- [ GLSA 200510-05 ] Ruby: Security bypass vulnerability
- [USN-194-1] texinfo vulnerability
- Re: Opinion: Complete failure of Oracle security response and utter
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- Planet Technology Corp FGSW2402RS switch default password /
- xloadimage buffer overflow.
- [SECURITY] [DSA 846-1] New cpio packages fix several vulnerabilities
- [security bulletin] SSRT051043 rev.0 - Apache Remote Unauthorized access
- [security bulletin] SSRT051003 rev.1 - HP-UX Java Web Start remote unauthorized privileged access
- Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB
- Plaintext Password Vulnerabilitiy during Installation of Oracle
- Cross-Site-Scripting Vulnerability in Oracle iSQL*Plus
- Cross-Site-Scripting Vulnerability in Oracle XMLDB
- Shutdown TNS Listener via Oracle Forms Servlet
- Shutdown TNS Listener via Oracle iSQL*Plus
- MDKSA-2005:172 - Updated openssh packages fix GSSAPI credentials vulnerability
- MDKSA-2005:173 - Updated mozilla-firefox packages fix vulnerabilities
- MDKSA-2005:174 - Updated mozilla-thunderbird packages fix multiple vulnerabilities
- MDKSA-2005:175 - Updated texinfo packages fix temporary file vulnerability
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- Re: Re: Opinion: Complete failure of Oracle security response and
- Aenovo Multiple Vulnerabilities
- [ GLSA 200510-07 ] RealPlayer, Helix Player: Format string vulnerability
- Re: [Dailydave] Security contact for ...
- Utopia News Pro 1.1.3 SQL Injection / cross site scripting
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- MailEnable W3C Logging Remote Buffer Overflow Proof of Concept
- [ GLSA 200510-09 ] Weex: Format string vulnerability
- [ GLSA 200510-08 ] xine-lib: Format string vulnerability
- [SECURITY] [DSA 849-1] New shorewall packages fix firewall bypass
- [SECURITY] [DSA 848-1] New masqmail packages fix several vulnerabilities
- [SECURITY] [DSA 847-1] New dia packages fix arbitrary code execution
- Cyphor 0.19 SQL Injection / Board takeover / cross site scripting
- Re: Opinion: Complete failure of Oracle security response and utter neglect of their responsibility
- MDKSA-2005:177 - Updated hylafax packages fix temporary file vulnerability
- MDKSA-2005:176 - Updated webmin package fixes authentication bypass vulnerability
- gnome-pty-helper writes arbitrary utmp records
- Antivirus detection bypass by special crafted archive.
- [USN-198-1] cfengine vulnerabilities
- [USN-197-1] Shorewall vulnerability
- [USN-196-1] Xine library vulnerability
- [USN-199-1] Linux kernel vulnerabilities
- [USN-195-1] Ruby vulnerability
- CodeCon 2006 Call For Papers
- [EEYEB20050803] - Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability
- [EEYEB20050915] - MDT2DD.DLL COM Object Uninitialized Heap Memory Vulnerability
- [EEYEB20050708] Microsoft Distributed Transaction Coordinator Memory Modification Vulnerability
- [EEYEB20050510] - Microsoft DirectShow Remote Code Vulnerability
- iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller TIP DoS Vulnerabil
- iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller Packet Relay DoS V
- The Malloc Maleficarum
- Secunia Research: WinRAR Format String and Buffer Overflow
- [KDE Security Advisory] KOffice/KWord RTF import buffer overflow
- XSS vulnerability in Zeroblog
- FreeBSD Security Advisory FreeBSD-SA-05:21.openssl
- [SECURITY] [DSA 862-1] New Ruby 1.6 packages fix safety bypass
- [SECURITY] [DSA 861-1] New uw-imap packages fix arbitrary code execution
- [SECURITY] [DSA 860-1] New Ruby packages fix safety bypass
- versatileBulletinBoard V1.0.0 RC2 (possibly prior versions)
- iDEFENSE Security Advisory 10.10.05: Kaspersky Anti-Virus Engine CHM File Parser Buffer Overflow Vul
- iDEFENSE Security Advisory 10.10.05: SGI IRIX runpriv Design Error Vulnerability
- [SECURITY] [DSA 859-1] New xli packages fix arbitrary code execution
- [SECURITY] [DSA 858-1] New xloadimage packages fix arbitrary code execution
- [SECURITYREASON.COM] phpMyAdmin Local file inclusion 2.6.4-pl1
- PullThePlug Contest: Call For Papers
- Re: Opinion: Complete failure of Oracle security response and utter neglect of t
- [SECURITY] [DSA 857-1] New graphviz packages fix insecure temporary file
- [SECURITY] [DSA 856-1] New py2play packages fix arbitrary code execution
