Securiteam Exploits/Hacking Tools Newsletter (thread)

[NT] Winamp Ultravox Streaming Metadata Parsing Buffer Overflows, SecuriTeam, 2008/01/31
[NEWS] Oracle Ultra Search Excessive Privileges, SecuriTeam, 2008/01/31
[UNIX] Cisco Wireless Control System Tomcat mod_jk.so Vulnerability, SecuriTeam, 2008/01/30
[NEWS] GE Fanuc Cimplicity Heap Overflow, SecuriTeam, 2008/01/29
[NEWS] GE Fanuc Proficy Information Portal Vulnerabilities, SecuriTeam, 2008/01/29
[TOOL] Browser DOM Checker, SecuriTeam, 2008/01/29
[NEWS] Firebird DB Server Memory Corruption, SecuriTeam, 2008/01/29
[UNIX] eTicket 'index.php' Cross Site Scripting and Path Disclosure Vulnerabilities, SecuriTeam, 2008/01/29
[NT] BitDefender Update Server Unauthorized File Access Vulnerability, SecuriTeam, 2008/01/26
[NEWS] 8e6 Technologies R3000 Internet Filter Bypass by Request Split, SecuriTeam, 2008/01/26
[NEWS] SSH service at Dell DRAC4 Denial of Service (Mocana), SecuriTeam, 2008/01/25
[UNIX] IBM AIX pioout BSS Buffer Overflow Vulnerability, SecuriTeam, 2008/01/25
[TOOL] Pass-The-Hash Toolkit, SecuriTeam, 2008/01/25
[NT] IBM Tivoli PMfOSD HTTP Request Method Buffer Overflow Vulnerability, SecuriTeam, 2008/01/25
[TOOL] SQLninja - SQL Injection Toolkit, SecuriTeam, 2008/01/25
[UNIX] PHP cURL Safe_mode Bypass, SecuriTeam, 2008/01/24
[NEWS] Default Passwords in the Cisco Application Velocity System, SecuriTeam, 2008/01/24
[NEWS] Cisco PIX and ASA Time-to-Live Vulnerability, SecuriTeam, 2008/01/24
[UNIX] SDL_Image GIF Handling Buffer Overflow, SecuriTeam, 2008/01/23
[NEWS] Firefox chrome: URL Handling Directory Traversal, SecuriTeam, 2008/01/23
[NT] MiniWeb Directory Traversal and Buffer Overflow, SecuriTeam, 2008/01/21
[NEWS] Belkin Wireless G Plus MIMO Router F5D9230-4 Authentication Bypass Vulnerability, SecuriTeam, 2008/01/21
[NEWS] Common DNS Misconfiguration can Lead to "same Site" Scripting, SecuriTeam, 2008/01/20
[NT] Citrix Presentation Server IMA Service Heap Overflow Vulnerability, SecuriTeam, 2008/01/20
[UNIX] Multiple Vendor X Server Vulnerabilities (XFree86-Misc, EVI, MIT-SHM, TOG-CUP, XInput), SecuriTeam, 2008/01/20
[NT] SocksCap Hostname Resolution Stack Overflow, SecuriTeam, 2008/01/20
[NT] CORE FORCE Kernel Buffer Overflow, SecuriTeam, 2008/01/20
[NT] Cisco Call Manager CTLProvider Heap Overflow Vulnerability, SecuriTeam, 2008/01/17
[NT] BitTorrent and UTorrent Peers Static Overflow, SecuriTeam, 2008/01/17
[NEWS] Cisco Unified Communications Manager CTL Provider Heap Overflow, SecuriTeam, 2008/01/16
[NT] Apple QuickTime Macintosh Resource Processing Heap Corruption Vulnerability, SecuriTeam, 2008/01/16
[NT] TIBCO SmartSockets RTServer Multiple Untrusted Loop Bounds Vulnerabilities, SecuriTeam, 2008/01/16
