Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
460 messages
starting Feb 16 08 and
ending Feb 11 08
Date index |
Thread index |
Author index
3APA3A
Re[2]: Apache web server 2.2: htpasswd predictable salt weakness 3APA3A (Feb 16)
Re: Apache web server 2.2: htpasswd predictable salt weakness 3APA3A (Feb 15)
Adam Laurie
Announce: RFIDIOt credit card sub-module: ChAP.py Adam Laurie (Feb 21)
admin
aeries browser interface(ABI) 3.8.2.8 XSS admin (Feb 21)
aeries browser interface(ABI) 3.8.2.8 Remote SQL Injection admin (Feb 21)
aeries browser interface(ABI) 3.7.2.2 Remote SQL Injection admin (Feb 21)
alex_zooz_zooz
Joomla <= v1.0.14-RC1(Index.php) Remote File Inclusion Exploit alex_zooz_zooz (Feb 08)
amarkov
Re: Nortel IP Phone DoS amarkov (Feb 26)
Amit Klein
A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability" Amit Klein (Feb 06)
RE: A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability" Amit Klein (Feb 06)
Anurag Agarwal
Certification for Web Application Security Professionals Anurag Agarwal (Feb 22)
beenudel1986
phpechocms v 2.0 rc3 RFI beenudel1986 (Feb 23)
brad . antoniewicz
Beehive/SendFile.NET - Secure File Transfer Appliance Hardcoded Credentials brad . antoniewicz (Feb 29)
Brendan Dolan-Gavitt
Tool release: extract Windows credentials from registry hives Brendan Dolan-Gavitt (Feb 22)
Brook Powers
SECURITY ADVISORY - Level Platforms, Inc. Service Center Install Data HTTP Vulnerability Brook Powers (Feb 08)
Bug traq
RE: ASUS Eee PC rooted out of the box Bug traq (Feb 08)
cfp
RUXCON 2008 CALL FOR PAPERS cfp (Feb 18)
Chris Evans
Sun JRE / JDK bug introduces XXE possibilities Chris Evans (Feb 02)
Ghostscript buffer overflow Chris Evans (Feb 29)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: SQL injection in Cisco Unified Communications Manager Cisco Systems Product Security Incident Response Team (Feb 13)
Cisco Security Advisory: Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities Cisco Systems Product Security Incident Response Team (Feb 13)
ciucciamilcalzino
Youtube Clone Xross Site Scripting (load_message.php) ciucciamilcalzino (Feb 02)
cmiyazaki
Re: SECURITY ADVISORY - Level Platforms, Inc. Service Center Install Data HTTP Vulnerability cmiyazaki (Feb 15)
cocoruder
Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability cocoruder (Feb 08)
CORE Security Technologies Advisories
CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability CORE Security Technologies Advisories (Feb 04)
CORE-2008-0122: MPlayer arbitrary pointer dereference CORE Security Technologies Advisories (Feb 04)
CORE-2008-0130: VLC media player chunk context validation error Core Security Technologies Advisories (Feb 27)
CORE-2007-0930 Path Traversal vulnerability in VMware's shared folders implementation Core Security Technologies Advisories (Feb 25)
crazy_kinq
Joovili <= v.2.1 (members_help.php) Remote File İnclude Vulnerability crazy_kinq (Feb 08)
Blackboard (id) Remote SQL Injection crazy_kinq (Feb 08)
Husrev Forums v2.0.1:PoWerBoard (tr) (id) Remote SQL Injection crazy_kinq (Feb 08)
Netkom Internet Solutions (folder_id) Remote SQL Injection Vulnerability crazy_kinq (Feb 13)
cybermilitan
Domain Trader v2.0 Xss Vulnerable cybermilitan (Feb 02)
ITech Classifieds Multiple Remote Vulnerabilities cybermilitan (Feb 02)
CYBSEC Advisories
CYBSEC Security Advisory: Arbitrary file overwrite in Documentum Administrator / Documentum Webtop CYBSEC Advisories (Feb 05)
Daniel Roethlisberger
Urulu 2.1 Blind SQL Injection Vulnerability (CVE-2008-0385) Daniel Roethlisberger (Feb 28)
dann frazier
[SECURITY] [DSA 1503-1] New Linux kernel 2.4.27 packages fix several issues dann frazier (Feb 22)
[SECURITY] [DSA 1505-1] New alsa-driver packages fix kernel memory leak dann frazier (Feb 22)
[SECURITY] [DSA 1504-1] New Linux kernel 2.6.8 packages fix several issues dann frazier (Feb 22)
[SECURITY] [DSA 1494-2] New linux-2.6 packages fix privilege escalation dann frazier (Feb 13)
Danux
Bypassing OfficeScan Trend Micro AV Danux (Feb 26)
david130490
Re: Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging) david130490 (Feb 08)
Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging) david130490 (Feb 08)
david . reguera
ELFdump crash when analyzing crafted ELF file. david . reguera (Feb 14)
db
my little forum XSS db (Feb 12)
netOffice Dwins 1.3 Remote code execution. db (Feb 29)
dcid
Re: Re: SQL-injection, XSS in OSSIM (Open Source Security Information Management) dcid (Feb 25)
dean
Re: etomite xss dean (Feb 18)
Digital Security Research Group
[DSECRG-08-011] Astrosoft HelpDesk Multiple XSS Digital Security Research Group (Feb 04)
[DSECRG-08-008] Textpattern 4.0.5 Multiple Security Vulnerabilities Digital Security Research Group (Feb 04)
[DSECRG-08-010] VHD Web Pack 2.0 Local File Include Digital Security Research Group (Feb 04)
[DSECRG-08-016] Jinzora 2.7.5 Multiple XSS Digital Security Research Group (Feb 19)
[DSECRG-08-015] Multiple Security Vulnerabilities in Dokeos 1.8.4 Digital Security Research Group (Feb 19)
