Bugtraq: by thread
267 messages
starting Mar 01 10 and
ending Mar 31 10
Date index |
Thread index |
Author index
- [USN-905-1] sudo vulnerabilities Jamie Strandboge (Mar 01)
- ARISg5 (Version 5.0) Cross Site Scripting Vulnerability lament (Mar 01)
- Month of PHP Security 2010 - CALL FOR PAPERS Stefan Esser (Mar 01)
- Re: Information disclosure vulnerability in Drupal's Realname User Reference Widget contributed module (version 6.x-1.0) mori (Mar 01)
- Re: Re: Circumventing Critical Security in Windows XP anonym (Mar 01)
- Re: Re: Circumventing Critical Security in Windows XP Jann Horn (Mar 02)
- Re: Circumventing Critical Security in Windows XP Ansgar Wiechers (Mar 02)
- CONFidence 2010 /25-26 May/, CfP andrzej . targosz (Mar 01)
- Oracle Siebel 7.x CRM Cross Site Scripting Vulnerability lament (Mar 01)
- [SECURITY] [DSA 2004-1] New Linux 2.6.24 packages fix several vulnerabilities dann frazier (Mar 01)
- Re: Easy FTP Server 1.7.0.2 Remote BoF Paul Makowski (Mar 01)
- [ MDVSA-2010:051 ] mozilla-thunderbird security (Mar 01)
- [SECURITY] [DSA 2004-1] New samba packages fix several vulnerabilities Moritz Muehlenhoff (Mar 01)
- 1024CMS Blind SQL Injection Vulnerability admin (Mar 02)
- ZDI-10-023: Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability ZDI Disclosures (Mar 02)
- ZDI-10-022: IBM Informix librpc.dll Multiple Remote Code Execution Vulnerabilities ZDI Disclosures (Mar 02)
- [ MDVSA-2010:052 ] sudo security (Mar 02)
- Eshbel Priority MarketGate module Cross Site Scripting Vulnerability lament (Mar 02)
- Sparta Systems TrackWise TeamAccess module Multiple Cross Site Scripting Vulnerabilities lament (Mar 02)
- [xss] i found a Cross Site Scripting Vulnerability about Discuz! 'uid' Parameter lis cker (Mar 02)
- Todd Miller Sudo local root exploit discovered by Slouching Kingcope (Mar 02)
- Re: Todd Miller Sudo local root exploit discovered by Slouching andy (Mar 03)
- Re: Todd Miller Sudo local root exploit discovered by Slouching Kingcope (Mar 03)
- Re: Todd Miller Sudo local root exploit discovered by Slouching Jann Horn (Mar 03)
- <Possible follow-ups>
- Re: Re: Todd Miller Sudo local root exploit discovered by Slouching noone (Mar 04)
- Re: Todd Miller Sudo local root exploit discovered by Slouching Steve Shockley (Mar 05)
- Re: Todd Miller Sudo local root exploit discovered by Slouching andy (Mar 03)
- iDefense Security Advisory 03.02.10: IBM Lotus Domino Web Access ActiveX Stack Buffer Overflow Vulnerability iDefense Labs (Mar 02)
- Luxology Modo 401 .LXO Integer Overflow CORE Security Technologies Advisories (Mar 02)
- [ MDVSA-2010:053 ] apache security (Mar 02)
- [SECURITY] [DSA 2006-1] New sudo packages fix several vulnerabilities Giuseppe Iuculano (Mar 02)
- ZDI-10-024: Novell eDirectory SOAP Request Parsing Denial of Service Vulnerability ZDI Disclosures (Mar 02)
- NSOADV-2010-004: McAfee LinuxShield remote/local code execution NSO Research (Mar 02)
- RE: NSOADV-2010-004: McAfee LinuxShield remote/local code execution Veal, Richard (Mar 03)
- Re: NSOADV-2010-004: McAfee LinuxShield remote/local code execution NSO Research (Mar 03)
- RE: NSOADV-2010-004: McAfee LinuxShield remote/local code execution Veal, Richard (Mar 03)
- [ GLSA 201003-01 ] sudo: Privilege escalation Alex Legler (Mar 03)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Digital Media Manager Cisco Systems Product Security Incident Response Team (Mar 03)
