Latest Security News

All News: 3 Days | 1 Week | 1 Month
Hot News: 1 Month | 1 Year

2008-05-09

16:33Bugtraq[ GLSA 200805-08 ] InspIRCd: Denial of Service
16:24Bugtraq[ GLSA 200805-07 ] Linux Terminal Server Project: Multiple vulnerabilities
16:12Bugtraq[ GLSA 200805-06 ] Firebird: Data disclosure
15:15Securiteam[UNIX] Multiple Vendor rdesktop Vulnerabilities
14:49BugtraqOracle Application Server 10G ORA_DAV Basic Authentication Bypass Vulnerability
05:54BugtraqFInal EUSecWest 2008 Speakers
02:03BugtraqXSS and CSRF vulnerability on Cpanel 11
01:45Bugtraq[ MDVSA-2008:099 ] - Updated ImageMagick packages fix vulnerabilities
01:13BugtraqApache Server HTML Injection and UTF-7 XSS Vulnerability
00:02Bugtraq[USN-611-3] GStreamer Good Plugins vulnerability

2008-05-08

23:11Bugtraq[USN-611-2] vorbis-tools vulnerability
22:15Bugtraq[USN-611-1] Speex vulnerability
21:35BugtraqFLEA-2008-0008-1 firefox
17:12BugtraqZYWALL Referer Header XSS Vulnerability
15:13BugtraqNovell Client <= 4.91 SP4 Local Stack overflow / B.S.O.D (unauthentificated user)
03:02BugtraqezContents CMS Version 2.0.0 SQL Injection Vulnerabilities
01:36BugtraqiDefense Security Advisory 05.07.08: Multiple Vendor rdesktop channel_process() Integer Signedness V
01:36BugtraqiDefense Security Advisory 05.07.08: Multiple Vendor rdesktop process_redirect_pdu() BSS Overflow Vu
01:35BugtraqiDefense Security Advisory 05.07.08: Multiple Vendor rdesktop iso_recv_msg() Integer Underflow Vulne

2008-05-07

23:58Bugtraq[ GLSA 200805-04 ] eGroupWare: Multiple vulnerabilities
22:37BugtraqExploiting Google MX servers as Open SMTP Relays
20:56Bugtraq[ GLSA 200805-03 ] Multiple X11 terminals: Local privilege escalation
18:41BugtraqrPSA-2008-0162-1 kernel
12:21BugtraqVBZooM <=V1.11 "reply.php" SQL Injection Vulnerability
10:20BugtraqMultiple XSS In TuxCMS All Version
08:59Securiteam[NEWS] Wonderware SuiteLink Denial of Service Vulnerability
08:07Securiteam[UNIX] PHP GENERATE_SEED() Weak Random Number Seed Vulnerability
07:42Securiteam[UNIX] PHP Multibyte Shell Command Escaping Bypass Vulnerability
06:31Bugtraq[USN-610-1] LTSP vulnerability
06:26Bugtraq[USN-609-1] OpenOffice.org vulnerabilities
03:53Bugtraq[Advisory Update]Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability
03:35BugtraqAdobe Acrobat Professional Javascript For PDF Security Feature Bypass and Memory Corruption Vulnerab
02:34BugtraqrPSA-2008-0157-1 kernel
02:05Bugtraq[ MDVSA-2008:098 ] - Updated openssh packages fix vulnerability
02:02Bugtraq[ MDVSA-2008:097 ] - Updated kdelibs packages fix vulnerability in start_kdeinit
00:23Bugtraq[ MDVSA-2008:096 ] - Updated emacs packages fix vulnerability in vcdiff

