Mail Index
- [USN-466-1] freetype vulnerability
- MyBloggie 2.1.6 SQL Injection
- GNU Findutils release 4.2.31 fixes CVE-2007-2452 (GNU locate heap buffer overrun)
- PHP JackKnife [multiple vulnerabilities]
- [ GLSA 200705-23 ] Sun JDK/JRE: Multiple vulnerabilities
- [ GLSA 200705-24 ] libpng: Denial of Service
- [ GLSA 200705-25 ] file: Integer overflow
- Re: Progress Webspeed exploit for all releases
- [USN-467-1] Gimp vulnerability
- rPSA-2007-0112-1 firefox thunderbird
- From: rPath Update Announcements
- FLEA-2007-0023-1: firefox
- From: Foresight Linux Essential Announcement Service
- Z-Blog 1.7 Authentication Bypass Database Download Vulnerability
- phpreactor <===1.2.7 remote file include
- [OpenPKG-SA-2007.020] OpenPKG Security Advisory (php)
- SEC Consult SA-20070601-0 :: PHP chunk_split() integer overflow
- PBSite - PHP Bulletin Site | CMS ====> RFI
- static XSS / SQL-Injection in Omegasoft Insel
- Prototype of an PHP application ===> RFI
- Full Path Disclosure in SendCard
- n.runs-SA-2007.013 - F-Secure Antivirus LZH parsing BufferOverflow Advisory
- [MajorSecurity Advisory #50]chameleon cms - Session fixation Issue
- bugtraq submission
- [MajorSecurity Advisory #49]Calimero.CMS - Session fixation Issue
- Outpost Enforcing system reboot with 'outpost_ipc_hdr' mutex Vulnerability
- From: Matousec - Transparent security Research
- RevokeBB Blind SQL Injection / Hash Extractor
- Evenzia CMS XSS
- [USN-468-1] Firefox vulnerabilities
- jumping sudo using ptrace on Linux/i386
- iDefense Security Advisory 06.01.07: Symantec VERITAS Storage Foundation Administration Service DoS Vulnerability
- Linker index.php - Cross-Site Scripting Vulnerability
- From: vagrant - e-hack.org
- MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
- PBSite - PHP Bulletin Site | CMS ====> RFI
- Re: MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
- Comdev Web Blogger 4.1 RFI Vulnerability
- Comdev eCommerce 4.1 RFI Vulnerability
- BCS'07 Call For Papers
- CACTUSHOP 6 Default Installation Allows Remote Database Disclosure
- S21Sec-035: F5 FirePass command execution vulnerability
- Assorted browser vulnerabilities
- WebStudio Multiple XSS Vulnerabilities
- Redlevel Advisory #025 - Vonage VoIP Telephone Adapter Default Misconfiguration
- Re: Buffer overflow in BusinessMail email server system 4.60.00
- 2007-06-03: PeerCast streaming server submits cleartext password
- Dansie Cart Script Exploit Reported
- CERN İmage Map Dispatcher
- Recent OpenSSL exploits
- From: Ryan's spam address
- uTorrent overflow
- n.runs-SA-2007.014 - F-Secure Antivirus ARJ parsing Infinite Loop Advisory
- Re: Buffer overflow in BusinessMail email server system 4.60.00
- n.runs-SA-2007.015 - F-Secure Antivirus FSG packed files parsing Infinite Loop Advisory
- My Datebook SQL Injection + XSS
- [SECURITY] [DSA 1291-4] New samba packages fix regression
- Unpatched input validation flaw in Firefox 2.0.0.4
- FLEA-2007-0024-1: libexif
- From: Foresight Linux Essential Advisory Service
- SYM07-009,Symantec Storage Foundation for Windows Volume Manager: Authentication Bypass and Potential Code Execution in Scheduler Service