- Cisco Security Advisory: Cisco Digital Media Player Remote Display Unauthorized Content Injection Vulnerability Cisco Systems Product Security Incident Response Team (Mar 03)
- Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 03)
- CORRECTION: CORE-2009-0913 - Luxology Modo 401 .LXO Integer Overflow CORE Security Technologies Advisories (Mar 03)
- [SECURITY] [DSA 2007-1] New cups packages fix arbitrary code execution Nico Golde (Mar 04)
- IETF effort: Security Assesment of the Internet Protocol Fernando Gont (Mar 04)
- VMSA-2010-0004 ESX Service Console and vMA third party updates VMware Security Team (Mar 04)
- NSOADV-2010-006: Authentium Command Free Scan ActiveX Control buffer overflow NSO Research (Mar 04)
- Apple Airport Wireless Products: Promiscuous FTP PORT Allowed in FTP Proxy Provides Security Bypass Sabahattin Gucukoglu (Mar 04)
- <Possible follow-ups>
- Re: Apple Airport Wireless Products: Promiscuous FTP PORT Allowed in FTP Proxy Provides Security Bypass drstrangep0rk (Mar 08)
- Re: Apple Airport Wireless Products: Promiscuous FTP PORT Allowed in FTP Proxy Provides Security Bypass Sabahattin Gucukoglu (Mar 09)
- Open redirection vulnerability in the Drupal API function drupal_goto (Drupal 6.15 and 5.21) Martin Barbella (Mar 04)
- Unspecified EMC Documentum Remote Code Execution Vulnerability dr_ch1na (Mar 04)
- fcrontab Information Disclosure Vulnerability Dan Rosenberg (Mar 04)
- [ MDVSA-2010:054 ] pam_krb5 security (Mar 04)
- [xss] a xss on "ThreadID" parameter in BBSXP 2008 from china lis cker (Mar 04)
- CA20100304-01: Security Notice for CA SiteMinder Williams, James K (Mar 04)
- [USN-906-1] CUPS vulnerabilities Marc Deslauriers (Mar 04)
- Juniper SA Series Cross Site Scripting Issue Security Lists NL (Mar 05)
- iDefense Security Advisory 03.04.10: Autonomy KeyView OLE Document Integer Overflow Vulnerability iDefense Labs (Mar 05)
- SQL injection vulnerability in Natychmiast CMS Maciej Gojny (Mar 05)
- Call for Papers: EC2ND 2010 Konrad Rieck (Mar 05)
- ncpfs, Multiple Vulnerabilities Dan Rosenberg (Mar 05)
- <Possible follow-ups>
- Re: ncpfs, Multiple Vulnerabilities dan . j . rosenberg (Mar 05)
- [ MDVSA-2010:055 ] poppler security (Mar 05)
- [ MDVSA-2010:056 ] openoffice.org security (Mar 08)
- Apache mod_isapi Dangling Pointer Vulnerability - Security Advisory - SOS-10-002 Lists (Mar 08)
- [xss] a xss on "action" parameter in BBSMAX lis cker (Mar 08)
- phpinfo() XSS Vulnerability info (Mar 08)
- Re: phpinfo() XSS Vulnerability Salvatore Fresta aka Drosophila (Mar 08)
- [XSS] i found a xss on "page" parameter in "eccredit.php" in Dvbbs < 8.3.0 lis cker (Mar 08)
- "Writing JIT-Spray Shellcode for fun and profit" by DSecRG DSecRG (Mar 08)
- ZoneAlarm Security Circumvention Andrew Barkley (Mar 08)
- Re: ZoneAlarm Security Circumvention Ansgar Wiechers (Mar 15)
- rPSA-2010-0011-1 gnome-ssh-askpass openssh openssh-client openssh-server rPath Update Announcements (Mar 08)
- rPSA-2010-0012-1 postgresql postgresql-contrib postgresql-server rPath Update Announcements (Mar 08)
- rPSA-2010-0013-1 gzip rPath Update Announcements (Mar 08)
- rPSA-2010-0014-1 mysql mysql-bench mysql-server rPath Update Announcements (Mar 08)
- [USN-907-1] gnome-screensaver vulnerabilities Marc Deslauriers (Mar 08)
