Full Disclosure: by thread

Full Disclosure: by thread

465 messages starting Mar 01 09 and ending Apr 01 09
Date index | Thread index | Author index

Re: Apple Safari ... DoS Vulnerability nzerozero p (Mar 01)
- <Possible follow-ups>
- Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
  - Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Michal Zalewski (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Valdis . Kletnieks (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Michal Zalewski (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Stuart Dunkeld (Mar 04)
    - Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 04)
  - Re: Apple Safari ... DoS Vulnerability jf (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Pavel Kankovsky (Mar 04)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
  - Re: Apple Safari ... DoS Vulnerability Nick FitzGerald (Mar 03)
  - Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
  - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Jim Parkhurst (Mar 03)
- Re: Apple Safari ... DoS Vulnerability M.B.Jr. (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
  - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
  - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 03)
    - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 03)
- Re: Apple Safari ... DoS Vulnerability Biz Marqee (Mar 04)
  - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 04)
    - Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 04)
    - Re: Apple Safari ... DoS Vulnerability Jason Starks (Mar 04)
  - Re: Apple Safari ... DoS Vulnerability Chris Evans (Mar 05)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 04)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 05)
  - Re: Apple Safari ... DoS Vulnerability Valdis' Mustache (Mar 05)
- Re: Apple Safari ... DoS Vulnerability bobby . mugabe (Mar 05)
Re: Notice to all employees Jonathan Leffler (Mar 01)
Assurent VR - Novell eDirectory Management Console Accept-Language Buffer Overflow VR-Subscription-noreply (Mar 02)
Full Disclosure Gmail account Full Disclosure (Mar 02)
[ MDVSA-2009:062 ] shadow-utils security (Mar 02)
[ MDVSA-2009:063 ] eog security (Mar 02)
[SECURITY] [DSA 1730-1] New proftpd-dfsg packages fix SQL injection vulnerabilites Steffen Joeris (Mar 03)
[SECURITY] [DSA 1729-1] New gst-plugins-bad0.10 packages fix multiple vulnerabilities Steffen Joeris (Mar 03)
[SECURITY] [DSA 1731-1] New ndiswrapper packages fix arbitrary code execution vulnerability Steffen Joeris (Mar 03)
rPSA-2009-0035-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl rPath Update Announcements (Mar 03)
[SECURITY] [DSA 1732-1] New squid3 packages fix denial of service Steffen Joeris (Mar 03)
cURL/libcURL Arbitrary File Access David Kierznowski (Mar 03)
[SECURITY] [DSA 1733-1] New vim packages fix multiple vulnerabilities Steffen Joeris (Mar 03)
[ISecAuditors Security Advisories] CSRF vulnerability in GMail service ISecAuditors Security Advisories (Mar 03)
- Re: [ISecAuditors Security Advisories] CSRF vulnerability in GMail service Jason Starks (Mar 03)
Secunia Research: libsndfile CAF Processing Integer Overflow Vulnerability Secunia Research (Mar 03)
Secunia Research: Winamp CAF Processing Integer Overflow Vulnerability Secunia Research (Mar 03)
Zabbix 1.6.2 Frontend Multiple Vulnerabilities ascii (Mar 03)
- Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities bob jones (Mar 04)
  - Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities ascii (Mar 04)
- Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Roberto Muñoz Fernandez (Mar 06)
- Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Eygene Ryabinkin (Mar 09)
- <Possible follow-ups>
- Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities bobby . mugabe (Mar 04)
  - Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Valdis . Kletnieks (Mar 04)
    - Re: Zabbix 1.6.2 Frontend Multiple Vulnerabilities Jason Starks (Mar 04)
Imera ImeraIEPlugin ActiveX Control Remote Code Execution Elazar Broad (Mar 03)
- Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution bob jones (Mar 04)
  - Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution Jason Starks (Mar 04)
[ MDVSA-2009:064 ] imap security (Mar 03)
[USN-726-1] curl vulnerability Marc Deslauriers (Mar 03)
[USN-727-1] network-manager-applet vulnerabilities Marc Deslauriers (Mar 03)
[USN-727-2] NetworkManager vulnerability Marc Deslauriers (Mar 03)
Jason Starks has invited you to open a Google mail account Jason Starks (Mar 03)
The return of L0phtCrack Ivan . (Mar 03)
- Re: The return of L0phtCrack bob jones (Mar 04)
  - Re: The return of L0phtCrack Saladino Patrick (Mar 04)
  - Re: The return of L0phtCrack Paul Schmehl (Mar 04)
    - Re: The return of L0phtCrack bob jones (Mar 04)
  - Re: The return of L0phtCrack Valdis . Kletnieks (Mar 04)
- <Possible follow-ups>
- Re: The return of L0phtCrack bobby . mugabe (Mar 03)
- Re: The return of L0phtCrack bobby . mugabe (Mar 04)
- Re: The return of L0phtCrack bobby . mugabe (Mar 04)
  - Re: The return of L0phtCrack T Biehn (Mar 04)
  - Re: The return of L0phtCrack The Sp3ctacle (Mar 14)
- Re: The return of L0phtCrack bobby . mugabe (Mar 04)
  - Re: The return of L0phtCrack T Biehn (Mar 04)
Judge orders defendant to decrypt PGP-protected laptop Ivan . (Mar 03)
- Re: Judge orders defendant to decrypt PGP-protected laptop Fabio Pietrosanti (naif) (Mar 04)
Most secure internet exploration tool? bobby . mugabe (Mar 04)
- Re: Most secure internet exploration tool? Valdis . Kletnieks (Mar 04)
  - Re: Most secure internet exploration tool? T Biehn (Mar 04)
    - Re: Most secure internet exploration tool? Valdis . Kletnieks (Mar 04)
    - Re: Most secure internet exploration tool? T Biehn (Mar 04)
  - Re: Most secure internet exploration tool? Stephen Menard (Mar 04)
- Re: Most secure internet exploration tool? bob jones (Mar 04)
bob jones has invited you to open a Google mail account bob jones (Mar 04)
[USN-726-2] curl regression Marc Deslauriers (Mar 04)
Cisco Security Advisory: Cisco 7600 Series Router Session Border Controller Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Mar 04)
- Re: Cisco Security Advisory: Cisco 7600 Series Router Session Border Controller Denial of Service Vulnerability Jason Starks (Mar 04)
Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution bobby . mugabe (Mar 04)
- Re: Imera ImeraIEPlugin ActiveX Control Remote Code Execution Jeremy Brown (Mar 04)
Bad kittie Thierry Zoller (Mar 04)
Re: iDefense COMRaider 'DeleteFile()' Method Arbitrary File Deletion Vulnerability iDefense Labs (Mar 04)
- Re: iDefense COMRaider 'DeleteFile()' Method Arbitrary File Deletion Vulnerability Jeremy Brown (Mar 04)
Samsung G3210 failed to check privileges Cyber (Mar 05)
[SECURITY] [DSA 1734-1] New opensc packages fix information disclosure Thijs Kinkhorst (Mar 05)
Re: djbdns misformats some long response packets; patch and example attack Jeremy Brown (Mar 05)
libc:fts_*():multiple vendors, Denial-of-service Maksymilian Arciemowicz (Mar 05)
ZDI-09-013: Mozilla Firefox XUL Linked Clones Double Free Vulnerability ZDI Disclosures (Mar 05)
[ MDVSA-2009:065 ] php4 security (Mar 05)
List of Fuzzers Krakow Labs (Mar 05)
- Re: List of Fuzzers Fionnbharr (Mar 05)
- Re: List of Fuzzers Pete Licoln (Mar 06)
  - Re: List of Fuzzers Jeremy Brown (Mar 06)
    - Re: List of Fuzzers Pete Licoln (Mar 06)
    - Re: List of Fuzzers Jeremy Brown (Mar 06)
    - Re: List of Fuzzers julio sanchez (Mar 06)
    - Re: List of Fuzzers Jeremy Brown (Mar 06)
    - Message not available
    - Re: List of Fuzzers Pete Licoln (Mar 06)
    - Re: List of Fuzzers Rubén Camarero (Mar 06)
    - Re: List of Fuzzers Pete Licoln (Mar 06)
    - Re: List of Fuzzers Jeremy Brown (Mar 06)
    - Re: List of Fuzzers Pete Licoln (Mar 06)
    - Re: List of Fuzzers Jeremy Brown (Mar 06)
- <Possible follow-ups>
- Re: List of Fuzzers bobby . mugabe (Mar 06)
  - Re: List of Fuzzers Pete Licoln (Mar 07)
    - Re: List of Fuzzers Rubén Camarero (Mar 07)
    - Re: List of Fuzzers Pete Licoln (Mar 07)
    - Re: List of Fuzzers Michael Thompson (Mar 08)
  - Re: List of Fuzzers anonymous pimp (Mar 07)
  - Re: List of Fuzzers Valdis' Mustache (Mar 07)
    - Re: List of Fuzzers George Parr (Mar 07)
    - Re: List of Fuzzers Josh Dukes (Mar 13)
