Bugtraq
[Prev Page][Next Page]
- [USN-579-1] Qt vulnerability,
Jamie Strandboge
- ZDI-08-007: Symantec VERITAS Storage Foundation Administrator Service Heap Overflow Vulnerability,
zdi-disclosures
- Heap overflow in Sybase MobiLink 10.0.1.3629,
Luigi Auriemma
- Advisory SE-2008-01: PunBB Blind Password Recovery Vulnerability,
Stefan Esser
- iDefense Security Advisory 02.19.08: EMC RepliStor Multiple Heap Overflow Vulnerabilities,
iDefense Labs
- Xoops-2.0.16 Remote File Inclusion,
f10
- Web Hacking Incidents Database Update for Feb 20th,
Ofer Shezaf
- [security bulletin] HPSBTU02311 SSRT080001 rev.1 - HP Tru64 UNIX running Perl, Remote Execution of Arbitrary Code,
security-alert
- [SECURITY] [DSA 1499-1] New pcre3 packages fix arbitrary code execution,
Florian Weimer
- Access violation and limited informations disclosure in webcamXP 3.72.440.0,
Luigi Auriemma
- Two heap overflow in Foxit WAC Server 2.0 Build 3503,
Luigi Auriemma
- Multiple buffer-overflow in NowSMS v2007.06.27,
Luigi Auriemma
- NULL pointer crash in freeSSHd 1.20,
Luigi Auriemma
- [ MDVSA-2007:047 ] - Updated Thunderbird packages fix multiple vulnerabilities,
security
- PHP-Nuke Module Web_Links SQL Injection(cid),
hackturkiye . hackturkiye
- XOOPS Module eEmpregos SQL Injection(cid),
hackturkiye . hackturkiye
- [SECURITY] [DSA 1498-1] New libimager-perl packages fix arbitrary code execution,
Steve Kemp
- XOOPS Module classifieds SQL Injection(cid),
hackturkiye . hackturkiye
- joomla SQL Injection(com_magazine),
hackturkiye . hackturkiye
- XOOPS Module seminars SQL Injection,
hackturkiye . hackturkiye
- XOOPS Module badliege SQL Injection,
hackturkiye . hackturkiye
- XOOPS Module events SQL Injection,
hackturkiye . hackturkiye
- XOOPS Module vacatures SQL Injection,
hackturkiye . hackturkiye
- joomla SQL Injection(com_foevpartners),
hackturkiye . hackturkiye
- PR06-12: XSS on BEA Plumtree Foundation and AquaLogic Interaction portals,
ProCheckUp Research
- WoltLab Burning Board 3.0.3 PL1 SQL-Injection Vulnerability,
nbbn
- SYMSA-2008-001: Lyris ListManager - Multiple Vulnerabilities,
research
- joomla SQL Injection(com_genealogy),
hackturkiye . hackturkiye
- [DSECRG-08-016] Jinzora 2.7.5 Multiple XSS,
Digital Security Research Group
- joomla SQL Injection(com_listoffreeads),
hackturkiye . hackturkiye
- PR08-01: Several XSS, a cross-domain redirect and a webroot disclosure on Spyce - Python Server Pages (PSP),
ProCheckUp Research
- joomla SQL Injection(com_facileforms),
hackturkiye . hackturkiye
- XOOPS Module myTopics-print SQL Injection(articleid),
hackturkiye . hackturkiye
- XOOPS Module wflinks SQL Injection(cid),
hackturkiye . hackturkiye
- joomla SQL Injection(com_geoboerse),
hackturkiye . hackturkiye
- joomla SQL Injection(com_team,
hackturkiye . hackturkiye
- SmarterMail Enterprise 4.3 - malformed mail XSS,
jplopezy
- joomla SQL Injection(com_formtool),
hackturkiye . hackturkiye
- joomla SQL Injection(com_iigcatalog),
hackturkiye . hackturkiye
- XOOPS Module section SQL Injection(articleid),
hackturkiye . hackturkiye
- [DSECRG-08-015] Multiple Security Vulnerabilities in Dokeos 1.8.4,
Digital Security Research Group
- [SECURITY] [DSA 1495-2] New nagios-plugins packages fix regression,
Moritz Muehlenhoff
- (tip=sollinkicerik)SQL Injection Vulnerability,
hackturkiye . hackturkiye
- ProjectPier <= 0.80 Cross Site Scripting and Request Forgery,
L4teral
- ATutor <= 1.5.5 Cross Site Scripting,
L4teral
- joomla SQL Injection(com_ricette),
hackturkiye . hackturkiye
- joomla SQL Injection (cat)(com_downloads),
hackturkiye . hackturkiye
- RUXCON 2008 CALL FOR PAPERS,
cfp
- WordPress album PHOTO SQL Injection,
hackturkiye . hackturkiye
- joomla SQL Injection(com_jooget),
hackturkiye . hackturkiye
- Wordpress Plugin (wp-people) SQL Injection,
hackturkiye . hackturkiye
- WordPress SQL Injection(wp-content-simple-forum),
hackturkiye . hackturkiye
- Simple CMS <= 1.0.3 (indexen.php area) Remote SQL Injection Exploit,
sys-project
- RunCMS 1.6.1 Multiple XSS and XSRF Vulnerabilties,
nbbn
- Crafty Syntax Xss Vulnerability,
Ozgur Ozdemircili
- joomla SQL Injection(com_galeria),
hackturkiye . hackturkiye
- lightblog 9.6 local file inclusion vulnerability,
muuratsalo experimental hack lab
- joomla SQL Injection(com_detail),
hackturkiye . hackturkiye
- Wordpress Plugin (wp-content/recipe) SQL Injection,
hackturkiye . hackturkiye
- WordPress forumaction (PAGE_id)(user)SQL Injection,
hackturkiye . hackturkiye
- joomla SQL Injection(com_profile),
hackturkiye . hackturkiye
- [SECURITY] [DSA 1497-1] New clamav packages fix several vulnerabilities,
Moritz Muehlenhoff
- joomla SQL Injection(com_sg),
hackturkiye . hackturkiye
- joomla SQL Injection(com_emcompose),
hackturkiye . hackturkiye
- joomla SQL Injection(com_filebase),
hackturkiye . hackturkiye
- joomla SQL Injection(com_lexikon),
hackturkiye . hackturkiye
- banpro-dms 1.0 local file inclusion vulnerability,
muuratsalo experimental hack lab
- joomla SQL Injection( com_scheduling),
hackturkiye . hackturkiye
- joomla SQL Injection(com_salesrep),
hackturkiye . hackturkiye
- [HISPASEC] FireFox 2.0.0.11 and Opera 9.50 beta Remote Memory Information Leak, FireFox 2.0.0.11 Remote Denial of Service,
Gynvael Coldwind
- [ MDVSA-2008:046 ] - Updated xine-lib package fixes arbitrary code execution vulnerability,