[DSECRG-08-009] xoops 2.0.18 Local File Include Digital Security Research Group (Feb 04)
Digital Security Research Group [DSecRG]
[DSECRG-08-012] Multiple LFI in Azucar CMS 1.3 Digital Security Research Group [DSecRG] (Feb 05)
[DSECRG-08-014] Multiple LFI in PowerNews (Newsscript) 2.5.6 Digital Security Research Group [DSecRG] (Feb 08)
[DSECRG-08-013] Modx 0.9.6.1, 0.9.6.1p1 Multiple Security Vulnerabilities Digital Security Research Group [DSecRG] (Feb 07)
[DSECRG-08-011 | FIX INFORMATION] Astrosoft HelpDesk Multiple XSS Digital Security Research Group [DSecRG] (Feb 14)
Dominique Karg
Re: SQL-injection, XSS in OSSIM (Open Source Security Information Management) Dominique Karg (Feb 22)
Dragos Ruiu
CanSecWest 2008 Mar 26-28 Dragos Ruiu (Feb 22)
eagle
DOINGSOFT-2008-02-11-002 IP Diva VPN SSL many XSS attacks eagle (Feb 14)
DOINGSOFT-2008-02-11 - IPDiva VPN SSL Brute force attack eagle (Feb 14)
ekoparty
CFP - ekoparty 4th edition ekoparty (Feb 27)
enterth3dragon
Simple Machines Forum "SMF Shoutbox" Mod Persistent XSS enterth3dragon (Feb 11)
f10
123 Flash Chat Module for phpBB f10 (Feb 28)
Xoops-2.0.16 Remote File Inclusion f10 (Feb 20)
Re: 123 Flash Chat Module for phpBB f10 (Feb 28)
hi f10 (Feb 11)
Florian Weimer
[SECURITY] [DSA 1494-1] New linux-2.6 packages fix privilege escalation Florian Weimer (Feb 11)
[SECURITY] [DSA 1499-1] New pcre3 packages fix arbitrary code execution Florian Weimer (Feb 19)
forensec
gkrellweather forensec (Feb 12)
Foresight Linux Essential Announcement Service
FLEA-2008-0003-1 nss_ldap Foresight Linux Essential Announcement Service (Feb 12)
FLEA-2008-0004-1 rsync Foresight Linux Essential Announcement Service (Feb 12)
FLEA-2008-0006-1 tetex tetex-dvips tetex-fonts Foresight Linux Essential Announcement Service (Feb 12)
FLEA-2008-0005-1 e2fsprogs Foresight Linux Essential Announcement Service (Feb 12)
FLEA-2008-0007-1 gd Foresight Linux Essential Announcement Service (Feb 12)
FLEA-2008-0002-1 python Foresight Linux Essential Announcement Service (Feb 12)
FLEA-2008-0001-1 firefox Foresight Linux Essential Announcement Service (Feb 12)
FreeBSD Security Advisories
FreeBSD Security Advisory FreeBSD-SA-08:03.sendfile FreeBSD Security Advisories (Feb 14)
FreeBSD Security Advisory FreeBSD-SA-08:04.ipsec FreeBSD Security Advisories (Feb 14)
goldshlager19
IBM Quickr 8 Calendar Xss Injection (Bypass Quickr 8.0 Xss Filter) goldshlager19 (Feb 22)
gregory
Re: rPSA-2008-0052-1 kernel gregory (Feb 15)
Gynvael Coldwind
[HISPASEC] FireFox 2.0.0.11 and Opera 9.50 beta Remote Memory Information Leak, FireFox 2.0.0.11 Remote Denial of Service Gynvael Coldwind (Feb 16)
hackturkiye . hackturkiye
joomla SQL Injection(com_referenzen) hackturkiye . hackturkiye (Feb 21)
PHP-Nuke Module BenchmarkNewsInjection(sid) hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_iigcatalog) hackturkiye . hackturkiye (Feb 19)
php-nuke Quran SQL Injection(surano) hackturkiye . hackturkiye (Feb 23)
SellOwnHouse login SQL Injection hackturkiye . hackturkiye (Feb 15)
joomla faq SQL Injection hackturkiye . hackturkiye (Feb 15)
aura cms lihatberita SQL Injection(id) hackturkiye . hackturkiye (Feb 23)
joomla SQL Injection(com_mygallery) hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_idvnews) hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_detail) hackturkiye . hackturkiye (Feb 19)
joomla com_simpleshop SQL Injection(section) # hackturkiye . hackturkiye (Feb 25)
joomla SQL Injection( com_scheduling) hackturkiye . hackturkiye (Feb 16)
joomla SQL Injection(com_foevpartners) hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_filebase) hackturkiye . hackturkiye (Feb 18)
joomla SQL Injection(com_team hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_magazine) hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_most)secid hackturkiye . hackturkiye (Feb 21)
Simple Forum Version 1.10-1.11 SQL Injection hackturkiye . hackturkiye (Feb 15)
joomla SQL Injection(com_cms) hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_genealogy) hackturkiye . hackturkiye (Feb 19)
WordPress album PHOTO SQL Injection hackturkiye . hackturkiye (Feb 18)
php nuke Sections SQL Injection(print) hackturkiye . hackturkiye (Feb 23)
joomla SQL Injection(com_facileforms) hackturkiye . hackturkiye (Feb 19)
joomla "com_smslist" sql injecton hackturkiye . hackturkiye (Feb 15)
php-nuke Kuran SQL Injection(surano) hackturkiye . hackturkiye (Feb 23)
ALL VERSİON PHPAUTOVİDEO c99 shell hackturkiye . hackturkiye (Feb 13)
Wordpress Plugin (wp-content/recipe) SQL Injection hackturkiye . hackturkiye (Feb 18)
joomla SQL Injection(com_salesrep) hackturkiye . hackturkiye (Feb 16)
PHP-Nuke Module Web_Links SQL Injection(cid) hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_emcompose) hackturkiye . hackturkiye (Feb 16)
PHP-Nuke Module Dossiers Injection(did) hackturkiye . hackturkiye (Feb 21)
XOOPS Module wflinks SQL Injection(cid) hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_sg) hackturkiye . hackturkiye (Feb 16)
