Home page logo
/

386 messages starting Nov 30 09 and ending Nov 14 09
Date index | Thread index | Author index

Adam Laurie

Announce: RFIDIOt-1.0a released - November 2009 Adam Laurie (Nov 30)

Alex Legler

[ GLSA 200911-01 ] Horde: Multiple vulnerabilities Alex Legler (Nov 06)
[ GLSA 200911-02 ] Sun JDK/JRE: Multiple vulnerabilites Alex Legler (Nov 17)
[ GLSA 200911-05 ] Wireshark: Multiple vulnerabilities Alex Legler (Nov 25)
[ GLSA 200911-06 ] PEAR Net_Traceroute: Command injection Alex Legler (Nov 26)

Alice Kaerast

Quick.Cart and Quick.CMS CSRF Vulnerabilities Alice Kaerast (Nov 24)

Ali Raheem

Re: Software developer looks at CRU code Ali Raheem (Nov 30)

Anders Klixbull

Re: Hash Anders Klixbull (Nov 06)
Re: more on that Anders Klixbull (Nov 25)

Andrea Purificato

Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others Andrea Purificato (Nov 30)

Andrew Farmer

Re: ICMPv4/IP fuzzer prototype. Andrew Farmer (Nov 23)
Re: more on that Andrew Farmer (Nov 26)

Andrzej Targosz

CONFidence 2.0, schedule online, last time to register. Andrzej Targosz (Nov 06)

Anıl Kurmuş

Re: SSL/TLS MiTM PoC Anıl Kurmuş (Nov 11)

Anthony Desnos

iAWACS 2010 CFP Anthony Desnos (Nov 17)

Asterisk Security Team

AST-2009-008: SIP responses expose valid usernames Asterisk Security Team (Nov 04)
AST-2009-009: Cross-site AJAX request vulnerability Asterisk Security Team (Nov 04)
AST-2009-010: RTP Remote Crash Vulnerability Asterisk Security Team (Nov 30)

autonomous

1/14 autonomous (Nov 17)

Benji

Re: ** FreeBSD local r00t zeroday Benji (Dec 01)

bk

Re: ** FreeBSD local r00t zeroday bk (Dec 01)

Bkis

[Bkis-12-2009] eoCMS SQL injection vulnerability - Bkis Report Bkis (Nov 05)
[Bkis-13-2009] e107 Multiple Vulnerabilities Bkis (Nov 23)

BlackHawk

Re: Apple ptrace panic PoC - R.I.P str0ke BlackHawk (Nov 04)

BMF

Re: Microsoft confirms first Windows 7 zero-day bug BMF (Nov 17)
Re: The cyber security intelligence community will never be the same BMF (Nov 17)

Bogdan Calin

PHP "multipart/form-data" denial of service Bogdan Calin (Nov 20)
Re: PHP "multipart/form-data" denial of service Bogdan Calin (Nov 25)

Bugs NotHugs

Bractus SunTrack Multiple XSS Bugs NotHugs (Nov 04)
e-Courier Tracking Site Multiple Script UserGUID Parameter XSS Bugs NotHugs (Nov 04)
HP curiosity and vulnerability Bugs NotHugs (Nov 12)
AssetsSoSimple supplier_admin.php Supplier Field XSS Bugs NotHugs (Nov 19)
Auto Manager admin.cgi Multiple Field XSS Bugs NotHugs (Nov 19)

Byron Sonne

Re: How Prosecutors Wiretap Wall Street Byron Sonne (Nov 04)
Re: How Prosecutors Wiretap Wall Street Byron Sonne (Nov 04)

Chris

Re: How Prosecutors Wiretap Wall Street Chris (Nov 06)
Re: How Prosecutors Wiretap Wall Street Chris (Nov 06)
Re: How Prosecutors Wiretap Wall Street Chris (Nov 06)
Re: How Prosecutors Wiretap Wall Street Chris (Nov 06)

Christophe Devine

MuPDF pdf_shade4.c multiple stack-based buffer overflows Christophe Devine (Nov 28)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability Cisco Systems Product Security Incident Response Team (Nov 09)

