Full Disclosure (date)
March 31, 2008
- Re: [Full-disclosure] Metasploit Framework 4.0 / PwnCraft RTS Game, Elazar Broad, 23:12
- Re: [Full-disclosure] CAU-2008-0001 - Slowly Closing Door Race Condition, Razi Shaban, 23:01
- Re: [Full-disclosure] CAU-2008-0001 - Slowly Closing Door Race Condition, evilrabbi, 22:40
- Re: [Full-disclosure] UN against Open Source. Linux is a threat?, S/U/N, 18:53
- [Full-disclosure] UN against Open Source. Linux is a threat?, Valery Marchuk, 18:21
- [Full-disclosure] HTTP over X.509 - Office 2007, Alexander Klink, 17:50
- [Full-disclosure] HTTP over X.509 - Windows Live Mail, Alexander Klink, 17:50
- [Full-disclosure] HTTP over X.509 - Microsoft Outlook, Alexander Klink, 17:50
- [Full-disclosure] Metasploit Framework 4.0 / PwnCraft RTS Game, METASPLOIT CORPORATION, 14:34
- Re: [Full-disclosure] CAU-2008-0001 - Slowly Closing Door Race Condition, Nate McFeters, 14:02
- [Full-disclosure] CAU-2008-0001 - Slowly Closing Door Race Condition, I)ruid, 13:52
- [Full-disclosure] iDefense Security Advisory 03.31.08: Macrovision InstallShield InstallScript One-Click Install Untrusted Library Loading Vulnerability, iDefense Labs, 07:40
- rPSA-2008-0132-1 lighttpd, rPath Update Announcements, 06:47
- [Full-disclosure] ProxyStrike - Active Web Application Proxy, Christian Martorella, 06:46
- [Full-disclosure] Directory traversal in 2X ThinClientServer v5.0_sp1-r3497, Luigi Auriemma, 04:31
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Jason, 02:36
March 30, 2008
- Re: [Full-disclosure] London DEFCON meet - DC4420 - New Venue - Wednesday 2nd April, 2008, Valdis . Kletnieks, 22:16
- Re: [Full-disclosure] London DEFCON meet - DC4420 - New Venue - Wednesday 2nd April, 2008, n3td3v, 22:05
- [Full-disclosure] London DEFCON meet - DC4420 - New Venue - Wednesday 2nd April, 2008, Major Malfunction, 19:40
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Valdis . Kletnieks, 11:36
- Re: [Full-disclosure] Free Iraq, Jim Popovitch, 05:25
- Re: [Full-disclosure] Free Iraq, vashnukad vashnukad, 04:13
- [Full-disclosure] Kiss Server v1.2, vashnukad vashnukad, 04:03
March 29, 2008
- [Full-disclosure] [TKADV2008-002] avast! 4.7 aavmker4.sys Kernel Memory Corruption, Tobias Klein, 21:33
- [Full-disclosure] [SECURITY] [DSA 1535-1] New iceweasel packages fix several vulnerabilities, Moritz Muehlenhoff, 21:02
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Ureleet, 11:59
- Re: [Full-disclosure] What's going on about Pangolin, poo, 09:14
- Re: [Full-disclosure] the hysteria on pangolin.exe, poo, 09:03
- [Full-disclosure] [SECURITY] [DSA 1531-2] New policyd-weight packages fix insecure temporary files, Thijs Kinkhorst, 09:03
- [Full-disclosure] Immunity Debugger v1.5, Nicolas Waisman, 09:03
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, n3td3v, 01:52
- Re: [Full-disclosure] Fwd: What's going on about Pangolin, josh, 01:52
- Re: [Full-disclosure] Fwd: What's going on about Pangolin, Tremaine Lea, 01:41
March 28, 2008
- Re: [Full-disclosure] Fwd: What's going on about Pangolin, Tim Kunschke, 22:04
- Re: [Full-disclosure] Fwd: What's going on about Pangolin, zwell.nosec, 18:29
- [Full-disclosure] VMSA-2008-0006 Updated libxml2 service console package, VMware Security team, 09:17
- [Full-disclosure] Fwd: What's going on about Pangolin, Nemes, 09:06
- [Full-disclosure] [ MDVSA-2008:080 ] - Updated Firefox packages fix multiple vulnerabilities, security, 08:45
- Re: [Full-disclosure] Free Beer, Razi Shaban, 06:08
- Re: [Full-disclosure] Free Beer, n3td3v, 05:57
- Re: [Full-disclosure] Free Beer, sub, 05:25
- Re: [Full-disclosure] Free Beer, jeroen, 05:14
- Re: [Full-disclosure] Free Beer, don bailey, 04:00
- Re: [Full-disclosure] Free Beer, Fetch, Brandon, 03:38
- Re: [Full-disclosure] What's going on about Pangolin, Tremaine Lea, 02:01
- Re: [Full-disclosure] What's going on about Pangolin, josh, 01:17
- Re: [Full-disclosure] What's going on about Pangolin, Andreas Selvicki, 01:17
March 27, 2008
- [Full-disclosure] [SECURITY] [DSA 1534-1] New iceape packages fix several vulnerabilities, Moritz Muehlenhoff, 22:29
- [Full-disclosure] CA Multiple Products DSM ListCtrl ActiveX Control Buffer Overflow Vulnerability, Williams, James K, 22:08
- Re: [Full-disclosure] Free Iraq, M.B.Jr., 21:27
- Re: [Full-disclosure] What's going on about Pangolin, zwell.nosec, 18:00
- Re: [Full-disclosure] What's going on about Pangolin, cocoruder., 17:49
- Re: [Full-disclosure] What's going on about Pangolin, xor_, 17:49
- [Full-disclosure] RE: [Full-disclosure]Re: [Full-disclosure] 答复: 答复: [Full-disclosure] The reason why "Pangolin is backdoor", zwell.nosec, 17:17
- Re: [Full-disclosure] Free Tibet, free Iraq, free whatever ..., security concern, 16:35
- Re: [Full-disclosure] Free Iraq, b., 16:35
- Re: [Full-disclosure] Free Tibet, free Iraq, free whatever ..., security concern, 16:35
- [Full-disclosure] Massive IFRAME SEO Poisoning Attack Continuing, Dancho Danchev, 16:35
- [Full-disclosure] [SECURITY] [DSA 1533-1] New exiftags packages fix several vulnerabilities, Devin Carraway, 16:25
- [Full-disclosure] The result why "pangolin is backdoor", zwell, 16:25
- [Full-disclosure] [securityreason] *BSD libc (strfmon) Multiple vulnerabilities, Maksymilian Arciemowicz, 16:25
- [Full-disclosure] What's going on about Pangolin, zwell, 16:14
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Luther D. Anderson, 14:21
- [Full-disclosure] Re: [Full-disclosure] 答复: 答复: [Full-disclosure] The reason why "Pangolin is backdoor", taneja . security, 14:10
- Re: [Full-disclosure] Free Iraq, Throwaway1@columbus.rr.com, 12:16
- [Full-disclosure] Free Beer, Larry Seltzer, 10:12
- Re: [Full-disclosure] Free Iraq, Bill Stout, 09:00
- Re: [Full-disclosure] Free Iraq, Dennis Henderson, 08:39
- Re: [Full-disclosure] Free Iraq, Razi Shaban, 08:39
- [Full-disclosure] [ MDVSA-2008:079 ] - Updated sarg packages fix multiple vulnerabilities, security, 06:52
- Re: [Full-disclosure] Free Iraq, n3td3v, 06:52
- [Full-disclosure] [SECURITY] [DSA 1532-1] New xulrunner packages fix several vulnerabilities, Moritz Muehlenhoff, 06:42
- Re: [Full-disclosure] Free Tibet, free Iraq, free whatever ..., josh, 05:16
- Re: [Full-disclosure] Free Tibet, free Iraq, free whatever ..., security concern, 03:51
