282 messages starting May 01 09 and ending May 31 09 Date index | Thread index | Author index
Durzosploit v0.1 alpha Benjilenoob [SECURITY] [DSA 1784-1] New freetype packages fix arbitrary code execution Nico Golde multiple vendor - PF NULL pointer dereference rembrandt Re: Anti virus installations on Windows servers Pavel Kankovsky [ MDVSA-2009:102 ] apache security [SECURITY] [DSA 1785-1] New wireshark packages fix several vulnerabilities Moritz Muehlenhoff Re: Anti virus installations on Windows servers T Biehn PayPal donation form reveals beneficiary's email address Eitan Caspi
Re: Full-Disclosure Digest, Vol 51, Issue 2 (Action Required) postmaster Re: PayPal donation form reveals beneficiary's email address Frank Dietrich [ GLSA 200905-01 ] Asterisk: Multiple vulnerabilities Robert Buchholz Re: PayPal donation form reveals beneficiary's email address Eitan Caspi Re: Anti virus installations on Windows servers Pavel Kankovsky
Re: PayPal donation form reveals beneficiary's email address ghost [SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities dann frazier Possible DoS in TamperData Add-on v10.1.0 for FireFox 3.0.8 Xia Shing Zee [SECURITY] [DSA 1786-1] New acpid packages fix denial of service Steffen Joeris “Cross-Site Scripting” vul nerability in MyBB 1.4.5 Jacques Copeau Re: Possible DoS in TamperData Add-on v10.1.0 for FireFox 3.0.8 Valdis . Kletnieks Re: “Cross-Site Scripting” vul nerability in MyBB 1.4.5 Andrew Farmer Grabit <= 1.7.2 beta 3 NZB file parsing stack overflow Niels Teusink Re: [Full-disclosure] “Cross-Site Scripting” vul nerability in MyBB 1.4.5 Micheal Cottingham
Call for Papers Hack.lu 2009 hack.lu 2009 info Re: [Full-disclosure] “Cross-Site Scripting” vul nerability in MyBB 1.4.5 Jacques Copeau Re: Full-disclosure Anti virus installations on Windows servers mbs [ MDVSA-2009:105 ] memcached security Secunia Research: IBM Tivoli Storage Manager Remote Agent Service Buffer Overflows Secunia Research [USN-769-1] libwmf vulnerability Marc Deslauriers Big up to torpig authors T Biehn [SECURITY] [DSA 1787-1] New quagga packages fix denial of service Florian Weimer [USN-770-1] ClamAV vulnerability Jamie Strandboge
Re: Full-disclosure Anti virus installations on Windows servers T Biehn Re: [SECURITY] [DSA 1787-1] New quagga packages fixdenial of service Nicolas Lidzborski Re: Big up to torpig authors John Lamb [SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities Thijs Kinkhorst [RT-SA-2009-003] IceWarp WebMail Server: SQL Injection in Groupware Component RedTeam Pentesting GmbH [RT-SA-2009-002] IceWarp WebMail Server: User-assisted Cross Site Scripting in RSS Feed Reader RedTeam Pentesting GmbH [RT-SA-2009-004] IceWarp WebMail Server: Client-Side Specification of "Forgot Password" eMail Content RedTeam Pentesting GmbH [RT-SA-2009-001] IceWarp WebMail Server: Cross Site Scripting in Email View RedTeam Pentesting GmbH New Browser Security Paper: Why Silent Updates Boost Security Stefan Frei [ MDVSA-2009:106 ] libwmf security
[SECURITY] [DSA 1790-1] New xpdf packages fix multiple vulnerabilities Noah Meyerhans [SECURITY] [DSA 1791-1] New moin packages fix cross-site scripting Steffen Joeris [SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities Noah Meyerhans [SECURITY] [DSA 1793-1] New kdegraphics packages fix multiple vulnerabilities Noah Meyerhans EUSecWest 2009 (May27/28) London Agenda and PacSec 2009 (Nov 4/5) Tokyo CFP deadline: June 1 2009 Dragos Ruiu Howto Simulate a BotNet ? Mark Sec [ MDVSA-2009:107 ] acpid security
