NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2012-02

192 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Wed Feb 01 2012 - 11:10:52 CST
Ending: Wed Feb 29 2012 - 15:33:36 CST

abhijeetclubhack.com
- [Announcement] ClubHack Mag - Call for Articles (Sat Feb 11 2012 - 00:30:53 CST)
ACROS Security Lists
- Downloads Folder: A Binary Planting Minefield (Fri Feb 17 2012 - 10:32:47 CST)
adamcomotheory.com
- OWASP AppSec USA 2011 Video & Slides Posted (Sat Feb 11 2012 - 08:58:13 CST)
advisoryhtbridge.ch
- Multiple XSS in Dotclear (Wed Feb 29 2012 - 08:00:10 CST)
- Multiple XSS in Chyrp (Wed Feb 22 2012 - 07:12:25 CST)
- Multiple vulnerabilities in LEPTON (Wed Feb 15 2012 - 08:18:47 CST)
- Multiple vulnerabilities in 11in1 (Wed Feb 15 2012 - 08:18:15 CST)
- Multiple vulnerabilities in ZENphoto (Wed Feb 08 2012 - 05:59:57 CST)
- Multiple vulnerabilities in OpenEMR (Wed Feb 01 2012 - 06:27:53 CST)
Alex Legler
- GLSA (Gentoo Linux Security Advisory) publication changes (Thu Feb 02 2012 - 04:57:53 CST)
andsarmientogmail.com
- XSS phpLDAPadmin: 1.2.0.5 (Debian package) and 1.2.2 (sourceforge) (Tue Jan 31 2012 - 12:54:35 CST)
Apple Product Security
- APPLE-SA-2012-02-01-1 OS X Lion v10.7.3 and Security Update 2012-001 (Wed Feb 01 2012 - 15:17:36 CST)
asemailinggmail.com
- Call For Paper (Wed Feb 01 2012 - 13:55:26 CST)
Bret Jordan
- 802.1X password exploit on many HTC Android devices (Wed Feb 01 2012 - 10:15:32 CST)
cfp2012recon.cx
- Recon 2012 - Call For Papers - June 14-16, 2012 - Montreal, Quebec (Mon Feb 27 2012 - 13:04:45 CST)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco TelePresence Video Communication Server Session Initiation Protocol Denial of Service Vulnerabilities (Wed Feb 29 2012 - 10:00:47 CST)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unity Connection (Wed Feb 29 2012 - 10:00:47 CST)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers (Wed Feb 29 2012 - 10:18:37 CST)
- Cisco Security Advisory: Cisco Unified Communications Manager Skinny Client Control Protocol Vulnerabilities (Wed Feb 29 2012 - 10:18:37 CST)
- Cisco Security Advisory: Cisco Cius Denial of Service Vulnerability (Wed Feb 29 2012 - 09:46:46 CST)
- Cisco Security Advisory: Cisco Small Business SRP 500 Series Multiple Vulnerabilities (Thu Feb 23 2012 - 10:12:27 CST)
- Cisco Security Advisory: Cisco NX-OS Malformed IP Packet Denial of Service Vulnerability (Wed Feb 15 2012 - 10:39:16 CST)
Code Audit Labs
- [CAL-2011-0071]Adobe Shockwave Player Parsing cupt atom heap overflow (Tue Feb 14 2012 - 19:01:09 CST)
- [CAL-2011-0055]Adobe Shockwave Player Parsing block_cout memory corruption vulnerability (Tue Feb 14 2012 - 18:59:35 CST)
- [CAL-2012-0004] opera array integer overflow (Wed Feb 01 2012 - 20:36:41 CST)
Colm O hEigeartaigh
- CVE-2012-0803: Apache CXF does not validate UsernameToken policies correctly (Tue Feb 07 2012 - 04:39:45 CST)