- [ MDVSA-2010:057 ] apache security (Mar 08)
- Croogo CMS 1.2 Cross Site Scripting Vulnerabilities Paulino Calderon (Mar 09)
- SQL injection vulnerability in wILD CMS Maciej Gojny (Mar 09)
- IBM ENOVIA SmarTeam v5 Cross Site Scripting Vulnerability lament (Mar 09)
- [SECURITY] [DSA 2008-1] New typo3-src packages fix several vulnerabilities Moritz Muehlenhoff (Mar 09)
- [security bulletin] HPSBMA02489 SSRT090065 rev.1 - HP Performance Insight , Remote Execution of Arbitrary Commands security-alert (Mar 09)
- ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability ZDI Disclosures (Mar 09)
- CORE-2009-0813: Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap Overflow CORE Security Technologies Advisories (Mar 10)
- Secunia Research: Employee Timeclock Software SQL Injection Vulnerabilities Secunia Research (Mar 10)
- [xss] a xss on "threadid" parameter in BBSMAX lis cker (Mar 10)
- iDefense Security Advisory 03.09.10: Microsoft Excel FNGROUPNAME Record Uninitialized Memory Vulnerability iDefense Labs (Mar 10)
- ZDI-10-026: Hewlett-Packard OVPI helpmanager Servlet Remote Code Execution Vulnerability ZDI Disclosures (Mar 10)
- CORE-2009-1103: Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability CORE Security Technologies Advisories (Mar 10)
- Secunia Research: Employee Timeclock Software "mysqldump" Password Disclosure Secunia Research (Mar 10)
- VUPEN Security Research - Microsoft Office Excel Record Processing Code Execution Vulnerability VUPEN Security Research (Mar 10)
- Vulnerabilities in Hydra Engine MustLive (Mar 10)
- [ MDVSA-2010:058 ] php security (Mar 10)
- iDefense Security Advisory 03.09.10: Microsoft Excel Sheet Object Type Confusion Vulnerability iDefense Labs (Mar 10)
- iDefense Security Advisory 03.09.10: Microsoft Excel MDXTUPLE Record Heap Overflow Vulnerability iDefense Labs (Mar 10)
- Secunia Research: Employee Timeclock Software Backup Information Disclosure Secunia Research (Mar 10)
- iDefense Security Advisory 03.09.10: Microsoft Excel MDXSET Record Heap Overflow Vulnerability iDefense Labs (Mar 10)
- [ MDVSA-2010:059 ] virtualbox security (Mar 10)
- Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability Secunia Research (Mar 10)
- [USN-908-1] Apache vulnerabilities Marc Deslauriers (Mar 10)
- [SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting Steffen Joeris (Mar 10)
- [SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities dann frazier (Mar 10)
- CVE-2010-0624: Heap-based buffer overflow in GNU Tar and GNU Cpio Jakob Lell (Mar 10)
- Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability lament (Mar 10)
- [USN-909-1] dpkg vulnerability Kees Cook (Mar 11)
- Vulnerabilities in Abton MustLive (Mar 11)
- Skype URI Handler Input Validation Paul Craig (Mar 11)
- [ MDVSA-2010:060 ] squid security (Mar 11)
- [SECURITY] [DSA 2011-1] New dpkg packages fix path traversal Nico Golde (Mar 11)
- Multiple vulnerabilities in SUPERAntiSpyware and Super Ad Blocker Luka Milkovic (Mar 11)
- [ MDVSA-2010:061 ] ncpfs security (Mar 12)
- [USN-911-1] MoinMoin vulnerabilities Jamie Strandboge (Mar 12)
- iDefense Security Advisory 03.11.10: Multiple Vendor WebKit HTML Element Use After Free Vulnerability iDefense Labs (Mar 12)
- [SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities Giuseppe Iuculano (Mar 12)