- Re: [Full-disclosure] Free Iraq, M.B.Jr., 03:40
- rPSA-2008-0128-1 firefox, rPath Update Announcements, 03:19
- Re: [Full-disclosure] Free Iraq, Valdis . Kletnieks, 02:58
- Re: [Full-disclosure] Free Iraq, Garrett M. Groff, 02:47
- Re: [Full-disclosure] Free Iraq, Razi Shaban, 02:15
- Re: [Full-disclosure] Free Iraq, Garrett M. Groff, 02:04
- Re: [Full-disclosure] Free Iraq, davidrook, 02:03
- Re: [Full-disclosure] Free Iraq, infolookup, 02:03
- Re: [Full-disclosure] Free Iraq, Garrett M. Groff, 01:53
- Re: [Full-disclosure] Free Iraq, news, 01:53
- Re: [Full-disclosure] Free Iraq, Paul Schmehl, 01:42
- Re: [Full-disclosure] Free Iraq, Garrett M. Groff, 01:42
- Re: [Full-disclosure] Free Iraq, Razi Shaban, 01:42
- Re: [Full-disclosure] Free Iraq, Peter Dawson, 01:09
- Re: [Full-disclosure] Free Iraq.., Razi Shaban, 00:58
- Re: [Full-disclosure] Free Iraq, Razi Shaban, 00:58
- Re: [Full-disclosure] Free Iraq.., Rankin, James R, 00:47
- Re: [Full-disclosure] Free Iraq, josh, 00:35
- Re: [Full-disclosure] Free Iraq, Razi Shaban, 00:24
- Re: [Full-disclosure] Free Iraq, I. D., 00:13
March 26, 2008
- [Full-disclosure] the hysteria on pangolin.exe, LIUDIEYU dot COM, 23:51
- Re: [Full-disclosure] Free Iraq, Handrix, 23:50
- Re: [Full-disclosure] Free Iraq.., Garrett M. Groff, 23:19
- Re: [Full-disclosure] Free Iraq, Garrett M. Groff, 23:08
- [Full-disclosure] Re: 答复: [Full-disclosure] The reason why "Pangolin is backdoor", Razi Shaban, 22:36
- [Full-disclosure] 答复: 答复: [Full-disclosure] The reason why "Pangolin is backdoor", zwell.nosec, 22:36
- Re: [Full-disclosure] The reason why "Pangolin is backdoor", zwell.nosec, 22:36
- [Full-disclosure] Re: [Full-disclosure] 答复: [Full-disclosure] The reason why "Pangolin is backdoor", Russ McRee, 22:25
- [Full-disclosure] 答复: [Full-disclosure] The reason why "Pangolin is backdoor", zwell.nosec, 22:14
- Re: [Full-disclosure] The reason why "Pangolin is backdoor", Razi Shaban, 22:14
- [Full-disclosure] The reason why "Pangolin is backdoor", zwell.nosec, 22:04
- [Full-disclosure] [SECURITY] [DSA 1529-1] New Firebird packages fix several vulnerabilities, Moritz Muehlenhoff, 20:40
- Re: [Full-disclosure] Free Iraq.., Rankin, James R, 20:09
- Re: [Full-disclosure] Free Iraq, josh, 11:56
- Re: [Full-disclosure] Free Tibet.., Eduardo Tongson, 11:46
- [Full-disclosure] [ MDVSA-2008:078 ] - Updated openssh packages fix X connection hijacking, security, 10:14
- Re: [Full-disclosure] Free Iraq, Throwaway1@columbus.rr.com, 09:02
- [Full-disclosure] [ MDVSA-2008:077 ] - Updated perl-Tk packages fix GIF processing vulnerability, security, 08:51
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Micheal Cottingham, 08:10
- [Full-disclosure] [USN-596-1] Ruby vulnerabilities, Kees Cook, 06:58
- [Full-disclosure] [USN-595-1] SDL_image vulnerabilities, Kees Cook, 06:58
- [Full-disclosure] [USN-594-1] libnet-dns-perl vulnerability, Kees Cook, 06:58
- [Full-disclosure] [USN-593-1] Dovecot vulnerabilities, Kees Cook, 06:47
- [Full-disclosure] [ MDVSA-2008:076 ] - Updated wml packages fix symlink vulnerabilities, security, 05:33
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Russ McRee, 05:22
- [Full-disclosure] Multiple vulnerabilities in solidDB 06.00.1018, Luigi Auriemma, 05:11
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Tim Kunschke, 04:08
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Micheal Cottingham, 03:57
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Tim Kunschke, 03:25
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQL injector you've ever seen, Tim Kunschke, 03:25
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Ricardo Giorgi, 03:25
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, Micheal Cottingham, 03:14
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector you've ever seen, josh, 02:43
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQL injector you've ever seen, davidrook, 02:22
- [Full-disclosure] ZDI-08-013: Novell eDirectory for Linux Stack Overflow, zdi-disclosures, 02:22
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQL injector you've ever seen, Razi Shaban, 01:40
- Re: [Full-disclosure] Pangolin v1.2.590 - The best SQL injector you've ever seen, A. Ramos, 01:28
- [Full-disclosure] Cisco Security Advisory: Cisco IOS User Datagram Protocol Delivery Issue For IPv4/IPv6 Dual-stack Routers, Cisco Systems Product Security Incident Response Team, 01:18
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak, Cisco Systems Product Security Incident Response Team, 01:18
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team, 01:17
- [Full-disclosure] Cisco Security Advisory: Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720, Cisco Systems Product Security Incident Response Team, 01:07
- [Full-disclosure] Pangolin v1.2.590 - The best SQL injector you've ever seen, zwell, 00:45
- [Full-disclosure] [USN-592-1] Firefox vulnerabilities, Jamie Strandboge, 00:35
- [Full-disclosure] Free Iraq.., n3td3v, 00:35
- Re: [Full-disclosure] Free Tibet.., Robert Smits, 00:24
- Re: [Full-disclosure] Free Tibet.., Razi Shaban, 00:13
March 25, 2008
- Re: [Full-disclosure] Free Tibet.., Adam Hunt, 21:56
- Re: [Full-disclosure] Jan Kruska, KJK::Hyperion, 20:34
- Re: [Full-disclosure] Free Tibet.., Throwaway1@columbus.rr.com, 20:02
- Re: [Full-disclosure] Native American Indians Reassert Control Over Tribal Lands, Anja Hofmann, 17:57
- Re: [Full-disclosure] Static Injection into Commercial Lines - DoS on Vonage - Current Status, Anja Hofmann, 17:26
- Re: [Full-disclosure] Static Injection into Commercial Lines - DoSon Vonage - Current Status, Philip Fagan, 16:54
- [Full-disclosure] Jan Kruska, Guy Fawkes, 16:43
- [Full-disclosure] Native American Indians Reassert Control Over Tribal Lands -- Re: Free Tibet.., Jon O., 16:43
- Re: [Full-disclosure] Free Tibet.., Adam Hunt, 15:50
- Re: [Full-disclosure] Free Tibet.., Mr.Rain, 15:39
- Re: [Full-disclosure] Free Tibet.., www417, 14:26
- Re: [Full-disclosure] Free Tibet.., Jun Zhao, 14:05
- Re: [Full-disclosure] Free Tibet.., Sowhat, 12:41
- Re: [Full-disclosure] Free Tibet.., Anders B Jansson, 08:00
- Re: [Full-disclosure] Free Tibet.., Peter Dawson, 07:50
- Re: [Full-disclosure] Free Tibet.., Gautam, 07:28
- Re: [Full-disclosure] Free Tibet.., Byron Sonne, 06:46