CorryL
- ImgPals Photo Host Version 1.0 Admin Account Disactivation (Tue Feb 28 2012 - 08:18:56 CST)
- YVS Image Gallery Sql injection (Thu Feb 23 2012 - 05:19:06 CST)
- Mobile Mp3 Search Engine HTTP Response Splitting (Wed Feb 22 2012 - 13:37:03 CST)
Danny Fullerton
- Dropbear SSH server use-after-free vulnerability (Fri Feb 24 2012 - 06:53:15 CST)
DeepSec Conference
- DeepSec "Sector v6" - Call for Papers (Sun Feb 26 2012 - 05:47:27 CST)
demonalex163.com
- CJWSoft ASPGuest GuestBook 'edit.asp' - SQL Injection Vulnerability (Thu Feb 23 2012 - 11:04:52 CST)
- Mercurycom MR804 Router - Multiple HTTP Header Fields Denial Of Service Vulnerability (Tue Feb 21 2012 - 09:48:43 CST)
Dimitris Glynos
- Re: [Full-disclosure] pidgin OTR information leakage (Tue Feb 28 2012 - 01:18:15 CST)
- Re: [Full-disclosure] pidgin OTR information leakage (Mon Feb 27 2012 - 16:14:49 CST)
- pidgin OTR information leakage (Sat Feb 25 2012 - 10:31:30 CST)
dougwlinuxsecurityblog.com
- FreePBX Remote Exploit (Tue Feb 14 2012 - 22:03:44 CST)
Felipe M. Aragon
- Syhunt: Google V8 - Server-Side JS Injection in vulnerable web apps (Fri Feb 24 2012 - 22:17:56 CST)
Fernando Gont
- IPv6 NIDS evasion and IPv6 fragmentation/reassembly improvements (Mon Feb 20 2012 - 17:37:44 CST)
- IETF I-D: Security and Interoperability Implications of Oversized IPv6 Header Chains (Fri Feb 17 2012 - 06:55:37 CST)
- RFC 6528 on Defending against Sequence Number Attacks (Thu Feb 02 2012 - 22:59:26 CST)
- Fwd: RA-Guard: Advice on the implementation (feedback requested) (Wed Feb 01 2012 - 20:17:29 CST)
Florian Weimer
- [SECURITY] [DSA 2422-1] file security update (Wed Feb 29 2012 - 14:54:44 CST)
- [SECURITY] [DSA 2420-1] openjdk-6 security update (Tue Feb 28 2012 - 14:11:47 CST)
- [SECURITY] [DSA 2419-1] puppet security update (Mon Feb 27 2012 - 13:46:42 CST)
- [SECURITY] [DSA 2411-1] mumble security update (Sun Feb 19 2012 - 08:40:18 CST)
- [SECURITY] [DSA 2407-1] cvs security update (Thu Feb 09 2012 - 07:05:07 CST)
- [SECURITY] [DSA 2404-1] xen-qemu-dm-4.0 security update (Sun Feb 05 2012 - 06:46:59 CST)
Guillaume Arcas
- 2012 Honeynet Project Security Workshop (Thu Feb 16 2012 - 04:20:12 CST)
Henri Salo
- Re: [oss-security] Case YVS Image Gallery (Mon Feb 27 2012 - 15:39:15 CST)
- Case YVS Image Gallery (Mon Feb 27 2012 - 05:32:52 CST)
- Re: sqlinjection bug in nova cms (Thu Feb 16 2012 - 09:28:15 CST)
Ivan Fratric
- Reliable Windows 7 Exploitation: A Case Study (Tue Feb 28 2012 - 09:38:11 CST)
Jann Horn
- Re: pidgin OTR information leakage (Mon Feb 27 2012 - 11:27:14 CST)
Jeffrey Walton
- Re: [Full-disclosure] pidgin OTR information leakage (Mon Feb 27 2012 - 15:27:03 CST)
jnatal
- SQL Injection Vulnerabilities in TestLink (Mon Feb 20 2012 - 08:02:17 CST)
Jonathan Brossard
