641 messages starting Dec 28 07 and ending Dec 17 07 Date index | Thread index | Author index
Re: HP Photosmart vulnerabilities 3APA3A
Re: Phioust gets all emotional to gobbles and friends... 3lucid8
Vista's been hacked Aaron Gray Re: Vista's been hacked Aaron Gray Re: Vista's been hacked Aaron Gray Re: Vista's been hacked Aaron Gray Re: Vista's been hacked Aaron Gray
Re: Google / GMail bug, all accounts vulnerable Aaron Katz Fwd: Google / GMail bug, all accounts vulnerable Aaron Katz Re: Google / GMail bug, all accounts vulnerable Aaron Katz Re: Google / GMail bug, all accounts vulnerable Aaron Katz
WordPress Charset SQL injection vulnerability Abel Cheung WordPress Charset SQL injection vulnerability (resend) Abel Cheung
Re: Small Design Bug in Postfix - REMOTE Adam N
Re: Google / GMail bug, all accounts vulnerable ad () heapoverflow com Re: Sendmail/Postfix Storybook ad () heapoverflow com
Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) Adrian P
R7-0031: JFreeChart Image Map Cross-Site Scripting Vulnerabilities advisory
Re: Google / GMail bug, all accounts vulnerable alessandro salvatori
Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2 Alexander Klink
Re: Google / GMail bug, all accounts vulnerable Andrew A Re: Google / GMail bug, all accounts vulnerable Andrew A Re: Google / GMail bug, all accounts vulnerable Andrew A Re: Full-Disclosure Digest, Vol 34, Issue 31 Andrew A Re: For Christmas.. Andrew A THE BIG ONE Andrew A
Re: The Cookie Tools v0.3 -- first public release Andrew Farmer Re: here Andrew Farmer
Re: Google / GMail bug, all accounts vulnerable It's just stopped working for me. Ashly A K
Google Toolbar Dialog Spoofing Vulnerability avivra
Hikaru Ben Re: Hikaru Ben Hellsing Ben Blog Entry of Interest Ben
SEC Consult SA-20071204-0 :: SonicWALL Global VPN Client Format String Vulnerability Bernhard Mueller
Re: pcap flow extraction Bill Weiss
Web Beam, the new concept web application penetration testing tool Billy . Hoffman
New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in blackredyellow Re: New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in blackredyellow Re: New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in blackredyellow
Re: Anyone have a reason for 2x the email flow today? Bob Bruen Re: [Professional IT Security Providers - Exposed] QuietMove ( D - ) Bob Bruen
Re: on xss and its technical merit Byron Sonne Re: on xss and its technical merit Byron Sonne Re: on xss and its technical merit Byron Sonne Re: on xss and its technical merit Byron Sonne
Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) c0redump Re: [Professional IT Security Providers-Exposed] Cybertrust ( C + ) c0redump
Firefox 2.0.0.11 File Focus Stealing vulnerability carl hardwick
Re: Google / GMail bug, all accounts vulnerable Christopher Abad Re: gimp sc, and evilness Christopher Abad
Cisco Security Advisory: Cisco Security Agent for Windows System Driver Remote Buffer Overflow Vulnerability Cisco Systems Product Security Incident Response Team Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module Cisco Systems Product Security Incident Response Team
Re: Cisco Phone 7940 remote DOS Clay Seaman-Kossmey
Troy Riser Clifton Bennett
[UPDATE]CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability cocoruder
Re: [UPDATE]CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability Code Audit Labs
Re: MD5 algorithm considered toxic (and harmful) coderman Re: High Value Target Selection coderman Re: Signature or checksum? (was: MD5 considered harmful) coderman Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) coderman Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) coderman Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) coderman Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) coderman Re: GOBBLES or n3td3v coderman Re: [Full-disclosure] b0b27a223b66678f24aec254366526d7910d0f38679f6478804c7480d2271ce9 [was: TCP Port randomization paper] coderman Re: Compromise of Tor, anonymizing networks/utilities coderman Re: Compromise of Tor, anonymizing networks/utilities coderman Re: Compromise of Tor, anonymizing networks/utilities coderman Re: Compromise of Tor, anonymizing networks/utilities coderman Re: Compromise of Tor, anonymizing networks/utilities coderman Re: Captive Portal bypassing coderman Re: The Cookie Tools v0.3 -- first public release coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Captive Portal bypassing coderman Re: Captive Portal bypassing coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Vulnerability Difficulty, Finesse of Implementation, Moral Character coderman Re: on xss and its technical merit coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Google / GMail bug, all accounts vulnerable coderman Re: Thomas Ptacek and Wikipedia coderman Re: Thomas Ptacek and Wikipedia coderman Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) coderman Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) coderman Re: Security of online casinos coderman Re: Hikaru coderman Re: Fwd: Chat with Dude VanWinkle coderman Webwasher SSL scanner coderman Re: Webwasher SSL scanner coderman
