Full Disclosure: by date

• RSS Feed
• About List
• All Lists

Previous period

Next period

428 messages starting Jun 01 12 and ending Jun 30 12
Date index | Thread index | Author index

Friday, 01 June

Re: NSA Cyber security program [ maybe off-topic ] InterN0T Advisories
TrueCaller Vulnerability Allows Changing Users Details Kuwait WhiteHat
Re: NSA Cyber security program [ maybe off-topic ] Benjamin Kreuter
Re: NSA Cyber security program [ maybe off-topic ] Alexander Georgiev
Re: NSA Cyber security program [ maybe off-topic ] Urlan

Sunday, 03 June

Re: TrueCaller Vulnerability Allows Changing Users Details Thor (Hammer of God)

Monday, 04 June

Unauthorized Digital Certificates Could Allow Spoofing Georgi Guninski
Re: [Full Disclosure] Unauthorized Digital Certificates Could Allow Spoofing imipak
Re: Unauthorized Digital Certificates Could Allow Spoofing Shreyas Zare
Re: TrueCaller Vulnerability Allows Changing Users Details Григорий Братислава
Re: Unauthorized Digital Certificates Could Allow Spoofing Juha-Matti Laurio
Re: Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ] Mikhail A. Utin
Re: Unauthorized Digital Certificates Could Allow Spoofing Joel Esler
Re: [Full Disclosure] Unauthorized Digital Certificates Could Allow Spoofing Georgi Guninski
Re: NSA Cyber security program [ maybe off-topic ] Jack Slade
[SECURITY] [DSA 2484-1] nut security update Thijs Kinkhorst
[SECURITY] [DSA 2481-1] arpwatch security update Yves-Alexis Perez
[SECURITY] [DSA 2482-1] arpwatch security update Yves-Alexis Perez
[SECURITY] [DSA 2482-1] libgdata security update Yves-Alexis Perez
[SECURITY] [DSA 2485-1] imp4 security update Thijs Kinkhorst
ISC Security Advisory: Handling of zero length rdata can cause named to terminate, unexpectedly Larissa Shapiro
Re: Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ] Georgi Guninski
Obama Order Sped Up Wave of Cyberattacks Against Iran Jeffrey Walton
EUSecWest 2012 - Amsterdam, Sept 19/20 featuring Mobile PWN2OWN - CFP Deadline June 15 Dragos Ruiu
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Joel Esler

Tuesday, 05 June

[ MDVSA-2012:087 ] nut security
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Georgi Guninski
Re: TrueCaller Vulnerability Allows Changing Users Details doc mombasa
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson
Re: TrueCaller Vulnerability Allows Changing Users Details Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Marcio B. Jr.
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Dave
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Marcio B. Jr.
[SECURITY] [DSA 2486-1] bind9 security update Florian Weimer

