Bugtraq
[Prev Page][Next Page]
- [USN-543-1] VMWare vulnerabilities,
Kees Cook
- [ MDKSA-2007:220 ] - Updated gpdf packages fix vulnerabilities,
security
- PR07-26: Persistent XSS on Aruba 800 Mobility Controller's login page,
research
- PR07-02: XSS on Liferay Portal Enterprise 4.1.1 login page ('login' parameter),
research
- [USN-542-2] KOffice vulnerabilities,
Jamie Strandboge
- EEYE: Multiple Vulnerabilities In .FLAC File Format and Various Media Applications,
eEye Advisories
- [ MDKSA-2007:219 ] - Updated xpdf packages fix vulnerabilities,
security
- [TKADV2007-001] Mac OS X TIOCSETD IOCTL Kernel Memory Corruption Vulnerability,
Tobias Klein
- Aida-Web Information Exposure,
MC Iglo
- iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk Socket IOCTL Kernel Stack Buffer Overflow Vulnerability,
iDefense Labs
- Secunia Research: Samba "reply_netbios_packet()" Buffer Overflow Vulnerability,
Secunia Research
- [SAMBA] CVE-2007-5398 - Remote Code Execution in Samba's nmbd,
Gerald (Jerry) Carter
- [SAMBA] CVE-2007-4572 - GETDC mailslot processing buffer overrun in nmbd,
Gerald (Jerry) Carter
- [security bulletin] HPSBUX02284 SSRT071483 rev.2 - HP-UX Running Java JRE and JDK, Remote Unauthorized Access,
security-alert
- iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk ASP Message Kernel Heap Overflow Vulnerability,
iDefense Labs
- Some hashes for the record,
shadown
- iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance Privilege Escalation Vulnerability,
iDefense Labs
- iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk mbuf Kernel Heap Overflow Vulnerability,
iDefense Labs
- [ GLSA 200711-20 ] Pioneers: Denial of Service,
Pierre-Yves Rofes
- Breaking RSA: Totient indirect factorization,
gandlf
- [ GLSA 200711-19 ] TikiWiki: Multiple vulnerabilities,
Pierre-Yves Rofes
- TPTI-07-20: Apple Quicktime Movie Stack Overflow Vulnerability,
DVLabs
- [ GLSA 200711-18 ] Cpio: Buffer overflow,
Pierre-Yves Rofes
- [ GLSA 200711-17 ] Ruby on Rails: Multiple vulnerabilities,
Pierre-Yves Rofes
- [security bulletin] HPSBMA02288 SSRT071465 rev.1 - HP OpenView Operations (OVO) Running on HP-UX and Solaris, Remote Unauthorized Access, Denial of Service (DoS),
security-alert
- [ MDKSA-2007:218 ] - Updated mono packages fix arbitrary code execution vulnerability,
security
- Six Remote Memory Corruption Vulnerabilities in IBM WebSphere MQ 6.0,
IRM Research
- Konqueror Remote Denial Of Service,
laurent . gaffie
- DocuSafe "Search" SQL Injection,
No-Reply
- Free Forums "search" Sql Injection,
No-Reply
- [USN-542-1] poppler vulnerabilities,
Kees Cook
- Predictable DNS transaction IDs in Microsoft DNS Server,
Alla Bezroutchko
- Aria-Security.Net: MetaCart SQL Injection,
No-Reply
- ExoPHPdesk user profile XSS / profile SQL injection,
Joseph . giron13
- [USN-541-1] Emacs vulnerability,
Kees Cook
- [ MDKSA-2007:217 ] - Updated libpng packages fix multiple vulnerabilities,
security
- iDefense Security Advisory 11.12.07: Novell NetWare Client Local Privilege Escalation Vulnerability,
iDefense Labs
- [USN-540-1] flac vulnerability,
Kees Cook
- Oracle 11g/10g Installation Vulnerability,
David Litchfield
- PHP <= 5.2.5 Gettext Lib Multiple Denial of service,
laurent . gaffie
- PHP <= 5.2.5 stream_wrapper_register() denial of service,
laurent . gaffie
- After 6 months - fix available for Microsoft DNS cache poisoning attack,
Amit Klein
- [ MDKSA-2007:216 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
- ATC-08 Call for papers (repost),
atc08
- [ISecAuditors Security Advisories] VTLS.web.gateway cgi is vulnerable to XSS,
ISecAuditors Security Advisories
- PR07-13: Cross-site Scripting / HTML injection on F5 FirePass 4100 SSL VPN 'download_plugin.php3' server-side script,
research
- [ GLSA 200711-16 ] CUPS: Memory corruption,
Pierre-Yves Rofes
- [ MDKSA-2007:204-1 ] - Updated cups packages fix vulnerability,
security
- [ GLSA 200711-15 ] FLAC: Buffer overflow,
Pierre-Yves Rofes
- [ GLSA 200711-14 ] Mozilla Firefox, SeaMonkey, XULRunner: Multiple vulnerabilities,
Pierre-Yves Rofes
- AutoIndex <= 2.2.2 Cross Site Scripting and Denial of Service,
L4teral
- HPSBUX02287 SSRT071485 rev.1 - HP-UX Running HP Secure Shell, Remotely Gain Extended Privileges,
security-alert
- RFID: Security Briefings,
angelo
- Cisco IOS Shellcode,
Research
- FLEA-2007-0067-1 pidgin,
Foresight Linux Essential Announcement Service
- Alice - dns spoofer,
fabio
- FLEA-2007-0065-1 libpng,
Foresight Linux Essential Announcement Service
- FLEA-2007-0069-1 perl,
Foresight Linux Essential Announcement Service
- iDefense Security Advisory 11.12.07: WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Vulnerability,
iDefense Labs
- FLEA-2007-0064-1 pcre,
Foresight Linux Essential Announcement Service
- FLEA-2007-0068-1 ruby,
Foresight Linux Essential Announcement Service
- FLEA-2007-0063-1 perl,
Foresight Linux Essential Announcement Service
- PHP-Nuke Module Advertising Blind SQL Injection,
Guns
