Home page logo
/

465 messages starting Mar 17 09 and ending Mar 30 09
Date index | Thread index | Author index

김무성

what is DNS response that 255.255.255.255? 김무성 (Mar 17)

Adam Baldwin

NGENUITY-2009-005 OpenCart Order By Blind SQL Injection Adam Baldwin (Mar 16)
ExpressionEngine Persistent Cross-Site Scripting Adam Baldwin (Mar 22)
Zabbix Multiple Frontend CSRF (Password reset & command execution) Adam Baldwin (Mar 30)

A . L . M . Buxey

Re: The BBC acquired a botnet, but was it legal? - Update A . L . M . Buxey (Mar 18)

Anders Klixbull

Re: Idea cellular (ideacellular.com) SQL Injectionvulnerability in Corporate Account Login Anders Klixbull (Mar 24)
Re: nVidia.com [Url Redirection flaw] Anders Klixbull (Mar 25)
Re: nVidia.com [Url Redirection flaw] Anders Klixbull (Mar 25)
Re: nVidia.com [Url Redirection flaw] Anders Klixbull (Mar 25)

Andres Riancho

Re: Random HTTP-Requests Andres Riancho (Mar 31)

anonymous pimp

Re: List of Fuzzers anonymous pimp (Mar 07)

ArcSighter Elite

Re: List of Fuzzers ArcSighter Elite (Mar 13)

ascii

Zabbix 1.6.2 Frontend Multiple Vulnerabilities ascii (Mar 03)
Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities ascii (Mar 04)
Re: nVidia.com [Url Redirection flaw] ascii (Mar 24)

Asterisk Security Team

AST-2009-002: Remote Crash Vulnerability in SIP channel driver Asterisk Security Team (Mar 10)

benkei

(no subject) benkei (Mar 22)

Berend-Jan Wever

w32 SEH omelet shellcode stage Berend-Jan Wever (Mar 16)

Bernhard Mueller

SEC Consult SA-20090305-0 :: NextApp Echo XML Injection Vulnerability Bernhard Mueller (Mar 10)
SEC Consult SA-20090305-1 :: IBM Director CIM Server Remote Denial of Service Vulnerability Bernhard Mueller (Mar 10)

Bipin Gautam

Google to base ads on surfing behaviour Bipin Gautam (Mar 16)

Biz Marqee

Re: Apple Safari ... DoS Vulnerability Biz Marqee (Mar 04)

Bkis

[Bkis-03-2009] Multiple Vulnerabilities found in Rapidleech rev.36 Bkis (Mar 14)
[Bkis-04-2009] GOM Encoder Heap-based Buffer Overflow Bkis (Mar 16)
[Bkis-05-2009] PowerCHM Stack-based Buffer Overflow Bkis (Mar 26)

BlackHawk

Re: SSL MiTM on Windows BlackHawk (Mar 16)

bobby . mugabe

Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
Re: The return of L0phtCrack bobby . mugabe (Mar 03)
Most secure internet exploration tool? bobby . mugabe (Mar 04)
Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities bobby . mugabe (Mar 04)
Re: The return of L0phtCrack bobby . mugabe (Mar 04)
Re: The return of L0phtCrack bobby . mugabe (Mar 04)
Re: The return of L0phtCrack bobby . mugabe (Mar 04)
Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution bobby . mugabe (Mar 04)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 04)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 05)
Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 05)
Re: List of Fuzzers bobby . mugabe (Mar 06)

bob jones

Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution bob jones (Mar 04)
Re: Most secure internet exploration tool? bob jones (Mar 04)
Re: The return of L0phtCrack bob jones (Mar 04)
Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities bob jones (Mar 04)
bob jones has invited you to open a Google mail account bob jones (Mar 04)
Re: The return of L0phtCrack bob jones (Mar 04)

Bugs NotHugs

Novell Netstorage Multiple Vulnerabilities Bugs NotHugs (Mar 27)
Aurora Nutritive Analysis Module Multiple XSS Bugs NotHugs (Mar 27)
Check Point Firewall-1 PKI Web Service HTTP Header Remote Overflow Bugs NotHugs (Mar 30)
Cisco ASA5520 Web VPN Host Header XSS Bugs NotHugs (Mar 31)

Byron Sonne

Re: The BBC acquired a botnet, but was it legal? - Update Byron Sonne (Mar 18)
Re: The BBC acquired a botnet, but was it legal? - Update Byron Sonne (Mar 19)
Re: The BBC acquired a botnet, but was it legal? - Update Byron Sonne (Mar 19)

Carsten Eilers

Multiple Vulnerabilities in iAntiVirus Carsten Eilers (Mar 10)

Castigliola, Angelo

Re: BBC cybercrime probe backfires Castigliola, Angelo (Mar 13)
Re: BBC cybercrime probe backfires Castigliola, Angelo (Mar 15)

