Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
147 messages
starting Oct 11 12 and
ending Oct 17 12
Date index |
Thread index |
Author index
abhijeet
Last reminder for ClubHack 2012 : Call for Papers abhijeet (Oct 11)
Reminder: ClubHack2012 Call for Papers Closing Soon abhijeet (Oct 02)
Adam Laurie
ANNOUNCE: RFIDIOt v1.0d released and code migration Adam Laurie (Oct 04)
advisory
Multiple vulnerabilities in Template CMS advisory (Oct 03)
Multiple vulnerabilities in Subrion CMS advisory (Oct 17)
Privilege Escalation Vulnerability in Microsoft Windows advisory (Oct 09)
Multiple vulnerabilities in OpenX advisory (Oct 10)
Multiple vulnerabilities in AContent advisory (Oct 17)
Multiple vulnerabilities in jCore advisory (Oct 17)
Multiple vulnerabilities in Samsung Kies advisory (Oct 15)
Alexander Polyakov
One week left! CFP for ZeroNights Conference in Moscow 19-20 November 2012 Alexander Polyakov (Oct 04)
alien DC4420
DC4420 - London DEFCON - October meet - tomorrow, Tuesday 23rd October. alien DC4420 (Oct 24)
Andrea Fabrizi
Visual Tools DVR multiple vulnerabilities Andrea Fabrizi (Oct 16)
Anil Pazvant
WingFTP Server Denial of Service Vulnerability Anil Pazvant (Oct 09)
BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface Anil Pazvant (Oct 09)
WingFTP Server Denial of Service Vulnerability Anil Pazvant (Oct 09)
Apple Product Security
APPLE-SA-2012-10-16-1 Java for OS X 2012-006 and Java for Mac OS X 10.6 Update 11 Apple Product Security (Oct 17)
beford
Blender 2.63 Exploitable User Mode Write AV beford (Oct 09)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module Cisco Systems Product Security Incident Response Team (Oct 10)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Cisco Systems Product Security Incident Response Team (Oct 10)
Cisco Security Advisory: Multiple Vulnerabilities in the Cisco WebEx Recording Format Player Cisco Systems Product Security Incident Response Team (Oct 10)
Collin Mulliner
Call for Papers: DIMVA 2013 Collin Mulliner (Oct 29)
come2waraxe
[waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin come2waraxe (Oct 24)
[waraxe-2012-SA#093] - Multiple Vulnerabilities in Wordpress Social Discussions Plugin come2waraxe (Oct 17)
[waraxe-2012-SA#092] - Multiple Vulnerabilities in Wordpress Slideshow Plugin come2waraxe (Oct 17)
[waraxe-2012-SA#095] - Multiple Vulnerabilities in Wordpress FoxyPress Plugin come2waraxe (Oct 31)
Crash
[DCA-2011-0013] - IBM Informix Dynamic Server 11.50 SET COLLATION Stack OverFlow Crash (Oct 09)
Florian Weimer
[SECURITY] [DSA 2565-1] iceweasel security update Florian Weimer (Oct 24)
[SECURITY] [DSA 2567-1] request-tracker3.8 security update Florian Weimer (Oct 29)
[SECURITY] [DSA 2569-1] icedove security update Florian Weimer (Oct 30)
[SECURITY] [DSA 2568-1] rtfm security update Florian Weimer (Oct 29)
[SECURITY] [DSA 2560-1] bind9 security update Florian Weimer (Oct 24)
Gary Driggs
Re: [Full-disclosure] F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection Gary Driggs (Oct 24)
irist . ir
Wordpress 3.4 Cross-Site Scripting Vulnerability irist . ir (Oct 25)
Smf 2.0.2 Cross-Site Scripting Vulnerability irist . ir (Oct 25)
KmPlayer v3.0.0.1440 Local Crash PoC irist . ir (Oct 29)
John Kinsella
[CVE-2012-4501] CloudStack configuration vulnerability John Kinsella (Oct 10)
Joseph Sheridan
XnView JLS File Decompression Heap Overflow Joseph Sheridan (Oct 04)
Ken
CVE-2012-3819: Stack Overflow in DartWebserver.dll <= 1.9 Ken (Oct 02)
Multiple Vulnerabilities in Campaign Enterprise <= 11.0.538 Ken (Oct 18)
Kotas, Kevin J
CA20121018-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Oct 18)
Kurt Grutzmacher
HP/H3C and Huawei SNMP Weak Access to Critical Data Kurt Grutzmacher (Oct 24)
Lists
FileBound - Privilege Escalation Vulnerability - Security Advisory - SOS-12-010 Lists (Oct 11)
lorenzo . cantoni86
[CVE-2012-4750] Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability lorenzo . cantoni86 (Oct 15)
Matan Azugi
[BUGTRAQ]Security Advisory - TP-LINK TL-WR841N LFI - [UPDATE] Matan Azugi (Oct 31)
Micha Borrmann
MitM-vulnerability in Palo Alto Networks GlobalProtect Micha Borrmann (Oct 17)
Michał Błaszczak
Exploit - EasyITSP by Lemens Telephone Systems 2.0.2 Michał Błaszczak (Oct 29)
