Home page logo
/

227 messages starting May 01 13 and ending May 31 13
Date index | Thread index | Author index

Wednesday, 01 May

Breakpoint 2013 Call For Papers cfp
[HITB-Announce] #HITB2013KUL Call for Papers Hafez Kamal
Forticlient VPN client credential interception vulnerability Philippe oechslin
Re: Forticlient VPN client credential interception vulnerability Thierry Zoller
[Security-news] SA-CONTRIB-2013-046 - Filebrowser - Reflected Cross Site Scripting (XSS) security-news

Thursday, 02 May

Re: Forticlient VPN client credential interception vulnerability Patrick Webster
[SECURITY] [DSA 2664-1] stunnel4 security update Salvatore Bonaccorso

Friday, 03 May

[RT-SA-2013-001] Advisory: Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution RedTeam Pentesting GmbH
[ MDVSA-2013:160 ] phpmyadmin security
Trying to send mail to Broadcom Jann Horn

Saturday, 04 May

Vulnerability in Microsoft Security Essentials <v4.2 Stefan Kanthak

Sunday, 05 May

XSS vulnerability in JW Player and JW Player Pro MustLive

Monday, 06 May

Using CSS :visited to steal your history (again, zzzz...) Michal Zalewski
Re: Using CSS :visited to steal your history (again, zzzz...) Dan Kaminsky
Vulnerabilities in Windows 8 Professional x64 factory preinstallation of Fujitsu Lifebook A512 Stefan Kanthak
[SE-2012-01] New security vulnerabilities and broken fixes in IBM Java Security Explorations
[ MDVSA-2013:161 ] java-1.7.0-openjdk security
Introducing libOnionRoute, the library to anonymize software wac
Apache VCL improper input validation Josh Thompson
VULNERABLE and COMPLETELY outdated 3rd-party libraries/components used in 3CX Phone 6 Stefan Kanthak
VULNERABLE and COMPLETELY outdated 3rd-party libraries/components used in 3CX Phone System 11 Stefan Kanthak
Vulnerabilities in VideoJS MustLive

Tuesday, 07 May

Ruxcon 2013 Call For Papers cfp
[ESNC-2013-005] Remote Code Injection in SAP ERP Central Component - Project System ESNC Security
SEC Consult SA-20130507-0 :: Multiple vulnerabilities in NetApp OnCommand System Manager SEC Consult Vulnerability Lab
HTP5 ezine released Hack The Planet
Re: SEC Consult SA-20130507-0 :: Multiple vulnerabilities in NetApp OnCommand System Manager Mario Vilas
[ MDVSA-2013:162 ] glibc security
[ MDVSA-2013:163 ] glibc security

Wednesday, 08 May

Re: [ESNC-2013-005] Remote Code Injection in SAP ERP Central Component - Project System Ron Yount
Re: Vulnerabilities in VideoJS Ron Yount
Unscribe Ron Yount
[2.0 Update] Cisco Security Advisory: Cisco Prime Data Center Network Manager Remote Command Execution Vulnerability Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified Customer Voice Portal Software Cisco Systems Product Security Incident Response Team
Re: Vulnerabilities in VideoJS illwill
Vulnerabilities in multiple web applications with VideoJS MustLive
Vulnerability in "Fujitsu Desktop Update" (for Windows) Stefan Kanthak
Re: Vulnerabilities in Windows 8 Professional x64 factory preinstallation of Fujitsu Lifebook A512 [continued] Stefan Kanthak
AlienVault OSSIM multiple SQL Injection vulnerabilities run run level
List Charter John Cartwright

Friday, 10 May

DDIVRT-2013-53 Actuate 'ActuateJavaComponent' Multiple Vulnerabilities ddivulnalert
GlobaLeaks 0.2 Alpha (herMario edition) released! Arturo Filastò
CVE-2013-2071 Request mix-up if AsyncListener method throws RuntimeException Mark Thomas
[SECURITY] CVE-2013-2067 Session fixation with FORM authenticator Mark Thomas
[SECURITY] CVE-2012-3544 Chunked transfer encoding extension size is not limited Mark Thomas
OT bait on freelancer.com about md5 preimage Georgi Guninski
Re: OT bait on freelancer.com about md5 preimage Valdis . Kletnieks

