NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Full-Disclosure> 2009-04

318 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Wed Apr 01 2009 - 08:03:45 CDT
Ending: Thu Apr 30 2009 - 22:32:02 CDT

[Full-disclosure] .NET Framework Rootkits
- Peter Besenbruch (Tue Apr 07 2009 - 20:45:17 CDT)
- Erez Metula (Tue Apr 07 2009 - 08:34:57 CDT)
[Full-disclosure] [ GLSA 200904-02 ] GLib: Execution of arbitrary code
- Robert Buchholz (Fri Apr 03 2009 - 08:47:56 CDT)
[Full-disclosure] [ GLSA 200904-03 ] Gnumeric: Untrusted search path
- Robert Buchholz (Fri Apr 03 2009 - 08:48:30 CDT)
[Full-disclosure] [ GLSA 200904-04 ] WeeChat: Denial of Service
- Tobias Heinlein (Sat Apr 04 2009 - 12:22:54 CDT)
[Full-disclosure] [ GLSA 200904-05 ] ntp: Certificate validation error
- Pierre-Yves Rofes (Sun Apr 05 2009 - 08:56:49 CDT)
[Full-disclosure] [ GLSA 200904-06 ] Eye of GNOME: Untrusted search path
- Pierre-Yves Rofes (Mon Apr 06 2009 - 16:56:18 CDT)
[Full-disclosure] [ GLSA 200904-07 ] Xpdf: Untrusted search path
- Robert Buchholz (Tue Apr 07 2009 - 05:18:22 CDT)
[Full-disclosure] [ GLSA 200904-08 ] OpenSSL: Denial of Service
- Robert Buchholz (Tue Apr 07 2009 - 05:19:17 CDT)
[Full-disclosure] [ GLSA 200904-09 ] MIT Kerberos 5: Multiple vulnerabilities
- Robert Buchholz (Wed Apr 08 2009 - 17:46:10 CDT)
[Full-disclosure] [ GLSA 200904-10 ] Avahi: Denial of Service
- Robert Buchholz (Wed Apr 08 2009 - 17:48:04 CDT)
[Full-disclosure] [ GLSA 200904-11 ] Tor: Multiple vulnerabilities
- Robert Buchholz (Wed Apr 08 2009 - 17:48:56 CDT)
[Full-disclosure] [ GLSA 200904-12 ] Wicd: Information disclosure
- Tobias Heinlein (Fri Apr 10 2009 - 08:57:05 CDT)
[Full-disclosure] [ GLSA 200904-13 ] Ventrilo: Denial of Service
- Pierre-Yves Rofes (Tue Apr 14 2009 - 15:32:39 CDT)
[Full-disclosure] [ GLSA 200904-14 ] F-PROT Antivirus: Denial of Service
- Pierre-Yves Rofes (Tue Apr 14 2009 - 15:47:07 CDT)
[Full-disclosure] [ GLSA 200904-15 ] mpg123: User-assisted execution of arbitrary code
- Robert Buchholz (Thu Apr 16 2009 - 17:02:51 CDT)
[Full-disclosure] [ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code
- Pierre-Yves Rofes (Fri Apr 17 2009 - 14:03:02 CDT)
[Full-disclosure] [ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code
- Robert Buchholz (Sat Apr 18 2009 - 06:11:39 CDT)
[Full-disclosure] [ GLSA 200904-18 ] udev: Multiple vulnerabilities
- Pierre-Yves Rofes (Sat Apr 18 2009 - 14:10:15 CDT)
[Full-disclosure] [ GLSA 200904-19 ] LittleCMS: Multiple vulnerabilities
- Pierre-Yves Rofes (Sun Apr 19 2009 - 10:43:29 CDT)
[Full-disclosure] [ GLSA 200904-20 ] CUPS: Multiple vulnerabilities
- Pierre-Yves Rofes (Thu Apr 23 2009 - 16:55:36 CDT)
[Full-disclosure] [ MDVA-2009:057 ] usermode
- securitymandriva.com (Tue Apr 28 2009 - 19:47:00 CDT)
[Full-disclosure] [ MDVSA-2009:083 ] mozilla-thunderbird
- securitymandriva.com (Wed Apr 01 2009 - 07:40:01 CDT)
[Full-disclosure] [ MDVSA-2009:084 ] firefox
- securitymandriva.com (Wed Apr 01 2009 - 08:39:00 CDT)
[Full-disclosure] [ MDVSA-2009:085 ] gstreamer0.10-plugins-base
- securitymandriva.com (Thu Apr 02 2009 - 10:30:01 CDT)
[Full-disclosure] [ MDVSA-2009:086 ] gstreamer-plugins
- securitymandriva.com (Fri Apr 03 2009 - 19:27:00 CDT)
[Full-disclosure] [ MDVSA-2009:087 ] openssl
- securitymandriva.com (Fri Apr 03 2009 - 17:39:01 CDT)
[Full-disclosure] [ MDVSA-2009:088 ] wireshark
- securitymandriva.com (Thu Apr 09 2009 - 13:36:00 CDT)
[Full-disclosure] [ MDVSA-2009:089 ] opensc
- securitymandriva.com (Thu Apr 09 2009 - 21:13:00 CDT)
[Full-disclosure] [ MDVSA-2009:090 ] php
- securitymandriva.com (Fri Apr 10 2009 - 11:12:01 CDT)
[Full-disclosure] [ MDVSA-2009:091 ] mod_perl
- securitymandriva.com (Sun Apr 12 2009 - 07:23:00 CDT)
[Full-disclosure] [ MDVSA-2009:092 ] ntp
- securitymandriva.com (Mon Apr 13 2009 - 14:17:01 CDT)
[Full-disclosure] [ MDVSA-2009:093 ] mpg123
- securitymandriva.com (Wed Apr 22 2009 - 03:06:00 CDT)
[Full-disclosure] [ MDVSA-2009:094 ] mysql
- securitymandriva.com (Wed Apr 22 2009 - 11:39:00 CDT)
[Full-disclosure] [ MDVSA-2009:095 ] ghostscript
- securitymandriva.com (Fri Apr 24 2009 - 13:49:01 CDT)
[Full-disclosure] [ MDVSA-2009:096 ] printer-drivers
- securitymandriva.com (Fri Apr 24 2009 - 14:36:00 CDT)
[Full-disclosure] [ MDVSA-2009:096-1 ] printer-drivers
- securitymandriva.com (Mon Apr 27 2009 - 12:53:00 CDT)
[Full-disclosure] [ MDVSA-2009:097 ] clamav
- securitymandriva.com (Fri Apr 24 2009 - 17:43:00 CDT)
- securitymandriva.com (Fri Apr 24 2009 - 16:55:00 CDT)
[Full-disclosure] [ MDVSA-2009:098 ] krb5
- securitymandriva.com (Mon Apr 27 2009 - 11:15:01 CDT)
[Full-disclosure] [ MDVSA-2009:099 ] openafs
- securitymandriva.com (Mon Apr 27 2009 - 18:14:01 CDT)
[Full-disclosure] [ MDVSA-2009:101 ] xpdf
- securitymandriva.com (Tue Apr 28 2009 - 18:05:00 CDT)
[Full-disclosure] [ MDVSA-2009:103 ] udev
- securitymandriva.com (Thu Apr 30 2009 - 22:01:00 CDT)
[Full-disclosure] [ MDVSA-2009:104 ] udev
- securitymandriva.com (Thu Apr 30 2009 - 22:09:00 CDT)
[Full-disclosure] [/bin/sh] Tweet Tweet....hax hax....
