502 messages starting Dec 17 09 and ending Dec 30 09 Date index | Thread index | Author index
(no subject) 김무성 (Dec 17)
TANDBERG MXP(FIPS140) DOS 0 0 (Dec 07)
Google Picasa 3.5 Local DoS Buffer Overflow admin () hacktalk net (Dec 16)
FreeWebshop.org: multiple vulnerabilities Akita Software Security (Dec 29)
[tools] hostmap-0.2 released Alessandro Tanasi (Dec 17) [tools] hostmap-0.2.1 released Alessandro Tanasi (Dec 26)
SQL-Ledger – several vulnerab ilities Alexander Klink (Dec 21)
[ GLSA 200912-01 ] OpenSSL: Multiple vulnerabilities Alex Legler (Dec 01) [ GLSA 200912-02 ] Ruby on Rails: Multiple vulnerabilities Alex Legler (Dec 20)
PhpShop Multiple Vulnerabilities Andrea Fabrizi (Dec 05)
Re: [rejected] Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others Andrea Purificato (Dec 02)
Re: MouseOverJacking attacks Andrew Farmer (Dec 31)
Re: The Game Andrew Haninger (Dec 31)
Re: ** FreeBSD local r00t zeroday Benji (Dec 01) Re: ** FreeBSD local r00t zeroday Benji (Dec 01) Re: ** FreeBSD local r00t zeroday Benji (Dec 02) Re: IE 0day for sale Benji (Dec 11) Re: Extremely important posting on my blog on the latest in XSS!!!11 Benji (Dec 22)
Re: ** FreeBSD local r00t zeroday bk (Dec 01)
Trango Broadband Wireless Rogue SU Authentication Bug Blair (Dec 15)
Zen Cart local file disclosure vulnerability Bogdan Calin (Dec 09)
Re: Antisec for lulz - exposed (anti-sec.com) bro (Jan 01)
[iBLISS Advisory Board] Cross-Site Scripting (XSS) Vulnerability on Twitter bruno (Dec 09)
Re: Brilliant attack "bypasses" bitlocker bugtraq (Dec 12)
Campus Party Eu 2010 Security Challenge - Call For Participants Campus Party EU Spain (Dec 17)
Re: ** FreeBSD local r00t zeroday Chris (Dec 02) Re: ** FreeBSD local r00t zeroday Chris (Dec 05)
Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Christian Sciberras (Dec 16) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Christian Sciberras (Dec 16) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Christian Sciberras (Dec 16) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Christian Sciberras (Dec 16) Re: Data Type Conversion Attack Christian Sciberras (Dec 21) Re: DECAF patched and re-enabled Christian Sciberras (Dec 25) Re: The Game Christian Sciberras (Dec 30) Re: Antisec for lulz - exposed (anti-sec.com) Christian Sciberras (Dec 31)
security hole on local ISP Cilia Pretel Gallo (Dec 29) Re: security hole on local ISP Cilia Pretel Gallo (Dec 30)
Cisco Security Advisory: Multiple Cisco WebEx WRF Player Vulnerabilities Cisco Systems Product Security Incident Response Team (Dec 16)
Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled coderman (Dec 15)
Re: Transmission #19-WT [re: Andrew Wallace / n3td3v] Cody Robertson (Dec 01)
Re: ** FreeBSD local r00t zeroday Colin Percival (Dec 01)
CORE-2009-0911: DAZ Studio Arbitrary Command Execution CORE Security Technologies Advisories (Dec 03) CORE-2009-1013: Multiple XSS and Injection Vulnerabilities in TestLink Test Management and Execution System CORE Security Technologies Advisories (Dec 09)
Re: The Cyber War Conspiracy cyber armageddon (Dec 10) Gadi Evron: SecuriTeam: The Mossad: IE 0day for sale cyber armageddon (Dec 12) Re: Gadi Evron: SecuriTeam: The Mossad: IE 0day for sale cyber armageddon (Dec 12) Gadi Evron's professional profile exposed cyber armageddon (Dec 12) Re: Gadi Evron's professional profile exposed cyber armageddon (Dec 12)
SAP sapstartsrv Denial of Service cybseclabs (Dec 10)
Re: Revenge of the Computer Nerds Dan Kaminsky (Dec 10) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Dan Kaminsky (Dec 15) Re: (no subject) Dan Kaminsky (Dec 17)
Re: ** FreeBSD local r00t zeroday David Berard (Dec 01)
Re: ** FreeBSD local r00t zeroday Dawid Golunski (Dec 01) Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection Dawid Golunski (Dec 04)
MatriXay 3.0-Web Application Vulnerabilities Scanner DBAPPSecurity09 (Jan 01)
Re: Google Dorks dd (Dec 10)
VideoCache 1.9.2 vccleaner root vulnerability Dominick LaTrappe (Dec 16)
Re: Software developer looks at CRU code dpcybuck (Dec 06)
Re: [Full-disclosure] Microsoft: ‘Piracy no longe r poses a threat to us’ dramacrat (Dec 03) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled dramacrat (Dec 15) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled dramacrat (Dec 16)