[NETRAGARD SECURITY ADVISORY] [AirCell GoGo Inflight Internet -- No Encryption ][NETRAGARD-2009042] Netragard Advisories Re: Howto Simulate a BotNet ? Valdis . Kletnieks Re: Howto Simulate a BotNet ? Aadil Noorkhan Update: [TZO-15-2009] Aladdin eSafe generic bypass - Forced release Thierry Zoller Re: [NETRAGARD SECURITY ADVISORY] [AirCell GoGo Inflight Internet -- No Encryption ][NETRAGARD-2009042] Cedric Blancher [SECURITY] [DSA 1794-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier [SECURITY] [DSA 1795-1] New ldns packages fix arbitrary code execution Devin Carraway Secunia Research: Garmin Communicator Plug-In Domain Locking Security Bypass Secunia Research [ MDVSA-2009:108 ] zsh security Re: Howto Simulate a BotNet ? Mark Sec Re: Howto Simulate a BotNet ? Jan G.B. mb_ereg(i)_replace() evaluate replacement string vulnerability IEhrepus [USN-773-1] Pango vulnerability Marc Deslauriers [USN-771-1] libmodplug vulnerabilities Marc Deslauriers [USN-772-1] MPFR vulnerability Marc Deslauriers Re: Howto Simulate a BotNet ? T Biehn
Re: Howto Simulate a BotNet ? M.B.Jr. Re: Howto Simulate a BotNet ? Shyaam [TOOL] moth - vulnerable web application vmware Andres Riancho Is javascript-analytics.com related to mebroot ? exploit dev [SECURITY] [DSA 1796-1] New libwmf packages fix denial of service Nico Golde MagpieRSS Multiple XSS Vulnerabilities Justin C. Klein Keane Drupal 5.17 Taxonomy Module XSS Vulnerability Justin C. Klein Keane Team SHATTER Security Advisory: Oracle Database SQL Injection vulnerability in LT.ROLLBACKWORKSPACE Shatter
Re: Howto Simulate a BotNet ? Tomas L. Byrnes Re: Howto Simulate a BotNet ? Shyaam Request : Microsoft Forefront (all) anybody? Thierry Zoller Changes : [TZO-17-2009]Trendmicro multiple bypass/evasions Thierry Zoller [TZO-20-2009] AVG ZIP evasion / bypass Thierry Zoller [TZO-21-2009] Fprot CAB bypass / evasion Thierry Zoller [SECURITY] [DSA 1797-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff Re: [SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities Kennith Greenwood
[ MDVSA-2009:109 ] quagga security Major Greek bank sites with SSL vulnerable to XSS and open redirects xssed Re: Major Greek bank sites with SSL vulnerable to XSS and open redirects James Matthews
[Bkis-08-2009] Microchip MPLAB IDE Buffer Overflow Vulnerability Bkis Re: Major Greek bank sites with SSL vulnerable to XSS and open redirects Paul Schmehl Re: Major Greek bank sites with SSL vulnerable to XSS and open redirects silky Re: Major Greek bank sites with SSL vulnerable to XSS and open redirects Valdis . Kletnieks Re: [SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities Michael Simpson Re: Major Greek bank sites with SSL vulnerable toXSS and open redirects Mike N. [SECURITY] [DSA 1798-1] New pango1.0 packages fix arbitrary code execution Steffen Joeris List Charter John Cartwright [USN-774-1] MoinMoin vulnerability Marc Deslauriers [SECURITY] [DSA 1799-1] New qemu packages fix several vulnerabilities Moritz Muehlenhoff Re: Major Greek bank sites with SSL vulnerable to XSS and open redirects silky
Syhunt: A-A-S (Application Access Server) Multiple Security Vulnerabilities Felipe M. Aragon Exploit sweatshop open for business! Exploit Sweatshop Re: Universal XSS in all Google Services Nam Nguyen FormMail 1.92 Multiple Vulnerabilities ascii Security Advisory: Banks in Australia militan c7 CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities [Updated] Williams, James K Re: [SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities Valdis . Kletnieks iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Stack Buffer Overflow Vulnerability iDefense Labs iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Heap Corruption Vulnerability iDefense Labs iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Stack Overflow iDefense Labs iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT 4.0 Importer Multiple Stack Buffer Overflow Vulnerabilities iDefense Labs LAMPSecurity.org Capture the Flag Exercise Justin C. Klein Keane iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT95 Import Multiple Stack Buffer Overflow