- rPSA-2007-0114-1 mutt
- From: rPath Update Announcements
- rPSA-2007-0115-1 libexif
- From: rPath Update Announcements
- RE: bugtraq submission
- Re: [PLESK 7.5 Reload] & [PLESK 7.6 for MS Windows] path passing and disclosure vulnerability
- Disinfectors for the calculator virus (ti89.Gaara)
- [ MDKSA-2007:110 ] - Updated php-pear packages fix directory traversal vulnerability
- [ MDKSA-2007:113 ] - Updated mutt packages fix vulnerabilities
- [ MDKSA-2007:115 ] - Updated clamav packages fix vulnerabilities
- [security bulletin] HPSBUX02217 SSRT071337 rev.2 - HP-UX running Kerberos, Remote Arbitrary Code Execution
- TPTI-07-08: Symantec Veritas Storage Foundation Scheduler Service Authentication Bypass Vulnerability
- [ MDKSA-2007:112 ] - Updated mplayer packages fix buffer overflow vulnerability
- [ MDKSA-2007:111 ] - Updated util-linux packages address login access policies bypassing issue
- TPTI-07-10: Centennial Software XferWan.exe Stack Overflow Vulnerability
- TPTI-07-09: Macrovision FLEXnet boisweb.dll ActiveX Control Buffer Overflow Vulnerability
- [security bulletin] HPSBUX02218 SSRT071424 rev.1 - HP-UX running CIFS Server (Samba), Remote Arbitrary Code Execution
- ZDI-07-035: CA Multiple Product AV Engine CAB Header Parsing Stack Overflow Vulnerability
- SYM07-012 Symantec Reporting Server elevation of privilege
- ZDI-07-034: CA Multiple Product AV Engine CAB Filename Parsing Stack Overflow Vulnerability
- [ GLSA 200706-01 ] libexif: Integer overflow vulnerability
- Comicsense SQL Injection Advisory/Exploit
- SYM07-011 Symantec Reporting Server password disclosure
- [ MDKSA-2007:114 ] - Updated file packages fix vulnerabilities
- [ MDKSA-2007:116 ] - Updated libpng packages fix vulnerability
- Re: Dansie Cart Script Exploit Reported
- [ MDKSA-2007:117 ] - Updated lha packages fix unsafe temporary files creation issue
- [USN-469-1] Thunderbird vulnerabilities
- iDefense Security Advisory 06.05.07: Symantec Ghost Multiple Denial of Service Vulnerabilities
- Announce - Release RFIDIOt ver 0.1n (June 2007)
- ASP Folder Gallery Vulnerabilities
- Light Blog 4.1 XSS Vulnerability
- FLEA-2007-0021-2: madwifi
- From: Foresight Linux Essential Announcement Service
- [ GLSA 200706-03 ] ELinks: User-assisted execution of arbitrary code
- IE 6/Microsoft Html Popup Window (mshtml.dll) DoS
- Re: uTorrent overflow
- [ GLSA 200706-02 ] Evolution: User-assisted execution of arbitrary code
- IE 6 / MS Office Outlook Express Address Book Activex DoS
- Remote log injection on DenyHosts, Fail2ban and BlockHosts
- Re: uTorrent overflow
- Re: Sudo: local root compromise with krb5 enabled
- From: Thor Lancelot Simon
- RUS-CERT 2007-06:01 (1380): Insecure Defaults in A-L OmniPCX 7.0
- Hnkaray Duyuru Script Remote SQL İnjection
- Re: uTorrent overflow
- CSIS Advisory: Microsoft GDI+ Integer division by zero flaw handling .ICO files
- Re: uTorrent overflow
- W1L3D4 WEBmarket Remote SQL İnjection
- Re: uTorrent overflow
- Re: CSIS Advisory: Microsoft GDI+ Integer division by zero flaw handling .ICO files
- MIT krb5: makes sudo authentication issue MUCH worse.