Chris Evans

Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 04)
Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 05)
LittleCMS vulnerabilities (OpenJDK, Firefox, GIMP, etc. impacted) Chris Evans (Mar 20)
Re: nVidia.com [Url Redirection flaw] Chris Evans (Mar 25)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Cisco 7600 Series Router Session Border Controller Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Mar 04)
Cisco Security Advisory: Cisco Unified Communications Manager IP Phone Personal Address Book Synchronizer Privilege Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 11)
Cisco Security Advisory: Cisco IOS cTCP Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software WebVPN and SSLVPN Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Secure Copy Privilege Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Multiple Features IP Sockets Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)

Core Security Technologies Advisories

Foxit Reader Multiple Vulnerabilities (CORE-2009-0218) Core Security Technologies Advisories (Mar 09)
CORE-2009-0122: HP OpenView Buffer Overflows CORE Security Technologies Advisories (Mar 23)
CORE-2009-0108: Multiple vulnerabilities in Sun Calendar Express Web Server CORE Security Technologies Advisories (Mar 31)

Cyber

Samsung G3210 failed to check privileges Cyber (Mar 05)

Daniel Sichel

Secure Computing (McAfee) Smart Filter possible issue Daniel Sichel (Mar 19)

Dan Lüdtke

Re: Suspected default hardcoded root account in D-Link embedded Linux for the DAP1353 router Dan Lüdtke (Mar 22)

dann frazier

[SECURITY] [DSA 1749-1] New Linux 2.6.26 packages fix several vulnerabilities dann frazier (Mar 21)

david

Re: [SCADASEC] 11. Re: SCADA Security - Software fee's david (Mar 08)

David Kierznowski

cURL/libcURL Arbitrary File Access David Kierznowski (Mar 03)

DDI_Vulnerability_Alert

DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability DDI_Vulnerability_Alert (Mar 09)
DDIVRT-2009-21 vBook Login Application Cross-site Scripting Vulnerability DDI_Vulnerability_Alert (Mar 09)

DeepSec Conference

DeepSec 2009 - Call for Papers is open DeepSec Conference (Mar 30)

Delian Krustev

Re: [USN-740-1] NSS vulnerability Delian Krustev (Mar 18)

Deral Heiland

Layered Defense Research Advisory: Format String Vulnerablity in Symantec PcAnywhere v10-12.5 Deral Heiland (Mar 18)

Eitan Adler

Re: nVidia.com [Url Redirection flaw] Eitan Adler (Mar 25)

Elazar Broad

Imera ImeraIEPlugin ActiveX Control Remote Code Execution Elazar Broad (Mar 03)
Belkin BullDog Plus UPS-Service Buffer Overflow Vulnerability Elazar Broad (Mar 08)
Re: BBC cybercrime probe backfires Elazar Broad (Mar 13)
Re: BBC cybercrime probe backfires Elazar Broad (Mar 15)

Elliot Kendall

Command Execution in Hannon Hill Cascade Server Elliot Kendall (Mar 19)

exceed

Funny bugs in Windows Server 2003 exceed (Mar 30)

Eygene Ryabinkin

Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Eygene Ryabinkin (Mar 09)

Fabio Pietrosanti (naif)

Re: Judge orders defendant to decrypt PGP-protected laptop Fabio Pietrosanti (naif) (Mar 04)

Fionnbharr

Re: List of Fuzzers Fionnbharr (Mar 05)
Re: Kaminsky: MS security assessment tool is a 'game changer' Fionnbharr (Mar 23)

Florian Weimer

[SECURITY] [DSA 1735-1] New znc packages fix privilege escalation Florian Weimer (Mar 10)
[SECURITY] [DSA 1739-1] New mldonkey packages fix information disclosure Florian Weimer (Mar 13)
[SECURITY] [DSA 1750-1] New libpng packages fix several vulnerabilities Florian Weimer (Mar 22)
[SECURITY] [DSA 1752-1] New webcit packages fix potential remote code execution Florian Weimer (Mar 23)

Francisco J . Gómez Rodríguez

Re: SSL MiTM on Windows Francisco J . Gómez Rodríguez (Mar 16)

Full Disclosure

Full Disclosure Gmail account Full Disclosure (Mar 02)

Gadi Evron

Suggesting a new defcon event: Hackers Parliamentary Debate or HPD Gadi Evron (Mar 23)
phishing attacks against ISPs (also with Google translations) Gadi Evron (Mar 25)
Re: phishing attacks against ISPs (also with Google translations) Gadi Evron (Mar 27)

George Parr

Re: List of Fuzzers George Parr (Mar 07)

iDefense Labs

Re: iDefense COMRaider 'DeleteFile()' Method Arbitrary File Deletion Vulnerability iDefense Labs (Mar 04)
iDefense Security Advisory 03.17.09: Autonomy KeyView Word Perfect File Parsing Buffer Overflow Vulnerability iDefense Labs (Mar 17)
Re: iDefense Security Advisory 03.17.09: Autonomy KeyView Word Perfect File Parsing Buffer Overflow Vulnerability iDefense Labs (Mar 17)
iDefense Security Advisory 03.24.09: Adobe Reader and Acrobat JBIG2 Encoded Stream Heap Overflow Vulnerability iDefense Labs (Mar 24)
iDefense Security Advisory 03.26.09: Sun Java Runtine Environment (JRE) Type1 Font Parsing Integer Signedness Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Web Start (JWS ) GIF Decoding Heap Corruption Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Runtine Environment (JRE) GIF Decoding Heap Corruption Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Web Start (JWS ) PNG Decoding Integer Overflow Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability iDefense Labs (Mar 26)

