Home page logo
/

318 messages starting Apr 30 09 and ending Apr 19 09
Date index | Thread index | Author index

Adam Chesnutt

Re: Anti virus installations on Windows servers Adam Chesnutt (Apr 30)

Alexander Kornbrust

Unprivileged DB users can see APEX password hashes [CVE-2009-0981] Alexander Kornbrust (Apr 16)
SQL Injection in package DBMS_AQIN [CVE-2009-0992] Alexander Kornbrust (Apr 16)
SQL Injection in package DBMS_AQADM_SYS [CVE-2009-0977] Alexander Kornbrust (Apr 16)

Anand A

Anand A has sent you a private message Anand A (Apr 28)

Andreas Bogk

Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 09)
Re: Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 09)
Re: Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 10)
Re: Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 10)
Re: Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 13)

anony mous

DirectAdmin < 1.33.4 Local file overwrite & Local root escalation anony mous (Apr 22)

Answer

News paper article > who is the greatest Hacker? Answer (Apr 06)

Anthony Desnos

iAWACS 2009 CFP Anthony Desnos (Apr 29)

Asterisk Security Team

AST-2009-003: SIP responses expose valid usernames Asterisk Security Team (Apr 02)

Berend-Jan Wever

Re: Firefox 3.0.8 remote DoS: 0-day exploit Berend-Jan Wever (Apr 04)
MS09-014: MSIE EMBED element race condition memory corruption Berend-Jan Wever (Apr 19)

Bernardo Damele A. G.

[Tool] sqlmap 0.7rc1 released Bernardo Damele A. G. (Apr 23)

Bernhard Mueller

SEC Consult SA-20090415-0 :: Multiple Vulnerabilities in Novell Teaming Bernhard Mueller (Apr 15)

Biz Marqee

dev mem injection Biz Marqee (Apr 16)

Bkis

[Bkis-06-2009] GOM Player Subtitle Buffer Overflow Vulnerability Bkis (Apr 08)
Bkis Conficker Scanner Bkis (Apr 21)
[Bkis-07-2009] 010 Editor Multiple Buffer Overflow Vulnerabilities Bkis (Apr 22)

Bugs NotHugs

SAP BusinessObjects Crystal Reports viewreport.asp Multiple Parameter XSS Bugs NotHugs (Apr 02)
PeterConnects Web Server Traversal Arbitrary File Access Bugs NotHugs (Apr 08)

c

SumatraPDF <= 0.9.3 Heap Overflow PoC c (Apr 27)

cardiac_arrest

Re: one shot remote root for linux? cardiac_arrest (Apr 28)

carl hardwick

Firefox 3.0.8 remote DoS: 0-day exploit carl hardwick (Apr 04)

Cesar

Opening Intranets to attack by using Internet Explorer [paper] Cesar (Apr 07)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Adaptive Security Appliance and Cisco PIX Security Appliances Cisco Systems Product Security Incident Response Team (Apr 08)

Code Audit Labs

Microsoft four infinity loop D.o.S vulnerabilities Code Audit Labs (Apr 17)

CORE Security Technologies Advisories

CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator CORE Security Technologies Advisories (Apr 21)
Re: [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator Core Security Technologies advisories (Apr 22)

DDI_Vulnerability_Alert

DDIVRT-2009-23 Apache ActiveMQ Numerous Cross Site Scripting Issues DDI_Vulnerability_Alert (Apr 16)
DDIVRT-2009-24 Precidia Ether232 Memory Corruption DDI_Vulnerability_Alert (Apr 28)

Dennis Yurichev

IBM DB2 two PoCs Dennis Yurichev (Apr 02)
CVE-2009-0991 PoC Dennis Yurichev (Apr 20)
Obfuscated patches Dennis Yurichev (Apr 21)

Deral Heiland

Layered Defense Research Advisory: Format String Vulnerability: FortiClient Version 3 Deral Heiland (Apr 02)

Devin Carraway

[SECURITY] [DSA 1783-1] New mysql-dfsg-5.0 packages fix multiple vulnerabilities Devin Carraway (Apr 29)

don bailey

Re: udev exploit - SECURITYFOCUS.COM edits your exploits don bailey (Apr 19)
Re: Anti virus installations on Windows servers don bailey (Apr 29)
Re: Anti virus installations on Windows servers don bailey (Apr 29)
Re: Anti virus installations on Windows servers don bailey (Apr 29)

