[bugtraq] Thread Index

• Chronological Index · RSS feed

• Bugs Online v2.14 Sql Injection, r3d . w0rm   (January 30, 2009)
• CVE-2008-4990 Enomaly ECP/Enomalism: Insecure temporary file creation vulnerabilities, Sam Johnston   (January 30, 2009)
• [OPENX-SA-2009-001] OpenX 2.4.10 and 2.6.4 fix multiple vulnerabilities, Matteo Beccati   (January 30, 2009)
• [USN-715-1] Linux kernel vulnerabilities, Kees Cook   (January 30, 2009)
• ANNOUNCE - RFIDIOt 0.1w released - January 2009, Adam Laurie   (January 30, 2009)
• [USN-716-1] MoinMoin vulnerabilities, Jamie Strandboge   (January 30, 2009)
• PR08-21: Cross-site Request Forgery (CSRF) on Novell GroupWise WebAccess allows email theft and other attacks, ProCheckUp Research   (January 30, 2009)
• PR08-22: Persistent XSS on Novell GroupWise WebAccess, ProCheckUp Research   (January 30, 2009)
• PR08-23: XSS on Novell GroupWise WebAccess, ProCheckUp Research   (January 30, 2009)
• VMSA-2009-0001 ESX patches address an issue loading corrupt virtual disks and update Service Console packages, VMware Security Team   (February 02, 2009)
• [SECURITY] [DSA 1716-1] New vnc4 packages fix remote code execution, Florian Weimer   (February 02, 2009)
• BruCON call for papers, Filip Waeytens   (February 02, 2009)
• [ MDVSA-2009:031 ] avahi, security   (February 02, 2009)
• Secunia Research: Free Download Manager Torrent Parsing Buffer Overflows, Secunia Research   (February 02, 2009)
• Secunia Research: Free Download Manager Remote Control Server Buffer Overflow, Secunia Research   (February 02, 2009)
• [ MDVSA-2009:032 ] kernel, security   (February 02, 2009)
• [Wintercore Research WS02-0209] Kaspersky Products Klim5.sys local privilege escalation, vulns   (February 02, 2009)
• ZDI-09-010: Novell Netware Groupwise GWIA RCPT Command Buffer Overflow Vulnerability, zdi-disclosures   (February 02, 2009)
• Hex Workshop v6 "ColorMap files .cmap" Invalid Memory Reference crash POC, xhakerman2006   (February 03, 2009)
• Security Advisory for Bugzilla 3.2.1, 3.0.7, and 3.3.2, mkanat   (February 03, 2009)
• NaviCopa webserver 3.01 Multiple Vulnerabilities, ew1zz   (February 03, 2009)
• SMF 1.1.7 Persistent XSS (requires permision to edit censor), Eduardo Vela   (February 03, 2009)
  • <Possible follow-ups>
  • Re: SMF 1.1.7 Persistent XSS (requires permision to edit censor), metallica48423   (February 05, 2009)  
   
• Nokia Multimedia Player v1.1 .m3u Heap Overflow PoC exploit, 0in . email   (February 03, 2009)
• Web Hacking Incidents update for Feb 3rd, Ofer Shezaf   (February 03, 2009)
• [security bulletin] HPSBUX02407 SSRT080107 rev.1 - HP-UX Running IPv6, Remote Denial of Service (DoS) and Unauthorized Access, security-alert   (February 03, 2009)
• Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.OLAPIMPL_T.ODCITABLESTART, Shatter   (February 03, 2009)
  • Re: Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.OLAPIMPL_T.ODCITABLESTART, security curmudgeon   (February 20, 2009)  
   
• Call for papers and trainers - note extended deadline - SeacureIT 2009, Stefano Zanero   (February 03, 2009)
• Team SHATTER Security Advisory: SQL Injection in Oracle Enterprise Manager (TARGET Parameter), Shatter   (February 03, 2009)