Bugtraq: by author

3APA3A
- 3proxy 0.5.3j released (bugfix) (Oct 23 2007)
- Re: Tikiwiki 1.9.8 exploit ITW (Oct 12 2007)
- Vulnerabilities digest (Oct 10 2007)
- Re[3]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 08 2007)
- Re: iDefense Security Advisory 10.02.07: Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability (Oct 04 2007)
- Re[2]: 0day: mIRC pwns Windows (Oct 04 2007)
`ClubHack `
- ClubHack - CFP closing by 15th October 2007 (Oct 01 2007)
Adam Laurie
- RFIDIOt release - version 0.1q (Oct 30 2007)
Adrian P
- BT Home Flub: Pwnin the BT Home Hub (Oct 08 2007)
advisories
- Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issue (Oct 22 2007)
Advisory_at_Aria-Security.Net,
- OSI CODES - PHP Live! Remote File Inclusion (Oct 23 2007)
- [Aria-Security.Net] CodeWidgets.Com Online Event Registration Multiple login SQL Injection (Oct 23 2007)
- Aria-Security.Net [Web based alpha tabbed address book SQL Injection] (Oct 23 2007)
- [Aria-Security.Net] dmcms.0.7.0 SQL Injection (Oct 21 2007)
- [Aria-Security.Net] SearchSimon Lite Cross-Site Scripting Vuln. (Oct 19 2007)
- A-Cart SQL Injection And Cross-Site Scripting (Oct 18 2007)
- Viart Shopping Cart Directory Transversal Vuln (Oct 08 2007)
- [Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN (Oct 05 2007)
- [Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN (Oct 04 2007)
Alex Everett
- RE: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 11 2007)
alkomandoz-hacker_at_hotmail.com
- teatro 1.6 ( basePath ) Remote File Include Vulnerability (Oct 28 2007)
Amit Klein
- Re: BIND 8 EOL and BIND 8 DNS Cache Poisoning (Amit Klein, Trusteer) (Oct 06 2007)
Andreas Lindenblatt
- Re: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 09 2007)
- Re: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 08 2007)
Andres Riancho
- [TOOL] w3af - Web Application Attack and Audit Framework (Oct 18 2007)
Andy Davis
- IRM Discover More Vulnerabilities in Cisco IOS (Oct 23 2007)
- RE: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 16 2007)
- IRM Vendor Alerts: Six critical remote vulnerabilities in TIBCO SmartPGM FX (Oct 16 2007)
- RE: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 11 2007)
- RE: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 10 2007)
- IRM Advisory: Cisco IOS LPD Remote Stack Overflow (Oct 10 2007)
angelo_at_rosiello.org
- Security Briefings (Oct 27 2007)
ascii
- Original Photo Gallery Remote Command Execution (Oct 02 2007)
Asterisk Security Team
- AST-2007-023 - SQL Injection Vulnerabilty in cdr_addon_mysql (Oct 16 2007)
avivra
- RE: playing for fun with <=IE7 (Oct 15 2007)
- RE: feedreader3 has XSS vulnerability (Sep 30 2007)
Ben Laurie
- OpenSSL Security Advisory (Oct 12 2007)
Bernhard Mueller
- SEC Consult SA-20071031-0 :: Perdition IMAP Proxy Format String Vulnerability (Oct 31 2007)
- SEC Consult SA-20071012-0 :: Madwifi xrates element remote DOS (Oct 12 2007)
Brandon S. Allbery KF8NH
- Re: Holes in the firewall of Mac OS X Leopard (Oct 29 2007)
Brett Moore
- RE: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 08 2007)
bugtraq_at_firewraith.co.uk
- CVE-2007-4600 - Mathcad Protect Worksheet Vulnerability (Oct 16 2007)
chase
- CFP C H A S E - 2 0 0 7 Lahore Pakistan (Oct 18 2007)
Chris Travers
- LedgerSMB < 1.2.8, SQL-Ledger 2.x Multiple SQL Injection Issues (Oct 09 2007)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and ASA Appliances (Oct 17 2007)
- Cisco Security Advisory: Multiple Vulnerabilities in Firewall Services Module (Oct 17 2007)
- Cisco Security Advisory: Cisco Unified Communications Web-based Management Vulnerability (Oct 17 2007)
- Cisco Security Advisory: Cisco Wireless Control System Conversion Utility Adds Default Password (Oct 10 2007)
Collin R. Mulliner
- simple dns rebinding protection with dnsmasq (Oct 22 2007)
come2waraxe_at_yahoo.com
- [waraxe-2007-SA#059] - XSS in WordPress 2.3 (Oct 27 2007)
Core Security Technologies Advisories
- CORE-2007-0928: Stack-based buffer overflow vulnerability in OpenBSD’s DHCP server (Oct 10 2007)
cyber-crime_at_sibersavascilar.com
- wmtrssreader joomla component 1.0 Remote File Include Vulnerability (Oct 09 2007)
Damir Rajnovic
- Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 10 2007)
daniel.stirniman_at_csnc.ch
- Nortel IP Phone Flooding Denial of Service (Oct 18 2007)
daniel.stirnimann_at_csnc.ch
- Nortel Telephony Server Denial of Service (Oct 18 2007)
- Nortel IP Phone forced re-authentication (Oct 18 2007)
- Nortel IP Phone Surveillance Mode (Oct 18 2007)
- Nortel UNIStim IP Softphone Buffer-Overflow (Oct 18 2007)