    - Re: List of Fuzzers ArcSighter Elite (Mar 13)
    - Re: List of Fuzzers Jeremy Brown (Mar 13)
[ MDVSA-2009:066 ] php security (Mar 05)
[USN-729-1] Python Crypto vulnerability Kees Cook (Mar 05)
[ MDVSA-2009:067 ] libsndfile security (Mar 05)
Drupal Admin Password Reset via XSS Justin C. Klein Keane (Mar 05)
[USN-728-3] Firefox vulnerabilities Jamie Strandboge (Mar 06)
[USN-728-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Mar 06)
[USN-728-2] Firefox vulnerabilities Jamie Strandboge (Mar 06)
[USN-730-1] libpng vulnerabilities Jamie Strandboge (Mar 06)
prezzie from rx2s.org and lamers Kristo pher (Mar 06)
DEFCON CTF Submissions are in, DC-16 video online! The Dark Tangent (Mar 06)
[PT-2009-12] UMI.CMS Cross-Site Scripting Vulnerability Valery Marchuk (Mar 06)
[PT-2009-13] TinX CMS SQL Injection Vulnerability Valery Marchuk (Mar 06)
[ GLSA 200903-01 ] Vinagre: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 06)
[ GLSA 200903-02 ] ZNC: Privilege escalation Tobias Heinlein (Mar 06)
[ GLSA 200903-03 ] Audacity: User-assisted execution of arbitrary code Tobias Heinlein (Mar 06)
[ GLSA 200903-04 ] DevIL: User-assisted execution of arbitrary code Tobias Heinlein (Mar 06)
[ MDVSA-2009:068 ] poppler security (Mar 06)
[ MDVSA-2009:069 ] curl security (Mar 07)
[ MDVSA-2009:068-1 ] poppler security (Mar 07)
[ GLSA 200903-08 ] gEDA: Insecure temporary file creation Robert Buchholz (Mar 07)
[ GLSA 200903-06 ] nfs-utils: Access restriction bypass Robert Buchholz (Mar 07)
[ GLSA 200903-07 ] Samba: Data disclosure Robert Buchholz (Mar 07)
[ GLSA 200903-09 ] OpenTTD: Execution of arbitrary code Robert Buchholz (Mar 07)
[ GLSA 200903-10 ] Irrlicht: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 07)
[ GLSA 200903-05 ] PDFjam: Multiple vulnerabilities Robert Buchholz (Mar 08)
Re: [SCADASEC] 11. Re: SCADA Security - Software fee's david (Mar 08)
Belkin BullDog Plus UPS-Service Buffer Overflow Vulnerability Elazar Broad (Mar 08)
Secunia Research: Foxit Reader JBIG2 Symbol Dictionary Processing Vulnerability Secunia Research (Mar 09)
[ GLSA 200903-13 ] MPFR: Denial of Service Robert Buchholz (Mar 09)
[ GLSA 200903-12 ] OptiPNG: User-assisted execution of arbitrary code Robert Buchholz (Mar 09)
[ GLSA 200903-11 ] PyCrypto: Execution of arbitrary code Robert Buchholz (Mar 09)
[ GLSA 200903-14 ] BIND: Incorrect signature verification Robert Buchholz (Mar 09)
[ GLSA 200903-15 ] git: Multiple vulnerabilties Robert Buchholz (Mar 09)
[ GLSA 200903-16 ] Epiphany: Untrusted search path Robert Buchholz (Mar 09)
[ GLSA 200903-17 ] Real VNC: User-assisted execution of arbitrary code Robert Buchholz (Mar 09)
[ GLSA 200903-18 ] Openswan: Insecure temporary file creation Robert Buchholz (Mar 09)
- Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation Paul Wouters (Mar 09)
  - Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation Robert Buchholz (Mar 10)
[ GLSA 200903-19 ] Xerces-C++: Denial of Service Robert Buchholz (Mar 09)
[ GLSA 200903-20 ] WebSVN: Multiple vulnerabilities Robert Buchholz (Mar 09)
DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability DDI_Vulnerability_Alert (Mar 09)
DDIVRT-2009-21 vBook Login Application Cross-site Scripting Vulnerability DDI_Vulnerability_Alert (Mar 09)
[ GLSA 200903-21 ] cURL: Arbitrary file access Tobias Heinlein (Mar 09)
Foxit Reader Multiple Vulnerabilities (CORE-2009-0218) Core Security Technologies Advisories (Mar 09)
List Charter John Cartwright (Mar 09)
SEC Consult SA-20090305-0 :: NextApp Echo XML Injection Vulnerability Bernhard Mueller (Mar 10)
SEC Consult SA-20090305-1 :: IBM Director CIM Server Remote Denial of Service Vulnerability Bernhard Mueller (Mar 10)
[ GLSA 200903-22 ] Ganglia: Execution of arbitrary code Robert Buchholz (Mar 10)
Multiple Vulnerabilities in iAntiVirus Carsten Eilers (Mar 10)
[ MDVSA-2009:070 ] openoffice.org security (Mar 10)
[USN-732-1] dash vulnerability Marc Deslauriers (Mar 10)
[USN-731-1] Apache vulnerabilities Marc Deslauriers (Mar 10)
AST-2009-002: Remote Crash Vulnerability in SIP channel driver Asterisk Security Team (Mar 10)
[ MDVSA-2009:071 ] kernel security (Mar 10)
