http://www.spinics.net/lists/bugtraq/ Email archive for Bugtraq en-us Fri, 19 Mar 2010 22:03:56 GMT Fri, 19 Mar 2010 22:03:56 GMT http://blogs.law.harvard.edu/tech/rss http://www.spinics.net/lists/bugtraq/msg40967.html Vulnerability Httpdx v1.5.3b Fri, 19 Mar 2010 21:59:57 GMT http://www.spinics.net/lists/bugtraq/msg40967.html http://www.spinics.net/lists/bugtraq/msg40966.html [USN-915-1] Thunderbird vulnerabilities Fri, 19 Mar 2010 20:12:49 GMT http://www.spinics.net/lists/bugtraq/msg40966.html http://www.spinics.net/lists/bugtraq/msg40965.html announcing skipfish, an automated web app security scanner Fri, 19 Mar 2010 18:32:43 GMT http://www.spinics.net/lists/bugtraq/msg40965.html http://www.spinics.net/lists/bugtraq/msg40964.html IBM Lotus 6.x HTTP Response Splitting Vulnerability Fri, 19 Mar 2010 17:28:10 GMT http://www.spinics.net/lists/bugtraq/msg40964.html http://www.spinics.net/lists/bugtraq/msg40963.html [SECURITY] [DSA-2018-1] New php5 packages fix null pointer dereference Fri, 19 Mar 2010 15:41:11 GMT http://www.spinics.net/lists/bugtraq/msg40963.html http://www.spinics.net/lists/bugtraq/msg40962.html There are lost of xss vul in PHPWind v6.0 ! Fri, 19 Mar 2010 15:13:15 GMT http://www.spinics.net/lists/bugtraq/msg40962.html http://www.spinics.net/lists/bugtraq/msg40961.html CA20100318-01: Security Notice for CA ARCserve Backup Fri, 19 Mar 2010 14:55:19 GMT http://www.spinics.net/lists/bugtraq/msg40961.html http://www.spinics.net/lists/bugtraq/msg40960.html Sahana 0.6.2.2 Authentication Bypass Wed, 17 Mar 2010 19:39:56 GMT http://www.spinics.net/lists/bugtraq/msg40960.html http://www.spinics.net/lists/bugtraq/msg40959.html Secunia Research: Quicksilver Forums "mysqldump" Password Disclosure Wed, 17 Mar 2010 19:26:25 GMT http://www.spinics.net/lists/bugtraq/msg40959.html http://www.spinics.net/lists/bugtraq/msg40958.html Secunia Research: Quicksilver Forums Cross-Site Request Forgery Vulnerability Wed, 17 Mar 2010 19:16:39 GMT http://www.spinics.net/lists/bugtraq/msg40958.html http://www.spinics.net/lists/bugtraq/msg40957.html Secunia Research: Quicksilver Forums Backup Information Disclosure Wed, 17 Mar 2010 19:01:33 GMT http://www.spinics.net/lists/bugtraq/msg40957.html http://www.spinics.net/lists/bugtraq/msg40956.html Miranda IM silent TLS failure Wed, 17 Mar 2010 16:57:43 GMT http://www.spinics.net/lists/bugtraq/msg40956.html http://www.spinics.net/lists/bugtraq/msg40955.html Vulnerabilities in VXDate for Joomla Wed, 17 Mar 2010 16:35:38 GMT http://www.spinics.net/lists/bugtraq/msg40955.html http://www.spinics.net/lists/bugtraq/msg40954.html [CORELAN-10-13] - Windisc Local Stack BOF Wed, 17 Mar 2010 16:12:37 GMT http://www.spinics.net/lists/bugtraq/msg40954.html http://www.spinics.net/lists/bugtraq/msg40953.html [security bulletin] HPSBGN02511 SSRT100022 rev.2 - HP Small Form Factor or Microtower PC with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code Wed, 17 Mar 2010 15:51:38 GMT http://www.spinics.net/lists/bugtraq/msg40953.html http://www.spinics.net/lists/bugtraq/msg40952.html CORE-2010-0311 - eFront-learning PHP file inclusion vulnerability Wed, 17 Mar 2010 15:33:21 GMT