VulnWatch (vulnwatch) Mailing List

VulnWatch (vulnwatch) Mailing List http://seclists.org/#vulnwatch A non-discussion, non-patch, all-vulnerability annoucement list supported and run by a community of volunteer moderators distributed around the world. en-us60 Source Boston 2008 security con, March 12-14Posted by Chris Wysopal on Feb 19 http://seclists.org/vulnwatch/2008/q1/0019.htmlhttp://seclists.org/vulnwatch/2008/q1/0019.html Tue, 19 Feb 2008 10:57:35 -0500 (EST) iDefense Security Advisory 02.12.08: ClamAV libclamav PE File Integer Overflow VulnerabilityPosted by iDefense Labs on Feb 12 http://seclists.org/vulnwatch/2008/q1/0018.htmlhttp://seclists.org/vulnwatch/2008/q1/0018.html Tue, 12 Feb 2008 12:35:03 -0500 CSA-L03: Linux kernel vmsplice unchecked user-pointer dereferencePosted by Wojciech Purczynski on Feb 12 http://seclists.org/vulnwatch/2008/q1/0017.htmlhttp://seclists.org/vulnwatch/2008/q1/0017.html Tue, 12 Feb 2008 08:50:49 +0100 iDefense Security Advisory 02.04.08: Hewlett-Packard Network Node Manager Topology Manager Service DoS VulnerabilityPosted by iDefense Labs on Feb 06 http://seclists.org/vulnwatch/2008/q1/0016.htmlhttp://seclists.org/vulnwatch/2008/q1/0016.html Wed, 06 Feb 2008 14:19:06 -0500 iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server onedcu File Creation VulnerabilityPosted by iDefense Labs on Feb 04 http://seclists.org/vulnwatch/2008/q1/0015.htmlhttp://seclists.org/vulnwatch/2008/q1/0015.html Mon, 04 Feb 2008 14:49:53 -0500 iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server SQLIDEBUG File Creation VulnerabilityPosted by iDefense Labs on Feb 04 http://seclists.org/vulnwatch/2008/q1/0014.htmlhttp://seclists.org/vulnwatch/2008/q1/0014.html Mon, 04 Feb 2008 14:48:20 -0500 CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerabilityPosted by CORE Security Technologies Advisories on Feb 04 http://seclists.org/vulnwatch/2008/q1/0013.htmlhttp://seclists.org/vulnwatch/2008/q1/0013.html Mon, 04 Feb 2008 17:43:30 -0200 CORE-2008-0122: MPlayer arbitrary pointer dereferencePosted by CORE Security Technologies Advisories on Feb 04 http://seclists.org/vulnwatch/2008/q1/0012.htmlhttp://seclists.org/vulnwatch/2008/q1/0012.html Mon, 04 Feb 2008 17:27:16 -0200 Cisco Security Advisory: Cisco Wireless Control System Tomcat mod_jk.so VulnerabilityPosted by Cisco Systems Product Security Incident Response Team on Jan 30 http://seclists.org/vulnwatch/2008/q1/0011.htmlhttp://seclists.org/vulnwatch/2008/q1/0011.html Wed, 30 Jan 2008 11:58:45 -0500 CORE-2007-1219: Firebird Remote Memory CorruptionPosted by Core Security Technologies Advisories on Jan 28 http://seclists.org/vulnwatch/2008/q1/0010.htmlhttp://seclists.org/vulnwatch/2008/q1/0010.html Mon, 28 Jan 2008 15:32:00 -0200 Syhunt: HFS (HTTP File Server) Username Spoofing and Log ForgingInjection VulnerabilityPosted by Alec Storm on Jan 23 http://seclists.org/vulnwatch/2008/q1/0009.htmlhttp://seclists.org/vulnwatch/2008/q1/0009.html Wed, 23 Jan 2008 15:50:57 -0200 Syhunt: HFS (HTTP File Server) Log Arbitrary FileDirectory Manipulation and Denial-of-Service VulnerabilitiesPosted by Alec Storm on Jan 23 http://seclists.org/vulnwatch/2008/q1/0008.htmlhttp://seclists.org/vulnwatch/2008/q1/0008.html Wed, 23 Jan 2008 15:49:51 -0200 Syhunt: HFS (HTTP File Server) Template Cross-Site Scripting and Information Disclosure VulnerabilitiesPosted by Alec Storm on Jan 23 http://seclists.org/vulnwatch/2008/q1/0007.htmlhttp://seclists.org/vulnwatch/2008/q1/0007.html Wed, 23 Jan 2008 15:48:38 -0200 Cisco Security Advisory: Default Passwords in the Application Velocity SystemPosted by Cisco Systems Product Security Incident Response Team on Jan 23 http://seclists.org/vulnwatch/2008/q1/0006.htmlhttp://seclists.org/vulnwatch/2008/q1/0006.html Wed, 23 Jan 2008 12:28:29 -0500 iDefense Security Advisory 01.09.08: Novell NetWare Client nicm.sys Local Privilege Escalation VulnerabilityPosted by iDefense Labs on Jan 09 http://seclists.org/vulnwatch/2008/q1/0005.htmlhttp://seclists.org/vulnwatch/2008/q1/0005.html Wed, 09 Jan 2008 16:06:53 -0500 Corsaire Security Advisory: Sun J2RE DoS issuePosted by advisories on Jan 8 http://seclists.org/vulnwatch/2008/q1/0004.htmlhttp://seclists.org/vulnwatch/2008/q1/0004.html Tue, 8 Jan 2008 12:36:32 -0000 iDefense Security Advisory 01.07.08: Motorola netOctopus Agent MSR Write Privilege Escalation VulnerabilityPosted by iDefense Labs on Jan 07 http://seclists.org/vulnwatch/2008/q1/0003.htmlhttp://seclists.org/vulnwatch/2008/q1/0003.html Mon, 07 Jan 2008 16:09:53 -0500 CORE-2007-1106: SynCE Remote Command InjectionPosted by CORE Security Technologies Advisories on Jan 07 http://seclists.org/vulnwatch/2008/q1/0002.htmlhttp://seclists.org/vulnwatch/2008/q1/0002.html Mon, 07 Jan 2008 16:36:11 -0300 iDefense Security Advisory 12.24.07: Novell ZENworks Endpoint Security Management Local Privilege Escalation VulnerabilityPosted by iDefense Labs on Jan 04 http://seclists.org/vulnwatch/2008/q1/0001.htmlhttp://seclists.org/vulnwatch/2008/q1/0001.html Fri, 04 Jan 2008 16:42:46 -0500