Vulnerabilities iDefense Labs iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT95 Import Multiple Stack Buffer Overflow Vulnerabilities iDefense Labs [USN-775-1] Quagga vulnerability Kees Cook [USN-776-1] KVM vulnerabilities Kees Cook iDefense Security Advisory 05.12.09: Microsoft PowerPoint Build List Memory Corruption Vulnerability iDefense Labs iDefense Security Advisory 05.12.09: Microsoft PowerPoint Notes Container Heap Corruption Vulnerability iDefense Labs iDefense Security Advisory 05.12.09: Microsoft PowerPoint Integer Overflow Vulnerability iDefense Labs [ MDVSA-2009:110 ] squirrelmail security
[ MDVSA-2009:111 ] firefox security Re: FormMail 1.92 Multiple Vulnerabilities ascii [ MDVSA-2009:111-1 ] firefox security [USN-776-2] KVM regression Marc Deslauriers SUPPORT exploitcritics.blogspot.com :) Exploit Critics Re: FormMail 1.92 Multiple Vulnerabilities David Cantrell Secunia Research: Microsoft PowerPoint Atom Parsing Buffer Overflows Secunia Research ZDI-09-020: Microsoft Office PowerPoint Notes Container Heap Overflow Vulnerability ZDI Disclosures ZDI-09-019: Microsoft Office PowerPoint OutlineTextRefAtom Parsing Memory Corruption Vulnerability ZDI Disclosures Re: SUPPORT exploitcritics.blogspot.com :) Exploit Sweatshop [ MDVSA-2009:112 ] ipsec-tools security
Re: SUPPORT exploitcritics.blogspot.com :) Pete Licoln iDefense Security Advisory 05.14.09: Apple Mac OS X xnu Kernel workqueue_additem/workqueue_removeitem Index Validation Vulnerability iDefense Labs Troj/Qbot-B Robert Hudock
eggdrop/windrop remote crash vulnerability Thomas Sader n.runs-SA-2009.001 - OS X CFNetwork advisory security Re: eggdrop/windrop remote crash vulnerability Nico Golde Snort Sigs for ISC Twitter/Google Diary Annoucements John Jacobs ISC Twitter/Google Snort Signatures John Jacobs Re: Howto Simulate a BotNet ? Mark Sec IIS6 + webdav and unicode rides again in 2009 Kingcope Re: IIS6 + webdav and unicode rides again in 2009 Giany Re: IIS6 + webdav and unicode rides again in 2009 Jeremy Brown iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Integer Overflow Vulnerabilities iDefense Labs Re: IIS6 + webdav and unicode rides again in 2009 Thierry Zoller Re: Howto Simulate a BotNet ? M.B.Jr. iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Integer Overflow Vulnerability iDefense Labs iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Buffer Overflow Vulnerability iDefense Labs iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Spreadsheet Buffer Overflow Vulnerabilities iDefense Labs Re: IIS6 + webdav and unicode rides again in 2009 Thierry Zoller
WinAppDbg module v1.1 is out! Mario Alejandro Vilas Jerez [SECURITY] [DSA 1800-1] New Linux 2.6.26 packages fix several vulnerabilities dann frazier rPSA-2009-0084-1 kernel rPath Update Announcements Re: [SPAM] eggdrop/windrop remote crash vulnerability Matthew S. Hallacy
Who is destroying our internet? James Matthews Re: Who is destroying our internet? A . L . M . Buxey [ MDVSA-2009:113 ] cyrus-sasl security PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) Piotr Bania Re: Who is destroying our internet? Michael Holstein [ MDVSA-2009:114 ] ipsec-tools security [ MDVSA-2009:115 ] phpMyAdmin security [ MDVSA-2009:116 ] gnutls security [TZO-23-2009] Avira antivir generic evasion of heuristics (for PDF) Thierry Zoller [TZO-22-2009] Bitdefender generic evasion of heuristics (for PDF) Thierry Zoller DEFCON London - DC4420 - this Thursday 21st May 2009 Major Malfunction Drupal 6 CCK Module XSS Vulnerability Justin C. Klein Keane
[ MDVSA-2009:117 ] ntp security [ MDVSA-2009:118 ] kernel security [ MDVSA-2009:119 ] kernel security [USN-777-1] Ntp vulnerabilities Jamie Strandboge Drupal 6.12 (core) User Module XSS Vulnerability Justin Klein Keane STEAM (Valve) - Phishing and Cross-site Scripting in internal browser Gabriel Lima STEAM (Valve) - Phishing and Cross-site Scripting in internal browser Gabriel Lima