Cody Robertson

Re: ** FreeBSD local r00t zeroday Cody Robertson (Dec 01)

Context IS - Disclosure

Context IS Advisory - Autocomplete Data Theft in Mozilla Firefox Context IS - Disclosure (Nov 04)

CORE Security Technologies Advisories

CORE-2009-0912: Blender .blend Project Arbitrary Command Execution CORE Security Technologies Advisories (Nov 05)
CORE-2009-0814: HP Openview NNM 7.53 Invalid DB Error Code vulnerability CORE Security Technologies Advisories (Nov 17)
CORE-2009-1027: IBM SolidDB invalid error code vulnerability CORE Security Technologies Advisories (Nov 18)
CORE-2009-0908: Autodesk SoftImage Scene TOC Arbitrary Command Execution CORE Security Technologies Advisories (Nov 23)
CORE-2009-0909: Autodesk 3DS Max Application Callbacks Arbitrary Command Execution CORE Security Technologies Advisories (Nov 23)
CORE-2009-0910: Autodesk Maya Script Nodes Arbitrary Command Execution CORE Security Technologies Advisories (Nov 23)

dann frazier

[SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities dann frazier (Nov 06)
[SECURITY] [DSA 1928-1] New Linux 2.6.24 packages fix several vulnerabilities dann frazier (Nov 06)
[SECURITY] [DSA 1929-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier (Nov 06)

David Alanis

Re: [funsec] nasty infection from following link if anyone is interested David Alanis (Nov 26)

David Berard

Re: ** FreeBSD local r00t zeroday David Berard (Dec 01)

Dawid Golunski

WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Dawid Golunski (Nov 12)

DeepSec Conference - Announcement

Reminder for DeepSec 2009 Conference DeepSec Conference - Announcement (Nov 02)

Dragos Ruiu

Re: [funsec] nasty infection from following link if anyone is interested Dragos Ruiu (Nov 26)

dramacrat

Re: How to receive SPAM mail dramacrat (Nov 07)
Re: How Prosecutors Wiretap Wall Street dramacrat (Nov 10)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. dramacrat (Nov 19)
Remote DoS condition in harbour.pl dramacrat (Nov 24)
Re: more on that dramacrat (Nov 26)

dvlabs

TPTI-09-07: Microsoft Windows License Logging Service Heap Corruption Vulnerability dvlabs (Nov 11)

Ed Carp

Re: ** FreeBSD local r00t zeroday Ed Carp (Nov 30)

Edward D. Teach

Linux 2.6.x fs/pipe.c local root exploit (CVE-2009-3547) Edward D. Teach (Nov 07)

Enno Rey

Troopers 2010 security conference, CfP Enno Rey (Nov 16)

Fernando Gont

Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Fernando Gont (Nov 27)

Fionnbharr

Re: Hash Fionnbharr (Nov 02)
Re: Hash Fionnbharr (Nov 09)

frank^2

Re: How Prosecutors Wiretap Wall Street frank^2 (Nov 04)
Re: Apple ptrace panic PoC - R.I.P str0ke frank^2 (Nov 04)
Re: Apple ptrace panic PoC - R.I.P str0ke frank^2 (Nov 05)

full-disclosure

Re: Impersonation is a against the law. full-disclosure (Nov 27)
GCHQ supplier pans government file-sharing plans full-disclosure (Nov 27)
"funsec" as a terror cell full-disclosure (Nov 27)
Re: "funsec" as a terror cell full-disclosure (Nov 27)
Re: "funsec" as a terror cell full-disclosure (Nov 28)
Re: "funsec" as a terror cell full-disclosure (Nov 29)
Re: "funsec" as a terror cell full-disclosure (Nov 29)
Impersonation attempt of MI7 full-disclosure (Nov 29)
Re: Symantec Online Store Hacked full-disclosure (Nov 29)
The Cyber War Conspiracy full-disclosure (Nov 30)

g30rg3_x

Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution g30rg3_x (Nov 12)

Gary E. Miller

Re: How Prosecutors Wiretap Wall Street Gary E. Miller (Nov 04)
Re: How Prosecutors Wiretap Wall Street Gary E. Miller (Nov 05)
Re: How Prosecutors Wiretap Wall Street Gary E. Miller (Nov 06)