- Hackito Ergo sum // HES2012 Final CFP // Call for Hackers (Thu Feb 16 2012 - 04:43:14 CST)
Kousuke Ebihara
- 0-DAY XSS of cforms II is now fixed after a year and four months (was Re: cforms WordPress Plugin Cross Site Scripting Vulnerability - CVE-2010-3977) (Thu Feb 16 2012 - 22:41:35 CST)
Kurt Seifried
- Re: [oss-security] Dolphin 7.0.7 <= Multiple Cross Site Scripting Vulnerabilities (Mon Feb 20 2012 - 17:06:01 CST)
- Re: [oss-security] OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities (Mon Feb 20 2012 - 17:05:38 CST)
Leonardo Uribe
- [SECURITY] CVE-2011-4367 Apache MyFaces information disclosure vulnerability (Thu Feb 09 2012 - 09:54:42 CST)
LpSolitgmail.com
- Security advisory for Bugzilla 4.2 and 4.0.5 (Thu Feb 23 2012 - 10:19:49 CST)
- Security advisory for Bugzilla 4.2rc2, 4.0.4, 3.6.8 and 3.4.14 (Tue Jan 31 2012 - 17:38:51 CST)
Luk Claes
- [SECURITY] [DSA 2413-1] libarchive security update (Mon Feb 20 2012 - 14:52:03 CST)
- [SECURITY] [DSA 2384-2] cacti regression (Sat Feb 04 2012 - 11:18:52 CST)
Major Malfunction
- DC4420 - London DEFCON - February meet - Tuesday February 21st 2012 (Mon Feb 20 2012 - 09:59:45 CST)
Mateusz Goik
- Mathopd - Directory Traversal Vulnerability (Fri Feb 03 2012 - 04:58:45 CST)
Michele Orru
- Re: [Full-disclosure] pidgin OTR information leakage (Mon Feb 27 2012 - 13:37:04 CST)
mkeyfreemail.hu
- FrameJammer DOM based XSS (Mon Feb 27 2012 - 02:50:36 CST)
Moritz Muehlenhoff
- [SECURITY] [DSA 2421-1] moodle security update (Wed Feb 29 2012 - 14:22:34 CST)
- [SECURITY] [DSA 2418-1] postgresql-8.4 security update (Mon Feb 27 2012 - 11:43:53 CST)
- [SECURITY] [DSA 2412-1] libvorbis security update (Sun Feb 19 2012 - 14:23:13 CST)
- [SECURITY] [DSA 2410-1] libpng security update (Wed Feb 15 2012 - 14:44:25 CST)
- [SECURITY] [DSA 2408-1] php5 security update (Mon Feb 13 2012 - 12:15:24 CST)
- [SECURITY] [DSA 2402-1] iceape security update (Thu Feb 02 2012 - 13:53:30 CST)
- [SECURITY] [DSA 2400-1] iceweasel security update (Thu Feb 02 2012 - 13:52:15 CST)
- [SECURITY] [DSA 2401-1] tomcat6 security update (Thu Feb 02 2012 - 13:29:50 CST)
muuratsalo experimental hack lab
- Re: Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2. (Mon Feb 20 2012 - 15:52:23 CST)
- F*EX 20111129-2 Cross Site Scripting Vulnerability (Mon Feb 20 2012 - 15:48:19 CST)
- F*EX <= 20100208 Cross Site Scripting Vulnerabilities (Mon Feb 20 2012 - 15:47:54 CST)
- Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2. (Mon Feb 20 2012 - 15:47:20 CST)
Netsparker Advisories
- SQL Injection Vulnerability in Batavi 1.1.2 (Tue Feb 07 2012 - 07:36:49 CST)
Nico Golde
- [SECURITY] [DSA 2414-2] fex regression (Sat Feb 25 2012 - 10:10:31 CST)
- [SECURITY] [DSA 2417-1] libxml2 security update (Wed Feb 22 2012 - 17:05:51 CST)
- [SECURITY] [DSA 2415-1] libmodplug security update (Tue Feb 21 2012 - 17:47:35 CST)