ISecAuditors Security Advisories

[ISecAuditors Security Advisories] CSRF vulnerability in GMail service ISecAuditors Security Advisories (Mar 03)
[ISecAuditors Security Advisories] WordPress MU HTTP Header XSS Vulnerability ISecAuditors Security Advisories (Mar 11)
[ISecAuditors Security Advisories] ModSecurity < 2.5.9 remote Denial of Service (DoS) ISecAuditors Security Advisories (Mar 19)

Ivan .

The return of L0phtCrack Ivan . (Mar 03)
Judge orders defendant to decrypt PGP-protected laptop Ivan . (Mar 03)
BBC cybercrime probe backfires Ivan . (Mar 13)
The BBC acquired a botnet, but was it legal? - Update Ivan . (Mar 15)
Kaminsky: MS security assessment tool is a 'game changer' Ivan . (Mar 22)

iViZ Security Advisories

[IVIZ-09-001] Adobe Acrobat Reader Memory Corruption Vulnerability iViZ Security Advisories (Mar 25)

James Matthews

Re: BBC cybercrime probe backfires James Matthews (Mar 13)
Re: The BBC acquired a botnet, but was it legal? - Update James Matthews (Mar 16)
Re: Google to base ads on surfing behaviour James Matthews (Mar 17)
Re: The BBC acquired a botnet, but was it legal? - Update James Matthews (Mar 19)
Re: Kaminsky: MS security assessment tool is a 'game changer' James Matthews (Mar 23)

James Rankin

Re: Security contact at Yahoo! James Rankin (Mar 26)

Jamie Strandboge

[USN-728-3] Firefox vulnerabilities Jamie Strandboge (Mar 06)
[USN-728-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Mar 06)
[USN-728-2] Firefox vulnerabilities Jamie Strandboge (Mar 06)
[USN-730-1] libpng vulnerabilities Jamie Strandboge (Mar 06)
[USN-724-1] Squid vulnerability Jamie Strandboge (Mar 13)
[USN-725-1] KMail vulnerability Jamie Strandboge (Mar 13)
[USN-738-1] GLib vulnerability Jamie Strandboge (Mar 16)
[USN-740-1] NSS vulnerability Jamie Strandboge (Mar 17)
[USN-741-1] Thunderbird vulnerabilities Jamie Strandboge (Mar 19)
[USN-745-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Mar 28)
[USN-750-1] OpenSSL vulnerability Jamie Strandboge (Mar 30)

Jan G.B.

cryptographp v1.4: file contents disclosure bug Jan G.B. (Mar 15)
Re: nVidia.com [Url Redirection flaw] Jan G.B. (Mar 25)
Re: Security contact at Yahoo! Jan G.B. (Mar 26)
Random HTTP-Requests Jan G.B. (Mar 31)
Re: Random HTTP-Requests Jan G.B. (Mar 31)

Jason Starks

Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
Re: [ISecAuditors Security Advisories] CSRF vulnerability in GMail service Jason Starks (Mar 03)
Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
Jason Starks has invited you to open a Google mail account Jason Starks (Mar 03)
Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 04)
Re: Cisco Security Advisory: Cisco 7600 Series Router Session Border Controller Denial of Service Vulnerability Jason Starks (Mar 04)
Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution Jason Starks (Mar 04)
Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Jason Starks (Mar 04)
Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 04)

Jeremy Brown

Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution Jeremy Brown (Mar 04)
Re: iDefense COMRaider 'DeleteFile()' Method Arbitrary File Deletion Vulnerability Jeremy Brown (Mar 04)
Re: djbdns misformats some long response packets; patch and example attack Jeremy Brown (Mar 05)
Re: List of Fuzzers Jeremy Brown (Mar 06)
Re: List of Fuzzers Jeremy Brown (Mar 06)
Re: List of Fuzzers Jeremy Brown (Mar 06)
Re: List of Fuzzers Jeremy Brown (Mar 06)
Re: List of Fuzzers Jeremy Brown (Mar 06)
Re: List of Fuzzers Jeremy Brown (Mar 13)
Re: ZDI-09-014: Adobe Acrobat getIcon() Stack Overflow Vulnerability Jeremy Brown (Mar 24)
Re: Fwd: nVidia.com [Url Redirection flaw] Jeremy Brown (Mar 25)
Re: Novell Netstorage Multiple Vulnerabilities Jeremy Brown (Mar 27)

jf

Re: Apple Safari ... DoS Vulnerability jf (Mar 03)

Jim Parkhurst

Re: Apple Safari ... DoS Vulnerability Jim Parkhurst (Mar 03)

jmoss

Black Hat USA Videos available to D/L jmoss (Mar 31)

John Cartwright

List Charter John Cartwright (Mar 09)

