Full Disclosure: by date

PreviousPrevious period
Next periodNext

530 messages starting Aug 01 07 and ending Aug 31 07
Date index | Thread index | Author index

Wednesday, 01 August

*****SPAM***** New Wordpress 2.2.1 Vulnerabilities and the First Weblog XSS Worm mybeni websecurity
Firefox 2.0.0.6 Java Pop-Up DoS flaw carl hardwick
Bug on web site of Italian Bank corrado.liotta
Re: [WEB SECURITY] *****SPAM***** New Wordpress 2.2.1 Vulnerabilities and the First Weblog XSS Worm neil-webappsec-org
"debug k" freezing Cisco routers? Shawn Merdinger
Re: "debug k" freezing Cisco routers? Leif Sawyer
Re: Firefox 2.0.0.6 Java Pop-Up DoS flaw Daniel Veditz
Re: "debug k" freezing Cisco routers? Shawn Merdinger
FLEA-2007-0038-1 gimp Foresight Linux Essential Announcement Service
Re: Firefox 2.0.0.6 Java Pop-Up DoS flaw carl hardwick
FLEA-2007-0039-1 firefox Foresight Linux Essential Announcement Service
Re: "debug k" freezing Cisco routers? Felix 'FX' Lindner
[ MDKSA-2007:151 ] - Updated qt3 packages fix multiple vulnerabilities security
n3td3v shuts down mailing list as mirror HACK THE GOV
[ MDKSA-2007:152 ] - Updated Firefox packages fix multiple vulnerabilities security
Baidu Soba Remote Code Execute Vulnerability(FGA-2007-10) hfli
HORDE VULNERABILITIES Mesut EREN
[USN-494-1] Gimp vulnerability Kees Cook

Thursday, 02 August

rPSA-2007-0153-1 qt-x11-free rPath Update Announcements
CVE-2007-3384: XSS in Tomcat cookies example Mark Thomas
DVD Rental System multiple XSS and CSRF vulnerabilities edi.strosar
Testing from thr browser David Kierznowski
[Whitepaper SecNiche] Insecurities in Implementing Serialization in BISON Aditya K Sood
Re: [Whitepaper SecNiche] Insecurities in Implementing Serialization in BISON Joey Mengele
[Whitepaper SecNiche] Insecurities in Implementing Serialization in BISON Aditya K Sood
Re: [Whitepaper SecNiche] Insecurities in Implementing Serialization in BISON Joey Mengele
Re: [Whitepaper SecNiche] Insecurities inImplementing Serialization in BISON Debasis Mohanty
L2TP packet genrator/Fuzzer? crazy frog crazy frog
Minimo .2 and more Firefox 2.0.0.6 Password Manager Vulnerabilites Seth Fogie
Re: [Whitepaper SecNiche] Insecurities inImplementing Serialization in BISON Joey Mengele
Re: [Whitepaper SecNiche] Insecurities in Implementing Serialization in BISON Pranay Kanwar
BS.Player 2.22 NULL ptr dereference edi.strosar

Friday, 03 August

[USN-496-1] koffice vulnerability Martin Pitt
[USN-495-1] Qt vulnerability Martin Pitt
FLEA-2007-0041-1 gdm Foresight Linux Essential Announcement Service
FLEA-2007-0040-1 thunderbird Foresight Linux Essential Announcement Service
[SECURITY] [DSA 1344-1] New iceweasel packages fix several vulnerabilities Moritz Muehlenhoff
Yahoo url redirection flaw insist kool
[AOGBF] Re: BS.Player 2.22 NULL ptr dereference 3APA3A
Re: HORDE VULNERABILITIES 3APA3A
FLEA-2007-0042-1 qt Foresight Linux Essential Announcement Service
intrusion kit Joshua Tagnore
Re: "debug k" freezing Cisco routers? Shawn Merdinger
Re: BS.Player 2.22 NULL ptr dereference edi.strosar
Re: intrusion kit gjgowey
Re: intrusion kit J. Oquendo
Proposed secure network using pre-existing infrastructure Gadi Evron
Proposed secure network using pre-existing infrastructure Gadi Evron
155.libero.it XSS vulnerability Gianni Amato
[ MDKSA-2007:153 ] - Updated gd packages fix several vulnerabilities security
Immunity Debugger has been released! Nicolas Waisman
MDS 9000 OS? - (was "debug k" freezing Cisco routers?) Shawn Merdinger

Saturday, 04 August

Re: "debug k" freezing Cisco routers? Nick Eoannidis
[SECURITY] [DSA 1345-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff
[SECURITY] [DSA 1346-1] New iceape packages fix several vulnerabilities Moritz Muehlenhoff
[SECURITY] [DSA 1347-1] New xpdf packages fix arbitrary code execution Moritz Muehlenhoff
[SECURITY] [DSA 1348-1] New poppler packages fix arbitrary code execution Moritz Muehlenhoff
bbc calls them hackers not security researchers HACK THE GOV
Computer literate? Gadi Evron
Panda Antivirus EoP (BID 25186) edi.strosar
NBC Dateline reschedules "to catch a blackhat" due to technical difficulties... coderman