TPTI-09-08: HP OpenView NNM ovlogin.exe CGI userid/passwd Heap Overflow Vulnerability dvlabs (Dec 10) TPTI-09-09: HP OpenView NNM ovsessionmgr.exe userid/passwd Heap Overflow Vulnerability dvlabs (Dec 10) TPTI-09-10: HP OpenView NNM webappmon.exe CGI Host Header Buffer Overflow Vulnerability dvlabs (Dec 10) TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability dvlabs (Dec 10) TPTI-09-11: HP OpenView NNM OvWebHelp.exe CGI Topic Heap Overflow Vulnerability dvlabs (Dec 10) TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability dvlabs (Dec 10) TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability dvlabs (Dec 10) TPTI-09-15: HP OpenView Data Protector Cell Manager Heap Overflow Vulnerability dvlabs (Dec 19)
Re: [Full-disclosure] Feds ‘Pinged’ Sprint GPS D ata 8 Million Times Over a Year Ed Carp (Dec 02)
318x.com and other "bad" domains. exploit dev (Dec 15) cve-2009-4324 exploit dev (Dec 16)
Bug in RealPlayer Plus 11 fabio ejp (Dec 22)
Re: ** FreeBSD local r00t zeroday FBI BOT (Dec 01) Re: Google Dorks FBI BOT (Dec 10)
Re: short intro Ferdinand Klinzer (Dec 07)
[SECURITY] [DSA 1961-1] New bind9 packages fix cache poisoning Florian Weimer (Dec 23) [SECURITY] [DSA 1963-1] New unbound packages fix DNSSEC validation Florian Weimer (Dec 23) [SECURITY] [DSA-1964-1] New PostgreSQL packages fix several vulnerabilities Florian Weimer (Dec 31)
XSS in WebMathematica Floyd Fuh (Dec 23)
Re: stupid question again frank^2 (Dec 12)
IE 0day for sale Freddie Vicious (Dec 11) Re: IE 0day for sale Freddie Vicious (Dec 11) Re: Gadi Evron: SecuriTeam: The Mossad: IE 0day for sale Freddie Vicious (Dec 12) Re: Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover Freddie Vicious (Dec 14)
Yahoo Mail Classic XSRF (still unpatched) gaurav baruah (Dec 23)
Transmission #19-WT [re: Andrew Wallace / n3td3v] genesis project (Dec 01)
Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 ghost (Dec 29)
Re: The Cyber War Conspiracy Gichuki John Chuksjonia (Dec 05)
[SECURITY] [DSA 1943-1] New openldap2.3/openldap packages fix SSL certificate verification weakness Giuseppe Iuculano (Dec 03) [SECURITY] [DSA-1950-1] New webkit packages fix several vulnerabilities Giuseppe Iuculano (Dec 12) [SECURITY] [DSA-1962-1] New kvm packages fix several vulnerabilities Giuseppe Iuculano (Dec 23)
Antisec for lulz - exposed (anti-sec.com) Glafkos Charalambous (Dec 31)
Re: IE 0day for sale Gregor Schneider (Dec 12)
Re: stupid question again Guy (Dec 12)
Re: Path disclosure in PHP 5.3.1 Gynvael Coldwind (Dec 28)
Extremely important posting on my blog on the latest in XSS!!!11 hackyouridols (Dec 22)
Another Bug in RealPlayer Plus 11 Hacxx 20 (Dec 29)
iDefense Security Advisory 12.08.09: Microsoft Internet Explorer HTML Layout Engine Uninitialized Memory Vulnerability iDefense Labs (Dec 09) iDefense Security Advisory 12.08.09: Microsoft WordPad Word97 Converter Integer Overflow Vulnerability iDefense Labs (Dec 09) iDefense Security Advisory 12.08.09: Microsoft Windows Indeo32 Codec Parsing Heap Corruption Vulnerability iDefense Labs (Dec 09)
Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 infolookup (Dec 29)
[ISecAuditors Security Advisories] WP-Forum <= 2.3 SQL Injection vulnerabilities ISecAuditors Security Advisories (Dec 16) [ISecAuditors Security Advisories] Cisco ASA <= 8.x VPN SSL module Clientless URL-list control bypass ISecAuditors Security Advisories (Dec 17) [ISecAuditors Security Advisories] Horde 3.3.5 "PHP_SELF" Cross-Site Scripting vulnerability ISecAuditors Security Advisories (Dec 17) [ISecAuditors Security Advisories] QuiXplorer <=2.4.1beta Remote Code Execution vulnerability ISecAuditors Security Advisories (Dec 17) [ISecAuditors Security Advisories] Simple PHP Blog <= 0.5.1 Local File Include vulnerability ISecAuditors Security Advisories (Dec 19) [ISecAuditors Security Advisories] PHP-Calendar <= v1.1 'configfile' Remote and Local File Inclusion vulnerability ISecAuditors Security Advisories (Dec 19)