joomla SQL Injection(com_jooget) hackturkiye . hackturkiye (Feb 18)
joomla SQL Injection(com_geoboerse) hackturkiye . hackturkiye (Feb 19)
joomla com_garyscookbook SQL Injection(id) hackturkiye . hackturkiye (Feb 25)
joomla SQL Injection(com_lexikon) hackturkiye . hackturkiye (Feb 16)
Wordpress Plugin (wp-people) SQL Injection hackturkiye . hackturkiye (Feb 18)
WordPress SQL Injection(wp-content-simple-forum) hackturkiye . hackturkiye (Feb 18)
joomla SQL Injection(com_galeria) hackturkiye . hackturkiye (Feb 18)
XOOPS Module section SQL Injection(articleid) hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_ricette) hackturkiye . hackturkiye (Feb 18)
joomla "com_model" hackturkiye . hackturkiye (Feb 13)
joomla SQL Injection (cat)(com_downloads) hackturkiye . hackturkiye (Feb 18)
joomla SQL Injection(com_formtool) hackturkiye . hackturkiye (Feb 19)
engineering Neoteric UK LTD S@L İNJECTİON hackturkiye . hackturkiye (Feb 15)
joomla com_wines SQL Injection(id) hackturkiye . hackturkiye (Feb 25)
PHP-Nuke Siir SQL Injection(id) hackturkiye . hackturkiye (Feb 21)
joomla com_activities sql injection hackturkiye . hackturkiye (Feb 15)
XOOPS Module wflinks SQL Injection(cid) hackturkiye . hackturkiye (Feb 19)
XOOPS Module events SQL Injection hackturkiye . hackturkiye (Feb 19)
Provided By Development Solutions SQL Injection Exploit(panel) hackturkiye . hackturkiye (Feb 13)
PHP-Nuke Module Classifieds SQL Injection(Details) hackturkiye . hackturkiye (Feb 21)
XOOPS Module classifieds SQL Injection(cid) hackturkiye . hackturkiye (Feb 19)
joomla SQL Injection(com_asortyment)katid hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_filebase) hackturkiye . hackturkiye (Feb 16)
all version Wordpress FORUM S@L injection hackturkiye . hackturkiye (Feb 15)
XOOPS Module prayerlist SQL Injection(cid) hackturkiye . hackturkiye (Feb 21)
PHP-Nuke genaral print SQL Injection(id) hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_detail) hackturkiye . hackturkiye (Feb 18)
joomla com_hello_world SQL Injection(id) hackturkiye . hackturkiye (Feb 23)
joomla SQL Injection(com_asortyment)katid hackturkiye . hackturkiye (Feb 21)
joomla "com_omnirealestate" S@L Injection hackturkiye . hackturkiye (Feb 13)
joomll(k12.tr)(com_mezun)SQL Injection hackturkiye . hackturkiye (Feb 12)
joomla (k12.tr)(com_iomezun)SQL Injection hackturkiye . hackturkiye (Feb 12)
PHP-Nuke Module Downloads SQL Injection(sid) hackturkiye . hackturkiye (Feb 21)
php-nuke Recipes SQL Injection(recipeid) hackturkiye . hackturkiye (Feb 23)
Simple Forum Version 1.7-1.9(pagename) hackturkiye . hackturkiye (Feb 15)
XOOPS Module myTopics-print SQL Injection(articleid) hackturkiye . hackturkiye (Feb 19)
XOOPS Module vacatures SQL Injection hackturkiye . hackturkiye (Feb 19)
Ecommerce Websites from b1st.com SQL Injection hackturkiye . hackturkiye (Feb 15)
XOOPS Module badliege SQL Injection hackturkiye . hackturkiye (Feb 19)
XOOPS Module eEmpregos SQL Injection(cid) hackturkiye . hackturkiye (Feb 19)
php nuke gallery SQL Injection(aid) hackturkiye . hackturkiye (Feb 23)
joomla SQL Injection(com_profile) hackturkiye . hackturkiye (Feb 18)
(tip=sollinkicerik)SQL Injection Vulnerability hackturkiye . hackturkiye (Feb 18)
joomla upload php code or picture (com_uhp) hackturkiye . hackturkiye (Feb 13)
all forums.asp hack hackturkiye . hackturkiye (Feb 13)
joomla SQL Injection(com_listoffreeads) hackturkiye . hackturkiye (Feb 19)
XOOPS Module tinyevent-print SQL Injection(id) hackturkiye . hackturkiye (Feb 21)
joomla SQL Injection(com_joomlavvz) hackturkiye . hackturkiye (Feb 21)
Kommentare zum Download script SQL Injection hackturkiye . hackturkiye (Feb 12)
XOOPS Module seminars SQL Injection hackturkiye . hackturkiye (Feb 19)
joomla com_product SQL Injection(catid) hackturkiye . hackturkiye (Feb 23)
WordPress forumaction (PAGE_id)(user)SQL Injection hackturkiye . hackturkiye (Feb 18)
hadihadi_zedehal_2006
artmedic_weblog Cross Site Scriptting Vulnerbility hadihadi_zedehal_2006 (Feb 15)
Hamza Almersoumi
Softbiz jokes and funny pictures (index.php) sql injection Hamza Almersoumi (Feb 25)
Hendrik Jan Verheij
Joomla 1.0.13 - 1.0.14 / (remote) PHP file inclusion possible if old configuration.php Hendrik Jan Verheij (Feb 14)
Hernan Ochoa
Release: Pass-The-Hash toolkit v1.3 Hernan Ochoa (Feb 29)
hk
Re: PR07-38: XSS on sIFR hk (Feb 05)
houssamix
PKs Movie Database version 3.0.3 (SQL/XSS) houssamix (Feb 09)
iDefense Labs
iDefense Security Advisory 02.04.08: Hewlett-Packard Network Node Manager Topology Manager Service DoS Vulnerability iDefense Labs (Feb 06)
iDefense Security Advisory 02.26.08: Mozilla Thunderbird MIME External-Body Heap Overflow Vulnerability iDefense Labs (Feb 27)
Re: iDefense Security Advisory 02.19.08: EMC RepliStor Multiple Heap Overflow Vulnerabilities iDefense Labs (Feb 21)
iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server SQLIDEBUG File Creation Vulnerability iDefense Labs (Feb 04)
