Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
267 messages
starting Mar 23 10 and
ending Mar 15 10
Date index |
Thread index |
Author index
adam
Re: Firefox 3.6 for Windows includes a forged CA cert adam (Mar 23)
admin
Ananta Gazelle SQL Injection Vulnerability admin (Mar 15)
1024CMS Blind SQL Injection Vulnerability admin (Mar 02)
Akos Szalkai
Re: Vulnerability Astaro Security Linux v5 Akos Szalkai (Mar 23)
Albert Levi
CFP - GameSec 2010 - Conference on Decision and Game Theory for Security Albert Levi (Mar 23)
Alexandr Polyakov
[DSECRG-09-064] SAP GUI - Insecure method, code execution Alexandr Polyakov (Mar 23)
Alex Legler
[ GLSA 201003-01 ] sudo: Privilege escalation Alex Legler (Mar 03)
Andreas Kirbach
SQL Injection Vulnerabilitie in PhotoPost vBGallery 2.5 Andreas Kirbach (Mar 29)
Andrew Barkley
ZoneAlarm 9 (ForceField) Security Disclosure Andrew Barkley (Mar 15)
ZoneAlarm Security Circumvention Andrew Barkley (Mar 08)
Andriy Tereshchenko
Insecure SMS authorization scheme at LiqPAY micro-payments of PrivatBank (Ukraine) Andriy Tereshchenko (Mar 23)
andrzej . targosz
CONFidence 2010 /25-26 May/, CfP andrzej . targosz (Mar 01)
Andrzej Targosz
Last Call for Papers, CONFidence 2010, 25-26May, Last Call for Papers Andrzej Targosz (Mar 16)
andy
Re: Todd Miller Sudo local root exploit discovered by Slouching andy (Mar 03)
anonym
Re: Re: Circumventing Critical Security in Windows XP anonym (Mar 01)
Ansgar Wiechers
Re: ZoneAlarm Security Circumvention Ansgar Wiechers (Mar 15)
Re: Circumventing Critical Security in Windows XP Ansgar Wiechers (Mar 02)
astera
PlumberCon 10 - Call for Papers astera (Mar 15)
Bernardo Damele A. G.
[Tool] sqlmap 0.8 released Bernardo Damele A. G. (Mar 15)
bugs
Symlink attack with Solaris Update manager and Sun Patch Cluster bugs (Mar 24)
Symlink attack with Solaris Update manager bugs (Mar 24)
cfp
Ruxcon 2010 Call For Papers cfp (Mar 25)
Christopher
Sahana 0.6.2.2 Authentication Bypass Christopher (Mar 17)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 03)
Cisco Security Advisory: Cisco IOS Software IPsec Vulnerability Cisco Systems Product Security Incident Response Team (Mar 24)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Digital Media Manager Cisco Systems Product Security Incident Response Team (Mar 03)
Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 24)
Cisco Security Advisory: Cisco IOS Software NAT Skinny Call Control Protocol Vulnerability Cisco Systems Product Security Incident Response Team (Mar 24)
Cisco Security Advisory: Cisco Digital Media Player Remote Display Unauthorized Content Injection Vulnerability Cisco Systems Product Security Incident Response Team (Mar 03)
CORE Security Technologies Advisories
CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability CORE Security Technologies Advisories (Mar 17)
Luxology Modo 401 .LXO Integer Overflow CORE Security Technologies Advisories (Mar 02)
CORRECTION: CORE-2009-0913 - Luxology Modo 401 .LXO Integer Overflow CORE Security Technologies Advisories (Mar 03)
CORE-2010-0311 - eFront-learning PHP file inclusion vulnerability CORE Security Technologies Advisories (Mar 17)
CORE-2009-1103: Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability CORE Security Technologies Advisories (Mar 10)
CORE-2009-0813: Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap Overflow CORE Security Technologies Advisories (Mar 10)
Cyrill Brunschwiler