- [Full-disclosure] CORE-2007-1212: SILC pkcs_decode buffer overflow, Core Security Technologies Advisories, 05:43
- rPSA-2008-0123-1 ruby, rPath Update Announcements, 03:22
- rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server, rPath Update Announcements, 02:50
- Re: [Full-disclosure] Free Tibet.., Garrett M. Groff, 02:19
- [Full-disclosure] CVE-2008-0073 - MPlayer and VLC "sdpplin_parse()" Array Indexing Vulnerability, Guido Landi, 02:07
- Re: [Full-disclosure] Static Injection into Commercial Lines - DoS on Vonage - Current Status, Kern, 01:36
- [Full-disclosure] Static Injection into Commercial Lines - DoS on Vonage - Current Status, Jan Clairmont, 00:32
March 24, 2008
- Re: [Full-disclosure] Free Tibet.., Tremaine Lea, 22:56
- Re: [Full-disclosure] Free Tibet.., Dmitry, 22:56
- Re: [Full-disclosure] Free Tibet.., Tremaine Lea, 22:56
- Re: [Full-disclosure] Free Tibet.., Kern, 22:56
- Re: [Full-disclosure] Free Tibet.., Tremaine Lea, 22:56
- Re: [Full-disclosure] Free Tibet.., Bob Bruen, 22:55
- Re: [Full-disclosure] sellings, Ozan Ozkara, 22:55
- [Full-disclosure] sellings, Stephen Flaw, 22:55
- Re: [Full-disclosure] Fwd: Offensive Security Backtrack Training, Tonu Samuel, 22:54
- Re: [Full-disclosure] Free Tibet.., Jerome Jar, 22:54
- [Full-disclosure] Free Tibet.., Gerald Maggro, 21:31
- [Full-disclosure] [ GLSA 200803-32 ] Wireshark: Denial of Service, Pierre-Yves Rofes, 17:44
- [Full-disclosure] [USN-590-1] bzip2 vulnerability, Kees Cook, 17:12
- [Full-disclosure] [ GLSA 200803-31 ] MIT Kerberos 5: Multiple vulnerabilities, Robert Buchholz, 15:59
- [Full-disclosure] [USN-591-1] libicu vulnerabilities, Jamie Strandboge, 15:26
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Abe Getchell, 12:36
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 12:14
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 12:13
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 12:02
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, John C. A. Bambenek, GCIH, CISSP, 12:02
- [Full-disclosure] Fwd: Offensive Security Backtrack Training, n3td3v, 12:01
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, John C. A. Bambenek, GCIH, CISSP, 11:51
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 11:51
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, John C. A. Bambenek, GCIH, CISSP, 11:50
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 11:40
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 11:39
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 11:39
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, John C. A. Bambenek, GCIH, CISSP, 11:29
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Larry Seltzer, 11:28
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Valdis . Kletnieks, 11:17
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, John C. A. Bambenek, GCIH, CISSP, 11:17
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Steven Rakick, 11:17
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 10:45
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Pedro Hugo, 07:59
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 07:38
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Gorn, 07:28
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 07:07
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Gorn, 06:36
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 05:44
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 05:33
March 23, 2008
- [Full-disclosure] ircu/snircd remote crash vulnerability, Chris Porter, 22:13
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Steven Rakick, 21:42
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Larry Seltzer, 21:21
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Kurt Buff, 21:11
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 21:11
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Larry Seltzer, 20:29
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 20:29
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 20:19
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Steven Rakick, 19:48
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Larry Seltzer, 19:48
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 19:06
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, reepex, 18:56
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Petko D. Petkov, 18:45
- [Full-disclosure] [ MDVSA-2008:075 ] - Updated bzip2 packages fix denial of service vulnerability, security, 18:14
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Kern, 13:16
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, fabio, 13:06
- Re: [Full-disclosure] OpenID. The future of authentication on the web?, Paul Schmehl, 12:14
- [Full-disclosure] OpenID. The future of authentication on the web?, Steven Rakick, 08:49
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, taneja . security, 07:07
March 22, 2008
- [Full-disclosure] perl underground and tssci security, reepex, 18:29
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, n3td3v, 17:48
- [Full-disclosure] Google SoC 2008: Security Projects, jkouns, 15:31
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, phunkbrother, 15:31
- rPSA-2008-0118-1 bzip2, rPath Update Announcements, 13:56
- rPSA-2008-0116-1 unzip, rPath Update Announcements, 13:35
- [Full-disclosure] Fwd: FW: *** SPAM [7.2] *** donates, Philip Fagan, 13:24
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, scott, 02:28
March 21, 2008
- [Full-disclosure] Buffer-overflow in ASUS Remote Console 2.0.0.24, Luigi Auriemma, 18:44
- [Full-disclosure] worried exposed on IRC again, Mister Swole, 15:37
- [Full-disclosure] (no subject), Mister Swole, 15:37
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, DUDE DUDERINO, 14:14
- [Full-disclosure] {securityreason.com}PHP 5 *printf() - Integer Overflow, Maksymilian Arciemowicz, 14:04
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, n3td3v, 12:08
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Kern, 11:47
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Kurt Dillard, 11:25
- Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Paul Schmehl, 11:05
- [Full-disclosure] sans handler gives out n3td3v e-mail to public, n3td3v, 08:30