- CVE-2007-3694: Cross site scripting (XSS) in broadcast machine,
Hanno Böck
- PeopleAggregatory security advisory - re CVE-2007-5631,
phil
- Standing Up Against German Laws - Project HayNeedle,
Paul Sebastian Ziegler
- Re: Re: Simple Machine Forum - Private section/posts/info disclosure,
rx
- Oracle 0-day to get SYSDBA access,
pete
- FLEA-2007-0066-1 ImageMagick,
Foresight Linux Essential Announcement Service
- Eggblog v3.1.0 XSS Vulnerability,
mesut
- [SECURITY] [DSA 1405-2] New zope-cmfplone packages fix regression,
Thijs Kinkhorst
- Aria-Security.Net Research: Rapid Classified HotList Image,
Advisory
- [48Bits Advisory] QuickTime Panorama Sample Atom Heap Overflow,
[48bits] vulndev
- iDefense Security Advisory 11.09.07: AOL AmpX ActiveX Control Multiple Buffer Overflow Vulnerabilities,
iDefense Labs
- [SECURITY] [DSA 1406-1] New horde3 packages fix several vulnerabilities,
Thijs Kinkhorst
- iDefense Security Advisory 11.09.07: IBM Informix Dynamic Server DBLANG Directory Traversal Vulnerability,
iDefense Labs
- SQL injection bug found in TBSource.,
drakomo
- [SECURITY] [DSA 1405-1] New zope-cmfplone packages fix arbitrary code execution,
Thijs Kinkhorst
- xoops mylinks module - sql injection,
root
- [ MDKSA-2007:214 ] - Updated flac packages fix vulnerability,
security
- li-guestbook sql inj,
abc . seo
- [ MDKSA-2007:215 ] - Updated openldap packages fix vulnerability,
security
- CanSecWest 2008 CFP (deadline Nov 30, conf Mar 26-28) and PacSec Dojo's,
Dragos Ruiu
- [SECURITY] [DSA 1403-1] New phpmyadmin packages fix cross-site scripting,
Thijs Kinkhorst
- AST-2007-024 - Fallacious security advisory spread on the Internet involving buffer overflow in Zaptel's sethdlc application,
The Asterisk Development Team
- [SECURITY] [DSA 1404-1] New gallery2 packages fix privilege escalation,
Thijs Kinkhorst
- [ MDKSA-2007:212 ] - Updated pcre packages fix vulnerability,
security
- [ MDKSA-2007:213 ] - Updated pcre packages fix vulnerability,
security
- Aria-Security.Net Research: Lotfian BROCHURE Management System,
Advisory
- [ MDKSA-2007:211 ] - Updated pcre packages fix vulnerability,
security
- [ GLSA 200711-13 ] 3proxy: Denial of Service,
Pierre-Yves Rofes
- [security bulletin] HPSBUX02285 SSRT071484 rev.1 - HP-UX Running Aries PA Emulator, Local Unauthorized Access,
security-alert
- [ GLSA 200711-11 ] Nagios Plugins: Two buffer overflows,
Pierre-Yves Rofes
- [ GLSA 200711-12 ] Tomboy: User-assisted execution of arbitrary code,
Pierre-Yves Rofes
- [OpenPKG-SA-2007.023] OpenPKG Security Advisory (perl),
OpenPKG GmbH
- Simple Machine Forum - Private section/posts/info disclosure,
h3llcode
- Aria-Security.Net Research: Request For Travel Sql Injection,
Advisory
- [ GLSA 200711-10 ] Mono: Buffer overflow,
Pierre-Yves Rofes
- [ GLSA 200711-09 ] MadWifi: Denial of Service,
Pierre-Yves Rofes
- iDefense Security Advisory 11.07.07: Oracle 10g R2 PITRIG_DROPMETADATA Buffer Overflow Vulnerability,
iDefense Labs
- [SECURITY] [DSA 1402-1] New gforge packages fix several vulnerabilities,
Steve Kemp
- [ GLSA 200711-08 ] libpng: Multiple Denials of Service,
Pierre-Yves Rofes
- [ GLSA 200711-07 ] Python: User-assisted execution of arbitrary code,
Pierre-Yves Rofes
- [ GLSA 200711-06 ] Apache: Multiple vulnerabilities,
Pierre-Yves Rofes
- Secunia Research: Xpdf "Stream.cc" Multiple Vulnerabilities,
Secunia Research
- Secunia Research: AbiWord Link Grammar "separate_sentence()" Buffer Overflow,
Secunia Research
- Secunia Research: Link Grammar "separate_sentence()" Buffer Overflow,
Secunia Research
- SiteMinder Agent: Cross Site Scripting,
Giuseppe Gottardi
- [ GLSA 200711-05 ] SiteBar: Multiple issues,
Pierre-Yves Rofes
- [ MDKSA-2007:210 ] - Updated xfs package prevents arbitrary code execution vulnerabilities,
security
- [ GLSA 200711-04 ] Evolution: User-assisted remote execution of arbitrary code,
Pierre-Yves Rofes
- [SECURITY] [DSA 1400-1] New perl packages fix arbitrary code execution,
Florian Weimer
- MyWebFTP Password Disclosure,
[NO-REPLY]
- iDefense Security Advisory 11.06.07: Microsoft DebugView Privilege Escalation Vulnerability,
iDefense Labs
- rPSA-2007-0231-1 pcre,
rPath Update Announcements
- PhpNuke (add-on) MS TopSites Edit Exploit And Html Injection,
Guns
- Cypress BX script backdoored?,
Chris
- IDMOS v1.0 Alpha Multiple RFI Vulnerability,
Guns
- SMF .htaccess bypass,
h3llcode
- [CVE-2007-5741] Plone: statusmessages and linkintegrity unsafe network data hotfix,
mj
- [ MDKSA-2007:209 ] - Updated netpbm packages fix vulnerability,
security
- [USN-539-1] CUPS vulnerability,
Kees Cook
- rPSA-2007-0232-1 perl,
rPath Update Announcements
- [ MDKSA-2007:208 ] - Updated ghostscript packages fix vulnerability,
security
- [ MDKSA-2007:207 ] - Updated perl packages fix vulnerability,
security
- [SECURITY] [DSA 1401-1] New iceape packages fix several vulnerabilities,
Moritz Muehlenhoff
- ZDI-07-067: Apple QuickTime PICT File Poly Opcodes Heap Corruption Vulnerability,
zdi-disclosures
