Full Disclosure: by author

Full Disclosure: by author

559 messages starting Aug 14 08 and ending Aug 28 08
Date index | Thread index | Author index

advisories

SECOBJADV-2008-03: PartyGaming PartyPoker Malicious Update Vulnerability advisories (Aug 14)

alan shimel

I'm going to Internet Jail, framed by Squadron of Justice alan shimel (Aug 10)
Internet justice delivered, criminals panic and run in despair alan shimel (Aug 10)
Re: Internet justice delivered, criminals panic and run in despair alan shimel (Aug 10)

Alfredo Melloni

Google Notebook and Google Bookmarks Cross Site Scripting Vulnerabilities Alfredo Melloni (Aug 06)

Anders B Jansson

Re: Media backlash begins against HD Moore and I)ruid Anders B Jansson (Aug 06)

Andrea Di Pasquale

ArpON detects and blocks Arp Poisoning/Spoofing attacks Andrea Di Pasquale (Aug 02)

Andrew Farmer

Re: Step-by-step instructions for debugging Cisco IOS using gdb Andrew Farmer (Aug 16)
Re: Klueless Klowns Team PHP shell Andrew Farmer (Aug 18)

Andy Davis

Step-by-step instructions for debugging Cisco IOS using gdb Andy Davis (Aug 12)
Re: Step-by-step instructions for debugging Cisco IOS using gdb Andy Davis (Aug 17)
Version-independent IOS shellcode Andy Davis (Aug 21)

AR

DNS Multiple Race Exploiting Tool AR (Aug 01)

Arturo 'Buanzo' Busleiman

Re: Monthly Hands-On Meetups Arturo 'Buanzo' Busleiman (Aug 31)

Avraham Moshe Schneider

Alphanumeric Shellcode Encoding and Detection Avraham Moshe Schneider (Aug 04)
Re: Alphanumeric Shellcode Encoding and Detection Avraham Moshe Schneider (Aug 05)

Avraham Schneider

Re: Alphanumeric Shellcode Encoding and Detection Avraham Schneider (Aug 05)
Re: Alphanumeric Shellcode Encoding and Detection Avraham Schneider (Aug 06)
Re: Alphanumeric Shellcode Encoding and Detection Avraham Schneider (Aug 06)

az-guy

No subject az-guy (Aug 07)

badr muhyeddin

Re: Full-Disclosure Digest, Vol 42, Issue 42 badr muhyeddin (Aug 17)

baldr

Re: Funniest thing at DefCon this year... baldr (Aug 27)

Basha, Arif

ISO Standards Basha, Arif (Aug 26)

Ben Laurie

OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 09)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 12)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 12)

Berend-Jan Wever

ASCII Art shellcode Berend-Jan Wever (Aug 04)
StumbleUpon XSS (fixed) Berend-Jan Wever (Aug 12)

Bernhard Mueller

Interesting things at sec-consult.com, DNS-whitepaper available tomorrow Bernhard Mueller (Aug 05)
(no subject) Bernhard Mueller (Aug 05)
Re: (no subject) Bernhard Mueller (Aug 06)
Whitepaper: DNS zone redelegation Bernhard Mueller (Aug 07)

Biz Marqee

Re: phish war game Biz Marqee (Aug 05)

blah

Re: phish war game blah (Aug 05)

Bob Beck

Arbitrary Command Execution in Windows and Unix Shells. Bob Beck (Aug 22)

bomboclat

hackmeeting: call for participation bomboclat (Aug 30)

bug squash

DXShopCart V4.30mc search.php XSS bug squash (Aug 21)
DXShopCart v4.30mc product search.php xss bug squash (Aug 22)
ACG-PTP 1.0.6 index.php persistent XSS bug squash (Aug 22)
Photo Cart 3.9 index.php "search" XSS bug squash (Aug 22)

bussinessinbox box

x0x0x ? its a joke! a vendetta history.. bussinessinbox box (Aug 30)
x0x0x? its a joke! bussinessinbox box (Aug 31)

Carlos Sahuquillo

Re: ISO Standards] Carlos Sahuquillo (Aug 26)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Vulnerability in Cisco WebEx Meeting Manager ActiveX Control Cisco Systems Product Security Incident Response Team (Aug 15)

Clausen, Martin (DK - Copenhagen)

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Clausen, Martin (DK - Copenhagen) (Aug 12)

cocoruder

Microsoft Windows Messenger Remote Illegal Access Vulnerability cocoruder (Aug 14)

coderman

Re: what happened to fd??.. even eff cant save it??. coderman (Aug 11)
Re: Surf Jack - HTTPS will not save you coderman (Aug 11)
Re: weev, baby coderman (Aug 15)
Linus summarizes state of the "security industry" with precision and accuracy. coderman (Aug 16)
Re: [funsec] Internet attacks against Georgian web s ites coderman (Aug 18)
Re: Fedora confirms: Our servers were breached coderman (Aug 22)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy coderman (Aug 30)

Collin R. Mulliner

Nokia 6131 NFC URI/URL Spoofing and DoS Advisory Collin R. Mulliner (Aug 16)

CORE Security Technologies Advisories

CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability CORE Security Technologies Advisories (Aug 05)
CORE-2008-0103: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass CORE Security Technologies Advisories (Aug 14)
CORE-2008-0624: Anzio Web Print Object Buffer Overflow CORE Security Technologies Advisories (Aug 20)
CORE-2008-0813 - vBulletin Cross Site Scripting Vulnerability CORE Security Technologies Advisories (Aug 20)

Dancho Danchev

Coordinated Russia vs Georgia cyber attack in progress Dancho Danchev (Aug 14)
Inside India’s CAPTCHA Solvi ng Economy Dancho Danchev (Aug 30)

Dan Guido

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dan Guido (Aug 08)

Dan Kaminsky

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dan Kaminsky (Aug 08)

dann frazier

[SECURITY] [DSA 1630-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier (Aug 22)