CVE-2007-6244: Adobe Flash Player ActiveX Control Universal Cross-Site Scripting Vulnerability Collin Jackson
Re: hey irmplc crazy frog crazy frog Re: New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in crazy frog crazy frog
[Professional IT Security Reviewers - Exposed] SecReview ( A + ) damncon Re: Uber Lamer Ass of the Year. Vote! damncon Re: iFriends free video chat exploit damncon Re: iFriends free video chat exploit damncon Re: iFriends free video chat exploit damncon
Phishing Metamorphosis in 2007 - Trends and Developments Dancho Danchev
[SECURITY] [DSA 1481-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier [SECURITY] [DSA 1428-2] New Linux 2.6.18 packages fix several vulnerabilities dann frazier [SECURITY] [DSA 1436-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier
Re: usb shorting to ground Dave \"No, not that one\" Korn
Rosoft Media Player <= 4.1.7 .M3U Stack Overflow dev code
rIP BETA - reverse IP tool disfigure
Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) don bailey Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) don bailey
Re: Vista's been hacked dripping Re: Vista's been hacked dripping Re: Vista's been hacked dripping Re: Vista's been hacked dripping Re: (no subject) dripping Re: (no subject) dripping Re: (no subject) dripping Re: (no subject) dripping Re: (no subject) dripping Re: (no subject) dripping
Re: need help in managing administrators Dude VanWinkle Re: need help in managing administrators Dude VanWinkle Re: Web Beam, the new concept web application penetration testing tool Dude VanWinkle Re: SCADA refresher Dude VanWinkle Anyone have a reason for 2x the email flow today? Dude VanWinkle Re: Anyone have a reason for 2x the email flow today? Dude VanWinkle Re: Anyone have a reason for 2x the email flow today? Dude VanWinkle Re: Anyone have a reason for 2x the email flow today? Dude VanWinkle Re: need help in managing administrators Dude VanWinkle Re: Anyone have a reason for 2x the email flow today? Dude VanWinkle Re: need help in managing administrators Dude VanWinkle Re: Professional IT Security Service Providers - Exposed Dude VanWinkle Re: need help in managing administrators Dude VanWinkle Re: Flash that simulates virus scan Dude VanWinkle Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Dude VanWinkle Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Dude VanWinkle Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Dude VanWinkle Re: Fwd: Websense 6.3.1 Filtering Bypass Dude VanWinkle Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) Dude VanWinkle
Re: Google / GMail bug, all accounts vulnerable Ed Carp
Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) elazar Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) elazar Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) elazar Re: For Christmas.. elazar Persits Software XUpload Control Buffer Overflow Exploit elazar IBM Domino Web Access inotes6.dll SEH Overwrite Exploit elazar Installshield isusweb.dll Buffer Overflow Exploit elazar IBM Domino Web Access Upload Module dwa7w.dll SEH Overwrite Exploit elazar IBM Domino Web Access Upload Module inotes6w.dll SEH Overwrite Exploit elazar
Re: SCADA refresher Elazar Broad Yahoo Toolbar YShortcut.dll IsTaggedBM() Buffer Overflow Elazar Broad HP eSupportDiagnostics hpediags.dll Information Disclosure Elazar Broad IBM Domino Web Access Upload Control dwa7w.dll Memory Corruption Elazar Broad Installshield Update Service isusweb.dll Buffer Overflow Elazar Broad Persits Software XUpload.ocx Buffer Overflow Elazar Broad AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows Elazar Broad Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows Elazar Broad Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows Elazar Broad Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows Elazar Broad Persits Software XUpload Control AddFolder() Buffer Overflow Exploit Elazar Broad
Re: MD5 algorithm considered toxic (and harmful) Enno Rey
Re: Small Design Bug in Postfix - REMOTE Epic Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) Epic Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) Epic
Bypassing group policy Eric Rachner
Re: Vista's been hacked evilrabbi
(no subject) Eyüp Aydin
Re: Sendmail/Postfix Storybook fabio
TCP Port randomization paper Fernando Gont Re: TCP Port randomization paper Fernando Gont Re: TCP Port randomization paper Fernando Gont
Re: Compromise of Tor, anonymizing networks/utilities Fetch, Brandon
[SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities Florian Weimer