- [SECURITY] [DSA 2414-1] fex security update (Tue Feb 21 2012 - 16:54:21 CST)
noreplytelus.com
- TELUS Security Labs VR - Oracle Java Web Start Command Argument Injection Remote Code Execution (Wed Feb 15 2012 - 10:04:30 CST)
Onapsis Research Labs
- [Onapsis Security Advisory 2012-08] Oracle JD Edwards Security Kernel Information Disclosure (Thu Feb 23 2012 - 20:42:32 CST)
- [Onapsis Security Advisory 2012-07] Oracle JD Edwards SawKernel SET_INI Configuration Modification (Thu Feb 23 2012 - 20:40:58 CST)
- [Onapsis Security Advisory 2012-06] Oracle JD Edwards JDENET Large Packets Denial of Service (Thu Feb 23 2012 - 20:39:14 CST)
- [Onapsis Security Advisory 2012-05] Oracle JD Edwards JDENET Multiple Information Disclosure (Thu Feb 23 2012 - 20:37:54 CST)
- [Onapsis Security Advisory 2012-04] Oracle JD Edwards SawKernel GET_INI Information Disclosure (Thu Feb 23 2012 - 20:35:02 CST)
- [Onapsis Security Advisory 2012-03] Oracle JD Edwards SawKernel Arbitrary File Read (Thu Feb 23 2012 - 20:33:11 CST)
- [Onapsis Security Advisory 2012-02] Oracle JD Edwards Security Kernel Remote Password Disclosure (Thu Feb 23 2012 - 20:29:56 CST)
- [Onapsis Security Advisory 2012-01] Oracle JD Edwards JDENET Arbitrary File Write (Thu Feb 23 2012 - 20:25:09 CST)
Raphael Geissert
- [SECURITY] [DSA 2409-1] devscripts security update (Wed Feb 15 2012 - 08:42:53 CST)
regisdolibarr.fr
- Re: Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities (Mon Feb 27 2012 - 10:31:35 CST)
ResearchNGSSecure
- NGS00237 Patch Notification: Samba Andx request Remote Code Execution (Sat Feb 25 2012 - 03:49:15 CST)
- NGS00120 Patch Notification: BlackBerry PlayBook Samba Remote Code Execution (Thu Feb 23 2012 - 02:18:08 CST)
researchvulnerability-lab.com
- Wolf CMS v0.7.5 - Multiple Web Vulnerabilities (Mon Feb 27 2012 - 10:27:39 CST)
- OSQA CMS v3b - Multiple Persistent Vulnerabilities (Mon Feb 27 2012 - 10:25:54 CST)
- Socusoft Photo 2 Video v8.05 - Buffer Overflow Vulnerability (Mon Feb 27 2012 - 10:21:42 CST)
- [Spam] Skype v5.6.59.x - Memory Corruption Vulnerability (Thu Feb 16 2012 - 18:42:12 CST)
- Pandora FMS v4.0.1 - Local File Include Vulnerability + VD Session (Thu Feb 16 2012 - 18:33:13 CST)
- [Suspected Spam] eFront Community++ v3.6.10 - SQL Injection Vulnerability (Sat Feb 11 2012 - 12:54:19 CST)
- Yahoo! Messenger v11.5 - Buffer Overflow Vulnerability (Sat Feb 11 2012 - 12:52:35 CST)
- Kloxo LxCenter Server CP v6.1.10 - Multiple Web Vulnerabilities (Fri Feb 10 2012 - 08:27:55 CST)
- Dolibarr CMS v3.2.0 Alpha - SQL Injection Vulnerabilities (Fri Feb 10 2012 - 04:55:55 CST)
- OnxShop CMS v1.5.0 - Multiple Web Vulnerabilities (Fri Feb 10 2012 - 04:53:43 CST)
- Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities (Fri Feb 10 2012 - 04:52:42 CST)
- [Suspected Spam] eFront Community++ v3.6.10 - Multiple Web Vulnerabilities (Thu Feb 09 2012 - 12:02:02 CST)