PIAF H.M.S - SQL Injection Michał Błaszczak (Oct 29)
Moritz Muehlenhoff
[SECURITY] [DSA 2561-1] tiff security update Moritz Muehlenhoff (Oct 24)
[SECURITY] [DSA 2555-1] libxslt security update Moritz Muehlenhoff (Oct 09)
Netsparker Advisories
XSS Vulnerabilities in CMSMini Netsparker Advisories (Oct 23)
XSS Vulnerabilities in TaskFreak Netsparker Advisories (Oct 23)
XSS Vulnerabilities in ClipBucket Netsparker Advisories (Oct 23)
XSS Vulnerabilities in phpFreeChat Netsparker Advisories (Oct 02)
Nico Golde
[SECURITY] [DSA 2566-1] exim4 security update Nico Golde (Oct 26)
[SECURITY] [DSA 2556-1] icedove security update Nico Golde (Oct 09)
[SECURITY] [DSA 2557-1] hostapd security update Nico Golde (Oct 09)
Oliver Goebel
[IMF 2013] 3rd Call for Papers: Deadline Extended Oliver Goebel (Oct 17)
paul . szabo
utempter allows fake host setting paul . szabo (Oct 09)
pereira
VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) pereira (Oct 10)
Re: VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) pereira (Oct 15)
Microsoft Office Excel ReadAV Arbitrary Code Execution pereira (Oct 10)
Hardcoreview WriteAV Arbitrary Code Execution pereira (Oct 09)
Re: FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution pereira (Oct 10)
FastStone Image Viewer 4.6 <= ReadAVonIP Arbitrary Code Execution pereira (Oct 09)
phptax 0.8 <= Remote Code Execution Vulnerability pereira (Oct 02)
Internet Explorer 9 XSS Filter Bypass pereira (Oct 18)
soapbox Local Root / Privilege Escalation Vulnerability pereira (Oct 09)
Raphael Geissert
[SECURITY] [DSA 2558-1] bacula security update Raphael Geissert (Oct 09)
ReVuln
Critical issues affecting Steam users ReVuln (Oct 15)
roberto
Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB roberto (Oct 11)
Roi Saltzman
Old Habits Die Hard: Cross-Zone Scripting in Dropbox & Google Drive Mobile Apps Roi Saltzman (Oct 19)
SEC Consult Vulnerability Lab
SEC Consult SA-20121017-1 :: Unirgy uStoreLocator SQL Injection - Magento extension SEC Consult Vulnerability Lab (Oct 17)
SEC Consult SA-20121017-2 :: Multiple vulnerabilities in Oracle WebCenter Sites (former FatWire Content Server) SEC Consult Vulnerability Lab (Oct 17)
SEC Consult SA-20121017-0 :: ModSecurity multipart/invalid part ruleset bypass SEC Consult Vulnerability Lab (Oct 17)
sec . team
VaM Shop Cross-Site Scripting and Blind SQL Injection Vulnerabilities sec . team (Oct 24)
security
[ MDVSA-2012:166 ] bacula security (Oct 15)
[ MDVSA-2012:167 ] firefox security (Oct 15)
[ MDVSA-2012:163 ] firefox security (Oct 11)
[ MDVSA-2012:160 ] imagemagick security (Oct 09)
[ MDVSA-2012:154-1 ] apache security (Oct 02)
[ MDVSA-2012:152-1 ] bind security (Oct 02)
[ MDVSA-2012:156 ] inn security (Oct 02)
[ MDVSA-2012:150-1 ] java-1.6.0-openjdk security (Oct 09)
[ MDVSA-2012:164 ] libxslt security (Oct 11)
[ MDVSA-2012:165 ] graphicsmagick security (Oct 15)
[ MDVSA-2012:162 ] bind security (Oct 10)
[ MDVSA-2012:151-1 ] ghostscript security (Oct 09)
[ MDVSA-2012:158 ] gc security (Oct 03)
[ MDVSA-2012:161 ] html2ps security (Oct 09)
[ MDVSA-2012:155-1 ] xinetd security (Oct 02)
[ MDVSA-2012:168 ] hostapd security (Oct 24)
[ MDVSA-2012:153-1 ] dhcp security (Oct 03)
[ MDVSA-2012:157 ] openjpeg security (Oct 03)
[ MDVSA-2012:159 ] freeradius security (Oct 04)
Security Alert
ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities Security Alert (Oct 11)
EMC Avamar Client for VMware Sensitive Information Disclosure Vulnerability Security Alert (Oct 29)
ESA-2012-035: RSAR Adaptive Authentication (On-Premise) Information Disclosure Vulnerability Security Alert (Oct 09)
security-alert
[security bulletin] HPSBOV02822 SSRT100966 rev.1 - HP Secure Web Server (SWS) for OpenVMS, Remote Denial of Service (DoS), Unauthorized Access, Disclosure of Information security-alert (Oct 09)
[security bulletin] HPSBMU02817 SSRT100950 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Disclosure of Information security-alert (Oct 03)
[security bulletin] HPSBUX02824 SSRT100970 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code, and Other Vulnerabilities security-alert (Oct 24)
[security bulletin] HPSBUX02814 SSRT100930 rev.1 - HP-UX Running OpenSSL, Remote Denial of Service (DoS) security-alert (Oct 02)