Re: on xss and its technical merit Fredrick Diggle Re: on xss and its technical merit Fredrick Diggle Re: on xss and its technical merit Fredrick Diggle Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Fredrick Diggle Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Fredrick Diggle Re: on xss and its technical merit Fredrick Diggle Re: on xss and its technical merit Fredrick Diggle Re: on xss and its technical merit Fredrick Diggle Re: Small Design Bug in Postfix - REMOTE Fredrick Diggle Re: on xss and its technical merit Fredrick Diggle Re: Sendmail/Postfix FORWARD Remote Exploit Fredrick Diggle Re: Sendmail/Postfix FORWARD Remote Exploit Fredrick Diggle [FDSA] Multiple Vulnerabilities in Fred Diggle Software Foundation Execve Exploit Fredrick Diggle [FDSA] The Internet - Version 4 - Multiple Remotely Exploitable Critical Security Vulnerabilities Fredrick Diggle Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) Fredrick Diggle Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) Fredrick Diggle
Re: Design flaw in AS3 socket handling allows port probing fukami
Re: Anyone have a reason for 2x the email flow today? gjgowey
Re: High Value Target Selection gmaggro Re: High Value Target Selection gmaggro Re: High Value Target Selection gmaggro SCADA refresher gmaggro Re: SCADA refresher gmaggro Re: High Value Target Selection gmaggro Compromise of Tor, anonymizing networks/utilities gmaggro Re: Compromise of Tor, anonymizing networks/utilities gmaggro Re: Compromise of Tor, anonymizing networks/utilities gmaggro Captive Portal bypassing gmaggro Re: Captive Portal bypassing gmaggro Re: Captive Portal bypassing gmaggro Re: Captive Portal bypassing gmaggro BackTrack3 beta gmaggro For Christmas.. gmaggro Re: For Christmas.. gmaggro
Phioust gets all emotional to gobbles and friends ... Gobbles is back Phioust is now getting really emotional ... Gobbles is back Phioust is now getting really emotional ... Gobbles is back Phioust is dead, long live Matasano !!! Gobbles is back GOBBLE ALERT FOR PEOPLES !! Gobbles is back more gobbles .. Gobbles is back Thomas Ptacek and Wikipedia Gobbles is back
Hell Camp: A Terrifying Story of Lies and Middle-Men Goebbels Amadeus
Re: pcap flow extraction, Net::Frame is your friend GomoR
Re: For Christmas.. Guasconi Vincent
Appian Enterprise Business Suite 5.6 SP1 is vulnerable to a guiness . stout Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) guiness . stout Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) guiness . stout
trolls and procmail Re: [Professional IT Security Reviewers - Exposed] SecReview ( A + ) gwen hastings
Re: 0day XSS for MPAA.org Ham Beast
CVE-2007-6205 Hanno Böck
need help in managing administrators happy nino Re: need help in managing administrators happy nino
XSS with UTF-7 in Google HASEGAWA Yosuke
Windows XP SP3 - DCERPC Changes H D Moore Windows XP SP2 - SP3 Compatible Return Addresses H D Moore
Release uhooker v1.3 Hernan Ochoa
Re: Fwd: Websense 6.3.1 Filtering Bypass Hubbard, Dan Re: Fwd: Websense 6.3.1 Filtering Bypass Hubbard, Dan
Re: Nokia N95 cellphone remote DoS using the SIP Stack Humberto Abdelnur
Re: SCADA refresher I. D.
iDefense Security Advisory 12.11.07: Microsoft Internet Explorer JavaScript setExpression Heap Corruption Vulnerability iDefense Labs iDefense Security Advisory 12.11.07: Microsoft DirectX 7 and 8 DirectShow Stack Buffer Overflow Vulnerability iDefense Labs iDefense Security Advisory 12.17.07: Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Vulnerability iDefense Labs iDefense Security Advisory 12.18.07: ClamAV libclamav MEW PE File Integer Overflow Vulnerability iDefense Labs
iFriends free video chat exploit Ifriends Exploit
TIBCO Rendezvous Exploitation Video IRM Research PGMfuzz - a tool for testing Pragmatic General Multicast protocol implementations IRM Research
[ISR] - Novell Groupwise client remote stack overflow silently patched. ISR-noreply
pcap flow extraction Ivan . Re: pcap flow extraction Ivan .
Re: Anyone have a reason for 2x the email flow today? James C. Slora Jr.
Re: MD5 algorithm considered toxic (and harmful) James Matthews Re: need help in managing administrators James Matthews Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) James Matthews Re: New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in James Matthews Re: Blog Entry of Interest James Matthews
[USN-551-1] OpenLDAP vulnerabilities Jamie Strandboge [USN-554-1] teTeX and TeX Live vulnerabilities Jamie Strandboge [USN-557-1] GD library vulnerability Jamie Strandboge [USN-559-1] MySQL vulnerabilities Jamie Strandboge
Re: The Cookie Tools v0.3 -- first public release Jason
Re: on xss and its technical merit Jay Re: on xss and its technical merit Jay Re: on xss and its technical merit Jay Re: New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in Jay
Re: Anyone have a reason for 2x the email flow today? Jerry L. Ivey
Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) jf Re: Compromise of Tor, anonymizing networks/utilities jf Re: Compromise of Tor, anonymizing networks/utilities jf Re: Flash that simulates virus scan jf
Re: Small Design Bug in Postfix - REMOTE Jim Popovitch
Re: Google / GMail bug, all accounts vulnerable jipe foo
OSVDB 2.0 RELEASED jkouns
Black Hat Briefings Call for Papers jmoss
Re: on xss and its technical merit Joao Inacio
Re: need help in managing administrators Joel R. Helgeson
