Mail Index
- CVE-2012-3819: Stack Overflow in DartWebserver.dll <= 1.9
- [ MDVSA-2012:154-1 ] apache
- [security bulletin] HPSBST02818 SSRT100960 rev.1 - HP IBRIX X9000 Storage, Remote Disclosure of Information
- [security bulletin] HPSBUX02814 SSRT100930 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS)
- [ MDVSA-2012:152-1 ] bind
- [ MDVSA-2012:156 ] inn
- [ MDVSA-2012:155-1 ] xinetd
- GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities
- Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities
- Better WP Security v3.4.3 Wordpress - Web Vulnerabilities
- CA20121001-01: Security Notice for CA License
- Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities
- Reminder: ClubHack2012 Call for Papers Closing Soon
- phptax 0.8 <= Remote Code Execution Vulnerability
- XSS Vulnerabilities in phpFreeChat
- From: Netsparker Advisories
- [ MDVSA-2012:153-1 ] dhcp
- [ MDVSA-2012:157 ] openjpeg
- [ MDVSA-2012:158 ] gc
- Multiple vulnerabilities in Template CMS
- Omnistar Mailer v7.2 - Multiple Web Vulnerabilities
- [security bulletin] HPSBMU02817 SSRT100950 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Disclosure of Information
- [ MDVSA-2012:159 ] freeradius
- One week left! CFP for ZeroNights Conference in Moscow 19-20 November 2012
- ANNOUNCE: RFIDIOt v1.0d released and code migration
- XnView JLS File Decompression Heap Overflow
- Vulnerable MSVC++ 2008 runtime libraries distributed with and installed by Ogg DirectShow filters
- [DCA-2011-0013] - IBM Informix Dynamic Server 11.50 SET COLLATION Stack OverFlow
- From: Ewerson Guimarães (Crash) - Dclabs
- Team SHATTER Security Advisory: XML file disclosure vulnerability via GET_WRAP_CFG_C and GET_WRAP_CFG_C2
- Team SHATTER Security Advisory: Multiple SQL Injection in Oracle Enterprise Manager (SQL Tunning Sets components)
- Team SHATTER Security Advisory: Elevated roles through DBCC
- Team SHATTER Security Advisory: Java Operating System command execution
- [ MDVSA-2012:151-1 ] ghostscript
- [ MDVSA-2012:150-1 ] java-1.6.0-openjdk
- [ MDVSA-2012:160 ] imagemagick
- [SECURITY] [DSA 2555-1] libxslt security update
- ESA-2012-035: RSAR Adaptive Authentication (On-Premise) Information Disclosure Vulnerability
- Blender 2.63 Exploitable User Mode Write AV
- [ MDVSA-2012:161 ] html2ps
- utempter allows fake host setting
- [SECURITY] [DSA 2556-1] icedove security update
- [SECURITY] [DSA 2557-1] hostapd security update
- [PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation
- Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites
- GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities
- Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities
- [SECURITY] [DSA 2558-1] bacula security update
- [security bulletin] HPSBOV02822 SSRT100966 rev.1 - HP Secure Web Server (SWS) for OpenVMS, Remote Denial of Service (DoS), Unauthorized Access, Disclosure of Information
- Privilege Escalation Vulnerability in Microsoft Windows
- soapbox Local Root / Privilege Escalation Vulnerability
- WingFTP Server Denial of Service Vulnerability
- BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface
- WingFTP Server Denial of Service Vulnerability
- Hardcoreview WriteAV Arbitrary Code Execution
- FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution
- Key Systems Electronic Key Lockers command injection and weak authentication vulnerabilities
- Re: FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution
- [slackware-security] mozilla-firefox (SSA:2012-283-01)
- From: Slackware Security Team
- [ MDVSA-2012:162 ] bind
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module
- From: Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format Player
- From: Cisco Systems Product Security Incident Response Team
- [CVE-2012-4501] CloudStack configuration vulnerability
- VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update)
- Microsoft Office Excel ReadAV Arbitrary Code Execution
- Multiple vulnerabilities in OpenX
- Omnistar Document Manager v8.0 - Multiple Vulnerabilities
- vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities
- ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities
- VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates
- From: VMware Security Response Center
- FileBound - Privilege Escalation Vulnerability - Security Advisory - SOS-12-010
- [slackware-security] bind (SSA:2012-284-01)
- From: Slackware Security Team
- Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB
- [ MDVSA-2012:163 ] firefox
- [ MDVSA-2012:164 ] libxslt
- Last reminder for ClubHack 2012 : Call for Papers
- [slackware-security] mozilla-thunderbird (SSA:2012-285-02)
- From: Slackware Security Team
- [ MDVSA-2012:165 ] graphicsmagick
- [ MDVSA-2012:166 ] bacula
- [slackware-security] mozilla-firefox (SSA:2012-285-01)
