[bugtraq] Thread Index

• Chronological Index · RSS feed

• WordPress 2.5 - Salt cracking vulnerability, J. Carlos Nieto   (April 15, 2008)
• Koobi Pro 6.25 poll Remote SQL Injection Vulnerability, Sabun   (April 15, 2008)
• remote file include, win32 . exe   (April 15, 2008)
  • <Possible follow-ups>
  • remote file include, win32 . exe   (April 15, 2008)  
   
• iDefense Security Advisory 04.14.08: ClamAV libclamav PE WWPack Heap Overflow Vulnerability, iDefense Labs   (April 15, 2008)
• DIVX Player <= 6.7.0 Buffer Overflow PoC ( .SRT ), securfrog   (April 15, 2008)
• Oracle - SQL Injection in package SDO_GEOM [DB06], ak   (April 16, 2008)
• Carbon Communities forum Multiple Vulnerabilities., admin   (April 16, 2008)
• BigAnt Server 2.2 PreAuth Remote SEH Overflow Exploit (0day), admin   (April 16, 2008)
  • <Possible follow-ups>
  • Re: BigAnt Server 2.2 PreAuth Remote SEH Overflow Exploit (0day), m . memelli   (April 17, 2008)  
   
• VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus, VMware Security team   (April 16, 2008)
• Oracle - SQL Injection Vulnerability in SDO_UTIL [DB05], ak   (April 16, 2008)
• Oracle - SQL Injection in package SDO_IDX [DB07], ak   (April 16, 2008)
• [INFIGO-2008-04-08]: ICQ 6 remote buffer overflow vulnerability, infocus   (April 16, 2008)
• Oracle - Hardcoded Password and Password Reset of OUTLN User [DB13], ak   (April 16, 2008)
• Cisco Security Advisory: Cisco Network Admission Control Shared Secret Vulnerability, Cisco Systems Product Security Incident Response Team   (April 16, 2008)
• CA DSM gui_cm_ctrls ActiveX Control Vulnerability, Williams, James K   (April 16, 2008)
• iDefense Security Advisory 04.09.08: IBM DB2 Universal Database Administration Server File Creation Vulnerability, iDefense Labs   (April 16, 2008)
• iDefense Security Advisory 04.09.08: IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability, iDefense Labs   (April 16, 2008)
• iDefense Security Advisory 04.15.08: Oracle Application Express Privilege Escalation Vulnerability, iDefense Labs   (April 16, 2008)
• Classifieds Caffe (index.php cat_id) Remote SQL Injection, sys-project   (April 16, 2008)
• ZDI-08-022: Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability, zdi-disclosures   (April 16, 2008)
• FreeBSD Security Advisory FreeBSD-SA-08:05.openssh, FreeBSD Security Advisories   (April 17, 2008)
• [ MDVSA-2008:087 ] - Updated policykit package fixes format string vulnerability, security   (April 17, 2008)
• [oCERT-2008-004] multiple speex implementations insufficient boundary checks, Andrea Barisani   (April 17, 2008)
• [SECURITY] [DSA 1547-1] New OpenOffice.org packages fix arbitrary code execution, Martin Schulze   (April 17, 2008)
• [ GLSA 200804-16 ] rsync: Execution of arbitrary code, Robert Buchholz   (April 17, 2008)
• [ GLSA 200804-17 ] Speex: User-assisted execution of arbitrary code, Robert Buchholz   (April 17, 2008)
• [ GLSA 200804-18 ] Poppler: User-assisted execution of arbitrary code, Robert Buchholz   (April 17, 2008)
• [security bulletin] HPSBMA02133 SSRT061201 rev.8 - HP Oracle for OpenView (OfO) Critical Patch Update, security-alert   (April 17, 2008)