Re: Anyone have a reason for 2x the email flow today? Joey Mengele Re: SCADA refresher Joey Mengele Re: Sendmail/Postfix FORWARD Remote Exploit Joey Mengele
List Charter John Cartwright
Re: pcap flow extraction John Kinsella
Re: MIT Kerberos 5: Multiple vulnerabilities Jonathan Smith
Re: on xss and its technical merit J. Oquendo
Re: Google / GMail bug, all accounts vulnerable Joseph Hick
HackerSafe Labs - Security Advisory - Xigla Absolute Banner Manager v4.0 Joseph Pierini
Re: HP Photosmart vulnerabilities Joshua Levitsky Re: HP Photosmart vulnerabilities Joshua Levitsky
OpenBiblio 0.5.2-pre4 and prior multiple vulnerabilities Juan Galiana FAQMasterFlexPlus multiple vulnerabilities Juan Galiana
0day to sell Juergen Marester
Re: Firefox 2.0.0.11 File Focus Stealing vulnerability Juha-Matti Laurio Re: Firefox 2.0.0.11 File Focus Stealing vulnerability Juha-Matti Laurio Re: Firefox 2.0.0.11 File Focus Stealing vulnerability Juha-Matti Laurio The recent number of unpatched QuickTime flaws is: two Juha-Matti Laurio
Re: Small Design Bug in Postfix - REMOTE Just1n T1mberlake
Small Design Bug in Postfix - REMOTE kcope Re: Small Design Bug in Postfix - REMOTE kcope Sendmail/Postfix FORWARD Remote Exploit kcope Sendmail/Postfix Storybook kcope Watching You kcope Watching You Well - - kcope
[USN-550-1] Cairo vulnerability Kees Cook [USN-549-2] PHP regression Kees Cook [USN-546-2] Firefox regression Kees Cook [USN-552-1] Perl vulnerability Kees Cook [USN-553-1] Mono vulnerability Kees Cook [USN-555-1] e2fsprogs vulnerability Kees Cook [USN-550-2] Cairo regression Kees Cook [USN-550-3] Cairo regression Kees Cook [USN-556-1] Samba vulnerability Kees Cook [USN-558-1] Linux kernel vulnerabilities Kees Cook
Re: Security of online casinos Kevin Pawloski
Re: Anyone have a reason for 2x the email flow today? Kosala Atapattu
MD5 algorithm considered toxic (and harmful) Kristian Erik Hermansen Re: MD5 algorithm considered toxic (and harmful) Kristian Erik Hermansen Re: Signature or checksum? Kristian Erik Hermansen Internet Explorer Vuln Report, Debunked [Jeff R. Jones is becoming FUD-master] Kristian Erik Hermansen 0day XSS for MPAA.org Kristian Erik Hermansen Re: 0day XSS for MPAA.org Kristian Erik Hermansen Google / GMail bug, all accounts vulnerable Kristian Erik Hermansen Re: Google / GMail bug, all accounts vulnerable Kristian Erik Hermansen Re: Google / GMail bug, all accounts vulnerable Kristian Erik Hermansen Re: Google / GMail bug, all accounts vulnerable Kristian Erik Hermansen Re: Google / GMail bug, all accounts vulnerable Kristian Erik Hermansen Re: Google / GMail bug, all accounts vulnerable Kristian Erik Hermansen Re: Full-Disclosure Digest, Vol 34, Issue 31 Kristian Erik Hermansen Re: Full-Disclosure Digest, Vol 34, Issue 31 Kristian Erik Hermansen
Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) Kurt Dillard Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) Kurt Dillard Re: [Professional IT Security Reviewers - Exposed] SecReview ( A + ) Kurt Dillard
SecNiche Garbage Dumps on mailinglists Lamer Buster
[SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service Lebbeous Weekley
CiscoWorks Server XSS Vulnerability Liquidmatrix Security Digest Advisory: Websense XSS Vulnerability Liquidmatrix Security Digest
TK53 Advisory #2: Multiple vulnerabilities in ClamAV Lolek of TK53 TK53 Advisory #2: Multiple vulnerabilities in ClamAV Lolek of TK53 TK53 Advisory #2: Multiple vulnerabilities in ClamAV Lolek of TK53
Inside the "Ron Paul" Spam Botnet lsi
Limited upload directory traversal in HTTP File Server 2.2a / 2.3 beta (build #146) Luigi Auriemma Two vulnerabilities in Simple HTTPD 1.38 Luigi Auriemma Multiple vulnerabilities in Firefly Media Server (mt-daapd) 2.4.1 / SVN 1699 Luigi Auriemma Upload directory traversal in Easy File Sharing 4.5 Luigi Auriemma Multiple vulnerabilities in BarracudaDrive 3.7.2 Luigi Auriemma Filesystem access in DOSBox 0.72 Luigi Auriemma Multiple vulnerabilities in BadBlue 2.72b Luigi Auriemma Heap overflow in PeerCast 0.1217 Luigi Auriemma Array overflow in id3lib (devel CVS) Luigi Auriemma Buffer-overflow in WinUAE 1.4.4 Luigi Auriemma Unicode buffer-overflow in Zoom Player 6.00b2 Luigi Auriemma Double directory traversal in ImgSvr 0.6.21 Luigi Auriemma Buffer-overflow and format string in VideoLAN VLC 0.8.6d Luigi Auriemma Buffer-overflow in Extended Module Player 2.5.1 Luigi Auriemma Multiple vulnerabilities in Feng 0.1.15 Luigi Auriemma Multiple vulnerabilities in libnemesi 0.6.4-rc1 Luigi Auriemma Buffer-overflow in CoolPlayer 217 Luigi Auriemma
DC4420 - London DEFCON chapter Christmas Party - 11th December Major Malfunction
unsubscribe full-disclosure Makousky, Steve C
Re: Anyone have a reason for 2x the email flow today? Maloney, Michael
httprecon project Marc Ruef
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution Martin Schulze [SECURITY] [DSA 1421-1] New wesnoth packages fix arbitrary file disclosure Martin Schulze
BackTrack 3 Beta Released Mati Aharoni BackTrack 3 Beta Released Mati Aharoni
Security of online casinos Matteo G\.