- [SECURITY] [DSA 855-1] New weex packages fix arbitrary code execution
- Announcement: The Web Application Firewall Evaluation Criteria v1
- [SECURITY] [DSA 854-1] New tcpdump packages fix denial of service
- [SECURITY] [DSA 853-1] New ethereal packages fix several vulnerabilities
- [SECURITY] [DSA 852-1] New up-imapproxy packages fix arbitrary code execution
- [SECURITY] [DSA 851-1] New openvpn packages fix denial of service
- [SECURITY] [DSA 850-1] New tcpdump packages fix denial of service
- [USN-200-1] Thunderbird vulnerabilities
- using php local file include vulnerabilities for command execution
- MDKSA-2005:180 - Updated xine-lib packages fixes cddb vulnerability
- MDKSA-2005:179 - Updated openssl packages fix vulnerabilities
- MDKSA-2005:178 - Updated squirrelmail packages fixes XSS vulberability
- [ GLSA 200510-10 ] uw-imap: Remote buffer overflow
- [USN-202-1] KOffice vulnerability
- [SECURITY] [DSA 863-1] New xine-lib packages fix arbitrary code execution
- [ GLSA 200510-11 ] OpenSSL: SSL 2.0 protocol rollback
- [SEC-1 Advisory] GFI MailSecurity 8.1 Web Module Buffer Overflow
- [USN-201-1] SqWebmail vulnerabilities
- MDKSA-2005:181 - Updated squid packages fix vulnerabilities
- Linux Orinoco drivers information leakage
- Research for network security news article
- [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability
- VERITAS NetBackup: Java User-Interface, format string vulnerability
- ZDI-05-001: VERITAS NetBackup Remote Code Execution
- Secunia Research: Novell NetMail NMAP Agent "USER" Buffer Overflow
- [SECURITY] [DSA 865-1] New hylafax packages fix insecure temporary files
- [SECURITY] [DSA 864-1] New Ruby 1.8 packages fix safety bypass
- Kerio Personal Firewall and Kerio Server Firewall FWDRV driver Local
- Yapig: XSS / Code Injection Vulnerability
- [USN-203-1] Abiword vulnerabilities
- Secunia Research: AhnLab V3 Antivirus ALZ/UUE/XXE Archive Handling
- [security bulletin] SSRT051041 rev.1 - HP-UX Mozilla Remote Unauthorized Execution of Privileged Co
- [security bulletin] SSRT5975 HP-UX Running on Itanium Platforms Local Denial of Service (DoS)
- iDEFENSE Security Advisory 10.13.05: Multiple Vendor XMail 'sendmail' Recipient Buffer Overflow Vuln
- iDEFENSE Security Advisory 10.13.05: Multiple Vendor wget/curl NTLM Username Buffer Overflow Vulnera
- RTasarim WebAdmin modul SQL injection
- Google Talk cleartext proxy credentials vulnerability
- [USN-205-1] Curl and wget vulnerabilities
- MDKSA-2005:182 - Updated curl packages fix NTLM authentication vulnerability
- Airscanner Mobile Security Advisory #05101001: iTunes Shared Music
- Gallery 2.x Remote File Access Vulnerability
- MDKSA-2005:183 - Updated wget packages fix NTLM authentication vulnerability
- CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability
- Trusted Digital, Trusted Mobility Suite Authorization Bypass
- [ GLSA 200510-12 ] KOffice, KWord: RTF import buffer overflow
- [USN-204-1] SSL library vulnerability
- MDKSA-2005:184 - Updated cfengine packages fix temporary file vulnerabilities
- [KAPDA::#6] Punbb SQL Injection Vulnerability
- Security Contacr for Mycall
- MDKSA-2005:185 - Updated koffice packages fix KWord RTF import overflow vulnerability
- [ GLSA 200510-13 ] SPE: Insecure file permissions
- [ GLSA 200510-14 ] Perl, Qt-UnixODBC, CMake: RUNPATH issues
- [USN-206-1] Lynx vulnerability
- [USN-208-1] SSH server vulnerability
- [USN-207-1] PHP vulnerability
- [USN-208-1] graphviz vulnerability
- Exploiting Windows Device Drivers Whitepaper
- Ciscos VPN-Client-Passwords can be decrypted
- Yahoo RSS XSS Vulnerability (Correction)
- SUSE Security Announcement: OpenWBEM (SUSE-SA:2005:060)
- ie7 will have more mechanisms
- flexbackup default config insecure temporary file creation
- [OpenPKG-SA-2005.022] OpenPKG Security Advisory (openssl)
- Lynx Remote Buffer Overflow
- Yahoo RSS XSS Vulnerability
- PHP local safedir restriction bypass
- [ GLSA 200510-15 ] Lynx: Buffer overflow in NNTP processing
- [ GLSA 200510-16 ] phpMyAdmin: Local file inclusion vulnerability
- Re: Aenovo Multiple Vulnerabilities (Patch)
- winrar 3.50 Exploit
- [USN-210-1] netpbm vulnerability
- Re: [Full-disclosure] [USN-208-1] SSH server vulnerability
- Re: [Full-disclosure] Kerio Personal Firewall and Kerio Server
- SECURECon 2006 Call for papers!