- ZDI-07-066: Apple Quicktime PICT File PackBitsRgn Parsing Heap Corruption Vulnerability,
zdi-disclosures
- ZDI-07-068: Apple QuickTime Uncompressedfile Opcode Stack Overflow Vulnerability,
zdi-disclosures
- ZDI-07-065: Apple QuickTime Color Table RGB Parsing Heap Corruption Vulnerability,
zdi-disclosures
- iDefense Security Advisory 11.05.07: Apple QuickTime Panorama Sample Atom Heap Buffer Overflow Vulnerability,
iDefense Labs
- [SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution,
Florian Weimer
- iDefense Security Advisory 11.02.07: Sun Microsystems Solaris srsexec Format String Vulnerability,
iDefense Labs
- [Tool] sqlmap: a blind SQL injection tool (release 0.5),
Bernardo Damele
- [SECURITY] [DSA 1398-1] New perdition packages fix arbitrary code execution,
Noah Meyerhans
- JBC Explorer <= V7.20 RC 1 Remote Code Execution Exploit,
gmdarkfig
- Skalinks <= 1_5 Cross Site Request Forgery Add Admin,
djvincy
- [SECURITY] [DSA 1397-1] New mono packages fix integer overflow,
Moritz Muehlenhoff
- [ MDKSA-2007:206 ] - Updated pwlib packages fix vulnerability,
security
- phphelpdesk Multiple vulnerabilities,
Joseph . giron13
- [ MDKSA-2007:205 ] - Updated opal packages fix vulnerability,
security
- DoS Exploit for DHCPd bug (Bugtraq ID 25984 ; CVE-2007-5365),
Roman Medina-Heigl Hernandez
- [ GLSA 200711-02 ] OpenSSH: Security bypass,
Pierre-Yves Rofes
- [UPH-07-01] Firefly Media Server DoS,
nnp
- [UPH-07-02] Firefly Media Server DoS,
nnp
- [UPH-07-03] Firefly Media Server remote format string vulnerability,
nnp
- Re: [botnets] re MAC trojan (fwd),
Gadi Evron
- [USN-537-2] Compiz vulnerability,
Kees Cook
- Scribe <= 2.0 Remote PHP Code Execution,
kingoftheworld92
- Secunia Research: ACDSee Products Image and Archive Plug-ins Buffer Overflows,
Secunia Research
- [ GLSA 200711-03 ] Gallery: Multiple vulnerabilities,
Pierre-Yves Rofes
- IM upgrade automated social engineering attack,
Dragos Ruiu
- [ GLSA 200711-01 ] gFTP: Multiple vulnerabilities,
Pierre-Yves Rofes
- ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability,
zdi-disclosures
- [ MDKSA-2007:204 ] - Updated cups packages fix vulnerability,
security
- [ MDKSA-2007:203 ] - Updated xen packages fix multiple vulnerabilities,
security
- Two XSS on Blue Coat ProxySG Management Console,
research
- Cryptome: NSA has access to Windows Mobile smartphones,
Juha-Matti Laurio
- ZDI-07-062: RealNetworks RealPlayer PLS File Memory Corruption Vulnerability,
zdi-disclosures
- SEC Consult SA-20071101-0 :: Multiple Vulnerabilities in SonicWALL SSL-VPN Client,
Bernhard Mueller
- mac trojan in-the-wild,
Gadi Evron
- Re: [Full-disclosure] mac trojan in-the-wild,
Peter Besenbruch
- <Possible follow-ups>
- RE: mac trojan in-the-wild,
Memisyazici, Aras
(tool announce) Orizon v0.50 announce,
Paolo Perego
ZDI-07-061: RealNetworks RealPlayer SWF Processing Remote Code Execution Vulnerability,
zdi-disclosures
ZDI-07-064: Novell Client Trust Heap Overflow Vulnerability,
zdi-disclosures
Synergiser <= 1.2 RC1 Local File Inclusion & Full path disclosure,
kingoftheworld92
sBlog 0.7.3 Beta Cross Site Request Forgery,
Guns
ZDI-07-060: HP OpenView Radia Integration Server File System Exposure Vulnerability,
zdi-disclosures
ZDI-07-059: Verity KeyView SDK Multiple File Format Parsing Vulnerabilities,
zdi-disclosures
CFP: International workshop on Secure Software Engineering - Deadline extended!,
secse08
ZDI-07-058: Oracle E-Business Suite SQL Injection Vulnerability,
zdi-disclosures
rPSA-2007-0227-1 cups,
rPath Update Announcements
(tool announcement) bunny the fuzzer,
Michal Zalewski
[security bulletin] HPSBMA02238 SSRT061260 rev.2 - HP OpenView Reporter Running Shared Trace Service, Remote Arbitrary Code Execution,
security-alert
[security bulletin] HPSBMA02237 SSRT061260 rev.2 - HP OpenView Performance Agent (OVPA) Running Shared Trace Service, Remote Arbitrary Code Execution,
security-alert
[security bulletin] HPSBMA02236 SSRT061260 rev.2 - HP OpenView Performance Manager (OVPM) Running Shared Trace Service on HP-UX, Solaris, and Windows, Remote Arbitrary Code Execution,
security-alert
iDefense Security Advisory 10.31.07: Symantec Altiris Deployment Solution TFTP/MTFTP Service Directory Traversal Vulnerability,
iDefense Labs
iDefense Security Advisory 10.31.07: Macrovision InstallShield Update Service ActiveX Unsafe Method Vulnerability,
iDefense Labs
SEC Consult SA-20071031-0 :: Perdition IMAP Proxy Format String Vulnerability,
Bernhard Mueller
Secunia Research: McAfee E-Business Server Auth Packet Handling Buffer Overflow,
Secunia Research
Secunia Research: CUPS IPP Tags Memory Corruption Vulnerability,
Secunia Research
In Memoriam: Jun-ichiro Hagino,
Dragos Ruiu
[ GLSA 200710-30 ] OpenSSL: Remote execution of arbitrary code,
Pierre-Yves Rofes
ILIAS <= 3.8.3 Cross Site Scripting,
L4teral
[ GLSA 200710-31 ] Opera: Multiple vulnerabilities,
Raphael Marichez
iDefense Security Advisory 10.30.07: IBM AIX ftp domacro Parameter Buffer Overflow Vulnerability,
iDefense Labs