Saturday, 11 May

[Botconf] Botconf announcement and CFP reminder Eric Freyssinet

Sunday, 12 May

[SECURITY] [DSA 2666-1] xen security update Salvatore Bonaccorso
XSS and FPD vulnerabilities in Search and Share for WordPress MustLive
[SECURITY] [DSA 2667-1] mysql-5.5 security update Moritz Muehlenhoff
Paypal Bug Bounty #31 - Mail Encoding Web Vulnerability Vulnerability Lab
Wireless Disk PRO v2.3 iOS - Multiple Web Vulnerabilities Vulnerability Lab
Re: Paypal Bug Bounty #31 - Mail Encoding Web Vulnerability Michal Zalewski
Wifi Photo Transfer 2.1 & 1.1 PRO - Multiple Vulnerabilities Vulnerability Lab
Wifi Album v1.47 iOS - Command Injection Vulnerability Vulnerability Lab
Wireless Photo Access 1.0.10 iOS - Multiple Vulnerabilities Vulnerability Lab
SimpleTransfer 2.2.1 - Command Injection Vulnerabilities Vulnerability Lab
File Lite 3.3 & 3.5 PRO iOS - Multiple Web Vulnerabilities Vulnerability Lab
Re: Paypal Bug Bounty #31 - Mail Encoding Web Vulnerability Jakub Zoczek

Monday, 13 May

[ MDVSA-2013:164 ] mesa security
IPB (Invision Power Board) all versions (1.x? / 2.x / 3.x) Admin account Takeover leading to code execution John JEAN

Tuesday, 14 May

Security-Assessment.com Advisory: Gallery Server Pro File Upload Filter Bypass Drew Calcott
Q: CVE Database with Programming Language and Failure Classification? Jeffrey Walton
[HITB-Announce] HITB Magazine Issue 010 Hafez Kamal
GreHack 2013 - Call For Papers - November 15, Grenoble, France F. Duchene
Vulnerabilities in multiple plugins for WordPress with VideoJS MustLive
www.netcraft.com - "Search Form" Cross-site Scripting vulnerability Stefan Schurtz
Remote command Injection in Creme Fraiche 0.6 Ruby Gem Larry W. Cashdollar

Wednesday, 15 May

[SECURITY] [DSA 2668-1] linux-2.6 security update dann frazier
[ MDVSA-2013:165 ] firefox security
Indusface Website Hacked and Infected? Rahul T
Cisco Security Advisory: Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team
[Security-news] SA-CONTRIB-2013-047 - Google Authenticator login - Access Bypass security-news
Re: Q: CVE Database with Programming Language and Failure Classification? Florian Weimer

Thursday, 16 May

[SECURITY] [DSA 2669-1] linux security update dann frazier
Take Part in Positive Hack Days in Any Part of the World PHD
Multiple vulnerabilities in multiple themes for WordPress with VideoJS MustLive
On Skype URL eavesdropping Kirils Solovjovs
Re: On Skype URL eavesdropping Jeffrey Walton

Friday, 17 May

Re: On Skype URL eavesdropping Bruce Ediger
Re: On Skype URL eavesdropping Alex
CONFidence - May, 28-29, Krakow, Poland - a conference adventure that never stops! Sławomir Jabs
My ISP is routing traffic to private addresses... kyle kemmerer
Re: My ISP is routing traffic to private addresses... Gary Baribault
Re: My ISP is routing traffic to private addresses... Joshua Zukerman
Re: My ISP is routing traffic to private addresses... sec
Re: My ISP is routing traffic to private addresses... Justin Elze
Re: My ISP is routing traffic to private addresses... Gary Baribault
Re: My ISP is routing traffic to private addresses... sec
Re: My ISP is routing traffic to private addresses... Gary Baribault
exploitation ideas under memory pressure Tavis Ormandy
Re: My ISP is routing traffic to private addresses... mezgani ali
Re: My ISP is routing traffic to private addresses... Julius Kivimäki
Re: My ISP is routing traffic to private addresses... Carl \"Thomas\" Guething

Saturday, 18 May

Re: exploitation ideas under memory pressure Tavis Ormandy
Re: My ISP is routing traffic to private addresses... Gary Baribault
Re: My ISP is routing traffic to private addresses... Gary Baribault
Re: My ISP is routing traffic to private addresses... Alexander Georgiev
Re: My ISP is routing traffic to private addresses... Kirils Solovjovs
Re: My ISP is routing traffic to private addresses... Dan Dart
Re: My ISP is routing traffic to private addresses... Justin Elze
AFU vulnerabilities in MCFileManager for TinyMCE MustLive

Sunday, 19 May

AFU vulnerabilities in MCImageManager for TinyMCE MustLive
Revision of "IPv6 Stable Privacy Addresses" (Fwd: I-D Action: draft-ietf-6man-stable-privacy-addresses-07.txt) Fernando Gont
Interesting referrer URLs when accessing vulnerability disclosure information halfdog

Monday, 20 May

Thttpd 2.25b Directory Traversal Vulnerability metropolis haxor
Defense in depth -- the Microsoft way Stefan Kanthak
Re: My ISP is routing traffic to private addresses... Alexander Georgiev
Critical issues affecting multiple game engines ReVuln
Re: My ISP is routing traffic to private addresses... Patrick Webster
Re: exploitation ideas under memory pressure Tavis Ormandy
Trend Micro DirectPass 1.5.0.1060 (Cloud) Software - Multiple Software Vulnerabilities Vulnerability Lab
Sony PS3 Firmware v4.31 - Code Execution Vulnerability Vulnerability Lab