Gary McKinnon [SOLO]

Cryptome posts Microsoft COFEE forensic toolkit Gary McKinnon [SOLO] (Nov 12)

George Parr

FDSpam. EFFector 22.33: International Activists Launch New Website to Gather and Share Copyright Knowledge George Parr (Nov 17)

Giuseppe Iuculano

[SECURITY] [DSA 1935-1] New gnutls23/gnutls26 packages fix SSL certificate verification weakness Giuseppe Iuculano (Nov 17)
[SECURITY] [DSA 1936-1] New libgd2 packages fix several vulnerabilities Giuseppe Iuculano (Nov 17)
[SECURITY] [DSA 1939-1] New libvorbis packages fix several vulnerabilities Giuseppe Iuculano (Nov 25)

Glenn.Everhart

Re: How Prosecutors Wiretap Wall Street Glenn.Everhart (Nov 09)
Re: How Prosecutors Wiretap Wall Street Glenn.Everhart (Nov 10)
Re: How Prosecutors Wiretap Wall Street Glenn.Everhart (Nov 10)
Re: Facebook Police glenn.everhart (Nov 30)

Grace C. Wu

Foxit Reader vulnerability has been fixed Grace C. Wu (Nov 19)

Gregor Schneider

Re: UK jails schizophrenic for refusal to decrypt files Gregor Schneider (Nov 25)
Re: Some shit going on in seclist Gregor Schneider (Nov 25)

Hafez Kamal

HITB Security Conference 2010 Dubai Call for Papers Hafez Kamal (Nov 22)

Haveto Perish

Re: DoS vulnerability in Internet Explorer Haveto Perish (Nov 10)

HD Moore

Metasploit Framework 3.3 Released HD Moore (Nov 17)

hmarti2

Re: Full-Disclosure Digest, Vol 57, Issue 17 hmarti2 (Nov 16)

Holt Sorenson

Re: How Prosecutors Wiretap Wall Street Holt Sorenson (Nov 04)

iDefense Labs

iDefense Security Advisory 11.10.09: Microsoft Word FIB Processing Stack Buffer Overflow Vulnerability iDefense Labs (Nov 10)
iDefense Security Advisory 11.10.09: Microsoft Excel FEATHEADER Record Memory Corruption Vulnerability iDefense Labs (Nov 10)

Inferno

Using Blended Browser Threats involving Chrome to steal files on your computer Inferno (Nov 06)
Millions of PDF invisibly embedded with your internal disk paths Inferno (Nov 22)
Re: Millions of PDF invisibly embedded with your internal disk paths Inferno (Nov 23)

Ing. Juan Perez

Re: Argentinean Arnet isp webmail Ing. Juan Perez (Nov 06)

Ivan .

How Prosecutors Wiretap Wall Street Ivan . (Nov 04)
Re: How Prosecutors Wiretap Wall Street Ivan . (Nov 05)
Re: How Prosecutors Wiretap Wall Street Ivan . (Nov 06)
Spying on Americans: Obama Endorses Bush Era Warrantless Wiretapping Ivan . (Nov 11)
UK surveillance plan to go ahead Ivan . (Nov 11)
Microsoft confirms first Windows 7 zero-day bug Ivan . (Nov 17)
Climategate: how the MSM rep orted the greatest scandal in modern science – Telegraph Blogs Ivan . (Nov 22)
UK jails schizophrenic for refusal to decrypt files Ivan . (Nov 24)
Symantec Online Store Hacked Ivan . (Nov 29)
Software developer looks at CRU code Ivan . (Nov 29)
Re: Software developer looks at CRU code Ivan . (Dec 01)
Re: Software developer looks at CRU code Ivan . (Dec 01)

Ivan Security

Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)
Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)
Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)
Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)

Jack Bauer [Joint Terrorism Task Force]

Why the FBI, JTTF (Joint Terrorism Task Force) and DOJ policies are destined to backfire Jack Bauer [Joint Terrorism Task Force] (Nov 11)

