Bugtraq: by subject

/home/putnopvut/asa/AST-2008-007/AST-2008-007: AST-2008-007 Cryptographic keys generated by OpenSSL on Debian-based systems compromised
- Florian Weimer (May 22 2008)
- Asterisk Security Team (May 22 2008)
[ GLSA 200805-01 ] Horde Application Framework: Multiple vulnerabilities
- Pierre-Yves Rofes (May 05 2008)
[ GLSA 200805-02 ] phpMyAdmin: Information disclosure
- Pierre-Yves Rofes (May 05 2008)
[ GLSA 200805-03 ] Multiple X11 terminals: Local privilege escalation
- Tobias Heinlein (May 07 2008)
[ GLSA 200805-06 ] Firebird: Data disclosure
- Robert Buchholz (May 09 2008)
[ GLSA 200805-07 ] Linux Terminal Server Project: Multiple vulnerabilities
- Robert Buchholz (May 09 2008)
[ GLSA 200805-08 ] InspIRCd: Denial of Service
- Robert Buchholz (May 09 2008)
[ GLSA 200805-09 ] MoinMoin: Privilege escalation
- Pierre-Yves Rofes (May 11 2008)
[ GLSA 200805-10 ] Pngcrush: User-assisted execution of arbitrary code
- Pierre-Yves Rofes (May 11 2008)
[ GLSA 200805-11 ] Chicken: Multiple vulnerabilities
- Pierre-Yves Rofes (May 12 2008)
[ GLSA 200805-12 ] Blender: Multiple vulnerabilities
- Pierre-Yves Rofes (May 12 2008)
[ GLSA 200805-13 ] PTeX: Multiple vulnerabilities
- Pierre-Yves Rofes (May 12 2008)
[ GLSA 200805-14 ] Common Data Format library: User-assisted execution of arbitrary code
- Pierre-Yves Rofes (May 13 2008)
[ GLSA 200805-15 ] libid3tag: Denial of Service
- Tobias Heinlein (May 14 2008)
[ GLSA 200805-16 ] OpenOffice.org: Multiple vulnerabilities
- Robert Buchholz (May 14 2008)
[ GLSA 200805-17 ] Perl: Execution of arbitrary code
- Tobias Heinlein (May 20 2008)
[ GLSA 200805-18 ] Mozilla products: Multiple vulnerabilities
- Robert Buchholz (May 20 2008)
[ GLSA 200805-19 ] ClamAV: Multiple vulnerabilities
- Robert Buchholz (May 20 2008)
[ GLSA 200805-20 ] GnuTLS: Execution of arbitrary code
- Robert Buchholz (May 21 2008)
[ GLSA 200805-21 ] Roundup: Permission bypass
- Tobias Heinlein (May 27 2008)
[ GLSA 200805-22 ] MPlayer: User-assisted execution of arbitrary code
- Tobias Heinlein (May 29 2008)
[ GLSA 200805-23 ] Samba: Heap-based buffer overflow
- Tobias Heinlein (May 29 2008)
[ MDVSA-2008:095 ] - Updated OpenOffice.org packages fix vulnerabilities
- security_at_mandriva.com (May 02 2008)
[ MDVSA-2008:096 ] - Updated emacs packages fix vulnerability in vcdiff
- security_at_mandriva.com (May 06 2008)
[ MDVSA-2008:097 ] - Updated kdelibs packages fix vulnerability in start_kdeinit
- security_at_mandriva.com (May 06 2008)
[ MDVSA-2008:098 ] - Updated openssh packages fix vulnerability
- security_at_mandriva.com (May 06 2008)
[ MDVSA-2008:099 ] - Updated ImageMagick packages fix vulnerabilities
- security_at_mandriva.com (May 08 2008)
[ MDVSA-2008:100 ] - Updated perl packages fix denial of service vulnerability
- security_at_mandriva.com (May 11 2008)
[ MDVSA-2008:101 ] - Updated rdesktop packages fix vulnerabilities
- security_at_mandriva.com (May 16 2008)
[ MDVSA-2008:102 ] - Updated libvorbis packages fix vulnerabilities
- security_at_mandriva.com (May 16 2008)
[ MDVSA-2008:103 ] - Updated libid3tag packages fix denial of service vulnerability
- security_at_mandriva.com (May 19 2008)
[ MDVSA-2008:105 ] - Updated kernel packages fix vulnerabilities
- security_at_mandriva.com (May 21 2008)
[ MDVSA-2008:106 ] - Updated gnutls packages fix denial of service vulnerabilities
- security_at_mandriva.com (May 23 2008)
[ MDVSA-2008:107 ] - Updated openssl package fixes denial of service vulnerabilities
- security_at_mandriva.com (May 28 2008)
[ MDVSA-2008:108 ] - Updated samba packages fix arbitrary code execution vulnerability
- security_at_mandriva.com (May 28 2008)
[Advisory Update]Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability
- cocoruder (May 06 2008)
[DSECRG-08-020] Alcatel OmniPCX Office Remote Comand Execution
- Digital Security Research Group (May 21 2008)
[DSECRG-08-023] SAP Web Application Server XSS Security Vulnerability
- Digital Security Research Group (May 21 2008)
[DSECRG-08-024] Multiple Security Vulnerabilities (RFI,LFI,XSS) in QuateCMS
- Digital Security Research Group (May 23 2008)
[DSECRG-08-025] Local File Include in OneCMS 2.5
- Digital Security Research Group (May 23 2008)
[ECHO_ADV_90$2008] PostNuke Module pnEncyclopedia <= 0.2.0 (id) Blind Sql Injection Vulnerability
- erdc_at_echo.or.id (May 05 2008)
[ECHO_ADV_91$2008] Online Rental Property Script <= 4.5 (pid) Blind Sql Injection Vulnerability
- catalina.danila_at_romedchim.com (May 07 2008)
- erdc_at_echo.or.id (May 05 2008)
[ECHO_ADV_92$2008] Anserv Auction XL (viewfaqs.php cat) Blind Sql Injection Vulnerability
- erdc_at_echo.or.id (May 05 2008)
[ECHO_ADV_93$2008] Kmita Tellfriend <= 2.0 (file) Remote File Inclusion Vulnerability
- erdc_at_echo.or.id (May 05 2008)
[ECHO_ADV_94$2008] Kmita Mail <= 3.0 (file) Remote File Inclusion Vulnerability
- erdc_at_echo.or.id (May 05 2008)
[ECHO_ADV_95$2008] BackLinkSpider (cat_id) Blind Sql Injection Vulnerability
- erdc_at_echo.or.id (May 05 2008)
[HV-INFO] Enova hardware encryption: false sense of security
- rwann_at_enovatech.com (May 29 2008)
- rwann_at_enovatech.com (May 28 2008)
[MajorSecurity Advisory #52]ActualAnalyzer family - Cross Site Scripting Issues
- admin_at_majorsecurity.de (May 12 2008)
[NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc
- ipsdix_at_gmail.com (May 28 2008)
[SAMBA] CVE-2008-1105 - Boundary failure when parsing SMB responses
- Gerald (Jerry) Carter (May 28 2008)
[security bulletin] HPSBMA02331 SSRT080000 rev.2 - HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges
- security-alert_at_hp.com (May 06 2008)
[security bulletin] HPSBST02336 SSRT080071 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-026 to MS08-029
- security-alert_at_hp.com (May 19 2008)
[security bulletin] HPSBUX02332 SSRT080056 rev.2 - HP-UX Running Apache With PHP, Remote Denial of Service (DoS), Gain Extended Privileges
- security-alert_at_hp.com (May 19 2008)
[security bulletin] HPSBUX02334 SSRT071403 rev.1 - HP-UX Running ftp, Remote Denial of Service (DoS)
- security-alert_at_hp.com (May 12 2008)
[security bulletin] HPSBUX02334 SSRT071403 rev.2 - HP-UX Running ftp, Remote Denial of Service (DoS)
- security-alert_at_hp.com (May 28 2008)
[security bulletin] HPSBUX02335 SSRT071454 rev.1 - HP-UX Running useradd(1M), Local Unauthorized Access
- security-alert_at_hp.com (May 19 2008)
[security bulletin] HPSBUX02335 SSRT071454 rev.2 - HP-UX Running useradd(1M), Local Unauthorized Access
- security-alert_at_hp.com (May 27 2008)
[security bulletin] HPSBUX02337 SSRT080072 rev.1 - HP-UX Running HP-UX Secure Shell, Local Unauthorized Access and Denial of Service (DoS)
- security-alert_at_hp.com (May 22 2008)
[SECURITY] [DSA 1554-2] New roundup packages fix regression
- Thijs Kinkhorst (May 06 2008)
[SECURITY] [DSA 1564-1] New wordpress packages fix several vulnerabilities
- Thijs Kinkhorst (May 01 2008)
[SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
- dann frazier (May 01 2008)
[SECURITY] [DSA 1566-1] New cpio packages fix denial of service
- Steve Kemp (May 02 2008)
[SECURITY] [DSA 1567-1] New blender packages fix arbitrary code execution
- Devin Carraway (May 05 2008)
[SECURITY] [DSA 1568-1] New b2evolution packages fix cross site scripting
- Thijs Kinkhorst (May 05 2008)
[SECURITY] [DSA 1569-1] New cacti packages fix multiple vulnerabilities
- Thijs Kinkhorst (May 05 2008)
[SECURITY] [DSA 1569-2] New cacti packages fix regression
- Thijs Kinkhorst (May 06 2008)
[SECURITY] [DSA 1570-1] New kazehakase packages fix execution of arbitrary code
- Steve Kemp (May 06 2008)
[SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
- Florian Weimer (May 13 2008)
[SECURITY] [DSA 1572-1] New php5 packages fix several vulnerabilities
- Thijs Kinkhorst (May 11 2008)
[SECURITY] [DSA 1573-1] New php5 packages fix several vulnerabilities
- Thijs Kinkhorst (May 11 2008)
[SECURITY] [DSA 1573-1] New rdesktop packages fix several vulnerabilities
- Thijs Kinkhorst (May 12 2008)
[SECURITY] [DSA 1574-1] New icedove packages fix several vulnerabilities
- Moritz Muehlenhoff (May 12 2008)
[SECURITY] [DSA 1575-1] New Linux 2.6.18 packages fix denial of service
- dann frazier (May 12 2008)
[SECURITY] [DSA 1576-1] New openssh packages fix predictable randomness
- Florian Weimer (May 14 2008)
[SECURITY] [DSA 1576-2] New openssh packages fix predictable randomness
- Noah Meyerhans (May 16 2008)
[SECURITY] [DSA 1577-1] New gforge packages fix insecure temporary files
- Thijs Kinkhorst (May 14 2008)
[SECURITY] [DSA 1578-1] New php4 packages fix several vulnerabilities
- Thijs Kinkhorst (May 17 2008)
[SECURITY] [DSA 1579-1] New netpbm-free packages fix arbitrary code execution
- Devin Carraway (May 18 2008)
[SECURITY] [DSA 1580-1] New phpgedview packages fix privilege escalation
- Thijs Kinkhorst (May 20 2008)
[SECURITY] [DSA 1581-1] New gnutls13 packages fix potential code execution
- Florian Weimer (May 20 2008)
[SECURITY] [DSA 1582-1] New peercast packages fix arbitrary code execution
- Thijs Kinkhorst (May 20 2008)
[SECURITY] [DSA 1583-1] New gnome-peercast packages fix several vulnerabilities
- Thijs Kinkhorst (May 20 2008)
[SECURITY] [DSA 1584-1] New libfissound packages fix execution of arbitrary code
- Steve Kemp (May 21 2008)
[SECURITY] [DSA 1586-1] New xine-lib packages fix several vulnerabilities
- Devin Carraway (May 22 2008)
[SECURITY] [DSA 1587-1] New mtr packages fix execution of arbitrary code
- Steve Kemp (May 26 2008)
[SECURITY] [DSA 1588-1] New Linux 2.6.18 packages fix several vulnerabilities
- dann frazier (May 27 2008)
[SECURITY] [DSA 1588-2] New Linux 2.6.18 packages fix several vulnerabilities
- dann frazier (May 30 2008)
[SECURITY] [DSA 1590-1] New samba packages fix arbitrary code execution
- Florian Weimer (May 30 2008)
[tool announcement] tmin - a handy fuzzing test case optimizer
- Michal Zalewski (May 06 2008)
[TOOL] SSL Capable NetCat (and more)
- GomoR (May 03 2008)
[USN-605-1] Thunderbird vulnerabilities
- Jamie Strandboge (May 06 2008)
[USN-606-1] CUPS vulnerability
- Jamie Strandboge (May 05 2008)
[USN-607-1] Emacs vulnerabilities
- Jamie Strandboge (May 06 2008)
[USN-608-1] KDE vulnerability
- Jamie Strandboge (May 06 2008)
[USN-609-1] OpenOffice.org vulnerabilities
- Kees Cook (May 06 2008)
[USN-610-1] LTSP vulnerability
- Kees Cook (May 06 2008)
[USN-611-1] Speex vulnerability
- Jamie Strandboge (May 08 2008)
[USN-611-2] vorbis-tools vulnerability
- Jamie Strandboge (May 08 2008)
[USN-611-3] GStreamer Good Plugins vulnerability
- Jamie Strandboge (May 08 2008)
[USN-612-1] OpenSSL vulnerability
- Jamie Strandboge (May 13 2008)
[USN-612-2] OpenSSH vulnerability
- Jamie Strandboge (May 13 2008)
[USN-612-4] ssl-cert vulnerability
- Kees Cook (May 14 2008)
[USN-612-5] OpenSSH update
- Jamie Strandboge (May 14 2008)
[USN-612-6] OpenVPN regression
- Jamie Strandboge (May 14 2008)
[USN-612-7] OpenSSH update
- Kees Cook (May 20 2008)
[USN-612-8] openssl-blacklist update
- Jamie Strandboge (May 21 2008)
[USN-613-1] GnuTLS vulnerabilities
- Kees Cook (May 21 2008)
abledating 2.4 >> Sql injection and cross site scripting on search_results.php
- a.jasbi_at_yahoo.com (May 22 2008)
Ablespace 1.0 'cat_id' Parameter SQL Injection Vulnerability
- a.jasbi_at_yahoo.com (May 25 2008)
Adobe Acrobat Professional Javascript For PDF Security Feature Bypass and Memory Corruption Vulnerabilities
- cocoruder (May 06 2008)
Advisory - Rsyncrypto maybe affected from Debian OpenSSL reduced entropy problem
- Aviram Jenik (May 26 2008)
Advisory SE-2008-02: PHP GENERATE_SEED() Weak Random Number Seed Vulnerability
- Stefan Esser (May 06 2008)
Advisory SE-2008-03: PHP Multibyte Shell Command Escaping Bypass Vulnerability
- Stefan Esser (May 06 2008)
After 6 months - fix available for Microsoft DNS cache poisoning attack
- Amit Klein (May 08 2008)
- rick.a.cook_at_gmail.com (May 08 2008)
An account of the Estonian Internet War
- Gadi Evron (May 20 2008)
- Viktor Larionov (May 20 2008)
- Gadi Evron (May 20 2008)
Apache Server HTML Injection and UTF-7 XSS Vulnerability
- Tom.Donovan_at_acm.org (May 17 2008)
- William A. Rowe, Jr. (May 17 2008)
- Tim (May 17 2008)
- Paul Szabo (May 17 2008)
- yos20053_at_gmail.com (May 17 2008)
- Jon Ribbens (May 16 2008)
- Tom.Donovan_at_acm.org (May 14 2008)
- lament hero (May 14 2008)
- cxib_at_securityreason.com (May 12 2008)
- yos20053_at_gmail.com (May 10 2008)
- cxib_at_securityreason.com (May 10 2008)
- lament hero (May 08 2008)
Apple iPhone 1.1.3 remote DoS exploit
- sohotguy_at_mac.com (May 19 2008)
AppServ Open Project < = 2.5.10 Remote XSS Vulnerability
- tan_prathan_at_hotmail.com (May 19 2008)
Aruba Mobility Controller TACACS User Authentication and Cross Site Scripting Vulnerabilities (Aruba Advisory ID: AID-051408)
- Robbie (Rupinder) Gill (May 14 2008)
BlackBook v1.0 Multiple XSS Vulnerabilities
- irancrash_at_gmail.com (May 01 2008)
blur6ex-0.3.462 LOCAL FILE INCLUSION Vulnerbility
- hadihadi_zedehal_2006_at_yahoo.com (May 02 2008)
BMForum Remote 5.6 Miltiple XSS Vulnerability
- tan_prathan_at_hotmail.com (May 22 2008)
BosNews v4.0 Remote add user admin
- sales_at_bosdev.com (May 24 2008)
Bypassing URL Authentication and Authorization with HTTP Verb Tampering
- Jim Harrison (May 28 2008)
- Arshan Dabirsiaghi (May 28 2008)
CA ARCserve Backup caloggerd and xdr Functions Vulnerabilities
- Williams, James K (May 19 2008)
Calcium web calendar: Reflected XSS
- Marvin Simkin (May 28 2008)
Campus Bulletin Board v3.4 Multiple Remote Vulnerabilities
- unohope_at_chroot.org (May 26 2008)
CFP for HITBSecConf2008 - Malaysia now open
- Praburaajan (May 16 2008)
CFP: European Conference on Computer Network Defense
- Stefano Zanero (May 14 2008)
chicomas.2.0.4
- hadikiamarsi_at_hotmail.com (May 02 2008)
Cisco BBSM Captive Portal Cross-site Scripting
- Eloy Paris (May 14 2008)
- brad.antoniewicz_at_foundstone.com (May 13 2008)
Cisco Security Advisory: Cisco Content Switching Module Memory Leak Vulnerability
- Cisco Systems Product Security Incident Response Team (May 14 2008)
Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service
- Cisco Systems Product Security Incident Response Team (May 21 2008)
Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities
- Cisco Systems Product Security Incident Response Team (May 14 2008)
Cisco Security Advisory: Cisco Unified Presence Denial of Service Vulnerabilities
- Cisco Systems Product Security Incident Response Team (May 14 2008)
Cisco Security Advisory: Cisco Unified Presence Denial of Service Vulnerabilities (UNCLASSIFIED)
- Walker, Theresa A CIV DISA CSD (May 14 2008)
Cisco Security Advisory: Cisco Voice Portal Privilege Escalation Vulnerability
- Cisco Systems Product Security Incident Response Team (May 21 2008)
Cisco Security Advisory: CiscoWorks Common Services Arbitrary Code Execution Vulnerability
- Cisco Systems Product Security Incident Response Team (May 28 2008)
Class System v2.3 Multiple Remote Vulnerabilities
- unohope_at_chroot.org (May 26 2008)
Confirmed Program for SyScan'08 Hong Kong
- organiser_at_syscan.org (May 11 2008)
CORE-2008-0126: Multiple vulnerabilities in iCal
- Steven M. Christey (May 28 2008)
- security curmudgeon (May 26 2008)
- Core Security Technologies Advisories (May 21 2008)
CORE-2008-0129 - Wonderware SuiteLink Denial of Service vulnerability
- CORE Security Technologies Advisories (May 05 2008)
CORE-2008-0415: Borland Interbase 2007 Integer Overflow
- CORE Security Technologies (May 20 2008)
Correction to BID 29112 "Apache Server HTML Injection and UTF-7 XSS Vulnerability"
- William A. Rowe, Jr. (May 14 2008)
Cpanel all version >> root access with a reseller account.
- dave_at_cpanel.net (May 19 2008)
- a.jasbi_at_yahoo.com (May 18 2008)
Debian generated SSH-Keys working exploit
- mm_at_deadbeef.de (May 14 2008)
Denial of Service in Call of Duty 4 1.5
- Luigi Auriemma (May 02 2008)
DoS attacks using SQL Wildcards - White Paper
- Ferruh Mavituna (May 19 2008)
Dot Net Nuke (DNN) <= 4.8.3 XSS Vulnerability
- Admin_at_bugreport.ir (May 30 2008)
dvbbs8.2(access/sql)version login.asp remote sql injection
- hackerb_at_hotmail.com (May 29 2008)
dzoic handshakes sql injection >> index.php on $fname
- a.jasbi_at_yahoo.com (May 24 2008)
e107 Plugin BLOG Engine v2.2 (macgurublog.php/uid) Blind SQL Injection Vulnerability
- hadihadi_zedehal_2006_at_yahoo.com (May 22 2008)
eCMS-v0.4.2 (SQL/PB) Multiple Remote Vulnerabilities
- hadihadi_zedehal_2006_at_yahoo.com (May 20 2008)
Excuse Online (pwd) SQL Injection Vulnerability
- unohope_at_chroot.org (May 26 2008)
Exploiting Google MX servers as Open SMTP Relays
- pablo.ximenes_at_upr.edu (May 21 2008)
- Lamont Granquist (May 10 2008)
- pablo.ximenes_at_upr.edu (May 10 2008)
- Bojan Zdrnja (May 11 2008)
- Clifton Royston (May 10 2008)
- Todd T. Fries (May 10 2008)
- Todd T. Fries (May 10 2008)
- Gadi Evron (May 07 2008)
- Michael Scheidell (May 10 2008)
- pablo.ximenes_at_upr.edu (May 07 2008)
Exteen Blog XSS Remote Cookie Disclosure Exploit
- tan_prathan_at_hotmail.com (May 22 2008)
ezContents CMS Version 2.0.0 SQL Injection Vulnerabilities
- hadihadi_zedehal_2006_at_yahoo.com (May 07 2008)
FInal EUSecWest 2008 Speakers
- Dragos Ruiu (May 08 2008)
Fixed: LiveCart SQL injection vulnerability fixed since version 1.1.2
- LiveCart (May 03 2008)
Flash Blog Sql Injection
- 16.her0_at_gmail.com (May 28 2008)
FlashBlog Remote File Upload Vulnerability
- mefisto_at_hackermail.com (May 28 2008)
FLEA-2008-0008-1 firefox
- Foresight Linux Essential Announcement Service (May 08 2008)
function sleep() in all versions of PHP
- Michael Wojcik (May 28 2008)
- Glynn Clements (May 27 2008)
- Michael G. Reed (May 27 2008)
- Charles Morris (May 27 2008)
- cxib_at_securityreason.com (May 27 2008)
- Juan Miguel - Prisma Virtual - (May 26 2008)
- Mark Sanders (May 26 2008)
- gogulas_at_wp.pl (May 24 2008)
GroupWise 7.0 mailto: scheme buffer overflow
- jplopezy_at_gmail.com (May 03 2008)
- hollebcons_at_aol.com (May 02 2008)
Hack.lu 2008 CfP
- info (May 15 2008)
HPSBUX02324 SSRT080034 rev.1 - HP-UX Running Netscape Directory Server (NDS), Local Gain Extended Privileges
- security-alert_at_hp.com (May 06 2008)
HPSBUX02332 SSRT080056 rev.1 - HP-UX running Apache with PHP, Remote Denial of Service (DoS), Gain Extended Privileges
- security-alert_at_hp.com (May 06 2008)
iDefense Security Advisory 04.30.08: Akamai Download Manager Arbitrary Program Execution Vulnerability
- iDefense Labs (May 01 2008)
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop channel_process() Integer Signedness Vulnerability
- iDefense Labs (May 07 2008)
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop iso_recv_msg() Integer Underflow Vulnerability
- iDefense Labs (May 07 2008)
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop process_redirect_pdu() BSS Overflow Vulnerability
- iDefense Labs (May 07 2008)
iDefense Security Advisory 05.12.08: Microsoft Windows I2O Filter Utility Driver (i2omgmt.sys) Local Privilege Escalation Vulnerability
- iDefense Labs (May 12 2008)
iDefense Security Advisory 05.13.08: Microsoft Word CSS Processing Memory Corruption Vulnerability
- iDefense Labs (May 13 2008)
iDefense Security Advisory 05.21.08: Multiple Vendor Snort IP Fragment TTL Evasion Vulnerability
- iDefense Labs (May 21 2008)
iDefense Security Advisory 05.27.08: EMC AlphaStor Library Manager Arbitrary Command Execution Vulnerability
- iDefense Labs (May 27 2008)
iDefense Security Advisory 05.27.08: EMC AlphaStor Server Agent Multiple Stack Buffer Overflow Vulnerabilities
- iDefense Labs (May 27 2008)
Insomnia : ISVA-080516.1 - Altiris Deployment Solution - SQL Injection
- Brett Moore (May 18 2008)
Insomnia : ISVA-080516.2 - Altiris Deployment Solution - Domain Account Disclosure
- Brett Moore (May 18 2008)
Invitation - OWASP AppSec Europe May 19-22 2008 - Belgium
- Sebastien Deleersnyder (May 05 2008)
IOS Rookit: the sky isn't falling (yet)
- Felix 'FX' Lindner (May 27 2008)
- Nicolas FISCHBACH (May 27 2008)
IOS rootkits
- Gadi Evron (May 16 2008)
IOS rootkits (fwd)
- Gadi Evron (May 25 2008)
IRM Security Advisory : Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability
- Mark Crowther (May 22 2008)
Joomla Component xsstream-dm 0.01 Beta SQL Injection
- houssamix_at_hotmail.fr (May 11 2008)
Kostenloses Linkmanagementscript SQL Injection Vulnerabilities
- hadihadi_zedehal_2006_at_yahoo.com (May 14 2008)
Lifetype 1.2.7 XSS Vulnerability
- securityfocus_at_jon.limedaley.com (May 04 2008)
- irancrash_at_gmail.com (May 02 2008)
LifeType 1.2.8
- irancrash_at_gmail.com (May 05 2008)
LokiCMS Multiple Vulnerabilities through Authorization weakness
- Alireza Hassani (May 31 2008)
Maian Cart v1.1 XSS Vulnerabilities
- irancrash_at_gmail.com (May 03 2008)
Maian Gallery v2.0 XSS Vulnerability
- irancrash_at_gmail.com (May 03 2008)
Maian Greeting v2.1 Multiple Vulnerabilities (XSS/SQL INJECTION)
- irancrash_at_gmail.com (May 03 2008)
Maian Guestbook v3.2 XSS Vulnerabilities
- irancrash_at_gmail.com (May 03 2008)
Maian Links v3.1 XSS Vulnerabilities
- irancrash_at_gmail.com (May 03 2008)
Maian Music v1.1 Multiple Vulnerabilities (Xss/SQL Injection)
- irancrash_at_gmail.com (May 03 2008)
Maian Recipe v1.2 Xss Vulnerabilities
- irancrash_at_gmail.com (May 03 2008)
Maian Search v1.1 Multiple Vulnerabilities (XSS/SQL INJECTION)
- irancrash_at_gmail.com (May 03 2008)
Maian Support v1.3 Xss Vulnerabilities
- irancrash_at_gmail.com (May 03 2008)
Maian Uploader v4.0 XSS Vulnerabilities
- irancrash_at_gmail.com (May 05 2008)
Maian Weblog v4.0 XSS Vulnerabilities
- irancrash_at_gmail.com (May 03 2008)
Malformed Acrobat Distiller 8 .joboptions
- Paul Craig (May 13 2008)
Mantis Bug Tracker 1.1.1 Multiple Vulnerabilities
- ascii (May 20 2008)
MDAP ANTs PWNAGE: dumping the admin password of the BT Home Hub
- Adrian Pastor (May 27 2008)
- Adrian Pastor (May 21 2008)
Microsoft Office Publisher PUB File Parsing Remote Memory Corruption Vulnerability
- cocoruder (May 13 2008)
Microsoft word javascript execution
- jplopezy_at_gmail.com (May 18 2008)
Microsot DID DISCLOSE potential Backdoor
- J. Oquendo (May 06 2008)
- Ken Schaefer (May 06 2008)
- J. Oquendo (May 06 2008)
- Ken Schaefer (May 06 2008)
- J. Oquendo (May 03 2008)
Mini-CWB <= 2.1.1 Remote XSS Vulnerability
- tan_prathan_at_hotmail.com (May 25 2008)
mjguest 6.7 (ALL VERSION) Xss & Redirection Vuln
- alighieri_m_at_libero.it (May 21 2008)
- irancrash_at_gmail.com (May 01 2008)
Mtr - remote and local stack overflow - uncomment situation in libresolv.
- pi3_at_itsec.pl (May 19 2008)
Multiple vulnerabilities
- Pierre-Yves Rofes (May 07 2008)
Multiple vulnerabilities in WebMod 0.48
- Luigi Auriemma (May 03 2008)
Multiple XSS In TuxCMS All Version
- hadikiamarsi_at_hotmail.com (May 07 2008)
mvnForum 1.1 Cross Site Scripting
- decoder-bugtraq_at_own-hero.net (May 06 2008)
netOffice Dwins 1.3 Remote code execution.
- luiswang_at_user.sourceforge.net (May 01 2008)
Novell Client <= 4.91 SP4 Local Stack overflow / B.S.O.D (unauthentificated user)
- laurent.gaffie_at_gmail.com (May 08 2008)
Novell eDirectory DoS via HTTP headers
- Nicob (May 05 2008)
Novell eDirectory unauthenticated access to SOAP interface
- Nicob (May 05 2008)
Oracle Application Server 10G ORA_DAV Basic Authentication Bypass Vulnerability
- Deniz Cevik (May 09 2008)
OtherLogic[vocourse.php]SQL Injection Exploit
- Breeeeh_at_hotmail.com (May 09 2008)
PCPIN Chat 6: potential XSS vulnerability in URL redirection script
- admin_at_pcpin.com (May 24 2008)
Photos and Presentation Materials from HITBSecConf2008 - Dubai Released
- Praburaajan (May 02 2008)
php-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)
- irancrash_at_gmail.com (May 01 2008)
PHP-Nuke Module KuraniKerim [sid] SQL Injection
- lovebug_at_hotmail.it (May 17 2008)
phpFix v2 Multiple SQL Injection Vulnerability
- unohope_at_chroot.org (May 26 2008)
PHPFreeForum <= 1.0 RC2 Remote XSS Vulnerability
- tan_prathan_at_hotmail.com (May 22 2008)
phpSQLiteCMS Multiple Remote XSS Vulnerability
- tan_prathan_at_hotmail.com (May 22 2008)
Power Editor LOCAL FILE INCLUSION Vulnerbility
- hadihadi_zedehal_2006_at_yahoo.com (May 05 2008)
PR07-15: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.logon.php3' server-side script
- Ricardo Martins - Chief Security Officers (May 23 2008)
project alumni v1.0.9 (info.php) SQL Injection Vulnerability
- hadihadi_zedehal_2006_at_yahoo.com (May 02 2008)
QTOFileManager V 1.0<== Remote File Upload Vulnerability
- Cr4zY.CrAcKeR_at_hotmail.com (May 06 2008)
- Cr4zY.CrAcKeR_at_hotmail.com (May 05 2008)
Repair Online v1.2 (sentout) Create Admin Vulnerability
- unohope_at_chroot.org (May 26 2008)
RoomPHPlanning 1.5 (weekview.php) SQL Injection Vulnerability
- hadihadi_zedehal_2006_at_yahoo.com (May 26 2008)
rPSA-2008-0105-1 evolution
- rPath Update Announcements (May 28 2008)
rPSA-2008-0157-1 kernel
- narita.hiroo (May 06 2008)
- rPath Update Announcements (May 02 2008)
rPSA-2008-0162-1 kernel
- rPath Update Announcements (May 07 2008)
rPSA-2008-0174-1 gnutls
- rPath Update Announcements (May 22 2008)
rPSA-2008-0176-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl
- rPath Update Announcements (May 23 2008)
rPSA-2008-0177-1 emacs emacs-leim
- rPath Update Announcements (May 27 2008)
rPSA-2008-0178-1 php php-mysql php-pgsql
- rPath Update Announcements (May 27 2008)
SazCart <= 1.5.1 (prodid) Remote SQL Injection Exploit
- sys-project_at_hotmail.com (May 09 2008)
Scout Portal Toolkit <= 1.4.0 (ParentId) Remote SQL Injection Exploit
- sys-project_at_hotmail.com (May 05 2008)
SECOBJADV-2008-01: Lenovo SystemUpdate SSL Certificate Issuer Spoofing Vulnerability
- Security Objectives, Inc. (May 25 2008)
Secunia Research: Foxit Reader "util.printf()" Buffer Overflow
- Secunia Research (May 20 2008)
Secunia Research: imlib2 PNM and XPM Buffer Overflow
- Secunia Research (May 29 2008)
Secunia Research: Samba "receive_smb_raw()" Buffer Overflow Vulnerability
- Secunia Research (May 29 2008)
Security Advisory for Bugzilla 3.0.3, 3.1.3, 2.22.3, and 2.20.5
- mkanat_at_bugzilla.org (May 05 2008)
Security, Open Source Style
- Josh Bressers (May 27 2008)
SiteXS CMS Remote File Upload Vulnerability
- hadikiamarsi_at_hotmail.com (May 03 2008)
Smeego CMS vulnerability
- 0in.email_at_gmail.com (May 17 2008)
Sphider 1.3.4 Cross Site Scripting
- decoder-bugtraq_at_own-hero.net (May 06 2008)
SQL Injection leading to authorization bypass in Torrent Trader Classic v1.08 and earlier
- Charles Vaughn (May 31 2008)
StanWeb.CMS (default.asp id) Remote SQL Injection Exploit