John Lamb

Re: Kaminsky: MS security assessment tool is a 'game changer' John Lamb (Mar 25)

Jonathan Leffler

Re: Notice to all employees Jonathan Leffler (Mar 01)

J. Oquendo

Introducing RMBSS - "Risk Metrics Budgetary Scoring System" J. Oquendo (Apr 01)

Josh Dukes

Re: List of Fuzzers Josh Dukes (Mar 13)

Juha-Matti Laurio

Re: ZDI-09-014: Adobe Acrobat getIcon() StackOverflow Vulnerability Juha-Matti Laurio (Mar 24)

julio sanchez

Re: List of Fuzzers julio sanchez (Mar 06)

Justin C. Klein Keane

Drupal Admin Password Reset via XSS Justin C. Klein Keane (Mar 05)
Frog CMS Multiple Vulnerabilities Justin C. Klein Keane (Mar 26)

Justin Klein Keane

LAMPSecurity.org Capture the Flag Exercise Justin Klein Keane (Mar 19)
Pixie CMS Multiple Vulnerabilities Justin Klein Keane (Mar 20)

Kees Cook

[USN-729-1] Python Crypto vulnerability Kees Cook (Mar 05)
[USN-748-1] OpenJDK vulnerabilities Kees Cook (Mar 26)

Krakow Labs

List of Fuzzers Krakow Labs (Mar 05)
POP Peeper 3.4.0.0 Date Remote Buffer Overflow Vulnerability Krakow Labs (Mar 12)
Re: Slides from uCon Security Conference 2009 available online Krakow Labs (Mar 23)

Kristian Erik Hermansen

Inquira: Multiple Vulnerabilities Kristian Erik Hermansen (Mar 20)

Kristo pher

prezzie from rx2s.org and lamers Kristo pher (Mar 06)

Larry Seltzer

Re: BBC cybercrime probe backfires Larry Seltzer (Mar 14)
Re: ZDI-09-014: Adobe Acrobat getIcon() StackOverflow Vulnerability Larry Seltzer (Mar 24)

Lorenzo Vogelsang

nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 24)
nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 25)
Fwd: nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 25)
Fwd: Fwd: nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 26)

Luiz Eduardo

YSTS 3.0 - Call for Papers Luiz Eduardo (Mar 16)

mac . user

Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 25)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 25)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 25)
Re: phishing attacks against ISPs (also with Google translations) mac . user (Mar 26)
Re: Fwd: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
Re: Fwd: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
Re: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
Re: phishing attacks against ISPs (also with Google translations) mac . user (Mar 27)

Major Malfunction

DEFCON London DC4420 March meeting - Thursday 19th March Major Malfunction (Mar 17)

Maksymilian Arciemowicz

libc:fts_*():multiple vendors, Denial-of-service Maksymilian Arciemowicz (Mar 05)

Malformation 000000

Epic Web Honeypot v1.0c release Malformation 000000 (Mar 18)

Malformation 0000000

JS-Fun with HTML deprecated tags Malformation 0000000 (Mar 14)

Marc Deslauriers

[USN-726-1] curl vulnerability Marc Deslauriers (Mar 03)
[USN-727-1] network-manager-applet vulnerabilities Marc Deslauriers (Mar 03)
[USN-727-2] NetworkManager vulnerability Marc Deslauriers (Mar 03)
[USN-726-2] curl regression Marc Deslauriers (Mar 04)
[USN-732-1] dash vulnerability Marc Deslauriers (Mar 10)
[USN-731-1] Apache vulnerabilities Marc Deslauriers (Mar 10)
[USN-735-1] GStreamer Base Plugins vulnerability Marc Deslauriers (Mar 16)
[USN-733-1] evolution-data-server vulnerability Marc Deslauriers (Mar 16)
[USN-737-1] libsoup vulnerability Marc Deslauriers (Mar 16)
[USN-736-1] GStreamer Good Plugins vulnerabilities Marc Deslauriers (Mar 16)
[USN-734-1] FFmpeg vulnerabilities Marc Deslauriers (Mar 16)
[USN-739-1] Amarok vulnerabilities Marc Deslauriers (Mar 17)
[USN-742-1] JasPer vulnerabilities Marc Deslauriers (Mar 19)
[USN-744-1] LittleCMS vulnerabilities Marc Deslauriers (Mar 23)
[USN-743-1] Ghostscript vulnerabilities Marc Deslauriers (Mar 23)
[USN-746-1] xine-lib vulnerability Marc Deslauriers (Mar 26)
[USN-747-1] ICU vulnerability Marc Deslauriers (Mar 26)
[USN-749-1] libsndfile vulnerability Marc Deslauriers (Mar 30)

Mark Sec

CUPS port 631 how to hack Mark Sec (Mar 31)

Martin Aberastegue

Re: nVidia.com [Url Redirection flaw] Martin Aberastegue (Mar 25)

Matt

Re: The BBC acquired a botnet, but was it legal? - Update Matt (Mar 18)

Matt Olson

Re: The BBC acquired a botnet, but was it legal? - Update Matt Olson (Mar 18)

M.B.Jr.