- Mikeyy Mooney (Thu Apr 16 2009 - 21:11:49 CDT)
- Mikeyy Mooney (Thu Apr 16 2009 - 21:26:52 CDT)
[Full-disclosure] [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
- Sergio 'shadown' Alvarez (Thu Apr 23 2009 - 04:30:34 CDT)
- Core Security Technologies advisories (Wed Apr 22 2009 - 17:56:28 CDT)
[Full-disclosure] [Bkis-06-2009] GOM Player Subtitle Buffer Overflow Vulnerability
- Bkis (Wed Apr 08 2009 - 03:00:05 CDT)
[Full-disclosure] [Bkis-07-2009] 010 Editor Multiple Buffer Overflow Vulnerabilities
- Tavis Ormandy (Wed Apr 22 2009 - 04:31:25 CDT)
- Bkis (Wed Apr 22 2009 - 00:25:07 CDT)
[Full-disclosure] [BMSA 2009-04] Remote DoS in Internet Explorer
- Nam Nguyen (Sat Apr 11 2009 - 02:15:15 CDT)
[Full-disclosure] [follow-up] razorCMS - Multiple Vulnerabilities
- Jeremi Gosney (Thu Apr 16 2009 - 13:26:32 CDT)
[Full-disclosure] [IMF 2009] 2nd Call for Papers - Submission Open
- Oliver Goebel (Thu Apr 16 2009 - 19:51:56 CDT)
[Full-disclosure] [OPENX-SA-2009-002] OpenX 2.4.11, 2.6.5, 2.8.0 fix multiple vulnerabilities
- Matteo Beccati (Wed Apr 01 2009 - 17:33:16 CDT)
[Full-disclosure] [Positive Technologies SA 2008-05] VMware Multiple Products vmci.sys Privilege Escalation Vulnerability
- Valery Marchuk (Mon Apr 06 2009 - 09:10:52 CDT)
[Full-disclosure] [Positive Technologies SA 2008-07] VMware Multiple Products hcmon.sys Denial of Service Vulnerability
- Valery Marchuk (Mon Apr 06 2009 - 09:34:24 CDT)
[Full-disclosure] [Positive Technologies SA 2009-01] PGP Desktop Pgpdisk.sys And Pgpwded.sys Multiple Vulnerabilities
- Valery Marchuk (Mon Apr 13 2009 - 10:38:43 CDT)
[Full-disclosure] [SECURITY] [DSA 1754-1] New roundup packages fix privilege escalation
- Florian Weimer (Thu Apr 09 2009 - 15:53:23 CDT)
[Full-disclosure] [SECURITY] [DSA 1761-1] New moodle packages fix file disclosure
- Nico Golde (Fri Apr 03 2009 - 08:35:39 CDT)
[Full-disclosure] [SECURITY] [DSA 1762-1] New icu packages fix cross site scripting
- Steffen Joeris (Thu Apr 02 2009 - 08:41:03 CDT)
[Full-disclosure] [SECURITY] [DSA 1763-1] New openssl packages fix denial of service
- Moritz Muehlenhoff (Mon Apr 06 2009 - 11:25:35 CDT)
[Full-disclosure] [SECURITY] [DSA 1764-1] New tunapie packages fix several vulnerabilities
- Moritz Muehlenhoff (Tue Apr 07 2009 - 16:44:14 CDT)
[Full-disclosure] [SECURITY] [DSA 1765-1] New horde3 packages fix several vulnerabilities
- Steffen Joeris (Wed Apr 08 2009 - 08:22:34 CDT)
[Full-disclosure] [SECURITY] [DSA 1766-1] New krb5 packages fix several vulnerabilities
- Nico Golde (Wed Apr 08 2009 - 20:33:24 CDT)
[Full-disclosure] [SECURITY] [DSA 1767-1] New multipath-tools packages fix denial of service
- Nico Golde (Thu Apr 09 2009 - 09:18:13 CDT)
[Full-disclosure] [SECURITY] [DSA 1768-1] New openafs packages potential code execution
- Florian Weimer (Fri Apr 10 2009 - 09:51:13 CDT)
[Full-disclosure] [SECURITY] [DSA 1769-1] New openjdk-6 packages fix arbitrary code execution
- Florian Weimer (Sat Apr 11 2009 - 09:38:24 CDT)
[Full-disclosure] [SECURITY] [DSA 1770-1] New imp4 packages fix cross-site scripting
- Steffen Joeris (Mon Apr 13 2009 - 10:10:07 CDT)
[Full-disclosure] [SECURITY] [DSA 1771-1] New clamav packages fix several vulnerabilities
- Florian Weimer (Wed Apr 15 2009 - 14:48:10 CDT)
[Full-disclosure] [SECURITY] [DSA 1772-1] New udev packages fix privilege escalation
- Florian Weimer (Thu Apr 16 2009 - 05:30:59 CDT)
[Full-disclosure] [SECURITY] [DSA 1773-1] New cups packages fix arbitrary code execution
- Steffen Joeris (Thu Apr 16 2009 - 21:53:46 CDT)
[Full-disclosure] [SECURITY] [DSA 1774-1] New ejabberd packages fix cross-site scripting
