Mail Index
- 'Andy's PHP Knowledgebase' SQL Injection Vulnerability (CVE-2011-1546)
- RE: Solaris 10 Port Stealing Vulnerability
- Re: Re: HTB22905: Path disclosure in Wordpress
- [USN-1099-1] GDM vulnerability
- [SECURITY] [DSA 2208-2] bind9 security update
- HTB22907: Directory Traversal in Collabtive
- HTB22906: XSS vulnerabilities in Collabtive
- HTB22910: XSRF (CSRF) in Feng Office
- HTB22909: Path disclosure in Tine 2.0
- HTB22908: XSRF (CSRF) in Collabtive
- HTB22931: XSS vulnerability in InTerra Blog Machine
- [USN-1100-1] OpenLDAP vulnerabilities
- Re: Solaris 10 Port Stealing Vulnerability
- BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload
- [security bulletin] HPSBMA02650 SSRT100429 rev.1 - HP Operations for UNIX, Remote Cross Site Scripting (XSS), Unauthorized Access
- [ MDVSA-2011:058 ] quagga
- [ MDVSA-2011:057 ] apache
- iDefense Security Advisory 03.31.10: RealNetworks Helix DNA Server RTSP Stack Buffer Overflow
- Microsoft VISTA TCP/IP heap buffer underflow
- RE: [Full-disclosure] Microsoft VISTA TCP/IP heap buffer underflow
- From: Thor (Hammer of God)
- 6-year FreeBSD-SA-05:02.sendfile exploit
- [ MDVSA-2011:059 ] ffmpeg
- [security bulletin] HPSBUX02645 SSRT100387 rev.1 - HP-UX Apache Web Server, Remote Information Disclosure, Cross-Site Scripting (XSS), Denial of Service (DoS)
- [security bulletin] HPSBUX02646 SSRT100396 rev.1 - HP-UX, Local Denial of Service (DoS)
- Movie Player v4.82 0Day Buffer overflow/DOS Exploit
- [security bulletin] HPSBUX02639 SSRT100293 rev.1 - HP-UX Running XNTP, Remote Denial of Service (DoS)
- AR Web Content Manager (AWCM) Cross-Site scripting Vulnerability
- Flag this message Windows Media player 11.0.5721.5145 Buffer overflow/DOS Exploit
- [ MDVSA-2011:060 ] ffmpeg
- [ MDVSA-2011:061 ] ffmpeg
- XCon 2011 XFocus Information Security Conference Call for Paper
- Re: RFI in JAF CMS
- From: security curmudgeon
- [SECURITY] [DSA 2210-1] tiff security update
- Stored and Reflective XSS in Yaws-Wiki 1.88-1 (Erlang)
- [ MDVSA-2011:062 ] ffmpeg
- [ MDVSA-2011:063 ] xmlsec1
- [SECURITY] [DSA 2209-1] tgt security update
- ZDI-11-115: IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability
- THOMSON Router XSS
- Xymon monitor cross-site scripting vulnerabilities
- DC4420 - London DEFCON - April meet - Wednesday 22nd April 2011
- RealNetworks RealGames StubbyUtil.ProcessMgr.1 ActiveX Control (InstallerDlg.dll v2.6.0.445) Multiple Remote Commands Execution Vulnerabilities
- Re: DC4420 - London DEFCON - April meet - Wednesday 20th April 2011
- RealNetworks RealGames StubbyUtil.ShellCtl.1 ActiveX Control (InstallerDlg.dll v2.6.0.445) Multiple Remote Commands Execution and Code Execution Vulnerabilities
- [ MDVSA-2011:064 ] libtiff
- ZDI-11-041: (0day) Multiple Browser Node Processing Stack Overflow Vulnerability
- ZDI-11-116: Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability
- [USN-1103-1] tex-common vulnerability
- [USN-1102-1] tiff vulnerability
- Re: Xymon monitor cross-site scripting vulnerabilities
- [USN-1104-1] FFmpeg vulnerabilities
- HTB22914: Local File Inclusion in UseBB
- HTB22913: Multiple CSRF (Cross-Site Request Forgery) in UseBB
- HTB22912: Multiple SQL Injections in Eleanor CMS
- HTB22911: XSS in Eleanor CMS
