194 messages starting Jan 17 14 and ending Jan 03 14 Date index | Thread index | Author index
NEW : VMSA-2014-0001 - VMware Workstation, Player, Fusion, ESXi, ESX and vCloud Director address several security issues \"VMware Security Response Center\" (Jan 17)
Hackito Ergo Sum 2014 CFP Alexandre De Oliveira (Jan 20)
Tool Update: Bing-ip2hosts version 0.4 Andrew Horton (Jan 01)
Re: Open phones for privacy/anonymity applications, Guardian Anonymous (Jan 06)
Romanian hacker unknown string Asheesh Tripathi (Jan 17) Re: Romanian hacker unknown string Asheesh Tripathi (Jan 17) Re: Romanian hacker unknown string Asheesh Tripathi (Jan 17) Re: Romanian hacker unknown string Asheesh Tripathi (Jan 17)
AusCERT2014 Call for Presentations and Tutorials AusCERT (Jan 07)
"the Fairphone is fatally flawed for security" Bernhard Kuemel (Jan 05)
Targeted CSRF vulnerability on LinkedIn to delete posts [FIXED] Bhavesh Naik (Jan 01)
BlackArch Linux BlackArch Linux (Jan 13)
Re: Making waves on Twitter! Brandon Perry (Jan 27) Re: Making waves on Twitter! Brandon Perry (Jan 27)
Re: Open phones for privacy/anonymity applications, Guardian Bzzz (Jan 06)
[CVE-2013-6235] - Multiple Reflected XSS vulnerabilities in JAMon v2.7 Christian Catalano (Jan 24)
Cisco Security Advisory: Undocumented Test Interface in Cisco Small Business Devices Cisco Systems Product Security Incident Response Team (Jan 10) Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Access Control System Cisco Systems Product Security Incident Response Team (Jan 15) Cisco Security Advisory: Cisco TelePresence ISDN Gateway D-Channel Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Jan 22) Cisco Security Advisory: Cisco TelePresence Video Communication Server SIP Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Jan 22) Cisco Security Advisory: Cisco TelePresence System Software Command Execution Vulnerability Cisco Systems Product Security Incident Response Team (Jan 22)
Re: Open phones for privacy/anonymity applications, Guardian coderman (Jan 01) Re: Open phones for privacy/anonymity applications, Guardian coderman (Jan 01) Re: Open phones for privacy/anonymity applications, Guardian coderman (Jan 01) Re: [SECURITY] [DSA 2833-1] openssl security update coderman (Jan 01) Re: SCADA StrangeLove 30C3 releases: all in one coderman (Jan 05) Re: "the Fairphone is fatally flawed for security" coderman (Jan 05) Re: RFP: FOIA with privacy waivers[0] for oversight coderman (Jan 25)
[CVE-2014-1203] Eyou Mail System Remote Code Execution conqu3r . zeng (Jan 08)
Re: EE BrightBox router hacked - bares all if you ask nicely Dan Ballance (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Dan Ballance (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Dan Ballance (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Dan Ballance (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Dan Ballance (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Dan Ballance (Jan 16)
Re: Open phones for privacy/anonymity applications, Guardian Daniel Corbe (Jan 07)
[CVE-2014-0647] Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application Daniel Wood (Jan 14) Re: Ubuntu, duckduckgo, and additional info Daniel Wood (Jan 15) Re: [CVE-2014-0647] Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application Daniel Wood (Jan 18)
Re: EE BrightBox router hacked - bares all if you ask nicely Daniël W . Crompton (Jan 16)
DDoS against Gamerfirst dave (Jan 22)
Making waves on Twitter! David Kennedy (Jan 26) Re: Making waves on Twitter! David Kennedy (Jan 27) Re: Making waves on Twitter! David Kennedy (Jan 27)
Updated [CVE-2013-6398] CloudStack Virtual Router stop/start modifies firewall rules allowing additional access David Nalley (Jan 11) Updated [CVE-2014-0031] CloudStack ListNetworkACL API discloses ACLs for other users David Nalley (Jan 11)
