[bugtraq] Thread Index

• Chronological Index · RSS feed

• SEC Consult SA-20090525-0 :: Nortel Contact Center Manager Server Authentication Bypass Vulnerability, Bernhard Mueller   (May 26, 2009)
• Backdoor in com_rsgallery2 gallery extension for joomla, Jan van Niekerk   (May 26, 2009)
  • Re: Backdoor in com_rsgallery2 gallery extension for joomla, Jonah Braun   (May 27, 2009)  
   
• SEC Consult SA-20090525-1 :: Nortel Contact Center Manager Server Password Disclosure Vulnerability, Bernhard Mueller   (May 26, 2009)
• COWON America jetCast 2.0.4.1109 (.mp3) local heap buffer overlow exploit, nospam   (May 26, 2009)
• SEC Consult SA-20090525-2 :: SonicWALL Global Security Client Local Privilege Escalation Vulnerability, Bernhard Mueller   (May 26, 2009)
• SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability, Bernhard Mueller   (May 26, 2009)
• SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability, Bernhard Mueller   (May 26, 2009)
• [ GLSA 200905-07 ] Pidgin: Multiple vulnerabilities, Alex Legler   (May 26, 2009)
• [ GLSA 200905-08 ] NTP: Remote execution of arbitrary code, Alex Legler   (May 26, 2009)
• Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG), Thierry Zoller   (May 27, 2009)
  • Re: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG), Jim Parkhurst   (May 27, 2009)
    • Re[2]: [Full-disclosure] Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG), Thierry Zoller   (May 27, 2009)  
    • Re[2]: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG), Vladimir '3APA3A' Dubrovin   (May 27, 2009)  
     
   
• [IMF 2009] 3rd Call - Deadline Extended, Oliver Goebel   (May 27, 2009)
• W3af ninja training class in NYC, Michelangelo Sidagni   (May 27, 2009)
• PHP Nuke v.8.0 (referer) SQL Injection, darkz . gsa   (May 27, 2009)
  • <Possible follow-ups>
  • Re: PHP Nuke v.8.0 (referer) SQL Injection, a   (May 29, 2009)  
   
• Vanilla v.1.1.7 Cross-Site Scripting, darkz . gsa   (May 27, 2009)
• [security bulletin] HPSBUX02429 SSRT090058 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code and Other Vulnerabilities, security-alert   (May 27, 2009)
• [ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code, Alex Legler   (May 27, 2009)
• [ MDVSA-2009:123 ] opensc, security   (May 27, 2009)
• [InterN0T] AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities, security   (May 27, 2009)
  • <Possible follow-ups>
  • Re: [InterN0T] AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities, support   (May 29, 2009)  
   
• New paper: Understanding Microsoft's KB971492 IIS WebDAV Vuln, Steve Friedl   (May 27, 2009)
• MULTIPLE REMOTE VULNERABILITIES --Small Pirates v-2.1-->, y3nh4ck3r   (May 28, 2009)
  • <Possible follow-ups>
  • Re: MULTIPLE REMOTE VULNERABILITIES --Small Pirates v-2.1-->, y3nh4ck3r   (June 01, 2009)  
   
• [Bkis-09-2009] XSS vulnerability in 'Monitor_Bandwidth' - PRTG Traffic Grapher, Bkis   (May 28, 2009)
• Survey: "MIME/Content-Type-Sniffing" Issues in Image Uploads in Forum Scripts, Jacques Copeau   (May 28, 2009)
• ecshop 2.6.2, info   (May 28, 2009)