- [security bulletin] HPSBMA02652 SSRT100432 rev.2 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Information Disclosure
- StartSite.ir Cross-site Scripting Vulnerability
- From: md . r00t . defacer
- [ MDVSA-2011:065 ] logrotate
- Re: XSS in CompactCMS
- From: security curmudgeon
- XSS Vulnerability in Redmine 1.0.1 to 1.1.1
- From: Netsparker Advisories
- Re: [eVuln.com] Cookie Auth Bypass in Hot Links SQL
- From: security curmudgeon
- Re: Multiple vulnerabilities in chCounter <= 3.1.3
- From: security curmudgeon
- [USN-1105-1] Linux kernel vulnerabilities
- Re: AWCM v2.2 Auth Bypass Vulnerabilities
- From: security curmudgeon
- [ MDVSA-2011:066 ] rsync
- ICMPv6 Router Announcement flooding denial of service affecting multiple systems
- Sonexis ConferenceManager SQL Injection
- [SECURITY] CVE-2011-1475 Apache Tomcat information disclosure
- [USN-1106-1] NSS vulnerabilities
- [SECURITY] CVE-2011-1183 Apache Tomcat security constraint bypass
- [USN-1107-1] x11-xserver-utils vulnerability
- Sonexis ConferenceManager Multiple Cross-site Scripting (XSS) Vulnerabilities
- [SECURITY] [DSA 2211-1] vlc security update
- SEC Consult SA-20110407-0 :: Libmodplug ReadS3M Stack Overflow
- From: SEC Consult Vulnerability Lab
- HTB22921: SQL Injection in Viscacha
- HTB22919: Multiple XSS in Viscacha
- HTB22915: Path disclosure in Joomla
- HTB22920: Path disclosure in Viscacha
- HTB22918: Path disclosure in phpCollab
- HTB22917: XSS vulnerabilities in phpCollab
- HTB22916: XSRF (CSRF) in phpCollab
- O2 classic router: persistent cross site scripting (XSS) and cross site request forgery (CSRF)
- phplist: cross site request forgery (CSRF), CVE-2011-0748
- [SECURITY] [DSA 2212-1] tmux security update
- XSS Vulnerabilities in 1024cms Admin Control Panel v1.1.0 Beta
- LFI Vulnerability in 024cms Admin Control Panel v1.1.0 Beta (Complete-Modules Package)
- Directory Traversal Vulnerability in 1024cms Admin Control Panel v1.1.0 Beta (Complete-Modules Package)
- XSS Vulnerability in 1024cms Admin Control Panel v1.1.0 Beta (Master-cPanel Package)
- LFI Vulnerability in 1024cms Admin Control Panel v1.1.0 Beta (Master-cPanel Package)
- [ MDVSA-2011:069 ] php
- [ MDVSA-2011:070 ] gdm
- [ MDVSA-2011:071 ] kdelibs4
- [ MDVSA-2011:072 ] gwenhywfar
- joomlacontenteditor (com_jce) BLIND sql injection vulnerability
- [SECURITY] [DSA 2213-1] x11-xserver-utils security update
- [SECURITY] [DSA 2214-1] ikiwiki security update
- Re: XSRF (CSRF) in Wolf CMS
- From: security curmudgeon
- Arbitary File Upload Vulnerability in Elxis CMS component eForum v1.1
- ZDI-11-117: McAfee Firewall Reporter GeneralUtilities.pm isValidClient Authentication Bypass Vulnerability
- [SECURITY] [DSA 2215-1] gitolite security update
- WOOT '11 Call for Papers (reminder)
- [Tool] sqlmap 0.9 released
- [SECURITY] [DSA 2216-1] isc-dhcp security update
- [ MDVSA-2011:073 ] dhcp
- Linksys WRT54G - read router password from file placed on FTP
- [SECURITY] [DSA 2217-1] dhcp3 security update
- Vulnerabilities in Microsoft Reader and HIS
- ZDI-11-118: Novell ZENworks Asset Management Path Traversal File Overwrite Remote Code Execution Vulnerability
- rPSA-2011-0013-1 openssl openssl-scripts
- From: rPath Update Announcements
- Passwords^11 - Call for Papers ending April 17!