[Wooyun] NVIDIA a SAP NETWEAVER remote command execution En.wooyun.org (Jan 08) [Wooyun] OVH a subsite Zabbix Sql injection En.wooyun.org (Jan 08)
SI6 Networks' IPv6 Toolkit v1.5.2 released! Fernando Gont (Jan 17)
[SECURITY] [DSA 2849-1] curl security update Florian Weimer (Jan 31)
[CVE-2013-6838] Enghouse Interactive IVR Pro (VIP2000) remote root authentication bypass Vulnerability Fredrik Söderblom (Jan 16)
CALL FOR PAPERS - NUIT DU HACK - 28/29 JUNE 2014 freeman (Jan 24)
Re: Ubuntu, duckduckgo, and additional info Gabriel Weinberg (Jan 15)
Re: Where are you guys standing re: the (full) disclosure Georgi Guninski (Jan 08) Microsoft Twitter accounts, blog hijacked by SEA Georgi Guninski (Jan 13) 22 January 2014, SEA : M$ = 3 : 0 Georgi Guninski (Jan 22)
Re: EE BrightBox router hacked - bares all if you ask nicely gold flake (Jan 16)
[HITB-Announce] HITB Magazine Issue 10 Out Now Hafez Kamal (Jan 07) [HITB-Announce] #HITB2014AMS Call for Papers - FINAL CALL Hafez Kamal (Jan 16)
Re: FPU-state NULL-deref exploitation (was vm86 syscall kernel-panic and some more goodies waiting to be analyzed) halfdog (Jan 07)
Re: Romanian hacker unknown string Henri Salo (Jan 17)
Re: Security is fun(ny) again illwill (Jan 09)
How a teenager helpfully repor ted a government security flaw – and could be c harged in return Ivan .Heca (Jan 24)
Security is fun(ny) again J. Oquendo (Jan 09)
[CVE-2014-1673] Check Point Session Authentication Agent vulnerability Jakub Jozwiak (Jan 27)
Re: Romanian hacker unknown string James Condron (Jan 17) Re: Romanian hacker unknown string James Condron (Jan 17) Re: Romanian hacker unknown string James Condron (Jan 17) Re: Romanian hacker unknown string James Condron (Jan 17)
0day - MuPDF Stack-based Buffer Overflow in xps_parse_color() Jean-Jamil Khalifé (Jan 21)
Re: EE BrightBox router hacked - bares all if you ask nicely Jeffrey Walton (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Jeffrey Walton (Jan 16)
List Charter John Cartwright (Jan 13)
Re: Ubuntu, duckduckgo, and additional info Jordon Bedwell (Jan 15)
Re: Yahoo Bug Bounty Program Vulnerability #2 Open Redirect Kenneth F. Belva (Jan 13)
Re: Open phones for privacy/anonymity applications, Guardian Lodewijk andré de la porte (Jan 01)
[SECURITY] [DSA 2831-1] puppet security update Luciano Bello (Jan 01)
DC4420 - London DEFCON - January meet - Tuesday 28th January 2014 Major Malfunction (Jan 27)
Sex links fail Marshall Whittaker (Jan 13)
: EE BrightBox router hacked - bares all if you ask nicely Mikhail A. Utin (Jan 16)
Re: Microsoft Twitter accounts, blog hijacked by SEA Mohammad Hosein (Jan 14)
[SECURITY] [DSA 2833-1] openssl security update Moritz Muehlenhoff (Jan 01) [SECURITY] [DSA 2835-1] asterisk security update Moritz Muehlenhoff (Jan 05) [SECURITY] [DSA 2837-1] openssl security update Moritz Muehlenhoff (Jan 07) [SECURITY] [DSA 2838-1] libxfont security update Moritz Muehlenhoff (Jan 07) [SECURITY] [DSA 2841-1] movabletype-opensource security update Moritz Muehlenhoff (Jan 11) [SECURITY] [DSA 2842-1] libspring-java security update Moritz Muehlenhoff (Jan 13) [SECURITY] [DSA 2845-1] mysql-5.1 security update Moritz Muehlenhoff (Jan 17) [SECURITY] [DSA 2846-1] libvirt security update Moritz Muehlenhoff (Jan 17)
DAVOSET v.1.1.5 MustLive (Jan 01) Multiple vulnerabilities at president.gov.ua MustLive (Jan 19) DAVOSET v.1.1.6 MustLive (Jan 24) Dictatorial laws in Ukraine MustLive (Jan 25)
Capstone 2.0 is released! Nguyen Anh Quynh (Jan 22)
Oracle Reports Exploit - Remote Shell/Dump Passwords NI @root (Jan 28)
Satellite Security - A story NASA would love to see. Nicholas Lemonias. (Jan 26)