iDefense Security Advisory 02.19.08: EMC RepliStor Multiple Heap Overflow Vulnerabilities iDefense Labs (Feb 20)
iDefense Security Advisory 02.08.08: Adobe Reader Security Provider Unsafe Libary Path Vulnerability iDefense Labs (Feb 09)
iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server onedcu File Creation Vulnerability iDefense Labs (Feb 04)
iDefense Security Advisory 02.12.08: Adobe Flash Media Server 2 Multiple Integer Overflow Vulnerabilities iDefense Labs (Feb 13)
iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat JavaScript Insecure Method Exposure Vulnerability iDefense Labs (Feb 09)
iDefense Security Advisory 02.07.08: IBM DB2 Universal Database db2pd Arbitrary Library Loading Vulnerability iDefense Labs (Feb 07)
iDefense Security Advisory 02.12.08: ClamAV libclamav PE File Integer Overflow Vulnerability iDefense Labs (Feb 12)
iDefense Security Advisory 02.20.08: Symantec Veritas Storage Foundation Scheduler Service DoS Vulnerability iDefense Labs (Feb 21)
iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability iDefense Labs (Feb 13)
iDefense Security Advisory 02.12.08: Microsoft Internet Explorer Property Memory Corruption Vulnerability iDefense Labs (Feb 13)
iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Stack-based Buffer Overflow Vulnerability iDefense Labs (Feb 13)
iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat Multiple Stack-based Buffer Overflow Vulnerabilities iDefense Labs (Feb 09)
iDefense Security Advisory 02.26.08: Symantec Scan Engine 5.1.2 RAR File Buffer Overflow Vulnerability iDefense Labs (Feb 27)
iDefense Security Advisory 02.12.08: Adobe Flash Media Server 2 Memory Corruption Vulnerability iDefense Labs (Feb 13)
iDefense Security Advisory 02.26.08: Symantec Scan Engine 5.1.2 RAR File Denial of Service Vulnerability iDefense Labs (Feb 27)
iDefense Security Advisory 02.07.08: IBM DB2 Universal Database Administration Server Memory Corruption Vulnerability iDefense Labs (Feb 08)
info
LiveCart XSS vulnerability fixed since version 1.1.0 info (Feb 01)
infocus
[INFIGO-2008-02-13]: SOPHOS Email Security Appliance Cross Site Scripting Vulnerability infocus (Feb 15)
IOActive Advisories
IOActive Security Advisory: Multiple Remote SiteScope Vulnerabilities IOActive Advisories (Feb 12)
IOActive Security Advisory: Legacy mod_jk2 Buffer Overflow IOActive Advisories (Feb 12)
ivangaravito
Re: Tested on Webmin 1.390 ivangaravito (Feb 06)
Jacob Appelbaum
Re: Loginwindow.app and Mac OS X Jacob Appelbaum (Feb 29)
Loginwindow.app and Mac OS X Jacob Appelbaum (Feb 28)
Cold Boot Attacks on Disk Encryption Jacob Appelbaum (Feb 22)
jamboomla
Re: Mambo 4.6.3 Path Disclosure, XSS , XSRF, DOS jamboomla (Feb 27)
Jamie Strandboge
[USN-580-1] libcdio vulnerability Jamie Strandboge (Feb 21)
[USN-579-1] Qt vulnerability Jamie Strandboge (Feb 21)
[USN-576-1] Firefox vulnerabilities Jamie Strandboge (Feb 08)
[USN-578-1] Linux kernel vulnerabilities Jamie Strandboge (Feb 14)
[USN-582-1] Thunderbird vulnerabilities Jamie Strandboge (Feb 29)
[USN-575-1] Apache vulnerabilities Jamie Strandboge (Feb 05)
jfvanmeter
Re: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 jfvanmeter (Feb 12)
Re: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 jfvanmeter (Feb 12)
Re: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 jfvanmeter (Feb 12)
Jon R. Kibler
Academic Computer Security Conference Jon R. Kibler (Feb 21)
jplopezy
SmarterMail Enterprise 4.3 - malformed mail XSS jplopezy (Feb 19)
jyvaeskylae
Re: artmedic_weblog Cross Site Scriptting Vulnerbility jyvaeskylae (Feb 15)
Kees Cook
[USN-581-1] PCRE vulnerability Kees Cook (Feb 22)
Krzysztof Burghardt
Search Unleashed 0.2.10 JavaScript injection (Wordpress plugin) Krzysztof Burghardt (Feb 14)
L4teral
ATutor <= 1.5.5 Cross Site Scripting L4teral (Feb 18)
ProjectPier <= 0.80 Cross Site Scripting and Request Forgery L4teral (Feb 18)
Anon Proxy Server <= 0.102 remote buffer overflow L4teral (Feb 04)
laurent . gaffie
QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow laurent . gaffie (Feb 13)
jetAudio <= 7.0.5 (.ASX) Remote Stack Overflow laurent . gaffie (Feb 08)
linke_z
Re: ACER Travelmate 600 and 800 series - Smartcard flawed Implementation linke_z (Feb 15)
lovebug
php-nuke sql injection reportaj [secid] lovebug (Feb 26)
luca . carettoni
Philips VOIP841 Multiple Vulnerabilities luca . carettoni (Feb 14)
Luigi Auriemma
Multiple buffer-overflow in NowSMS v2007.06.27 Luigi Auriemma (Feb 19)
Buffer-overflow in the passwords handling of Trend Micro OfficeScan 8.0 and possibly other products Luigi Auriemma (Feb 27)
Re: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 Luigi Auriemma (Feb 12)
Logs visualization in WS_FTP Server Manager 6.1.0.0 Luigi Auriemma (Feb 06)
Heap overflow in Sybase MobiLink 10.0.1.3629 Luigi Auriemma (Feb 20)
Format string and buffer-overflow in Lst Network Print Server 9.4.2 build 105 Luigi Auriemma (Feb 11)