- Cyberoam Central Console v2.00.2 - File Include Vulnerability (Tue Feb 07 2012 - 17:25:53 CST)
- eFronts Community++ v3.6.10 - Cross Site Vulnerability (Tue Feb 07 2012 - 10:34:59 CST)
rezahmailgmail.com
- sqlinjection bug in nova cms (Sun Feb 12 2012 - 11:12:09 CST)
Rich Pieri
- Re: [Full-disclosure] pidgin OTR information leakage (Mon Feb 27 2012 - 14:21:10 CST)
roberto.paleariemaze.net
- Unauthenticated remote code execution on D-Link ShareCenter products (Wed Feb 08 2012 - 07:14:26 CST)
Rodrigo Rubira Branco \(BSDaemon\)
- Re: Fwd: 0-DAY XSS of cforms II is now fixed after a year and four months (was Re: cforms WordPress Plugin Cross Site Scripting Vulnerability - CVE-2010-3977) (Fri Feb 17 2012 - 05:49:35 CST)
Schweiss, Chip
- Puppet Dashboard insecure by default (Wed Feb 15 2012 - 10:30:30 CST)
SEC Consult Vulnerability Lab
- SEC Consult SA-20120220-0 :: Multiple critical vulnerabilities in VOXTRONIC voxlog professional (Mon Feb 20 2012 - 04:06:17 CST)
- SEC Consult SA-20120220-1 :: Multiple Vulnerabilities in ELBA5 (Mon Feb 20 2012 - 04:10:14 CST)
security-alerthp.com
- [security bulletin] HPSBMU02739 SSRT100280 rev.2 - HP Data Protector Storage Media Operations (SMO), Remote Execution of Arbitrary Code (Thu Feb 23 2012 - 19:49:45 CST)
- [security bulletin] HPSBUX02737 SSRT100747 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) (Thu Feb 23 2012 - 19:48:28 CST)
- [security bulletin] HPSBPI02728 SSRT100692 rev.4 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default (Fri Feb 17 2012 - 07:54:43 CST)
- [security bulletin] HPSBMU02742 SSRT100740 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Unauthorized Disclosure of Information (Wed Feb 08 2012 - 11:14:53 CST)
- [security bulletin] HPSBUX02741 SSRT100728 rev.1 - HP-UX Apache Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Access Restriction Bypass (Tue Feb 07 2012 - 15:33:27 CST)
- [security bulletin] HPSBMU02736 SSRT100699 rev.2 - HP Business Availability Center (BAC) and Business Service Management (BSM), Remote Unauthorized Access to Sensitive Information (Tue Feb 07 2012 - 10:28:35 CST)
- [security bulletin] HPSBGN02740 SSRT100741 rev.1 - HP Operations Manager, Operations Agent, Performance Agent, Service Health Reporter, Service Health Optimizer, Performance Manager, Remote Execution of Arbitrary Code (Thu Feb 02 2012 - 13:02:15 CST)
- [security bulletin] HPSBMU02739 SSRT100280 rev.1 - HP Data Protector Media Operations, Remote Execution of Arbitrary Code (Wed Feb 01 2012 - 21:15:40 CST)
securityinfoserve.de
- SimpleGroupware 0.742 Cross-Site-Scripting vulnerability (Mon Feb 06 2012 - 15:19:59 CST)
securitymandriva.com
- [ MDVSA-2012:027 ] postgresql8.3 (Wed Feb 29 2012 - 10:00:01 CST)
- [ MDVSA-2012:026 ] postgresql (Wed Feb 29 2012 - 09:31:00 CST)