- Re: [Full-disclosure] When standards attack..., Florian Weimer, 07:59
- [Full-disclosure] [MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling., Minded Security Research Labs, 07:38
- [Full-disclosure] [MSA01240108] IE7 Transfer-Encoding: chunked allows Request Splitting/Smuggling., Minded Security Research Labs, 07:38
- [Full-disclosure] [INFIGO-2008-03-07]: Surgemail 38k4 IMAP server remote stack overflow, infocus, 05:24
- [Full-disclosure] CanSecWest 2008 PWN2OWN - Mar 26-28, Dragos Ruiu, 00:06
March 20, 2008
- [Full-disclosure] [ MDVSA-2008:074 ] - Updated audacity package fixes insecure temporary directory creation, security, 19:03
- [Full-disclosure] [ MDVSA-2008:073 ] - Updated perl-Net-DNS packages fix DoS vulnerability, security, 17:06
- [Full-disclosure] [USN-589-1] unzip vulnerability, Kees Cook, 17:06
- [Full-disclosure] Multiple heap overflows in xine-lib 1.1.11, Luigi Auriemma, 16:45
- [Full-disclosure] (no subject), andrius . vysnia, 16:34
- [Full-disclosure] [SECURITY] [DSA 1522-1] New xwine packages fix several vulnerabilities, Steve Kemp, 16:02
- [Full-disclosure] [ MDVSA-2008:072 ] - Updated kernel packages fix vulnerability, security, 14:04
- Re: [Full-disclosure] When standards attack..., KJK::Hyperion, 13:53
- Re: [Full-disclosure] agile hacking?, Garrett M. Groff, 11:40
- [Full-disclosure] Note about recently publicized CA BrightStor ActiveX exploit code, Williams, James K, 10:47
- Re: [Full-disclosure] volatile hacking?, antani . tapioco, 10:36
- [Full-disclosure] When standards attack..., H D Moore, 10:04
- Re: [Full-disclosure] volatile hacking?, Michael Krymson, 09:42
- Re: [Full-disclosure] Vonage denial of service through noise packet injection., Kern, 09:42
- Re: [Full-disclosure] agile hacking?, Kern, 09:20
- [Full-disclosure] Vonage denial of service through noise packet injection., Jan Clairmont, 09:20
- Re: [Full-disclosure] agile hacking?, nnp, 08:37
- [Full-disclosure] [USN-588-1] MySQL vulnerabilities, Jamie Strandboge, 08:37
- [Full-disclosure] [SECURITY] [DSA 1525-1] New asterisk packages fix several vulnerabilities, Moritz Muehlenhoff, 07:54
- [Full-disclosure] Release of webshag 1.00!, webshag, 05:49
- [Full-disclosure] Adobe Flash CS3 Professional FLA File Parsing Multiple Local Code Execute Vulnerabilities, cocoruder, 00:49
March 19, 2008
- [Full-disclosure] rPSA-2008-0112-1 krb5 krb5-server krb5-services krb5-test krb5-workstation, rPath Update Announcements, 23:56
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, Philip Fagan, 23:56
- [Full-disclosure] [SECURITY] [DSA 1506-2] New iceape packages fix regression, Moritz Muehlenhoff, 22:01
- [Full-disclosure] [ GLSA 200803-30 ] ssl-cert eclass: Certificate disclosure, Robert Buchholz, 21:40
- Re: [Full-disclosure] volatile hacking?, antani . tapioco, 20:38
- [Full-disclosure] Insecure by design: Cisco product shipped with backdoor, Ivan ., 19:57
- [Full-disclosure] [ GLSA 200803-29 ] ViewVC: Multiple vulnerabilities, Tobias Heinlein, 19:15
- Re: [Full-disclosure] agile hacking?, Fionnbharr, 19:04
- [Full-disclosure] [ MDVSA-2008:071 ] - Updated Kerberos packages fix multiple vulnerabilities, security, 18:32
- [Full-disclosure] [ MDVSA-2008:070 ] - Updated Kerberos packages fix multiple vulnerabilities, security, 18:32
- [Full-disclosure] [ MDVSA-2008:069 ] - Updated Kerberos packages fix multiple vulnerabilities, security, 18:22
- [Full-disclosure] [ GLSA 200803-28 ] OpenLDAP: Denial of Service vulnerabilities, Pierre-Yves Rofes, 18:22
- [Full-disclosure] [MU-200803-01] Multiple buffer overflows in Asterisk, noreply, 18:01
- Re: [Full-disclosure] [full disclosure] agile hacking?, Michael Krymson, 17:18
- Re: [Full-disclosure] [full disclosure] agile hacking?, coderman, 17:07
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, coderman, 16:36
- Re: [Full-disclosure] [full disclosure] agile hacking?, reepex, 16:04
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, coderman, 16:04
- Re: [Full-disclosure] [full disclosure] agile hacking?, Valdis . Kletnieks, 15:42
- Re: [Full-disclosure] agile hacking?, reepex, 15:20
- Re: [Full-disclosure] agile hacking?, reepex, 15:20
- Re: [Full-disclosure] [full disclosure] agile hacking?, reepex, 15:09
- Re: [Full-disclosure] [full disclosure] agile hacking?, Valdis . Kletnieks, 14:57
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, n3td3v, 14:25
- Re: [Full-disclosure] [full disclosure] agile hacking?, Petko D. Petkov, 14:25
- Re: [Full-disclosure] [full disclosure] agile hacking?, don bailey, 14:12
- Re: [Full-disclosure] [full disclosure] agile hacking?, don bailey, 13:40
- Re: [Full-disclosure] [full disclosure] agile hacking?, Petko D. Petkov, 13:17
- Re: [Full-disclosure] [full disclosure] agile hacking?, Michael Krymson, 11:52
- [Full-disclosure] Hacker Space Fest - Call For Participation (CFP) - June 2008, Philippe Langlois, 10:59
- Re: [Full-disclosure] agile hacking?, Jay, 10:16
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, mcwidget, 09:15
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, Vladimir Vitkov, 08:44
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, Michael Simpson, 08:23
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, Rankin, James R, 08:23
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, n3td3v, 08:02
- Re: [Full-disclosure] agile hacking?, Petko D. Petkov, 07:41
- Re: [Full-disclosure] Its time to get serious about Storm Worm / RBN, coderman, 07:20
- [Full-disclosure] Its time to get serious about Storm Worm / RBN, worried security, 06:59
- [Full-disclosure] SUSE Security Announcement: krb5 (SUSE-SA:2008:016), Thomas Biege, 06:49
- Re: [Full-disclosure] agile hacking?, Petko D. Petkov, 04:34
- [Full-disclosure] [USN-587-1] Kerberos vulnerabilities, Kees Cook, 01:47
- Re: [Full-disclosure] agile hacking?, Nate McFeters, 00:25
- Re: [Full-disclosure] agile hacking?, reepex, 00:14
- Re: [Full-disclosure] agile hacking?, Nate McFeters, 00:03
March 18, 2008
- Re: [Full-disclosure] agile hacking?, reepex, 23:53
- [Full-disclosure] [ MDVSA-2008:068 ] - Updated unzip packages vulnerability, security, 21:49
- [Full-disclosure] AST-2008-002: Two buffer overflows in RTP Codec Payload Handling, Asterisk Security Team, 20:07
- [Full-disclosure] AST-2008-003: Unauthenticated calls allowed from SIP channel driver, Asterisk Security Team, 20:07