Feds ‘Pinged’ Sprint GPS D ata 8 Million Times Over a Year Ivan . (Dec 02) In the thick of it: how the Digital Economy bill is trying to kill open Wi-Fi networks Ivan . (Dec 02) Yahoo: Our spying policy wou ld ’shock’ customers Ivan . (Dec 02) Microsoft: ‘Piracy no long er poses a threat to us’ Ivan . (Dec 03) Re: Software developer looks at CRU code Ivan . (Dec 07) Climate-Gate:A SysAdmin’s Perspective Ivan . (Dec 07) spy guides Ivan . (Dec 07) Revenge of the Computer Nerds Ivan . (Dec 10) Re: Revenge of the Computer Nerds Ivan . (Dec 10) Decaf anyone? Ivan . (Dec 14) The Great Aussie Firewall is dead: Long live the firewall Ivan . (Dec 17)
Re: IE 0day for sale jack . a . mannino (Dec 12)
short intro jai (Dec 07)
Last week to submit: ICIMP 2010 || May 9-15, 2010 - Barcelona, Spain Jaime Lloret Mauri (Dec 17) Last week || WebTel 2010 [ICIMP, AICT, ICIW] May 9 - 15, 2010 - Barcelona, Spain Jaime Lloret Mauri (Dec 17)
Re: Microsoft: Piracy no longer poses a threat to us¹ James Lay (Dec 03)
Re: DECAF patched and re-enabled James Matthews (Dec 27) Re: DECAF patched and re-enabled 133-54D James Matthews (Dec 27) Re: The Game James Matthews (Dec 31)
[USN-863-1] QEMU vulnerability Jamie Strandboge (Dec 03) [USN-867-1] Ntp vulnerability Jamie Strandboge (Dec 08) [USN-868-1] GRUB 2 vulnerability Jamie Strandboge (Dec 09) [USN-870-1] PyGreSQL vulnerability Jamie Strandboge (Dec 11) [USN-871-1] KDE vulnerability Jamie Strandboge (Dec 11) [USN-871-2] KDE 4 vulnerabilities Jamie Strandboge (Dec 11) [USN-872-1] KDE 4 Runtime vulnerabilities Jamie Strandboge (Dec 11) [USN-875-1] Red Hat Cluster Suite vulnerabilities Jamie Strandboge (Dec 18) [USN-873-1] Firefox 3.0 and Xulrunner 1.9 vulnerabilities Jamie Strandboge (Dec 18) [USN-874-1] Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities Jamie Strandboge (Dec 18)
Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Jan G.B. (Dec 16)
Re: Global warming - it's all about the money Jared DeMott (Dec 15)
Re: (no subject) Jeff Blaum (Dec 17)
Re: IE 0day for sale Jeff Williams (Dec 12) Re: IE 0day for sale Jeff Williams (Dec 12) Re: IE 0day for sale Jeff Williams (Dec 12) Re: Infected google.com, yahoo.com and blogspot.com Jeff Williams (Dec 21) Re: Path disclosure in PHP 5.3.1 Jeff Williams (Dec 27)
Re: WinScanX - The safest way to retrieve Windows password hashes, LSA secrets, etc. jellybambam (Dec 30)
List Charter John Cartwright (Dec 09)
Selling Adobe exploit John Smith (Dec 31)
Re: [gif2png] long filename Buffer Overrun Jubei Trippataka (Dec 14)
Drupal Sections Module XSS Vulnerability Justin C. Klein Keane (Dec 16)
Drupal Sections Module XSS Vulnerability Justin Klein Keane (Dec 16) Drupal 5.x and 6.x Core XSS Vulnerability Justin Klein Keane (Dec 16) Drupal 6.x Core XSS Vulnerability Justin Klein Keane (Dec 16)
[USN-864-1] Linux kernel vulnerabilities Kees Cook (Dec 05) [USN-869-1] Linux kernel vulnerabilities Kees Cook (Dec 10)
Re: [Full-disclosure] Microsoft: ‘Piracy no longe r poses a threat to us’ Kevin Wilcox (Dec 03) Re: The Cyber War Conspiracy Kevin Wilcox (Dec 07)
Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love Kingcope (Dec 05) Re: Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love Kingcope (Dec 08) Reading Mission Control Data out of Predator Drone video feeds Kingcope (Dec 20) Re: Reading Mission Control Data out of Predator Drone video feeds Kingcope (Dec 21)
CA20091208-01: Security Notice for CA Service Desk Kotas, Kevin J (Dec 08)
Re: security hole on local ISP Lee (Dec 29) Re: security hole on local ISP Lee (Dec 29)
Fortinet Advisory: Fortinet Discovers Microsoft Office Project Vulnerability liubing (Dec 08) Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec liubing (Dec 09) Fortinet Advisory: Fortinet Discovers Adobe Flash Player Multiple Vulnerabilities (APSB09-19) liubing (Dec 09)
Call for Papers - you Sh0t the Sheriff 4 - Security Conference, Brazil Luiz Eduardo (Dec 03)
SEC Consult SA-20091217-0 :: Authentication bypass and file manipulation in Sitecore Staging Module Lukas Weichselbaum (Dec 17)
DC4420 - London DEFCON - Christmas drinks - Wednesday 16th December Major Malfunction (Dec 14)
PHP 5.3.1 open_basedir bypass Maksymilian Arciemowicz (Dec 04) SecurityReason: Flock 2.5.2 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Dec 11) SecurityReason: Camino 1.6.10 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Dec 11) SecurityReason: Thunderbird 2.0.0.23 (lib) Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Dec 11) SecurityReason: Sunbird 0.9 Array Overrun (code execution) 0day Maksymilian Arciemowicz (Dec 11)