Sunday, 05 August

cfp: TRsec, Istanbul Turkey gadie
[SECURITY] [DSA 1349-1] New libextractor packages fix arbitrary code execution Moritz Muehlenhoff
a couple of notes on Neal Krawetz image forensics presentation Michal Zalewski
Re: a couple of notes on Neal Krawetz image forensics presentation HACK THE GOV
Remote hole in OpenBSD 4.1 Gadi Evron
Re: Remote hole in OpenBSD 4.1 monikerd
Re: Remote hole in OpenBSD 4.1 Michael Smythe
Re: Remote hole in OpenBSD 4.1 George Capehart
Chacha search engine vulnerablity cybermalandro cybermalandro

Monday, 06 August

Re: intrusion kit Morning Wood
[Beyond Security] New sudo off-by-one poc exploit. Beyond Security
joe jobs on FD and OpenBSD Gadi Evron
Re: Remote hole in OpenBSD 4.1 Gadi Evron
Re: [Beyond Security] New sudo off-by-one poc exploit. Andrew Farmer
Re: [Beyond Security] New sudo off-by-one poc exploit. 3APA3A
Re: intrusion kit Paul Schmehl
[SECURITY] [DSA 1350-1] New tetex-bin packages fix arbitrary code execution Moritz Muehlenhoff
[SECURITY] [DSA 14-88] New coreutils packages fix several vulnerabilities WHITEHATS MUST HANG
joe jobs on FD and OpenBSD Gadi Evron
Re: joe jobs on FD and OpenBSD goudatr0n
Re: Remote hole in OpenBSD 4.1 wac
Re: joe jobs on FD and OpenBSD Gadi Evron
Re: [SECURITY] [DSA 14-88] New coreutils packages fix several vulnerabilities Valdis . Kletnieks
ZDI-07-045: Novell Client NWSPOOL.DLL Stack Overflow Vulnerability zdi-disclosures
Konqueror: URL address bar spoofing vulnerabilities Robert Swiecki
Re: Konqueror: URL address bar spoofing vulnerabilities Jonathan Smith
Re: Konqueror: URL address bar spoofing vulnerabilities Jonathan Smith
Re: Konqueror: URL address bar spoofing vulnerabilities paraw
EZPhotoSales 1.9.3 Multiple Vulnerabilities Seth Fogie
CISSP, round two Tonu Samuel
Re: CISSP, round two Ray P
Re: Konqueror: URL address bar spoofing vulnerabilities Robert Swiecki

Tuesday, 07 August

IE6 DOS Tonu Samuel
Mozilla Firefox and Internet Explorer susceptible to DNS Re-binding attacks Eric Uday Kumar
Re: Firefox 2.0.0.6 Java Pop-Up DoS flaw Daniel Veditz
Re: Firefox 2.0.0.6 Java Pop-Up DoS flaw Daniel Veditz
Re: intrusion kit h4h
[SECURITY] [DSA 1351-] New bochs packages fix privilege escalation Moritz Muehlenhoff
iDefense Security Advisory 08.07.07: Hewlett-Packard HP-UX Remote ldcconn Buffer Overflow Vulnerability iDefense Labs
[SECURITY] [DSA 1352-1] New pdfkit.framework packages fix arbitrary code execution Moritz Muehlenhoff
ASA-2007-019: Remote crash vulnerability in Skinny channel driver Security Response Team
iDefense Security Advisory 08.07.07: Apple Mac OS X mDNSResponder HTTP Request Heap Overflow Vulnerability iDefense Labs
Right, or wrong? Jared DeMott
Re: BTsniff - Bleutooth sniffing under *nix shiftnato
Re: Right, or wrong? Valdis . Kletnieks
Re: Right, or wrong? Robert Kim Wireless Internet Advisor
[USN-496-2] poppler vulnerability Kees Cook
Re: Right, or wrong? Thierry Zoller
Re: Right, or wrong? Sol_Invictus
Re: Right, or wrong? Brian Eaton
Re: Remote hole in OpenBSD 4.1 Joey Mengele

Wednesday, 08 August

Re: Right, or wrong? monikerd
Re: intrusion kit Roberto Mizuuti
Xbox live accounts are being stolen Ashley Wilson
Re: Right, or wrong? Fixer
Re: Xbox live accounts are being stolen Kevin Finisterre (lists)
Re: Right, or wrong? Byron Sonne
XSS vulnerability in Cisco MeetingPlace Disclosure
Re: Xbox live accounts are being stolen Glenn.Everhart
L2TP Packet Generator? Code Breaker
Re: XSS vulnerability in Cisco MeetingPlace Paul Oxman (poxman)
Re: Right, or wrong? Valdis . Kletnieks
Cisco Security Advisory: Cisco IOS Secure Copy Authorization Bypass Vulnerability Cisco Systems Product Security Incident Response Team
Re: intrusion kit h4h
Cisco Security Advisory: Cisco IOS Next Hop Resolution Protocol Vulnerability Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco IOS Information Leakage Using IPv6 Routing Header Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager Cisco Systems Product Security Incident Response Team
Java fullscreen PWNage Tonu Samuel
Re: Xbox live accounts are being stolen Jail Halvar
grown ups are banned from n3td3v HACK THE GOV
[ GLSA 200708-01 ] Macromedia Flash Player: Remote arbitrary code execution Raphael Marichez
[ GLSA 200708-02 ] Xvid: Array indexing vulnerabilities Raphael Marichez
[ GLSA 200708-03 ] libarchive (formerly named as bsdtar): Multiple pax Extension Header Vulnerabilities Raphael Marichez
Re: [inbox] Xbox live accounts are being stolen Exibar
Re: Right, or wrong? Steven
Re: L2TP Packet Generator? J.A. Terranson
Re: Right, or wrong? ireadit

