Full Disclosure: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

557 messages starting Aug 14 08 and ending Aug 12 08
Date index | Thread index | Author index

advisories

SECOBJADV-2008-03: PartyGaming PartyPoker Malicious Update Vulnerability advisories (Aug 14)

alan shimel

Re: Internet justice delivered, criminals panic and run in despair alan shimel (Aug 10)
I'm going to Internet Jail, framed by Squadron of Justice alan shimel (Aug 10)
Internet justice delivered, criminals panic and run in despair alan shimel (Aug 10)

Alfredo Melloni

Google Notebook and Google Bookmarks Cross Site Scripting Vulnerabilities Alfredo Melloni (Aug 06)

Anders B Jansson

Re: Media backlash begins against HD Moore and I)ruid Anders B Jansson (Aug 06)

Andrea Di Pasquale

ArpON detects and blocks Arp Poisoning/Spoofing attacks Andrea Di Pasquale (Aug 02)

Andrew Farmer

Re: Klueless Klowns Team PHP shell Andrew Farmer (Aug 17)
Re: Step-by-step instructions for debugging Cisco IOS using gdb Andrew Farmer (Aug 16)

Andy Davis

Version-independent IOS shellcode Andy Davis (Aug 21)
Re: Step-by-step instructions for debugging Cisco IOS using gdb Andy Davis (Aug 16)
Step-by-step instructions for debugging Cisco IOS using gdb Andy Davis (Aug 12)

AR

DNS Multiple Race Exploiting Tool AR (Aug 01)

Arturo 'Buanzo' Busleiman

Re: Monthly Hands-On Meetups Arturo 'Buanzo' Busleiman (Aug 31)

Avraham Moshe Schneider

Re: Alphanumeric Shellcode Encoding and Detection Avraham Moshe Schneider (Aug 05)
Alphanumeric Shellcode Encoding and Detection Avraham Moshe Schneider (Aug 04)

Avraham Schneider

Re: Alphanumeric Shellcode Encoding and Detection Avraham Schneider (Aug 06)
Re: Alphanumeric Shellcode Encoding and Detection Avraham Schneider (Aug 05)
Re: Alphanumeric Shellcode Encoding and Detection Avraham Schneider (Aug 05)

az-guy

No subject az-guy (Aug 07)

badr muhyeddin

Re: Full-Disclosure Digest, Vol 42, Issue 42 badr muhyeddin (Aug 16)

baldr

Re: Funniest thing at DefCon this year... baldr (Aug 27)

Basha, Arif

ISO Standards Basha, Arif (Aug 26)

Ben Laurie

OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 12)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 09)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Ben Laurie (Aug 12)

Berend-Jan Wever

StumbleUpon XSS (fixed) Berend-Jan Wever (Aug 12)
ASCII Art shellcode Berend-Jan Wever (Aug 04)

Bernhard Mueller

Re: (no subject) Bernhard Mueller (Aug 05)
Interesting things at sec-consult.com, DNS-whitepaper available tomorrow Bernhard Mueller (Aug 05)
(no subject) Bernhard Mueller (Aug 05)
Whitepaper: DNS zone redelegation Bernhard Mueller (Aug 07)

Biz Marqee

Re: phish war game Biz Marqee (Aug 05)

blah

Re: phish war game blah (Aug 05)

Bob Beck

Arbitrary Command Execution in Windows and Unix Shells. Bob Beck (Aug 22)

bomboclat

hackmeeting: call for participation bomboclat (Aug 30)

bug squash

ACG-PTP 1.0.6 index.php persistent XSS bug squash (Aug 22)
DXShopCart v4.30mc product search.php xss bug squash (Aug 22)
Photo Cart 3.9 index.php "search" XSS bug squash (Aug 22)
DXShopCart V4.30mc search.php XSS bug squash (Aug 21)

bussinessinbox box

x0x0x ? its a joke! a vendetta history.. bussinessinbox box (Aug 30)
x0x0x? its a joke! bussinessinbox box (Aug 31)

Carlos Sahuquillo

Re: ISO Standards] Carlos Sahuquillo (Aug 26)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Vulnerability in Cisco WebEx Meeting Manager ActiveX Control Cisco Systems Product Security Incident Response Team (Aug 14)

Clausen, Martin (DK - Copenhagen)

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Clausen, Martin (DK - Copenhagen) (Aug 12)

cocoruder

Microsoft Windows Messenger Remote Illegal Access Vulnerability cocoruder (Aug 13)

coderman

Re: what happened to fd??.. even eff cant save it??. coderman (Aug 11)
Re: Fedora confirms: Our servers were breached coderman (Aug 22)
Re: Surf Jack - HTTPS will not save you coderman (Aug 11)
Linus summarizes state of the "security industry" with precision and accuracy. coderman (Aug 15)
Re: [funsec] Internet attacks against Georgian web s ites coderman (Aug 18)
Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy coderman (Aug 30)
Re: weev, baby coderman (Aug 15)

Collin R. Mulliner

Nokia 6131 NFC URI/URL Spoofing and DoS Advisory Collin R. Mulliner (Aug 16)

CORE Security Technologies Advisories

CORE-2008-0624: Anzio Web Print Object Buffer Overflow CORE Security Technologies Advisories (Aug 20)
CORE-2008-0813 - vBulletin Cross Site Scripting Vulnerability CORE Security Technologies Advisories (Aug 20)
CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability CORE Security Technologies Advisories (Aug 05)
CORE-2008-0103: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass CORE Security Technologies Advisories (Aug 14)

Dancho Danchev

Inside India’s CAPTCHA Solving Economy Dancho Danchev (Aug 30)
Coordinated Russia vs Georgia cyber attack in progress Dancho Danchev (Aug 14)

Dan Guido

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dan Guido (Aug 08)

Dan Kaminsky

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dan Kaminsky (Aug 08)

dann frazier

[SECURITY] [DSA 1630-1] New Linux 2.6.18 packages fix several vulnerabilities dann frazier (Aug 22)

Darkie Duck

Re: 0day services offer Darkie Duck (Aug 22)