- [Full-disclosure] AST-2008-005: HTTP Manager ID is predictable, Asterisk Security Team, 20:07
- [Full-disclosure] AST-2008-004: Format String Vulnerability in Logger and Manager, Asterisk Security Team, 19:56
- [Full-disclosure] [ GLSA 200803-27 ] MoinMoin: Multiple vulnerabilities, Pierre-Yves Rofes, 19:04
- Re: [Full-disclosure] agile hacking?, Petko D. Petkov, 18:42
- iDefense Security Advisory 03.18.08: Multiple Vendor CUPS CGI Heap Overflow Vulnerability, iDefense Labs, 18:31
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, worried security, 18:31
- [Full-disclosure] [ MDVSA-2008:067 ] - Updated nagios packages fix multiple vulnerabilities, security, 17:28
- [Full-disclosure] CORE-2008-0123: Leopard Server Remote Path Traversal, Core Security Technologies Advisories, 16:55
- Re: [Full-disclosure] agile hacking?, reepex, 15:41
- [Full-disclosure] [ GLSA 200803-26 ] Adobe Acrobat Reader: Insecure temporary file creation, Robert Buchholz, 14:47
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, worried security, 10:00
- Re: [Full-disclosure] agile hacking?, T Biehn, 10:00
- [Full-disclosure] [ GLSA 200803-25 ] Dovecot: Multiple vulnerabilities, Robert Buchholz, 08:48
- Re: [Full-disclosure] agile hacking?, Petko D. Petkov, 06:44
- [Full-disclosure] Airscanner Mobile Security Advisory #08031201: FlexiSPY Multiple Issues, Seth Fogie, 00:11
March 17, 2008
- [Full-disclosure] VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues, VMware Security team, 22:38
- Re: [Full-disclosure] Is yahoo.com serving malware? [Was: More High Profile Sites IFRAME Injected], Blatant Lier, 21:36
- Re: [Full-disclosure] Is yahoo.com serving malware? [Was: More High Profile Sites IFRAME Injected], Pat, 21:36
- [Full-disclosure] [ GLSA 200803-24 ] PCRE: Buffer overflow, Tobias Heinlein, 21:36
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, Valdis . Kletnieks, 21:36
- [Full-disclosure] [SECURITY] [DSA 1523-1] New ikiwiki packages fix cross-site scripting, Florian Weimer, 20:55
- [Full-disclosure] Is yahoo.com serving malware? [Was: More High Profile Sites IFRAME Injected], Blatant Lier, 20:55
- [Full-disclosure] [SECURITY] [DSA 1522-1] New unzip packages fix potential code execution, Florian Weimer, 20:24
- [Full-disclosure] [SECURITY] [DSA 1485-2] New icedove packages fix regression, Moritz Muehlenhoff, 20:03
- [Full-disclosure] Cross Site Scripting (XSS) in phpstats 0.1_alpha, CVE-2008-0125, Hanno BÃck, 19:09
- Agile Hacking, Petko D. Petkov, 17:35
- [Full-disclosure] Remove duplicate chains in Rainbow Tables : "rm_duplicate_chains" released, lab, 17:24
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, Valdis . Kletnieks, 17:03
- Multiple vulnerabilities in Net Inspector 6.5.0.828, Luigi Auriemma, 14:47
- [Full-disclosure] Buffer-overflow in BootManage TFTPD 1.99, Luigi Auriemma, 14:46
- [Full-disclosure] VLC highlander bug, Luigi Auriemma, 14:04
March 16, 2008
- [Full-disclosure] [SECURITY] [DSA 1520-1] New smarty packages fix arbitrary code execution, Thijs Kinkhorst, 17:37
- [Full-disclosure] [SECURITY] [DSA 1493-2] New sdl-image1.2 packages fix arbitrary code execution, Thijs Kinkhorst, 17:37
- [Full-disclosure] [SECURITY] [DSA 1519-1] New horde3 packages fix information disclosure, Thijs Kinkhorst, 17:37
- [Full-disclosure] [SECURITY] [DSA 1518-1] New backup-manager packages fix information disclosure, Thijs Kinkhorst, 17:37
- [Full-disclosure] [SECURITY] [DSA 1517-1] New ldapscripts packages fix information disclosure, Thijs Kinkhorst, 17:26
- Re: [Full-disclosure] We've shut down the Exploit Acquisition Program, Jared DeMott, 17:26
- [Full-disclosure] We've shut down the Exploit Acquisition Program, Simon Smith, 16:35
- [Full-disclosure] [SECURITY] [DSA 1521-1] New lighttpd packages fix arbitrary file disclosure, Steve Kemp, 12:17
- [Full-disclosure] raidsonic nas-4220 crypt disk key leak (stored in plain on unencrypted partition), Collin R. Mulliner, 09:21
- [Full-disclosure] eeye diffing suite?, crazy frog crazy frog, 08:29
- [Full-disclosure] remember password manager.., Kevin Fernandez, 02:48
March 15, 2008
- [Full-disclosure] [ GLSA 200803-23 ] Website META Language: Insecure temporary file usage, Pierre-Yves Rofes, 17:54
- [Full-disclosure] Troopers08 Security Conference, 23/24 April (Munich/Germany), Enno Rey, 17:12
- [Full-disclosure] [USN-586-1] mailman vulnerability, Kees Cook, 15:08
- [Full-disclosure] New penetration testing tool for wifi, Valery Marchuk, 13:45
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Pavel Kankovsky, 13:34
- Re: [Full-disclosure] Local persistent DoS in Windows XP SP2 Taskmanager, 3APA3A, 12:42
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, taneja . security, 09:27
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, Razi Shaban, 08:56
- Re: [Full-disclosure] More High Profile Sites IFRAME Injected, worried security, 06:11
March 14, 2008
- [Full-disclosure] [SECURITY] [DSA 1516-1] New dovecot packages fix privilege escalation, Florian Weimer, 19:50
- [Full-disclosure] Black Hat Announcements: New CFP system and Japan '08 confirmed, jmoss, 19:29
- Re: [Full-disclosure] Diceware method adoption - brute force me if you dare, Razi Shaban, 19:08
- Re: [Full-disclosure] Local persistent DoS in Windows XP SP2 Taskmanager, reepex, 16:29
- [Full-disclosure] Local persistent DoS in Windows XP SP2 Taskmanager, SkyOut, 16:29
- Re: [Full-disclosure] hacking a pacemaker, Randal T. Rioux, 10:42
- [Full-disclosure] SUSE Security Announcement: evolution (SUSE-SA:2008:014), Thomas Biege, 06:14
- Re: [Full-disclosure] [ GLSA 200803-17 ] PDFlib: Multiple buffer overflows, Philip Thiessen, 02:47
March 13, 2008
- Re: [Full-disclosure] Offensive Security Backtrack Training, Been There, 22:40
- [Full-disclosure] Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability, Cisco Systems Product Security Incident Response Team, 18:59
- [Full-disclosure] [ GLSA 200803-22 ] LIVE555 Media Server: Denial of Service, Pierre-Yves Rofes, 18:38
- Re: [Full-disclosure] Offensive Security Backtrack Training, Paul Schmehl, 17:36
- [Full-disclosure] ZDI-08-012: IBM Informix Dynamic Server Authentication Password Stack Overflow Vulnerability, zdi-disclosures, 17:25
- [Full-disclosure] ZDI-08-011: IBM Informix Dynamic Server DBPATH Buffer Overflow Vulnerability, zdi-disclosures, 17:25
- Re: [Full-disclosure] Offensive Security Backtrack Training, worried security, 16:53
- Re: [Full-disclosure] Offensive Security Backtrack Training, infolookup, 16:42
- [Full-disclosure] [DailyDave] L Word, Dave Aitel, 16:31
- [Full-disclosure] [ MDVSA-2008:066 ] - Updated gcc packages fix directory traversal vulnerability in fastjar, security, 15:59
- Re: [Full-disclosure] Offensive Security Backtrack Training, Kern, 11:44
- Re: [Full-disclosure] Offensive Security Backtrack Training, atlas, 10:08
- Re: [Full-disclosure] Offensive Security Backtrack Training, worried security, 04:35
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Eric Rachner, 02:09
March 12, 2008
- Re: [Full-disclosure] Diceware method adoption - brute force me if you dare, blah, 19:47
- [Full-disclosure] SCOSA-2008.2, Henry Miller, 18:55
- rPSA-2008-0108-1 dovecot, rPath Update Announcements, 17:33
- [Full-disclosure] Format string in McAfee Framework 3.6.0.569 (ePolicy Orchestrator 4.0), Luigi Auriemma, 16:09
- Re: [Full-disclosure] Diceware method adoption - brute force me if you dare, M.B.Jr., 16:09
- Re: [Full-disclosure] Diceware method adoption - brute force me if you dare, jf, 15:58
- [Full-disclosure] Diceware method adoption - brute force me if you dare, M.B.Jr., 15:47
- [Full-disclosure] [ GLSA 200803-21 ] Sarg: Remote execution of arbitrary code, Raphael Marichez, 15:25
- [Full-disclosure] rPSA-2008-0106-1 lighttpd, rPath Update Announcements, 14:54
- [Full-disclosure] More High Profile Sites IFRAME Injected, Dancho Danchev, 14:43
- [Full-disclosure] ZDI-08-010: Java Web Start encoding Stack Buffer Overflow, zdi-disclosures, 13:51
- [Full-disclosure] ZDI-08-009: Java Web Start tempbuff Stack Buffer Overflow, zdi-disclosures, 13:51
- Cisco ACS UCP Remote Pre-Authentication Buffer Overflows, Felix 'FX' Lindner, 13:51
- [Full-disclosure] Inguma version 0.0.7.2 released, Joxean Koret, 13:30
- hacking a pacemaker, Gadi Evron, 13:09
- [Full-disclosure] securls.com, Petko D. Petkov, 12:16
- [Full-disclosure] Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities, Cisco Systems Product Security Incident Response Team, 12:16
- Re: [Full-disclosure] Offensive Security Backtrack Training, Luther D. Anderson, 09:07
March 11, 2008
- [Full-disclosure] iDefense Security Advisory 03.11.08: Microsoft Outlook mailto Command Line Switch Injection, iDefense Labs, 19:47
- [Full-disclosure] iDefense Security Advisory 03.11.08: Microsoft Excel 2003 Malformed Formula Memory Corruption Vulnerability, iDefense Labs, 19:36
- [Full-disclosure] iDefense Security Advisory 03.11.08: Microsoft Excel DVAL Heap Corruption Vulnerability, iDefense Labs, 19:24
- TPTI-08-03: Microsoft Excel Rich Text Memory Corruption Vulnerability, DVLabs, 19:24
- [Full-disclosure] [SECURITY] [DSA 1515-1] New libnet-dns-perl packages fix several vulnerabilities, Florian Weimer, 18:41
- [Full-disclosure] [ GLSA 200803-20 ] International Components for Unicode: Multiple vulnerabilities, Pierre-Yves Rofes, 18:30
- [Full-disclosure] [ GLSA 200803-19 ] Apache: Multiple vulnerabilities, Pierre-Yves Rofes, 18:08
- [Full-disclosure] ZDI-08-008: Microsoft Excel BIFF File Format Cell Record Parsing Memory Corruption Vulnerability, zdi-disclosures, 17:57
- [Full-disclosure] Offensive Security Backtrack Training, 8ch, 17:26
- [Full-disclosure] CORE-2008-0204: Timbuktu Pro Remote Path Traversal and Log Injection, Core Security Technologies Advisories, 17:15
- [Full-disclosure] Advisory Adobe LiveCycle Workflow XSS Vulnerability, Liquidmatrix Security Digest, 16:53
- [Full-disclosure] Rapid7 Advisory R7-0032: Microsoft Internet Explorer FTP Command Injection Vulnerability, advisory, 16:22
- Re: [Full-disclosure] Firewire Attack on Windows Vista, FD, 15:50
- [Full-disclosure] [DailyDave] cheese, Dave Aitel, 15:29
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Jacob Appelbaum, 13:11
- Re: [Full-disclosure] Vulnerabilities in Timbuktu Pro 8.6.5, titon, 13:10
- Re: [Full-disclosure] Vulnerabilities in Timbuktu Pro 8.6.5, Luigi Auriemma, 13:10
- [Full-disclosure] Advisory: Remote Command Execution in Mapbender, RedTeam Pentesting GmbH, 13:10
- [Full-disclosure] Advisory: SQL-Injections in Mapbender, RedTeam Pentesting GmbH, 13:10
- [Full-disclosure] Wired.com and History.com Getting RBN-ed, Dancho Danchev, 13:09
- [Full-disclosure] [USN-585-1] Python vulnerabilities, Kees Cook, 13:06
March 10, 2008
- Re: [Full-disclosure] Invalid memory access in Acronis True Image Group Server 1.5.19.191, Dmitry, 19:08
- [Full-disclosure] Vulnerabilities in Timbuktu Pro 8.6.5, Luigi Auriemma, 18:57
- [Full-disclosure] Invalid memory access in Acronis True Image Group Server 1.5.19.191, Luigi Auriemma, 18:46
- NULL pointer in Remotely Anywhere 8.0.668, Luigi Auriemma, 18:46
- [Full-disclosure] Multiple vulnerabilities in ASG-Sentry 7.0.0, Luigi Auriemma, 18:46
- [Full-disclosure] Directory traversal and NULL pointer in Acronis PXE Server 2.0.0.1076, Luigi Auriemma, 18:46
- [Full-disclosure] NULL pointer in Acronis True Image Windows Agent 1.0.0.54, Luigi Auriemma, 18:46
- Denial of Service in PacketTrap TFTP server 2.0.3901.0, Luigi Auriemma, 18:35
- [Full-disclosure] Directory traversal in Argon Client Management Services 1.31, Luigi Auriemma, 18:35
- [Full-disclosure] [ GLSA 200803-18 ] Cacti: Multiple vulnerabilities, Pierre-Yves Rofes, 18:35
- [Full-disclosure] iDefense Security Advisory 03.10.08: SAP MaxDB sdbstarter Privilege Escalation Vulnerability, iDefense Labs, 18:35
- [Full-disclosure] iDefense Security Advisory 03.10.08: SAP MaxDB Signedness Error Heap Corruption Vulnerability, iDefense Labs, 18:24
- [Full-disclosure] [ GLSA 200803-17 ] PDFlib: Multiple buffer overflows, Pierre-Yves Rofes, 18:02
- [Full-disclosure] [ GLSA 200803-16 ] MPlayer: Multiple buffer overflows, Pierre-Yves Rofes, 17:31
- Re: [Full-disclosure] Wireless keyboard insecurity - any secure one available?, don bailey, 12:26
- Re: [Full-disclosure] Wireless keyboard insecurity - any secure one available?, Dmitry, 12:26
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Jacob Appelbaum, 12:14
- [Full-disclosure] List Charter, John Cartwright, 12:14