Thursday, 09 August

(no subject) h buffo
Re: (no subject) gjgowey
Cisco NHRP denial of service (cisco-sa-20070808-nhrp) Martin Kluge
Re: [inbox] Xbox live accounts are being stolen Nicholas
List Charter John Cartwright
Re: Xbox live accounts are being stolen (is the training working?) Kevin Finisterre (lists)
Re: Right, or wrong? Byron Sonne
Re: Xbox live accounts are being stolen (is the training working?) Kevin Finisterre (lists)
Re: Right, or wrong? J. M. Seitz
Re: Xbox live accounts are being stolen (is thetraining working?) Kevin Finisterre (lists)
Re: Xbox live accounts are being stolen (is thetraining working?) Jay
Re: Xbox live accounts are being stolen (is the training working?) Scott Hirnle
ISP Censorship Stack Smasher
[Security Advisory] Backdoor Discovered in Immunity Debugger goudatr0n
Re: [Security Advisory] Backdoor Discovered inImmunity Debugger J. M. Seitz
Re: [Security Advisory] Backdoor Discovered in Immunity Debugger Jared DeMott
Re: [Security Advisory] Backdoor Discovered in Immunity Debugger nnp
Re: [Security Advisory] Backdoor Discovered inImmunity Debugger J. M. Seitz
Design flaw in AS3 socket handling allows port probing fukami
Re: bbc calls them hackers not security researchers Михал Потапыч
iDefense Security Advisory 08.09.07: Hewlett-Packard OpenView Operations OVTrace Buffer Overflow Vulnerabilities iDefense Labs
Re: (no subject) Open Phugu
Re: [Security Advisory] Backdoor Discovered inImmunity Debugger h4h
Re: [Security Advisory] Backdoor Discovered in?Immunity Debugger]] Nicolas Waisman
Re: [Security Advisory] Backdoor Discovered in?Immunity Debugger]] monikerd
Re: [Security Advisory] Backdoor Discovered in?Immunity Debugger]] Andre Gironda
Re: [Security Advisory] Backdoor Discovered in?Immunity Debugger]] monikerd
Re: [Security Advisory] Backdoor Discovered in?Immunity Debugger]] Andre Gironda
[ GLSA 200708-04 ] ClamAV: Denial of Service Raphael Marichez
[ GLSA 200708-05 ] GD: Multiple vulnerabilities Raphael Marichez
Re: (no subject) James Matthews
Re: [Security Advisory] Backdoor Discovered in?Immunity Debugger]] Slythers Bro
BH/DC: Tactical Exploitation Materials H D Moore
Re: BH/DC: Tactical Exploitation Materials Hernan Ochoa
Re: BH/DC: Tactical Exploitation Materials H D Moore
Re: [Security Advisory] Backdoor Discovered inImmunity Debugger cocoruder .

Friday, 10 August

Re: [Security Advisory] Backdoor Discovered inImmunity Debugger monikerd
Zyxel Zywall 2 multiple vulnerabilities Henri Lindberg - Smilehouse Oy
BlackHat/Defcon 2007 Timing Stuff Released.. haroon
DEFCON 15 and Blackhat 2007 presentations iso CDs ? Mark Sec
New Oracle Forensics Paper David Litchfield
Re: [Security Advisory] Backdoor Discovered inImmunity Debugger Valdis . Kletnieks
IE leaks data A H
Re: [Security Advisory] Backdoor Discovered inImmunity Debugger monikerd
Re: ISP Censorship Troy
Re: ISP Censorship Steven Adair