- rPSA-2011-0014-1 httpd mod_ssl
- From: rPath Update Announcements
- [USN-1108-1] DHCP vulnerability
- Medium severity flaw in Konqueror
- HTB22927: CSRF (Cross-Site Request Forgery) in Webjaxe
- HTB22930: Multiple XSS in WebCalendar
- Re: [Full-disclosure] Medium severity flaw in Konqueror
- CFP for BugCON 2011 @ Mexico City
- HTB22925: Path disclosure in Plogger
- HTB22926: XSS vulnerability in Plogger
- [SECURITY] [DSA 2218-1] vlc security update
- Stack overflow in Microsoft HTML Help 6.1 (CHM files)
- HTB22929: Multiple Path disclosure in WebsiteBaker
- HTB22928: Multiple SQL Injections in WebsiteBaker
- [security bulletin] HPSBPI02656 SSRT090262 rev.1 - Certain HP Photosmart Printers, Remote Unauthorized Access, Cross Site Scripting (XSS)
- Re: [Full-disclosure] Medium severity flaw in Konqueror
- [IMF 2011] Call for Participation
- ZDI-11-119: (Pwn2Own) Microsoft Internet Explorer onPropertyChange Remote Code Execution Vulnerability
- ZDI-11-120: Microsoft Office Excel RealTimeData Record Parsing Remote Code Execution Vulnerability
- Announcing TakeDownCon Dallas - May 14-19 - Dallas, TX
- ZDI-11-121: Microsoft Office XP Data Validation Record Parsing Remote Code Execution Vulnerability
- ZDI-11-124: Microsoft PowerPoint TimeColorBehaviorContainer Floating Point Record Remote Code Execution Vulnerability
- ZDI-11-122: RealNetworks RealPlayer OpenURLInDefaultBrowser Remote Code Execution Vulnerability
- nSense-2011-001: VeryPDF pdf2tif
- VUPEN Security Research - Microsoft Office MSO Size Handling Integer Overflow Vulnerability
- From: VUPEN Security Research
- ZDI-11-123: Microsoft PowerPoint TimeCommandBehaviorContainer Remote Code Execution Vulnerability
- [security bulletin] HPSBUX02655 SSRT100353 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS)
- [security bulletin] HPSBUX02653 SSRT100310 rev.1 - HP-UX Running NFS/ONCplus, Remote Denial of Service (DoS)
- [security bulletin] HPSBUX02642 SSRT100415 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows running Java, Remote Denial of Service (DoS)
- VUPEN Security Research - Microsoft Windows GDI+ Size Handling Integer Overflow Vulnerability
- From: VUPEN Security Research
- iDefense Security Advisory 04.12.11: Microsoft Excel Memory Corruption Vulnerability
- [security bulletin] HPSBMA02643 SSRT100416 rev.2 - HP Network Node Manager i (NNMi), Local Unauthorized Read Access to Files, Remote Cross Site Scripting (XSS)
- Re: joomlacontenteditor (com_jce) BLIND sql injection vulnerability
- iDefense Security Advisory 04.12.11: Microsoft Internet Explorer Use-After-Free Memory Corruption Vulnerability
- [USN-1109-1] GIMP vulnerabilities
- [PRE-SA-2011-03] Denial-of-service vulnerability in EFI partition handling code of the Linux kernel
- ZDI-11-125: Microsoft Office PowerPoint PersistDirectoryEntry Remote Code Execution Vulnerability
- [ MDVSA-2011:074 ] qt4
- [DCA-2011-0010] TOTVS Microsiga Protheus ERP - Memory Corruption
- From: Flavio do Carmo Junior aka waKKu
- Microsoft Patches Binary Planting Issues In Various Vendors' Products
- From: ACROS Security Lists
- MITKRB5-SA-2011-004 kadmind invalid pointer free() [CVE-2011-0285]
- Re: ZDI-11-117: McAfee Firewall Reporter GeneralUtilities.pm isValidClient Authentication Bypass Vulnerability
- ZDI-11-126: CA Total Defense Suite Heartbeat Web Service Remote Code Execution Vulnerability
- ZDI-11-128: CA Total Defense Suite UnassignFunctionalUsers Stored Procedure SQL Injection Vulnerability
- ZDI-11-129: CA Total Defense Suite UnassignAdminRoles Stored Procedure SQL Injection Vulnerability
- ZDI-11-130: CA Total Defense Suite UNC Management Console DeleteFilter SQL Injection Vulnerability
- ZDI-11-127: CA Total Defense Suite UNCWS Web Service getDBConfigSettings Credential Disclosure Vulnerability
- CA20110413-01: Security Notice for CA Total Defense
- ZDI-11-131: CA Total Defense Suite NonAssignedUserList Stored Procedure SQL Injection Vulnerability