- [SECURITY] [DSA 2013-1] New egroupware packages fix several vulnerabilities Moritz Muehlenhoff (Mar 12)
- [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface! lis cker (Mar 12)
- VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability VUPEN Security Research (Mar 12)
- [SECURITY] [DSA 2012-1] New Linux 2.6.26 packages fix several issues dann frazier (Mar 12)
- ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability ZDI Disclosures (Mar 12)
- ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability ZDI Disclosures (Mar 12)
- Sun Java System Communication Express CSRF via HPP edgard . chammas (Mar 15)
- Vulnerability in phpAdsNew, OpenAds and OpenX MustLive (Mar 15)
- SyScan'10 CFP thomas () syscan org (Mar 15)
- [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released Hafez Kamal (Mar 15)
- [Tool] sqlmap 0.8 released Bernardo Damele A. G. (Mar 15)
- Ananta Gazelle SQL Injection Vulnerability admin (Mar 15)
- Pars CMS SQL Injection Vulnerability faghani (Mar 15)
- [SECURITY] [DSA 2016-1] New drupal6 packages fix several vulnerabilities Giuseppe Iuculano (Mar 15)
- ...because you can't get enough of clickjacking Michal Zalewski (Mar 15)
- Zigurrat CMS SQL Injection Vulnerability faghani (Mar 15)
- CVE-2010-0188 Exploit Code villys777 (Mar 15)
- PlumberCon 10 - Call for Papers astera (Mar 15)
- Vulnerability httpdx v1.5.3 Mehdi Mahdjoub - Sysdream IT Security Services (Mar 15)
- ZoneAlarm 9 (ForceField) Security Disclosure Andrew Barkley (Mar 15)
- Multiple DOM-Based XSS in Dojo Toolkit SDK labs (Mar 15)
- ZDI-10-029: Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability ZDI Disclosures (Mar 15)
- New vulnerabilities in Abton MustLive (Mar 15)
- QuickZip 0day detailed write-up Security (Mar 15)
- rPSA-2010-0018-1 bind bind-utils caching-nameserver rPath Update Announcements (Mar 16)
- [SECURITY] [DSA 2017-1] New pulseaudio packages fix insecure temporary directory Giuseppe Iuculano (Mar 16)
- rPSA-2010-0022-1 sendmail sendmail-cf rPath Update Announcements (Mar 16)
- SugarCRM Stored XSS vulnerability Jeromie Jackson (Mar 16)
- ZDI-10-030: Apple WebKit CSS run-in Attribute Rendering Remote Code Execution Vulnerability ZDI Disclosures (Mar 16)
- ZDI-10-031: Apple Webkit Blink Event Dangling Pointer Remote Code Execution Vulnerability ZDI Disclosures (Mar 16)
- [USN-912-1] Audio File Library vulnerability Marc Deslauriers (Mar 16)
- ZDI-10-032: SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability ZDI Disclosures (Mar 16)
- Last Call for Papers, CONFidence 2010, 25-26May, Last Call for Papers Andrzej Targosz (Mar 16)
- [USN-913-1] libpng vulnerabilities Marc Deslauriers (Mar 16)
- [security bulletin] HPSBGN02511 SSRT100022 rev.2 - HP Small Form Factor or Microtower PC with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code security-alert (Mar 17)
- [CORELAN-10-13] - Windisc Local Stack BOF Security (Mar 17)
- Vulnerabilities in VXDate for Joomla MustLive (Mar 17)
- Miranda IM silent TLS failure Jan Schejbal (Mar 17)
- CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability CORE Security Technologies Advisories (Mar 17)
- Secunia Research: Quicksilver Forums Backup Information Disclosure Secunia Research (Mar 17)
- Secunia Research: Quicksilver Forums Cross-Site Request Forgery Vulnerability Secunia Research (Mar 17)
- Secunia Research: Quicksilver Forums "mysqldump" Password Disclosure Secunia Research (Mar 17)
- Sahana 0.6.2.2 Authentication Bypass Christopher (Mar 17)
- CORE-2010-0311 - eFront-learning PHP file inclusion vulnerability CORE Security Technologies Advisories (Mar 17)
- CA20100318-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Mar 19)
- There are lost of xss vul in PHPWind v6.0 ! lis cker (Mar 19)
- IBM Lotus 6.x HTTP Response Splitting Vulnerability lament (Mar 19)
- [SECURITY] [DSA-2018-1] New php5 packages fix null pointer dereference Raphael Geissert (Mar 19)
- [USN-915-1] Thunderbird vulnerabilities Marc Deslauriers (Mar 19)
- Vulnerability Httpdx v1.5.3b Mehdi Mahdjoub - Sysdream IT Security Services (Mar 19)
- announcing skipfish, an automated web app security scanner Michal Zalewski (Mar 19)
- Aris AGX agXchange ESM Open Redirection Vulnerability lament (Mar 22)
- IBM Lotus 6.x names.nsf Cross Site Scripting Vulnerability lament (Mar 22)
- Firefox 3.6 for Windows includes a forged CA cert Francis Litterio (Mar 22)
- Re: Firefox 3.6 for Windows includes a forged CA cert dveditz (Mar 23)
- Re: Firefox 3.6 for Windows includes a forged CA cert Mike Duncan (Mar 23)
- Re: Firefox 3.6 for Windows includes a forged CA cert Marcus Meissner (Mar 23)
- <Possible follow-ups>
- Re: Firefox 3.6 for Windows includes a forged CA cert adam (Mar 23)
- [SECURITY] [DSA-2019-1] New pango1.0 packages fix denial of service Giuseppe Iuculano (Mar 22)
- [ MDVSA-2010:062 ] curl security (Mar 22)
- [SECURITY] [DSA 2020-1] New ikiwiki packages fix cross-site scripting Nico Golde (Mar 22)
- MX Simulator Server 2010-02-06 Remote Buffer Overflow PoC Salvatore Fresta aka Drosophila (Mar 23)
- CFP - GameSec 2010 - Conference on Decision and Game Theory for Security Albert Levi (Mar 23)
- [ MDVSA-2010:063 ] libpng security (Mar 23)
- {PRL} Lexmark Multiple Laser Printer Remote Stack Overflow Francis Provencher (Mar 23)
- REMINDER: Month of PHP Security 2010 - CALL FOR PAPERS - Only 3 weeks left Stefan Esser (Mar 23)
- [ MDVSA-2010:064 ] libpng security (Mar 23)
- [SECURITY] [DSA 2021-1] New spamass-milter packages fix remote command execution Giuseppe Iuculano (Mar 23)
- IE 6.0 - Local Crash Exploit info (Mar 23)
- Re: IE 6.0 - Local Crash Exploit Veg (Mar 23)
- Vulnerability Astaro Security Linux v5 Mehdi Mahdjoub - Sysdream IT Security Services (Mar 23)
- Re: Vulnerability Astaro Security Linux v5 Akos Szalkai (Mar 23)
- <Possible follow-ups>
- Re: Vulnerability Astaro Security Linux v5 jdaniel (Mar 23)
- [DSECRG-09-064] SAP GUI - Insecure method, code execution Alexandr Polyakov (Mar 23)
- Vulnerabilities in CaptchaSecurityImages MustLive (Mar 23)
- [HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! Hafez Kamal (Mar 23)
- Internet Explorer 7.0 0day Vulnerability k4mr4n_St (Mar 23)
- [ MDVSA-2010:065 ] cpio security (Mar 23)
- [CORELAN-10-015] - Remote Help 0.0.7 Httpd DoS (Format String) Security (Mar 23)
- Aris AGX agXchange ESM Cross Site Scripting Vulnerability lament (Mar 23)
- MITKRB5-SA-2010-002 denial of service in SPNEGO [CVE-2010-0628 VU#839413] Tom Yu (Mar 23)
- Vulnerabilities in WordPress MustLive (Mar 23)
- {PRL} Lexmark Multiple Laser printer FTP Remote Denial of Services Francis Provencher (Mar 23)