Sunday, 12 August

Re: ISP Censorship Nexox Enigma
rPSA-2007-0155-1 openssl openssl-scripts rPath Update Announcements
rPSA-2007-0157-1 firefox thunderbird rPath Update Announcements
rPSA-2007-0154-1 cups poppler tetex tetex-afm tetex-dvips tetex-fonts tetex-latex tetex-xdvi rPath Update Announcements
[SECURITY] [DSA 1353-1] New tcpdump packages fix arbitrary code execution Moritz Muehlenhoff
CISSP, Final Round bpzp
[ GLSA 200708-07 ] Xfce Terminal: Remote arbitrary code execution Raphael Marichez
freenode #n3td3v HACK THE GOV
[ GLSA 200708-06 ] Net::DNS: Multiple vulnerabilities Raphael Marichez
[ GLSA 200708-08 ] SquirrelMail G/PGP plugin: Arbitrary code execution Raphael Marichez
Found a lof of sites exploiting Firefox URI vulnerability!!! carl hardwick
symantec website is vulnerable Tonu Samuel
BLOGGER XSS VULNERABILITY Daniele Costa
Facebook Homepage Source Code Probably Leaked pdp (architect)
Firefox Remote Variable Leakage vulnerability carl hardwick
Firefox 2.0.0.6 Remote Variable Leakage vulnerability carl hardwick
Thomas Schulte/HV/RCG/DE ist außer Haus. Thomas Schulte
Re: BLOGGER XSS VULNERABILITY Susam Pal

Monday, 13 August

Re: DEFCON 15 and Blackhat 2007 presentations iso CDs ? Kristian Erik Hermansen
Re: Firefox 2.0.0.6 Remote Variable Leakage vulnerability Michal Zalewski
Re: BLOGGER XSS VULNERABILITY Valdis . Kletnieks
Re: BLOGGER XSS VULNERABILITY Susam Pal
Flaw in google redirection url Keepp the secret
Re: 0day h buffo
Re: DEFCON 15 and Blackhat 2007 presentations iso overtime CDs ? Robert Kim Wireless Internet Advisor
Found a lot of sites exploiting Firefox URI vulnerability!!! - part 2 carl hardwick
Multiple vulnerabilities in ircu Wouter Coekaerts
Vulnerability in multiple "now playing" scripts for various IRC clients Wouter Coekaerts
RE: Thomas Schulte/HV/RCG/DE ist außer Haus. M. Shirk
CNN.com XSS hacked Tonu Samuel
Re: CNN.com XSS hacked James Matthews
Re: 0day Guasconi Vincent
Re: CNN.com XSS hacked gjgowey
[SECURITY] [DSA 1354-1] New gpdf packages fix arbitrary code execution Moritz Muehlenhoff
[o0o] Bypassing servlet input validation filters (OWASP Stinger + Struts example) Meder Kydyraliev
Re: 0day Valdis . Kletnieks
Re: 0day Alex Robar
Breakpoint Security Conference Registration Now Open Breakpoint Security
Re: BLOGGER XSS VULNERABILITY Harry Muchow
Remote Denial of Service for SSH service at Dell DRAC4 (maybe Mocana SSH) Robert Scheck
[SECURITY] [DSA 1355-1] New kdegraphics packages fix arbitrary code execution Moritz Muehlenhoff
Re: 0day htg
Re: Found a lot of sites exploiting Firefox URI vulnerability!!! - part 2 Daniel Veditz
FLEA-2007-0043-1 openssl Foresight Linux Essential Announcement Service
FLEA-2007-0043-1 openssl Foresight Linux Essential Announcement Service
Remote Memory Read in Diskeeper 9 - 2007 auto97265
Re: CISSP, Final Round Ray P
[USN-497-1] xfce4-terminal vulnerability Kees Cook
Re: Firefox 2.0.0.6 Remote Variable Leakage vulnerability Joseph Hick
Re: [USN-497-1] xfce4-terminal vulnerability Eren Türkay

Tuesday, 14 August

Re: CISSP, Final Round Marco Ermini
Found a lot of sites exploiting Firefox URI vulnerability!!! - part 2 carl hardwick
CVE-2007-3382: Handling of cookies containing a ' character Mark Thomas
CVE-2007-3385: Handling of \" in cookies Mark Thomas
CVE-2007-3386: XSS in Host Manager Mark Thomas
Stop WabiSabiLabi Hacker Oppression NOW Joey Mengele
Stop WabiSabiLabi Hacker Oppression NOW Joey Mengele
COSEINC Linux Advisory #1: Linux Kernel Parent Process Death Signal Vulnerability Wojciech Purczynski
Re: CVE-2007-3382: Handling of cookies containing a ' character Christopher Schultz
Coming Soon: Month Of n3td3v Bugs htg
Re: Coming Soon: Month Of n3td3v Bugs monikerd
Re: CVE-2007-3382: Handling of cookies containing a ' character Ismail Dönmez
Re: Firefox 2.0.0.6 Remote Variable Leakage vulnerability Steven
Crash in Zoidcom 0.6.7 Luigi Auriemma
Multiple vulnerabilities in Babo Violent 2 2.08.00 Luigi Auriemma
Multiple vulnerabilities in Live for Speed 0.5X10 Luigi Auriemma
FLEA-2007-0044-1 tetex tetex-dvips tetex-fonts Foresight Linux Essential Announcement Service
FLEA-2007-0045-1 poppler Foresight Linux Essential Announcement Service
ZDI-07-046: Microsoft Windows Media Player Skin Parsing Size Mismatch Heap Overflow Vulnerability zdi-disclosures
ZDI-07-047: Microsoft Windows Media Player Malformed Skin Header Code Execution Vulnerability zdi-disclosures
ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability zdi-disclosures
TPTI-07-14: HP OpenView Multiple Product Shared Trace Service Stack Overflow Vulnerabilities TSRT
iDefense Security Advisory 08.14.07: Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability iDefense Labs
iDefense Security Advisory 08.14.07: Microsoft Windows Vista Sidebar RSS Feeds Gadget Cross Site Scripting Vulnerability iDefense Labs
[ GLSA 200708-09 ] Mozilla products: Multiple vulnerabilities Raphael Marichez
FLEA-2007-0046-1 cups Foresight Linux Essential Announcement Service
John Bambenek releases ZF03 auto146975
Re: John Bambenek releases ZF03 Slythers Bro
Re: John Bambenek releases ZF03 coderman