security
- rPSA-2008-0059-1 openldap openldap-clients openldap-servers,
rPath Update Announcements
- rPSA-2008-0056-1 mailman,
rPath Update Announcements
- Simple Forum Version 1.7-1.9(pagename),
hackturkiye . hackturkiye
- all version Wordpress FORUM S@L injection,
hackturkiye . hackturkiye
- joomla faq SQL Injection,
hackturkiye . hackturkiye
- joomla com_activities sql injection,
hackturkiye . hackturkiye
- [ GLSA 200802-08 ] Boost: Denial of Service,
Raphael Marichez
- Ecommerce Websites from b1st.com SQL Injection,
hackturkiye . hackturkiye
- joomla "com_smslist" sql injecton,
hackturkiye . hackturkiye
- engineering Neoteric UK LTD S@L İNJECTİON,
hackturkiye . hackturkiye
- artmedic_weblog Cross Site Scriptting Vulnerbility,
hadihadi_zedehal_2006
- [ MDVSA-2008:045 ] - Updated MPlayer packages fix a few vulnerabilities,
security
- Simple Forum Version 1.10-1.11 SQL Injection,
hackturkiye . hackturkiye
- SellOwnHouse login SQL Injection,
hackturkiye . hackturkiye
- Sami FTP Server 2.0.* Multiple Remote Vulnerabilities,
securfrog
- [INFIGO-2008-02-13]: SOPHOS Email Security Appliance Cross Site Scripting Vulnerability,
infocus
- StatCounteX 3.0 & 3.1 Admin Vulnerability,
Sekomirza
- scribe 0.2 local file inclusion vulnerability,
muuratsalo experimental hack lab
- DOINGSOFT-2008-02-11-002 IP Diva VPN SSL many XSS attacks,
eagle
- Re: UniversalFtp Server 1.0.44 Multiple Remote Denial of service,
securfrog
- PlutoStatus Locator v1.0pre (alpha) local file inclusion vulnerability,
muuratsalo experimental hack lab
- Rosoft Media Player 4.1.8 Buffer Overflow ( .M3U),
securfrog
- DOINGSOFT-2008-02-11 - IPDiva VPN SSL Brute force attack,
eagle
- FreeBSD Security Advisory FreeBSD-SA-08:04.ipsec,
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-08:03.sendfile,
FreeBSD Security Advisories
- Philips VOIP841 Multiple Vulnerabilities,
luca . carettoni
- Joomla 1.0.13 - 1.0.14 / (remote) PHP file inclusion possible if old configuration.php,
Hendrik Jan Verheij
- [USN-578-1] Linux kernel vulnerabilities,
Jamie Strandboge
- Apache web server 2.2: htpasswd predictable salt weakness,
Peter Watkins
- etomite xss,
th3 . r00k . nospam
- [ GLSA 200802-07 ] Pulseaudio: Privilege escalation,
Pierre-Yves Rofes
- artmedic weblog multiple local file inclusion vulnerabilities,
muuratsalo experimental hack lab
- [DSECRG-08-011 | FIX INFORMATION] Astrosoft HelpDesk Multiple XSS,
Digital Security Research Group [DSecRG]
- ELFdump crash when analyzing crafted ELF file.,
david . reguera
- Search Unleashed 0.2.10 JavaScript injection (Wordpress plugin),
Krzysztof Burghardt
- rPSA-2008-0063-1 boost,
rPath Update Announcements
- Cisco Security Advisory: Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities,
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: SQL injection in Cisco Unified Communications Manager,
Cisco Systems Product Security Incident Response Team
- joomla "com_omnirealestate" S@L Injection,
hackturkiye . hackturkiye
- joomla "com_model",
hackturkiye . hackturkiye
- joomla upload php code or picture (com_uhp),
hackturkiye . hackturkiye
- all forums.asp hack,
hackturkiye . hackturkiye
- ALL VERSİON PHPAUTOVİDEO c99 shell,
hackturkiye . hackturkiye
- Provided By Development Solutions SQL Injection Exploit(panel),
hackturkiye . hackturkiye
- [security bulletin] HPSBUX02313 SSRT080015 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code,
security-alert
- [security bulletin] HPSBMA02274 SSRT071445 rev.3 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS),
security-alert
- rPSA-2008-0061-1 SDL_image,
rPath Update Announcements
- [security bulletin] HPSBUX02249 SSRT071442 rev.3 - HP-UX Running the Ignite-UX or the DynRootDisk (DRD) get_system_info Command, Local Unqualified Configuration Change,
security-alert
- Netkom Internet Solutions (folder_id) Remote SQL Injection Vulnerability,
crazy_kinq
- rPSA-2008-0054-1 tk,
rPath Update Announcements
- [Reversemode Advisory] February Advisories : Microsoft Word 2003 + Fortinet Forticlient,
Reversemode
- iDefense Security Advisory 02.12.08: Adobe Flash Media Server 2 Memory Corruption Vulnerability,
iDefense Labs
- Vwar New Bug,
p_s3rver
- [SECURITY] [DSA 1494-2] New linux-2.6 packages fix privilege escalation,
dann frazier
- ZDI-08-006: Microsoft Internet Explorer SVG animateMotion.by Code Execution Vulnerability,
zdi-disclosures
- iDefense Security Advisory 02.12.08: Adobe Flash Media Server 2 Multiple Integer Overflow Vulnerabilities,
iDefense Labs
- Thanks to all, ExploitSearch in Top5 security must-have,
Security Basic
- iDefense Security Advisory 02.12.08: Microsoft Internet Explorer Property Memory Corruption Vulnerability,
iDefense Labs
- [SECURITY] [DSA 1496-1] New mplayer packages fix arbitrary code execution,
Moritz Muehlenhoff
- QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow,
laurent . gaffie
- iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Stack-based Buffer Overflow Vulnerability,
iDefense Labs
- iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability,
iDefense Labs
- [SECURITY] [DSA 1495-1] New nagios-plugins packages fix several vulnerabilities,
Moritz Muehlenhoff
- [ GLSA 200802-06 ] scponly: Multiple vulnerabilities,
Pierre-Yves Rofes
- [ GLSA 200802-05 ] Gnumeric: User-assisted execution of arbitrary code,
Pierre-Yves Rofes