[security bulletin] HPSBUX02825 SSRT100974 rev.1 - HP-UX Running Java, Remote Indirect Vulnerabilities security-alert (Oct 30)
[security bulletin] HPSBST02818 SSRT100960 rev.1 - HP IBRIX X9000 Storage, Remote Disclosure of Information security-alert (Oct 02)
[security bulletin] HPSBHF02819 SSRT100920 rev.1 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information security-alert (Oct 24)
[security bulletin] HPSBHF02819 SSRT100920 rev.2 - HP, 3COM, and H3C Routers & Switches, Remote Disclosure of Information security-alert (Oct 26)
Shatter
Team SHATTER Security Advisory: Multiple SQL Injection in Oracle Enterprise Manager (SQL Tunning Sets components) Shatter (Oct 09)
Team SHATTER Security Advisory: Java Operating System command execution Shatter (Oct 09)
Team SHATTER Security Advisory: Elevated roles through DBCC Shatter (Oct 09)
Team SHATTER Security Advisory: XML file disclosure vulnerability via GET_WRAP_CFG_C and GET_WRAP_CFG_C2 Shatter (Oct 09)
Slackware Security Team
[slackware-security] seamonkey (SSA:2012-288-01) Slackware Security Team (Oct 15)
[slackware-security] bind (SSA:2012-284-01) Slackware Security Team (Oct 11)
[slackware-security] mozilla-firefox (SSA:2012-300-01) Slackware Security Team (Oct 29)
[slackware-security] mozilla-thunderbird (SSA:2012-304-01) Slackware Security Team (Oct 31)
[slackware-security] mozilla-thunderbird (SSA:2012-285-02) Slackware Security Team (Oct 15)
[slackware-security] seamonkey (SSA:2012-304-02) Slackware Security Team (Oct 31)
[slackware-security] mozilla-firefox (SSA:2012-283-01) Slackware Security Team (Oct 10)
[slackware-security] mozilla-firefox (SSA:2012-285-01) Slackware Security Team (Oct 15)
Stefan Kanthak
Vulnerable MSVC++ 2008 runtime libraries distributed with and installed by Ogg DirectShow filters Stefan Kanthak (Oct 04)
Thijs Kinkhorst
[SECURITY] [DSA 2562-1] cups-pk-helper security update Thijs Kinkhorst (Oct 24)
[SECURITY] [DSA 2563-1] viewvc security update Thijs Kinkhorst (Oct 24)
[SECURITY] [DSA 2564-1] tinyproxy security update Thijs Kinkhorst (Oct 24)
Thomas Richards
Inventory 1.0 Multiple XSS Vulnerabilities Thomas Richards (Oct 26)
Inventory 1.0 Multiple SQL Vulnerabilities Thomas Richards (Oct 26)
Timo Warns
[PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation Timo Warns (Oct 09)
Travis Lee
Key Systems Electronic Key Lockers command injection and weak authentication vulnerabilities Travis Lee (Oct 09)
VMware Security Response Center
VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates VMware Security Response Center (Oct 11)
Vulnerability Lab
GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites Vulnerability Lab (Oct 09)
GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 09)
vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 10)
Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
Omnistar Document Manager v8.0 - Multiple Vulnerabilities Vulnerability Lab (Oct 10)
Omnistar Mailer v7.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 03)
CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Vulnerability Lab (Oct 19)
Better WP Security v3.4.3 Wordpress - Web Vulnerabilities Vulnerability Lab (Oct 02)
Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 02)
Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Vulnerability Lab (Oct 09)
VUPEN Security Research
VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability VUPEN Security Research (Oct 24)
VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability VUPEN Security Research (Oct 24)
VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063) VUPEN Security Research (Oct 24)
VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063) VUPEN Security Research (Oct 24)
Williams, James K
CA20121001-01: Security Notice for CA License Williams, James K (Oct 02)
YGN Ethical Hacker Group
SilverStripe CMS 2.4.7 <= Persistent Cross Site Scripting Vulnerability YGN Ethical Hacker Group (Oct 15)
F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection YGN Ethical Hacker Group (Oct 24)
SilverStripe CMS 2.4.7 <= Arbitrary URL Redirection YGN Ethical Hacker Group (Oct 15)
Yves-Alexis Perez
[SECURITY] [DSA 2559-1] libexif security update Yves-Alexis Perez (Oct 17)