Dragos Ruiu

EUSecWest 2009 CFP (May 27/28, Deadline April 7 2009) Dragos Ruiu (Apr 01)

dvlabs

TPTI-09-01: VMWare VMnc Codec Invalid RFB Message Type Heap Overflow dvlabs (Apr 06)
TPTI-09-02: VMWare VMnc Codec Open-DML Standard Index dwSize Heap Overflow dvlabs (Apr 06)

Eduardo_Godinho

Re: Virtual Machine Trojans: a new type of threat? Eduardo_Godinho (Apr 19)

ekoparty security

CFP for ekoparty 0x09 is now open! [ Buenos Aires, Argentina ] ekoparty security (Apr 23)

Elazar Broad

Autodesk IDrop ActiveX Control Heap Corruption Vulnerability Elazar Broad (Apr 02)

Erez Metula

.NET Framework Rootkits Erez Metula (Apr 07)

Eugene Teo

Re: Linux Kernel CIFS Vulnerability Eugene Teo (Apr 12)
Re: Linux Kernel CIFS Vulnerability Eugene Teo (Apr 14)

Exibar

Re: [inbox] Re: Virtual Machine Trojans: a new type of threat? Exibar (Apr 18)

exploit dev

conficker.c - ccTLD strange attractor exploit dev (Apr 05)
dissecting conficker.e exploit dev (Apr 24)

Florian Weimer

[SECURITY] [DSA 1754-1] New roundup packages fix privilege escalation Florian Weimer (Apr 09)
[SECURITY] [DSA 1768-1] New openafs packages potential code execution Florian Weimer (Apr 10)
[SECURITY] [DSA 1769-1] New openjdk-6 packages fix arbitrary code execution Florian Weimer (Apr 11)
[SECURITY] [DSA 1771-1] New clamav packages fix several vulnerabilities Florian Weimer (Apr 15)
[SECURITY] [DSA 1772-1] New udev packages fix privilege escalation Florian Weimer (Apr 16)
[SECURITY] [DSA 1780-1] New libdbd-pg-perl packages fix potential code execution Florian Weimer (Apr 28)

Gadi Evron

one shot remote root for linux? Gadi Evron (Apr 28)

Georgi Guninski

http://confickerworkinggroup.org/ Georgi Guninski (Apr 09)
Re: http://confickerworkinggroup.org/ Georgi Guninski (Apr 10)
Re: Hacker Space Fest 2009 CFP: Call For Paper Georgi Guninski (Apr 16)

Gerardo García Peña

Summer Camp Garrotxa 2009 event Gerardo García Peña (Apr 08)

hack.lu 2009 info

Call for Papers Hack.lu 2009 hack.lu 2009 info (Apr 30)

iDefense Labs

iDefense Security Advisory 04.14.09: Microsoft Word 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability iDefense Labs (Apr 14)
iDefense Security Advisory 04.15.09: Microsoft WordPad Word97 Converter Stack Buffer Overflow Vulnerability iDefense Labs (Apr 15)
iDefense Security Advisory 04.15.09: IBM AIX muxatmd Buffer Overflow Vulnerability iDefense Labs (Apr 15)
iDefense Security Advisory 04.28.09: TIBCO SmartSockets Stack Buffer Overflow Vulnerability iDefense Labs (Apr 28)
iDefense Security Advisory 04.29.09: Symantec System Center Alert Management System Console Arbitrary Program Execution Design Error Vulnerability iDefense Labs (Apr 29)

James Matthews

Re: Anand A has sent you a private message James Matthews (Apr 28)

Jamie Strandboge

[USN-754-1] ClamAV vulnerabilities Jamie Strandboge (Apr 07)
[USN-756-1] ClamAV vulnerability Jamie Strandboge (Apr 13)
[USN-760-1] CUPS vulnerability Jamie Strandboge (Apr 16)
[USN-762-1] APT vulnerabilities Jamie Strandboge (Apr 20)
[USN-764-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Apr 23)
[USN-765-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Apr 28)
[USN-768-1] Apport vulnerability Jamie Strandboge (Apr 29)

Jan G.B.