Darkie Duck

Re: 0day services offer Darkie Duck (Aug 22)

Dave

Re: [funsec] Internet attacks against Georgian web s ites Dave (Aug 18)

Dave Korn

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dave Korn (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dave Korn (Aug 08)

David Litchfield

Re: Deep Blind SQL Injection Whitepaper David Litchfield (Aug 19)

Dean Pierce

Re: free static analysis tool for c/c++ Dean Pierce (Aug 04)

Deniz Cevik

Fujitsu Web-Based Admin View Directory Traversal Vulnerability Deniz Cevik (Aug 21)

Dennis Yurichev

question Dennis Yurichev (Aug 07)
question Dennis Yurichev (Aug 07)

Deral Heiland

Layered Defense Research Advisory: Alcatel-Lucent OmniSwitch products, Stack Buffer Overflow Deral Heiland (Aug 12)

Derek Callaway

Tool: PorkBind v1.3 Nameserver Security Scanner (New Version) Derek Callaway (Aug 16)

devildeath1988

Re: Multiple XSS Vulnerabilities in Self Generate CMS (K?rast) devildeath1988 (Aug 24)

Devin Carraway

[SECURITY] [DSA-1597-2] New mt-daapd package fix regression Devin Carraway (Aug 31)

Dick Hardt

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Dick Hardt (Aug 08)

don bailey

Re: Linus summarizes state of the "security industry" with precision and accuracy. don bailey (Aug 19)
Re: Linus summarizes state of the "security industry" with precision and accuracy. don bailey (Aug 19)

Dragos Ruiu

Re: Fedora confirms: Our servers were breached Dragos Ruiu (Aug 22)
PacSec 2008 CFP (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept. 30/ Oct. 1)PacSec 2 008 CFP (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept. 30/ Oct. 1) Dragos Ruiu (Aug 26)

Dr. Mark A. Baiter [Chief Scatological Consultant]

infected file ( can someone please report and take it down ? ) Dr. Mark A. Baiter [Chief Scatological Consultant] (Aug 07)

Drop Drop

Ukraine? Drop Drop (Aug 12)

Eddy Nigg (StartCom Ltd.)

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)

ekoparty

ekoparty 2008 - [First Round of Selection] - [Argentina] ekoparty (Aug 12)

Elazar Broad

Webex atucfobj Module ActiveX Control Buffer Overflow Vulnerability Elazar Broad (Aug 06)

Eliah Kagan

Re: Monthly Hands-On Meetups Eliah Kagan (Aug 31)

energy

Secret Plan To Kill Internet By 2012 Leaked? energy (Aug 12)
ISP's confirm '2012: The Year The Internet Ends' energy (Aug 12)

Eric Rescorla

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 09)

Erik Harrison

Re: Linus summarizes state of the "security industry" with precision and accuracy. Erik Harrison (Aug 19)

Exibar

Funniest thing at DefCon this year... Exibar (Aug 14)
UPDATE!! Funniest thing at DefCon this year... Exibar (Aug 15)
Re: [inbox] Honeypot? Exibar (Aug 30)
Re: [inbox] Monthly Hands-On Meetups Exibar (Sep 01)
Re: [inbox] Monthly Hands-On Meetups Exibar (Sep 01)

Fabio Pietrosanti (naif)

anyone developing a secure telephony application for GSM CSD? Fabio Pietrosanti (naif) (Aug 11)

Fernando Gont

Security Assessment of the Internet Protocol Fernando Gont (Aug 14)
Re: TCP Port randomization paper Fernando Gont (Aug 27)
Port Randomization: New revision of our IETF Internet-Draft Fernando Gont (Aug 31)
Port Randomization: New revision of our IETF Internet-Draft Fernando Gont (Sep 01)
New IETF I-D-: Security Assessment of the Internet Protocol version 4 Fernando Gont (Sep 01)

Ferruh Mavituna

Deep Blind SQL Injection Whitepaper Ferruh Mavituna (Aug 19)
Re: Deep Blind SQL Injection Whitepaper Ferruh Mavituna (Aug 19)
BSQL Hacker 0.9.0.7 - Advanced SQL Injection Framework / Tool Ferruh Mavituna (Aug 20)

ff0000

(no subject) ff0000 (Aug 13)
Re: Funniest thing at DefCon this year... ff0000 (Aug 14)
Re: [Full-disclosure] [funsec] Internet attacks against Georgian web s ites ff0000 (Aug 18)

Fionnbharr

Re: free static analysis tool for c/c++ Fionnbharr (Aug 05)

Florian Weimer

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Florian Weimer (Aug 08)
[SECURITY] [DSA 1627-1] New PowerDNS packages reduce DNS spoofing risk Florian Weimer (Aug 10)
Re: DNS forward only: why does it help? Florian Weimer (Aug 14)

Forrest J. Cavalier III

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Forrest J. Cavalier III (Aug 09)

Franck

Re: DIE IN A FIRE post Franck (Aug 27)

Francois Ropert

Hacking OSPF with MD5 authentication enabled Francois Ropert (Aug 21)
Re: Hacking OSPF with MD5 authentication enabled Francois Ropert (Aug 21)
Re: Hacking OSPF with MD5 authentication enabled Francois Ropert (Aug 21)

Frank Manley

Call for Papers CFS Frank Manley (Aug 15)

Gadi Evron

Re: [funsec] facebook messages worm Gadi Evron (Aug 07)
Re: [funsec] facebook messages worm Gadi Evron (Aug 07)
facebook messages worm Gadi Evron (Aug 07)
Re: [funsec] facebook messages worm Gadi Evron (Aug 07)
Internet attacks against Georgian web sites Gadi Evron (Aug 11)
Re: Internet attacks against Georgian web sites Gadi Evron (Aug 12)
Re: [funsec] Internet attacks against Georgian web sites Gadi Evron (Aug 13)
Re: [funsec] Internet attacks against Georgian web sites Gadi Evron (Aug 13)
[funsec] Estonia similarities begin to manifest (fwd) Gadi Evron (Aug 14)
ISOI 5 (Tallinn) agenda is now online Gadi Evron (Aug 14)
weev, baby Gadi Evron (Aug 15)
reviving the botnets@ mailing list: a new statregy in fighting cyber crime Gadi Evron (Aug 28)

