NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2012-03

Most recent messages
173 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Thu Mar 01 2012 - 11:30:07 CST
Ending: Fri Mar 30 2012 - 15:30:18 CDT

[ MDVSA-2012:028 ] libxslt securitymandriva.com (Thu Mar 01 2012 - 02:16:00 CST)
[Suspected Spam] FlashFXP v4.1.8.1701 - Buffer Overflow Vulnerability researchvulnerability-lab.com (Thu Mar 01 2012 - 11:19:04 CST)
[Suspected Spam] Endian UTM Firewall v2.4.x & v2.5.0 - Multiple Web Vulnerabilities researchvulnerability-lab.com (Thu Mar 01 2012 - 11:46:31 CST)
[SECURITY] [DSA 2423-1] movabletype-opensource security update Florian Weimer (Fri Mar 02 2012 - 13:32:21 CST)
Security Implications of Predictable IPv6 Fragment Identification values (rev'ed IETF I-D) Fernando Gont (Sat Mar 03 2012 - 18:00:14 CST)
Lastguru ASP GuestBook 'View.asp' - SQL Injection Vulnerability demonalex163.com (Sat Mar 03 2012 - 23:21:36 CST)
[SECURITY] [DSA 2424-1] libxml-atom-perl security update Florian Weimer (Sun Mar 04 2012 - 10:23:40 CST)
%windir%\temp\sso\ssoexec.dll (or: how trustworthy is Microsoft's build process) Stefan Kanthak (Sun Mar 04 2012 - 13:06:05 CST)
[SECURITY] [DSA 2425-1] plib security update Florian Weimer (Sun Mar 04 2012 - 15:13:44 CST)
Symfony2 Local File Disclosure - Security Advisory - SOS-12-002 Lists (Mon Mar 05 2012 - 05:21:54 CST)
Timesheet Next Gen 1.5.2 Multiple SQLi Thomas Richards (Fri Mar 02 2012 - 12:10:38 CST)
Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability YGN Ethical Hacker Group (Mon Mar 05 2012 - 10:03:35 CST)
Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities YGN Ethical Hacker Group (Mon Mar 05 2012 - 10:55:03 CST)
11in1 CMS v1.2.1 - SQL Injection Vulnerabilities adminv-lab (Mon Mar 05 2012 - 14:45:41 CST)
[TSI-ADV-1201] Path Traversal on Polycom Web Management Interface Joao Paulo Caldas Campello (Mon Mar 05 2012 - 15:42:58 CST)
[TSI-ADV-1202] Polycom Web Management Interface O.S. Command Injection Joao Paulo Caldas Campello (Mon Mar 05 2012 - 15:43:05 CST)
ESA-2012-013: RSA SecurID(r) Software Token Converter buffer overflow vulnerability Security_Alertemc.com (Mon Mar 05 2012 - 15:57:56 CST)
[SECURITY] [DSA 2426-1] gimp security update Florian Weimer (Tue Mar 06 2012 - 12:46:58 CST)
[SECURITY] [DSA 2427-1] imagemagick security update Florian Weimer (Tue Mar 06 2012 - 13:13:37 CST)
[security bulletin] HPSBUX02741 SSRT100728 rev.2 - HP-UX Apache Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Access Restriction Bypass security-alerthp.com (Tue Mar 06 2012 - 16:07:21 CST)
XCon 2012 XFocus Information Security Conference Call for Paper xconhuayongxingan.com (Wed Mar 07 2012 - 01:26:27 CST)
Multiple XSS in Fork CMS advisoryhtbridge.ch (Wed Mar 07 2012 - 05:26:12 CST)
Multiple SQL injections in rivettracker <=1.03 ali.raheemgmail.com (Wed Mar 07 2012 - 05:31:10 CST)
OSClass directory traversal (leads to arbitrary file upload) Filippo Cavallarin (Wed Mar 07 2012 - 09:23:04 CST)