dann frazier
- [SECURITY] [DSA 1381-2] New Linux 2.6.18 packages fix several vulnerabilities (Oct 12 2007)
- [SECURITY] [DSA 1381-1] New Linux 2.6.18 packages fix several vulnerabilities (Oct 02 2007)
- [SECURITY] [DSA 1365-3] New id3lib3.8.3 packages fix denial of service (Oct 02 2007)
David Litchfield
- SQL Injection Flaw in Oracle Workspace Manager (Oct 17 2007)
deme_at_hackish.eu
- Hackish XSS in shoutbox/blocco.php (Oct 21 2007)
- Multiple CSRF in SimplePHPBlog (Oct 17 2007)
digineo Advisories
- Directory traversal flaw in shttp (Oct 25 2007)
DoZ_at_HackersCenter.com
- Omnistar Live Software Cross-Site Scripting Vulrnability (Oct 28 2007)
- Smart-Shop Shopping Cart Cross-Site Scripting Vulrnability (Oct 27 2007)
- DNewsWeb Softwares Cross Site Scripting Vulrnability (Oct 08 2007)
- eGov Content Manager Cross Site Scripting Vulrnability (Sep 29 2007)
Dragos Ruiu
- In Memoriam: Jun-ichiro Hagino (Oct 30 2007)
- PacSec 2007 Agenda (Tokyo 11-29/30) (Oct 21 2007)
eEye Advisories
- EEYE: CA BrightStor ArcServe Backup Server Arbitrary Pointer Dereference (Oct 11 2007)
ejc_at_thousandplaces.org
- Re: OpenSSL SSL_get_shared_ciphers() off-by-one buffer overflow (Oct 04 2007)
farion42_at_yahoo.de
- Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096) (Oct 20 2007)
Fatih Ozavci
- [GS07-02] RSA Keon Multiple Cross-Site Scripting Vulnerabilities (Oct 24 2007)
Felix 'FX' Lindner
- Re: [Full-disclosure] The Death of Defence in Depth ? - An invitation to Hack.lu (Oct 10 2007)
Florian Weimer
- [SECURITY] [DSA 1387-1] New librpcsecgss packages fix arbitrary code execution (Oct 15 2007)
- Re: URI handling as the harbinger of interaction errors (Oct 11 2007)
- Re: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 11 2007)
Foresight Linux Essential Announcement Service
- FLEA-2007-0062-1 firefox (Oct 28 2007)
- FLEA-2007-0061-1 sun-jre sun-jdk (Oct 28 2007)
- FLEA-2007-0060-1 initscripts (Oct 26 2007)
- FLEA-2007-0059-1 qt qt-tools (Oct 04 2007)
- FLEA-2007-0058-1 openssl openssl-scripts (Oct 03 2007)
- FLEA-2007-0057-1 pidgin (Oct 03 2007)
Fred Elliot
- Re: 0day: mIRC pwns Windows (Oct 04 2007)
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-07:08.openssl (Oct 03 2007)
fwadmin_at_bigorg.com
- Re: RE: CheckPoint Secure Platform Multiple Buffer Overflows (Oct 11 2007)
Gavin Hanover
- Re: Re[2]: 0day: mIRC pwns Windows (Oct 04 2007)
- Re: 0day: mIRC pwns Windows (Oct 03 2007)
Gayathri Swaminathan
- Re: SSH attacks - anyone else seen these? (Oct 16 2007)
gboyce
- Re: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 11 2007)
Geo.
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 07 2007)
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 06 2007)
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 07 2007)
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 06 2007)
gjgowey_at_tmo.blackberry.net
- Re: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 11 2007)
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 07 2007)
Glynn Clements
- Re: Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 07 2007)
gmdarkfig_at_gmail.com
- Simple PHP Blog (sphpblog) <= 0.5.1 Multiple Vulnerabilities (Oct 21 2007)
gokhankaya_at_hotmail.com
- DRBGuestbook Remote XSS Vulnerability (Oct 03 2007)
Greg Rubin
- Re: 0day: mIRC pwns Windows (Oct 04 2007)
Gregory Rubin
- Re: 0day: mIRC pwns Windows (Oct 03 2007)
Guns_at_0x90.com.ar
- AGTC-Membership system v1.1a (adduser) Remote Add Admin Exploit (Oct 28 2007)
- Micro Login System v1.0 (userpwd.txt) Password Disclosure Vulnerability (Oct 26 2007)
- Joomla! swMenuFree 4.6 Component Remote File Include (Oct 11 2007)
Guy Mizrahi
- 3Com WIFI router remote administration vulnerability. (Oct 10 2007)
H D Moore
- Cracking the iPhone (5 article series) (Oct 22 2007)
h3llcode_at_hotmail.it
- phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion (Sep 30 2007)
hack2prison_at_yahoo.com
- Jeebles Directory Local File Inclusion (Oct 22 2007)
- Folder Access bypass (Oct 22 2007)
- Affiliate Network Pro Multiple Input Validation and Local file inclusion (Sep 29 2007)
hackerbinhphuoc_at_yahoo.com
- i-Gallery 3.4 bug crack password! (Oct 23 2007)
Halvar Flake
- Re: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 11 2007)
- Re: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 11 2007)
- Re: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 11 2007)
Hanno Böck
- Re: Multiple CSRF in SimplePHPBlog (Oct 17 2007)
Hernan Ochoa
- WifiZoo v1.2 release (Oct 01 2007)
hfli
- CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability (Oct 11 2007)
