Mail Index
- Re: [Full-disclosure] The Cyber War Conspiracy
- [Full-disclosure] Remote Command Execution in dotDefender Site Management
- [Full-disclosure] [ MDVSA-2009:307 ] libtool
- Re: [Full-disclosure] The Cyber War Conspiracy
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Facebook Police
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Facebook Police
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Facebook Police
- [Full-disclosure] Fingerprinting of Apache
- [Full-disclosure] AST-2009-010: RTP Remote Crash Vulnerability
- From: Asterisk Security Team
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Facebook Police
- Re: [Full-disclosure] Software developer looks at CRU code
- [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] UK jails schizophrenic for refusal to decrypt files
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- [Full-disclosure] WinAppDbg 1.3 is out!
- From: Mario Alejandro Vilas Jerez
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- Re: [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- [Full-disclosure] [ GLSA 200912-01 ] OpenSSL: Multiple vulnerabilities
- [Full-disclosure] Feds ‘Pinged’ Sprint GPS Data 8 Million Times Over a Year
- Re: [Full-disclosure] Feds ‘Pinged’ Sprint GPS Data 8 Million Times Over a Year
- Re: [Full-disclosure] Feds 'Pinged' Sprint GPS Data 8 Million Times Over a Year
- Re: [Full-disclosure] Feds 'Pinged' Sprint GPS Data 8 Million Times Over a Year
- From: Thor (Hammer of God)
- [Full-disclosure] 40 vulnerabilities in SMF 1.1.10/SMF 2.0RC2 by elhacker.net (Simple Audit)
- From: SMF 2.0 Code Review elhacker.net
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Issue 5 in smf2-review: XSS in 'website' field in User Profile
- Re: [Full-disclosure] Issue 8 in smf2-review: CSRF theme change
- Re: [Full-disclosure] Issue 6 in smf2-review: PHP Remote Code Execution
- Re: [Full-disclosure] Issue 9 in smf2-review: Subforum Category Collapse CSRF
- Re: [Full-disclosure] Issue 10 in smf2-review: CSRF en el gestor de servidores de paquetes
- Re: [Full-disclosure] Issue 11 in smf2-review: XSS in package server manager
- Re: [Full-disclosure] Issue 12 in smf2-review: CSRF package deletion and installed package disclosure
- Re: [Full-disclosure] Issue 13 in smf2-review: Attached files configuration CSRF
- Re: [Full-disclosure] Issue 14 in smf2-review: XSS in "Enable basic HTML in posts"
- Re: [Full-disclosure] Issue 15 in smf2-review: Remote File Disclosure (solo en logs, y similares)
- Re: [Full-disclosure] Issue 16 in smf2-review: CSRF en Moderation Preferences
- Re: [Full-disclosure] Issue 17 in smf2-review: XSS en el censurador de palabras
- Re: [Full-disclosure] Issue 18 in smf2-review: CSRF in Polls
- Re: [Full-disclosure] Issue 19 in smf2-review: installer XSS
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] [rejected] Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others
- [Full-disclosure] Secunia Research: Lateral Arts Photobox uploader ActiveX Control Buffer Overflow
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- [Full-disclosure] Secunia Research: Roxio Creator Image Rendering Integer Overflow Vulnerability
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- Re: [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- [Full-disclosure] [ MDVSA-2009:121-1 ] lcms
- [Full-disclosure] In the thick of it: how the Digital Economy bill is trying to kill open Wi-Fi networks
- [Full-disclosure] Yahoo: Our spying policy would ’shock’ customers
- Re: [Full-disclosure] Transmission #19-WT [re: Andrew Wallace / n3td3v]
- From: Thor (Hammer of God)
- [Full-disclosure] Microsoft: ‘Piracy no longer poses a threat to us’
- Re: [Full-disclosure] Microsoft: ‘Piracy no longer poses a threat to us’
- Re: [Full-disclosure] Microsoft: ‘Piracy no longer poses a threat to us’
