Home page logo
/

428 messages starting Jun 14 12 and ending Jun 22 12
Date index | Thread index | Author index

0a29 40

0A29-12-1 : Cross-Site Scripting vulnerabilities in Nagios XI < 2011R3.0 0a29 40 (Jun 14)

Adam Behnke

Metadata exfiltration Adam Behnke (Jun 12)
A Chat With The NGR Bot Adam Behnke (Jun 13)
IObit Protected Folder Authentication Bypass Adam Behnke (Jun 15)

alan buxey

Re: How to access your favorite sites in the event of a DNS takedown ? alan buxey (Jun 25)

Alexander Georgiev

Re: NSA Cyber security program [ maybe off-topic ] Alexander Georgiev (Jun 01)
Re: Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ] Alexander Georgiev (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Alexander Georgiev (Jun 06)

Alex Buie

Re: A Chat With The NGR Bot Alex Buie (Jun 13)

Andrew D Kirch

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Andrew D Kirch (Jun 06)

Asterisk Security Team

AST-2012-009: Skinny Channel Driver Remote Crash Vulnerability Asterisk Security Team (Jun 14)

BENCSATH Boldizsar

Re: Flame= cyberwar - tech details on sKyWIper BENCSATH Boldizsar (Jun 08)

Benjamin Kreuter

Re: NSA Cyber security program [ maybe off-topic ] Benjamin Kreuter (Jun 01)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter (Jun 10)

Benji

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benji (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benji (Jun 10)
Re: WordPress Authenticated File Upload Authorisation Bypass Benji (Jun 21)

BMF

Re: [SECURITY] [DSA 2502-1] python-crypto security update BMF (Jun 25)

bobo manang

A new research about next gen crawling in pen test scanners bobo manang (Jun 27)

Boston Cyber Defense

CVE-2012-1661 - ESRI ArcMap arbitrary code execution via crafted map file. Boston Cyber Defense (Jun 13)

Brian Gallagher

Re: How to access your favorite sites in the event of a DNS takedown ? Brian Gallagher (Jun 27)

BugsNotHugs

IBM Edge Components Caching Proxy XSS Followup BugsNotHugs (Jun 30)
Sun iPlanet Error Page Link Injection BugsNotHugs (Jun 30)
IBM developerWorks ncp (Nigel's Capacity Planning) 2.1 Remote Information Disclosure BugsNotHugs (Jun 30)
Konqueror 3.5.5 XFS BugsNotHugs (Jun 30)

Bzzz

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Bzzz (Jun 08)

c-APT-ure

Re: Warning is about APT c-APT-ure (Jun 25)

Carlos Alberto Lopez Perez

Re: WordPress Authenticated File Upload Authorisation Bypass Carlos Alberto Lopez Perez (Jun 22)

Charles Morris

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Charles Morris (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Charles Morris (Jun 06)
Re: Vulnerability in Zombie Processes Charles Morris (Jun 12)

Christian Sciberras

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Christian Sciberras (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras (Jun 11)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client Cisco Systems Product Security Incident Response Team (Jun 20)
Cisco Security Advisory: Cisco Application Control Engine Administrator IP Address Overlap Vulnerability Cisco Systems Product Security Incident Response Team (Jun 20)
Cisco Security Advisory: Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Jun 20)
Cisco Security Advisory: Buffer Overflow Vulnerabilities in the Cisco WebEx Player Cisco Systems Product Security Incident Response Team (Jun 27)

Code Audit Labs

[CAL-2012-0026] Microsfot IE Same ID Property Remote Code Execution Vulnerability Code Audit Labs (Jun 13)
[CAL-2012-0023]Microsoft IE Developer Toolbar Remote Code Execution Vulnerability Code Audit Labs (Jun 13)
[CAL-2012-0015] opera website spoof Code Audit Labs (Jun 14)
Re: [CAL-2012-0015] opera website spoof Code Audit Labs (Jun 17)

coderman

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman (Jun 10)
Re: www.LEORAT.com is scam coderman (Jun 19)
Re: CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow coderman (Jun 21)
Re: [SECURITY] [DSA 2502-1] python-crypto security update coderman (Jun 25)
Entropy distribution to virtual machines coderman (Jun 25)