Gerald Beuchelt

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Gerald Beuchelt (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Gerald Beuchelt (Aug 08)

GomoR

Re: Hacking OSPF with MD5 authentication enabled GomoR (Aug 21)

Great Council of Internet Superheros

GNUCITIZEN Stumbleupon account revised Great Council of Internet Superheros (Aug 07)
More information on Petko D. Petkov Great Council of Internet Superheros (Aug 07)
Re: [Suspected Junk Mail] Re: Petko D. Petkov files unleashed, guilty by Internet council Great Council of Internet Superheros (Aug 08)
Petko D. Petkov, Honeynet and Tom Ferris featured on an Internet Justice magazine Great Council of Internet Superheros (Aug 08)
Squadron of Justice to the rescue Great Council of Internet Superheros (Aug 08)
Squadron of Justice to the rescue Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 7/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 2/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 3/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 4/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 5/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 6/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 2/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 3/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 5/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 4/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 6/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 7/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 8/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 10/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 9/10) Great Council of Internet Superheros (Aug 08)

Gyan Chawdhary

Cisco IOS Shellcodes Gyan Chawdhary (Aug 14)

H2G-Labs Information Security

Brazilian Bank (Caixa Economica Federal) Stupid Vuln #02 (Opera's Style) H2G-Labs Information Security (Aug 09)

"Hal Finney"

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory "Hal Finney" (Aug 09)

Haroon Meer

Re: Deep Blind SQL Injection Whitepaper Haroon Meer (Aug 28)

hERB

Re: weev, baby hERB (Aug 15)

iDefense Labs

iDefense Security Advisory 07.31.08: Apple Mac OS X CoreGraphics PDF Type1 Font Integer Overflow Vulnerability iDefense Labs (Aug 01)
iDefense Security Advisory 08.01.08: Ingres Database for Linux verifydb Insecure File Permissions Modification Vulnerability iDefense Labs (Aug 02)
iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability iDefense Labs (Aug 02)
iDefense Security Advisory 08.01.08: Ingres Database for Linux ingvalidpw Untrusted Library Path Vulnerability iDefense Labs (Aug 02)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Stack Buffer Overflow Vulnerabilities iDefense Labs (Aug 12)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Format String Vulnerabilities iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft Office BMP Input Filter Heap Overflow Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft Office WPG Image File Heap Buffer Overflow Vulnerability iDefense Labs (Aug 13)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Out of Bounds Array Index Vulnerability iDefense Labs (Aug 13)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Cstring Integer Overflow Vulnerability iDefense Labs (Aug 13)
iDefense Security Advisory 08.12.08: Microsoft Excel Chart AxesSet Invalid Array Index Vulnerability iDefense Labs (Aug 13)
iDefense Security Advisory 08.12.08: Microsoft Excel FORMAT Record Invalid Array Index Vulnerability iDefense Labs (Aug 13)
iDefense Security Advisory 08.12.08: Microsoft Windows Color Management Module Heap Buffer Overflow Vulnerability iDefense Labs (Aug 13)

InfoSec DramaReport

Kaminsky Quittinq? Coffee Shop Inevitable? InfoSec DramaReport (Aug 07)

internetsuperheros

Petko D. Petkov files unleashed, guilty by Internet council internetsuperheros (Aug 07)
Petko D. Petkov files unleashed, guilty by Internet council internetsuperheros (Aug 07)

iViZ Security Advisories

[IVIZ-08-004] Intel BIOS Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-005] IBM Lenovo BIOS Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-006] DiskCryptor Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-002] Hewlett-Packard BIOS Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-009] Grub Legacy Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-003] TrueCrypt Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-007] DriveCrypt Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-008] LILO Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure iViZ Security Advisories (Aug 25)

James Fisher

OWASP DirBuster 0.11.1 Released James Fisher (Aug 20)

James Lay

Honeypot? James Lay (Aug 30)
Re: [inbox] Honeypot? James Lay (Aug 30)

James Matthews

Re: question James Matthews (Aug 08)
Re: No subject James Matthews (Aug 08)
Re: question James Matthews (Aug 08)
Re: CORE-2008-0624: Anzio Web Print Object Buffer Overflow James Matthews (Aug 20)
Re: OWASP DirBuster 0.11.1 Released James Matthews (Aug 21)
Re: Fedora confirms: Our servers were breached James Matthews (Aug 22)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime James Matthews (Aug 22)
Re: [IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure James Matthews (Aug 27)
Re: test post James Matthews (Aug 27)
Re: DIE IN A FIRE post James Matthews (Aug 27)
Re: ISO Standards James Matthews (Aug 28)

Jamie Strandboge

[USN-626-2] Devhelp, Epiphany, Midbrowser and Yelp update Jamie Strandboge (Aug 04)
[USN-635-1] xine-lib vulnerabilities Jamie Strandboge (Aug 06)

Jan Minář

Vim 7.2c.002 Fixes Arbitrary Command Execution when Handling Tar Archives Jan Minář (Aug 08)
Vim: Unfixed Vulnerabilities in Tar Plugin Version 20 Jan Minář (Aug 08)
Vim: Netrw: FTP User Name and Password Disclosure Jan Minář (Aug 12)
Vim: Arbitrary Code Execution in Commands: K, Control-], g] Jan Minář (Aug 22)

Jason Josno

test post Jason Josno (Aug 27)