iDefense Security Advisory 10.30.07: IBM AIX bellmail Stack Buffer Overflow Vulnerability,
iDefense Labs
Firefox / IE6 crash on javascript nested loops,
thabob
iDefense Security Advisory 10.30.07: IBM AIX lqueryvg Stack Buffer Overflow Vulnerability,
iDefense Labs
DeepSec 2007 Registration: hurry up, seats are filling fast,
Stefano Zanero
iDefense Security Advisory 10.30.07: IBM AIX lquerypv Stack Buffer Overflow Vulnerability,
iDefense Labs
iDefense Security Advisory 10.30.07: IBM AIX dig dns_name_fromtext Integer Underflow Vulnerability,
iDefense Labs
iDefense Security Advisory 10.30.07: IBM AIX 5.2 crontab BSS Buffer Overflow Vulnerability,
iDefense Labs
iDefense Security Advisory 10.30.07: IBM AIX swcons Local Arbitrary File Access Vulnerability,
iDefense Labs
Django 0.96 (stable) Admin Panel CSRF,
J. Carlos Nieto
Secunia Research: IPSwitch IMail Server IMail Client Buffer Overflow,
Secunia Research
Siebel Security Basics,
Jonathan Katz
RFIDIOt release - version 0.1q,
Adam Laurie
Airkiosk/formlib application is XSS vuln,
skienlab
Memory overwrites in JVM via malformed TrueType font,
NGSSoftware Insight Security Research
Untrusted Java applet can connect to localhost,
NGSSoftware Insight Security Research
Windows binary of "Virtual Floppy Drive 2.1" contains vulnerable zlib (CAN-2005-2096),
Stefan Kanthak
Heap overflow in RealPlayer ID3 tag parser,
NGSSoftware Insight Security Research
Comments re ISC's announcement on bind9 security,
Network Protocol Security
rPSA-2007-0225-2 firefox thunderbird,
rPath Update Announcements
[SECURITY] [DSA 1388-3] New dhcp packages fix arbitrary code execution,
Noah Meyerhans
SAXON version 5.4 SQL Injection Vulnerability,
securityresearch
SAXON version 5.4 Multiple Path Disclosure Vulnerabilities,
securityresearch
Secunia Research: IBM Tivoli Storage Manager Client CAD Service Script Insertion,
Secunia Research
Security Briefings,
angelo
Omnistar Live Software Cross-Site Scripting Vulrnability,
DoZ
FLEA-2007-0062-1 firefox,
Foresight Linux Essential Announcement Service
FLEA-2007-0061-1 sun-jre sun-jdk,
Foresight Linux Essential Announcement Service
How to subvert Oracle Database Vault,
Joxean Koret
Team SHATTER Alert: Oracle Database Buffer overflow vulnerability in procedure DBMS_AQADM_SYS.DBLINK_INFO,
Team SHATTER
Final Call for Papers for Security Track at ApacheCon Europe 2008,
Lars Eilebrecht
SAXON version 5.4 XSS Attack Vulnerability,
securityresearch
Team SHATTER Alert: Oracle Database Buffer overflow vulnerability in function MDSYS.SDO_CS.TRANSFORM,
Team SHATTER
AGTC-Membership system v1.1a (adduser) Remote Add Admin Exploit,
Guns
Webroot Desktop Firewall <=5.5.10.20 DNS recursion,
komarov
Advisory SE-2007-01: TikiWiki Remote PHP Code Evaluation Vulnerability,
Stefan Esser
[waraxe-2007-SA#059] - XSS in WordPress 2.3,
come2waraxe
teatro 1.6 ( basePath ) Remote File Include Vulnerability,
alkomandoz-hacker
Smart-Shop Shopping Cart Cross-Site Scripting Vulrnability,
DoZ
[SECURITY] [DSA 1396-1] New iceweasel packages fix several vulnerabilities,
Moritz Muehlenhoff
rPSA-2007-0225-1 firefox,
rPath Update Announcements
RealNetworks RealPlayer/RealOne Player/Helix Player Remote Memory Corruption,
Piotr Bania
FLEA-2007-0060-1 initscripts,
Foresight Linux Essential Announcement Service
Micro Login System v1.0 (userpwd.txt) Password Disclosure Vulnerability,
Guns
RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Corruption,
Piotr Bania
[USN-538-1] libpng vulnerabilities,
Kees Cook
[ GLSA 200710-28 ] Qt: Buffer overflow,
Raphael Marichez
[Trick] VigileCMS All Versions DataMining Remote Hash Disclosure,
kingoftheworld92
[ GLSA 200710-29 ] Sylpheed, Claws Mail: User-assisted remote execution of arbitrary code,
Raphael Marichez
Multi Host Forum Pro phpbb & ipb Multiple Sql Injection,
kingoftheworld92
TikiWiki <= 1.9.8.1 Cross Site Scripting / Local File Inclusion,
L4teral
IRM Discover More Vulnerabilities in Cisco IOS,
Andy Davis
usd250 helpdesk XSS vulnerabily.,
Joseph . giron13
Directory traversal flaw in shttp,
digineo Advisories
iDefense Security Advisory 10.25.07: Trend Micro Tmxpflt.sys IOCTL 0xa0284403 Buffer Overflow Vulnerability,
iDefense Labs
[PoC] DNS Recursion bandwidth amplification,
Shadow
i-Gallery 3.4 bug crack password!,
hackerbinhphuoc
First ever ModSecurity public training at OWASP/WASC conf in SJ,
Ofer Shezaf
rPSA-2007-0221-1 php php-mysql php-pgsql,
rPath Update Announcements
[SECURITY] [DSA 1395-1] New xen-utils packages fix file truncation,
Steve Kemp
HPSBMA02133 SSRT061201 rev.6 - HP Oracle for OpenView (OfO) Critical Patch Update,
security-alert
Flatnuke3 Remote Cookie Manipoulation / Privilege Escalation,
kingoftheworld92
[SECURITY] [DSA 1389-2] New zoph packages fix SQL injection,
Thijs Kinkhorst
[ GLSA 200710-27 ] ImageMagick: Multiple vulnerabilities,
Raphael Marichez
[ GLSA 200710-26 ] HPLIP: Privilege escalation,
Raphael Marichez
[ GLSA 200710-25 ] MLDonkey: Privilege escalation,
Raphael Marichez