Wednesday, 06 June

New IETF I-D: (IPv6) "Neighbor Discovery Shield (ND-Shield): Protecting against Neighbor Discovery Attacks" Fernando Gont
Re: Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ] Alexander Georgiev
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Alexander Georgiev
Re: Google Accounts Security Vulnerability Kyle Creyts
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: NSA Cyber security program [ maybe off-topic ] Giles Coochey
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Charles Morris
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Charles Morris
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Vulnerabilities in JW Player and millions of web sites MustLive
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson
Vulnerabilities in OpenBSD and billions is other websites Григорий Братислава
[Security-news] SA-CONTRIB-2012-091 - Token Authentication - Access bypass security-news
[Security-news] SA-CONTRIB-2012-092 - Organic Groups - Cross Site Scripting (XSS) and Access Bypass security-news
Re: TrueCaller Vulnerability Allows Changing Users Details doc mombasa
[Security-news] SA-CONTRIB-2012-093 - Node Embed - Access Bypass security-news
[Security-news] SA-CONTRIB-2012-094 - Maestro module - Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS) security-news
[Security-news] SA-CONTRIB-2012-095 - Simplenews - Information Disclosure security-news
[Security-news] SA-CONTRIB-2012-096 - Authoring HTML - Cross Site Scripting (XSS) security-news
[Security-news] SA-CONTRIB-2012-097 - Protest - Cross Site Scripting (XSS) security-news
ZDI-12-075 : Apple Quicktime RLE Sample Decoding Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-076 : Apple QuickTime MPEG Stream Padding Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-077 : Apple QuickTime QTVR QTVRStringAtom Parsing Remote Code Execution Vulnerability ZDI Disclosures
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
ZDI-12-078 : Apple QuickTime SVQ3 Codec mb_skip_run Parsing Remote Code Execution ZDI Disclosures
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Andrew D Kirch
ZDI-12-080 : Adobe Flash Player MP4 Stream Decoding Remote Code Execution Vulnerability ZDI Disclosures
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran William Warren
ZDI-12-081 : Oracle Java GlueGen Arbitrary Native Library Loading Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-082 : Oracle Java OpenGL Arbitrary Native Library Loading Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-083 : Oracle Java OpenAL Library Pointer Manipulation Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-084 : RealNetworks RealPlayer RV10 Encoded Height/Width Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-085 : RealNetworks RealPlayer dmp4 esds Width Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-086 : RealNetworks RealPlayer rvrender RMFF Flags Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-087 : RealNetworks RealPlayer raac.dll stsz Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-089 : HP DataDirect OpenAccess GIOP Parsing Remote Code Execution Vulnerability ZDI Disclosures
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Google Accounts Security Vulnerability Michael J. Gray
Re: Google Accounts Security Vulnerability Michael J. Gray
ZDI-12-079 : Apple QuickTime H264 Picture Width Parsing Remote Code Execution Vulnerability Zero Day Initiative
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran destrudo () d4m4g3d net
Re: Vulnerabilities in JW Player and millions of web sites karniv0re
Re: TrueCaller Vulnerability Allows Changing Users Details Kuwait WhiteHat
Re: TrueCaller Vulnerability Allows Changing Users Details Kuwait WhiteHat
Re: TrueCaller Vulnerability Allows Changing Users Details Q8WhiteHat
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Jack Slade
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai

Thursday, 07 June

Re: Google Accounts Security Vulnerability Mike Hearn
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Secunia Research: Network Instruments Observer SNMP OID Processing Denial of Service Secunia Research
Secunia Research: Network Instruments Observer SNMP Processing Buffer Overflows Secunia Research
CVE-2012-2378 - Apache CXF does not pick up some child policies of WS-SecurityPolicy 1.1 SupportingToken policy assertions on the client side. Colm O hEigeartaigh
CVE-2012-2379 - Apache CXF does not verify that elements were signed or encrypted by a particular Supporting Token. Colm O hEigeartaigh
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Netto.se arbitrary XSS injection through the redirector. klondike
[SECURITY] [DSA 2480-3] request-tracker3.8 regression update Florian Weimer
[SECURITY] [DSA 2487-1] openoffice.org security update Florian Weimer
[SECURITY] [DSA 2489-1] iceape security update Thijs Kinkhorst
[SECURITY] [DSA 2490-1] nss security update Thijs Kinkhorst
[SECURITY] [DSA 2488-1] iceweasel security update Thijs Kinkhorst
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Sardina, Dominick
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Mark Shuler
Re: Vulnerabilities in OpenBSD and billions is other websites Julius Kivimäki

Friday, 08 June

Analysis: Vast IPv6 address space actually enables IPv6 attacks Fernando Gont
Re: Analysis: Vast IPv6 address space actually enables IPv6 attacks Fernando Gont
Re: Flame= cyberwar - tech details on sKyWIper BENCSATH Boldizsar
Germany reveals secret techie soldier unit, new cyberweapons Georgi Guninski
Re: Full-Disclosure Digest, Vol 88, Issue 11: Mikhail A. Utin
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Peter Dawson
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Flame= cyberwar - tech details on sKyWIper [Full-Disclosure Digest, Vol 88, Issue 12] SMiller
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Bzzz
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran James Condron
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Memory Vandal
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Григорий Братислава
ZDI-12-090 : Symantec Web Gateway Shell Command Injection Remote Code Execution Vulnerability ZDI Disclosures
Re: Vulnerabilities in JW Player and millions of web sites MustLive
ZDI-12-091 : Symantec Web Gateway upload_file Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability ZDI Disclosures
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Michael Hallgren
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Michael Hallgren
Re: Analysis: Vast IPv6 address space actually enables IPv6 attacks Fernando Gont
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai

Saturday, 09 June

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Georgi Guninski
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran phocean
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Jason Hellenthal
Re: Obama Order Sped Up Wave of Cyberattacks John Doe
List Charter John Cartwright
[SECURITY] [DSA 2491-1] postgresql-8.4 security update Florian Weimer
Re: Obama Order Sped Up Wave of Cyberattacks Christian Sciberras
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran phocean
[ MDVSA-2012:088 ] mozilla security
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran John Doe
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran John Doe
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran John Doe
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Jason Hellenthal
IIS 6.0/7.5 Vulnerabilities [moderate risk] - ISOWAREZ BDAY RELEASE king cope
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Georgi Guninski

Sunday, 10 June

Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Mark Shuler
Re: ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability Steve Shockley
Re: Obama Order Sped Up Wave of Cyberattacks doc mombasa
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
[ MDVSA-2012:089 ] bind security
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran doc mombasa
[CVE-2012-3238] Astaro Security Gateway <= v8.304 Persistent Cross-Site Scripting Vulnerability Inshell Security
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Some stats about broken Linkedin passwds Georgi Guninski
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
[SECURITY] [DSA 2492-1] php5 security update Florian Weimer
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benji
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benji
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran coderman
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Benjamin Kreuter
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Ian Hayes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Dan Cross
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Christian Sciberras
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran valdis . kletnieks
Publication References on Criminalisation of Hacking Tools Needed Pablo Ximenes
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Dan Cross
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Nick FitzGerald
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Thor (Hammer of God)
Re: Obama Order Sped Up Wave of Cyberattacks Against Iran Laurelai

Monday, 11 June

[MATTA-2012-002] CVE-2012-1493; F5 BIG-IP remote root authentication bypass Vulnerability Florent Daigniere
Re: Some stats about broken Linkedin passwds yersinia
Re: Publication References on Criminalisation of Hacking Tools Needed Peter Dawson

Tuesday, 12 June

Vulnerability in Zombie Processes Григорий Братислава
Metadata exfiltration Adam Behnke
Re: Metadata exfiltration Григорий Братислава
Re: Vulnerability in Zombie Processes Charles Morris
[SECURITY] [DSA 2493-1] asterisk security update Florian Weimer
ZDI-12-093 : (Pwn2Own) Microsoft Internet Explorer Fixed Table Colspan Remote Code Execution Vulnerability ZDI Disclosures
[CAL-2012-0026] Microsfot IE Same ID Property Remote Code Execution Vulnerability Code Audit Labs
[CAL-2012-0023]Microsoft IE Developer Toolbar Remote Code Execution Vulnerability Code Audit Labs

Wednesday, 13 June

Is Flame Malware Disclosure Григорий Братислава
[SE-2012-01] Regarding Oracle's Critical Patch Update for Java SE Security Explorations
Full-Disclosure Fatherlaptop
CVE-2012-1661 - ESRI ArcMap arbitrary code execution via crafted map file. Boston Cyber Defense
A Chat With The NGR Bot Adam Behnke
Re: A Chat With The NGR Bot Alex Buie
[Security-news] SA-CONTRIB-2012-098 - Janrain Capture - Open Redirect security-news
[Security-news] SA-CONTRIB-2012-099 - Node Hierarchy - Cross Site Request Forgery (CSRF) security-news
[Security-news] SA-CONTRIB-2012-100 - SimpleMeta - Cross Site Request Forgery (CSRF) security-news
[Security-news] SA-CONTRIB-2012-101 - Protected Node - Access Bypass security-news
[Security-news] SA-CONTRIB-2012-102 - Ubercart AJAX Cart - Potential Disclosure of user Session ID security-news
[Security-news] SA-CONTRIB-2012-103 - Global Redirect - Open Redirect security-news
VMSA-2012-0011 VMware hosted products and ESXi and ESX patches address security issues VMware Security Team