- From: Slackware Security Team
- [ MDVSA-2012:167 ] firefox
- [CVE-2012-4750] Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability
- From: lorenzo . cantoni86
- Re: VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update)
- SilverStripe CMS 2.4.7 <= Arbitrary URL Redirection
- From: YGN Ethical Hacker Group
- SilverStripe CMS 2.4.7 <= Persistent Cross Site Scripting Vulnerability
- From: YGN Ethical Hacker Group
- Multiple vulnerabilities in Samsung Kies
- Critical issues affecting Steam users
- [slackware-security] seamonkey (SSA:2012-288-01)
- From: Slackware Security Team
- Visual Tools DVR multiple vulnerabilities
- APPLE-SA-2012-10-16-1 Java for OS X 2012-006 and Java for Mac OS X 10.6 Update 11
- From: Apple Product Security
- [SECURITY] [DSA 2559-1] libexif security update
- SEC Consult SA-20121017-0 :: ModSecurity multipart/invalid part ruleset bypass
- From: SEC Consult Vulnerability Lab
- SEC Consult SA-20121017-1 :: Unirgy uStoreLocator SQL Injection - Magento extension
- From: SEC Consult Vulnerability Lab
- [IMF 2013] 3rd Call for Papers: Deadline Extended
- SEC Consult SA-20121017-2 :: Multiple vulnerabilities in Oracle WebCenter Sites (former FatWire Content Server)
- From: SEC Consult Vulnerability Lab
- Multiple vulnerabilities in AContent
- Multiple vulnerabilities in Subrion CMS
- Multiple vulnerabilities in jCore
- [waraxe-2012-SA#092] - Multiple Vulnerabilities in Wordpress Slideshow Plugin
- [waraxe-2012-SA#093] - Multiple Vulnerabilities in Wordpress Social Discussions Plugin
- MitM-vulnerability in Palo Alto Networks GlobalProtect
- Internet Explorer 9 XSS Filter Bypass
- CA20121018-01: Security Notice for CA ARCserve Backup
- Multiple Vulnerabilities in Campaign Enterprise <= 11.0.538
- CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies
- Old Habits Die Hard: Cross-Zone Scripting in Dropbox & Google Drive Mobile Apps
- XSS Vulnerabilities in TaskFreak
- From: Netsparker Advisories
- XSS Vulnerabilities in CMSMini
- From: Netsparker Advisories
- XSS Vulnerabilities in ClipBucket
- From: Netsparker Advisories
- F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection
- From: YGN Ethical Hacker Group
- [SECURITY] [DSA 2560-1] bind9 security update
- [SECURITY] [DSA 2561-1] tiff security update
- Re: [Full-disclosure] F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection
- VaM Shop Cross-Site Scripting and Blind SQL Injection Vulnerabilities
- [ MDVSA-2012:168 ] hostapd
- DC4420 - London DEFCON - October meet - tomorrow, Tuesday 23rd October.
- [security bulletin] HPSBHF02819 SSRT100920 rev.1 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information
- [security bulletin] HPSBUX02824 SSRT100970 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code, and Other Vulnerabilities
- VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063)
- From: VUPEN Security Research
- VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063)
- From: VUPEN Security Research
- VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability
- From: VUPEN Security Research
- VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability
- From: VUPEN Security Research
- [SECURITY] [DSA 2565-1] iceweasel security update
- HP/H3C and Huawei SNMP Weak Access to Critical Data
- [SECURITY] [DSA 2563-1] viewvc security update
- [SECURITY] [DSA 2562-1] cups-pk-helper security update
- [SECURITY] [DSA 2564-1] tinyproxy security update
- [waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin
- Smf 2.0.2 Cross-Site Scripting Vulnerability
- Wordpress 3.4 Cross-Site Scripting Vulnerability
- [security bulletin] HPSBHF02819 SSRT100920 rev.2 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information
- [SECURITY] [DSA 2566-1] exim4 security update
- Inventory 1.0 Multiple SQL Vulnerabilities
- Inventory 1.0 Multiple XSS Vulnerabilities
- [SECURITY] [DSA 2567-1] request-tracker3.8 security update
- [SECURITY] [DSA 2568-1] rtfm security update
- [slackware-security] mozilla-firefox (SSA:2012-300-01)
- From: Slackware Security Team
- EMC Avamar Client for VMware Sensitive Information Disclosure Vulnerability
- Exploit - EasyITSP by Lemens Telephone Systems 2.0.2
- KmPlayer v3.0.0.1440 Local Crash PoC
- PIAF H.M.S - SQL Injection
- Call for Papers: DIMVA 2013
- [SECURITY] [DSA 2569-1] icedove security update
- [security bulletin] HPSBUX02825 SSRT100974 rev.1 - HP-UX Running Java, Remote Indirect Vulnerabilities
- [waraxe-2012-SA#095] - Multiple Vulnerabilities in Wordpress FoxyPress Plugin
- [slackware-security] mozilla-thunderbird (SSA:2012-304-01)
- From: Slackware Security Team
- [slackware-security] seamonkey (SSA:2012-304-02)
- From: Slackware Security Team
- [BUGTRAQ]Security Advisory - TP-LINK TL-WR841N LFI - [UPDATE]
Mail converted by MHonArc