Dave

Re: [funsec] Internet attacks against Georgian web s ites Dave (Aug 18)

Dave Korn

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dave Korn (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Dave Korn (Aug 08)

David Litchfield

Re: Deep Blind SQL Injection Whitepaper David Litchfield (Aug 19)

Dean Pierce

Re: free static analysis tool for c/c++ Dean Pierce (Aug 04)

Deniz Cevik

Fujitsu Web-Based Admin View Directory Traversal Vulnerability Deniz Cevik (Aug 21)

Dennis Yurichev

question Dennis Yurichev (Aug 07)
question Dennis Yurichev (Aug 07)

Deral Heiland

Layered Defense Research Advisory: Alcatel-Lucent OmniSwitch products, Stack Buffer Overflow Deral Heiland (Aug 12)

Derek Callaway

Tool: PorkBind v1.3 Nameserver Security Scanner (New Version) Derek Callaway (Aug 15)

devildeath1988

Re: Multiple XSS Vulnerabilities in Self Generate CMS (K?rast) devildeath1988 (Aug 24)

Devin Carraway

[SECURITY] [DSA-1597-2] New mt-daapd package fix regression Devin Carraway (Aug 31)

Dick Hardt

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Dick Hardt (Aug 08)

don bailey

Re: Linus summarizes state of the "security industry" with precision and accuracy. don bailey (Aug 18)
Re: Linus summarizes state of the "security industry" with precision and accuracy. don bailey (Aug 18)

Dragos Ruiu

Re: Fedora confirms: Our servers were breached Dragos Ruiu (Aug 22)
PacSec 2008 CFP   (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept. 30/  Oct. 1)PacSec 2008 CFP (Deadline Sept. 1, Conference Nov. 12/13) and BA-Con 2008 Speakers (Sept. 30/ Oct. 1) Dragos Ruiu (Aug 26)

Dr. Mark A. Baiter [Chief Scatological Consultant]

infected file ( can someone please report and take it down ? ) Dr. Mark A. Baiter [Chief Scatological Consultant] (Aug 07)

Drop Drop

Ukraine? Drop Drop (Aug 11)

Eddy Nigg (StartCom Ltd.)

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Eddy Nigg (StartCom Ltd.) (Aug 08)

ekoparty

ekoparty 2008 - [First Round of Selection] - [Argentina] ekoparty (Aug 12)

Elazar Broad

Webex atucfobj Module ActiveX Control Buffer Overflow Vulnerability Elazar Broad (Aug 06)

Eliah Kagan

Re: Monthly Hands-On Meetups Eliah Kagan (Aug 31)

energy

ISP's confirm '2012: The Year The Internet Ends' energy (Aug 12)
Secret Plan To Kill Internet By 2012 Leaked? energy (Aug 12)

Eric Rescorla

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Eric Rescorla (Aug 08)

Erik Harrison

Re: Linus summarizes state of the "security industry" with precision and accuracy. Erik Harrison (Aug 18)

Exibar

Funniest thing at DefCon this year... Exibar (Aug 14)
UPDATE!! Funniest thing at DefCon this year... Exibar (Aug 14)
Re: [inbox] Monthly Hands-On Meetups Exibar (Aug 31)
Re: [inbox] Monthly Hands-On Meetups Exibar (Aug 31)
Re: [inbox] Honeypot? Exibar (Aug 30)

Fabio Pietrosanti (naif)

anyone developing a secure telephony application for GSM CSD? Fabio Pietrosanti (naif) (Aug 11)

Fernando Gont

New IETF I-D-: Security Assessment of the Internet Protocol version 4 Fernando Gont (Aug 31)
Port Randomization: New revision of our IETF Internet-Draft Fernando Gont (Aug 31)
Port Randomization: New revision of our IETF Internet-Draft Fernando Gont (Aug 31)
Re: TCP Port randomization paper Fernando Gont (Aug 27)
Security Assessment of the Internet Protocol Fernando Gont (Aug 14)

Ferruh Mavituna

BSQL Hacker 0.9.0.7 - Advanced SQL Injection Framework / Tool Ferruh Mavituna (Aug 20)
Re: Deep Blind SQL Injection Whitepaper Ferruh Mavituna (Aug 19)
Deep Blind SQL Injection Whitepaper Ferruh Mavituna (Aug 19)

ff0000

(no subject) ff0000 (Aug 13)
Re: Funniest thing at DefCon this year... ff0000 (Aug 14)
Re: [Full-disclosure] [funsec] Internet attacks against Georgian web s ites ff0000 (Aug 18)

Fionnbharr

Re: free static analysis tool for c/c++ Fionnbharr (Aug 04)

Florian Weimer

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Florian Weimer (Aug 08)
Re: DNS forward only: why does it help? Florian Weimer (Aug 14)
[SECURITY] [DSA 1627-1] New PowerDNS packages reduce DNS spoofing risk Florian Weimer (Aug 10)

Forrest J. Cavalier III

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Forrest J. Cavalier III (Aug 09)

Franck

Re: DIE IN A FIRE post Franck (Aug 27)

Francois Ropert

Re: Hacking OSPF with MD5 authentication enabled Francois Ropert (Aug 21)
Hacking OSPF with MD5 authentication enabled Francois Ropert (Aug 21)
Re: Hacking OSPF with MD5 authentication enabled Francois Ropert (Aug 21)

Frank Manley

Call for Papers CFS Frank Manley (Aug 15)

Gadi Evron

reviving the botnets@ mailing list: a new statregy in fighting cyber crime Gadi Evron (Aug 28)
[funsec] Estonia similarities begin to manifest (fwd) Gadi Evron (Aug 14)
ISOI 5 (Tallinn) agenda is now online Gadi Evron (Aug 14)
Re: Internet attacks against Georgian web sites Gadi Evron (Aug 12)
facebook messages worm Gadi Evron (Aug 07)
Re: [funsec] facebook messages worm Gadi Evron (Aug 07)
Re: [funsec] facebook messages worm Gadi Evron (Aug 07)
Re: [funsec] Internet attacks against Georgian web sites Gadi Evron (Aug 13)
Re: [funsec] Internet attacks against Georgian web sites Gadi Evron (Aug 13)
Internet attacks against Georgian web sites Gadi Evron (Aug 11)
Re: [funsec] facebook messages worm Gadi Evron (Aug 07)
weev, baby Gadi Evron (Aug 15)