Re: For Christmas.. Matthew Hall
Re: Google / GMail bug, all accounts vulnerable M . B . Jr .
AOL Instant Messenger AIM 6.0 or 6.5 Beta or higher local zone XSS Michael Evanchik
Checkpoint security email Michael Neal Vasquez
XSS in YouTube.com Michal Majchrowicz Re: XSS in YouTube.com Michal Majchrowicz
Re: THE BIG ONE Micheal Espinola Jr
The Cookie Tools v0.3 -- first public release michele dallachiesa
Re: [Professional IT Security Providers - Exposed] Audit Serve, Inc. ( F- ) Mike Vasquez Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) Mike Vasquez Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) Mike Vasquez
[SECURITY] [DSA 1417-1] New asterisk packages fix SQL injection Moritz Muehlenhoff [SECURITY] [DSA 1424-1] New iceweasel packages fix several vulnerabilities Moritz Muehlenhoff [SECURITY] [DSA 1425-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff [SECURITY] [DSA 1426-1] New qt-x11-free packages fix several vulnerabilities Moritz Muehlenhoff [SECURITY] [DSA 1427-1] New samba packages fix arbitrary code execution Moritz Muehlenhoff [SECURITY] [DSA 1435-1] New clamav packages fix several vulnerabilities Moritz Muehlenhoff [SECURITY] [DSA 1437-1] New cupsys packages fix several vulnerabilities Moritz Muehlenhoff [SECURITY] [DSA 1440-1] New inotify-tools packages fix arbitrary code execution Moritz Muehlenhoff [SECURITY] [DSA 1442-2] New libsndfile packages fix arbitrary code execution Moritz Muehlenhoff
Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Morning Wood Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Morning Wood Re: on xss and its technical merit Morning Wood Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Morning Wood Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability Morning Wood
Re: Troy Riser Mo.Ron Hubbard Re: HP Photosmart vulnerabilities Mo.Ron Hubbard Re: THE BIG ONE Mo.Ron Hubbard
Re: Google / GMail bug, all accounts vulnerable Mukul Dharwadkar
NoseRub Login SQL Injection Vulnerability Narf Dude
Re: Firefox 2.0.0.11 File Focus Stealing vulnerability Nate McFeters Re: [Professional IT Security Reviewers - Exposed] SecReview ( A + ) Nate McFeters
Re: need help in managing administrators Nick FitzGerald Re: Google / GMail bug, all accounts vulnerable Nick FitzGerald
Re: Nokia N95 cellphone remote DoS using the SIP Stack nnp
Re: here onion ring here onion ring
Re: [Professional IT Security Providers - Exposed] Denim Group ( A - ) Paul Melson Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) Paul Melson
Re: MD5 algorithm considered toxic (and harmful) Paul Schmehl Re: need help in managing administrators Paul Schmehl
Firefox explicit charset inheritance Paul Szabo Firefox UTF-7 Universal XSS Paul Szabo
Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) pdp (architect)
Re: Compromise of Tor, anonymizing networks/utilities Peter Besenbruch Re: Compromise of Tor, anonymizing networks/utilities Peter Besenbruch Re: Captive Portal bypassing Peter Besenbruch Re: Google / GMail bug, all accounts vulnerable Peter Besenbruch Re: Google / GMail bug, all accounts vulnerable Peter Besenbruch
Re: [Professional IT Security Providers - Exposed] Denim Group ( A - ) Peter Dawson Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) Peter Dawson
Re: Fwd: Chat with Dude VanWinkle php0t
[ GLSA 200712-01 ] Hugin: Insecure temporary file creation Pierre-Yves Rofes [ GLSA 200712-02 ] Cacti: SQL injection Pierre-Yves Rofes UPDATE: [ GLSA 200711-29 ] Samba: Execution of arbitrary code Pierre-Yves Rofes [ GLSA 200712-04 ] Cairo: User-assisted execution of arbitrary code Pierre-Yves Rofes [ GLSA 200712-03 ] GNU Emacs: Multiple vulnerabilities Pierre-Yves Rofes [ GLSA 200712-05 ] PEAR::MDB2: Information disclosure Pierre-Yves Rofes [ GLSA 200712-06 ] Firebird: Multiple buffer overflows Pierre-Yves Rofes [ GLSA 200712-07 ] Lookup: Insecure temporary file creation Pierre-Yves Rofes [ GLSA 200712-08 ] AMD64 x86 emulation Qt library: Multiple vulnerabilities Pierre-Yves Rofes [ GLSA 200712-09 ] Ruby-GNOME2: Format string error Pierre-Yves Rofes [ GLSA 200712-10 ] Samba: Execution of arbitrary code Pierre-Yves Rofes [ GLSA 200712-11 ] Portage: Information disclosure Pierre-Yves Rofes [ GLSA 200712-12 ] IRC Services: Denial of Service Pierre-Yves Rofes [ GLSA 200712-15 ] libexif: Multiple vulnerabilities Pierre-Yves Rofes [ GLSA 200712-16 ] Exiv2: Integer overflow Pierre-Yves Rofes [ GLSA 200712-17 ] exiftags: Multiple vulnerabilities Pierre-Yves Rofes [ GLSA 200712-22 ] Opera: Multiple vulnerabilities Pierre-Yves Rofes [ GLSA 200712-25 ] OpenOffice.org: User-assisted arbitrary code execution Pierre-Yves Rofes
