Full Disclosure: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

187 messages starting Sep 04 13 and ending Sep 02 13
Date index | Thread index | Author index

Aaron Lewis

[CVE-2013-5675] Symantec Endpoint Protection un-installation password bypass Aaron Lewis (Sep 04)

Adéla Goldová

Event Easy Calendar 1.0.0 WP plugin Adéla Goldová (Sep 07)
IndiaNIC Testimonial WP plugin - Multiple vulnerabilities Adéla Goldová (Sep 01)

Alonso Caballero Quezada / ReYDeS

jetty shutdown Alonso Caballero Quezada / ReYDeS (Sep 24)

Andrea Fabrizi

Synology DSM multiple vulnerabilities Andrea Fabrizi (Sep 10)

Andres Riancho

[Tool] nimbostratus: Pivoting in Amazon Clouds Andres Riancho (Sep 05)

Aris Adamantiadis

Re: OpenSSL, OpenSSH ecdsa authentication code inconsistent return values.. no vulnerability? Aris Adamantiadis (Sep 13)

Arne Swinnen

Automated SQL Injection Detection Arne Swinnen (Sep 11)

Arnis

possible backdoor in OpenSSL X509 verification Arnis (Sep 06)

Bacanu Adrian-Daniel

Re: IBM AIX 6.1 / 7.1 - Local root Privilege Escalation Bacanu Adrian-Daniel (Sep 25)

Ben Laurie

Re: possible backdoor in OpenSSL X509 verification Ben Laurie (Sep 06)

Bhavesh Naik

XSS on Bing maps Bhavesh Naik (Sep 18)

Christian Müller

CVE-2013-4330: Apache Camel critical disclosure vulnerability Christian Müller (Sep 30)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format and Advanced Recording Format Players Cisco Systems Product Security Incident Response Team (Sep 04)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Prime Data Center Network Manager Cisco Systems Product Security Incident Response Team (Sep 18)
Cisco Security Advisory: Cisco IOS Software Multicast Network Time Protocol Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Cisco IOS Software Internet Key Exchange Memory Leak Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Cisco Prime Central for Hosted Collaboration Solution Assurance Unauthenticated Username and Password Enumeration Vulnerability Cisco Systems Product Security Incident Response Team (Sep 18)
Cisco Security Advisory: Cisco IOS Software IPv6 Virtual Fragmentation Reassembly Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Cisco IOS Software Queue Wedge Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Cisco IOS Software DHCP Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Cisco IOS Software Zone-Based Firewall and Content Filtering Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)
Cisco Security Advisory: Cisco IOS Software Resource Reservation Protocol Interface Queue Wedge Vulnerability Cisco Systems Product Security Incident Response Team (Sep 25)

coderman

Re: Internet has vuln. coderman (Sep 11)
Re: Internet has vuln. coderman (Sep 11)
Re: Internet has vuln. coderman (Sep 12)
Re: Internet has vuln. coderman (Sep 12)
Internet has vuln. coderman (Sep 06)

CORE Advisories Team

[CORE-2013-0809] Sophos Web Protection Appliance Multiple Vulnerabilities CORE Advisories Team (Sep 06)

Crist Clark

Re: SYN ACK scans to random ports Crist Clark (Sep 24)

Curesec Research Team

Inkasso Trojaner - Part 3 Curesec Research Team (Sep 17)

Daniel Cegiełka

Re: Linux Kernel Patches For Linux Kernel Security Daniel Cegiełka (Sep 29)

dann frazier

[SECURITY] [DSA 2766-1] linux-2.6 security update dann frazier (Sep 28)

Eric Freyssinet

Botconf 2013 - Pre-programme published & registration open (Nantes, France 5-6/12/2013) Eric Freyssinet (Sep 16)

Fab Duchene

GreHack 2013 - 15 Nov. Grenoble, France - Conf. Registration OPEN Fab Duchene (Sep 20)

Fabio

Re: SYN ACK scans to random ports Fabio (Sep 24)

