Mail Index
- Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs
- From: Cisco Systems Product Security Incident Response Team
- [SECURITY] [DSA 2299-1] ca-certificates security update
- Full disclosure for SA45649, SQL Injection in LedgerSMB and SQL-Ledger
- [SECURITY] [DSA 2200-1] nss security update
- Mediagrafic (prodotto.asp?id) (records.asp?id_p) Remote SQL injection Vulnerability
- CWM (dettaglio-prodotto.asp?id) Remote SQL injection Vulnerability
- Dexanet Remote SQL injection Vulnerability
- Sana Net (viewnews.php?id) Remote SQL injection Vulnerability
- XSS in Redirection wordpress plugin
- ZDI-11-277: Apple QuickTime 3g2 'mp4v' atom size Remote Code Execution Vulnerability
- [security bulletin] HPSBUX02700 SSRT100506 rev.1 - HP-UX running VEA, Remote Denial of Service (DoS), Execution of Arbitrary Code
- Secunia Research: InduSoft ISSymbol ActiveX Control Buffer Overflow Vulnerabilities
- Sana Net (viewpages.php?id) Remote SQL injection Vulnerability
- More on IPv6 RA-Guard evasion (IPv6 security)
- Re: [Full-disclosure] HP A-series switches are affected, too. [WAS: More on IPv6 RA-Guard evasion (IPv6 security)]
- Re: [Full-disclosure] HP A-series switches are affected, too. [WAS: More on IPv6 RA-Guard evasion (IPv6 security)]
- Re: [Full-disclosure] HP A-series switches are affected, too. [WAS: More on IPv6 RA-Guard evasion (IPv6 security)]
- Re: [Full-disclosure] HP A-series switches are affected, too. [WAS: More on IPv6 RA-Guard evasion (IPv6 security)]
- Re: [Full-disclosure] HP A-series switches are affected, too. [WAS: More on IPv6 RA-Guard evasion (IPv6 security)]
- Fulci (prodotto.php?id) Remote SQL injection Vulnerability
- Olonet (prodotto.php?idproduct) Remote SQL injection Vulnerability
- Studio Linea (prodotto.php?id) Remote SQL injection Vulnerability
- PMCMA: Post Memory Corruption Memory Analysis
- KnFTPd v1.0.0 Multiple Command Remote Buffer Overflow
- ITTWeb Remote SQL injection Vulnerability
- ph5gruppo (prodotto.php?id) Remote SQL injection Vulnerability
- [PT-2011-19] SQL injection vulnerability in Help Request System
- Vulnerabilities in BroadWin WebAccess Client 1.0.0.10
- Virtualismi (prodotto.php?id) Cross Site Scripting Vulnerabilities
- Loop (ricetta.php?id) Remote SQL injection Vulnerability
- Manifattura Web (prodotto.php?id) Remote SQL injection Vulnerability
- XSS Ebuddy (responsible disclosure)
- ZDI-11-278: Novell Cloud Manager Insufficient Framework User Validation Vulnerability
- ZDI-11-279: (0day) Witness Systems eQuality Unify Remote Code Execution Vulnerability
- [ MDVSA-2011:129 ] mozilla
- Editel (news-dettaglio.php?id) Remote SQL injection Vulnerability
- BvCom (dettaglio.php?idnews) Remote SQL injection Vulnerability
- WSTAFF Remote SQL injection Vulnerability
- MaiNick (ricetta.php?id) Remote SQL injection Vulnerability
- Abarkam (detail.php?input) Remote SQL injection Vulnerability
- TTW (ricetta.php?id) Remote SQL injection Vulnerability
- Pranian Group e107 Cross Site Scripting Vulnerabilities
- Extended submission deadline for: The 6th International Conference for Internet Technology and Secured Transactions (ICITST-2011)!