Wednesday, 15 August

EEYE: Windows Metafile AttemptWrite Heap Overflow eEye Advisories
EEYE: VGX.DLL Compressed Content Heap Overflow Vulnerability eEye Advisories
rPSA-2007-0160-1 openoffice.org rPath Update Announcements
rPSA-2007-0161-1 dovecot rPath Update Announcements
McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow Sebastian Wolfgarten
SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Aditya K Sood
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow Joey Mengele
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow Harry Muchow
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow monikerd
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Debasis Mohanty
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow Joseph Hick
Cisco Security Advisory: Local Privilege Escalation Vulnerabilities in Cisco VPN Client Cisco Systems Product Security Incident Response Team
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Aditya K Sood
Cisco support multiple pptp (GRE) Channels ? Michael Gale
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow sebastian
iDefense Security Advisory 08.15.07: ESRI ArcSDE Numeric Literal Buffer Overflow Vulnerability iDefense Labs
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulner Jimby Sharp
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulner security curmudgeon
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Julio Cesar Fort
Immunity Debugger Plugin Awards Nicolas Waisman
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability J. Oquendo
Release of Pass-The-Hash Toolkit for Windows v1.0 Hernan Ochoa
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow Joey Mengele
September 6th Chicago 2600/DefCon 312 Meeting Information Steven McGrath
Re: Cisco support multiple pptp (GRE) Channels ? Joseph Karpenko (jkarpenk)
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulner Steven M. Christey
TlbInf32 ActiveX Command Execution Brett Moore
[SECURITY] [DSA 1356-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Greg
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow Jimby Sharp
I was browsing the web and noticed this, anyone have an idea? d e f c o n
[USN-498-1] libvorbis vulnerabilities Kees Cook

Thursday, 16 August

MS07-042 XMLDOM substringData() PoC Alla Bezroutchko
Another Oracle Forensics Paper... David Litchfield
FLEA-2007-0046-1 cups Foresight Linux Essential Announcement Service
Re: McAfee Virus Scan for Linux and Unix v5.10.0 Local Buffer Overflow 3APA3A
Interesting fun with Cisco VPN Client Privilege Escalation Vulnerabilities James Lay
Re: I was browsing the web and noticed this, anyone have an idea? James Matthews
[ GLSA 200708-10 ] MySQL: Denial of Service and information leakage Raphael Marichez
Re: Interesting fun with Cisco VPN Client Privilege Escalation Vulnerabilities J. Oquendo
Microsoft webistes experiencing problems? Joshua Russel
Re: Microsoft webistes experiencing problems? Valdis . Kletnieks
Re: Microsoft webistes experiencing problems? James Matthews
Re: Interesting fun with Cisco VPN Client Privilege Escalation Vulnerabilities Steven Adair
Skype - the voip company Simon Smith
[ GLSA 200708-11 ] Lighttpd: Multiple vulnerabilities Raphael Marichez
[ GLSA 200708-12 ] Wireshark: Multiple vulnerabilities Raphael Marichez
Re: Skype - the voip company J.A. Terranson
Re: Skype - the voip company Fabian Wenk
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Pranay Kanwar
iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Multiple Race Condition Vulnerabilities iDefense Labs
Re: iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Multiple Race Condition Vulnerabilities iDefense Labs
iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Directory Traversal Vulnerability iDefense Labs
iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Multiple File Creation Vulnerabilities iDefense Labs
iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Directory Creation Vulnerability iDefense Labs
iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Multiple Untrusted Search Path Vulnerabilities iDefense Labs
iDefense Security Advisory 08.16.07: IBM DB2 Universal Database buildDasPaths Buffer Overflow Vulnerability iDefense Labs
Re: Xbox Live Gamertag stolen Kevin Finisterre (lists)
[USN-499-1] Apache vulnerabilities Kees Cook