2008-05-06

22:19BugtraqmvnForum 1.1 Cross Site Scripting
22:09BugtraqSphider 1.3.4 Cross Site Scripting
21:26Bugtraq[USN-605-1] Thunderbird vulnerabilities
21:09Securiteam[NT] Akamai Download Manager Arbitrary Program Execution Vulnerability
20:49Bugtraq[SECURITY] [DSA 1570-1] New kazehakase packages fix execution of arbitrary code
17:43Bugtraq[SECURITY] [DSA 1554-2] New roundup packages fix regression
17:32Bugtraq[SECURITY] [DSA 1569-2] New cacti packages fix regression
17:23Bugtraq[USN-608-1] KDE vulnerability
17:14Bugtraq[USN-607-1] Emacs vulnerabilities
16:15Bugtraq[security bulletin] HPSBMA02331 SSRT080000 rev.2 - HP-UX running WBEM Services, Remote Execu
16:14BugtraqHPSBUX02332 SSRT080056 rev.1 - HP-UX running Apache with PHP, Remote Denial of Service (DoS)
16:13BugtraqHPSBUX02324 SSRT080034 rev.1 - HP-UX Running Netscape Directory Server (NDS), Local Gain Ext
14:56Bugtraq[tool announcement] tmin - a handy fuzzing test case optimizer
10:18BugtraqAdvisory SE-2008-03: PHP Multibyte Shell Command Escaping Bypass Vulnerability
10:16BugtraqAdvisory SE-2008-02: PHP GENERATE_SEED() Weak Random Number Seed Vulnerability
09:10BugtraqVulnerability in Multiple Web Application
08:39Securiteam[NEWS] WebMod Multiple Vulnerabilities
07:16BugtraqInvitation - OWASP AppSec Europe May 19-22 2008 - Belgium
03:43BugtraqPower Editor LOCAL FILE INCLUSION Vulnerbility
01:56BugtraqQTOFileManager V 1.0<== Remote File Upload Vulnerability

2008-05-05

23:37Bugtraq[ GLSA 200805-02 ] phpMyAdmin: Information disclosure
23:13BugtraqSecurity Advisory for Bugzilla 3.0.3, 3.1.3, 2.22.3, and 2.20.5
23:08Bugtraq[ GLSA 200805-01 ] Horde Application Framework: Multiple vulnerabilities
22:01BugtraqCORE-2008-0129 - Wonderware SuiteLink Denial of Service vulnerability
21:26BugtraqNovell eDirectory DoS via HTTP headers
21:26BugtraqNovell eDirectory unauthenticated access to SOAP interface
19:27Bugtraq[SECURITY] [DSA 1569-1] New cacti packages fix multiple vulnerabilities
18:56Bugtraq[SECURITY] [DSA 1568-1] New b2evolution packages fix cross site scripting
18:46Bugtraq[SECURITY] [DSA 1567-1] New blender packages fix arbitrary code execution
17:53BugtraqScout Portal Toolkit <= 1.4.0 (ParentId) Remote SQL Injection Exploit
17:20Bugtraq[ECHO_ADV_93$2008] Kmita Tellfriend <= 2.0 (file) Remote File Inclusion Vulnerability
17:19Bugtraq[ECHO_ADV_94$2008] Kmita Mail <= 3.0 (file) Remote File Inclusion Vulnerability
17:18Bugtraq[ECHO_ADV_92$2008] Anserv Auction XL (viewfaqs.php cat) Blind Sql Injection Vulnerability
17:12Bugtraq[ECHO_ADV_95$2008] BackLinkSpider (cat_id) Blind Sql Injection Vulnerability
17:03Bugtraq[ECHO_ADV_91$2008] Online Rental Property Script <= 4.5 (pid) Blind Sql Injection Vulnerability
17:00Bugtraq[ECHO_ADV_90$2008] PostNuke Module pnEncyclopedia <= 0.2.0 (id) Blind Sql Injection Vulnerability
16:17Bugtraq[USN-606-1] CUPS vulnerability
15:56BugtraqLifeType 1.2.8
15:42BugtraqMaian Uploader v4.0 XSS Vulnerabilities

2008-05-04

05:45BugtraqMicrosot DID DISCLOSE potential Backdoor

2008-05-03

20:51BugtraqMultiple vulnerabilities in WebMod 0.48
20:12BugtraqMaian Music v1.1 Multiple Vulnerabilities (Xss/SQL Injection)
20:11BugtraqMaian Links v3.1 XSS Vulnerabilities
20:11BugtraqMaian Guestbook v3.2 XSS Vulnerabilities
20:10BugtraqMaian Greeting v2.1 Multiple Vulnerabilities (XSS/SQL INJECTION)
20:09BugtraqMaian Gallery v2.0 XSS Vulnerability
20:07BugtraqMaian Weblog v4.0 XSS Vulnerabilities
20:06BugtraqMaian Support v1.3 Xss Vulnerabilities
20:05BugtraqMaian Search v1.1 Multiple Vulnerabilities (XSS/SQL INJECTION)
20:05BugtraqMaian Recipe v1.2 Xss Vulnerabilities
20:00BugtraqMaian Cart v1.1 XSS Vulnerabilities
12:53Bugtraq[TOOL] SSL Capable NetCat (and more)
12:42BugtraqFixed: LiveCart SQL injection vulnerability fixed since version 1.1.2
12:00BugtraqSiteXS CMS Remote File Upload Vulnerability
03:51BugtraqPhotos and Presentation Materials from HITBSecConf2008 - Dubai Released