- [ MDVSA-2012:025 ] samba (Tue Feb 28 2012 - 14:02:00 CST)
- [ MDVSA-2012:023-1 ] libvpx (Tue Feb 28 2012 - 08:49:01 CST)
- [ MDVSA-2012:022-1 ] mozilla (Tue Feb 28 2012 - 08:37:01 CST)
- [ MDVSA-2012:023 ] libvpx (Mon Feb 27 2012 - 06:34:00 CST)
- [ MDVSA-2012:022 ] mozilla (Thu Feb 23 2012 - 14:40:01 CST)
- [ MDVSA-2012:023 ] libxml2 (Wed Feb 22 2012 - 07:20:00 CST)
- [ MDVSA-2012:022 ] libpng (Wed Feb 22 2012 - 06:00:00 CST)
- [ MDVSA-2012:021 ] java-1.6.0-openjdk (Fri Feb 17 2012 - 12:47:00 CST)
- [ MDVSA-2012:020 ] phpldapadmin (Wed Feb 15 2012 - 05:19:00 CST)
- [ MDVSA-2012:019 ] apr (Tue Feb 14 2012 - 07:43:01 CST)
- [ MDVSA-2012:018 ] mozilla-thunderbird (Mon Feb 13 2012 - 09:09:01 CST)
- [ MDVSA-2012:017 ] firefox (Sun Feb 12 2012 - 14:23:00 CST)
- [ MDVSA-2012:016 ] glpi (Fri Feb 10 2012 - 13:00:00 CST)
- [ MDVSA-2012:015 ] wireshark (Thu Feb 09 2012 - 07:58:00 CST)
- [ MDVSA-2012:014 ] glpi (Mon Feb 06 2012 - 13:03:01 CST)
- [ MDVSA-2012:013 ] mozilla (Fri Feb 03 2012 - 10:54:00 CST)
- [ MDVSA-2012:012 ] apache (Thu Feb 02 2012 - 09:48:01 CST)
Security_Alertemc.com
- ESA-2012-010: EMC Documentum xPlore information disclosure vulnerability (Fri Feb 03 2012 - 10:04:21 CST)
- ESA-2012-009: EMC Documentum Content Server privilege elevation vulnerability (Wed Feb 01 2012 - 09:56:01 CST)
Simon McVittie
- Multiple security vulnerabilities in Tremulous 1.1.0, GPP1, and unofficial MG and TJW engines (Wed Feb 22 2012 - 04:11:38 CST)
Slackware Security Team
- [slackware-security] php (SSA:2012-041-02) (Fri Feb 10 2012 - 11:44:15 CST)
- [slackware-security] httpd (SSA:2012-041-01) (Fri Feb 10 2012 - 11:43:57 CST)
- [slackware-security] proftpd (SSA:2012-041-04) (Fri Feb 10 2012 - 11:44:44 CST)
- [slackware-security] glibc (SSA:2012-041-03) (Fri Feb 10 2012 - 11:44:30 CST)
- [slackware-security] vsftpd (SSA:2012-041-05) (Fri Feb 10 2012 - 11:44:59 CST)
sschurtzdarksecurity.de
- WebsiteBaker 2.8.2 SP2 HTTP-Referer XSS vulnerability (Sat Feb 18 2012 - 06:37:09 CST)
Stefan Fritsch
- [SECURITY] [DSA 2405-1] apache2 security update (Mon Feb 06 2012 - 03:06:39 CST)
The Dark Tangent
- DEF CON 20 Capture the Flag Announcement (Mon Feb 06 2012 - 15:20:14 CST)
Thijs Kinkhorst
- [SECURITY] [DSA 2416-1] notmuch security update (Thu Feb 23 2012 - 11:43:32 CST)
- [SECURITY] [DSA 2403-2] php5 security update (Mon Feb 06 2012 - 13:21:50 CST)
- [SECURITY] [DSA 2403-1] php5 security update (Thu Feb 02 2012 - 15:29:48 CST)
Thomas Richards
- Kongreg8 1.7.3 Mutiple XSS (Fri Feb 24 2012 - 19:33:53 CST)
- PHP Gift Registry 1.5.5 SQL Injection (Fri Feb 24 2012 - 06:40:05 CST)
Timo Warns
- [PRE-SA-2012-01] Denial-of-service vulnerability in java.util.zip (Thu Feb 16 2012 - 07:19:32 CST)
Trustwave Advisories
- TWSL2012-003: Cross-Site Scripting Vulnerability in Movable Type Publishing Platform (Fri Feb 24 2012 - 16:34:33 CST)
William A. Rowe Jr.