CVE-2009-4505 OpenCMS OAMP Comments Module XSS Cyrill Brunschwiler (Mar 24)
dan . j . rosenberg
Re: ncpfs, Multiple Vulnerabilities dan . j . rosenberg (Mar 05)
dann frazier
[SECURITY] [DSA 2012-1] New Linux 2.6.26 packages fix several issues dann frazier (Mar 12)
[SECURITY] [DSA 2004-1] New Linux 2.6.24 packages fix several vulnerabilities dann frazier (Mar 01)
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities dann frazier (Mar 10)
Dan Rosenberg
fcrontab Information Disclosure Vulnerability Dan Rosenberg (Mar 04)
Multiple vulnerabilities in Deliver Dan Rosenberg (Mar 24)
ncpfs, Multiple Vulnerabilities Dan Rosenberg (Mar 05)
Exploiting nano Dan Rosenberg (Mar 29)
dr_ch1na
Unspecified EMC Documentum Remote Code Execution Vulnerability dr_ch1na (Mar 04)
drstrangep0rk
Re: Apple Airport Wireless Products: Promiscuous FTP PORT Allowed in FTP Proxy Provides Security Bypass drstrangep0rk (Mar 08)
DSecRG
"Writing JIT-Spray Shellcode for fun and profit" by DSecRG DSecRG (Mar 08)
dveditz
Re: Firefox 3.6 for Windows includes a forged CA cert dveditz (Mar 23)
edgard . chammas
Sun Java System Communication Express CSRF via HPP edgard . chammas (Mar 15)
faghani
Zigurrat CMS SQL Injection Vulnerability faghani (Mar 15)
Pars CMS SQL Injection Vulnerability faghani (Mar 15)
Fernando Gont
IETF effort: Security Assesment of the Internet Protocol Fernando Gont (Mar 04)
Francis Litterio
Firefox 3.6 for Windows includes a forged CA cert Francis Litterio (Mar 22)
Francis Provencher
{PRL} Novell Netware FTP Remote Stack Overflow Francis Provencher (Mar 29)
{PRL} Lexmark Multiple Laser printer FTP Remote Denial of Services Francis Provencher (Mar 23)
{PRL} Lexmark Multiple Laser Printer Remote Stack Overflow Francis Provencher (Mar 23)
Gary Niger
Safari browser port blocking bypassed by integer overflow Gary Niger (Mar 23)
Giuseppe Iuculano
[SECURITY] [DSA 2016-1] New drupal6 packages fix several vulnerabilities Giuseppe Iuculano (Mar 15)
[SECURITY] [DSA 2006-1] New sudo packages fix several vulnerabilities Giuseppe Iuculano (Mar 02)
[SECURITY] [DSA-2019-1] New pango1.0 packages fix denial of service Giuseppe Iuculano (Mar 22)
[SECURITY] [DSA 2021-1] New spamass-milter packages fix remote command execution Giuseppe Iuculano (Mar 23)
[SECURITY] [DSA 2017-1] New pulseaudio packages fix insecure temporary directory Giuseppe Iuculano (Mar 16)
[SECURITY] [DSA 2024-1] New moin packages fix cross-site scripting Giuseppe Iuculano (Mar 31)
[SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities Giuseppe Iuculano (Mar 12)
Hafez Kamal
[HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! *Correction* Hafez Kamal (Mar 24)
[HITB-Announce] HITBSecConf2010 - Dubai Agenda Released Hafez Kamal (Mar 15)
[HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! Hafez Kamal (Mar 23)
iDefense Labs
iDefense Security Advisory 03.30.10: Oracle Java Runtime Environment Image FIle Buffer Overflow Vulnerability iDefense Labs (Mar 31)
iDefense Security Advisory 03.30.10: Microsoft Internet Explorer 'onreadystatechange' Use After Free Vulnerability iDefense Labs (Mar 30)
iDefense Security Advisory 03.09.10: Microsoft Excel FNGROUPNAME Record Uninitialized Memory Vulnerability iDefense Labs (Mar 10)
iDefense Security Advisory 03.02.10: IBM Lotus Domino Web Access ActiveX Stack Buffer Overflow Vulnerability iDefense Labs (Mar 02)