- Directory traversal and DoS in WinIPDS G52-33-021,
Luigi Auriemma
- Cacti 0.8.7a Multiple Vulnerabilities,
s4tan
- LI-countdown SQL Injection Vulnerability,
sex
- cacti -- Multiple security vulnerabilities have been discovered,
Mario Sergio Candian
- FLEA-2008-0007-1 gd,
Foresight Linux Essential Announcement Service
- iDefense Security Advisory 02.12.08: ClamAV libclamav PE File Integer Overflow Vulnerability,
iDefense Labs
- Unicode buffer-overflow in RPM Remote Print Manager 4.5.1.11,
Luigi Auriemma
- rPSA-2008-0052-1 kernel,
rPath Update Announcements
- gkrellweather,
forensec
- artmedic weblog multiple xss vulnerabilities,
muuratsalo experimental hack lab
- [ MDVSA-2008:044 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
- ZDI-08-005: Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability,
zdi-disclosures
- IOActive Security Advisory: Multiple Remote SiteScope Vulnerabilities,
IOActive Advisories
- ZDI-08-004: Adobe AcrobatReader Javascript for PDF Integer Overflow Vulnerability,
zdi-disclosures
- FLEA-2008-0001-1 firefox,
Foresight Linux Essential Announcement Service
- FLEA-2008-0005-1 e2fsprogs,
Foresight Linux Essential Announcement Service
- [ MDVSA-2008:043 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
- joomll(k12.tr)(com_mezun)SQL Injection,
hackturkiye . hackturkiye
- CSA-L03: Linux kernel vmsplice unchecked user-pointer dereference,
Wojciech Purczynski
- Kommentare zum Download script SQL Injection,
hackturkiye . hackturkiye
- FLEA-2008-0004-1 rsync,
Foresight Linux Essential Announcement Service
- FLEA-2008-0002-1 python,
Foresight Linux Essential Announcement Service
- joomla (k12.tr)(com_iomezun)SQL Injection,
hackturkiye . hackturkiye
- my little forum XSS,
db
- FLEA-2008-0006-1 tetex tetex-dvips tetex-fonts,
Foresight Linux Essential Announcement Service
- [ GLSA 200802-04 ] Gallery: Multiple vulnerabilities,
Pierre-Yves Rofes
- FLEA-2008-0003-1 nss_ldap,
Foresight Linux Essential Announcement Service
- IOActive Security Advisory: Legacy mod_jk2 Buffer Overflow,
IOActive Advisories
- [ GLSA 200802-03 ] Horde IMP: Security bypass,
Pierre-Yves Rofes
- Format string and buffer-overflow in Lst Network Print Server 9.4.2 build 105,
Luigi Auriemma
- Format string and DoS in Opium OPI and cyanPrintIP servers 4.10.x,
Luigi Auriemma
- Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0,
Luigi Auriemma
- Multiple vulnerabilities in EztremeZ-IP File and Printer Server 5.1.2x15,
Luigi Auriemma
- ExtraOutlook 1.2 Released,
Thor (Hammer of God)
- [SECURITY] [DSA 1494-1] New linux-2.6 packages fix privilege escalation,
Florian Weimer
- aliboard Beta Upload Shell From ControlPanel,
رومانسي هكر
- Mercury v1.1.5 Send Message Cross-Site Scripting,
No-reply
- Simple Machines Forum "SMF Shoutbox" Mod Persistent XSS,
enterth3dragon
- [SECURITY] [DSA 1493-1] New sdl-image1.2 packages fix arbitrary code execution,
Moritz Muehlenhoff
- [SECURITY] [DSA 1490-1] New tk8.3 packages fix arbitrary code execution,
Moritz Muehlenhoff
- [SECURITY] [DSA 1491-1] New tk8.4 packages fix arbitrary code execution,
Moritz Muehlenhoff
- [SECURITY] [DSA 1492-1] New wml packages fix denial of service,
Moritz Muehlenhoff
- [SECURITY] [DSA 1489-1] New iceweasel packages fix several vulnerabilities,
Moritz Muehlenhoff
- [SECURITY] [DSA 1484-1] New xulrunner packages fix several vulnerabilities,
Moritz Muehlenhoff
- [SECURITY] [DSA 1485-1] New icedove packages fix several vulnerabilities,
Moritz Muehlenhoff
- Final CFP: EuroSec Workshop (March 31st, 2008),
Stefano Zanero
- پيش گزيده Website Design Chat Software Remote Cross-Site Scripting,
no-reply
- Default Multiple Joomla! Component com_rapidrecipe "user_id=" Remote SQL Inj.,
staad1
- Vwar 1.5.0,
p_s3rver
- F5 BIG-IP Web Management Console CSRF (with example),
nnposter
- F5 BIG-IP Web Management Console CSRF,
nnposter
- PKs Movie Database version 3.0.3 (SQL/XSS),
houssamix
- iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat Multiple Stack-based Buffer Overflow Vulnerabilities,
iDefense Labs
- iDefense Security Advisory 02.08.08: Adobe Reader Security Provider Unsafe Libary Path Vulnerability,
iDefense Labs
- iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat JavaScript Insecure Method Exposure Vulnerability,
iDefense Labs
- Some interesting hashes,
Open Phugu
- rPSA-2008-0051-1 firefox,
rPath Update Announcements
- [SECURITY] [DSA 1488-1] New phpbb2 packages fix several vulnerabilities,
Thijs Kinkhorst
- [SECURITY] CVE-2007-6286: Tomcat duplicate request processing vulnerability,
Mark Thomas
- [SECURITY] CVE-2007-5333: Tomcat Cookie handling vulnerabilities,
Mark Thomas
- CVE-2008-0002: Tomcat information disclosure vulnerability,
Mark Thomas
- SECURITY ADVISORY - Level Platforms, Inc. Service Center Install Data HTTP Vulnerability,
Brook Powers
- NULL byte writing in Emerald, RadiusNT/X and Air Marshal,
Luigi Auriemma
- rPSA-2008-0048-1 kernel,
rPath Update Announcements
- jetAudio <= 7.0.5 (.ASX) Remote Stack Overflow,
laurent . gaffie
- [SECURITY] [DSA 1487-1] New libexif packages fix several vulnerabilities,
Moritz Muehlenhoff
- Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging),
david130490
- [ MDVSA-2008:039 ] - Updated netpbm packages fix buffer overflow vulnerability,
security
- ASUS Eee PC rooted out of the box,
