- [ GLSA 200701-18 ] xine-ui: Format string vulnerabilities
- [ MDKSA-2006:217-2 ] - Updated proftpd packages fix vulnerabilities
- [ GLSA 200701-19 ] OpenLDAP: Insecure usage of /tmp during installation
- subscribe (pwd.txt) Remote Password Disclosur
- rPSA-2007-0013-1 poppler tetex tetex-afm tetex-dvips tetex-fonts
- [USN-411-1] libsoup vulnerability
- PR06-14: IP Phones based on Centrality Communications/Aredfox PA168
- Advanced Guestbook <=- 2.4.2 (include_path) Remote File Include Vulnerability
- SUSE Security Announcement: xine (SUSE-SA:2007:013)
- [ MDKSA-2007:026 ] - Updated squid packages fix vulnerabilities
- [ GLSA 200701-20 ] Centericq: Remote buffer overflow in LiveJournal handling
- [USN-412-1] GeoIP vulnerability
- [USN-413-1] BlueZ vulnerability
- Re: Safari Improperly Parses HTML Documents & BlogSpot XSS vulnerability
- [Aria-Security Team] MyBB Cross-Site Scripting
- Toxiclab Shoutbox Password Disclosure Vulnerability
- Secunia Research: NCTsoft Products NCTAudioFile2 ActiveX Control
- Secunia Research: Sienzo Digital Music Mentor NCTAudioFile2
- [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities
- Re: AToZed Software Intraweb Component for Borland Delphi and
- attn: antonetta - very natural news server access - cow mic - (1/1)
- ZixForum <= 1.14 (Zixforum.mdb) Remote Password Disclosure Vulnerability
- Maxtricity Tagger Password Disclosure Vulnerability
- Re: Advanced Guestbook <=- 2.4.2 (include_path) Remote File Include
- Re: FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability
- Re: Secunia Research: NCTsoft Products NCTAudioFile2 ActiveX
- Cisco Security Advisory: Crafted TCP Packet Can Cause Denial of Service
- Cisco Security Advisory: IPv6 Routing Header Vulnerability
- Cisco Security Advisory: Crafted IP Option Vulnerability
- [OPENADS-SA-2007-001] phpAdsNew and phpPgAds 2.0.9-pr1 vulnerability
- Re: phpAdsNew 2.0.7 Remote File Include
- [ GLSA 200701-21 ] MIT Kerberos 5: Arbitrary Remote Code Execution
- DoS against Telligent Community Server
- [security bulletin] HPSBUX02186 SSRT071299 rev.1 - HP-UX running Apache Remote Execution of Arbitrary Code, Denial of Service (DoS), Unauthorized Access
- ZDI-07-006: Citrix Metaframe Presentation Server Print Provider Buffer
- Multiple Remote Vulnerabilities in Wordpress
- Oracle Buffer Overflow in DBMS_REPCAT_UNTRUSTED.UNREGISTER_SNAPSHOT
- Oracle Buffer Overflow in DBMS_LOGMNR.ADD_LOGFILE
- Oracle Buffer Overflow in DBMS_LOGREP_UTIL.GET_OBJECT_NAME
- Oracle Multiple Buffer Overflows and DoS attacks in public procedures
- [CAID 34818]: CA Personal Firewall Multiple Privilege Escalation Vulnerabilities
- Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL
- Oracle Buffer Overflow in DBMS_DRS.GET_PROPERTY
- [USN-414-1] Squid vulnerabilities
- Remove all admin->root authorization prompts from OSX
- Re: AToZed Software Intraweb Component for Borland Delphi and
- rPSA-2007-0019-1 gtk
- ASP NEWS <= V3 (news_detail.asp) Remote SQL Injection Vulnerability
- Xero Portal v1.2 (phpbb_root_path) Remote File Include Vulnerablity
- uniForum <= v4 (wbsearch.aspx) Remote SQL Injection Vulnerability
- ASP EDGE <= V1.2b (user.asp) Remote SQL Injection Vulnerability
- EzDatabase Multiple Cross-Site Scripting Vulnerability
- Re: phpCOIN <= RC-1 (modules/mail/index.php) Remote File Include Vulnerability
- makit news/blog poster <=v3(news_page.asp) Remote SQL Injection