Re: [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass Jan G.B. (Apr 03)

Jeremi Gosney

razorCMS - Multiple Vulnerabilities Jeremi Gosney (Apr 16)
[follow-up] razorCMS - Multiple Vulnerabilities Jeremi Gosney (Apr 17)

jmoss

BH USA CFP closing next Tuesday jmoss (Apr 30)

John Cartwright

List Charter John Cartwright (Apr 11)

John Smith

JRE Update 11/12 Pack 200 reliable WinXP exploit John Smith (Apr 02)

Joshua Russel

LinkedIn DB dump Joshua Russel (Apr 18)

Juha-Matti Laurio

Re: http://confickerworkinggroup.org/ Juha-Matti Laurio (Apr 10)
Re: http://confickerworkinggroup.org/ Juha-Matti Laurio (Apr 12)
Re: full disclosure? Juha-Matti Laurio (Apr 28)

Julien Maladrie

Re: Anti virus installations on Windows servers Julien Maladrie (Apr 29)

Julio César García Vizcaíno

Re: Virtual Machine Trojans: a new type of threat? Julio César García Vizcaíno (Apr 18)

Justin C. Klein Keane

NanoCMS Multiple Vulnerabilities Justin C. Klein Keane (Apr 13)

Kay Nettle

Re: [USN-758-1] udev vulnerabilities Kay Nettle (Apr 20)

Kees Cook

[USN-752-1] Linux kernel vulnerabilities Kees Cook (Apr 07)
[USN-751-1] Linux kernel vulnerabilities Kees Cook (Apr 07)
[USN-755-1] Kerberos vulnerabilities Kees Cook (Apr 07)
[USN-758-1] udev vulnerabilities Kees Cook (Apr 15)

Kingcope Kingcope

udev exploit Kingcope Kingcope (Apr 18)
udev exploit - SECURITYFOCUS.COM edits your exploits Kingcope Kingcope (Apr 19)

Krakow Labs

Krakow Labs Development - Hzzp Krakow Labs (Apr 27)

Kurt Buff

Re: Anti virus installations on Windows servers Kurt Buff (Apr 29)

Line Noise

Re: Black Hat USA Videos available to D/L Line Noise (Apr 03)

Major Malfunction

Pre-announcement! New venue for DC4420 - Thursday 30th April Major Malfunction (Apr 08)
DEFCON London DC4420 meet this Thursday - 30th April 2009 Major Malfunction (Apr 27)

Maksymilian Arciemowicz

PHP 5.2.9 curl safe_mode & open_basedir bypass Maksymilian Arciemowicz (Apr 11)

Marc Deslauriers

[USN-753-1] PostgreSQL vulnerability Marc Deslauriers (Apr 07)
[USN-757-1] Ghostscript vulnerabilities Marc Deslauriers (Apr 15)
[USN-759-1] poppler vulnerabilities Marc Deslauriers (Apr 16)
[USN-761-1] PHP vulnerabilities Marc Deslauriers (Apr 20)
[USN-763-1] xine-lib vulnerabilities Marc Deslauriers (Apr 20)
[USN-761-2] PHP vulnerabilities Marc Deslauriers (Apr 27)
[USN-766-1] acpid vulnerability Marc Deslauriers (Apr 27)
[USN-767-1] FreeType vulnerability Marc Deslauriers (Apr 27)

Marco Mella

POC - Sun Java System Acccess Manager & Identity Manager Users Enumeration Marco Mella (Apr 07)

Marcus Meissner

Re: Linux Kernel CIFS Vulnerability Marcus Meissner (Apr 10)
Re: Linux Kernel CIFS Vulnerability Marcus Meissner (Apr 10)

Mario Alejandro Vilas Jerez

Python winappdbg module v1.0 is out! Mario Alejandro Vilas Jerez (Apr 21)

Mark Bristow

OWASP AppSec DC 2009 CALL FOR PAPERS Mark Bristow (Apr 28)

Mark-David McLaughlin (marmclau)

Re: Cisco ASA5520 Web VPN Host Header XSS Mark-David McLaughlin (marmclau) (Apr 24)

Mark Thomas

CVE-2009-1190: Spring Framework Remote Denial of Service Vulnerability Mark Thomas (Apr 24)

Matteo Beccati

[OPENX-SA-2009-002] OpenX 2.4.11, 2.6.5, 2.8.0 fix multiple vulnerabilities Matteo Beccati (Apr 01)

M.B.Jr.