Re: Apple Safari ... DoS Vulnerability M.B.Jr. (Mar 03)
Re: phishing attacks against ISPs (also with Google translations) M.B.Jr. (Mar 26)

mezgani ali

Re: what is DNS response that 255.255.255.255? mezgani ali (Mar 17)

Michael Thompson

Re: List of Fuzzers Michael Thompson (Mar 08)

Michal

Re: The BBC acquired a botnet, but was it legal? - Update Michal (Mar 19)
Re: nVidia.com [Url Redirection flaw] Michal (Mar 25)

Michal Zalewski

Re: Apple Safari ... DoS Vulnerability Michal Zalewski (Mar 03)
Re: Apple Safari ... DoS Vulnerability Michal Zalewski (Mar 03)
Re: Multiple Cookies combined to a single Set-Cookie response Michal Zalewski (Mar 20)

Mike N.

Re: ZDI-09-014: Adobe Acrobat getIcon()StackOverflow Vulnerability Mike N. (Mar 25)

Mohammad Hosein

SSL MiTM on Windows Mohammad Hosein (Mar 16)

Moritz Muehlenhoff

[SECURITY] [DSA 1741-1] New psi packages fix denial of service Moritz Muehlenhoff (Mar 14)
[SECURITY] [DSA 1751-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Mar 22)
[SECURITY] [DSA 1753-1] End-of-life announcement for Iceweasel in oldstable Moritz Muehlenhoff (Mar 24)
[SECURITY] [DSA 1755-1] New systemtap packages fix local privilege escalation Moritz Muehlenhoff (Mar 25)
[SECURITY] [DSA 1758-1] New nss-ldapd packages fix information disclosure Moritz Muehlenhoff (Mar 30)

mrdkaaa

Re: Novell Netstorage Multiple Vulnerabilities mrdkaaa (Mar 28)

mu-b

FreeBSD/OS X kernel bug dump mu-b (Mar 23)
Re: FreeBSD/OS X kernel bug dump mu-b (Mar 24)

Nam Nguyen

Security contact at Yahoo! Nam Nguyen (Mar 26)
Re: Security contact at Yahoo! Nam Nguyen (Mar 26)

Nick FitzGerald

Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
Re: Google to base ads on surfing behaviour Nick FitzGerald (Mar 16)
Re: nVidia.com [Url Redirection flaw] Nick FitzGerald (Mar 26)
Re: nVidia.com [Url Redirection flaw] Nick FitzGerald (Mar 26)

Nico Golde

[SECURITY] [DSA 1738-1] New curl packages fix arbitrary file access Nico Golde (Mar 11)
[SECURITY] [DSA 1742-1] New libsnd packages fix arbitrary code execution Nico Golde (Mar 16)
[SECURITY] [DSA 1744-1] New weechat packages fix denial of service Nico Golde (Mar 18)

Noah Meyerhans

[SECURITY] [DSA 1756-1] New xulrunner packages fix multiple vulnerabilities Noah Meyerhans (Mar 29)

null null

Idea cellular (ideacellular.com) SQL Injection vulnerability in Corporate Account Login null null (Mar 24)

nzerozero p

Re: Apple Safari ... DoS Vulnerability nzerozero p (Mar 01)

Pablo Roberto

Re: what is DNS response that 255.255.255.255? Pablo Roberto (Mar 17)

Paul Schmehl

Re: The return of L0phtCrack Paul Schmehl (Mar 04)

Paul Wouters

Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation Paul Wouters (Mar 09)
CVE-2009-0790: ISAKMP DPD Remote Vulnerability with Openswan & Strongswan IPsec Paul Wouters (Mar 30)

Pavel Kankovsky

Re: Apple Safari ... DoS Vulnerability Pavel Kankovsky (Mar 04)

Pete Licoln

Re: List of Fuzzers Pete Licoln (Mar 06)
Re: List of Fuzzers Pete Licoln (Mar 06)
Re: List of Fuzzers Pete Licoln (Mar 06)
Re: List of Fuzzers Pete Licoln (Mar 06)
Re: List of Fuzzers Pete Licoln (Mar 06)
Re: List of Fuzzers Pete Licoln (Mar 07)
Re: List of Fuzzers Pete Licoln (Mar 07)
Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 24)
Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 25)
Re: Fwd: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 25)
Re: Fwd: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 26)
Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 26)

Phani

Multiple Cookies combined to a single Set-Cookie response Phani (Mar 20)