- ZDI-11-132: CA Total Defense Suite UNC Management Console DeleteReportLayout SQL Injection Vulnerability
- ZDI-11-133: CA Total Defense Suite UNC Management Console DeleteReports SQL Injection Vulnerability
- The BodgeIt Store - another vulnerable web app
- ZDI-11-134: CA Total Defense Suite UNC Management Console RegenerateReport SQL Injection Vulnerability
- HTB22924: Arbitrary Command Execution in phpAlbum.net
- HTB22923: XSRF (CSRF) in phpAlbum.net
- HTB22922: XSS vulnerabilities in phpAlbum.net
- [security bulletin] HPSBMA02652 SSRT100432 rev.3 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Information Disclosure
- Recon 2011 - Accepted Talks , Training, Call For Papers Reminder - July 8 to 10, 2011 - Montreal, Quebec
- [USN-1110-1] KDE-Libs vulnerabilities
- ZDI-11-135: (Pwn2Own) WebKit WBR Tag Removal Remote Code Execution Vulnerability
- VUPEN Security Research - Microsoft Internet Explorer Layouts Use-after-free Vulnerability (CVE-2011-0094)
- From: VUPEN Security Research
- VUPEN Security Research - Microsoft Internet Explorer Property Change Memory Corruption (CVE-2011-1345)
- From: VUPEN Security Research
- VUPEN Security Research - Apple Safari Text Nodes Remote Use-after-free Vulnerability (CVE-2011-1344)
- From: VUPEN Security Research
- VUPEN Security Research - Microsoft Windows OpenType CFF Driver Stack Overflow Vulnerability (CVE-2011-0034)
- From: VUPEN Security Research
- ZDI-11-104: (Pwn2Own) Webkit CSS Text Element Count Remote Code Execution Vulnerability
- VUPEN Security Research - Microsoft Office Excel Real Time Data Stack Overwrite Vulnerability (CVE-2011-0105)
- From: VUPEN Security Research
- RE: THOMSON Router XSS
- Does anyone know how to contact OpenSSH non-public?
- Re: DC4420 - London DEFCON - April meet - Wednesday 20th April 2011
- Announcement: ClubHACK Magazine Issue 15-April 2011 released
- [USN-1113-1] Postfix vulnerabilities
- ESA-2011-013: EMC NetWorker arbitrary code execution with elevated privileges vulnerability
- ESA-2011-014: RSA, The Security Division of EMC, announces the release of Adaptive Authentication (On-Premise) Flash File Security Patch
- cPassMan v1.82 Arbitrary File Download - SOS-11-004
- Re: Does anyone know how to contact OpenSSH non-public?
- [DCA-2011-0011] - Ocomon Multiple SQL Injection
- From: Ewerson Guimarães (Crash) - Dclabs
- HTB22939: Multiple SQL Injection in Universal Post Manager wordpress plugin
- HTB22932: Multiple XSS in webSPELL
- HTB22934: SQL Injection in WP-StarsRateBox wordpress plugin
- HTB22935: Multiple XSS in WP-StarsRateBox wordpress plugin
- HTB22941: CSRF (Cross-Site Request Forgery) in Dalbum
- [Annoucement] CHMag Call for Articles
- HTB22940: XSS in SocialGrid wordpress plugin
- ZDI-11-136: IBM Tivoli Directory Server ibmslapd.exe SASL Bind Request Remote Code Execution Vulnerability
- HTB22933: Multiple Path disclosure in webSPELL
- HTB22931: XSS vulnerability in InTerra Blog Machine
- Windows Synchronization Object Vulnerabilites in Antivirus Suites
- [SECURITY] [DSA 2219-1] xmlsec1 security update
- [USN-1114-1] KDENetwork vulnerability
- [security bulletin] HPSBMA02659 SSRT100440 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access
- HTB22942: Path disclousure in Dalbum
- HTB22943: XSS in Dalbum
- HTB22937: Path disclosure in Universal Post Manager wordpress plugin
- Re: SQL Injection in LightNEasy
- From: security curmudgeon
- HTB22938: Multiple XSS in Universal Post Manager wordpress plugin
- Re: SQL Injection in LightNEasy
- From: security curmudgeon
- ZDI-11-138: Webkit Undefined DOM Prototype Attach Remote Code Execution Vulnerability
- [security bulletin] HPSBMA02658 SSRT100413 rev.1 - Insight Control for Linux (IC-Linux), Remote Unauthorized Elevation of Privilege, Execution of Arbitrary Code, Encryption Downgrade, Information Disclosure, Denial of Service (DoS)
- [security bulletin] HPSBMA02661 SSRT100408 rev.1 - HP Proliant Support Pack (PSP) Running on Linux and Windows, Remote Cross Site Scripting (XSS), URL Redirection, Information Disclosure