- Re: [Full-disclosure] Microsoft: ?Piracy no longer poses a threat to us¹
- Re: [Full-disclosure] Microsoft: ‘Piracy no longer poses a threat to us’
- [Full-disclosure] Open-Source Effort to Hack GSM
- Re: [Full-disclosure] Microsoft: ‘Piracy no longer poses a threat to us’
- [Full-disclosure] [ MDVSA-2009:217-3 ] mozilla-thunderbird
- [Full-disclosure] Call for Papers - you Sh0t the Sheriff 4 - Security Conference, Brazil
- [Full-disclosure] [SECURITY] [DSA 1943-1] New openldap2.3/openldap packages fix SSL certificate verification weakness
- [Full-disclosure] [SECURITY] [DSA 1944-1] New request-tracker packages fix session hijack vulnerability
- Re: [Full-disclosure] Microsoft: ‘Piracy no longer poses a threat to us’
- [Full-disclosure] [SECURITY] [DSA 1945-1] New gforge packages fix denial of service
- [Full-disclosure] [ MDVSA-2009:197-3 ] nss
- [Full-disclosure] [ MDVSA-2009:103-1 ] udev
- [Full-disclosure] [ MDVSA-2009:106-1 ] libwmf
- [Full-disclosure] [ MDVSA-2009:107-1 ] acpid
- [Full-disclosure] [ MDVSA-2009:108-1 ] zsh
- [Full-disclosure] [ MDVSA-2009:112-1 ] ipsec-tools
- [Full-disclosure] [ MDVSA-2009:113-1 ] cyrus-sasl
- [Full-disclosure] [ MDVSA-2009:308 ] gnutls
- [Full-disclosure] [ MDVSA-2009:309 ] ntp
- [Full-disclosure] [USN-863-1] QEMU vulnerability
- [Full-disclosure] [ MDVSA-2009:310 ] openssl
- [Full-disclosure] CORE-2009-0911: DAZ Studio Arbitrary Command Execution
- From: CORE Security Technologies Advisories
- [Full-disclosure] [ MDVSA-2009:290-1 ] firefox
- [Full-disclosure] [ MDVSA-2009:292-1 ] wireshark
- [Full-disclosure] [ MDVSA-2009:128-1 ] libmodplug
- [Full-disclosure] [ MDVSA-2009:130-1 ] gstreamer0.10-plugins-good
- [Full-disclosure] [ MDVSA-2009:132-1 ] libsndfile
- [Full-disclosure] [ MDVSA-2009:142-1 ] jasper
- [Full-disclosure] [ MDVSA-2009:311 ] ghostscript
- [Full-disclosure] [ MDVSA-2009:169-1 ] libtiff
- [Full-disclosure] [ MDVSA-2009:312 ] dhcp
- [Full-disclosure] [ MDVSA-2009:157-1 ] perl-Compress-Raw-Zlib
- [Full-disclosure] [ MDVSA-2009:158-3 ] pango
- [Full-disclosure] [ MDVSA-2009:313-1 ] bind
- [Full-disclosure] [ MDVSA-2009:314 ] apr
- [Full-disclosure] [ MDVSA-2009:287-1 ] xpdf
- [Full-disclosure] [ MDVSA-2009:200-1 ] libxml
- [Full-disclosure] [ MDVSA-2009:201-1 ] fetchmail
- [Full-disclosure] [ MDVSA-2009:203-1 ] curl
- [Full-disclosure] PHP 5.3.1 open_basedir bypass
- From: Maksymilian Arciemowicz
- [Full-disclosure] [ MDVSA-2009:206-1 ] wget
- [Full-disclosure] [ MDVSA-2009:213-1 ] wxgtk
- [Full-disclosure] [ MDVSA-2009:208-1 ] libgadu
- [Full-disclosure] [ MDVSA-2009:211-1 ] expat
- [Full-disclosure] Secunia Research: DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
- [Full-disclosure] [ MDVSA-2009:212-1 ] python
- [Full-disclosure] [ MDVSA-2009:218-1 ] w3c-libwww
- [Full-disclosure] [ MDVSA-2009:315 ] libneon
- [Full-disclosure] Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection
- [Full-disclosure] [ MDVSA-2009:223-1 ] xerces-c
- [Full-disclosure] [ MDVSA-2009:224-1 ] postfix
- Re: [Full-disclosure] "funsec" as a terror cell
- Re: [Full-disclosure] The Cyber War Conspiracy
- [Full-disclosure] [SECURITY] [DSA 1946-1] New belpic packages fix cryptographic weakness
- [Full-disclosure] [USN-864-1] Linux kernel vulnerabilities
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- Re: [Full-disclosure] The Cyber War Conspiracy
- Re: [Full-disclosure] The Cyber War Conspiracy
- Re: [Full-disclosure] The Cyber War Conspiracy
- From: Gichuki John Chuksjonia
- Re: [Full-disclosure] The Cyber War Conspiracy
- Re: [Full-disclosure] ** FreeBSD local r00t zeroday
- [Full-disclosure] [ MDVSA-2009:316 ] expat
- [Full-disclosure] [ MDVSA-2009:232-1 ] libsamplerate
- [Full-disclosure] [ MDVSA-2009:229-1 ] cyrus-imapd
- [Full-disclosure] [ MDVSA-2009:234-2 ] silc-toolkit
