Mail Thread Index
- [SECURITY] [DSA 2831-1] puppet security update,
Luciano Bello
- [SECURITY] [DSA 2832-1] memcached security update,
Salvatore Bonaccorso
- [SECURITY] [DSA 2833-1] openssl security update,
Moritz Muehlenhoff
- CFP - IEEE Co-sponsored CyberSec2014 - Lebanon Section,
The Third International Conference on Cyber Security, Cyber Warfare, and Digital Forensic
- [SECURITY] [DSA 2834-1] typo3-src security update,
Salvatore Bonaccorso
- [CVE-2013-6480] Libcloud doesn't send scrub_data query parameter when destroying a DigitalOcean node,
Tomaz Muraus
- Path Traversal in eduTrac,
High-Tech Bridge Security Research
- [security bulletin] HPSBMU02895 SSRT101253 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code,
security-alert
- [SECURITY] [DSA 2835-1] asterisk security update,
Moritz Muehlenhoff
- [SECURITY] [DSA 2836-1] devscripts security update,
Raphael Geissert
- Open-Xchange Security Advisory 2014-01-06,
Martin Braun
- [HITB-Announce] HITB Magazine Issue 10 Out Now,
Hafez Kamal
- AusCERT2014 Call for Presentations and Tutorials,
AusCERT
- SPAMINA EMAIL FIREWALL 3.3.1.1 - Directory Traversal -,
sisco . barrera
- [SECURITY] [DSA 2837-1] openssl security update,
Moritz Muehlenhoff
- [SECURITY] [DSA 2838-1] libxfont security update,
Moritz Muehlenhoff
- Multiple Vulnerabilities in Horizon QCMS,
High-Tech Bridge Security Research
- Improper Authentication in Burden,
High-Tech Bridge Security Research
- [SECURITY] [DSA 2839-1] spice security update,
Salvatore Bonaccorso
- nullcon Blackshield Awards 2014,
nullcon
- [CVE-2013-7204] CSRF in Conceptronic IP Camera (CIPCAMPTIWL),
Felipe Molina
- Updated [CVE-2014-0031] CloudStack ListNetworkACL API discloses ACLs for other users,
David Nalley
- Updated [CVE-2013-6398] CloudStack Virtual Router stop/start modifies firewall rules allowing additional access,
David Nalley
- [SECURITY] [DSA 2840-1] srtp security update,
Salvatore Bonaccorso
- [CVE -2014-1201] Lorex security DVR ActiveX control buffer overflow,
Pedro Ribeiro
- Cisco Security Advisory: Undocumented Test Interface in Cisco Small Business Devices,
Cisco Systems Product Security Incident Response Team
- [SECURITY] [DSA 2841-1] movabletype-opensource security update,
Moritz Muehlenhoff
- CISTI'2014: List of Workshops,
ML
- NETGEAR WNR1000v3 Password Recovery Vulnerability,
c1ph04mail
- [ MDVSA-2014:001 ] kernel,
security
- [SECURITY] [DSA 2842-1] libspring-java security update,
Moritz Muehlenhoff
- [SECURITY] [DSA 2843-1] graphviz security update,
Salvatore Bonaccorso
- [security bulletin] HPSBUX02960 SSRT101419 rev.1 - HP-UX Running NTP, Remote Denial of Service (DoS),
security-alert
- [CVE-2014-0647] Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application,
Daniel Wood
- [slackware-security] php (SSA:2014-013-03),
Slackware Security Team
- [slackware-security] samba (SSA:2014-013-04),
Slackware Security Team
- [slackware-security] libXfont (SSA:2014-013-01),
Slackware Security Team
- CVE-2013-6430 Possible XSS when using Spring MVC,
Pivotal Security Team
- FreeBSD Security Advisory FreeBSD-SA-14:03.openssl,
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-14:04.bind,
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-14:02.ntpd,
FreeBSD Security Advisories
- [CVE-2014-1238] Cross Site Scripting(XSS) in q-pulse application,
ali . hussein
- CVE-2013-6429 Fix for XML External Entity (XXE) injection (CVE-2013-4152) in Spring Framework was incomplete,
Pivotal Security Team
- FreeBSD Security Advisory FreeBSD-SA-14:01.bsnmpd,
FreeBSD Security Advisories
- [SECURITY] [DSA 2844-1] djvulibre security update,
Raphael Geissert
- Online OWASP Security Challenges,
Ivan Buetler
- [slackware-security] openssl (SSA:2014-013-02),
Slackware Security Team
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Access Control System,
Cisco Systems Product Security Incident Response Team
- CVE-2013-4200 - Plone URL redirection / Forwarding of cookie data (session hijack) in certain browsers,
Alexandre Herzog
- [HITB-Announce] #HITB2014AMS Call for Papers - FINAL CALL,
Hafez Kamal
- SQL Injection in Sexy Polling Joomla Extension,
High-Tech Bridge Security Research