- BIND remote exploit (low severity) [Fwd: Internet Systems Consortium
- Aztek Forum 4.1 Multiple Vulnerabilities Exploit
- phpCOIN <= RC-1 (modules/mail/index.php) Remote File Include Vulnerability
- [x0n3-h4ck] Siteman 1.1.11 Remote Md5 Hash Disclosure Vulnerability
- [x0n3-h4ck] Siteman 2.0.x2 Remote Md5 Hash Disclosure Vulnerability
- GPS 1.2 Content Managing System (print.asp) Remote SQL Injection
- MI5 Persecution: Toronto Freenet supports free speech (671)
- MI5 Persecution: Intelligence agency sources on the Web (1576)
- MI5 Persecution: Newsgroup members join in the discussion (2481)
- Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL
- MI5 Persecution: BBC's Hidden Shame 4/5/95 (671)
- MI5 Persecution: A doubting Thomas is heard 9/5/95 (1576)
- [ GLSA 200701-22 ] Squid: Multiple Denial of Service vulnerabilities
- MI5 Persecution: Recognition by Strangers is Normal 12/5/95 (2481)
- Buffer overflow in VSAPI library of Trend Micro VirusWall 3.81 for Linux
- [NETRAGARD-20061218 SECURITY ADVISORY] [@Mail WebMail Cross Site
- MI5 Persecution: Truth or Troll? 13/5/95 (3386)
- The certification password of Internet Explorer 7 and operation
- MI5 Persecution: Let it go 1/8/95 (4291)
- high5 Review script Security Risk
- RE: Remove all admin->root authorization prompts from OSX
- MI5 Persecution: But why? 2/8/95 (5196)
- MI5 Persecution: Surveillance methods 5/8/95 (6101)
- Re: Aztek Forum 4.1 Multiple Vulnerabilities Exploit
- Re: Remove all admin->root authorization prompts from OSX
- BORGChat Exploit
- Vulnerability disclosure comments
- Omniture SiteCatalyst Multiple Cross-Site Scripting Vulnerabilities
- Re: Oracle Buffer Overflow in DBMS_LOGREP_UTIL.GET_OBJECT_NAME
- Re: [Full-disclosure] 0trace - traceroute on established
- Re: AToZed Software Intraweb Component for Borland Delphi and Kylix DoS vulnerability
- Re: ZixForum <= 1.14 (Zixforum.mdb) Remote Password Disclosure
- RubyGems 0.9.0 and earlier installation exploit
- Medium Risk Vulnerability in PGP Desktop
- Re: [Full-disclosure] rPSA-2007-0011-1 wget
- [USN-410-2] teTeX vulnerability
- [ GLSA 200701-24 ] VLC media player: Format string vulnerability
- [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability
- Movable Type <= 3.33 XSS Exploit
- Re: Re: Re: Re: SMF "index.php?action=pm" Cross Site-Scripting
- [ MDKSA-2007:027 ] - Updated xine-ui packages fix vulnerabilities
- Re: SMF "index.php?action=pm" Cross Site-Scripting
- [ GLSA 200701-23 ] Cacti: Command execution and SQL injection
- Cross-site Scripting with Local Privilege Vulnerability in Yahoo
- PHP Membership Manager Cross-Site Scripting Vulnerability
- FdScript <= v1.3.2 Remote File Disclosure Vulnerability
- S21sec-034-en: Cisco VTP DoS vulnerability
- iDefense Security Advisory 01.26.07: Multiple Vendor libchm Page
- Re: Remove all admin->root authorization prompts from OSX
- Re: Remove all admin->root authorization prompts from OSX
- Re: Remove all admin->root authorization prompts from OSX
- rPSA-2007-0021-1 bind bind-utils
- rPSA-2007-0020-1 rmake
- Dexia website security alert
- WS_FTP 2007 Professional SCP handling format string vulnerability
- Re: [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability
- [ MDKSA-2007:029 ] - Updated libsoup packages fix DoS vulnerability
- stompy the session stomper - tool availability