RISE Security
- Joomla <= v1.0.14-RC1(Index.php) Remote File Inclusion Exploit,
alex_zooz_zooz
- Joovili <= v.2.1 (members_help.php) Remote File İnclude Vulnerability,
crazy_kinq
- [ MDVSA-2008:038 ] - Updated gd packages fix buffer overflow vulnerability,
security
- Blackboard (id) Remote SQL Injection,
crazy_kinq
- Husrev Forums v2.0.1:PoWerBoard (tr) (id) Remote SQL Injection,
crazy_kinq
- [DSECRG-08-014] Multiple LFI in PowerNews (Newsscript) 2.5.6,
Digital Security Research Group [DSecRG]
- Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability,
cocoruder
- [ MDVSA-2008:042 ] - Updated Qt4 packages fix vulnerability in QSslSocket,
security
- Web Hacking Incidenets Database 2007 annual Report is out,
Ofer Shezaf
- [ MDVSA-2008:040 ] - Updated SDL_image packages fix vulnerabilities,
security
- [USN-576-1] Firefox vulnerabilities,
Jamie Strandboge
- [ MDVSA-2008:041 ] - Updated tk packages fix buffer overflow vulnerability,
security
- iDefense Security Advisory 02.07.08: IBM DB2 Universal Database Administration Server Memory Corruption Vulnerability,
iDefense Labs
- iDefense Security Advisory 02.07.08: IBM DB2 Universal Database db2pd Arbitrary Library Loading Vulnerability,
iDefense Labs
- Multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1,
Luigi Auriemma
- [ MDVSA-2008:037 ] - Updated libcdio packages fix DoS vulnerability,
security
- Checkpoint SecuRemote/Secure Client NGX Auto Local Logon Vulnerability,
Michael Neal Vasquez
- [DSECRG-08-013] Modx 0.9.6.1, 0.9.6.1p1 Multiple Security Vulnerabilities,
Digital Security Research Group [DSecRG]
- mini-pub 0.3 multiple vulnerabilities,
muuratsalo experimental hack lab
- [security bulletin] HPSBMA02309 SSRT080013 rev.1 - HP Select Identity Software, Remote Unauthorized Access,
security-alert
- [ GLSA 200802-01 ] SDL_image: Two buffer overflow vulnerabilities,
Raphael Marichez
- ZDI-08-003: Symantec Backup Exec Remote File Upload Vulnerability,
zdi-disclosures
- [ GLSA 200802-02 ] Doomsday: Multiple vulnerabilities,
Pierre-Yves Rofes
- Chat vulnerabilities in TinTin++ 1.97.9,
Luigi Auriemma
- [SECURITY] [DSA 1483-1] New net-snmp packages fix denial of service vulnerability,
Noah Meyerhans
- iDefense Security Advisory 02.04.08: Hewlett-Packard Network Node Manager Topology Manager Service DoS Vulnerability,
iDefense Labs
- [ MDVSA-2008:036 ] - Updated CUPS packages fix SNMP vulnerability,
security
- Logs visualization in WS_FTP Server Manager 6.1.0.0,
Luigi Auriemma
- rPSA-2008-0046-1 gd,
rPath Update Announcements
- rPSA-2008-0043-1 icu,
rPath Update Announcements
- [security bulletin] HPSBGN02310 SSRT080007 rev.1 - HP Virtual Rooms Running on Windows, Remote Execution of Arbitrary Code,
security-alert
- Tested on Webmin 1.390,
no-reply
- [SECURITY] [DSA 1482-1] New squid packages fix denial of service,
Moritz Muehlenhoff
- A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability",
Amit Klein
- [security bulletin] HPSBST02302 SSRT071474 rev.1 - HP Storage Essentials SRM, Remote Unauthorized Access,
security-alert
- [ MDVSA-2008:035 ] - Updated libcdio packages fix DoS vulnerability,
security
- Apple iPhone 1.1.3 remote DoS exploit,
morin . josh
- rPSA-2008-0040-1 mysql mysql-bench mysql-server,
rPath Update Announcements
- dBpowerAMP Audio Player Release 2 Remote Buffer Overflow,
Securfrog
- CYBSEC Security Advisory: Arbitrary file overwrite in Documentum Administrator / Documentum Webtop,
CYBSEC Advisories
- [SECURITY] [DSA 1486-1] New gnatsweb packages fix cross-site scripting,
Steve Kemp
- [SECURITY] [DSA 1480-1] New poppler packages fix several vulnerabilities,
Moritz Muehlenhoff
- [DSECRG-08-012] Multiple LFI in Azucar CMS 1.3,
Digital Security Research Group [DSecRG]
- [SECURITY] [DSA 1481-1] New python-cherrypy packages fix denial of service,
Moritz Muehlenhoff
- [security bulletin] HPSBMA02307 SSRT071420 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Denial of Service (DoS),
security-alert
- [ MDVSA-2008:034 ] - Updated emacs packages fix vulnerabilities,
security
- NERO Media Player <= 1.4.0.35b Remote Buffer Overflow( .M3U),
Securfrog
- [USN-575-1] Apache vulnerabilities,
Jamie Strandboge
- Multiple vulnerabilities in SAPlpd 6.28,
Luigi Auriemma
- iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server onedcu File Creation Vulnerability,
iDefense Labs
- iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server SQLIDEBUG File Creation Vulnerability,
iDefense Labs
- Multiple vulnerabilities in WinCom LPD Total 3.0.2.623,
Luigi Auriemma
- Socket termination in FTP Log Server 7.9.14.0,
Luigi Auriemma
- CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability,
CORE Security Technologies Advisories
- CORE-2008-0122: MPlayer arbitrary pointer dereference,
CORE Security Technologies Advisories
- [DSECRG-08-008] Textpattern 4.0.5 Multiple Security Vulnerabilities,
Digital Security Research Group
- [DSECRG-08-011] Astrosoft HelpDesk Multiple XSS,
Digital Security Research Group
- [OPENADS-SA-2008-001] Openads 2.4.2 vulnerability fixed,
Matteo Beccati
- [DSECRG-08-010] VHD Web Pack 2.0 Local File Include,
Digital Security Research Group
- [DSECRG-08-009] xoops 2.0.18 Local File Include,
Digital Security Research Group
- Anon Proxy Server <= 0.102 remote buffer overflow,
L4teral