Colm O hEigeartaigh

CVE-2012-2378 - Apache CXF does not pick up some child policies of WS-SecurityPolicy 1.1 SupportingToken policy assertions on the client side. Colm O hEigeartaigh (Jun 07)
CVE-2012-2379 - Apache CXF does not verify that elements were signed or encrypted by a particular Supporting Token. Colm O hEigeartaigh (Jun 07)

CORE Security Technologies Advisories

CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow CORE Security Technologies Advisories (Jun 21)

Dan Cross

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Dan Cross (Jun 11)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Dan Cross (Jun 11)

Daniel Hadfield

Re: server security Daniel Hadfield (Jun 25)

Darius Jahandarie

Re: Sunday Fodder Darius Jahandarie (Jun 25)
Re: How to access your favorite sites in the event of a DNS takedown ? Darius Jahandarie (Jun 27)

Dave

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Dave (Jun 05)
CVE-2012-2380: Apache Roller Cross-Site-Resource-Forgery (XSRF) vulnerability Dave (Jun 25)
CVE-2012-2381: Apache Roller Cross-Site-Scripting (XSS) vulnerability Dave (Jun 25)

ddivulnalert

DDIVRT-2012-45 SolarWinds Network Performance Monitor Blind SQL Injection ddivulnalert (Jun 19)

Denis Andzakovic

WordPress Authenticated File Upload Authorisation Bypass Denis Andzakovic (Jun 21)
Re: WordPress Authenticated File Upload Authorisation Bypass Denis Andzakovic (Jun 21)

destrudo () d4m4g3d net

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran destrudo () d4m4g3d net (Jun 07)

Dmitry Evteev

Presentations from Positive Hack Days 2012 Published Dmitry Evteev (Jun 27)

doc mombasa

Re: TrueCaller Vulnerability Allows Changing Users Details doc mombasa (Jun 05)
Re: TrueCaller Vulnerability Allows Changing Users Details doc mombasa (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks doc mombasa (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa (Jun 10)

Dragos Ruiu

EUSecWest 2012 - Amsterdam, Sept 19/20 featuring Mobile PWN2OWN - CFP Deadline June 15 Dragos Ruiu (Jun 05)

Elazar Broad

Re: server security Elazar Broad (Jun 22)

Emilio Pinna

FCKEditor reflected XSS vulnerability Emilio Pinna (Jun 25)

Fatherlaptop

Full-Disclosure Fatherlaptop (Jun 13)

Fernando Gont

New IETF I-D: (IPv6) "Neighbor Discovery Shield (ND-Shield): Protecting against Neighbor Discovery Attacks" Fernando Gont (Jun 06)
Analysis: Vast IPv6 address space actually enables IPv6 attacks Fernando Gont (Jun 08)
Re: Analysis: Vast IPv6 address space actually enables IPv6 attacks Fernando Gont (Jun 08)
Re: Analysis: Vast IPv6 address space actually enables IPv6 attacks Fernando Gont (Jun 09)

Florent Daigniere

[MATTA-2012-002] CVE-2012-1493; F5 BIG-IP remote root authentication bypass Vulnerability Florent Daigniere (Jun 11)