Jacob Appelbaum

Re: George Bush's immature self-styled approach at counterterrorism is an intelligence nightmare Jacob Appelbaum (Nov 17)

Jacob Appelbaum [ioerror]

JTTF/FBI informant "snitching" on security professionals in Bay Area Jacob Appelbaum [ioerror] (Nov 13)
George Bush's immature, self-styled approach at counterterrorism is an intelligence nightmare Jacob Appelbaum [ioerror] (Nov 15)

James Matthews

Re: Software developer looks at CRU code James Matthews (Nov 29)

James Rankin

Re: The Cyber War Conspiracy James Rankin (Nov 30)

Jamie Strandboge

[USN-853-2] Firefox and Xulrunner regression Jamie Strandboge (Nov 11)
[USN-860-1] Apache vulnerabilities Jamie Strandboge (Nov 19)

Jan G.B.

Re: Impersonation is a against the law. Jan G.B. (Nov 19)
Re: The Cyber War Conspiracy Jan G.B. (Nov 30)

John Cartwright

List Charter John Cartwright (Nov 11)

John Dos

Remote Command Execution in dotDefender Site Management John Dos (Nov 30)

Jubei Trippataka

Re: Apple ptrace panic PoC - R.I.P str0ke Jubei Trippataka (Nov 05)

Juha-Matti Laurio

Re: Millions of PDF invisibly embedded with your internal disk paths Juha-Matti Laurio (Nov 22)
9/11 pager messages released by Wikileaks Juha-Matti Laurio (Nov 25)
Re: [funsec] nasty infection from following link if anyone is interested Juha-Matti Laurio (Nov 25)

kaibelf

Impersonation is a against the law. kaibelf (Nov 19)

Kees Cook

[USN-859-1] OpenJDK vulnerabilities Kees Cook (Nov 13)

Kingcope

** FreeBSD local r00t zeroday Kingcope (Nov 30)

Kurt Buff

Re: How Prosecutors Wiretap Wall Street Kurt Buff (Nov 04)

Larry Seltzer

Re: Microsoft Patents the "sudo" command Larry Seltzer (Nov 13)
Re: Software developer looks at CRU code Larry Seltzer (Nov 30)

laurent gaffie

Windows 7 , Server 2008R2 Remote Kernel Crash laurent gaffie (Nov 11)
ICMPv4/IP fuzzer prototype. laurent gaffie (Nov 23)
Fwd: ICMPv4/IP fuzzer prototype. laurent gaffie (Nov 23)

Leandro Malaquias

Microsoft Patents the "sudo" command Leandro Malaquias (Nov 12)
Re: Microsoft Patents the "sudo" command Leandro Malaquias (Nov 13)

Leandro Quibem Magnabosco

Re: Impersonation is a against the law. Leandro Quibem Magnabosco (Nov 19)

lsi

OS Commerce authentication bypass lsi (Nov 13)
Re: OS Commerce authentication bypass (ANONYMOUS REMOTE CODE EXECUTION) lsi (Nov 13)

Major Malfunction

DEFCON London - DC4420 - NO MEETING this Thursday! 19th November 2009 Major Malfunction (Nov 18)

Maksymilian Arciemowicz

PHP 5.2.11/5.3.0 Multiple Vulnerabilities Maksymilian Arciemowicz (Nov 13)
SecurityReason: SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 20)
SecurityReason: K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 20)
SecurityReason: Opera 10.01 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 20)
SecurityReason: KDE KDELibs 4.3.3 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 20)

malformation

Interactive HTTP GET and POST Shell -- R.I.P str0ke malformation (Nov 04)

Marc Deslauriers

[USN-850-3] poppler vulnerabilities Marc Deslauriers (Nov 02)
[USN-854-1] GD library vulnerabilities Marc Deslauriers (Nov 05)
[USN-855-1] libhtml-parser-perl vulnerability Marc Deslauriers (Nov 05)
[USN-856-1] CUPS vulnerability Marc Deslauriers (Nov 10)
[USN-857-1] Qt vulnerabilities Marc Deslauriers (Nov 10)
[USN-858-1] OpenLDAP vulnerability Marc Deslauriers (Nov 12)
[USN-861-1] libvorbis vulnerabilities Marc Deslauriers (Nov 24)
[USN-862-1] PHP vulnerabilities Marc Deslauriers (Nov 26)