Pierre-Yves Rofes

[ GLSA 200903-01 ] Vinagre: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 06)
[ GLSA 200903-10 ] Irrlicht: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 07)
[ GLSA 200903-24 ] Shadow: Privilege escalation Pierre-Yves Rofes (Mar 10)
[ GLSA 200903-23 ] Adobe Flash Player: Multiple vulnerabilities Pierre-Yves Rofes (Mar 11)
[ GLSA 200903-25 ] Courier Authentication Library: SQL Injection vulnerability Pierre-Yves Rofes (Mar 11)
[ GLSA 200903-27 ] ProFTPD: Multiple vulnerabilities Pierre-Yves Rofes (Mar 12)
[ GLSA 200903-28 ] libpng: Multiple vulnerabilities Pierre-Yves Rofes (Mar 15)
[ GLSA 200903-29 ] BlueZ: Arbitrary code execution Pierre-Yves Rofes (Mar 16)
[ GLSA 200903-31 ] libcdaudio: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 17)
[ GLSA 200903-32 ] phpMyAdmin: Multiple vulnerabilities Pierre-Yves Rofes (Mar 18)
[ GLSA 200903-33 ] FFmpeg: Multiple vulnerabilities Pierre-Yves Rofes (Mar 19)
[ GLSA 200903-36 ] MLDonkey: Information disclosure Pierre-Yves Rofes (Mar 23)
[ GLSA 200903-37 ] Ghostscript: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 23)
[ GLSA 200903-35 ] Muttprint: Insecure temporary file usage Pierre-Yves Rofes (Mar 23)
[ GLSA 200903-38 ] Squid: Multiple Denial of Service vulnerabilities Pierre-Yves Rofes (Mar 24)
[ GLSA 200903-39 ] pam_krb5: Privilege escalation Pierre-Yves Rofes (Mar 25)
[ GLSA 200903-40 ] Analog: Denial of Service Pierre-Yves Rofes (Mar 29)
[ GLSA 200903-41 ] gedit: Untrusted search path Pierre-Yves Rofes (Mar 30)

Positron Security

Positron Security Advisory #2009-000: Multiple Vulnerabilities in MapServer v5.2.1 and v4.10.3 Positron Security (Mar 30)

rembrandt

Suspected default hardcoded root account in D-Link embedded Linux for the DAP1353 router rembrandt (Mar 22)
Re: Suspected default hardcoded root account in D-Link embedded Linux for the DAP1353 router rembrandt (Mar 22)

Robert Buchholz

[ GLSA 200903-08 ] gEDA: Insecure temporary file creation Robert Buchholz (Mar 07)
[ GLSA 200903-06 ] nfs-utils: Access restriction bypass Robert Buchholz (Mar 07)
[ GLSA 200903-07 ] Samba: Data disclosure Robert Buchholz (Mar 07)
[ GLSA 200903-09 ] OpenTTD: Execution of arbitrary code Robert Buchholz (Mar 07)
[ GLSA 200903-05 ] PDFjam: Multiple vulnerabilities Robert Buchholz (Mar 08)
[ GLSA 200903-13 ] MPFR: Denial of Service Robert Buchholz (Mar 09)
[ GLSA 200903-12 ] OptiPNG: User-assisted execution of arbitrary code Robert Buchholz (Mar 09)
[ GLSA 200903-11 ] PyCrypto: Execution of arbitrary code Robert Buchholz (Mar 09)
[ GLSA 200903-14 ] BIND: Incorrect signature verification Robert Buchholz (Mar 09)
[ GLSA 200903-15 ] git: Multiple vulnerabilties Robert Buchholz (Mar 09)
[ GLSA 200903-16 ] Epiphany: Untrusted search path Robert Buchholz (Mar 09)
[ GLSA 200903-17 ] Real VNC: User-assisted execution of arbitrary code Robert Buchholz (Mar 09)
[ GLSA 200903-18 ] Openswan: Insecure temporary file creation Robert Buchholz (Mar 09)
[ GLSA 200903-19 ] Xerces-C++: Denial of Service Robert Buchholz (Mar 09)
[ GLSA 200903-20 ] WebSVN: Multiple vulnerabilities Robert Buchholz (Mar 09)
Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation Robert Buchholz (Mar 10)
[ GLSA 200903-22 ] Ganglia: Execution of arbitrary code Robert Buchholz (Mar 10)
[ GLSA 200903-26 ] TMSNC: Execution of arbitrary code Robert Buchholz (Mar 12)

Roberto Muñoz Fernandez

Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Roberto Muñoz Fernandez (Mar 06)

Ron

Re: BBC cybercrime probe backfires Ron (Mar 14)
Re: BBC cybercrime probe backfires Ron (Mar 14)

rPath Update Announcements

rPSA-2009-0035-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl rPath Update Announcements (Mar 03)
rPSA-2009-0046-1 libpng rPath Update Announcements (Mar 13)
rPSA-2009-0045-1 glib rPath Update Announcements (Mar 13)
rPSA-2009-0040-1 tshark wireshark rPath Update Announcements (Mar 13)
rPSA-2009-0041-1 dhclient dhcp libdhcp4client rPath Update Announcements (Mar 13)
rPSA-2009-0042-1 curl rPath Update Announcements (Mar 13)
rPSA-2009-0050-1 ghostscript rPath Update Announcements (Mar 20)