Multiple vulnerabilities in EztremeZ-IP File and Printer Server 5.1.2x15 Luigi Auriemma (Feb 11)
Format string and DoS in Opium OPI and cyanPrintIP servers 4.10.x Luigi Auriemma (Feb 11)
Unicode buffer-overflow in RPM Remote Print Manager 4.5.1.11 Luigi Auriemma (Feb 12)
NULL byte writing in Emerald, RadiusNT/X and Air Marshal Luigi Auriemma (Feb 08)
Re: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 Luigi Auriemma (Feb 12)
Re: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 Luigi Auriemma (Feb 12)
NULL pointer crash in freeSSHd 1.20 Luigi Auriemma (Feb 19)
Multiple vulnerabilities in WinCom LPD Total 3.0.2.623 Luigi Auriemma (Feb 04)
Format string and buffer-overflow in SurgeMail 38k4 Luigi Auriemma (Feb 25)
Socket termination in FTP Log Server 7.9.14.0 Luigi Auriemma (Feb 04)
Two heap overflow in Foxit WAC Server 2.0 Build 3503 Luigi Auriemma (Feb 19)
NULL pointer in SurgeFTP 2.3a2 Luigi Auriemma (Feb 25)
Multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1 Luigi Auriemma (Feb 07)
Multiple vulnerabilities in Double-Take 5.0.0.2865 Luigi Auriemma (Feb 22)
Chat vulnerabilities in TinTin++ 1.97.9 Luigi Auriemma (Feb 06)
Directory traversal and DoS in WinIPDS G52-33-021 Luigi Auriemma (Feb 12)
Multiple vulnerabilities in SAPlpd 6.28 Luigi Auriemma (Feb 04)
Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0 Luigi Auriemma (Feb 11)
Access violation and limited informations disclosure in webcamXP 3.72.440.0 Luigi Auriemma (Feb 19)
manuel . no_spam . bruneau
Re: Joomla 1.0.13 - 1.0.14 / (remote) PHP file inclusion possible if old configuration.php manuel . no_spam . bruneau (Feb 15)
marcin . kopec
SQL-injection, XSS in OSSIM (Open Source Security Information Management) marcin . kopec (Feb 21)
Mario Sergio Candian
cacti -- Multiple security vulnerabilities have been discovered Mario Sergio Candian (Feb 12)
Mark Thomas
[SECURITY] CVE-2007-6286: Tomcat duplicate request processing vulnerability Mark Thomas (Feb 09)
CVE-2008-0002: Tomcat information disclosure vulnerability Mark Thomas (Feb 08)
[SECURITY] CVE-2007-5333: Tomcat Cookie handling vulnerabilities Mark Thomas (Feb 09)
Matteo Beccati
[OPENADS-SA-2008-001] Openads 2.4.2 vulnerability fixed Matteo Beccati (Feb 04)
Matthieu Suiche
SandMan 1.0.080226 is out! Matthieu Suiche (Feb 26)
Matt Johnston
Re: Loginwindow.app and Mac OS X Matt Johnston (Feb 29)
mattyg
Re: Philips VOIP841 Multiple Vulnerabilities mattyg (Feb 15)
Michael Neal Vasquez
Checkpoint SecuRemote/Secure Client NGX Auto Local Logon Vulnerability Michael Neal Vasquez (Feb 07)
morin . josh
Apple iPhone 1.1.3 remote DoS exploit morin . josh (Feb 05)
Moritz Muehlenhoff
[SECURITY] [DSA 1493-1] New sdl-image1.2 packages fix arbitrary code execution Moritz Muehlenhoff (Feb 11)
[SECURITY] [DSA 1506-1] New iceape packages fix several vulnerabilities Moritz Muehlenhoff (Feb 25)
[SECURITY] [DSA 1487-1] New libexif packages fix several vulnerabilities Moritz Muehlenhoff (Feb 08)
[SECURITY] [DSA 1485-1] New icedove packages fix several vulnerabilities Moritz Muehlenhoff (Feb 11)
[SECURITY] [DSA 1495-1] New nagios-plugins packages fix several vulnerabilities Moritz Muehlenhoff (Feb 12)
[SECURITY] [DSA 1491-1] New tk8.4 packages fix arbitrary code execution Moritz Muehlenhoff (Feb 11)
[SECURITY] [DSA 1482-1] New squid packages fix denial of service Moritz Muehlenhoff (Feb 06)
[SECURITY] [DSA 1496-1] New mplayer packages fix arbitrary code execution Moritz Muehlenhoff (Feb 13)
[SECURITY] [DSA 1490-1] New tk8.3 packages fix arbitrary code execution Moritz Muehlenhoff (Feb 11)
[SECURITY] [DSA 1495-2] New nagios-plugins packages fix regression Moritz Muehlenhoff (Feb 18)
[SECURITY] [DSA 1492-1] New wml packages fix denial of service Moritz Muehlenhoff (Feb 11)
[SECURITY] [DSA 1497-1] New clamav packages fix several vulnerabilities Moritz Muehlenhoff (Feb 16)
[SECURITY] [DSA 1480-1] New poppler packages fix several vulnerabilities Moritz Muehlenhoff (Feb 05)
[SECURITY] [DSA 1484-1] New xulrunner packages fix several vulnerabilities Moritz Muehlenhoff (Feb 11)
[SECURITY] [DSA 1481-1] New python-cherrypy packages fix denial of service Moritz Muehlenhoff (Feb 05)
[SECURITY] [DSA 1489-1] New iceweasel packages fix several vulnerabilities Moritz Muehlenhoff (Feb 11)
muuratsalo experimental hack lab
mini-pub 0.3 multiple vulnerabilities muuratsalo experimental hack lab (Feb 07)
banpro-dms 1.0 local file inclusion vulnerability muuratsalo experimental hack lab (Feb 16)
lightblog 9.6 local file inclusion vulnerability muuratsalo experimental hack lab (Feb 18)
scribe 0.2 local file inclusion vulnerability muuratsalo experimental hack lab (Feb 14)
PlutoStatus Locator v1.0pre (alpha) local file inclusion vulnerability muuratsalo experimental hack lab (Feb 14)
artmedic weblog multiple xss vulnerabilities muuratsalo experimental hack lab (Feb 12)
artmedic weblog multiple local file inclusion vulnerabilities muuratsalo experimental hack lab (Feb 14)
nbbn
WoltLab Burning Board 3.0.3 PL1 SQL-Injection Vulnerability nbbn (Feb 19)
Wordpress Pluging wp-footnotes 2.2 (admin_panel.php) Multiple Vulnerabilites nbbn (Feb 02)
Wordpress Plugin dmsguestbook 1.7.0 Multiple Remote Vulnerabilities nbbn (Feb 02)
Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities nbbn (Feb 25)
RunCMS 1.6.1 Multiple XSS and XSRF Vulnerabilties nbbn (Feb 18)
nnposter
F5 BIG-IP Web Management Console CSRF (with example) nnposter (Feb 11)
Packeteer Products File Listing XSS nnposter (Feb 25)
Alkacon OpenCms tree_files.jsp resource XSS nnposter (Feb 25)
F5 BIG-IP Web Management Console CSRF nnposter (Feb 11)
Noah Meyerhans
[SECURITY] [DSA 1502-1] New wordpress packages fix multiple vulnerabilities Noah Meyerhans (Feb 22)
[SECURITY] [DSA 1509-1] New koffice packages fix multiple vulnerabilities Noah Meyerhans (Feb 26)
[SECURITY] [DSA 1483-1] New net-snmp packages fix denial of service vulnerability Noah Meyerhans (Feb 06)
no-reply
Joomla com_stat "id" Remote SQL Injection no-reply (Feb 25)
Joomla Com_blog "pid" Remote SQL Injection no-reply (Feb 25)
Joomla com_inter "id" Remote SQL Injection no-reply (Feb 25)
Pigyard Art Gallery Multiple SQL Injection No-Reply (Feb 25)
Tested on Webmin 1.390 no-reply (Feb 06)
Mercury v1.1.5 Send Message Cross-Site Scripting No-reply (Feb 11)
PHP-Nuke My_eGallery "gid" Remote SQL Injection no-reply (Feb 28)
[Aria-Security.Net] BestWebApp Dating System SQL Injection no-reply (Feb 23)
پيش گزيده Website Design Chat Software Remote Cross-Site Scripting no-reply (Feb 11)
Php Nuke "Sell" module SQL Injection ("cid") no-reply (Feb 25)
Aria-Security.Net: Joomla Com_publication "pid" Remote SQL Injection No-Reply (Feb 25)
oc photon
Re: Loginwindow.app and Mac OS X oc photon (Feb 29)
Ofer Shezaf
Web Hacking Incidenets Database 2007 annual Report is out Ofer Shezaf (Feb 08)
Web Hacking Incidents Database Update for Feb 20th Ofer Shezaf (Feb 20)
omnipresent
LightBlog Remote File Upload Vulnerability omnipresent (Feb 01)
Open Phugu
Some interesting hashes Open Phugu (Feb 09)
organiser () syscan org
SyScan'08 Call for Paper/Training organiser () syscan org (Feb 13)
Ozgur Ozdemircili
Crafty Syntax Xss Vulnerability Ozgur Ozdemircili (Feb 18)
packet
Re: XOOPS Module wflinks SQL Injection(cid) packet (Feb 20)
Re: Vwar New Bug packet (Feb 14)
Re: Powered by Pagetool Ver (1.04-05-06-07) packet (Feb 25)
Paul Laudanski
CastleCops Six Years Old Paul Laudanski (Feb 23)
Pete Herzog
security and aluminum foil hats Pete Herzog (Feb 28)
Peter Watkins
Apache web server 2.2: htpasswd predictable salt weakness Peter Watkins (Feb 14)
Re: Apache web server 2.2: htpasswd predictable salt weakness Peter Watkins (Feb 15)
Pierre-Yves Rofes
[ GLSA 200802-07 ] Pulseaudio: Privilege escalation Pierre-Yves Rofes (Feb 14)
[ GLSA 200802-09 ] ClamAV: Multiple vulnerabilities Pierre-Yves Rofes (Feb 22)
[ GLSA 200802-06 ] scponly: Multiple vulnerabilities Pierre-Yves Rofes (Feb 12)
[ GLSA 200802-11 ] Asterisk: Multiple vulnerabilities Pierre-Yves Rofes (Feb 26)
[ GLSA 200802-04 ] Gallery: Multiple vulnerabilities Pierre-Yves Rofes (Feb 12)
[ GLSA 200802-02 ] Doomsday: Multiple vulnerabilities Pierre-Yves Rofes (Feb 06)
[ GLSA 200802-03 ] Horde IMP: Security bypass Pierre-Yves Rofes (Feb 12)
[ GLSA 200802-05 ] Gnumeric: User-assisted execution of arbitrary code Pierre-Yves Rofes (Feb 12)
ProCheckUp Research
PR06-12: XSS on BEA Plumtree Foundation and AquaLogic Interaction portals ProCheckUp Research (Feb 19)
PR07-41: XSS on Juniper Networks Secure Access 2000 ProCheckUp Research (Feb 28)
PR08-01: Several XSS, a cross-domain redirect and a webroot disclosure on Spyce - Python Server Pages (PSP) ProCheckUp Research (Feb 19)
ZyXEL Gateways Vulnerability Research: http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf ProCheckUp Research (Feb 21)
PR07-42: Webroot disclosure on Juniper Networks Secure Access 2000 ProCheckUp Research (Feb 28)
p_s3rver
Vwar New Bug p_s3rver (Feb 13)
Vwar 1.5.0 p_s3rver (Feb 11)
ralph
Re: etomite xss ralph (Feb 18)
Raphael Marichez
[ GLSA 200802-01 ] SDL_image: Two buffer overflow vulnerabilities Raphael Marichez (Feb 06)
[ GLSA 200802-08 ] Boost: Denial of Service Raphael Marichez (Feb 15)
Raymond_Villafania
RE: Buffer-overflow in the passwords handling of Trend Micro OfficeScan 8.0 and possibly other products Raymond_Villafania (Feb 28)
research
SYMSA-2008-001: Lyris ListManager - Multiple Vulnerabilities research (Feb 19)
Reversemode
[Reversemode Advisory] February Advisories : Microsoft Word 2003 + Fortinet Forticlient Reversemode (Feb 13)
richard
Re: XSS on Obedit v3.03 richard (Feb 13)
RISE Security
Re: RE: ASUS Eee PC rooted out of the box RISE Security (Feb 08)
ASUS Eee PC rooted out of the box RISE Security (Feb 08)
Robert Buchholz
[ GLSA 200802-10 ] Python: PCRE Integer overflow Robert Buchholz (Feb 25)
[ GLSA 200802-12 ] xine-lib: User-assisted execution of arbitrary code Robert Buchholz (Feb 26)
robert . ingruber
Re: Multiple vulnerabilities in SAPlpd 6.28 robert . ingruber (Feb 05)
