Bugtraq: by thread
147 messages
starting Oct 02 12 and
ending Oct 31 12
Date index |
Thread index |
Author index
- CVE-2012-3819: Stack Overflow in DartWebserver.dll <= 1.9 Ken (Oct 02)
- [ MDVSA-2012:154-1 ] apache security (Oct 02)
- [security bulletin] HPSBST02818 SSRT100960 rev.1 - HP IBRIX X9000 Storage, Remote Disclosure of Information security-alert (Oct 02)
- [security bulletin] HPSBUX02814 SSRT100930 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) security-alert (Oct 02)
- [ MDVSA-2012:152-1 ] bind security (Oct 02)
- [ MDVSA-2012:156 ] inn security (Oct 02)
- [ MDVSA-2012:155-1 ] xinetd security (Oct 02)
- GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
- <Possible follow-ups>
- GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 09)
- Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
- <Possible follow-ups>
- Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
- Better WP Security v3.4.3 Wordpress - Web Vulnerabilities Vulnerability Lab (Oct 02)
- CA20121001-01: Security Notice for CA License Williams, James K (Oct 02)
- Reminder: ClubHack2012 Call for Papers Closing Soon abhijeet (Oct 02)
- phptax 0.8 <= Remote Code Execution Vulnerability pereira (Oct 02)
- XSS Vulnerabilities in phpFreeChat Netsparker Advisories (Oct 02)
- [ MDVSA-2012:153-1 ] dhcp security (Oct 03)
- [ MDVSA-2012:157 ] openjpeg security (Oct 03)
- [ MDVSA-2012:158 ] gc security (Oct 03)
- Multiple vulnerabilities in Template CMS advisory (Oct 03)
- Omnistar Mailer v7.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 03)
- [security bulletin] HPSBMU02817 SSRT100950 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Disclosure of Information security-alert (Oct 03)
- [ MDVSA-2012:159 ] freeradius security (Oct 04)
- One week left! CFP for ZeroNights Conference in Moscow 19-20 November 2012 Alexander Polyakov (Oct 04)
- ANNOUNCE: RFIDIOt v1.0d released and code migration Adam Laurie (Oct 04)
- XnView JLS File Decompression Heap Overflow Joseph Sheridan (Oct 04)
- Vulnerable MSVC++ 2008 runtime libraries distributed with and installed by Ogg DirectShow filters Stefan Kanthak (Oct 04)
- [DCA-2011-0013] - IBM Informix Dynamic Server 11.50 SET COLLATION Stack OverFlow Crash (Oct 09)
- Team SHATTER Security Advisory: XML file disclosure vulnerability via GET_WRAP_CFG_C and GET_WRAP_CFG_C2 Shatter (Oct 09)
- Team SHATTER Security Advisory: Multiple SQL Injection in Oracle Enterprise Manager (SQL Tunning Sets components) Shatter (Oct 09)
- Team SHATTER Security Advisory: Elevated roles through DBCC Shatter (Oct 09)
- Team SHATTER Security Advisory: Java Operating System command execution Shatter (Oct 09)
- [ MDVSA-2012:151-1 ] ghostscript security (Oct 09)
- [ MDVSA-2012:150-1 ] java-1.6.0-openjdk security (Oct 09)
- [ MDVSA-2012:160 ] imagemagick security (Oct 09)
- [SECURITY] [DSA 2555-1] libxslt security update Moritz Muehlenhoff (Oct 09)
- ESA-2012-035: RSAR Adaptive Authentication (On-Premise) Information Disclosure Vulnerability Security Alert (Oct 09)
- Blender 2.63 Exploitable User Mode Write AV beford (Oct 09)
- [ MDVSA-2012:161 ] html2ps security (Oct 09)
- utempter allows fake host setting paul . szabo (Oct 09)
- [SECURITY] [DSA 2556-1] icedove security update Nico Golde (Oct 09)
- [SECURITY] [DSA 2557-1] hostapd security update Nico Golde (Oct 09)
- [PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation Timo Warns (Oct 09)
- Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites Vulnerability Lab (Oct 09)
- Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 09)
- [SECURITY] [DSA 2558-1] bacula security update Raphael Geissert (Oct 09)
- [security bulletin] HPSBOV02822 SSRT100966 rev.1 - HP Secure Web Server (SWS) for OpenVMS, Remote Denial of Service (DoS), Unauthorized Access, Disclosure of Information security-alert (Oct 09)
- Privilege Escalation Vulnerability in Microsoft Windows advisory (Oct 09)
- soapbox Local Root / Privilege Escalation Vulnerability pereira (Oct 09)
- WingFTP Server Denial of Service Vulnerability Anil Pazvant (Oct 09)
- <Possible follow-ups>