- [security bulletin] HPSBUX02308 SSRT080010 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code,
security-alert
- IpSwitch WS_FTPSERVER with SSH remote Buffer Overflow,
securfrog
- Wordpress Pluging wp-footnotes 2.2 (admin_panel.php) Multiple Vulnerabilites,
nbbn
- [ MDVSA-2008:033 ] - Updated ruby-gnome2 packages fix arbitrary code execution vulnerability,
security
- phpShop <= v 0.8.1 Remote SQL injection / Filter Bypass,
theredc0ders
- ITech Classifieds Multiple Remote Vulnerabilities,
cybermilitan
- Domain Trader v2.0 Xss Vulnerable,
cybermilitan
- [ MDVSA-2008:032 ] - Updated boost packages fix DoS vulnerabilities,
security
- Wordpress Plugin dmsguestbook 1.7.0 Multiple Remote Vulnerabilities,
nbbn
- The Everything Development System - SQL Injection,
sub
- Youtube Clone Xross Site Scripting (load_message.php),
ciucciamilcalzino
- Sun JRE / JDK bug introduces XXE possibilities,
Chris Evans
- Titan FTP Server Remote Heap Overflow (USER/PASS),
securfrog
- SQL in Archimede Net 2000 "E-Guest_show.php",
Sw33t . h4cK3r
- LightBlog Remote File Upload Vulnerability,
omnipresent
- [ MDVSA-2008:031 ] -,
security
- LiveCart XSS vulnerability fixed since version 1.1.0,
info
- [ MDVSA-2008:030 ] - Updated pcre packages fix vulnerability,
security
- nilson's blogger 0.11 remote file disclosure vulnerabilities,
muuratsalo experimental hack lab
- [USN-573-1] PulseAudio vulnerability,
Jamie Strandboge
- sflog! 0.96 remote file disclosure vulnerabilities,
muuratsalo experimental hack lab
- Attackers can SkypeFind you,
avivra
- [waraxe-2008-SA#066] - Multiple Vulnerabilities in Coppermine 1.4.14,
come2waraxe
- [DSECRG-08-007] OpenBSD BGPD daemon Web Interface XSS.,
Digital Security Research Group
- [ MDVSA-2008:029 ] - Updated ruby packages fix possible man-in-the-middle attack,
security
- contactforms "cforms-css.php" Remote File Inclusion,
Sw33t . h4cK3r
- [ GLSA 200801-22 ] PeerCast: Buffer overflow,
Pierre-Yves Rofes
- [ GLSA 200801-21 ] Xdg-Utils: Arbitrary command execution,
Pierre-Yves Rofes
- [ GLSA 200801-18 ] Kazehakase: Multiple vulnerabilities,
Pierre-Yves Rofes
- [ GLSA 200801-19 ] GOffice: Multiple vulnerabilities,
Pierre-Yves Rofes
- [ GLSA 200801-20 ] libxml2: Denial of Service,
Pierre-Yves Rofes
- rPSA-2008-0032-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs,
rPath Update Announcements
- PeteFinnigan.com Limited advisory for Oracle January 2008 CPU,
Pete Finnigan
- Cisco Security Advisory: Cisco Wireless Control System Tomcat mod_jk.so Vulnerability,
Cisco Systems Product Security Incident Response Team
- Yeşil Koridor Ziyareti Defteri (index.php) SqL. inj.,
g0rk3m-31
- [ MDVSA-2008:028 ] - Updated MySQL packages fix multiple vulnerabilities,
security
- [ GLSA 200801-17 ] Netkit FTP Server: Denial of Service,
Raphael Marichez
- [ GLSA 200801-16 ] MaraDNS: CNAME Denial of Service,
Raphael Marichez
- [waraxe-2008-SA#065] - Remote Shell Command Execution in Coppermine 1.4.14,
come2waraxe
- Webspell 4.01.02 2 Vulnerabilites,
nbbn
- tinyBB v0.2 Message Board Remote File Inc.,
g0rk3m-31
- Recent Web Hacks: WHID update for Janury 30th 2008,
Ofer Shezaf
- Insecure Use of RC4 in LSrunasE and Supercrypt (CVE-2007-6340),
Daniel Roethlisberger
- AmpJuke-0.7.0 (index.php) Xss VuLn.,
g0rk3m-31
- [!!FIX Information ] Nucleus 3.31 XSS in path,
Digital Security Research Group
- PHPKIT 1.6.4 PL1 2 XSRF Vulnerabilities,
nbbn
- Nucleus 3.31 XSS in path,
Digital Security Research Group
- Remote File Disclosure in phpCMS 1.2.2,
Digital Security Research Group
- CSRF/XSS in Sungard Banner,
banner
- [ GLSA 200801-15 ] PostgreSQL: Multiple vulnerabilities,
Raphael Marichez
- Advisory: Tripwire Enterprise/Server XSS Vulnerability,
Liquidmatrix Security Digest
- Exploit in IE6,7,
r2t
- [SECURITY] [DSA 1478-1] New mysql-dfsg-5.0 packages fix several vulnerabilities,
Moritz Muehlenhoff
- Uninformed Journal Release Announcement: Volume 9,
Uninformed Journal
- VB Marketing "tseekdir.cgi" Local File Inclusion,
Sw33t . h4cK3r
- CORE-2007-1219: Firebird Remote Memory Corruption,
Core Security Technologies Advisories
- WoltLab Burning Board 3.x.x Private Message Delete XSRF Vulnerability,
nbbn
- ASPired2Protect bypass,
milad_sa2007
- eTicket 'index.php' Cross Site Scripting Path Vulnerability,
Alessandro Tanasi
- [SECURITY] [DSA 1477-1] New yarssr packages fix arbitrary shell command execution,
Moritz Muehlenhoff
- ClanSphere 2007.4.4 Remote File Disclosure Vulnerability.,
p4imi0
- Facebook security contact,
Alexander Sotirov
- [ GLSA 200801-13 ] ngIRCd: Denial of Service,
Robert Buchholz
- [ GLSA 200801-11 ] CherryPy: Directory traversal vulnerability,
Robert Buchholz
- [ GLSA 200801-14 ] Blam: User-assisted execution of arbitrary code,
Robert Buchholz
- [ GLSA 200801-12 ] xine-lib: User-assisted execution of arbitrary code,
Robert Buchholz
- Mambo 4.6.3 Path Disclosure, XSS , XSRF, DOS,
admin
- [SECURITY] [DSA 1476-1] New pulseaudio packages fix privilege escalation,
Moritz Muehlenhoff
- Metasploit Framework v3.1 Released,
H D Moore
- phpIP 4.3.2 - Numerous SQL Injection Vulnerablities,
Charles Hooper
- PhPress-0.3.0 Read All Sql Information For Config,
r2t
- F5 BIG-IP Web Management ASM Security Report XSS,
nnposter
- Tool availability - browser DOM Checker,
Michal Zalewski
- [SECURITY] [DSA 1475-1] new gforge packages fix cross site scripting,
Thijs Kinkhorst