[NT] TIBCO SmartSockets RTserver Multiple Untrusted Pointer Offset Vulnerabilities, SecuriTeam, 2008/01/16
[NT] TIBCO SmartSockets RTServer Multiple Untrusted Pointer Vulnerabilities, SecuriTeam, 2008/01/16
[NT] TIBCO SmartSockets RTserver Heap Overflow Vulnerability, SecuriTeam, 2008/01/15
[NEWS] Defeating Math Antispam Protection Plugin for Wordpress, SecuriTeam, 2008/01/15
[TOOL] Rainmaker - Command Line Pseudo Random Number Generator, SecuriTeam, 2008/01/15
[EXPL] Linux Kernel IPv6 Jumbo Bug, SecuriTeam, 2008/01/15
[NT] Quicktime Player HTTP Error Message Buffer Overflow, SecuriTeam, 2008/01/15
[NT] IBM Tivoli Storage Manager Express Backup Server Heap Overflow Vulnerability, SecuriTeam, 2008/01/15
[TOOL] SQID - SQL Injection Digger, SecuriTeam, 2008/01/14
[UNIX] Apache mod_proxy_ftp Undefined Charset UTF-7 XSS Vulnerability, SecuriTeam, 2008/01/14
[UNIX] Apache2 mod_proxy_balancer CSRF, XSS, Memory Corruption and DoS Vulnerability, SecuriTeam, 2008/01/14
[TOOL] Nipper - Network Infrastructure Parser, SecuriTeam, 2008/01/13
[NT] Quicktime Player Buffer Overflow (LCD, RTSP), SecuriTeam, 2008/01/11
[NT] Sun J2RE DoS Issue (RFC2397), SecuriTeam, 2008/01/10
[NEWS] McAfee E-Business Server Preauth Code DoS, SecuriTeam, 2008/01/10
[TOOL] PortBunny - Linux-kernel-based Port Scanner, SecuriTeam, 2008/01/10
[NEWS] SAP MaxDB Pre-Auth Command Execution, SecuriTeam, 2008/01/10
[NT] Novell NetWare Client nicm.sys Local Privilege Escalation VulnerabilityNovell NetWare Client nicm.sys Local Privilege Escalation Vulnerability, SecuriTeam, 2008/01/10
[NT] Vulnerability in LSASS Allows Local Elevation of Privilege (MS08-002), SecuriTeam, 2008/01/09
[NT] Vulnerabilities in Windows TCP/IP Allows Code Execution (MS08-001), SecuriTeam, 2008/01/09
[EXPL] ClamAV MEW PE Vulnerability (Exploit), SecuriTeam, 2008/01/08
[NT] SynCE Command Injection, SecuriTeam, 2008/01/08
[NT] Motorola netOctopus Agent MSR Write Privilege Escalation Vulnerability, SecuriTeam, 2008/01/08
[UNIX] PostgreSQL Cumulative Security Release (2007-01-07), SecuriTeam, 2008/01/07
[REVS] Exploiting WDM Audio Drivers, SecuriTeam, 2008/01/07
[NT] Novell ZENworks Endpoint Security Management Local Privilege Escalation Vulnerability, SecuriTeam, 2008/01/05
[NEWS] YaSSL Multiple Vulnerabilities (MySQL), SecuriTeam, 2008/01/04
[NEWS] XSS Vulnerabilities in Common Shockwave Flash Files, SecuriTeam, 2008/01/03
[NT] Georgia SoftWorks SSH2 Server Multiple Vulnerabilities, SecuriTeam, 2008/01/03
[UNIX] SIP Channel Driver BYE Vulnerability, SecuriTeam, 2008/01/03
[UNIX] libnemesi Multiple Vulnerabilities, SecuriTeam, 2008/01/02
[NEWS] ClamAV Multiple Vulnerabilities (Temporary Files, UUEncode), SecuriTeam, 2008/01/02
[NT] CoolPlayer OGG Tags Buffer Overflow, SecuriTeam, 2008/01/02