Hugo van der Kooij
- RE: CheckPoint Secure Platform Multiple Buffer Overflows (Oct 03 2007)
hvazquez_at_pentest.es
- Re: RE: CheckPoint Secure Platform Multiple Buffer Overflows (Oct 16 2007)
- Re: CheckPoint Secure Platform Multiple Buffer Overflows (Oct 01 2007)
- CheckPoint Secure Platform Multiple Buffer Overflows (Oct 01 2007)
hvdkooij_at_vanderkooij.org
- Re: Remote Desktop Command Fixation Attacks (Oct 11 2007)
iDefense Labs
- iDefense Security Advisory 10.31.07: Symantec Altiris Deployment Solution TFTP/MTFTP Service Directory Traversal Vulnerability (Oct 31 2007)
- iDefense Security Advisory 10.31.07: Macrovision InstallShield Update Service ActiveX Unsafe Method Vulnerability (Oct 31 2007)
- iDefense Security Advisory 10.30.07: IBM AIX bellmail Stack Buffer Overflow Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.30.07: IBM AIX ftp domacro Parameter Buffer Overflow Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.30.07: IBM AIX lquerypv Stack Buffer Overflow Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.30.07: IBM AIX lqueryvg Stack Buffer Overflow Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.30.07: IBM AIX dig dns_name_fromtext Integer Underflow Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.30.07: IBM AIX 5.2 crontab BSS Buffer Overflow Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.30.07: IBM AIX swcons Local Arbitrary File Access Vulnerability (Oct 30 2007)
- iDefense Security Advisory 10.25.07: Trend Micro Tmxpflt.sys IOCTL 0xa0284403 Buffer Overflow Vulnerability (Oct 25 2007)
- iDefense Security Advisory 10.23.07: IBM Lotus Notes Client TagAttributeListCopy Buffer Overflow Vulnerability (Oct 24 2007)
- iDefense Security Advisory 10.23.07: IBM Lotus Domino IMAP Buffer Overflow Vulnerability (Oct 24 2007)
- iDefense Security Advisory 10.11.07: Multiple Vendor FLAC Library Multiple Integer Overflow Vulnerabilities (Oct 11 2007)
- iDefense Security Advisory 10.10.07: Kaspersky Web Scanner ActiveX Format String Vulnerability (Oct 10 2007)
- iDefense Security Advisory 10.09.07: Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow (Oct 09 2007)
- Re: iDefense Security Advisory 10.02.07: Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability (Oct 04 2007)
- iDefense Security Advisory 10.02.07: Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability (Oct 03 2007)
- iDefense Security Advisory 10.02.07: Multiple Vendor X Font Server Multiple Vulnerabilities (Oct 02 2007)
info_at_medconsultation.ru
- new vuln in snewscms.net.ru in lang file (Oct 08 2007)
ivan.sanchez_at_nullcode.com.ar
- Reporting Vulnerable Public Web mail (Oct 05 2007)
J. Carlos Nieto
- Django 0.96 (stable) Admin Panel CSRF (Oct 29 2007)
James C. Slora Jr.
- RE: playing for fun with <=IE7 (Oct 15 2007)
James Lay
- Re: SSH attacks - anyone else seen these? (Oct 16 2007)
james_at_globalmegacorp.org
- Re: dvddb-0.6 media sql-inj. vuln. (Oct 02 2007)
Jan Heisterkamp
- Re: Firefox / IE6 crash on javascript nested loops (Oct 30 2007)
jason.gerfen_at_gmail.com
- Re: RE: playing for fun with <=IE7 (Oct 15 2007)
Jeff Moss
- Black Hat Tokyo + DC and Europe CfPs now open. (Oct 10 2007)
- Black Hat Tokyo + DC and Europe CfPs now open. (Oct 08 2007)
Jerry Illikainen
- smbftpd 0.96 format string vulnerability (Oct 01 2007)
Jim Harrison
- RE: Remote Desktop Command Fixation Attacks (Oct 11 2007)
Jim Slora
- RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 08 2007)
jinc4fareijj_at_hotmail.com
- 0day: mIRC pwns Windows (Oct 03 2007)
Jonathan Katz
- Siebel Security Basics (Oct 29 2007)
jose luis g�ngora fern�ndez
- WWWISIS <= 7.1 (IsisScript) Multiple Vulnerabilities (Oct 16 2007)
- Xcomputer - Lang Parameter Cross-Site Scripting Vulnerability (Oct 15 2007)
- Stringbeans (Portal) - Lang Parameter Cross-Site Scripting Vulnerability (Oct 15 2007)
- InnovaShop™� (mgs.jps) Cross Siting Scripting (Oct 15 2007)
Jose Nazario
- Re: SSH attacks - anyone else seen these? (Oct 16 2007)
Joseph.giron13_at_gmail.com
- usd250 helpdesk XSS vulnerabily. (Oct 22 2007)
- Bosdev Multiple vulnerabilities (Oct 23 2007)
- Aleris Software Systems Web Publisher Calendar SQL injection (Oct 23 2007)
- ASP-CMS version 1 default password location. (Sep 29 2007)
- ASP Product catalog SQL injection vulnerability (Sep 29 2007)
Joxean Koret
- How to subvert Oracle Database Vault (Oct 28 2007)
Juergen Schmidt
- Re: Holes in the firewall of Mac OS X Leopard (Oct 29 2007)
- Holes in the firewall of Mac OS X Leopard (Oct 29 2007)
- RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 06 2007)
- URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 05 2007)
Juha-Matti Laurio
- Camino release 1.5.2 fixes several vulnerabilities (Oct 22 2007)
kcghost_at_gmail.com
- HTML Injection Vuln in nssboard (Oct 13 2007)
Kees Cook
- [USN-538-1] libpng vulnerabilities (Oct 25 2007)
- [USN-537-1] gnome-screensaver vulnerability (Oct 23 2007)
- [USN-536-1] Thunderbird vulnerabilities (Oct 23 2007)
- [USN-531-2] dhcp vulnerability (Oct 23 2007)
- [USN-535-1] Firefox vulnerabilities (Oct 22 2007)
- [USN-501-2] Ghostscript vulnerability (Oct 22 2007)
- [USN-531-1] dhcp vulnerability (Oct 22 2007)
- [USN-533-1] util-linux vulnerability (Oct 22 2007)
- [USN-534-1] OpenSSL vulnerability (Oct 22 2007)
- [USN-532-1] nagios-plugins vulnerability (Oct 22 2007)
- [USN-530-1] hplip vulnerability (Oct 12 2007)
- [USN-529-1] Tk vulnerability (Oct 11 2007)
- [USN-528-1] MySQL vulnerabilities (Oct 10 2007)
- [USN-527-1] xen-3.0 vulnerability (Oct 09 2007)
- [USN-526-1] debian-goodies vulnerability (Oct 04 2007)
- [USN-525-1] libsndfile vulnerability (Oct 04 2007)
- [USN-524-1] OpenOffice.org vulnerability (Oct 04 2007)
- [USN-523-1] ImageMagick vulnerabilities (Oct 03 2007)
kingoftheworld92_at_fastwebnet.it
- [Trick] VigileCMS All Versions DataMining Remote Hash Disclosure (Oct 25 2007)
- Multi Host Forum Pro phpbb & ipb Multiple Sql Injection (Oct 25 2007)
- Flatnuke3 Remote Cookie Manipoulation / Privilege Escalation (Oct 25 2007)
KJK::Hyperion
- Re: Third-party patch for CVE-2007-3896, UPDATE NOW (Oct 17 2007)
- Third-party patch for CVE-2007-3896 (Internet Explorer 7 invalid URI handling) available (Oct 13 2007)
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 07 2007)
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 07 2007)
komarov_at_itdefence.ru
- Webroot Desktop Firewall <=5.5.10.20 DNS recursion (Oct 28 2007)
Kurt Dillard
- Re: Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 06 2007)
L4teral
- ILIAS <= 3.8.3 Cross Site Scripting (Oct 30 2007)
- TikiWiki <= 1.9.8.1 Cross Site Scripting / Local File Inclusion (Oct 25 2007)
Lars Eilebrecht
- Final Call for Papers for Security Track at ApacheCon Europe 2008 (Oct 27 2007)
laurent.gaffie_at_gmail.com
- Re: Re: RE: playing for fun with <=IE7 (Oct 25 2007)
- Re: A-Cart SQL Injection And Cross-Site Scripting (Oct 24 2007)
- playing for fun with <=IE7 (Oct 12 2007)
Luigi Auriemma
- Clients buffer-overflow in Live for Speed 0.5X10 (Oct 13 2007)
- NULL pointer crash in World in Conflict 1.000 (Oct 09 2007)
- Format string in The Dawn of Time 1.69s beta4 (Oct 05 2007)
- Multiple vulnerabilities in Dropteam 1.3.3 (Oct 05 2007)
- Format string in F.E.A.R. 1.08 through PB (Oct 01 2007)
- Format string in the Doom 3 engine through PB (Oct 01 2007)
- Unexploitable buffer-overflow in America's Army 2.8.2 through PB (Oct 01 2007)
- Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9 (Oct 01 2007)
M. Burnett
- RE: Remote Desktop Command Fixation Attacks (Oct 10 2007)
m2x_at_inbox.ru
- New Advisory: X-script GuestBook (Oct 01 2007)
Marc Delisle
- about phpMyAdmin setup.php XSS vulnerability (Oct 15 2007)
Mark R. Bowyer
- Re: SSH attacks - anyone else seen these? (Oct 16 2007)
Mark Senior
- Re: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 12 2007)
Martin Schulze
- [SECURITY] [DSA 1386-1] New wesnoth packages fix denial of service (Oct 14 2007)
- [SECURITY] [DSA 1386-2] New wesnoth packages fix denial of service (Oct 15 2007)
mehrad1989_at_gmail.com
- Content Builder 0.7.5 RFI Bug (Oct 03 2007)
Memisyazici, Aras
- M$ will fix URI? (Oct 11 2007)
merigoth_at_gmail.com
- Fwd: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 10 2007)
Michal Bucko
- [ELEYTT] Public Advisory 20-10-2007 (Oct 20 2007)
- [ELEYTT] 10PAZDZIERNIK2007 (Oct 10 2007)
Michal Zalewski
- (tool announcement) bunny the fuzzer (Oct 31 2007)
morin.josh_at_gmail.com
- Novell OpenSUSE SWAMP multiple XSS (Oct 23 2007)
Moritz Muehlenhoff
- [SECURITY] [DSA 1396-1] New iceweasel packages fix several vulnerabilities (Oct 27 2007)
- [SECURITY] [DSA 1392-1] New xulrunner packages fix several vulnerabilities (Oct 20 2007)
- [SECURITY] [DSA 1391-1] New icedove packages fix several vulnerabilities (Oct 19 2007)
- [SECURITY] [DSA 1389-1] New zoph packages fix SQL injection (Oct 18 2007)
Moritz Naumann
- Tikiwiki 1.9.8 exploit ITW (Oct 11 2007)
Morning Wood
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 08 2007)
mu-b
- eXtremail(ly easy) remote roots (Oct 15 2007)
NetGear_at_leonbergers.plus.com
- Re: Netgear FVG318 is vunerable to DOS attack (Oct 16 2007)
Network Protocol Security