Gerald Beuchelt

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Gerald Beuchelt (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Gerald Beuchelt (Aug 08)

GomoR

Re: Hacking OSPF with MD5 authentication enabled GomoR (Aug 21)

Great Council of Internet Superheros

Internet Justice #1 August 2008 (Part 1/7) Great Council of Internet Superheros (Aug 08)
Squadron of Justice to the rescue Great Council of Internet Superheros (Aug 08)
More information on Petko D. Petkov Great Council of Internet Superheros (Aug 06)
Internet Justice #1 August 2008 (Part 2/7) Great Council of Internet Superheros (Aug 08)
Squadron of Justice to the rescue Great Council of Internet Superheros (Aug 08)
Petko D. Petkov, Honeynet and Tom Ferris featured on an Internet Justice magazine Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 8/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 7/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 4/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 5/7) Great Council of Internet Superheros (Aug 08)
Re: [Suspected Junk Mail] Re: Petko D. Petkov files unleashed, guilty by Internet council Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 9/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 3/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 6/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 1/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 4/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 5/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 7/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 2/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 3/10) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 6/7) Great Council of Internet Superheros (Aug 08)
Internet Justice #1 August 2008 (Part 10/10) Great Council of Internet Superheros (Aug 08)
GNUCITIZEN Stumbleupon account revised Great Council of Internet Superheros (Aug 06)

Gyan Chawdhary

Cisco IOS Shellcodes Gyan Chawdhary (Aug 14)

H2G-Labs Information Security

Brazilian Bank (Caixa Economica Federal) Stupid Vuln #02 (Opera's Style) H2G-Labs Information Security (Aug 09)

"Hal Finney"

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory "Hal Finney" (Aug 09)

Haroon Meer

Re: Deep Blind SQL Injection Whitepaper Haroon Meer (Aug 28)

hERB

Re: weev, baby hERB (Aug 15)

iDefense Labs

iDefense Security Advisory 08.01.08: Ingres Database for Linux verifydb Insecure File Permissions Modification Vulnerability iDefense Labs (Aug 01)
iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability iDefense Labs (Aug 01)
iDefense Security Advisory 07.31.08: Apple Mac OS X CoreGraphics PDF Type1 Font Integer Overflow Vulnerability iDefense Labs (Aug 01)
iDefense Security Advisory 08.12.08: Microsoft Office BMP Input Filter Heap Overflow Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft Excel FORMAT Record Invalid Array Index Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Stack Buffer Overflow Vulnerabilities iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft Windows Color Management Module Heap Buffer Overflow Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Out of Bounds Array Index Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft Office WPG Image File Heap Buffer Overflow Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.01.08: Ingres Database for Linux ingvalidpw Untrusted Library Path Vulnerability iDefense Labs (Aug 01)
iDefense Security Advisory 08.12.08: Microsoft Excel Chart AxesSet Invalid Array Index Vulnerability iDefense Labs (Aug 12)
iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Format String Vulnerabilities iDefense Labs (Aug 12)
iDefense Security Advisory 08.12.08: Microsoft PowerPoint Viewer 2003 Cstring Integer Overflow Vulnerability iDefense Labs (Aug 12)

InfoSec DramaReport

Kaminsky Quittinq? Coffee Shop Inevitable? InfoSec DramaReport (Aug 06)

internetsuperheros

Petko D. Petkov files unleashed, guilty by Internet council internetsuperheros (Aug 06)
Petko D. Petkov files unleashed, guilty by Internet council internetsuperheros (Aug 06)

iViZ Security Advisories

[IVIZ-08-007] DriveCrypt Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-005] IBM Lenovo BIOS Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-009] Grub Legacy Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-004] Intel BIOS Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-002] Hewlett-Packard BIOS Plain Text Password Disclosure iViZ Security Advisories (Aug 25)
[IVIZ-08-003] TrueCrypt Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-008] LILO Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)
[IVIZ-08-006] DiskCryptor Security Model bypass exploiting wrong BIOS API usage iViZ Security Advisories (Aug 25)

James Fisher

OWASP DirBuster 0.11.1 Released James Fisher (Aug 20)

James Lay

Re: [inbox] Honeypot? James Lay (Aug 30)
Honeypot? James Lay (Aug 30)

James Matthews

Re: test post James Matthews (Aug 26)
Re: DIE IN A FIRE post James Matthews (Aug 27)
Re: OWASP DirBuster 0.11.1 Released James Matthews (Aug 20)
Re: Fedora confirms: Our servers were breached James Matthews (Aug 22)
Re: [IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure James Matthews (Aug 26)
Re: question James Matthews (Aug 07)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime James Matthews (Aug 22)
Re: CORE-2008-0624: Anzio Web Print Object Buffer Overflow James Matthews (Aug 20)
Re: ISO Standards James Matthews (Aug 28)
Re: question James Matthews (Aug 07)
Re: No subject James Matthews (Aug 07)

Jamie Strandboge

[USN-635-1] xine-lib vulnerabilities Jamie Strandboge (Aug 06)
[USN-626-2] Devhelp, Epiphany, Midbrowser and Yelp update Jamie Strandboge (Aug 04)

Jan Minář

Vim: Arbitrary Code Execution in Commands: K, Control-], g] Jan Minář (Aug 22)
Vim: Netrw: FTP User Name and Password Disclosure Jan Minář (Aug 12)
Vim 7.2c.002 Fixes Arbitrary Command Execution when Handling Tar Archives Jan Minář (Aug 08)
Vim: Unfixed Vulnerabilities in Tar Plugin Version 20 Jan Minář (Aug 08)

Jason Josno

test post Jason Josno (Aug 26)