Re: Microsoft: ‘Piracy no long er poses a threat to us’ Maky Pevnser (Dec 03)
Data Type Conversion Attack Manu (Dec 21)
[USN-865-1] Bind vulnerability Marc Deslauriers (Dec 07) [USN-866-1] gnome-screensaver vulnerability Marc Deslauriers (Dec 07)
XSS Vulnerability in JpGraph 3.0.6 Martin Barbella (Dec 22)
Re: Feds 'Pinged' Sprint GPS Data 8 Million Times Over a Year Matthias Appel (Dec 02)
Security-Database Best IT Security Tools for 2009 Maximiliano Soler (Dec 31)
Re: ** FreeBSD local r00t zeroday McGhee, Eddie (Dec 02) Re: Transmission #19-WT [re: Andrew Wallace / n3td3v] McGhee, Eddie (Dec 02) Re: Transmission #19-WT [re: Andrew Wallace / n3td3v] McGhee, Eddie (Dec 02) Re: short intro McGhee, Eddie (Dec 07) Re: Reading Mission Control Data out of Predator Drone video feeds McGhee, Eddie (Dec 22) Re: security hole on local ISP McGhee, Eddie (Dec 29) Re: The Game McGhee, Eddie (Dec 30)
[tool] FindDomains v0.1.1 Mesut Timur (Dec 18)
Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Michael Coyne (Dec 14) Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Michael Coyne (Dec 14) Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Michael Coyne (Dec 14)
Re: Transmission #19-WT [re: Andrew Wallace / n3td3v] Michael Holstein (Dec 01)
Re: Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love Michael Lenz (Dec 08) Re: IE 0day for sale Michael Lenz (Dec 11)
** FreeBSD local r00t zeroday Michał Manterys (Dec 01)
Re: Brilliant attack "bypasses" bitlocker Michal Zalewski (Dec 11) Re: XSS vulnerabilities via errors at requests to DB Michal Zalewski (Dec 19)
Re: XSS vulnerabilities via errors at requests to DB Michele Orru (Dec 19)
Open-Source Effort to Hack GSM Mike Eber (Dec 03)
Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Milan Berger (Dec 15) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Milan Berger (Dec 15)
(no subject) mixed ya (Dec 23)
gsm baseband dump Mohammad Hosein (Dec 22)
[SECURITY] [DSA 1947-1] New Shibboleth packages fix cross-site scripting Moritz Muehlenhoff (Dec 07) [SECURITY] [DSA 1956-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Dec 16)
Re: IE 0day for sale mrx (Dec 11) Re: The Game mrx (Dec 31)
Cross-Site Scripting vulnerabilities in Invision Power Board MustLive (Dec 14) XSS vulnerabilities via errors at requests to DB MustLive (Dec 19) Infected google.com, yahoo.com and blogspot.com MustLive (Dec 21) Re: XSS vulnerabilities via errors at requests to DB MustLive (Dec 22) XSS vulnerabilities in 8 millions flash files MustLive (Dec 22) Vulnerability in Joomulus for Joomla MustLive (Dec 26) MouseOverJacking attacks MustLive (Dec 30)
[BMSA-2009-08] Multiple Vulnerabilities in PyForum Nam Nguyen (Dec 15)
Re: IE 0day for sale Nelson Brito (Dec 11)
Re: [Full-disclosure] Microsoft: ‘Piracy no long er poses a threat to us’ netinfinity (Dec 03) Re: google dork you may enjoy netinfinity (Dec 10)
[NETRAGARD SECURITY ADVISORY] [< Java for Mac OS X 10.6 Update 1 ][NETRAGARD-20091219] Netragard Advisories (Dec 30)
Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Nick FitzGerald (Dec 16) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Nick FitzGerald (Dec 16)
Zabbix Agent : Bypass of EnableRemoteCommands=0 Nicob (Dec 14) Zabbix Server : Multiple remote vulnerabilities Nicob (Dec 14)
[SECURITY] [DSA 1948-1] New ntp packages fix denial of service Nico Golde (Dec 09) Re: [gif2png] long filename Buffer Overrun Nico Golde (Dec 13)
Re: ** FreeBSD local r00t zeroday Nicolas RUFF (Dec 02)
Wapiti 2.2.0 is available - Web application vulnerability scanner Nicolas Surribas (Dec 29)
Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled nixlists (Dec 14) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled nixlists (Dec 15) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled nixlists (Dec 15)
Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec noreply-secresearch (Dec 09) Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec noreply-secresearch (Dec 09)
Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover Ofer Maor (Dec 14) Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Ofer Maor (Dec 14) Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Ofer Maor (Dec 14)
Re: ** FreeBSD local r00t zeroday Oliver Pinter (Dec 01) Re: ** FreeBSD local r00t zeroday Oliver Pinter (Dec 01) Re: ** FreeBSD local r00t zeroday Oliver Pinter (Dec 01)
Re: [gif2png] long filename Buffer Overrun Patroklos Argyroudis (Dec 13)
Re: The Cyber War Conspiracy Paul Schmehl (Dec 05) Re: Software developer looks at CRU code Paul Schmehl (Dec 06) Re: Software developer looks at CRU code Paul Schmehl (Dec 06) Re: Software developer looks at CRU code Paul Schmehl (Dec 07) Re: Gadi Evron's professional profile exposed Paul Schmehl (Dec 12) Re: Gadi Evron's professional profile exposed Paul Schmehl (Dec 12) Global warming - it's all about the money Paul Schmehl (Dec 15)
Pedro Miguel Bernardino Eleuté rio is out of the office. peleuterio (Dec 31)
Re: Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love PEra (Dec 07)
Re: stupid question again Pradip Sharma (Dec 13) Unu hits Kaspersky Pradip Sharma (Dec 13) Re: Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover Pradip Sharma (Dec 14)
Re: ** FreeBSD local r00t zeroday r00f r00f (Dec 01) Re: ** FreeBSD local r00t zeroday r00f r00f (Dec 01) Re: ** FreeBSD local r00t zeroday r00f r00f (Dec 01)
Re: stupid question again Randall M (Dec 12)
Re: Software developer looks at CRU code RandallM (Dec 01) Re: ** FreeBSD local r00t zeroday RandallM (Dec 05) stupid question again RandallM (Dec 12) Re: stupid question again RandallM (Dec 12) Re: stupid question again RandallM (Dec 12)
[SECURITY] [DSA 1949-1] New php-net-ping packages fix arbitrary code execution Raphael Geissert (Dec 12) Re: [gif2png] long filename Buffer Overrun Raphael Geissert (Dec 14) [SECURITY] [DSA-1959-1] New ganeti packages fix arbitrary command execution Raphael Geissert (Dec 19) [SECURITY] [DSA 1960-1] New acpid packages fix weak file permissions Raphael Geissert (Dec 20) [SECURITY] [DSA 1958-1] New libtool packages fix privilege escalation Raphael Geissert (Dec 30)
[gif2png] long filename Buffer Overrun Razuel Akaharnath (Dec 12) Re: [gif2png] long filename Buffer Overrun Razuel Akaharnath (Dec 13) Re: [gif2png] long filename Buffer Overrun Razuel Akaharnath (Dec 13) Re: [gif2png] long filename Buffer Overrun Razuel Akaharnath (Dec 15)
TLS Renegotiation Vulnerability: Proof of Concept Code (Python) RedTeam Pentesting GmbH (Dec 21)
WinScanX - A free Windows enumeration tool and a must have for any security professional Reed Arvin (Dec 23) WinScanX - A free Windows enumeration tool and a must have for any security professional Reed Arvin (Dec 23) WinScanX - The safest way to retrieve Windows password hashes, LSA secrets, etc. Reed Arvin (Dec 28)
[Tool Announcement] WAFP - a Web Application Finger Printer... Richard Sammet (Dec 29)
google dork you may enjoy robert mccurdy (Dec 10)
Re: ** FreeBSD local r00t zeroday Robert Portvliet (Dec 01)
Re: [Full-disclosure] Climate-Gate:A SysAdmin’s Perspective Rohit Patnaik (Dec 07) Re: File Access Vulnerability in Easy File Sharing Web Server Rohit Patnaik (Dec 16) Re: The Game Rohit Patnaik (Dec 30)
rPSA-2009-0161-1 hwdata kernel rPath Update Announcements (Dec 16)
Re: Antisec for lulz - exposed (anti-sec.com) ruhrohownage (Jan 01)
Re: "funsec" as a terror cell Sam Haldorf (Dec 04) Re: The Cyber War Conspiracy Sam Haldorf (Dec 04) Re: The Cyber War Conspiracy Sam Haldorf (Dec 05) Re: Gadi Evron's professional profile exposed Sam Haldorf (Dec 13) Re: Antisec for lulz - exposed (anti-sec.com) Sam Haldorf (Jan 01) Re: Antisec for lulz - exposed (anti-sec.com) Sam Haldorf (Jan 01)
Re: google dork you may enjoy Sébastien Duquette (Dec 10)
Secunia Research: Lateral Arts Photobox uploader ActiveX Control Buffer Overflow Secunia Research (Dec 02) Secunia Research: Roxio Creator Image Rendering Integer Overflow Vulnerability Secunia Research (Dec 02) Secunia Research: DevIL DICOM "GetUID()" Buffer Overflow Vulnerability Secunia Research (Dec 04) Secunia Research: Novell iPrint Client "target-frame" Parameter Buffer Overflow Secunia Research (Dec 08) Secunia Research: Novell iPrint Client Date/Time Parsing Buffer Overflow Secunia Research (Dec 08) Secunia Research: Winamp Oktalyzer Parsing Integer Overflow Vulnerability Secunia Research (Dec 17) Secunia Research: Winamp Ultratracker File Parsing Buffer Overflow Secunia Research (Dec 17) Secunia Research: Winamp Impulse Tracker Sample Parsing Buffer Overflow Secunia Research (Dec 17) Secunia Research: Winamp Impulse Tracker Instrument Parsing Buffer Overflows Secunia Research (Dec 17) Secunia Research: AproxEngine Multiple Vulnerabilities Secunia Research (Dec 29)
