Bugtraq: by date

• RSS Feed
• About List
• All Lists

Previous period

Next period

130 messages starting May 01 13 and ending May 30 13
Date index | Thread index | Author index

Wednesday, 01 May

[ MDVSA-2013:159 ] clamav security
Unchecked Buffer in Microchip TCP/IP Stack Could Allow Remote Code Execution az . bugreport . subscriber
[HITB-Announce] #HITB2013KUL Call for Papers Hafez Kamal
SQL Injection in b2evolution advisory
Multiple Cross-Site Scripting (XSS) vulnerabilities in GetSimple CMS advisory

Thursday, 02 May

WordPress Plugin: Advanced XML Reader v0.3.4 XXE Vulnerability admin
NGS00423 Patch Notification: Oracle Retail Invoice Manager SQL Injection NCC Group Research
NGS00422 Patch Notification: Oracle Retail Integration Bus Manager Directory Traversal NCC Group Research
NGS00416 Patch Notification: Oracle 11g TNS listener remote Invalid Pointer Read (pre-auth) NCC Group Research
NGS00415 Patch Notification: Oracle 11g TNS listener remote Null Pointer Dereference (pre-auth) NCC Group Research
[SECURITY] [DSA 2664-1] stunnel4 security update Salvatore Bonaccorso
ESA-2013-034: EMC Avamar Improper Authorization vulnerability Security Alert
ESA-2013-028: EMC NetWorker Elevation of Privilege Vulnerability Security Alert
ESA-2013-035: EMC Avamar Client Improper Certificate Validation Vulnerability Security Alert

Friday, 03 May

[ MDVSA-2013:160 ] phpmyadmin security
VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 "Scroll" Use-after-free (MS13-028) VUPEN Security Research
VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 "CDisplayPointer" Use-after-free (MS13-028) VUPEN Security Research

Monday, 06 May

Vulnerability in Microsoft Security Essentials <v4.2 Stefan Kanthak
Multiple buffer overflows on Huawei SNMPv3 service roberto . paleari
Multiple Vulnerabilities in D-Link DSL-320B devnull
[SE-2012-01] New security vulnerabilities and broken fixes in IBM Java Security Explorations
VULNERABLE and COMPLETELY outdated 3rd-party libraries/components used in 3CX Phone 6 Stefan Kanthak
ESA-2013-015: RSA Archer® GRC Multiple Vulnerabilities Security Alert
[ MDVSA-2013:161 ] java-1.7.0-openjdk security
Apache VCL improper input validation Josh Thompson

Tuesday, 07 May

SEC Consult SA-20130507-0 :: Multiple vulnerabilities in NetApp OnCommand System Manager SEC Consult Vulnerability Lab

Wednesday, 08 May

[ MDVSA-2013:162 ] glibc security
[ MDVSA-2013:163 ] glibc security
Cross-Site Request Forgery (CSRF) in UMI.CMS advisory
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified Customer Voice Portal Software Cisco Systems Product Security Incident Response Team
[2.0 Update] Cisco Security Advisory: Cisco Prime Data Center Network Manager Remote Command Execution Vulnerability Cisco Systems Product Security Incident Response Team
[security bulletin] HPSBUX02876 SSRT101148 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS) security-alert

Thursday, 09 May

[security bulletin] HPSBMU02786 SSRT100877 rev.2 - HP System Management Homepage (SMH) Running on Linux, Windows, and VMware ESX, Remote Unauthorized Access, Disclosure of Information, Data Modification, Denial of Service (DoS), Execution of Arbitrary Code security-alert
Vulnerability in "Fujitsu Desktop Update" (for Windows) Stefan Kanthak
ESA-2013-037: EMC AlphaStor Buffer Overflow Vulnerability Security Alert
Re: Vulnerabilities in Windows 8 Professional x64 factory preinstallation of Fujitsu Lifebook A512 [continued] Stefan Kanthak
ESA-2013-021: EMC Documentum Multiple Vulnerabilities Security Alert
DDIVRT-2013-53 Actuate 'ActuateJavaComponent' Multiple Vulnerabilities ddivulnalert

Friday, 10 May

CFP: Hacktivity 2013, October 11-12, Budapest, Hungary cfp
CVE-2013-2071 Request mix-up if AsyncListener method throws RuntimeException Mark Thomas
[SECURITY] CVE-2013-2067 Session fixation with FORM authenticator Mark Thomas
[SECURITY] CVE-2012-3544 Chunked transfer encoding extension size is not limited Mark Thomas
ESA-2013-031: RSA® Authentication Agent Cross-Site Scripting (XSS) Vulnerability Security Alert