- Full Disclosure: Arbitrary Code Execution in LedgerSMB CVE-2006-5872
- [USN-398-4] Firefox regression
- Re: Cross-site Scripting with Local Privilege Vulnerability in
- Open Conference Systems = 2.8.2 Remote File Inclusion
- [ MDKSA-2007:028 ] - Updated ulogd packaged to address buffer overflow vulnerability
- AdMentor (banners) admin SQL injection
- local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- RE: Cross-site Scripting with Local Privilege Vulnerability in Yahoo Messenger
- [SECURITY] [DSA 1252-1] New vlc packages fix arbitrary code execution
- [SECURITY] [DSA 1253-1] New Mozilla Firefox packages fix several vulnerabilities
- Re: Open Conference Systems = 2.8.2 Remote File Inclusion
- [OpenPKG-SA-2007.007] OpenPKG Security Advisory (bind)
- [SECURITY] [DSA 1254-1] New bind9 packages fix denial of service
- MDPro 1.0.76 - Multiple Remote Vulnerabilities
- Internet Explorer 7 ActiveX bgColor property NULL pointer dereference
- [OpenPKG-SA-2007.008] OpenPKG Security Advisory (cvstrac)
- Xt-Stats v.2.4.0.b3 - Remote File Include Vulnerabilities
- Re: Dexia website security alert
- Fake: Open Conference Systems = 2.8.2 Remote File Inclusion
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- CVSTrac 2.0.0 Denial of Service (DoS) vulnerability
- Defeating CAPTCHAs via Averaging
- Phorum HTML Injection Vulnerability
- Re: stompy the session stomper - tool availability
- gnopaste <= 0.5.3 (index.php) Remote File Include Vulnerability
- AdMentor (banners) admin SQL injection
- Re: Fake: Open Conference Systems = 2.8.2 Remote File Inclusion
- Re: Phorum HTML Injection Vulnerability
- Re: Windows logoff bug possible security vulnerability and exploit.
- Re: Fake: Open Conference Systems = 2.8.2 Remote File Inclusion
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- Arbitrary Code Execution in SQL-Ledger and LedgerSMB through redirects
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- [ GLSA 200701-25 ] X.Org X server: Multiple vulnerabilities
- Re: Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- Re: stompy the session stomper - tool availability
- Re: Cross-site Scripting with Local Privilege Vulnerability in Yahoo Messenger
- Re: Open Conference Systems = 2.8.2 Remote File Inclusion
- VII National Computer and Information Security Conference ACIS 2007 - COLOMBIA
- RBL - ASP (scripts with db) SQL injection
- Oracle - Indirect Privilege Escalation and Defeating Virtual Private Databases
- [DRUPAL-SA-2007-005] Drupal 4.7.6 / 5.1 fixes arbitrary code execution issue
- COSEINC Alert: Microsoft Agent Heap Overflow Vulnerability Technical Details (Patched)
- rPSA-2007-0020-2 rmake
- Re: [Full-disclosure] S21sec-034-en: Cisco VTP DoS vulnerability
- RBL - ASP (scripts with db) SQL injection
- Re: gnopaste <= 0.5.3 (index.php) Remote File Include Vulnerability
- PhP Generic library & framework (include_path) Remote File
- Re: Fake: Open Conference Systems = 2.8.2 Remote File Inclusion
- EncapsCMS 0.3.6 (common_foot.php) Remote File Include
- Atsphp 5.0.1 [Top Sites] [index.php] - Remote File Include
- Re: Defeating CAPTCHAs via Averaging
- [ MDKSA-2007:030 ] - Updated bind packages fix DoS vulnerabilities
- Re: BOGUS: Atsphp 5.0.1 [Top Sites] [index.php] - Remote File Include
- Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup
- Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops & Desktops
- OWASP JBroFuzz 0.4 Fuzzer Released!