[SECURITY] [DSA 1735-1] New znc packages fix privilege escalation Florian Weimer (Mar 10)
[ GLSA 200903-24 ] Shadow: Privilege escalation Pierre-Yves Rofes (Mar 10)
[ GLSA 200903-23 ] Adobe Flash Player: Multiple vulnerabilities Pierre-Yves Rofes (Mar 11)
Assurent VR - IBM Tivoli Storage Manager Express Backup Server Heap Corruption VR-Subscription-noreply (Mar 11)
[SECURITY] [DSA 1736-1] New mahara packages fix cross-site scripting Steffen Joeris (Mar 11)
[ISecAuditors Security Advisories] WordPress MU HTTP Header XSS Vulnerability ISecAuditors Security Advisories (Mar 11)
[SECURITY] [DSA 1737-1] New wesnoth packages fix several vulnerabilities Steffen Joeris (Mar 11)
Cisco Security Advisory: Cisco Unified Communications Manager IP Phone Personal Address Book Synchronizer Privilege Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 11)
[SECURITY] [DSA 1738-1] New curl packages fix arbitrary file access Nico Golde (Mar 11)
[ MDVSA-2009:072 ] perl-MDK-Common security (Mar 11)
[ GLSA 200903-25 ] Courier Authentication Library: SQL Injection vulnerability Pierre-Yves Rofes (Mar 11)
[ MDVSA-2009:073 ] sarg security (Mar 11)
[ MDVSA-2009:074 ] libneon0.27 security (Mar 11)
POP Peeper 3.4.0.0 Date Remote Buffer Overflow Vulnerability Krakow Labs (Mar 12)
[ GLSA 200903-26 ] TMSNC: Execution of arbitrary code Robert Buchholz (Mar 12)
[PT-2009-11] SlySoft Multiple Products ElbyCDIO.sys Denial of Service Valery Marchuk (Mar 12)
[ GLSA 200903-27 ] ProFTPD: Multiple vulnerabilities Pierre-Yves Rofes (Mar 12)
Access any album on any Facebook profile securityninja (Mar 12)
[USN-724-1] Squid vulnerability Jamie Strandboge (Mar 13)
rPSA-2009-0046-1 libpng rPath Update Announcements (Mar 13)
rPSA-2009-0045-1 glib rPath Update Announcements (Mar 13)
rPSA-2009-0040-1 tshark wireshark rPath Update Announcements (Mar 13)
rPSA-2009-0041-1 dhclient dhcp libdhcp4client rPath Update Announcements (Mar 13)
rPSA-2009-0042-1 curl rPath Update Announcements (Mar 13)
[USN-725-1] KMail vulnerability Jamie Strandboge (Mar 13)
BBC cybercrime probe backfires Ivan . (Mar 13)
- Re: BBC cybercrime probe backfires James Matthews (Mar 13)
  - Re: BBC cybercrime probe backfires Castigliola, Angelo (Mar 13)
    - Re: BBC cybercrime probe backfires T Biehn (Mar 13)
- Re: BBC cybercrime probe backfires Ron (Mar 14)
  - Re: BBC cybercrime probe backfires Larry Seltzer (Mar 14)
    - Re: BBC cybercrime probe backfires Ron (Mar 14)
  - Re: BBC cybercrime probe backfires Castigliola, Angelo (Mar 15)
- <Possible follow-ups>
- Re: BBC cybercrime probe backfires Elazar Broad (Mar 13)
  - Re: BBC cybercrime probe backfires T Biehn (Mar 13)
- Re: BBC cybercrime probe backfires Elazar Broad (Mar 15)
Apple iTunes DAAP Messages Handling Denial of Service Vulnerability secresearch () fortinet com (Mar 13)
[Positive Technologies SA: 2009-14] BLOG:CMS Cross-Site Scripting Vulnerability Valery Marchuk (Mar 13)
[Positive Technologies SA: 2009-20] A.CMS Multiple Vulnerabilities Valery Marchuk (Mar 13)
[Positive Technologies SA: 2009-15] Living CMS Cross-Site Scripting Vulnerability Valery Marchuk (Mar 13)
[SECURITY] [DSA 1739-1] New mldonkey packages fix information disclosure Florian Weimer (Mar 13)
[ MDVSA-2009:075 ] firefox security (Mar 13)
[ MDVSA-2009:076 ] avahi security (Mar 14)
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service Steffen Joeris (Mar 14)
[SECURITY] [DSA 1741-1] New psi packages fix denial of service Moritz Muehlenhoff (Mar 14)
JS-Fun with HTML deprecated tags Malformation 0000000 (Mar 14)
[Bkis-03-2009] Multiple Vulnerabilities found in Rapidleech rev.36 Bkis (Mar 14)
cryptographp v1.4: file contents disclosure bug Jan G.B. (Mar 15)
[ GLSA 200903-28 ] libpng: Multiple vulnerabilities Pierre-Yves Rofes (Mar 15)
The BBC acquired a botnet, but was it legal? - Update Ivan . (Mar 15)
- Re: The BBC acquired a botnet, but was it legal? - Update James Matthews (Mar 16)
- <Possible follow-ups>
- Re: The BBC acquired a botnet, but was it legal? - Update Matt (Mar 18)
  - Re: The BBC acquired a botnet, but was it legal? - Update A . L . M . Buxey (Mar 18)
