[bugtraq] Thread Index

• Chronological Index · RSS feed

• vi can run arbitrary commands via 'tags' file, Eli the Bearded   (September 18, 2008)
• LooYu Web IM 2008 Cross-Site Scripting Vulnerabilities, xsp   (September 19, 2008)
• PHP pro bid v 6.04 SQL injection, Jan van Niekerk   (September 19, 2008)
• VMSA-2008-0015 Updated ESXi and ESX 3.5 packages address critical security issue in openwsman, VMware Security Team   (September 19, 2008)
• [USN-646-1] rdesktop vulnerabilities, Jamie Strandboge   (September 19, 2008)
• Annutel - Annuaire Téléphonique v1.0 Sensetive Files (MDP), sn0oPy . team   (September 19, 2008)
• [ MDVSA-2008:199 ] wireshark, security   (September 19, 2008)
• [SECURITY] [DSA 1639-1] New twiki packages execution of arbitrary code, Steve Kemp   (September 19, 2008)
• [ GLSA 200809-09 ] Postfix: Denial of Service, Pierre-Yves Rofes   (September 19, 2008)
• [SECURITY] [DSA 1642-1] New horde3 packages fix cross site scripting, Thijs Kinkhorst   (September 20, 2008)
• [SECURITY] [DSA 1641-1] New phpmyadmin packages fix several issues, Thijs Kinkhorst   (September 20, 2008)
• [SECURITY] [DSA 1640-1] New python-django packages fix cross site request forgery, Thijs Kinkhorst   (September 20, 2008)
• Advanced Electron Forum <= 1.0.6 Remote Code Execution, GulfTech Security Research   (September 20, 2008)
• [SECURITY] [DSA 1634-2] New wordnet packages fix regression, Thijs Kinkhorst   (September 20, 2008)
• MyFWB 1.0 Remote SQL Injection, Guns   (September 20, 2008)
• drupal: Session hijacking vulnerability, CVE-2008-3661, Hanno Böck   (September 22, 2008)
• MapCal - The Mapping Calendar (v. 0.1) Remote SQL Injection, Guns   (September 22, 2008)
• Blue Coat xss, jplopezy   (September 22, 2008)
  • Re: Blue Coat xss, Hugo van der Kooij   (September 23, 2008)  
  • Re: Blue Coat xss, Tom Kelly   (October 02, 2008)  
   
• [security bulletin] HPSBUX02370 SSRT071459 rev.1 - HP-UX Running rpcbind, Remote Denial of Service (DoS), security-alert   (September 22, 2008)
• "Exploit creation - The random approach" or "Playing with random to build exploits", Nelson Brito   (September 22, 2008)
  • Re: "Exploit creation - The random approach" or "Playing with random to build exploits", Stefano Zanero   (September 26, 2008)
    • Re: "Exploit creation - The random approach" or "Playing with random to build exploits", Nelson Brito   (October 03, 2008)
      • Re: "Exploit creation - The random approach" or "Playing with random to build exploits", Eygene Ryabinkin   (October 03, 2008)  
       
     
   
• [ GLSA 200809-10 ] Mantis: Multiple vulnerabilities, Pierre-Yves Rofes   (September 22, 2008)
• [ GLSA 200809-11 ] HAVP: Denial of Service, Pierre-Yves Rofes   (September 22, 2008)
• Directory traversal in the webadmin of Unreal Tournament 3 1.3, Luigi Auriemma   (September 22, 2008)
• [MajorSecurity Advisory #53]BLUEPAGE CMS - Cross Site Scripting and Session Fixation Issues, admin   (September 22, 2008)
  • <Possible follow-ups>
  • Re: [MajorSecurity Advisory #53]BLUEPAGE CMS - Cross Site Scripting and Session Fixation Issues, admin   (October 02, 2008)