Bugtraq: by thread
132 messages
starting Jan 01 13 and
ending Jan 31 13
Date index |
Thread index |
Author index
- Charybdis: Improper assumptions in the server handshake code may lead to a remote crash muztapha (Jan 01)
- Re: CubeCart 5.0.7 and lower versions | Insecure Backup File Handling YGN Ethical Hacker Group (Jan 01)
- CubeCart 5.x | Cross Site Request Forgery (CSRF) Vulnerability YGN Ethical Hacker Group (Jan 01)
- CubeCart 5.x | Multiple Cross Site Scripting Vulnerabilities YGN Ethical Hacker Group (Jan 01)
- Re: GnuPG 1.4.12 and lower - memory access errors and keyring database corruption Kurt Seifried (Jan 01)
- Re: GnuPG 1.4.12 and lower - memory access errors and keyring database corruption Kurt Seifried (Jan 02)
- AthCon 2013 CFP OPEN cfp (Jan 01)
- ShakaCon 2013 - Call for Papers Shakacon (Jan 02)
- [ MDVSA-2013:001 ] gnupg security (Jan 02)
- AST-2012-014: Crashes due to large stack allocations when using TCP Asterisk Security Team (Jan 03)
- AST-2012-015: Denial of Service Through Exploitation of Device State Caching Asterisk Security Team (Jan 03)
- Aastra IP Telephone encrypted .tuz configuration file leakage Timo Juhani Lindfors (Jan 03)
- Simple Webserver 2.3-rc1 Directory Traversal cwggenius (Jan 03)
- CVE-2012-6493 - Nexpose Security Console - Cross-Site Request Forgery (CSRF) i () amroot com (Jan 04)
- CVE-2012-6494 - Nexpose Security Console - Session Hijacking i () amroot com (Jan 04)
- TomatoCart 1.x | Unrestricted File Creation YGN Ethical Hacker Group (Jan 04)
- CFP: InfoSec Southwest 2013 todb (Jan 07)
- [SECURITY] [DSA 2597-1] rails security update Nico Golde (Jan 07)
- [SECURITY] [DSA 2598-1] weechat security update Moritz Muehlenhoff (Jan 07)
- [SECURITY] [DSA 2599-1] nss security update Thijs Kinkhorst (Jan 07)
- [SECURITY] [DSA 2600-1] cups security update Nico Golde (Jan 07)
- [security bulletin] HPSBOV02833 SSRT101043 rev.1 - OpenVMS running Java on Integrity Servers, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities security-alert (Jan 07)
- Chrome for Android - UXSS via com.android.browser.application_id Intent extra mbsdtest01 (Jan 07)
- Chrome for Android - Download Function Information Disclosure mbsdtest01 (Jan 07)
- Chrome for Android - Android APIs exposed to JavaScript mbsdtest01 (Jan 07)
- Chrome for Android - Bypassing SOP for Local Files By Symlinks mbsdtest01 (Jan 07)
- Chrome for Android - Cookie theft from Chrome by malicious Android app mbsdtest01 (Jan 07)
- Facebook for Android - Information Diclosure Vulnerability mbsdtest01 (Jan 07)
- ESA-2013-001: EMC NetWorker Buffer Overflow vulnerability Security Alert (Jan 08)
- [security bulletin] HPSBUX02829 SSRT100883 rev.1 - HP-UX Running X Font Server (xfs) Software, Local Denial of Service (DoS), Unauthorized Access security-alert (Jan 08)
- [SECURITY] [DSA 2602-1] zendframework security update Florian Weimer (Jan 08)
- Cisco Security Advisory: Cisco Prime LAN Management Solution Command Execution Vulnerability Cisco Systems Product Security Incident Response Team (Jan 09)
- Cisco Security Advisory: Cisco Unified IP Phone Local Kernel System Call Input Validation Vulnerability Cisco Systems Product Security Incident Response Team (Jan 09)
- [ MDVSA-2013:002 ] firefox security (Jan 09)
- Cross-Site Scripting (XSS) vulnerability in Quick.Cms and Quick.Cart advisory (Jan 09)
- Remote Buffer Overflow Vulnerability in Samsung Kies advisory (Jan 09)
- Nero MediaHome Multiple Remote DoS Vulnerabilities advisory (Jan 09)
- [ MDVSA-2013:003 ] rootcerts security (Jan 09)
- [SECURITY] [DSA 2603-1] emacs23 security update Moritz Muehlenhoff (Jan 09)
- [SECURITY] [DSA 2604-1] rails security update Thijs Kinkhorst (Jan 09)
- [slackware-security] mozilla-firefox (SSA:2013-009-01) Slackware Security Team (Jan 10)
- [slackware-security] seamonkey (SSA:2013-009-03) Slackware Security Team (Jan 10)
- [slackware-security] mozilla-thunderbird (SSA:2013-009-02) Slackware Security Team (Jan 10)
- [ MDVSA-2013:004 ] tomcat5 security (Jan 10)
- OrangeHRM 2.7.1 Vacancy Name Persistent XSS SBV Research (Jan 10)
- Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Beni_vanda (Jan 10)
- Re: Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Henri Salo (Jan 11)
- Re: Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Paolo Perego (Jan 16)
- Re: Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Henri Salo (Jan 11)
- Detailed examples of two vulnerabilities in whitelisting software: SE46 (Cryptzone) and Application Control (McAfee) Arne Vidström (Jan 10)
- DefenseCode Security Advisory (UPCOMING): Cisco Linksys Remote Preauth 0day Root Exploit DefenseCode (Jan 10)
- [SE-2012-01] 'Fix' for Issue 32 exploited by new Java 0-day code Security Explorations (Jan 11)
- [security bulletin] HPSBMU02838 SSRT100789 rev.1 - HP Serviceguard on Linux, Remote Denial of Service (DoS) security-alert (Jan 11)
- Arbitrary File Upload and Code Execution in Accusoft Prizm Content Connect Include Security Research (Jan 14)
- [SECURITY] [DSA 2606-1] proftpd-dfsg security update Thijs Kinkhorst (Jan 14)
- [SECURITY] [DSA 2605-1] asterisk security update Thijs Kinkhorst (Jan 14)
- CVE-2012-5641 Apache CouchDB Information disclosure via unescaped backslashes in URLs on Windows Jan Lehnardt (Jan 14)
- CVE-2012-5650 Apache CouchDB DOM based Cross-Site Scripting via Futon UI Jan Lehnardt (Jan 14)
- CVE-2012-5649 Apache CouchDB JSONP arbitrary code execution with Adobe Flash Jan Lehnardt (Jan 14)
- Updated - CA20121018-01: Security Notice for CA ARCserve Backup Kotas, Kevin J (Jan 14)
- [IA33] Serva v2.0.0 DNS Server Remote Denial of Service Inshell Security (Jan 14)
- [IA34] Serva v2.0.0 HTTP Server GET Remote Denial of Service Inshell Security (Jan 14)
- [SECURITY] [DSA 2607-1] qemu-kvm security update Florian Weimer (Jan 15)
- [SECURITY] [DSA 2608-1] qemu security update Florian Weimer (Jan 15)
- Trimble® Infrastructure GNSS Series Receivers Cross Site Scripting (XSS) vulnerability Rustein, Fara Denise (LATCO - Buenos Aires) (Jan 15)
- [slackware-security] freetype (SSA:2013-015-01) Slackware Security Team (Jan 16)
- Re: [CVE-ID REQUEST] Atlassian Confluence - Multiple Cross-Site Request Forgery (CSRF) Vulnerabilities rgilbert (Jan 16)
- Re: [CVE-ID REQUEST] vBulletin - Multiple Open Redirects rgilbert (Jan 16)
- Cisco Security Advisory: Cisco ASA 1000V Cloud Firewall H.323 Inspection Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Jan 16)
- DC4420 - 2013 CFP Major Malfunction (Jan 16)
- [SECURITY] [DSA 2609-1] rails security update Florian Weimer (Jan 17)
- Cisco Security Advisory Update v1.1: Cisco Unified IP Phone Local Kernel System Call Input Validation Vulnerability Cisco Systems Product Security Incident Response Team (Jan 17)
- Secunia Research: Oracle Outside In Technology Paradox Database Handling Denial of Service Secunia Research (Jan 17)
- Secunia Research: Oracle Outside In Technology Paradox Database Handling Buffer Overflow Secunia Research (Jan 17)
- NSOADV-2013-001: DELL SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass (/appliance/) NSO Research (Jan 17)
- NSOADV-2013-002: DELL SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass (/sgms/) NSO Research (Jan 17)
- CVE-2012-6452 Axway Secure Messenger Username Disclosure jason . doyle (Jan 18)
- Recently-revised IETF I-Ds about IPv6 security Fernando Gont (Jan 21)
- [SE-2012-01] Java 7 Update 11 confirmed to be vulnerable Security Explorations (Jan 21)
- Message not available
- Message not available
- Re: [SE-2012-01] Java 7 Update 11 confirmed to be vulnerable Security Explorations (Jan 22)
- Message not available
- Message not available
- <Possible follow-ups>
- Re: Wordpress Valums Uploader - File Upload Vulnerability fineuploader (Jan 29)