Bugtraq: by thread
228 messages
starting Nov 01 08 and
ending Nov 29 08
Date index |
Thread index |
Author index
- [ MDVSA-2008:223 ] kernel security (Nov 01)
- sharedlog CMS Remote File Includes joseph . giron13 (Nov 01)
- Re: [Full-disclosure] Windows RPC worm (MS08-067) in the wild Juha-Matti Laurio (Nov 03)
- Re: Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day Adrian P. (Nov 03)
- Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day Adrian P (Nov 03)
- Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day Fionnbharr (Nov 03)
- <Possible follow-ups>
- Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day Steven M. Christey (Nov 04)
- Re: Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day sipherr (Nov 04)
- Re: Re: Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day unknown . pentester (Nov 05)
- Re: Re: Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Features + SonicWALL firewalls 0day unknown . pentester (Nov 05)
- Windows RPC worm (MS08-067) in the wild Juha-Matti Laurio (Nov 03)
- DriveCMS article.php remote sql injection beenudel1986 (Nov 03)
- Re: iDefense Security Advisory 10.30.08: Adobe PageMaker Key Strings Stack Buffer Overflow Vladimir '3APA3A' Dubrovin (Nov 03)
- A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability Henri Lindberg - Smilehouse Oy (Nov 03)
- <Possible follow-ups>
- Re: A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability billy . markette (Nov 14)
- Bitsec Security Advisory: UW/Panda IMAP [dt]mail buffer overflow Bitsec Labs (Nov 03)
- [ GLSA 200811-01 ] Opera: Multiple vulnerabilities Tobias Heinlein (Nov 03)
- iDefense Security Advisory 11.03.08: Multiple Vendor CUPS texttops Integer Overflow Vulnerability iDefense Labs (Nov 03)
- iDefense Security Advisory 11.03.08: Multiple Vendor CUPS SGI imagetops Heap Overflow Vulnerability iDefense Labs (Nov 03)
- [USN-660-1] enscript vulnerability Kees Cook (Nov 04)
- [security bulletin] HPSBMA02380 SSRT080121 rev.1 - HP System Management Homepage (SMH) for HP-UX, Local Unauthorized Access security-alert (Nov 04)
- Secunia Research: Adobe Acrobat/Reader "util.printf()" Buffer Overflow Secunia Research (Nov 04)
- CORE-2008-0526: Adobe Reader Javascript Printf Buffer Overflow CORE Security Technologies Advisories (Nov 04)
- Aruba Mobility Controller SNMP Community String Disclosure nnposter (Nov 04)
- rPSA-2008-0311-1 postfix rPath Update Announcements (Nov 04)
- [Tool] sqlmap 0.6.2 released Bernardo Damele A. G. (Nov 04)
- [security bulletin] HPSBUX02381 SSRT080083 rev.1 - HP-UX Running Xserver, Remote Execution of Arbitrary Code security-alert (Nov 04)
- FirmChannel Digital Signage 3.24 Cross-site scripting brad . antoniewicz (Nov 04)
- iDefense Security Advisory 11.04.08: Multiple Vendor NOS Microsystems getPlus Downloader Stack Buffer Overflow Vulnerability iDefense Labs (Nov 04)
- ZDI-08-072: Adobe Acrobat PDF Javascript printf Stack Overflow Vulnerability zdi-disclosures (Nov 04)
- ZDI-08-073: Adobe Acrobat Reader Malformed PDF Code Execution Vulnerability zdi-disclosures (Nov 04)
- ZDI-08-074: Adobe Acrobat PDF Javascript getCosObj Memory Corruption Vulnerability zdi-disclosures (Nov 04)