Jeffrey Starck

offering 0day Jeffrey Starck (Aug 06)
Re: 0day offer Jeffrey Starck (Aug 17)

jeremie travis

selling jeremie travis (Aug 12)
selling 0-day jeremie travis (Aug 12)
Re: selling 0-day jeremie travis (Aug 17)

jeroen

Re: 0day offer jeroen (Aug 19)

Jerome Benoit

Re: Fedora confirms: Our servers were breached Jerome Benoit (Aug 22)

jf

Re: Media backlash begins against HD Moore and I)ruid jf (Aug 06)

Jin Sei

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Jin Sei (Aug 08)

Joel Jose

what happened to fd??.. even eff cant save it??. Joel Jose (Aug 10)

John C. A. Bambenek, GCIH, CISSP

Re: [funsec] facebook messages worm John C. A. Bambenek, GCIH, CISSP (Aug 06)
Re: [funsec] Internet attacks against Georgian web sites John C. A. Bambenek, GCIH, CISSP (Aug 11)
Re: Linus summarizes state of the "security industry" with precision and accuracy. John C. A. Bambenek, GCIH, CISSP (Aug 18)
Re: DIE IN A FIRE post John C. A. Bambenek, GCIH, CISSP (Aug 27)

John Cartwright

List Charter John Cartwright (Aug 09)

John Lamb

Re: 0day services offer John Lamb (Aug 22)

John Wane

news from Network Security Research John Wane (Aug 26)

Joxean Koret

Inguma version 0.0.9 released Joxean Koret (Aug 11)

Juha-Matti Laurio

Re: [funsec] facebook messages worm Juha-Matti Laurio (Aug 07)
Re: [funsec] facebook messages worm Juha-Matti Laurio (Aug 08)
Fedora confirms: Our servers were breached Juha-Matti Laurio (Aug 22)
Re: [IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure Juha-Matti Laurio (Aug 26)

Jun...

George Ledin virus material training Request. Jun... (Aug 11)

Kærast

Multiple XSS Vulnerabilities in Self Generate CMS Kærast (Aug 23)

Kees Cook

[USN-632-1] Python vulnerabilities Kees Cook (Aug 01)
[USN-633-1] libxslt vulnerabilities Kees Cook (Aug 01)
[USN-634-1] OpenLDAP vulnerability Kees Cook (Aug 01)
[USN-636-1] Postfix vulnerability Kees Cook (Aug 19)
[USN-637-1] Linux kernel vulnerabilities Kees Cook (Aug 26)
[USN-638-1] Yelp vulnerability Kees Cook (Aug 27)

KJK::Hyperion

Re: free static analysis tool for c/c++ KJK::Hyperion (Aug 05)
Re: free static analysis tool for c/c++ KJK::Hyperion (Aug 05)
Re: [IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure KJK::Hyperion (Aug 25)

kralor

IntelliTamper v2.07/2.08 Beta 4 A HREF sploit kralor (Aug 13)

Kristian Erik Hermansen

Health website vulnerable to hacking, no response from admins after multiple attempts Kristian Erik Hermansen (Aug 15)

Kristo pher

New info tool available at freewebtown.com/sombra6/info.php now Kristo pher (Aug 04)
c99 shell anyone? Kristo pher (Aug 08)
Klueless Klowns Team PHP shell Kristo pher (Aug 17)
kings' tools Kristo pher (Aug 29)

Leichter, Jerry

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Aug 08)

Line Noise

Re: ISO Standards Line Noise (Aug 26)

lsi

Re: simple phishing fix lsi (Aug 03)
phish war game lsi (Aug 05)

Luigi Auriemma

Server termination in America's Army 2.8.3.1 Luigi Auriemma (Aug 02)
Endless loop and resources consumption in Halo 1.0.7.0615 Luigi Auriemma (Aug 06)
NULL pointer in Ventrilo 3.0.2 Luigi Auriemma (Aug 13)

Maksymilian Arciemowicz

libc/net inet_net_pton() integer overflow Maksymilian Arciemowicz (Aug 23)

Manu Chao

Check this out Manu Chao (Aug 06)

Marc Bevand

Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting Marc Bevand (Aug 07)

Marco Slaviero

Re: Deep Blind SQL Injection Whitepaper Marco Slaviero (Aug 20)

Marc Ruef

[scip_Advisory 3807] Dreambox DM500 webserver long URL request denial of service Marc Ruef (Aug 29)

Mark Brunner

Re: Security Assessment of the Internet Protocol Mark Brunner (Aug 15)

M . B . Jr .

Re: ISO Standards M . B . Jr . (Aug 28)

Memisyazici, Aras

Re: Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Memisyazici, Aras (Aug 05)
Re: Beware the firefox ZERO DAYZZZZ Memisyazici, Aras (Aug 17)

Michael Krymson

Re: OWASP DirBuster 0.11.1 Released Michael Krymson (Aug 20)

Michael Wiegand

OpenVAS Stable Release Michael Wiegand (Aug 13)
Contest: Best Advances for OpenVAS Network Vulnerability Tests Michael Wiegand (Aug 22)

Michael Wojcik

Re: Arbitrary Code Execution in Commands: K, Control-], g] Michael Wojcik (Aug 26)

Mister Nice Guy

Storesonline, Ecommerce hosting solution - how to avoid mistakes that put your business at risk Mister Nice Guy (Aug 13)

modversion

free static analysis tool for c/c++ modversion (Aug 04)
Re: free static analysis tool for c/c++ modversion (Aug 05)
Re: free static analysis tool for c/c++ modversion (Aug 05)
Re: free static analysis tool for c/c++ modversion (Aug 05)

mrdkaaa

Re: DIE IN A FIRE post mrdkaaa (Aug 28)