Mario Alejandro Vilas Jerez

WinAppDbg 1.3 is out! Mario Alejandro Vilas Jerez (Dec 01)

Martin Aberastegue

Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Martin Aberastegue (Nov 12)
Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Martin Aberastegue (Nov 12)

maxigas

Re: UK jails schizophrenic for refusal to decrypt files maxigas (Nov 26)

McGhee, Eddie

Re: Microsoft Patents the "sudo" command McGhee, Eddie (Nov 13)

Megumi Yanagishita

Re: KCSEC-00000001-ServUWebClient Megumi Yanagishita (Nov 03)
Exp1oit for Serv-U 9.0.0.5 new bug Megumi Yanagishita (Nov 05)

Memisyazici, Aras

Re: Dark side of bookmarks Memisyazici, Aras (Nov 02)

Michael Graham

Re: "funsec" as a terror cell Michael Graham (Nov 30)

Michael Holstein

Re: How to receive SPAM mail Michael Holstein (Nov 06)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Michael Holstein (Nov 19)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Michael Holstein (Nov 20)
Re: Some shit going on in seclist Michael Holstein (Nov 25)
Re: Facebook Police Michael Holstein (Nov 30)

Micheal Turner

Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 04)
Re: Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 04)
Re: Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 05)
Re: Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 05)

mikelitoris

Re: How Prosecutors Wiretap Wall Street mikelitoris (Nov 07)

Milan Berger

Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Milan Berger (Nov 12)

Moritz Muehlenhoff

[SECURITY] [DSA 1931-1] New NSPR packages fix several vulnerabilities Moritz Muehlenhoff (Nov 08)
[SECURITY] [DSA 1932-1] New pidgin packages fix arbitrary code execution Moritz Muehlenhoff (Nov 08)
[SECURITY] [DSA 1941-1] New poppler packages fix several vulnerabilities Moritz Muehlenhoff (Nov 25)
[SECURITY] [DSA 1942-1] New wireshark packages fix several vulnerabilities Moritz Muehlenhoff (Nov 29)

Moritz Naumann

Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Moritz Naumann (Nov 12)
Executing arbitrary PHP code on OpenX <= 2.8.1 Moritz Naumann (Nov 24)
Re: PHP "multipart/form-data" denial of service Moritz Naumann (Nov 24)
Cacti 0.8.7e: Multiple security issues Moritz Naumann (Nov 26)

mrx

Re: How Prosecutors Wiretap Wall Street mrx (Nov 05)
Re: Impersonation is a against the law. mrx (Nov 19)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. mrx (Nov 19)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. mrx (Nov 20)

MustLive

Dark side of bookmarks MustLive (Nov 01)
Re: Dark side of bookmarks MustLive (Nov 06)
DoS vulnerability in Internet Explorer MustLive (Nov 09)
Dark home MustLive (Nov 09)
Vulnerabilities in plugins for WordPress MustLive (Nov 21)
Vulnerabilities in WP-Cumulus for WordPress MustLive (Nov 25)
XSS vulnerabilities at 404 pages MustLive (Nov 30)
Fingerprinting of Apache MustLive (Nov 30)

Nam Nguyen

[BMSA-2009-07] Backdoor in PyForum Nam Nguyen (Nov 30)

netinfinity

Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. netinfinity (Nov 20)
Re: Facebook Police netinfinity (Nov 27)

Nick FitzGerald

Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Nick FitzGerald (Nov 24)
Re: UK jails schizophrenic for refusal to decrypt files Nick FitzGerald (Nov 30)

Nikolaos Rangos

KC Security Services . Nikolaos Rangos (Nov 01)
KCSEC-00000001-ServUWebClient Nikolaos Rangos (Nov 02)

NSO Research

NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control buffer overflow NSO Research (Nov 02)

Onapsis Research

Onapsis Research: SAP Security In-Depth Vol. I Onapsis Research (Nov 25)