- iDefense Security Advisory 11.04.08: Adobe Reader Embedded Font Handling Out of Bounds Array Indexing Vulnerability iDefense Labs (Nov 04)
- iDefense Security Advisory 11.04.08: Adobe Acrobat And Reader AcroJS Heap Corruption Vulnerability iDefense Labs (Nov 05)
- [ MDVSA-2008:224 ] kernel security (Nov 05)
- [USN-662-1] Linux kernel vulnerabilities Kees Cook (Nov 05)
- Applications can open up remote root access on G1 Phone Jim Paris (Nov 05)
- Re: Applications can open up remote root access on G1 Phone Jim Paris (Nov 06)
- [USN-663-1] system-tools-backends regression Kees Cook (Nov 05)
- DFLabs PTK Forensic Local Command Execution Vulnerability luca . carettoni (Nov 05)
- [ MDVSA-2008:225 ] net-snmp security (Nov 05)
- [SECURITY] [DSA 1662-1] New mysql-dfsg-5.0 packages fix authorization bypass Devin Carraway (Nov 06)
- Remote access vulnerability using BigDump ver. 0.29b XiaShing (Nov 06)
- Arab Portal v2.1 Remote File Disclosure (Win32) r3d . w0rm (Nov 06)
- Re: phpWebSite links.php Sql Injection verdonv (Nov 06)
- hMAilServer 4.4.2 (PHPWebAdmin) local & remote file inclusion nospam (Nov 06)
- [TKADV2008-012] VLC media player cue Processing Stack Overflow Vulnerability Tobias Klein (Nov 06)
- [USN-664-1] Tk vulnerability Marc Deslauriers (Nov 06)
- [TKADV2008-011] VLC media player RealText Processing Stack Overflow Vulnerability Tobias Klein (Nov 06)
- [security bulletin] HPSBTU02383 SSRT080098 rev.1 - HP Tru64 UNIX running AdvFS "showfile" command, Local Gain Extended Privileges security-alert (Nov 06)
- [USN-665-1] Netpbm vulnerability Marc Deslauriers (Nov 07)
- [ MDVSA-2008:226 ] ruby security (Nov 07)
- [USN-662-2] Ubuntu kernel modules vulnerability Kees Cook (Nov 07)
- VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues VMware Security Team (Nov 07)
- countermeasure against attacks through HTML shared files fcorella (Nov 07)
- Re: [WEB SECURITY] countermeasure against attacks through HTML shared files Adrian P. (Nov 07)
- Re: countermeasure against attacks through HTML shared files Peter Watkins (Nov 07)
- Re: [WEB SECURITY] countermeasure against attacks through HTML shared files Amit Klein (Nov 09)
- <Possible follow-ups>
- Re: countermeasure against attacks through HTML shared files fcorella (Nov 09)
- [ MDVSA-2008:224-1 ] kernel security (Nov 07)
- Re: [WEB SECURITY] countermeasure against attacks through HTML shared files fcorella (Nov 07)
- <Possible follow-ups>
- Re: [WEB SECURITY] countermeasure against attacks through HTML shared files fcorella (Nov 09)
- Re: [WEB SECURITY] countermeasure against attacks through HTML shared files fcorella (Nov 11)
- VMware Emulation Flaw x64 Guest Privilege Escalation (2/2) ds . adv . pub (Nov 07)
- [USN-666-1] Dovecot vulnerability Kees Cook (Nov 07)
- Enthusiast 3 Remote Code Execution admin (Nov 09)
- [AK-ADV2008-001] Openfire Jabber-Server: Multiple Vulnerabilities (Authentication Bypass, SQL injection, ...) Andreas Kurtz (Nov 09)
- BSOD in Win'2k3, Vista x86 and x64 by nonpriviledged user support (Nov 09)
- Multiple remote vulnerabilities MoinMoin v1.80 XiaShing (Nov 09)