M. Shirk

Re: DIE IN A FIRE post M. Shirk (Aug 27)

n3td3v

Fwd: Black Hat talk on Apple encryption cancelled n3td3v (Aug 01)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 03)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 05)
Fwd: Comment on: Microsoft to give partners heads-up on security vulnerabilities n3td3v (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 05)
Re: more rehashes of xss & 'evil gif' n3td3v (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 06)
Great Council of Internet Superheros n3td3v (Aug 08)
Re: Great Council of Internet Superheros n3td3v (Aug 08)
Emergency DNS Patch Still Vulnerable, Proves Russian Physicist n3td3v (Aug 09)
Re: Internet attacks against Georgian web sites n3td3v (Aug 11)
Re: [funsec] Internet attacks against Georgian web sites n3td3v (Aug 11)
Re: [funsec] Internet attacks against Georgian web sites n3td3v (Aug 11)
Fwd: Comments on: Alleged NASA hacker gets temporary reprieve n3td3v (Aug 12)
Re: Internet attacks against Georgian web sites n3td3v (Aug 13)
Re: Internet attacks against Georgian web sites n3td3v (Aug 13)
Re: Internet attacks against Georgian web sites n3td3v (Aug 14)
Re: weev, baby n3td3v (Aug 15)
Re: [funsec] Internet attacks against Georgian web s ites n3td3v (Aug 18)
Re: 0day services offer n3td3v (Aug 22)
Fwd: Hacker calls buddies overseas on U.S. government dime n3td3v (Aug 22)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime n3td3v (Aug 22)
Re: reviving the botnets@ mailing list: a new statregy in fighting cyber crime n3td3v (Aug 28)
Re: [funsec] Internet attacks against Georgian web s ites n3td3v (Aug 28)
Re: [funsec] Internet attacks against Georgian web s ites n3td3v (Aug 28)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy n3td3v (Aug 30)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy n3td3v (Aug 30)
Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 31)

Nicolas Williams

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Aug 08)

Night Ninja

Re: Internet justice delivered, criminals panic and run in despair Night Ninja (Aug 10)

Noam Rathaus

Re: Surf Jack - HTTPS will not save you Noam Rathaus (Aug 12)

North, Quinn

Re: Funniest thing at DefCon this year... North, Quinn (Aug 14)

nummish

Re: Deep Blind SQL Injection Whitepaper nummish (Aug 28)

Oliver Goebel

IMF 2008 - Call for Participation Oliver Goebel (Aug 19)

Pallav Khandhar

Tool Release: ProcL - Detect Hidden Process Pallav Khandhar (Aug 01)

Paul Ferguson

Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Aug 11)
Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Aug 11)
Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Aug 13)
Re: [funsec] Internet attacks against Georgian web s ites Paul Ferguson (Aug 17)

Paul Hoffman

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Paul Hoffman (Aug 08)

Paul Schmehl

Re: Media backlash begins against HD Moore and I)ruid Paul Schmehl (Aug 06)
Re: Kaminsky Quittinq? Coffee Shop Inevitable? Paul Schmehl (Aug 07)
Re: Emergency DNS Patch Still Vulnerable, Proves Russian Physicist Paul Schmehl (Aug 10)
Re: Inside India’s CAPTCHA Solvin g Economy Paul Schmehl (Aug 30)
Re: Inside India’s CAPTCHA Solvin g Economy Paul Schmehl (Aug 31)

Pavel Kankovsky

Re: Kaminsky's Law Pavel Kankovsky (Aug 06)

Pavel Labushev

Re: Internet attacks against Georgian web sites Pavel Labushev (Aug 14)

Perry E. Metzger

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Perry E. Metzger (Aug 08)

Peter Dawson

Re: [funsec] Internet attacks against Georgian web s ites Peter Dawson (Aug 18)

Peter Gutmann

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Gutmann (Aug 08)

Peter Williams

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Williams (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Williams (Aug 08)

Phillip Tanner

The Hacksaw Conspiracies Phillip Tanner (Aug 19)

Pierre-Yves Rofes

[ GLSA 200808-11 ] UUDeview: Insecure temporary file creation Pierre-Yves Rofes (Aug 11)

Pınar Yanardağ

[PLSA 2008-18] Pidgin: Spoofing Vulnerability Pınar Yanardağ (Aug 07)
[PLSA 2008-19] Git: Multiple Buffer Overflows Pınar Yanardağ (Aug 07)
[PLSA 2008-21] Ruby: Multiple Vulnerabilities Pınar Yanardağ (Aug 12)
[PLSA 2008-22] Php: Multiple Overflows Pınar Yanardağ (Aug 12)
[PLSA 2008-24] Amarok: Privilege escalation Pınar Yanardağ (Aug 15)
[PLSA 2008-25] Postfix: Local privilege escalation Pınar Yanardağ (Aug 16)
[PLSA 2008-28] Libxml2: Denial of Service Pınar Yanardağ (Aug 25)
[PLSA 2008-29] Vlc: Multiple Vulnerabilities Pınar Yanardağ (Aug 25)
[PLSA 2008-30] Vim: Arbitrary code execution Pınar Yanardağ (Aug 25)
[PLSA 2008-31] Tiff: Denial of Service Pınar Yanardağ (Aug 27)
[PLSA 2008-28] [Update] Libxml2: Denial of Service Pınar Yanardağ (Aug 28)
[PLSA 2008-32] Mono: Cross Site Scripting Pınar Yanardağ (Aug 31)
[PLSA 2008-33] [UPDATED] Opensc: Security Bypass Pınar Yanardağ (Aug 31)
[PLSA 2008-34] GNU ed: Heap Overflow Pınar Yanardağ (Sep 01)
[PLSA 2008-35] Ruby: Denial of Service Pınar Yanardağ (Sep 01)

Professor Micheal Chatner

Monthly Hands-On Meetups Professor Micheal Chatner (Aug 31)

r0tten c0re

McAfee + FUD ? r0tten c0re (Aug 06)

Radoslav Dejanović

Re: [funsec] Internet attacks against Georgian web sites Radoslav Dejanović (Aug 16)

raining lulz

Re: more rehashes of xss & 'evil gif' raining lulz (Aug 05)