iDefense Security Advisory 03.09.10: Microsoft Excel MDXTUPLE Record Heap Overflow Vulnerability iDefense Labs (Mar 10)
iDefense Security Advisory 03.09.10: Microsoft Excel Sheet Object Type Confusion Vulnerability iDefense Labs (Mar 10)
iDefense Security Advisory 03.04.10: Autonomy KeyView OLE Document Integer Overflow Vulnerability iDefense Labs (Mar 05)
iDefense Security Advisory 03.11.10: Multiple Vendor WebKit HTML Element Use After Free Vulnerability iDefense Labs (Mar 12)
iDefense Security Advisory 03.09.10: Microsoft Excel MDXSET Record Heap Overflow Vulnerability iDefense Labs (Mar 10)
info
Joomla Component com_weblinks Sql Injection Vulnerability info (Mar 29)
XSS vulnerability in easy page cms info (Mar 29)
IE 6.0 - Local Crash Exploit info (Mar 23)
phpinfo() XSS Vulnerability info (Mar 08)
Joomla Component com_xmap Sql Injection Vulnerability info (Mar 29)
Jakob Lell
CVE-2010-0624: Heap-based buffer overflow in GNU Tar and GNU Cpio Jakob Lell (Mar 10)
Jamie Strandboge
[USN-911-1] MoinMoin vulnerabilities Jamie Strandboge (Mar 12)
[USN-905-1] sudo vulnerabilities Jamie Strandboge (Mar 01)
Jan Lehnardt
[SECURITY] CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability Jan Lehnardt (Mar 31)
[SECURITY] CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability Jan Lehnardt (Mar 31)
Jann Horn
Re: Re: Circumventing Critical Security in Windows XP Jann Horn (Mar 02)
Re: Todd Miller Sudo local root exploit discovered by Slouching Jann Horn (Mar 03)
Jan Schejbal
Miranda IM silent TLS failure Jan Schejbal (Mar 17)
jason
Elevation of Privilege Vulnerability in iTunes for Windows jason (Mar 31)
jdaniel
Re: Vulnerability Astaro Security Linux v5 jdaniel (Mar 23)
Jeromie Jackson
SugarCRM Stored XSS vulnerability Jeromie Jackson (Mar 16)
John Adams
Re: [Full-disclosure] Medium security hole in Varnish reverse proxy John Adams (Mar 29)
Jonathan Brossard
Hackito Ergo Sum Conference (Paris 8-10 April 2010) : Schedule Jonathan Brossard (Mar 25)
k4mr4n_St
Internet Explorer 7.0 0day Vulnerability k4mr4n_St (Mar 23)
Kees Cook
[USN-916-1] Kerberos vulnerabilities Kees Cook (Mar 24)
[USN-919-1] Emacs vulnerability Kees Cook (Mar 30)
[USN-909-1] dpkg vulnerability Kees Cook (Mar 11)
Kingcope
Re: Todd Miller Sudo local root exploit discovered by Slouching Kingcope (Mar 03)
Todd Miller Sudo local root exploit discovered by Slouching Kingcope (Mar 02)
Konrad Rieck
Call for Papers: EC2ND 2010 Konrad Rieck (Mar 05)
Kotas, Kevin J
CA20100318-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Mar 19)
labs
Multiple DOM-Based XSS in Dojo Toolkit SDK labs (Mar 15)
lament
IBM Lotus 6.x names.nsf Cross Site Scripting Vulnerability lament (Mar 22)
Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability lament (Mar 10)
IBM ENOVIA SmarTeam v5 Cross Site Scripting Vulnerability lament (Mar 09)
Aris AGX agXchange ESM Open Redirection Vulnerability lament (Mar 22)
Oracle Siebel 7.x CRM Cross Site Scripting Vulnerability lament (Mar 01)
ARISg5 (Version 5.0) Cross Site Scripting Vulnerability lament (Mar 01)
Eshbel Priority MarketGate module Cross Site Scripting Vulnerability lament (Mar 02)
Aris AGX agXchange ESM Cross Site Scripting Vulnerability lament (Mar 23)
Sparta Systems TrackWise TeamAccess module Multiple Cross Site Scripting Vulnerabilities lament (Mar 02)
IBM Lotus 6.x HTTP Response Splitting Vulnerability lament (Mar 19)
lis cker
"$referer" export lead to the cross-site flaws in all versions of Discuz! lis cker (Mar 24)
[XSS] i found a xss on "page" parameter in "eccredit.php" in Dvbbs < 8.3.0 lis cker (Mar 08)
There is a Permanent-type Cross-Site Vulnerability in “Personal Signature” in all version of Discuz!. It can be written by the worm! lis cker (Mar 25)
[xss] a xss on "ThreadID" parameter in BBSXP 2008 from china lis cker (Mar 04)
[xss] a xss on "threadid" parameter in BBSMAX lis cker (Mar 10)
[xss] i found a Cross Site Scripting Vulnerability about Discuz! 'uid' Parameter lis cker (Mar 02)
There are lost of xss vul in PHPWind v6.0 ! lis cker (Mar 19)
[xss] a xss on "action" parameter in BBSMAX lis cker (Mar 08)
[XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface! lis cker (Mar 12)
Lists
Apache mod_isapi Dangling Pointer Vulnerability - Security Advisory - SOS-10-002 Lists (Mar 08)
Luka Milkovic
Multiple vulnerabilities in SUPERAntiSpyware and Super Ad Blocker Luka Milkovic (Mar 11)
Lukas Lueg
Remote buffer overflow in aircrack-ng causes DOS and possible code execution Lukas Lueg (Mar 29)
Maciej Gojny
SQL injection vulnerability in Natychmiast CMS Maciej Gojny (Mar 05)
SQL injection vulnerability in wILD CMS Maciej Gojny (Mar 09)
Major Malfunction
London DEFCON March meet - DC4420 - Wednesday March 31st 2010 Major Malfunction (Mar 29)
Marc Deslauriers
[USN-906-1] CUPS vulnerabilities Marc Deslauriers (Mar 04)
[USN-915-1] Thunderbird vulnerabilities Marc Deslauriers (Mar 19)
[USN-913-1] libpng vulnerabilities Marc Deslauriers (Mar 16)
[USN-918-1] Samba vulnerability Marc Deslauriers (Mar 24)
[USN-912-1] Audio File Library vulnerability Marc Deslauriers (Mar 16)
[USN-907-1] gnome-screensaver vulnerabilities Marc Deslauriers (Mar 08)
[USN-917-1] Puppet vulnerabilities Marc Deslauriers (Mar 24)
[USN-908-1] Apache vulnerabilities Marc Deslauriers (Mar 10)
Marcus Meissner
Re: Firefox 3.6 for Windows includes a forged CA cert Marcus Meissner (Mar 23)
Martin Barbella
Open redirection vulnerability in the Drupal API function drupal_goto (Drupal 6.15 and 5.21) Martin Barbella (Mar 04)
Mehdi Mahdjoub - Sysdream IT Security Services
Vulnerability httpdx v1.5.3 Mehdi Mahdjoub - Sysdream IT Security Services (Mar 15)
Vulnerability Httpdx v1.5.3b Mehdi Mahdjoub - Sysdream IT Security Services (Mar 19)
Vulnerability Astaro Security Linux v5 Mehdi Mahdjoub - Sysdream IT Security Services (Mar 23)
michael . mueller
OXID eShop Enterprise: Session Fixation and XSS Vulnerabilities michael . mueller (Mar 30)
Multiple Vulnerabilities in EASY Enterprise DMS michael . mueller (Mar 25)
Michal Zalewski
...because you can't get enough of clickjacking Michal Zalewski (Mar 15)
announcing skipfish, an automated web app security scanner Michal Zalewski (Mar 19)
Mike Duncan
Re: Firefox 3.6 for Windows includes a forged CA cert Mike Duncan (Mar 23)
mori
Re: Information disclosure vulnerability in Drupal's Realname User Reference Widget contributed module (version 6.x-1.0) mori (Mar 01)
Moritz Muehlenhoff
[SECURITY] [DSA 2013-1] New egroupware packages fix several vulnerabilities Moritz Muehlenhoff (Mar 12)
[SECURITY] [DSA 2004-1] New samba packages fix several vulnerabilities Moritz Muehlenhoff (Mar 01)
[SECURITY] [DSA 2008-1] New typo3-src packages fix several vulnerabilities Moritz Muehlenhoff (Mar 09)
MustLive
Vulnerabilities in WeBAM MustLive (Mar 25)
Vulnerabilities in ArcManager MustLive (Mar 29)
Vulnerabilities in Abton MustLive (Mar 11)