iDefense Security Advisory 10.23.07: IBM Lotus Notes Client TagAttributeListCopy Buffer Overflow Vulnerability,
iDefense Labs
iDefense Security Advisory 10.23.07: IBM Lotus Domino IMAP Buffer Overflow Vulnerability,
iDefense Labs
OSI CODES - PHP Live! Remote File Inclusion,
[ NO REPLY ]
Bosdev Multiple vulnerabilities,
Joseph . giron13
Novell OpenSUSE SWAMP multiple XSS,
morin . josh
[GS07-02] RSA Keon Multiple Cross-Site Scripting Vulnerabilities,
Fatih Ozavci
rPSA-2007-0222-1 cpio tar,
rPath Update Announcements
[Aria-Security.Net] CodeWidgets.Com Online Event Registration Multiple login SQL Injection,
[ NO REPLY ]
Aleris Software Systems Web Publisher Calendar SQL injection,
Joseph . giron13
HPSBMA02279 SSRT071298 rev.1 - HP OpenView Configuration Management (CM) Infrastructure (Radia) and Client Configuration Manager (CCM) Running httpd.tkd, Remote Unauthorized Access to Data,
security-alert
Aria-Security.Net [Web based alpha tabbed address book SQL Injection],
[ NO REPLY ]
[SECURITY] [DSA 1394-1] New reprepro packages fix authentication bypass,
Thijs Kinkhorst
[USN-537-1] gnome-screensaver vulnerability,
Kees Cook
[USN-536-1] Thunderbird vulnerabilities,
Kees Cook
[USN-531-2] dhcp vulnerability,
Kees Cook
[SECURITY] [DSA 1372-2] New ktorrent packages fix directory traversal,
Steve Kemp
3proxy 0.5.3j released (bugfix),
3APA3A
[SECURITY] [DSA 1393-1] New xfce4-terminal packages fix arbitrary command execution,
Steve Kemp
SYMSA-2007-013: Lotus Notes Memory Mapped Files Vulnerability,
research
[Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar,
pete . houston . 17187
Korean GHBoard Multiple Vulnerabilities by Xcross87,
pete . houston . 17187
[ MDKSA-2007:202 ] - Updated Firefox packages fix multiple vulnerabilities,
security
[Vulz] eFileMan 7.x Multiple Vulnerabilities by Xcross87,
pete . houston . 17187
[Vulz] eLouai's Download Script Remote File Download Vulnerability,
pete . houston . 17187
[Vulz] Japanese PHP Gallery Hosting File Upload Vulz,
pete . houston . 17187
[Vulz] Seeblick 1.0 Beta File Upload Vulz,
pete . houston . 17187
SYMSA-2007-012: Microsoft Windows CE IGMP Denial of Service,
research
[vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities,
vulnpost-remove
Airscanner Mobile Security Advisory #07101401: Mobile-spy Victim/User Phone/SMS/URL Log Spoofing and Persistent XSS Injection,
Seth Fogie
[ GLSA 200710-24 ] OpenOffice.org: Heap-based buffer overflow,
Raphael Marichez
CFP for HITBSecConf2008 - Dubai now open,
Praburaajan
[USN-535-1] Firefox vulnerabilities,
Kees Cook
[ MDKSA-2007:201 ] - Updated hplip packages fix vulnerabilities,
security
[USN-501-2] Ghostscript vulnerability,
Kees Cook
Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issue,
advisories
[ GLSA 200710-23 ] Star: Directory traversal vulnerability,
Raphael Marichez
Camino release 1.5.2 fixes several vulnerabilities,
Juha-Matti Laurio
Hackish XSS in shoutbox/blocco.php,
deme
[USN-531-1] dhcp vulnerability,
Kees Cook
Jeebles Directory Local File Inclusion,
hack2prison
simple dns rebinding protection with dnsmasq,
Collin R. Mulliner
Folder Access bypass,
hack2prison
[USN-533-1] util-linux vulnerability,
Kees Cook
Cracking the iPhone (5 article series),
H D Moore
[USN-534-1] OpenSSL vulnerability,
Kees Cook
[USN-532-1] nagios-plugins vulnerability,
Kees Cook
[ELEYTT] Public Advisory 20-10-2007,
Michal Bucko
Simple PHP Blog (sphpblog) <= 0.5.1 Multiple Vulnerabilities,
gmdarkfig
[Aria-Security.Net] dmcms.0.7.0 SQL Injection,
[No Reply]
[ GLSA 200710-22 ] TRAMP: Insecure temporary file creation,
Raphael Marichez
PacSec 2007 Agenda (Tokyo 11-29/30),
Dragos Ruiu
[ GLSA 200710-21 ] TikiWiki: Arbitrary command execution,
Raphael Marichez
ReloadCMS Vulnerable,
sekuru
Simple Machines Forum multiple sql injection flaws with exploit code.,
th3 . r00k . spammenot
[SECURITY] [DSA 1392-1] New xulrunner packages fix several vulnerabilities,
Moritz Muehlenhoff
[Aria-Security.Net] SearchSimon Lite Cross-Site Scripting Vuln.,
[ NO REPLY ]
[SECURITY] [DSA 1391-1] New icedove packages fix several vulnerabilities,
Moritz Muehlenhoff
[CAID 35754]: CA Host-Based Intrusion Prevention System (CA HIPS) Server Vulnerability,
Williams, James K
A-Cart SQL Injection And Cross-Site Scripting,
[ NO REPLY ]
[SECURITY] [DSA 1390-1] New t1lib packages fix arbitrary code execution,
Noah Meyerhans
rPSA-2007-0220-1 ImageMagick,
rPath Update Announcements
[ GLSA 200710-20 ] PDFKit, ImageKits: Buffer overflow,
Raphael Marichez
[ MDKSA-2007:200 ] - Updated tk packages fix vulnerabilities,
security
S21SEC-038-en: Alcatel Omnivista 4760 Cross-Site Scripting,
S21sec Labs
[ GLSA 200710-19 ] The Sleuth Kit: Integer underflow,
Raphael Marichez
[ GLSA 200710-18 ] util-linux: Local privilege escalation,
Raphael Marichez
Official Windows binaries of "curl" contain vulnerable zlib 1.2.2 (CAN-2005-2096),
Stefan Kanthak
Serious holes affecting SiteBar 3.3.8,
Tim Brown
rPSA-2007-0219-1 libpng,
rPath Update Announcements