- [Full-disclosure] [ MDVSA-2009:243-2 ] freetype2
- [Full-disclosure] [ MDVSA-2009:249-1 ] newt
- [Full-disclosure] [ MDVSA-2009:256-1 ] dbus
- [Full-disclosure] [ MDVSA-2009:254-1 ] graphviz
- [Full-disclosure] [ MDVSA-2009:260-1 ] imagemagick
- [Full-disclosure] [ MDVSA-2009:317 ] netpbm
- [Full-disclosure] [ MDVSA-2009:318 ] xmlsec1
- [Full-disclosure] [ MDVSA-2009:272-1 ] libmikmod
- [Full-disclosure] [ MDVSA-2009:252-1 ] perl-IO-Socket-SSL
- [Full-disclosure] [ MDVSA-2009:284-1 ] gd
- [Full-disclosure] PhpShop Multiple Vulnerabilities
- [Full-disclosure] [ MDVSA-2009:297-1 ] ffmpeg
- [Full-disclosure] [ MDVSA-2009:319 ] xine-lib
- [Full-disclosure] Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- [Full-disclosure] [ MDVSA-2009:307-1 ] libtool
- Re: [Full-disclosure] Software developer looks at CRU code
- [Full-disclosure] [ MDVSA-2009:320 ] samba
- [Full-disclosure] [ MDVSA-2009:321 ] pidgin
- [Full-disclosure] [ MDVSA-2009:215-1 ] audacity
- [Full-disclosure] [ MDVSA-2009:219-1 ] kompozer
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- Re: [Full-disclosure] Software developer looks at CRU code
- From: Thor (Hammer of God)
- [Full-disclosure] short intro
- Re: [Full-disclosure] short intro
- [Full-disclosure] [ MDVSA-2009:231-1 ] htmldoc
- [Full-disclosure] [ MDVSA-2009:322 ] mono
- [Full-disclosure] [USN-865-1] Bind vulnerability
- [Full-disclosure] [ MDVSA-2008:233-1 ] libcdaudio
- [Full-disclosure] [ MDVSA-2009:323 ] apache
- [Full-disclosure] [ MDVSA-2009:324 ] php
- Re: [Full-disclosure] short intro
- Re: [Full-disclosure] The Cyber War Conspiracy
- [Full-disclosure] [ MDVSA-2009:199-1 ] subversion
- Re: [Full-disclosure] Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love
- [Full-disclosure] [ MDVSA-2009:325 ] ruby
- [Full-disclosure] [ MDVSA-2009:326 ] mysql
- [Full-disclosure] [USN-866-1] gnome-screensaver vulnerability
- [Full-disclosure] Climate-Gate:A SysAdmin’s Perspective
- [Full-disclosure] [SECURITY] [DSA 1947-1] New Shibboleth packages fix cross-site scripting
- [Full-disclosure] TANDBERG MXP(FIPS140) DOS
- [Full-disclosure] spy guides
- Re: [Full-disclosure] Climate-Gate:A SysAdmin’s Perspective
- [Full-disclosure] [ MDVSA-2009:282-1 ] cups
- Re: [Full-disclosure] Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love
- Re: [Full-disclosure] Flieg wenn du fliegen kannst, lieb wenn du lieben kannst ; fly when you can fly, love when you can love
- [Full-disclosure] Secunia Research: Novell iPrint Client "target-frame" Parameter Buffer Overflow
- [Full-disclosure] Secunia Research: Novell iPrint Client Date/Time Parsing Buffer Overflow
- [Full-disclosure] [ MDVSA-2009:251-1 ] postgresql8.2
- [Full-disclosure] [ MDVSA-2009:327 ] clamav
- [Full-disclosure] [ MDVSA-2009:191-1 ] OpenEXR
- [Full-disclosure] [ MDVSA-2009:133-1 ] irssi
- [Full-disclosure] [ MDVSA-2009:126-1 ] eggdrop
- [Full-disclosure] [ MDVSA-2009:099-1 ] openafs
- [Full-disclosure] [ MDVSA-2009:098-1 ] krb5
- [Full-disclosure] [ MDVSA-2009:093-1 ] mpg123
- [Full-disclosure] ZDI-09-086: Microsoft Internet Explorer XHTML DOM Manipulation Memory Corruption Vulnerability
- [Full-disclosure] ZDI-09-087: Microsoft Internet Explorer CSS Race Condition Code Execution Vulnerability
- [Full-disclosure] ZDI-09-088: Microsoft Internet Explorer IFrame Attributes Circular Reference Dangling Pointer Vulnerability
- [Full-disclosure] ZDI-09-089: Microsoft Windows Intel Indeo Codec Parsing Heap Overflow Vulnerability
- [Full-disclosure] ZDI-09-090: Microsoft Windows Intel Indeo Codec Parsing Stack Overflow Vulnerability
- [Full-disclosure] CA20091208-01: Security Notice for CA Service Desk
- [Full-disclosure] [ MDVSA-2009:091-1 ] mod_perl
- [Full-disclosure] [ MDVSA-2009:059-1 ] xchat
- [Full-disclosure] [ MDVSA-2009:046-1 ] dia