- WingFTP Server Denial of Service Vulnerability Anil Pazvant (Oct 09)
- BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface Anil Pazvant (Oct 09)
- Hardcoreview WriteAV Arbitrary Code Execution pereira (Oct 09)
- FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution pereira (Oct 09)
- <Possible follow-ups>
- Re: FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution pereira (Oct 10)
- Key Systems Electronic Key Lockers command injection and weak authentication vulnerabilities Travis Lee (Oct 09)
- [slackware-security] mozilla-firefox (SSA:2012-283-01) Slackware Security Team (Oct 10)
- [ MDVSA-2012:162 ] bind security (Oct 10)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Cisco Systems Product Security Incident Response Team (Oct 10)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Cisco Systems Product Security Incident Response Team (Oct 10)
- Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format Player Cisco Systems Product Security Incident Response Team (Oct 10)
- [CVE-2012-4501] CloudStack configuration vulnerability John Kinsella (Oct 10)
- VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) pereira (Oct 10)
- <Possible follow-ups>
- Re: VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) pereira (Oct 15)
- Microsoft Office Excel ReadAV Arbitrary Code Execution pereira (Oct 10)
- Multiple vulnerabilities in OpenX advisory (Oct 10)
- Omnistar Document Manager v8.0 - Multiple Vulnerabilities Vulnerability Lab (Oct 10)
- vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 10)
- ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities Security Alert (Oct 11)
- VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates VMware Security Response Center (Oct 11)
- FileBound - Privilege Escalation Vulnerability - Security Advisory - SOS-12-010 Lists (Oct 11)
- [slackware-security] bind (SSA:2012-284-01) Slackware Security Team (Oct 11)
- Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB roberto (Oct 11)
- [ MDVSA-2012:163 ] firefox security (Oct 11)
- [ MDVSA-2012:164 ] libxslt security (Oct 11)
- Last reminder for ClubHack 2012 : Call for Papers abhijeet (Oct 11)
- [slackware-security] mozilla-thunderbird (SSA:2012-285-02) Slackware Security Team (Oct 15)
- [ MDVSA-2012:165 ] graphicsmagick security (Oct 15)
- [ MDVSA-2012:166 ] bacula security (Oct 15)
- [slackware-security] mozilla-firefox (SSA:2012-285-01) Slackware Security Team (Oct 15)
- [ MDVSA-2012:167 ] firefox security (Oct 15)
- [CVE-2012-4750] Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability lorenzo . cantoni86 (Oct 15)
- SilverStripe CMS 2.4.7 <= Arbitrary URL Redirection YGN Ethical Hacker Group (Oct 15)
- SilverStripe CMS 2.4.7 <= Persistent Cross Site Scripting Vulnerability YGN Ethical Hacker Group (Oct 15)
- Multiple vulnerabilities in Samsung Kies advisory (Oct 15)
- Critical issues affecting Steam users ReVuln (Oct 15)
- [slackware-security] seamonkey (SSA:2012-288-01) Slackware Security Team (Oct 15)
- Visual Tools DVR multiple vulnerabilities Andrea Fabrizi (Oct 16)
- APPLE-SA-2012-10-16-1 Java for OS X 2012-006 and Java for Mac OS X 10.6 Update 11 Apple Product Security (Oct 17)
- [SECURITY] [DSA 2559-1] libexif security update Yves-Alexis Perez (Oct 17)
- SEC Consult SA-20121017-0 :: ModSecurity multipart/invalid part ruleset bypass SEC Consult Vulnerability Lab (Oct 17)
- SEC Consult SA-20121017-1 :: Unirgy uStoreLocator SQL Injection - Magento extension SEC Consult Vulnerability Lab (Oct 17)
- [IMF 2013] 3rd Call for Papers: Deadline Extended Oliver Goebel (Oct 17)
- SEC Consult SA-20121017-2 :: Multiple vulnerabilities in Oracle WebCenter Sites (former FatWire Content Server) SEC Consult Vulnerability Lab (Oct 17)
- Multiple vulnerabilities in AContent advisory (Oct 17)
- Multiple vulnerabilities in Subrion CMS advisory (Oct 17)
- Multiple vulnerabilities in jCore advisory (Oct 17)
- [waraxe-2012-SA#092] - Multiple Vulnerabilities in Wordpress Slideshow Plugin come2waraxe (Oct 17)
- [waraxe-2012-SA#093] - Multiple Vulnerabilities in Wordpress Social Discussions Plugin come2waraxe (Oct 17)