- From: Thor Lancelot Simon
- Atom PhotoBlog v1.0.9 XSS vulnerability
- [CAID 35395, 35396]: CA Anti-Virus Engine CAB File Buffer Overflow Vulnerabilities
- WmsCMS < = 2.0 Multiple XSS Vulnerabilities
- Sudo: local root compromise with krb5 enabled
- From: Thor Lancelot Simon
- Re: [MajorSecurity Advisory #50]chameleon cms - Session fixation Issue
- Re: Sudo: local root compromise with krb5 enabled
- OWASP and WASC Cocktail party at Blackhat USA 2007
- phpWebThings ==>1.5.2 RFI
- From: titanichacker titanichacker
- [SECURITY] [DSA 1299-1] New ipsec-tools packages fix denial of service
- Re: Sudo: local root compromise with krb5 enabled
- Re: Sudo: local root compromise with krb5 enabled
- [SECURITY] [DSA 1300-1] New iceape packages fix several vulnerabilities
- Re: Monkey CMS v0.0.3 Remote File Include Vulnerabilitiy
- Re: LuckyBot v3 Remote File Include
- Zen Help Desk ==> Version 2.1 Bypass/
- From: titanichacker titanichacker
- PHPMyDesk Beta Release 1.0b ==> RFI
- From: titanichacker titanichacker
- CSIS Advisory: BlueCoat K9 Web Protection 3.2.36 Overflow
- Second Call for Papers: DeepSec IDSC 2007 Europe/Vienna: 20-23 Nov 2007
- Packeteer PacketShaper Web Management Denial of Service
- rPSA-2007-0117-1 gd php php-mysql php-pgsql
- From: rPath Update Announcements
- Wordpress default theme XSS (admin) and other problems
- [OpenPKG-SA-2007.021] OpenPKG Security Advisory (wordpress)
- TSLSA-2007-0020 - clamav
- From: Trustix Security Advisor
- iDefense Security Advisory 06.07.07: Linux Kernel cpuset tasks Information Disclosure Vulnerability
- EEYE: Yahoo Webcam ActiveX Controls Multiple Buffer Overflows
- [ MDKSA-2007:118 ] - Updated libexif packages fix crash and possible arbitrary code execution issue
- [USN-470-1] Linux kernel vulnerabilities
- vSupport Integrated Ticket System 3.*.* SQL injection
- [SECURITY] [DSA 1301-1] New Gimp packages fix arbitrary code execution
- myBloggie 2.1.5 Remote File Include
- Re: PHPMyDesk Beta Release 1.0b ==> RFI
- [SECURITY] [DSA 1302-1] New freetype packages fix integer overflow
- Re: myBloggie 2.1.5 Remote File Include
- Cisco Trust Agent Vulnerability
- Re: [SECURITY] [DSA 1299-1] New ipsec-tools packages fix denial of service
- [SECURITY] [DSA 1303-1] New lighttpd packages fix denial of service
- Maran Blog XSS vulnerability
- Serious holes affecting JFFNMS
- SpyBye 0.3 released
- WinPT User ID Spoofing Vulnerability
- Webwiz vulnerable
- [TOOL] w3af - Web Application Attack and Audit Framework
- Project CERA Is Up Again : Secniche Initiative
- MLabs is Shifted Fully : SecNiche Initiative
- PHPMailer command execution
- SECNICHE : Dwelling Security is On the Run
- [ GLSA 200706-04 ] MadWifi: Multiple vulnerabilities
- [USN-439-2] file vulnerability
- [USN-471-1] libexif vulnerability
- [USN-472-1] libpng vulnerability
- [USN-473-1] libgd2 vulnerabilities
- RE: [Full-disclosure] Safari for Windows,0day URL protocol handler command injection
- Re: Sudo: local root compromise with krb5 enabled
- Safari for Windows, 0day URL protocol handler command injection
- Re: [SECURITY] [DSA 1299-1] New ipsec-tools packages fix denial of service
- [SECURITY] [DSA 1306-1] New xulrunner packages fix several vulnerabilities
- PHP parse_str() arbitrary variable overwrite
- ZDI-07-036: Arris Cadant C3 CMTS Remote DoS Vulnerability
- [SECURITY] [DSA 1307-1] New OpenOffice.org packages fix arbitrary code execution
- [security bulletin] HPSBUX02219 SSRT061273 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS)
- Re: PHP parse_str() arbitrary variable overwrite
- [ MDKSA-2007:119 ] - Updated Thunderbird packages fix multiple vulnerabilities
- Windows Oday release
- [ MDKSA-2007:120 ] - Updated Firefox packages fix multiple vulnerabilities
- ZDI-07-037: Microsoft Internet Explorer Language Pack Installation Remote Code Execution Vulnerability
- ZDI-07-038: Microsoft Internet Explorer Prototype Dereference Code Execution Vulnerability
- Re: Windows Oday release
- Menu Manager Mod for WebAPP - No Input Filtering