Florian Weimer

[SECURITY] [DSA 2748-1] exactimage security update Florian Weimer (Sep 01)
[SECURITY] [DSA 2750-1] imagemagick security update Florian Weimer (Sep 03)
[SECURITY] [DSA 2740-2] python-django regression update Florian Weimer (Sep 01)

fulldis

[PSA-2013-0903-1] Apple Safari Heap Buffer Overflow fulldis (Sep 03)

Georgi Guninski

Re: OpenSSL, OpenSSH ecdsa authentication code inconsistent return values.. no vulnerability? Georgi Guninski (Sep 12)
Re: Internet has vuln. Georgi Guninski (Sep 12)

Gonzalo Camino

New Version of JBrute Gonzalo Camino (Sep 17)
New version of JBrute Gonzalo Camino (Sep 19)
Fwd: New version of JBrute Gonzalo Camino (Sep 27)

G. S. McNamara

[Ruby on Rails] Move away from CookieStore if you care about your users and their security. Here is a technical explanation why. G. S. McNamara (Sep 25)

ISecAuditors Security Advisories

[ISecAuditors Security Advisories] Multiple Reflected Cross-Site Scripting vulnerabilities ISecAuditors Security Advisories (Sep 26)
XAMPP 1.8.1 Local Write Access Vulnerability ISecAuditors Security Advisories (Sep 26)

Ivan .Heca

NSA Apparently Purchasing Software Exploits From French Security Firm | Techdirt Lite Ivan .Heca (Sep 18)

Jakub Jozwiak

Check Point ClusterXL/CCP issue (DoS) Jakub Jozwiak (Sep 06)

Jan Murawski

Re: SYN ACK scans to random ports Jan Murawski (Sep 25)

Jan Schejbal

Insecure CHIASMUS encryption in GSTOOL Jan Schejbal (Sep 11)

Jay Turla

Pentest Mag, Data Recovery Magazine, and Software Developer's Journal Vulnerable to DOM XSS Jay Turla (Sep 29)

Jeffrey Walton

Re: Internet has vuln. Jeffrey Walton (Sep 13)
Re: possible backdoor in OpenSSL X509 verification Jeffrey Walton (Sep 06)
Re: Internet has vuln. Jeffrey Walton (Sep 12)
iOS: List of available trusted root certificates Jeffrey Walton (Sep 30)
iOS: List of available trusted root certificates (iOS 7) Jeffrey Walton (Sep 30)

joernchen

Re: [Ruby on Rails] Move away from CookieStore if you care about your users and their security. Here is a technical explanation why. joernchen (Sep 25)

John Cartwright

List Charter John Cartwright (Sep 09)

Julien Ahrens

[CVE-2013-5701] Watchguard Server Center v11.7.4 wgpr.dll Insecure Library Loading Local Privilege Escalation Vulnerability Julien Ahrens (Sep 08)

Justin Ferguson

Re: SYN ACK scans to random ports Justin Ferguson (Sep 25)
Re: Internet has vuln. Justin Ferguson (Sep 13)
Re: Internet has vuln. Justin Ferguson (Sep 13)

Kevin W. Wall

OWASP ESAPI Security Advisory: MAC Bypass in ESAPI Symmetric Encryption Kevin W. Wall (Sep 16)

king cope

Mikrotik RouterOS 5.* and 6.* sshd remote preauth heap corruption king cope (Sep 02)
Re: OpenSSL, OpenSSH ecdsa authentication code inconsistent return values.. no vulnerability? king cope (Sep 13)
ProFTPd mod_sftp/mod_sftp_pam invalid pool allocation in kbdint authentication king cope (Sep 11)
OpenSSL, OpenSSH ecdsa authentication code inconsistent return values.. no vulnerability? king cope (Sep 12)
Announcment http://www.farlight.org king cope (Sep 26)

Kiwicon

Kiwicon 7 CFP Kiwicon (Sep 03)

klondike

Permanent XSS and user enumeration on campus-party.eu klondike (Sep 02)

Kristian Erik Hermansen

IBM AIX 6.1 / 7.1 - Local root Privilege Escalation Kristian Erik Hermansen (Sep 24)