Jeffrey Starck

offering 0day Jeffrey Starck (Aug 06)
Re: 0day offer Jeffrey Starck (Aug 17)

jeremie travis

Re: selling 0-day jeremie travis (Aug 17)
selling jeremie travis (Aug 12)
selling 0-day jeremie travis (Aug 12)

jeroen

Re: 0day offer jeroen (Aug 19)

Jerome Benoit

Re: Fedora confirms: Our servers were breached Jerome Benoit (Aug 22)

jf

Re: Media backlash begins against HD Moore and I)ruid jf (Aug 06)

Jin Sei

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Jin Sei (Aug 08)

Joel Jose

what happened to fd??.. even eff cant save it??. Joel Jose (Aug 10)

John C. A. Bambenek, GCIH, CISSP

Re: Linus summarizes state of the "security industry" with precision and accuracy. John C. A. Bambenek, GCIH, CISSP (Aug 18)
Re: DIE IN A FIRE post John C. A. Bambenek, GCIH, CISSP (Aug 27)
Re: [funsec] facebook messages worm John C. A. Bambenek, GCIH, CISSP (Aug 06)
Re: [funsec] Internet attacks against Georgian web sites John C. A. Bambenek, GCIH, CISSP (Aug 11)

John Cartwright

List Charter John Cartwright (Aug 09)

John Lamb

Re: 0day services offer John Lamb (Aug 22)

John Wane

news from Network Security Research John Wane (Aug 26)

Joxean Koret

Inguma version 0.0.9 released Joxean Koret (Aug 11)

Juha-Matti Laurio

Fedora confirms: Our servers were breached Juha-Matti Laurio (Aug 22)
Re: [funsec] facebook messages worm Juha-Matti Laurio (Aug 06)
Re: [funsec] facebook messages worm Juha-Matti Laurio (Aug 08)
Re: [IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure Juha-Matti Laurio (Aug 26)

Jun...

George Ledin virus material training Request. Jun... (Aug 11)

Kærast

Multiple XSS Vulnerabilities in Self Generate CMS Kærast (Aug 23)

Kees Cook

[USN-633-1] libxslt vulnerabilities Kees Cook (Aug 01)
[USN-638-1] Yelp vulnerability Kees Cook (Aug 27)
[USN-632-1] Python vulnerabilities Kees Cook (Aug 01)
[USN-634-1] OpenLDAP vulnerability Kees Cook (Aug 01)
[USN-637-1] Linux kernel vulnerabilities Kees Cook (Aug 26)
[USN-636-1] Postfix vulnerability Kees Cook (Aug 19)

KJK::Hyperion

Re: [IVIZ-08-001] Microsoft Bitlocker Plain Text Password Disclosure KJK::Hyperion (Aug 25)
Re: free static analysis tool for c/c++ KJK::Hyperion (Aug 05)
Re: free static analysis tool for c/c++ KJK::Hyperion (Aug 05)

kralor

IntelliTamper v2.07/2.08 Beta 4 A HREF sploit kralor (Aug 13)

Kristian Erik Hermansen

Health website vulnerable to hacking, no response from admins after multiple attempts Kristian Erik Hermansen (Aug 15)

Kristo pher

kings' tools Kristo pher (Aug 29)
c99 shell anyone? Kristo pher (Aug 08)
New info tool available at freewebtown.com/sombra6/info.php now Kristo pher (Aug 04)
Klueless Klowns Team PHP shell Kristo pher (Aug 17)

Leichter, Jerry

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Leichter, Jerry (Aug 08)

Line Noise

Re: ISO Standards Line Noise (Aug 26)

lsi

Re: simple phishing fix lsi (Aug 02)
phish war game lsi (Aug 04)

Luigi Auriemma

Server termination in America's Army 2.8.3.1 Luigi Auriemma (Aug 02)
Endless loop and resources consumption in Halo 1.0.7.0615 Luigi Auriemma (Aug 06)
NULL pointer in Ventrilo 3.0.2 Luigi Auriemma (Aug 13)

Maksymilian Arciemowicz

libc/net inet_net_pton() integer overflow Maksymilian Arciemowicz (Aug 23)

Manu Chao

Check this out Manu Chao (Aug 06)

Marc Bevand

Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting Marc Bevand (Aug 07)

Marco Slaviero

Re: Deep Blind SQL Injection Whitepaper Marco Slaviero (Aug 20)

Marc Ruef

[scip_Advisory 3807] Dreambox DM500 webserver long URL request denial of service Marc Ruef (Aug 29)

Mark Brunner

Re: Security Assessment of the Internet Protocol Mark Brunner (Aug 15)

M . B . Jr .

Re: ISO Standards M . B . Jr . (Aug 28)

Memisyazici, Aras

Re: Beware the firefox ZERO DAYZZZZ Memisyazici, Aras (Aug 17)
Re: Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Memisyazici, Aras (Aug 05)

Michael Krymson

Re: OWASP DirBuster 0.11.1 Released Michael Krymson (Aug 20)

Michael Wiegand

OpenVAS Stable Release Michael Wiegand (Aug 13)
Contest: Best Advances for OpenVAS Network Vulnerability Tests Michael Wiegand (Aug 22)

Michael Wojcik

Re: Arbitrary Code Execution in Commands: K, Control-], g] Michael Wojcik (Aug 26)

Mister Nice Guy

Storesonline, Ecommerce hosting solution - how to avoid mistakes that put your business at risk Mister Nice Guy (Aug 13)

modversion

Re: free static analysis tool for c/c++ modversion (Aug 04)
free static analysis tool for c/c++ modversion (Aug 04)
Re: free static analysis tool for c/c++ modversion (Aug 05)
Re: free static analysis tool for c/c++ modversion (Aug 05)

mrdkaaa

Re: DIE IN A FIRE post mrdkaaa (Aug 28)

M. Shirk

Re: DIE IN A FIRE post M. Shirk (Aug 26)

n3td3v

Re: Internet attacks against Georgian web sites n3td3v (Aug 13)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime n3td3v (Aug 22)
Re: Gustav, domain name reportage n3td3v (Aug 30)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 05)
Re: [funsec] Internet attacks against Georgian web s ites n3td3v (Aug 28)
Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy n3td3v (Aug 30)
Re: Gustav, domain name reportage n3td3v (Aug 30)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 03)
Fwd: Black Hat talk on Apple encryption cancelled n3td3v (Aug 01)
Re: [funsec] Internet attacks against Georgian web sites n3td3v (Aug 11)
Re: Great Council of Internet Superheros n3td3v (Aug 08)
Re: [funsec] Internet attacks against Georgian web s ites n3td3v (Aug 28)
Fwd: Comments on: Alleged NASA hacker gets temporary reprieve n3td3v (Aug 12)
Re: [funsec] Internet attacks against Georgian web s ites n3td3v (Aug 17)
Re: weev, baby n3td3v (Aug 15)
Re: Internet attacks against Georgian web sites n3td3v (Aug 13)
Fwd: Comment on: Microsoft to give partners heads-up on security vulnerabilities n3td3v (Aug 05)
Re: Internet attacks against Georgian web sites n3td3v (Aug 11)
Gustav, domain name reportage n3td3v (Aug 30)
Re: reviving the botnets@ mailing list: a new statregy in fighting cyber crime n3td3v (Aug 28)
Re: Internet attacks against Georgian web sites n3td3v (Aug 14)
Re: Gustav, domain name reportage n3td3v (Aug 31)
Re: Gustav, domain name reportage n3td3v (Aug 30)
Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy n3td3v (Aug 30)
Re: Media backlash begins against HD Moore and I)ruid n3td3v (Aug 06)
Re: [funsec] Internet attacks against Georgian web sites n3td3v (Aug 11)
Emergency DNS Patch Still Vulnerable, Proves Russian Physicist n3td3v (Aug 09)
Great Council of Internet Superheros n3td3v (Aug 08)
Re: Gustav, domain name reportage n3td3v (Aug 30)
Re: more rehashes of xss & 'evil gif' n3td3v (Aug 05)
Re: 0day services offer n3td3v (Aug 22)
Fwd: Hacker calls buddies overseas on U.S. government dime n3td3v (Aug 22)

Nicolas Williams

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Nicolas Williams (Aug 08)

Night Ninja

Re: Internet justice delivered, criminals panic and run in despair Night Ninja (Aug 10)

Noam Rathaus

Re: Surf Jack - HTTPS will not save you Noam Rathaus (Aug 12)

North, Quinn

Re: Funniest thing at DefCon this year... North, Quinn (Aug 14)

nummish

Re: Deep Blind SQL Injection Whitepaper nummish (Aug 28)

Oliver Goebel

IMF 2008 - Call for Participation Oliver Goebel (Aug 19)

Pallav Khandhar

Tool Release: ProcL - Detect Hidden Process Pallav Khandhar (Aug 01)

Paul Ferguson

Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Aug 11)
Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Aug 11)
Re: [funsec] Internet attacks against Georgian web s ites Paul Ferguson (Aug 17)
Re: [funsec] Internet attacks against Georgian web sites Paul Ferguson (Aug 13)

Paul Hoffman

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Paul Hoffman (Aug 08)

Paul Schmehl

Re: Media backlash begins against HD Moore and I)ruid Paul Schmehl (Aug 06)
Re: Inside India’s CAPTCHA Solving Economy Paul Schmehl (Aug 30)
Re: Kaminsky Quittinq? Coffee Shop Inevitable? Paul Schmehl (Aug 06)
Re: Inside India’s CAPTCHA Solving Economy Paul Schmehl (Aug 30)
Re: Emergency DNS Patch Still Vulnerable, Proves Russian Physicist Paul Schmehl (Aug 10)

Pavel Kankovsky

Re: Kaminsky's Law Pavel Kankovsky (Aug 05)

Pavel Labushev

Re: Internet attacks against Georgian web sites Pavel Labushev (Aug 14)

Perry E. Metzger

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Perry E. Metzger (Aug 08)

Peter Dawson

Re: [funsec] Internet attacks against Georgian web s ites Peter Dawson (Aug 18)

Peter Gutmann

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Gutmann (Aug 08)

Peter Williams

Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Williams (Aug 08)
Re: [OpenID] OpenID/Debian PRNG/DNS Cache poisoning advisory Peter Williams (Aug 08)

Phillip Tanner

The Hacksaw Conspiracies Phillip Tanner (Aug 19)

Pierre-Yves Rofes

[ GLSA 200808-11 ] UUDeview: Insecure temporary file creation Pierre-Yves Rofes (Aug 11)

Pınar Yanardağ

[PLSA 2008-22] Php: Multiple Overflows Pınar Yanardağ (Aug 11)
[PLSA 2008-31] Tiff: Denial of Service Pınar Yanardağ (Aug 26)
[PLSA 2008-29] Vlc: Multiple Vulnerabilities Pınar Yanardağ (Aug 24)
[PLSA 2008-21] Ruby: Multiple Vulnerabilities Pınar Yanardağ (Aug 11)
[PLSA 2008-25] Postfix: Local privilege escalation Pınar Yanardağ (Aug 15)
[PLSA 2008-33] [UPDATED] Opensc: Security Bypass Pınar Yanardağ (Aug 30)
[PLSA 2008-19] Git: Multiple Buffer Overflows Pınar Yanardağ (Aug 06)
[PLSA 2008-28] Libxml2: Denial of Service Pınar Yanardağ (Aug 24)
[PLSA 2008-24] Amarok: Privilege escalation Pınar Yanardağ (Aug 14)
[PLSA 2008-35] Ruby: Denial of Service Pınar Yanardağ (Aug 31)
[PLSA 2008-28] [Update] Libxml2: Denial of Service Pınar Yanardağ (Aug 27)
[PLSA 2008-34] GNU ed: Heap Overflow Pınar Yanardağ (Aug 31)
[PLSA 2008-18] Pidgin: Spoofing Vulnerability Pınar Yanardağ (Aug 06)
[PLSA 2008-32] Mono: Cross Site Scripting Pınar Yanardağ (Aug 30)
[PLSA 2008-30] Vim: Arbitrary code execution Pınar Yanardağ (Aug 24)

Professor Micheal Chatner

Monthly Hands-On Meetups Professor Micheal Chatner (Aug 31)

r0tten c0re

McAfee + FUD ? r0tten c0re (Aug 05)

Radoslav Dejanović

Re: [funsec] Internet attacks against Georgian web sites Radoslav Dejanović (Aug 15)

raining lulz

Re: more rehashes of xss & 'evil gif' raining lulz (Aug 04)

Raj Mathur

Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy Raj Mathur (Aug 30)
Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy Raj Mathur (Aug 31)

Randal T. Rioux

Re: DIE IN A FIRE post Randal T. Rioux (Aug 27)

Raphael Marichez

[ GLSA 200808-09 ] OpenLDAP: Denial of Service vulnerability Raphael Marichez (Aug 08)
[ GLSA 200808-08 ] stunnel: Security bypass Raphael Marichez (Aug 08)
[ GLSA 200808-12 ] Postfix: Local privilege escalation vulnerability Raphael Marichez (Aug 14)
[ GLSA 200808-07 ] ClamAV: Multiple Denials of Service Raphael Marichez (Aug 08)

Razi Shaban

Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy Razi Shaban (Aug 31)
Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy Razi Shaban (Aug 30)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime Razi Shaban (Aug 24)

Richard Sammet

[tool announce] KisGearth - optimized release... Richard Sammet (Aug 29)

richc

Introducing the Android Security Team richc (Aug 19)

Robert Buchholz

[ GLSA 200808-01 ] xine-lib: User-assisted execution of arbitrary code Robert Buchholz (Aug 05)
UPDATE: [ GLSA 200804-22 ] PowerDNS Recursor: DNS Cache Poisoning Robert Buchholz (Aug 21)
[ GLSA 200808-10 ] Adobe Reader: User-assisted execution of arbitrary code Robert Buchholz (Aug 09)
[ GLSA 200808-04 ] Wireshark: Denial of Service Robert Buchholz (Aug 05)
[ GLSA 200808-02 ] Net-SNMP: Multiple vulnerabilities Robert Buchholz (Aug 05)
[ GLSA 200808-03 ] Mozilla products: Multiple vulnerabilities Robert Buchholz (Aug 05)

Robert Holgstad

more rehashes of xss & 'evil gif' Robert Holgstad (Aug 04)
Re: OWASP DirBuster 0.11.1 Released Robert Holgstad (Aug 20)
Re: Thanks Maynor. Robert Holgstad (Aug 12)
Re: x0x0x? its a joke! Robert Holgstad (Aug 31)
Re: StumbleUpon XSS (fixed) Robert Holgstad (Aug 12)
Re: George Ledin virus material training Request. Robert Holgstad (Aug 12)

Robert Marquardt

Re: [funsec] Internet attacks against Georgian web sites Robert Marquardt (Aug 11)

Rodrigo Rubira Branco (BSDaemon)

Call For Papers - Hackers 2 Hackers Conference 5th Edition - Brazil Rodrigo Rubira Branco (BSDaemon) (Aug 24)

Roman Medina-Heigl Hernandez

PoCfix (PoC for Postfix local root vuln - CVE-2008-2936) Roman Medina-Heigl Hernandez (Aug 31)

rPath Update Announcements

rPSA-2008-0255-1 freetype rPath Update Announcements (Aug 15)
rPSA-2008-0264-1 ruby rPath Update Announcements (Aug 31)
rPSA-2008-0249-1 openldap openldap-clients openldap-servers rPath Update Announcements (Aug 11)
rPSA-2008-0243-1 idle python rPath Update Announcements (Aug 13)
rPSA-2008-0259-1 postfix rPath Update Announcements (Aug 22)
rPSA-2008-0245-1 cups rPath Update Announcements (Aug 06)
rPSA-2008-0246-1 gaim rPath Update Announcements (Aug 06)
rPSA-2008-0247-1 gvim vim vim-minimal rPath Update Announcements (Aug 11)
rPSA-2008-0253-1 git gitweb rPath Update Announcements (Aug 12)

Sandro Gauci

Surf Jack - HTTPS will not save you Sandro Gauci (Aug 11)

Sandy Vagina

Re: Thanks Maynor. Sandy Vagina (Aug 12)

scott

Re: Media backlash begins against HD Moore and I)ruid scott (Aug 05)

Secunia Research

Secunia Research: Novell iPrint Client ActiveX Control "GetFileList()" Information Disclosure Secunia Research (Aug 25)
Secunia Research: Novell iPrint Client ActiveX Control Multiple Buffer Overflows Secunia Research (Aug 25)
Secunia Research: Trend Micro Products Web Management Authentication Bypass Secunia Research (Aug 22)
Secunia Research: Calendarix Basic Two SQL Injection Vulnerabilities Secunia Research (Aug 26)

security

[ MDVSA-2008:177 ] xine-lib security (Aug 20)
[ MDVSA-2008:163 ] python security (Aug 07)
[ MDVSA-2008:181 ] ipsec-tools security (Aug 28)
[ MDVSA-2008:164 ] python security (Aug 07)
[ MDVSA-2008:178 ] xine-lib security (Aug 20)
[ MDVSA-2008:170 ] cups security (Aug 13)
[ MDVSA-2008:168 ] stunnel security (Aug 13)
[ MDVSA-2008:174 ] kernel security (Aug 19)
[ MDVSA-2008:176 ] mtr security (Aug 20)
[ MDVSA-2008:165 ] perl security (Aug 11)
[ MDVSA-2008:179 ] metisse security (Aug 21)
[ MDVSA-2008:161 ] rxvt security (Aug 07)
[ MDVSA-2008:166 ] clamav security (Aug 12)
[ MDVSA-2008:167 ] kernel security (Aug 12)
[ MDVSA-2008:175 ] yelp security (Aug 20)
[ MDVSA-2008:180-1 ] libxml2 security (Aug 26)
[ MDVSA-2008:169 ] hplip security (Aug 13)
[ MDVSA-2008:172 ] amarok security (Aug 15)
[ MDVSA-2008:160 ] libxslt security (Aug 01)
[ MDVSA-2008:180 ] libxml2 security (Aug 21)
[ MDVSA-2008:171 ] postfix security (Aug 15)
[ MDVSA-2008:162 ] qemu security (Aug 07)
[ MDVSA-2008:173 ] kdegraphics security (Aug 19)

Security Lists

Announcement/OT: Ethical Hacking book release (Spanish) Security Lists (Aug 22)

security () nruns com

n.runs-SA-2008.005 - Apple Inc. - CoreServices Framework’s CarbonCore Framework - Arbitrary Code Execution (remote) security () nruns com (Aug 01)

Seth Breidbart

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Seth Breidbart (Aug 13)

Seth Fogie

White Wolf Labs #080826-1: Kyocera Mita Scanner File Utility (Multiple) Seth Fogie (Aug 27)

Shirk Dog

Re: DIE IN A FIRE post Shirk Dog (Aug 27)

silky

Re: Linus summarizes state of the "security industry" with precision and accuracy. silky (Aug 15)

Simon Smith

Re: DIE IN A FIRE post Simon Smith (Aug 27)
Re: DIE IN A FIRE post Simon Smith (Aug 27)

Simon Valiquette

Re: Linus summarizes state of the "security industry" with precision and accuracy. Simon Valiquette (Aug 18)
Re: Linus summarizes state of the "security industry" with precision and accuracy. Simon Valiquette (Aug 18)

Sir Mordred

Re: Deep Blind SQL Injection Whitepaper Sir Mordred (Aug 20)

Smiler D

Re: Step-by-step instructions for debugging Cisco IOS using gdb Smiler D (Aug 19)

Smiler S

Step-by-step instructions for debugging Cisco IOS using gdb Smiler S (Aug 15)

Solar Designer

key blacklisting & file size (was: OpenID/Debian PRNG/DNS Cache poisoning advisory) Solar Designer (Aug 08)

Squadron of Justice

Re: [Suspected Junk Mail] Re: Petko D. Petkov hacked? Squadron of Justice (Aug 12)
Re: Internet justice delivered [UPDATE ON M. ROTHMAN AND ALAN] Squadron of Justice (Aug 10)
Re: [Full-disclosure] Internet justice delivered, criminals panic and run in despair Squadron of Justice (Aug 12)
Re: Petko D. Petkov hacked? Squadron of Justice (Aug 12)
Latest judgement by Internet Justice Court: Still insecure, after all these years. Squadron of Justice (Aug 10)
Re: [Full-disclosure] Internet justice delivered, criminals panic and run in despair Squadron of Justice (Aug 10)

staff

Re: Vim: Arbitrary Code Execution in Commands: K, Control-], g] staff (Aug 22)
Thanks Maynor. staff (Aug 12)

Static Rez

Re: [funsec] Internet attacks against Georgian web sites Static Rez (Aug 17)

Stefan Kanthak

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Stefan Kanthak (Aug 08)

Stephen Flaw

0day services offer Stephen Flaw (Aug 22)

Stephen Menard

Re: Monthly Hands-On Meetups Stephen Menard (Aug 31)

Steve Kemp

[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service Steve Kemp (Aug 22)
[SECURITY] [DSA 1631-1] New libxml2 packages fix denial of service Steve Kemp (Aug 26)

T Biehn

Beware the firefox ZERO DAYZZZZ T Biehn (Aug 15)
Re: The Hacksaw Conspiracies T Biehn (Aug 19)

Tea Baggins

children of the daycare of justice little league Tea Baggins (Aug 12)
weev, baby Tea Baggins (Aug 14)

Team SHATTER

Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter) Team SHATTER (Aug 04)
Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Team SHATTER (Aug 04)
Team SHATTER Security Advisory: SQL Injection in Oracle Application Server (WWEXP_API_ENGINE) Team SHATTER (Aug 04)
Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHHOME Parameter) Team SHATTER (Aug 04)
Re: Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) Team SHATTER (Aug 11)

Thedjatclubrock

Re: x0x0x? its a joke! Thedjatclubrock (Aug 31)
Re: Inside India's CAPTCHA Solving Economy Thedjatclubrock (Aug 31)

Thierry Zoller

Re: Beware the firefox ZERO DAYZZZZ Thierry Zoller (Aug 16)

Thijs Kinkhorst

[SECURITY] [DSA 1625-1] New cupsys packages fix arbitrary code execution Thijs Kinkhorst (Aug 01)
[SECURITY] [DSA 1626-1] New httrack packages fix arbitrary code execution Thijs Kinkhorst (Aug 01)
[SECURITY] [DSA 1632-1] New tiff packages fix arbitrary code execution Thijs Kinkhorst (Aug 27)
[SECURITY] [DSA 1629-1] New postfix packages fix privilege escalation Thijs Kinkhorst (Aug 19)
[SECURITY] [DSA 1627-2] New opensc package fix incomplete check Thijs Kinkhorst (Aug 31)
[SECURITY] [DSA 1627-1] New opensc packages fix smart card vulnerability Thijs Kinkhorst (Aug 04)
[SECURITY] [DSA 1629-2] New postfix packages fix installability problem on i386 Thijs Kinkhorst (Aug 19)

Thomas Biege

SUSE Security Announcement: openwsman (SUSE-SA:2008:041) Thomas Biege (Aug 14)
SUSE Security Announcement: net-snmp (SUSE-SA:2008:039) Thomas Biege (Aug 01)
SUSE Security Announcement: postfix (SUSE-SA:2008:040) Thomas Biege (Aug 14)

Tim Dierks

Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Tim Dierks (Aug 08)
Re: OpenID/Debian PRNG/DNS Cache poisoning advisory Tim Dierks (Aug 08)

TJ

Re: Kaminsky's Law TJ (Aug 06)
Re: Media backlash ... insane? TJ (Aug 06)
Re: Media backlash begins against HD Moore and I)ruid TJ (Aug 06)

Tobias Heinlein

[ GLSA 200808-06 ] libxslt: Execution of arbitrary code Tobias Heinlein (Aug 06)
[ GLSA 200808-05 ] ISC DHCP: Denial of Service Tobias Heinlein (Aug 06)