Re: THC releases video and tool to create fakeePassports M.B.Jr. (Apr 21)
Re: Anti virus installations on Windows servers M.B.Jr. (Apr 29)

mbs

Anti virus installations on Windows servers mbs (Apr 29)

Michael Holstein

Re: THC releases video and tool to create fakeePassports Michael Holstein (Apr 22)

Michael Wiegand

OpenVAS now beyond 10000 Network Vulnerability Tests Michael Wiegand (Apr 09)

Mike Bann

Re: Firefox 3.0.8 remote DoS: 0-day exploit Mike Bann (Apr 04)

Mikeyy Mooney

[/bin/sh] Tweet Tweet....hax hax.... Mikeyy Mooney (Apr 17)
[/bin/sh] Tweet Tweet....hax hax.... Mikeyy Mooney (Apr 17)

Mobile Security Lab

MSL-2009-001 - Samsung Missing Provisioning Authentication Mobile Security Lab (Apr 24)

Moritz Muehlenhoff

[SECURITY] [DSA 1763-1] New openssl packages fix denial of service Moritz Muehlenhoff (Apr 06)
[SECURITY] [DSA 1764-1] New tunapie packages fix several vulnerabilities Moritz Muehlenhoff (Apr 07)

mozilla

ERNW Security Advisory 01-2009: XSS in Blackberries Mobile Data Service Connection Service mozilla (Apr 17)

my.hndl

[tool] efipw (new OFPW tool) my.hndl (Apr 13)

Nam Nguyen

[BMSA 2009-04] Remote DoS in Internet Explorer Nam Nguyen (Apr 11)

Nick

Firefox 3.0.8 remote DoS: 0-day exploit Nick (Apr 05)

Nick Boyce

Re: Linux Kernel CIFS Vulnerability Nick Boyce (Apr 10)

Nico Golde

[SECURITY] [DSA 1761-1] New moodle packages fix file disclosure Nico Golde (Apr 05)
[SECURITY] [DSA 1766-1] New krb5 packages fix several vulnerabilities Nico Golde (Apr 09)
[SECURITY] [DSA 1767-1] New multipath-tools packages fix denial of service Nico Golde (Apr 09)
[SECURITY] [DSA 1778-1] New mahara packages fix cross-site scripting Nico Golde (Apr 23)

noreply-secresearch () fortinet com

FGA-2009-003:EMC RepliStor Buffer Overflow Vulnerability noreply-secresearch () fortinet com (Apr 09)
Microsoft Office Excel Remote Memory Corruption Vulnerability noreply-secresearch () fortinet com (Apr 15)

Oliver Goebel

[IMF 2009] 2nd Call for Papers - Submission Open Oliver Goebel (Apr 17)

Paul Schmehl

Re: Conficker tool for end users Paul Schmehl (Apr 01)
Re: Firefox 3.0.8 remote DoS: 0-day exploit Paul Schmehl (Apr 04)

Pavel Kankovsky

Re: Virtual Machine Trojans: a new type of threat? Pavel Kankovsky (Apr 19)

Pedro

Re: Obfuscated patches Pedro (Apr 21)

Pedro Hugo

Re: Obfuscated patches Pedro Hugo (Apr 21)

Peter Besenbruch

Re: .NET Framework Rootkits Peter Besenbruch (Apr 08)

Peter Ferrie

Re: Virtual Machine Trojans: a new type of threat? Peter Ferrie (Apr 17)

Philippe Mailinglist

Hacker Space Fest 2009 CFP: Call For Paper Philippe Mailinglist (Apr 13)