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Stefan Kanthak, 12:04
- [Full-disclosure] Wireless keyboard insecurity - any secure one available?, Markus Jansson, 12:03
- [Full-disclosure] SecurityFocus Article, , 12:03
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Kern, 10:57
- [Full-disclosure] Real Networks RealPlayer ActiveX Control Heap Corruption, Elazar Broad, 02:24
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Jardel Weyrich, 00:10
March 09, 2008
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 23:59
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 23:38
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Stefan Kanthak, 22:26
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Erik Trulsson, 22:26
- [Full-disclosure] [ MDVSA-2008:065 ] - Updated pulseaudio packages fix denial of service vulnerabilities, security, 18:20
- [Full-disclosure] [ GLSA 200803-15 ] phpMyAdmin: SQL injection vulnerability, Pierre-Yves Rofes, 17:08
- Re: [Full-disclosure] Firewire Attack on Windows Vista, echo6, 11:19
- [Full-disclosure] [SECURITY] [DSA 1514-1] New moin packages fix several vulnerabilities, Moritz Muehlenhoff, 11:08
March 08, 2008
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 19:23
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 18:50
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 15:02
- [Full-disclosure] [ GLSA 200803-14 ] Ghostscript: Buffer overflow, Pierre-Yves Rofes, 14:51
- [Full-disclosure] [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability, Tobias Klein, 09:54
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 08:40
March 07, 2008
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Bryon Roche, 19:49
- [Full-disclosure] [ GLSA 200803-13 ] VLC: Multiple vulnerabilities, Pierre-Yves Rofes, 19:27
- rPSA-2008-0099-1 dbus dbus-glib dbus-qt dbus-x11, rPath Update Announcements, 18:45
- [Full-disclosure] [ MDVSA-2008:064 ] - Updated tomboy packages fix improper LD_LIBRARY_PATH handling, security, 17:32
- Re: [Full-disclosure] Vulnerability in Linux Kiss Server v1.2, vashnukad vashnukad, 17:32
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Thor (Hammer of God), 16:18
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 16:18
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 16:06
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Thor (Hammer of God), 16:06
- [Full-disclosure] Multiple vulnerabilities in MailEnable Professional/Enterprise 3.13, Luigi Auriemma, 15:24
- Re: [Full-disclosure] IE8 beta is available - Challenge, Oliver Starke, 15:02
- Re: [Full-disclosure] IE8 beta is available - Challenge, Kurt Dillard, 14:51
- Re: [Full-disclosure] IE8 beta is available - Challenge, Larry Seltzer, 14:29
- [Full-disclosure] IE8 beta is available - Challenge, Jay, 14:18
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Thor (Hammer of God), 14:07
- Re: [Full-disclosure] Vulnerability in Linux Kiss Server v1.2, David Judais, 13:25
- [Full-disclosure] Hackers are having a positive influence on the world, Jared DeMott, 11:50
March 06, 2008
- [Full-disclosure] [ MDVSA-2008:063 ] - Updated Evolution packages fix critical vulnerability, security, 23:08
- [Full-disclosure] [ MDVSA-2008:062 ] - Updated Thunderbird packages fix multiple vulnerabilities, security, 22:16
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 22:05
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Glenn.Everhart, 22:05
- [Full-disclosure] [USN-582-2] Thunderbird vulnerabilities, Jamie Strandboge, 22:04
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Thor (Hammer of God), 22:04
- [Full-disclosure] [ MDVSA-2008:061 ] - Updated mailman packages fix multiple XSS vulnerabilities, security, 22:04
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 22:04
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 22:04
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 22:04
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Leif Ericksen, 22:03
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 22:03
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 22:03
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tim, 22:03
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Valdis . Kletnieks, 22:03
- [Full-disclosure] Directory traversal in MicroWorld eScan Server 9.0.742.98, Luigi Auriemma, 22:03
- [Full-disclosure] [SECURITY] [DSA 1513-1] New lighttpd packages fix CGI source disclosure, Steve Kemp, 22:03
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Larry Seltzer, 22:02
- [Full-disclosure] More CNET Sites Under IFRAME Attack, Dancho Danchev, 22:02
- [Full-disclosure] CarolinaCon-2008, March 28th-30th, full agenda posted, Vic Vandal, 22:02
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Static Rez, 22:01
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Kurt Dillard, 22:01
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, KJK::Hyperion, 22:01
- [Full-disclosure] SUSE Security Announcement: cups (SUSE-SA:2008:012), Thomas Biege, 22:01
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Ivan ., 22:00
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", chedder1, 22:00
- [Full-disclosure] [SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues, dann frazier, 22:00
- Re: [Full-disclosure] Goolag Perk and Annoyance, Vladimir Vitkov, 22:00
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Tonnerre Lombard, 22:00
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Peter Watkins, 22:00
- Re: [Full-disclosure] Firewire Attack on Windows Vista, Daniel O'Connor, 22:00
- Re: [Full-disclosure] Vulnerability in Linux Kiss Server v1.2, David Judais, 22:00
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Jerome Jar, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", J.A. Terranson, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Valdis . Kletnieks, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Jerome Jar, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Julio Cesar Fort, 21:59