http://www.spinics.net/lists/bugtraq/msg40952.html http://www.spinics.net/lists/bugtraq/msg40951.html CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability Wed, 17 Mar 2010 15:08:35 GMT http://www.spinics.net/lists/bugtraq/msg40951.html http://www.spinics.net/lists/bugtraq/msg40950.html [USN-913-1] libpng vulnerabilities Tue, 16 Mar 2010 23:18:34 GMT http://www.spinics.net/lists/bugtraq/msg40950.html http://www.spinics.net/lists/bugtraq/msg40949.html ZDI-10-030: Apple WebKit CSS run-in Attribute Rendering Remote Code Execution Vulnerability Tue, 16 Mar 2010 22:43:09 GMT http://www.spinics.net/lists/bugtraq/msg40949.html http://www.spinics.net/lists/bugtraq/msg40948.html Last Call for Papers, CONFidence 2010, 25-26May, Last Call for Papers Tue, 16 Mar 2010 21:05:11 GMT http://www.spinics.net/lists/bugtraq/msg40948.html http://www.spinics.net/lists/bugtraq/msg40947.html rPSA-2010-0018-1 bind bind-utils caching-nameserver Tue, 16 Mar 2010 20:47:46 GMT http://www.spinics.net/lists/bugtraq/msg40947.html http://www.spinics.net/lists/bugtraq/msg40946.html [SECURITY] [DSA 2017-1] New pulseaudio packages fix insecure temporary directory Tue, 16 Mar 2010 20:37:38 GMT http://www.spinics.net/lists/bugtraq/msg40946.html http://www.spinics.net/lists/bugtraq/msg40945.html ZDI-10-032: SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability Tue, 16 Mar 2010 19:34:48 GMT http://www.spinics.net/lists/bugtraq/msg40945.html http://www.spinics.net/lists/bugtraq/msg40944.html [USN-912-1] Audio File Library vulnerability Tue, 16 Mar 2010 19:08:13 GMT http://www.spinics.net/lists/bugtraq/msg40944.html http://www.spinics.net/lists/bugtraq/msg40943.html ZDI-10-031: Apple Webkit Blink Event Dangling Pointer Remote Code Execution Vulnerability Tue, 16 Mar 2010 17:36:47 GMT http://www.spinics.net/lists/bugtraq/msg40943.html http://www.spinics.net/lists/bugtraq/msg40942.html SugarCRM Stored XSS vulnerability Tue, 16 Mar 2010 17:26:53 GMT http://www.spinics.net/lists/bugtraq/msg40942.html http://www.spinics.net/lists/bugtraq/msg40941.html rPSA-2010-0022-1 sendmail sendmail-cf Tue, 16 Mar 2010 16:35:02 GMT http://www.spinics.net/lists/bugtraq/msg40941.html http://www.spinics.net/lists/bugtraq/msg40940.html Vulnerability httpdx v1.5.3 Tue, 16 Mar 2010 03:14:34 GMT http://www.spinics.net/lists/bugtraq/msg40940.html http://www.spinics.net/lists/bugtraq/msg40939.html QuickZip 0day detailed write-up Mon, 15 Mar 2010 21:32:20 GMT http://www.spinics.net/lists/bugtraq/msg40939.html http://www.spinics.net/lists/bugtraq/msg40938.html Re: ZoneAlarm Security Circumvention Mon, 15 Mar 2010 21:22:27 GMT http://www.spinics.net/lists/bugtraq/msg40938.html http://www.spinics.net/lists/bugtraq/msg40937.html ZDI-10-029: Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability Mon, 15 Mar 2010 21:14:28 GMT http://www.spinics.net/lists/bugtraq/msg40937.html http://www.spinics.net/lists/bugtraq/msg40936.html New vulnerabilities in Abton Mon, 15 Mar 2010 21:06:06 GMT http://www.spinics.net/lists/bugtraq/msg40936.html http://www.spinics.net/lists/bugtraq/msg40935.html ZoneAlarm 9 (ForceField) Security Disclosure Mon, 15 Mar 2010 20:52:39 GMT http://www.spinics.net/lists/bugtraq/msg40935.html http://www.spinics.net/lists/bugtraq/msg40934.html Multiple DOM-Based XSS in Dojo Toolkit SDK Mon, 15 Mar 2010 20:48:28 GMT http://www.spinics.net/lists/bugtraq/msg40934.html http://www.spinics.net/lists/bugtraq/msg40933.html PlumberCon 10 - Call for Papers Mon, 15 Mar 2010 19:43:51 GMT http://www.spinics.net/lists/bugtraq/msg40933.html http://www.spinics.net/lists/bugtraq/msg40932.html CVE-2010-0188 Exploit Code Mon, 15 Mar 2010 19:28:44 GMT http://www.spinics.net/lists/bugtraq/msg40932.html http://www.spinics.net/lists/bugtraq/msg40931.html ...because you can't get enough of clickjacking Mon, 15 Mar 2010 18:44:16 GMT http://www.spinics.net/lists/bugtraq/msg40931.html http://www.spinics.net/lists/bugtraq/msg40930.html [SECURITY] [DSA 2016-1] New drupal6 packages fix several vulnerabilities Mon, 15 Mar 2010 18:31:54 GMT http://www.spinics.net/lists/bugtraq/msg40930.html http://www.spinics.net/lists/bugtraq/msg40929.html Zigurrat CMS SQL Injection Vulnerability Mon, 15 Mar 2010 18:06:40 GMT http://www.spinics.net/lists/bugtraq/msg40929.html http://www.spinics.net/lists/bugtraq/msg40928.html Pars CMS SQL Injection Vulnerability Mon, 15 Mar 2010 16:54:37 GMT http://www.spinics.net/lists/bugtraq/msg40928.html http://www.spinics.net/lists/bugtraq/msg40927.html Vulnerability in phpAdsNew, OpenAds and OpenX Mon, 15 Mar 2010 16:41:29 GMT http://www.spinics.net/lists/bugtraq/msg40927.html http://www.spinics.net/lists/bugtraq/msg40926.html [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released Mon, 15 Mar 2010 15:51:57 GMT http://www.spinics.net/lists/bugtraq/msg40926.html http://www.spinics.net/lists/bugtraq/msg40925.html Sun Java System Communication Express CSRF via HPP Mon, 15 Mar 2010 15:41:49 GMT http://www.spinics.net/lists/bugtraq/msg40925.html http://www.spinics.net/lists/bugtraq/msg40924.html Ananta Gazelle SQL Injection Vulnerability Mon, 15 Mar 2010 15:30:42 GMT http://www.spinics.net/lists/bugtraq/msg40924.html http://www.spinics.net/lists/bugtraq/msg40923.html [Tool] sqlmap 0.8 released Mon, 15 Mar 2010 15:19:43 GMT http://www.spinics.net/lists/bugtraq/msg40923.html http://www.spinics.net/lists/bugtraq/msg40922.html SyScan'10 CFP Mon, 15 Mar 2010 15:00:50 GMT http://www.spinics.net/lists/bugtraq/msg40922.html http://www.spinics.net/lists/bugtraq/msg40921.html ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability Fri, 12 Mar 2010 22:51:32 GMT http://www.spinics.net/lists/bugtraq/msg40921.html http://www.spinics.net/lists/bugtraq/msg40920.html VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability Fri, 12 Mar 2010 22:37:21 GMT http://www.spinics.net/lists/bugtraq/msg40920.html http://www.spinics.net/lists/bugtraq/msg40919.html ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability Fri, 12 Mar 2010 22:20:42 GMT http://www.spinics.net/lists/bugtraq/msg40919.html http://www.spinics.net/lists/bugtraq/msg40918.html [SECURITY] [DSA 2012-1] New Linux 2.6.26 packages fix several issues Fri, 12 Mar 2010 22:07:23 GMT http://www.spinics.net/lists/bugtraq/msg40918.html http://www.spinics.net/lists/bugtraq/msg40917.html [SECURITY] [DSA 2013-1] New