Tobias Klein

[TKADV2008-006] CA HIPS KmxFw.sys Kernel Memory Corruption Tobias Klein (Aug 12)

Tom Brennan

Re: OWASP DirBuster 0.11.1 Released Tom Brennan (Aug 20)

Tonnerre Lombard

Re: ISO Standards Tonnerre Lombard (Aug 26)

Tony Mechelynck

Re: Vim: Netrw: FTP User Name and Password Disclosure Tony Mechelynck (Aug 13)

Tyler Reguly

Denial of Service Survey Tyler Reguly (Aug 19)

Ureleet

Re: Re : CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit Ureleet (Aug 05)
Re: Fwd: Are Bug Disclosures Helping or Hurting? Ureleet (Aug 05)
Re: (no subject) Ureleet (Aug 14)
Re: (no subject) Ureleet (Aug 05)
Re: Media backlash begins against HD Moore and I)ruid Ureleet (Aug 05)
Re: Fwd: Comment on: Microsoft to give partners heads-up on security vulnerabilities Ureleet (Aug 05)
Re: Great Council of Internet Superheros Ureleet (Aug 14)
Re: Funniest thing at DefCon this year... Ureleet (Aug 14)
Re: Nominate Dan Kaminsky for Most Overhyped Bug Pwnie Award Ureleet (Aug 05)
Re: Fwd: Comments on: Alleged NASA hacker gets temporary reprieve Ureleet (Aug 24)
Re: Internet justice delivered [UPDATE ON M. ROTHMAN AND ALAN] Ureleet (Aug 14)
Re: Fwd: Hacker calls buddies overseas on U.S. government dime Ureleet (Aug 24)
Re: Kaminsky's Law Ureleet (Aug 05)
Re: Internet attacks against Georgian web sites Ureleet (Aug 14)

Valdis . Kletnieks

Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 05)
Re: Gustav, domain name reportage Valdis . Kletnieks (Aug 30)
Re: Gustav, domain name reportage Valdis . Kletnieks (Aug 31)
Re: [funsec] Internet attacks against Georgian web sites Valdis . Kletnieks (Aug 11)
Re: [inbox] Monthly Hands-On Meetups Valdis . Kletnieks (Aug 31)
Re: question Valdis . Kletnieks (Aug 07)
Re: 0day services offer Valdis . Kletnieks (Aug 22)
Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 05)
Re: [funsec] Internet attacks against Georgian web s ites Valdis . Kletnieks (Aug 18)
Re: Emergency DNS Patch Still Vulnerable, Proves Russian Physicist Valdis . Kletnieks (Aug 09)
Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 05)
Re: [Full-disclosure] Inside India’s CAPTCHA Solving Economy Valdis . Kletnieks (Aug 30)
Re: Internet justice delivered, criminals panic and run in despair Valdis . Kletnieks (Aug 11)
Re: Media backlash begins against HD Moore and I)ruid Valdis . Kletnieks (Aug 03)
Re: Gustav, domain name reportage Valdis . Kletnieks (Aug 30)
Re: (no subject) Valdis . Kletnieks (Aug 14)

Valery Marchuk

SQL Injection Vulnerability in BtiTracker and xbtit Valery Marchuk (Aug 25)

Viktor Larionov

Re: Internet attacks against Georgian web sites Viktor Larionov (Aug 13)

VMware Security Team

VMSA-2008-0012 Updated VirtualCenter addresses User Account Disclosure Vulnerability VMware Security Team (Aug 12)
VMSA-2008-0013 Updated ESX packages for OpenSSL, net-snmp, perl VMware Security Team (Aug 12)
VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues. VMware Security team (Aug 29)

Wesley McGrew

Re: Gustav, domain name reportage Wesley McGrew (Aug 31)

wilder_jeff Wilder

When will they ever get it !?!?!?! wilder_jeff Wilder (Aug 07)

William A. Rowe, Jr.

Re: how to request a cve id? William A. Rowe, Jr. (Aug 03)

William McAfee

Re: Fedora confirms: Our servers were breached William McAfee (Aug 22)
Re: Klueless Klowns Team PHP shell William McAfee (Aug 17)
Re: OWASP DirBuster 0.11.1 Released William McAfee (Aug 20)
Re: [funsec] Internet attacks against Georgian web sites William McAfee (Aug 17)
Re: Full-Disclosure Digest, Vol 42, Issue 42 William McAfee (Aug 17)
Re: [funsec] Internet attacks against Georgian web s ites William McAfee (Aug 17)
Re: [funsec] Internet attacks against Georgian web s ites William McAfee (Aug 18)
Re: [funsec] Internet attacks against Georgian web s ites William McAfee (Aug 18)
Re: Linus summarizes state of the "security industry" with precision and accuracy. William McAfee (Aug 18)
Re: [funsec] Internet attacks against Georgian web sites William McAfee (Aug 17)
Re: The Hacksaw Conspiracies William McAfee (Aug 19)

Williams, James K

CA Products That Embed Ingres Multiple Vulnerabilities Williams, James K (Aug 06)
CA Host-Based Intrusion Prevention System SDK kmxfw.sys Multiple Vulnerabilities Williams, James K (Aug 12)
CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability Williams, James K (Aug 01)

zdi-disclosures

ZDI-08-053: Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability zdi-disclosures (Aug 14)
ZDI-08-052: OpenLDAP BER Decoding Remote DoS Vulnerability zdi-disclosures (Aug 14)
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption zdi-disclosures (Aug 12)
ZDI-08-054: Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow Vulnerability zdi-disclosures (Aug 28)
ZDI-08-050: Microsoft Internet Explorer XHTML Rendering Memory Corruption Vulnerability zdi-disclosures (Aug 12)
ZDI-08-051: Microsoft Internet Explorer Table Layout Memory Corruption Vulnerability zdi-disclosures (Aug 12)
ZDI-08-048: Microsoft Excel COUNTRY Record Memory Corruption Vulnerability zdi-disclosures (Aug 12)

Previous period

Next period