Full Disclosure: by thread

Previous period

Next period

386 messages starting Nov 01 09 and ending Nov 30 09
Date index | Thread index | Author index

Dark side of bookmarks MustLive (Nov 01)
- <Possible follow-ups>
- Re: Dark side of bookmarks Memisyazici, Aras (Nov 02)
  - Re: Dark side of bookmarks S/U/N (Nov 02)
  - Re: Dark side of bookmarks MustLive (Nov 06)
[SECURITY] [DSA 1924-1] New mahara packages fix several vulnerabilities Steffen Joeris (Nov 01)
[SECURITY] [DSA 1925-1] New proftpd-dfsg packages fix SSL certificate verification weakness Steffen Joeris (Nov 01)
KC Security Services . Nikolaos Rangos (Nov 01)
Re: Hash Pete Licoln (Nov 02)
- Re: Hash Fionnbharr (Nov 02)
  - Re: Hash Anders Klixbull (Nov 06)
    - Re: Hash Pete Licoln (Nov 08)
    - Re: Hash Fionnbharr (Nov 08)
KCSEC-00000001-ServUWebClient Nikolaos Rangos (Nov 02)
- Re: KCSEC-00000001-ServUWebClient Megumi Yanagishita (Nov 03)
Reminder for DeepSec 2009 Conference DeepSec Conference - Announcement (Nov 02)
NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control buffer overflow NSO Research (Nov 02)
[USN-850-3] poppler vulnerabilities Marc Deslauriers (Nov 02)
[ MDVSA-2009:292 ] wireshark security (Nov 03)
ZDI-09-075: Novell eDirectory LDAP Null Base DN Denial of Service Vulnerability ZDI Disclosures (Nov 03)
QuahogCon Call for Papers QuahogCon (Nov 03)
[ MDVSA-2009:293 ] squidGuard security (Nov 03)
Bractus SunTrack Multiple XSS Bugs NotHugs (Nov 03)
e-Courier Tracking Site Multiple Script UserGUID Parameter XSS Bugs NotHugs (Nov 03)
How Prosecutors Wiretap Wall Street Ivan . (Nov 03)
- Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 03)
  - Re: How Prosecutors Wiretap Wall Street Holt Sorenson (Nov 03)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Gary E. Miller (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Byron Sonne (Nov 04)
  - Re: How Prosecutors Wiretap Wall Street frank^2 (Nov 03)
  - Re: How Prosecutors Wiretap Wall Street Kurt Buff (Nov 03)
  - Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Byron Sonne (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street mrx (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Ivan . (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Gary E. Miller (Nov 04)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 04)
- <Possible follow-ups>
- Re: How Prosecutors Wiretap Wall Street Chris (Nov 05)
  - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 05)
    - Re: How Prosecutors Wiretap Wall Street Ivan . (Nov 05)
    - Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Gary E. Miller (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Rohit Patnaik (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Rohit Patnaik (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 06)
    - Re: How Prosecutors Wiretap Wall Street Rohit Patnaik (Nov 07)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
    - Re: How Prosecutors Wiretap Wall Street Valdis . Kletnieks (Nov 07)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 07)
- Re: How Prosecutors Wiretap Wall Street Chris (Nov 05)
- Re: How Prosecutors Wiretap Wall Street Chris (Nov 05)
  - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 06)
- Re: How Prosecutors Wiretap Wall Street Chris (Nov 05)
- Re: How Prosecutors Wiretap Wall Street mikelitoris (Nov 07)
  - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 08)
    - Re: How Prosecutors Wiretap Wall Street Glenn.Everhart (Nov 09)
    - Re: How Prosecutors Wiretap Wall Street Paul Schmehl (Nov 09)
    - Re: How Prosecutors Wiretap Wall Street Glenn.Everhart (Nov 10)
    - Message not available
    - Re: How Prosecutors Wiretap Wall Street dramacrat (Nov 09)
    - Re: How Prosecutors Wiretap Wall Street Glenn.Everhart (Nov 10)
Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 04)
- Re: Apple ptrace panic PoC - R.I.P str0ke webDEViL (Nov 04)
  - Re: Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 04)
    - Re: Apple ptrace panic PoC - R.I.P str0ke BlackHawk (Nov 04)
    - Re: Apple ptrace panic PoC - R.I.P str0ke frank^2 (Nov 04)
    - Re: Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 04)
    - Re: Apple ptrace panic PoC - R.I.P str0ke frank^2 (Nov 04)
    - Re: Apple ptrace panic PoC - R.I.P str0ke Micheal Turner (Nov 04)
    - Re: Apple ptrace panic PoC - R.I.P str0ke Jubei Trippataka (Nov 04)
- <Possible follow-ups>
- Re: Apple ptrace panic PoC - R.I.P str0ke sunjester (Nov 05)
Interactive HTTP GET and POST Shell -- R.I.P str0ke malformation (Nov 04)
Secunia Research: IBM Tivoli Storage Manager CAD Service Buffer Overflow Secunia Research (Nov 04)
AST-2009-008: SIP responses expose valid usernames Asterisk Security Team (Nov 04)
AST-2009-009: Cross-site AJAX request vulnerability Asterisk Security Team (Nov 04)
Context IS Advisory - Autocomplete Data Theft in Mozilla Firefox Context IS - Disclosure (Nov 04)
[SECURITY] [DSA 1926-1] New TYPO3 packages fix several vulnerabilities Thijs Kinkhorst (Nov 04)
Exp1oit for Serv-U 9.0.0.5 new bug Megumi Yanagishita (Nov 04)
[Bkis-12-2009] eoCMS SQL injection vulnerability - Bkis Report Bkis (Nov 04)
CORE-2009-0912: Blender .blend Project Arbitrary Command Execution CORE Security Technologies Advisories (Nov 05)
[USN-854-1] GD library vulnerabilities Marc Deslauriers (Nov 05)
[USN-855-1] libhtml-parser-perl vulnerability Marc Deslauriers (Nov 05)
SSL/TLS MiTM PoC Pavel Kankovsky (Nov 05)
- Re: SSL/TLS MiTM PoC Anıl Kurmuş (Nov 11)
[ MDVSA-2009:294 ] firefox security (Nov 05)
Using Blended Browser Threats involving Chrome to steal files on your computer Inferno (Nov 05)
ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-077: Sun Java Web Start Arbitrary Command Execution Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-080: Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability ZDI Disclosures (Nov 06)
ZDI-09-081: Hewlett-Packard Power Manager Administration Web Server Stack Overflow Vulnerability ZDI Disclosures (Nov 06)
CONFidence 2.0, schedule online, last time to register. Andrzej Targosz (Nov 06)
[SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities dann frazier (Nov 06)
[SECURITY] [DSA 1928-1] New Linux 2.6.24 packages fix several vulnerabilities dann frazier (Nov 06)
[SECURITY] [DSA 1929-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier (Nov 06)
Argentinean Arnet isp webmail reallyanonymous (Nov 06)
- Re: Argentinean Arnet isp webmail Ing. Juan Perez (Nov 06)
MySQL trick for SQL injection Vladimir Vorontsov (Nov 06)
- Re: MySQL trick for SQL injection Paul Schmehl (Nov 06)
  - Re: MySQL trick for SQL injection Valdis . Kletnieks (Nov 06)
    - Re: MySQL trick for SQL injection Tim (Nov 06)
    - Re: MySQL trick for SQL injection Paul Schmehl (Nov 06)
[ GLSA 200911-01 ] Horde: Multiple vulnerabilities Alex Legler (Nov 06)
How to receive SPAM mail YK (Nov 06)
- Re: How to receive SPAM mail Michael Holstein (Nov 06)
  - Re: How to receive SPAM mail dramacrat (Nov 07)
Linux 2.6.x fs/pipe.c local root exploit (CVE-2009-3547) Edward D. Teach (Nov 07)
[SECURITY] [DSA 1930-1] New drupal6 packages fix several vulnerabilities Steffen Joeris (Nov 07)
[SECURITY] [DSA 1931-1] New NSPR packages fix several vulnerabilities Moritz Muehlenhoff (Nov 08)
[SECURITY] [DSA 1932-1] New pidgin packages fix arbitrary code execution Moritz Muehlenhoff (Nov 08)
[ MDVSA-2009:295 ] apache security (Nov 08)
DoS vulnerability in Internet Explorer MustLive (Nov 09)
- <Possible follow-ups>
- Re: DoS vulnerability in Internet Explorer Haveto Perish (Nov 10)
Dark home MustLive (Nov 09)
Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability Cisco Systems Product Security Incident Response Team (Nov 09)
[SECURITY] [DSA 1933-1] New cups packages fix cross-site scripting Steffen Joeris (Nov 10)
[USN-856-1] CUPS vulnerability Marc Deslauriers (Nov 10)
[USN-857-1] Qt vulnerabilities Marc Deslauriers (Nov 10)
ZDI-09-082: Microsoft Office Excel PivotTable Cache Record Parsing Memory Corruption Vulnerability ZDI Disclosures (Nov 10)
ZDI-09-083: Microsoft Excel Shared Feature Header Pointer Offset Memory Corruption Vulnerability ZDI Disclosures (Nov 10)
iDefense Security Advisory 11.10.09: Microsoft Word FIB Processing Stack Buffer Overflow Vulnerability iDefense Labs (Nov 10)
iDefense Security Advisory 11.10.09: Microsoft Excel FEATHEADER Record Memory Corruption Vulnerability iDefense Labs (Nov 10)
Spying on Americans: Obama Endorses Bush Era Warrantless Wiretapping Ivan . (Nov 10)
Why the FBI, JTTF (Joint Terrorism Task Force) and DOJ policies are destined to backfire Jack Bauer [Joint Terrorism Task Force] (Nov 10)
UK surveillance plan to go ahead Ivan . (Nov 10)
Windows 7 , Server 2008R2 Remote Kernel Crash laurent gaffie (Nov 11)
TPTI-09-07: Microsoft Windows License Logging Service Heap Corruption Vulnerability dvlabs (Nov 11)
Re: CORE-2009-0912: Blender .blend Project Arbitrary Command Execution s j (Nov 11)
List Charter John Cartwright (Nov 11)
[USN-853-2] Firefox and Xulrunner regression Jamie Strandboge (Nov 11)
HP curiosity and vulnerability Bugs NotHugs (Nov 11)
WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Dawid Golunski (Nov 12)
- Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Milan Berger (Nov 12)
  - Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Martin Aberastegue (Nov 12)
    - Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Martin Aberastegue (Nov 12)
    - Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution g30rg3_x (Nov 12)
  - Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Vincent Guasconi (Nov 12)
  - Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution Moritz Naumann (Nov 12)
    - Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution YK (Nov 14)
Re: WordPress Vladimir Vorontsov (Nov 12)
Microsoft Patents the "sudo" command Leandro Malaquias (Nov 12)
- Re: Microsoft Patents the "sudo" command Todd C. Miller (Nov 12)
  - Re: Microsoft Patents the "sudo" command Valdis . Kletnieks (Nov 12)
    - Re: Microsoft Patents the "sudo" command Todd C. Miller (Nov 12)
    - Re: Microsoft Patents the "sudo" command Leandro Malaquias (Nov 13)
    - Re: Microsoft Patents the "sudo" command Larry Seltzer (Nov 13)
  - Re: Microsoft Patents the "sudo" command McGhee, Eddie (Nov 12)
[USN-858-1] OpenLDAP vulnerability Marc Deslauriers (Nov 12)
Secunia Research: Gimp BMP Image Parsing Integer Overflow Vulnerability Secunia Research (Nov 12)
Cryptome posts Microsoft COFEE forensic toolkit Gary McKinnon [SOLO] (Nov 12)
JTTF/FBI informant "snitching" on security professionals in Bay Area Jacob Appelbaum [ioerror] (Nov 12)
rPSA-2009-0142-1 httpd mod_ssl rPath Update Announcements (Nov 12)
rPSA-2009-0143-1 util-linux util-linux-extras rPath Update Announcements (Nov 12)
rPSA-2009-0144-1 apr-util rPath Update Announcements (Nov 12)
rPSA-2009-0145-1 samba samba-client samba-server samba-swat rPath Update Announcements (Nov 12)
rPSA-2009-0142-2 httpd mod_ssl rPath Update Announcements (Nov 12)
PHP 5.2.11/5.3.0 Multiple Vulnerabilities Maksymilian Arciemowicz (Nov 13)
MS09-053 Tomoki Sanaki (Nov 13)
Re: Full-Disclosure Digest, Vol 57, Issue 17 RandallM (Nov 13)
- <Possible follow-ups>
- Re: Full-Disclosure Digest, Vol 57, Issue 17 hmarti2 (Nov 15)
[ MDVSA-2009:296 ] gimp security (Nov 13)
OS Commerce authentication bypass lsi (Nov 13)
- Re: OS Commerce authentication bypass (ANONYMOUS REMOTE CODE EXECUTION) Tim (Nov 13)
  - Re: OS Commerce authentication bypass (ANONYMOUS REMOTE CODE EXECUTION) lsi (Nov 13)
    - Re: OS Commerce authentication bypass (ANONYMOUS REMOTE CODE EXECUTION) Tim (Nov 13)
[USN-859-1] OpenJDK vulnerabilities Kees Cook (Nov 13)
[ MDVSA-2009:298 ] xine-lib security (Nov 13)
[ MDVSA-2009:297 ] ffmpeg security (Nov 13)
[ MDVSA-2009:299 ] xine-lib security (Nov 13)
Re: [EquipoFraude] Full Path Disclosure in most wordpress' plugins [?] Zerial. (Nov 14)
Twitter "swine flu" worm Rosario Valotta (Nov 15)
[ MDVSA-2009:300 ] apache-conf security (Nov 15)
George Bush's immature, self-styled approach at counterterrorism is an intelligence nightmare Jacob Appelbaum [ioerror] (Nov 15)
Troopers 2010 security conference, CfP Enno Rey (Nov 16)
[ MDVSA-2009:158-1 ] pango security (Nov 16)
[ MDVSA-2009:158-2 ] pango security (Nov 16)
Re: George Bush's immature self-styled approach at counterterrorism is an intelligence nightmare Jacob Appelbaum (Nov 16)
Microsoft confirms first Windows 7 zero-day bug Ivan . (Nov 16)
- Re: Microsoft confirms first Windows 7 zero-day bug BMF (Nov 16)
iAWACS 2010 CFP Anthony Desnos (Nov 17)
[SECURITY] [DSA-1934-1] New apache2 packages fix several issues Stefan Fritsch (Nov 17)
Metasploit Framework 3.3 Released HD Moore (Nov 17)
Secunia Research: Gimp PSD Image Parsing Integer Overflow Vulnerability Secunia Research (Nov 17)
The cyber security intelligence community will never be the same Sam Haldorf (Nov 17)
- Re: The cyber security intelligence community will never be the same BMF (Nov 17)
[SECURITY] [DSA 1935-1] New gnutls23/gnutls26 packages fix SSL certificate verification weakness Giuseppe Iuculano (Nov 17)
FDSpam. EFFector 22.33: International Activists Launch New Website to Gather and Share Copyright Knowledge George Parr (Nov 17)
[SECURITY] [DSA 1936-1] New libgd2 packages fix several vulnerabilities Giuseppe Iuculano (Nov 17)
1/14 autonomous (Nov 17)
CORE-2009-0814: HP Openview NNM 7.53 Invalid DB Error Code vulnerability CORE Security Technologies Advisories (Nov 17)
[ GLSA 200911-02 ] Sun JDK/JRE: Multiple vulnerabilites Alex Legler (Nov 17)
SUSE Security Announcement: openssl (SUSE-SA:2009:057) Thomas Biege (Nov 18)
DEFCON London - DC4420 - NO MEETING this Thursday! 19th November 2009 Major Malfunction (Nov 18)
TLS / SSLv3 vulnerability explained (DRAFT) Thierry Zoller (Nov 18)
Secunia Research: RhinoSoft Serv-U TEA Decoding Buffer Overflow Secunia Research (Nov 18)
CORE-2009-1027: IBM SolidDB invalid error code vulnerability CORE Security Technologies Advisories (Nov 18)
Impersonation is a against the law. kaibelf (Nov 18)
- Re: Impersonation is a against the law. Jan G.B. (Nov 19)
- Re: Impersonation is a against the law. Valdis . Kletnieks (Nov 19)
- Re: Impersonation is a against the law. mrx (Nov 19)
- Re: Impersonation is a against the law. Leandro Quibem Magnabosco (Nov 19)
  - Re: Impersonation is a against the law. yaroslav (Nov 19)
- <Possible follow-ups>
- Re: Impersonation is a against the law. full-disclosure (Nov 27)
[USN-860-1] Apache vulnerabilities Jamie Strandboge (Nov 18)
AssetsSoSimple supplier_admin.php Supplier Field XSS Bugs NotHugs (Nov 19)
Auto Manager admin.cgi Multiple Field XSS Bugs NotHugs (Nov 19)
Foxit Reader vulnerability has been fixed Grace C. Wu (Nov 19)
Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Sam Haldorf (Nov 19)
- Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Michael Holstein (Nov 19)
  - Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. mrx (Nov 19)
    - Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. dramacrat (Nov 19)
    - Message not available
    - Message not available
    - Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. mrx (Nov 19)
    - Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Sam Haldorf (Nov 19)
- <Possible follow-ups>
- Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. netinfinity (Nov 19)
  - Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Valdis . Kletnieks (Nov 20)
    - Re: Meet Kurt Greenbaum, Director of Social Media, St. Louis Post-Dispatch, Reports commenter to employer. Michael Holstein (Nov 20)
SecurityReason: SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 19)
SecurityReason: K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 19)
SecurityReason: Opera 10.01 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 19)
SecurityReason: KDE KDELibs 4.3.3 Remote Array Overrun (Arbitrary code execution) Maksymilian Arciemowicz (Nov 19)
PHP "multipart/form-data" denial of service Bogdan Calin (Nov 20)
- Re: PHP "multipart/form-data" denial of service Moritz Naumann (Nov 24)
  - Re: PHP "multipart/form-data" denial of service Bogdan Calin (Nov 25)
Pussy and the right to free speech. yuri . nate (Nov 20)
- Re: Pussy and the right to free speech. Sam Haldorf (Nov 20)
VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components VMware Security Team (Nov 20)
ZDI-09-085: Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability ZDI Disclosures (Nov 20)
[ MDVSA-2009:301 ] kernel security (Nov 20)
[ MDVSA-2009:302 ] php security (Nov 21)
[SECURITY] [DSA 1937-1] New gforge packages fix cross-site scripting Steffen Joeris (Nov 21)
Vulnerabilities in plugins for WordPress MustLive (Nov 21)
HITB Security Conference 2010 Dubai Call for Papers Hafez Kamal (Nov 22)
Millions of PDF invisibly embedded with your internal disk paths Inferno (Nov 22)
Re: Millions of PDF invisibly embedded with your internal disk paths Juha-Matti Laurio (Nov 22)
- Re: Millions of PDF invisibly embedded with your internal disk paths Inferno (Nov 23)
Climategate: how the MSM reported the greatest scandal in modern science – Telegraph Blogs Ivan . (Nov 22)
ICMPv4/IP fuzzer prototype. laurent gaffie (Nov 22)
- Re: ICMPv4/IP fuzzer prototype. Andrew Farmer (Nov 22)
  - Message not available
    - Fwd: ICMPv4/IP fuzzer prototype. laurent gaffie (Nov 22)
[Bkis-13-2009] e107 Multiple Vulnerabilities Bkis (Nov 22)
[SECURITY] [DSA 1938-1] New php-mail packages fix insufficient input sanitising Steffen Joeris (Nov 23)
CORE-2009-0908: Autodesk SoftImage Scene TOC Arbitrary Command Execution CORE Security Technologies Advisories (Nov 23)
CORE-2009-0909: Autodesk 3DS Max Application Callbacks Arbitrary Command Execution CORE Security Technologies Advisories (Nov 23)
CORE-2009-0910: Autodesk Maya Script Nodes Arbitrary Command Execution CORE Security Technologies Advisories (Nov 23)
Executing arbitrary PHP code on OpenX <= 2.8.1 Moritz Naumann (Nov 24)
New Paper: MitM Attacks against the chipTAN comfort Online Banking System RedTeam Pentesting GmbH (Nov 24)
- Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Thierry Zoller (Nov 24)
  - Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Nick FitzGerald (Nov 24)
  - Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Patrick Hof (Nov 24)
  - Re: New Paper: MitM Attacks against the chipTAN comfort Online Banking System Patrick Hof (Nov 24)
[USN-861-1] libvorbis vulnerabilities Marc Deslauriers (Nov 24)
Quick.Cart and Quick.CMS CSRF Vulnerabilities Alice Kaerast (Nov 24)
Remote DoS condition in harbour.pl dramacrat (Nov 24)
Hackers to CSOs (H2CSO) - Free Online Subscription Rodrigo Rubira Branco (BSDaemon) (Nov 24)
UK jails schizophrenic for refusal to decrypt files Ivan . (Nov 24)
- Re: UK jails schizophrenic for refusal to decrypt files Gregor Schneider (Nov 25)
  - Re: UK jails schizophrenic for refusal to decrypt files maxigas (Nov 25)
  - Re: UK jails schizophrenic for refusal to decrypt files Stephen Mullins (Nov 30)
    - Re: UK jails schizophrenic for refusal to decrypt files Nick FitzGerald (Nov 30)
Vulnerabilities in WP-Cumulus for WordPress MustLive (Nov 25)
[SECURITY] [DSA 1939-1] New libvorbis packages fix several vulnerabilities Giuseppe Iuculano (Nov 25)
rPSA-2009-0154-1 httpd mod_ssl rPath Update Announcements (Nov 25)
rPSA-2009-0155-1 httpd mod_ssl rPath Update Announcements (Nov 25)
rPSA-2009-0156-1 sun-jdk sun-jre rPath Update Announcements (Nov 25)
Some shit going on in seclist Tyler Durten (Nov 25)
- Re: Some shit going on in seclist yaroslav (Nov 25)
- Re: Some shit going on in seclist Gregor Schneider (Nov 25)
- Re: Some shit going on in seclist Michael Holstein (Nov 25)
- Re: Some shit going on in seclist Valdis . Kletnieks (Nov 26)
more on that Tyler Durten (Nov 25)
- Re: more on that Anders Klixbull (Nov 25)
- Re: more on that Andrew Farmer (Nov 25)
  - Re: more on that dramacrat (Nov 25)
9/11 pager messages released by Wikileaks Juha-Matti Laurio (Nov 25)
[ GLSA 200911-03 ] UW IMAP toolkit: Multiple vulnerabilities Robert Buchholz (Nov 25)
[ GLSA 200911-04 ] dstat: Untrusted search path Robert Buchholz (Nov 25)
- [resent] [ GLSA 200911-04 ] dstat: Untrusted search path Robert Buchholz (Nov 25)
[ GLSA 200911-05 ] Wireshark: Multiple vulnerabilities Alex Legler (Nov 25)
Onapsis Research: SAP Security In-Depth Vol. I Onapsis Research (Nov 25)
nasty infection from following link if anyone is interested RandallM (Nov 25)
- Message not available
  - Re: {Spam?} [funsec] nasty infection from following link if anyone is interested RandallM (Nov 25)
Re: [funsec] nasty infection from following link if anyone is interested Juha-Matti Laurio (Nov 25)
- Re: [funsec] nasty infection from following link if anyone is interested Dragos Ruiu (Nov 25)
  - Re: [funsec] nasty infection from following link if anyone is interested David Alanis (Nov 26)
need advice on adtmt cookie RandallM (Nov 25)
- Re: need advice on adtmt cookie Rohit Patnaik (Nov 25)
[SECURITY] [DSA 1941-1] New poppler packages fix several vulnerabilities Moritz Muehlenhoff (Nov 25)
Cacti 0.8.7e: Multiple security issues Moritz Naumann (Nov 25)
[SECURITY] [DSA-1940-1] New php5 packages fix several issues Stefan Fritsch (Nov 26)
[ GLSA 200911-06 ] PEAR Net_Traceroute: Command injection Alex Legler (Nov 26)
[ MDVSA-2009:304 ] bind security (Nov 26)
[USN-862-1] PHP vulnerabilities Marc Deslauriers (Nov 26)
Facebook Police Thor (Hammer of God) (Nov 26)
- <Possible follow-ups>
- Re: Facebook Police netinfinity (Nov 27)
  - Re: Facebook Police Rohit Patnaik (Nov 27)
    - Re: Facebook Police Thor (Hammer of God) (Nov 27)
    - Message not available
    - Message not available
    - Re: Facebook Police William Wylde (Nov 28)
    - Re: Facebook Police glenn.everhart (Nov 30)
    - Re: Facebook Police rogue (Nov 30)
    - Re: Facebook Police Thor (Hammer of God) (Nov 30)
    - Re: Facebook Police Michael Holstein (Nov 30)
    - Re: Facebook Police Valdis . Kletnieks (Nov 30)
Good thing we have EFF... Thor (Hammer of God) (Nov 26)
- Re: Good thing we have EFF... Thor (Hammer of God) (Nov 26)
- Re: Good thing we have EFF... Rohit Patnaik (Nov 26)
  - Re: Good thing we have EFF... Thor (Hammer of God) (Nov 26)
Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 26)
- Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability webDEViL (Nov 27)
  - Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)
    - Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Valdis . Kletnieks (Nov 27)
    - Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)
    - Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Valdis . Kletnieks (Nov 27)
    - Message not available
    - Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Ivan Security (Nov 27)
- Re: Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability Fernando Gont (Nov 27)
Good thing we have EFF... RandallM (Nov 27)
Facebook Police RandallM (Nov 27)
GCHQ supplier pans government file-sharing plans full-disclosure (Nov 27)
"funsec" as a terror cell full-disclosure (Nov 27)
- Re: "funsec" as a terror cell Valdis . Kletnieks (Nov 27)
- Re: "funsec" as a terror cell Michael Graham (Nov 30)
- <Possible follow-ups>
- Re: "funsec" as a terror cell full-disclosure (Nov 27)
  - Re: "funsec" as a terror cell Valdis . Kletnieks (Nov 27)
- Re: "funsec" as a terror cell full-disclosure (Nov 28)