Thursday, 14 June

Strange gpg key shadowing Georgi Guninski
[CAL-2012-0015] opera website spoof Code Audit Labs
[ MDVSA-2012:090 ] openoffice.org security
[ MDVSA-2012:091 ] libreoffice security
Using second gpg keyring may be misleading? Georgi Guninski
Re: Using second gpg keyring may be misleading? Thor (Hammer of God)
0A29-12-1 : Cross-Site Scripting vulnerabilities in Nagios XI < 2011R3.0 0a29 40
AST-2012-009: Skinny Channel Driver Remote Crash Vulnerability Asterisk Security Team
[SECURITY] [DSA 2494-1] ffmpeg security update Florian Weimer
eSyndiCat Pro v2.4.1 - Multiple Web Vulnerabilities Research
Boonex Dolphin v7.0.9 CMS & Mobile App - Multiple Web Vulnerabilities Research
QuickBlog v0.8 CMS - Multiple Web Vulnerabilities Research
ADICO CMS v1.1 - Blind SQL Injection Vulnerability Research
iScripts EasyCreate CMS v2.0 - Multiple Web Vulnerabilites Research
Interspire Shopping Cart v6 - Multiple Web Vulnerabilities Research
Squirrelcart Cart Shop v3.3.4 - Multiple Web Vulnerabilities Research
Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities Research
Simple Forum PHP 2.1 - SQL Injection Vulnerabilities Research
Jobs Portal v3.0 NetArtMedia - Multiple Web Vulnerabilites Research
Cells Blog CMS v1.1 - Multiple Web Vulnerabilites Research
MYRE Real Estate Mobile 2012|2 - Multiple Vulnerabilities Research
Nuked Klan SP CMS v4.5 - SQL injection Vulnerability Research

Friday, 15 June

ubuntu apt-key (part 3) Georgi Guninski
nullcon Delhi 2012 Final call for Paper/Events (extended to 10th July) and First round of speakers nullcon
free speech - 9 yro bloggers are dangerous Georgi Guninski
[ MDVSA-2012:091 ] libreoffice security
Re: Using second gpg keyring may be misleading? Georgi Guninski
[ MDVSA-2012:092 ] postgresql security
Flame - couldn't resist J. Oquendo
[ MDVSA-2012:093 ] php security
IObit Protected Folder Authentication Bypass Adam Behnke
Re: Using second gpg keyring may be misleading? Thor (Hammer of God)
Re: free speech - 9 yro bloggers are dangerous Thor (Hammer of God)

Saturday, 16 June

Webify Product Series - Multiple Web Vulnerabilities Research
Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities Research
[SECURITY] [DSA 2495-1] openconnect security update Moritz Muehlenhoff
DT, XSS and FPD vulnerabilities in Organizer for WordPress MustLive
Re: [CAL-2012-0015] opera website spoof Code Audit Labs

Sunday, 17 June

QNAP Turbo NAS Multiple Vulnerabilities - Security Advisory Lists
Squiz CMS Multiple Vulnerabilities - Security Advisory - SOS-12-007 Lists

Monday, 18 June

[ MDVSA-2012:094 ] clamav security
[ MDVSA-2012:095 ] java-1.6.0-openjdk security
SEC Consult SA-20120618-0 :: Western Digital ShareSpace WEB GUI Sensitive Data Disclosure SEC Consult Vulnerability Lab
SEC Consult SA-20120618-1 :: Airlock WAF overlong UTF-8 sequence bypass SEC Consult Vulnerability Lab
DC4420 - London DEFCON - June meet - Tuesday June 19th 2012 Major Malfunction
[SECURITY] [DSA 2496-1] mysql-5.1 security update Thijs Kinkhorst

Tuesday, 19 June

Re: www.LEORAT.com is scam Fyodor
Re: www.LEORAT.com is scam coderman
DDIVRT-2012-45 SolarWinds Network Performance Monitor Blind SQL Injection ddivulnalert
Re: www.LEORAT.com is scam Thor (Hammer of God)

Wednesday, 20 June

[Win32-API] SetNamedSecurityInfo() IGNORES and DESTROYS protected DACLs/SACLs Stefan Kanthak
Re: Full-Disclosure Digest, Vol 88, Issue 34 Re: www.LEORAT.com is scam (Thor (Hammer of God)) Mikhail A. Utin
winAUTOPWN v3.1 Released QUAKER DOOMER
[ MDVSA-2012:096 ] python security
Cisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco Application Control Engine Administrator IP Address Overlap Vulnerability Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team
[ MDVSA-2012:097 ] python security
[Security-news] SA-CONTRIB-2012-104 - Privatemsg - Cross Site Scripting (XSS) security-news
[SECURITY] [DSA 2497-1] quagga security update Florian Weimer