- [SECURITY] [DSA 1663-1] New net-snmp packages fix several vulnerabilities Thijs Kinkhorst (Nov 09)
- Metrica Service Assurance Multiple Cross Site Scripting f . bianchino (Nov 09)
- ClamAV get_unicode_name() off-by-one buffer overflow Moritz Jodeit (Nov 09)
- [ GLSA 200811-02 ] Gallery: Multiple vulnerabilities Tobias Heinlein (Nov 10)
- [ GLSA 200811-03 ] FAAD2: User-assisted execution of arbitrary code Tobias Heinlein (Nov 10)
- [ GLSA 200811-04 ] Graphviz: User-assisted execution of arbitrary code Tobias Heinlein (Nov 10)
- Collabtive 0.4.8 Multiple Vulnerabilities ascii (Nov 10)
- Re: Default key algorithm in Thomson and BT Home Hub routers securityfocus (Nov 10)
- [SECURITY] [DSA 1664-1] New ekg packages fix denial of service Moritz Muehlenhoff (Nov 11)
- Google Chrome Break Liu Die Yu (Nov 11)
- Joomla Component JooBlog 0.1.1 (PostID) SQL Injection Vuln. Stephen Argent (Nov 11)
- Re [WEB SECURITY] countermeasure against attacks through HTML shared files fcorella (Nov 11)
- [security bulletin] HPSBMA02380 SSRT080121 rev.2 - HP System Management Homepage (SMH) for HP-UX, Local Unauthorized Access security-alert (Nov 11)
- ooVoo 1.7.1.35 (URL Protocol) remote unicode buffer overflow poc Pyrokinesis (Nov 11)
- [USN-669-1] gnome-screensaver vulnerabilities Marc Deslauriers (Nov 11)
- [security bulletin] HPSBMA02385 SSRT080161 rev.1 - HP Service Manager (HPSM), Gain Extended Privileges security-alert (Nov 12)
- rPSA-2008-0315-1 net-snmp net-snmp-client net-snmp-server net-snmp-utils rPath Update Announcements (Nov 12)
- Re: Re: MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] Giuseppe Gottardi (Nov 12)
- Re: MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] Piergiorgio Venuti (Nov 17)
- Re: [Full-disclosure] MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] Micheal Cottingham (Nov 17)
- RE: MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] Castigliola, Angelo (Nov 17)
- Re: MS OWA 2003 Redirection Vulnerability - [MSRC 7368br] Piergiorgio Venuti (Nov 17)
- [SECURITY] [DSA 1665-1] New libcdaudio packages fix arbitrary code execution Moritz Muehlenhoff (Nov 12)
- rPSA-2008-0318-1 initscripts rPath Update Announcements (Nov 12)
- rPSA-2008-0316-1 kernel rPath Update Announcements (Nov 12)
- Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_IPUBLISH.ALTER_HOTLOG_INTERNAL_CSOURCE Shatter (Nov 13)
- Team SHATTER Security Advisory: Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager Shatter (Nov 13)
- Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE Shatter (Nov 13)
- [ MDVSA-2008:227 ] gnutls security (Nov 13)
- Team SHATTER Security Advisory: Oracle Database Multiple SQL Injection vulnerabilities in LTADM Shatter (Nov 13)
- Digital Armaments October-November Hacking Challenge: Linux Local Kernel Exploit (5,000$) info (Nov 13)
- New Whitepaper - .NET Framework Rootkits: Backdoors inside your Framework Erez Metula (Nov 13)
- [USN-670-1] VMBuilder vulnerability Jamie Strandboge (Nov 14)
- [ MDVSA-2008:228 ] mozilla-firefox security (Nov 14)
- [ MDVSA-2008:229 ] clamav security (Nov 14)
- ANNOUNCE: RFIDIOt release RFIDIOt-0.1u Adam Laurie (Nov 17)