    - Re: The BBC acquired a botnet, but was it legal? - Update Byron Sonne (Mar 18)
    - Re: The BBC acquired a botnet, but was it legal? - Update Stuart Dunkeld (Mar 19)
    - Re: The BBC acquired a botnet, but was it legal? - Update Byron Sonne (Mar 19)
    - Re: The BBC acquired a botnet, but was it legal? - Update Michal (Mar 19)
    - Re: The BBC acquired a botnet, but was it legal? - Update Byron Sonne (Mar 19)
    - Re: The BBC acquired a botnet, but was it legal? - Update James Matthews (Mar 19)
    - Re: The BBC acquired a botnet, but was it legal? - Update Matt Olson (Mar 18)
[SECURITY] [DSA 1742-1] New libsnd packages fix arbitrary code execution Nico Golde (Mar 16)
[Bkis-04-2009] GOM Encoder Heap-based Buffer Overflow Bkis (Mar 16)
NGENUITY-2009-005 OpenCart Order By Blind SQL Injection Adam Baldwin (Mar 16)
SSL MiTM on Windows Mohammad Hosein (Mar 16)
- Re: SSL MiTM on Windows BlackHawk (Mar 16)
- Re: SSL MiTM on Windows Francisco J . Gómez Rodríguez (Mar 16)
Google to base ads on surfing behaviour Bipin Gautam (Mar 16)
- Re: Google to base ads on surfing behaviour Nick FitzGerald (Mar 16)
  - Re: Google to base ads on surfing behaviour James Matthews (Mar 17)
  - Re: Google to base ads on surfing behaviour Stephen Menard (Mar 19)
YSTS 3.0 - Call for Papers Luiz Eduardo (Mar 16)
w32 SEH omelet shellcode stage Berend-Jan Wever (Mar 16)
[USN-735-1] GStreamer Base Plugins vulnerability Marc Deslauriers (Mar 16)
[USN-733-1] evolution-data-server vulnerability Marc Deslauriers (Mar 16)
[USN-737-1] libsoup vulnerability Marc Deslauriers (Mar 16)
[ GLSA 200903-29 ] BlueZ: Arbitrary code execution Pierre-Yves Rofes (Mar 16)
[USN-736-1] GStreamer Good Plugins vulnerabilities Marc Deslauriers (Mar 16)
[USN-738-1] GLib vulnerability Jamie Strandboge (Mar 16)
[USN-734-1] FFmpeg vulnerabilities Marc Deslauriers (Mar 16)
[ GLSA 200903-30 ] Opera: Multiple vulnerabilities Tobias Heinlein (Mar 17)
what is DNS response that 255.255.255.255? 김무성 (Mar 17)
- Re: what is DNS response that 255.255.255.255? mezgani ali (Mar 17)
- Re: what is DNS response that 255.255.255.255? Pablo Roberto (Mar 17)
[SECURITY] [DSA 1743-1] New libtk-img packages fix arbitrary code execution Steffen Joeris (Mar 17)
DEFCON London DC4420 March meeting - Thursday 19th March Major Malfunction (Mar 17)
[USN-739-1] Amarok vulnerabilities Marc Deslauriers (Mar 17)
[ GLSA 200903-31 ] libcdaudio: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 17)
[USN-740-1] NSS vulnerability Jamie Strandboge (Mar 17)
- Re: [USN-740-1] NSS vulnerability Delian Krustev (Mar 18)
iDefense Security Advisory 03.17.09: Autonomy KeyView Word Perfect File Parsing Buffer Overflow Vulnerability iDefense Labs (Mar 17)
- Re: iDefense Security Advisory 03.17.09: Autonomy KeyView Word Perfect File Parsing Buffer Overflow Vulnerability iDefense Labs (Mar 17)
Epic Web Honeypot v1.0c release Malformation 000000 (Mar 18)
[SECURITY] [DSA 1744-1] New weechat packages fix denial of service Nico Golde (Mar 18)
Layered Defense Research Advisory: Format String Vulnerablity in Symantec PcAnywhere v10-12.5 Deral Heiland (Mar 18)
[ GLSA 200903-32 ] phpMyAdmin: Multiple vulnerabilities Pierre-Yves Rofes (Mar 18)
[ISecAuditors Security Advisories] ModSecurity < 2.5.9 remote Denial of Service (DoS) ISecAuditors Security Advisories (Mar 19)
[USN-742-1] JasPer vulnerabilities Marc Deslauriers (Mar 19)
Secure Computing (McAfee) Smart Filter possible issue Daniel Sichel (Mar 19)
Command Execution in Hannon Hill Cascade Server Elliot Kendall (Mar 19)
Slides from uCon Security Conference 2009 available online uCon Security Conference (Mar 19)
- Re: Slides from uCon Security Conference 2009 available online Krakow Labs (Mar 23)
[ MDVSA-2009:060-1 ] nfs-utils security (Mar 19)
[USN-741-1] Thunderbird vulnerabilities Jamie Strandboge (Mar 19)
[ GLSA 200903-33 ] FFmpeg: Multiple vulnerabilities Pierre-Yves Rofes (Mar 19)
LAMPSecurity.org Capture the Flag Exercise Justin Klein Keane (Mar 19)
rPSA-2009-0050-1 ghostscript rPath Update Announcements (Mar 20)
LittleCMS vulnerabilities (OpenJDK, Firefox, GIMP, etc. impacted) Chris Evans (Mar 20)
Pixie CMS Multiple Vulnerabilities Justin Klein Keane (Mar 20)