rose-of-a
Re: DOINGSOFT-2008-02-11-002 IP Diva VPN SSL many XSS attacks rose-of-a (Feb 15)
rPath Update Announcements
rPSA-2008-0054-1 tk rPath Update Announcements (Feb 13)
rPSA-2008-0084-1 lighttpd rPath Update Announcements (Feb 28)
rPSA-2008-0092-1 tshark wireshark rPath Update Announcements (Feb 29)
rPSA-2008-0086-1 pcre rPath Update Announcements (Feb 28)
rPSA-2008-0063-1 boost rPath Update Announcements (Feb 13)
rPSA-2008-0043-1 icu rPath Update Announcements (Feb 06)
rPSA-2008-0088-1 am-utils rPath Update Announcements (Feb 28)
rPSA-2008-0046-1 gd rPath Update Announcements (Feb 06)
rPSA-2008-0040-1 mysql mysql-bench mysql-server rPath Update Announcements (Feb 05)
rPSA-2008-0091-1 cups rPath Update Announcements (Feb 29)
rPSA-2008-0051-1 firefox rPath Update Announcements (Feb 09)
rPSA-2008-0082-1 espgs rPath Update Announcements (Feb 28)
rPSA-2008-0061-1 SDL_image rPath Update Announcements (Feb 13)
rPSA-2008-0052-1 kernel rPath Update Announcements (Feb 12)
rPSA-2008-0056-1 mailman rPath Update Announcements (Feb 15)
rPSA-2008-0059-1 openldap openldap-clients openldap-servers rPath Update Announcements (Feb 15)
rPSA-2008-0048-1 kernel rPath Update Announcements (Feb 08)
rPSA-2008-0093-1 thunderbird rPath Update Announcements (Feb 29)
rPSA-2008-0094-1 kernel rPath Update Announcements (Feb 29)
rvandenbrink
Re: Re: PIX Privilege Escalation Vulnerability rvandenbrink (Feb 05)
S21sec labs
S21SEC-040-en: Infinite invalid authentication attempts possible in BEA WebLogic Server S21sec labs (Feb 25)
s4tan
Cacti 0.8.7a Multiple Vulnerabilities s4tan (Feb 12)
securfrog
Rosoft Media Player 4.1.8 Buffer Overflow ( .M3U) securfrog (Feb 14)
IpSwitch WS_FTPSERVER with SSH remote Buffer Overflow securfrog (Feb 02)
dBpowerAMP Audio Player Release 2 Remote Buffer Overflow Securfrog (Feb 05)
NERO Media Player <= 1.4.0.35b Remote Buffer Overflow( .M3U) Securfrog (Feb 05)
UniversalFtp Server 1.0.44 Multiple Remote Denial of service securfrog (Feb 14)
Sami FTP Server 2.0.* Multiple Remote Vulnerabilities securfrog (Feb 15)
Titan FTP Server Remote Heap Overflow (USER/PASS) securfrog (Feb 02)
Re: UniversalFtp Server 1.0.44 Multiple Remote Denial of service securfrog (Feb 14)
security
[ MDVSA-2008:048 ] - Updated Firefox packages fix multiple vulnerabilities security (Feb 23)
[ MDVSA-2008:040 ] - Updated SDL_image packages fix vulnerabilities security (Feb 08)
[ MDVSA-2008:037 ] - Updated libcdio packages fix DoS vulnerability security (Feb 07)
[ MDVSA-2008:033 ] - Updated ruby-gnome2 packages fix arbitrary code execution vulnerability security (Feb 02)
[ MDVSA-2008:046 ] - Updated xine-lib package fixes arbitrary code execution vulnerability security (Feb 15)
[ MDVSA-2008:053 ] - Updated pcre packages fix vulnerability security (Feb 27)
[ MDVSA-2008:055 ] - Updated ghostscript packages fix arbitrary code execution vulnerability security (Feb 29)
PHPMyTourney Remote file include Vulnerability security (Feb 29)
[ MDVSA-2008:052 ] - Updated cacti packages fix multiple vulnerabilities security (Feb 27)
[ MDVSA-2008:054 ] - Updated dbus packages fix vulnerability security (Feb 28)
[ MDVSA-2008:056 ] - Updated gnumeric packages fix vulnerability security (Feb 29)
[ MDVSA-2008:045 ] - Updated MPlayer packages fix a few vulnerabilities security (Feb 15)
[ MDVSA-2008:036 ] - Updated CUPS packages fix SNMP vulnerability security (Feb 06)
[ MDVSA-2008:041 ] - Updated tk packages fix buffer overflow vulnerability security (Feb 08)
[ MDVSA-2008:042 ] - Updated Qt4 packages fix vulnerability in QSslSocket security (Feb 08)
[ MDVSA-2008:038 ] - Updated gd packages fix buffer overflow vulnerability security (Feb 08)
[ MDVSA-2008:031 ] - security (Feb 01)
[ MDVSA-2008:050 ] - Updated cups packages fix multiple vulnerabilities security (Feb 26)
[ MDVSA-2008:044 ] - Updated kernel packages fix multiple vulnerabilities and bugs security (Feb 12)
[ MDVSA-2008:051 ] - Updated cups packages fix vulnerabilities security (Feb 26)
[ MDVSA-2007:047 ] - Updated Thunderbird packages fix multiple vulnerabilities security (Feb 19)
[ MDVSA-2008:046-1 ] - Updated xine-lib package fixes arbitrary code execution vulnerability security (Feb 21)
[ MDVSA-2008:035 ] - Updated libcdio packages fix DoS vulnerability security (Feb 05)
[ MDVSA-2008:043 ] - Updated kernel packages fix multiple vulnerabilities and bugs security (Feb 12)
[ MDVSA-2008:030 ] - Updated pcre packages fix vulnerability security (Feb 01)
[ MDVSA-2008:034 ] - Updated emacs packages fix vulnerabilities security (Feb 05)
[ MDVSA-2008:032 ] - Updated boost packages fix DoS vulnerabilities security (Feb 02)
[ MDVSA-2008:039 ] - Updated netpbm packages fix buffer overflow vulnerability security (Feb 08)
[ MDVSA-2008:049 ] - Updated nss_ldap package fixes race condition allowing user data theft security (Feb 25)
security-alert
[security bulletin] HPSBUX02313 SSRT080015 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code security-alert (Feb 13)