Re: XSS in YouTube.com pons.alt
Re: Google / GMail bug, all accounts vulnerable Porco Graxa
Cisco Phone 7940 remote DOS Radu State Nokia N95 cellphone remote DoS using the SIP Stack Radu State
Re: Firefox 2.0.0.11 File Focus Stealing vulnerability Randal, Phil
Re: [Professional IT Security Providers - Exposed]QuietMove ( D - ) Randal T. Rioux
Re: Full-Disclosure Digest, Vol 34, Issue 1 Randy Mueller
Re: High Value Target Selection reepex Re: Nokia N95 cellphone remote DoS using the SIP Stack reepex Re: Nokia N95 cellphone remote DoS using the SIP Stack reepex Re: Nokia N95 cellphone remote DoS using the SIP Stack reepex Re: pcap flow extraction reepex Re: TCP Port randomization paper reepex Re: (no subject) reepex Re: (no subject) reepex Re: (no subject) reepex Re: Flash that simulates virus scan reepex Re: Flash that simulates virus scan reepex Re: Flash that simulates virus scan reepex Re: Flash that simulates virus scan reepex Re: on xss and its technical merit reepex Re: (no subject) reepex Re: Flash that simulates virus scan reepex Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability reepex Re: TOP 10 Vulnerability Trends for 2008 reepex Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability reepex Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability reepex Re: Fwd: Websense 6.3.1 Filtering Bypass reepex Re: Sendmail/Postfix Storybook reepex Re: Small Design Bug in Postfix - REMOTE reepex Re: [Professional IT Security Providers - Exposed] Cyberklix ( F+ ) reepex Re: iDefense Security Advisory 12.17.07: Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Vulnerability reepex Re: For Christmas.. reepex Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) reepex hey irmplc reepex beyond security sucks at coding reepex Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows reepex Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows reepex Re: iFriends free video chat exploit reepex Fwd: beyond security sucks at coding reepex Re: IBM Domino Web Access Upload Module inotes6w.dll SEH Overwrite Exploit reepex
Re: pcap flow extraction Richard Bejtlich
[ GLSA 200712-13 ] E2fsprogs: Multiple buffer overflows Robert Buchholz [ GLSA 200712-14 ] CUPS: Multiple vulnerabilities Robert Buchholz [ GLSA 200712-18 ] Multi-Threaded DAAP Daemon: Multiple vulnerabilities Robert Buchholz [ GLSA 200712-19 ] Syslog-ng: Denial of Service Robert Buchholz [ GLSA 200712-20 ] ClamAV: Multiple vulnerabilities Robert Buchholz [ GLSA 200712-21 ] Mozilla Firefox, SeaMonkey: Multiple vulnerabilities Robert Buchholz [ GLSA 200712-23 ] Wireshark: Multiple vulnerabilities Robert Buchholz [ GLSA 200712-24 ] AMD64 x86 emulation GTK+ library: User-assisted execution of arbitrary code Robert Buchholz
Hal Turner exposé no. 2 (c ourtesy of GAPP & goudatr0n) Roll Offle
rPSA-2007-0255-1 nss_ldap rPath Update Announcements rPSA-2007-0257-1 rsync rPath Update Announcements rPSA-2007-0260-1 firefox rPath Update Announcements rPSA-2007-0261-1 samba samba-swat rPath Update Announcements rPSA-2007-0262-1 e2fsprogs rPath Update Announcements rPSA-2007-0264-1 mod_dav_svn subversion rPath Update Announcements rPSA-2007-0266-1 tetex tetex-afm tetex-dvips tetex-fonts tetex-latex tetex-xdvi rPath Update Announcements rPSA-2007-0268-1 kdebase rPath Update Announcements rPSA-2007-0269-1 kernel rPath Update Announcements
Ho Ho H0-Day - ZyXEL P-330W multiple XSS and XSRF vulnerabilities Santa Clause Re: Ho Ho H0-Day - ZyXEL P-330W multiple XSS and XSRF vulnerabilities Santa Clause
[Security Advisorie] OpenNewsletter v2.5 Multipe XSS Attacks Sarasa
Uber Lamer Ass of the Year. Vote! Secniche Bogus
Professional IT Security Service Providers - Exposed secreview Re: Professional IT Security Service Providers - Exposed secreview Re: Professional IT Security Service Providers - Exposed SecReview [Professional IT Security Providers - Exposed] Cyberklix ( F+ ) secreview [Professional IT Security Providers - Exposed] Denim Group ( A - ) secreview Re: [Professional IT Security Providers - Exposed] Denim Group ( A - ) SecReview Re: [Professional IT Security Providers - Exposed] Cyberklix ( F+ ) SecReview [Professional IT Security Providers - Exposed] Audit Serve, Inc. ( F- ) secreview Re: [Professional IT Security Providers - Exposed] Audit Serve, Inc. ( F- ) SecReview Request From People SecReview IT Security Consulting Market Size SecReview [Professional IT Security Providers - Exposed] Cybertrust ( C + ) secreview Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) SecReview Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) SecReview Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) SecReview Re: [Professional IT Security Providers -Exposed] Cybertrust ( C + ) SecReview Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) SecReview Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) SecReview Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) SecReview Re: [Professional IT Security Reviewers - Exposed] SecReview ( A + ) SecReview Professional IT Security Service Providers Exposed -- Revised Grades SecReview [Professional IT Security Providers - Exposed] QuietMove ( D - ) secreview
[Professional IT Security Reviewers - Exposed] SecReview ( F - ) Sec Review Sucks Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) Sec Review Sucks Re: [Professional IT Security Reviewers - Exposed] SecReview ( F - ) Sec Review Sucks
Secunia Research: Samba "send_mailslot()" Buffer Overflow Vulnerability Secunia Research
[ MDKSA-2007:234 ] - Updated vixie-cron packages fix DoS vulnerability security [ MDKSA-2007:235 ] - Updated apache packages fix vulnerabilities security [ MDKSA-2007:236 ] - Updated openssh packages fix X11 cookie vulnerability security [ MDKSA-2007:237 ] - Updated openssl packages fix DTLS vulnerability security XSS Early Warning Mailing List Now Open security [ MDKSA-2007:238 ] - Updated liblcms package fixes buffer overflow security [ MDKSA-2007:239 ] - Updated heimdal packages fix potential vulnerability security [ MDKSA-2007:240 ] - Updated libnfsidmap packages fix username lookup flaw security [ MDKSA-2007:241 ] - Updated tomcat5 packages fix multiple vulnerabilities security [ MDKSA-2007:242 ] - Updated e2fsprogs packages fix vulnerability security [ MDKSA-2007:243 ] - Updated MySQL packages fix multiple vulnerabilities security [ MDKSA-2007:244 ] - Updated samba packages fix vulnerability security [ MDKSA-2007:245 ] - Updated wpa_supplicant package fixes remote denial of service security [ MDKSA-2007:246 ] - Updated Firefox packages fix multiple vulnerabilities security
AST-2007-027 - Database matching order permits host-based authentication to be ignored Security Officer
Re: pcap flow extraction SilentRunner Re: [Professional IT Security Providers - Exposed] Audit Serve, Inc. ( F- ) SilentRunner Re: [Professional IT Security Providers - Exposed] Audit Serve, Inc. ( F- ) SilentRunner
Re: [SECUNIA] Vendors still use the "legal" weapon Simon Smith Re: (no subject) Simon Smith Re: (no subject) Simon Smith Re: (no subject) Simon Smith Re: (no subject) Simon Smith Re: (no subject) Simon Smith Re: Flash that simulates virus scan Simon Smith Re: Flash that simulates virus scan Simon Smith
Re: PlayStation 3 predicts next US president (fwd) Slythers Bro
Avast! AntiVirus TAR Processing Remote Heap Corruption Sowhat TrendMicro AntiVirus UUE Processing Vulnerability Sowhat TOP 10 Vulnerability Trends for 2008 Sowhat Re: TOP 10 Vulnerability Trends for 2008 Sowhat
Re: Nokia N95 cellphone remote DoS using the SIP Stack state
Re: Firefox 2.0.0.11 File Focus Stealing vulnerability Static Rez XSS @ DHL Static Rez
The first release of SWFIntruder is out ! Stefano Di Paola
[SECURITY] [DSA 1422-1] New e2fsprogs packages fix arbitrary code execution Steve Kemp [SECURITY] [DSA 1423-1] New sitebar packages fix several vulnerabilities Steve Kemp [SECURITY] [DSA 1429-1] New htdig packages fix cross site scripting Steve Kemp [SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service Steve Kemp [SECURITY] [DSA 1431-1] New ruby-gnome2 packages fix execution of arbitrary code Steve Kemp [SECURITY] [DSA 1432-1] New link-grammar packages fix execution of code Steve Kemp [SECURITY] [DSA 1433-1] New centericq packages fix execution of code Steve Kemp
Re: MD5 algorithm considered toxic (and harmful) Steven Adair Re: Captive Portal bypassing Steven Adair Re: Google / GMail bug, all accounts vulnerable Steven Adair Re: Google / GMail bug, all accounts vulnerable Steven Adair
Re: Anyone have a reason for 2x the email flow today? Sven Meeus
DIMVA 2008 - Call For Papers Tadek Pietraszek
Re: need help in managing administrators T Biehn Re: need help in managing administrators T Biehn Re: need help in managing administrators T Biehn Re: need help in managing administrators T Biehn Re: need help in managing administrators T Biehn Re: need help in managing administrators T Biehn Re: Captive Portal bypassing T Biehn
Fwd: Websense 6.3.1 Filtering Bypass The Security Community