2008-05-02

22:34BugtraqrPSA-2008-0157-1 kernel
22:02Bugtraqblur6ex-0.3.462 LOCAL FILE INCLUSION Vulnerbility
21:14BugtraqDenial of Service in Call of Duty 4 1.5
20:02Bugtraq[ MDVSA-2008:095 ] - Updated OpenOffice.org packages fix vulnerabilities
18:36Bugtraqchicomas.2.0.4
17:00Bugtraq[SECURITY] [DSA 1566-1] New cpio packages fix denial of service
15:38BugtraqZomplog 3.8.2 XSS Vulnerability
12:33Bugtraqproject alumni v1.0.9 (info.php) SQL Injection Vulnerability
11:00BugtraqLifetype 1.2.7 XSS Vulnerability
06:29BugtraqBlackBook v1.0 Multiple XSS Vulnerabilities

2008-05-01

20:53Bugtraq[SECURITY] [DSA 1564-1] New wordpress packages fix several vulnerabilities
20:41Bugtraqphp-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)
20:25Bugtraq[SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
19:59Bugtraqmjguest 6.7 (ALL VERSION) Xss & Redirection Vuln
19:29BugtraqvlBook 1.21 (ALL VERSION)
17:25BugtraqiDefense Security Advisory 04.30.08: Akamai Download Manager Arbitrary Program Execution Vulnerabili
16:18BugtraqTeam SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_UTILITY.LOCK_CHANGE_SE
16:17BugtraqTeam SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.DBMS_AQJMS_INTERNAL (DB15)
16:16BugtraqTeam SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENA
12:13BugtraqXSS in AstroCam

2008-04-30

19:41Bugtraq[SECURITY] [DSA 1563-1] New asterisk packages fix denial of service
18:13Securiteam[NT] SNMPc TRAP Community Name Overflow
17:23Bugtraqheanet.dl.sourceforge.net hacked?
16:31BugtraqCFP: Workshop on Open Source Software for Computer and Network Forensics
14:46Bugtraq[security bulletin] HPSBMA02331 SSRT080000 rev.1 - HP-UX running WBEM Services, Remote Execu
13:46BugtraqCritical Vulnerability in SNMPc
13:04Securiteam[UNIX] SugarCRM Community Edition Local File Disclosure Vulnerability

2008-04-29

23:29Bugtraq[ MDVSA-2008:093 ] - Updated vorbis-tools packages fix vulnerabilities
23:27Bugtraq[ MDVSA-2008:092 ] - Updated gstreamer-plugins-good packages fix vulnerabilities
21:18BugtraqXSS Attack
19:35BugtraqrPSA-2008-0151-1 libpng
15:01Securiteam[NT] Insufficient Argument Validation of Hooked SSDT Functions on Multiple Antivirus and Firewalls
14:26Bugtraq[ GLSA 200804-30 ] KDE start_kdeinit: Multiple vulnerabilities
03:35BugtraqSugarCRM Community Edition Local File Disclosure Vulnerability
01:28BugtraqCORE-2008-0320 - Insufficient argument validation of hooked SSDT functions on multiple A

2008-04-28

23:07Bugtraq[ECHO_ADV_89$2008] Softbiz Web Host Directory Script (search_result.php host_id) Blind Sql Injection
22:56Bugtraq[ECHO_ADV_88$2008] Prozilla Hosting Index (directory.php cat_id) Blind Sql Injection Vulnerability
21:47Bugtraq[SECURITY] [DSA 1562-1] New iceape packages fix arbitrary code execution
17:49BugtraqMicrosoft SWI blog inaccuracies
15:55BugtraqGroupWise 7.0 mailto: scheme buffer overflow
15:22Bugtraq[SECURITY] [DSA 1561-1] New ldm packages fix information disclosure
14:26Securiteam[UNIX] Wordpress Cookie Integrity Protection Vulnerability
12:33Securiteam[TOOL] SSL Capable NetCat
12:15Bugtraq[SECURITY] [DSA 1560-1] New kronolith2 packages fix cross site scripting
11:57BugtraqMinibb 2.2a XSS Vulnerability