- [Full-disclosure] [ MDVSA-2009:038-1 ] blender
- [Full-disclosure] [ MDVSA-2009:030-1 ] amarok
- [Full-disclosure] [ MDVSA-2009:276-1 ] python-django
- [Full-disclosure] Fortinet Advisory: Fortinet Discovers Microsoft Office Project Vulnerability
- [Full-disclosure] [USN-867-1] Ntp vulnerability
- [Full-disclosure] ZDI-09-091: Hewlett-Packard Application Recovery Manager MSG_PROTOCOL Stack Overflow Vulnerability
- [Full-disclosure] Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec
- [Full-disclosure] [USN-868-1] GRUB 2 vulnerability
- [Full-disclosure] Fortinet Advisory: Fortinet Discovers Adobe Flash Player Multiple Vulnerabilities (APSB09-19)
- [Full-disclosure] [ MDVSA-2009:328 ] ntp
- [Full-disclosure] Advisory 02/2009: PHPIDS Unserialize() Vulnerability
- [Full-disclosure] Advisory 03/2009: Piwik Cookie unserialize() Vulnerability
- [Full-disclosure] [SECURITY] [DSA 1948-1] New ntp packages fix denial of service
- [Full-disclosure] Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec
- From: noreply-secresearch
- [Full-disclosure] Fortinet Advisory: Fortinet Discovers Vulnerability in Indeo Codec
- From: noreply-secresearch
- [Full-disclosure] List Charter
- [Full-disclosure] Zen Cart local file disclosure vulnerability
- [Full-disclosure] ZDI-09-092: Adobe Flash Player JPEG Parsing Heap Overflow Vulnerability
- [Full-disclosure] ZDI-09-093: Adobe Flash Player ActionScript Exception Handler Integer Overflow Vulnerability
- [Full-disclosure] ZDI-09-094: Hewlett-Packard OpenView NNM Multiple Command Injection Vulnerabilities
- [Full-disclosure] ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability
- [Full-disclosure] ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability
- [Full-disclosure] ZDI-09-096: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable vsprintf Overflow Vulnerability
- [Full-disclosure] ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability
- [Full-disclosure] iDefense Security Advisory 12.08.09: Microsoft Internet Explorer HTML Layout Engine Uninitialized Memory Vulnerability
- [Full-disclosure] iDefense Security Advisory 12.08.09: Microsoft WordPad Word97 Converter Integer Overflow Vulnerability
- [Full-disclosure] iDefense Security Advisory 12.08.09: Microsoft Windows Indeo32 Codec Parsing Heap Corruption Vulnerability
- [Full-disclosure] [iBLISS Advisory Board] Cross-Site Scripting (XSS) Vulnerability on Twitter
- [Full-disclosure] CORE-2009-1013: Multiple XSS and Injection Vulnerabilities in TestLink Test Management and Execution System
- From: CORE Security Technologies Advisories
- [Full-disclosure] Revenge of the Computer Nerds
- [Full-disclosure] [USN-869-1] Linux kernel vulnerabilities
- [Full-disclosure] [ MDVSA-2009:329 ] kernel
- Re: [Full-disclosure] Revenge of the Computer Nerds
- Re: [Full-disclosure] Revenge of the Computer Nerds
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Revenge of the Computer Nerds
- [Full-disclosure] TPTI-09-08: HP OpenView NNM ovlogin.exe CGI userid/passwd Heap Overflow Vulnerability
- [Full-disclosure] TPTI-09-09: HP OpenView NNM ovsessionmgr.exe userid/passwd Heap Overflow Vulnerability
- [Full-disclosure] TPTI-09-10: HP OpenView NNM webappmon.exe CGI Host Header Buffer Overflow Vulnerability
- [Full-disclosure] TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability
- [Full-disclosure] TPTI-09-11: HP OpenView NNM OvWebHelp.exe CGI Topic Heap Overflow Vulnerability
- [Full-disclosure] TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability
- [Full-disclosure] TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability
- [Full-disclosure] google dork you may enjoy
- Re: [Full-disclosure] google dork you may enjoy
- Re: [Full-disclosure] The Cyber War Conspiracy
- [Full-disclosure] Honey pot belongs to .....China????