- t2′11 Challenge to be released 2011-09-10 10:00 EEST
- [ MDVSA-2011:130 ] apache
- [ MDVSA-2011:131 ] libxml
- Multiple vulnerabilities in MantisBT
- [Announcement] ClubHack Mag Issue 20- September 2011 Released
- [SECURITY] [DSA 2298-2] apache2 regression fix
- [SECURITY] [DSA 2300-2] nss security update
- [SECURITY] [DSA 2301-1] rails security update
- [ MDVSA-2011:132 ] pidgin
- openvas 2.x race condition
- Windows server 2008 R1 local DoS
- [slackware-security] mozilla-firefox (SSA:2011-249-01)
- From: Slackware Security Team
- [slackware-security] seamonkey (SSA:2011-249-03)
- From: Slackware Security Team
- [slackware-security] mozilla-thunderbird (SSA:2011-249-02)
- From: Slackware Security Team
- Arbitrary File Upload in '1 Flash Gallery' Wordpress Plugin
- Embarcadero ER/Studio XE2 Server Portal Tom Sawyer's Default GET Extension Factory ActiveX Control Remote Code Execution
- XSS in Zikula
- Cisco Security Advisory: Cisco Nexus 5000 and 3000 Series Switches Access Control List Bypass Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- OWASP AppSec USA 2011 - Two Weeks Away
- [ MDVSA-2011:133 ] mozilla
- [SECURITY] [DSA 2302-1] bcfg2 security update
- Multiple XSS vulnerabilities in LightNEasy 3.2.4
- [security bulletin] HPSBUX02702 SSRT100606 rev.1 - HP-UX Apache Web Server, Remote Denial of Service (DoS)
- [SECURITY] [DSA 2303-1] linux-2.6 security update
- [security bulletin] HPSBUX02702 SSRT100606 rev.2 - HP-UX Apache Web Server, Remote Denial of Service (DoS)
- 28C3: CFP for 28th Chaos Communication Congress
- Disassembling .NET Client Challenge
- CVE-2011-2730: Spring Framework Information Disclosure
- CVE-2011-2732: Spring Security header injection vulnerability
- CVE-2011-2894: Spring Framework and Spring Security serialization-based remoting vulnerabilities
- CVE-2011-2731: Spring Security privilege escalation when using RunAsManager
- [ MDVSA-2011:134 ] rsyslog
- [slackware-security] httpd (SSA:2011-252-01)
- From: Slackware Security Team
- APPLE-SA-2011-09-09-1 Security Update 2011-005
- From: Apple Product Security
- [SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
- [SECURITY] [DSA 2306-1] ffmpeg security update
- [SECURITY] [DSA 2307-1] chromium-browser security update
- [SECURITY] [DSA 2304-1] squid3 security update
- [Announcement] ClubHack Magazine - Call for Articles
- [NTMS 2012] Call for Papers, Istanbul- Turkey, 7 - 10 May 2012
- Multiple XSS vulnerabilities in CMS Papoo Light Version
- ESA-2011-018: Domain administration privilege enforcement bypass in EMC Avamar
- [SECURITY] [DSA 2308-1] mantis security update
- Advisory for MS11-035 / ZDI-11-167
- XSS vulnerability in FortiMail Messaging Security Appliance
- Vulnerabilities in trading and SCADA softwares
- [security bulletin] HPSBMU02703 SSRT100242 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Denial of Service (DoS), Unauthorized Disclosure of Information, Unauthorized Modification
- Seeker Advisory Sep11: Reflected Cross Site Scripting in Microsoft SharePoint Portal
- iDefense Security Advisory 09.13.11: Microsoft Excel Record Memory Corruption Vulnerability
- iDefense Security Advisory 09.13.11: Microsoft Excel Record Integer Signedness Vulnerability
- iDefense Security Advisory 09.13.11: Microsoft Excel Record Memory Corruption Vulnerability
- iDefense Security Advisory 09.13.11: Adobe Reader and Acrobat JPEG Processing Use After Free Vulnerability
- [SECURITY] [DSA 2309-1] openssl security update
- Colasoft Capsa7.2.1 Malformed SNMP Packet Denial of Service
- Seeker Advisory Sep11: Insecure Redirect in Microsoft SharePoint Portal
- Multiple vulnerabilities in SiT! Support Incident Tracker
- Re: Vulnerabilities in trading and SCADA softwares
- VUPEN Security Research - Adobe Acrobat and Reader TIFF BitsPerSample Heap Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Adobe Acrobat and Reader Picture Dimensions Heap Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Adobe Acrobat and Reader IFF Processing Heap Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Adobe Acrobat and Reader PCX Processing Heap Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Adobe Acrobat and Reader BMP Dimensions Heap Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Adobe Acrobat and Reader Picture Processing Stack Overflow Vulnerability