Friday, 17 August

Skype Network Remote DoS Exploit Valery Marchuk
Skype Network Remote DoS Exploit Valery Marchuk
rPSA-2007-0164-1 kernel rPath Update Announcements
Re: Skype - the voip company Tonu Samuel
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Steven M. Christey
Re: Skype Network Remote DoS Exploit ascii
Re: Skype - the voip company Nikolay Kichukov
Re: Xbox Live Gamertag stolen Kevin Finisterre (lists)
Re: Xbox Live Gamertag stolen Kevin Finisterre (lists)
Re: Xbox Live Gamertag stolen Joey Mengele
Re: Xbox Live Gamertag stolen Joey Mengele
[Urgent] JWIG Material is Removed or Refrain From Websites Meta Info
Re: Skype - the voip company Simon Smith
Re: SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability Pranay Kanwar
[ MDKSA-2007:164 ] - Updated tetex packages fix multiple vulnerabilities security
[ MDKSA-2007:165 ] - Updated cups packages fix vulnerability security
[ MDKSA-2007:162 ] - Updated kdegraphics packages fix vulnerability security
[ MDKSA-2007:163 ] - Updated koffice packages fix vulnerability security

Saturday, 18 August

Re: Skype Network Remote DoS Exploit Draichis
Mercury SMTPD Remote Preauth Stack Based Overrun eliteb0y
[ GLSA 200708-13 ] BIND: Weak random number generation Raphael Marichez
new default password database available admin
Unexploitable buffer-overflow in the logging function of the Unreal engine Luigi Auriemma
Multiple vulnerabilities in rFactor 1.250 Luigi Auriemma
Multiple vulnerabilities in Toribash 2.71 Luigi Auriemma
OSNews I. D.
[ MDKSA-2007:167 ] - Updated libvorbis packages fix vulnerabilities security
[ MDKSA-2007:166 ] - Updated rsync packages fix off-by-one buffer overflow security

Sunday, 19 August

Re: new default password database available Felix 'FX' Lindner
Analyses of Cyber Jihadist Forums and Blogs Dancho Danchev
Re: new default password database available str0ke
Microsoft Windows Live Messenger Live Call Local Privilege Escalation Vulnerability David Maciejak
Re: Microsoft Windows Live Messenger Live Call Local Privilege Escalation Vulnerability monikerd
Re: Microsoft Windows Live Messenger Live Call Local Privilege Escalation Vulnerability David Maciejak
[SECURITY] [DSA 1357-1] New koffice packages fix arbitrary code execution Moritz Muehlenhoff
[ GLSA 200708-15 ] Apache mod_jk: Directory traversal Raphael Marichez
[ GLSA 200708-14 ] NVIDIA drivers: Denial of Service Raphael Marichez
Re: [ GLSA 200708-14 ] NVIDIA drivers: Denial of Service Eduardo Tongson

Monday, 20 August

Re: new default password database available Floyd Pinkerton
Re: new default password database available admin
London DEFCON Group meet - DC4420 - this wednesday, 22nd August Major Malfunction
[TOOL] TXDNS 2.1.5. An aggressive multithreaded DNS brute-forcer Arley Silveira
0day for sell Juergen Marester
DL over GF(p^k), p small Imaginero Lamero
Re: 0day for sell Tremaine Lea
Re: 0day for sell Ferdinand Klinzer
Re: 0day for sell M. Shirk
Re: 0day for sell Valdis . Kletnieks
iDefense Security Advisory 08.20.07: Check Point Zone Labs Multiple Products Privilege Escalation Vulnerability iDefense Labs
IMF 2007 - Call for Participation Oliver Goebel
iDefense Security Advisory 08.20.07: Check Point Zone Labs VSDATANT Multiple IOCTL Privilege Escalation Vulnerabilities iDefense Labs
Re: 0day for sell jf
[ MDKSA-2007:167-1 ] - Updated libvorbis packages fix vulnerabilities security
ZDI-07-049: EMC Legato Networker Remote Exec Service Stack Overflow Vulnerabilities zdi-disclosures
[USN-500-1] rsync vulnerability Kees Cook
Barrister John Ade has O'day fer sale Dude VanWinkle
Re: Barrister John Ade has O'day fer sale Dude VanWinkle
Re: Barrister John Ade has O'day fer sale James Matthews
Re: Barrister John Ade has O'day fer sale Joseph Hick
Re: 0day for sell scott
[USN-501-1] jasper vulnerability Kees Cook
Re: 0day for sell gjgowey
Black Hat: How to Hack IPS Signatures lonely squirrel
10 messages SIP Remote DOS on Cisco 7940 SIP Phone Radu State
3 messsages attack remote DOS on Cisco 7940 Radu State
SSHatter Tim Brown

Tuesday, 21 August

Potenetially way OT: New rant mike kemp
Re: 0day for sell William Lefkovics
No cON Name 2007 - CALL FOR PAPERS deese
iDefense Security Advisory 08.20.07: Trend Micro SSAPI Long Path Buffer Overflow Vulnerability iDefense Labs
Vulnerabilities digest 3APA3A
AST-2007-020: Resource Exhaustion Vulnerability in Asterisk SIP channel driver Asterisk Security Team
iDefense Security Advisory 08.21.07: Trend Micro ServerProtect Multiple Buffer Overflow Vulnerabilities iDefense Labs
iDefense Security Advisory 08.21.07: Trend Micro ServerProtect RPCFN_SYNC_TASK Integer Overflow Vulnerability iDefense Labs
[ MDKSA-2007:168 ] - Updated vim packages fix vulnerability security
Re: 0day for sell T Biehn
[ MDKSA-2007:169 ] - Updated gdm packages fix DoS vulnerability security
pftp-shit v1.11 directory listing ghetto patch T Biehn
Re: pftp-shit v1.11 directory listing ghetto patch gjgowey

Wednesday, 22 August

Remote eavesdropping with SIP Phone GXV-3000 Radu State
Ripe Website Manager SQL Injection and Cross Site Scripting Vulnerabilities OS2A BTO
Announcement: Releasing CORE GRASP for PHP. An open source, dynamic web application protection system. Ezequiel Gutesman
Re: Announcement: Releasing CORE GRASP for PHP. An open source, dynamic web application protection system. Ezequiel Gutesman
Security Contact for FOX Sports foxworm
Re: Security Contact for FOX Sports Jay
Camino release 1.5.1 fixes several vulnerabilities Juha-Matti Laurio
Buffer-overflow in the Asura engine Luigi Auriemma
[ GLSA 200708-16 ] Qt: Multiple format string vulnerabilities Raphael Marichez
[ GLSA 200708-17 ] Opera: Multiple vulnerabilities Raphael Marichez
Popular Malware Kits and Tools Dancho Danchev
Re: Vulnerabilities digest Steven M. Christey
Multiple Kernel Errors Fixed (DIFF attached) goudatr0n
Reminder: HITBSecConf2007 - Malaysia is less than 2 weeks away Praburaajan

Thursday, 23 August

Re: Multiple Kernel Errors Fixed (DIFF attached) A . L . M . Buxey
rPSA-2007-0168-1 rsync rPath Update Announcements
DOS vulnerability on Thomson SIP phone ST 2030 using the VIA Header Radu State
Cenzic Patents & Lawsuit securewave
[ MDKSA-2007:170 ] - Updated gimp packages fix input data validation issues in several plugins security
FLEA-2007-0048-1 xterm Foresight Linux Essential Announcement Service
Re: Announcement: Releasing CORE GRASP for PHP. An open source, dynamic web application protection system. Sir Mordred
rPSA-2007-0169-1 xterm rPath Update Announcements
Heap overflow in Skulltag 0.97d-beta4.1 Luigi Auriemma
Multiple denial of service in Soldat 1.4.2/2.6.2 Luigi Auriemma
Ipswitch FTP XSS leads to FTP server compromise Jared DeMott
FLEA-2007-0047-1 rsync Foresight Linux Essential Announcement Service

Friday, 24 August

24th Chaos Communication Congress 2007: Call for Participation fukami
[vuln.sg] ALPass Password File Import Buffer Overflow Vulnerability TAN Chew Keong
[USN-502-1] KDE vulnerabilities Kees Cook
AST-2007-021: Crash from invalid/corrupted MIME bodies when using voicemail with IMAP storage Asterisk Security Team
bind9 remote vulnerability, possibly exploitable - vendor unresponsive :~~~< herbietwink whatsitworth2ya
[MU-200708-01] Helix DNA Server Heap Corruption Vulnerability noreply
n.runs-SA-2007.025 - ClamAV Remote Code Execution Advisory security
n.runs-SA-2007.026 - Sophos Antivirus BZip parsing Infinite Loop Advisory security
n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory security

Saturday, 25 August

rPSA-2007-0172-1 tar rPath Update Announcements
SIDVault LDAP Server Remote Buffer Overflow Joxean Koret

Sunday, 26 August

[SECURITY] [DSA 1358-1] New asterisk packages fix several vulnerabilities Moritz Muehlenhoff
Community input/questions for ISOI 3? Gadi Evron
[USN-503-1] Thunderbird vulnerabilities Kees Cook

Monday, 27 August

Stampit Web - DoS (CVE-2007-3871) Alexander Klink
DOS vulnerability on Thomson SIP phone ST 2030 using the TO Header Radu State
FLEA-2007-0049-1 tar Foresight Linux Essential Announcement Service
debian postfix saslauthd pam sasl2-bin Karsten Gessner
iDefense Security Advisory 08.27.07: Motorola Timbuktu Pro Directory Traversal Vulnerability iDefense Labs
iDefense Security Advisory 08.27.07: Motorola Timbuktu Multiple Buffer Overflow Vulnerabilities iDefense Labs
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory 3APA3A
Linux + bash and a silver fork Niko Lilja
Re: Linux + bash and a silver fork Thomas Coppi
Re: Linux + bash and a silver fork Riad S. Wahby
Re: Linux + bash and a silver fork liquidfish
Re: Linux + bash and a silver fork Harry Hoffman
Re: Linux + bash and a silver fork Nico Golde
[Tool] - Metagoofil Christian Martorella
UTF reverse-writing WYSINWG "feature" Tonu Samuel
Re: UTF reverse-writing WYSINWG Juha-Matti Laurio
Re: UTF reverse-writing WYSINWG "feature" scott