- [ MDVSA-2008:027 ] - Updated pulseaudio packages fix local root vulnerability,
security
- Two vulnerabilities for PatchLink Update Client for Unix.,
lcashdol
- [ MDVSA-2008:026 ] - Updated icu packages fix vulnerabilities,
security
- C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Authentication Vulnerability,
Eyal Udassin
- C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Arbitrary File Upload and Execution,
Eyal Udassin
- C4 Security Advisory - GE Fanuc Cimplicity 6.1 Heap Overflow,
Eyal Udassin
- gdb bug,
digit2004
- [CandyPress] eCommerce suite (SQL Injection + XSS + Path Disclosure),
Admin
- Pre Dynamic Institution bypass,
milad_sa2007
- E-SMART CART bypass,
milad_sa2007
- Pre Hotel and Resorts reservation portal login bypass,
milad_sa2007
- phpBB 2.0.22 Remote PM Delete XSRF Vulnerability,
nbbn
- iDefense Security Advisory 01.22.08: IBM Tivoli PMfOSD HTTP Request Method Buffer Overflow Vulnerability,
iDefense Labs
- rPSA-2008-0030-1 CherryPy,
rPath Update Announcements
- rPSA-2008-0029-1 bind bind-utils,
rPath Update Announcements
- iDefense Security Advisory 01.23.08: IBM AIX pioout BSS Buffer Overflow Vulnerability,
iDefense Labs
- Tiger PHP News System SQL Injection,
0in . email
- [ MDVSA-2008:024 ] - Updated libxfont packages fix font handling vulnerability,
security
- [ MDVSA-2008:023 ] - Updated x11-server packages fix multiple vulnerabilities,
security
- [ MDVSA-2008:022 ] - Updated xorg-x11 packages fix multiple vulnerabilities,
security
- [ MDVSA-2008:021 ] - Updated XFree86 packages fix multiple vulnerabilities,
security
- ImageShack Toolbar FileUploader Class insecurities,
retrog
- [ MDVSA-2008:025 ] - Updated x11-server-xgl packages fix multiple vulnerabilities,
security
- PIX Privilege Escalation Vulnerability,
tbbunn
- [ GLSA 200801-10 ] TikiWiki: Multiple vulnerabilities,
Raphaël Marichez
- [SECURITY] [DSA 1444-2] New php5 packages fix regression,
Moritz Muehlenhoff
- [SECURITY] [DSA 1474-1] New exiv2 packages fix arbitrary code execution,
Moritz Muehlenhoff
- Woltlab Burning Board 2.3.6 PL2 Remote Delete Thread XSRF Vulnerability,
nbbn
- Syhunt: HFS (HTTP File Server) Username Spoofing and Log Forging/Injection Vulnerability,
Felipe M. Aragon
- Syhunt: HFS (HTTP File Server) Log Arbitrary File/Directory Manipulation and Denial-of-Service Vulnerabilities,
Felipe M. Aragon
- Syhunt: HFS (HTTP File Server) Template Cross-Site Scripting and Information Disclosure Vulnerabilities,
Felipe M. Aragon
- Cisco Security Advisory: Default Passwords in the Application Velocity System,
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco PIX and ASA Time-to-Live Vulnerability,
Cisco Systems Product Security Incident Response Team
- [ MDVSA-2008:020 ] - Updated xine-lib packages fix remote code execution vulnerabilities,
security
- Web Wiz NewsPad Directory traversal,
admin
- Web Wiz Rich Text Editor Directory traversal + HTM/HTML file creation on the server,
admin
- Web Wiz Forums Directory traversal,
admin
- UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages,
VMware Security team
- [security bulletin] HPSBUX02306 SSRT071463 rev.1 - HP-UX Running ARPA Transport, Remote Denial of Service (DoS),
security-alert
- PHP 5.2.5 cURL safe_mode bypass,
cxib
- SDL_Image 1.2.6 and prior GIF handling buffer overflow,
Gynvael Coldwind
- Apache mod_negotiation Xss and Http Response Splitting,
Minded Security Research Labs
- XSRF under Dean’s Permalinks Migration 1.0,
g30rg3_x
- Belong Site Builder 0.1b Bypass Admincp,
رومانسي هكر
- DeluxeBB 1.1 XSS Vulnerabilitie,
nbbn
- PacerCMS Multiple Vulnerabilities (XSS/SQL),
db
- [ MDVSA-2008:018 ] - Updated gFTP packages fix vulnerabilities,
security
- [SECURITY] [DSA 1473-1] New scponly packages fix arbitrary code execution,
Florian Weimer
- Troopers 08 Security Conference, Call for Papers,
Enno Rey
- [ MDVSA-2008:019 ] - Updated cairo packages fix vulnerability,
security
- PR07-38: XSS on sIFR,
ProCheckUp Research
- [SECURITY] [DSA 1472-1] New xine-lib packages fix arbitrary code execution,
Moritz Muehlenhoff
- [SECURITY] [DSA 1471-1] New libvorbis packages fix several vulnerabilities,
Moritz Muehlenhoff
- [waraxe-2008-SA#064] - Sql Injection in MyBB 1.2.11,
come2waraxe
- [waraxe-2008-SA#063] - Information Leakage in Kayako SupportSuite 3.11.01,
come2waraxe
- [ MDVSA-2008:017 ] - Updated MySQL packages fix multiple vulnerabilities,
security
- [ GLSA 200801-07 ] Adobe Flash Player: Multiple vulnerabilities,
Robert Buchholz
- [SECURITY] [DSA 1469-1] New flac packages fix arbitrary code execution,
Moritz Muehlenhoff
- Belkin Wireless G Plus MIMO Router F5D9230-4 Authentication Bypass Vulnerability,
gmdarkfig
- [SECURITY] [DSA 1470-1] New horde3 packages fix denial of service,
Moritz Muehlenhoff
- [ GLSA 200801-08 ] libcdio: User-assisted execution of arbitrary code,
Robert Buchholz
- BLOG:CMS 4.2.1.c (DIR_PLUGINS) Multiple Remote File Include,
رومانسي هكر
- Pass-The-Hash Toolkit v1.2 released.,
Hernan Ochoa
- Call Jacking: Phreaking the BT Home Hub,
Adrian P
- [ GLSA 200801-09 ] X.Org X server and Xfont library: Multiple vulnerabilities,
Robert Buchholz
- boastMachine <=3.1 SQL Injection Vulnerbility,
hadihadi_zedehal_2006
- Flaw in Alice gate2 pluswifi adsl modem,
wargame89
- WifiZoo v1.3 released (minor release),
Hernan Ochoa
- MegaBBS ASP Forum Cross-Site Scripting,
grossman
- AXIGEN 5.0.x AXIMilter Format String Exploit,
hempel
- Php Search Remote Inclusion,
effectiveness63
- [SECURITY] [DSA 1468-1] New tomcat5.5 packages fix several vulnerabilities,
Moritz Muehlenhoff
- Bloofox CMS SQL Injection (Authentication bypass) , Source code disclosure,
admin
- [USN-571-2] X.org regression,
Kees Cook
- BitDefender Update Server - Unauthorized Remote File Access Vulnerability,
oliver karow
- [SECURITY] [DSA 1467-1] New mantis packages fix several vulnerabilities,
Thijs Kinkhorst
- [SECURITY] [DSA 1466-2] New xorg-server packages fix regression,
Moritz Muehlenhoff
- [USN-572-1] apt-listchanges vulnerability,
Kees Cook
- MyBB 1.2.11 Multiple XSRF Vulnerabilities,
nbbn
- Making big money...,
jmacaranas
- SocksCap Stack Overflow (<= 2.40-051231),
azizov
- common dns misconfiguration can lead to "same site" scripting,
Tavis Ormandy
- New search engine for exploits,
Security Basic
- ZDI-08-002: Citrix Presentation Server IMA Service Heap Overflow Vulnerability,
zdi-disclosures
- Agares PhpAutoVideo 2.21(XSS/RFI) Multiple Remote Vulnerabilities,
houssamix
- [USN-571-1] X.org vulnerabilities,
Kees Cook
- [FIXED] Remote Denial of Service for SSH service at Dell DRAC4 (maybe Mocana SSH),
Robert Scheck
- IMF 2008 - Call for Papers,
Oliver Goebel
- iDefense Security Advisory 01.17.08: Multiple Vendor X Server XFree86-Misc Extension Invalid Array Index Vulnerability,
iDefense Labs
- iDefense Security Advisory 01.17.08: Multiple Vendor X Server EVI and MIT-SHM Extensions Integer Overflow Vulnerabilities,
iDefense Labs
- iDefense Security Advisory 01.17.08: Multiple Vendor X Server TOG-CUP Extension Information Disclosure Vulnerability,
iDefense Labs
- iDefense Security Advisory 01.17.08: Multiple Vendor X Server XInput Extension Multiple Memory Corruption Vulnerabilities,
iDefense Labs
- CORE-2007-1119: CORE FORCE Kernel Buffer Overflow,
CORE Security Technologies Advisories
- RE: Skype videomood XSS,
avivra
- [CSNC] OKI C5510MFP Printer Password Disclosure,
Adrian Leuenberger
- Clever Copy <=3.0 Multiple Remote Vulnerabilities,
hadihadi_zedehal_2006
- [SECURITY] [DSA 1465-2] New apt-listchanges packages fix arbitrary code execution,
Steve Kemp
- rPSA-2008-0021-1 kernel,
rPath Update Announcements
- [ MDVSA-2008:016 ] - Updated apache 2.2.x packages fix multiple vulnerabilities,
security
- rPSA-2008-0018-1 mysql mysql-bench mysql-server,
rPath Update Announcements
- PHPEchoCMS Multible remote vulnerabilitis,
security
- JoomlaFlash Component Multiple Remote File Inclusion,
Smasher
- [SECURITY] [DSA 1465-1] New apt-listchanges packages fix arbitrary code execution,
Steve Kemp
- [security bulletin] HPSBMA02133 SSRT061201 rev.7 - HP Oracle for OpenView (OfO) Critical Patch Update,
security-alert
- [ MDVSA-2008:015 ] - Updated apache 2.0.x packages fix multiple vulnerabilities,
security
- [USN-570-1] boost vulnerabilities,
Jamie Strandboge
- [ MDVSA-2008:014 ] - Updated apache 1.3.x packages fix multiple vulnerabilities,
security
- Gradman <= 0.1.3 (agregar_info.php?tabla=) Local File Inclusion Exploit,
sys-project
- [waraxe-2008-SA#061] - Remote Code Execution in MyBB 1.2.10,
come2waraxe
- SQL scalar function to convert big int to dot notation,
Thor (Hammer of God)
- TPTI-08-02: Cisco Call Manager CTLProvider Heap Overflow Vulnerability,
DVLabs
- [waraxe-2008-SA#062] - Multiple Sql Injections in MyBB 1.2.10,
come2waraxe
- Country by Country Computer Sets now available for ISA 2004,
Thor (Hammer of God)
- Peers static overflow in BitTorrent 6.0 and uTorrent 1.7.5,
Luigi Auriemma
- mcGuestbook v1.2 Remote File Inc.,
gokhankaya
- iDefense Security Advisory 01.15.08: Apple QuickTime Macintosh Resource Processing Heap Corruption Vulnerability,
iDefense Labs
- Cisco Security Advisory: Cisco Unified Communications Manager CTL Provider Heap Overflow,
Cisco Systems Product Security Incident Response Team
- [Aria-Security.Net] Real Estate Web SQL Injection,
no-reply
- TPTI-08-01: Apple Quicktime Image File IDSC Atom Memory Corruption Vulnerability,
DVLabs
- 8e6 Technologies R3000 Internet Filter Bypass by Request Split,
nnposter
- rPSA-2008-0017-1 libxml2,
rPath Update Announcements
- [DSECRG-08-002] Local File Include in arias 0.99-6,
Digital Security Research Group [DSecRG]
- rPSA-2008-0016-1 postgresql postgresql-server,
rPath Update Announcements
- cPanel Hosting Manager (dohtaccess.html),
no-reply
- rPSA-2008-0015-1 cairo,
rPath Update Announcements
- [SECURITY] [DSA 1464-1] New syslog-ng packages fix denial of service,
Moritz Muehlenhoff
- RichStrong CMS (showproduct.asp?cat=) Remote SQL Injection Exploit,
sys-project
- [DSECRG-08-003] blogcms 4.2.1b Multiple Security Vulnerabilities,
Digital Security Research Group [DSecRG]
- iDefense Security Advisory 01.15.08: TIBCO SmartSockets RTServer Multiple Untrusted Loop Bounds Vulnerabilities,
iDefense Labs
- iDefense Security Advisory 01.15.08: TIBCO SmartSockets RTserver Multiple Untrusted Pointer Offset Vulnerabilities,
iDefense Labs
- iDefense Security Advisory 01.15.08: TIBCO SmartSockets RTServer Multiple Untrusted Pointer Vulnerabilities,
iDefense Labs
- iDefense Security Advisory 01.15.08: TIBCO SmartSockets RTserver Heap Overflow Vulnerability,
iDefense Labs
- Pipe to FOR Crashes CMD,
James C. Slora Jr.
- MicroNews Admin Direct Access vulnerability,
xcross87
- Max's File Uploader File Upload Vulnerability,
xcross87
- Article DashBoard all version SQL Injection Vulnerability,
xcross87
- SecurityReason - Apache (mod_status) Refresh Header - Open Redirector (XSS),
sp3x
- Exploiting the SpamBam plugin for wordpress,
"JosŽé M. Palazón Romero"
- Country by Country ISA Computer Sets,
Thor (Hammer of God)
- Re: Country by Country ISA Computer Sets,
GomoR
- Message not available
Defeating audio captcha systems,
"JosŽé M. Palazón Romero"
[USN-569-1] libxml2 vulnerability,
Kees Cook
FreeBSD Security Advisory FreeBSD-SA-08:02.libc,
FreeBSD Security Advisories
FreeBSD Security Advisory FreeBSD-SA-08:01.pty,
FreeBSD Security Advisories
[ MDVSA-2008:013 ] - Updated python packages fix vulnerability in imageop module,
security
[ MDVSA-2008:012 ] - Updated python packages fix vulnerabilities,
security
[security bulletin] HPSBST02304 SSRT080003 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-001 to MS08-002,
security-alert
[security bulletin] HPSBUX02303 SSRT071468 rev.1 - HP-UX Running X Font Server (xfs) Software, Remote Execution of Arbitrary Code,
security-alert
[SECURITY] [DSA 1461-1] New libxml2 packages fix denial of service,
Moritz Muehlenhoff
[USN-568-1] PostgreSQL vulnerabilities,
Jamie Strandboge
[SECURITY] [DSA 1463-1] New postgresql-7.4 packages fix several vulnerabilities,
Moritz Muehlenhoff
Hacking The Interwebs,
pdp (architect)
ZDI-08-001: IBM Tivoli Storage Manager Express Backup Server Heap Overflow Vulnerability,
zdi-disclosures
Binn SBuilder (nid) Remote Blind Sql Injection Vulnerabily,
sys-project
[SECURITY] [DSA 1459-1] New gforge packages fix SQL injection,
Thijs Kinkhorst
RE: At long last - Extra Outlooks!,
Thor (Hammer of God)
SQID v0.3 - SQL Injection Digger.,
Metaeye SG
[SECURITY] [DSA 1460-1] New postgresql-8.1 packages fix several vulnerabilities,
Moritz Muehlenhoff
[ MDVSA-2008:009-1 ] - Updated autofs packages fix insecure hosts configuration,
security
F5 BIG-IP Web Management List Search XSS,
nnposter
what is this?,
crazy frog crazy frog
Re: what is this?,
Gadi Evron
Re: what is this?,
Denis
Re: what is this?,
Yousef Syed
<Possible follow-ups>
Re: what is this?,
admin
[SECURITY] [DSA 1462-1] New hplip packages fix privilege escalation,
Moritz Muehlenhoff
Garment Center (index.cgi) Local File Inclusion,
Smasher
[ MDVSA-2008:008 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
[ MDVSA-2008:009 ] - Updated autofs packages fix insecure hosts configuration,
security
Safari 2 Denial of Service,
S21sec labs
[ MDVSA-2008:011 ] - Updated rsync packages fix restrictions bypass vulnerabilities,
security
[ MDVSA-2008:010 ] - Updated libxml2 packages fix DoS vulnerability,
security
Cross site scripting (XSS) in Moodle 1.8.3,
Hanno Böck
Naymz multiple XSS,
morin . josh
CFP: EuroSec Workshop (March 31st, 2008),
Stefano Zanero
Member Area System (MAS) Remote File Include Vulnerability (view_func.php),
ship_nx
ImageAlbum Remote SQL Injection Vulnerabilities,
db
re-resting of zzuf results,
Hanno Böck
SecurityReason - Apache2 CSRF, XSS, Memory Corruption and Denial of Service Vulnerability,
sp3x
SecurityReason - Apache (mod_proxy_ftp) Undefined Charset UTF-7 XSS Vulnerability,
sp3x
[ MDVSA-2008:007 ] - Updated madwifi-source, wpa_supplicant packages fix vulnerabilities,
security
At long last -- Extra Outlooks!,
Thor (Hammer of God)
[USN-567-1] Dovecot vulnerability,
Kees Cook
[ MDVSA-2008:006 ] - Updated exiv2 packages fix vulnerability,
security
[SECURITY] [DSA 1458-1] New openafs packages fix denial of service vulnerability,
Noah Meyerhans
MTCMS <=2.0 SQL Injection Vulnerbility,
hadihadi_zedehal_2006
Buffer-overflow in Quicktime Player 7.3.1.70,
Luigi Auriemma
<Possible follow-ups>
Re: Re: Buffer-overflow in Quicktime Player 7.3.1.70,
none
Re: Re: Buffer-overflow in Quicktime Player 7.3.1.70,
snagg
Word 2007 Email as PDF path disclosure flaw,
ebk_lists
BT Home Flub: Pwnin the BT Home Hub (5) - exploiting IGDs remotely via UPnP,
Adrian P
[ GLSA 200801-06 ] Xfce: Multiple vulnerabilities,
Robert Buchholz
Digital Armaments January-February Hacking Challenge: Special 20.000$ Prize - Windows Vulnerabilities and Exploit,
info
[USN-566-1] OpenSSH vulnerability,
Kees Cook
PR07-06, PR07-07, PR07-08, PR07-09, PR07-10, PR07-12: Several XSS, Cross-domain Redirection and Frame Injection on Sun Java System Identity Manager,
ProCheckUp Research
Simple Machines Forum Cross-Site Scripting Vulnerabilities,
DoZ
uCon 2008 call for participation - Recife, Brazil,
ucon
[SECURITY] [DSA 1457-1] New dovecot packages fix information disclosure,
Thijs Kinkhorst
[ MDVSA-2008:005 ] - Updated libexif packages fix multiple vulnerabilities,
security
[ GLSA 200801-04 ] OpenAFS: Denial of Service,
Pierre-Yves Rofes
[USN-565-1] Squid vulnerability,
Kees Cook
[ GLSA 200801-05 ] Squid: Denial of Service,
Pierre-Yves Rofes
[SECURITY] [DSA 1456-1] New fail2ban packages fix denial of service,
Thijs Kinkhorst
[ GLSA 200801-03 ] Claws Mail: Insecure temporary file creation,
Pierre-Yves Rofes
iDefense Security Advisory 01.09.08: Novell NetWare Client nicm.sys Local Privilege Escalation Vulnerability,
iDefense Labs
[USN-563-1] CUPS vulnerabilities,
Kees Cook
[ GLSA 200801-02 ] R: Multiple vulnerabilities,
Pierre-Yves Rofes
[USN-561-1] pwlib vulnerability,
Kees Cook
[USN-564-1] Net-SNMP vulnerability,
Jamie Strandboge
[INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected,
infocus
Pre-auth remote commands execution in SAP MaxDB 7.6.03.07,
Luigi Auriemma
[ MDVSA-2008:003 ] - Updated clamav packages fix multiple vulnerabilities,
security
[ GLSA 200801-01 ] unp: Arbitrary command execution,
Robert Buchholz
Privileg escalation in Omegasoft Insel 7,
MC Iglo
[ MDVSA-2008:004 ] - Updated postgresql packages fix denial of service and privilege escalation issues,
security
[USN-562-1] opal vulnerability,
Kees Cook
[INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS,
infocus
[Index of Archives]
[Netfilter]
[Security]
[PHP]
[Linux Kernel]