- MitM-vulnerability in Palo Alto Networks GlobalProtect Micha Borrmann (Oct 17)
- Internet Explorer 9 XSS Filter Bypass pereira (Oct 18)
- CA20121018-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Oct 18)
- Multiple Vulnerabilities in Campaign Enterprise <= 11.0.538 Ken (Oct 18)
- CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Vulnerability Lab (Oct 19)
- Old Habits Die Hard: Cross-Zone Scripting in Dropbox & Google Drive Mobile Apps Roi Saltzman (Oct 19)
- XSS Vulnerabilities in TaskFreak Netsparker Advisories (Oct 23)
- XSS Vulnerabilities in CMSMini Netsparker Advisories (Oct 23)
- XSS Vulnerabilities in ClipBucket Netsparker Advisories (Oct 23)
- F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection YGN Ethical Hacker Group (Oct 24)
- Re: [Full-disclosure] F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection Gary Driggs (Oct 24)
- [SECURITY] [DSA 2560-1] bind9 security update Florian Weimer (Oct 24)
- [SECURITY] [DSA 2561-1] tiff security update Moritz Muehlenhoff (Oct 24)
- VaM Shop Cross-Site Scripting and Blind SQL Injection Vulnerabilities sec . team (Oct 24)
- [ MDVSA-2012:168 ] hostapd security (Oct 24)
- DC4420 - London DEFCON - October meet - tomorrow, Tuesday 23rd October. alien DC4420 (Oct 24)
- [security bulletin] HPSBHF02819 SSRT100920 rev.1 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information security-alert (Oct 24)
- [security bulletin] HPSBUX02824 SSRT100970 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code, and Other Vulnerabilities security-alert (Oct 24)
- VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063) VUPEN Security Research (Oct 24)
- VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063) VUPEN Security Research (Oct 24)
- VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability VUPEN Security Research (Oct 24)
- VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability VUPEN Security Research (Oct 24)
- [SECURITY] [DSA 2565-1] iceweasel security update Florian Weimer (Oct 24)
- HP/H3C and Huawei SNMP Weak Access to Critical Data Kurt Grutzmacher (Oct 24)
- [SECURITY] [DSA 2563-1] viewvc security update Thijs Kinkhorst (Oct 24)
- [SECURITY] [DSA 2562-1] cups-pk-helper security update Thijs Kinkhorst (Oct 24)
- [SECURITY] [DSA 2564-1] tinyproxy security update Thijs Kinkhorst (Oct 24)
- [waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin come2waraxe (Oct 24)
- Smf 2.0.2 Cross-Site Scripting Vulnerability irist . ir (Oct 25)
- Wordpress 3.4 Cross-Site Scripting Vulnerability irist . ir (Oct 25)
- [security bulletin] HPSBHF02819 SSRT100920 rev.2 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information security-alert (Oct 26)
- [SECURITY] [DSA 2566-1] exim4 security update Nico Golde (Oct 26)
- Inventory 1.0 Multiple SQL Vulnerabilities Thomas Richards (Oct 26)
- Inventory 1.0 Multiple XSS Vulnerabilities Thomas Richards (Oct 26)
- [SECURITY] [DSA 2567-1] request-tracker3.8 security update Florian Weimer (Oct 29)
- [SECURITY] [DSA 2568-1] rtfm security update Florian Weimer (Oct 29)
- [slackware-security] mozilla-firefox (SSA:2012-300-01) Slackware Security Team (Oct 29)
- EMC Avamar Client for VMware Sensitive Information Disclosure Vulnerability Security Alert (Oct 29)
- Exploit - EasyITSP by Lemens Telephone Systems 2.0.2 Michał Błaszczak (Oct 29)
- KmPlayer v3.0.0.1440 Local Crash PoC irist . ir (Oct 29)
- PIAF H.M.S - SQL Injection Michał Błaszczak (Oct 29)
- Call for Papers: DIMVA 2013 Collin Mulliner (Oct 29)
- [SECURITY] [DSA 2569-1] icedove security update Florian Weimer (Oct 30)
- [security bulletin] HPSBUX02825 SSRT100974 rev.1 - HP-UX Running Java, Remote Indirect Vulnerabilities security-alert (Oct 30)
- [waraxe-2012-SA#095] - Multiple Vulnerabilities in Wordpress FoxyPress Plugin come2waraxe (Oct 31)
- [slackware-security] mozilla-thunderbird (SSA:2012-304-01) Slackware Security Team (Oct 31)
- [slackware-security] seamonkey (SSA:2012-304-02) Slackware Security Team (Oct 31)
- [BUGTRAQ]Security Advisory - TP-LINK TL-WR841N LFI - [UPDATE] Matan Azugi (Oct 31)