egroupware packages fix several vulnerabilities Fri, 12 Mar 2010 21:55:33 GMT http://www.spinics.net/lists/bugtraq/msg40917.html http://www.spinics.net/lists/bugtraq/msg40916.html iDefense Security Advisory 03.11.10: Multiple Vendor WebKit HTML Element Use After Free Vulnerability Fri, 12 Mar 2010 21:52:50 GMT http://www.spinics.net/lists/bugtraq/msg40916.html http://www.spinics.net/lists/bugtraq/msg40915.html [USN-911-1] MoinMoin vulnerabilities Fri, 12 Mar 2010 21:45:27 GMT http://www.spinics.net/lists/bugtraq/msg40915.html http://www.spinics.net/lists/bugtraq/msg40914.html [ MDVSA-2010:061 ] ncpfs Fri, 12 Mar 2010 21:36:06 GMT http://www.spinics.net/lists/bugtraq/msg40914.html http://www.spinics.net/lists/bugtraq/msg40913.html [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface! Fri, 12 Mar 2010 21:27:37 GMT http://www.spinics.net/lists/bugtraq/msg40913.html http://www.spinics.net/lists/bugtraq/msg40912.html [SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities Fri, 12 Mar 2010 20:59:08 GMT http://www.spinics.net/lists/bugtraq/msg40912.html http://www.spinics.net/lists/bugtraq/msg40911.html Vulnerabilities in Abton Thu, 11 Mar 2010 18:23:51 GMT http://www.spinics.net/lists/bugtraq/msg40911.html http://www.spinics.net/lists/bugtraq/msg40910.html Multiple vulnerabilities in SUPERAntiSpyware and Super Ad Blocker Thu, 11 Mar 2010 18:14:30 GMT http://www.spinics.net/lists/bugtraq/msg40910.html http://www.spinics.net/lists/bugtraq/msg40909.html [USN-909-1] dpkg vulnerability Thu, 11 Mar 2010 18:05:43 GMT http://www.spinics.net/lists/bugtraq/msg40909.html http://www.spinics.net/lists/bugtraq/msg40908.html [SECURITY] [DSA 2011-1] New dpkg packages fix path traversal Thu, 11 Mar 2010 17:45:41 GMT http://www.spinics.net/lists/bugtraq/msg40908.html http://www.spinics.net/lists/bugtraq/msg40907.html [ MDVSA-2010:060 ] squid Thu, 11 Mar 2010 17:35:35 GMT http://www.spinics.net/lists/bugtraq/msg40907.html http://www.spinics.net/lists/bugtraq/msg40906.html Skype URI Handler Input Validation Thu, 11 Mar 2010 17:20:32 GMT http://www.spinics.net/lists/bugtraq/msg40906.html http://www.spinics.net/lists/bugtraq/msg40905.html Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability Wed, 10 Mar 2010 22:59:34 GMT http://www.spinics.net/lists/bugtraq/msg40905.html http://www.spinics.net/lists/bugtraq/msg40904.html CVE-2010-0624: Heap-based buffer overflow in GNU Tar and GNU Cpio Wed, 10 Mar 2010 22:19:35 GMT http://www.spinics.net/lists/bugtraq/msg40904.html http://www.spinics.net/lists/bugtraq/msg40903.html [SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities Wed, 10 Mar 2010 22:09:12 GMT http://www.spinics.net/lists/bugtraq/msg40903.html http://www.spinics.net/lists/bugtraq/msg40902.html iDefense Security Advisory 03.09.10: Microsoft Excel MDXTUPLE Record Heap Overflow Vulnerability Wed, 10 Mar 2010 21:31:07 GMT http://www.spinics.net/lists/bugtraq/msg40902.html http://www.spinics.net/lists/bugtraq/msg40901.html [SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting Wed, 10 Mar 2010 21:15:20 GMT http://www.spinics.net/lists/bugtraq/msg40901.html http://www.spinics.net/lists/bugtraq/msg40900.html [USN-908-1] Apache vulnerabilities Wed, 10 Mar 2010 21:08:37 GMT http://www.spinics.net/lists/bugtraq/msg40900.html http://www.spinics.net/lists/bugtraq/msg40899.html Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability Wed, 10 Mar 2010 20:54:02 GMT http://www.spinics.net/lists/bugtraq/msg40899.html http://www.spinics.net/lists/bugtraq/msg40898.html [ MDVSA-2010:059 ] virtualbox Wed, 10 Mar 2010 20:44:35 GMT http://www.spinics.net/lists/bugtraq/msg40898.html http://www.spinics.net/lists/bugtraq/msg40897.html iDefense Security Advisory 03.09.10: Microsoft Excel MDXSET Record Heap Overflow Vulnerability Wed, 10 Mar 2010 20:29:40 GMT http://www.spinics.net/lists/bugtraq/msg40897.html http://www.spinics.net/lists/bugtraq/msg40896.html Secunia Research: Employee Timeclock Software Backup Information Disclosure Wed, 10 Mar 2010 20:16:55 GMT http://www.spinics.net/lists/bugtraq/msg40896.html http://www.spinics.net/lists/bugtraq/msg40895.html iDefense Security Advisory 03.09.10: Microsoft Excel Sheet Object Type Confusion Vulnerability Wed, 10 Mar 2010 19:20:13 GMT http://www.spinics.net/lists/bugtraq/msg40895.html http://www.spinics.net/lists/bugtraq/msg40894.html Vulnerabilities in Hydra Engine Wed, 10 Mar 2010 19:00:45 GMT http://www.spinics.net/lists/bugtraq/msg40894.html http://www.spinics.net/lists/bugtraq/msg40893.html VUPEN Security Research - Microsoft Office Excel Record Processing Code Execution Vulnerability Wed, 10 Mar 2010 18:44:15 GMT http://www.spinics.net/lists/bugtraq/msg40893.html http://www.spinics.net/lists/bugtraq/msg40892.html Secunia Research: Employee Timeclock Software "mysqldump" Password Disclosure Wed, 10 Mar 2010 18:32:25 GMT http://www.spinics.net/lists/bugtraq/msg40892.html http://www.spinics.net/lists/bugtraq/msg40891.html [ MDVSA-2010:058 ] php Wed, 10 Mar 2010 18:15:07 GMT http://www.spinics.net/lists/bugtraq/msg40891.html http://www.spinics.net/lists/bugtraq/msg40890.html CORE-2009-1103: Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability Wed, 10 Mar 2010 17:52:51 GMT http://www.spinics.net/lists/bugtraq/msg40890.html http://www.spinics.net/lists/bugtraq/msg40889.html CORE-2009-0813: Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap Overflow Wed, 10 Mar 2010 17:33:23 GMT http://www.spinics.net/lists/bugtraq/msg40889.html http://www.spinics.net/lists/bugtraq/msg40888.html Secunia Research: Employee Timeclock Software SQL Injection Vulnerabilities Wed, 10 Mar 2010 17:27:18 GMT http://www.spinics.net/lists/bugtraq/msg40888.html http://www.spinics.net/lists/bugtraq/msg40887.html iDefense Security Advisory 03.09.10: Microsoft Excel FNGROUPNAME Record Uninitialized Memory Vulnerability Wed, 10 Mar 2010 17:15:02 GMT http://www.spinics.net/lists/bugtraq/msg40887.html http://www.spinics.net/lists/bugtraq/msg40886.html [xss] a xss on "threadid" parameter in BBSMAX Wed, 10 Mar 2010 17:07:40 GMT http://www.spinics.net/lists/bugtraq/msg40886.html http://www.spinics.net/lists/bugtraq/msg40885.html ZDI-10-026: Hewlett-Packard OVPI helpmanager Servlet Remote Code Execution Vulnerability Wed, 10 Mar 2010 16:50:53 GMT http://www.spinics.net/lists/bugtraq/msg40885.html