Florian Weimer

[SECURITY] [DSA 2486-1] bind9 security update Florian Weimer (Jun 05)
[SECURITY] [DSA 2480-3] request-tracker3.8 regression update Florian Weimer (Jun 07)
[SECURITY] [DSA 2487-1] openoffice.org security update Florian Weimer (Jun 07)
[SECURITY] [DSA 2491-1] postgresql-8.4 security update Florian Weimer (Jun 09)
[SECURITY] [DSA 2492-1] php5 security update Florian Weimer (Jun 10)
[SECURITY] [DSA 2493-1] asterisk security update Florian Weimer (Jun 12)
[SECURITY] [DSA 2494-1] ffmpeg security update Florian Weimer (Jun 14)
[SECURITY] [DSA 2497-1] quagga security update Florian Weimer (Jun 20)
[SECURITY] [DSA 2499-1] icedove security update Florian Weimer (Jun 24)
[SECURITY] [DSA 2500-1] mantis security update Florian Weimer (Jun 24)
[SECURITY] [DSA 2501-1] xen security update Florian Weimer (Jun 24)
[SECURITY] [DSA 2503-1] bcfg2 security update Florian Weimer (Jun 28)
[SECURITY] [DSA 2504-1] libspring-2.5-java security update Florian Weimer (Jun 28)
[SECURITY] [DSA 2505-1] zendframework security update Florian Weimer (Jun 29)

Fyodor

Re: www.LEORAT.com is scam Fyodor (Jun 19)

Gage Bystrom

Re: WordPress Authenticated File Upload Authorisation Bypass Gage Bystrom (Jun 21)
Re: server security Gage Bystrom (Jun 21)

Georgi Guninski

Unauthorized Digital Certificates Could Allow Spoofing Georgi Guninski (Jun 04)
Re: [Full Disclosure] Unauthorized Digital Certificates Could Allow Spoofing Georgi Guninski (Jun 04)
Re: Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ] Georgi Guninski (Jun 04)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Georgi Guninski (Jun 05)
Germany reveals secret techie soldier unit, new cyberweapons Georgi Guninski (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Georgi Guninski (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Georgi Guninski (Jun 10)
Some stats about broken Linkedin passwds Georgi Guninski (Jun 10)
Strange gpg key shadowing Georgi Guninski (Jun 14)
Using second gpg keyring may be misleading? Georgi Guninski (Jun 14)
ubuntu apt-key (part 3) Georgi Guninski (Jun 15)
free speech - 9 yro bloggers are dangerous Georgi Guninski (Jun 15)
Re: Using second gpg keyring may be misleading? Georgi Guninski (Jun 15)
Potential gpg forging key signatures with collisions Georgi Guninski (Jun 22)

Giles Coochey

Re: NSA Cyber security program [ maybe off-topic ] Giles Coochey (Jun 06)

Greg Knaddison

Re: WordPress Authenticated File Upload Authorisation Bypass Greg Knaddison (Jun 21)

Hashdays CFP

hashdays 2012 - Call for Papers (#days CFP) Hashdays CFP (Jun 25)

Hector Marco

Re: WordPress Authenticated File Upload Authorisation Bypass Hector Marco (Jun 21)

Hunger

Exploit for Intel SYSRET "vulnerability" on FreeBSD Hunger (Jun 25)

Ian Hayes

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes (Jun 10)

imipak

Re: [Full Disclosure] Unauthorized Digital Certificates Could Allow Spoofing imipak (Jun 04)

Inshell Security

[CVE-2012-3238] Astaro Security Gateway <= v8.304 Persistent Cross-Site Scripting Vulnerability Inshell Security (Jun 10)

InterN0T Advisories

Re: NSA Cyber security program [ maybe off-topic ] InterN0T Advisories (Jun 01)

Jack Slade

Re: NSA Cyber security program [ maybe off-topic ] Jack Slade (Jun 04)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Jack Slade (Jun 07)

James Condron

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran James Condron (Jun 08)

Jardel

How to access your favorite sites in the event of a DNS takedown ? Jardel (Jun 25)

Jardel Weyrich

Re: How to access your favorite sites in the event of a DNS takedown ? Jardel Weyrich (Jun 25)

Jason Hellenthal

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Jason Hellenthal (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Jason Hellenthal (Jun 09)

Jeffrey Walton

Obama Order Sped Up Wave of Cyberattacks Against Iran Jeffrey Walton (Jun 04)
Re: How to access your favorite sites in the event of a DNS takedown ? Jeffrey Walton (Jun 28)