- [ MDVSA-2014:002 ] bind,
security
- [ MDVSA-2014:003 ] nrpe,
security
- [ MDVSA-2014:005 ] ejabberd,
security
- [ MDVSA-2014:006 ] libxslt,
security
- [ MDVSA-2014:004 ] nagios,
security
- [security bulletin] HPSBUX02961 SSRT101420 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS),
security-alert
- Open-Xchange Security Advisory 2014-01-17,
Martin Braun
- [ MDVSA-2014:007 ] openssl,
security
- [ MDVSA-2014:008 ] openjpeg,
security
- [ MDVSA-2014:010 ] memcached,
security
- [ MDVSA-2014:009 ] librsvg,
security
- [SECURITY] [DSA 2845-1] mysql-5.1 security update,
Moritz Muehlenhoff
- Ammyy Admin - Hidden hard-coded option and Access Control vulnerability.,
bhadresh . k . patel
- [SECURITY] [DSA 2831-2] puppet regression update,
Salvatore Bonaccorso
- SI6 Networks' IPv6 Toolkit v1.5.2 released!,
Fernando Gont
- [SECURITY] [DSA 2846-1] libvirt security update,
Moritz Muehlenhoff
- Secunia Research: OpenPNE PHP Object Injection Vulnerability,
Secunia Research
- [ MDVSA-2014:011 ] java-1.7.0-openjdk,
security
- [ MDVSA-2014:012 ] nss,
security
- [SECURITY] [DSA 2847-1] drupal7 security update,
Salvatore Bonaccorso
- [ MDVSA-2014:013 ] libxfont,
security
- [ MDVSA-2014:014 ] php,
security
- [FFRRA-20131213] Crafted ICMP ECHO REQUEST can cause denial of service on Juniper SSG20,
research-feedback
- SEC Consult SA-20140122-0 :: Critical vulnerabilities in T-Mobile HOME NET Router LTE (Huawei B593u-12),
SEC Consult Vulnerability Lab
- [ MDVSA-2014:015 ] cups,
security
- [ MDVSA-2014:016 ] spice,
security
- [ MDVSA-2014:017 ] net-snmp,
security
- [ MDVSA-2014:018 ] net-snmp,
security
- [ MDVSA-2014:019 ] elinks,
security
- Cisco Security Advisory: Cisco TelePresence Video Communication Server SIP Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco TelePresence ISDN Gateway D-Channel Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco TelePresence System Software Command Execution Vulnerability,
Cisco Systems Product Security Incident Response Team
- [ MDVSA-2014:020 ] x11-server,
security
- CISTI'2014: CFP - Doctoral Symposium,
ML
- CONFidence 2014- Call for Papers,
Andrzej Targosz
- APPLE-SA-2014-01-22-1 iTunes 11.1.4,
Apple Product Security
- Reflected cross-site scripting (XSS) vulnerability in Mediatrix Web Management Interface login page,
tudor . enache
- SQL Injection in JV Comment Joomla Extension,
High-Tech Bridge Security Research
- Cross-Site Scripting (XSS) in Komento Joomla Extension,
High-Tech Bridge Security Research
- [SECURITY] [DSA 2848-1] mysql-5.5 security update,
Salvatore Bonaccorso
- [CVE-2014-1607.] Cross Site Scripting(XSS) in Drupal Event calendar module,
ali . hussein
- [CVE-2013-6235] - Multiple Reflected XSS vulnerabilities in JAMon v2.7,
Christian Catalano
- [SECURITY] [DSA 2826-2] denyhosts regression update,
Yves-Alexis Perez
- [CVE-2014-1664] GoToMeeting Information Disclosure via Logging Output (Android),
cjlacayo
- [CTF] nullcon HackIM 2014 will start at 24-01-2014, when the clock will strike at 11:59 (+5:30 GMT),
nullcon
- Security Vulnerabilities in Apache Cordova / PhoneGap,
mgeorgiev
- [ MDVSA-2014:022 ] augeas,
security
- [ MDVSA-2014:021 ] perl-Proc-Daemon,
security
- [ MDVSA-2014:023 ] hplip,
security
- [ MDVSA-2014:024 ] graphviz,
security
- Multiple Vulnerabilities in Eventum,
High-Tech Bridge Security Research
- DC4420 - London DEFCON - January meet - Tuesday 28th January 2014,
Major Malfunction
- Mozilla Bug Bounty #5 - WireTap Remote Web Vulnerability,
Vulnerability Lab
- Vulnerabilities within Mura CMS / Sitecore MCS / SmarterMail,
Mark Litchfield
- [slackware-security] mozilla-nss (SSA:2014-028-02),
Slackware Security Team
- SiteCore XML Control Script Insertion,
Mark Litchfield
- [slackware-security] bind (SSA:2014-028-01),
Slackware Security Team
- SimplyShare v1.4 iOS - Multiple Web Vulnerabilities,
Vulnerability Lab
- Ektron CMS Take Over - Hijacking Accounts,
Mark Litchfield
- Joomla! JomSocial component < 3.1.0.1 - Remote code execution,
Matias Fontanini
- [SECURITY] [DSA 2849-1] curl security update,
Florian Weimer
- [SE-2013-01] Security vulnerabilities in Oracle Java Cloud Service,
Security Explorations
Mail converted by MHonArc