- iDefense Security Advisory 06.12.07: Microsoft License Manager and urlmon.dll COM Object Interaction Invalid Memory Access Vulnerability
- [USN-474-1] xscreensaver vulnerability
- Re: PHP parse_str() arbitrary variable overwrite
- Apple Safari: cookie stealing
- Re: Windows Oday release
- Re: Re: PHP parse_str() arbitrary variable overwrite
- Re: [Full-disclosure] Apple Safari: cookie stealing
- iDefense Security Advisory 06.13.07: Multiple Vendor libexif Integer Overflow Heap Corruption Vulnerability
- Re: Windows Oday release
- High risk vulnerability in OpenOffice RTF parser
- From: NGSSoftware Insight Security Research
- Re: PHP parse_str() arbitrary variable overwrite
- [SECURITY] [DSA 1305-1] New icedove packages fix several vulnerabilities
- FLEA-2007-0025-1: openoffice.org
- From: Foresight Linux Essential Announcement Service
- [ MDKSA-2007:121 ] - Updated freetype2 packages fix integer overflow vulnerability
- [ MDKSA-2007:123 ] - Updated libwmf packages fix vulnerability
- Singapore Gallery fullpath disclosure
- [ MDKSA-2007:122 ] - Updated gd packages fix vulnerability
- Re: Sudo: local root compromise with krb5 enabled
- rPSA-2007-0119-1 spamassassin
- From: rPath Update Announcements
- [ MDKSA-2007:124 ] - Updated tetex packages fix vulnerability
- [CVE-2007-2450]: Apache Tomcat XSS vulnerability in Manager
- Re: Re: BlackBoard Multiple Vulnerabilities (XSS)
- [CVE-2007-2449] Apache Tomcat XSS vulnerabilities in the JSP examples
- [SECURITY] [DSA 1308-1] New iceweasel packages fix several vulnerabilities
- iDefense Security Advisory 06.14.07: Apache MyFaces Tomahawk JSF Framework Cross-Site Scripting (XSS) Vulnerability
- Elxis CMS <= 2006.4 - banner module - sql injection
- Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
- ByPass In PortalApp
- RFI In Script SH-News 3.1
- Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
- Re: Windows Oday release
- [ MDKSA-2007:125 ] - Updated spamassassin packages fix possible DoS condition
- Re: [Full-disclosure] Windows Oday release
- Re: [MajorSecurity Advisory #47]Simple Machines Forum (SMF) - Session fixation Issue
- Re: [Full-disclosure] Apple Safari: urlbar/window title spoofing
- Kaspersky Multiple insufficient argument validation of hooked SSDT function Vulnerability
- From: Matousec - Transparent security Research
- rPSA-2007-0123-1 squirrelmail
- From: rPath Update Announcements
- Re: [Full-disclosure] Apple Safari: urlbar/window title spoofing
- rPSA-2007-0124-1 kernel xen
- From: rPath Update Announcements
- rPSA-2007-0126-1 util-linux
- From: rPath Update Announcements
- rPSA-2007-0122-1 evolution-data-server
- From: rPath Update Announcements
- [ GLSA 200706-05 ] ClamAV: Multiple Denials of Service
- Re: Sudo: local root compromise with krb5 enabled
- Papoo CMS - Multiple Cross Site Scripting
- PhpListPro Persistent XSS Vulnerability
- [ MDKSA-2007:126 ] - Updated Firefox packages fix multiple vulnerabilities
- [SECURITY] [DSA 1304-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
- Sitellite cms <= 4.2.12 RFI Vuln
- Local Denial of Service in Safari
- Having Fun With PostgreSQL
- [SECURITY] [DSA 1309-1] New PostgreSQL 8.1 packages fix privilege escalation
- [ MDKSA-2007:126-1 ] - Updated Firefox packages fix multiple vulnerabilities
- [SECURITY] [DSA 1309-1] New libexif packages fix integer overflow
- [SECURITY] [DSA 1310-1] New libexif packages fix integer overflow
- WSPortal version 1.0 Path Disclosure Vulnerability
- Utopia News Pro version 1.4.0 XSS Attack Vulnerability
- WSPortal version 1.0 SQL Injection Vulnerability
- [SECURITY] [DSA 1311-1] New PostgreSQL 7.4 packages fix privilege escalation
- [SECURITY] [DSA 1312-1] New libapache-mod-jk packages fix information disclosure
- Re: Menu Manager Mod for WebAPP - No Input Filtering
- ShAnKaR: Simle machines forum CAPTCHA bypass and PHP injection
- PHP hosting Biller
- Re: Having Fun With PostgreSQL
- [security bulletin] HPSBMA02224 SSRT071334 rev.1 - HP System Management Homepage (SMH) for Linux, Remote Privileged Access
- Webif.cgi local file inclusion
- fuzzylime (forum) XSS
- Fusetalk SQL injection submission.