- Microsoft Windows Server Service (MS08-067) Exploit Debasis Mohanty (Nov 17)
- [ GLSA 200811-05 ] PHP: Multiple vulnerabilities Tobias Heinlein (Nov 17)
- [waraxe-2008-SA#068] - Sql Injection in vBulletin 3.7.3.pl1 come2waraxe (Nov 17)
- rPSA-2008-0321-1 enscript rPath Update Announcements (Nov 17)
- Opera 9.6x file:// overflow send9 (Nov 17)
- <Possible follow-ups>
- Re: Opera 9.6x file:// overflow jplopezy (Nov 18)
- Re: Re: Opera 9.6x file:// overflow jplopezy (Nov 18)
- Re: Re: Re: Opera 9.6x file:// overflow send9 (Nov 18)
- Re: Opera 9.6x file:// overflow xiashing (Nov 19)
- Re: Re: Re: Re: Opera 9.6x file:// overflow peterjohan () ukr net (Nov 19)
- Re: Re: Re: Re: Opera 9.6x file:// overflow Zack Payton (Nov 19)
- Re: Re: Re: Re: Re: Opera 9.6x file:// overflow psy . echo (Nov 20)
- Re: Re: Re: Re: Re: Opera 9.6x file:// overflow theindigowolf (Nov 20)
- Re: Re: Re: Re: Re: Re: Opera 9.6x file:// overflow send9 (Nov 20)
- Exodus v0.10 uri handler arbitrary parameter injection Pyrokinesis (Nov 17)
- [waraxe-2008-SA#069] - Multiple Sql Injection in vBulletin 3.7.4 come2waraxe (Nov 17)
- [USN-671-1] MySQL vulnerabilities Marc Deslauriers (Nov 17)
- Kimson cms cross site scripting vulnerability md . r00t . defacer (Nov 18)
- rPSA-2008-0322-1 gnutls rPath Update Announcements (Nov 18)
- [ MDVSA-2008:227-1 ] gnutls security (Nov 18)
- [USN-667-1] Firefox and xulrunner vulnerabilities Jamie Strandboge (Nov 18)
- [USN-672-1] ClamAV vulnerability Kees Cook (Nov 18)
- [SECURITY] [DSA 1666-1] New libxml2 packages fix several vulnerabilities Moritz Muehlenhoff (Nov 18)
- [ MDVSA-2008:230 ] firefox security (Nov 18)
- [DSECRG-08-039] Local File Include Vulnerability in Pluck CMS 4.5.3 Digital Security Research Group (Nov 18)
- Outdated and vulnerable OpenSource libraries used in "Deutsche Telekom" home banking software Stefan Kanthak (Nov 18)
- [security bulletin] HPSBST02386 SSRT080164 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-067 to MS08-069 security-alert (Nov 18)
- Black Hat November News: CFPS Now Open, Webinar 5 and Japan on-line. jmoss (Nov 18)
- Firefox cross-domain image theft (CESA-2008-009) Chris Evans (Nov 19)
- [USN-673-1] libxml2 vulnerabilities Kees Cook (Nov 19)
- Microsoft VISTA TCP/IP stack buffer overflow Thomas Unterleitner (Nov 19)
- <Possible follow-ups>
- Re: Microsoft VISTA TCP/IP stack buffer overflow dale (Nov 25)
- Re: Microsoft VISTA TCP/IP stack buffer overflow Edi Strosar (Nov 25)
- Metasploit Framework 3.2 Released H D Moore (Nov 19)
- PR07-11: Cross-site Request Forgery (CSRF) on Sun Java System Identity Manager ProCheckUp Research (Nov 19)
- Secunia Research: Streamripper Multiple Buffer Overflows Secunia Research (Nov 19)
- PR08-09: Unauthenticated File Retrieval on Sun Java System Identity Manager "ext" parameter ProCheckUp Research (Nov 19)
- [ MDVSA-2008:231 ] libxml2 security (Nov 19)
- Re: [ MDVSA-2008:231 ] libxml2 Eygene Ryabinkin (Nov 19)
- PR07-40: Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760 ProCheckUp Research (Nov 19)
- [SECURITY] [DSA 1667-1] New python2.4 packages fix several vulnerabilities Moritz Muehlenhoff (Nov 19)