2008-04-27

19:33Bugtraqbug report
15:06BugtraqLondon DEFCON meet - Thursday 1st May - DC4420
14:23Securiteam[REVS] Lateral SQL Injection: a New Class of Vulnerability in Oracle
13:13Securiteam[NT] BadBlue uninst.exe DoS
13:08Securiteam[NT] RealTek HD Audio Codec Driver Local Privilege Escalation
11:19Bugtraq[SECURITY] [DSA 1556-2] New perl packages fix denial of service

2008-04-26

17:00BugtraqCurious vulnerability in Excel 2007
12:52BugtraqGroupWise 7 attached bugs
00:12BugtraqrPSA-2008-0149-1 idle python

2008-04-25

22:41Bugtraq[ GLSA 200804-29 ] Comix: Multiple vulnerabilities
18:22BugtraqR.I.P. rgod
18:02BugtraqWordpress 2.5 Cookie Integrity Protection Vulnerability
17:04BugtraqLotus expeditor rcplauncher uri handler vulnerability
03:06Bugtraq[ MDVSA-2008:091 ] - Updated wireshark packages fix denial of service vulnerabilities

2008-04-24

23:21Bugtraq[SECURITY] [DSA 1558-1] New xulrunner packages fix arbitrary code execution
23:02Bugtraq[SECURITY] [DSA 1534-2] New iceape packages fix regression
22:32Bugtraq[SECURITY] [DSA 1557-1] New phpmyadmin packages fix several vulnerabilities
22:23BugtraqHPSBGN02333 SSRT080031 rev.1 - HP Software Update HPeDiag Running on Windows, Remote Disclosure
21:44Bugtraq[SECURITY] [DSA 1556-1] New perl packages fix denial of service
18:49BugtraqA New Class of Vulnerability in Oracle: Lateral SQL Injection
18:30Bugtraq[ GLSA 200804-28 ] JRockit: Multiple vulnerabilities
18:29Bugtraq[ GLSA 200804-27 ] SILC: Multiple vulnerabilities
14:08BugtraqDDIVRT-2008-11 BadBlue uninst.exe DoS
13:12BugtraqTrillian 3.1 basic nick crash

2008-04-23

22:16Bugtraq[W01-0408] Realtek HD Audio Codec Drivers (Vista) - Local Privilege Escalation
21:05Bugtraqxine-lib NES Sound Format Demuxer Buffer Overflow
19:54Bugtraq[SECURITY] [DSA 1555-1] New iceweasel packages fix arbitrary code execution
19:01BugtraqPR07-44: XSS on RSA Authentication Agent login page
18:58BugtraqPR07-43: Cross-domain redirect on RSA Authentication Agent
18:35Bugtraq[ GLSA 200804-26 ] Openfire: Denial of Service
18:20Bugtraq[ GLSA 200804-25 ] VLC: User-assisted execution of arbitrary code
14:07Securiteam[NEWS] IAX2 Incomplete 3-Way Handshake (Spoofing)
09:34BugtraqZune software - arbitrary file overwrite
03:20BugtraqLayerOne 2008 - Final Pre-Con Update
03:12BugtraqNetClassifieds Sql Injection
01:19BugtraqHorde Webmail XSS [Aria-Security]
00:59BugtraqAST-2008-006 - 3-way handshake in IAX2 incomplete

2008-04-22

23:33Bugtraq[SECURITY] [DSA 1554-1] New roundup packages fix cross-site scripting vulnerability
23:27BugtraqDefault key algorithm in Thomson and BT Home Hub routers
20:33BugtraqFirefox 3.0 beta 5 crash
19:48BugtraqSafari 3.1.1 Multiple Vulnerabilities for windows
14:21BugtraqCorrecting CVEs (was Re: [Full-disclosure] Cross site scripting issues in s9y (CVE-2008-
14:02BugtraqIMF 2008 - 2nd Call for Papers
12:25BugtraqCross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387)
09:49Securiteam[NT] Foxit Reader Malformed PDF Vulnerabilities
08:57Securiteam[NT] eTrust Secure Content Manager Denial of Service
08:27Bugtraq[USN-602-1] Firefox vulnerabilities
05:30Bugtraq[USN-604-1] Gnumeric vulnerability

2008-04-21

20:07Securiteam[NT] Adobe Album Starter Unchecked Local Buffer Overflow (Exploit)
19:47Securiteam[EXPL] Intel Centrino 2200BG Wireless Driver Probe Overflow
18:10BugtraqIRM Security Advisory : RedDot CMS SQL injection vulnerability
15:15Securiteam[UNIX] Joomla Component Jom Comment SQL Injection Vulnerability
15:11Securiteam[NEWS] Multiple Vendor OpenOffice Vulnerabilities

2008-04-20

13:09Bugtraq[SECURITY] [DSA 1553-1] New ikiwiki packages fix cross-site request forgery
12:28BugtraqSyScan08 Singapore - Call for Paper
11:21Bugtraq[ MDVSA-2008:090 ] - Updated OpenOffice.org packages fix vulnerabilities
09:06BugtraqAcidcat CMS Multiple Vulnerabilities
01:38BugtraqDeciphering the Simple Machines Forum audio Captcha
01:18BugtraqDeciphering the PHP-Nuke Capthca

2008-04-19

19:13Bugtraq[SECURITY] [DSA 1552-1] New mplayer packages fix arbitrary code execution
18:45Bugtraq[SECURITY] [DSA 1551-1] New python2.4 packages fix several vulnerabilities
18:19BugtraqToken Kidnapping (Microsoft Security Advisory 951306) presentation available
11:34BugtraqXoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it
01:29Bugtraq[ GLSA 200804-24 ] DBmail: Data disclosure
01:27Bugtraq[ GLSA 200804-23 ] CUPS: Integer overflow vulnerability

2008-04-18

23:29BugtraqPowered by gCards v1.46 SQL
21:23BugtraqANNOUNCE: Security Implications of Windows Access Tokens Whitepaper
16:58BugtraqANNOUNCE: RFIDIOt-0.1s release (now available for Windows)
16:25Bugtraq[ GLSA 200804-22 ] PowerDNS Recursor: DNS Cache Poisoning
16:15Bugtraq[ GLSA 200804-21 ] Adobe Flash Player: Multiple vulnerabilities
12:24BugtraqTeam SHATTER Security Advisory: IBM DB2 UDB Arbitrary code execution in ADMIN_SP_C/ADMIN_SP_C2 proce
12:22BugtraqTeam SHATTER Security Advisory: IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure
12:19BugtraqTeam SHATTER Security Advisory: Multiple DoS in JAR files manipulation procedures
10:33BugtraqBitTorrent Clients and CSRF
10:13BugtraqWikepage Wiki v.2007-2 Cross-Site Scripting
10:10BugtraqLightNEasy v.1.2.2 flat Multiple Vulnerabilities
09:13BugtraqSea-Surfing on the Motorola Surfboard
06:40Bugtraq5th avenue Shopping Cart SQL Injection
03:57Bugtraq[ MDVSA-2008:089 ] - Updated poppler packages fix vulnerability
02:24Bugtraq[ MDVSA-2008:088 ] - Updated clamav packages fix multiple vulnerabilities
01:45Bugtraq[ GLSA 200804-20 ] Sun JDK/JRE: Multiple vulnerabilities
01:35Bugtraq[ GLSA 200804-19 ] PHP Toolkit: Data disclosure and Denial of Service
00:00BugtraqiDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice QPRO File Parsing Integer Underflow

