NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2012-03

173 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Thu Mar 01 2012 - 11:30:07 CST
Ending: Fri Mar 30 2012 - 15:30:18 CDT

abhijeetchmag.in
- [Announcement] ClubHack Mag - Call for Articles (Fri Mar 16 2012 - 01:11:16 CDT)
adminv-lab
- 11in1 CMS v1.2.1 - SQL Injection Vulnerabilities (Mon Mar 05 2012 - 14:45:41 CST)
advisoryhtbridge.ch
- Multiple XSS in Fork CMS (Wed Mar 07 2012 - 05:26:12 CST)
advisoryhtbridge.com
- Multiple vulnerabilities in Open Journal Systems (OJS) (Wed Mar 21 2012 - 05:43:22 CDT)
ali.raheemgmail.com
- Multiple SQL injections in rivettracker <=1.03 (Wed Mar 07 2012 - 05:31:10 CST)
Apple Product Security
- APPLE-SA-2012-03-12-1 Safari 5.1.4 (Mon Mar 12 2012 - 12:11:57 CDT)
- APPLE-SA-2012-03-07-3 Apple TV 5.0 (Wed Mar 07 2012 - 15:44:34 CST)
- APPLE-SA-2012-03-07-2 iOS 5.1 Software Update (Wed Mar 07 2012 - 15:43:39 CST)
- APPLE-SA-2012-03-07-1 iTunes 10.6 (Wed Mar 07 2012 - 15:42:50 CST)
Asterisk Security Team
- AST-2012-003: Stack Buffer Overflow in HTTP Manager (Thu Mar 15 2012 - 17:05:31 CDT)
- AST-2012-002: Remote Crash Vulnerability in Milliwatt Application (Thu Mar 15 2012 - 17:04:45 CDT)
B Potter
- Announcing Hackademic CFP (Tue Mar 13 2012 - 09:50:00 CDT)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software Reverse SSH Denial of Service Vulnerability (Wed Mar 28 2012 - 11:20:57 CDT)
- Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability (Wed Mar 28 2012 - 11:20:57 CDT)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS Software Traffic Optimization Features (Wed Mar 28 2012 - 11:20:57 CDT)
- Cisco Security Advisory: Cisco IOS Internet Key Exchange Vulnerability (Wed Mar 28 2012 - 11:20:57 CDT)
- Cisco Security Advisory: Cisco IOS Software Smart Install Denial of Service Vulnerability (Wed Mar 28 2012 - 11:20:57 CDT)
- Cisco Security Advisory: Cisco IOS Software RSVP Denial of Service Vulnerability (Wed Mar 28 2012 - 11:20:57 CDT)
- Cisco Security Advisory: Cisco ASA 5500 Series Adaptive Security Appliance Clientless VPN ActiveX Control Remote Code Execution Vulnerability (Wed Mar 14 2012 - 11:16:48 CDT)
- Cisco Security Advisory: Cisco Firewall Services Module Crafted Protocol Independent Multicast Message Denial of Service Vulnerability (Wed Mar 14 2012 - 11:17:13 CDT)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module (Wed Mar 14 2012 - 11:17:13 CDT)
come2waraxeyahoo.com
- [waraxe-2012-SA#081] - Multiple Vulnerabilities in Coppermine 1.5.18 (Thu Mar 29 2012 - 13:39:16 CDT)
- [waraxe-2012-SA#080] - Multiple Vulnerabilities in NextBBS 0.6.0 (Tue Mar 27 2012 - 09:10:06 CDT)
cxibcxsecurity.com
- PHP 5.4/5.3 deprecated eregi() memory_limit bypass (Fri Mar 30 2012 - 08:05:55 CDT)
CXySuYg5DuKktzXSafe-mail.net
- Tor Browser Bundle for Linux (2.2.35-8) "EVIL bug" (Mon Mar 19 2012 - 11:33:03 CDT)
dann frazier
- [SECURITY] [DSA 2443-1] linux-2.6 security update (Mon Mar 26 2012 - 19:35:57 CDT)
david.kurzmajorsecurity.net
- [MajorSecurity-SA-2012-014]Apple Safari on iOS 5.1 - Adressbar spoofing vulnerability (Tue Mar 20 2012 - 03:39:47 CDT)
demonalex163.com
- Matthew1471s ASP BlogX - XSS Vulnerabilities (Mon Mar 26 2012 - 11:03:17 CDT)