- Comments re ISC's announcement on bind9 security (Oct 29 2007)
NGSSoftware Insight Security Research
- Memory overwrites in JVM via malformed TrueType font (Oct 29 2007)
- Untrusted Java applet can connect to localhost (Oct 29 2007)
- Heap overflow in RealPlayer ID3 tag parser (Oct 29 2007)
- Oracle audit issue with XMLDB ftp service (Oct 17 2007)
- Oracle RDBMS TNS Data packet DoS (Oct 17 2007)
- Multiple SQL Injection Flaws in Oracle CTX_DOC package (Oct 17 2007)
- Oracle TNS Listener DoS and/or remote memory inspection (Oct 17 2007)
Nick FitzGerald
- Re: iDefense Security Advisory 10.09.07: Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow (Oct 10 2007)
Nicolas Waisman
- Immunity Debugger v1.2 Release (Oct 01 2007)
Noah Meyerhans
- [SECURITY] [DSA 1388-3] New dhcp packages fix arbitrary code execution (Oct 29 2007)
- [SECURITY] [DSA 1390-1] New t1lib packages fix arbitrary code execution (Oct 18 2007)
- [SECURITY] [DSA 1379-2] New openssl packages fix arbitrary code execution (Oct 10 2007)
- [SECURITY] [DSA 1379-1] New openssl packages fix arbitrary code execution (Oct 02 2007)
Ofer Shezaf
- First ever ModSecurity public training at OWASP/WASC conf in SJ (Oct 25 2007)
- Latest web hacking incidents (Oct 18 2007)
Oliver Friedrichs
- Research: Cybercrime and the Electoral System (Oct 08 2007)
Omid
- Several vulnerabilities in CMS Made Simple 1.1.3.1 (Oct 09 2007)
pand0ra
- Re: SSH attacks - anyone else seen these? (Oct 16 2007)
Paul Craig
- Cart32 Arbitrary File Download Vulnerability (Oct 03 2007)
Paul Melson
- RE: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 11 2007)
pdp (architect)
- Re: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 14 2007)
- Re: Remote Desktop Command Fixation Attacks (Oct 13 2007)
- Re: Remote Desktop Command Fixation Attacks (Oct 10 2007)
- Re: Remote Desktop Command Fixation Attacks (Oct 10 2007)
- Re: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 11 2007)
- 0day: Hacking secured CITRIX from outside (Oct 10 2007)
- Remote Desktop Command Fixation Attacks (Oct 10 2007)
Pete Simpson
- RE: [Full-disclosure] Remote Desktop Command Fixation Attacks (Oct 12 2007)
pete.houston.17187_at_gmail.com
- [Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar (Oct 23 2007)
- Korean GHBoard Multiple Vulnerabilities by Xcross87 (Oct 23 2007)
- [Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar (Oct 23 2007)
- [Vulz] eFileMan 7.x Multiple Vulnerabilities by Xcross87 (Oct 23 2007)
- [Vulz] eLouai's Download Script Remote File Download Vulnerability (Oct 23 2007)
- [Vulz] Japanese PHP Gallery Hosting File Upload Vulz (Oct 23 2007)
- [Vulz] Seeblick 1.0 Beta File Upload Vulz (Oct 23 2007)
Pierre-Yves Rofes
- [ GLSA 200710-30 ] OpenSSL: Remote execution of arbitrary code (Oct 30 2007)
- [ GLSA 200710-15 ] KDM: Local privilege escalation (Oct 14 2007)
- [ GLSA 200710-16 ] X.Org X server: Composite local privilege escalation (Oct 14 2007)
- [ GLSA 200710-12 ] T1Lib: Buffer overflow (Oct 12 2007)
- [ GLSA 200710-14 ] DenyHosts: Denial of Service (Oct 13 2007)
- [ GLSA 200710-13 ] Ampache: Multiple vulnerabilities (Oct 13 2007)
- [ GLSA 200710-11 ] X Font Server: Multiple Vulnerabilities (Oct 12 2007)
- [ GLSA 200710-08 ] KOffice, KWord, KPDF, KDE Graphics Libraries: Stack-based buffer overflow (Oct 09 2007)
- [ GLSA 200710-09 ] NX 2.1: User-assisted execution of arbitrary code (Oct 09 2007)
- [ GLSA 200710-05 ] QGit: Insecure temporary file creation (Oct 07 2007)
- [ GLSA 200710-06 ] OpenSSL: Multiple vulnerabilities (Oct 07 2007)
- [ GLSA 200710-01 ] RPCSEC_GSS library: Buffer overflow (Oct 04 2007)
Piotr Bania
- RealNetworks RealPlayer/RealOne Player/Helix Player Remote Memory Corruption (Oct 25 2007)
- RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Corruption (Oct 25 2007)
poc2007_at_gmail.com
- International Hacking & Security Conference "POC200" (Oct 03 2007)
Praburaajan
- CFP for HITBSecConf2008 - Dubai now open (Oct 22 2007)
Raphael Marichez
- [ GLSA 200710-31 ] Opera: Multiple vulnerabilities (Oct 30 2007)
- [ GLSA 200710-28 ] Qt: Buffer overflow (Oct 25 2007)
- [ GLSA 200710-29 ] Sylpheed, Claws Mail: User-assisted remote execution of arbitrary code (Oct 25 2007)
- [ GLSA 200710-27 ] ImageMagick: Multiple vulnerabilities (Oct 24 2007)
- [ GLSA 200710-26 ] HPLIP: Privilege escalation (Oct 24 2007)
- [ GLSA 200710-25 ] MLDonkey: Privilege escalation (Oct 24 2007)
- [ GLSA 200710-24 ] OpenOffice.org: Heap-based buffer overflow (Oct 23 2007)
- [ GLSA 200710-23 ] Star: Directory traversal vulnerability (Oct 22 2007)
- [ GLSA 200710-22 ] TRAMP: Insecure temporary file creation (Oct 20 2007)
