injection vulnerability in NPDS REvolution
- advisoryhtbridge.ch (Thu May 13 2010 - 11:40:33 CDT)
Cacti Multiple Parameter Cross Site Scripting Vulnerabilities
- VUPEN Web Security (Fri May 21 2010 - 03:27:04 CDT)
Call for Papers: EC2ND 2010
- Konrad Rieck (Sat May 15 2010 - 06:33:56 CDT)
Caucho Technology Resin digest.php Cross Site Scripting Vulnerability
- xuanmumugmail.com (Tue May 18 2010 - 18:18:12 CDT)
CFP for ekoparty 0x10 is now open! [ Buenos Aires, Argentina ]
- ekoparty Security Conference (Tue May 11 2010 - 16:06:33 CDT)
CfP: GameSec 2010 - 5 days left to the deadline
- Albert Levi (Wed May 26 2010 - 03:35:28 CDT)
CfP: GameSec 2010 - Deadline extended to 31 May 2010
- Albert Levi (Fri May 14 2010 - 06:31:16 CDT)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Network Building Mediator
- Cisco Systems Product Security Incident Response Team (Wed May 26 2010 - 11:30:00 CDT)
Cisco Security Advisory: Multiple vulnerabilities in Cisco PGW Softswitch
- Cisco Systems Product Security Incident Response Team (Wed May 12 2010 - 10:35:00 CDT)
clearsite Remote File Include Vulnerability
- admin7b-ly.com (Thu May 27 2010 - 10:59:41 CDT)
CMS Made Simple: backend cross site scripting (XSS), CVE-2010-1482
- Hanno BÃ¶ck (Fri May 07 2010 - 07:42:16 CDT)
CompleteFTP Server v 4.x "PORT" command Remote DOS exploit
- eidelweisscyberservices.com (Sun May 23 2010 - 22:40:58 CDT)
Cross Site URL Hijacking by using Error Object in Mozilla Firefox
- subsitguard.info (Thu May 27 2010 - 05:22:23 CDT)
Cross-Site Scripting vulnerability in Mango
- MustLive (Sat May 01 2010 - 19:04:59 CDT)
CVE-2010-1454: SpringSource tc Server unauthenticated remote access to JMX interface
- s2-security (Mon May 17 2010 - 11:14:15 CDT)
CVE-2010-2020: FreeBSD kernel NFS client local vulnerabilities
- Patroklos Argyroudis (Fri May 28 2010 - 09:43:20 CDT)
Cyberoam SSL VPN Client - Plain-text Storage of Username and Password
- Wasim Halani (Wed May 26 2010 - 05:42:34 CDT)
DEF CON 18 CFP closing in two weeks
- The Dark Tangent (Fri May 14 2010 - 17:37:03 CDT)
Denial of Dervice vulnerability in Helix Mobile Server (RealNetworks) (14.0.0.348) with long string to PluginDirectory in rmserver.cfg file
- praveen_reckersify.com (Mon May 24 2010 - 07:00:50 CDT)
DM Database Server Memory Corruption Vulnerability
- wsn1983gmail.com (Sun May 30 2010 - 20:30:42 CDT)
DoS vulnerabilities in Firefox, Internet Explorer, Chrome and Opera
- MustLive (Mon May 31 2010 - 11:03:37 CDT)
DoS vulnerabilities in Firefox, Internet Explorer, Chrome, Opera and other browsers
- John Smith (Fri May 28 2010 - 16:27:35 CDT)
- Vladimir '3APA3A' Dubrovin (Fri May 28 2010 - 15:35:05 CDT)
- John Smith (Fri May 28 2010 - 14:55:28 CDT)
- Vladimir '3APA3A' Dubrovin (Fri May 28 2010 - 13:17:56 CDT)
