Home page logo
/

147 messages starting Oct 02 12 and ending Oct 17 12
Date index | Thread index | Author index

abhijeet

Reminder: ClubHack2012 Call for Papers Closing Soon abhijeet (Oct 02)
Last reminder for ClubHack 2012 : Call for Papers abhijeet (Oct 11)

Adam Laurie

ANNOUNCE: RFIDIOt v1.0d released and code migration Adam Laurie (Oct 04)

advisory

Multiple vulnerabilities in Template CMS advisory (Oct 03)
Privilege Escalation Vulnerability in Microsoft Windows advisory (Oct 09)
Multiple vulnerabilities in OpenX advisory (Oct 10)
Multiple vulnerabilities in Samsung Kies advisory (Oct 15)
Multiple vulnerabilities in AContent advisory (Oct 17)
Multiple vulnerabilities in Subrion CMS advisory (Oct 17)
Multiple vulnerabilities in jCore advisory (Oct 17)

Alexander Polyakov

One week left! CFP for ZeroNights Conference in Moscow 19-20 November 2012 Alexander Polyakov (Oct 04)

alien DC4420

DC4420 - London DEFCON - October meet - tomorrow, Tuesday 23rd October. alien DC4420 (Oct 24)

Andrea Fabrizi

Visual Tools DVR multiple vulnerabilities Andrea Fabrizi (Oct 16)

Anil Pazvant

WingFTP Server Denial of Service Vulnerability Anil Pazvant (Oct 09)
BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface Anil Pazvant (Oct 09)
WingFTP Server Denial of Service Vulnerability Anil Pazvant (Oct 09)

Apple Product Security

APPLE-SA-2012-10-16-1 Java for OS X 2012-006 and Java for Mac OS X 10.6 Update 11 Apple Product Security (Oct 17)

beford

Blender 2.63 Exploitable User Mode Write AV beford (Oct 09)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Cisco Systems Product Security Incident Response Team (Oct 10)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Cisco Systems Product Security Incident Response Team (Oct 10)
Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format Player Cisco Systems Product Security Incident Response Team (Oct 10)

Collin Mulliner

Call for Papers: DIMVA 2013 Collin Mulliner (Oct 29)

come2waraxe

[waraxe-2012-SA#092] - Multiple Vulnerabilities in Wordpress Slideshow Plugin come2waraxe (Oct 17)
[waraxe-2012-SA#093] - Multiple Vulnerabilities in Wordpress Social Discussions Plugin come2waraxe (Oct 17)
[waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin come2waraxe (Oct 24)
[waraxe-2012-SA#095] - Multiple Vulnerabilities in Wordpress FoxyPress Plugin come2waraxe (Oct 31)

Crash

[DCA-2011-0013] - IBM Informix Dynamic Server 11.50 SET COLLATION Stack OverFlow Crash (Oct 09)

Florian Weimer

[SECURITY] [DSA 2560-1] bind9 security update Florian Weimer (Oct 24)
[SECURITY] [DSA 2565-1] iceweasel security update Florian Weimer (Oct 24)
[SECURITY] [DSA 2567-1] request-tracker3.8 security update Florian Weimer (Oct 29)
[SECURITY] [DSA 2568-1] rtfm security update Florian Weimer (Oct 29)
[SECURITY] [DSA 2569-1] icedove security update Florian Weimer (Oct 30)

Gary Driggs

Re: [Full-disclosure] F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection Gary Driggs (Oct 24)

irist . ir

Smf 2.0.2 Cross-Site Scripting Vulnerability irist . ir (Oct 25)
Wordpress 3.4 Cross-Site Scripting Vulnerability irist . ir (Oct 25)
KmPlayer v3.0.0.1440 Local Crash PoC irist . ir (Oct 29)

John Kinsella

[CVE-2012-4501] CloudStack configuration vulnerability John Kinsella (Oct 10)

Joseph Sheridan

XnView JLS File Decompression Heap Overflow Joseph Sheridan (Oct 04)

Ken

CVE-2012-3819: Stack Overflow in DartWebserver.dll <= 1.9 Ken (Oct 02)
Multiple Vulnerabilities in Campaign Enterprise <= 11.0.538 Ken (Oct 18)

Kotas, Kevin J

CA20121018-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Oct 18)

Kurt Grutzmacher

HP/H3C and Huawei SNMP Weak Access to Critical Data Kurt Grutzmacher (Oct 24)

Lists

FileBound - Privilege Escalation Vulnerability - Security Advisory - SOS-12-010 Lists (Oct 11)

lorenzo . cantoni86

[CVE-2012-4750] Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability lorenzo . cantoni86 (Oct 15)

Matan Azugi

[BUGTRAQ]Security Advisory - TP-LINK TL-WR841N LFI - [UPDATE] Matan Azugi (Oct 31)