Sentinel beta version released Nicolas A. Economou (Jan 27)
nullcon Blackshield Awards 2014 nullcon (Jan 10) [CTF] nullcon HackIM 2014 will start at 24-01-2014, when the clock will strike at 11:59 (+5:30 GMT) nullcon (Jan 24)
Dates for the opening of registration for Rooted CON 2014 Omar Benbouazza (Jan 11) Rooted CON 2014 attendee registration is open! Omar Benbouazza (Jan 14)
Ubuntu, duckduckgo, and additional info Patrick O'Keeffe (Jan 18)
Re: Where are you guys standing re: the (full) disclosure Pedro Luis Karrasquillo (Jan 10) Re: ObamaCare California Admin Interface Exposed to Entire Internet + more! Pedro Luis Karrasquillo (Jan 13)
[CVE -2014-1201] Lorex security DVD ActiveX control buffer overflow Pedro Ribeiro (Jan 10) Re: [CVE -2014-1201] Lorex security DVD ActiveX control buffer overflow Pedro Ribeiro (Jan 10) [CVE-2013-6040] MW6 Technologies ActiveX buffer overflows and remote code execution Pedro Ribeiro (Jan 22)
Re: Chrome (and Safari) antiXSS filter bypass Pedro Worcel (Jan 24)
pfSense 2.1 Privilege Escalation from less privileged users (LFI/RCE) Pichaya Morimoto (Jan 28)
CVE-2013-6429 Fix for XML External Entity (XXE) injection (CVE-2013-4152) in Spring Framework was incomplete Pivotal Security Team (Jan 15) CVE-2013-6430 Possible XSS when using Spring MVC Pivotal Security Team (Jan 15)
[SECURITY] [DSA 2836-1] devscripts security update Raphael Geissert (Jan 06) [SECURITY] [DSA 2844-1] djvulibre security update Raphael Geissert (Jan 15)
Fwd: Trustlook discovered Mi crosoft’s first high risk Android Vulnerability Raymond Zhang (Jan 24)
[SECURITY] [DSA 2832-1] memcached security update Salvatore Bonaccorso (Jan 01) [SECURITY] [DSA 2834-1] typo3-src security update Salvatore Bonaccorso (Jan 01) [SECURITY] [DSA 2839-1] spice security update Salvatore Bonaccorso (Jan 08) [SECURITY] [DSA 2840-1] srtp security update Salvatore Bonaccorso (Jan 10) [SECURITY] [DSA 2843-1] graphviz security update Salvatore Bonaccorso (Jan 13) [SECURITY] [DSA 2831-2] puppet regression update Salvatore Bonaccorso (Jan 17) [SECURITY] [DSA 2847-1] drupal7 security update Salvatore Bonaccorso (Jan 20) [SECURITY] [DSA 2848-1] mysql-5.5 security update Salvatore Bonaccorso (Jan 23) [SECURITY] [DSA 2850-1] libyaml security update Salvatore Bonaccorso (Jan 31)
SCADA StrangeLove 30C3 releases: all in one scadastrangelove (Jan 04)
EE BrightBox router hacked - bares all if you ask nicely Scott Helme (Jan 15)
Remote Command Injection Vulnerability in SkyBlueCanvas CMS Scott Parish (Jan 24)
SEC Consult SA-20140122-0 :: Critical vulnerabilities in T-Mobile HOME NET Router LTE (Huawei B593u-12) SEC Consult Vulnerability Lab (Jan 22)
[ MDVSA-2014:001 ] kernel security (Jan 13) [ MDVSA-2014:002 ] bind security (Jan 16) [ MDVSA-2014:003 ] nrpe security (Jan 16) [ MDVSA-2014:004 ] nagios security (Jan 16) [ MDVSA-2014:005 ] ejabberd security (Jan 16) [ MDVSA-2014:006 ] libxslt security (Jan 16) [ MDVSA-2014:007 ] openssl security (Jan 17) [ MDVSA-2014:008 ] openjpeg security (Jan 17) [ MDVSA-2014:009 ] librsvg security (Jan 17) [ MDVSA-2014:010 ] memcached security (Jan 17) [ MDVSA-2014:011 ] java-1.7.0-openjdk security (Jan 20) [ MDVSA-2014:012 ] nss security (Jan 20) [ MDVSA-2014:013 ] libxfont security (Jan 21) [ MDVSA-2014:014 ] php security (Jan 21) [ MDVSA-2014:015 ] cups security (Jan 22) [ MDVSA-2014:016 ] spice security (Jan 22) [ MDVSA-2014:017 ] net-snmp security (Jan 22) [ MDVSA-2014:018 ] net-snmp security (Jan 22) [ MDVSA-2014:019 ] elinks security (Jan 22) [ MDVSA-2014:020 ] x11-server security (Jan 22) [ MDVSA-2014:021 ] perl-Proc-Daemon security (Jan 24) [ MDVSA-2014:022 ] augeas security (Jan 24) [ MDVSA-2014:023 ] hplip security (Jan 24) [ MDVSA-2014:024 ] graphviz security (Jan 24)
[SE-2013-01] Security vulnerabilities in Oracle Java Cloud Service Security Explorations (Jan 31)
[Security-news] SA-CONTRIB-2014-001 - Entity API - Access Bypass security-news (Jan 08) [Security-news] PSA-2014-001 - Media - Access Bypass security-news (Jan 08) [Security-news] SA-CORE-2014-001 - Drupal core - Multiple vulnerabilities security-news (Jan 15) [Security-news] SA-CONTRIB-2014-002 - Anonymous Posting - Cross Site Scripting (XSS) security-news (Jan 15) [Security-news] SA-CONTRIB-2014-003 - Doubleclick for Publishers DFP - Cross Site Scripting (XSS) security-news (Jan 22) [Security-news] SA-CONTRIB-2014-004 - Secure Cookie Data - Faulty Hashing security-news (Jan 22) [Security-news] SA-CONTRIB-2014-005 - Leaflet - Access bypass security-news (Jan 22) [Security-news] SA-CONTRIB-2014-006 - Language Switcher Dropdown - Open Redirect security-news (Jan 22) [Security-news] SA-CONTRIB-2014-007 - Services - Multiple access bypass vulnerabilities security-news (Jan 29) [Security-news] SA-CONTRIB-2014-008 - Tribune - Cross Site Scripting (XSS) security-news (Jan 29)
Re: Ubuntu, duckduckgo, and additional info Seth Arnold (Jan 15) Re: Ubuntu, duckduckgo, and additional info Seth Arnold (Jan 15)
[CVE-2013-6030]Emerson Network Power Avocent MergePoint Unity 2016 KVM switches contain a directory traversal vulnerability shady . liu (Jan 24)
Ubuntu, duckduckgo, and additional info silence_is_best (Jan 14) Re: Ubuntu, duckduckgo, and additional info silence_is_best (Jan 15) Re: Ubuntu, duckduckgo, and additional info silence_is_best (Jan 15)
Re: DoS vulnerability in Adobe Flash Player (BSOD) sixtyvividtails (Jan 06)
Wordpress Plugin WP-Members Version 2.8.9 - Stored and reflected Cross-site Scripting vulnerabilities Stefan Schurtz (Jan 08) Yahoo Bug Bounty Program Vulnerability #2 Open Redirect Stefan Schurtz (Jan 11) Re: Yahoo Bug Bounty Program Vulnerability #2 Open Redirect Stefan Schurtz (Jan 13) ssl.bing.com - Cross-site Scripting vulnerability Stefan Schurtz (Jan 25)
RVAsec 2014 CFP Sullo (Jan 27)
Re: [Wooyun] OVH a subsite Zabbix Sql injection thomas . soete (Jan 09)
ADV: IBM QRadar SIEM Thomas Pollet (Jan 24)
[CVE-2013-6480] Libcloud doesn't send scrub_data query parameter when destroying a DigitalOcean node Tomaz Muraus (Jan 01)
Re: EE BrightBox router hacked - bares all if you ask nicely Tracy Reed (Jan 16)
TWSL2014-001: Multiple Vulnerabilities in Franklin Fueling's TS-550 evo Trustwave Advisories (Jan 21) TWSL2014-002: Buffer Overflow Vulnerability in DaumGame ActiveX Trustwave Advisories (Jan 21)
Healthcare.gov noise truthinallthings (Jan 24)
Re: EE BrightBox router hacked - bares all if you ask nicely Valdis . Kletnieks (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Valdis . Kletnieks (Jan 16)
Mozilla Bug Bounty #5 - WireTap Remote Web Vulnerability Vulnerability Lab (Jan 27) SimplyShare v1.4 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Jan 29)
Chrome (and Safari) antiXSS filter bypass vulns () 11paths com (Jan 22)
ObamaCare California Admin Interface Exposed to Entire Internet + more! Whitehat Whistleblower (Jan 10)
Contact PSIRT Fortinet William Costa (Jan 24)
Collabtive Sql Injection YOGESH PHADTARE (Jan 15)
[SECURITY] [DSA 2826-2] denyhosts regression update Yves-Alexis Perez (Jan 24)
Re: EE BrightBox router hacked - bares all if you ask nicely Źmicier Januszkiewicz (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Źmicier Januszkiewicz (Jan 16) Re: EE BrightBox router hacked - bares all if you ask nicely Źmicier Januszkiewicz (Jan 16)
Re: Securelist.com (Kaspersky) released a misleading information about Kelihos Botnet actual status アドリアンヘンドリック (Jan 03)
RSS Feed
About List
All Lists
Previous period