- John Smith (Fri May 28 2010 - 10:07:50 CDT)
- MustLive (Thu May 27 2010 - 15:53:37 CDT)
- Susan Bradley (Wed May 19 2010 - 18:58:43 CDT)
- MustLive (Wed May 19 2010 - 17:53:05 CDT)
- Susan Bradley (Tue May 18 2010 - 12:38:47 CDT)
- MustLive (Tue May 18 2010 - 08:17:50 CDT)
ESA-2010-007: EMC Avamar Denial Of Service Vulnerability
- Security_Alertemc.com (Wed May 26 2010 - 09:18:49 CDT)
EUSecWest 2010 MiniCFP (conf Jun 16/17) and PacSec 2010 CFP (conf Nov 10/11, deadline July 30)
- Dragos Ruiu (Thu May 27 2010 - 08:29:54 CDT)
Family Connections 2.2.3 Multiple Remote Vulnerabilities
- Salvatore Fresta aka Drosophila (Mon May 10 2010 - 07:37:27 CDT)
fetchmail security announcement fetchmail-SA-2010-02 (CVE-2010-1167)
- ma+btdt.e-technik.uni-dortmund.de (Thu May 06 2010 - 03:36:48 CDT)
Firefox 3.6.3 (latest) <= memory exhaustion crash vulnerabilities
- geinbluesgmail.com (Tue May 18 2010 - 10:26:05 CDT)
Flock web browser v2.5.6 (Remote Memory Corrupt) Crash Exploit
- g1xsystemwindowslive.com (Tue May 25 2010 - 16:20:27 CDT)
FreeBSD Security Advisory FreeBSD-SA-10:04.jail
- FreeBSD Security Advisories (Wed May 26 2010 - 22:25:04 CDT)
FreeBSD Security Advisory FreeBSD-SA-10:05.opie
- FreeBSD Security Advisories (Wed May 26 2010 - 22:25:07 CDT)
FreeBSD Security Advisory FreeBSD-SA-10:06.nfsclient
- FreeBSD Security Advisories (Wed May 26 2010 - 22:25:11 CDT)
Ghostscript 8.64 executes random code at startup
- paul.szabosydney.edu.au (Sun May 30 2010 - 05:49:41 CDT)
- paul.szabosydney.edu.au (Fri May 28 2010 - 08:42:34 CDT)
- paul.szabosydney.edu.au (Wed May 26 2010 - 19:51:30 CDT)
- paul.szabosydney.edu.au (Wed May 26 2010 - 06:15:15 CDT)
- Krzysztof Å»elechowski (Wed May 26 2010 - 04:12:22 CDT)
- paul.szabosydney.edu.au (Tue May 25 2010 - 21:32:51 CDT)
- ne01026stegny.2a.pl (Sat May 22 2010 - 04:38:56 CDT)
GR Board v1.8.6. (theme) Local File Inclusion Vulnerability
- g1xsystemwindowslive.com (Mon May 31 2010 - 12:12:38 CDT)
GR Board v1.8.6.1 stab (page.php?theme) Remote File Inclusion Vulnerability
- g1xsystemwindowslive.com (Sun May 30 2010 - 00:34:58 CDT)
Groone's Simple Contact Form (abspath) Remote File Inclusion Vulnerability
- g1xsystemwindowslive.com (Fri May 28 2010 - 14:31:09 CDT)
HP-UX, IBM AIX, SGI IRIX Remote Vulnerability - CVE-2010-1039
- Rodrigo Branco (Thu May 20 2010 - 17:55:03 CDT)
Hustoj is HUST ACM OnlineJudge "fckeditor" file upload security issue
- eidelweisscyberservices.com (Sat May 22 2010 - 08:15:52 CDT)
IBM Lotus 6.x names.nsf Cross Site Scripting Vulnerability
- security curmudgeon (Mon May 24 2010 - 13:44:45 CDT)
iDefense Security Advisory 05.11.10: Abobe Shockwave Player Heap Memory Indexing Vulnerability
- iDefense Labs (Tue May 11 2010 - 22:47:35 CDT)
Injection of ECShop apps.