Micha Borrmann

MitM-vulnerability in Palo Alto Networks GlobalProtect Micha Borrmann (Oct 17)

Michał Błaszczak

Exploit - EasyITSP by Lemens Telephone Systems 2.0.2 Michał Błaszczak (Oct 29)
PIAF H.M.S - SQL Injection Michał Błaszczak (Oct 29)

Moritz Muehlenhoff

[SECURITY] [DSA 2555-1] libxslt security update Moritz Muehlenhoff (Oct 09)
[SECURITY] [DSA 2561-1] tiff security update Moritz Muehlenhoff (Oct 24)

Netsparker Advisories

XSS Vulnerabilities in phpFreeChat Netsparker Advisories (Oct 02)
XSS Vulnerabilities in TaskFreak Netsparker Advisories (Oct 23)
XSS Vulnerabilities in CMSMini Netsparker Advisories (Oct 23)
XSS Vulnerabilities in ClipBucket Netsparker Advisories (Oct 23)

Nico Golde

[SECURITY] [DSA 2556-1] icedove security update Nico Golde (Oct 09)
[SECURITY] [DSA 2557-1] hostapd security update Nico Golde (Oct 09)
[SECURITY] [DSA 2566-1] exim4 security update Nico Golde (Oct 26)

Oliver Goebel

[IMF 2013] 3rd Call for Papers: Deadline Extended Oliver Goebel (Oct 17)

paul . szabo

utempter allows fake host setting paul . szabo (Oct 09)

pereira

phptax 0.8 <= Remote Code Execution Vulnerability pereira (Oct 02)
soapbox Local Root / Privilege Escalation Vulnerability pereira (Oct 09)
Hardcoreview WriteAV Arbitrary Code Execution pereira (Oct 09)
FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution pereira (Oct 09)
Re: FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution pereira (Oct 10)
VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) pereira (Oct 10)
Microsoft Office Excel ReadAV Arbitrary Code Execution pereira (Oct 10)
Re: VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) pereira (Oct 15)
Internet Explorer 9 XSS Filter Bypass pereira (Oct 18)

Raphael Geissert

[SECURITY] [DSA 2558-1] bacula security update Raphael Geissert (Oct 09)

ReVuln

Critical issues affecting Steam users ReVuln (Oct 15)

roberto

Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB roberto (Oct 11)

Roi Saltzman

Old Habits Die Hard: Cross-Zone Scripting in Dropbox & Google Drive Mobile Apps Roi Saltzman (Oct 19)

SEC Consult Vulnerability Lab

SEC Consult SA-20121017-0 :: ModSecurity multipart/invalid part ruleset bypass SEC Consult Vulnerability Lab (Oct 17)
SEC Consult SA-20121017-1 :: Unirgy uStoreLocator SQL Injection - Magento extension SEC Consult Vulnerability Lab (Oct 17)
SEC Consult SA-20121017-2 :: Multiple vulnerabilities in Oracle WebCenter Sites (former FatWire Content Server) SEC Consult Vulnerability Lab (Oct 17)

sec . team

VaM Shop Cross-Site Scripting and Blind SQL Injection Vulnerabilities sec . team (Oct 24)

security

[ MDVSA-2012:154-1 ] apache security (Oct 02)
[ MDVSA-2012:152-1 ] bind security (Oct 02)
[ MDVSA-2012:156 ] inn security (Oct 02)
[ MDVSA-2012:155-1 ] xinetd security (Oct 02)
[ MDVSA-2012:153-1 ] dhcp security (Oct 03)
[ MDVSA-2012:157 ] openjpeg security (Oct 03)
[ MDVSA-2012:158 ] gc security (Oct 03)
[ MDVSA-2012:159 ] freeradius security (Oct 04)
[ MDVSA-2012:151-1 ] ghostscript security (Oct 09)
[ MDVSA-2012:150-1 ] java-1.6.0-openjdk security (Oct 09)
[ MDVSA-2012:160 ] imagemagick security (Oct 09)
[ MDVSA-2012:161 ] html2ps security (Oct 09)
[ MDVSA-2012:162 ] bind security (Oct 10)
[ MDVSA-2012:163 ] firefox security (Oct 11)
[ MDVSA-2012:164 ] libxslt security (Oct 11)
[ MDVSA-2012:165 ] graphicsmagick security (Oct 15)
[ MDVSA-2012:166 ] bacula security (Oct 15)
[ MDVSA-2012:167 ] firefox security (Oct 15)
[ MDVSA-2012:168 ] hostapd security (Oct 24)