- From: VUPEN Security Research
- Invitation to Register and Participate in the Entretiens Jacques Cartier (EJC) Colloquium on IT Security, Cyber Forensics and Combating Cybercrime
- From: Serguei A. Mokhov \(on behalf of EJC2011SecForensics-11\)
- ESA-2011-029: Buffer overflow vulnerability in multiple EMC Ionix products
- Cisco Security Advisory: CiscoWorks LAN Management Solution Remote Code Execution Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco Unified Service Monitor and Cisco Unified Operations Manager Remote Code Execution Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- Re: Vulnerabilities in trading and SCADA softwares
- CORE-2011-0506 - Multiples Vulnerabilities in ManageEngine ServiceDesk Plus
- From: CORE Security Technologies Advisories
- Nortel Contact Recording Centralized Archive 6.5.1 EyrAPIConfiguration getSubKeys() Remote SQL Injection Exploit
- XEE vulnerabilities in SharePoint (MS11-074) and DotNetNuke
- Microsoft's Binary Planting Clean-Up Mission
- From: ACROS Security Lists
- [Onapsis Security Advisory 2011-014] SAP WebAS Remote Denial of Service
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-015] SAP WebAS webrfc Cross-Site Scripting
- From: Onapsis Research Labs
- [Onapsis Security Advisory 2011-016] SAP WebAS Malicious SAP Shortcut Generation
- From: Onapsis Research Labs
- RE: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- From: Thor \(Hammer of God\)
- RE: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- From: ACROS Security Lists
- RE: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- From: ACROS Security Lists
- RE: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- From: Thor \(Hammer of God\)
- RE: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- From: ACROS Security Lists
- RE: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- From: ACROS Security Lists
- CFP for first independent international Security Conference in Russia - ZeroNights (by Defcon-Russia)
- [DSECRG-11-033] SAP Crystal Report Server pubDBLogon - Linked ХSS vulnerability (by ERPScan)
- [DSECRG-11-032] SAP NetWeaver ipcpricing - information disclose (by ERPScan)
- Re: [Full-disclosure] Microsoft's Binary Planting Clean-Up Mission
- [ MDVSA-2011:133-1 ] mozilla
- [ MDVSA-2011:132-1 ] pidgin
- [ MDVSA-2011:134-1 ] rsyslog
- [ MDVSA-2011:130-1 ] apache
- [SECURITY] [DSA 2305-1] vsftpd security update
- Cisco TelePresence Multiple Vulnerabilities - SOS-11-010
- VUPEN Security Research - Microsoft Office Excel Formula Record Heap Corruption Vulnerability
- From: VUPEN Security Research
- [security bulletin] HPSBMU02705 SSRT100622 rev.1 - HP Business Service Automation (BSA) Essentials, Remote Execution of Arbitrary Code
- NETGEAR Wireless Cable Modem Gateway Auth Bypass and CSRF - SOS-11-011
- Advisory: Opera Mobile Cache Poisoning XAS
- Advisory: Dolphin Browser HD Cross-Application Scripting
- NGS00099 Patch Notification: Vulnerable SUID script in (nomachine) NX Server for Linux
- Multiple vulnerabilities in Help Desk Software
- Trusteer Rapport and anti-keylogging
- IPv6 security presentation at Hack.lu 2011
- Re: NGS00099 Patch Notification: Vulnerable SUID script in (nomachine) NX Server for Linux
- [security bulletin] HPSBOV02497 SSRT090245 rev.4 - HP TCP/IP Services for OpenVMS Running NTP, Remote Execution of Arbitrary Code, Denial of Service (DoS)
- [ MDVSA-2011:135 ] iproute2
- Vulnerabilities in Sunway ForceControl 6.1 sp3 (SCADA)
- [SECURITY] [DSA 2310-1] linux-2.6 security update
- secureURL.php design flaws
- TLS/SSL Compatibility Report 2011
- XSS Vulnerabilities in TWiki < 5.1.0
- From: Netsparker Advisories
- Security issue is_a function in PHP 5.3.7+
- TWSL2011-014: Vulnerability in Pantech Web Browser SSL Implementation
- From: Trustwave Advisories
- TWSL2011-013: Multiple Vulnerabilities in IceWarp Mail Server