Joel Esler

Re: Unauthorized Digital Certificates Could Allow Spoofing Joel Esler (Jun 04)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Joel Esler (Jun 05)

John Cartwright

List Charter John Cartwright (Jun 09)

John Doe

Re: Obama Order Sped Up Wave of Cyberattacks John Doe (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran John Doe (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran John Doe (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran John Doe (Jun 09)

J. Oquendo

Flame - couldn't resist J. Oquendo (Jun 15)

Juha-Matti Laurio

Re: Unauthorized Digital Certificates Could Allow Spoofing Juha-Matti Laurio (Jun 04)

Julius Kivimäki

Re: Vulnerabilities in OpenBSD and billions is other websites Julius Kivimäki (Jun 08)

karniv0re

Re: Vulnerabilities in JW Player and millions of web sites karniv0re (Jun 07)

king cope

IIS 6.0/7.5 Vulnerabilities [moderate risk] - ISOWAREZ BDAY RELEASE king cope (Jun 09)

klondike

Netto.se arbitrary XSS injection through the redirector. klondike (Jun 07)

Kuwait WhiteHat

TrueCaller Vulnerability Allows Changing Users Details Kuwait WhiteHat (Jun 01)
Re: TrueCaller Vulnerability Allows Changing Users Details Kuwait WhiteHat (Jun 07)
Re: TrueCaller Vulnerability Allows Changing Users Details Kuwait WhiteHat (Jun 07)

Kyle Creyts

Re: Google Accounts Security Vulnerability Kyle Creyts (Jun 06)

Larissa Shapiro

ISC Security Advisory: Handling of zero length rdata can cause named to terminate, unexpectedly Larissa Shapiro (Jun 04)

Laurelai

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai (Jun 11)

Lists

QNAP Turbo NAS Multiple Vulnerabilities - Security Advisory Lists (Jun 17)
Squiz CMS Multiple Vulnerabilities - Security Advisory - SOS-12-007 Lists (Jun 18)

Major Malfunction

DC4420 - London DEFCON - June meet - Tuesday June 19th 2012 Major Malfunction (Jun 18)

Marcio B. Jr.

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Marcio B. Jr. (Jun 05)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Marcio B. Jr. (Jun 05)

Mark Shuler

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Mark Shuler (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Mark Shuler (Jun 10)

Memory Vandal

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Memory Vandal (Jun 08)

Michael Hallgren

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Michael Hallgren (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Michael Hallgren (Jun 08)

Michael J. Gray

Re: Google Accounts Security Vulnerability Michael J. Gray (Jun 07)
Re: Google Accounts Security Vulnerability Michael J. Gray (Jun 07)

Michael Stummvoll

Re: How to access your favorite sites in the event of a DNS takedown ? Michael Stummvoll (Jun 27)

Mike Hearn

Re: Google Accounts Security Vulnerability Mike Hearn (Jun 07)

Mikhail A. Utin

Re: Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ] Mikhail A. Utin (Jun 04)
Re: Full-Disclosure Digest, Vol 88, Issue 11: Mikhail A. Utin (Jun 08)
Re: Full-Disclosure Digest, Vol 88, Issue 34 Re: www.LEORAT.com is scam (Thor (Hammer of God)) Mikhail A. Utin (Jun 20)

Moritz Muehlenhoff

[SECURITY] [DSA 2495-1] openconnect security update Moritz Muehlenhoff (Jun 16)
[SECURITY] [DSA 2502-1] python-crypto security update Moritz Muehlenhoff (Jun 24)

MustLive

Vulnerabilities in JW Player and millions of web sites MustLive (Jun 06)
Re: Vulnerabilities in JW Player and millions of web sites MustLive (Jun 08)
DT, XSS and FPD vulnerabilities in Organizer for WordPress MustLive (Jun 16)
XSS and Charset Remembering via charsets in different browsers MustLive (Jun 22)
Vulnerabilities in LIOOSYS CMS MustLive (Jun 28)

Nahuel Grisolía

Re: How to access your favorite sites in the event of a DNS takedown ? Nahuel Grisolía (Jun 27)

nake

Re: How to access your favorite sites in the event of a DNS takedown ? nake (Jun 25)
Re: How to access your favorite sites in the event of a DNS takedown ? nake (Jun 27)

Nate Theis

Re: How to access your favorite sites in the event of a DNS takedown ? Nate Theis (Jun 25)

Nick FitzGerald

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Nick FitzGerald (Jun 11)

nix

Re: How to access your favorite sites in the event of a DNS takedown ? nix (Jun 25)

nullcon

nullcon Delhi 2012 Final call for Paper/Events (extended to 10th July) and First round of speakers nullcon (Jun 15)

Pablo Ximenes

Publication References on Criminalisation of Hacking Tools Needed Pablo Ximenes (Jun 11)

Peter Dawson

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson (Jun 05)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson (Jun 05)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson (Jun 08)
Re: Publication References on Criminalisation of Hacking Tools Needed Peter Dawson (Jun 11)
Re: How to access your favorite sites in the event of a DNS takedown ? Peter Dawson (Jun 25)

phocean

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran phocean (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran phocean (Jun 09)

PsychoBilly

Re: WordPress Authenticated File Upload Authorisation Bypass PsychoBilly (Jun 21)
Re: How to access your favorite sites in the event of a DNS takedown ? PsychoBilly (Jun 26)

Q8WhiteHat

Re: TrueCaller Vulnerability Allows Changing Users Details Q8WhiteHat (Jun 07)

QUAKER DOOMER

winAUTOPWN v3.1 Released QUAKER DOOMER (Jun 20)

Ramo

Re: [SE-2012-01] Security weakness in Apple QuickTime Java extensions (details released) Ramo (Jun 27)

rancor

Re: How to access your favorite sites in the event of a DNS takedown ? rancor (Jun 25)
Re: Warning is about APT rancor (Jun 25)

Research

eSyndiCat Pro v2.4.1 - Multiple Web Vulnerabilities Research (Jun 14)
Boonex Dolphin v7.0.9 CMS & Mobile App - Multiple Web Vulnerabilities Research (Jun 14)
QuickBlog v0.8 CMS - Multiple Web Vulnerabilities Research (Jun 14)
ADICO CMS v1.1 - Blind SQL Injection Vulnerability Research (Jun 14)
iScripts EasyCreate CMS v2.0 - Multiple Web Vulnerabilites Research (Jun 14)
Interspire Shopping Cart v6 - Multiple Web Vulnerabilities Research (Jun 14)
Squirrelcart Cart Shop v3.3.4 - Multiple Web Vulnerabilities Research (Jun 15)
Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities Research (Jun 15)
Simple Forum PHP 2.1 - SQL Injection Vulnerabilities Research (Jun 15)
Jobs Portal v3.0 NetArtMedia - Multiple Web Vulnerabilites Research (Jun 15)
Cells Blog CMS v1.1 - Multiple Web Vulnerabilites Research (Jun 15)
MYRE Real Estate Mobile 2012|2 - Multiple Vulnerabilities Research (Jun 15)
Nuked Klan SP CMS v4.5 - SQL injection Vulnerability Research (Jun 15)
Webify Product Series - Multiple Web Vulnerabilities Research (Jun 16)
Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities Research (Jun 16)

Rewterz - Research Group

REWTERZ-20120629 - TEMENOS T24 Cross-Site Scripting (XSS) Vulnerability Rewterz - Research Group (Jun 28)

Sardina, Dominick

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Sardina, Dominick (Jun 08)

SEC Consult Vulnerability Lab

SEC Consult SA-20120618-0 :: Western Digital ShareSpace WEB GUI Sensitive Data Disclosure SEC Consult Vulnerability Lab (Jun 18)
SEC Consult SA-20120618-1 :: Airlock WAF overlong UTF-8 sequence bypass SEC Consult Vulnerability Lab (Jun 18)
SEC Consult SA-20120626-0 :: Zend Framework - Local file disclosure via XXE injection SEC Consult Vulnerability Lab (Jun 26)

Secunia Research

Secunia Research: Network Instruments Observer SNMP OID Processing Denial of Service Secunia Research (Jun 07)
Secunia Research: Network Instruments Observer SNMP Processing Buffer Overflows Secunia Research (Jun 07)

security

[ MDVSA-2012:087 ] nut security (Jun 05)
[ MDVSA-2012:088 ] mozilla security (Jun 09)
[ MDVSA-2012:089 ] bind security (Jun 10)
[ MDVSA-2012:090 ] openoffice.org security (Jun 14)
[ MDVSA-2012:091 ] libreoffice security (Jun 14)
[ MDVSA-2012:091 ] libreoffice security (Jun 15)
[ MDVSA-2012:092 ] postgresql security (Jun 15)
[ MDVSA-2012:093 ] php security (Jun 15)
[ MDVSA-2012:094 ] clamav security (Jun 18)
[ MDVSA-2012:095 ] java-1.6.0-openjdk security (Jun 18)
[ MDVSA-2012:096 ] python security (Jun 20)
[ MDVSA-2012:097 ] python security (Jun 20)
[ MDVSA-2012:098 ] libxml2 security (Jun 21)
[ MDVSA-2012:099 ] net-snmp security (Jun 21)
[ MDVSA-2012:088-1 ] mozilla security (Jun 23)
[ MDVSA-2012:100 ] rsyslog security (Jun 25)

Security Explorations

[SE-2012-01] Regarding Oracle's Critical Patch Update for Java SE Security Explorations (Jun 13)
[SE-2012-01] Security weakness in Apple QuickTime Java extensions (details released) Security Explorations (Jun 25)
Re: [SE-2012-01] Security weakness in Apple QuickTime Java extensions (details released) Security Explorations (Jun 28)

security-news

[Security-news] SA-CONTRIB-2012-091 - Token Authentication - Access bypass security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-092 - Organic Groups - Cross Site Scripting (XSS) and Access Bypass security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-093 - Node Embed - Access Bypass security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-094 - Maestro module - Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS) security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-095 - Simplenews - Information Disclosure security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-096 - Authoring HTML - Cross Site Scripting (XSS) security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-097 - Protest - Cross Site Scripting (XSS) security-news (Jun 06)
[Security-news] SA-CONTRIB-2012-098 - Janrain Capture - Open Redirect security-news (Jun 13)
[Security-news] SA-CONTRIB-2012-099 - Node Hierarchy - Cross Site Request Forgery (CSRF) security-news (Jun 13)
[Security-news] SA-CONTRIB-2012-100 - SimpleMeta - Cross Site Request Forgery (CSRF) security-news (Jun 13)
[Security-news] SA-CONTRIB-2012-101 - Protected Node - Access Bypass security-news (Jun 13)
[Security-news] SA-CONTRIB-2012-102 - Ubercart AJAX Cart - Potential Disclosure of user Session ID security-news (Jun 13)
[Security-news] SA-CONTRIB-2012-103 - Global Redirect - Open Redirect security-news (Jun 13)
[Security-news] SA-CONTRIB-2012-104 - Privatemsg - Cross Site Scripting (XSS) security-news (Jun 20)

Shreyas Zare

Re: Unauthorized Digital Certificates Could Allow Spoofing Shreyas Zare (Jun 04)

SMiller

Re: Flame= cyberwar - tech details on sKyWIper [Full-Disclosure Digest, Vol 88, Issue 12] SMiller (Jun 08)

smith joseph

Re: www.LEORAT.com is scam smith joseph (Jun 27)