- lis cker (Fri May 07 2010 - 01:35:40 CDT)
IS-2010-001 - Netgear WG602v4 Saved Pass Stack Overflow
- Cristofaro Mune (Sun May 30 2010 - 14:27:42 CDT)
Joomla Component advertising (com_aardvertiser) File Inclusion Vulnerability
- eidelweisscyberservices.com (Thu May 13 2010 - 10:59:28 CDT)
Joomla component SimpleDownload Local File Inclusion
- jerzy.patraszewskigmail.com (Mon May 17 2010 - 02:54:05 CDT)
JV2 Folder Gallery 3.1.1 (popup_slideshow.php) Multiple Vulnerability
- eidelweisscyberservices.com (Sun May 23 2010 - 04:45:45 CDT)
KHOBE - 8.0 earthquake for Windows desktop security software
- noloadergmail.com (Thu May 06 2010 - 19:52:01 CDT)
- www.matousec.com - Research (Wed May 05 2010 - 13:36:38 CDT)
Kingsoft WebShield KAVSafe.sys <= 2010.4.14.609(2010.5.23) Kernel Mode Local Privilege Escalation Vulnerability
- yicong2010yahoo.com (Mon May 24 2010 - 09:26:17 CDT)
- yicong2010yahoo.com (Sat May 22 2010 - 22:37:00 CDT)
Knowledgeroot (fckeditor) Remote Arbitrary File Upload Exploit
- Frank Habermann (Wed May 05 2010 - 14:28:01 CDT)
- eidelweisscyberservices.com (Tue May 04 2010 - 18:59:33 CDT)
LinksAutomation Multiple Remote Vulnerabilities
- md.r00t.defacergmail.com (Thu May 13 2010 - 14:18:29 CDT)
Linux Mint 8 mintUpdate Insecure Temporary File Creation
- L4teral (Wed May 19 2010 - 15:07:25 CDT)
London DEFCON May meet - DC4420 - Wed 26th May 2010
- Major Malfunction (Tue May 25 2010 - 04:13:03 CDT)
Mastering Trust in Security Assessments
- Pete Herzog (Thu May 20 2010 - 13:17:40 CDT)
Mathematica on Linux /tmp/MathLink vulnerability
- paul.szabosydney.edu.au (Thu May 13 2010 - 20:56:10 CDT)
Metasploit Framework 3.4.0 Released
- HD Moore (Tue May 18 2010 - 17:03:28 CDT)
Microsoft Outlook Web Access (OWA) v8.2.254.0 "id" parameter Information Disclosure Vulnerability
- infosecuritylab.ir (Tue May 25 2010 - 06:35:02 CDT)
- Jab³oñski, Pawe³ (Fri May 21 2010 - 16:56:53 CDT)
- praveen_reckersify.com (Thu May 20 2010 - 16:34:14 CDT)
MITKRB5-SA-2010-005 [CVE-2010-1321] GSS-API lib null pointer deref
- Tom Yu (Tue May 18 2010 - 13:09:14 CDT)
Month of PHP Security - Summary - 11st May - 21th
- Stefan Esser (Fri May 21 2010 - 04:30:28 CDT)
Month of PHP Security - Summary - 1st May - 10th May
- Stefan Esser (Mon May 10 2010 - 14:05:16 CDT)
Multiple memory corruption vulnerabilities in Ghostscript
- Dan Rosenberg (Tue May 11 2010 - 19:27:35 CDT)
Multiple vulnerabilities within 3Com* iMC (Intelligent Management Center)
- research (Thu May 20 2010 - 12:11:37 CDT)
New vulnerabilities in plugin DS-Syndicate for Joomla
- MustLive (Sun May 23 2010 - 17:17:17 CDT)
New web malwares attacking big hosting providers
- Davide Canali (Fri May 07 2010 - 01:00:19 CDT)
- angelorosiello.org (Thu May 06 2010 - 13:49:19 CDT)
Nginx 0.8.35 Space Character Remote Source Disclosure
- abc12345hushmail.com (Mon May 31 2010 - 10:00:22 CDT)
- infosecuritylab.ir (Sun May 30 2010 - 16:44:17 CDT)
OSSTMM 3 based Home Security Vacation Guide v.2!
- Pete Herzog (Thu May 20 2010 - 13:35:37 CDT)
OSSTMM 3 STAR Released!