[security bulletin] HPSBMA02274 SSRT071445 rev.3 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS) security-alert (Feb 13)
[security bulletin] HPSBUX02249 SSRT071442 rev.3 - HP-UX Running the Ignite-UX or the DynRootDisk (DRD) get_system_info Command, Local Unqualified Configuration Change security-alert (Feb 13)
[security bulletin] HPSBMA02309 SSRT080013 rev.1 - HP Select Identity Software, Remote Unauthorized Access security-alert (Feb 07)
[security bulletin] HPSBST02302 SSRT071474 rev.1 - HP Storage Essentials SRM, Remote Unauthorized Access security-alert (Feb 06)
[security bulletin] HPSBGN02310 SSRT080007 rev.1 - HP Virtual Rooms Running on Windows, Remote Execution of Arbitrary Code security-alert (Feb 06)
[security bulletin] HPSBUX02308 SSRT080010 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code security-alert (Feb 04)
[security bulletin] HPSBMA02307 SSRT071420 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Denial of Service (DoS) security-alert (Feb 05)
[security bulletin] HPSBTU02311 SSRT080001 rev.1 - HP Tru64 UNIX running Perl, Remote Execution of Arbitrary Code security-alert (Feb 20)
[security bulletin] HPSBST02314 SSRT080016 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-003 to MS08-013 security-alert (Feb 21)
[security bulletin] HPSBGN02298 SSRT071502 rev.3 - HP Notebook PC Quick Launch Button (QLB) Software Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access security-alert (Feb 22)
Security Basic
Thanks to all, ExploitSearch in Top5 security must-have Security Basic (Feb 13)
Sekomirza
StatCounteX 3.0 & 3.1 Admin Vulnerability Sekomirza (Feb 15)
sex
LI-countdown SQL Injection Vulnerability sex (Feb 12)
si0uxsecurity
Re: CSA-L03: Linux kernel vmsplice unchecked user-pointer dereference si0uxsecurity (Feb 19)
sipherr
Nortel IP Phone DoS sipherr (Feb 26)
Re: Re: Nortel IP Phone DoS sipherr (Feb 26)
staad1
Default Multiple Joomla! Component com_rapidrecipe "user_id=" Remote SQL Inj. staad1 (Feb 11)
Stefan Esser
Advisory SE-2008-01: PunBB Blind Password Recovery Vulnerability Stefan Esser (Feb 20)
Stefano Zanero
Final CFP: EuroSec Workshop (March 31st, 2008) Stefano Zanero (Feb 11)
CFP: Workshop on Open Source Software for Computer and Network Forensics Stefano Zanero (Feb 21)
Steve Kemp
[SECURITY] [DSA 1500-1] New splitvt packages fix privilege escalation Steve Kemp (Feb 21)
[SECURITY] [DSA 1498-1] New libimager-perl packages fix arbitrary code execution Steve Kemp (Feb 19)
[SECURITY] [DSA 1486-1] New gnatsweb packages fix cross-site scripting Steve Kemp (Feb 05)
[SECURITY] [DSA 1507-1] New turba2 packages fix permission testing Steve Kemp (Feb 25)
Steve Shockley
Re: Logs visualization in WS_FTP Server Manager 6.1.0.0 Steve Shockley (Feb 07)
sub
The Everything Development System - SQL Injection sub (Feb 02)
subere
EDLGraph 1.0 subere (Feb 22)
Sw33t . h4cK3r
SQL in Archimede Net 2000 "E-Guest_show.php" Sw33t . h4cK3r (Feb 01)
sys-project
Centreon <= 1.4.2.3 (index.php) Remote File Disclosure sys-project (Feb 29)
Simple CMS <= 1.0.3 (indexen.php area) Remote SQL Injection Exploit sys-project (Feb 18)
th3 . r00k . nospam
etomite xss th3 . r00k . nospam (Feb 14)
theredc0ders
phpShop <= v 0.8.1 Remote SQL injection / Filter Bypass theredc0ders (Feb 02)
Thijs Kinkhorst
[SECURITY] [DSA 1501-1] New dspam packages fix information disclosure Thijs Kinkhorst (Feb 21)
[SECURITY] [DSA 1488-1] New phpbb2 packages fix several vulnerabilities Thijs Kinkhorst (Feb 09)
[SECURITY] [DSA 1510-1] New ghostscript packages fix arbitrary code execution Thijs Kinkhorst (Feb 27)
[SECURITY] [DSA 1508-1] New diatheke packages fix arbirary shell command execution Thijs Kinkhorst (Feb 25)
Thor (Hammer of God)
ExtraOutlook 1.2 Released Thor (Hammer of God) (Feb 11)
Tim Newsham
Re: A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability" Tim Newsham (Feb 06)
Tonnerre Lombard
Re: [Full-disclosure] rPSA-2008-0052-1 kernel Tonnerre Lombard (Feb 15)
Trancer
JSPWiki Multiple Vulnerabilities Trancer (Feb 14)
turkish-warrorr
Powered by Pagetool Ver (1.04-05-06-07) turkish-warrorr (Feb 25)
vijayv
XSS on XRMS- open source CRM vijayv (Feb 28)
VMware Security team
VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates VMware Security team (Feb 21)
Wojciech Purczynski
CSA-L03: Linux kernel vmsplice unchecked user-pointer dereference Wojciech Purczynski (Feb 12)
zdi-disclosures
ZDI-08-007: Symantec VERITAS Storage Foundation Administrator Service Heap Overflow Vulnerability zdi-disclosures (Feb 21)
ZDI-08-004: Adobe AcrobatReader Javascript for PDF Integer Overflow Vulnerability zdi-disclosures (Feb 12)
ZDI-08-003: Symantec Backup Exec Remote File Upload Vulnerability zdi-disclosures (Feb 06)
ZDI-08-006: Microsoft Internet Explorer SVG animateMotion.by Code Execution Vulnerability zdi-disclosures (Feb 13)
ZDI-08-005: Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability zdi-disclosures (Feb 12)
رومانسي هكر
aliboard Beta Upload Shell From ControlPanel رومانسي هكر (Feb 11)