Patrick Hof

Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Patrick Hof (Nov 24)
Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Patrick Hof (Nov 24)

Paul Schmehl

Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 05)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 05)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 06)
Re: MySQL trick for SQL injection Paul Schmehl (Nov 06)
Re: MySQL trick for SQL injection Paul Schmehl (Nov 06)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 06)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 08)
Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 10)
Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
Re: Software developer looks at CRU code Paul Schmehl (Dec 01)
Re: Software developer looks at CRU code Paul Schmehl (Dec 01)

Pavel Kankovsky

SSL/TLS MiTM PoC Pavel Kankovsky (Nov 05)

Pete Licoln

Re: Hash Pete Licoln (Nov 02)
Re: Hash Pete Licoln (Nov 09)

phantomcircuit

Re: ** FreeBSD local r00t zeroday phantomcircuit (Nov 30)

QuahogCon

QuahogCon Call for Papers QuahogCon (Nov 03)

RandallM

Re: Full-Disclosure Digest, Vol 57, Issue 17 RandallM (Nov 13)
nasty infection from following link if anyone is interested RandallM (Nov 25)
Re: {Spam?} [funsec] nasty infection from following link if anyone is interested RandallM (Nov 25)
need advice on adtmt cookie RandallM (Nov 25)
Good thing we have EFF... RandallM (Nov 27)
Facebook Police RandallM (Nov 27)
"funsec" as a terror cell RandallM (Nov 28)
Re: "funsec" as a terror cell RandallM (Nov 28)

reallyanonymous

Argentinean Arnet isp webmail reallyanonymous (Nov 06)

RedTeam Pentesting GmbH

New Paper: MitM Attacks against the chipTAN comfort Online Banking System RedTeam Pentesting GmbH (Nov 24)

Robert Buchholz

[ GLSA 200911-03 ] UW IMAP toolkit: Multiple vulnerabilities Robert Buchholz (Nov 25)
[ GLSA 200911-04 ] dstat: Untrusted search path Robert Buchholz (Nov 25)
[resent] [ GLSA 200911-04 ] dstat: Untrusted search path Robert Buchholz (Nov 25)

Rodrigo Rubira Branco (BSDaemon)

Hackers to CSOs (H2CSO) - Free Online Subscription Rodrigo Rubira Branco (BSDaemon) (Nov 24)

rogue

Re: Facebook Police rogue (Nov 30)

Rohit Patnaik

Re: How Prosecutors Wiretap Wall Street Rohit Patnaik (Nov 07)
Re: How Prosecutors Wiretap Wall Street Rohit Patnaik (Nov 07)
Re: How Prosecutors Wiretap Wall Street Rohit Patnaik (Nov 07)
Re: need advice on adtmt cookie Rohit Patnaik (Nov 26)
Re: Good thing we have EFF... Rohit Patnaik (Nov 27)
Re: Facebook Police Rohit Patnaik (Nov 27)
Re: Software developer looks at CRU code Rohit Patnaik (Nov 30)
Re: Software developer looks at CRU code Rohit Patnaik (Dec 01)

Rosario Valotta

Twitter "swine flu" worm Rosario Valotta (Nov 15)

rPath Update Announcements

rPSA-2009-0142-1 httpd mod_ssl rPath Update Announcements (Nov 13)
rPSA-2009-0143-1 util-linux util-linux-extras rPath Update Announcements (Nov 13)
rPSA-2009-0144-1 apr-util rPath Update Announcements (Nov 13)
rPSA-2009-0145-1 samba samba-client samba-server samba-swat rPath Update Announcements (Nov 13)
rPSA-2009-0142-2 httpd mod_ssl rPath Update Announcements (Nov 13)
rPSA-2009-0154-1 httpd mod_ssl rPath Update Announcements (Nov 25)
rPSA-2009-0155-1 httpd mod_ssl rPath Update Announcements (Nov 25)
rPSA-2009-0156-1 sun-jdk sun-jre rPath Update Announcements (Nov 25)

Ryan Steinmetz

Re: ** FreeBSD local r00t zeroday Ryan Steinmetz (Dec 01)