Rubén Camarero

Re: List of Fuzzers Rubén Camarero (Mar 06)
Re: List of Fuzzers Rubén Camarero (Mar 07)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
Re: FreeBSD/OS X kernel bug dump Rubén Camarero (Mar 24)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 25)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 26)
Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 26)
Re: [funsec] phishing attacks against ISPs (also with Google translations) Rubén Camarero (Mar 27)
Re: Funny bugs in Windows Server 2003 Rubén Camarero (Mar 30)
Re: fooobar in source Rubén Camarero (Mar 31)

Saladino Patrick

Re: The return of L0phtCrack Saladino Patrick (Mar 04)

secresearch () fortinet com

Apple iTunes DAAP Messages Handling Denial of Service Vulnerability secresearch () fortinet com (Mar 13)

Secunia Research

Secunia Research: libsndfile CAF Processing Integer Overflow Vulnerability Secunia Research (Mar 03)
Secunia Research: Winamp CAF Processing Integer Overflow Vulnerability Secunia Research (Mar 03)
Secunia Research: Foxit Reader JBIG2 Symbol Dictionary Processing Vulnerability Secunia Research (Mar 09)
Secunia Research: Adobe Reader JBIG2 Symbol Dictionary Buffer Overflow Secunia Research (Mar 25)

security

[ MDVSA-2009:062 ] shadow-utils security (Mar 02)
[ MDVSA-2009:063 ] eog security (Mar 02)
[ MDVSA-2009:064 ] imap security (Mar 03)
[ MDVSA-2009:065 ] php4 security (Mar 05)
[ MDVSA-2009:066 ] php security (Mar 05)
[ MDVSA-2009:067 ] libsndfile security (Mar 05)
[ MDVSA-2009:068 ] poppler security (Mar 06)
[ MDVSA-2009:069 ] curl security (Mar 07)
[ MDVSA-2009:068-1 ] poppler security (Mar 07)
[ MDVSA-2009:070 ] openoffice.org security (Mar 10)
[ MDVSA-2009:071 ] kernel security (Mar 10)
[ MDVSA-2009:072 ] perl-MDK-Common security (Mar 11)
[ MDVSA-2009:073 ] sarg security (Mar 11)
[ MDVSA-2009:074 ] libneon0.27 security (Mar 11)
[ MDVSA-2009:075 ] firefox security (Mar 13)
[ MDVSA-2009:076 ] avahi security (Mar 14)
[ MDVSA-2009:060-1 ] nfs-utils security (Mar 19)
[ MDVSA-2009:077 ] pam security (Mar 21)
[ MDVSA-2009:078 ] evolution-data-server security (Mar 23)
[ MDVSA-2009:079 ] postgresql security (Mar 23)
[ MDVSA-2009:080 ] glib2.0 security (Mar 26)
[ MDVSA-2009:081 ] libsoup security (Mar 27)
[ MDVSA-2009:082 ] krb5 security (Mar 30)

securityninja

Access any album on any Facebook profile securityninja (Mar 12)

Steffen Joeris

[SECURITY] [DSA 1730-1] New proftpd-dfsg packages fix SQL injection vulnerabilites Steffen Joeris (Mar 03)
[SECURITY] [DSA 1729-1] New gst-plugins-bad0.10 packages fix multiple vulnerabilities Steffen Joeris (Mar 03)
[SECURITY] [DSA 1731-1] New ndiswrapper packages fix arbitrary code execution vulnerability Steffen Joeris (Mar 03)
[SECURITY] [DSA 1732-1] New squid3 packages fix denial of service Steffen Joeris (Mar 03)
[SECURITY] [DSA 1733-1] New vim packages fix multiple vulnerabilities Steffen Joeris (Mar 03)
[SECURITY] [DSA 1736-1] New mahara packages fix cross-site scripting Steffen Joeris (Mar 11)
[SECURITY] [DSA 1737-1] New wesnoth packages fix several vulnerabilities Steffen Joeris (Mar 11)
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service Steffen Joeris (Mar 14)
[SECURITY] [DSA 1743-1] New libtk-img packages fix arbitrary code execution Steffen Joeris (Mar 17)
[SECURITY] [DSA 1746-1] New ghostscript packages fix arbitrary code execution Steffen Joeris (Mar 20)
[SECURITY] [DSA 1747-1] New glib2.0 packages fix arbitrary code execution Steffen Joeris (Mar 21)
[SECURITY] [DSA 1748-1] New libsoup packages fix arbitrary code execution Steffen Joeris (Mar 21)
[SECURITY] [DSA 1745-1] New lcms packages fix arbitrary code execution Steffen Joeris (Mar 21)
[SECURITY] [DSA 1745-2] New lcms packages fix regression Steffen Joeris (Mar 25)
[SECURITY] [DSA 1757-1] New auth2db packages fix SQL injection Steffen Joeris (Mar 30)
[SECURITY] [DSA 1759-1] New strongswan packages fix denial of service Steffen Joeris (Mar 31)
[SECURITY] [DSA 1760-1] New openswan packages fix denial of service Steffen Joeris (Mar 31)

Stephen Menard

Re: Most secure internet exploration tool? Stephen Menard (Mar 04)
Re: Google to base ads on surfing behaviour Stephen Menard (Mar 19)