- From: Trustwave Advisories
- Hackito Ergo Sum 2012 dates
- PunBB 1.3.6 bug
- Serendipity freetag plugin 'serendipity[tagview]' Cross-Site Scripting vulnerability
- Advanced Electron Forums (AEF) 1.0.9 <= Cross Site Request Forgery (CSRF) Vulnerability
- From: YGN Ethical Hacker Group
- AdaptCMS 2.0.1 Multiple security vulnerabilities
- [CVE-2011-3645] Multiple vulnerability in Newgen's Omnidocs
- [SECURITY] CVE-2011-1184 Apache Tomcat - Multiple weaknesses in HTTP DIGEST authentication
- Vulnerability found in Flynax Classifieds products
- Re: PunBB 1.3.6 bug
- [security bulletin] HPSBUX02702 SSRT100606 rev.4 - HP-UX Apache Web Server, Remote Denial of Service (DoS)
- openEngine 2.0 'id' Blind SQL Injection vulnerability
- NGS00109 Patch Notification: ImpressPages CMS Remote code execution
- Secunia Research: Novell GroupWise Internet Agent "TZNAME" Parsing Vulnerability
- Secunia Research: Novell GroupWise Internet Agent HTTP Interface Buffer Overflow
- iDefense Security Advisory 09.26.11: Novell GroupWise iCal TZNAME Heap Overflow Vulnerability
- [SECURITY] [DSA 2311-1] openjdk-6 security update
- European Security Services GPS v1.0 - Multiple Vulnerabilities
- From: research@xxxxxxxxxxxxxxxxxxxxx
- Barracuda Backup v2.0 - Multiple Web Vulnerabilities
- From: research@xxxxxxxxxxxxxxxxxxxxx
- VUPEN Security Research - Novell GroupWise "TZNAME" Remote Buffer Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Novell GroupWise "BYWEEKNO" Remote Memory Corruption Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Novell GroupWise "integerList" Remote Buffer Overflow Vulnerability
- From: VUPEN Security Research
- FreeBSD Security Advisory FreeBSD-SA-11:03.bind
- From: FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-11:04.compress
- From: FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-11:05.unix
- From: FreeBSD Security Advisories
- VUPEN Security Research - Novell GroupWise "RRULE" Remote Buffer Overflow Vulnerability
- From: VUPEN Security Research
- Vulnerabilities in PcVue 10 (SCADA)
- Multiple vulnerabilities in Traq
- Vulnerabilities in EViews 7.2
- Integer overflow in Sterling Trader 7.0.2
- iDefense Security Advisory 09.26.11: Novell GroupWise iCal RRULE Weekday Recurrence Heap Overflow Vulnerability
- iDefense Security Advisory 09.26.11: Novell GroupWise iCal Date Invalid Array Indexing Vulnerability
- Cisco Security Advisory: Cisco 10000 Series Denial of Service Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software Data-Link Switching Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software IPv6 Denial of Service Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software IPv6 over MPLS Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- iDefense Security Advisory 09.26.11: Novell GroupWise iCal RRULE ByWeekNo Memory Corruption Vulnerability
- Cisco Security Advisory: Cisco Unified Communications Manager Session Initiation Protocol Memory Leak Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Jabber Extensible Communications Platform and Cisco Unified Presence XML Denial of Service Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- [ MDVSA-2011:137 ] openssl
- Cisco Security Advisory: Cisco IOS Software IPS and Zone-Based Firewall Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software Smart Install Remote Code Execution Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco IOS Software IP Service Level Agreement Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- [ MDVSA-2011:136 ] openssl
- [security bulletin] HPSBUX02707 SSRT100626 rev.1 - HP-UX Apache Web Server, Remote Denial of Service (DoS)
- [ MDVSA-2011:138 ] wireshark
- Joomla! 1.7.0 | Multiple Cross Site Scripting (XSS) Vulnerabilities
- From: YGN Ethical Hacker Group
- Bitweaver 2.8.1 Multiple Cross-site Scripting Vulnerabilities
- Arbitrary memory corruption in NCSS 07.1.21
- [SECURITY] [DSA 2312-1] iceape security update
- DeepSec 2011 Conference - Final Schedule Published
- [SECURITY] [DSA 2313-1] iceweasel security update
Mail converted by MHonArc