- [USN-1118-1] OpenSLP vulnerability
- [SECURITY] [DSA 2221-1] Mojolicious security update
- [security bulletin] HPSBMA02662 SSRT100409 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Unauthorized Access, Execution of Arbitrary Code, Denial of Service (DoS)
- [USN-1108-2] DHCP vulnerability
- ZDI-11-137: Oracle Application Server Authentication Bypass Remote Code Execution Vulnerability
- ZDI-11-139: Webkit Anonymous Frame Remote Code Execution Vulnerability
- [security bulletin] HPSBMA02663 SSRT100428 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), Execution of Arbitrary Code, Denial of Service (DoS)
- ZDI-11-140: Webkit Detached Body Element Remote Code Execution Vulnerability
- [USN-1115-1] language-selector vulnerability
- [security bulletin] HPSBMA02660 SSRT100433 rev.1 - HP Performance Insight Running on HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access to Sensitive Information
- [USN-1116-1] Kerberos vulnerability
- Directory Traversal Vulnerability in Viola DVR VIO-4/1000
- [SECURITY] [DSA 2220-1] Request Tracker security update
- [USN-1117-1] PolicyKit vulnerability
- [ MDVSA-2011:075 ] kdelibs4
- [SECURITY] [DSA 2222-1] tinyproxy security update
- [SECURITY] [DSA 2223-1] doctrine security update
- [SECURITY] [DSA 2224-1] openjdk-6 security update
- [security bulletin] HPSBMA02664 SSRT100417 rev.1 - HP Insight Control Performance Management for Windows, Remote Privilege Elevation, Cross Site Request Forgery (CSRF)
- [security bulletin] HPSBMA02665 SSRT100185 rev.1 - HP Virtual Server Environment for Windows, Remote Privilege Elevation
- CA20110420-02: Security Notice for CA Output Management Web Viewer
- FreeBSD Security Advisory FreeBSD-SA-11:01.mountd
- From: FreeBSD Security Advisories
- [USN-1119-1] Linux kernel (OMAP4) vulnerabilities
- CA20110420-01: Security Notice for CA SiteMinder
- HTB22947: XSS in Ajax Category Dropdown wordpress plugin
- HTB22946: Multiple SQL Injection in Ajax Category Dropdown wordpress plugin
- HTB22945: Multiple XSS in ZENphoto
- HTB22950: SQL injection in 4images
- HTB22949: Multiple Path disclousure in 4images
- HTB22944: Path disclousure in ZENphoto
- hack.lu 2011 CFP
- From: hack.lu 2011 information team
- [USN-1120-1] tiff vulnerability
- [ MDVSA-2011:076 ] xrdb
- [ MDVSA-2011:077 ] krb5
- [security bulletin] HPSBMA02667 SSRT100464 rev.1 - HP SiteScope, Cross Site Scripting (XSS) and HTML Injection
- [security bulletin] HPSBMA02666 SSRT100434 rev.1 - HP Network Automation Running on Linux, Solaris, and Windows, Remote Information Disclosure
- AST-2011-005: File Descriptor Resource Exhaustion
- From: Asterisk Security Team
- [DSECRG-11-018] Kaspersky administration Kit - Remote code execution via SMBRelay
- [ACM CCS'11] Reminder: Deadline Approaching (May 6, 2011)
- [ MDVSA-2011:078 ] libtiff
- XSS in Webmin 1.540 + exploit for privilege escalation
- Re: HTB22945: Multiple XSS in ZENphoto
- AT-TFTP Server Remote Denial of Service Vulnerability
- AST-2011-006: Asterisk Manager User Shell Access
- From: Asterisk Security Team
- [TOOL RELEASE] T50 - an Experimental Mixed Packet Injector ( v5.3)
- Re: [DSECRG-11-018] Kaspersky administration Kit - Remote code execution via SMBRelay
- From: Vladimir '3APA3A' Dubrovin
- HTB22953: XSS in Max's PHP Photo Album
- HTB22957: XSRF (CSRF) in phpList
- HTB22956: XSS vulnerabilities in phpList
- HTB22954: Path disclousure in yappa-ng Photo Gallery
- HTB22951: XSS in WP-Ajax-Recent-Posts wordpress plugin
- HTB22948: Path disclosure in Cotonti
- HTB22952: XSS vulnerabilities in Noah's Classifieds
- Re: SQL Injection in phpMySport
- From: security curmudgeon
- HTB22955: Path disclosure in BuddyPress WordPress plugin
- [security bulletin] HPSBMA02654 SSRT100441 rev.1 - HP OpenView Storage Data Protector, Remote Execution of Arbitrary Code
- [SECURITY] [DSA 2225-1] asterisk security update