Sam Haldorf

The cyber security intelligence community will never be the same Sam Haldorf (Nov 17)
Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Sam Haldorf (Nov 19)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Sam Haldorf (Nov 20)
Re: Pussy and the right to free speech. Sam Haldorf (Nov 21)
Re: The Cyber War Conspiracy Sam Haldorf (Nov 30)

Secunia Research

Secunia Research: IBM Tivoli Storage Manager CAD Service Buffer Overflow Secunia Research (Nov 04)
Secunia Research: Gimp BMP Image Parsing Integer Overflow Vulnerability Secunia Research (Nov 12)
Secunia Research: Gimp PSD Image Parsing Integer Overflow Vulnerability Secunia Research (Nov 17)
Secunia Research: RhinoSoft Serv-U TEA Decoding Buffer Overflow Secunia Research (Nov 18)

security

[ MDVSA-2009:292 ] wireshark security (Nov 03)
[ MDVSA-2009:293 ] squidGuard security (Nov 03)
[ MDVSA-2009:294 ] firefox security (Nov 06)
[ MDVSA-2009:295 ] apache security (Nov 08)
[ MDVSA-2009:296 ] gimp security (Nov 13)
[ MDVSA-2009:298 ] xine-lib security (Nov 14)
[ MDVSA-2009:297 ] ffmpeg security (Nov 14)
[ MDVSA-2009:299 ] xine-lib security (Nov 14)
[ MDVSA-2009:300 ] apache-conf security (Nov 15)
[ MDVSA-2009:158-1 ] pango security (Nov 16)
[ MDVSA-2009:158-2 ] pango security (Nov 16)
[ MDVSA-2009:301 ] kernel security (Nov 21)
[ MDVSA-2009:302 ] php security (Nov 21)
[ MDVSA-2009:304 ] bind security (Nov 26)
[ MDVSA-2009:303 ] php security (Nov 28)
[ MDVSA-2009:304 ] php security (Nov 29)
[ MDVSA-2009:305 ] php security (Nov 29)
[ MDVSA-2009:306 ] dovecot security (Nov 29)
[ MDVSA-2009:307 ] libtool security (Nov 30)

s j

Re: CORE-2009-0912: Blender .blend Project Arbitrary Command Execution s j (Nov 11)

Stefan Fritsch

[SECURITY] [DSA-1934-1] New apache2 packages fix several issues Stefan Fritsch (Nov 17)
[SECURITY] [DSA-1940-1] New php5 packages fix several issues Stefan Fritsch (Nov 26)

Steffen Joeris

[SECURITY] [DSA 1924-1] New mahara packages fix several vulnerabilities Steffen Joeris (Nov 01)
[SECURITY] [DSA 1925-1] New proftpd-dfsg packages fix SSL certificate verification weakness Steffen Joeris (Nov 01)
[SECURITY] [DSA 1930-1] New drupal6 packages fix several vulnerabilities Steffen Joeris (Nov 07)
[SECURITY] [DSA 1933-1] New cups packages fix cross-site scripting Steffen Joeris (Nov 10)
[SECURITY] [DSA 1937-1] New gforge packages fix cross-site scripting Steffen Joeris (Nov 21)
[SECURITY] [DSA 1938-1] New php-mail packages fix insufficient input sanitising Steffen Joeris (Nov 23)

Stephen Mullins

Re: UK jails schizophrenic for refusal to decrypt files Stephen Mullins (Nov 30)

Steve Clement

Re: Software developer looks at CRU code Steve Clement (Nov 29)

Steve Pheby

Internet Stalker Steve Pheby (Nov 28)

S/U/N

Re: Dark side of bookmarks S/U/N (Nov 02)

sunjester

Re: Apple ptrace panic PoC - R.I.P str0ke sunjester (Nov 05)

Thierry Zoller

TLS / SSLv3 vulnerability explained (DRAFT) Thierry Zoller (Nov 18)
Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Thierry Zoller (Nov 24)
TLS / SSLv3 vulnerability explained (New ways to leverage the vulnerability) Thierry Zoller (Nov 30)

Thijs Kinkhorst

[SECURITY] [DSA 1926-1] New TYPO3 packages fix several vulnerabilities Thijs Kinkhorst (Nov 04)

Thomas Biege

SUSE Security Announcement: openssl (SUSE-SA:2009:057) Thomas Biege (Nov 18)

Thor (Hammer of God)

Facebook Police Thor (Hammer of God) (Nov 27)
Good thing we have EFF... Thor (Hammer of God) (Nov 27)
Re: Good thing we have EFF... Thor (Hammer of God) (Nov 27)
Re: Good thing we have EFF... Thor (Hammer of God) (Nov 27)
Re: Facebook Police Thor (Hammer of God) (Nov 27)
Re: Facebook Police Thor (Hammer of God) (Nov 30)

Tim

Re: MySQL trick for SQL injection Tim (Nov 06)
Re: OS Commerce authentication bypass (ANONYMOUS REMOTE CODE EXECUTION) Tim (Nov 13)
Re: OS Commerce authentication bypass (ANONYMOUS REMOTE CODE EXECUTION) Tim (Nov 14)

Todd C. Miller

Re: Microsoft Patents the "sudo" command Todd C. Miller (Nov 12)
Re: Microsoft Patents the "sudo" command Todd C. Miller (Nov 12)

Tomoki Sanaki

MS09-053 Tomoki Sanaki (Nov 13)

Tyler Durten

Some shit going on in seclist Tyler Durten (Nov 25)
more on that Tyler Durten (Nov 25)

Valdis . Kletnieks

Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 05)
Re: MySQL trick for SQL injection Valdis . Kletnieks (Nov 06)
Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 06)
Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 07)
Re: Microsoft Patents the "sudo" command Valdis . Kletnieks (Nov 12)
Re: Impersonation is a against the law. Valdis . Kletnieks (Nov 19)
Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Valdis . Kletnieks (Nov 20)
Re: Some shit going on in seclist Valdis . Kletnieks (Nov 26)
Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Valdis . Kletnieks (Nov 27)
Re: "funsec" as a terror cell Valdis . Kletnieks (Nov 27)
Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Valdis . Kletnieks (Nov 27)
Re: "funsec" as a terror cell Valdis . Kletnieks (Nov 27)
Re: "funsec" as a terror cell Valdis . Kletnieks (Nov 28)
Re: The Cyber War Conspiracy Valdis . Kletnieks (Nov 30)
Re: Software developer looks at CRU code Valdis . Kletnieks (Nov 30)
Re: Facebook Police Valdis . Kletnieks (Nov 30)

Vincent Guasconi

Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Vincent Guasconi (Nov 12)

Vladimir Vorontsov

MySQL trick for SQL injection Vladimir Vorontsov (Nov 06)
Re: WordPress Vladimir Vorontsov (Nov 12)

VMware Security Team

VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components VMware Security Team (Nov 20)

webDEViL

Re: Apple ptrace panic PoC - R.I.P str0ke webDEViL (Nov 04)
Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability webDEViL (Nov 27)

William Wylde

Re: Facebook Police William Wylde (Nov 28)

yaroslav

Re: Impersonation is a against the law. yaroslav (Nov 19)
Re: Some shit going on in seclist yaroslav (Nov 25)

YK

How to receive SPAM mail YK (Nov 06)
Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution YK (Nov 14)

yuri . nate

Pussy and the right to free speech. yuri . nate (Nov 20)

ZDI Disclosures

ZDI-09-075: Novell eDirectory LDAP Null Base DN Denial of Service Vulnerability ZDI Disclosures (Nov 03)
ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-077: Sun Java Web Start Arbitrary Command Execution Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-080: Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-081: Hewlett-Packard Power Manager Administration Web Server Stack Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-082: Microsoft Office Excel PivotTable Cache Record Parsing Memory Corruption Vulnerability ZDI Disclosures (Nov 10)
ZDI-09-083: Microsoft Excel Shared Feature Header Pointer Offset Memory Corruption Vulnerability ZDI Disclosures (Nov 10)
ZDI-09-085: Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability ZDI Disclosures (Nov 20)

Zerial.

Re: [EquipoFraude] Full Path Disclosure in most wordpress' plugins [?] Zerial. (Nov 14)
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault