Bugtraq

• Thread Index

---

• [ MDVSA-2009:184 ] apache-mod_security
  • From: security
• [ MDVSA-2009:183 ] apache-mod_security
  • From: security
• Re: wordpress plugins wp-Table v1.52 Remote File Inclusion Vulnerability
  • From: YGN Ethical Hacker Group (http://yehg.net)
• [ MDVSA-2009:182 ] firefox
  • From: security
• XOOPS Multiple Cross-Site Scripting Vulnerabilities - Security Advisory - SOS-09-005
  • From: Lists
• EC2ND 2009 CFP - 5th European Conference on Computer Network Defence
  • From: Maggi Federico
• Re: wordpress plugins wp-Table v1.52 Remote File Inclusion Vulnerability
  • From: Francesco Laurita
• [SECURITY] [DSA 1834-2] New apache/apache2-mpm-itk fix regression
  • From: Stefan Fritsch
• wordpress plugins wp-Table v1.52 Remote File Inclusion Vulnerability
  • From: Cru3l.b0y
• Re: THISISNOTMYEXPLOIT
  • From: Kingcope
• EPSON Status Monitor 3 local privilege escalation vulnerability
  • From: nospam
• rPSA-2009-0113-1 bind bind-utils
  • From: rPath Update Announcements
• Re: THISISNOTMYEXPLOIT
  • From: Kingcope
• [security bulletin] HPSBUX02421 SSRT090047 rev.1 - HP-UX Running Kerberos, Remote Denial of Service (DoS), Execution of Arbitrary Code
  • From: security-alert
• [ MDVSA-2009:181 ] bind
  • From: security
• [ MDVSA-2009:180 ] compface
  • From: security
• Re: Citrix XenCenterWeb Multiple Vulnerabilities
  • From: bill . carovano
• [ MDVSA-2009:179 ] mysql
  • From: security
• [ MDVSA-2009:178 ] squid
  • From: security
• [ MDVSA-2009:177 ] ruby
  • From: security
• [ MDVSA-2009:176 ] git
  • From: security
• [ MDVSA-2009:175 ] pango
  • From: security
• [ MDVSA-2009:174 ] perl-Compress-Raw-Zlib
  • From: security
• [SECURITY] [DSA 1847-1] New bind9 packages fix denial of service
  • From: Florian Weimer
• [ MDVSA-2009:172 ] dhcp
  • From: security
• Pre-Beta Invite , New (Free) Anti-Virus Software
  • From: Andrew Mcphee
• Cisco Security Advisory: Cisco IOS Software Border Gateway Protocol 4-Byte Autonomous System Number Vulnerabilities
  • From: Cisco Systems Product Security Incident Response Team
• [USN-808-1] Bind vulnerability
  • From: Kees Cook
• [SECURITY] [DSA 1846-1] New kvm packages fix denial of service
  • From: dann frazier
• [SECURITY] [DSA 1845-1] New Linux 2.6.26 packages fix several vulnerabilities
  • From: dann frazier
• [SECURITY] [DSA 1844-1] New Linux 2.6.24 packages fix several vulnerabilities
  • From: dann frazier
• [ MDVSA-2009:173 ] pidgin
  • From: security
• FreeBSD Security Advisory FreeBSD-SA-09:12.bind
  • From: FreeBSD Security Advisories
• [ MDVSA-2009:170 ] initscripts
  • From: security
• [ MDVSA-2009:171 ] pulseaudio
  • From: security
• [ MDVSA-2009:169 ] libtiff
  • From: security
• [ MDVSA-2009:168 ] apache
  • From: security
• [ MDVSA-2009:166 ] c-client
  • From: security
• [security bulletin] HPSBMA02438 SSRT090092 rev.1 - HP ProLiant DL/ML 100 Series G5/G6 Servers with ProLiant Onboard Administrator Powered by LO100i, Remote Denial of Service (DoS)
  • From: security-alert
• [ MDVSA-2009:167 ] php
  • From: security
• [ MDVSA-2009:165 ] ghostscript
  • From: security
• RE: computer crime statistics
  • From: Paul Petersen
• [RISE-2009003] Linux eCryptfs parse_tag_3_packet Encrypted Key Buffer Overflow Vulnerability
  • From: RISE Security
• [ MDVSA-2009:164 ] jasper
  • From: security
• [RISE-2009002] Linux eCryptfs parse_tag_11_packet Literal Data Buffer Overflow Vulnerability
  • From: RISE Security
• Cisco Security Advisory: Active Template Library (ATL) Vulnerability
  • From: Cisco Systems Product Security Incident Response Team
• [ MDVSA-2009:163 ] tomcat5
  • From: security
• CORE-2009-0707: Firebird SQL op_connect_request main listener shutdown vulnerability
  • From: CORE Security Technologies Advisories
• [ MDVSA-2009:162 ] java-1.6.0-openjdk
  • From: security
• [SECURITY] [DSA 1843-1] New squid3 packages fix denial of service
  • From: Nico Golde
• Re: Cross-Site Scripting vulnerability in Mozilla, Firefox and Chrome
  • From: MustLive
• RE: computer crime statistics
  • From: Michael Theroux
• Fwd: Google Chrome About:blank Spoof
  • From: Lostmon lords
• [ MDVSA-2009:160 ] ruby
  • From: security
• [SECURITY] [DSA 1842-1] New openexr packages fix several vulnerabilities
  • From: Moritz Muehlenhoff
• Fwd: cross site scripting the browser google "chrome"
  • From: Karn Ganeshen
• Re: computer crime statistics
  • From: Scotty
• [ MDVSA-2009:161 ] squid
  • From: security
• RE: computer crime statistics
  • From: McDonnell, Michael
• Re: NcFTPd <= 2.8.5 remote jail breakout
  • From: Kingcope
• Re: URL spoofing bug involving Firefox's error pages and document.write
  • From: Michael Wood
• cross site scripting the browser google "chrome"
  • From: biko linux
• computer crime statistics
  • From: Choon Ming
• Re: URL spoofing bug involving Firefox's error pages and document.write
  • From: YGN Ethical Hacker Group (http://yehg.net)
• NcFTPd <= 2.8.5 remote jail breakout
  • From: Kingcope
• [DZC-2009-001] The Movie Player and VLC Media Player Real Data Transport parsing integer underflow.
  • From: tixxDZ
• Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers
  • From: Cisco Systems Product Security Incident Response Team
• [ MDVSA-2009:159 ] mysql
  • From: security
• Re: URL spoofing bug involving Firefox's error pages and document.write
  • From: xu shaopei
• Re: URL spoofing bug involving Firefox's error pages and document.write
  • From: security
• [Tool] sqlmap 0.7 released
  • From: Bernardo Damele A. G.
• DoS vulnerabilities in Internet Explorer
  • From: MustLive
• Re: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome
  • From: MustLive
• [SECURITY] [DSA 1841-1] New git-core packages fix denial of service
  • From: Nico Golde
• IXXO Cart! Standalone and Joomla Component SQL Injection
  • From: SmOk3
• rPSA-2009-0111-1 kernel
  • From: rPath Update Announcements
• Remote File Inclusion in aiocp
  • From: hadikiamarsi
• Re: Cross-Site Scripting vulnerability in Mozilla, Firefox and Chrome
  • From: MustLive
• PHP filesystem attack vectors - Take Two
  • From: ascii
• Cisco WLC 4402 Denial-of-Service vulnerability
  • From: SySS security advisories -- Christoph Bott
• Oracle CPUjul2009
  • From: Dennis Yurichev
• URL spoofing bug involving Firefox's error pages and document.write
  • From: jplopezy
• [ MDVA-2009:158 ] pango
  • From: security
• Re: Asante FM2008 10/100 Ethernet switch backdoor login
  • From: secfocus2
• [ISecAuditors Security Advisories] Joomla! < 1.5.12 Multiple Full Path Disclosure vulnerabilities
  • From: ISecAuditors Security Advisories
• Re: Re: Back door trojan in acajoom-3.2.6 for joomla
  • From: Jeffrey Walton
• [USN-806-1] Python vulnerabilities
  • From: Marc Deslauriers
• Re: Re: Back door trojan in acajoom-3.2.6 for joomla
  • From: chris . boergermann
• Re: wordpress plugins WP Super Cache v0.8.3 Remote File Inclusion Vulnerability
  • From: MustLive
• Stored XSS on Communigate Pro 5.2.14 and prior versions
  • From: Andrea Purificato - bunker
• Re: wordpress plugins WP Super Cache v0.8.3 Remote File Inclusion Vulnerability
  • From: g30rg3_x
• Re: LifeType 1.2.8 Remote File Inclusion Vulnerability
  • From: GulfTech Security Research
• LifeType 1.2.8 Remote File Inclusion Vulnerability
  • From: Cru3l.b0y
• Ocean CMS 0.0.2 Remote File Inclusion Vulnerability
  • From: Cru3l.b0y
• wordpress plugins WP Super Cache v0.8.3 Remote File Inclusion Vulnerability
  • From: Cru3l.b0y
• [GSEC-TZO-45-2009] iPhone remote code execution
  • From: Thierry Zoller
• [SECURITY] [DSA 1840-1] New xulrunner packages fix several vulnerabilities
  • From: Steffen Joeris
• Akamai Technologies Security Advisory 2009-0001 (Download Manager)
  • From: Akamai Security Team
• Phorum : Permanent Cross-Site Scripting Vulnerabilities
  • From: crashfr
• [USN-798-1] Firefox and Xulrunner vulnerabilities
  • From: Jamie Strandboge
• Re[6]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Thierry Zoller
• Re: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Andrew Farmer
• Need information, for MPlayer demux_open_vqf TwinVQ File Handling Buffer Overflow CVE-2008-5616
  • From: Rajendra Prasad . Palnaty
• Re[4]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Thierry Zoller
• [security bulletin] HPSBUX02437 SSRT090038 rev.1 - HP-UX Running XNTP, Remote Execution of Arbitrary Code
  • From: security-alert
• Re[2]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Thierry Zoller
• Re: Re[6]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Michal Zalewski
• Re[8]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Thierry Zoller
• RainbowCrack 1.4 is released - The Time-Memory Tradeoff Hash Cracker
  • From: shuanglei
• Re: Re[4]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Michal Zalewski
• Adobe Acrobat 9.1.2 NOS Local Privilege Escalation Exploit
  • From: Jeremy Brown
• ZDI-09-046: Novell Privileged User Manager Remote DLL Injection Vulnerability
  • From: ZDI Disclosures
• Re[4]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Steven M. Christey
• Re: Re[2]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Steven M. Christey
• Re[4]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Thierry Zoller
• Re: Re[2]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Michal Zalewski
• Re[2]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Thierry Zoller
• Re: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3....
  • From: Michal Zalewski
• Re: Re: [Full-disclosure] [ISecAuditors Security Advisories] Gmail vulnerable to automated password cracking
  • From: admin
• mChek 3.4 Information Disclosure
  • From: gursev . kalra
• [INFIGO-2009-07-09]: NASA Common Data Format remote buffer overflow(s)
  • From: infocus
• Re: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome
  • From: MustLive
• RE: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome
  • From: Jeremiah Gowdy
• Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • From: Thierry Zoller
• [ GLSA 200907-16 ] Python: Integer overflows
  • From: Robert Buchholz
• Re: [Full-disclosure] [ISecAuditors Security Advisories] Gmail vulnerable to automated password cracking
  • From: Vicente Aguilera
• [ MDVSA-2009:153 ] dhcp
  • From: security
• [SECURITY] [DSA 1837-1] New dbus packages fix denial of service
  • From: Steffen Joeris
• [ MDVSA-2009:157 ] perl-Compress-Raw-Zlib
  • From: security
• [ MDVSA-2009:154 ] dhcp
  • From: security
• [SECURITY] [DSA 1839-1] New gst-plugins-good0.10 packages fix arbitrary code execution
  • From: Steffen Joeris
• DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome
  • From: MustLive
• [USN-805-1] Ruby vulnerabilities
  • From: Marc Deslauriers
• [ MDVSA-2009:155 ] git
  • From: security
• Re: PHP-Revista Multiple vulnerabilities
  • From: security curmudgeon
• Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • From: MustLive
• Adobe related service (getPlus_HelperSvc.exe) local elevation of privileges
  • From: nospam
• Hacking CSRF Tokens using CSS History Hack
  • From: Inferno
• [ MDVSA-2009:156 ] net-snmp
  • From: security
• [ GLSA 200907-15 ] Nagios: Execution of arbitrary code
  • From: Robert Buchholz
• [SECURITY] [DSA 1838-1] New pulseaudio packages fix privilege escalation
