Vulnwatch: by author

Previous period
Next period

28 messages starting Dec 03 07 and ending Oct 12 07
Date index | Thread index | Author index

Adrian P.

PR07-14: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script Adrian P. (Dec 03)
PR07-39: Multiple vulnerabilities on Absolute News Manager.NET 5.1 including file retrieval and SQL injection Adrian P. (Dec 04)
PR07-37: XSS on Apache HTTP Server 413 error pages via malformed HTTP method Adrian P. (Dec 03)

advisories

Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issue advisories (Oct 22)

advisory

R7-0031: JFreeChart Image Map Cross-Site Scripting Vulnerabilities advisory (Dec 06)

ascii

Original Photo Gallery Remote Command Execution ascii (Oct 02)

Asterisk Security Team

AST-2007-026 - SQL Injection issue in cdr_pgsql Asterisk Security Team (Dec 03)
AST-2007-025 - SQL Injection issue in res_config_pgsql Asterisk Security Team (Dec 03)

Cisco Systems Product Security Incident Response Team

Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module Cisco Systems Product Security Incident Response Team (Dec 20)
Cisco Security Advisory: Cisco Wireless Control System Conversion Utility Adds Default Password Cisco Systems Product Security Incident Response Team (Oct 12)
Cisco Security Advisory: Cisco Security Agent for Windows System Driver Remote Buffer Overflow Vulnerability Cisco Systems Product Security Incident Response Team (Dec 05)

Core Security Technologies Advisories

CORE-2007-0928: Stack-based buffer overflow vulnerability in OpenBSD’s DHCP server Core Security Technologies Advisories (Oct 12)
CORE-2007-1004: VLC Activex Bad Pointer Initialization Vulnerability CORE Security Technologies Advisories (Dec 04)

iDefense Labs

iDefense Security Advisory 10.11.07: Multiple Vendor FLAC Library Multiple Integer Overflow Vulnerabilities iDefense Labs (Oct 12)
iDefense Security Advisory 10.02.07: Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability iDefense Labs (Oct 03)
iDefense Security Advisory 12.18.07: ClamAV libclamav MEW PE File Integer Overflow Vulnerability iDefense Labs (Dec 20)
iDefense Security Advisory 12.11.07: Microsoft DirectX 7 and 8 DirectShow Stack Buffer Overflow Vulnerability iDefense Labs (Dec 14)
iDefense Security Advisory 10.09.07: Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow iDefense Labs (Oct 12)
iDefense Security Advisory 10.02.07: Multiple Vendor X Font Server Multiple Vulnerabilities iDefense Labs (Oct 03)
iDefense Security Advisory 10.23.07: IBM Lotus Notes Client TagAttributeListCopy Buffer Overflow Vulnerability iDefense Labs (Oct 24)
iDefense Security Advisory 12.11.07: Microsoft Internet Explorer JavaScript setExpression Heap Corruption Vulnerability iDefense Labs (Dec 14)
iDefense Security Advisory 10.23.07: IBM Lotus Domino IMAP Buffer Overflow Vulnerability iDefense Labs (Oct 24)
iDefense Security Advisory 10.10.07: Kaspersky Web Scanner ActiveX Format String Vulnerability iDefense Labs (Oct 12)
iDefense Security Advisory 12.17.07: Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Vulnerability iDefense Labs (Dec 20)

Nick FitzGerald

Re: iDefense Security Advisory 10.09.07: Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow Nick FitzGerald (Oct 12)

NSFOCUS Security Team

NSFOCUS SA2007-02 : Cisco Security Agent Remote Buffer Overflow Vulnerability NSFOCUS Security Team (Dec 06)

Security Officer

AST-2007-027 - Database matching order permits host-based authentication to be ignored Security Officer (Dec 20)

The Asterisk Development Team

AST-2002-022: Buffer overflows in voicemail when using IMAP storage The Asterisk Development Team (Oct 12)
Previous period
Next period