[security bulletin] HPSBMU02744 SSRT100776 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information security-alerthp.com (Wed Mar 07 2012 - 12:12:58 CST)
[SECURITY] [DSA 2429-1] mysql-5.1 security update Florian Weimer (Wed Mar 07 2012 - 14:44:22 CST)
APPLE-SA-2012-03-07-1 iTunes 10.6 Apple Product Security (Wed Mar 07 2012 - 15:42:50 CST)
APPLE-SA-2012-03-07-2 iOS 5.1 Software Update Apple Product Security (Wed Mar 07 2012 - 15:43:39 CST)
APPLE-SA-2012-03-07-3 Apple TV 5.0 Apple Product Security (Wed Mar 07 2012 - 15:44:34 CST)
[Suspected Spam] Barracuda WAF 660 v7.6.0.028 - Cross Site Vulnerability researchvulnerability-lab.com (Wed Mar 07 2012 - 20:13:02 CST)
[Suspected Spam] Barracuda CudaTel v2.0.029.1 - Multiple Web Vulnerabilities researchvulnerability-lab.com (Wed Mar 07 2012 - 20:15:42 CST)
Ilient SysAid v8.5.05 - Multiple Web Vulnerabilities researchvulnerability-lab.com (Wed Mar 07 2012 - 20:16:23 CST)
Enterasys SecureStack Switch v6.x - Multiple Vulnerabilities researchvulnerability-lab.com (Wed Mar 07 2012 - 20:18:10 CST)
Pitrinec MacroToolworks 7.5 - Buffer Overflow Vulnerability researchvulnerability-lab.com (Wed Mar 07 2012 - 20:54:16 CST)
SAP Business Objects XI R2 Infoview Multiple XSS vulnsdionach.com (Thu Mar 08 2012 - 04:01:20 CST)
Iciniti Store SQL Injection - Security Advisory - SOS-12-003 Lists (Tue Mar 06 2012 - 23:53:17 CST)
gnome-terminal, xfce4-terminal, terminator and others write scrollback buffer to disk Mark Krenz (Tue Mar 06 2012 - 14:47:58 CST)
Eleytt Research ER-03-2012 Michal Bucko (Thu Mar 08 2012 - 12:53:11 CST)
[SECURITY] [DSA 2428-1] freetype security update Moritz Muehlenhoff (Thu Mar 08 2012 - 14:48:00 CST)
Re: gnome-terminal, xfce4-terminal, terminator and others write scrollback buffer to disk Dmitry Yu. Bolkhovityanov (Thu Mar 08 2012 - 18:57:47 CST)
VMSA-2012-0002 VMware vCenter Chargeback Manager Information Leak and Denial of Service VMware Security Team (Fri Mar 09 2012 - 00:26:46 CST)
VMSA-2012-0003 VMware VirtualCenter Update and ESX 3.5 patch update JRE VMware Security Team (Fri Mar 09 2012 - 00:29:08 CST)
Re: Fwd: 2.6.6 <= phpMyFAQ <= 2.6.8 XSS Henri Salo (Fri Mar 09 2012 - 01:43:47 CST)
LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption Markus Vervier (Fri Mar 09 2012 - 14:31:35 CST)
Synology Photo Station 5 - Reflected Cross-Site Scripting simon.ganieregmail.com (Sat Mar 10 2012 - 02:38:44 CST)
Wikidforum 2.10 Multiple security vulnerabilities sschurtzdarksecurity.de (Sat Mar 10 2012 - 04:13:12 CST)
Re: Ariadne 2.7.6 Multiple XSS vulnerabilities Henri Salo (Sat Mar 10 2012 - 04:59:35 CST)
[SECURITY] [DSA 2430-1] python-pam security update Moritz Muehlenhoff (Sat Mar 10 2012 - 09:51:34 CST)
[SECURITY] [DSA 2431-1] libdbd-pg-perl security update Moritz Muehlenhoff (Sun Mar 11 2012 - 05:25:32 CDT)
OSI Security: CheckPoint Firewall VPN - Information Disclosure Patrick Webster (Sun Mar 11 2012 - 20:57:17 CDT)
Android wireless accepts fake response (No interaction requires) (Vulnerability ?) Security Mailing List (Mon Mar 12 2012 - 01:25:01 CDT)