Stefan Kanthak

[Win32-API] SetNamedSecurityInfo() IGNORES and DESTROYS protected DACLs/SACLs Stefan Kanthak (Jun 20)
OpenLimit Reader for Windows contains completely outdated, superfluous and VULNERABLE system components Stefan Kanthak (Jun 27)

Steve Shockley

Re: ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability Steve Shockley (Jun 10)

Thijs Kinkhorst

[SECURITY] [DSA 2484-1] nut security update Thijs Kinkhorst (Jun 04)
[SECURITY] [DSA 2485-1] imp4 security update Thijs Kinkhorst (Jun 04)
[SECURITY] [DSA 2489-1] iceape security update Thijs Kinkhorst (Jun 08)
[SECURITY] [DSA 2490-1] nss security update Thijs Kinkhorst (Jun 08)
[SECURITY] [DSA 2488-1] iceweasel security update Thijs Kinkhorst (Jun 08)
[SECURITY] [DSA 2496-1] mysql-5.1 security update Thijs Kinkhorst (Jun 18)

Thor (Hammer of God)

Re: TrueCaller Vulnerability Allows Changing Users Details Thor (Hammer of God) (Jun 03)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God) (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God) (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Thor (Hammer of God) (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God) (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God) (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God) (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God) (Jun 11)
Re: Using second gpg keyring may be misleading? Thor (Hammer of God) (Jun 14)
Re: Using second gpg keyring may be misleading? Thor (Hammer of God) (Jun 15)
Re: free speech - 9 yro bloggers are dangerous Thor (Hammer of God) (Jun 15)
Re: www.LEORAT.com is scam Thor (Hammer of God) (Jun 19)
Re: server security Thor (Hammer of God) (Jun 21)
Sunday Fodder Thor (Hammer of God) (Jun 24)
Re: Sunday Fodder Thor (Hammer of God) (Jun 24)
Re: server security Thor (Hammer of God) (Jun 25)
Re: How to access your favorite sites in the event of a DNS takedown ? Thor (Hammer of God) (Jun 25)
Re: How to access your favorite sites in the event of a DNS takedown ? Thor (Hammer of God) (Jun 27)

trap9 trap9

xxx trap9 trap9 (Jun 27)

Urlan

Re: NSA Cyber security program [ maybe off-topic ] Urlan (Jun 01)

valdis . kletnieks

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 05)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 05)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 05)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 07)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks valdis . kletnieks (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 09)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 10)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks (Jun 11)
Re: WordPress Authenticated File Upload Authorisation Bypass valdis . kletnieks (Jun 21)

VMware Security Team

VMSA-2012-0011 VMware hosted products and ESXi and ESX patches address security issues VMware Security Team (Jun 14)

William Warren

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran William Warren (Jun 06)

Wolf Bee

Root Exploit Western Digital's WD TV Live SMP/Hub (all released firmware releases) Wolf Bee (Jun 25)

yersinia

Re: Some stats about broken Linkedin passwds yersinia (Jun 11)

Yves-Alexis Perez

[SECURITY] [DSA 2481-1] arpwatch security update Yves-Alexis Perez (Jun 04)
[SECURITY] [DSA 2482-1] arpwatch security update Yves-Alexis Perez (Jun 04)
[SECURITY] [DSA 2482-1] libgdata security update Yves-Alexis Perez (Jun 04)
[SECURITY] [DSA 2498-1] dhcpcd security update Yves-Alexis Perez (Jun 25)

ZDI Disclosures

ZDI-12-075 : Apple Quicktime RLE Sample Decoding Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-076 : Apple QuickTime MPEG Stream Padding Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-077 : Apple QuickTime QTVR QTVRStringAtom Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-078 : Apple QuickTime SVQ3 Codec mb_skip_run Parsing Remote Code Execution ZDI Disclosures (Jun 06)
ZDI-12-080 : Adobe Flash Player MP4 Stream Decoding Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-081 : Oracle Java GlueGen Arbitrary Native Library Loading Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-082 : Oracle Java OpenGL Arbitrary Native Library Loading Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-083 : Oracle Java OpenAL Library Pointer Manipulation Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-084 : RealNetworks RealPlayer RV10 Encoded Height/Width Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-085 : RealNetworks RealPlayer dmp4 esds Width Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-086 : RealNetworks RealPlayer rvrender RMFF Flags Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-087 : RealNetworks RealPlayer raac.dll stsz Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-089 : HP DataDirect OpenAccess GIOP Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 06)
ZDI-12-090 : Symantec Web Gateway Shell Command Injection Remote Code Execution Vulnerability ZDI Disclosures (Jun 08)
ZDI-12-091 : Symantec Web Gateway upload_file Remote Code Execution Vulnerability ZDI Disclosures (Jun 08)
ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 08)
ZDI-12-093 : (Pwn2Own) Microsoft Internet Explorer Fixed Table Colspan Remote Code Execution Vulnerability ZDI Disclosures (Jun 12)
ZDI-12-094 : RealNetworks Helix Server rn5auth Credential Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-095 : Apple Quicktime TeXML transform Attribute Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-096 : HP Data Protector Express Opcode 0x330 Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-097 : HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-098 : AOL Products dnUpdater ActiveX Uninitialized Pointer Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-099 : DataDirect OpenAccess oaagent.exe GIOP Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability ZDI Disclosures (Jun 21)
ZDI-12-101 : IBM Cognos tm1admsd.exe Multiple Operations Remote Code Execution Vulnerabilities ZDI Disclosures (Jun 27)
ZDI-12-102 : Novell iPrint Client nipplib.dll GetDriverSettings realm Remote Code Execution Vulnerability ZDI Disclosures (Jun 27)
-----BEGIN PGP SIGNED MESSAGE----- ZDI Disclosures (Jun 27)
ZDI-12-104 : SAP Netweaver ABAP msg_server.exe Parameter Value Remote Code Execution Vulnerability ZDI Disclosures (Jun 27)
ZDI-12-105 : Apple Quicktime Text Track Descriptor Parsing Remote Code Execution ZDI Disclosures (Jun 27)
ZDI-12-103 : Apple Quicktime Dataref URI Buffer Remote Code Execution ZDI Disclosures (Jun 27)
ZDI-12-106 : Avaya IP Office Customer Call Reporter ImageUpload Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-107 : Apple Quicktime TeXML Style Element Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-108 : Apple Quicktime TeXML sampleData Element Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-109 : Apple Quicktime TeXML Karaoke Element Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-110 : Mozilla Firefox AttributeChildRemoved Use-After-Free Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-111 : SAP Netweaver ABAP msg_server.exe Opcode 0x43 Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-112 : SAP Netweaver ABAP msg_server.exe Parameter Name Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
ZDI-12-113 : IBM Rational ClearQuest CQOle ActiveX Control Remote Code Execution Vulnerability ZDI Disclosures (Jun 28)
TPTI-12-06: Hewlett-Packard Data Protector DtbClsAddObject Parsing Remote Code Execution Vulnerability ZDI Disclosures (Jun 29)
TPTI-12-05: Oracle AutoVue ActiveX SetMarkupMode Remote Code Execution Vulnerability ZDI Disclosures (Jun 29)

Zero Day Initiative

ZDI-12-079 : Apple QuickTime H264 Picture Width Parsing Remote Code Execution Vulnerability Zero Day Initiative (Jun 07)

Григорий Братислава

Re: TrueCaller Vulnerability Allows Changing Users Details Григорий Братислава (Jun 04)
Re: TrueCaller Vulnerability Allows Changing Users Details Григорий Братислава (Jun 05)
Vulnerabilities in OpenBSD and billions is other websites Григорий Братислава (Jun 06)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава (Jun 08)
Vulnerability in Zombie Processes Григорий Братислава (Jun 12)
Re: Metadata exfiltration Григорий Братислава (Jun 12)
Is Flame Malware Disclosure Григорий Братислава (Jun 13)
Warning is about APT Григорий Братислава (Jun 22)
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault