Bugtraq: by thread
603 messages
starting Apr 01 06 and
ending Apr 30 06
Date index |
Thread index |
Author index
- Mis-diagnosed XSS bugs hiding worse issues due to PHP feature Steven M. Christey (Apr 01)
- Re: [Full-disclosure] Mis-diagnosed XSS bugs hiding worse issues due to PHP feature Siegfried (Apr 01)
- Re: Mis-diagnosed XSS bugs hiding worse issues due to PHP feature Siegfried (Apr 01)
- <Possible follow-ups>
- Re: Mis-diagnosed XSS bugs hiding worse issues due to PHP feature cxib (Apr 03)
- linksubmit <= All version Html Tag Injector in index.php ali (Apr 01)
- Re: recursive DNS servers DDoS as a growing DDoS problem Gadi Evron (Apr 01)
- <Possible follow-ups>
- RE: recursive DNS servers DDoS as a growing DDoS problem gboyce (Apr 01)
- RE: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 03)
- Re: recursive DNS servers DDoS as a growing DDoS problem Jim Pingle (Apr 04)
- RE: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Jim Pingle (Apr 09)
- Re: recursive DNS servers DDoS as a growing DDoS problem Erwan David (Apr 09)
- Re: recursive DNS servers DDoS as a growing DDoS problem Anton Ivanov (Apr 03)
- Re: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 03)
- Re: recursive DNS servers DDoS as a growing DDoS problem Anton Ivanov (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Tim (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Anton Ivanov (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Tim (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Ross Wheeler (Apr 09)
- Re: recursive DNS servers DDoS as a growing DDoS problem Anton Ivanov (Apr 09)
- Re: recursive DNS servers DDoS as a growing DDoS problem Simon Boulet (Apr 04)
- RE: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 03)
- Re: recursive DNS servers DDoS as a growing DDoS problem Paul Stepowski (Apr 01)
- RE: recursive DNS servers DDoS as a growing DDoS problem Måns Nilsson (Apr 04)
- RE: recursive DNS servers DDoS as a growing DDoS problem Thomas Guyot-Sionnest (Apr 04)
- RE: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Gadi Evron (Apr 09)
- Re: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 09)
- RE: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 04)
- Re: recursive DNS servers DDoS as a growing DDoS problem Marco Ivaldi (Apr 04)
- RE: recursive DNS servers DDoS as a growing DDoS problem Geo. (Apr 10)
- SQuery <= 4.5 Remote File Inclusion Exploit uid0 (Apr 01)
- FleXiBle Development Script Remote Command Exucetion And XSS Attacking botan (Apr 01)
- <Possible follow-ups>
- Re: FleXiBle Development Script Remote Command Exucetion And XSS Attacking Steven M. Christey (Apr 09)
- Re: Re: Re: phpBB 2.06 search.php SQL injection theguywhocouldwipeyourphpBB (Apr 01)
- DoS-ing sysklogd? Milen Rangelov (Apr 01)
- Re: DoS-ing sysklogd? Bernhard Fischer (Apr 04)
- Re: DoS-ing sysklogd? Christophe Garault (Apr 04)
- <Possible follow-ups>
- RE: DoS-ing sysklogd? Justin Shore (Apr 03)
- PHPNuke-Clan 3.0.1 Remote File Inclusion Exploit uid0 (Apr 01)
- GeSWall 2.2 – Free Intrusion Prevention System for Windows GentleSecurity Team (Apr 01)
- SiteMan <= All version SQL injection in admin_login.asp ali (Apr 01)
- Phpwebgallery <= 1.4.1 SQL injection Vulnerability t4h4 (Apr 03)
- Secunia Research: AN HTTPD Script Source Disclosure Vulnerability Secunia Research (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Crispin Cowan (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Gadi Evron (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Steven M. Christey (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Javor Ninov (Apr 04)
- Re: On product vulnerability history and vulnerability complexity Steven M. Christey (Apr 04)
- Re: On product vulnerability history and vulnerability complexity ArkanoiD (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Forrest J. Cavalier III (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Gadi Evron (Apr 04)
- Re: On product vulnerability history and vulnerability complexity Gadi Evron (Apr 03)
- [USN-266-1] dia vulnerabilities Martin Pitt (Apr 03)
- [SECURITY] [DSA 1000-2] New Apache2::Request packages fix denial of service Martin Schulze (Apr 03)
- Another Internet Explorer Address Bar Spoofing Vulnerability hainamluke (Apr 03)
- <Possible follow-ups>
- Re: Another Internet Explorer Address Bar Spoofing Vulnerability franz (Apr 04)
- Re: Another Internet Explorer Address Bar Spoofing Vulnerability sh0rtie (Apr 09)
- Re: Re: Another Internet Explorer Address Bar Spoofing Vulnerability pc . tech2 (Apr 09)
- Hosting Controller AccountActions.asp and saveuploadfiles.asp vulns (PoC) paolo . difebbo (Apr 03)
- Flaw in commonly used bash random seed method coderpunk (Apr 03)
- Re: Flaw in commonly used bash random seed method Matthijs (Apr 03)
- Re: Flaw in commonly used bash random seed method Dave English (Apr 04)
- Re: Flaw in commonly used bash random seed method Matthijs (Apr 04)
- Re: Flaw in commonly used bash random seed method Matthijs (Apr 04)
- Re: Flaw in commonly used bash random seed method Dave Korn (Apr 05)
- Re: Flaw in commonly used bash random seed method Steve VanDevender (Apr 10)
- Re: Flaw in commonly used bash random seed method Dave English (Apr 04)
- Re: Flaw in commonly used bash random seed method Matthijs (Apr 03)
- VWar <= 1.5.0 R12 Remote File Inclusion Exploit uid0 (Apr 03)
- Multiple Vulnerabilities in LucidCMS crasher (Apr 03)
- <Possible follow-ups>
- Re: Multiple Vulnerabilities in LucidCMS zachofalltrades (Apr 19)
- MyBB 1.10 New CrossSiteScripting o . y . 6 (Apr 03)
- SQL Injection in Softbiz Image Gallery xx_hack_xx_2004 (Apr 03)
- Re: WebVulnCrawl searching excluded directories for hackable web servers Dennis Brown (Apr 03)
- Re: Cantv/Movilnet's Web SMS vulnerability. raven (Apr 03)
- Re: On classifying attacks john mullee (Apr 03)
- [ MDKSA-2006:064 ] - Updated MySQL packages fix logging bypass vulnerability security (Apr 03)
- [ MDKSA-2006:062 ] - Updated dia packages fix buffer overflow vulnerabilities security (Apr 03)
- ReloadCMS <= 1.2.5stable Cross site scripting / remote command execution rgod (Apr 03)
- SYMSA-2006-002: McAfee WebShield SMTP Format String Vulnerability CS_Advisories Mailbox (Apr 03)
- Bypassing ISA Server 2004 with IPv6 Romain . Le . Guen (Apr 03)
- Re: Bypassing ISA Server 2004 with IPv6 3APA3A (Apr 04)
- Re: Bypassing ISA Server 2004 with IPv6 Christine Kronberg (Apr 09)
- Re[2]: Bypassing ISA Server 2004 with IPv6 3APA3A (Apr 10)
- Re[2]: Bypassing ISA Server 2004 with IPv6 Christine Kronberg (Apr 14)
- Re[3]: Bypassing ISA Server 2004 with IPv6 3APA3A (Apr 15)
- Re[3]: Bypassing ISA Server 2004 with IPv6 Christine Kronberg (Apr 19)
- Re: Re[3]: Bypassing ISA Server 2004 with IPv6 Thor (Hammer of God) (Apr 20)
- Re: Re[3]: Bypassing ISA Server 2004 with IPv6 offtopic (Apr 20)
- Re: Re[2]: Bypassing ISA Server 2004 with IPv6 Thor (Hammer of God) (Apr 19)
- Re: Re[2]: Bypassing ISA Server 2004 with IPv6 Christine Kronberg (Apr 19)
- Re: Bypassing ISA Server 2004 with IPv6 Thor (Hammer of God) (Apr 10)
- Re: Bypassing ISA Server 2004 with IPv6 offtopic (Apr 09)
- Re: Bypassing ISA Server 2004 with IPv6 Christine Kronberg (Apr 09)
- <Possible follow-ups>
- Re: Re: Bypassing ISA Server 2004 with IPv6 Romain . Le-Guen (Apr 09)
- Re: Bypassing ISA Server 2004 with IPv6 Thor (Hammer of God) (Apr 10)
- Re: Bypassing ISA Server 2004 with IPv6 noreply (Apr 11)
- Re: Bypassing ISA Server 2004 with IPv6 3APA3A (Apr 04)
- RUXCON 2006 Call for Papers cfp (Apr 04)
- SMART Technologies SynchronEyes Remote Denial of Services dennis (Apr 04)
- Format string in Doomsday 1.8.6 Luigi Auriemma (Apr 04)
- Re: Format string in Doomsday 1.8.6 Alexey Dobriyan (Apr 10)
- [USN-267-1] mailman vulnerability Martin Pitt (Apr 04)
- [ GLSA 200604-01 ] MediaWiki: Cross-site scripting vulnerability Stefan Cornelius (Apr 04)
- Barracuda LHA archiver security bug leads to remote compromise Jean-Sébastien Guay-Leroux (Apr 04)
- Barracuda ZOO archiver security bug leads to remote compromise Jean-Sébastien Guay-Leroux (Apr 04)
- [security bulletin] HPSBPI2109 SSRT061141 rev.1 - HP Color LaserJet 2500 and 4600 Toolbox Running on Microsoft Windows Remote Unauthorized Disclosure of Information security-alert (Apr 04)
- [ GLSA 200604-02 ] Horde Application Framework: Remote code execution Stefan Cornelius (Apr 04)
- [ GLSA 200604-03 ] FreeRADIUS: Authentication bypass in EAP-MSCHAPv2 module Matthias Geerdsen (Apr 04)
- Buffer-overflow in Ultr@VNC 1.0.1 viewer and server Luigi Auriemma (Apr 04)
- <Possible follow-ups>
- Re: Buffer-overflow in Ultr@VNC 1.0.1 viewer and server jalvare7 (Apr 10)
- Re: Buffer-overflow in Ultr@VNC 1.0.1 viewer and server Luigi Auriemma (Apr 09)
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data Moriyoshi Koizumi (Apr 04)
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data Jasper Bryant-Greene (Apr 05)
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data Jasper Bryant-Greene (Apr 04)
- Message not available
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data Moriyoshi Koizumi (Apr 09)
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data Jasper Bryant-Greene (Apr 05)
- RE: Another way to spoof Internet Explorer Address Bar Memisyazici, Aras (Apr 09)
- <Possible follow-ups>
- [ECHO_ADV_27$2006] AngelineCMS 0.8.1 Installpath Remote File Inclusion eufrato (Apr 04)
- <Possible follow-ups>
- [eVuln] phpNewsManager Multiple SQL Injections alex (Apr 10)
- RE: google xss Andy Meyers (Apr 10)
- Re: google xss Jim Ley (Apr 11)
- Re: google xss pagvac (Apr 11)
- Re: google xss Vladimir Levijev (Apr 13)
- Re: IE6 Crash H D Moore (Apr 10)
- Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2 Michal Zalewski (Apr 11)
- <Possible follow-ups>
- Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2 Steven M. Christey (Apr 12)
- Exploiting out of memory crashes and null pointers [was: Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2] 86400s (Apr 12)
- Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2 Michal Zalewski (Apr 13)
- Re: Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2 sp3x (Apr 14)
- <Possible follow-ups>
- Re: PHPList <= 2.10.2 remote commands execution secfoc (Apr 11)
- Re: Re: PHPList <= 2.10.2 remote commands execution rg . viza (Apr 11)
- <Possible follow-ups>
- Re: phpMyForum Cross Site Scripting & CRLF injection chris (Apr 30)
- <Possible follow-ups>
- Re: Multiple vulnerabilities in Blur6ex Steven M. Christey (Apr 13)
- <Possible follow-ups>
- Re: Confixx 3.1.2 <= SQL Injection iovdin (Apr 13)
- <Possible follow-ups>
- RE: IBM Michael Scheidell (Apr 13)
- Re: IBM stend (Apr 13)
- Re: RE: IBM Juha-Matti Laurio (Apr 14)
- Re: Simplog <=0.9.2 multiple vulnerabilities Jeremy Ashcraft (Apr 14)
- Re: phpWebSite 0.10.? (topics.php) Remote SQL Injection Exploit Kevin Wilcox (Apr 14)
- <Possible follow-ups>
- Re: QuickBlogger v1.4 Cross-Site Scripting Steven M. Christey (Apr 15)
- Re: phpMyAdmin 2.7.0-pl1 Kevin Waterson (Apr 14)
- Re: Vulnerabilities in MOD Victor Brilon (Apr 15)
- <Possible follow-ups>
- RE: osCommerce "extras/" information/source code disclosure Michael Scheidell (Apr 15)
- <Possible follow-ups>
- Re: phpBB Admin command execution dave . de (Apr 19)
- Re: Firefox 1.5.0.1 Password Manager Arbtirary User Browsing History Disclosure Eliah Kagan (Apr 15)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Brandon S. Allbery KF8NH (Apr 14)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Stan Bubrouski (Apr 14)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Jamie Riden (Apr 19)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup A . L . M . Buxey (Apr 14)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup dumdidumdideldey (Apr 14)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Joachim Schipper (Apr 14)
- RE: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Mario Contestabile (Apr 20)
- RE: Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Nick FitzGerald (Apr 20)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Duncan Simpson (Apr 25)
- RE: [Full-disclosure] Microsoft DNS resolver: deliberately sabotaged hosts-file lookup Mario Contestabile (Apr 20)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 17)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Ansgar -59cobalt- Wiechers (Apr 18)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Paul Wouters (Apr 19)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Geo. (Apr 19)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Geo. (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 25)
- <Possible follow-ups>
- Re: RE: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup john (Apr 19)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup John Biederstedt (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup John Biederstedt (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup no . spam (Apr 19)
- Re: RE: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup somebody (Apr 19)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Thor (Hammer of God) (Apr 23)
- Re: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup robsekeris (Apr 19)
- RE: [Full-disclosure] Microsoft DNS resolver: deliberately sabotagedhosts-file lookup Sean Scott (Apr 25)
- Re: [KAPDA]CopperminePhotoGallery1.4.4~ PluginInclusionSystem(index.php)~ RemoteFileInclusion attack Dariusz Kolasinski (Apr 17)
- <Possible follow-ups>
- Re: Snipe Gallery <= 3.1.4 Multiple XSS nobody (Apr 17)
- Re: - PHPGraphy <= 0.9.11 "editwelcome" unauthorized access / cross site scripting - JiM / aEGIS (Apr 18)
- Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS Morning Wood (Apr 18)
- Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS Morning Wood (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Michael Chamberlain (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Forrest J. Cavalier III (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Alexander Klimov (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Florian Weimer (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Gabor Gombas (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Nate Eldredge (Apr 19)
- <Possible follow-ups>
- RE: gcc 4.1 bug miscompiles pointer range checks, may place you at risk Michael Wojcik (Apr 18)
- Re: gcc 4.1 bug miscompiles pointer range checks, may place you at risk jat-public01 (Apr 18)
- <Possible follow-ups>
- Re: [KAPDA::#41] - Mambo/Joomla rss component vulnerability rey . gigataras (Apr 19)
- <Possible follow-ups>
- Re: CuteNews 1.4.1 <= Cross Site Scripting Steven M. Christey (Apr 20)
- Re: Multiple vulnerabilities in Linux based Cisco products Ilker Temir (Apr 19)
- Re: redirection vuln crawlers breed & security through obscurity Thomas Hochstein (Apr 23)
- <Possible follow-ups>
- RE: redirection vuln crawlers breed & security through obscurity Evans, Arian (Apr 19)
- Re: Strengthen OpenSSH security? Mike Hoskins (Apr 20)
- Re: Strengthen OpenSSH security? Carson Gaspar (Apr 20)
- Re: Strengthen OpenSSH security? Theo de Raadt (Apr 21)
- Re: Strengthen OpenSSH security? Kd (Apr 20)
- Re: Strengthen OpenSSH security? MaddHatter (Apr 20)
- Re: Strengthen OpenSSH security? Damien Miller (Apr 20)
- Re: Strengthen OpenSSH security? c0redump (Apr 20)
- <Possible follow-ups>
- Re: Strengthen OpenSSH security? Bob Goodman (Apr 23)
- <Possible follow-ups>
- Re: Mini-NUKE v2.3<<--- SQL Injection nukedx (Apr 21)
- <Possible follow-ups>
- RE: [BULK] - Websense Filter Bypass John E. Fleming (Apr 24)
- <Possible follow-ups>
- Re: Advisory: Clansys <= 1.1 PHP Code Insertion Vulnerability. nukedx (Apr 25)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Colin Keigher (Apr 24)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Tom Ferris (Apr 25)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Billy Bues (Apr 25)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Tom Ferris (Apr 25)
- <Possible follow-ups>
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability jens (Apr 26)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Aaron Phillips (Apr 26)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Ian MacPhedran (Apr 30)
- Re: Apple Mac OS X Safari 2.0.3 Vulnerability Aaron Phillips (Apr 26)
- <Possible follow-ups>
- Re: VWar Path Disclosure spic (Apr 30)
- <Possible follow-ups>
- Re: vbulletin<--3.0.x SQL Injection scott (Apr 24)
- Re: ADVISORY FOR IOPUS SECURE EMAIL ATTACHMENTS fabio (Apr 25)
- Re: ADVISORY FOR IOPUS SECURE EMAIL ATTACHMENTS Andreas Beck (Apr 25)
- Re: NASL 'Split' function Buffer overflow Vulnerability Renaud Deraison (Apr 25)
- Re: NASL 'Split' function Buffer overflow Vulnerability Renaud Deraison (Apr 25)
- <Possible follow-ups>
- Re: Invision Vulnerabilities, including remote code execution Steven M. Christey (Apr 26)
- RE: Invision Vulnerabilities, including remote code execution Mike Weller (Apr 30)
- Re: Invision Vulnerabilities, including remote code execution mattmecham (Apr 27)
- Re: Instant Photo Gallery <= Multiple XSS security curmudgeon (Apr 27)
- <Possible follow-ups>
- Instant Photo Gallery <= Multiple XSS qex (Apr 25)
- Re: Instant Photo Gallery <= Multiple XSS Steven M. Christey (Apr 27)
- <Possible follow-ups>
- Re: Recent Oracle exploit is _actually_ an 0day with no patch Steven M. Christey (Apr 28)
- Re: Recent Oracle exploit is _actually_ an 0day with no patch David Litchfield (Apr 28)
- RE: Recent Oracle exploit is _actually_ an 0day with no patch Kornbrust, Alexander (Apr 28)
- Re: Recent Oracle exploit is _actually_ an 0day with no patch David Litchfield (Apr 30)
- <Possible follow-ups>
- [SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities Martin Schulze (Apr 26)