Aurora WebOPAC SQL Injection - Security Advisory - SOS-12-004 Lists (Mon Mar 12 2012 - 01:43:17 CDT)
APPLE-SA-2012-03-12-1 Safari 5.1.4 Apple Product Security (Mon Mar 12 2012 - 12:11:57 CDT)
[SECURITY] [DSA 2432-1] libyaml-libyaml-perl security update Moritz Muehlenhoff (Mon Mar 12 2012 - 12:56:39 CDT)
[security bulletin] HPSBMU02746 SSRT100781 rev.1 - HP Data Protector Express, Remote Denial of Service (DoS), Execution of Arbitrary Code security-alerthp.com (Mon Mar 12 2012 - 21:47:27 CDT)
Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability [CVE-2012-1417] Narendra Shinde (Tue Mar 13 2012 - 01:34:02 CDT)
ESA-2012-012: EMC Documentum eRoom Multiple Vulnerabilities Security_Alertemc.com (Tue Mar 13 2012 - 09:33:45 CDT)
Announcing Hackademic CFP B Potter (Tue Mar 13 2012 - 09:50:00 CDT)
PrivaWall Antivirus Office XML Format Evasion/Bypass Vulnerability moshezcomsecglobal.com (Tue Mar 13 2012 - 10:02:51 CDT)
Oracle Exadata Infiniband Switch default logins and world readable shadow file larry0me.com (Wed Mar 14 2012 - 14:17:24 CDT)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Cisco Systems Product Security Incident Response Team (Wed Mar 14 2012 - 11:17:13 CDT)
Cisco Security Advisory: Cisco Firewall Services Module Crafted Protocol Independent Multicast Message Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 14 2012 - 11:17:13 CDT)
Cisco Security Advisory: Cisco ASA 5500 Series Adaptive Security Appliance Clientless VPN ActiveX Control Remote Code Execution Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 14 2012 - 11:16:48 CDT)
Struts2 Security Challenge Ivan Buetler (Wed Mar 14 2012 - 13:21:41 CDT)
Re: Android wireless accepts fake response (No interaction requires) (Vulnerability ?) Security Mailing List (Wed Mar 14 2012 - 22:33:19 CDT)
nginx fix for malformed HTTP responses from upstream servers security-bulletinnginx.com (Thu Mar 15 2012 - 08:48:47 CDT)
WikyBlog 1.7.3RC2 XSS vulnerability sschurtzdarksecurity.de (Thu Mar 15 2012 - 12:31:41 CDT)
[SECURITY] [DSA 2433-1] iceweasel security update Moritz Muehlenhoff (Thu Mar 15 2012 - 16:42:10 CDT)
AST-2012-002: Remote Crash Vulnerability in Milliwatt Application Asterisk Security Team (Thu Mar 15 2012 - 17:04:45 CDT)
AST-2012-003: Stack Buffer Overflow in HTTP Manager Asterisk Security Team (Thu Mar 15 2012 - 17:05:31 CDT)
VMSA-2012-0004 VMware View privilege escalation and cross-site scripting VMware Security Team (Fri Mar 16 2012 - 02:00:16 CDT)
[ MDVSA-2012:029 ] pidgin securitymandriva.com (Fri Mar 16 2012 - 06:11:01 CDT)
[ MDVSA-2012:030 ] systemd securitymandriva.com (Fri Mar 16 2012 - 14:28:00 CDT)
[Announcement] ClubHack Mag - Call for Articles abhijeetchmag.in (Fri Mar 16 2012 - 01:11:16 CDT)
VMSA-2012-0005 VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues VMware Security Team (Fri Mar 16 2012 - 17:43:56 CDT)
[ MDVSA-2012:031 ] firefox securitymandriva.com (Sat Mar 17 2012 - 11:19:00 CDT)