[SECURITY] [DSA 1418-1] New cacti packages fix SQL injection Thijs Kinkhorst [SECURITY] [DSA 1420-1] New zabbix packages fix privilege escalation Thijs Kinkhorst [SECURITY] [DSA 1434-1] New mydns packages fix denial of service Thijs Kinkhorst [SECURITY] [DSA 1405-3] New zope-cmfplone packages fix regression Thijs Kinkhorst [SECURITY] [DSA 1439-1] New typo3-src packages fix SQL injection Thijs Kinkhorst [SECURITY] [DSA 1441-1] New peercast packages fix arbitrary code execution Thijs Kinkhorst
SUSE Security Announcement: samba (SUSE-SA:2007:065) Thomas Biege SUSE Security Announcement: samba (SUSE-SA:2007:068) Thomas Biege
[SECUNIA] Vendors still use the "legal" weapon Thomas Kristensen
Re: MD5 algorithm considered toxic (and harmful) Tim Re: [FDSA] Multiple Vulnerabilities in Fred Diggle Software Foundation Execve Exploit Tim
usb shorting to ground Todd Troxell
Venustech reports of MIT krb5 vulns [CVE-2007-5894 CVE-2007-5901 CVE-2007-5902 CVE-2007-5971 CVE-2007-5972] Tom Yu
Re: Professional IT Security Service Providers - Exposed trains Re: [Professional IT Security Providers - Exposed] Cybertrust ( C + ) trains
TPTI-07-21: Adobe Flash Player JPG Processing Heap Overflow Vulnerability tsrt
Re: Hikaru twiz
Information about recent malware exploited vulnerabilities - a blog post uday kumar
HP Photosmart vulnerabilities uncleron Re: HP Photosmart vulnerabilities uncleron
Re: MD5 algorithm considered toxic (and harmful) Valdis . Kletnieks Re: High Value Target Selection Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: authentic hackers still do it for the love ... (was: Hell Camp: It never pays enough) Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: Professional IT Security Service Providers - Exposed Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: need help in managing administrators Valdis . Kletnieks Re: on xss and its technical merit Valdis . Kletnieks Re: Small Design Bug in Postfix - REMOTE Valdis . Kletnieks Re: For Christmas.. Valdis . Kletnieks Re: Fwd: Chat with Dude VanWinkle Valdis . Kletnieks Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows Valdis . Kletnieks Re: AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows Valdis . Kletnieks Re: iFriends free video chat exploit Valdis . Kletnieks
Re: High Value Target Selection Vincent Archer
Re: TCP Port randomization paper Vladimir Vitkov
Re: ZDI-07-069: CA BrightStor ARCserve Backup Message Engine Insecure Method Exposure Vulnerability Williams, James K [CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vulnerabilities Williams, James K [CAID 35970]: CA Products That Embed Ingres Authentication Vulnerability Williams, James K
Report: Foreign Countries Develop U.S. Defense Systems Software worried security Defense board sounds louder alarm about foreign software development worried security Re: Google / GMail bug, all accounts vulnerable worried security Sign the Downing Street E-Petition Submitted by Neil Stinchcombe of Infosecurity Europe worried security Round up of messages by n3td3v for winter season 2007 worried security Cisco awarded stupidist title in infosec worried security Fwd: Chat with Dude VanWinkle worried security Re: Fwd: Chat with Dude VanWinkle worried security Re: Fwd: Chat with Dude VanWinkle worried security Re: Fwd: Chat with Dude VanWinkle worried security Re: iFriends free video chat exploit worried security
netkit-ftpd/ftp uninitialized vulnerability xiaojunli.air Heimdal ftpd uninitialized vulnerability xiaojunli.air MIT Kerberos 5: Multiple vulnerabilities xiaojunli.air
ZDI-07-070: Skype skype4com URI Handler Remote Heap Corruption Vulnerability zdi-disclosures ZDI-07-071: HP OpenView Network Node Manager Multiple CGI Buffer Overflows zdi-disclosures ZDI-07-072: Novell Netmail AntiVirus Agent Multiple Overflow Vulnerabilities zdi-disclosures ZDI-07-073: Microsoft Internet Explorer setExpression Vulnerability zdi-disclosures ZDI-07-074: Microsoft Internet Explorer Node Manipulation Memory Corruption zdi-disclosures ZDI-07-076: Microsoft Windows Message Queuing Service Stack Overflow Vulnerability zdi-disclosures ZDI-07-075: Microsoft Internet Explorer Element Tags Vulnerability zdi-disclosures ZDI-07-077: Trend Micro ServerProtect StRpcSrv.dll Insecure Method Exposure Vulnerability zdi-disclosures ZDI-07-078: St. Bernard Open File Manager Heap Overflow Vulnerability zdi-disclosures ZDI-07-079: Hewlett-Packard HP-UX swagentd Buffer Overflow Vulnerability zdi-disclosures
RSS Feed
About List
All Lists
Previous period