  • From: Florian Weimer
• CORE-2009-0227: Real Helix DNA RTSP and SETUP request handler vulnerabilities
  • From: CORE Security Technologies Advisories
• Re: [Full-disclosure] [ISecAuditors Security Advisories] Gmail vulnerable to automated password cracking
  • From: cevans
• [ISecAuditors Security Advisories] Gmail vulnerable to automated password cracking
  • From: ISecAuditors Security Advisories
• PulseAudio local race condition privilege escalation vulnerability
  • From: Akita Software Security
• [ MDVSA-2009:152 ] pulseaudio
  • From: security
• COMRaider Idefense Labs CreateFolder() and Copy() Insecure Method (Hard Disk Filler Exploit)
  • From: irancrash
• [ GLSA 200907-14 ] Rasterbar libtorrent: Directory traversal
  • From: Robert Buchholz
• [SECURITY] [DSA 1836-1] New fckeditor packages fix arbitrary code execution
  • From: Moritz Muehlenhoff
• [USN-804-1] PulseAudio vulnerability
  • From: Kees Cook
• [oCERT-2009-011] Android improper camera and audio permission verification
  • From: Andrea Barisani
• [DSECRG-09-031] Oracle BEA Weblogic 10.3 Linked ХSS vulnerability
  • From: DSecRG
• [ GLSA 200907-13 ] PulseAudio: Local privilege escalation
  • From: Robert Buchholz
• [DSECRG-09-025] Oracle Secure Enterprise Search 10.1.8 Linked XSS vulnerability
  • From: DSecRG
• Re[2]: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • From: Thierry Zoller
• Re[2]: Update: [TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details)
  • From: Thierry Zoller
• Re: Update: [TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details)
  • From: Vladimir '3APA3A' Dubrovin
• FRHACK List of Talks and Speakers released
  • From: Jerome Athias
• Re: Cross-Site Scripting vulnerability in Mozilla, Firefox and Chrome
  • From: advisories
• Vulnerable DLLs distributed with Terratec HomeCinema 6.3
  • From: Stefan Kanthak
• [ MDVSA-2009:151 ] dhcp
  • From: security
• Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • From: R Dicaire
• Re:[GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • From: Thierry Zoller
• Update: [TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details)
  • From: Thierry Zoller
• Re: Cross-Site Scripting vulnerability in Mozilla, Firefox and Chrome
  • From: Michal Zalewski
• iDefense Security Advisory 07.15.09: Microsoft Office Publisher 2007 Arbitrary Pointer Dereference Vulnerability
  • From: iDefense Labs
• [SECURITY] [DSA 1835-1] New tiff packages fix several vulnerabilities
  • From: Moritz Muehlenhoff
• Cross-Site Scripting vulnerability in Mozilla, Firefox and Chrome
  • From: MustLive
• Mobile Rediff Username and Password Disclosure
  • From: gursev . kalra
• [SECURITY] [DSA 1834-1] New apache2 packages fix denial of service
  • From: Stefan Fritsch
• [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • From: Thierry Zoller
• iDefense Security Advisory 07.15.09: Microsoft Embedded OpenType Font Engine (T2EMBED.DLL) Heap Buffer Overflow Vulnerability
  • From: iDefense Labs
• Cisco Security Advisory: Vulnerabilities in Unified Contact Center Express Administration Pages
  • From: Cisco Systems Product Security Incident Response Team
• Re: Re[2]: Update: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
  • From: Nick Boyce
• MULTIPLE ARBITRARY INFORMATION DISCLOSURE AND EDITION --ILIAS LMS <= 3.10.7/3.9.9-->
  • From: y3nh4ck3r
• Admin News Tools 2.5 Remote File Download Vulnerability
  • From: info
• [USN-803-1] dhcp vulnerability
  • From: Jamie Strandboge
• [SECURITY] [DSA 1833-1] New dhcp3 packages fix arbitrary code execution
  • From: Florian Weimer
• TPTI-09-05: Microsoft DirectShow QuickTime Atom Parsing Memory Corruption Vulnerability
  • From: dvlabs