Re: WikyBlog 1.7.3RC2 XSS vulnerability Henri Salo (Sun Mar 18 2012 - 04:50:05 CDT)
Android wipe unreliable Jan Schejbal (Sun Mar 18 2012 - 12:47:09 CDT)
[security bulletin] HPSBPI02728 SSRT100692 rev.5 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default security-alerthp.com (Mon Mar 19 2012 - 10:14:36 CDT)
at32 ReverseProxy - Multiple HTTP Header Field Denial Of Service Vulnerability demonalex163.com (Sun Mar 18 2012 - 22:04:05 CDT)
ESA-2012-014: RSA enVision Multiple Vulnerabilities Security_Alertemc.com (Sun Mar 18 2012 - 23:13:22 CDT)
Dell Webcam Software Bundled ActiveX Control CrazyTalk4Native.dll sprintf Remote Buffer Overflow Vulnerability nospamgmail.it (Mon Mar 19 2012 - 09:07:09 CDT)
SEC Consult SA-20120315-0 :: Multiple permanent XSS vulnerabilities in EMC Documentum eRoom SEC Consult Vulnerability Lab (Thu Mar 15 2012 - 10:51:10 CDT)
Re: Android wireless accepts fake response (No interaction requires) (Vulnerability ?) vincecodeproject.com (Thu Mar 15 2012 - 10:08:31 CDT)
RE: Android wireless accepts fake response (No interaction requires) (Vulnerability ?) Joe Arnold (Thu Mar 15 2012 - 12:06:28 CDT)
Tor Browser Bundle for Linux (2.2.35-8) "EVIL bug" CXySuYg5DuKktzXSafe-mail.net (Mon Mar 19 2012 - 11:33:03 CDT)
ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Vulnerability nospamgmail.it (Mon Mar 19 2012 - 11:40:20 CDT)
VUPEN Security Research - Adobe Flash Player "Matrix3D" Remote Memory Corruption (CVE-2012-0768) VUPEN Security Research (Mon Mar 19 2012 - 10:37:43 CDT)
Evasion attacks expoliting file-parsing vulnerabilities in antivirus products sumanjgmail.com (Sun Mar 18 2012 - 23:22:03 CDT)
Aruba Networks multiple advisories: OS command injection in RAP web interface and 802.1X EAP-TLS user authentication bypass RGill (Mon Mar 19 2012 - 13:45:54 CDT)
[SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update Thijs Kinkhorst (Mon Mar 19 2012 - 14:24:30 CDT)
Re: [oss-security] Case YVS Image Gallery Kurt Seifried (Mon Mar 19 2012 - 13:53:31 CDT)
[SECURITY] [DSA 2434-1] nginx security update Luciano Bello (Mon Mar 19 2012 - 17:56:59 CDT)
[SECURITY] [DSA 2435-1] gnash security update Gabriele Giacone (Mon Mar 19 2012 - 18:05:34 CDT)
[MajorSecurity-SA-2012-014]Apple Safari on iOS 5.1 - Adressbar spoofing vulnerability david.kurzmajorsecurity.net (Tue Mar 20 2012 - 03:39:47 CDT)
[security bulletin] HPSBMU02752 SSRT100802 rev.1 HP Insight Control Software for Linux (IC-Linux), Remote Execution of Arbitrary Code, Denial of Service (DoS) security-alerthp.com (Tue Mar 20 2012 - 10:06:03 CDT)
Regarding MS12-020 Thor \(Hammer of God\) (Tue Mar 20 2012 - 10:11:33 CDT)
[ MDVSA-2012:032 ] mozilla securitymandriva.com (Tue Mar 20 2012 - 13:51:01 CDT)
Mu Dynamics, Inc. Security Advisories MU-201202-01 and MU-201202-02 for GnuTLS and Libtasn1 Security (Tue Mar 20 2012 - 18:40:02 CDT)
Cyberoam Unified Threat Management: Insecure Password Handling Saurabh Harit (Wed Mar 21 2012 - 01:41:13 CDT)
Cyberoam Unified Threat Management: OS Command Execution Saurabh Harit (Wed Mar 21 2012 - 01:45:16 CDT)