Stuart Dunkeld

Re: Apple Safari ... DoS Vulnerability Stuart Dunkeld (Mar 04)
Re: The BBC acquired a botnet, but was it legal? - Update Stuart Dunkeld (Mar 19)

T Biehn

Re: Most secure internet exploration tool? T Biehn (Mar 04)
Re: Most secure internet exploration tool? T Biehn (Mar 04)
Re: The return of L0phtCrack T Biehn (Mar 04)
Re: The return of L0phtCrack T Biehn (Mar 04)
Re: BBC cybercrime probe backfires T Biehn (Mar 13)
Re: BBC cybercrime probe backfires T Biehn (Mar 13)
Re: Kaminsky: MS security assessment tool is a 'game changer' T Biehn (Mar 23)
Re: Suggesting a new defcon event: Hackers Parliamentary Debate or HPD T Biehn (Mar 23)
Re: phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
Re: phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
Re: [funsec] phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
Re: [funsec] phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
Re: [funsec] phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)

The Dark Tangent

DEFCON CTF Submissions are in, DC-16 video online! The Dark Tangent (Mar 06)

The Sp3ctacle

Re: The return of L0phtCrack The Sp3ctacle (Mar 14)

Thierry Zoller

Bad kittie Thierry Zoller (Mar 04)

Thijs Kinkhorst

[SECURITY] [DSA 1734-1] New opensc packages fix information disclosure Thijs Kinkhorst (Mar 05)

Tobias Heinlein

[ GLSA 200903-02 ] ZNC: Privilege escalation Tobias Heinlein (Mar 06)
[ GLSA 200903-03 ] Audacity: User-assisted execution of arbitrary code Tobias Heinlein (Mar 06)
[ GLSA 200903-04 ] DevIL: User-assisted execution of arbitrary code Tobias Heinlein (Mar 06)
[ GLSA 200903-21 ] cURL: Arbitrary file access Tobias Heinlein (Mar 09)
[ GLSA 200903-30 ] Opera: Multiple vulnerabilities Tobias Heinlein (Mar 17)
[ GLSA 200903-34 ] Amarok: User-assisted execution of arbitrary code Tobias Heinlein (Mar 20)

Tonu Samuel

fooobar in source Tonu Samuel (Mar 31)

uCon Security Conference

Slides from uCon Security Conference 2009 available online uCon Security Conference (Mar 19)

Valdis . Kletnieks

Re: Apple Safari ... DoS Vulnerability Valdis . Kletnieks (Mar 03)
Re: Most secure internet exploration tool? Valdis . Kletnieks (Mar 04)
Re: Most secure internet exploration tool? Valdis . Kletnieks (Mar 04)
Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Valdis . Kletnieks (Mar 04)
Re: The return of L0phtCrack Valdis . Kletnieks (Mar 04)
Re: nVidia.com [Url Redirection flaw] Valdis . Kletnieks (Mar 25)
Re: [funsec] phishing attacks against ISPs (also with Google translations) Valdis . Kletnieks (Mar 27)

Valdis' Mustache

Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 03)
Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 03)
Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 03)
Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 04)
Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 05)
Re: List of Fuzzers Valdis' Mustache (Mar 07)
Re: [funsec] phishing attacks against ISPs (also with Google translations) Valdis' Mustache (Mar 27)

Valery Marchuk

[PT-2009-12] UMI.CMS Cross-Site Scripting Vulnerability Valery Marchuk (Mar 06)
[PT-2009-13] TinX CMS SQL Injection Vulnerability Valery Marchuk (Mar 06)
[PT-2009-11] SlySoft Multiple Products ElbyCDIO.sys Denial of Service Valery Marchuk (Mar 12)
[Positive Technologies SA: 2009-14] BLOG:CMS Cross-Site Scripting Vulnerability Valery Marchuk (Mar 13)
[Positive Technologies SA: 2009-20] A.CMS Multiple Vulnerabilities Valery Marchuk (Mar 13)
[Positive Technologies SA: 2009-15] Living CMS Cross-Site Scripting Vulnerability Valery Marchuk (Mar 13)
[Positive Technologies SA 2009-09] Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation Vulnerabilities Valery Marchuk (Mar 31)

VMware Security team

VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim VMware Security team (Apr 01)

VR-Subscription-noreply

Assurent VR - Novell eDirectory Management Console Accept-Language Buffer Overflow VR-Subscription-noreply (Mar 02)
Assurent VR - IBM Tivoli Storage Manager Express Backup Server Heap Corruption VR-Subscription-noreply (Mar 11)

yersinia

Re: nVidia.com [Url Redirection flaw] yersinia (Mar 25)

ZDI Disclosures

ZDI-09-013: Mozilla Firefox XUL Linked Clones Double Free Vulnerability ZDI Disclosures (Mar 05)
ZDI-09-014: Adobe Acrobat getIcon() Stack Overflow Vulnerability ZDI Disclosures (Mar 24)
ZDI-09-015: Mozilla Firefox XUL _moveToEdgeShift() Memory Corruption Vulnerability ZDI Disclosures (Mar 30)
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault