227 messages starting May 01 13 and ending May 31 13 Date index | Thread index | Author index
Breakpoint 2013 Call For Papers cfp [HITB-Announce] #HITB2013KUL Call for Papers Hafez Kamal Forticlient VPN client credential interception vulnerability Philippe oechslin Re: Forticlient VPN client credential interception vulnerability Thierry Zoller [Security-news] SA-CONTRIB-2013-046 - Filebrowser - Reflected Cross Site Scripting (XSS) security-news
Re: Forticlient VPN client credential interception vulnerability Patrick Webster [SECURITY] [DSA 2664-1] stunnel4 security update Salvatore Bonaccorso
[RT-SA-2013-001] Advisory: Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution RedTeam Pentesting GmbH [ MDVSA-2013:160 ] phpmyadmin security Trying to send mail to Broadcom Jann Horn
Vulnerability in Microsoft Security Essentials <v4.2 Stefan Kanthak
XSS vulnerability in JW Player and JW Player Pro MustLive
Using CSS :visited to steal your history (again, zzzz...) Michal Zalewski Re: Using CSS :visited to steal your history (again, zzzz...) Dan Kaminsky Vulnerabilities in Windows 8 Professional x64 factory preinstallation of Fujitsu Lifebook A512 Stefan Kanthak [SE-2012-01] New security vulnerabilities and broken fixes in IBM Java Security Explorations [ MDVSA-2013:161 ] java-1.7.0-openjdk security Introducing libOnionRoute, the library to anonymize software wac Apache VCL improper input validation Josh Thompson VULNERABLE and COMPLETELY outdated 3rd-party libraries/components used in 3CX Phone 6 Stefan Kanthak VULNERABLE and COMPLETELY outdated 3rd-party libraries/components used in 3CX Phone System 11 Stefan Kanthak Vulnerabilities in VideoJS MustLive
Ruxcon 2013 Call For Papers cfp [ESNC-2013-005] Remote Code Injection in SAP ERP Central Component - Project System ESNC Security SEC Consult SA-20130507-0 :: Multiple vulnerabilities in NetApp OnCommand System Manager SEC Consult Vulnerability Lab HTP5 ezine released Hack The Planet Re: SEC Consult SA-20130507-0 :: Multiple vulnerabilities in NetApp OnCommand System Manager Mario Vilas [ MDVSA-2013:162 ] glibc security [ MDVSA-2013:163 ] glibc security
Re: [ESNC-2013-005] Remote Code Injection in SAP ERP Central Component - Project System Ron Yount Re: Vulnerabilities in VideoJS Ron Yount Unscribe Ron Yount [2.0 Update] Cisco Security Advisory: Cisco Prime Data Center Network Manager Remote Command Execution Vulnerability Cisco Systems Product Security Incident Response Team Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified Customer Voice Portal Software Cisco Systems Product Security Incident Response Team Re: Vulnerabilities in VideoJS illwill Vulnerabilities in multiple web applications with VideoJS MustLive Vulnerability in "Fujitsu Desktop Update" (for Windows) Stefan Kanthak Re: Vulnerabilities in Windows 8 Professional x64 factory preinstallation of Fujitsu Lifebook A512 [continued] Stefan Kanthak AlienVault OSSIM multiple SQL Injection vulnerabilities run run level List Charter John Cartwright
DDIVRT-2013-53 Actuate 'ActuateJavaComponent' Multiple Vulnerabilities ddivulnalert GlobaLeaks 0.2 Alpha (herMario edition) released! Arturo Filastò CVE-2013-2071 Request mix-up if AsyncListener method throws RuntimeException Mark Thomas [SECURITY] CVE-2013-2067 Session fixation with FORM authenticator Mark Thomas [SECURITY] CVE-2012-3544 Chunked transfer encoding extension size is not limited Mark Thomas OT bait on freelancer.com about md5 preimage Georgi Guninski Re: OT bait on freelancer.com about md5 preimage Valdis . Kletnieks
[Botconf] Botconf announcement and CFP reminder Eric Freyssinet
[SECURITY] [DSA 2666-1] xen security update Salvatore Bonaccorso XSS and FPD vulnerabilities in Search and Share for WordPress MustLive [SECURITY] [DSA 2667-1] mysql-5.5 security update Moritz Muehlenhoff Paypal Bug Bounty #31 - Mail Encoding Web Vulnerability Vulnerability Lab Wireless Disk PRO v2.3 iOS - Multiple Web Vulnerabilities Vulnerability Lab Re: Paypal Bug Bounty #31 - Mail Encoding Web Vulnerability Michal Zalewski Wifi Photo Transfer 2.1 & 1.1 PRO - Multiple Vulnerabilities Vulnerability Lab Wifi Album v1.47 iOS - Command Injection Vulnerability Vulnerability Lab Wireless Photo Access 1.0.10 iOS - Multiple Vulnerabilities Vulnerability Lab SimpleTransfer 2.2.1 - Command Injection Vulnerabilities Vulnerability Lab File Lite 3.3 & 3.5 PRO iOS - Multiple Web Vulnerabilities Vulnerability Lab Re: Paypal Bug Bounty #31 - Mail Encoding Web Vulnerability Jakub Zoczek
[ MDVSA-2013:164 ] mesa security IPB (Invision Power Board) all versions (1.x? / 2.x / 3.x) Admin account Takeover leading to code execution John JEAN
Security-Assessment.com Advisory: Gallery Server Pro File Upload Filter Bypass Drew Calcott Q: CVE Database with Programming Language and Failure Classification? Jeffrey Walton [HITB-Announce] HITB Magazine Issue 010 Hafez Kamal GreHack 2013 - Call For Papers - November 15, Grenoble, France F. Duchene Vulnerabilities in multiple plugins for WordPress with VideoJS MustLive www.netcraft.com - "Search Form" Cross-site Scripting vulnerability Stefan Schurtz Remote command Injection in Creme Fraiche 0.6 Ruby Gem Larry W. Cashdollar
[SECURITY] [DSA 2668-1] linux-2.6 security update dann frazier [ MDVSA-2013:165 ] firefox security Indusface Website Hacked and Infected? Rahul T Cisco Security Advisory: Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team [Security-news] SA-CONTRIB-2013-047 - Google Authenticator login - Access Bypass security-news Re: Q: CVE Database with Programming Language and Failure Classification? Florian Weimer
[SECURITY] [DSA 2669-1] linux security update dann frazier Take Part in Positive Hack Days in Any Part of the World PHD Multiple vulnerabilities in multiple themes for WordPress with VideoJS MustLive On Skype URL eavesdropping Kirils Solovjovs Re: On Skype URL eavesdropping Jeffrey Walton
Re: On Skype URL eavesdropping Bruce Ediger Re: On Skype URL eavesdropping Alex CONFidence - May, 28-29, Krakow, Poland - a conference adventure that never stops! Sławomir Jabs My ISP is routing traffic to private addresses... kyle kemmerer Re: My ISP is routing traffic to private addresses... Gary Baribault Re: My ISP is routing traffic to private addresses... Joshua Zukerman Re: My ISP is routing traffic to private addresses... sec Re: My ISP is routing traffic to private addresses... Justin Elze Re: My ISP is routing traffic to private addresses... Gary Baribault Re: My ISP is routing traffic to private addresses... sec Re: My ISP is routing traffic to private addresses... Gary Baribault exploitation ideas under memory pressure Tavis Ormandy Re: My ISP is routing traffic to private addresses... mezgani ali Re: My ISP is routing traffic to private addresses... Julius Kivimäki Re: My ISP is routing traffic to private addresses... Carl \"Thomas\" Guething
Re: exploitation ideas under memory pressure Tavis Ormandy Re: My ISP is routing traffic to private addresses... Gary Baribault Re: My ISP is routing traffic to private addresses... Gary Baribault Re: My ISP is routing traffic to private addresses... Alexander Georgiev Re: My ISP is routing traffic to private addresses... Kirils Solovjovs Re: My ISP is routing traffic to private addresses... Dan Dart Re: My ISP is routing traffic to private addresses... Justin Elze AFU vulnerabilities in MCFileManager for TinyMCE MustLive
AFU vulnerabilities in MCImageManager for TinyMCE MustLive Revision of "IPv6 Stable Privacy Addresses" (Fwd: I-D Action: draft-ietf-6man-stable-privacy-addresses-07.txt) Fernando Gont Interesting referrer URLs when accessing vulnerability disclosure information halfdog
Thttpd 2.25b Directory Traversal Vulnerability metropolis haxor Defense in depth -- the Microsoft way Stefan Kanthak Re: My ISP is routing traffic to private addresses... Alexander Georgiev Critical issues affecting multiple game engines ReVuln Re: My ISP is routing traffic to private addresses... Patrick Webster Re: exploitation ideas under memory pressure Tavis Ormandy Trend Micro DirectPass 1.5.0.1060 (Cloud) Software - Multiple Software Vulnerabilities Vulnerability Lab Sony PS3 Firmware v4.31 - Code Execution Vulnerability Vulnerability Lab
CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products (ViPNet Client\Coordinator, SafeDisk, Personal Firewall) Максим Чудаков Re: exploitation ideas under memory pressure sd [ MDVSA-2013:166 ] krb5 security
Re: exploitation ideas under memory pressure Brian Blankenship Re: exploitation ideas under memory pressure You Got Pwned Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Julius Kivimäki Pentesting Distributions or Projects for Raspberry Pi Jay Turla Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Milan Berger [SECURITY] [DSA 2670-1] request-tracker3.8 security update Salvatore Bonaccorso [SECURITY] [DSA 2671-1] request-tracker4 security update Salvatore Bonaccorso [SECURITY] [DSA 2672-1] kfreebsd-9 security update Florian Weimer
Re: Pentesting Distributions or Projects for Raspberry Pi Carlos Pantelides [waraxe-2013-SA#105] - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin Janek Vind [waraxe-2013-SA#104] - Multiple Vulnerabilities in Spider Event Calendar Wordpress Plugin Janek Vind Re: Pentesting Distributions or Projects for Raspberry Pi Jay Turla Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Julius Kivimäki [ANN] Struts 2.3.14.1 GA (fast track | security) Lukasz Lenart SEC Consult SA-20130523-0 :: JavaScript Execution in IBM WebSphere DataPower Services SEC Consult Vulnerability Lab SEC Consult whitepaper :: Blackberry Z10 Research Primer - "Dissecting Blackberry 10 - An initial analysis" SEC Consult Vulnerability Lab [SECURITY] [DSA 2677-1] libxrender security update Moritz Muehlenhoff [SECURITY] [DSA 2678-1] mesa security update Moritz Muehlenhoff [SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update Moritz Muehlenhoff [SECURITY] [DSA 2680-1] libxt security update Moritz Muehlenhoff [SECURITY] [DSA 2681-1] libxcursor security update Moritz Muehlenhoff [SECURITY] [DSA 2682-1] libxext security update Moritz Muehlenhoff [SECURITY] [DSA 2683-1] libxi security update Moritz Muehlenhoff [SECURITY] [DSA 2684-1] libxrandr security update Moritz Muehlenhoff [SECURITY] [DSA 2685-1] libxp security update Moritz Muehlenhoff [SECURITY] [DSA 2686-1] libxcb security update Moritz Muehlenhoff [SECURITY] [DSA 2687-1] libfs security update Moritz Muehlenhoff [SECURITY] [DSA 2688-1] libxres security update Moritz Muehlenhoff [SECURITY] [DSA 2689-1] libxtst security update Moritz Muehlenhoff [SECURITY] [DSA 2676-1] libxfixes security update Moritz Muehlenhoff [SECURITY] [DSA 2675-1] libxvmc security update Moritz Muehlenhoff [SECURITY] [DSA 2674-1] libxv security update Moritz Muehlenhoff [SECURITY] [DSA 2673-1] libdmx security update Moritz Muehlenhoff [SECURITY] [DSA 2690-1] libxxf86dga security update Moritz Muehlenhoff [SECURITY] [DSA 2691-1] libxinerama security update Moritz Muehlenhoff [SECURITY] [DSA 2692-1] libxxf86vm security update Moritz Muehlenhoff XSS and FPD vulnerabilities in I Love It New theme for WordPress MustLive Question on SMBRelay through Meterpreter sd little proof-of-concept for remote traffic statistics using the IP ID field Jann Horn
Show In Browser 0.0.3 Ruby Gem /tmp file injection vulnerability Larry W. Cashdollar Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Gary Driggs Shakacon V Speaker Selections Shakacon Open challenge to Design the logo for Ground Zero Summit Ground Zero Analysis of the Carna Botnet (Internet Census 2012) Parth Shukla
[SECURITY] [DSA 2675-2] libxvmc regression update Thijs Kinkhorst [SECURITY] [DSA 2693-1] libx11 security update Raphael Geissert PayPal.com XSS Vulnerability Robert Kugler Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Julius Kivimäki Multiple vulnerabilities in aCMS MustLive CVE-2013-3666 - LG Optimus G command injection (as system user) vulnerability Justin Case
[SECURITY] [DSA 2694-1] spip security update Salvatore Bonaccorso
PayPal Bug Bounty #78 FR - Remote SQL Injection Vulnerability Vulnerability Lab Re: Trying to send mail to Broadcom Tony Naggs DC4420 - London DEFCON - May meet - Tuesday 28th May 2013 Tony Naggs [ MDVSA-2013:167 ] openvpn security [ MDVSA-2013:168 ] python-httplib2 security Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Vulnerability Lab Barracuda SSL VPN 680 2.2.2.203 - Redirect Web Vulnerability Vulnerability Lab [CVE-2013-2115] Struts 2.3.14.2 GA (important security fix) Rene Gielen DC4420 - London DEFCON - May meet - Tuesday 28th May 2013 Tony Naggs c0c0n 2013 CFP - Extended Deadline: 9 June, 2013 c0c0n International Information Security Conference Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Daniela Hermina Re: PayPal.com XSS Vulnerability Robert Kugler Backdoor scanners testing MustLive Re: PayPal.com XSS Vulnerability Jeffrey Walton
13 more XSS on Paypal John Parker Re: PayPal.com XSS Vulnerability Dan Kaminsky Re: PayPal.com XSS Vulnerability Jeffrey Walton Re: PayPal.com XSS Vulnerability Daniël W . Crompton Re: PayPal.com XSS Vulnerability Zachary Cutlip Re: PayPal.com XSS Vulnerability Kirils Solovjovs Re: PayPal.com XSS Vulnerability Jeffrey Walton SCADA StrangeLove @Positive Hack Days scadastrangelove Re: PayPal.com XSS Vulnerability Robert Kugler Re: PayPal.com XSS Vulnerability Terrence Re: PayPal.com XSS Vulnerability Kirils Solovjovs CORE-2013-0302 - Zavio IP Cameras multiple vulnerabilities CORE Security Technologies Advisories CORE-2013-0322 - MayGion IP Cameras multiple vulnerabilities CORE Security Technologies Advisories CORE-2013-0318 - TP-Link IP Cameras Multiple Vulnerabilities CORE Security Technologies Advisories CA20130528-01: Security Notice for CA Process Automation (CA PAM) Kotas, Kevin J
Re: PayPal.com XSS Vulnerability Jeffrey Walton [ MDVSA-2013:169 ] socat security [ MDVSA-2013:170 ] socat security Re: PayPal.com XSS Vulnerability Robert Kugler Re: PayPal.com XSS Vulnerability Źmicier Januszkiewicz Re: PayPal.com XSS Vulnerability Źmicier Januszkiewicz Re: PayPal.com XSS Vulnerability Julius Kivimäki Re: PayPal.com XSS Vulnerability James Condron Re: PayPal.com XSS Vulnerability Jeffrey Walton Re: PayPal.com XSS Vulnerability James Condron [SECURITY] [DSA 2696-1] otrs2 security update Giuseppe Iuculano [Security-news] SA-CONTRIB-2013-048 - Edit Limit - Access Bypass security-news [Security-news] SA-CONTRIB-2013-049 - Node access user reference - Access Bypass security-news [SECURITY] [DSA 2695-1] chromium-browser security update Michael Gilbert PayPal Bug Bounty Controversy - I found the XSS first: They still didn't pay me Shubham Shah Re: PayPal.com XSS Vulnerability Andre Helwig Re: PayPal.com XSS Vulnerability Vulnerability Lab Barracuda SSL VPN 680 2.2.2.203 - Redirect Vulnerability Vulnerability Lab [SECURITY] [DSA 2697-1] gnutls26 security update Florian Weimer FPD and Security bypass vulnerabilities in Exploit Scanner for WordPress MustLive
[Security-news] SA-CONTRIB-2013-050 - Webform - Cross Site Scripting (XSS) security-news [ MDVSA-2013:171 ] gnutls security Re: PayPal.com XSS Vulnerability Daniel Preussker
No Directory Traversal Vulnerability in sthttpd Anthony G. Basile XSS in images.samsung.com David Tapia Call For Papers - ekoparty security conference 2013 Juan Pablo Daniel CVE-2013-3662 - Sketchup MAC Pict Material Palette Stack Corruption Felipe Manzano CVE-2013-3663 - SketchUp BMP RLE8 Heap Overflow Felipe Manzano CVE-2013-3664 - Sketchup Multiple Vulnerabilities Felipe Manzano Windows Credentials Editor (WCE) v1.4beta (x32/x64/universal) release Amplia Security Research
RSS Feed
About List
All Lists
Previous period