  - Re: "funsec" as a terror cell Valdis . Kletnieks (Nov 28)
- Re: "funsec" as a terror cell RandallM (Nov 28)
- Re: "funsec" as a terror cell full-disclosure (Nov 28)
- Re: "funsec" as a terror cell full-disclosure (Nov 29)
Internet Stalker Steve Pheby (Nov 28)
"funsec" as a terror cell RandallM (Nov 28)
MuPDF pdf_shade4.c multiple stack-based buffer overflows Christophe Devine (Nov 28)
[ MDVSA-2009:303 ] php security (Nov 28)
Impersonation attempt of MI7 full-disclosure (Nov 29)
[ MDVSA-2009:304 ] php security (Nov 29)
[ MDVSA-2009:305 ] php security (Nov 29)
[ MDVSA-2009:306 ] dovecot security (Nov 29)
[SECURITY] [DSA 1942-1] New wireshark packages fix several vulnerabilities Moritz Muehlenhoff (Nov 29)
Symantec Online Store Hacked Ivan . (Nov 29)
- <Possible follow-ups>
- Re: Symantec Online Store Hacked full-disclosure (Nov 29)
Software developer looks at CRU code Ivan . (Nov 29)
- Re: Software developer looks at CRU code James Matthews (Nov 29)
  - Re: Software developer looks at CRU code Steve Clement (Nov 29)
  - Re: Software developer looks at CRU code Paul Schmehl (Nov 29)
- <Possible follow-ups>
- Re: Software developer looks at CRU code Ali Raheem (Nov 30)
  - Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
    - Re: Software developer looks at CRU code Valdis . Kletnieks (Nov 30)
    - Re: Software developer looks at CRU code Larry Seltzer (Nov 30)
    - Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
    - Re: Software developer looks at CRU code Rohit Patnaik (Nov 30)
    - Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
    - Re: Software developer looks at CRU code Rohit Patnaik (Nov 30)
    - Re: Software developer looks at CRU code Ivan . (Nov 30)
    - Re: Software developer looks at CRU code Paul Schmehl (Nov 30)
    - Message not available
    - Re: Software developer looks at CRU code Ivan . (Nov 30)
The Cyber War Conspiracy full-disclosure (Nov 30)
- Re: The Cyber War Conspiracy Jan G.B. (Nov 30)
- Re: The Cyber War Conspiracy Valdis . Kletnieks (Nov 30)
- Re: The Cyber War Conspiracy James Rankin (Nov 30)
- Re: The Cyber War Conspiracy Sam Haldorf (Nov 30)
Announce: RFIDIOt-1.0a released - November 2009 Adam Laurie (Nov 30)
Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others Andrea Purificato (Nov 30)
XSS vulnerabilities at 404 pages MustLive (Nov 30)
TLS / SSLv3 vulnerability explained (New ways to leverage the vulnerability) Thierry Zoller (Nov 30)
[BMSA-2009-07] Backdoor in PyForum Nam Nguyen (Nov 30)
Remote Command Execution in dotDefender Site Management John Dos (Nov 30)
[ MDVSA-2009:307 ] libtool security (Nov 30)
Fingerprinting of Apache MustLive (Nov 30)
AST-2009-010: RTP Remote Crash Vulnerability Asterisk Security Team (Nov 30)
** FreeBSD local r00t zeroday Kingcope (Nov 30)
- Re: ** FreeBSD local r00t zeroday Ed Carp (Nov 30)
  - Re: ** FreeBSD local r00t zeroday Benji (Nov 30)
    - Re: ** FreeBSD local r00t zeroday Ryan Steinmetz (Nov 30)
    - Re: ** FreeBSD local r00t zeroday David Berard (Nov 30)
    - Re: ** FreeBSD local r00t zeroday bk (Nov 30)
- <Possible follow-ups>
- Re: ** FreeBSD local r00t zeroday phantomcircuit (Nov 30)
  - Re: ** FreeBSD local r00t zeroday Cody Robertson (Nov 30)
WinAppDbg 1.3 is out! Mario Alejandro Vilas Jerez (Nov 30)

Previous period

Next period