FFSpy, a firefox malware PoC saphex [SECURITY] [DSA 1801-1] New ntp packages fix several vulnerabilities Thijs Kinkhorst [SECURITY] [DSA 1802-1] New squirrelmail packages fix several vulnerabilities Thijs Kinkhorst rPSA-2009-0086-1 postgresql postgresql-contrib postgresql-server rPath Update Announcements ZDI-09-022: Apple Safari Malformed SVGList Parsing Code Execution Vulnerability ZDI Disclosures ZDI-09-023: Apple OS X ATSServer Compact Font Format Parsing Memory Corruption Vulnerability ZDI Disclosures Cisco Security Advisory: CiscoWorks TFTP Directory Traversal Vulnerability Cisco Systems Product Security Incident Response Team [SECURITY] [DSA 1804-1] New ipsec-tools packages fix denial of service Nico Golde [SECURITY] [DSA 1803-1] New nsd packages fix denial of service Thijs Kinkhorst iDefense Security Advisory 05.20.09: IBM AIX libc MALLOCDEBUG File Overwrite Vulnerability iDefense Labs CORE-2009-0109 - Multiple XSS in Sun Communications Express CORE Security Technologies Advisories
[ MDVSA-2009:120 ] openssl security [ MDVSA-2009:121 ] lcms security
DDIVRT-2009-25 IPsession SQL Injection Vulnerability DDI_Vulnerability_Alert OWASP LiveCD Vulnerabilities Brigette DéFaveur [SECURITY] [DSA 1802-2] New squirrelmail packages correct incomplete fix Thijs Kinkhorst [TZO-24-2009] Panda generic evasion (CAB) Thierry Zoller [TZO-25-2009] Panda generic evasion (TAR) Thierry Zoller IPFilter (ippool) 4.1.31 lib/load_http.c buffer overflow Maksymilian Arciemowicz Re: OWASP LiveCD Vulnerabilities Fionnbharr [SECURITY] [DSA 1805-1] New pidgin packages fix several vulnerabilities Moritz Muehlenhoff
[ MDVSA-2009:122 ] squirrelmail security [ MDVSA-2009:122 ] squirrelmail security
Re: OWASP LiveCD Vulnerabilities Tomas L. Byrnes Re: OWASP LiveCD Vulnerabilities Herman A. Junge BASE - Persistent and Reflective XSS J [SECURITY] [DSA 1806-1] New cscope packages fix arbitrary code execution Moritz Muehlenhoff Vulnerability Assessment mamo [ GLSA 200905-02 ] Cscope: User-assisted execution of arbitrary code Pierre-Yves Rofes [ GLSA 200905-03 ] IPSec Tools: Denial of Service Alex Legler [ GLSA 200905-04 ] GnuTLS: Multiple vulnerabilities Alex Legler Secunia Research: Sun Solaris "sadmind" Buffer Overflow Vulnerability Secunia Research Secunia Research: Sun Solaris "sadmind" Integer Overflow Vulnerability Secunia Research [ GLSA 200905-05 ] FreeType: Multiple vulnerabilities Alex Legler [ GLSA 200905-06 ] acpid: Denial of Service Pierre-Yves Rofes Re: Vulnerability Assessment Tomas L. Byrnes
Re: FFSpy, a firefox malware PoC FUDder Guy PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs Piotr Bania Re: PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs Thierry Zoller Re: PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs Piotr Bania Re: PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs Thierry Zoller Re: FFSpy, a firefox malware PoC FUDder Guy Soulseek * P2P Remote Distributed Search Code Execution laurent gaffie [ GLSA 200905-07 ] Pidgin: Multiple vulnerabilities Alex Legler AusCERT 2009 conference - audio recordings Mike Dee Arcade Trade Script XSS SmOk3 Web App Version detection using fingerprinting dd Re: FFSpy, a firefox malware PoC Fosforo