Multiple vulnerabilities in Open Journal Systems (OJS) advisoryhtbridge.com (Wed Mar 21 2012 - 05:43:22 CDT)
CMSimple_XH 1.5.2 Cross-site Scripting vulnerability sschurtzdarksecurity.de (Wed Mar 21 2012 - 06:19:00 CDT)
[ MDVSA-2012:033 ] libpng securitymandriva.com (Wed Mar 21 2012 - 07:02:00 CDT)
Seeker Advisory: Insecure Redirect in .NET Form Authentication - Redirect From Login Mechanism (ReturnURL Parameter) Irene Abezgauz (Wed Mar 21 2012 - 10:10:12 CDT)
[SECURITY] [DSA 2437-1] icedove security update Moritz Muehlenhoff (Wed Mar 21 2012 - 13:58:26 CDT)
RE: Regarding MS12-020 Jim Harrison (Tue Mar 20 2012 - 15:28:18 CDT)
RE: Regarding MS12-020 Thor \(Hammer of God\) (Tue Mar 20 2012 - 15:43:40 CDT)
CA20120320-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Wed Mar 21 2012 - 15:34:12 CDT)
Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT ActiveX Control PlayerPT.ocx sprintf Buffer Overflow Vulnerability nospamgmail.it (Wed Mar 21 2012 - 20:55:41 CDT)
struts2 xsltResult Local code execution vulnerability voidloafergmail.com (Thu Mar 22 2012 - 03:11:43 CDT)
[CVE-2012-0047] Apache Wicket XSS vulnerability via pageMapName request parameter Martin Grigorov (Thu Mar 22 2012 - 04:49:53 CDT)
[CVE-2012-1089] Apache Wicket serving of hidden files vulnerability Martin Grigorov (Thu Mar 22 2012 - 04:52:30 CDT)
Prado TJavaScript::encode() script injection vulnerability gabor.berczidevworx.hu (Thu Mar 22 2012 - 07:25:29 CDT)
'PHP Grade Book' Unauthenticated SQL Database Export (CVE-2012-1670) Mark Stanislav (Thu Mar 22 2012 - 09:21:28 CDT)
'phpMoneyBooks' Local File Inclusion (CVE-2012-1669) Mark Stanislav (Thu Mar 22 2012 - 09:38:01 CDT)
[SECURITY] [DSA 2438-1] raptor security update Moritz Muehlenhoff (Thu Mar 22 2012 - 11:44:46 CDT)
[ANNOUNCE] Apache Traffic Server releases for security incident CVE-2012-0256 Leif Hedstrom (Thu Mar 22 2012 - 12:50:01 CDT)
[SECURITY] [DSA 2439-1] libpng security update Moritz Muehlenhoff (Thu Mar 22 2012 - 17:22:28 CDT)
[ MDVSA-2012:034 ] libzip securitymandriva.com (Fri Mar 23 2012 - 05:23:01 CDT)
[ MDVSA-2012:035 ] file securitymandriva.com (Fri Mar 23 2012 - 05:47:00 CDT)
[ MDVSA-2012:036 ] libsoup securitymandriva.com (Fri Mar 23 2012 - 09:28:01 CDT)
[ MDVSA-2012:037 ] cyrus-imapd securitymandriva.com (Fri Mar 23 2012 - 10:22:02 CDT)
CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected) VSR Advisories (Sat Mar 24 2012 - 11:40:42 CDT)
[SECURITY] [DSA 2440-1] libtasn1-3 security update Florian Weimer (Sat Mar 24 2012 - 17:22:54 CDT)
SQL injection attack possible when connecting to PostgreSQL 9.1 with version 8.1 JDBC driver Steffen Dettmer (Sun Mar 25 2012 - 07:37:00 CDT)
[SECURITY] [DSA 2441-1] gnutls26 security update Florian Weimer (Sun Mar 25 2012 - 13:53:32 CDT)
Traffic amplification via Quake 3-based servers Simon McVittie (Mon Mar 26 2012 - 05:28:48 CDT)
[ MDVSA-2012:038 ] openssl securitymandriva.com (Mon Mar 26 2012 - 11:41:00 CDT)