[ MDVSA-2009:121-1 ] lcms security (Dec 02) [ MDVSA-2009:217-3 ] mozilla-thunderbird security (Dec 03) [ MDVSA-2009:197-3 ] nss security (Dec 03) [ MDVSA-2009:103-1 ] udev security (Dec 03) [ MDVSA-2009:106-1 ] libwmf security (Dec 03) [ MDVSA-2009:107-1 ] acpid security (Dec 03) [ MDVSA-2009:108-1 ] zsh security (Dec 03) [ MDVSA-2009:112-1 ] ipsec-tools security (Dec 03) [ MDVSA-2009:113-1 ] cyrus-sasl security (Dec 03) [ MDVSA-2009:308 ] gnutls security (Dec 03) [ MDVSA-2009:309 ] ntp security (Dec 03) [ MDVSA-2009:310 ] openssl security (Dec 03) [ MDVSA-2009:290-1 ] firefox security (Dec 03) [ MDVSA-2009:292-1 ] wireshark security (Dec 03) [ MDVSA-2009:128-1 ] libmodplug security (Dec 03) [ MDVSA-2009:130-1 ] gstreamer0.10-plugins-good security (Dec 03) [ MDVSA-2009:132-1 ] libsndfile security (Dec 03) [ MDVSA-2009:142-1 ] jasper security (Dec 03) [ MDVSA-2009:311 ] ghostscript security (Dec 04) [ MDVSA-2009:169-1 ] libtiff security (Dec 04) [ MDVSA-2009:312 ] dhcp security (Dec 04) [ MDVSA-2009:157-1 ] perl-Compress-Raw-Zlib security (Dec 04) [ MDVSA-2009:158-3 ] pango security (Dec 04) [ MDVSA-2009:313-1 ] bind security (Dec 04) [ MDVSA-2009:314 ] apr security (Dec 04) [ MDVSA-2009:287-1 ] xpdf security (Dec 04) [ MDVSA-2009:200-1 ] libxml security (Dec 04) [ MDVSA-2009:201-1 ] fetchmail security (Dec 04) [ MDVSA-2009:203-1 ] curl security (Dec 04) [ MDVSA-2009:206-1 ] wget security (Dec 04) [ MDVSA-2009:213-1 ] wxgtk security (Dec 04) [ MDVSA-2009:208-1 ] libgadu security (Dec 04) [ MDVSA-2009:211-1 ] expat security (Dec 04) [ MDVSA-2009:212-1 ] python security (Dec 04) [ MDVSA-2009:218-1 ] w3c-libwww security (Dec 04) [ MDVSA-2009:315 ] libneon security (Dec 04) [ MDVSA-2009:223-1 ] xerces-c security (Dec 04) [ MDVSA-2009:224-1 ] postfix security (Dec 04) [ MDVSA-2009:316 ] expat security (Dec 05) [ MDVSA-2009:232-1 ] libsamplerate security (Dec 05) [ MDVSA-2009:229-1 ] cyrus-imapd security (Dec 05) [ MDVSA-2009:234-2 ] silc-toolkit security (Dec 05) [ MDVSA-2009:243-2 ] freetype2 security (Dec 05) [ MDVSA-2009:249-1 ] newt security (Dec 05) [ MDVSA-2009:256-1 ] dbus security (Dec 05) [ MDVSA-2009:254-1 ] graphviz security (Dec 05) [ MDVSA-2009:260-1 ] imagemagick security (Dec 05) [ MDVSA-2009:317 ] netpbm security (Dec 05) [ MDVSA-2009:318 ] xmlsec1 security (Dec 05) [ MDVSA-2009:272-1 ] libmikmod security (Dec 05) [ MDVSA-2009:252-1 ] perl-IO-Socket-SSL security (Dec 05) [ MDVSA-2009:284-1 ] gd security (Dec 05) [ MDVSA-2009:297-1 ] ffmpeg security (Dec 05) [ MDVSA-2009:319 ] xine-lib security (Dec 05) [ MDVSA-2009:307-1 ] libtool security (Dec 06) [ MDVSA-2009:320 ] samba security (Dec 06) [ MDVSA-2009:321 ] pidgin security (Dec 06) [ MDVSA-2009:215-1 ] audacity security (Dec 06) [ MDVSA-2009:219-1 ] kompozer security (Dec 06) [ MDVSA-2009:231-1 ] htmldoc security (Dec 07) [ MDVSA-2009:322 ] mono security (Dec 07) [ MDVSA-2008:233-1 ] libcdaudio security (Dec 07) [ MDVSA-2009:323 ] apache security (Dec 07) [ MDVSA-2009:324 ] php security (Dec 07) [ MDVSA-2009:199-1 ] subversion security (Dec 07) [ MDVSA-2009:325 ] ruby security (Dec 07) [ MDVSA-2009:326 ] mysql security (Dec 07) [ MDVSA-2009:282-1 ] cups security (Dec 08) [ MDVSA-2009:251-1 ] postgresql8.2 security (Dec 08) [ MDVSA-2009:327 ] clamav security (Dec 08) [ MDVSA-2009:191-1 ] OpenEXR security (Dec 08) [ MDVSA-2009:133-1 ] irssi security (Dec 08) [ MDVSA-2009:126-1 ] eggdrop security (Dec 08) [ MDVSA-2009:099-1 ] openafs security (Dec 08) [ MDVSA-2009:098-1 ] krb5 security (Dec 08) [ MDVSA-2009:093-1 ] mpg123 security (Dec 08) [ MDVSA-2009:091-1 ] mod_perl security (Dec 08) [ MDVSA-2009:059-1 ] xchat security (Dec 08) [ MDVSA-2009:046-1 ] dia security (Dec 08) [ MDVSA-2009:038-1 ] blender security (Dec 08) [ MDVSA-2009:030-1 ] amarok security (Dec 08) [ MDVSA-2009:276-1 ] python-django security (Dec 08) [ MDVSA-2009:328 ] ntp security (Dec 09) [ MDVSA-2009:329 ] kernel security (Dec 10) [ MDVSA-2009:330 ] kdelibs