- [SECURITY] [DSA 2226-1] libmodplug security update
- CA20110426-01: Security Notice for CA Arcot WebFort Versatile Authentication Server
- [security bulletin] HPSBMA02667 SSRT100464 rev.2 - HP SiteScope, Cross Site Scripting (XSS) and HTML Injection
- Re: Stored XSS vulnerability in diafan.CMS
- From: security curmudgeon
- B-Sides Vienna | NinjaCon 11 Call For Participation
- NGS00068 Patch Notification: LibAVCodec AMV Out of Array Write
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified Communications Manager
- From: Cisco Systems Product Security Incident Response Team
- [USN-1124-1] rsync vulnerability
- Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- [USN-1125-1] PCSC-Lite vulnerability
- CFP: Hacktivity 2011, September 17-18, Budapest, Hungary
- HTB22958: XSS in phpGraphy
- hashdays 2011 - Call for Papers (#days CFP)
- HTB22961: XSS in WP Photo Album wordpress plugin
- HTB22959: CSRF (Cross-Site Request Forgery) in phpGraphy
- HTB22965: Multiple XSS vulnerabilities in BackupPC
- HTB22960: XSS in Daily Maui Photo Widget wordpress plugin
- [Onapsis Security Advisory 2011-010] Oracle JD Edwards JDENET Remote Logging Deactivation
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-005] SAP Enterprise Portal Path Disclosure
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-008] Oracle JD Edwards JDENET CallObjectKernel Remote Command Execution
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-011] Oracle JD Edwards JDENET Buffer Overflow
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-012] Oracle JD Edwards JDENET Firewall Bypass
- From: Onapsis Research Labs
- ZDI-11-143: Cisco Unified CallManager xmldirectorylist.jsp SQL Injection Vulnerability
- [Onapsis Security Advisory 2011-013] Oracle JD Edwards JDENET USRBROADCAST Denial of Service
- From: Onapsis Research Labs
- VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console
- From: VMware Security Team
- [Onapsis Security Advisory 2011-006] Oracle JD Edwards JDENET Kernel Denial of Service
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-009] Oracle JD Edwards JDENET SawKernel Remote Password Disclosure
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-007] Oracle JD Edwards JDENET Kernel Shutdown
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-004] SAP WebAS ITS Mobile Test Service Multiple Vulnerabilities
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-003] SAP WebAS ITS Mobile Start Service Multiple Vulnerabilities
- From: Onapsis Research Labs
- [security bulletin] HPSBMA02668 SSRT100474 rev.1 - HP OpenView Storage Data Protector, Remote Execution of Arbitrary Code
- Re: HTB22827: File Content Disclosure in Wikipad
- From: security curmudgeon
- ESA-2011-015: RSA, The Security Division of EMC, announces a fix for a security vulnerability in RSA Data Loss Prevention
- ZDI-11-144: HP Data Protector Backup Client Service EXEC_BAR Remote Code Execution Vulnerability
- ZDI-11-145: HP Data Protector Backup Client Service GET_FILE Remote Code Execution Vulnerability
- ZDI-11-146: HP Data Protector Backup Client Service EXEC_SCRIPT Remote Code Execution Vulnerability
- ZDI-11-147: HP Data Protector Backup Client Service EXEC_INTEGUTIL Remote Code Execution Vulnerability
- ZDI-11-148: HP Data Protector Backup Client Service stutil Message Processing Remote Code Execution Vulnerability
- ZDI-11-149: HP Data Protector Backup Client Service HPFGConfig Remote Code Execution Vulnerability
- ZDI-11-150: HP Data Protector Backup Client Service omniiaputil Message Processing Remote Code Execution Vulnerability
- ZDI-11-151: HP Data Protector Backup Client Service bm Message Processing Remote Code Execution Vulnerability
- ZDI-11-152: HP Data Protector Backup Client Service GET_FILE Directory Traversal Vulnerability
- ZDI-11-153: Embarcadero Interbase connect Request Parsing Remote Code Execution Vulnerability
- [USN-1126-1] PHP vulnerabilities
Mail converted by MHonArc