Multiple Cookies combined to a single Set-Cookie response Phani (Mar 20)
- Re: Multiple Cookies combined to a single Set-Cookie response Michal Zalewski (Mar 20)
Inquira: Multiple Vulnerabilities Kristian Erik Hermansen (Mar 20)
[SECURITY] [DSA 1746-1] New ghostscript packages fix arbitrary code execution Steffen Joeris (Mar 20)
[ GLSA 200903-34 ] Amarok: User-assisted execution of arbitrary code Tobias Heinlein (Mar 20)
[SECURITY] [DSA 1747-1] New glib2.0 packages fix arbitrary code execution Steffen Joeris (Mar 21)
[SECURITY] [DSA 1748-1] New libsoup packages fix arbitrary code execution Steffen Joeris (Mar 21)
[SECURITY] [DSA 1745-1] New lcms packages fix arbitrary code execution Steffen Joeris (Mar 21)
[SECURITY] [DSA 1749-1] New Linux 2.6.26 packages fix several vulnerabilities dann frazier (Mar 21)
[ MDVSA-2009:077 ] pam security (Mar 21)
Suspected default hardcoded root account in D-Link embedded Linux for the DAP1353 router rembrandt (Mar 22)
- Re: Suspected default hardcoded root account in D-Link embedded Linux for the DAP1353 router Dan Lüdtke (Mar 22)
- Message not available
  - Re: Suspected default hardcoded root account in D-Link embedded Linux for the DAP1353 router rembrandt (Mar 22)
[SECURITY] [DSA 1750-1] New libpng packages fix several vulnerabilities Florian Weimer (Mar 22)
(no subject) benkei (Mar 22)
[SECURITY] [DSA 1751-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Mar 22)
Kaminsky: MS security assessment tool is a 'game changer' Ivan . (Mar 22)
- Re: Kaminsky: MS security assessment tool is a 'game changer' Fionnbharr (Mar 23)
  - Re: Kaminsky: MS security assessment tool is a 'game changer' James Matthews (Mar 23)
    - Re: Kaminsky: MS security assessment tool is a 'game changer' T Biehn (Mar 23)
    - Re: Kaminsky: MS security assessment tool is a 'game changer' John Lamb (Mar 25)
ExpressionEngine Persistent Cross-Site Scripting Adam Baldwin (Mar 22)
Suggesting a new defcon event: Hackers Parliamentary Debate or HPD Gadi Evron (Mar 23)
- Re: Suggesting a new defcon event: Hackers Parliamentary Debate or HPD T Biehn (Mar 23)
FreeBSD/OS X kernel bug dump mu-b (Mar 23)
- Re: FreeBSD/OS X kernel bug dump mu-b (Mar 24)
  - Re: FreeBSD/OS X kernel bug dump Rubén Camarero (Mar 24)
[ MDVSA-2009:078 ] evolution-data-server security (Mar 23)
CORE-2009-0122: HP OpenView Buffer Overflows CORE Security Technologies Advisories (Mar 23)
[ MDVSA-2009:079 ] postgresql security (Mar 23)
[USN-744-1] LittleCMS vulnerabilities Marc Deslauriers (Mar 23)
[USN-743-1] Ghostscript vulnerabilities Marc Deslauriers (Mar 23)
[SECURITY] [DSA 1752-1] New webcit packages fix potential remote code execution Florian Weimer (Mar 23)
[ GLSA 200903-36 ] MLDonkey: Information disclosure Pierre-Yves Rofes (Mar 23)
[ GLSA 200903-37 ] Ghostscript: User-assisted execution of arbitrary code Pierre-Yves Rofes (Mar 23)
[ GLSA 200903-35 ] Muttprint: Insecure temporary file usage Pierre-Yves Rofes (Mar 23)
Idea cellular (ideacellular.com) SQL Injection vulnerability in Corporate Account Login null null (Mar 24)
- Re: Idea cellular (ideacellular.com) SQL Injectionvulnerability in Corporate Account Login Anders Klixbull (Mar 24)
nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 24)
- Re: nVidia.com [Url Redirection flaw] Martin Aberastegue (Mar 25)
  - nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 25)
    - Re: nVidia.com [Url Redirection flaw] Valdis . Kletnieks (Mar 25)
- <Possible follow-ups>
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
  - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
    - Re: nVidia.com [Url Redirection flaw] yersinia (Mar 25)
    - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 25)
    - Re: nVidia.com [Url Redirection flaw] Chris Evans (Mar 25)
    - Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 25)
    - Re: nVidia.com [Url Redirection flaw] Nick FitzGerald (Mar 26)
    - Re: nVidia.com [Url Redirection flaw] Nick FitzGerald (Mar 26)
    - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 26)
  - Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 24)
    - Re: nVidia.com [Url Redirection flaw] ascii (Mar 24)