security (Dec 10) [ MDVSA-2009:331 ] kdegraphics security (Dec 10) [ MDVSA-2009:332 ] gimp security (Dec 11) [ MDVSA-2009:296-1 ] gimp security (Dec 11) [ MDVSA-2009:259-1 ] snort security (Dec 11) [ MDVSA-2009:333 ] postgresql security (Dec 15) [ MDVSA-2009:334 ] poppler security (Dec 17) [ MDVSA-2009:335 ] ffmpeg security (Dec 17) [ MDVSA-2009:336 ] koffice security (Dec 18) [ MDVSA-2009:337 ] proftpd security (Dec 22) [ MDVSA-2009:338 ] firefox security (Dec 22) [ MDVSA-2009:339 ] firefox security (Dec 22) [ MDVSA-2009:340 ] jpgraph security (Dec 26) [ MDVSA-2009:341 ] dstat security (Dec 26) [ MDVSA-2009:343 ] acpid security (Dec 26) [ MDVSA-2009:342 ] acpid security (Dec 27) [ MDVSA-2009:244-1 ] xfig security (Dec 28) [ MDVSA-2009:344 ] perl-DBD-Pg security (Dec 28) [ MDVSA-2009:189-1 ] apache-mod_auth_mysql security (Dec 28) [ MDVSA-2009:146-1 ] imap security (Dec 28) [ MDVSA-2009:345 ] acl security (Dec 29) [ MDVSA-2009:346 ] kde security (Dec 29)
Re: IE 0day for sale Shyaam (Dec 11) Re: IE 0day for sale Shyaam (Dec 12)
Bypassing SEHOP s . leberre (Dec 22) Bypassing SEHOP s . leberre (Dec 22)
40 vulnerabilities in SMF 1.1.10/SMF 2.0RC2 by elhacker.net (Simple Audit) SMF 2.0 Code Review elhacker.net (Dec 02)
Re: Issue 5 in smf2-review: XSS in 'website' field in User Profile smf2-review (Dec 02) Re: Issue 8 in smf2-review: CSRF theme change smf2-review (Dec 02) Re: Issue 6 in smf2-review: PHP Remote Code Execution smf2-review (Dec 02) Re: Issue 9 in smf2-review: Subforum Category Collapse CSRF smf2-review (Dec 02) Re: Issue 10 in smf2-review: CSRF en el gestor de servidores de paquetes smf2-review (Dec 02) Re: Issue 11 in smf2-review: XSS in package server manager smf2-review (Dec 02) Re: Issue 12 in smf2-review: CSRF package deletion and installed package disclosure smf2-review (Dec 02) Re: Issue 13 in smf2-review: Attached files configuration CSRF smf2-review (Dec 02) Re: Issue 14 in smf2-review: XSS in "Enable basic HTML in posts" smf2-review (Dec 02) Re: Issue 15 in smf2-review: Remote File Disclosure (solo en logs, y similares) smf2-review (Dec 02) Re: Issue 16 in smf2-review: CSRF en Moderation Preferences smf2-review (Dec 02) Re: Issue 17 in smf2-review: XSS en el censurador de palabras smf2-review (Dec 02) Re: Issue 18 in smf2-review: CSRF in Polls smf2-review (Dec 02) Re: Issue 19 in smf2-review: installer XSS smf2-review (Dec 02)
Advisory 02/2009: PHPIDS Unserialize() Vulnerability Stefan Esser (Dec 09) Advisory 03/2009: Piwik Cookie unserialize() Vulnerability Stefan Esser (Dec 09)
[scip-Advisory 4063] PasswordManager Pro 6.1 Script Injection Vulnerability Stefan Friedli (Dec 15)
[SECURITY] [DSA-1953-1] New expat packages fix denial of service Stefan Fritsch (Dec 16) [SECURITY] [DSA-1953-2] New expat packages fix regression Stefan Fritsch (Jan 01)
[SECURITY] [DSA 1944-1] New request-tracker packages fix session hijack vulnerability Steffen Joeris (Dec 03) [SECURITY] [DSA 1945-1] New gforge packages fix denial of service Steffen Joeris (Dec 03) [SECURITY] [DSA 1946-1] New belpic packages fix cryptographic weakness Steffen Joeris (Dec 05) [SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing Steffen Joeris (Dec 15) [SECURITY] [DSA 1952-2] End-of-life announcement for asterisk in oldstable Steffen Joeris (Dec 15) [SECURITY] [DSA 1952-1] New asterisk packages fix several vulnerabilities Steffen Joeris (Dec 15) [SECURITY] [DSA 1954-1] New cacti packages fix insufficient input sanitising Steffen Joeris (Dec 16) [SECURITY] [DSA 1955-1] New network-manager/network-manager-applet packages fix information disclosure Steffen Joeris (Dec 16) [SECURITY] [DSA 1957-1] New aria2 packages fix arbitrary code execution Steffen Joeris (Dec 28)
Re: Software developer looks at CRU code Stephen Mullins (Dec 06) Re: Global warming - it's all about the money Stephen Mullins (Dec 19)
Re: Microsoft: ‘Piracy no long er poses a threat to us’ S/U/N (Dec 03)
Honey pot belongs to .....China???? taneja . security (Dec 10)
Re: Transmission #19-WT [re: Andrew Wallace / n3td3v] T Biehn (Dec 02) Re: Global warming - it's all about the money T Biehn (Dec 21) Re: security hole on local ISP T Biehn (Dec 29) Re: security hole on local ISP T Biehn (Dec 29)
DECAF patched and re-enabled thediskprotector (Dec 25)
Re: TLS / SSLv3 vulnerability explained (New ways to leverage the vulnerability) Thierry Zoller (Dec 11)
Re: Feds 'Pinged' Sprint GPS Data 8 Million Times Over a Year Thor (Hammer of God) (Dec 02) Re: Transmission #19-WT [re: Andrew Wallace / n3td3v] Thor (Hammer of God) (Dec 03) Re: Software developer looks at CRU code Thor (Hammer of God) (Dec 06) Re: Software developer looks at CRU code Thor (Hammer of God) (Dec 07) Re: Revenge of the Computer Nerds Thor (Hammer of God) (Dec 10) Re: IE 0day for sale Thor (Hammer of God) (Dec 11) Brilliant attack "bypasses" bitlocker Thor (Hammer of God) (Dec 11) Re: Brilliant attack "bypasses" bitlocker Thor (Hammer of God) (Dec 11) Re: Brilliant attack "bypasses" bitlocker Thor (Hammer of God) (Dec 11) File Access Vulnerability in Easy File Sharing Web Server Thor (Hammer of God) (Dec 16) Re: File Access Vulnerability in Easy File Sharing Web Server Thor (Hammer of God) (Dec 16) Re: Pedro Miguel Bernardino Eleuté rio is out of the office. Thor (Hammer of God) (Dec 31)
Re: stupid question again Tim (Dec 12)
Re: Software developer looks at CRU code Tomas L. Byrnes (Dec 02)
Re: stupid question again Tracy Reed (Dec 12)
Re: The Cyber War Conspiracy Valdis . Kletnieks (Dec 05) Re: Software developer looks at CRU code Valdis . Kletnieks (Dec 06) Re: Software developer looks at CRU code Valdis . Kletnieks (Dec 06) Re: IE 0day for sale Valdis . Kletnieks (Dec 11) Re: stupid question again Valdis . Kletnieks (Dec 12) Re: IE 0day for sale Valdis . Kletnieks (Dec 12) Re: Gadi Evron's professional profile exposed Valdis . Kletnieks (Dec 12) Re: Gadi Evron's professional profile exposed Valdis . Kletnieks (Dec 13) Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Valdis . Kletnieks (Dec 14) Re: Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled Valdis . Kletnieks (Dec 15) Re: security hole on local ISP Valdis . Kletnieks (Dec 29)
Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 Valdis' Mustache (Dec 30)
CarolinaCon-VI/2010 - Call for Papers/Speakers Vic Vandal (Dec 15)
Safer-networking.org: (Spybot) Vulnerable to Blind SQLi by VMw4r3 VMw4r3 (Dec 11)
VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues VMware Security Team (Dec 15)
kaspersky Portugal Vulnerable to blind SQLi vmware vmware (Dec 11)
Path disclosure in PHP 5.3.1 WHK (Dec 27) File Disclosure in DAMN VULNERABLE WEB APP version 1.0.6 WHK (Dec 29) Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 WHK (Dec 29)
The Game Will McAfee (Dec 30)
Re: IE 0day for sale yaroslav (Dec 11) Re: Brilliant attack "bypasses" bitlocker yaroslav (Dec 11)
ZDI-09-086: Microsoft Internet Explorer XHTML DOM Manipulation Memory Corruption Vulnerability ZDI Disclosures (Dec 08) ZDI-09-087: Microsoft Internet Explorer CSS Race Condition Code Execution Vulnerability ZDI Disclosures (Dec 08) ZDI-09-088: Microsoft Internet Explorer IFrame Attributes Circular Reference Dangling Pointer Vulnerability ZDI Disclosures (Dec 08) ZDI-09-089: Microsoft Windows Intel Indeo Codec Parsing Heap Overflow Vulnerability ZDI Disclosures (Dec 08) ZDI-09-090: Microsoft Windows Intel Indeo Codec Parsing Stack Overflow Vulnerability ZDI Disclosures (Dec 08) ZDI-09-091: Hewlett-Packard Application Recovery Manager MSG_PROTOCOL Stack Overflow Vulnerability ZDI Disclosures (Dec 08) ZDI-09-092: Adobe Flash Player JPEG Parsing Heap Overflow Vulnerability ZDI Disclosures (Dec 09) ZDI-09-093: Adobe Flash Player ActionScript Exception Handler Integer Overflow Vulnerability ZDI Disclosures (Dec 09) ZDI-09-094: Hewlett-Packard OpenView NNM Multiple Command Injection Vulnerabilities ZDI Disclosures (Dec 09) ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability ZDI Disclosures (Dec 09) ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability ZDI Disclosures (Dec 09) ZDI-09-096: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable vsprintf Overflow Vulnerability ZDI Disclosures (Dec 09) ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability ZDI Disclosures (Dec 09) ZDI-09-099: Hewlett-Packard OpenView Data Protector Backup Client Service Buffer Overflow Vulnerability ZDI Disclosures (Dec 17)
Facebook Query Language (FQL) security issue Zerial. (Dec 30)
RSS Feed
About List
All Lists
Previous period