- Pete Herzog (Mon May 24 2010 - 13:47:02 CDT)
Palo Alto Network Vulnerability - Cross-Site Scripting (XSS)
- jeromiecomsecinc.com (Wed May 12 2010 - 11:34:26 CDT)
PCRE compile workspace overflow
- Michael Santos (Wed May 05 2010 - 14:12:26 CDT)
PHP-Calendar "description" and "lastaction" Cross Site Scripting Vulnerabilities
- VUPEN Web Security (Fri May 21 2010 - 03:20:35 CDT)
phpGroupWare SQL Injections and Local File Inclusion Vulnerabilities (CVE-2010-0403 and CVE-2010-0404)
- VUPEN Web Security (Fri May 14 2010 - 03:35:40 CDT)
phpvidz Administrative Password Disclosure
- mikesitewat.ch (Sun May 16 2010 - 02:28:49 CDT)
pmwiki: persistent cross site scripting (XSS), CVE-2010-1481
- Hanno BÃ¶ck (Fri May 07 2010 - 07:30:09 CDT)
PolyPager 1.0rc10 (fckeditor) File Upload Security Issue
- eidelweisscyberservices.com (Wed May 12 2010 - 14:02:33 CDT)
PR10-03: Authenticated Cross-Site Scripting (XSS) within the Apache Axis2 administration console
- research (Fri May 21 2010 - 11:08:49 CDT)
Puntal (index.php) Remote File Inclusion Vulnerabilities
- Justin C. Klein Keane (Tue May 04 2010 - 12:15:59 CDT)
- donald00live.com (Mon May 03 2010 - 19:09:44 CDT)
- Tom Walsh - lists (Mon May 03 2010 - 15:39:23 CDT)
- eidelweisscyberservices.com (Mon May 03 2010 - 13:10:25 CDT)
REC0N 2010 (MONTREAL) CFP Reminder & Preview
- David Mirza Ahmad (Tue May 04 2010 - 16:16:04 CDT)
REZERVI (root) Remote Command Execution Vulnerability
- eidelweisscyberservices.com (Thu May 06 2010 - 19:10:44 CDT)
rPSA-2010-0034-1 ntp ntp-utils
- rPath Update Announcements (Fri May 07 2010 - 12:54:32 CDT)
rPSA-2010-0036-1 openssl openssl-scripts
- rPath Update Announcements (Fri May 07 2010 - 12:58:58 CDT)
rPSA-2010-0037-1 kernel
- rPath Update Announcements (Fri May 07 2010 - 12:59:41 CDT)
rPSA-2010-0039-1 openssl openssl-scripts
- rPath Update Announcements (Sun May 23 2010 - 17:50:27 CDT)
SA00001-2010
- Zakar Miklós (Mon May 10 2010 - 07:37:26 CDT)
Scientific Atlanta DPC2100 WebSTAR Cable Modem vulnerabilities
- Dan Rosenberg (Mon May 24 2010 - 12:31:24 CDT)
Secunia Research: Adobe Shockwave Player 3D Parsing Memory Corruption
- Secunia Research (Wed May 12 2010 - 03:28:38 CDT)
Secunia Research: Adobe Shockwave Player Array Indexing Vulnerability
- Secunia Research (Wed May 12 2010 - 03:29:12 CDT)
Secunia Research: Adobe Shockwave Player Asset Entry Parsing Vulnerability
- Secunia Research (Wed May 12 2010 - 06:55:21 CDT)
Secunia Research: Adobe Shockwave Player Font Processing Buffer Overflow
- Secunia Research (Wed May 12 2010 - 06:55:27 CDT)
Secunia Research: Adobe Shockwave Player Integer Overflow Vulnerability
- Secunia Research (Wed May 12 2010 - 06:55:13 CDT)
Secunia Research: Adobe Shockwave Player Signedness Error Vulnerability
- Secunia Research (Wed May 12 2010 - 03:28:54 CDT)
Secunia Research: aria2 metalink "name" Directory Traversal Vulnerability
- Secunia Research (Thu May 13 2010 - 08:25:32 CDT)
Secunia Research: Free Download Manager Four Buffer Overflow Vulnerabilities