- Re: [Full-disclosure] Firewire Attack on Windows Vista, TheM ., 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Times Enemy, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Peter Dawson, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Ivan ., 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", quispiam lepidus, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Ivan ., 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Times Enemy, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Larry Seltzer, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", quispiam lepidus, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", worried security, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", coderman, 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", Ivan ., 21:59
- Re: [Full-disclosure] Chinese backdoors "hidden in router firmware", coderman, 21:59
March 05, 2008
- [Full-disclosure] [USN-584-1] OpenLDAP vulnerabilities, Jamie Strandboge, 19:51
- [Full-disclosure] Chinese backdoors "hidden in router firmware", Ivan ., 19:30
- [Full-disclosure] [ MDVSA-2008:060 ] - Updated Joomla! packages fix multiple vulnerabilities, security, 19:19
- [Full-disclosure] [ GLSA 200803-11 ] Vobcopy: Insecure temporary file creation, Pierre-Yves Rofes, 19:08
- RE: Firewire Attack on Windows Vista, Roger A. Grimes, 18:58
- [Full-disclosure] [ GLSA 200803-12 ] Evolution: Format string vulnerability, Pierre-Yves Rofes, 18:47
- [Full-disclosure] [ MDVSA-2008:059 ] - Updated tcl packages fix vulnerability, security, 18:35
- [Full-disclosure] [USN-583-1] Evolution vulnerability, Kees Cook, 17:32
- Multiple vulnerabilities in Perforce Server 2007.3/143793, Luigi Auriemma, 17:32
- [Full-disclosure] [ GLSA 200803-10 ] lighttpd: Multiple vulnerabilities, Pierre-Yves Rofes, 17:32
- [Full-disclosure] ERRATA: [ GLSA 200801-09 ] X.Org X server and Xfont library: Multiple vulnerabilities, Robert Buchholz, 17:11
- [Full-disclosure] [ MDVSA-2008:058 ] - Updated openldap packages fix multiple vulnerabilities, security, 15:57
- Re: Firewire Attack on Windows Vista, Thierry Zoller, 15:26
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, sub, 14:00
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, KJK::Hyperion, 12:35
- [Full-disclosure] Firewire Attack on Windows Vista, Bernhard Mueller, 12:35
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, sub, 12:13
- [Full-disclosure] Goolag Perk and Annoyance, Times Enemy, 11:41
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Enno Rey, 10:29
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Sebastian Krahmer, 10:08
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Dmitry, 09:47
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Andrew A, 09:16
- [Full-disclosure] WebCT 4.x Javascript Session Stealer Exploits, Benjamin 'balupton' Lupton, 08:45
- Re: [Full-disclosure] lets go vishing, Michael Simpson, 05:40
- Re: [Full-disclosure] us cyber command, scott, 02:12
- Re: [Full-disclosure] us cyber command, Slythers Bro, 01:09
- [Full-disclosure] Vulnerability in Linux Kiss Server v1.2, vashnukad, 00:17
March 04, 2008
- Re: [Full-disclosure] Hack into a Windows PC - no password needed, Valdis . Kletnieks, 23:03
- Re: [Full-disclosure] Hack into a Windows PC - no password needed, Eric Rachner, 22:52
- Re: [Full-disclosure] Hack into a Windows PC - no password needed, Eric Rachner, 22:52
- Re: [Full-disclosure] us cyber command, worried security, 22:41
- Re: [Full-disclosure] Hack into a Windows PC - no password needed, Larry Seltzer, 22:00
- [Full-disclosure] ZDNet Asia and TorrentReactor IFRAME-ed, Dancho Danchev, 20:26
- Re: [Full-disclosure] Hack into a Windows PC - no password needed, Steven Adair, 20:04
- Re: [Full-disclosure] Hack into a Windows PC - no password needed, jipe foo, 20:04
- [Full-disclosure] [ GLSA 200803-09 ] Opera: Multiple vulnerabilities, Pierre-Yves Rofes, 19:22
- [Full-disclosure] [ GLSA 200803-08 ] Win32 binary codecs: Multiple vulnerabilities, Pierre-Yves Rofes, 18:29
- [Full-disclosure] Hack into a Windows PC - no password needed, Ivan ., 18:29
- [Full-disclosure] Arbitrary commands execution in Versant Object Database 7.0.1.3, Luigi Auriemma, 17:26
- [Full-disclosure] [DailyDave] I like to read, Dave Aitel, 16:12
- [Full-disclosure] lets go vishing, lsi, 16:01
- [Full-disclosure] CORE-2008-0124: Multiple vulnerabilities in Google's Android SDK, Core Security Technologies Advisories, 14:47
- [Full-disclosure] like goolag but online, Petko D. Petkov, 13:44
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Adrian P, 11:17
- Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Sebastian Krahmer, 05:35
March 03, 2008
- [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!, Adrian P, 20:37
- [Full-disclosure] VMSA-2008-0004 Low: Updated e2fsprogs service console package, VMware Security team, 19:02
- [Full-disclosure] [ MDVSA-2008:057 ] - Updated wireshark packages fix denial of service vulnerabilities, security, 18:29
- [Full-disclosure] [ GLSA 200803-07 ] Paramiko: Information disclosure, Pierre-Yves Rofes, 17:57
- [Full-disclosure] [ GLSA 200803-06 ] SWORD: Shell command injection, Pierre-Yves Rofes, 17:46
- [Full-disclosure] [ GLSA 200803-05 ] SplitVT: Privilege escalation, Pierre-Yves Rofes, 17:35
- [Full-disclosure] [ GLSA 200803-04 ] Mantis: Cross-Site Scripting, Pierre-Yves Rofes, 17:35
- [Full-disclosure] Airscanner Mobile Security Advisory #07122001: Eye-Fi Multiple Vulnerabilities, Seth Fogie, 17:24
- Re: [Full-disclosure] Hammers and nails, mail, 17:24
- [Full-disclosure] Heap overflow in Borland VisiBroker Smart Agent 08.00.00.C1.03, Luigi Auriemma, 16:52
- Cross-site Scripting and CSRF in TorrentTrader Classic v1.08, Valery Marchuk, 16:41
- Multiple integer overflows in Borland StarTeam server 10.0.0.57, Luigi Auriemma, 16:41
- Re: [Full-disclosure] IE/Windows blocking Firefox downloads?, J. Oquendo, 15:28
- Re: [Full-disclosure] IE/Windows blocking Firefox downloads?, Colin Copley, 15:07
- Re: [Full-disclosure] IE/Windows blocking Firefox downloads?, Jan Clairmont, 14:57
- [Full-disclosure] IE/Windows blocking Firefox downloads?, Joshua Russel, 13:32
- [Full-disclosure] us cyber command, worried security, 11:35
- Re: [Full-disclosure] Hammers and nails, John Doe, 11:35
- Re: [Full-disclosure] [DailyDave] ants and rants, Michael Krymson, 11:25
- [Full-disclosure] Windows Command Processor Vulnerabilitie, saied hackeriran, 06:14
- Re: [Full-disclosure] [DailyDave] ants and rants, Andrew A, 04:32
- [Full-disclosure] [DailyDave] ants and rants, Dave Aitel, 04:01