- [ GLSA 200710-21 ] TikiWiki: Arbitrary command execution (Oct 20 2007)
- [ GLSA 200710-20 ] PDFKit, ImageKits: Buffer overflow (Oct 18 2007)
- [ GLSA 200710-19 ] The Sleuth Kit: Integer underflow (Oct 18 2007)
- [ GLSA 200710-18 ] util-linux: Local privilege escalation (Oct 18 2007)
- [ GLSA 200710-17 ] Balsa: Buffer overflow (Oct 16 2007)
- [ GLSA 200710-10 ] SKK Tools: Insecure temporary file creation (Oct 12 2007)
- [ GLSA 200710-03 ] libvorbis: Multiple vulnerabilities (Oct 07 2007)
- [ GLSA 200710-07 ] Tk: Buffer overflow (Oct 07 2007)
- [ GLSA 200710-04 ] libsndfile: Buffer overflow (Oct 07 2007)
- [ GLSA 200710-02 ] PHP: Multiple vulnerabilities (Oct 07 2007)
- [ GLSA 200709-18 ] Bugzilla: Multiple vulnerabilities (Sep 30 2007)
research_at_symantec.com
- SYMSA-2007-013: Lotus Notes Memory Mapped Files Vulnerability (Oct 23 2007)
- SYMSA-2007-012: Microsoft Windows CE IGMP Denial of Service (Oct 22 2007)
- SYMSA-2007-011: Microsoft WM5 PocketPC Phone Ed SMS Handler Issue (Oct 17 2007)
- SYMSA-2007-010: Microsoft ActiveSync 4.x Weak Password Obfuscation (Oct 15 2007)
Reversemode
- [CORRECTED] Microsoft Windows XP SP2/2003 - Macrovision SecDrv.sys privilege escalation (0day) (Oct 18 2007)
- Microsoft Windows XP/2003 Macrovision SecDrv.sys privilege escalation (0day) (Oct 17 2007)
RISE Security
- [RISE-2007002] Borland InterBase Multiple Buffer Overflow Vulnerabilities (Oct 03 2007)
- [RISE-2007003] Firebird Relational Database Multiple Buffer Overflow Vulnerabilities (Oct 03 2007)
Roger A. Grimes
- RE: playing for fun with <=IE7 (Oct 13 2007)
- RE: Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 06 2007)
- RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 05 2007)
Roman Medina-Heigl Hernandez
- Re: Cisco PSIRT response on IRM Demonstrates Multiple Cisco IOS Exploitation Techniques (Oct 12 2007)
rPath Update Announcements
- rPSA-2007-0227-1 cups (Oct 31 2007)
- rPSA-2007-0225-2 firefox thunderbird (Oct 29 2007)
- rPSA-2007-0225-1 firefox (Oct 26 2007)
- rPSA-2007-0221-1 php php-mysql php-pgsql (Oct 24 2007)
- rPSA-2007-0222-1 cpio tar (Oct 23 2007)
- rPSA-2007-0220-1 ImageMagick (Oct 18 2007)
- rPSA-2007-0219-1 libpng (Oct 18 2007)
- rPSA-2007-0214-1 initscripts (Oct 11 2007)
- rPSA-2007-0212-1 util-linux (Oct 08 2007)
- rPSA-2007-0210-1 xen (Oct 08 2007)
- rPSA-2007-0209-1 elinks (Oct 05 2007)
- rPSA-2007-0206-1 openssl openssl-scripts (Oct 03 2007)
- rPSA-2007-0205-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs (Oct 03 2007)
- rPSA-2007-0204-1 qt-x11-free (Oct 03 2007)
- rPSA-2007-0203-1 rmake rmake-proxy rmake-repos (Oct 02 2007)
S21sec Labs
- S21SEC-038-en: Alcatel Omnivista 4760 Cross-Site Scripting (Oct 18 2007)
- S21SEC-037-en: OPAL SIP Protocol Remote Denial of Service (Oct 11 2007)
sathyakrishnadas_at_gmail.com
- Re: BIND 8 EOL and BIND 8 DNS Cache Poisoning (Amit Klein, Trusteer) (Oct 01 2007)
saw_xyz_at_yahoo.com
- VImpX ActiveX (VImpX.ocx v. 4.7.3.0) Remote (Oct 13 2007)
sean_at_swmenupro.com
- Re: Joomla! swMenuFree 4.6 Component Remote File Include (Oct 11 2007)
Secunia Research
- Secunia Research: McAfee E-Business Server Auth Packet Handling Buffer Overflow (Oct 31 2007)
- Secunia Research: CUPS IPP Tags Memory Corruption Vulnerability (Oct 31 2007)
- Secunia Research: IPSwitch IMail Server IMail Client Buffer Overflow (Oct 30 2007)
- Secunia Research: IBM Tivoli Storage Manager Client CAD Service Script Insertion (Oct 29 2007)
- Secunia Research: IrfanView Palette File Importing Buffer Overflow Vulnerability (Oct 16 2007)
security-alert_at_hp.com
- [security bulletin] HPSBMA02238 SSRT061260 rev.2 - HP OpenView Reporter Running Shared Trace Service, Remote Arbitrary Code Execution (Oct 31 2007)
- [security bulletin] HPSBMA02237 SSRT061260 rev.2 - HP OpenView Performance Agent (OVPA) Running Shared Trace Service, Remote Arbitrary Code Execution (Oct 31 2007)
- [security bulletin] HPSBMA02236 SSRT061260 rev.2 - HP OpenView Performance Manager (OVPM) Running Shared Trace Service on HP-UX, Solaris, and Windows, Remote Arbitrary Code Execution (Oct 31 2007)
- HPSBMA02133 SSRT061201 rev.6 - HP Oracle for OpenView (OfO) Critical Patch Update (Oct 25 2007)
- HPSBMA02279 SSRT071298 rev.1 - HP OpenView Configuration Management (CM) Infrastructure (Radia) and Client Configuration Manager (CCM) Running httpd.tkd, Remote Unauthorized Access to Data (Oct 24 2007)
- [security bulletin] HPSBMA02274 SSRT071445 rev.2 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS) (Oct 18 2007)
- [security bulletin] HPSBUX02273 SSRT071476 rev.2 - HP-UX Running Apache, Remote Unauthorized Denial of Service (DoS) (Oct 18 2007)
- [security bulletin] HPSBUX02277 SSRT071453 rev.1 - HP-UX Running OpenSSL, Local Denial of Service (DoS) (Oct 16 2007)
- [security bulletin] HPSBTU02276 SSRT071472 rev.1 - HP Tru64 UNIX Running Apache Tomcat, Remote Unauthorized Access, Remote Denial of Service (DoS) (Oct 16 2007)
- [security bulletin] HPSBST02280 SSRT071480 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-055 to MS07-060 (Oct 16 2007)
- [security bulletin] HPSBMA02230 SSRT071436 rev.2 - HP Select Identity, Remote Unauthorized Access (Oct 16 2007)
- [security bulletin] HPSBMA02230 SSRT071436 rev.1 - HP Select Identity, Remote Unauthorized Access (Oct 11 2007)
- [security bulletin] HPSBUX02273 SSRT071476 rev. 1 - HP-UX running Apache, Remote Unauthorized Denial of Service (DoS) (Oct 11 2007)
- [security bulletin] HPSBMA02275 SSRT071445 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS) (Oct 08 2007)
- [security bulletin] HPSBMA02274 SSRT071445 rev.1 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS) (Oct 08 2007)
- [security bulletin] HPSBUX02181 SSRT061289 rev.3 - HP-UX Running IPFilter, Remote Denial of Service (DoS) (Oct 08 2007)
- [security bulletin] HPSBUX01137 SSRT5954 rev.11 - HP-UX Running TCP/IP (IPv4), Remote Denial of Service (DoS) (Oct 08 2007)
- [security bulletin] HPSBUX02262 SSRT071447 rev. 1 - HP-UX running Apache, Remote Arbitrary Code Execution, Cross Site Scripting (XSS) (Oct 08 2007)
security_at_mandriva.com
- [ MDKSA-2007:202 ] - Updated Firefox packages fix multiple vulnerabilities (Oct 23 2007)
- [ MDKSA-2007:201 ] - Updated hplip packages fix vulnerabilities (Oct 22 2007)
- [ MDKSA-2007:200 ] - Updated tk packages fix vulnerabilities (Oct 18 2007)
- [ MDKSA-2007:199 ] - Updated phpMyAdmin packages fix multiple vulnerabilities (Oct 17 2007)
- [ MDKSA-2007:195 ] - Updated kernel packages fix multiple vulnerabilities and bugs (Oct 15 2007)
- [ MDKSA-2007:197 ] - Updated tar packages prevent buffer overflow (Oct 15 2007)
- [ MDKSA-2007:196 ] - Updated kernel packages fix multiple vulnerabilities and bugs (Oct 15 2007)
- [ MDKSA-2007:198 ] - Updated util-linux packages fix vulnerability (Oct 15 2007)
- [ MDKSA-2007:194 ] - Updated libvorbis packages fix vulnerabilities (Oct 10 2007)
- [ MDKSA-2007:193 ] - Updated openssl packages fix vulnerabilities (Oct 04 2007)
- [ MDKSA-2007:192 ] - Updated mplayer packages fix vulnerability (Oct 01 2007)
- [ MDKSA-2007:191 ] - Updated libsndfile packages fix vulnerability (Oct 01 2007)
security_at_soqor.net
- TorrentTrader Classic Mutiple Remote vulnerabilities (Oct 07 2007)
- Else If cms Multiple Remote vulnerabilities (Oct 06 2007)
- idmos-phoenix cms Remote File inclusion (Oct 06 2007)
- CMS Creamotion - Remote File inclusion (Oct 06 2007)
securityresearch_at_netvigilance.com
- SAXON version 5.4 SQL Injection Vulnerability (Oct 29 2007)
- SAXON version 5.4 XSS Attack Vulnerability (Oct 29 2007)
- SAXON version 5.4 Multiple Path Disclosure Vulnerabilities (Oct 29 2007)
sekuru_at_email.ua
- ReloadCMS Vulnerable (Oct 20 2007)
Seth Fogie
- Airscanner Mobile Security Advisory #07101401: Mobile-spy Victim/User Phone/SMS/URL Log Spoofing and Persistent XSS Injection (Oct 23 2007)
Shadow
- [PoC] DNS Recursion bandwidth amplification (Oct 22 2007)
Shane Kerr
- Re: Comments re ISC's announcement on bind9 security (Oct 31 2007)
skienlab_at_gmail.com
- Airkiosk/formlib application is XSS vuln (Oct 29 2007)
snagg_at_securenetwork.it
- Re: OpenSSL SSL_get_shared_ciphers() off-by-one buffer overflow (Oct 01 2007)
sottwell_at_sottwell.com
- Re: Vulnerabilities (Oct 09 2007)
Stefan Esser
- Advisory SE-2007-01: TikiWiki Remote PHP Code Evaluation Vulnerability (Oct 29 2007)
Stefan Kanthak
- Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096) (Oct 29 2007)
- Windows binary of "Virtual Floppy Drive 2.1" contains vulnerable zlib (CAN-2005-2096) (Oct 29 2007)
- Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096) (Oct 21 2007)
- Official Windows binaries of "curl" contain vulnerable zlib 1.2.2 (CAN-2005-2096) (Oct 18 2007)
- Softwin's anti-virus BitDefender contains vulnerable zlib (CA-2007-07) (Oct 18 2007)
- Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096) (Oct 18 2007)
Stefano Zanero
- DeepSec 2007 Registration: hurry up, seats are filling fast (Oct 30 2007)
Steffan Baron
- Re: [gentoo-announce] [ GLSA 200710-30 ] OpenSSL: Remote execution of arbitrary code (Oct 30 2007)
Steve Kemp
- [SECURITY] [DSA 1395-1] New xen-utils packages fix file truncation (Oct 25 2007)
