[bugtraq] Thread Index

• Chronological Index · RSS feed

• CORE-2008-1009 - VNC Multiple Integer Overflows, CORE Security Technologies Advisories   (February 03, 2009)
• Euphonics Audio Player v1.0 (.pls) Local BOF POC, darkb0x97   (February 04, 2009)
• Squid Proxy Cache Denial of Service in request handling, Amos Jeffries   (February 04, 2009)
• [security bulletin] HPSBUX02401 SSRT090005 rev.1 - HP-UX Running Apache Web Server Suite, Remote Denial of Service (DoS), Cross-site Scripting (XSS), Execution of Arbitrary Code, Cross-Site Request Forgery (CSRF), security-alert   (February 04, 2009)
• [ MDVSA-2009:033 ] sudo, security   (February 04, 2009)
• QIP 2005 Denial of Service Vulnerability, ss_contacts   (February 04, 2009)
• DDIVRT-2008-19 HP JetDirect Web Administration Directory Traversal, vulnerabilityresearch   (February 04, 2009)
• rgboard v4 (07.07.27) Multiple Vulnerability, make0day   (February 04, 2009)
• phpslash <= 0.8.1.1 Remote Code Execution Exploit, gmdarkfig   (February 04, 2009)
• metabbs 0.11 Change admin password vulnerability, make0day   (February 04, 2009)
• Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers, Cisco Systems Product Security Incident Response Team   (February 04, 2009)
• LCPlayer (.qt file) EOP change PoC (app crash), darkb0x97   (February 04, 2009)
• StreamDown v6.4.3 Local Buffer Overflow PoC, todor . donev   (February 04, 2009)
• Microsoft SDL meets CWE/SANS Top25, Juha-Matti Laurio   (February 04, 2009)
• flatnux Flatnux-2009-01-27 Remote File Include, blabla-34   (February 04, 2009)
• Cisco IOS XSS/CSRF Vulnerability, azask2   (February 04, 2009)
• [SVRT-02-09] FeedDemon (ver<=2.7) Buffer Overflow Vulnerability, SVRT-Bkis   (February 05, 2009)
• [SECURITY] [DSA 1717-1] New devil packages fix buffer overflow, Devin Carraway   (February 05, 2009)
• Nokia N95-8 browser denial of service, jplopezy   (February 05, 2009)
  • Re: Nokia N95-8 browser denial of service, Thierry Zoller   (February 05, 2009)  
  • <Possible follow-ups>
  • Re: Nokia N95-8 browser denial of service, MustLive   (March 02, 2009)  
   
• C4 SCADA Security Advisory - AREVA e-terrahabitat / e-terraplatform Multiple Vulnerabilities, Eyal Udassin   (February 05, 2009)
• dBpowerAMP Audio Player local buffer overflow exploit, maroc-anti-connexion   (February 05, 2009)
• Speaking line up confirmed! uCon Security Conference 2009 - Recife, Brazil, uCon Security Conference   (February 05, 2009)
• SFX-SQLi: A new SQL injection technique for MSSQL (dumps a table in one request!), Daniel Kachakil   (February 06, 2009)
  • Re: SFX-SQLi: A new SQL injection technique for MSSQL (dumps a table in one request!), Razi Shaban   (February 06, 2009)
    • Re: SFX-SQLi: A new SQL injection technique for MSSQL (dumps a table in one request!), Roman Medina-Heigl Hernandez   (February 09, 2009)
      • Re: SFX-SQLi: A new SQL injection technique for MSSQL (dumps a table in one request!), Razi Shaban   (February 09, 2009)  
      • Re: SFX-SQLi: A new SQL injection technique for MSSQL (dumps a table in one request!), Amit Klein   (February 09, 2009)  
       
     
   
• RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities, noreply-secresearch@xxxxxxxxxxxx   (February 06, 2009)