- MDKSA-2005:186 - Updated lynx packages fix remote buffer overflow
- Re: [Full-disclosure] Ciscos VPN-Client-Passwords can be decrypted
- Secunia Research: MySource Cross-Site Scripting and File Inclusion
- NetFlow Analyzer 4 XSS Vulnerability
- e107 remote commands execution
- Linksys WRT54G/S Directory Traversal
- Windows host based firewall tester
- Multiple Critical and High Vulnerabilities in Oracle Database Server
- Revision: Multiple Critical and High Vulnerabilities in Oracle Database Server
- Metasploit Framework v2.5
- SUSE Security Announcement: openSSL protocol downgrade attack
- SecurityAlert SA025 : PHPNuke Remote Directory Traversal
- cacam_logsecurity_win32 exploit published on 20051018 by Metasploit
- Cisco Security Advisory:Cisco 11500 Content Services Switch SSL Malformed Client Certificate Vulnera
- [security bulletin] SSRT051052 rev.0 - HP OpenView Operations and OpenView VantagePoint Java Runtime
- [SECURITY] [DSA 868-1] New Mozilla Thunderbird packages fix several vulnerabilities
- XSS & Path Disclosure in Chipmunk's products
- Oracle 10g - emagent.exe Stack-Based Overflow
- [SECURITY] [DSA 866-1] New Mozilla packages fix several vulnerabilities
- Oracle Workflow CSS Vulnerability wf_monitor
- [SECURITY] [DSA 867-1] New module-assistant package fixes insecure temporary file
- Oracle Workflow CSS Vulnerability wf_route
- Vulnerabilities in Oracle E-Business Suite 11i - Critical Patch Update October 2005
- [ GLSA 200510-17 ] AbiWord: New RTF import buffer overflows
- [ GLSA 200510-18 ] Netpbm: Buffer overflow in pnmtopng
- [USN-211-1] Enigmail vulnerability
- Internet Filter
- iDEFENSE Security Advisory 10.20.05: Multiple Vendor Ethereal srvloc Buffer Overflow Vulnerability
- iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus LiveUpdate Local Privilege Escalation
- iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus DiskMountNotify Local Privilege Escal
- [Argeniss] Story of a dumb patch (Paper advisoryabout CSRSS and Windows Explorer vulnerabilities)
- UnixWare 7.1.4 UnixWare 7.1.3 : ppp buffer overflow
- OpenServer 5.0.7 : authsh and backupsh buffer overflow
- [SECURITY] [DSA 869-1] New eric packages fix arbitrary code execution
- MDKSA-2005:187 - Updated dia packages fix python SVG import vulnerability.
- MDKSA-2005:188 - Updated graphviz packages fix temporary file vulnerability.
- F.E.A.R. 1.01 likes lithsock
- MDKSA-2005:189 - Updated imap packages fix buffer overflow vulnerabilities.
- Nuked klan 1.7: XSS vulnerability
- MDKSA-2005:190 - Updated nss_ldap/pam_ldap packages fix privilege vulnerabilities.
- MDKSA-2005:191 - Updated ruby packages fix safe level and taint flag protections vulnerability
- MDKSA-2005:192 - Updated xli packages fix buffer overflow vulnerabilities.