Tuesday, 28 August

Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Sergio Alvarez
Re: UTF reverse-writing WYSINWG "feature" Tonu Samuel
.R4L - n.runs Infinite Antivirus Posting Vulnerabilities Just1n T1mberlake
.R4L - Multiple vulnerabilities in Clam AV 0.91.2 Just1n T1mberlake
DOS vulnerability on Thomson SIP phone ST 2030 using an empty packet Radu State
[SECURITY] [DSA 1359-1] New dovecot packages fix directory traversal Steve Kemp
[SECURITY] [DSA 1360-1] New rsync packages fix arbitrary code execution Steve Kemp
[ MDKSA-2007:171 ] - Updated kernel packages fix multiple vulnerabilities and bugs security
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Kevin Finisterre (lists)
[USN-506-1] tar vulnerability Kees Cook
[USN-504-1] Emacs vulnerability Kees Cook
[USN-505-1] vim vulnerability Kees Cook
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Blue Boar
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Kevin Finisterre (lists)
[USN-469-2] Enigmail regression Kees Cook

Wednesday, 29 August

Re: 0day for sell Juergen Marester
Re: 0day for sell Juergen Marester
Security contact at gforge(http://gforge.org/) Sumit Siddharth
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Lisa Thalheim
informative... withak
Re: informative... Fabrizio
Re: informative... Fabrizio
Re: informative... Andrea Purificato - bunker
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Valdis . Kletnieks
Re: informative... Fabio Pietrosanti (naif)
Re: Security contact at gforge(http://gforge.org/) Jay
Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory Simon Smith
EnterpriseDB Advanced Server 8.2 Unitialized Pointer Joxean Koret
Cisco Security Advisory: XSS and SQL Injection in Cisco CallManager/Unified Communications Manager Logon Page Cisco Systems Product Security Incident Response Team
Re: informative... Andrea Purificato - bunker
Multiple vulnerabilities in Doomsday 1.9.0-beta5.1 Luigi Auriemma
sqlninja 0.1.3 released A. R.
[SECURITY] [DSA 1361-1] New postfix-policyd packages fix arbitrary code execution Steve Kemp
[SECURITY] [DSA 1362-1] New lighttpd packages fix several vulnerabilities Steve Kemp
Multiple improper file path handling issues edi.strosar
Multiple eScan products insecure file permissions edi.strosar
[USN-507-1] tcp-wrappers vulnerability Kees Cook
Point, Click ... Eavesdrop: How the FBI Wiretap Net Operates Ivan .
Re: Point, Click ... Eavesdrop: How the FBI Wiretap Net Operates Kevin Finisterre (lists)
Re: Point, Click ... Eavesdrop: How the FBI Wiretap Net Operates Kevin Finisterre (lists)
The Long Run Dave Aitel
Re: Point, Click ... Eavesdrop: How the FBI Wiretap Net Operates Joey Mengele
barclays.co.uk securiy contact Gavin Atkinson
Re: The Long Run Abilash Praveen

Thursday, 30 August

Re: UTF reverse-writing WYSINWG "feature" Deeþan Chakravarthy
Re: Point, Click ... Eavesdrop: How the FBI Wiretap Net Operates hack the gov
SUSE Security Announcement: Opera (SUSE-SA:2007:050) Thomas Biege
Re: UTF reverse-writing WYSINWG "feature" Mark Janssen
Re: [mwp] (Fwd) barclays.co.uk securiy contact Gadi Evron
iDefense Security Advisory 08.30.07: Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow Vulnerabilities iDefense Labs
Cisco CSS WebNS ssh crash NetExpress
Immunity Debugger v1.1 Release Nicolas Waisman
Re: UTF reverse-writing WYSINWG "feature" HASEGAWA Yosuke
[USN-509-1] Linux kernel vulnerabilities Kees Cook
Re: sqlninja 0.1.3 released Deeþan Chakravarthy
Re: [Tool] - Metagoofil Deeþan Chakravarthy
Re: [Tool] - Metagoofil Christian Martorella
[USN-508-1] Linux kernel vulnerabilities Kees Cook

Friday, 31 August

Re: Full-Disclosure Digest, Vol 30, Issue 50 Scott McIntosh
Re: sqlninja 0.1.3 released A. R.
LloydsTSB Bruteforce Possibility in Memorable Information drumknott
IE7 (for Vista) and Firefox remote code execution Juergen Marester
World's most powerful supercomputer goes online (fwd) Jay Sulzberger
100 Embassies and governments hacked in global security breach hack the gov
Re: World's most powerful supercomputer goes online(fwd) J. M. Seitz
Re: World's most powerful supercomputer goes online (fwd) Valdis . Kletnieks
Re: 100 Embassies and governments hacked in global security breach hack the gov
[USN-510-1] Linux kernel vulnerabilities Kees Cook
Re: LloydsTSB Bruteforce Possibility in Memorable Information A . L . M . Buxey
Team SHATTER Advisory: IBM DB2 Buffer overflow in sysproc.auth_list_groups_for_authid Team SHATTER
[ MDKSA-2007:172 ] - Updated clamav packages vulnerabilities security
Re: Full-Disclosure Digest, Vol 31, Issue 1 Scott McIntosh
PreviousPrevious period
Next periodNext