Tuesday, 21 May

CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products (ViPNet Client\Coordinator, SafeDisk, Personal Firewall) Максим Чудаков
Re: exploitation ideas under memory pressure sd
[ MDVSA-2013:166 ] krb5 security

Wednesday, 22 May

Re: exploitation ideas under memory pressure Brian Blankenship
Re: exploitation ideas under memory pressure You Got Pwned
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Julius Kivimäki
Pentesting Distributions or Projects for Raspberry Pi Jay Turla
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Milan Berger
[SECURITY] [DSA 2670-1] request-tracker3.8 security update Salvatore Bonaccorso
[SECURITY] [DSA 2671-1] request-tracker4 security update Salvatore Bonaccorso
[SECURITY] [DSA 2672-1] kfreebsd-9 security update Florian Weimer

Thursday, 23 May

Re: Pentesting Distributions or Projects for Raspberry Pi Carlos Pantelides
[waraxe-2013-SA#105] - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin Janek Vind
[waraxe-2013-SA#104] - Multiple Vulnerabilities in Spider Event Calendar Wordpress Plugin Janek Vind
Re: Pentesting Distributions or Projects for Raspberry Pi Jay Turla
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Julius Kivimäki
[ANN] Struts 2.3.14.1 GA (fast track | security) Lukasz Lenart
SEC Consult SA-20130523-0 :: JavaScript Execution in IBM WebSphere DataPower Services SEC Consult Vulnerability Lab
SEC Consult whitepaper :: Blackberry Z10 Research Primer - "Dissecting Blackberry 10 - An initial analysis" SEC Consult Vulnerability Lab
[SECURITY] [DSA 2677-1] libxrender security update Moritz Muehlenhoff
[SECURITY] [DSA 2678-1] mesa security update Moritz Muehlenhoff
[SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update Moritz Muehlenhoff
[SECURITY] [DSA 2680-1] libxt security update Moritz Muehlenhoff
[SECURITY] [DSA 2681-1] libxcursor security update Moritz Muehlenhoff
[SECURITY] [DSA 2682-1] libxext security update Moritz Muehlenhoff
[SECURITY] [DSA 2683-1] libxi security update Moritz Muehlenhoff
[SECURITY] [DSA 2684-1] libxrandr security update Moritz Muehlenhoff
[SECURITY] [DSA 2685-1] libxp security update Moritz Muehlenhoff
[SECURITY] [DSA 2686-1] libxcb security update Moritz Muehlenhoff
[SECURITY] [DSA 2687-1] libfs security update Moritz Muehlenhoff
[SECURITY] [DSA 2688-1] libxres security update Moritz Muehlenhoff
[SECURITY] [DSA 2689-1] libxtst security update Moritz Muehlenhoff
[SECURITY] [DSA 2676-1] libxfixes security update Moritz Muehlenhoff
[SECURITY] [DSA 2675-1] libxvmc security update Moritz Muehlenhoff
[SECURITY] [DSA 2674-1] libxv security update Moritz Muehlenhoff
[SECURITY] [DSA 2673-1] libdmx security update Moritz Muehlenhoff
[SECURITY] [DSA 2690-1] libxxf86dga security update Moritz Muehlenhoff
[SECURITY] [DSA 2691-1] libxinerama security update Moritz Muehlenhoff
[SECURITY] [DSA 2692-1] libxxf86vm security update Moritz Muehlenhoff
XSS and FPD vulnerabilities in I Love It New theme for WordPress MustLive
Question on SMBRelay through Meterpreter sd
little proof-of-concept for remote traffic statistics using the IP ID field Jann Horn

Friday, 24 May

Show In Browser 0.0.3 Ruby Gem /tmp file injection vulnerability Larry W. Cashdollar
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Gary Driggs
Shakacon V Speaker Selections Shakacon
Open challenge to Design the logo for Ground Zero Summit Ground Zero
Analysis of the Carna Botnet (Internet Census 2012) Parth Shukla

Saturday, 25 May

[SECURITY] [DSA 2675-2] libxvmc regression update Thijs Kinkhorst
[SECURITY] [DSA 2693-1] libx11 security update Raphael Geissert
PayPal.com XSS Vulnerability Robert Kugler
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Julius Kivimäki
Multiple vulnerabilities in aCMS MustLive
CVE-2013-3666 - LG Optimus G command injection (as system user) vulnerability Justin Case