- [Full-disclosure] SAP sapstartsrv Denial of Service
- Re: [Full-disclosure] google dork you may enjoy
- [Full-disclosure] [ MDVSA-2009:330 ] kdelibs
- [Full-disclosure] [ MDVSA-2009:331 ] kdegraphics
- Re: [Full-disclosure] Google Dorks
- Re: [Full-disclosure] Google Dorks
- [Full-disclosure] [USN-870-1] PyGreSQL vulnerability
- [Full-disclosure] [USN-871-1] KDE vulnerability
- [Full-disclosure] [USN-871-2] KDE 4 vulnerabilities
- [Full-disclosure] [USN-872-1] KDE 4 Runtime vulnerabilities
- Re: [Full-disclosure] TLS / SSLv3 vulnerability explained (New ways to leverage the vulnerability)
- [Full-disclosure] SecurityReason: Flock 2.5.2 Remote Array Overrun (Arbitrary code execution)
- From: Maksymilian Arciemowicz
- [Full-disclosure] SecurityReason: Camino 1.6.10 Remote Array Overrun (Arbitrary code execution)
- From: Maksymilian Arciemowicz
- [Full-disclosure] SecurityReason: Thunderbird 2.0.0.23 (lib) Remote Array Overrun (Arbitrary code execution)
- From: Maksymilian Arciemowicz
- [Full-disclosure] SecurityReason: Sunbird 0.9 Array Overrun (code execution) 0day
- From: Maksymilian Arciemowicz
- [Full-disclosure] kaspersky Portugal Vulnerable to blind SQLi
- [Full-disclosure] [ MDVSA-2009:332 ] gimp
- [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- [Full-disclosure] Safer-networking.org: (Spybot) Vulnerable to Blind SQLi by VMw4r3
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- From: Thor (Hammer of God)
- [Full-disclosure] [ MDVSA-2009:296-1 ] gimp
- Re: [Full-disclosure] IE 0day for sale
- [Full-disclosure] [ MDVSA-2009:259-1 ] snort
- [Full-disclosure] Brilliant attack "bypasses" bitlocker
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Brilliant attack "bypasses" bitlocker
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Brilliant attack "bypasses" bitlocker
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Brilliant attack "bypasses" bitlocker
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] Brilliant attack "bypasses" bitlocker
- Re: [Full-disclosure] IE 0day for sale
- [Full-disclosure] stupid question again
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] stupid question again
- Re: [Full-disclosure] stupid question again
- [Full-disclosure] Gadi Evron: SecuriTeam: The Mossad: IE 0day for sale
- Re: [Full-disclosure] Gadi Evron: SecuriTeam: The Mossad: IE 0day for sale
- Re: [Full-disclosure] Gadi Evron: SecuriTeam: The Mossad: IE 0day for sale
- [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] Brilliant attack "bypasses" bitlocker
- [Full-disclosure] [SECURITY] [DSA 1949-1] New php-net-ping packages fix arbitrary code execution
- [Full-disclosure] [SECURITY] [DSA-1950-1] New webkit packages fix several vulnerabilities
- [Full-disclosure] [gif2png] long filename Buffer Overrun
- Re: [Full-disclosure] IE 0day for sale
- Re: [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] Gadi Evron's professional profile exposed
- Re: [Full-disclosure] stupid question again
- [Full-disclosure] Unu hits Kaspersky
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- From: Patroklos Argyroudis
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- [Full-disclosure] Zabbix Agent : Bypass of EnableRemoteCommands=0
- [Full-disclosure] Zabbix Server : Multiple remote vulnerabilities
- [Full-disclosure] Cross-Site Scripting vulnerabilities in Invision Power Board
- [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover
- [Full-disclosure] DC4420 - London DEFCON - Christmas drinks - Wednesday 16th December
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover
- Re: [Full-disclosure] Hacktics Advisory Dec09: Oracle eBusiness Suite - Multiple Vulnerabilities Allow Remote Takeover
- [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- [Full-disclosure] Decaf anyone?
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- [Full-disclosure] 318x.com and other "bad" domains.
- [Full-disclosure] [BMSA-2009-08] Multiple Vulnerabilities in PyForum
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] [gif2png] long filename Buffer Overrun
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- [Full-disclosure] [scip-Advisory 4063] PasswordManager Pro 6.1 Script Injection Vulnerability
- [Full-disclosure] Trango Broadband Wireless Rogue SU Authentication Bug
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- [Full-disclosure] [SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing
- [Full-disclosure] [SECURITY] [DSA 1952-2] End-of-life announcement for asterisk in oldstable
- [Full-disclosure] [SECURITY] [DSA 1952-1] New asterisk packages fix several vulnerabilities
- [Full-disclosure] Global warming - it's all about the money
- Re: [Full-disclosure] Global warming - it's all about the money
- [Full-disclosure] CarolinaCon-VI/2010 - Call for Papers/Speakers
- [Full-disclosure] [ MDVSA-2009:333 ] postgresql
- [Full-disclosure] VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues
- From: VMware Security Team
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- [Full-disclosure] File Access Vulnerability in Easy File Sharing Web Server
- From: Thor (Hammer of God)
- Re: [Full-disclosure] File Access Vulnerability in Easy File Sharing Web Server
- Re: [Full-disclosure] File Access Vulnerability in Easy File Sharing Web Server
- From: Thor (Hammer of God)
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- From: Christian Sciberras
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- From: Christian Sciberras
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- From: Christian Sciberras
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- Re: [Full-disclosure] Google Chrome 3.0.195.33 leaks DNS data queries outsitde of proxy if dns pre-fetching is enabled
- From: Christian Sciberras
- [Full-disclosure] Cisco Security Advisory: Multiple Cisco WebEx WRF Player Vulnerabilities
- From: Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Drupal Sections Module XSS Vulnerability
- [Full-disclosure] Drupal Sections Module XSS Vulnerability
- From: Justin C. Klein Keane
- [Full-disclosure] Google Picasa 3.5 Local DoS Buffer Overflow
- [Full-disclosure] [SECURITY] [DSA-1953-1] New expat packages fix denial of service
- [Full-disclosure] [ISecAuditors Security Advisories] WP-Forum <= 2.3 SQL Injection vulnerabilities
- From: ISecAuditors Security Advisories
- [Full-disclosure] [SECURITY] [DSA 1954-1] New cacti packages fix insufficient input sanitising
- [Full-disclosure] VideoCache 1.9.2 vccleaner root vulnerability
- [Full-disclosure] [SECURITY] [DSA 1955-1] New network-manager/network-manager-applet packages fix information disclosure
- [Full-disclosure] rPSA-2009-0161-1 hwdata kernel
- From: rPath Update Announcements
- [Full-disclosure] [SECURITY] [DSA 1956-1] New xulrunner packages fix several vulnerabilities
- [Full-disclosure] Drupal 5.x and 6.x Core XSS Vulnerability
- [Full-disclosure] cve-2009-4324
- [Full-disclosure] Drupal 6.x Core XSS Vulnerability
- [Full-disclosure] [ MDVSA-2009:334 ] poppler
- [Full-disclosure] Campus Party Eu 2010 Security Challenge - Call For Participants
- From: Campus Party EU Spain
- [Full-disclosure] The Great Aussie Firewall is dead: Long live the firewall
- [Full-disclosure] (no subject)
- Re: [Full-disclosure] (no subject)
- Re: [Full-disclosure] (no subject)
- [Full-disclosure] Secunia Research: Winamp Oktalyzer Parsing Integer Overflow Vulnerability
- [Full-disclosure] Secunia Research: Winamp Ultratracker File Parsing Buffer Overflow
- [Full-disclosure] Secunia Research: Winamp Impulse Tracker Sample Parsing Buffer Overflow