- rPSA-2008-0325-1 libxml2 rPath Update Announcements (Nov 19)
- [USN-674-1] HPLIP vulnerabilities Marc Deslauriers (Nov 19)
- [ MDVSA-2008:232 ] dovecot security (Nov 19)
- Re: [ MDVSA-2008:232 ] dovecot Eygene Ryabinkin (Nov 19)
- [ MDVSA-2008:220-1 ] kernel security (Nov 20)
- boastMachine v3.1 Remote Sql Injection r3d . w0rm (Nov 20)
- [security bulletin] HPSBMA02388 SSRT080059 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Cross Site Scripting (XSS) security-alert (Nov 20)
- Re: Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani Jan van Niekerk (Nov 20)
- <Possible follow-ups>
- Re: Re: Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani irancrash (Nov 20)
- Re: Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani dkoston (Nov 20)
- Social Engine 2.7 CRLF Injection + SQL injection office (Nov 20)
- SecurityReason : PHP 5.2.6 (error_log) safe_mode bypass cxib (Nov 20)
- [ MDVSA-2008:233 ] libcdaudio security (Nov 20)
- ZDI-08-075: EMC Control Center SAN Manager Master SST_CTGTRANS Overflow Vulnerability zdi-disclosures (Nov 21)
- ZDI-08-076: EMC Control Center SAN Manager SST_SENDFILE Remote File Retrieval Vulnerability zdi-disclosures (Nov 21)
- KVIrc 3.4.2 Shiny (uri handler) remote command execution exploit Pyrokinesis (Nov 21)
- OpenSSH security advisory: cbc.adv Damien Miller (Nov 21)
- Re: OpenSSH security advisory: cbc.adv Otto Moerbeek (Nov 24)
- Re: Re: OpenSSH security advisory: cbc.adv Guillaume MULLER (Nov 24)
- Re: OpenSSH security advisory: cbc.adv Nick Boyce (Nov 24)
- Re: OpenSSH security advisory: cbc.adv Damien Miller (Nov 25)
- Re: OpenSSH security advisory: cbc.adv Nick Boyce (Nov 25)
- Re: OpenSSH security advisory: cbc.adv Bob Beck (Nov 25)
- Re: OpenSSH security advisory: cbc.adv Fabian Hänsel (Nov 25)
- Re: OpenSSH security advisory: cbc.adv Damien Miller (Nov 25)
- <Possible follow-ups>
- Re: Re: OpenSSH security advisory: cbc.adv dennis jackson (Nov 25)
- Re: OpenSSH security advisory: cbc.adv Otto Moerbeek (Nov 24)
- DDIVRT-2008-15 iPhone Configuration Web Utility 1.0 for Windows Directory Traversal vulnerabilityresearch (Nov 21)
- [ MDVSA-2008:234 ] kernel security (Nov 22)
- Adobe Flash Multiple Vulnerabilities iSEC Partners (Nov 22)
- [SVRT-04-08] Vulnerability in WireShark 1.0.4 for DoS Attack svrt (Nov 22)
- Re: Re: MS Internet Explorer 7 Denial Of Service Exploit craig (Nov 22)
- Re: MS Internet Explorer 7 Denial Of Service Exploit Nick Kirby (Nov 24)
- Re: Re: MS Internet Explorer 7 Denial Of Service Exploit Glynn Clements (Nov 24)
- <Possible follow-ups>
- Re: Re: Re: MS Internet Explorer 7 Denial Of Service Exploit 0xjbrown41 (Nov 24)
- [SECURITY] [DSA 1668-1] New hf packages fix execution of arbitrary code Steve Kemp (Nov 22)
- rPSA-2008-0324-1 gvim vim vim-minimal rPath Update Announcements (Nov 22)
- rPSA-2008-0327-1 httpd mod_ssl rPath Update Announcements (Nov 22)
- rPSA-2008-0328-1 httpd mod_ssl rPath Update Announcements (Nov 22)
- Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability zimpel (Nov 22)
- <Possible follow-ups>
- Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability tecklord (Nov 24)
- Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability zimpel (Nov 24)
- Revised: OpenSSH security advisory: cbc.adv Damien Miller (Nov 24)
- [SECURITY] [DSA 1669-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Nov 24)
- [ MDVSA-2008:235 ] mozilla-thunderbird security (Nov 24)
- Amaya (URL Bar) Remote Stack Overflow Vulnerability writ3r (Nov 24)
- Amaya (id) Remote Stack Overflow Vulnerability writ3r (Nov 24)
- [SVRT-05-08] Critical BoF vulnerability found in ffdshow affecting all internet browsers (SVRT-Bkis) svrt (Nov 24)
- Google Chrome MetaCharacter URI Obfuscation Vulnerability Aditya K Sood (Nov 24)
- [USN-675-1] Pidgin vulnerabilities Marc Deslauriers (Nov 24)
- FreeBSD Security Advisory FreeBSD-SA-08:11.arc4random FreeBSD Security Advisories (Nov 24)
- [USN-676-1] WebKit vulnerability Marc Deslauriers (Nov 24)
- [USN-675-2] Gaim vulnerability Marc Deslauriers (Nov 24)
- [USN-674-2] HPLIP vulnerabilities Marc Deslauriers (Nov 24)
- [SECURITY] [DSA 1670-1] New enscript packages fix arbitrary code execution Moritz Muehlenhoff (Nov 24)
- [SECURITY] [DSA 1671-1] New iceweasel packages fix several vulnerabilities Moritz Muehlenhoff (Nov 24)
- WebStudio CMS 'pageid' Blind SQL Injection glafkos (Nov 24)
- Siemens C450IP/C475IP DoS Martin Kluge (Nov 24)
- CanSecWest 2009 CFP (March 18-20 2009, Deadline December 8 2008) Dragos Ruiu (Nov 25)
- MyBB 1.4.3 my_post_key Disclosure Vulnerability nbbn () gmx net (Nov 25)
- [USN-677-1] OpenOffice.org vulnerabilities Jamie Strandboge (Nov 25)
- New tool and paper for Oracle forensics... David Litchfield (Nov 25)
- [security bulletin] HPSBTU02382 SSRT080132 rev.1 - HP Secure Web Server for Tru64 UNIX or Internet Express for Tru64 UNIX running PHP, Remote Denial of Service (DoS) or Arbitrary Code Execution security-alert (Nov 25)
- RSA EnVision Remote Password Disclosure nicolas . viot (Nov 25)
- WordPress XSS vulnerability in RSS Feed Generator Jeremias Reith (Nov 25)
- [CFP] FRHACK 01 Call For Papers (save the dates!) Jerome Athias (Nov 25)
- [USN-678-1] GnuTLS vulnerability Jamie Strandboge (Nov 26)
- [USN-668-1] Thunderbird vulnerabilities Jamie Strandboge (Nov 26)
- Updated: Google Chrome 0.4.154.25 URI Meta Character URL Obfuscation Aditya K Sood (Nov 26)
- XSS in Internet Explorer 6 and 7 MustLive (Nov 26)
- Re: XSS in Internet Explorer 6 and 7 Thierry Zoller (Nov 26)
- WHMCS V3.7.1 Sensible Information Disclosure julianrdz91 (Nov 26)
- <Possible follow-ups>
- Re: WHMCS V3.7.1 Sensible Information Disclosure julianrdz91 (Nov 27)
- FreeRainbowTables.com has changed generation platform Jerome Athias (Nov 27)
- [HACKATTACK Advisory 20081127]Social Impress CMS 1.1 - Session Fixation office (Nov 27)
- [USN-680-1] Samba vulnerability Marc Deslauriers (Nov 27)
- AssoCIateD 1.4.4 Remote Cross Site Scripting Vulnerability tan_prathan (Nov 27)
- DC4420 - DEFCON London - Christmas meeting - Tuesday 2nd December 2008 Major Malfunction (Nov 28)
- SecurityReason : PHP 5.2.6 dba_replace() destroying file cxib (Nov 28)
- [tool] Exomind v0.2 is out! Jose Orlicki (Nov 28)
- [SECURITY] [DSA 1672-1] New imlib2 packages fix arbitrary code execution Moritz Muehlenhoff (Nov 29)