- Insecure SMS authorization scheme at LiqPAY micro-payments of PrivatBank (Ukraine) Andriy Tereshchenko (Mar 23)
- Safari browser port blocking bypassed by integer overflow Gary Niger (Mar 23)
- [USN-916-1] Kerberos vulnerabilities Kees Cook (Mar 24)
- [HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! *Correction* Hafez Kamal (Mar 24)
- CVE-2009-2907: SpringSource Hyperic HQ multiple XSS vulnerabilities s2-security (Mar 24)
- [SECURITY] [DSA 2022-1] New mediawiki packages fix several vulnerabilities Nico Golde (Mar 24)
- CVE-2009-4505 OpenCMS OAMP Comments Module XSS Cyrill Brunschwiler (Mar 24)
- "$referer" export lead to the cross-site flaws in all versions of Discuz! lis cker (Mar 24)
- [USN-918-1] Samba vulnerability Marc Deslauriers (Mar 24)
- Secunia Research: Pulse CMS login.php Arbitrary File Writing Vulnerability Secunia Research (Mar 24)
- Secunia Research: Pulse CMS Arbitrary File Writing Vulnerability Secunia Research (Mar 24)
- Symlink attack with Solaris Update manager bugs (Mar 24)
- Cisco Security Advisory: Cisco IOS Software NAT Skinny Call Control Protocol Vulnerability Cisco Systems Product Security Incident Response Team (Mar 24)
- Secunia Research: Pulse CMS Arbitrary File Deletion Vulnerability Secunia Research (Mar 24)
- Cisco Security Advisory: Cisco IOS Software IPsec Vulnerability Cisco Systems Product Security Incident Response Team (Mar 24)
- [USN-917-1] Puppet vulnerabilities Marc Deslauriers (Mar 24)
- Multiple vulnerabilities in Deliver Dan Rosenberg (Mar 24)
- Symlink attack with Solaris Update manager and Sun Patch Cluster bugs (Mar 24)
- Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Mar 24)
- Vulnerabilities in WeBAM MustLive (Mar 25)
- Re: Vulnerabilities in WeBAM Salvatore Fresta aka Drosophila (Mar 25)
- [ MDVSA-2010:066 ] kernel security (Mar 25)
- [security bulletin] HPSBMA02436 SSRT080064 rev.1 - HP Project and Portfolio Management Center (PPMC), Remote Cross Site Scripting (XSS) security-alert (Mar 25)
- Ruxcon 2010 Call For Papers cfp (Mar 25)
- There is a Permanent-type Cross-Site Vulnerability in “Personal Signature” in all version of Discuz!. It can be written by the worm! lis cker (Mar 25)
- Multiple Vulnerabilities in EASY Enterprise DMS michael . mueller (Mar 25)
- [security bulletin] HPSBUX02508 SSRT100007 rev.1 - HP-UX Running sendmail with STARTTLS Enabled, Remote Unauthorized Access security-alert (Mar 25)
- Hackito Ergo Sum Conference (Paris 8-10 April 2010) : Schedule Jonathan Brossard (Mar 25)
- [security bulletin] HPSBUX02509 SSRT100032 rev.1 - HP-UX Running NFS/ONCplus, NFS Inadvertently Enabled security-alert (Mar 26)
- [ MDVSA-2010:067 ] kernel security (Mar 26)
- Vulnerabilities in TooFAST MustLive (Mar 26)
- Vulnerabilities in ArcManager MustLive (Mar 29)
- [security bulletin] HPSBOV02497 SSRT090245 rev.2 - HP TCP/IP Services for OpenVMS Running NTP, Remote Execution of Arbitrary Code, Denial of Service (DoS) security-alert (Mar 29)
- [SECURITY] [DSA 2023-1] New curl packages fix arbitrary code execution Steffen Joeris (Mar 29)
- {PRL} Novell Netware FTP Remote Stack Overflow Francis Provencher (Mar 29)
- [ MDVSA-2010:068 ] php security (Mar 29)
- <Possible follow-ups>
- [ MDVSA-2010:068 ] php security (Mar 29)
- [ MDVSA-2010:068 ] php security (Mar 29)
- London DEFCON March meet - DC4420 - Wednesday March 31st 2010 Major Malfunction (Mar 29)