- [Full-disclosure] Secunia Research: Winamp Impulse Tracker Instrument Parsing Buffer Overflows
- [Full-disclosure] [tools] hostmap-0.2 released
- [Full-disclosure] SEC Consult SA-20091217-0 :: Authentication bypass and file manipulation in Sitecore Staging Module
- [Full-disclosure] [ISecAuditors Security Advisories] Cisco ASA <= 8.x VPN SSL module Clientless URL-list control bypass
- From: ISecAuditors Security Advisories
- [Full-disclosure] Last week to submit: ICIMP 2010 || May 9-15, 2010 - Barcelona, Spain
- [Full-disclosure] Last week || WebTel 2010 [ICIMP, AICT, ICIW] May 9 - 15, 2010 - Barcelona, Spain
- [Full-disclosure] [ISecAuditors Security Advisories] Horde 3.3.5 "PHP_SELF" Cross-Site Scripting vulnerability
- From: ISecAuditors Security Advisories
- [Full-disclosure] [ISecAuditors Security Advisories] QuiXplorer <=2.4.1beta Remote Code Execution vulnerability
- From: ISecAuditors Security Advisories
- [Full-disclosure] [ MDVSA-2009:335 ] ffmpeg
- [Full-disclosure] ZDI-09-099: Hewlett-Packard OpenView Data Protector Backup Client Service Buffer Overflow Vulnerability
- [Full-disclosure] [ MDVSA-2009:336 ] koffice
- [Full-disclosure] [tool] FindDomains v0.1.1
- [Full-disclosure] [USN-875-1] Red Hat Cluster Suite vulnerabilities
- [Full-disclosure] [USN-873-1] Firefox 3.0 and Xulrunner 1.9 vulnerabilities
- [Full-disclosure] [USN-874-1] Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities
- [Full-disclosure] TPTI-09-15: HP OpenView Data Protector Cell Manager Heap Overflow Vulnerability
- [Full-disclosure] [ISecAuditors Security Advisories] Simple PHP Blog <= 0.5.1 Local File Include vulnerability
- From: ISecAuditors Security Advisories
- [Full-disclosure] [ISecAuditors Security Advisories] PHP-Calendar <= v1.1 'configfile' Remote and Local File Inclusion vulnerability
- From: ISecAuditors Security Advisories
- [Full-disclosure] XSS vulnerabilities via errors at requests to DB
- [Full-disclosure] [SECURITY] [DSA-1959-1] New ganeti packages fix arbitrary command execution
- Re: [Full-disclosure] XSS vulnerabilities via errors at requests to DB
- Re: [Full-disclosure] XSS vulnerabilities via errors at requests to DB
- Re: [Full-disclosure] Global warming - it's all about the money
- [Full-disclosure] [ GLSA 200912-02 ] Ruby on Rails: Multiple vulnerabilities
- [Full-disclosure] [SECURITY] [DSA 1960-1] New acpid packages fix weak file permissions
- [Full-disclosure] Reading Mission Control Data out of Predator Drone video feeds
- Re: [Full-disclosure] Global warming - it's all about the money
- [Full-disclosure] Infected google.com, yahoo.com and blogspot.com
- Re: [Full-disclosure] Infected google.com, yahoo.com and blogspot.com
- [Full-disclosure] Data Type Conversion Attack
- [Full-disclosure] TLS Renegotiation Vulnerability: Proof of Concept Code (Python)
- From: RedTeam Pentesting GmbH
- Re: [Full-disclosure] Data Type Conversion Attack
- From: Christian Sciberras
- Re: [Full-disclosure] Reading Mission Control Data out of Predator Drone video feeds
- [Full-disclosure] SQL-Ledger – several vulnerabilities
- [Full-disclosure] gsm baseband dump
- [Full-disclosure] Bypassing SEHOP
- [Full-disclosure] Extremely important posting on my blog on the latest in XSS!!!11
- Re: [Full-disclosure] Reading Mission Control Data out of Predator Drone video feeds
- [Full-disclosure] Bypassing SEHOP
- Re: [Full-disclosure] XSS vulnerabilities via errors at requests to DB
- [Full-disclosure] XSS vulnerabilities in 8 millions flash files
- [Full-disclosure] [ MDVSA-2009:337 ] proftpd
- Re: [Full-disclosure] Extremely important posting on my blog on the latest in XSS!!!11
- [Full-disclosure] [ MDVSA-2009:338 ] firefox
- [Full-disclosure] [ MDVSA-2009:339 ] firefox
- [Full-disclosure] Bug in RealPlayer Plus 11