Matthew1471s ASP BlogX - XSS Vulnerabilities demonalex163.com (Mon Mar 26 2012 - 11:03:17 CDT)
[SECURITY] [DSA 2442-1] openarena security update Florian Weimer (Mon Mar 26 2012 - 15:05:46 CDT)
[SECURITY] [DSA 2443-1] linux-2.6 security update dann frazier (Mon Mar 26 2012 - 19:35:57 CDT)
[PRE-SA-2012-02] Incorrect loop construct and numeric overflow in libzip Timo Warns (Tue Mar 27 2012 - 02:34:00 CDT)
[ MDVSA-2012:039 ] libtasn1 securitymandriva.com (Tue Mar 27 2012 - 05:42:00 CDT)
[waraxe-2012-SA#080] - Multiple Vulnerabilities in NextBBS 0.6.0 come2waraxeyahoo.com (Tue Mar 27 2012 - 09:10:06 CDT)
PcwRunAs Password Obfuscation Design Flaw otrbockcay.de (Mon Mar 26 2012 - 05:17:03 CDT)
[ MDVSA-2012:040 ] gnutls securitymandriva.com (Tue Mar 27 2012 - 10:52:01 CDT)
Re: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected) Solar Designer (Tue Mar 27 2012 - 12:13:52 CDT)
[ MDVSA-2012:041 ] expat securitymandriva.com (Tue Mar 27 2012 - 13:53:01 CDT)
[ MDVSA-2012:042 ] wireshark securitymandriva.com (Wed Mar 28 2012 - 08:45:00 CDT)
[security bulletin] HPSBMU02747 SSRT100771 rev.1 - HP OpenView Network Node Manager (OV NNM) Running Apache Tomcat, Remote Denial of Service (DoS) security-alerthp.com (Wed Mar 28 2012 - 08:55:55 CDT)
[security bulletin] HPSBMU02748 SSRT100772 rev.1 - HP OpenView Network Node Manager (OV NNM) Running Apache HTTP Server, Remote Unauthorized Disclosure of Information, Unauthorized Modification, Denial of Service (DoS) security-alerthp.com (Wed Mar 28 2012 - 08:56:29 CDT)
[security bulletin] HPSBMU02744 SSRT100776 rev.2 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information security-alerthp.com (Wed Mar 28 2012 - 08:57:28 CDT)
[security bulletin] HPSBUX02755 SSRT100667 rev.1 - HP-UX WBEM, Remote Unauthorized Access to Diagnostic Data security-alerthp.com (Wed Mar 28 2012 - 08:57:55 CDT)
[security bulletin] HPSBMU02756 SSRT100596 rev.1 - HP Performance Manager Running on HP-UX, Linux, Solaris and Windows, Remote Execution of Arbitrary Code, Denial of Service (DoS) security-alerthp.com (Wed Mar 28 2012 - 08:58:18 CDT)
Cisco Security Advisory: Cisco IOS Software RSVP Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 28 2012 - 11:20:57 CDT)
Cisco Security Advisory: Cisco IOS Software Smart Install Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 28 2012 - 11:20:57 CDT)
Cisco Security Advisory: Cisco IOS Internet Key Exchange Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 28 2012 - 11:20:57 CDT)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS Software Traffic Optimization Features Cisco Systems Product Security Incident Response Team (Wed Mar 28 2012 - 11:20:57 CDT)
Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 28 2012 - 11:20:57 CDT)
Cisco Security Advisory: Cisco IOS Software Reverse SSH Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Wed Mar 28 2012 - 11:20:57 CDT)
TRENDnet SecurView TV-IP121WN Wireless Internet Camera UltraMJCam ActiveX Control OpenFileDlg WideCharToMultiByte Remote Stack Buffer Overflow nospamgmail.it (Wed Mar 28 2012 - 12:16:15 CDT)