Softwin's anti-virus BitDefender contains vulnerable zlib (CA-2007-07),
Stefan Kanthak
Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096),
Stefan Kanthak
[SECURITY] [DSA 1389-1] New zoph packages fix SQL injection,
Moritz Muehlenhoff
Re[2]: [Full-disclosure] The Death of Defence in Depth ? - An invitation to Hack.lu,
Thierry Zoller
CFP C H A S E - 2 0 0 7 Lahore Pakistan,
chase
[CORRECTED] Microsoft Windows XP SP2/2003 - Macrovision SecDrv.sys privilege escalation (0day),
Reversemode
[security bulletin] HPSBMA02274 SSRT071445 rev.2 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS),
security-alert
[security bulletin] HPSBUX02273 SSRT071476 rev.2 - HP-UX Running Apache, Remote Unauthorized Denial of Service (DoS),
security-alert
[SECURITY] [DSA 1388-1] New dhcp packages fix arbitrary code execution,
Steve Kemp
Nortel Telephony Server Denial of Service,
daniel . stirnimann
Latest web hacking incidents,
Ofer Shezaf
Nortel IP Phone forced re-authentication,
daniel . stirnimann
Nortel IP Phone Flooding Denial of Service,
daniel . stirniman
Nortel IP Phone Surveillance Mode,
daniel . stirnimann
Nortel UNIStim IP Softphone Buffer-Overflow,
daniel . stirnimann
Microsoft Windows XP/2003 Macrovision SecDrv.sys privilege escalation (0day),
Reversemode
SYMSA-2007-011: Microsoft WM5 PocketPC Phone Ed SMS Handler Issue,
research
[ MDKSA-2007:199 ] - Updated phpMyAdmin packages fix multiple vulnerabilities,
security
SQL Injection Flaw in Oracle Workspace Manager,
David Litchfield
Cisco Security Advisory: Cisco Unified Communications Web-based Management Vulnerability,
Cisco Systems Product Security Incident Response Team
Oracle audit issue with XMLDB ftp service,
NGSSoftware Insight Security Research
AST-2007-023 - SQL Injection Vulnerabilty in cdr_addon_mysql,
Asterisk Security Team
Oracle RDBMS TNS Data packet DoS,
NGSSoftware Insight Security Research
Multiple SQL Injection Flaws in Oracle CTX_DOC package,
NGSSoftware Insight Security Research
Oracle TNS Listener DoS and/or remote memory inspection,
NGSSoftware Insight Security Research
Multiple CSRF in SimplePHPBlog,
deme
[ GLSA 200710-17 ] Balsa: Buffer overflow,
Raphael Marichez
[ MDKSA-2007:195 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
IRM Vendor Alerts: Six critical remote vulnerabilities in TIBCO SmartPGM FX,
Andy Davis
[security bulletin] HPSBUX02277 SSRT071453 rev.1 - HP-UX Running OpenSSL, Local Denial of Service (DoS),
security-alert
[security bulletin] HPSBTU02276 SSRT071472 rev.1 - HP Tru64 UNIX Running Apache Tomcat, Remote Unauthorized Access, Remote Denial of Service (DoS),
security-alert
[security bulletin] HPSBST02280 SSRT071480 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-055 to MS07-060,
security-alert
[ MDKSA-2007:197 ] - Updated tar packages prevent buffer overflow,
security
[ MDKSA-2007:196 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
[security bulletin] HPSBMA02230 SSRT071436 rev.2 - HP Select Identity, Remote Unauthorized Access,
security-alert
SSH attacks - anyone else seen these?,
Tim
Secunia Research: IrfanView Palette File Importing Buffer Overflow Vulnerability,
Secunia Research
[ MDKSA-2007:198 ] - Updated util-linux packages fix vulnerability,
security
WWWISIS <= 7.1 (IsisScript) Multiple Vulnerabilities,
jose luis góngora fernández
FW: [Dailydave] Canada's Response to Black Hat - SecTor 2007,
Taylor, Gord
about phpMyAdmin setup.php XSS vulnerability,
Marc Delisle
CVE-2007-4600 - Mathcad Protect Worksheet Vulnerability,
bugtraq
HTML Injection Vuln in nssboard,
kcghost
[ GLSA 200710-15 ] KDM: Local privilege escalation,
Pierre-Yves Rofes
eXtremail(ly easy) remote roots,
mu-b
[SECURITY] [DSA 1387-1] New librpcsecgss packages fix arbitrary code execution,
Florian Weimer
Xcomputer - Lang Parameter Cross-Site Scripting Vulnerability,
jose luis góngora fernández
Stringbeans (Portal) - Lang Parameter Cross-Site Scripting Vulnerability,
jose luis góngora fernández
InnovaShop?® (mgs.jps) Cross Siting Scripting,
jose luis góngora fernández
SYMSA-2007-010: Microsoft ActiveSync 4.x Weak Password Obfuscation,
research
[ GLSA 200710-16 ] X.Org X server: Composite local privilege escalation,
Pierre-Yves Rofes
[SECURITY] [DSA 1386-1] New wesnoth packages fix denial of service,
Martin Schulze
[SECURITY] [DSA 1386-2] New wesnoth packages fix denial of service,
Martin Schulze
Clients buffer-overflow in Live for Speed 0.5X10,
Luigi Auriemma
playing for fun with <=IE7,
laurent . gaffie
[ GLSA 200710-12 ] T1Lib: Buffer overflow,
Pierre-Yves Rofes
VImpX ActiveX (VImpX.ocx v. 4.7.3.0) Remote,
saw_xyz
[ GLSA 200710-10 ] SKK Tools: Insecure temporary file creation,
Raphael Marichez
[ GLSA 200710-14 ] DenyHosts: Denial of Service,
Pierre-Yves Rofes
[SECURITY] [DSA 1381-2] New Linux 2.6.18 packages fix several vulnerabilities,
dann frazier
[ GLSA 200710-13 ] Ampache: Multiple vulnerabilities,
Pierre-Yves Rofes
[ GLSA 200710-11 ] X Font Server: Multiple Vulnerabilities,
Pierre-Yves Rofes
[USN-530-1] hplip vulnerability,
Kees Cook
SEC Consult SA-20071012-0 :: Madwifi xrates element remote DOS,
Bernhard Mueller
OpenSSL Security Advisory,
Ben Laurie
Tikiwiki 1.9.8 exploit ITW,
Moritz Naumann
rPSA-2007-0214-1 initscripts,
rPath Update Announcements
[CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vulnerabilities,
Williams, James K
S21SEC-037-en: OPAL SIP Protocol Remote Denial of Service,
S21sec Labs
[USN-529-1] Tk vulnerability,
Kees Cook
[security bulletin] HPSBMA02230 SSRT071436 rev.1 - HP Select Identity, Remote Unauthorized Access,
security-alert
iDefense Security Advisory 10.11.07: Multiple Vendor FLAC Library Multiple Integer Overflow Vulnerabilities,
iDefense Labs
EEYE: CA BrightStor ArcServe Backup Server Arbitrary Pointer Dereference,
eEye Advisories
[USN-528-1] MySQL vulnerabilities,
Kees Cook
CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability,
hfli
[security bulletin] HPSBUX02273 SSRT071476 rev. 1 - HP-UX running Apache, Remote Unauthorized Denial of Service (DoS),
security-alert
Joomla! swMenuFree 4.6 Component Remote File Include,
Guns
M$ will fix URI?,
Memisyazici, Aras
October Microsoft Tuesday,
Todd Manning
[ MDKSA-2007:194 ] - Updated libvorbis packages fix vulnerabilities,
security
CORE-2007-0928: Stack-based buffer overflow vulnerability in OpenBSD’s DHCP server,
Core Security Technologies Advisories
URI handling as the harbinger of interaction errors,
Steven M. Christey
IRM Advisory: Cisco IOS LPD Remote Stack Overflow,
Andy Davis
TPTI-07-18: EMC RepliStor Server Heap Overflow Vulnerability,
TSRT
ZDI-07-057: Firebird process_packet() Remote Stack Overflow Vulnerability,
zdi-disclosures
ZDI-07-056: IBM DB2 DB2JDS Multiple Vulnerabilities,
zdi-disclosures
ZDI-07-055: Microsoft Windows DCERPC Authentication Denial of Service Vulnerability,
zdi-disclosures
[ELEYTT] 10PAZDZIERNIK2007,
Michal Bucko
iDefense Security Advisory 10.10.07: Kaspersky Web Scanner ActiveX Format String Vulnerability,
iDefense Labs
[SECURITY] [DSA 1379-2] New openssl packages fix arbitrary code execution,
Noah Meyerhans
AST-2007-022: Buffer overflows in voicemail when using IMAP storage,
The Asterisk Development Team
Cisco Security Advisory: Cisco Wireless Control System Conversion Utility Adds Default Password,
Cisco Systems Product Security Incident Response Team
0day: Hacking secured CITRIX from outside,
pdp (architect)
Several vulnerabilities in CMS Made Simple 1.1.3.1,
Omid
wmtrssreader joomla component 1.0 Remote File Include Vulnerability,
cyber-crime
Remote Desktop Command Fixation Attacks,
pdp (architect)
Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques,
Damir Rajnovic
3Com WIFI router remote administration vulnerability.,
Guy Mizrahi
Regarding vulnerability in ViArt Shop,
support
[ GLSA 200710-08 ] KOffice, KWord, KPDF, KDE Graphics Libraries: Stack-based buffer overflow,
Pierre-Yves Rofes
[ GLSA 200710-09 ] NX 2.1: User-assisted execution of arbitrary code,
Pierre-Yves Rofes
The Death of Defence in Depth ? - An invitation to Hack.lu,
Thierry Zoller
iDefense Security Advisory 10.09.07: Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow,
iDefense Labs
NULL pointer crash in World in Conflict 1.000,
Luigi Auriemma
[USN-527-1] xen-3.0 vulnerability,
Kees Cook
RE: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Brett Moore
Research: Cybercrime and the Electoral System,
Oliver Friedrichs
LedgerSMB < 1.2.8, SQL-Ledger 2.x Multiple SQL Injection Issues,
Chris Travers
Vulnerabilities,
xoxland
DNewsWeb Softwares Cross Site Scripting Vulrnability,
DoZ
rPSA-2007-0212-1 util-linux,
rPath Update Announcements
Viart Shopping Cart Directory Transversal Vuln,
[ NO REPLY ]
Black Hat Tokyo + DC and Europe CfPs now open.,
Jeff Moss
[security bulletin] HPSBMA02275 SSRT071445 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS),
security-alert
[security bulletin] HPSBMA02274 SSRT071445 rev.1 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS),
security-alert
[security bulletin] HPSBUX02181 SSRT061289 rev.3 - HP-UX Running IPFilter, Remote Denial of Service (DoS),
security-alert
[security bulletin] HPSBUX01137 SSRT5954 rev.11 - HP-UX Running TCP/IP (IPv4), Remote Denial of Service (DoS),
security-alert
BT Home Flub: Pwnin the BT Home Hub,
Adrian P
[security bulletin] HPSBUX02262 SSRT071447 rev. 1 - HP-UX running Apache, Remote Arbitrary Code Execution, Cross Site Scripting (XSS),
security-alert
rPSA-2007-0210-1 xen,
rPath Update Announcements
TorrentTrader Classic Mutiple Remote vulnerabilities,
security
[ GLSA 200710-06 ] OpenSSL: Multiple vulnerabilities,
Pierre-Yves Rofes
[ GLSA 200710-02 ] PHP: Multiple vulnerabilities,
Raphael Marichez
new vuln in snewscms.net.ru in lang file,
info
[ GLSA 200710-05 ] QGit: Insecure temporary file creation,
Pierre-Yves Rofes
[ GLSA 200710-03 ] libvorbis: Multiple vulnerabilities,
Raphael Marichez
[ GLSA 200710-07 ] Tk: Buffer overflow,
Raphael Marichez
[ GLSA 200710-04 ] libsndfile: Buffer overflow,
Raphael Marichez