• ZDI-09-045: Microsoft DirectShow Quicktime Atom Parsing Memory Corruption Vulnerability
  • From: ZDI Disclosures
• [ GLSA 200907-12 ] ISC DHCP: dhcpclient Remote execution of arbitrary code
  • From: Alex Legler
• [SECURITY] [DSA 1829-2] New sork-passwd-h3 packages fix regression
  • From: Steffen Joeris
• FortiGuard Advisory: Microsoft Office Web Components Remote Memory Corruption Vulnerability
  • From: noreply-secresearch@xxxxxxxxxxxx
• Virtualmin Multiple Vulnerabilities
  • From: Filip Palian
• Re[2]: Update: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
  • From: Thierry Zoller
• Re: Update: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
  • From: Nick Boyce
• Secunia Research: Novell eDirectory iMonitor "Accept-Language" Buffer Overflow
  • From: Secunia Research
• [oCERT-2009-010] mimeTeX and mathTeX buffer overflows and command injection
  • From: Andrea Barisani
• [SECURITY] [DSA 1831-1] New djbdns packages fix privilege escalation
  • From: Thijs Kinkhorst
• [SECURITY] [DSA 1832-1] New camlimages packages fix arbitrary code execution
  • From: Thijs Kinkhorst
• [ MDVSA-2009:150 ] libtiff
  • From: security
• [USN-802-1] Apache vulnerabilities
  • From: Marc Deslauriers
• [USN-801-1] tiff vulnerability
  • From: Marc Deslauriers
• [USN-799-1] D-Bus vulnerability
  • From: Marc Deslauriers
• [USN-800-1] irssi vulnerability
  • From: Jamie Strandboge
• [security bulletin] HPSBGN02446 SSRT090111 rev.1 - HP ProCurve Threat Management Services zl Module (J9155A), Remote Unauthorized Access, Denial of Service (DoS)
  • From: security-alert
• [oCERT-2009-012] libtiff tools integer overflows
  • From: Andrea Barisani
• Re: Update: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
  • From: Neil Dickey
• [ GLSA 200907-11 ] GStreamer plug-ins: User-assisted execution of arbitrary code
  • From: Robert Buchholz
• [ GLSA 200907-10 ] Syslog-ng: Chroot escape
  • From: Robert Buchholz
• [ GLSA 200907-09 ] Cyrus-SASL: Execution of arbitrary code
  • From: Robert Buchholz
• DDIVRT-2009-26 LogRover SQL Injection Authentication Bypass
  • From: ddivulnalert
• [ GLSA 200907-08 ] Multiple Ralink wireless drivers: Execution of arbitrary code
  • From: Robert Buchholz
• [ GLSA 200907-07 ] ModPlug: User-assisted execution of arbitrary code
  • From: Robert Buchholz
• [ GLSA 200907-06 ] Adobe Reader: User-assisted execution of arbitrary code
  • From: Robert Buchholz
• [ GLSA 200907-05 ] git: git-daemon Denial of Service
  • From: Robert Buchholz
• [ GLSA 200907-04 ] Apache: Multiple vulnerabilities
  • From: Alex Legler
• [SECURITY] [DSA 1830-1] New icedove packages fix several vulnerabilities
  • From: Steffen Joeris
• [SECURITY] [DSA 1753-2] End-of-life announcement for icedove in oldstable
  • From: Steffen Joeris
• VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl
  • From: VMware Security team
• [SECURITY] [DSA 1829-1] New sork-passwd-h3 packages fix cross-site scripting
  • From: Steffen Joeris
• Update: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
  • From: Thierry Zoller
• Atlantic SimpleCaddy Shopping Cart Price Manipulation
  • From: domingos . bruges
• HTC / Windows Mobile OBEX FTP Service Directory Traversal
  • From: alberto . morenot
• [ MDVSA-2009:149 ] apache
  • From: security
• [ MDVSA-2009:149 ] apache
  • From: security
• Update: [TZO-27-2009] Firefox Denial of Service (Keygen)
  • From: Thierry Zoller
• Pwnie Awards 2009
  • From: Alexander Sotirov
• MySQL <= 5.0.45 post auth format string vulnerability
  • From: Kingcope
• CORE-2009-01515 - WordPress Privileges Unchecked in admin.php and Multiple Information
  • From: Core Security Technologies Advisories
• [ MDVSA-2009:124-1 ] apache
  • From: security
• Re: Back door trojan in acajoom-3.2.6 for joomla
  • From: Jan van Niekerk
• [ MDVSA-2009:148 ] kernel
  • From: security
• [SECURITY] [DSA 1828-1] New ocsinventory-agent packages fix arbitrary code execution
  • From: Nico Golde
• Citrix XenCenterWeb Multiple Vulnerabilities
  • From: Claudio Criscione
• CFP - Security Byte / OWASP Asia 2009
  • From: cfp
• SEC Consult SA-20090707-0 :: Symbian S60 / Nokia firmware media codecs multiple memory corruption vulnerabilities
  • From: Bernhard Mueller
• RE: Decompilation Injection
  • From: Maty Siman
• [USN-797-1] tiff vulnerability
  • From: Marc Deslauriers
• [USN-796-1] Pidgin vulnerability
  • From: Marc Deslauriers
• Pwning Nokia phones (and other Symbian based smartphones)
  • From: Bernhard Mueller
• Medium security hole in TekRADIUS
  • From: Tim Brown
• High security hole in NullLogic Groupware
  • From: Tim Brown
• [SECURITY] [DSA 1827-1] New ipplan packages fix cross-site scripting
  • From: Steffen Joeris
• [Bkis-10-2009] Photo DVD Maker Professional Buffer Overflow Vulnerability
  • From: Bkis
• Avax Vector ActiveX 1.3 (avPreview.ocx) Denial of Service Exploit
  • From: Satan_hackers
• Re: Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome
  • From: Liu Die Yu
• [ GLSA 200907-03 ] APR Utility Library: Multiple vulnerabilities
  • From: Alex Legler
• [SECURITY] [DSA 1826-1] New eggdrop packages fix several vulnerabilities
  • From: Steffen Joeris
• [security bulletin] HPSBPI02398 SSRT080166 rev.4 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files
  • From: security-alert
• [oCERT-2009-008] Dillo integer overflow
  • From: Andrea Barisani
• Re: Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome
  • From: Michal Zalewski
• [oCERT-2009-007] FCKeditor input sanitization errors
  • From: Andrea Barisani
• [SECURITY] [DSA 1825-1] New nagios2/nagios3 packages fix arbitrary code execution
  • From: Nico Golde
• Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome
  • From: MustLive
• One Click Ownage [White Paper and Scripts]
  • From: Ferruh Mavituna
• Multiple Flaws in Axesstel MV 410R
  • From: filip . palian
• [ GLSA 200907-02 ] ModSecurity: Denial of Service
  • From: Alex Legler
• [ GLSA 200907-01 ] libwmf: User-assisted execution of arbitrary code
  • From: Alex Legler
• [USN-795-1] Nagios vulnerability
  • From: Marc Deslauriers
• [USN-794-1] Perl vulnerability
  • From: Marc Deslauriers
• [ISecAuditors Security Advisories] Joomla! < 1.5.12 Multiple XSS vulnerabilities in HTTP Headers
  • From: ISecAuditors Security Advisories
• [oCERT-2009-009] CamlImages integer overflows
  • From: Andrea Barisani
• eAccelerator encoder files backup Vulnerability
  • From: linuxrootkit2008
• Sourcefire 3D Sensor and DC, privilege escalation vulnerability
  • From: c3rb3r
• [security bulletin] HPSBUX02431 SSRT090085 rev.1 - HP-UX Running Apache Web Server Suite, Remote Denial of Service (DoS), Execution of Arbitrary Code
  • From: security-alert
• [security bulletin] HPSBUX02440 SSRT090106 rev.1 - HP-UX Running NFS/ONCplus, Local Denial of Service (DoS)
  • From: security-alert
• Re: XAMPP for Windows (Xss/PHPinfo) Multiple Vulnerability
  • From: Vladimir '3APA3A' Dubrovin
• VMSA-2009-0008 ESX Service Console update for krb5
  • From: VMware Security Team
• radware AppWall Web Application Firewall: Source code disclosure on management interface
  • From: Kirchner Michael
• phion airlock Web Application Firewall: Remote Denial of Service via Management Interface (unauthenticated) and Command Execution
  • From: Kirchner Michael
• Artofdefence Hyperguard Web Application Firewall: Remote Denial of Service
  • From: Kirchner Michael
• REMINDER : HITBSecConf2009 - Malaysia: Call for Papers
  • From: Praburaajan

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2009-07