[Suspected Spam]Vulnerabilities in NoCMS MustLive (Mar 31)
Vulnerability in phpAdsNew, OpenAds and OpenX MustLive (Mar 15)
Vulnerabilities in TooFAST MustLive (Mar 26)
Vulnerabilities in Hydra Engine MustLive (Mar 10)
Vulnerabilities in MiniManager for Project MANGOS MustLive (Mar 29)
New vulnerabilities in Abton MustLive (Mar 15)
Vulnerabilities in WordPress MustLive (Mar 23)
Vulnerabilities in CaptchaSecurityImages MustLive (Mar 23)
Vulnerabilities in VXDate for Joomla MustLive (Mar 17)
Nico Golde
[SECURITY] [DSA 2020-1] New ikiwiki packages fix cross-site scripting Nico Golde (Mar 22)
[SECURITY] [DSA 2022-1] New mediawiki packages fix several vulnerabilities Nico Golde (Mar 24)
[SECURITY] [DSA 2011-1] New dpkg packages fix path traversal Nico Golde (Mar 11)
[SECURITY] [DSA 2007-1] New cups packages fix arbitrary code execution Nico Golde (Mar 04)
nicolas . grandjean
Multiple XSS vulnerabilities in OSSIM 2.2.1 nicolas . grandjean (Mar 31)
noone
Re: Re: Todd Miller Sudo local root exploit discovered by Slouching noone (Mar 04)
NSO Research
NSOADV-2010-004: McAfee LinuxShield remote/local code execution NSO Research (Mar 02)
Re: NSOADV-2010-004: McAfee LinuxShield remote/local code execution NSO Research (Mar 03)
NSOADV-2010-006: Authentium Command Free Scan ActiveX Control buffer overflow NSO Research (Mar 04)
Paul Craig
Skype URI Handler Input Validation Paul Craig (Mar 11)
Paulino Calderon
Croogo CMS 1.2 Cross Site Scripting Vulnerabilities Paulino Calderon (Mar 09)
Paul Makowski
Re: Easy FTP Server 1.7.0.2 Remote BoF Paul Makowski (Mar 01)
Pierre Noguès
BitComet <= 1.19 Remote DOS Exploit Pierre Noguès (Mar 31)
OpenDcHub 0.8.1 Remote Code Execution Exploit Pierre Noguès (Mar 31)
rajat swarup
CVE-2010-0684: Apache ActiveMQ Persistent Cross-Site Scripting (XSS) Vulnerability rajat swarup (Mar 30)
Raphael Geissert
[SECURITY] [DSA-2018-1] New php5 packages fix null pointer dereference Raphael Geissert (Mar 19)
rPath Update Announcements
rPSA-2010-0018-1 bind bind-utils caching-nameserver rPath Update Announcements (Mar 16)
rPSA-2010-0011-1 gnome-ssh-askpass openssh openssh-client openssh-server rPath Update Announcements (Mar 08)
rPSA-2010-0014-1 mysql mysql-bench mysql-server rPath Update Announcements (Mar 08)
rPSA-2010-0013-1 gzip rPath Update Announcements (Mar 08)
rPSA-2010-0012-1 postgresql postgresql-contrib postgresql-server rPath Update Announcements (Mar 08)
rPSA-2010-0022-1 sendmail sendmail-cf rPath Update Announcements (Mar 16)
s2-security
CVE-2009-2907: SpringSource Hyperic HQ multiple XSS vulnerabilities s2-security (Mar 24)
Sabahattin Gucukoglu
Re: Apple Airport Wireless Products: Promiscuous FTP PORT Allowed in FTP Proxy Provides Security Bypass Sabahattin Gucukoglu (Mar 09)
Apple Airport Wireless Products: Promiscuous FTP PORT Allowed in FTP Proxy Provides Security Bypass Sabahattin Gucukoglu (Mar 04)
Salvatore Fresta aka Drosophila
Re: phpinfo() XSS Vulnerability Salvatore Fresta aka Drosophila (Mar 08)
MX Simulator Server 2010-02-06 Remote Buffer Overflow PoC Salvatore Fresta aka Drosophila (Mar 23)
Re: Vulnerabilities in WeBAM Salvatore Fresta aka Drosophila (Mar 25)
Secunia Research
Secunia Research: ViewVC Regular Expression Search Cross-Site Scripting Secunia Research (Mar 30)
Secunia Research: Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow Secunia Research (Mar 31)
Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability Secunia Research (Mar 10)