Pierre-Yves Rofes

[ GLSA 200904-01 ] Openfire: Multiple vulnerabilities Pierre-Yves Rofes (Apr 02)
[ GLSA 200904-05 ] ntp: Certificate validation error Pierre-Yves Rofes (Apr 05)
[ GLSA 200904-06 ] Eye of GNOME: Untrusted search path Pierre-Yves Rofes (Apr 06)
[ GLSA 200904-13 ] Ventrilo: Denial of Service Pierre-Yves Rofes (Apr 14)
[ GLSA 200904-14 ] F-PROT Antivirus: Denial of Service Pierre-Yves Rofes (Apr 14)
[ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code Pierre-Yves Rofes (Apr 17)
[ GLSA 200904-18 ] udev: Multiple vulnerabilities Pierre-Yves Rofes (Apr 18)
[ GLSA 200904-19 ] LittleCMS: Multiple vulnerabilities Pierre-Yves Rofes (Apr 19)
[ GLSA 200904-20 ] CUPS: Multiple vulnerabilities Pierre-Yves Rofes (Apr 23)

Piotr Bania

KON-BOOT for Windows and Linux (Password Bypassing Utility for Forgetting Heads) Piotr Bania (Apr 16)
Some "old" advisories: MS09-011 and VMware detection/DoS Piotr Bania (Apr 16)

Positron Security

Positron Security Advisory #2009-001: Memcached and MemcacheDB ASLR Bypass Weakness Positron Security (Apr 28)

Raj Mathur

Re: Linux Kernel CIFS Vulnerability Raj Mathur (Apr 09)

Ralf-Philipp Weinmann

Re: Hacker Space Fest 2009 CFP: Call For Paper Ralf-Philipp Weinmann (Apr 16)

Randal T. Rioux

Re: Black Hat USA Videos available to D/L Randal T. Rioux (Apr 02)

Razi Shaban

Re: Security Research Suggests Security Researchers Owned Razi Shaban (Apr 02)
Re: SniffJoke 0.3 release and request for feedback Razi Shaban (Apr 15)

rembrandt

OpenBSD 4.3 up to OpenBSD-current: PF null pointer dereference kernel panic rembrandt (Apr 13)

Robert Buchholz

[ GLSA 200904-03 ] Gnumeric: Untrusted search path Robert Buchholz (Apr 03)
[ GLSA 200904-02 ] GLib: Execution of arbitrary code Robert Buchholz (Apr 03)
[ GLSA 200904-07 ] Xpdf: Untrusted search path Robert Buchholz (Apr 07)
[ GLSA 200904-08 ] OpenSSL: Denial of Service Robert Buchholz (Apr 07)
[ GLSA 200904-09 ] MIT Kerberos 5: Multiple vulnerabilities Robert Buchholz (Apr 08)
[ GLSA 200904-10 ] Avahi: Denial of Service Robert Buchholz (Apr 08)
[ GLSA 200904-11 ] Tor: Multiple vulnerabilities Robert Buchholz (Apr 08)
[ GLSA 200904-15 ] mpg123: User-assisted execution of arbitrary code Robert Buchholz (Apr 16)
[ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code Robert Buchholz (Apr 18)

Robert Lemos

Security Research Suggests Security Researchers Owned Robert Lemos (Apr 02)
Re: Security Research Suggests Security Researchers Owned Robert Lemos (Apr 02)

Ron

Re: Firefox 3.0.8 remote DoS: 0-day exploit Ron (Apr 07)

rPath Update Announcements

rPSA-2009-0057-1 m2crypto openssl openssl-scripts rPath Update Announcements (Apr 03)
rPSA-2009-0058-1 krb5 krb5-server krb5-services krb5-test krb5-workstation rPath Update Announcements (Apr 08)
rPSA-2009-0062-1 tshark wireshark rPath Update Announcements (Apr 17)
rPSA-2009-0063-1 udev rPath Update Announcements (Apr 17)
rPSA-2009-0064-1 icu rPath Update Announcements (Apr 17)
rPSA-2009-0060-1 ghostscript rPath Update Announcements (Apr 17)
rPSA-2009-0059-1 poppler rPath Update Announcements (Apr 17)
rPSA-2009-0061-1 cups rPath Update Announcements (Apr 17)

Rubén Camarero

h0no is back Rubén Camarero (Apr 02)