- [SNS Advisory No.84] Oracle Application Server HTTP Response Splitting Vulnerability
- Secunia Research: ZipGenius Multiple Archive Handling Buffer
- SEC-CONSULT-SA-20051021-0: Yahoo/MSIE XSS
- [security bulletin] SSRT051052 rev.1 - HP OpenView Operations and OpenView VantagePoint Java Runtime
- Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability PoC
- DBoardGear SQL Injection
- SUSE Security Announcement: permissions (SUSE-SA:2005:062)
- DCP - portal XSS & SQL attacks
- PhpNuke 7.8 with all security fixes/patches "Your_Account",
- phpBB 2.0.17 (and other BB systems as well) Cookie disclosure
- Advisory 16/2005: phpMyAdmin Local File Inclusion Vulnerability
- Remote File Inclusion in forum PunBB
- TSLSA-2005-0059 - multi
- Nuked klan 1.7: Bypassed level admin on forum(corrected)
- Insecure Temporary Files in BMC/Control-M Agent
- [security bulletin] SSRT051055 rev.0 - HP Oracle for OpenView (OfO) Critical Patch Update October 20
- Revised draft on ICMP attacks
- Possible Bug in PHP-Fusion 6.0.204
- aRCHILLES Newsworld < 1.5.0-rc1 Multiple Vulnerabilities
- [KAPDA::#8] Domain Manager Pro Vulnerability
- SQL saphp Lesson
- File Including In FLAT NUKE
- Zomplog Script Injection Vulnerability =>3.4 (all versions
- Nuked klan 1.7: Remote Exploit
- php < 4.4.1 htaccess apache dos
- Nuked klan 1.7: SQL vulnerability
- Flat Nuke Cross Site Scripting
- iDEFENSE Security Advisory 10.24.05: SCO Openserver backupsh 'Home' Buffer Overflow Vulnerability
- PHP iCalendar CSS
- Skype security advisory
- DboardGear - uncorrect import themes (SQL-inject)
- [SECURITY] [DSA 871-1] New libgda2 packages fix arbitrary code execution
- Multiple Vendor Anti-Virus Software Detection Evasion Vulnerability through
- [ GLSA 200510-19 ] cURL: NTLM username stack overflow
- [ GLSA 200510-20 ] Zope: File inclusion through RestructuredText
- [SNS Advisory No.85] XOOPS Multiple Cross-site Scripting Vulnerabilities
- [ GLSA 200510-21 ] phpMyAdmin: Local file inclusion and XSS vulnerabilities
- iDEFENSE Security Advisory 10.24.05: SCO Unixware Setuid ppp prompt Buffer Overflow Vulnerability
- [SECURITY] [DSA 870-1] New sudo packages fix arbitrary command execution
- Mozilla Thunderbird SMTP down-negotiation weakness
- Network Appliance iSCSI Authentication Bypass
- [SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution
- SEC-Consult SA 20051025-0 :: Snoopy Remote Code Execution Vulnerability
- iDEFENSE Security Advisory 10.24.05: SCO Openserver authsh 'Home' Buffer Overflow Vulnerability
- SEC-Consult SA 20051025-1 :: RSA ACE Web Agent XSS
- SparkleBlog Journal.php HTML Injection Vulnerability =>v2.1 (all
- [SECURITY] [DSA 548-2] New imlib packages fix arbitrary code execution
- MDKSA-2005:193 - Updated ethereal packages fix multiple vulnerabilities
- Looking for a security contact at Macrovision/InstallShield
- Woltlab Burning Board info_db.php multiple SQL injection
- Secunia Research: Mantis "t_core_path" File Inclusion Vulnerability
- SQL-Injection in MyBulletinBoard allows attacker to become a board admin.
- Looking for security contacts at Sony and Lenovo (FKA IBM)
- phpBB 2.0.17 (and other BB systems as well) Cookie disclosure exploit.
- [KAPDA::#9] Techno Dreams Scripts Vulnerabilities
- Re: [Full-disclosure] Multiple Vendor Anti-Virus Software DetectionEvasion Vulnerability through for
- [SECURITY] [DSA 873-1] New net-snmp packages fix denial of service
- Update for the magic byte bug
- MDKSA-2005:193-1 - Updated ethereal packages fix multiple vulnerabilities
- MDKSA-2005:198 - Updated uim packages fix suid linking vulnerabilities.
- MDKSA-2005:195 - Updated squid packages fix vulnerabilities
- MDKSA-2005:197 - Updated unzip packages fix suid, permissions vulnerabilities.
- MDKSA-2005:186-1 - Updated lynx packages fix remote buffer overflow