Secunia Research: Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow Secunia Research (Mar 31)
Secunia Research: Pulse CMS login.php Arbitrary File Writing Vulnerability Secunia Research (Mar 24)
Secunia Research: Quicksilver Forums Backup Information Disclosure Secunia Research (Mar 17)
Secunia Research: Quicksilver Forums "mysqldump" Password Disclosure Secunia Research (Mar 17)
Secunia Research: Pulse CMS Arbitrary File Writing Vulnerability Secunia Research (Mar 24)
Secunia Research: Employee Timeclock Software Backup Information Disclosure Secunia Research (Mar 10)
Secunia Research: Quicksilver Forums Cross-Site Request Forgery Vulnerability Secunia Research (Mar 17)
Secunia Research: Employee Timeclock Software "mysqldump" Password Disclosure Secunia Research (Mar 10)
Secunia Research: Employee Timeclock Software SQL Injection Vulnerabilities Secunia Research (Mar 10)
Secunia Research: Pulse CMS Arbitrary File Deletion Vulnerability Secunia Research (Mar 24)
security
[ MDVSA-2010:052 ] sudo security (Mar 02)
[ MDVSA-2010:068 ] php security (Mar 29)
[ MDVSA-2010:063 ] libpng security (Mar 23)
[ MDVSA-2010:058 ] php security (Mar 10)
[ MDVSA-2010:056 ] openoffice.org security (Mar 08)
[CORELAN-10-13] - Windisc Local Stack BOF Security (Mar 17)
[ MDVSA-2010:055 ] poppler security (Mar 05)
[ MDVSA-2010:068 ] php security (Mar 29)
[ MDVSA-2010:057 ] apache security (Mar 08)
QuickZip 0day detailed write-up Security (Mar 15)
[ MDVSA-2010:065 ] cpio security (Mar 23)
[CORELAN-10-015] - Remote Help 0.0.7 Httpd DoS (Format String) Security (Mar 23)
[ MDVSA-2010:054 ] pam_krb5 security (Mar 04)
[ MDVSA-2010:061 ] ncpfs security (Mar 12)
[ MDVSA-2010:053 ] apache security (Mar 02)
[ MDVSA-2010:068 ] php security (Mar 29)
[ MDVSA-2010:059 ] virtualbox security (Mar 10)
[ MDVSA-2010:060 ] squid security (Mar 11)
[ MDVSA-2010:051 ] mozilla-thunderbird security (Mar 01)
[ MDVSA-2010:066 ] kernel security (Mar 25)
[ MDVSA-2010:067 ] kernel security (Mar 26)
[ MDVSA-2010:064 ] libpng security (Mar 23)
[ MDVSA-2010:062 ] curl security (Mar 22)
security-alert
[security bulletin] HPSBUX02509 SSRT100032 rev.1 - HP-UX Running NFS/ONCplus, NFS Inadvertently Enabled security-alert (Mar 26)
[security bulletin] HPSBGN02511 SSRT100022 rev.2 - HP Small Form Factor or Microtower PC with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code security-alert (Mar 17)
[security bulletin] HPSBMA02490 SSRT090222 rev.1 - HP SOA Registry Foundation, Remote Unauthorized Access to Data, Cross Site Scripting (XSS), Privilege Escalation security-alert (Mar 30)
[security bulletin] HPSBOV02506 SSRT090244 rev.1 - HP Secure Web Server for OpenVMS (based on Apache) CSWS, Remote Denial of Service (DoS), Unauthorized Disclosure of Information, Unauthorized Modification of Information security-alert (Mar 30)
[security bulletin] HPSBUX02514 SSRT100010 rev.1 - HP-UX running AudFilter rules enabled, Local Denial of Service (DoS) security-alert (Mar 30)
[security bulletin] HPSBUX02508 SSRT100007 rev.1 - HP-UX Running sendmail with STARTTLS Enabled, Remote Unauthorized Access security-alert (Mar 25)
[security bulletin] HPSBMA02436 SSRT080064 rev.1 - HP Project and Portfolio Management Center (PPMC), Remote Cross Site Scripting (XSS) security-alert (Mar 25)
[security bulletin] HPSBMA02489 SSRT090065 rev.1 - HP Performance Insight , Remote Execution of Arbitrary Commands security-alert (Mar 09)