- Secunia Research (Thu May 13 2010 - 08:19:12 CDT)
Secunia Research: Free Download Manager metalink "name" Directory Traversal
- Secunia Research (Thu May 13 2010 - 08:19:19 CDT)
Secunia Research: IrfanView PSD Image Parsing Sign-Extension Vulnerability
- Secunia Research (Wed May 12 2010 - 09:27:50 CDT)
Secunia Research: IrfanView PSD RLE Decompression Buffer Overflow
- Secunia Research (Wed May 12 2010 - 09:28:21 CDT)
Secunia Research: KDE KGet Insecure File Operation Vulnerability
- Vladimir '3APA3A' Dubrovin (Fri May 14 2010 - 14:43:11 CDT)
- Secunia Research (Thu May 13 2010 - 08:18:55 CDT)
Secunia Research: KDE KGet metalink "name" Directory Traversal Vulnerability
- Secunia Research (Thu May 13 2010 - 08:19:03 CDT)
Secunia Research: Orbit Downloader metalink "name" Directory Traversal
- Secunia Research (Wed May 19 2010 - 10:33:33 CDT)
Secunia Research: TomatoCMS "q" SQL Injection Vulnerability
- Secunia Research (Wed May 12 2010 - 09:23:17 CDT)
Secunia Research: TomatoCMS Script Insertion Vulnerabilities
- Secunia Research (Wed May 12 2010 - 09:23:10 CDT)
Secunia Research: Ziproxy Two Integer Overflow Vulnerabilities
- Secunia Research (Mon May 24 2010 - 05:44:34 CDT)
Security Awareness for kids
- Pete Herzog (Tue May 18 2010 - 07:41:43 CDT)
Smart Douran CMS Remote File Download
- infosecuritylab.ir (Wed May 19 2010 - 02:23:42 CDT)
SmartCMS v.2 SQL injection vulnerability
- Maciej Gojny (Tue May 04 2010 - 16:59:41 CDT)
SQL injection in OSCommerce Add-On Visitor Web Stats
- Christopher Schramm (Fri May 28 2010 - 02:12:10 CDT)
SQL injection vulnerability in 360 Web Manager
- Packet Storm (Wed May 26 2010 - 18:32:43 CDT)
- advisoryhtbridge.ch (Tue May 25 2010 - 12:48:12 CDT)
- advisoryhtbridge.ch (Tue May 25 2010 - 12:47:45 CDT)
SQL injection vulnerability in ImpressPages CMS
- advisoryhtbridge.ch (Fri May 28 2010 - 14:01:24 CDT)
- advisoryhtbridge.ch (Fri May 28 2010 - 14:02:09 CDT)
- advisoryhtbridge.ch (Fri May 28 2010 - 14:01:37 CDT)
SQL injection vulnerability in LiSK CMS
- advisoryhtbridge.ch (Thu May 20 2010 - 13:17:23 CDT)
- advisoryhtbridge.ch (Thu May 20 2010 - 13:17:17 CDT)
SQL injection vulnerability in Zabbix <= 1.8.1
- David Guimaraes (Mon May 24 2010 - 12:48:07 CDT)
Static analysis tool exposition (SATE) 2010 Call for participation
- Vadim Okun (Wed May 26 2010 - 16:45:54 CDT)
Stored XSS vulnerability in NPDS REvolution
- advisoryhtbridge.ch (Tue May 18 2010 - 07:27:28 CDT)
STP mitm attack idea
- Guillermo Marro Bruno (Thu May 20 2010 - 08:50:01 CDT)
Sun Solaris 10 filesystem rm(1),find(1),etc, Denial-of-service
- Casper.DikSun.COM (Wed May 26 2010 - 01:03:41 CDT)
- cxibsecurityreason.com (Fri May 21 2010 - 02:59:36 CDT)
Sun Solaris 10 ftpd Cross-site request forgery
- cxibsecurityreason.com (Fri May 21 2010 - 02:59:29 CDT)
Sun Solaris 10 libc/*convert (*cvt) buffer overflow
- cxibsecurityreason.com (Fri May 21 2010 - 02:59:54 CDT)
The New ISO Hacking Standard
- Pete Herzog (Thu May 20 2010 - 15:59:49 CDT)
- Simon Kilvington (Thu May 20 2010 - 04:34:13 CDT)
- Pete Herzog (Wed May 19 2010 - 08:14:13 CDT)
Turnkey Innovations SQL Injection Vulnerability
- md.r00t.defacergmail.com (Mon May 10 2010 - 09:04:04 CDT)
VMSA-2010-0008 VMware View 3.1.3 addresses an important cross-site scripting vulnerability
- VMware Security team (Thu May 06 2010 - 01:44:44 CDT)
VMSA-2010-0009 ESXi ntp and ESX Service Console third party updates
- VMware Security team (Fri May 28 2010 - 00:42:31 CDT)
Vulnerabilities in DS-Syndicate for Joomla
- MustLive (Sat May 22 2010 - 10:07:17 CDT)
Vulnerabilities in Sebo - webstore
- Salvatore Fresta aka Drosophila (Mon May 10 2010 - 14:13:34 CDT)
- Salvatore Fresta aka Drosophila (Tue May 11 2010 - 03:17:55 CDT)
- MustLive (Mon May 10 2010 - 18:47:21 CDT)
- MustLive (Sat May 08 2010 - 12:21:09 CDT)
Vulnerabilities in t3m_cumulus_tagcloud for TYPO3
- MustLive (Tue May 04 2010 - 18:28:07 CDT)
Vulnerability in 3D user cloud for Joomla
- MustLive (Mon May 17 2010 - 15:48:35 CDT)
- MustLive (Sat May 15 2010 - 15:58:59 CDT)
Vulnerability in tagcloud for Kasseler CMS
- MustLive (Thu May 13 2010 - 15:54:21 CDT)
Vulnerability in widget Cumulus for BlogEngine.NET
- MustLive (Tue May 11 2010 - 15:18:04 CDT)
Vulnerability in widget Flash Tag Cloud for Blogsa and other ASP.NET engines
- MustLive (Thu May 20 2010 - 13:12:02 CDT)
Vulnerability with Cisco ACE. A2 3.0 (probably all version)
- Alexis Tremblay (Thu May 06 2010 - 16:28:43 CDT)
VUPEN Security Research - Adobe Shockwave 3D Blocks Field Code Execution Vulnerability (CVE-2010-1283)
- VUPEN Security Research (Wed May 12 2010 - 07:46:38 CDT)
VUPEN Security Research - Adobe Shockwave 3D Two Remote Code Execution Vulnerabilities (CVE-2010-1284)
- VUPEN Security Research (Wed May 12 2010 - 07:46:33 CDT)
VUPEN Security Research - Adobe Shockwave DIRAPI Multiple Code Execution Vulnerabilities (CVE-2010-1280)
- VUPEN Security Research (Wed May 12 2010 - 07:46:36 CDT)
VUPEN Security Research - Adobe Shockwave IML32 Multiple Code Execution Vulnerabilities (CVE-2010-0129)
- VUPEN Security Research (Wed May 12 2010 - 07:46:28 CDT)
Webby Webserver v1.01 - Buffer overflow vulnerability with overwritten structured exception handler (SEH)
- michael.messnerintegralis.com (Tue May 25 2010 - 02:57:52 CDT)
XSRF (CSRF) in eliteCMS
- advisoryhtbridge.ch (Tue May 04 2010 - 07:41:44 CDT)
XSRF (CSRF) in NPDS REvolution
- advisoryhtbridge.ch (Thu May 20 2010 - 13:17:29 CDT)
XSRF (CSRF) in ocPortal
- advisoryhtbridge.ch (Thu May 20 2010 - 13:16:31 CDT)
XSRF (CSRF) in Zikula Application Framework
- advisoryhtbridge.ch (Tue May 04 2010 - 07:41:18 CDT)
XSS bug in US Robotics firmware USR5463-v0_06.bin
- sh4vn3t-datagrams.net (Thu May 20 2010 - 10:24:07 CDT)
XSS in Acuity CMS
- advisoryhtbridge.ch (Tue May 04 2010 - 07:41:51 CDT)
XSS in DynamiXgate Affiliate Store Builder
- advisoryhtbridge.ch (Tue May 11 2010 - 08:01:28 CDT)
XSS in ecoCMS