Re: Soulseek * P2P Remote Distributed Search Code Execution Pete Licoln Re: FFSpy, a firefox malware PoC Shell Code Re: FFSpy, a firefox malware PoC James Matthews [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Thierry Zoller Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Thierry Zoller SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability Bernhard Mueller SEC Consult SA-20090525-0 :: Nortel Contact Center Manager Server Authentication Bypass Vulnerability Bernhard Mueller SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability Bernhard Mueller SEC Consult SA-20090525-2 :: SonicWALL Global Security Client Local Privilege Escalation Vulnerability Bernhard Mueller SEC Consult SA-20090525-1 :: Nortel Contact Center Manager Server Password Disclosure Vulnerability Bernhard Mueller Re: FFSpy, a firefox malware PoC Shell Code Re: FFSpy, a firefox malware PoC David Blanc [ GLSA 200905-08 ] NTP: Remote execution of arbitrary code Alex Legler Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Thierry Zoller Re: FFSpy, a firefox malware PoC saphex Re: FFSpy, a firefox malware PoC saphex [IMF 2009] 3rd Call - Deadline Extended Oliver Goebel Drupal 6 Content Access Module XSS Justin Klein Keane
W3af ninja training class in NYC Michelangelo Sidagni iKAT - The Interactive Kiosk Attack Tool v2.0 Released - http://ikat.ha.cked.net Paul Craig Re: iKAT - The Interactive Kiosk Attack Tool v2.0 Released - http://ikat.ha.cked.net Sebastian Krahmer Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Jim Parkhurst Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Thierry Zoller [ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code Alex Legler Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Stuart Dunkeld Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Vladimir '3APA3A' Dubrovin Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Thierry Zoller [ MDVSA-2009:123 ] opensc security Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Michal Zalewski Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Jim Parkhurst
Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Chris Evans [TZO-27-2009] Firefox Denial of Service (Keygen) Thierry Zoller Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Jeremy Brown Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Pete Licoln [Bkis-09-2009] XSS vulnerability in 'Monitor_Bandwidth' - PRTG Traffic Grapher Bkis rPSA-2009-0091-1 cyrus-sasl cyrus-sasl-server rPath Update Announcements rPSA-2009-0092-1 ntp ntp-utils rPath Update Announcements rPSA-2009-0095-1 tshark wireshark rPath Update Announcements ZDI-09-021: Apple QuickTime PICT Unspecified Tag Heap Overflow Vulnerability ZDI Disclosures Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) OTB Survey: "MIME/Content-Type-Sniffing" Issues in Image Uploads in Forum Scripts Jacques Copeau Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Tavis Ormandy Drupal Embedded Media Field Module Multiple XSS Justin C. Klein Keane Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG) Chris Evans HackersBlog: WhiteHat Scum whitehatscum Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Tavis Ormandy CORE-2009-0401 - StoneTrip S3DPlayers remote command injection CORE Security Technologies Advisories Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Thierry Zoller Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Tavis Ormandy Re: HackersBlog: WhiteHat Scum RoMeO Re: [TZO-27-2009] Firefox Denial of Service (Keygen) Nico Golde Whitepaper Jared DeMott
Re: HackersBlog: WhiteHat Scum Jeremy Brown Re: HackersBlog: WhiteHat Scum Nelson Brito VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues VMware Security team FFSpy Buster : Duarte Silva announces that the security of most software allowing plugins such as vim, emacs, gnome, eclipse, etc. is flawed David Blanc
Is FFSpy a hoax? FFSpy Buster Re: Is FFSpy a hoax? Thierry Zoller Re: Whitepaper Jeffrey Walton [Low-Hanging Fruit] Craigsphone Transcoder Open URL Redirection Jeremi Gosney Re: Whitepaper Ahmed Sheipani
Re: Whitepaper Jared DeMott Re: Is FFSpy a hoax? saphex BASE - 3 Persistent Cross Site Scripting Vulnerabilities Jabra CFP 26C3 / 26th Chaos Communication Congress fukami [ MDVSA-2009:124 ] apache security [ MDVSA-2009:125 ] wireshark security
RSS Feed
About List
All Lists
Previous period