Thursday, 21 June

WordPress Authenticated File Upload Authorisation Bypass Denis Andzakovic
Re: WordPress Authenticated File Upload Authorisation Bypass PsychoBilly
[ MDVSA-2012:098 ] libxml2 security
Re: WordPress Authenticated File Upload Authorisation Bypass Greg Knaddison
[ MDVSA-2012:099 ] net-snmp security
Re: WordPress Authenticated File Upload Authorisation Bypass Gage Bystrom
Re: WordPress Authenticated File Upload Authorisation Bypass valdis . kletnieks
Re: server security Gage Bystrom
Re: WordPress Authenticated File Upload Authorisation Bypass Hector Marco
Re: server security Thor (Hammer of God)
CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow CORE Security Technologies Advisories
ZDI-12-094 : RealNetworks Helix Server rn5auth Credential Parsing Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-095 : Apple Quicktime TeXML transform Attribute Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-096 : HP Data Protector Express Opcode 0x330 Parsing Remote Code Execution Vulnerability ZDI Disclosures
Re: CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow coderman
ZDI-12-097 : HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-098 : AOL Products dnUpdater ActiveX Uninitialized Pointer Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-099 : DataDirect OpenAccess oaagent.exe GIOP Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability ZDI Disclosures
Re: WordPress Authenticated File Upload Authorisation Bypass Denis Andzakovic
Re: WordPress Authenticated File Upload Authorisation Bypass Benji
Re: WordPress Authenticated File Upload Authorisation Bypass Carlos Alberto Lopez Perez

Friday, 22 June

Potential gpg forging key signatures with collisions Georgi Guninski
Re: server security Elazar Broad
Warning is about APT Григорий Братислава
XSS and Charset Remembering via charsets in different browsers MustLive

Saturday, 23 June

[ MDVSA-2012:088-1 ] mozilla security

Sunday, 24 June

[SECURITY] [DSA 2499-1] icedove security update Florian Weimer
[SECURITY] [DSA 2500-1] mantis security update Florian Weimer
[SECURITY] [DSA 2501-1] xen security update Florian Weimer
Sunday Fodder Thor (Hammer of God)
[SECURITY] [DSA 2502-1] python-crypto security update Moritz Muehlenhoff
Re: Sunday Fodder Thor (Hammer of God)
Re: [SECURITY] [DSA 2502-1] python-crypto security update coderman
hashdays 2012 - Call for Papers (#days CFP) Hashdays CFP

Monday, 25 June

Re: [SECURITY] [DSA 2502-1] python-crypto security update BMF
[ MDVSA-2012:100 ] rsyslog security
How to access your favorite sites in the event of a DNS takedown ? Jardel
Re: How to access your favorite sites in the event of a DNS takedown ? alan buxey
Re: server security Daniel Hadfield
Root Exploit Western Digital's WD TV Live SMP/Hub (all released firmware releases) Wolf Bee
[SECURITY] [DSA 2498-1] dhcpcd security update Yves-Alexis Perez
[SE-2012-01] Security weakness in Apple QuickTime Java extensions (details released) Security Explorations
Re: How to access your favorite sites in the event of a DNS takedown ? Jardel Weyrich
Exploit for Intel SYSRET "vulnerability" on FreeBSD Hunger
Re: Sunday Fodder Darius Jahandarie
FCKEditor reflected XSS vulnerability Emilio Pinna
Re: Warning is about APT c-APT-ure
CVE-2012-2380: Apache Roller Cross-Site-Resource-Forgery (XSRF) vulnerability Dave
CVE-2012-2381: Apache Roller Cross-Site-Scripting (XSS) vulnerability Dave
Re: How to access your favorite sites in the event of a DNS takedown ? nake
Entropy distribution to virtual machines coderman
Re: How to access your favorite sites in the event of a DNS takedown ? Peter Dawson
Re: How to access your favorite sites in the event of a DNS takedown ? Nate Theis
Re: server security Thor (Hammer of God)
Re: How to access your favorite sites in the event of a DNS takedown ? Thor (Hammer of God)
Re: How to access your favorite sites in the event of a DNS takedown ? nix
Re: How to access your favorite sites in the event of a DNS takedown ? rancor
Re: Warning is about APT rancor

Tuesday, 26 June

SEC Consult SA-20120626-0 :: Zend Framework - Local file disclosure via XXE injection SEC Consult Vulnerability Lab
Re: How to access your favorite sites in the event of a DNS takedown ? PsychoBilly

Wednesday, 27 June

ZDI-12-101 : IBM Cognos tm1admsd.exe Multiple Operations Remote Code Execution Vulnerabilities ZDI Disclosures
ZDI-12-102 : Novell iPrint Client nipplib.dll GetDriverSettings realm Remote Code Execution Vulnerability ZDI Disclosures
-----BEGIN PGP SIGNED MESSAGE----- ZDI Disclosures
ZDI-12-104 : SAP Netweaver ABAP msg_server.exe Parameter Value Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-105 : Apple Quicktime Text Track Descriptor Parsing Remote Code Execution ZDI Disclosures
ZDI-12-103 : Apple Quicktime Dataref URI Buffer Remote Code Execution ZDI Disclosures
A new research about next gen crawling in pen test scanners bobo manang
Re: How to access your favorite sites in the event of a DNS takedown ? Brian Gallagher
Re: How to access your favorite sites in the event of a DNS takedown ? Darius Jahandarie
Presentations from Positive Hack Days 2012 Published Dmitry Evteev
Re: How to access your favorite sites in the event of a DNS takedown ? Michael Stummvoll
Re: [SE-2012-01] Security weakness in Apple QuickTime Java extensions (details released) Ramo
OpenLimit Reader for Windows contains completely outdated, superfluous and VULNERABLE system components Stefan Kanthak
Re: How to access your favorite sites in the event of a DNS takedown ? Nahuel Grisolía
Re: How to access your favorite sites in the event of a DNS takedown ? nake
Re: www.LEORAT.com is scam smith joseph
xxx trap9 trap9
Cisco Security Advisory: Buffer Overflow Vulnerabilities in the Cisco WebEx Player Cisco Systems Product Security Incident Response Team
Re: How to access your favorite sites in the event of a DNS takedown ? Thor (Hammer of God)

Thursday, 28 June

Re: [SE-2012-01] Security weakness in Apple QuickTime Java extensions (details released) Security Explorations
ZDI-12-106 : Avaya IP Office Customer Call Reporter ImageUpload Remote Code Execution Vulnerability ZDI Disclosures
[SECURITY] [DSA 2503-1] bcfg2 security update Florian Weimer
[SECURITY] [DSA 2504-1] libspring-2.5-java security update Florian Weimer
Vulnerabilities in LIOOSYS CMS MustLive
ZDI-12-107 : Apple Quicktime TeXML Style Element Parsing Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-108 : Apple Quicktime TeXML sampleData Element Parsing Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-109 : Apple Quicktime TeXML Karaoke Element Parsing Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-110 : Mozilla Firefox AttributeChildRemoved Use-After-Free Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-111 : SAP Netweaver ABAP msg_server.exe Opcode 0x43 Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-112 : SAP Netweaver ABAP msg_server.exe Parameter Name Remote Code Execution Vulnerability ZDI Disclosures
ZDI-12-113 : IBM Rational ClearQuest CQOle ActiveX Control Remote Code Execution Vulnerability ZDI Disclosures
Re: How to access your favorite sites in the event of a DNS takedown ? Jeffrey Walton
REWTERZ-20120629 - TEMENOS T24 Cross-Site Scripting (XSS) Vulnerability Rewterz - Research Group

Friday, 29 June

TPTI-12-06: Hewlett-Packard Data Protector DtbClsAddObject Parsing Remote Code Execution Vulnerability ZDI Disclosures
TPTI-12-05: Oracle AutoVue ActiveX SetMarkupMode Remote Code Execution Vulnerability ZDI Disclosures
[SECURITY] [DSA 2505-1] zendframework security update Florian Weimer

Saturday, 30 June

IBM Edge Components Caching Proxy XSS Followup BugsNotHugs
Sun iPlanet Error Page Link Injection BugsNotHugs
IBM developerWorks ncp (Nigel's Capacity Planning) 2.1 Remote Information Disclosure BugsNotHugs
Konqueror 3.5.5 XFS BugsNotHugs

Previous period

Next period