- iDefense Security Advisory 06.18.07: Cerulean Studios Trillian UTF-8 Word Wrap Heap Overflow Vulnerability
- FLEA-2007-0026-1: evolution-data-server
- From: Foresight Linux Essential Announcement Service
- Re: Sitellite cms <= 4.2.12 RFI Vuln
- [CVE-2007-1358] Apache Tomcat XSS vulnerability in Accept-Language header processing
- rPSA-2007-0127-1 fetchmail
- From: rPath Update Announcements
- fusetalk SQL (autherror.cfm)
- CfP: 5th ACM Workshop on Recurring Malware (WORM) - Deadline extension
- iG Shop 1.4 eval Inclusion Vulnerability
- MaraDNS denial of service vulnerabilities
- Persistent cross-site scripting in wordpress.com dashboard
- Local File Include Vulnerabilities in YaBB <= 2.1(all version)
- Re: Having Fun With PostgreSQL
- Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
- [SECURITY] [DSA 1313-1] New MPlayer packages fix arbitrary code execution
- Re: Windows Oday release
- [SECURITY] [DSA 1314-1] New open-iscsi packages fix several vulnerabilities
- [SECURITY] [DSA 1315-1] New libphp-phpmailer packages fix arbitrary shell command execution
- W1L3D4 WEBmarket v0,1 SQL Injection Vuln
- [ GLSA 200706-06 ] Mozilla products: Multiple vulnerabilities
- [ GLSA 200706-07 ] PHProjekt: Multiple vulnerabilities
- [ MDKSA-2007:127 ] - Updated apache packages fix mod_mem_cache issue
- New post Topic Hijacking XSS All vBulletin v 3.x.x (2)
- Comersus Shop Cart 7.07 SQL Injection & XSS
- Apache Prefork MPM vulnerabilities - Report
- [ MDKSA-2007:129 ] - Updated jasper packages fix vulnerability
- New Include Redirect Bug XSS All vBulletin v 3.x.x
- Pixy - An Open-Source Vulnerability Scanner for PHP Applications
- FLEA-2007-0027-1: thunderbird
- From: Foresight Linux Essential Announcement Service
- [ MDKSA-2007:128 ] - Updated libexif packages fix integer overflow flaw
- fusetalk CSS (comfinish.cfm)
- fusetalk CSS (autherror.cfm)
- [security bulletin] HPSBPI02226 SSRT061274 rev.1 - HP Help and Support Center Running on HP Notebook Computers Running with Windows XP, Remote Unauthorized Access
- [security bulletin] HPSBTU02218 SSRT071424 rev.1 - HP Tru64 UNIX Internet Express running Samba, Remote Arbitrary Code Execution or Local Unauthorized Privilege Elevation
- HTTP SERVER (httpsv1.6.2) source code disclosure
- MyServer-0.8.9 - source code disclosure
- MyServer-0.8.9 - xss in sample cgi page
- HTTP SERVER (httpsv1.6.2) 404 Denial of Service
- [ MDKSA-2007:130 ] - Updated proftpd packages fix authentication bypass vulnerability
- [ MDKSA-2007:131 ] - Updated Thunderbird packages fix multiple vulnerabilities
- [SECURITY] [DSA 1316-1] New emacs21 packages fix denial of service
- Re: New Include Redirect Bug XSS All vBulletin v 3.x.x
- Re: New post Topic Hijacking XSS All vBulletin v 3.x.x (2)
- VLC 0.8.6b format string vulnerability & integer overflow
- Re: New Include Redirect Bug XSS All vBulletin v 3.x.x
- [ MDKSA-2007:132 ] - Updated madwifi-source, wpa_supplicant packages fix vulnerabilities
- NetClassifieds [multiple vulnerabilities]
- [security bulletin] HPSBGN02199 SSRT071312 rev.3 - Mercury Quality Center ActiveX, Remote Unauthorized Arbitrary Code Executio
- HPSBST02231 SSRT071438 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-030 to MS07-035
- Re: New Include Redirect Bug XSS All vBulletin(r) v 3.x.x
- iDefense Security Advisory 06.21.07: Ingres Database Multiple Heap Corruption Vulnerabilities
- [ MDKSA-2007:133 ] - Updated emacs packages fix DoS vulnerability
- [ MDKSA-2007:134 ] - Updated xfsdump packages fix unsafe temporary directory creation issue
- MS07-034: Executing arbitrary script with mhtml: protocol handler
- [USN-475-1] evolution-data-server vulnerability
- Re: Re: New Include Redirect Bug XSS All vBulletin(r) v 3.x.x
- All Of the Mambo & Joomla Script Remote File Inclussion Bugs..