- [SECURITY] [DSA 1372-2] New ktorrent packages fix directory traversal (Oct 23 2007)
- [SECURITY] [DSA 1393-1] New xfce4-terminal packages fix arbitrary command execution (Oct 23 2007)
- [SECURITY] [DSA 1388-1] New dhcp packages fix arbitrary code execution (Oct 18 2007)
- [SECURITY] [DSA 1362-2] New lighttpd packages fix buffer overflow (Oct 07 2007)
- [SECURITY] [DSA 1384-1] New xen-utils packages fix several vulnerabilities (Oct 05 2007)
- [SECURITY] [DSA 1379-1] New quagga packages fix denial of service (Oct 03 2007)
- [SECURITY] [DSA 1380-1] New elinks packages fix information disclosure (Oct 02 2007)
Steve Shockley
- Re: Remote Desktop Command Fixation Attacks (Oct 10 2007)
Steven M. Christey
- URI handling as the harbinger of interaction errors (Oct 10 2007)
str0ke
- Re: phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion (Oct 01 2007)
support_at_viart.com
- Regarding vulnerability in ViArt Shop (Oct 10 2007)
Taylor, Gord
- FW: [Dailydave] Canada's Response to Black Hat - SecTor 2007 (Oct 16 2007)
Team SHATTER
- Team SHATTER Alert: Oracle Database Buffer overflow vulnerability in procedure DBMS_AQADM_SYS.DBLINK_INFO (Oct 29 2007)
- Team SHATTER Alert: Oracle Database Buffer overflow vulnerability in function MDSYS.SDO_CS.TRANSFORM (Oct 29 2007)
test_at_aol.com
- Re: Novell OpenSUSE SWAMP multiple XSS (Oct 26 2007)
th3.r00k.spammenot_at_gmail.com
- Simple Machines Forum multiple sql injection flaws with exploit code. (Oct 19 2007)
thabob
- Firefox / IE6 crash on javascript nested loops (Oct 30 2007)
The Asterisk Development Team
- AST-2007-022: Buffer overflows in voicemail when using IMAP storage (Oct 10 2007)
Thierry Zoller
- Re[2]: [Full-disclosure] The Death of Defence in Depth ? - An invitation to Hack.lu (Oct 16 2007)
- Re: URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 11 2007)
- Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 09 2007)
- The Death of Defence in Depth ? - An invitation to Hack.lu (Oct 09 2007)
- Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 07 2007)
- Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape,Miranda, Skype (Oct 06 2007)
- Re[2]: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 06 2007)
- Re[2]: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 06 2007)
Thijs Kinkhorst
- [SECURITY] [DSA 1389-2] New zoph packages fix SQL injection (Oct 24 2007)
- [SECURITY] [DSA 1394-1] New reprepro packages fix authentication bypass (Oct 23 2007)
- [SECURITY] [DSA 1383-1] New gforge packages fix cross-site scripting (Oct 04 2007)
Thomas
- Re: Ruby Net::HTTPS library does not validate server certificate CN (Oct 01 2007)
Thor (Hammer of God)
- RE: Remote Desktop Command Fixation Attacks (Oct 12 2007)
- RE: Remote Desktop Command Fixation Attacks (Oct 10 2007)
Tim
- Re: SSH attacks - anyone else seen these? (Oct 17 2007)
- SSH attacks - anyone else seen these? (Oct 16 2007)
Tim Brown
- Serious holes affecting SiteBar 3.3.8 (Oct 18 2007)
- SSHatter 0.6 (Oct 06 2007)
Todd Manning
- October Microsoft Tuesday (Oct 11 2007)
Tony Reusser
- RE: CheckPoint Secure Platform Multiple Buffer Overflows (Oct 03 2007)
TSRT_at_3com.com
- TPTI-07-18: EMC RepliStor Server Heap Overflow Vulnerability (Oct 10 2007)
- TPTI-07-17: CA BrightStor Hierarchical Storage Manager SQL Injection Vulnerabilities (Oct 02 2007)
- TPTI-07-16: CA BrightStor Hierarchical Storage Manager Buffer Overflow Vulnerabilities (Oct 02 2007)
Valdis.Kletnieks_at_vt.edu
- Re: [Full-disclosure] URI handling woes in Acrobat Reader, Netscape, Miranda, Skype (Oct 07 2007)
Victor Brilon
- Re: Vulnerabilities (Oct 10 2007)
vinodsharma.mimit_at_gmail.com
- Re: Re: file upload vulnerability in joomla media component (Oct 03 2007)
vulnerabilityresearch_at_digitaldefense.net
- DDIVRT-2007-05 NetSupport Manager Client Buffer Overflow (Oct 04 2007)
vulnpost-remove_at_vuln.sg
- [vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities (Oct 23 2007)
weak_at_fraglab.at
- Re: Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9[EXPLOIT] (Oct 04 2007)
Williams, James K
- [CAID 35754]: CA Host-Based Intrusion Prevention System (CA HIPS) Server Vulnerability (Oct 19 2007)
- [CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vulnerabilities (Oct 11 2007)
xoxland_at_gmail.com
- Vulnerabilities (Oct 08 2007)
zdi-disclosures_at_3com.com
- ZDI-07-057: Firebird process_packet() Remote Stack Overflow Vulnerability (Oct 10 2007)
- ZDI-07-056: IBM DB2 DB2JDS Multiple Vulnerabilities (Oct 10 2007)
- ZDI-07-055: Microsoft Windows DCERPC Authentication Denial of Service Vulnerability (Oct 10 2007)