Raj Mathur

Re: [Full-disclosure] Inside India’s CAPTCHA Solvin g Economy Raj Mathur (Aug 31)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvin g Economy Raj Mathur (Aug 31)

Randal T. Rioux

Re: DIE IN A FIRE post Randal T. Rioux (Aug 27)

Raphael Marichez

[ GLSA 200808-07 ] ClamAV: Multiple Denials of Service Raphael Marichez (Aug 08)
[ GLSA 200808-08 ] stunnel: Security bypass Raphael Marichez (Aug 08)
[ GLSA 200808-09 ] OpenLDAP: Denial of Service vulnerability Raphael Marichez (Aug 08)
[ GLSA 200808-12 ] Postfix: Local privilege escalation vulnerability Raphael Marichez (Aug 14)

Razi Shaban

Re: Fwd: Hacker calls buddies overseas on U.S. government dime Razi Shaban (Aug 24)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy Razi Shaban (Aug 30)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy Razi Shaban (Aug 31)

Richard Sammet

[tool announce] KisGearth - optimized release... Richard Sammet (Aug 29)

richc

Introducing the Android Security Team richc (Aug 19)

Robert Buchholz

[ GLSA 200808-01 ] xine-lib: User-assisted execution of arbitrary code Robert Buchholz (Aug 06)
[ GLSA 200808-02 ] Net-SNMP: Multiple vulnerabilities Robert Buchholz (Aug 06)
[ GLSA 200808-03 ] Mozilla products: Multiple vulnerabilities Robert Buchholz (Aug 06)
[ GLSA 200808-04 ] Wireshark: Denial of Service Robert Buchholz (Aug 06)
[ GLSA 200808-10 ] Adobe Reader: User-assisted execution of arbitrary code Robert Buchholz (Aug 09)
UPDATE: [ GLSA 200804-22 ] PowerDNS Recursor: DNS Cache Poisoning Robert Buchholz (Aug 21)

Robert Holgstad

more rehashes of xss & 'evil gif' Robert Holgstad (Aug 05)
Re: Thanks Maynor. Robert Holgstad (Aug 12)
Re: StumbleUpon XSS (fixed) Robert Holgstad (Aug 12)
Re: George Ledin virus material training Request. Robert Holgstad (Aug 12)
Re: OWASP DirBuster 0.11.1 Released Robert Holgstad (Aug 20)
Re: x0x0x? its a joke! Robert Holgstad (Aug 31)

Robert Marquardt

Re: [funsec] Internet attacks against Georgian web sites Robert Marquardt (Aug 11)

Rodrigo Rubira Branco (BSDaemon)

Call For Papers - Hackers 2 Hackers Conference 5th Edition - Brazil Rodrigo Rubira Branco (BSDaemon) (Aug 24)

Roman Medina-Heigl Hernandez

PoCfix (PoC for Postfix local root vuln - CVE-2008-2936) Roman Medina-Heigl Hernandez (Aug 31)

rPath Update Announcements

rPSA-2008-0245-1 cups rPath Update Announcements (Aug 06)
rPSA-2008-0246-1 gaim rPath Update Announcements (Aug 06)
rPSA-2008-0249-1 openldap openldap-clients openldap-servers rPath Update Announcements (Aug 11)
rPSA-2008-0247-1 gvim vim vim-minimal rPath Update Announcements (Aug 11)
rPSA-2008-0253-1 git gitweb rPath Update Announcements (Aug 12)
rPSA-2008-0243-1 idle python rPath Update Announcements (Aug 13)
rPSA-2008-0255-1 freetype rPath Update Announcements (Aug 15)
rPSA-2008-0259-1 postfix rPath Update Announcements (Aug 22)
rPSA-2008-0264-1 ruby rPath Update Announcements (Aug 31)

Sandro Gauci

Surf Jack - HTTPS will not save you Sandro Gauci (Aug 11)

Sandy Vagina

Re: Thanks Maynor. Sandy Vagina (Aug 12)

scott

Re: Media backlash begins against HD Moore and I)ruid scott (Aug 05)

Secunia Research

Secunia Research: Trend Micro Products Web Management Authentication Bypass Secunia Research (Aug 22)
Secunia Research: Novell iPrint Client ActiveX Control Multiple Buffer Overflows Secunia Research (Aug 25)
Secunia Research: Novell iPrint Client ActiveX Control "GetFileList()" Information Disclosure Secunia Research (Aug 25)
Secunia Research: Calendarix Basic Two SQL Injection Vulnerabilities Secunia Research (Aug 26)

security

[ MDVSA-2008:160 ] libxslt security (Aug 01)
[ MDVSA-2008:161 ] rxvt security (Aug 07)
[ MDVSA-2008:162 ] qemu security (Aug 07)
[ MDVSA-2008:163 ] python security (Aug 08)
[ MDVSA-2008:164 ] python security (Aug 08)
[ MDVSA-2008:165 ] perl security (Aug 11)
[ MDVSA-2008:167 ] kernel security (Aug 13)
[ MDVSA-2008:166 ] clamav security (Aug 13)
[ MDVSA-2008:169 ] hplip security (Aug 14)
[ MDVSA-2008:168 ] stunnel security (Aug 14)
[ MDVSA-2008:170 ] cups security (Aug 14)
[ MDVSA-2008:171 ] postfix security (Aug 15)
[ MDVSA-2008:172 ] amarok security (Aug 15)
[ MDVSA-2008:173 ] kdegraphics security (Aug 19)
[ MDVSA-2008:174 ] kernel security (Aug 20)
[ MDVSA-2008:175 ] yelp security (Aug 20)
[ MDVSA-2008:176 ] mtr security (Aug 20)
[ MDVSA-2008:177 ] xine-lib security (Aug 21)
[ MDVSA-2008:178 ] xine-lib security (Aug 21)
[ MDVSA-2008:179 ] metisse security (Aug 21)
[ MDVSA-2008:180 ] libxml2 security (Aug 22)
[ MDVSA-2008:180-1 ] libxml2 security (Aug 26)
[ MDVSA-2008:181 ] ipsec-tools security (Aug 29)