Quest InTrust 10.4.x Annotation Objects ActiveX Control AnnotateX.dll Uninitialized Pointer Remote Code Execution nospamgmail.it (Wed Mar 28 2012 - 12:30:06 CDT)
D-Link SecuriCam DCS-5605 Network Surveillance ActiveX Control DcsCliCtrl.dll lstrcpyW Remote Buffer Overflow Vulnerability nospamgmail.it (Wed Mar 28 2012 - 12:40:29 CDT)
Quest InTrust 10.4.x ReportTree and SimpleTree Classes ArDoc.dll ActiveX Control Remote File Creation / Overwrite Vulnerability nospamgmail.it (Wed Mar 28 2012 - 13:00:01 CDT)
OWASP AppSec Research EU CFP/CFT OWASP AppSec EU (Wed Mar 28 2012 - 16:58:31 CDT)
[SECURITY] [DSA 2444-1] tryton-server security update Florian Weimer (Thu Mar 29 2012 - 01:06:23 CDT)
NGS00153 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Reflective XSS allowing an attacker to gain session tokens ResearchNGSSecure (Thu Mar 29 2012 - 02:47:04 CDT)
NGS00154 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Session hijacking and bypassing client-side session timeouts ResearchNGSSecure (Thu Mar 29 2012 - 02:47:55 CDT)
NGS00155 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Any logged-in user can bypass controls to reset passwords of other administrators ResearchNGSSecure (Thu Mar 29 2012 - 02:48:55 CDT)
NGS00156 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Active sesssion tokens of other users are disclosed within the UI ResearchNGSSecure (Thu Mar 29 2012 - 02:49:45 CDT)
NGS00157 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Password hashes can be recovered from a system backup and easily cracked ResearchNGSSecure (Thu Mar 29 2012 - 02:50:31 CDT)
NGS00158 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Arbitrary file download is possible with a crafted URL when logged in as any user ResearchNGSSecure (Thu Mar 29 2012 - 02:51:29 CDT)
[ MDVSA-2012:043 ] nginx securitymandriva.com (Thu Mar 29 2012 - 04:21:00 CDT)
[ MDVSA-2012:044 ] cvs securitymandriva.com (Thu Mar 29 2012 - 06:21:01 CDT)
Cross-site scripting vulnerability in Invision Power Board version 3.2.3 Netsparker Advisories (Thu Mar 29 2012 - 06:29:48 CDT)
[waraxe-2012-SA#081] - Multiple Vulnerabilities in Coppermine 1.5.18 come2waraxeyahoo.com (Thu Mar 29 2012 - 13:39:16 CDT)
Bitsmith PS Knowbase 3.2.3 - Buffer Overflow Vulnerability Research (Thu Mar 29 2012 - 22:16:08 CDT)
PHP 5.4/5.3 deprecated eregi() memory_limit bypass cxibcxsecurity.com (Fri Mar 30 2012 - 08:05:55 CDT)
[ MDVSA-2012:045 ] gnutls securitymandriva.com (Fri Mar 30 2012 - 11:45:02 CDT)
Intuit Help System Protocol URL Heap Corruption and Memory Leak ds.adv.pubgmail.com (Fri Mar 30 2012 - 11:35:27 CDT)
Intuit Help System Protocol File Retrieval ds.adv.pubgmail.com (Fri Mar 30 2012 - 11:37:18 CDT)
VMware High-Bandwidth Backdoor ROM Overwrite Privilege Elevation ds.adv.pubgmail.com (Fri Mar 30 2012 - 11:49:05 CDT)

Last message date: Fri Mar 30 2012 - 15:30:18 CDT
Archived on: Fri Mar 30 2012 - 15:30:18 CDT

173 messages sorted by: [ author ] [ thread ] [ subject ]