- Medium security hole in Varnish reverse proxy Tim Brown (Mar 29)
- Exploiting nano Dan Rosenberg (Mar 29)
- SQL Injection Vulnerabilitie in PhotoPost vBGallery 2.5 Andreas Kirbach (Mar 29)
- Remote buffer overflow in aircrack-ng causes DOS and possible code execution Lukas Lueg (Mar 29)
- Joomla Component com_weblinks Sql Injection Vulnerability info (Mar 29)
- Vulnerabilities in MiniManager for Project MANGOS MustLive (Mar 29)
- Re: [Full-disclosure] Medium security hole in Varnish reverse proxy John Adams (Mar 29)
- Re: [Full-disclosure] Medium security hole in Varnish reverse proxy Tim Brown (Mar 30)
- XSS vulnerability in easy page cms info (Mar 29)
- Joomla Component com_xmap Sql Injection Vulnerability info (Mar 29)
- [USN-919-1] Emacs vulnerability Kees Cook (Mar 30)
- [security bulletin] HPSBUX02514 SSRT100010 rev.1 - HP-UX running AudFilter rules enabled, Local Denial of Service (DoS) security-alert (Mar 30)
- [security bulletin] HPSBMA02513 SSRT090110 rev.1 - Insight Control for Linux (IC-Linux) Remote Execution of Arbitrary Code, Local Unauthorized Elevation of Privilege security-alert (Mar 30)
- [security bulletin] HPSBMA02490 SSRT090222 rev.1 - HP SOA Registry Foundation, Remote Unauthorized Access to Data, Cross Site Scripting (XSS), Privilege Escalation security-alert (Mar 30)
- Secunia Research: ViewVC Regular Expression Search Cross-Site Scripting Secunia Research (Mar 30)
- OXID eShop Enterprise: Session Fixation and XSS Vulnerabilities michael . mueller (Mar 30)
- VMSA-2010-0005 VMware products address vulnerabilities in WebAccess VMware Security Team (Mar 30)
- [security bulletin] HPSBOV02506 SSRT090244 rev.1 - HP Secure Web Server for OpenVMS (based on Apache) CSWS, Remote Denial of Service (DoS), Unauthorized Disclosure of Information, Unauthorized Modification of Information security-alert (Mar 30)
- CVE-2010-0684: Apache ActiveMQ Persistent Cross-Site Scripting (XSS) Vulnerability rajat swarup (Mar 30)
- iDefense Security Advisory 03.30.10: Microsoft Internet Explorer 'onreadystatechange' Use After Free Vulnerability iDefense Labs (Mar 30)
- [SECURITY] CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability Jan Lehnardt (Mar 31)
- <Possible follow-ups>
- [SECURITY] CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability Jan Lehnardt (Mar 31)
- OpenDcHub 0.8.1 Remote Code Execution Exploit Pierre Noguès (Mar 31)
- Secunia Research: Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow Secunia Research (Mar 31)
- Multiple XSS vulnerabilities in OSSIM 2.2.1 nicolas . grandjean (Mar 31)
- Elevation of Privilege Vulnerability in iTunes for Windows jason (Mar 31)
- Trustwave's SpiderLabs Security Advisory TWSL2010-002 Trustwave Advisories (Mar 31)
- [SECURITY] [DSA 2025-1] New icedove packages fix several vulnerabilities Steffen Joeris (Mar 31)
- [SECURITY] [DSA 2024-1] New moin packages fix cross-site scripting Giuseppe Iuculano (Mar 31)
- [Suspected Spam]Vulnerabilities in NoCMS MustLive (Mar 31)
- Secunia Research: Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow Secunia Research (Mar 31)
- BitComet <= 1.19 Remote DOS Exploit Pierre Noguès (Mar 31)
- iDefense Security Advisory 03.30.10: Oracle Java Runtime Environment Image FIle Buffer Overflow Vulnerability iDefense Labs (Mar 31)