Security Lists

Announcement/OT: Ethical Hacking book release (Spanish) Security Lists (Aug 22)

security () nruns com

n.runs-SA-2008.005 - Apple Inc. - CoreServices Framework’s CarbonCore Framework - Arbi trary Code Execution (remote) security () nruns com (Aug 01)

Seth Breidbart

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Seth Breidbart (Aug 13)

Seth Fogie

White Wolf Labs #080826-1: Kyocera Mita Scanner File Utility (Multiple) Seth Fogie (Aug 27)

Shirk Dog

Re: DIE IN A FIRE post Shirk Dog (Aug 27)

silky

Re: Linus summarizes state of the "security industry" with precision and accuracy. silky (Aug 16)

Simon Smith

Re: DIE IN A FIRE post Simon Smith (Aug 27)
Re: DIE IN A FIRE post Simon Smith (Aug 27)

Simon Valiquette

Re: Linus summarizes state of the "security industry" with precision and accuracy. Simon Valiquette (Aug 18)
Re: Linus summarizes state of the "security industry" with precision and accuracy. Simon Valiquette (Aug 19)

Sir Mordred

Re: Deep Blind SQL Injection Whitepaper Sir Mordred (Aug 20)

Smiler D

Re: Step-by-step instructions for debugging Cisco IOS using gdb Smiler D (Aug 19)

Smiler S

Step-by-step instructions for debugging Cisco IOS using gdb Smiler S (Aug 16)

Solar Designer

key blacklisting & file size (was: OpenID/Debian PRNG/DNS Cache poisoning advisory) Solar Designer (Aug 08)

Squadron of Justice

For great justice. new mirrors of PdP mailbox Squadron of Justice (Aug 09)
Re: For great justice. new mirrors of PdP mailbox Squadron of Justice (Aug 09)
Latest judgement by Internet Justice Court: Still insecure, after all these years. Squadron of Justice (Aug 10)
Re: [Full-disclosure] Internet justice delivered, crimi nals panic and run in despair Squadron of Justice (Aug 10)
Re: Internet justice delivered [UPDATE ON M. ROTHMAN AND ALAN] Squadron of Justice (Aug 10)
Re: [Full-disclosure] Internet justice delivered, crimi nals panic and run in despair Squadron of Justice (Aug 12)
Re: [Suspected Junk Mail] Re: Petko D. Petkov hacked? Squadron of Justice (Aug 12)
Re: Petko D. Petkov hacked? Squadron of Justice (Aug 12)

staff

Thanks Maynor. staff (Aug 12)
Re: Vim: Arbitrary Code Execution in Commands: K, Control-], g] staff (Aug 22)

Static Rez

Re: [funsec] Internet attacks against Georgian web sites Static Rez (Aug 17)

Stefan Kanthak

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Stefan Kanthak (Aug 08)

Stephen Flaw

0day services offer Stephen Flaw (Aug 22)

Stephen Menard

Re: Monthly Hands-On Meetups Stephen Menard (Sep 01)

Steve Kemp

[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service Steve Kemp (Aug 22)
[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service Steve Kemp (Aug 26)

T Biehn

Beware the firefox ZERO DAYZZZZ T Biehn (Aug 16)
Re: The Hacksaw Conspiracies T Biehn (Aug 19)

Tea Baggins

children of the daycare of justice little league Tea Baggins (Aug 12)
weev, baby Tea Baggins (Aug 15)

Team SHATTER

Team SHATTER Security Advisory: SQL Injection in Oracle Application Server (WWEXP_API_ENGINE) Team SHATTER (Aug 04)
Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHHOME Parameter) Team SHATTER (Aug 04)
Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter) Team SHATTER (Aug 04)
Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Team SHATTER (Aug 04)
Re: Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Team SHATTER (Aug 11)

Thedjatclubrock

Re: Inside India's CAPTCHA Solving Economy Thedjatclubrock (Aug 31)
Re: x0x0x? its a joke! Thedjatclubrock (Aug 31)

Thierry Zoller

Re: Beware the firefox ZERO DAYZZZZ Thierry Zoller (Aug 16)

Thijs Kinkhorst

[SECURITY] [DSA 1625-1] New cupsys packages fix arbitrary code execution Thijs Kinkhorst (Aug 01)
[SECURITY] [DSA 1626-1] New httrack packages fix arbitrary code execution Thijs Kinkhorst (Aug 01)
[SECURITY] [DSA 1627-1] New opensc packages fix smart card vulnerability Thijs Kinkhorst (Aug 04)
[SECURITY] [DSA 1629-1] New postfix packages fix privilege escalation Thijs Kinkhorst (Aug 19)
[SECURITY] [DSA 1629-2] New postfix packages fix installability problem on i386 Thijs Kinkhorst (Aug 19)
[SECURITY] [DSA 1632-1] New tiff packages fix arbitrary code execution Thijs Kinkhorst (Aug 27)
[SECURITY] [DSA 1627-2] New opensc package fix incomplete check Thijs Kinkhorst (Aug 31)

Thomas Biege

SUSE Security Announcement: net-snmp (SUSE-SA:2008:039) Thomas Biege (Aug 01)
SUSE Security Announcement: postfix (SUSE-SA:2008:040) Thomas Biege (Aug 14)
SUSE Security Announcement: openwsman (SUSE-SA:2008:041) Thomas Biege (Aug 14)

Tim Dierks

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Tim Dierks (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Tim Dierks (Aug 08)

TJ

Re: Kaminsky's Law TJ (Aug 06)
Re: Media backlash begins against HD Moore and I)ruid TJ (Aug 06)
Re: Media backlash ... insane? TJ (Aug 06)