Sandro Gauci

OpenX 2.6.4 multiple vulnerabilities Sandro Gauci (Apr 01)

sativouf

[tool] sqlsus 0.3 released ! sativouf (Apr 06)

SEC Consult Research

Proxy bypass vulnerability & plain text passwords in LevelOne AMG-2000 SEC Consult Research (Apr 29)

Secunia Research

Secunia Research: UltraISO Image Parsing Buffer Overflow Vulnerabilities Secunia Research (Apr 01)
Secunia Research: UltraISO Image Name Parsing Format String Vulnerabilities Secunia Research (Apr 01)
Secunia Research: IrfanView Formats Plug-in XPM Parsing Integer Overflow Secunia Research (Apr 07)
Secunia Research: Ghostscript jbig2dec JBIG2 Processing Buffer Overflow Secunia Research (Apr 09)
Secunia Research: DivX Web Player Stream Format Chunk Buffer Overflow Secunia Research (Apr 15)
Secunia Research: SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method Secunia Research (Apr 15)
Secunia Research: Oracle BEA WebLogic Server Plug-ins Integer Overflow Secunia Research (Apr 15)
Secunia Research: Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow Secunia Research (Apr 15)
Secunia Research: Danske Bank e-Sec Control Module Error Logging Buffer Overflow Secunia Research (Apr 16)
Secunia Research: Xpdf JBIG2 Symbol Dictionary Buffer Overflow Vulnerability Secunia Research (Apr 17)
Secunia Research: CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow Secunia Research (Apr 17)
Secunia Research: HP OpenView Network Node Manager "ovalarmsrv" Integer Overflow Secunia Research (Apr 28)

security

[ MDVSA-2009:083 ] mozilla-thunderbird security (Apr 01)
[ MDVSA-2009:084 ] firefox security (Apr 01)
[ MDVSA-2009:085 ] gstreamer0.10-plugins-base security (Apr 02)
[ MDVSA-2009:087 ] openssl security (Apr 03)
[ MDVSA-2009:086 ] gstreamer-plugins security (Apr 04)
[ MDVSA-2009:088 ] wireshark security (Apr 09)
[ MDVSA-2009:089 ] opensc security (Apr 10)
[ MDVSA-2009:090 ] php security (Apr 10)
[ MDVSA-2009:091 ] mod_perl security (Apr 12)
[ MDVSA-2009:092 ] ntp security (Apr 13)
[ MDVSA-2009:093 ] mpg123 security (Apr 22)
[ MDVSA-2009:094 ] mysql security (Apr 22)
[ MDVSA-2009:095 ] ghostscript security (Apr 24)
[ MDVSA-2009:096 ] printer-drivers security (Apr 24)
[ MDVSA-2009:097 ] clamav security (Apr 24)
[ MDVSA-2009:097 ] clamav security (Apr 24)
[ MDVSA-2009:098 ] krb5 security (Apr 27)
[ MDVSA-2009:096-1 ] printer-drivers security (Apr 27)
[ MDVSA-2009:099 ] openafs security (Apr 27)
[ MDVSA-2009:101 ] xpdf security (Apr 28)
[ MDVA-2009:057 ] usermode security (Apr 29)
[ MDVSA-2009:104 ] udev security (May 01)
[ MDVSA-2009:103 ] udev security (May 01)

sergio

Virtual Machine Trojans: a new type of threat? sergio (Apr 17)
Re: Virtual Machine Trojans: a new type of threat? sergio (Apr 18)
Re: Virtual Machine Trojans: a new type of threat? sergio (Apr 18)

Sergio 'shadown' Alvarez

Re: CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator Sergio 'shadown' Alvarez (Apr 22)
Re: [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator Sergio 'shadown' Alvarez (Apr 23)

Stefan Kanthak

Windows Update (re-)installs outdated Flash ActiveX on Windows XP Stefan Kanthak (Apr 21)