Monday, 13 May

WASC Announcement: Static Analysis Technologies Evaluation Criteria Published announcements
[SECURITY] [DSA 2666-1] xen security update Salvatore Bonaccorso
[SECURITY] [DSA 2667-1] mysql-5.5 security update Moritz Muehlenhoff
[ MDVSA-2013:164 ] mesa security
[RT-SA-2013-001] Advisory: Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution RedTeam Pentesting GmbH
Wireless Disk PRO v2.3 iOS - Multiple Web Vulnerabilities Vulnerability Lab
Wifi Photo Transfer 2.1 & 1.1 PRO - Multiple Vulnerabilities Vulnerability Lab
Wifi Album v1.47 iOS - Command Injection Vulnerability Vulnerability Lab
Wireless Photo Access 1.0.10 iOS - Multiple Vulnerabilities Vulnerability Lab
SimpleTransfer 2.2.1 - Command Injection Vulnerabilities Vulnerability Lab
File Lite 3.3 & 3.5 PRO iOS - Multiple Web Vulnerabilities Vulnerability Lab

Wednesday, 15 May

[SECURITY] [DSA 2668-1] linux-2.6 security update dann frazier
[security bulletin] HPSBUX02859 SSRT101144 rev.3 - HP-UX Running XNTP, Remote Denial of Service (DoS) and Execution of Arbitrary Code security-alert
[ MDVSA-2013:165 ] firefox security
Multiple Vulnerabilities in Exponent CMS advisory
Cisco Security Advisory: Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team

Thursday, 16 May

[SECURITY] [DSA 2669-1] linux security update dann frazier
[slackware-security] mozilla-firefox (SSA:2013-135-01) Slackware Security Team
[slackware-security] mozilla-thunderbird (SSA:2013-135-02) Slackware Security Team
ESA-2013-041: EMC VNX and Celerra Control Station Elevation of Privilege Vulnerability Security Alert
ESA-2013-029: RSA SecurID Sensitive Information Disclosure Vulnerability Security Alert

Friday, 17 May

APPLE-SA-2013-05-16-1 iTunes 11.0.3 Apple Product Security
[slackware-security] mozilla-thunderbird x86_64 packages (SSA:2013-136-01) Slackware Security Team
[slackware-security] ruby (SSA:2013-136-02) Slackware Security Team
CONFidence - May, 28-29, Krakow, Poland - a conference adventure that never stops! Sławomir Jabs

Tuesday, 21 May

Static analysis tool exposition (SATE) V Call for participation aure
Defense in depth -- the Microsoft way Stefan Kanthak
Revision of "IPv6 Stable Privacy Addresses" (Fwd: I-D Action: draft-ietf-6man-stable-privacy-addresses-07.txt) Fernando Gont
CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products (ViPNet Client\Coordinator, SafeDisk, Personal Firewall) chudakovma
Sony PS3 Firmware v4.31 - Code Execution Vulnerability Vulnerability Lab
[slackware-security] kernel (SSA:2013-140-01) Slackware Security Team

Wednesday, 22 May

[ MDVSA-2013:166 ] krb5 security
VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 VML Remote Integer Overflow (MS13-037 / Pwn2Own) VUPEN Security Research
VUPEN Security Research - Microsoft Internet Explorer 10-9 Object Confusion Sandbox Bypass (MS13-037 / Pwn2Own) VUPEN Security Research
Trend Micro DirectPass 1.5.0.1060 - Multiple Vulnerabilities Vulnerability Lab
[waraxe-2013-SA#104] - Multiple Vulnerabilities in Spider Event Calendar Wordpress Plugin come2waraxe
[waraxe-2013-SA#105] - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin come2waraxe

Thursday, 23 May

[SECURITY] [DSA 2672-1] kfreebsd-9 security update Florian Weimer
APPLE-SA-2013-05-22-1 QuickTime 7.7.4 Apple Product Security
[ANN] Struts 2.3.14.1 GA (fast track | security) Lukasz Lenart
SEC Consult SA-20130523-0 :: JavaScript Execution in IBM WebSphere DataPower Services SEC Consult Vulnerability Lab
CFP: IEEE SafeConfig: 6th Symposium on Security Analytics and Automation James Joshi

Friday, 24 May

[SECURITY] [DSA 2677-1] libxrender security update Moritz Muehlenhoff
[SECURITY] [DSA 2678-1] mesa security update Moritz Muehlenhoff
[SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update Moritz Muehlenhoff
[SECURITY] [DSA 2680-1] libxt security update Moritz Muehlenhoff
[SECURITY] [DSA 2681-1] libxcursor security update Moritz Muehlenhoff
[SECURITY] [DSA 2682-1] libxext security update Moritz Muehlenhoff
[SECURITY] [DSA 2683-1] libxi security update Moritz Muehlenhoff
[SECURITY] [DSA 2684-1] libxrandr security update Moritz Muehlenhoff
[SECURITY] [DSA 2685-1] libxp security update Moritz Muehlenhoff
[SECURITY] [DSA 2686-1] libxcb security update Moritz Muehlenhoff
[SECURITY] [DSA 2687-1] libfs security update Moritz Muehlenhoff
[SECURITY] [DSA 2688-1] libxres security update Moritz Muehlenhoff
[SECURITY] [DSA 2689-1] libxtst security update Moritz Muehlenhoff
[SECURITY] [DSA 2676-1] libxfixes security update Moritz Muehlenhoff
[SECURITY] [DSA 2675-1] libxvmc security update Moritz Muehlenhoff
[SECURITY] [DSA 2674-1] libxv security update Moritz Muehlenhoff
[SECURITY] [DSA 2673-1] libdmx security update Moritz Muehlenhoff
[SECURITY] [DSA 2690-1] libxxf86dga security update Moritz Muehlenhoff
[SECURITY] [DSA 2691-1] libxinerama security update Moritz Muehlenhoff
[SECURITY] [DSA 2692-1] libxxf86vm security update Moritz Muehlenhoff
[security bulletin] HPSBUX02881 SSRT101189 rev.1 - HP-UX Directory Server, Remote Disclosure of Information security-alert
[SECURITY] [DSA 2675-2] libxvmc regression update Thijs Kinkhorst

Monday, 27 May

[SECURITY] [DSA 2693-1] libx11 security update Raphael Geissert
DC4420 - London DEFCON - May meet - Tuesday 28th May 2013 Tony Naggs
GreHack 2013 - 2nd Call For Papers - November 15, Grenoble, France F. Duchene
[ MDVSA-2013:167 ] openvpn security
[ MDVSA-2013:168 ] python-httplib2 security
Barracuda SSL VPN 680 2.2.2.203 - Redirect Web Vulnerability Vulnerability Lab

Wednesday, 29 May

KDE Paste Applet Michael Samuel
ESA-2013-040: RSA® Authentication Manager 8.0 Multiple Vulnerabilities Security Alert
Monkey HTTPD 1.1.1 - Denial of Service Vulnerability dougtko
CA20130528-01: Security Notice for CA Process Automation (CA PAM) Kotas, Kevin J
[ MDVSA-2013:169 ] socat security
[ MDVSA-2013:170 ] socat security
RUCKUS ADVISORY ID 031813-1: Unauthenticated TCP tunneling on Ruckus devices via SSH server process Ruckus Product Security Team
RUCKUS ADVISORY ID 031813-2: User authentication bypass vulnerability in ZoneDirector administrative web interface Ruckus Product Security Team
CORE-2013-0302 - Zavio IP Cameras multiple vulnerabilities CORE Security Technologies Advisories
CORE-2013-0322 - MayGion IP Cameras multiple vulnerabilities CORE Security Technologies Advisories
CORE-2013-0318 - TP-Link IP Cameras Multiple Vulnerabilities CORE Security Technologies Advisories
[SECURITY][CVE-2013-2765][ModSecurity] Remote Null Pointer Dereference yjaaidi

Thursday, 30 May

[SECURITY] [DSA 2695-1] chromium-browser security update Michael Gilbert
[SECURITY] [DSA 2696-1] otrs2 security update Giuseppe Iuculano
Re: [oss-security] KDE Paste Applet Kurt Seifried
[SECURITY] [DSA 2697-1] gnutls26 security update Florian Weimer
[security bulletin] HPSBPI02869 SSRT100936 rev.2 - HP LaserJet MFP Printers, HP Color LaserJet MFP Printers, Certain HP LaserJet Printers, Remote Unauthorized Access to Files security-alert

Previous period

Next period