Tobias Heinlein

[ GLSA 200808-05 ] ISC DHCP: Denial of Service Tobias Heinlein (Aug 06)
[ GLSA 200808-06 ] libxslt: Execution of arbitrary code Tobias Heinlein (Aug 06)

Tobias Klein

[TKADV2008-006] CA HIPS KmxFw.sys Kernel Memory Corruption Tobias Klein (Aug 12)

Tom Brennan

Re: OWASP DirBuster 0.11.1 Released Tom Brennan (Aug 20)

Tonnerre Lombard

Re: ISO Standards Tonnerre Lombard (Aug 27)

Tony Mechelynck

Re: Vim: Netrw: FTP User Name and Password Disclosure Tony Mechelynck (Aug 13)

Tyler Reguly

Denial of Service Survey Tyler Reguly (Aug 19)

Ureleet

Re: Media backlash begins against HD Moore and I)ruid Ureleet (Aug 06)
Re: Fwd: Comment on: Microsoft to give partners heads-up on security vulnerabilities Ureleet (Aug 06)
Re: Fwd: Are Bug Disclosures Helping or Hurting? Ureleet (Aug 06)
Re: Re : CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit Ureleet (Aug 06)
Re: Nominate Dan Kaminsky for Most Overhyped Bug Pwnie Award Ureleet (Aug 06)
Re: Kaminsky's Law Ureleet (Aug 06)
Re: (no subject) Ureleet (Aug 06)
Re: Internet attacks against Georgian web sites Ureleet (Aug 14)
Re: Funniest thing at DefCon this year... Ureleet (Aug 14)
Re: (no subject) Ureleet (Aug 14)
Re: Great Council of Internet Superheros Ureleet (Aug 14)
Re: Internet justice delivered [UPDATE ON M. ROTHMAN AND ALAN] Ureleet (Aug 14)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime Ureleet (Aug 24)
Re: Fwd: Comments on: Alleged NASA hacker gets temporary reprieve Ureleet (Aug 24)

Valdis . Kletnieks

Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 04)
Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 05)
Re: question Valdis . Kletnieks (Aug 07)
Re: Emergency DNS Patch Still Vulnerable, Proves Russian Physicist Valdis . Kletnieks (Aug 10)
Re: Internet justice delivered, criminals panic and run in despair Valdis . Kletnieks (Aug 11)
Re: [funsec] Internet attacks against Georgian web sites Valdis . Kletnieks (Aug 11)
Re: (no subject) Valdis . Kletnieks (Aug 14)
Re: [funsec] Internet attacks against Georgian web s ites Valdis . Kletnieks (Aug 18)
Re: 0day services offer Valdis . Kletnieks (Aug 22)
Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy Valdis . Kletnieks (Aug 31)
Re: Gustav, domain name reportage Valdis . Kletnieks (Aug 31)
Re: Gustav, domain name reportage Valdis . Kletnieks (Aug 31)
Re: Gustav, domain name reportage Valdis . Kletnieks (Aug 31)
Re: [inbox] Monthly Hands-On Meetups Valdis . Kletnieks (Sep 01)

Valery Marchuk

SQL Injection Vulnerability in BtiTracker and xbtit Valery Marchuk (Aug 25)

Viktor Larionov

Re: Internet attacks against Georgian web sites Viktor Larionov (Aug 13)

VMware Security Team

VMSA-2008-0012 Updated VirtualCenter addresses User Account Disclosure Vulnerability VMware Security Team (Aug 12)
VMSA-2008-0013 Updated ESX packages for OpenSSL, net-snmp, perl VMware Security Team (Aug 12)
VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues. VMware Security team (Aug 30)

Wesley McGrew

Re: Gustav, domain name reportage Wesley McGrew (Aug 31)

wilder_jeff Wilder

When will they ever get it !?!?!?! wilder_jeff Wilder (Aug 07)

William A. Rowe, Jr.

Re: how to request a cve id? William A. Rowe, Jr. (Aug 03)

William McAfee

Re: Full-Disclosure Digest, Vol 42, Issue 42 William McAfee (Aug 17)
Re: [funsec] Internet attacks against Georgian web sites William McAfee (Aug 17)
Re: [funsec] Internet attacks against Georgian web sites William McAfee (Aug 17)
Re: Klueless Klowns Team PHP shell William McAfee (Aug 17)
Re: [funsec] Internet attacks against Georgian web s ites William McAfee (Aug 18)
Re: [funsec] Internet attacks against Georgian web s ites William McAfee (Aug 18)
Re: [funsec] Internet attacks against Georgian web s ites William McAfee (Aug 18)
Re: Linus summarizes state of the "security industry" with precision and accuracy. William McAfee (Aug 19)
Re: The Hacksaw Conspiracies William McAfee (Aug 19)
Re: OWASP DirBuster 0.11.1 Released William McAfee (Aug 20)
Re: Fedora confirms: Our servers were breached William McAfee (Aug 23)

Williams, James K

CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability Williams, James K (Aug 01)
CA Products That Embed Ingres Multiple Vulnerabilities Williams, James K (Aug 06)
CA Host-Based Intrusion Prevention System SDK kmxfw.sys Multiple Vulnerabilities Williams, James K (Aug 12)

zdi-disclosures

ZDI-08-048: Microsoft Excel COUNTRY Record Memory Corruption Vulnerability zdi-disclosures (Aug 12)
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption zdi-disclosures (Aug 12)
ZDI-08-050: Microsoft Internet Explorer XHTML Rendering Memory Corruption Vulnerability zdi-disclosures (Aug 12)
ZDI-08-051: Microsoft Internet Explorer Table Layout Memory Corruption Vulnerability zdi-disclosures (Aug 12)
ZDI-08-052: OpenLDAP BER Decoding Remote DoS Vulnerability zdi-disclosures (Aug 14)
ZDI-08-053: Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability zdi-disclosures (Aug 14)
ZDI-08-054: Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow Vulnerability zdi-disclosures (Aug 28)

Previous period

Next period