- [Full-disclosure] XSS Vulnerability in JpGraph 3.0.6
- [Full-disclosure] WinScanX - A free Windows enumeration tool and a must have for any security professional
- [Full-disclosure] [SECURITY] [DSA 1961-1] New bind9 packages fix cache poisoning
- [Full-disclosure] XSS in WebMathematica
- [Full-disclosure] WinScanX - A free Windows enumeration tool and a must have for any security professional
- [Full-disclosure] [SECURITY] [DSA-1962-1] New kvm packages fix several vulnerabilities
- [Full-disclosure] (no subject)
- [Full-disclosure] Yahoo Mail Classic XSRF (still unpatched)
- [Full-disclosure] [SECURITY] [DSA 1963-1] New unbound packages fix DNSSEC validation
- [Full-disclosure] DECAF patched and re-enabled
- Re: [Full-disclosure] DECAF patched and re-enabled
- From: Christian Sciberras
- [Full-disclosure] Vulnerability in Joomulus for Joomla
- [Full-disclosure] [ MDVSA-2009:340 ] jpgraph
- [Full-disclosure] [ MDVSA-2009:341 ] dstat
- [Full-disclosure] [ MDVSA-2009:343 ] acpid
- [Full-disclosure] [tools] hostmap-0.2.1 released
- [Full-disclosure] [ MDVSA-2009:342 ] acpid
- [Full-disclosure] Path disclosure in PHP 5.3.1
- Re: [Full-disclosure] Path disclosure in PHP 5.3.1
- Re: [Full-disclosure] DECAF patched and re-enabled
- Re: [Full-disclosure] DECAF patched and re-enabled 133-54D
- [Full-disclosure] WinScanX - The safest way to retrieve Windows password hashes, LSA secrets, etc.
- [Full-disclosure] [SECURITY] [DSA 1957-1] New aria2 packages fix arbitrary code execution
- [Full-disclosure] [ MDVSA-2009:244-1 ] xfig
- [Full-disclosure] [ MDVSA-2009:344 ] perl-DBD-Pg
- [Full-disclosure] [ MDVSA-2009:189-1 ] apache-mod_auth_mysql
- [Full-disclosure] [ MDVSA-2009:146-1 ] imap
- Re: [Full-disclosure] Path disclosure in PHP 5.3.1
- [Full-disclosure] [ MDVSA-2009:345 ] acl
- [Full-disclosure] Wapiti 2.2.0 is available - Web application vulnerability scanner
- [Full-disclosure] security hole on local ISP
- [Full-disclosure] FreeWebshop.org: multiple vulnerabilities
- From: Akita Software Security
- [Full-disclosure] Secunia Research: AproxEngine Multiple Vulnerabilities
- Re: [Full-disclosure] security hole on local ISP
- Re: [Full-disclosure] security hole on local ISP
- Re: [Full-disclosure] security hole on local ISP
- Re: [Full-disclosure] security hole on local ISP
- [Full-disclosure] [Tool Announcement] WAFP - a Web Application Finger Printer...
- Re: [Full-disclosure] security hole on local ISP
- Re: [Full-disclosure] security hole on local ISP
- [Full-disclosure] File Disclosure in DAMN VULNERABLE WEB APP version 1.0.6
- Re: [Full-disclosure] File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6
- [Full-disclosure] Another Bug in RealPlayer Plus 11
- Re: [Full-disclosure] File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6
- Re: [Full-disclosure] File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6
- [Full-disclosure] [ MDVSA-2009:346 ] kde
- [Full-disclosure] [NETRAGARD SECURITY ADVISORY] [< Java for Mac OS X 10.6 Update 1 ][NETRAGARD-20091219]
- From: Netragard Advisories
- Re: [Full-disclosure] File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6
- Re: [Full-disclosure] security hole on local ISP
- [Full-disclosure] The Game
- Re: [Full-disclosure] The Game
- From: Christian Sciberras
- [Full-disclosure] Facebook Query Language (FQL) security issue
- Re: [Full-disclosure] The Game
- [Full-disclosure] [SECURITY] [DSA 1958-1] New libtool packages fix privilege escalation
- [Full-disclosure] MouseOverJacking attacks
- Re: [Full-disclosure] The Game
- Re: [Full-disclosure] WinScanX - The safest way to retrieve Windows password hashes, LSA secrets, etc.
- Re: [Full-disclosure] The Game
- Re: [Full-disclosure] MouseOverJacking attacks
- Re: [Full-disclosure] The Game
Mail converted by MHonArc