Security Alert

ESA-2012-035: RSAR Adaptive Authentication (On-Premise) Information Disclosure Vulnerability Security Alert (Oct 09)
ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities Security Alert (Oct 11)
EMC Avamar Client for VMware Sensitive Information Disclosure Vulnerability Security Alert (Oct 29)

security-alert

[security bulletin] HPSBST02818 SSRT100960 rev.1 - HP IBRIX X9000 Storage, Remote Disclosure of Information security-alert (Oct 02)
[security bulletin] HPSBUX02814 SSRT100930 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) security-alert (Oct 02)
[security bulletin] HPSBMU02817 SSRT100950 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Disclosure of Information security-alert (Oct 03)
[security bulletin] HPSBOV02822 SSRT100966 rev.1 - HP Secure Web Server (SWS) for OpenVMS, Remote Denial of Service (DoS), Unauthorized Access, Disclosure of Information security-alert (Oct 09)
[security bulletin] HPSBHF02819 SSRT100920 rev.1 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information security-alert (Oct 24)
[security bulletin] HPSBUX02824 SSRT100970 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code, and Other Vulnerabilities security-alert (Oct 24)
[security bulletin] HPSBHF02819 SSRT100920 rev.2 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information security-alert (Oct 26)
[security bulletin] HPSBUX02825 SSRT100974 rev.1 - HP-UX Running Java, Remote Indirect Vulnerabilities security-alert (Oct 30)

Shatter

Team SHATTER Security Advisory: XML file disclosure vulnerability via GET_WRAP_CFG_C and GET_WRAP_CFG_C2 Shatter (Oct 09)
Team SHATTER Security Advisory: Multiple SQL Injection in Oracle Enterprise Manager (SQL Tunning Sets components) Shatter (Oct 09)
Team SHATTER Security Advisory: Elevated roles through DBCC Shatter (Oct 09)
Team SHATTER Security Advisory: Java Operating System command execution Shatter (Oct 09)

Slackware Security Team

[slackware-security] mozilla-firefox (SSA:2012-283-01) Slackware Security Team (Oct 10)
[slackware-security] bind (SSA:2012-284-01) Slackware Security Team (Oct 11)
[slackware-security] mozilla-thunderbird (SSA:2012-285-02) Slackware Security Team (Oct 15)
[slackware-security] mozilla-firefox (SSA:2012-285-01) Slackware Security Team (Oct 15)
[slackware-security] seamonkey (SSA:2012-288-01) Slackware Security Team (Oct 15)
[slackware-security] mozilla-firefox (SSA:2012-300-01) Slackware Security Team (Oct 29)
[slackware-security] mozilla-thunderbird (SSA:2012-304-01) Slackware Security Team (Oct 31)
[slackware-security] seamonkey (SSA:2012-304-02) Slackware Security Team (Oct 31)

Stefan Kanthak

Vulnerable MSVC++ 2008 runtime libraries distributed with and installed by Ogg DirectShow filters Stefan Kanthak (Oct 04)

Thijs Kinkhorst

[SECURITY] [DSA 2563-1] viewvc security update Thijs Kinkhorst (Oct 24)
[SECURITY] [DSA 2562-1] cups-pk-helper security update Thijs Kinkhorst (Oct 24)
[SECURITY] [DSA 2564-1] tinyproxy security update Thijs Kinkhorst (Oct 24)

Thomas Richards

Inventory 1.0 Multiple SQL Vulnerabilities Thomas Richards (Oct 26)
Inventory 1.0 Multiple XSS Vulnerabilities Thomas Richards (Oct 26)

Timo Warns

[PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation Timo Warns (Oct 09)

Travis Lee

Key Systems Electronic Key Lockers command injection and weak authentication vulnerabilities Travis Lee (Oct 09)

VMware Security Response Center

VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates VMware Security Response Center (Oct 11)

Vulnerability Lab

GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
Better WP Security v3.4.3 Wordpress - Web Vulnerabilities Vulnerability Lab (Oct 02)
Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
Omnistar Mailer v7.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 03)
Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites Vulnerability Lab (Oct 09)
GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 09)
Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 09)
Omnistar Document Manager v8.0 - Multiple Vulnerabilities Vulnerability Lab (Oct 10)
vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 10)
CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Vulnerability Lab (Oct 19)

VUPEN Security Research

VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063) VUPEN Security Research (Oct 24)
VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063) VUPEN Security Research (Oct 24)
VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability VUPEN Security Research (Oct 24)
VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability VUPEN Security Research (Oct 24)

Williams, James K

CA20121001-01: Security Notice for CA License Williams, James K (Oct 02)

YGN Ethical Hacker Group

SilverStripe CMS 2.4.7 <= Arbitrary URL Redirection YGN Ethical Hacker Group (Oct 15)
SilverStripe CMS 2.4.7 <= Persistent Cross Site Scripting Vulnerability YGN Ethical Hacker Group (Oct 15)
F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection YGN Ethical Hacker Group (Oct 24)

Yves-Alexis Perez

[SECURITY] [DSA 2559-1] libexif security update Yves-Alexis Perez (Oct 17)
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]