- at32 ReverseProxy - Multiple HTTP Header Field Denial Of Service Vulnerability (Sun Mar 18 2012 - 22:04:05 CDT)
- Lastguru ASP GuestBook 'View.asp' - SQL Injection Vulnerability (Sat Mar 03 2012 - 23:21:36 CST)
Dmitry Yu. Bolkhovityanov
- Re: gnome-terminal, xfce4-terminal, terminator and others write scrollback buffer to disk (Thu Mar 08 2012 - 18:57:47 CST)
ds.adv.pubgmail.com
- VMware High-Bandwidth Backdoor ROM Overwrite Privilege Elevation (Fri Mar 30 2012 - 11:49:05 CDT)
- Intuit Help System Protocol File Retrieval (Fri Mar 30 2012 - 11:37:18 CDT)
- Intuit Help System Protocol URL Heap Corruption and Memory Leak (Fri Mar 30 2012 - 11:35:27 CDT)
Fernando Gont
- Security Implications of Predictable IPv6 Fragment Identification values (rev'ed IETF I-D) (Sat Mar 03 2012 - 18:00:14 CST)
Filippo Cavallarin
- OSClass directory traversal (leads to arbitrary file upload) (Wed Mar 07 2012 - 09:23:04 CST)
Florian Weimer
- [SECURITY] [DSA 2444-1] tryton-server security update (Thu Mar 29 2012 - 01:06:23 CDT)
- [SECURITY] [DSA 2442-1] openarena security update (Mon Mar 26 2012 - 15:05:46 CDT)
- [SECURITY] [DSA 2441-1] gnutls26 security update (Sun Mar 25 2012 - 13:53:32 CDT)
- [SECURITY] [DSA 2440-1] libtasn1-3 security update (Sat Mar 24 2012 - 17:22:54 CDT)
- [SECURITY] [DSA 2429-1] mysql-5.1 security update (Wed Mar 07 2012 - 14:44:22 CST)
- [SECURITY] [DSA 2427-1] imagemagick security update (Tue Mar 06 2012 - 13:13:37 CST)
- [SECURITY] [DSA 2426-1] gimp security update (Tue Mar 06 2012 - 12:46:58 CST)
- [SECURITY] [DSA 2425-1] plib security update (Sun Mar 04 2012 - 15:13:44 CST)
- [SECURITY] [DSA 2424-1] libxml-atom-perl security update (Sun Mar 04 2012 - 10:23:40 CST)
- [SECURITY] [DSA 2423-1] movabletype-opensource security update (Fri Mar 02 2012 - 13:32:21 CST)
gabor.berczidevworx.hu
- Prado TJavaScript::encode() script injection vulnerability (Thu Mar 22 2012 - 07:25:29 CDT)
Gabriele Giacone
- [SECURITY] [DSA 2435-1] gnash security update (Mon Mar 19 2012 - 18:05:34 CDT)
Henri Salo
- Re: WikyBlog 1.7.3RC2 XSS vulnerability (Sun Mar 18 2012 - 04:50:05 CDT)
- Re: Ariadne 2.7.6 Multiple XSS vulnerabilities (Sat Mar 10 2012 - 04:59:35 CST)
- Re: Fwd: 2.6.6 <= phpMyFAQ <= 2.6.8 XSS (Fri Mar 09 2012 - 01:43:47 CST)
Irene Abezgauz
- Seeker Advisory: Insecure Redirect in .NET Form Authentication - Redirect From Login Mechanism (ReturnURL Parameter) (Wed Mar 21 2012 - 10:10:12 CDT)
Ivan Buetler
- Struts2 Security Challenge (Wed Mar 14 2012 - 13:21:41 CDT)
Jan Schejbal
- Android wipe unreliable (Sun Mar 18 2012 - 12:47:09 CDT)
Jim Harrison
- RE: Regarding MS12-020 (Tue Mar 20 2012 - 15:28:18 CDT)
Joao Paulo Caldas Campello
- [TSI-ADV-1202] Polycom Web Management Interface O.S. Command Injection (Mon Mar 05 2012 - 15:43:05 CST)
- [TSI-ADV-1201] Path Traversal on Polycom Web Management Interface (Mon Mar 05 2012 - 15:42:58 CST)
Joe Arnold
- RE: Android wireless accepts fake response (No interaction requires) (Vulnerability ?) (Thu Mar 15 2012 - 12:06:28 CDT)
Kotas, Kevin J
- CA20120320-01: Security Notice for CA ARCserve Backup (Wed Mar 21 2012 - 15:34:12 CDT)
Kurt Seifried
- Re: [oss-security] Case YVS Image Gallery (Mon Mar 19 2012 - 13:53:31 CDT)
larry0me.com
- Oracle Exadata Infiniband Switch default logins and world readable shadow file (Wed Mar 14 2012 - 14:17:24 CDT)
Leif Hedstrom
- [ANNOUNCE] Apache Traffic Server releases for security incident CVE-2012-0256 (Thu Mar 22 2012 - 12:50:01 CDT)
Lists
- Aurora WebOPAC SQL Injection - Security Advisory - SOS-12-004 (Mon Mar 12 2012 - 01:43:17 CDT)
- Iciniti Store SQL Injection - Security Advisory - SOS-12-003 (Tue Mar 06 2012 - 23:53:17 CST)
- Symfony2 Local File Disclosure - Security Advisory - SOS-12-002 (Mon Mar 05 2012 - 05:21:54 CST)
Luciano Bello
- [SECURITY] [DSA 2434-1] nginx security update (Mon Mar 19 2012 - 17:56:59 CDT)
Mark Krenz
- gnome-terminal, xfce4-terminal, terminator and others write scrollback buffer to disk (Tue Mar 06 2012 - 14:47:58 CST)
Mark Stanislav
- 'phpMoneyBooks' Local File Inclusion (CVE-2012-1669) (Thu Mar 22 2012 - 09:38:01 CDT)
- 'PHP Grade Book' Unauthenticated SQL Database Export (CVE-2012-1670) (Thu Mar 22 2012 - 09:21:28 CDT)
Markus Vervier
- LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption (Fri Mar 09 2012 - 14:31:35 CST)
Martin Grigorov
- [CVE-2012-1089] Apache Wicket serving of hidden files vulnerability (Thu Mar 22 2012 - 04:52:30 CDT)
- [CVE-2012-0047] Apache Wicket XSS vulnerability via pageMapName request parameter (Thu Mar 22 2012 - 04:49:53 CDT)
Michal Bucko
- Eleytt Research ER-03-2012 (Thu Mar 08 2012 - 12:53:11 CST)
Moritz Muehlenhoff
- [SECURITY] [DSA 2439-1] libpng security update (Thu Mar 22 2012 - 17:22:28 CDT)
- [SECURITY] [DSA 2438-1] raptor security update (Thu Mar 22 2012 - 11:44:46 CDT)
- [SECURITY] [DSA 2437-1] icedove security update (Wed Mar 21 2012 - 13:58:26 CDT)
- [SECURITY] [DSA 2433-1] iceweasel security update (Thu Mar 15 2012 - 16:42:10 CDT)
- [SECURITY] [DSA 2432-1] libyaml-libyaml-perl security update (Mon Mar 12 2012 - 12:56:39 CDT)
- [SECURITY] [DSA 2431-1] libdbd-pg-perl security update (Sun Mar 11 2012 - 05:25:32 CDT)
- [SECURITY] [DSA 2430-1] python-pam security update (Sat Mar 10 2012 - 09:51:34 CST)
- [SECURITY] [DSA 2428-1] freetype security update (Thu Mar 08 2012 - 14:48:00 CST)
moshezcomsecglobal.com
- PrivaWall Antivirus Office XML Format Evasion/Bypass Vulnerability (Tue Mar 13 2012 - 10:02:51 CDT)
Narendra Shinde
- Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability [CVE-2012-1417] (Tue Mar 13 2012 - 01:34:02 CDT)
Netsparker Advisories
- Cross-site scripting vulnerability in Invision Power Board version 3.2.3 (Thu Mar 29 2012 - 06:29:48 CDT)
nospamgmail.it
- Quest InTrust 10.4.x ReportTree and SimpleTree Classes ArDoc.dll ActiveX Control Remote File Creation / Overwrite Vulnerability (Wed Mar 28 2012 - 13:00:01 CDT)
- D-Link SecuriCam DCS-5605 Network Surveillance ActiveX Control DcsCliCtrl.dll lstrcpyW Remote Buffer Overflow Vulnerability (Wed Mar 28 2012 - 12:40:29 CDT)
- Quest InTrust 10.4.x Annotation Objects ActiveX Control AnnotateX.dll Uninitialized Pointer Remote Code Execution (Wed Mar 28 2012 - 12:30:06 CDT)
- TRENDnet SecurView TV-IP121WN Wireless Internet Camera UltraMJCam ActiveX Control OpenFileDlg WideCharToMultiByte Remote Stack Buffer Overflow (Wed Mar 28 2012 - 12:16:15 CDT)
- Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT ActiveX Control PlayerPT.ocx sprintf Buffer Overflow Vulnerability (Wed Mar 21 2012 - 20:55:41 CDT)
- ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Vulnerability (Mon Mar 19 2012 - 11:40:20 CDT)
- Dell Webcam Software Bundled ActiveX Control CrazyTalk4Native.dll sprintf Remote Buffer Overflow Vulnerability (Mon Mar 19 2012 - 09:07:09 CDT)
otrbockcay.de
- PcwRunAs Password Obfuscation Design Flaw (Mon Mar 26 2012 - 05:17:03 CDT)
OWASP AppSec EU
- OWASP AppSec Research EU CFP/CFT (Wed Mar 28 2012 - 16:58:31 CDT)
Patrick Webster
- OSI Security: CheckPoint Firewall VPN - Information Disclosure (Sun Mar 11 2012 - 20:57:17 CDT)
Research
- Bitsmith PS Knowbase 3.2.3 - Buffer Overflow Vulnerability (Thu Mar 29 2012 - 22:16:08 CDT)
ResearchNGSSecure
- NGS00158 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Arbitrary file download is possible with a crafted URL when logged in as any user (Thu Mar 29 2012 - 02:51:29 CDT)
- NGS00157 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Password hashes can be recovered from a system backup and easily cracked (Thu Mar 29 2012 - 02:50:31 CDT)
- NGS00156 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Active sesssion tokens of other users are disclosed within the UI (Thu Mar 29 2012 - 02:49:45 CDT)
- NGS00155 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Any logged-in user can bypass controls to reset passwords of other administrators (Thu Mar 29 2012 - 02:48:55 CDT)
- NGS00154 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Session hijacking and bypassing client-side session timeouts (Thu Mar 29 2012 - 02:47:55 CDT)
- NGS00153 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Reflective XSS allowing an attacker to gain session tokens (Thu Mar 29 2012 - 02:47:04 CDT)
researchvulnerability-lab.com
- Pitrinec MacroToolworks 7.5 - Buffer Overflow Vulnerability (Wed Mar 07 2012 - 20:54:16 CST)
- Enterasys SecureStack Switch v6.x - Multiple Vulnerabilities (Wed Mar 07 2012 - 20:18:10 CST)
- Ilient SysAid v8.5.05 - Multiple Web Vulnerabilities (Wed Mar 07 2012 - 20:16:23 CST)
- [Suspected Spam] Barracuda CudaTel v2.0.029.1 - Multiple Web Vulnerabilities (Wed Mar 07 2012 - 20:15:42 CST)
- [Suspected Spam] Barracuda WAF 660 v7.6.0.028 - Cross Site Vulnerability (Wed Mar 07 2012 - 20:13:02 CST)
- [Suspected Spam] Endian UTM Firewall v2.4.x & v2.5.0 - Multiple Web Vulnerabilities (Thu Mar 01 2012 - 11:46:31 CST)
- [Suspected Spam] FlashFXP v4.1.8.1701 - Buffer Overflow Vulnerability (Thu Mar 01 2012 - 11:19:04 CST)
RGill
- Aruba Networks multiple advisories: OS command injection in RAP web interface and 802.1X EAP-TLS user authentication bypass (Mon Mar 19 2012 - 13:45:54 CDT)
Saurabh Harit
- Cyberoam Unified Threat Management: OS Command Execution (Wed Mar 21 2012 - 01:45:16 CDT)
- Cyberoam Unified Threat Management: Insecure Password Handling (Wed Mar 21 2012 - 01:41:13 CDT)
SEC Consult Vulnerability Lab
- SEC Consult SA-20120315-0 :: Multiple permanent XSS vulnerabilities in EMC Documentum eRoom (Thu Mar 15 2012 - 10:51:10 CDT)
Security
- Mu Dynamics, Inc. Security Advisories MU-201202-01 and MU-201202-02 for GnuTLS and Libtasn1 (Tue Mar 20 2012 - 18:40:02 CDT)
Security Mailing List
- Re: Android wireless accepts fake response (No interaction requires) (Vulnerability ?) (Wed Mar 14 2012 - 22:33:19 CDT)
- Android wireless accepts fake response (No interaction requires) (Vulnerability ?) (Mon Mar 12 2012 - 01:25:01 CDT)
security-alerthp.com
- [security bulletin] HPSBMU02756 SSRT100596 rev.1 - HP Performance Manager Running on HP-UX, Linux, Solaris and Windows, Remote Execution of Arbitrary Code, Denial of Service (DoS) (Wed Mar 28 2012 - 08:58:18 CDT)
- [security bulletin] HPSBUX02755 SSRT100667 rev.1 - HP-UX WBEM, Remote Unauthorized Access to Diagnostic Data (Wed Mar 28 2012 - 08:57:55 CDT)
- [security bulletin] HPSBMU02744 SSRT100776 rev.2 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information (Wed Mar 28 2012 - 08:57:28 CDT)
- [security bulletin] HPSBMU02748 SSRT100772 rev.1 - HP OpenView Network Node Manager (OV NNM) Running Apache HTTP Server, Remote Unauthorized Disclosure of Information, Unauthorized Modification, Denial of Service (DoS) (Wed Mar 28 2012 - 08:56:29 CDT)
- [security bulletin] HPSBMU02747 SSRT100771 rev.1 - HP OpenView Network Node Manager (OV NNM) Running Apache Tomcat, Remote Denial of Service (DoS) (Wed Mar 28 2012 - 08:55:55 CDT)
- [security bulletin] HPSBMU02752 SSRT100802 rev.1 HP Insight Control Software for Linux (IC-Linux), Remote Execution of Arbitrary Code, Denial of Service (DoS) (Tue Mar 20 2012 - 10:06:03 CDT)
- [security bulletin] HPSBPI02728 SSRT100692 rev.5 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default (Mon Mar 19 2012 - 10:14:36 CDT)
- [security bulletin] HPSBMU02746 SSRT100781 rev.1 - HP Data Protector Express, Remote Denial of Service (DoS), Execution of Arbitrary Code (Mon Mar 12 2012 - 21:47:27 CDT)
- [security bulletin] HPSBMU02744 SSRT100776 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information (Wed Mar 07 2012 - 12:12:58 CST)
- [security bulletin] HPSBUX02741 SSRT100728 rev.2 - HP-UX Apache Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Access Restriction Bypass (Tue Mar 06 2012 - 16:07:21 CST)
security-bulletinnginx.com
- nginx fix for malformed HTTP responses from upstream servers (Thu Mar 15 2012 - 08:48:47 CDT)
securitymandriva.com
- [ MDVSA-2012:045 ] gnutls (Fri Mar 30 2012 - 11:45:02 CDT)
- [ MDVSA-2012:044 ] cvs (Thu Mar 29 2012 - 06:21:01 CDT)
- [ MDVSA-2012:043 ] nginx (Thu Mar 29 2012 - 04:21:00 CDT)
- [ MDVSA-2012:042 ] wireshark (Wed Mar 28 2012 - 08:45:00 CDT)
- [ MDVSA-2012:041 ] expat (Tue Mar 27 2012 - 13:53:01 CDT)
- [ MDVSA-2012:040 ] gnutls (Tue Mar 27 2012 - 10:52:01 CDT)
- [ MDVSA-2012:039 ] libtasn1 (Tue Mar 27 2012 - 05:42:00 CDT)
- [ MDVSA-2012:038 ] openssl (Mon Mar 26 2012 - 11:41:00 CDT)
- [ MDVSA-2012:037 ] cyrus-imapd (Fri Mar 23 2012 - 10:22:02 CDT)
- [ MDVSA-2012:036 ] libsoup (Fri Mar 23 2012 - 09:28:01 CDT)
- [ MDVSA-2012:035 ] file (Fri Mar 23 2012 - 05:47:00 CDT)
- [ MDVSA-2012:034 ] libzip (Fri Mar 23 2012 - 05:23:01 CDT)
- [ MDVSA-2012:033 ] libpng (Wed Mar 21 2012 - 07:02:00 CDT)
- [ MDVSA-2012:032 ] mozilla (Tue Mar 20 2012 - 13:51:01 CDT)
- [ MDVSA-2012:031 ] firefox (Sat Mar 17 2012 - 11:19:00 CDT)
- [ MDVSA-2012:030 ] systemd (Fri Mar 16 2012 - 14:28:00 CDT)
- [ MDVSA-2012:029 ] pidgin (Fri Mar 16 2012 - 06:11:01 CDT)
- [ MDVSA-2012:028 ] libxslt (Thu Mar 01 2012 - 02:16:00 CST)
Security_Alertemc.com
- ESA-2012-014: RSA enVision Multiple Vulnerabilities (Sun Mar 18 2012 - 23:13:22 CDT)
- ESA-2012-012: EMC Documentum eRoom Multiple Vulnerabilities (Tue Mar 13 2012 - 09:33:45 CDT)
- ESA-2012-013: RSA SecurID(r) Software Token Converter buffer overflow vulnerability (Mon Mar 05 2012 - 15:57:56 CST)
Simon McVittie
- Traffic amplification via Quake 3-based servers (Mon Mar 26 2012 - 05:28:48 CDT)
simon.ganieregmail.com
- Synology Photo Station 5 - Reflected Cross-Site Scripting (Sat Mar 10 2012 - 02:38:44 CST)
Solar Designer
- Re: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected) (Tue Mar 27 2012 - 12:13:52 CDT)
sschurtzdarksecurity.de
- CMSimple_XH 1.5.2 Cross-site Scripting vulnerability (Wed Mar 21 2012 - 06:19:00 CDT)
- WikyBlog 1.7.3RC2 XSS vulnerability (Thu Mar 15 2012 - 12:31:41 CDT)
- Wikidforum 2.10 Multiple security vulnerabilities (Sat Mar 10 2012 - 04:13:12 CST)
Stefan Kanthak
- %windir%\temp\sso\ssoexec.dll (or: how trustworthy is Microsoft's build process) (Sun Mar 04 2012 - 13:06:05 CST)
Steffen Dettmer
- SQL injection attack possible when connecting to PostgreSQL 9.1 with version 8.1 JDBC driver (Sun Mar 25 2012 - 07:37:00 CDT)
sumanjgmail.com
- Evasion attacks expoliting file-parsing vulnerabilities in antivirus products (Sun Mar 18 2012 - 23:22:03 CDT)
Thijs Kinkhorst
- [SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update (Mon Mar 19 2012 - 14:24:30 CDT)
Thomas Richards
- Timesheet Next Gen 1.5.2 Multiple SQLi (Fri Mar 02 2012 - 12:10:38 CST)
Thor \(Hammer of God\)
- RE: Regarding MS12-020 (Tue Mar 20 2012 - 15:43:40 CDT)
- Regarding MS12-020 (Tue Mar 20 2012 - 10:11:33 CDT)
Timo Warns
- [PRE-SA-2012-02] Incorrect loop construct and numeric overflow in libzip (Tue Mar 27 2012 - 02:34:00 CDT)
vincecodeproject.com
- Re: Android wireless accepts fake response (No interaction requires) (Vulnerability ?) (Thu Mar 15 2012 - 10:08:31 CDT)
VMware Security Team
- VMSA-2012-0005 VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues (Fri Mar 16 2012 - 17:43:56 CDT)
- VMSA-2012-0004 VMware View privilege escalation and cross-site scripting (Fri Mar 16 2012 - 02:00:16 CDT)
- VMSA-2012-0003 VMware VirtualCenter Update and ESX 3.5 patch update JRE (Fri Mar 09 2012 - 00:29:08 CST)
- VMSA-2012-0002 VMware vCenter Chargeback Manager Information Leak and Denial of Service (Fri Mar 09 2012 - 00:26:46 CST)
voidloafergmail.com
- struts2 xsltResult Local code execution vulnerability (Thu Mar 22 2012 - 03:11:43 CDT)
VSR Advisories
- CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected) (Sat Mar 24 2012 - 11:40:42 CDT)
vulnsdionach.com
- SAP Business Objects XI R2 Infoview Multiple XSS (Thu Mar 08 2012 - 04:01:20 CST)
VUPEN Security Research
- VUPEN Security Research - Adobe Flash Player "Matrix3D" Remote Memory Corruption (CVE-2012-0768) (Mon Mar 19 2012 - 10:37:43 CDT)
xconhuayongxingan.com
- XCon 2012 XFocus Information Security Conference Call for Paper (Wed Mar 07 2012 - 01:26:27 CST)
YGN Ethical Hacker Group
- Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities (Mon Mar 05 2012 - 10:55:03 CST)
- Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability (Mon Mar 05 2012 - 10:03:35 CST)

Last message date: Fri Mar 30 2012 - 15:30:18 CDT
Archived on: Fri Mar 30 2012 - 15:30:18 CDT

173 messages sorted by: [ date ] [ thread ] [ subject ]