- [Announce] Apache HTTP Server 2.2.22 Released (Tue Jan 31 2012 - 16:35:58 CST)
Worawit Wang
- PHP 5.2.x Remote Code Execution Vulnerability (Fri Feb 17 2012 - 08:55:33 CST)
YGN Ethical Hacker Group
- Dolphin 7.0.7 <= Multiple Cross Site Scripting Vulnerabilities (Mon Feb 20 2012 - 11:05:41 CST)
- OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities (Mon Feb 20 2012 - 10:53:46 CST)
- CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability [Updated] (Sun Feb 19 2012 - 06:55:48 CST)
- CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability (Fri Feb 10 2012 - 10:01:45 CST)
ZDI Disclosures
- TPTI-12-01 : Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution Vulnerability (Wed Feb 22 2012 - 14:35:48 CST)
- ZDI-12-039 : Oracle Java Web Start java-vm-args Command Argument Injection Remote Code Execution (Wed Feb 22 2012 - 14:06:16 CST)
- ZDI-12-038 : Oracle Java JavaFX Arbitrary Argument Remote Code Execution Vulnerability (Wed Feb 22 2012 - 14:05:20 CST)
- ZDI-12-037 : Oracle Java Web Start JNLP Double Quote Remote Code Execution Vulnerability (Wed Feb 22 2012 - 14:01:56 CST)
- ZDI-12-036 : Microsoft Internet Explorer VML CDispScroller Remote Code Execution Vulnerability (Wed Feb 22 2012 - 14:00:38 CST)
- ZDI-12-035 : Microsoft Internet Explorer CDispNode t:MEDIA Remote Code Execution Vulnerability (Wed Feb 22 2012 - 13:59:41 CST)
- ZDI-12-034 : Microsoft Windows Media Player ASX Meta-File Parsing Remote Code Execution Vulnerability (Wed Feb 22 2012 - 13:58:30 CST)
- ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability (Wed Feb 22 2012 - 13:57:17 CST)
- ZDI-12-032 : Oracle Java Runtime Environment readMabCurveData Integer Overflow Remote Code Execution Vulnerability (Wed Feb 22 2012 - 13:55:39 CST)
- ZDI-12-031 : Novell iPrint Server attributes-natural-language Remote Code Execution Vulnerability (Wed Feb 08 2012 - 11:46:10 CST)
- ZDI-12-030 : IBM Rational Rhapsody BBFlashBack.Recorder.1 TestCompatibilityRecordMode Remote Code Execution Vulnerability (Wed Feb 08 2012 - 11:45:06 CST)
- ZDI-12-029 : IBM Rational Rhapsody BBFlashBack.Recorder.1 InsertMarker Remote Code Execution Vulnerability (Wed Feb 08 2012 - 11:44:16 CST)
- ZDI-12-028 : IBM Rational Rhapsody BBFlashBack.FBRecorder.1 Control Multiple Remote Code Execution Vulnerabilities (Wed Feb 08 2012 - 11:42:05 CST)
- ZDI-12-027 : IBM SPSS VsVIEW6.ocx ActiveX Control SaveDoc Method Remote Code Execution Vulnerability (Wed Feb 08 2012 - 11:40:04 CST)
- ZDI-12-026 : IBM SPSS ExportHTML.dll ActiveX Control Render Method Remote Code Execution Vulnerability (Wed Feb 08 2012 - 11:38:22 CST)
- ZDI-12-025 : EMC Networker indexd.exe Opcode 0x01 Parsing Remote Code Execution (Wed Feb 08 2012 - 11:36:51 CST)
- ZDI-12-024 : Total Defense Suite UNC Management Web Service uncsp_ViewReportsHomepage SQL Injection Vulnerability (Wed Feb 08 2012 - 11:32:45 CST)
- ZDI-12-023 : Total Defense Suite UNC Management Web Service Database Credentials Disclosure Vulnerability (Wed Feb 08 2012 - 11:31:43 CST)
- ZDI-12-022 : Total Defense Suite UNC Management Console ExportReport SQL Injection Vulnerability (Wed Feb 08 2012 - 11:29:35 CST)
- ZDI-12-021 : Adobe Reader BMP Resource Signedness Remote Code Execution Vulnerability (Wed Feb 08 2012 - 11:21:59 CST)

Last message date: Wed Feb 29 2012 - 15:33:36 CST
Archived on: Wed Feb 29 2012 - 15:33:36 CST

192 messages sorted by: [ date ] [ thread ] [ subject ]