[security bulletin] HPSBMA02513 SSRT090110 rev.1 - Insight Control for Linux (IC-Linux) Remote Execution of Arbitrary Code, Local Unauthorized Elevation of Privilege security-alert (Mar 30)
[security bulletin] HPSBOV02497 SSRT090245 rev.2 - HP TCP/IP Services for OpenVMS Running NTP, Remote Execution of Arbitrary Code, Denial of Service (DoS) security-alert (Mar 29)
Security Lists NL
Juniper SA Series Cross Site Scripting Issue Security Lists NL (Mar 05)
Stefan Esser
Month of PHP Security 2010 - CALL FOR PAPERS Stefan Esser (Mar 01)
REMINDER: Month of PHP Security 2010 - CALL FOR PAPERS - Only 3 weeks left Stefan Esser (Mar 23)
Steffen Joeris
[SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting Steffen Joeris (Mar 10)
[SECURITY] [DSA 2025-1] New icedove packages fix several vulnerabilities Steffen Joeris (Mar 31)
[SECURITY] [DSA 2023-1] New curl packages fix arbitrary code execution Steffen Joeris (Mar 29)
Steve Shockley
Re: Todd Miller Sudo local root exploit discovered by Slouching Steve Shockley (Mar 05)
thomas () syscan org
SyScan'10 CFP thomas () syscan org (Mar 15)
Tim Brown
Re: [Full-disclosure] Medium security hole in Varnish reverse proxy Tim Brown (Mar 30)
Medium security hole in Varnish reverse proxy Tim Brown (Mar 29)
Tom Yu
MITKRB5-SA-2010-002 denial of service in SPNEGO [CVE-2010-0628 VU#839413] Tom Yu (Mar 23)
Trustwave Advisories
Trustwave's SpiderLabs Security Advisory TWSL2010-002 Trustwave Advisories (Mar 31)
Veal, Richard
RE: NSOADV-2010-004: McAfee LinuxShield remote/local code execution Veal, Richard (Mar 03)
Veg
Re: IE 6.0 - Local Crash Exploit Veg (Mar 23)
villys777
CVE-2010-0188 Exploit Code villys777 (Mar 15)
VMware Security Team
VMSA-2010-0005 VMware products address vulnerabilities in WebAccess VMware Security Team (Mar 30)
VMSA-2010-0004 ESX Service Console and vMA third party updates VMware Security Team (Mar 04)
VUPEN Security Research
VUPEN Security Research - Microsoft Office Excel Record Processing Code Execution Vulnerability VUPEN Security Research (Mar 10)
VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability VUPEN Security Research (Mar 12)
Williams, James K
CA20100304-01: Security Notice for CA SiteMinder Williams, James K (Mar 04)
ZDI Disclosures
ZDI-10-032: SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability ZDI Disclosures (Mar 16)
ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability ZDI Disclosures (Mar 09)
ZDI-10-023: Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability ZDI Disclosures (Mar 02)
ZDI-10-024: Novell eDirectory SOAP Request Parsing Denial of Service Vulnerability ZDI Disclosures (Mar 02)
ZDI-10-026: Hewlett-Packard OVPI helpmanager Servlet Remote Code Execution Vulnerability ZDI Disclosures (Mar 10)
ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability ZDI Disclosures (Mar 12)
ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability ZDI Disclosures (Mar 12)
ZDI-10-030: Apple WebKit CSS run-in Attribute Rendering Remote Code Execution Vulnerability ZDI Disclosures (Mar 16)
ZDI-10-031: Apple Webkit Blink Event Dangling Pointer Remote Code Execution Vulnerability ZDI Disclosures (Mar 16)
ZDI-10-022: IBM Informix librpc.dll Multiple Remote Code Execution Vulnerabilities ZDI Disclosures (Mar 02)
ZDI-10-029: Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability ZDI Disclosures (Mar 15)