    - Re: nVidia.com [Url Redirection flaw] Eitan Adler (Mar 25)
    - Re: nVidia.com [Url Redirection flaw] Jan G.B. (Mar 25)
  - Re: nVidia.com [Url Redirection flaw] Anders Klixbull (Mar 25)
  - Re: nVidia.com [Url Redirection flaw] Michal (Mar 25)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
  - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
  - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
  - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 24)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 25)
  - Re: nVidia.com [Url Redirection flaw] Anders Klixbull (Mar 25)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 25)
  - Re: nVidia.com [Url Redirection flaw] Anders Klixbull (Mar 25)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 25)
  - Fwd: nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 25)
    - Re: Fwd: nVidia.com [Url Redirection flaw] Jeremy Brown (Mar 25)
    - Re: Fwd: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 25)
- Re: Fwd: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
  - Fwd: Fwd: nVidia.com [Url Redirection flaw] Lorenzo Vogelsang (Mar 26)
- Re: Fwd: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
  - Re: Fwd: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 26)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
  - Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 26)
    - Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 26)
- Re: nVidia.com [Url Redirection flaw] mac . user (Mar 26)
ZDI-09-014: Adobe Acrobat getIcon() Stack Overflow Vulnerability ZDI Disclosures (Mar 24)
- Re: ZDI-09-014: Adobe Acrobat getIcon() Stack Overflow Vulnerability Jeremy Brown (Mar 24)
  - Re: ZDI-09-014: Adobe Acrobat getIcon() StackOverflow Vulnerability Larry Seltzer (Mar 24)
    - Re: ZDI-09-014: Adobe Acrobat getIcon()StackOverflow Vulnerability Mike N. (Mar 25)
Re: ZDI-09-014: Adobe Acrobat getIcon() StackOverflow Vulnerability Juha-Matti Laurio (Mar 24)
iDefense Security Advisory 03.24.09: Adobe Reader and Acrobat JBIG2 Encoded Stream Heap Overflow Vulnerability iDefense Labs (Mar 24)
[ GLSA 200903-38 ] Squid: Multiple Denial of Service vulnerabilities Pierre-Yves Rofes (Mar 24)
[SECURITY] [DSA 1753-1] End-of-life announcement for Iceweasel in oldstable Moritz Muehlenhoff (Mar 24)
[IVIZ-09-001] Adobe Acrobat Reader Memory Corruption Vulnerability iViZ Security Advisories (Mar 25)
Secunia Research: Adobe Reader JBIG2 Symbol Dictionary Buffer Overflow Secunia Research (Mar 25)
Cisco Security Advisory: Cisco IOS cTCP Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software WebVPN and SSLVPN Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Secure Copy Privilege Escalation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
[SECURITY] [DSA 1745-2] New lcms packages fix regression Steffen Joeris (Mar 25)
phishing attacks against ISPs (also with Google translations) Gadi Evron (Mar 25)
- Re: phishing attacks against ISPs (also with Google translations) M.B.Jr. (Mar 26)
  - Re: phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
    - Re: phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
  - Re: phishing attacks against ISPs (also with Google translations) Gadi Evron (Mar 27)
    - Re: [funsec] phishing attacks against ISPs (also with Google translations) Valdis . Kletnieks (Mar 27)
    - Re: [funsec] phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
    - Re: [funsec] phishing attacks against ISPs (also with Google translations) Rubén Camarero (Mar 27)
    - Re: [funsec] phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
    - Re: [funsec] phishing attacks against ISPs (also with Google translations) T Biehn (Mar 27)
Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
Cisco Security Advisory: Cisco IOS Software Multiple Features IP Sockets Vulnerability Cisco Systems Product Security Incident Response Team (Mar 25)
[SECURITY] [DSA 1755-1] New systemtap packages fix local privilege escalation Moritz Muehlenhoff (Mar 25)
[ GLSA 200903-39 ] pam_krb5: Privilege escalation Pierre-Yves Rofes (Mar 25)
[Bkis-05-2009] PowerCHM Stack-based Buffer Overflow Bkis (Mar 26)