- Steffen Joeris (Fri Apr 17 2009 - 02:12:42 CDT)
[Full-disclosure] [SECURITY] [DSA 1775-1] New php-json-ext packages fix denial of service
- Steffen Joeris (Mon Apr 20 2009 - 04:28:51 CDT)
[Full-disclosure] [SECURITY] [DSA 1776-1] New slurm-llnl packages fix privilege escalation
- Thijs Kinkhorst (Tue Apr 21 2009 - 05:02:31 CDT)
[Full-disclosure] [SECURITY] [DSA 1777-1] New git-core packages fix privilege escalation
- Thijs Kinkhorst (Tue Apr 21 2009 - 05:22:59 CDT)
[Full-disclosure] [SECURITY] [DSA 1778-1] New mahara packages fix cross-site scripting
- Nico Golde (Wed Apr 22 2009 - 11:50:47 CDT)
[Full-disclosure] [SECURITY] [DSA 1779-1] New apt packages fix several vulnerabilities
- Thijs Kinkhorst (Sun Apr 26 2009 - 10:36:06 CDT)
[Full-disclosure] [SECURITY] [DSA 1780-1] New libdbd-pg-perl packages fix potential code execution
- Florian Weimer (Tue Apr 28 2009 - 13:34:37 CDT)
[Full-disclosure] [SECURITY] [DSA 1781-1] New ffmpeg-debian packages fix arbitrary code execution
- Steffen Joeris (Wed Apr 29 2009 - 02:00:35 CDT)
[Full-disclosure] [SECURITY] [DSA 1782-1] New mplayer packages fix arbitrary code execution
- Steffen Joeris (Wed Apr 29 2009 - 02:01:08 CDT)
[Full-disclosure] [SECURITY] [DSA 1783-1] New mysql-dfsg-5.0 packages fix multiple vulnerabilities
- Devin Carraway (Wed Apr 29 2009 - 03:24:32 CDT)
[Full-disclosure] [tool] efipw (new OFPW tool)
- my.hndl (Mon Apr 13 2009 - 02:49:49 CDT)
[Full-disclosure] [Tool] sqlmap 0.7rc1 released
- Bernardo Damele A. G. (Wed Apr 22 2009 - 09:29:26 CDT)
[Full-disclosure] [tool] sqlsus 0.3 released !
- sativouf (Sun Apr 05 2009 - 19:10:47 CDT)
[Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass
- Thierry Zoller (Fri Apr 03 2009 - 12:20:01 CDT)
- Jan G.B. (Fri Apr 03 2009 - 10:52:33 CDT)
- Thierry Zoller (Thu Apr 02 2009 - 09:27:54 CDT)
[Full-disclosure] [TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details)
- Thierry Zoller (Thu Apr 02 2009 - 10:10:48 CDT)
[Full-disclosure] [TZO-07-2009] F-PROT ZIP Method evasion
- Thierry Zoller (Thu Apr 02 2009 - 10:25:37 CDT)
[Full-disclosure] [TZO-08-2009] Bitdefender generic bypass/evasion
- Thierry Zoller (Fri Apr 17 2009 - 09:08:49 CDT)
[Full-disclosure] [TZO-09-2009] Avast bypass / evasion (Limited details)
- Thierry Zoller (Fri Apr 17 2009 - 09:23:25 CDT)
[Full-disclosure] [TZO-09-2009] NOD32 (Eset) bypass / evasion (Limited details)
- Thierry Zoller (Fri Apr 17 2009 - 09:33:50 CDT)
[Full-disclosure] [TZO-11-2009] Fortinet bypass / evasion (Limited details)
- Thierry Zoller (Fri Apr 17 2009 - 09:42:34 CDT)
[Full-disclosure] [TZO-12-2009] SUN / Oracle JVM Remote code execution
- Thierry Zoller (Wed Apr 22 2009 - 08:34:03 CDT)
[Full-disclosure] [TZO-13-2009] Avira Antivir generic CAB evasion / bypass
- Thierry Zoller (Mon Apr 27 2009 - 09:39:32 CDT)
[Full-disclosure] [TZO-14-2009] Comodo Antivirus RAR evasion
- Thierry Zoller (Mon Apr 27 2009 - 09:41:57 CDT)
[Full-disclosure] [TZO-15-2009] Aladdin eSafe generic bypass - Forced release
- Thierry Zoller (Mon Apr 27 2009 - 09:49:22 CDT)
[Full-disclosure] [TZO-16-2009] Nod32 CAB bypass/evasion
- Thierry Zoller (Wed Apr 29 2009 - 09:02:24 CDT)
[Full-disclosure] [TZO-17-2009]Trendmicro multiple bypass/evasions
- Thierry Zoller (Wed Apr 29 2009 - 09:06:16 CDT)
[Full-disclosure] [TZO-18-2009] Mcafee multiple evasions/bypasses (RAR, ZIP)
- Thierry Zoller (Wed Apr 29 2009 - 18:26:35 CDT)
[Full-disclosure] [USN-751-1] Linux kernel vulnerabilities
- Kees Cook (Mon Apr 06 2009 - 19:04:30 CDT)
[Full-disclosure] [USN-752-1] Linux kernel vulnerabilities
- Kees Cook (Tue Apr 07 2009 - 12:37:12 CDT)