2008-04-17

23:59BugtraqiDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice QPRO Multiple Heap Overflow Vulnerab
23:59BugtraqiDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice EMF EMR_BITBLT Record Integer Overfl
23:59BugtraqiDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice OLE DocumentSummaryInformation Heap
23:27Bugtraq[SECURITY] [DSA 1550-1] New suphp packages fix local privilege escalation
22:52Bugtraq[SECURITY] [DSA 1549-1] New clamav packages fix several vulnerabilities
20:09Bugtraq[USN-603-2] KOffice vulnerability
20:08Bugtraq[USN-603-1] poppler vulnerability
19:08Bugtraq[SECURITY] [DSA 1548-1] New xpdf packages fix arbitrary code exitution
16:44Bugtraq[security bulletin] HPSBMA02328 SSRT071293 rev.2 - HP OpenView Network Node Manager (OV NNM) Run
16:43Bugtraq[security bulletin] HPSBST02329 SSRT080048 rev.1 - Storage Management Appliance (SMA), Microsoft
16:42Bugtraq[security bulletin] HPSBMA02133 SSRT061201 rev.8 - HP Oracle for OpenView (OfO) Critical Patch U
16:28Securiteam[NEWS] Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability
14:34Bugtraq[ GLSA 200804-18 ] Poppler: User-assisted execution of arbitrary code
14:17Bugtraq[ GLSA 200804-17 ] Speex: User-assisted execution of arbitrary code
14:05Bugtraq[ GLSA 200804-16 ] rsync: Execution of arbitrary code
12:13Bugtraq[SECURITY] [DSA 1547-1] New OpenOffice.org packages fix arbitrary code execution
10:50BugtraqMicrosoft Works 7 WkImgSrv.dll crash POC
09:32Bugtraq[oCERT-2008-004] multiple speex implementations insufficient boundary checks
03:02Bugtraq[ MDVSA-2008:087 ] - Updated policykit package fixes format string vulnerability
02:14BugtraqFreeBSD Security Advisory FreeBSD-SA-08:05.openssh
00:18BugtraqAnnouncement - DeepSec Conference 2008, Nov 11-14 2008
00:00BugtraqZDI-08-022: Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability

2008-04-16

22:16BugtraqClassifieds Caffe (index.php cat_id) Remote SQL Injection
21:53Securiteam[NT] ICQ 6 Buffer Overflow Vulnerability
21:49Securiteam[NEWS] Cisco Network Admission Control Shared Secret Vulnerability
21:36Securiteam[UNIX] Oracle Application Express Privilege Escalation Vulnerability
20:26BugtraqiDefense Security Advisory 04.15.08: Oracle Application Express Privilege Escalation Vulnerability
19:44Securiteam[NT] HP OpenView NNM Directory Traversal and Multiple Denials of Service
18:20Securiteam[UNIX] libpng Zero-Length Chunks Incorrect Handling
18:07BugtraqCA DSM gui_cm_ctrls ActiveX Control Vulnerability
17:41Securiteam[UNIX] IBM DB2 Universal Database Administration Server File Creation Vulnerability
17:38Securiteam[UNIX] IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability
17:35Securiteam[NEWS] ClamAV libclamav PeSpin Heap Overflow Vulnerability
17:33Securiteam[NEWS] ClamAV libclamav PE WWPack Heap Overflow Vulnerability
17:28Securiteam[NEWS] IBM Informix Pre-Authentication Stack Overflow
17:06BugtraqCisco Security Advisory: Cisco Network Admission Control Shared Secret Vulnerability
15:49BugtraqCarbon Communities forum Multiple Vulnerabilities.
11:05Bugtraq[INFIGO-2008-04-08]: ICQ 6 remote buffer overflow vulnerability
10:01BugtraqOracle - Hardcoded Password and Password Reset of OUTLN User [DB13]
09:58BugtraqOracle - SQL Injection in package SDO_GEOM [DB06]
09:51BugtraqOracle - SQL Injection in package SDO_IDX [DB07]
09:48BugtraqOracle - SQL Injection Vulnerability in SDO_UTIL [DB05]
03:23BugtraqVMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
01:30BugtraqBigAnt Server 2.2 PreAuth Remote SEH Overflow Exploit (0day)
00:19BugtraqiDefense Security Advisory 04.09.08: IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overf
00:17BugtraqiDefense Security Advisory 04.09.08: IBM DB2 Universal Database Administration Server File Creation

2008-04-15

22:43Bugtraq[ MDVSA-2008:086 ] - Updated kernel packages fix vulnerability
21:58BugtraqDIVX Player <= 6.7.0 Buffer Overflow PoC ( .SRT )
21:23BugtraqiDefense Security Advisory 04.14.08: ClamAV libclamav PE WWPack Heap Overflow Vulnerability
21:13Bugtraqremote file include
20:47BugtraqWordPress 2.5 - Salt cracking vulnerability
20:42Bugtraq[SECURITY] [DSA 1540-2] New lighttpd packages fix denial of service
20:42Bugtraqremote file include
20:02Bugtraq[ MDVSA-2008:086 ] - Updated kernel packages fix vulnerability
17:49BugtraqKoobi CMS 4.2.4/4.2.5/4.3.0 Multiple Remote SQL Injection Vulnerabilities
12:36BugtraqBosNews 2002-2006 Remote add user admin
12:35BugtraqBosNews v4.0 Remote add user admin
12:07Bugtraqclamav: Endless loop / hang with crafter arj, CVE-2008-1387
11:35Bugtraq[ MDVSA-2008:085 ] - Updated python packages fix arbitrary code execution vulnerability
10:51BugtraqDotclear ecrire/images.php Arbitrary File Upload Vulnerability
06:06BugtraqKoobi Pro 6.25 poll Remote SQL Injection Vulnerability
06:04BugtraqKwsPHP (Upload) Remote Code Execution Exploit
03:25Bugtraq[ GLSA 200804-15 ] libpng: Execution of arbitrary code
02:03BugtraqTroopers08 Security Conference, April 23/24 (Munich/Germany)
01:03Bugtraq[ GLSA 200804-14 ] Opera: Multiple vulnerabilities
00:31Bugtraq[ GLSA 200804-13 ] Asterisk: Multiple vulnerabilities

2008-04-14

22:32Bugtraq[USN-601-1] Squid vulnerability
21:35BugtraqS21SEC-043-en:Cezanne SW Blind SQL Injection
21:31BugtraqS21SEC-042-en:Cezanne SW Cross-Site Scripting (login required)
21:23BugtraqS21SEC-041-en:Cezanne SW Cross-Site Scripting
21:13BugtraqFones Clinic Mart SQL
13:58BugtraqSecunia Research: HP OpenView Network Node Manager OpenView5.exe Directory Traversal
12:21BugtraqSecunia Research: activePDF DocConverter Applix Graphics Parsing Vulnerabilities
12:20BugtraqSecunia Research: activePDF DocConverter Folio Flat File Parsing Buffer Overflows
12:19BugtraqSecunia Research: Symantec Mail Security Applix Graphics Parsing Vulnerabilities
12:18BugtraqSecunia Research: Symantec Mail Security Folio Flat File Parsing Buffer Overflows
12:17BugtraqSecunia Research: Internet Explorer Data Stream Handling Vulnerability
12:16BugtraqSecunia Research: Autonomy Keyview EML Reader Buffer Overflows
12:16BugtraqSecunia Research: Autonomy Keyview Applix Graphics Parsing Vulnerabilities
12:15BugtraqSecunia Research: Autonomy Keyview Folio Flat File Parsing Buffer Overflows
12:14BugtraqSecunia Research: Lotus Notes EML Reader Buffer Overflows
12:13BugtraqSecunia Research: Lotus Notes Applix Graphics Parsing Vulnerabilities
12:13BugtraqSecunia Research: Lotus Notes Folio Flat File Parsing Buffer Overflows
12:12BugtraqSecunia Research: Lotus Notes htmsr.dll Buffer Overflows
12:11BugtraqSecunia Research: Lotus Notes kvdocve.dll Path Processing Buffer Overflow
12:10BugtraqSecunia Research: Adobe Flash Player "Declare Function (V7)" Heap Overflow
08:20Bugtraq[oCERT-2008-003] libpng zero-length chunks incorrect handling

2008-04-13

23:30BugtraqDOINGSOFT-2008-03-10-001 - XSS issue in BOXiR2
14:54BugtraqOneSecurityDay 2008 - Web application auditing challenge
12:13Securiteam[UNIX] Python Zlib Extension Module Buffer Overflow
09:30Securiteam[UNIX] Incorrect Input Validation In PyString_FromStringAndSize() Leads to Multiple Buffer Overflows
09:13Securiteam[NT] Microsoft Windows Graphics Rendering Engine Multiple Vulnerabilities (MS08-021)
08:37Securiteam[NT] EMC DiskXtender Multiple Vulnerabilities
04:49BugtraqDEF CON 16 Retro Announcement! Back to Bang!

2008-04-12

19:21Bugtraqproject announcement - oCERT - Open Source CERT
02:54BugtraqDEF CON 16 Retro Announcement! Back to Bang!
01:19Bugtraq[ MDVSA-2008:084 ] - Updated rsync packages fix vulnerability

2008-04-11

22:20BugtraqIOActive Security Advisory: Incorrect input validation in PyString_FromStringAndSize() leads to mult
20:25BugtraqDirectory traversal and multiple Denials of Service in HP OpenView NNM 7.53
18:46BugtraqTrillian 3.1.9.0 DTD File Buffer Overflow
18:10BugtraqWiKID wClient-PHP <= 3.0-2 Multiple XSS Vulnerabilities
18:10Bugtraq[ GLSA 200804-12 ] gnome-screensaver: Privilege escalation
18:09Bugtraq[ GLSA 200804-11 ] policyd-weight: Insecure temporary file creation
09:46BugtraqBorland InterBase 2007 "ibserver.exe" Buffer Overflow Vulnerability POC
08:52Bugtraq[USN-600-1] rsync vulnerability
01:36BugtraqiDefense Security Advisory 04.09.08: EMC DiskXtender MediaStor Format String Vulnerability
01:30BugtraqiDefense Security Advisory 04.09.08: EMC DiskXtender File System Manager Stack Buffer Overflow Vulne
01:16BugtraqiDefense Security Advisory 04.09.08: EMC DiskXtender Authentication Bypass Vulnerability

2008-04-10

23:44Bugtraq[SECURITY] [DSA 1546-1] New gnumeric packages fix arbitrary code execution
23:29BugtraqEUSecWest CFP Closes April 14th (conf May 21/22 2008)
23:18Bugtraqw2b.ru multiple products SQL Injection
23:11Bugtraq[SECURITY] [DSA 1545-1] New rsync packages fix arbitrary code execution
22:33Bugtraq[ GLSA 200804-10 ] Tomcat: Multiple vulnerabilities
22:19Bugtraq[ GLSA 200804-09 ] am-utils: Insecure temporary file creation
17:39Bugtraq[ GLSA 200804-08 ] lighttpd: Multiple vulnerabilities
02:55BugtraqpaFileDB 3.1 Remote SQL Injection
00:51Bugtraq[ MDVSA-2008:083 ] - Updated audit packages fix vulnerability

2008-04-09

23:32Bugtraq[SECURITY] [DSA 1544-1] New pdns-recursor packages fix cache poisoning vulnerability
23:22BugtraqIOActive Security Advisory: Buffer overflow in Python zlib extension module
22:19Bugtraq[USN-599-1] Ghostscript vulnerability
21:39Bugtraq[ MDVSA-2008:082 ] - Updated php-apc packages fix vulnerability
21:26Bugtraq[SECURITY] [DSA 1543-1] New vlc packages fix several vulnerabilities
20:24Bugtraq[CVE-2007-5301] alsaplayer PoC - exploit
19:55Bugtraq[SECURITY] [DSA 1542-1] New libcairo packages fix arbitrary code execution
17:36CertUS-CERT Technical Cyber Security Alert TA08-100A -- Adobe Flash Updates for Multiple
16:56Securiteam[REVS] Microsoft Windows DNS Stub Resolver Cache Poisoning (MS08-020)
16:51Securiteam[NT] Microsoft GDI WMF Parsing Heap Overflow Vulnerability (MS08-021)
16:35Securiteam[NEWS] Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability
16:32Securiteam[TOOL] ProxyStrike - Active Web Application Proxy
16:24Securiteam[NT] Vulnerability in Windows Kernel Allows Elevation of Privilege (MS08-025)
16:20Securiteam[NT] Cumulative Security Update for Internet Explorer (MS08-024)
16:12Securiteam[NT] Security Update of ActiveX Kill Bits (MS08-023)
11:50Bugtraq[ GLSA 200804-07 ] PECL APC: Buffer Overflow
11:20BugtraqPu Arcade component for Joomla - SQL injection
10:06BugtraqSAP Netweaver 6.40-7.0 Cross-Site-Scripting
09:14Securiteam[NT] Vulnerabilities in GDI Allows Code Execution (MS08-021)
09:04Securiteam[NT] Vulnerability in DNS Client Allows Spoofing (MS08-020)
08:56Securiteam[NT] Vulnerabilities in Microsoft Visio Allows Code Execution (MS08-019)
08:51Securiteam[NT] Vulnerability in Microsoft Project Allows Code Execution (MS08-018)
04:02BugtraqCAU-2008-0002: Microsoft Windows SharePoint Services Picture Source XSS
01:47BugtraqZDI-08-021: Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability
00:06BugtraqiDefense Security Advisory 04.08.08: Microsoft Windows Graphics Rendering Engine Integer Overflow Vu