- advisoryhtbridge.ch (Tue May 04 2010 - 07:41:30 CDT)
XSS in eliteCMS
- advisoryhtbridge.ch (Tue May 04 2010 - 07:41:37 CDT)
XSS in Saurus CMS
- advisoryhtbridge.ch (Tue May 11 2010 - 08:02:02 CDT)
XSS vulnerability in 360 Web Manager
- advisoryhtbridge.ch (Tue May 25 2010 - 12:47:51 CDT)
XSS vulnerability in Advanced Poll
- advisoryhtbridge.ch (Mon May 10 2010 - 02:55:56 CDT)
XSS vulnerability in EasyPublish CMS
- advisoryhtbridge.ch (Mon May 10 2010 - 02:55:54 CDT)
XSS vulnerability in GetSimple CMS
- advisoryhtbridge.ch (Tue May 25 2010 - 12:48:05 CDT)
XSS vulnerability in gpEasy CMS
- advisoryhtbridge.ch (Thu May 20 2010 - 13:16:40 CDT)
XSS vulnerability in Jaws
- advisoryhtbridge.ch (Fri May 07 2010 - 03:05:53 CDT)
XSS vulnerability in JComments, Joomla
- advisoryhtbridge.ch (Tue May 18 2010 - 07:26:53 CDT)
XSS vulnerability in LiSK CMS
- advisoryhtbridge.ch (Thu May 20 2010 - 13:17:41 CDT)
- advisoryhtbridge.ch (Thu May 20 2010 - 13:03:47 CDT)
XSS vulnerability in NPDS
- developpeurnpds.org (Tue May 18 2010 - 09:15:37 CDT)
- advisoryhtbridge.ch (Thu May 13 2010 - 11:40:44 CDT)
XSS vulnerability in NPDS REvolution
- advisoryhtbridge.ch (Tue May 18 2010 - 07:26:36 CDT)
XSS vulnerability in razorCMS
- advisoryhtbridge.ch (Tue May 25 2010 - 12:47:59 CDT)
XSS vulnerability in RuubikCMS
- advisoryhtbridge.ch (Tue May 25 2010 - 12:48:30 CDT)
XSS, SQL injection vulnerability in I-Vision CMS
- Maciej Gojny (Sun May 16 2010 - 16:46:17 CDT)
ZDI-10-080: HP Mercury LoadRunner Agent Trusted Input Remote Code Execution Vulnerability
- ZDI Disclosures (Thu May 06 2010 - 13:45:06 CDT)
ZDI-10-081: HP OpenView NNM ovet_demandpoll sel CGI Variable Format String Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 15:47:34 CDT)
ZDI-10-082: HP OpenView NNM netmon sel CGI Variable Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:06:41 CDT)
ZDI-10-083: HP OpenView NNM snmpviewer.exe CGI Multiple Variable Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:08:36 CDT)
ZDI-10-084: HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:09:51 CDT)
ZDI-10-085: HP OpenView NNM getnnmdata.exe CGI Invalid ICount Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:11:49 CDT)
ZDI-10-086: HP OpenView NNM getnnmdata.exe CGI Invalid Hostname Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:13:32 CDT)
ZDI-10-087: Adobe Shockwave Invalid Offset Memory Corruption Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:19:55 CDT)
ZDI-10-088: Adobe Shockwave Player 3D Parsing Memory Corruption Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:26:00 CDT)
ZDI-10-089: Adobe Shockwave Director PAMI Chunk Remote Code Execution Vulnerability
- ZDI Disclosures (Tue May 11 2010 - 16:28:41 CDT)
{PRL} Microsoft Windows Outlook Express and Windows Mail Integer Overflow
- Francis Provencher (Tue May 11 2010 - 07:54:56 CDT)

Last message date: Mon May 31 2010 - 13:54:21 CDT
Archived on: Mon May 31 2010 - 13:54:21 CDT

296 messages sorted by: [ author ] [ date ] [ thread ]