[Full-disclosure] [USN-753-1] PostgreSQL vulnerability
- Marc Deslauriers (Tue Apr 07 2009 - 10:43:17 CDT)
[Full-disclosure] [USN-754-1] ClamAV vulnerabilities
- Jamie Strandboge (Tue Apr 07 2009 - 14:32:12 CDT)
[Full-disclosure] [USN-755-1] Kerberos vulnerabilities
- Kees Cook (Tue Apr 07 2009 - 18:34:59 CDT)
[Full-disclosure] [USN-756-1] ClamAV vulnerability
- Jamie Strandboge (Mon Apr 13 2009 - 13:58:50 CDT)
[Full-disclosure] [USN-757-1] Ghostscript vulnerabilities
- Marc Deslauriers (Wed Apr 15 2009 - 09:39:15 CDT)
[Full-disclosure] [USN-758-1] udev vulnerabilities
- Kay Nettle (Sun Apr 19 2009 - 08:09:31 CDT)
- Kees Cook (Wed Apr 15 2009 - 12:07:41 CDT)
[Full-disclosure] [USN-759-1] poppler vulnerabilities
- Marc Deslauriers (Thu Apr 16 2009 - 16:24:01 CDT)
[Full-disclosure] [USN-760-1] CUPS vulnerability
- Jamie Strandboge (Thu Apr 16 2009 - 16:28:21 CDT)
[Full-disclosure] [USN-761-1] PHP vulnerabilities
- Marc Deslauriers (Mon Apr 20 2009 - 16:38:13 CDT)
[Full-disclosure] [USN-761-2] PHP vulnerabilities
- Marc Deslauriers (Mon Apr 27 2009 - 16:24:55 CDT)
[Full-disclosure] [USN-762-1] APT vulnerabilities
- Jamie Strandboge (Mon Apr 20 2009 - 16:39:54 CDT)
[Full-disclosure] [USN-763-1] xine-lib vulnerabilities
- Marc Deslauriers (Mon Apr 20 2009 - 16:38:47 CDT)
[Full-disclosure] [USN-764-1] Firefox and Xulrunner vulnerabilities
- Jamie Strandboge (Wed Apr 22 2009 - 21:12:23 CDT)
[Full-disclosure] [USN-765-1] Firefox and Xulrunner vulnerabilities
- Jamie Strandboge (Tue Apr 28 2009 - 14:34:37 CDT)
[Full-disclosure] [USN-766-1] acpid vulnerability
- Marc Deslauriers (Mon Apr 27 2009 - 16:25:44 CDT)
[Full-disclosure] [USN-767-1] FreeType vulnerability
- Marc Deslauriers (Mon Apr 27 2009 - 16:26:25 CDT)
[Full-disclosure] [USN-768-1] Apport vulnerability
- Jamie Strandboge (Wed Apr 29 2009 - 17:42:44 CDT)
[Full-disclosure] About HSM
- T Biehn (Mon Apr 27 2009 - 16:22:17 CDT)
- Thiago Musa (Mon Apr 27 2009 - 14:22:16 CDT)
[Full-disclosure] Addendum :[TZO-09-2009] Avast bypass / evasion (Limited details)
- Thierry Zoller (Mon Apr 20 2009 - 11:40:43 CDT)
[Full-disclosure] Addendum: [TZO-17-2009]Trendmicro multiple bypass/evasions
- Thierry Zoller (Wed Apr 29 2009 - 09:20:12 CDT)
[Full-disclosure] Advanced Oracle Sql Injection
- ZwelL (Sun Apr 19 2009 - 19:28:16 CDT)
- ZwelL (Sun Apr 19 2009 - 19:24:24 CDT)
[Full-disclosure] Anand A has sent you a private message
- James Matthews (Tue Apr 28 2009 - 06:31:28 CDT)
- Anand A (Tue Apr 28 2009 - 04:12:14 CDT)
[Full-disclosure] Anti virus installations on Windows servers
- Valdis.Kletnieksvt.edu (Thu Apr 30 2009 - 09:55:11 CDT)
- T Biehn (Thu Apr 30 2009 - 09:13:30 CDT)
- Adam Chesnutt (Wed Apr 29 2009 - 14:49:37 CDT)
- Valdis.Kletnieksvt.edu (Wed Apr 29 2009 - 15:10:12 CDT)
- T Biehn (Wed Apr 29 2009 - 14:29:28 CDT)
- M.B.Jr. (Wed Apr 29 2009 - 13:48:18 CDT)
- Kurt Buff (Wed Apr 29 2009 - 12:42:19 CDT)
- don bailey (Wed Apr 29 2009 - 12:27:36 CDT)
- Valdis.Kletnieksvt.edu (Wed Apr 29 2009 - 12:24:22 CDT)
- don bailey (Wed Apr 29 2009 - 12:16:11 CDT)
- Julien Maladrie (Wed Apr 29 2009 - 12:00:27 CDT)
- Valdis.Kletnieksvt.edu (Wed Apr 29 2009 - 12:04:17 CDT)
- don bailey (Wed Apr 29 2009 - 11:34:55 CDT)
- Valdis.Kletnieksvt.edu (Wed Apr 29 2009 - 11:38:46 CDT)
- T Biehn (Wed Apr 29 2009 - 11:28:16 CDT)
- Valdis.Kletnieksvt.edu (Wed Apr 29 2009 - 11:00:24 CDT)
- mbs (Wed Apr 29 2009 - 07:44:49 CDT)
[Full-disclosure] AST-2009-003: SIP responses expose valid usernames
- Asterisk Security Team (Thu Apr 02 2009 - 13:59:45 CDT)
[Full-disclosure] Autodesk IDrop ActiveX Control Heap Corruption Vulnerability
- Elazar Broad (Thu Apr 02 2009 - 14:00:06 CDT)
[Full-disclosure] BH USA CFP closing next Tuesday
- jmoss (Thu Apr 30 2009 - 18:36:38 CDT)
[Full-disclosure] Bkis Conficker Scanner
- Bkis (Mon Apr 20 2009 - 22:59:42 CDT)
[Full-disclosure] Black Hat USA Videos available to D/L
- Line Noise (Fri Apr 03 2009 - 08:53:18 CDT)
- Randal T. Rioux (Thu Apr 02 2009 - 14:32:00 CDT)
[Full-disclosure] CA20090429-01: CA ARCserve Backup Apache HTTP Server Multiple Vulnerabilities
- Williams, James K (Thu Apr 30 2009 - 14:51:02 CDT)
[Full-disclosure] Cae el ultimo de los dragones http://megabyte.lastdragon.net/ pwned
- The Wonder Years DVD (Tue Apr 14 2009 - 00:26:22 CDT)
[Full-disclosure] Call for Papers Hack.lu 2009
- hack.lu 2009 info (Thu Apr 30 2009 - 07:40:06 CDT)
[Full-disclosure] CFP for ekoparty 0x09 is now open! [ Buenos Aires, Argentina ]
- ekoparty security (Thu Apr 23 2009 - 17:02:20 CDT)
[Full-disclosure] Cisco ASA5520 Web VPN Host Header XSS
- Mark-David McLaughlin (marmclau) (Fri Apr 24 2009 - 10:08:42 CDT)
[Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Adaptive Security Appliance and Cisco PIX Security Appliances
- Cisco Systems Product Security Incident Response Team (Wed Apr 08 2009 - 11:01:39 CDT)
[Full-disclosure] Conficker tool for end users
- Paul Schmehl (Wed Apr 01 2009 - 16:22:25 CDT)
- v3nd3rs5uck (Tue Mar 31 2009 - 18:59:55 CDT)
[Full-disclosure] conficker.c - ccTLD strange attractor
- exploit dev (Sun Apr 05 2009 - 08:09:48 CDT)
[Full-disclosure] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
- Sergio 'shadown' Alvarez (Wed Apr 22 2009 - 03:34:05 CDT)
- CORE Security Technologies Advisories (Tue Apr 21 2009 - 13:46:09 CDT)
[Full-disclosure] CVE-2009-0991 PoC
- Dennis Yurichev (Mon Apr 20 2009 - 16:53:02 CDT)
[Full-disclosure] CVE-2009-1190: Spring Framework Remote Denial of Service Vulnerability
- Mark Thomas (Fri Apr 24 2009 - 03:51:35 CDT)
[Full-disclosure] DDIVRT-2009-23 Apache ActiveMQ Numerous Cross Site Scripting Issues
- DDI_Vulnerability_Alert (Thu Apr 16 2009 - 10:05:11 CDT)
[Full-disclosure] DDIVRT-2009-24 Precidia Ether232 Memory Corruption
- DDI_Vulnerability_Alert (Mon Apr 27 2009 - 13:03:55 CDT)
[Full-disclosure] DEFCON London DC4420 meet this Thursday - 30th April 2009
- Major Malfunction (Mon Apr 27 2009 - 10:19:24 CDT)
[Full-disclosure] dev mem injection
- Valdis' Mustache (Fri Apr 17 2009 - 12:10:54 CDT)
- Biz Marqee (Wed Apr 15 2009 - 20:45:34 CDT)
[Full-disclosure] DirectAdmin < 1.33.4 Local file overwrite & Local root escalation
- anony mous (Wed Apr 22 2009 - 05:34:45 CDT)
[Full-disclosure] dissecting conficker.e
- exploit dev (Fri Apr 24 2009 - 13:53:35 CDT)
[Full-disclosure] ERNW Security Advisory 01-2009: XSS in Blackberries Mobile Data Service Connection Service
- mozillaids-guide.de (Fri Apr 17 2009 - 07:21:57 CDT)
[Full-disclosure] Errata: [TZO-13-2009] Avira Antivir generic CAB evasion / bypass
- Thierry Zoller (Tue Apr 28 2009 - 09:28:22 CDT)
[Full-disclosure] EUSecWest 2009 CFP (May 27/28, Deadline April 7 2009)
- Sumit Siddharth (Thu Apr 02 2009 - 01:57:24 CDT)
- Dragos Ruiu (Wed Apr 01 2009 - 16:29:58 CDT)
[Full-disclosure] FGA-2009-003:EMC RepliStor Buffer Overflow Vulnerability
- noreply-secresearchfortinet.com (Wed Apr 08 2009 - 21:01:53 CDT)
[Full-disclosure] Firefox 3.0.8 remote DoS: 0-day exploit
- Ron (Tue Apr 07 2009 - 13:36:45 CDT)
- Nick (Sat Apr 04 2009 - 21:10:31 CDT)
- Paul Schmehl (Sat Apr 04 2009 - 14:27:42 CDT)
- Mike Bann (Sat Apr 04 2009 - 12:26:14 CDT)
- Berend-Jan Wever (Sat Apr 04 2009 - 10:53:18 CDT)
- carl hardwick (Sat Apr 04 2009 - 07:39:40 CDT)
[Full-disclosure] full disclosure?
- Juha-Matti Laurio (Tue Apr 28 2009 - 06:17:34 CDT)
- sunjester (Tue Apr 28 2009 - 00:03:04 CDT)
[Full-disclosure] h0no is back
- Rubén Camarero (Thu Apr 02 2009 - 00:52:33 CDT)
[Full-disclosure] Hacker Space Fest 2009 CFP: Call For Paper
- Georgi Guninski (Thu Apr 16 2009 - 10:38:58 CDT)
- Ralf-Philipp Weinmann (Wed Apr 15 2009 - 20:18:57 CDT)
- Valdis' Mustache (Wed Apr 15 2009 - 15:25:11 CDT)
- T Biehn (Wed Apr 15 2009 - 13:54:46 CDT)
- Valdis.Kletnieksvt.edu (Wed Apr 15 2009 - 11:16:05 CDT)
- T Biehn (Wed Apr 15 2009 - 10:58:42 CDT)
- Valdis' Mustache (Wed Apr 15 2009 - 01:46:27 CDT)
- T Biehn (Mon Apr 13 2009 - 09:57:39 CDT)
- Philippe Mailinglist (Mon Apr 13 2009 - 06:13:09 CDT)
[Full-disclosure] http://confickerworkinggroup.org/
- Juha-Matti Laurio (Sun Apr 12 2009 - 04:51:46 CDT)
- Georgi Guninski (Fri Apr 10 2009 - 12:44:25 CDT)
- Juha-Matti Laurio (Fri Apr 10 2009 - 03:50:37 CDT)
- Georgi Guninski (Thu Apr 09 2009 - 14:06:24 CDT)
[Full-disclosure] iAWACS 2009 CFP
- Anthony Desnos (Wed Apr 29 2009 - 08:59:07 CDT)
[Full-disclosure] IBM DB2 two PoCs
- Dennis Yurichev (Thu Apr 02 2009 - 07:31:30 CDT)
[Full-disclosure] iDefense Security Advisory 04.14.09: Microsoft Word 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability
- iDefense Labs (Tue Apr 14 2009 - 13:59:32 CDT)
[Full-disclosure] iDefense Security Advisory 04.15.09: IBM AIX muxatmd Buffer Overflow Vulnerability
- iDefense Labs (Wed Apr 15 2009 - 15:11:25 CDT)
[Full-disclosure] iDefense Security Advisory 04.15.09: Microsoft WordPad Word97 Converter Stack Buffer Overflow Vulnerability
- iDefense Labs (Wed Apr 15 2009 - 14:25:53 CDT)
[Full-disclosure] iDefense Security Advisory 04.28.09: TIBCO SmartSockets Stack Buffer Overflow Vulnerability
- iDefense Labs (Tue Apr 28 2009 - 14:53:25 CDT)
[Full-disclosure] iDefense Security Advisory 04.29.09: Symantec System Center Alert Management System Console Arbitrary Program Execution Design Error Vulnerability
- iDefense Labs (Wed Apr 29 2009 - 11:34:45 CDT)
[Full-disclosure] JRE Update 11/12 Pack 200 reliable WinXP exploit
- John Smith (Thu Apr 02 2009 - 16:32:34 CDT)
[Full-disclosure] KON-BOOT for Windows and Linux (Password Bypassing Utility for Forgetting Heads)
- Piotr Bania (Thu Apr 16 2009 - 00:54:12 CDT)
[Full-disclosure] Krakow Labs Development - Hzzp
- Krakow Labs (Sun Apr 26 2009 - 23:43:26 CDT)
[Full-disclosure] Layered Defense Research Advisory: Format String Vulnerability: FortiClient Version 3
- Deral Heiland (Wed Apr 01 2009 - 21:28:40 CDT)
[Full-disclosure] LinkedIn DB dump
- Joshua Russel (Sat Apr 18 2009 - 07:58:31 CDT)
[Full-disclosure] Linux Kernel CIFS Vulnerability
- Eugene Teo (Mon Apr 13 2009 - 22:53:01 CDT)
- Andreas Bogk (Mon Apr 13 2009 - 13:22:30 CDT)
- Eugene Teo (Sat Apr 11 2009 - 22:08:12 CDT)
- Andreas Bogk (Fri Apr 10 2009 - 07:21:05 CDT)
- Andreas Bogk (Fri Apr 10 2009 - 06:27:30 CDT)
- Thierry Zoller (Fri Apr 10 2009 - 06:51:28 CDT)
- Marcus Meissner (Fri Apr 10 2009 - 06:31:03 CDT)
- Thierry Zoller (Fri Apr 10 2009 - 06:26:43 CDT)
- Marcus Meissner (Fri Apr 10 2009 - 05:59:48 CDT)
- Valdis' Mustache (Thu Apr 09 2009 - 22:52:54 CDT)
- Nick Boyce (Thu Apr 09 2009 - 21:45:50 CDT)
- Raj Mathur (Thu Apr 09 2009 - 11:01:33 CDT)
- Andreas Bogk (Thu Apr 09 2009 - 09:52:40 CDT)
- Thierry Zoller (Thu Apr 09 2009 - 08:55:43 CDT)
- Thierry Zoller (Thu Apr 09 2009 - 08:43:37 CDT)
- Thierry Zoller (Thu Apr 09 2009 - 08:36:24 CDT)
- Andreas Bogk (Thu Apr 09 2009 - 08:07:40 CDT)
[Full-disclosure] List Charter
- John Cartwright (Sat Apr 11 2009 - 10:10:59 CDT)
[Full-disclosure] Microsoft four infinity loop D.o.S vulnerabilities
- Code Audit Labs (Thu Apr 16 2009 - 23:00:14 CDT)
[Full-disclosure] Microsoft Office Excel Remote Memory Corruption Vulnerability
- noreply-secresearchfortinet.com (Tue Apr 14 2009 - 20:30:54 CDT)
[Full-disclosure] MS09-014: MSIE EMBED element race condition memory corruption
- Berend-Jan Wever (Sun Apr 19 2009 - 08:06:53 CDT)
[Full-disclosure] MSL-2009-001 - Samsung Missing Provisioning Authentication
- Mobile Security Lab (Fri Apr 24 2009 - 03:34:20 CDT)
[Full-disclosure] NanoCMS Multiple Vulnerabilities
- Justin C. Klein Keane (Mon Apr 13 2009 - 16:02:20 CDT)
[Full-disclosure] News paper article > who is the greatest Hacker?
- Answer (Mon Apr 06 2009 - 08:22:35 CDT)
[Full-disclosure] Obfuscated patches
- Pedro Hugo (Tue Apr 21 2009 - 05:44:49 CDT)
- Valdis.Kletnieksvt.edu (Tue Apr 21 2009 - 05:57:55 CDT)
- Pedro (Tue Apr 21 2009 - 06:01:02 CDT)
- Dennis Yurichev (Tue Apr 21 2009 - 05:08:50 CDT)
[Full-disclosure] one shot remote root for linux?
- cardiac_arresthushmail.com (Tue Apr 28 2009 - 10:15:15 CDT)
- Gadi Evron (Tue Apr 28 2009 - 09:07:29 CDT)
[Full-disclosure] OpenBSD 4.3 up to OpenBSD-current: PF null pointer dereference kernel panic
- rembrandt (Sun Apr 12 2009 - 06:17:06 CDT)
[Full-disclosure] Opening Intranets to attack by using Internet Explorer [paper]
- Cesar (Tue Apr 07 2009 - 16:30:26 CDT)
[Full-disclosure] OpenVAS now beyond 10000 Network Vulnerability Tests
- Michael Wiegand (Thu Apr 09 2009 - 09:23:04 CDT)
[Full-disclosure] OpenX 2.6.4 multiple vulnerabilities
- Sandro Gauci (Wed Apr 01 2009 - 15:35:06 CDT)
[Full-disclosure] OWASP AppSec DC 2009 CALL FOR PAPERS
- Mark Bristow (Mon Apr 27 2009 - 22:19:22 CDT)
[Full-disclosure] Pangolin is updated to 2.0.1.799
- ZwelL (Wed Apr 15 2009 - 15:52:16 CDT)
[Full-disclosure] PeterConnects Web Server Traversal Arbitrary File Access
- Bugs NotHugs (Wed Apr 08 2009 - 04:06:07 CDT)
[Full-disclosure] PHP 5.2.9 curl safe_mode & open_basedir bypass
- Maksymilian Arciemowicz (Fri Apr 10 2009 - 08:21:29 CDT)
[Full-disclosure] POC - Sun Java System Acccess Manager & Identity Manager Users Enumeration
- Marco Mella (Tue Apr 07 2009 - 07:51:00 CDT)
[Full-disclosure] Positron Security Advisory #2009-001: Memcached and MemcacheDB ASLR Bypass Weakness
- Positron Security (Tue Apr 28 2009 - 13:58:38 CDT)
[Full-disclosure] Pre-announcement! New venue for DC4420 - Thursday 30th April
- Major Malfunction (Wed Apr 08 2009 - 13:29:09 CDT)
[Full-disclosure] Proxy bypass vulnerability & plain text passwords in LevelOne AMG-2000
- SEC Consult Research (Wed Apr 29 2009 - 04:18:11 CDT)
[Full-disclosure] Python winappdbg module v1.0 is out!
- Mario Alejandro Vilas Jerez (Tue Apr 21 2009 - 11:22:32 CDT)
[Full-disclosure] Random HTTP-Requests
- Tonu Samuel (Thu Apr 02 2009 - 10:53:00 CDT)
[Full-disclosure] razorCMS - Multiple Vulnerabilities
- Jeremi Gosney (Thu Apr 16 2009 - 04:13:23 CDT)
[Full-disclosure] rPSA-2009-0057-1 m2crypto openssl openssl-scripts
- rPath Update Announcements (Fri Apr 03 2009 - 00:38:42 CDT)
[Full-disclosure] rPSA-2009-0058-1 krb5 krb5-server krb5-services krb5-test krb5-workstation
- rPath Update Announcements (Tue Apr 07 2009 - 16:07:18 CDT)
[Full-disclosure] rPSA-2009-0059-1 poppler
- rPath Update Announcements (Fri Apr 17 2009 - 00:02:58 CDT)
[Full-disclosure] rPSA-2009-0060-1 ghostscript
- rPath Update Announcements (Fri Apr 17 2009 - 00:05:09 CDT)
[Full-disclosure] rPSA-2009-0061-1 cups
- rPath Update Announcements (Fri Apr 17 2009 - 00:06:43 CDT)
[Full-disclosure] rPSA-2009-0062-1 tshark wireshark
- rPath Update Announcements (Fri Apr 17 2009 - 00:09:06 CDT)
[Full-disclosure] rPSA-2009-0063-1 udev
- rPath Update Announcements (Fri Apr 17 2009 - 00:10:07 CDT)
[Full-disclosure] rPSA-2009-0064-1 icu
- rPath Update Announcements (Fri Apr 17 2009 - 00:11:47 CDT)
[Full-disclosure] SAP BusinessObjects Crystal Reports viewreport.asp Multiple Parameter XSS
- Bugs NotHugs (Thu Apr 02 2009 - 04:54:54 CDT)
[Full-disclosure] SEC Consult SA-20090415-0 :: Multiple Vulnerabilities in Novell Teaming
- Bernhard Mueller (Wed Apr 15 2009 - 09:02:23 CDT)
[Full-disclosure] Secunia Research: CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow
- Secunia Research (Fri Apr 17 2009 - 03:26:00 CDT)
[Full-disclosure] Secunia Research: Danske Bank e-Sec Control Module Error Logging Buffer Overflow
- Secunia Research (Thu Apr 16 2009 - 03:00:34 CDT)
[Full-disclosure] Secunia Research: DivX Web Player Stream Format Chunk Buffer Overflow
- Secunia Research (Wed Apr 15 2009 - 02:37:12 CDT)
[Full-disclosure] Secunia Research: Ghostscript jbig2dec JBIG2 Processing Buffer Overflow
- Secunia Research (Thu Apr 09 2009 - 09:07:30 CDT)
[Full-disclosure] Secunia Research: HP OpenView Network Node Manager "ovalarmsrv" Integer Overflow
- Secunia Research (Tue Apr 28 2009 - 04:05:36 CDT)
[Full-disclosure] Secunia Research: IrfanView Formats Plug-in XPM Parsing Integer Overflow
- Secunia Research (Tue Apr 07 2009 - 06:52:19 CDT)
[Full-disclosure] Secunia Research: Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow
- Secunia Research (Wed Apr 15 2009 - 04:57:33 CDT)
[Full-disclosure] Secunia Research: Oracle BEA WebLogic Server Plug-ins Integer Overflow
- Secunia Research (Wed Apr 15 2009 - 04:54:07 CDT)
[Full-disclosure] Secunia Research: SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method
- Secunia Research (Wed Apr 15 2009 - 02:54:50 CDT)
[Full-disclosure] Secunia Research: UltraISO Image Name Parsing Format String Vulnerabilities
- Secunia Research (Wed Apr 01 2009 - 03:38:18 CDT)
[Full-disclosure] Secunia Research: UltraISO Image Parsing Buffer Overflow Vulnerabilities
- Secunia Research (Wed Apr 01 2009 - 03:38:06 CDT)
[Full-disclosure] Secunia Research: Xpdf JBIG2 Symbol Dictionary Buffer Overflow Vulnerability
- Secunia Research (Fri Apr 17 2009 - 02:40:38 CDT)
[Full-disclosure] Security Research Suggests Security Researchers Owned
- Razi Shaban (Thu Apr 02 2009 - 18:00:16 CDT)
- Robert Lemos (Thu Apr 02 2009 - 18:01:29 CDT)
- Robert Lemos (Thu Apr 02 2009 - 17:51:22 CDT)
[Full-disclosure] SniffJoke 0.3 release and request for feedback
- Razi Shaban (Wed Apr 15 2009 - 08:00:14 CDT)
- vecna (Wed Apr 15 2009 - 02:27:39 CDT)
[Full-disclosure] Some "old" advisories: MS09-011 and VMware detection/DoS
- Piotr Bania (Thu Apr 16 2009 - 11:56:22 CDT)
[Full-disclosure] SQL Injection in package DBMS_AQADM_SYS [CVE-2009-0977]
- Alexander Kornbrust (Thu Apr 16 2009 - 00:52:15 CDT)
[Full-disclosure] SQL Injection in package DBMS_AQIN [CVE-2009-0992]
- Alexander Kornbrust (Thu Apr 16 2009 - 00:53:28 CDT)
[Full-disclosure] SQL Injection in Rogue Anti-Malware Group's Control Panel
- Xia Shing Zee (Wed Apr 08 2009 - 05:26:28 CDT)
[Full-disclosure] SumatraPDF <= 0.9.3 Heap Overflow PoC
- c (Fri Apr 24 2009 - 16:26:41 CDT)
[Full-disclosure] Summer Camp Garrotxa 2009 event
- Gerardo García Peña (Wed Apr 08 2009 - 00:45:29 CDT)
[Full-disclosure] SUSE Security Announcement: cups (SUSE-SA:2009:024)
- Thomas Biege (Wed Apr 22 2009 - 09:36:07 CDT)
[Full-disclosure] SUSE Security Announcement: glib2 (SUSE-SA:2009:025)
- Thomas Biege (Fri Apr 24 2009 - 08:04:04 CDT)
[Full-disclosure] SUSE Security Announcement: glib2 (SUSE-SA:2009:026)
- Thomas Biege (Fri Apr 24 2009 - 08:16:45 CDT)
[Full-disclosure] SUSE Security Announcement: krb5 (SUSE-SA:2009:019)
- Thomas Biege (Wed Apr 08 2009 - 09:27:11 CDT)
[Full-disclosure] T2'09: Call for Papers 2009 (Helsinki / Finland)
- Tomi Tuominen (Mon Apr 27 2009 - 06:48:15 CDT)
[Full-disclosure] THC releases video and tool to create fakeePassports
- Michael Holstein (Wed Apr 22 2009 - 10:54:49 CDT)
- M.B.Jr. (Tue Apr 21 2009 - 15:49:47 CDT)
[Full-disclosure] TPTI-09-01: VMWare VMnc Codec Invalid RFB Message Type Heap Overflow
- dvlabs (Mon Apr 06 2009 - 15:43:55 CDT)
[Full-disclosure] TPTI-09-02: VMWare VMnc Codec Open-DML Standard Index dwSize Heap Overflow
- dvlabs (Mon Apr 06 2009 - 15:44:02 CDT)
[Full-disclosure] udev exploit
- Kingcope Kingcope (Sat Apr 18 2009 - 13:55:24 CDT)
[Full-disclosure] udev exploit - SECURITYFOCUS.COM edits your exploits
- don bailey (Sat Apr 18 2009 - 23:11:23 CDT)
- Kingcope Kingcope (Sat Apr 18 2009 - 23:01:12 CDT)
[Full-disclosure] Unprivileged DB users can see APEX password hashes [CVE-2009-0981]
- Alexander Kornbrust (Thu Apr 16 2009 - 00:51:11 CDT)
[Full-disclosure] Virtual Machine Trojans: a new type of threat?
- Eduardo_Godinhotrendmicro.com (Sun Apr 19 2009 - 07:50:09 CDT)
- Pavel Kankovsky (Sun Apr 19 2009 - 05:01:55 CDT)
- sergioinfosegura.net (Sat Apr 18 2009 - 08:34:36 CDT)
- sergioinfosegura.net (Sat Apr 18 2009 - 08:22:58 CDT)
- Julio César García Vizcaíno (Fri Apr 17 2009 - 23:38:20 CDT)
- Peter Ferrie (Fri Apr 17 2009 - 16:09:51 CDT)
- sergioinfosegura.net (Fri Apr 17 2009 - 13:04:59 CDT)
[Full-disclosure] VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues
- VMware Security Team (Sat Apr 04 2009 - 00:22:07 CDT)
[Full-disclosure] VMSA-2009-0006 VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability
- VMware Security Team (Fri Apr 10 2009 - 11:22:40 CDT)
[Full-disclosure] Windows Update (re-)installs outdated Flash ActiveX on Windows XP
- Vladimir '3APA3A' Dubrovin (Wed Apr 22 2009 - 14:00:00 CDT)
- Stefan Kanthak (Mon Apr 20 2009 - 11:17:24 CDT)
[Full-disclosure] ZDI-09-016: Novell Client/NetIdentity Agent Remote Arbitrary Pointer Dereference Code Execution Vulnerability
- ZDI Disclosures (Mon Apr 06 2009 - 15:51:00 CDT)
[Full-disclosure] ZDI-09-017: Oracle Applications Server 10g Format String Vulnerability
- ZDI Disclosures (Tue Apr 14 2009 - 15:25:36 CDT)
[Full-disclosure] ZDI-09-018: Symantec Client Security Alert Originator Service Stack Overflow Vulnerability
- ZDI Disclosures (Tue Apr 28 2009 - 15:39:12 CDT)
Multiple vulnerabilities
- Pierre-Yves Rofes (Thu Apr 02 2009 - 15:51:15 CDT)
Virtual Machine Trojans: a new type of threat?
- Exibar (Sat Apr 18 2009 - 11:25:23 CDT)

Last message date: Thu Apr 30 2009 - 22:32:02 CDT
Archived on: Thu Apr 30 2009 - 22:32:02 CDT

318 messages sorted by: [ author ] [ date ] [ thread ]