[SECURITY] [DSA 1362-2] New lighttpd packages fix buffer overflow,
Steve Kemp
Else If cms Multiple Remote vulnerabilities,
security
idmos-phoenix cms Remote File inclusion,
security
CMS Creamotion - Remote File inclusion,
security
SSHatter 0.6,
Tim Brown
[SECURITY] [DSA 1384-1] New xen-utils packages fix several vulnerabilities,
Steve Kemp
Format string in The Dawn of Time 1.69s beta4,
Luigi Auriemma
Reporting Vulnerable Public Web mail,
ivan . sanchez
Multiple vulnerabilities in Dropteam 1.3.3,
Luigi Auriemma
[SECURITY] [DSA 1383-1] New gforge packages fix cross-site scripting,
Thijs Kinkhorst
rPSA-2007-0209-1 elinks,
rPath Update Announcements
[ MDKSA-2007:193 ] - Updated openssl packages fix vulnerabilities,
security
URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Juergen Schmidt
- RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Roger A. Grimes
- Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Thierry Zoller
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype,
Geo.
- Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype,
Thierry Zoller
- Re: Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype,
Kurt Dillard
- Re[3]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype,
3APA3A
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype,
Geo.
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Valdis . Kletnieks
- Re: URI handling woes in Acrobat Reader, Netscape,Miranda, Skype,
Thierry Zoller
RE: Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Roger A. Grimes
Re: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Andreas Lindenblatt
Re: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Andreas Lindenblatt
<Possible follow-ups>
RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Juergen Schmidt
Re[2]: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Thierry Zoller
RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype,
Jim Slora
[USN-526-1] debian-goodies vulnerability,
Kees Cook
[USN-525-1] libsndfile vulnerability,
Kees Cook
[USN-524-1] OpenOffice.org vulnerability,
Kees Cook
[ GLSA 200710-01 ] RPCSEC_GSS library: Buffer overflow,
Pierre-Yves Rofes
DDIVRT-2007-05 NetSupport Manager Client Buffer Overflow,
vulnerabilityresearch
[Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN,
[ NO REPLY ]
FLEA-2007-0059-1 qt qt-tools,
Foresight Linux Essential Announcement Service
[USN-523-1] ImageMagick vulnerabilities,
Kees Cook
Re: Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9[EXPLOIT],
weak
[RISE-2007002] Borland InterBase Multiple Buffer Overflow Vulnerabilities,
RISE Security
Cart32 Arbitrary File Download Vulnerability,
Paul Craig
[RISE-2007003] Firebird Relational Database Multiple Buffer Overflow Vulnerabilities,
RISE Security
FLEA-2007-0058-1 openssl openssl-scripts,
Foresight Linux Essential Announcement Service
FreeBSD Security Advisory FreeBSD-SA-07:08.openssl,
FreeBSD Security Advisories
Content Builder 0.7.5 RFI Bug,
mehrad1989
rPSA-2007-0206-1 openssl openssl-scripts,
rPath Update Announcements
rPSA-2007-0205-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs,
rPath Update Announcements
rPSA-2007-0204-1 qt-x11-free,
rPath Update Announcements
DRBGuestbook Remote XSS Vulnerability,
gokhankaya
International Hacking & Security Conference "POC200",
poc2007
0day: mIRC pwns Windows,
jinc4fareijj
iDefense Security Advisory 10.02.07: Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability,
iDefense Labs
[SECURITY] [DSA 1381-1] New Linux 2.6.18 packages fix several vulnerabilities,
dann frazier
[SECURITY] [DSA 1379-1] New quagga packages fix denial of service,
Steve Kemp
FLEA-2007-0057-1 pidgin,
Foresight Linux Essential Announcement Service
[SECURITY] [DSA 1380-1] New elinks packages fix information disclosure,
Steve Kemp
rPSA-2007-0203-1 rmake rmake-proxy rmake-repos,
rPath Update Announcements
iDefense Security Advisory 10.02.07: Multiple Vendor X Font Server Multiple Vulnerabilities,
iDefense Labs
TPTI-07-17: CA BrightStor Hierarchical Storage Manager SQL Injection Vulnerabilities,
TSRT
TPTI-07-16: CA BrightStor Hierarchical Storage Manager Buffer Overflow Vulnerabilities,
TSRT
[SECURITY] [DSA 1379-1] New openssl packages fix arbitrary code execution,
Noah Meyerhans
Original Photo Gallery Remote Command Execution,
ascii
[SECURITY] [DSA 1365-3] New id3lib3.8.3 packages fix denial of service,
dann frazier
WifiZoo v1.2 release,
Hernan Ochoa
[ MDKSA-2007:192 ] - Updated mplayer packages fix vulnerability,
security
[ MDKSA-2007:191 ] - Updated libsndfile packages fix vulnerability,
security
Immunity Debugger v1.2 Release,
Nicolas Waisman
ClubHack - CFP closing by 15th October 2007,
`ClubHack `
Format string in F.E.A.R. 1.08 through PB,
Luigi Auriemma
Format string in the Doom 3 engine through PB,
Luigi Auriemma
Unexploitable buffer-overflow in America's Army 2.8.2 through PB,
Luigi Auriemma
Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9,
Luigi Auriemma
[Index of Archives]
[Netfilter]
[Security]
[PHP]
[Linux Kernel]