Steffen Joeris

[SECURITY] [DSA 1762-1] New icu packages fix cross site scripting Steffen Joeris (Apr 02)
[SECURITY] [DSA 1765-1] New horde3 packages fix several vulnerabilities Steffen Joeris (Apr 09)
[SECURITY] [DSA 1770-1] New imp4 packages fix cross-site scripting Steffen Joeris (Apr 13)
[SECURITY] [DSA 1773-1] New cups packages fix arbitrary code execution Steffen Joeris (Apr 17)
[SECURITY] [DSA 1774-1] New ejabberd packages fix cross-site scripting Steffen Joeris (Apr 17)
[SECURITY] [DSA 1775-1] New php-json-ext packages fix denial of service Steffen Joeris (Apr 20)
[SECURITY] [DSA 1781-1] New ffmpeg-debian packages fix arbitrary code execution Steffen Joeris (Apr 29)
[SECURITY] [DSA 1782-1] New mplayer packages fix arbitrary code execution Steffen Joeris (Apr 29)

Sumit Siddharth

Re: EUSecWest 2009 CFP (May 27/28, Deadline April 7 2009) Sumit Siddharth (Apr 02)

sunjester

full disclosure? sunjester (Apr 28)

Tavis Ormandy

Re: [Bkis-07-2009] 010 Editor Multiple Buffer Overflow Vulnerabilities Tavis Ormandy (Apr 22)

T Biehn

Re: Hacker Space Fest 2009 CFP: Call For Paper T Biehn (Apr 13)
Re: Hacker Space Fest 2009 CFP: Call For Paper T Biehn (Apr 15)
Re: Hacker Space Fest 2009 CFP: Call For Paper T Biehn (Apr 15)
Re: About HSM T Biehn (Apr 27)
Re: Anti virus installations on Windows servers T Biehn (Apr 29)
Re: Anti virus installations on Windows servers T Biehn (Apr 29)
Re: Anti virus installations on Windows servers T Biehn (Apr 30)

The Wonder Years DVD

Cae el ultimo de los dragones http://megabyte.lastdragon.net/ pwned The Wonder Years DVD (Apr 14)

Thiago Musa

About HSM Thiago Musa (Apr 27)

Thierry Zoller

[TZO-05-2009] Clamav 0.94 and below - Evasion /bypass Thierry Zoller (Apr 02)
[TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details) Thierry Zoller (Apr 02)
[TZO-07-2009] F-PROT ZIP Method evasion Thierry Zoller (Apr 02)
Re: [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass Thierry Zoller (Apr 03)
Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 09)
Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 09)
Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 09)
Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 10)
Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 10)
[TZO-09-2009] Avast bypass / evasion (Limited details) Thierry Zoller (Apr 17)
[TZO-08-2009] Bitdefender generic bypass/evasion Thierry Zoller (Apr 17)
[TZO-09-2009] NOD32 (Eset) bypass / evasion (Limited details) Thierry Zoller (Apr 17)
[TZO-11-2009] Fortinet bypass / evasion (Limited details) Thierry Zoller (Apr 17)
Addendum :[TZO-09-2009] Avast bypass / evasion (Limited details) Thierry Zoller (Apr 20)
[TZO-12-2009] SUN / Oracle JVM Remote code execution Thierry Zoller (Apr 22)
[TZO-13-2009] Avira Antivir generic CAB evasion / bypass Thierry Zoller (Apr 27)
[TZO-14-2009] Comodo Antivirus RAR evasion Thierry Zoller (Apr 27)
[TZO-15-2009] Aladdin eSafe generic bypass - Forced release Thierry Zoller (Apr 27)
Errata: [TZO-13-2009] Avira Antivir generic CAB evasion / bypass Thierry Zoller (Apr 28)
[TZO-16-2009] Nod32 CAB bypass/evasion Thierry Zoller (Apr 29)
[TZO-17-2009]Trendmicro multiple bypass/evasions Thierry Zoller (Apr 29)
Addendum: [TZO-17-2009]Trendmicro multiple bypass/evasions Thierry Zoller (Apr 29)
[TZO-18-2009] Mcafee multiple evasions/bypasses (RAR, ZIP) Thierry Zoller (Apr 30)

Thijs Kinkhorst

[SECURITY] [DSA 1777-1] New git-core packages fix privilege escalation Thijs Kinkhorst (Apr 21)
[SECURITY] [DSA 1776-1] New slurm-llnl packages fix privilege escalation Thijs Kinkhorst (Apr 21)
[SECURITY] [DSA 1779-1] New apt packages fix several vulnerabilities Thijs Kinkhorst (Apr 27)