Larry W. Cashdollar

Remote Command Injection in fog-dragonfly-0.8.2 Ruby Gem Larry W. Cashdollar (Sep 02)
Unauthenticated Remote File Upload via HTTP for lua-Programming language 2.0 on iOS Larry W. Cashdollar (Sep 12)
Unauthenticated Remote File Upload via HTTP for perl-Programming language 1.6 on iOS Larry W. Cashdollar (Sep 11)
Unauthenticated Remote File Upload via HTTP for lua-Programming language 1.6 on iOS Larry W. Cashdollar (Sep 10)
Re: Unauthenticated Remote File Upload via HTTP for lua-Programming language 2.0 on iOS Larry W. Cashdollar (Sep 12)
Remote access to Android ftp server 1.2 configuration file allows login as admin Larry W. Cashdollar (Sep 22)
Re: Unauthenticated Remote File Upload via HTTP for lua-Programming language 1.6 on iOS Larry W. Cashdollar (Sep 10)
Unauthenticated Remote File Upload via HTTP for ruby-Programming language 1.7 on iOS Larry W. Cashdollar (Sep 11)

Luciano Bello

[SECURITY] [DSA 2765-1] davfs2 security update Luciano Bello (Sep 27)

Lukasz Lenart

[ANN] Struts 2.3.15.2 GA release available - security fix Lukasz Lenart (Sep 22)

Major Malfunction

RFID research hardware project Major Malfunction (Sep 18)

Marcio B. Jr.

Re: Internet has vuln. Marcio B. Jr. (Sep 13)

Mgr . Martin Žember

Re: list of vulnerabilities discovered by realpentesting Mgr . Martin Žember (Sep 02)

Moritz Muehlenhoff

[SECURITY] [DSA 2762-1] icedove security update Moritz Muehlenhoff (Sep 23)
[SECURITY] [DSA 2749-1] asterisk security update Moritz Muehlenhoff (Sep 02)
[SECURITY] [DSA 2760-1] chrony security update Moritz Muehlenhoff (Sep 18)
[SECURITY] [DSA 2764-1] libvirt security update Moritz Muehlenhoff (Sep 25)
[SECURITY] [DSA 2756-1] wireshark security update Moritz Muehlenhoff (Sep 13)
[SECURITY] [DSA 2759-1] iceweasel security update Moritz Muehlenhoff (Sep 18)

MustLive

DAVOSET v.1.1.3 MustLive (Sep 03)
Multiple vulnerabilities in RokNewsPager for WordPress MustLive (Sep 17)
AFU, AFD and XSS vulnerabilities in Uploadify MustLive (Sep 13)
Multiple vulnerabilities in InstantCMS MustLive (Sep 25)
XSS and Redirector vulnerabilities in InstantCMS MustLive (Sep 18)
Vulnerability in Privat24 for Android and iOS MustLive (Sep 30)
Multiple vulnerabilities in RokMicroNews for WordPress MustLive (Sep 19)
Multiple vulnerabilities in RokIntroScroller for WordPress MustLive (Sep 18)
Insufficient Authorization vulnerability in Act MustLive (Sep 01)
Multiple vulnerabilities in RokStories for WordPress MustLive (Sep 17)

Netsparker Advisories

SQL Injection Vulnerability in glFusion Netsparker Advisories (Sep 09)

Nico Golde

[SECURITY] [DSA 27671-1] proftpd-dfsg security update Nico Golde (Sep 30)

nullcon

Re: nullcon Goa 2014 Call for Paper/Event nullcon (Aug 31)
nullcon Goa 2014 Call for Paper/Event nullcon (Aug 31)

Onapsis Research Labs

[Onapsis Research Labs] New SAP Security In-Depth issue: "Preventing Cyber-Attacks Against SAP Solution Manager" Onapsis Research Labs (Sep 04)

Osama Alrashid

WordPress Fixes Multiple Vulnerabilities With 3.6.1 Release Osama Alrashid (Sep 13)

Pablo González

CVE-2013-5572 Pablo González (Sep 25)

Parth Shukla

Re: Analysis of the Carna Botnet (Internet Census 2012) Parth Shukla (Sep 06)