- Remote DOS BrightStor ARCserve Backup for Laptops & Desktops
- Remote Unauthenticated Resource Exhaustion CA Mobile BackupService
- Oracle 10g R2 Enterprise Manager Directory Traversal
- 2007 Security OPUS CFP: Closed (Agenda included)
- Cisco Security Advisory: SIP Packet Reloads IOS Devices Not Configured for SIP
- [ECHO_ADV_63$2007] Cadre remote file inclusion
- Re: Atsphp 5.0.1 [Top Sites] [index.php] - Remote File Include
- Re: Defeating CAPTCHAs via Averaging
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- [SECURITY] [DSA 1255-1] New libgtop2 packages fix arbitrary code execution
- Windows Vista and unexported kernel symbols (Part II, 32bits version)
- [ GLSA 200701-27 ] ELinks: Arbitrary Samba command execution
- [ GLSA 200701-28 ] thttpd: Unauthenticated remote file access
- BBED - Oracle Block Browser and Editor
- [ GLSA 200701-26 ] KSirc: Denial of Service vulnerability
- [SECURITY] [DSA 1256-1] New gtk+2.0 packages fix denial of service
- Re: stompy the session stomper - tool availability
- Technika - Attack Scripting Environment
- Re: Defeating CAPTCHAs via Averaging
- Comodo Multiple insufficient argument validation of hooked SSDT function
- [USN-415-1] GTK vulnerability
- strange behavior on Cisco 2801
- php web portail [remote file include & local file include]
- Omegaboard v1.0b4 (phpbb_root_path) Remote File Include Exploit
- Cerulean Portal System (phpbb_root_path) Remote File Include Exploit
- Phishing Evolution Report Released
- Re: strange behavior on Cisco 2801
- Re: SMF "index.php?action=pm" Cross Site-Scripting
- Sourceforge compromized?
- Chicken of the VNC 2.0 remote DoS
- Re: Sourceforge compromized?
- Re: Sourceforge compromized?
- Re: Sourceforge compromized?
- Re: strange behavior on Cisco 2801
- Re: Sourceforge compromized?
- Re: Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities
- Re[2]: Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities
- for celle: really super mp3 music - ilgi - (1/1)
- [ MDKSA-2007:031 ] - Updated kdelibs packages fix KHTML vulnerability
- Re: Re: Ipswitch WS_FTP Server 5.04 multiple arbitrary code
- [ MDKSA-2007:032 ] - Updated mpg123 packages fix DoS vulnerability.
- Security Advisory for Bugzilla 2.20.3, 2.22.1, and 2.23.3
- [ MDKSA-2007:033 ] - Updated wireshark packages fix multiple vulnerabilities
- Ublog Reload Admin Panel Multiple HTML Injections
- Re: Web 2.0 backdoors made easy with MSIE & XMLHttpRequest
- Vmare workstation guest isolation weaknesses (clipboard transfer)
- MysearchEngine XSS
- Adrenalin's ASP Chat XSS
- Sql injection bugs in Xoops 2.0.16 + Weblinks module
- dvddb-0.6 media sql-inj. vuln.
- Jetty Session ID Prediction
- TSLSA-2007-0005 - multi
- Re: [Full-disclosure] Firefox + popup blocker + XMLHttpRequest + srand() = oops
- [SAMBA-SECURITY] CVE-2007-0452: Potential DoS against smbd in Samba
- [SAMBA-SECURITY] CVE-2007-0453: Buffer overrun in nss_winbind.so.1
- dvddb-0.6 media remote file include vuln.
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
- Re: Jetty Session ID Prediction
- Re: [Full-disclosure] Firefox + popup blocker + XMLHttpRequest +
- Cold Fusion Web Server XSS 0 day
- [SAMBA-SECURITY] CVE-2007-0454: Format string bug in afsacl.so VFS
- Re: Web 2.0 backdoors made easy with MSIE & XMLHttpRequest
- Sql injection bugs in PHP-Nuke
- [SECURITY] [DSA 1257-1] New samba packages fix several vulnerabilities
- Les News v2.2 [Admin news without password]
- Re: dvddb-0.6 media sql-inj. vuln.
- rPSA-2007-0023-1 tshark wireshark
- Mina Ajans Script Remote File Inclusion Vuln.
- [ MDKSA-2007:034 ] - Updated samba packages address multiple vulnerabilities
- Uphotogallery Multiple Cross-Site Scripting Vulnerability
- [USN-417-1] PostgreSQL vulnerabilities
- iDefense Security Advisory 02.02.07: Blue Coat Systems WinProxy CONNECT
- Firefox + popup blocker + XMLHttpRequest + srand() = oops
- Sql injection bugs in Virtuemart and Letterman
- Re: Jetty Session ID Prediction
- Sql injection bugs in Joomla and Mambo
- Re: Jetty Session ID Prediction
- Firefox 2.0.0.1 and Opera 9.10 Anty Fraud/Phishing Protection bypass.
- Unofficial SQL-Ledger patch for CVE-2007-0667
- Re: [Full-disclosure] PS Information Leak on HP Tru64 Alpha OSF1