Security contact at Yahoo! Nam Nguyen (Mar 26)
- Re: Security contact at Yahoo! James Rankin (Mar 26)
  - Re: Security contact at Yahoo! Nam Nguyen (Mar 26)
    - Re: Security contact at Yahoo! Jan G.B. (Mar 26)
Frog CMS Multiple Vulnerabilities Justin C. Klein Keane (Mar 26)
Re: phishing attacks against ISPs (also with Google translations) mac . user (Mar 26)
- <Possible follow-ups>
- Re: phishing attacks against ISPs (also with Google translations) mac . user (Mar 27)
iDefense Security Advisory 03.26.09: Sun Java Runtine Environment (JRE) Type1 Font Parsing Integer Signedness Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Web Start (JWS ) GIF Decoding Heap Corruption Vulnerability iDefense Labs (Mar 26)
[USN-746-1] xine-lib vulnerability Marc Deslauriers (Mar 26)
[USN-747-1] ICU vulnerability Marc Deslauriers (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Runtine Environment (JRE) GIF Decoding Heap Corruption Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Web Start (JWS ) PNG Decoding Integer Overflow Vulnerability iDefense Labs (Mar 26)
iDefense Security Advisory 03.26.09: Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability iDefense Labs (Mar 26)
[USN-748-1] OpenJDK vulnerabilities Kees Cook (Mar 26)
[ MDVSA-2009:080 ] glib2.0 security (Mar 26)
Novell Netstorage Multiple Vulnerabilities Bugs NotHugs (Mar 27)
- Re: Novell Netstorage Multiple Vulnerabilities Jeremy Brown (Mar 27)
- <Possible follow-ups>
- Re: Novell Netstorage Multiple Vulnerabilities mrdkaaa (Mar 28)
Aurora Nutritive Analysis Module Multiple XSS Bugs NotHugs (Mar 27)
Re: [funsec] phishing attacks against ISPs (also with Google translations) Valdis' Mustache (Mar 27)
[ MDVSA-2009:081 ] libsoup security (Mar 27)
[USN-745-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Mar 28)
[ GLSA 200903-40 ] Analog: Denial of Service Pierre-Yves Rofes (Mar 29)
[SECURITY] [DSA 1756-1] New xulrunner packages fix multiple vulnerabilities Noah Meyerhans (Mar 29)
Check Point Firewall-1 PKI Web Service HTTP Header Remote Overflow Bugs NotHugs (Mar 30)
[ MDVSA-2009:082 ] krb5 security (Mar 30)
[USN-749-1] libsndfile vulnerability Marc Deslauriers (Mar 30)
[SECURITY] [DSA 1758-1] New nss-ldapd packages fix information disclosure Moritz Muehlenhoff (Mar 30)
[ GLSA 200903-41 ] gedit: Untrusted search path Pierre-Yves Rofes (Mar 30)
Positron Security Advisory #2009-000: Multiple Vulnerabilities in MapServer v5.2.1 and v4.10.3 Positron Security (Mar 30)
ZDI-09-015: Mozilla Firefox XUL _moveToEdgeShift() Memory Corruption Vulnerability ZDI Disclosures (Mar 30)
[SECURITY] [DSA 1757-1] New auth2db packages fix SQL injection Steffen Joeris (Mar 30)
CVE-2009-0790: ISAKMP DPD Remote Vulnerability with Openswan & Strongswan IPsec Paul Wouters (Mar 30)
Funny bugs in Windows Server 2003 exceed (Mar 30)
- Re: Funny bugs in Windows Server 2003 Rubén Camarero (Mar 30)
DeepSec 2009 - Call for Papers is open DeepSec Conference (Mar 30)
Zabbix Multiple Frontend CSRF (Password reset & command execution) Adam Baldwin (Mar 30)
[USN-750-1] OpenSSL vulnerability Jamie Strandboge (Mar 30)
Black Hat USA Videos available to D/L jmoss (Mar 31)
Cisco ASA5520 Web VPN Host Header XSS Bugs NotHugs (Mar 31)
CUPS port 631 how to hack Mark Sec (Mar 31)
[Positive Technologies SA 2009-09] Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation Vulnerabilities Valery Marchuk (Mar 31)
Random HTTP-Requests Jan G.B. (Mar 31)
- Re: Random HTTP-Requests Andres Riancho (Mar 31)
  - Re: Random HTTP-Requests Jan G.B. (Mar 31)
CORE-2009-0108: Multiple vulnerabilities in Sun Calendar Express Web Server CORE Security Technologies Advisories (Mar 31)
[SECURITY] [DSA 1759-1] New strongswan packages fix denial of service Steffen Joeris (Mar 31)
[SECURITY] [DSA 1760-1] New openswan packages fix denial of service Steffen Joeris (Mar 31)
fooobar in source Tonu Samuel (Mar 31)
- Re: fooobar in source Rubén Camarero (Mar 31)
VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim VMware Security team (Apr 01)
Introducing RMBSS - "Risk Metrics Budgetary Scoring System" J. Oquendo (Apr 01)

Previous period

Next period