Pedro Guillen

Re: list of vulnerabilities discovered by realpentesting Pedro Guillen (Sep 03)
list of vulnerabilities discovered by realpentesting Pedro Guillen (Sep 02)

Raphael Geissert

[SECURITY] [DSA 2751-1] libmodplug security update Raphael Geissert (Sep 05)
[SECURITY] [DSA 2754-1] exactimage security update Raphael Geissert (Sep 11)
[SECURITY] [DSA 2761-1] puppet security update Raphael Geissert (Sep 20)

RBS Research

An Analysis of the (In)Security State of the GameHouse Game Installation Mechanism RBS Research (Sep 10)

Ryan Dewhurst

SimpleRisk v.20130915-01 CSRF-XSS Account Compromise Ryan Dewhurst (Sep 30)

Sajjad Pourali

DotNetNuke (DNNArticle Module) SQL Injection Vulnerability Sajjad Pourali (Sep 02)
DotNetNuke (DNN) Cross-Site Scripting Vulnerability !!!! Sajjad Pourali (Sep 02)

Salvatore Bonaccorso

[SECURITY] [DSA 2763-1] pyopenssl security update Salvatore Bonaccorso (Sep 24)
[SECURITY] [DSA 2758-1] python-django security update Salvatore Bonaccorso (Sep 17)
[SECURITY] [DSA 2755-1] python-django security update Salvatore Bonaccorso (Sep 11)

SEC Consult Vulnerability Lab

SEC Consult SA-20130904-0 :: GroupLink everything HelpDesk - undocumented password reset/admin takeover and XSS vulnerabilities SEC Consult Vulnerability Lab (Sep 04)

security

[ MDVSA-2013:226 ] roundcubemail security (Sep 05)
[ MDVSA-2013:238 ] wireshark security (Sep 19)
[ MDVSA-2013:244 ] davfs2 security (Sep 30)
[ MDVSA-2013:233 ] python-OpenSSL security (Sep 13)
[ MDVSA-2013:227 ] python-setuptools security (Sep 09)
[ MDVSA-2013:240 ] glpi security (Sep 25)
[ MDVSA-2013:242 ] kernel security (Sep 26)
[ MDVSA-2013:228 ] cacti security (Sep 10)
[ MDVSA-2013:224 ] libtiff security (Sep 02)
[ MDVSA-2013:241 ] perl-Crypt-DSA security (Sep 25)
[ MDVSA-2013:235 ] mediawiki security (Sep 16)
[ MDVSA-2013:225 ] libdigidoc security (Sep 02)
[ MDVSA-2013:239 ] wordpress security (Sep 19)
[ MDVSA-2013:232 ] libmodplug security (Sep 13)
[ MDVSA-2013:230 ] gdm security (Sep 11)
[ MDVSA-2013:236 ] subversion security (Sep 17)
[ MDVSA-2013:237 ] firefox security (Sep 18)
[ MDVSA-2013:231 ] openswan security (Sep 12)
[ MDVSA-2013:229 ] bzr security (Sep 10)
[ MDVSA-2013:234 ] python-django security (Sep 13)
[ MDVSA-2013:243 ] polkit security (Sep 27)

security-news

[Security-news] SA-CONTRIB-2013-073 - Make Meeting Scheduler - Access Bypass security-news (Sep 04)
[Security-news] SA-CONTRIB-2013-077 - Google Site Search - Cross Site Scripting (XSS) security-news (Sep 18)
[Security-news] SA-CONTRIB-2013-076 - jQuery Countdown - Cross Site Scripting (XSS) security-news (Sep 11)
[Security-news] PSA-2013-001: Drupal core - Users can insert hidden text and links security-news (Sep 04)
[Security-news] SA-CONTRIB-2013-075 - Click2Sell - Multiple Vulnerabilities (XSS and CSRF) security-news (Sep 11)
[Security-news] SA-CONTRIB-2013-074 - MediaFront - Cross Site Scripting (XSS) security-news (Sep 11)

Shubhneet Goel

FREE Webinar On Setting Up A Successful E-Commerce Store Shubhneet Goel (Sep 08)

silence_is_best

Re: SYN ACK scans to random ports silence_is_best (Sep 25)
SYN ACK scans to random ports silence_is_best (Sep 24)
Re: Pentest Mag, Data Recovery Magazine, and Software Developer's Journal Vulnerable to DOM XSS silence_is_best (Sep 30)

Stefan Kanthak

Re: %windir%\temp\sso\ssoexec.dll (or: howtrustworthy is Microsoft's build process) Stefan Kanthak (Sep 19)
Defense in depth -- the Microsoft way (part 10) Stefan Kanthak (Sep 21)
Re: Defense in depth -- the Microsoft way (part 9): erroneous documentation Stefan Kanthak (Sep 02)

Steve Wray

Re: Internet has vuln. Steve Wray (Sep 14)
Re: Internet has vuln. Steve Wray (Sep 12)

Thijs Kinkhorst

[SECURITY] [DSA 2753-1] mediawiki security update Thijs Kinkhorst (Sep 13)
[SECURITY] [DSA 2752-1] phpbb3 security update Thijs Kinkhorst (Sep 07)

Tim

Re: [Ruby on Rails] Move away from CookieStore if you care about your users and their security. Here is a technical explanation why. Tim (Sep 25)

Tim Brown

Re: IBM AIX 6.1 / 7.1 - Local root Privilege Escalation Tim Brown (Sep 25)

Timur R KHAKIMZYANOV

Re: IBM AIX 6.1 / 7.1 - Local root Privilege Escalation Timur R KHAKIMZYANOV (Sep 25)

Tony Naggs

DC4420 - London DEFCON - September meet - Tuesday 24th September 2013 Tony Naggs (Sep 22)
Re: DC4420 - London DEFCON - September meet - Tuesday 24th September 2013 Tony Naggs (Sep 23)

Tracy Reed

Re: Internet has vuln. Tracy Reed (Sep 13)

Trustwave Advisories

TWSL2013-028: Persistent DoS Vulnerability in Vino VNC Server Trustwave Advisories (Sep 17)
TWSL2013-027: Multiple Vulnerabilities in AjaXplorer Trustwave Advisories (Sep 06)

Valdis . Kletnieks

Re: Internet has vuln. Valdis . Kletnieks (Sep 13)
Re: Internet has vuln. Valdis . Kletnieks (Sep 12)

Vulnerability Lab

Paypal Inc Bug Bounty #99 - Filter Bypass & Persistent Web Vulnerability Vulnerability Lab (Sep 19)
Talkie Bluetooth Video iFiles 2.0 iOS - Multiple Vulnerabilities Vulnerability Lab (Sep 10)
Monstra CMS v1.2.0 - Blind SQL Injection Vulnerability Vulnerability Lab (Sep 20)
eTransfer Lite v1.0 iOS - Persistent Filename Vulnerability Vulnerability Lab (Sep 10)
Microsoft SharePoint 2013 (Cloud) - Persistent Exception Handling Web Vulnerability Vulnerability Lab (Sep 10)
Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability Vulnerability Lab (Sep 18)

Wire Ghoul

mod_accounting Blind SQL Injection (DS-2013-006) Wire Ghoul (Sep 26)

x180913erp

Security Vulnerability in German ERP system "Sage Office Line" x180913erp (Sep 18)

x90c

Linux Kernel Patches For Linux Kernel Security x90c (Sep 28)

xnite

Re: nullcon Goa 2014 Call for Paper/Event xnite (Aug 31)

y6whynrzab

EarthVPN certificate configuration vulnerabilities y6whynrzab (Sep 17)

yersinia

Re: Linux Kernel Patches For Linux Kernel Security yersinia (Sep 30)

YOGESH PHADTARE

Kwok Information Server Blind Sql Injection YOGESH PHADTARE (Sep 13)

Yves-Alexis Perez

[SECURITY] [DSA 2757-1] wordpress security update Yves-Alexis Perez (Sep 14)

Źmicier Januszkiewicz

Re: list of vulnerabilities discovered by realpentesting Źmicier Januszkiewicz (Sep 02)

Previous period

Next period