Sunday, 26 May

[SECURITY] [DSA 2694-1] spip security update Salvatore Bonaccorso

Monday, 27 May

PayPal Bug Bounty #78 FR - Remote SQL Injection Vulnerability Vulnerability Lab
Re: Trying to send mail to Broadcom Tony Naggs
DC4420 - London DEFCON - May meet - Tuesday 28th May 2013 Tony Naggs
[ MDVSA-2013:167 ] openvpn security
[ MDVSA-2013:168 ] python-httplib2 security
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Vulnerability Lab
Barracuda SSL VPN 680 2.2.2.203 - Redirect Web Vulnerability Vulnerability Lab
[CVE-2013-2115] Struts 2.3.14.2 GA (important security fix) Rene Gielen
DC4420 - London DEFCON - May meet - Tuesday 28th May 2013 Tony Naggs
c0c0n 2013 CFP - Extended Deadline: 9 June, 2013 c0c0n International Information Security Conference
Re: Sony PS3 Firmware v4.31 - Code Execution Vulnerability Daniela Hermina
Re: PayPal.com XSS Vulnerability Robert Kugler
Backdoor scanners testing MustLive
Re: PayPal.com XSS Vulnerability Jeffrey Walton

Tuesday, 28 May

13 more XSS on Paypal John Parker
Re: PayPal.com XSS Vulnerability Dan Kaminsky
Re: PayPal.com XSS Vulnerability Jeffrey Walton
Re: PayPal.com XSS Vulnerability Daniël W . Crompton
Re: PayPal.com XSS Vulnerability Zachary Cutlip
Re: PayPal.com XSS Vulnerability Kirils Solovjovs
Re: PayPal.com XSS Vulnerability Jeffrey Walton
SCADA StrangeLove @Positive Hack Days scadastrangelove
Re: PayPal.com XSS Vulnerability Robert Kugler
Re: PayPal.com XSS Vulnerability Terrence
Re: PayPal.com XSS Vulnerability Kirils Solovjovs
CORE-2013-0302 - Zavio IP Cameras multiple vulnerabilities CORE Security Technologies Advisories
CORE-2013-0322 - MayGion IP Cameras multiple vulnerabilities CORE Security Technologies Advisories
CORE-2013-0318 - TP-Link IP Cameras Multiple Vulnerabilities CORE Security Technologies Advisories
CA20130528-01: Security Notice for CA Process Automation (CA PAM) Kotas, Kevin J

Wednesday, 29 May

Re: PayPal.com XSS Vulnerability Jeffrey Walton
[ MDVSA-2013:169 ] socat security
[ MDVSA-2013:170 ] socat security
Re: PayPal.com XSS Vulnerability Robert Kugler
Re: PayPal.com XSS Vulnerability Źmicier Januszkiewicz
Re: PayPal.com XSS Vulnerability Źmicier Januszkiewicz
Re: PayPal.com XSS Vulnerability Julius Kivimäki
Re: PayPal.com XSS Vulnerability James Condron
Re: PayPal.com XSS Vulnerability Jeffrey Walton
Re: PayPal.com XSS Vulnerability James Condron
[SECURITY] [DSA 2696-1] otrs2 security update Giuseppe Iuculano
[Security-news] SA-CONTRIB-2013-048 - Edit Limit - Access Bypass security-news
[Security-news] SA-CONTRIB-2013-049 - Node access user reference - Access Bypass security-news
[SECURITY] [DSA 2695-1] chromium-browser security update Michael Gilbert
PayPal Bug Bounty Controversy - I found the XSS first: They still didn't pay me Shubham Shah
Re: PayPal.com XSS Vulnerability Andre Helwig
Re: PayPal.com XSS Vulnerability Vulnerability Lab
Barracuda SSL VPN 680 2.2.2.203 - Redirect Vulnerability Vulnerability Lab
[SECURITY] [DSA 2697-1] gnutls26 security update Florian Weimer
FPD and Security bypass vulnerabilities in Exploit Scanner for WordPress MustLive

Thursday, 30 May

[Security-news] SA-CONTRIB-2013-050 - Webform - Cross Site Scripting (XSS) security-news
[ MDVSA-2013:171 ] gnutls security
Re: PayPal.com XSS Vulnerability Daniel Preussker

Friday, 31 May

No Directory Traversal Vulnerability in sthttpd Anthony G. Basile
XSS in images.samsung.com David Tapia
Call For Papers - ekoparty security conference 2013 Juan Pablo Daniel
CVE-2013-3662 - Sketchup MAC Pict Material Palette Stack Corruption Felipe Manzano
CVE-2013-3663 - SketchUp BMP RLE8 Heap Overflow Felipe Manzano
CVE-2013-3664 - Sketchup Multiple Vulnerabilities Felipe Manzano
Windows Credentials Editor (WCE) v1.4beta (x32/x64/universal) release Amplia Security Research
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]