- sys-project_at_hotmail.com (May 17 2008)
Starsgames Control Panel <= 4.6.2 Remote XSS Vulnerability
- tan_prathan_at_hotmail.com (May 19 2008)
SunShop Version 3.5.1 Remote Blind Sql Injection
- irvian.info_at_gmail.com (May 15 2008)
T2'08: Call for Papers 2008 (Helsinki / Finland)
- Tomi Tuominen (May 26 2008)
Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.DBMS_AQJMS_INTERNAL (DB15)
- Team SHATTER (May 01 2008)
Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (DB11)
- Team SHATTER (May 01 2008)
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_UTILITY.LOCK_CHANGE_SET (DB02)
- Team SHATTER (May 01 2008)
TPTI-08-04: Microsoft Office Jet Database Engine Column Parsing Stack Overflow Vulnerability
- DVLabs (May 13 2008)
Vbulletin 3.7.0 Gold >> Sql injection on faq.php
- skyline_at_yahoo.com (May 26 2008)
- andy.huang_at_vbulletin.com (May 22 2008)
- Matias Blanco (May 21 2008)
- martin.meredith_at_vbulletin.com (May 21 2008)
- a.jasbi_at_yahoo.com (May 20 2008)
VBZooM <=V1.11 "reply.php" SQL Injection Vulnerability
- Cr4zY.CrAcKeR_at_hotmail.com (May 07 2008)
VisualSentinel 0.7 Cross Agent Scripting Vulnerability
- m.morcote_at_hotmail.com (May 31 2008)
- bugtraq_at_opencosmo.com (May 30 2008)
vlBook 1.21 (ALL VERSION)
- irancrash_at_gmail.com (May 01 2008)
VMSA-2008-0008 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion resolve critical security issues
- VMware Security team (May 30 2008)
vuln in WordPress plugin Upload File(UP)
- none_at_none.com (May 25 2008)
- my_at_eserg.ru (May 23 2008)
Vulnerability Advisory on GnuTLS
- josh_at_codenomicon.com (May 20 2008)
Vulnerability Advisory on OpenSSL
- josh_at_codenomicon.com (May 28 2008)
Vulnerability in Multiple Web Application
- linux0day_at_yahoo.com (May 06 2008)
Wordpress Malicious File Execution Vulnerability
- tan_prathan_at_hotmail.com (May 18 2008)
www file share pro 5.30 insecure multiple
- output_at_email.it (May 21 2008)
XEROX DocuShare URL XSS Injection Vulnerabilities
- DoZ_at_HackersCenter.com (May 29 2008)
XSS and CSRF vulnerability on Cpanel 11
- Matteo Carli (May 08 2008)
XSS in AstroCam
- Steffen Wendzel (May 01 2008)
xt:Commerce possible DoS
- decoder-bugtraq_at_own-hero.net (May 23 2008)
ZDI-08-023: Microsoft Office RTF Parsing Engine Memory Corruption Vulnerability
- zdi-disclosures_at_3com.com (May 13 2008)
ZDI-08-024: Symantec Altiris Deployment Solution SQL Injection Vulnerability
- zdi-disclosures_at_3com.com (May 15 2008)
ZDI-08-025: Symantec Altiris Deployment Solution Domain Credential Disclosure Vulnerability
- zdi-disclosures_at_3com.com (May 15 2008)
ZDI-08-026: CA BrightStor ARCserve Backup Remote Buffer Overflow
- zdi-disclosures_at_3com.com (May 19 2008)
ZDI-08-027: CA BrightStor ARCserve Backup Arbitrary File Writing Vulnerability
- zdi-disclosures_at_3com.com (May 19 2008)
ZDI-08-028: IBM Lotus Sametime Community Services Multiplexer Stack Overflow Vulnerability
- zdi-disclosures_at_3com.com (May 21 2008)
ZDI-08-029: Trillian AIM.DLL Long HTML Font Parameter Stack Overflow Vulnerability
- zdi-disclosures_at_3com.com (May 21 2008)
ZDI-08-030: Trillian Multiple Protocol XML Parsing Memory Corruption Vulnerability
- zdi-disclosures_at_3com.com (May 21 2008)
ZDI-08-031: Trillian MSN MIME Header Stack-Based Overflow Vulnerability
- zdi-disclosures_at_3com.com (May 21 2008)
ZDI-08-033: Motorola RAZR JPG Processing Stack Overflow Vulnerability
- zdi-disclosures_at_3com.com (May 27 2008)
Zina 1.0rc3 Remote Directory Traversal Vulnerability & XSS Vulnerability
- irancrash_at_gmail.com (May 25 2008)
Zomplog 3.8.2 XSS Vulnerability
- irancrash_at_gmail.com (May 02 2008)
ZYWALL Referer Header XSS Vulnerability
- Deniz Cevik (May 08 2008)