- [CAID 35450, 35451, 35452, 35453]: CA Products That Embed Ingres Multiple Vulnerabilities
- Re: Re: New Include Redirect Bug XSS All vBulletin v 3.x.x
- eNdonesia 8.4 [multiple injection sql]
- [USN-476-1] redhat-cluster-suite vulnerability
- FLEA-2007-0028-1: libexif
- From: Foresight Linux Essential Announcement Service
- [ MDKSA-2007:135 ] - Updated webmin packages fix XSS vulnerability
- [SECURITY] [DSA 1317-1] New tinymux packages fix buffer overflow
- Re: Re: PHPMyDesk Beta Release 1.0b ==> RFI
- [SECURITY] [DSA 1318-1] New ekg packages fix denial of service
- [SECURITY] [DSA 1319-1] New maradns packages fix denial of service
- [SECURITY] [DSA 1321-1] New evolution-data-server packages fix arbitrary code execution
- [SECURITY] [DSA 1320-1] New clamav packages fix several vulnerabilities
- [GOODFELLAS - VULN] BarCodeAx.dll v. 4.9 ActiveX Control Remote Stack Buffer Overflow
- SHTTPD V1.38 server source code disclosure
- Ingres Unauthenticated Pointer Overwrite 2
- From: NGSSoftware Insight Security Research
- Ingres verifydb local stack overflow
- From: NGSSoftware Insight Security Research
- KF Web Server 3.1.0 admin console XSS
- Papoo CMS 3.6 - SQL Injection
- Ingres Unauthenticated Pointer Overwrite 1
- From: NGSSoftware Insight Security Research
- Ingres stack overflow in uuid_from_char function
- From: NGSSoftware Insight Security Research
- POWER PHLOGGER v.2.2.5 (username) SQL Injection
- Ingres wakeup setuid(ingres) file truncation
- From: NGSSoftware Insight Security Research
- LiteWEB 2.7 404 Denial of Services
- Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities
- Pluxml 0.3.1 Remote Code Execution Exploit
- Safari Bookmarks Buffer Overflow Vulnerability
- Calendarix version 0.7. 20070307 Multiple XSS Attacks
- phpTrafficA < 1.4.2
- Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities
- Papoo CMS 3.6 - Access Restriction Bypass
- Re: Re: [MajorSecurity Advisory #47]Simple Machines Forum (SMF) - Session fixation Issue
- Safari XMLHttpRequest HTTP header injection
- "run as" local denial-of-service enables administrative account processes to be killed
- rPSA-2007-0131-1 libexif
- From: rPath Update Announcements
- [security bulletin] HPSBUX02225 SSRT071295 rev.1 - HP-UX Running Xserver, Local Denial of Service (DoS)
- MyNews version 0.10 SQL Injection Vulnerability
- Calendarix version 0.7. 20070307 Multiple SQL Injection Vulnerabilities
- Re: Apple Safari: idn urlbar spoofing
- Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
- RE: [Full-disclosure] Apple Safari: idn urlbar spoofing
- [ISR] :: Infobyte Security Research :: release (ISR-sqlget.pl) v1.0.0
- Re: KF Web Server 3.1.0 admin console XSS
- CFP: ISOI III (a DA workshop)
- rPSA-2007-0133-1 emacs emacs-leim
- From: rPath Update Announcements
- SYMSA-2007-004: Multiple Vulnerabilities in Xythos Server Products
- RE: "run as" local denial-of-service enables administrative account processes to be killed
- MITKRB5-SA-2007-004: kadmind multiple RPC lib vulnerabilities
- MITKRB5-SA-2007-005: kadmind vulnerable to buffer overflow
- iDefense Security Advisory 06.26.07: Multiple Vendor Kerberos kadmind Rename Principal Buffer Overflow Vulnerability
- Calyptix Security Advisory CX-2007-04 - Cross-Site Request Forgery Attack Against Check Point Safe@Office Device
- iDefense Security Advisory 06.26.07: RealNetworks RealPlayer/HelixPlayer SMIL wallclock Stack Overflow Vulnerability
- [GOODFELLAS - VULN ] Avaxswf.dll v.1.0.0.1 from Avax Vector software ActiveX Arbitrary Data Write
- [ GLSA 200706-09 ] libexif: Buffer overflow
- [ GLSA 200706-08 ] emul-linux-x86-java: Multiple vulnerabilities
- [USN-477-1] krb5 vulnerabilities
- [ MDKSA-2007:137 ] - Updated krb5 packages fix vulnerabilities
- [USN-478-1] libexif vulnerability
- SAP Web Dynpro Java (BC-WD-JAV) Vulnerability
- PHP 4/5 htaccess safemode and open_basedir Bypass
- SAP Internet Communication Framework (BC-MID-ICF) Vulnerability
- [ MDKSA-2007:136 ] - Updated evolution packages fix vulnerability
- Re: Apple Safari: idn urlbar spoofing
- Conti FTP Server v1.0 DoS
- Openedge _mprosrv buffer overflow
- HPSBTU02207 SSRT061239 rev.2 - HP Tru64 UNIX OpenSSL and BIND Remote Arbitrary Code Execution or Denial of Service (DoS)
- Contact request - nVidia
- Juniper SBR V 6.0.1 CRL-Checking problem
- CheckPoint VPN-1 UTM Edge Cross Site Request Forgery vulnerability
- From: Henri Lindberg - Louhi Networks Oy
- rPSA-2007-0135-1 krb5 krb5-server krb5-services krb5-test krb5-workstation
- From: rPath Update Announcements
- [GOODFELLAS - VULN] hpqxml.dll 2.0.0.133 from HP Digital Imaging Arbitary Data Write.
- [SECURITY] [DSA 1322-1] New wireshark packages fix denial of service
- eTicket version 1.5.5 Path Disclosure Vulnerability
- eTicket version 1.5.5 XSS Attack Vulnerability
- rPSA-2007-0136-1 httpd mod_ssl
- From: rPath Update Announcements
- FLEA-2007-0029-1: krb5 krb5-workstation
- From: Foresight Linux Essential Announcement Service
- XEForum Cookie Modification Privilege Escalation Vulnerability
- [SecurInfos] PCSoft WinDEV .wdp Project File Handling Buffer Overflow
- Secunia Research: Symantec Mail Security for SMTP Boundary Errors
- Secunia Research: KVIrc irc:// URI Handler Command Execution Vulnerability
- [security bulletin] HPSBTU02232 SSRT071429 rev.1 - Secure Web Server for HP Tru64 UNIX Powered by Apache (SWS) or HP Internet Express for Tru64 UNIX running PHP, Remote Arbitrary Code Execution, Unauthorized Disclosure of Information, or Denial of Service (DoS)
- FLEA-2007-0030-1: avahi avahi-glib avahi-sharp
- From: Foresight Linux Essential Announcement Service
- [SECURITY] [DSA 1324-1] New hiki packages fix missing input sanitising
- [SECURITY] [DSA 1323-1] New krb5 packages fix several vulnerabilities
- [USN-479-1] MadWifi vulnerabilities
- TSLSA-2007-0021 - kerberos5
- From: Trustix Security Advisor
- [SECURITY] [DSA 1325-1] New evolution packages fix arbitrary code execution
- flac123 0.0.9 - Stack overflow in comment parsing
- SQL Injection In Script VBZooM V1.12
- Re: eTicket version 1.5.5 XSS Attack Vulnerability
- Airscanner Advisory #07062901: FlexiSPY Victim/User Database Exposure (Full world readable access to ALL SMS/Emails/Voice data from victims/users)
Mail converted by MHonArc