Thomas Biege

SUSE Security Announcement: krb5 (SUSE-SA:2009:019) Thomas Biege (Apr 08)
SUSE Security Announcement: cups (SUSE-SA:2009:024) Thomas Biege (Apr 22)
SUSE Security Announcement: glib2 (SUSE-SA:2009:025) Thomas Biege (Apr 24)
SUSE Security Announcement: glib2 (SUSE-SA:2009:026) Thomas Biege (Apr 24)

Tobias Heinlein

[ GLSA 200904-04 ] WeeChat: Denial of Service Tobias Heinlein (Apr 04)
[ GLSA 200904-12 ] Wicd: Information disclosure Tobias Heinlein (Apr 10)

Tomi Tuominen

T2'09: Call for Papers 2009 (Helsinki / Finland) Tomi Tuominen (Apr 27)

Tonu Samuel

Re: Random HTTP-Requests Tonu Samuel (Apr 02)

v3nd3rs5uck

Conficker tool for end users v3nd3rs5uck (Apr 01)

Valdis . Kletnieks

Re: Hacker Space Fest 2009 CFP: Call For Paper Valdis . Kletnieks (Apr 15)
Re: Obfuscated patches Valdis . Kletnieks (Apr 21)
Re: Anti virus installations on Windows servers Valdis . Kletnieks (Apr 29)
Re: Anti virus installations on Windows servers Valdis . Kletnieks (Apr 29)
Re: Anti virus installations on Windows servers Valdis . Kletnieks (Apr 29)
Re: Anti virus installations on Windows servers Valdis . Kletnieks (Apr 29)
Re: Anti virus installations on Windows servers Valdis . Kletnieks (Apr 29)
Re: Anti virus installations on Windows servers Valdis . Kletnieks (Apr 30)

Valdis' Mustache

Re: Linux Kernel CIFS Vulnerability Valdis' Mustache (Apr 10)
Re: Hacker Space Fest 2009 CFP: Call For Paper Valdis' Mustache (Apr 15)
Re: Hacker Space Fest 2009 CFP: Call For Paper Valdis' Mustache (Apr 15)
Re: dev mem injection Valdis' Mustache (Apr 17)

Valery Marchuk

[Positive Technologies SA 2008-05] VMware Multiple Products vmci.sys Privilege Escalation Vulnerability Valery Marchuk (Apr 06)
[Positive Technologies SA 2008-07] VMware Multiple Products hcmon.sys Denial of Service Vulnerability Valery Marchuk (Apr 06)
[Positive Technologies SA 2009-01] PGP Desktop Pgpdisk.sys And Pgpwded.sys Multiple Vulnerabilities Valery Marchuk (Apr 13)

vecna

SniffJoke 0.3 release and request for feedback vecna (Apr 15)

Vladimir '3APA3A' Dubrovin

Re: Windows Update (re-)installs outdated Flash ActiveX on Windows XP Vladimir '3APA3A' Dubrovin (Apr 22)

VMware Security Team

VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues VMware Security Team (Apr 04)
VMSA-2009-0006 VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability VMware Security Team (Apr 10)

Williams, James K

CA20090429-01: CA ARCserve Backup Apache HTTP Server Multiple Vulnerabilities Williams, James K (Apr 30)

Xia Shing Zee

SQL Injection in Rogue Anti-Malware Group's Control Panel Xia Shing Zee (Apr 08)

ZDI Disclosures

ZDI-09-016: Novell Client/NetIdentity Agent Remote Arbitrary Pointer Dereference Code Execution Vulnerability ZDI Disclosures (Apr 06)
ZDI-09-017: Oracle Applications Server 10g Format String Vulnerability ZDI Disclosures (Apr 15)
ZDI-09-018: Symantec Client Security Alert Originator Service Stack Overflow Vulnerability ZDI Disclosures (Apr 29)

ZwelL

Pangolin is updated to 2.0.1.799 ZwelL (Apr 15)
Advanced Oracle SQL Injection ZwelL (Apr 19)
Advanced Oracle Sql Injection ZwelL (Apr 19)
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault