Vulnerability Development (thread)

E-Annu (home.php) Remote SQL Injection Vulnerability, ilkerkandemir, 2007/04/30
[security bulletin] HPSBMA02197 SSRT061285 rev.1 - HP-UX Running HP Power Manager Remote Agent (RA), Local Execution of Arbitrary Code with Root Privileges, security-alert, 2007/04/30
3proxy[v0.5.3g]: (linux/win32 service) remote buffer overflow exploits., v9, 2007/04/30
[Full-disclosure] iDefense Security Advisory 04.27.07: VMware Workstation Shared Folders Directory Traversal Vulnerability, iDefense Labs, 2007/04/30
GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability, crazy_king, 2007/04/30
- Re: GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability, Jamie Riden, 2007/04/30
please retract CVE-2007-2056 "Time-of-Check-Time-of-Use File Race in AFFLIB", Simson Garfinkel, 2007/04/30
- Re: please retract CVE-2007-2056 "Time-of-Check-Time-of-Use File Race in AFFLIB", Tim, 2007/04/30
Flaw in about.r OS and Progress version disclosure, suresync, 2007/04/30
Seir Anphin (file.php a[filepath]) Remote File Disclosure Vulnerability, ilkerkandemir, 2007/04/28
Sphider Version 1.2.x (include_dir) file include, 1one1, 2007/04/28
- Re: Sphider Version 1.2.x (include_dir) file include, ijoo . keren, 2007/04/30
[Full-disclosure] [ GLSA 200704-23 ] capi4k-utils: Buffer overflow, Raphael Marichez, 2007/04/27
[Full-disclosure] [ GLSA 200704-22 ] BEAST: Denial of Service, Raphael Marichez, 2007/04/27
AFFLIB(TM): Multiple Shell Metacharacter Injections, VSR Advisories, 2007/04/27
AFFLIB(TM): Multiple Format String Injections, VSR Advisories, 2007/04/27
AFFLIB(TM): Time-of-Check-Time-of-Use File Race, VSR Advisories, 2007/04/27
AFFLIB(TM): Multiple Buffer Overflows, VSR Advisories, 2007/04/27
Security Concerns in Web 2.0, dharmeshmm, 2007/04/27
[Full-disclosure] iDefense Security Advisory 04.26.07: Symantec Norton Ghost 10 Recovery Points Insecure Password Storage Vulnerability, iDefense Labs, 2007/04/27
[Full-disclosure] iDefense Security Advisory 04.26.07: Symantec Norton Ghost 10 Service Manager Buffer Overflow Vulnerability, iDefense Labs, 2007/04/27
FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6, FreeBSD Security Advisories, 2007/04/27
TSLSA-2007-0015 - postgresql, Trustix Security Advisor, 2007/04/27
[Full-disclosure] [USN-454-1] PostgreSQL vulnerability, Martin Pitt, 2007/04/27
[Full-disclosure] [USN-455-1] PHP vulnerabilities, Martin Pitt, 2007/04/27
[Full-disclosure] iDefense Security Advisory 04.26.07: Novell eDirectory NCP Fragment Denial of Service Vulnerability, iDefense Labs, 2007/04/26
Burak Yılmaz Blog (tr) v1.0 SQL injection vulnerability, dj_remix_20, 2007/04/26
Re: Chicken of the VNC 2.0 remote DoS, support, 2007/04/26
SineCMS, nexus, 2007/04/26
modbuild >> 4.1 Remote File Inclusion, s433d_only_linux, 2007/04/26
[ MDKSA-2007:094 ] - Updated postgresql packages fix vulnerability, security, 2007/04/26
[CAID 35198, 35276]: CA BrightStor ARCserve Backup Media Server Vulnerabilities, Williams, James K, 2007/04/26
[CAID 35277]: CA CleverPath Portal SQL Injection Vulnerability, Williams, James K, 2007/04/26
[Full-disclosure] [USN-453-2] rdesktop regression, Martin Pitt, 2007/04/26
:doruk100net >> RFI, alijsb, 2007/04/25
ASA-2007-012: Remote Crash Vulnerability in Manager Interface, Kevin P. Fleming, 2007/04/25
IE 7 and Firefox Browsers Digest Authentication Request Splitting, Stefano Di Paola, 2007/04/25
VirtuaNews.Pro.v1.0.3.Retail.+All.Plugins Remote file Include, s433d_only_linux, 2007/04/25
Remote File Inclusion, s433d_only_linux, 2007/04/25
CFP: 3rd European Conference on Computer Network Defense (EC2ND), Stefano Zanero, 2007/04/25
download engine V1.4.1 >> RFI (local), alijsb, 2007/04/25
ASA-2007-011: Multiple problems in SIP channel parser handling response codes, Kevin P. Fleming, 2007/04/25
nucleus 3.22 >> RFI, alijsb, 2007/04/25
ASA-2007-010: Two stack buffer overflows in SIP channel's T.38 SDP parsing code, Kevin P. Fleming, 2007/04/25
blogsystem 1.4 >> local & remote = -rfi & lfi & -xss, info, 2007/04/25
comus 2.0 Final >> RFI, alijsb, 2007/04/25
Searchactivity >> RFI, alijsb, 2007/04/25
Built2Go_PHP_Link_Portal_v1.79 >> RFI, alijsb, 2007/04/25
B2 Weblog and News Publishing Tool v0.6.1 >> RFI, alijsb, 2007/04/25
sunshop v4 >> RFI, info, 2007/04/25
adrevenue script (CyKuH.com)>> RFI, alijsb, 2007/04/25
Shop-Script v 2.0 >> RFI, alijsb, 2007/04/25
phpMYTGP v v1.4b >> RFI, alijsb, 2007/04/25
DynaTracker &v151>> RFI, alijsb, 2007/04/25
netbingo v 2000 >> RFI, alijsb, 2007/04/25
HTMLeditbox & 2.2 >> RFI, alijsb, 2007/04/25
WordPress v2.1.3 >> remote file include~, s433d_only_linux, 2007/04/25
- Re: WordPress v2.1.3 >> remote file include~, otto, 2007/04/26
  - Re: [Full-disclosure] WordPress v2.1.3 >> remote file include~, Tod Beardsley, 2007/04/26
HYIP Manager Pro Script >> Remote file Include, alijsb, 2007/04/25
MyNewsGroups >> RFI in include.php, alijsb, 2007/04/25
dcp-portal v611 >> RFi, s433d_only_linux, 2007/04/24
[Full-disclosure] ZDI-07-022: CA BrightStor ArcServe Media Server Multiple Buffer Overflow Vulnerabilities, zdi-disclosures, 2007/04/24
3Com's TippingPoint Denial of Service, mike20061005, 2007/04/24
- Re: 3Com's TippingPoint Denial of Service, Simple Nomad, 2007/04/24
- Re: 3Com's TippingPoint Denial of Service, Secure, 2007/04/25
- Re: 3Com's TippingPoint Denial of Service, Steven M. Christey, 2007/04/25
[MajorSecurity Advisory #46]Plogger - Session fixation Issue, admin, 2007/04/24
Progress Webspeed exploit for all releases, suresync, 2007/04/24
[security bulletin] HPSBST02200 SSRT071330 rev.1 - HP StorageWorks Command View Advanced Edition for XP, Local Unauthorized Access, security-alert, 2007/04/24
Security Advisory: CA CleverPath SQL Injection, Irene Abezgauz, 2007/04/24
ImageProcessing ... Local (Denial of Service Exploit), Dr . Ninux, 2007/04/24
- Re: ImageProcessing ... Local (Denial of Service Exploit), Tim Newsham, 2007/04/24
gallery >> 1.5.6 Remote File Inclusion, s433d_only_linux, 2007/04/24
- Re: gallery >> 1.5.6 Remote File Inclusion, Chris Kelly, 2007/04/24
- Re: gallery >> 1.5.6 Remote File Inclusion, the . tiger100, 2007/04/24
YA Book 0.98 Persistent XSS, omnipresent, 2007/04/24
[Full-disclosure] [ GLSA 200704-21 ] ClamAV: Multiple vulnerabilities, Matthias Geerdsen, 2007/04/24
[Full-disclosure] rPSA-2007-0081-1 postgresql postgresql-server, rPath Update Announcements, 2007/04/24
[Full-disclosure] Apache Illegal Request Handling Possible XSS Vulnerability, Michal Majchrowicz, 2007/04/24
- Re: [Full-disclosure] Apache Illegal Request Handling Possible XSS Vulnerability, Richard Moore, 2007/04/24
Post Revolution Remote File Inclusion, InyeXion, 2007/04/23
phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit, john, 2007/04/23
DmCMS Shell Uploading, security, 2007/04/23
acvsws_php5_v1.0 <= Multiple Remote File Include Vulnerablitiy, Mohandko, 2007/04/23
[ MDKSA-2007:093 ] - Updated zziplib packages fix vulnerability, security, 2007/04/23
[security bulletin] HPSBUX02183 SSRT061243 rev.1 - HP-UX sendmail, Remote Denial of Service (DoS), security-alert, 2007/04/23
[ MDKSA-2007:092 ] - Updated freeradius packages fix vulnerability, security, 2007/04/23
TJSChat Version 0.95 Cross Site Scripting, the_3dit0r, 2007/04/23
[Full-disclosure] Apache/PHP REQUEST_METHOD XSS Vulnerability, Michal Majchrowicz, 2007/04/23
Big Blue Guestbook HTML Injection Vulnerabilities, seko, 2007/04/23
WASC-Articles: 'The business case for security frameworks', announcements, 2007/04/23
[Full-disclosure] [ GLSA 200704-20 ] NAS: Multiple vulnerabilities, Raphael Marichez, 2007/04/23
[Full-disclosure] [ GLSA 200704-19 ] Blender: User-assisted remote execution of arbitrary code, Raphael Marichez, 2007/04/23
bibtex mase Remote File Inclusion, InyeXion, 2007/04/23
c-arbre <= Multiple Remote File Include Vulnerablitiy, Mohandko, 2007/04/23
Remote file inclusion in Joomla 1.5.0 Beta, Omid, 2007/04/23
Ripe Website Manager (<= 0.8.4) - SQL Injection Vulnerability and Cross-Site Scripting Exploit, john, 2007/04/23
File117 Remote File Inclusion, InyeXion, 2007/04/23
PHPMyBibli <= Multiple Remote File Include, Mohandko, 2007/04/23
EsForum <= 3.0 SQL Injection Vulnerability, ilkerkandemir, 2007/04/23
lms 1.5.3 Remote File Inclusion, InyeXion, 2007/04/23
[Reversemode advisory] CheckPoint Zonelabs - ZoneAlarm SRESCAN driver local privilege escalation, Reversemode, 2007/04/23
claroline <= Multiple Remote File Include Vulnerablitiy, Mohandko, 2007/04/23
- Re: claroline <= Multiple Remote File Include Vulnerablitiy, BlackHawk, 2007/04/24
Allfaclassfieds (level2.php dir) remote file inclusion, asdasd asdsadas, 2007/04/23
[Full-disclosure] 3proxy 0.5.3i bugfix release, Vladimir Dubrovin, 2007/04/23
[Full-disclosure] [ GLSA 200704-18 ] Courier-IMAP: Remote execution of arbitrary code, Raphael Marichez, 2007/04/22
[Full-disclosure] [ GLSA 200704-17 ] 3proxy: Buffer overflow, Raphael Marichez, 2007/04/22
[Full-disclosure] [ GLSA 200704-16 ] Aircrack-ng: Remote execution of arbitrary code, Raphael Marichez, 2007/04/22
WS_FTP Home 2007 NetscapeFTPHandler denial of service, Michal Bucko, 2007/04/21
- Re: WS_FTP Home 2007 NetscapeFTPHandler denial of service, sapheal, 2007/04/23
turbolence core 0.0.1 alpha Remote File Inclusion, omnipresent, 2007/04/21
Top Auction 1.0 (viewcat.php) Remote Blind SQL Injection // starhack.org, seko, 2007/04/21
- Re: Top Auction 1.0 (viewcat.php) Remote Blind SQL Injection // starhack.org, str0ke, 2007/04/21
UseBB Version 1.0.4 Path Disclosure Vulnerability, securityresearch, 2007/04/20
[Full-disclosure] iDefense Security Advisory 04.20.07: Check Point Zone Labs SRESCAN IOCTL Local Privilege Escalation Vulnerability, iDefense Labs, 2007/04/20
TSLSA-2007-0013 - multi, Trustix Security Advisor, 2007/04/20
Eba News Version : v1.1 <= (webpages.php) Remote File Include // starhack.org, seko, 2007/04/20
NeatUpload vulnerability and fix, dean, 2007/04/20
Re: [Full-disclosure] [VulnWatch] Cross Domain XMLHttpRequest, anurag . agarwal, 2007/04/20
[Full-disclosure] ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability, zdi-disclosures, 2007/04/20
[security bulletin] HPSBST02208 SSRT071365 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-018 to MS07-022, security-alert, 2007/04/19
[ MDKSA-2007:091 ] - Updated sqlite packages fix vulnerability, security, 2007/04/19
[ MDKSA-2007:090 ] - Updated php packages fix multiple vulnerabilities, security, 2007/04/19
[security bulletin] HPSBMA02133 SSRT061201 rev.4 - HP Oracle for OpenView (OfO) Critical Patch Update, security-alert, 2007/04/19
RaidenFTPd IXceedCompression multiple denial of service vulnerabilities, Michal Bucko, 2007/04/19
Yet another SQL injection framework, Guillermo Marro, 2007/04/19
- Re: Yet another SQL injection framework (file corruption), Guillermo Marro, 2007/04/20
- Re: Yet another SQL injection framework, Nick Boyce, 2007/04/20
  - RE: Yet another SQL injection framework, Greg Merideth, 2007/04/23
Winamp <= (WMV) 5.3 Buffer Overflow DOS Exploit (0-DAY), UniquE, 2007/04/19
[waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20, come2waraxe, 2007/04/19
IPB (Invision Power Board) Full Path Disclusure, security, 2007/04/19
Re: [Full-disclosure] ZDI-07-020: BMC Performance Manager SNMP Command Execution Vulnerability, rashbi, 2007/04/19
CfP Hack.lu 2007, info, 2007/04/19
[ MDKSA-2007:089 ] - Updated php packages fix multiple vulnerabilities, security, 2007/04/19
[ MDKSA-2007:088 ] - Updated php packages fix multiple vulnerabilities, security, 2007/04/19
[ MDKSA-2007:087 ] - Updated php packages fix multiple vulnerabilities, security, 2007/04/19
[Full-disclosure] [USN-453-1] X.org vulnerability, Kees Cook, 2007/04/18
NuclearBB Alpha 1 - Multiple Blind SQL/XPath Injection Vulnerabilities, john, 2007/04/18
[security bulletin] HPSBST02206 SSRT071354 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-017, security-alert, 2007/04/18
[Full-disclosure] ZDI-07-020: BMC Performance Manager SNMP Command Execution Vulnerability, zdi-disclosures, 2007/04/18
EclipseBB Remote File Inclusion, security, 2007/04/18
[Full-disclosure] ZDI-07-019: BMC Patrol PerformAgent bgs_sdservice Memory Corruption Vulnerability, zdi-disclosures, 2007/04/18
[Full-disclosure] ZDI-07-018: IBM Tivoli Monitoring Express Universal Agent Heap Overflow Vunlerability, zdi-disclosures, 2007/04/18
[Full-disclosure] ZDI-07-017: Oracle E-Business Suite Arbitrary Document Download Vulnerability, zdi-disclosures, 2007/04/18
Extreme PHPBB2 Remote File Inclusion, security, 2007/04/18
[Full-disclosure] ZDI-07-016: Oracle E-Business Suite Arbitrary Node Deletion Vulnerability, zdi-disclosures, 2007/04/18
[Full-disclosure] ZDI-07-015: Novell Groupwise WebAccess Base64 Decoding Stack Overflow Vulnerability, zdi-disclosures, 2007/04/18
FullyModdedphpBB2 Remote File Inclusion, security, 2007/04/18
MediaBeez Sql query Execution .. Wear isn't ?? :), security, 2007/04/18
[Full-disclosure] Oracle Database Buffer overflow vulnerabilities in package DBMS_SNAP_INTERNAL, Team SHATTER, 2007/04/18
Advisory: Shutdown unprotected Oracle TNS Listener via Oracle Discoverer Servlet [AS01], ak, 2007/04/18
Advisory: XSS Vulnerability in Oracle Secure Enterprise Search [SES01], ak, 2007/04/18
Advisory: SQL Injection in package SYS.DBMS_UPGRADE_INTERNAL, ak, 2007/04/18
Advisory: SQL Injection in package SYS.DBMS_AQADM_SYS, ak, 2007/04/18
[Full-disclosure] rPSA-2007-0074-1 dovecot, rPath Update Announcements, 2007/04/18
[Full-disclosure] rPSA-2007-0073-1 php php-mysql php-pgsql, rPath Update Announcements, 2007/04/18
[Full-disclosure] rPSA-2007-0072-1 lighttpd, rPath Update Announcements, 2007/04/18
Advisory: Bypass Oracle Logon Trigger, ak, 2007/04/18
NukeSentinel Bypass SQL Injection & Nuke Evolution <= 2.0.3 SQL Injections, programmer, 2007/04/18
Reminder: HITBSecConf2007 - Malaysia: Call for Papers closing in 2 weeks, Praburaajan, 2007/04/18
[Full-disclosure] Analysis of the Oracle April 2007 Critical Patch Update, David Litchfield, 2007/04/18
Re: [Full-disclosure] [funsec] Re: A Botted Fortune 500 a Day, Fergie, 2007/04/17
[Full-disclosure] iDefense Security Advisory 04.17.07: McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability, iDefense Labs, 2007/04/17
[Full-disclosure] iDefense Security Advisory 04.17.07: McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow, iDefense Labs, 2007/04/17
Mambo/Joomla Component New Article Component RFI, meftun, 2007/04/17
[Full-disclosure] [ GLSA 200704-15 ] MadWifi: Multiple vulnerabilities, Raphael Marichez, 2007/04/17
[Full-disclosure] [ GLSA 200704-14 ] FreeRADIUS: Denial of Service, Raphael Marichez, 2007/04/17
[Full-disclosure] [ GLSA 200704-13 ] File: Denial of Service, Raphael Marichez, 2007/04/17
WASC-Articles: 'The Importance of Application Classification in Secure Application Development', contact, 2007/04/17
ShoutPro 1.5.2 - arbitrary code execution, jd2k2000, 2007/04/17
SYMSA-2007-003 Macrovision InstallAnywhere Password and Serial Number Bypass, research, 2007/04/17
BlueArc Firmware 4.2.944b FTP bounce, Tim Rupp, 2007/04/17
Gizzar <= (basePath) Remote File Include Vulnerability, BorN To K!LL BorN To K!LL, 2007/04/17
[Full-disclosure] n.runs-SA-2007.007 - Sun Solaris 10 - Format string vulnerability, security, 2007/04/17
Multiple Ask IE Toolbar denial of service vulnerabilities, Michal Bucko, 2007/04/17
[security bulletin] HPSBTU02207 SSRT061213, SSRT061239, SSRT071304 rev.1 - HP Tru64 UNIX SSL and BIND Remote Arbitrary Code Execution or Denial of Service (DoS), security-alert, 2007/04/17
Internet Explorer Crash, J. Oquendo, 2007/04/17
- Re: Internet Explorer Crash, The Anarcat, 2007/04/17
  - Re: Internet Explorer Crash, Mike Ely, 2007/04/18
  - Re: Internet Explorer Crash, simone colombo, 2007/04/19
- Re: Internet Explorer Crash, Thor (Hammer of God), 2007/04/17
  - Re: Internet Explorer Crash, Tom Gregory, 2007/04/18
    - Re: Internet Explorer Crash, Rob Bartlett, 2007/04/18
    - Re: Internet Explorer Crash, Kevin Finisterre (lists), 2007/04/19
    - Re: Internet Explorer Crash, Dave Walker, 2007/04/19
    - Re: Internet Explorer Crash, "C. Bergström", 2007/04/19
  - Message not available
    - Re: Internet Explorer Crash, Thor (Hammer of God), 2007/04/18
- Re: Internet Explorer Crash, elflord91, 2007/04/18
webMethods Security Advisory: Glue console directory traversal vu lnerability, Jeremy Epstein, 2007/04/17
my little forum 1.7 Remote File Include Vulnerabilitiy, the_3dit0r, 2007/04/17
my little weblog Cross Site Scripting, the_3dit0r, 2007/04/17
Wabbit PHP Gallery v0.9 Cross Site Scripting, the_3dit0r, 2007/04/17
Remot File Include download_engine_V1.4.3, RaeD, 2007/04/17
Remot File Include In Script phphd_downloads, RaeD, 2007/04/17
PHP Nuke <= 8.0.0.3.3b SQL Injections and Bypass SQL Injection Protection vulnerabilities, programmer, 2007/04/17
- Re: PHP Nuke <= 8.0.0.3.3b SQL Injections and Bypass SQL Injection Protection vulnerabilities, Paul Laudanski, 2007/04/18
Netsprint Toolbar 1.1 arbitrary remote code vulnerability, Michal Bucko, 2007/04/17
- Re: Netsprint Toolbar 1.1 arbitrary remote code vulnerability, Michal Zalewski, 2007/04/17
[Full-disclosure] iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability, iDefense Labs, 2007/04/16
[ MDKSA-2007:085 ] - Updated freeradius packages fix DoS vulnerability, security, 2007/04/16
[ MDKSA-2007:084 ] - Updated ipsec-tools packages fix DoS vulnerability, security, 2007/04/16
[ MDKSA-2007:086 ] - Updated cups packages fix DoS vulnerability, security, 2007/04/16
Akamai Technologies Security Advisory 2007-0001, Akamai Security Team, 2007/04/16
[Full-disclosure] [ GLSA 200704-12 ] OpenOffice.org: Multiple vulnerabilities, Raphael Marichez, 2007/04/16
rPSA-2007-0071-1 kernel, rPath Update Announcements, 2007/04/16
Ivan Gallery Script V.0.1 (index.php) Remote File Include Exploit, seko, 2007/04/16
Persistent CSRF and The Hotlink Hell, pdp (architect), 2007/04/16
- Re: [Full-disclosure] [WEB SECURITY] Persistent CSRF and The Hotlink Hell, Ryan Barnett, 2007/04/16
  - Re: [Full-disclosure] [WEB SECURITY] Persistent CSRF and The Hotlink Hell, Blue Boar, 2007/04/16
Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Makoto Shiotsuki, 2007/04/16
- RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Roger A. Grimes, 2007/04/17
  - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Tim, 2007/04/17
    - RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Roger A. Grimes, 2007/04/18
    - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Tim, 2007/04/18
    - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Makoto Shiotsuki, 2007/04/18
    - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Tim, 2007/04/18
  - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Makoto Shiotsuki, 2007/04/17
    - RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Roger A. Grimes, 2007/04/17
    - Re[2]: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, 3APA3A, 2007/04/17
    - RE: Re[2]: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Roger A. Grimes, 2007/04/18
    - RE: Re[2]: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Oliver Friedrichs, 2007/04/19
    - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Bojan Zdrnja, 2007/04/18
    - Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing, Matthew Dixon Cowles, 2007/04/18
Microsoft DNS Server Remote Code execution: Analysis and exploit, mballano, 2007/04/16
[Full-disclosure] [ GLSA 200704-11 ] Vixie Cron: Denial of Service, Matthias Geerdsen, 2007/04/16
MyBlog <= 0.9.8 Remote Command Execution Exploit, BlackHawk, 2007/04/16
ActionPoll Script (actionpoll.php) Remote File Include // starhack.org, seko, 2007/04/16
ZoneAlarm Multiple insufficient argument validation of hooked SSDT function Vulnerability, Matousec - Transparent security Research, 2007/04/16
[MajorSecurity Advisory #45]oe2edit CMS - Cross Site Scripting and Cookie Manipulation Issue, admin, 2007/04/16
Joomla/Mambo Jambook v1.0 beta7 Rfi Vuln., crazy_king, 2007/04/16
LS simple guestbook - arbitrary code execution, jd2k2000, 2007/04/16
Sitebar 3.3.5 (index.php writerFile)Remote File Include Vulnerabilities, ?? ???? ??????, 2007/04/16
[Full-disclosure] iDefense Security Advisory 04.16.07: ClamAV CAB File Unstore Buffer Overflow Vulnerability, iDefense Labs, 2007/04/16
Pixaria Gallery 1.0 (class.Smarty.php) Remote File Include Vulnerability, irvian_yoe, 2007/04/16
[Full-disclosure] [ GLSA 200704-10 ] Inkscape: Two format string vulnerabilities, Matthias Geerdsen, 2007/04/16
[Full-disclosure] Cross Domain XMLHttpRequest, Michal Majchrowicz, 2007/04/15
- Re: [Full-disclosure] Cross Domain XMLHttpRequest, ascii, 2007/04/15
Re: [Full-disclosure] [exploits] RPC vuln in DNS Server (fwd), Gadi Evron, 2007/04/15
[Full-disclosure] [ GLSA 200704-09 ] xine-lib: Heap-based buffer overflow, Raphael Marichez, 2007/04/14
phpMyChat-0.14.5, k4rtal, 2007/04/14
- Re: phpMyChat-0.14.5, stuart_smith, 2007/04/16
bloofoxCMS 0.2.2 Remote File Include Vulnerabilitiy, the_3dit0r, 2007/04/14
- Re: bloofoxCMS 0.2.2 Remote File Include Vulnerabilitiy, info, 2007/04/17
Maian Weblog v3.1, k4rtal, 2007/04/14
Flip-search-add-on 2.0, k4rtal, 2007/04/14
Back-End CMS Database Tables v0.4.7 Remote File Include Vulnerabilities, the_3dit0r, 2007/04/14
MySpeach v1.9, k4rtal, 2007/04/14
B2evolution 1.6 RFi, k4rtal, 2007/04/14
Maian Gallery v1.0, k4rtal, 2007/04/14
- Re: Maian Gallery v1.0, support, 2007/04/16
Maian Search v1.1, k4rtal, 2007/04/14
- Re: Maian Search v1.1, support, 2007/04/16
FloweRS v2.0 Cross Site Scripting, the_3dit0r, 2007/04/14
MobilePublisherphp v1.1.2 Remote File Include Vulnerabilities, the_3dit0r, 2007/04/14
Back-End CMS Database Tables v0.4.7 Cross Site Scripting, the_3dit0r, 2007/04/14
VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit, meftun, 2007/04/14
- Re: VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit, str0ke, 2007/04/16
bloofoxCMS 0.2.2 Cross Site Scripting, the_3dit0r, 2007/04/14
Vbulletin 3.6.5 Sql Injection ! [misc.php], seko, 2007/04/13
- Re: Vbulletin 3.6.5 Sql Injection ! [misc.php], scott-REMOVE, 2007/04/14
[Full-disclosure] TSRT-07-04: LANDesk Management Suite Alert Service Stack Overflow Vulnerability, TSRT, 2007/04/13
[waraxe-2007-SA#048] - Multiple vulnerabilities in Virtual War 1.5 module for PhpNuke, come2waraxe, 2007/04/13
[MajorSecurity Advisory #44]MailBee WebMail Pro - Cross Site Scripting Issue, admin, 2007/04/13
[Full-disclosure] [OPENADS-SA-2007-004] Max Media Manager v0.1.29-rc and v0.3.31-alpha-pr2 vulnerability fixed, Matteo Beccati, 2007/04/13
[Full-disclosure] [OPENADS-SA-2007-003] Openads 2.0.11 vulnerability fixed, Matteo Beccati, 2007/04/13
[Full-disclosure] [Argeniss] Hacking Databases for owning your data (paper), Cesar, 2007/04/12
Aircrack-ng (airodump-ng) remote buffer overflow vulnerability, jonny, 2007/04/12
FAC GuestBook v2.0 remote database disclosure vulnerability, the_3dit0r, 2007/04/12
Re: Cross site scripting in mephisto 0.7.3, encytemedia, 2007/04/12
Chatness <= 2.5.3 - Arbitrary Code Execution, jd2k2000, 2007/04/12
phpwebnews v.1 Multiple Cross Site Scripting Vulnerabilites, the_3dit0r, 2007/04/12
[Full-disclosure] iDefense Security Advisory 04.12.07: Hewlett Packard HP-UX Remote pfs_mountd.rpc Buffer Overflow Vulnerability, iDefense Labs, 2007/04/12
TuMusika Evolution 1.6 Cross Site Scripting Vulnerabilitiy, the_3dit0r, 2007/04/12
[security bulletin] HPSBUX02203 SSRT071339 rev.1 - HP-UX Running Portable File System (PFS), Remote Increase in Privilege, security-alert, 2007/04/12
[security bulletin] HPSBGN02199 SSRT071312 rev.1 - Mercury Quality Center ActiveX, Remote Unauthorized Arbitrary Code Execution, security-alert, 2007/04/12
[security bulletin] HPSBUX01137 SSRT5954 rev.9 - HP-UX Running TCP/IP (IPv4), Remote Denial of Service (DoS), security-alert, 2007/04/12
[security bulletin] HPSBST02206 SSRT071354 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-014, security-alert, 2007/04/12
Critical phpwiki c99shell exploit, rurban, 2007/04/12
- Re: Critical phpwiki c99shell exploit, Gadi Evron, 2007/04/12
  - RE: Critical phpwiki c99shell exploit, Ryan Neufeld, 2007/04/12
  - Re: Critical phpwiki c99shell exploit, Taneli Leppä, 2007/04/16
- Re: Critical phpwiki c99shell exploit, Jamie Riden, 2007/04/12
[Full-disclosure] A Botted Fortune 500 a Day, Gadi Evron, 2007/04/12
- Re: [Full-disclosure] A Botted Fortune 500 a Day, James Matthews, 2007/04/12
- Re: [Full-disclosure] A Botted Fortune 500 a Day, Steven Adair, 2007/04/13
  - Re: [Full-disclosure] A Botted Fortune 500 a Day, Jamie Riden, 2007/04/13
    - Re: [Full-disclosure] A Botted Fortune 500 a Day, Steven Adair, 2007/04/13
    - Re: [Full-disclosure] A Botted Fortune 500 a Day, Jamie Riden, 2007/04/13
    - Re: [Full-disclosure] A Botted Fortune 500 a Day, Simon Smith, 2007/04/13
  - Re: [Full-disclosure] A Botted Fortune 500 a Day, Nick FitzGerald, 2007/04/17
[Full-disclosure] INFIGO-2007-04-05: Enterprise Security Analyzer server remote buffer overflows, infocus, 2007/04/12
[Full-disclosure] Cross site scripting in mephisto 0.7.3, Hanno BÃck, 2007/04/12
HPSBUX02205 SSRT061120 rev.1 - HP-UX Running ARPA Transport, Local Denial of Service (DoS), security-alert, 2007/04/12
[Full-disclosure] CVE-2007-1872: Cross site scripting in toendaCMS 1.5.3, Hanno BÃck, 2007/04/12
[Full-disclosure] CVE-2007-1871: Cross site scripting in chcounter 3.1.3, Hanno BÃck, 2007/04/12
E107 - (v0.7.8) Access Escalation Vulnerbility - PoC, jd2k2000, 2007/04/12
[Full-disclosure] [ GLSA 200704-08 ] DokuWiki: Cross-site scripting vulnerability, Matthias Geerdsen, 2007/04/12
[ MDKSA-2007:082 ] - Updated madwifi-source, wpa_supplicant packages fix vulnerabilities, security, 2007/04/11
[ MDKSA-2007:075-1 ] - Updated qt4 packages to address utf8 decoder bug, security, 2007/04/11
[Full-disclosure] [USN-452-1] KDE library vulnerability, Kees Cook, 2007/04/11
[ MDKSA-2007:083 ] - Updated apache-mod_perl packages fix DoS vulnerability, security, 2007/04/11
[Full-disclosure] iDefense Security Advisory 04.11.07: Apache HTTPD suEXEC Multiple Vulnerabilities, iDefense Labs, 2007/04/11
[ MDKSA-2007:079-1 ] - Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities, security, 2007/04/11
Steganos Encrypted Safe NOT so safe, frankrizzo604, 2007/04/11
- Re: Steganos Encrypted Safe NOT so safe, Andreas Beck, 2007/04/14
- Re: Steganos Encrypted Safe NOT so safe, support, 2007/04/26
PunBB <= 1.2.14 Multiple Vulnerabilities (Advisory), gmdarkfig, 2007/04/11
PunBB <= 1.2.14 Remote Code Execution (Exploit), gmdarkfig, 2007/04/11
Re: Latinchat Denial Of Service, d4rksoft, 2007/04/11
CodeBreak (codebreak.php process_method) - Remote File Inclusion Vulnerability, john, 2007/04/11
[MajorSecurity Advisory #43]Calacode ATMail 5.0 - Cross Site Scripting and Cookie Manipulation Issue, admin, 2007/04/11
pL-PHP beta 0.9 - Multiple Vulnerabilities, omnipresent, 2007/04/11
New bug :), asdasd asdsadas, 2007/04/11
nEw Bug :D, asdasd asdsadas, 2007/04/11
[ MDKSA-2007:080-1 ] - Updated tightvnc packages fix integer overflow vulnerabilities, security, 2007/04/11
webMethods Glue Management Console Directory Traversal, Patrick Webster, 2007/04/11
[Full-disclosure] Cosign SSO Authentication Bypass, Jon Oberheide, 2007/04/11
[Full-disclosure] com_zoom2 Mambo Module Remote File Include Vulnerability, 0o_zeus_o0 elitemexico.org, 2007/04/11
[Full-disclosure] [USN-451-1] Linux kernel vulnerabilities, Kees Cook, 2007/04/10
[ MDKSA-2007:081-1 ] - Updated freetype2 packages fix vulnerability, security, 2007/04/10
Re: vbulletin admincp sql injection, rjmjr69, 2007/04/10
[ MDKSA-2007:077-1 ] - Updated krb5 packages fix vulnerabilities, security, 2007/04/10
[Full-disclosure] iDefense Security Advisory 04.10.07: Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability, iDefense Labs, 2007/04/10
Secunia Research: Microsoft Agent URL Parsing Memory Corruption Vulnerability, Secunia Research, 2007/04/10
PhpOpenChat <= 3.0.1 (poc.php) Multiple Remote File Include Vulnerabilities, seko, 2007/04/10
EEYE: Windows Vista CSRSS Dangling Process Pointer Privilege Escalation, eEye Advisories, 2007/04/10
EEYE: Windows VDM Zero Page Race Condition Privilege Escalation, eEye Advisories, 2007/04/10
DEF CON One Five CfP in effect!, The Dark Tangent, 2007/04/10
phpGalleryScript 1.0 - File Inclusion Vulnerabilities, z12xxa, 2007/04/10
[Full-disclosure] [USN-450-1] ipsec-tools vulnerability, Kees Cook, 2007/04/09
[Full-disclosure] iDefense Security Advisory 04.09.07: AOL AIM and ICQ File Transfer Path-Traversal Vulnerability, iDefense Labs, 2007/04/09
rPSA-2007-0070-1 openoffice.org, rPath Update Announcements, 2007/04/09
xodagallery Remote Code Execution Vulnerability, the_3dit0r, 2007/04/09
Hot Editor v4.0 Local File Inclusion, liz0, 2007/04/09
Mybb Hot Editor Plugin Local File Inclusion, liz0, 2007/04/09
- Re: Mybb Hot Editor Plugin Local File Inclusion, Kevin Finisterre (lists), 2007/04/09
- Re: Re: Mybb Hot Editor Plugin Local File Inclusion, liz0, 2007/04/09
QuizShock 1.6.1 - Cross-Site Scripting Vulnerability, john, 2007/04/09
Request It : Song Request System 1.0b - remote file inclusion, mail, 2007/04/09
Gsylvain35 Portail Web Remote File Include Vulnerabilities, the_3dit0r, 2007/04/09
DeskPRO v2.0.1 - Cross-Site Scripting Vulnerability, john, 2007/04/09
Remot File Include In Script Lore v1, RaeD, 2007/04/09
phpMyAdmin 2.6.1 Local Cross Site Scripting, the_3dit0r, 2007/04/09
Take Control In Script Jeebles Directory, RaeD, 2007/04/09
Scorp Book <== v1.0 (smilies.php) Remote File Include Exploit, k4rtal, 2007/04/09
UBB.threads (<= 6.1.1) SQL Injection Vulnerability, john, 2007/04/09
witshare 0.9 Remote File Include Vulnerabilitiy, the_3dit0r, 2007/04/07
CmailServer WebMail <= V.5.3.4 (signup) Remote XSS Exploit, ajannhwt, 2007/04/07
[MajorSecurity Advisory #42]webblizzard CMS - Cross Site Scripting and Session fixation Issues, Securityaudit, 2007/04/07
PHP <= 5.2.1 wbmp file handling integer overflow, Ivan Fratric, 2007/04/07
[Full-disclosure] [ GLSA 200704-07 ] libwpd: Multiple vulnerabilities, Raphael Marichez, 2007/04/06
[Full-disclosure] [ GLSA 200704-06 ] Evince: Stack overflow in included gv code, Raphael Marichez, 2007/04/06
LayerOne 2007 - Speaker Line up Announced, Layer One, 2007/04/06
[SECURITY] [DSA 1278-1] New man-db packages fix arbitrary code execution, Noah Meyerhans, 2007/04/06
livor 2.5 Cross-Site Scripting Vulnerability, rko . thelegendkiller, 2007/04/06
[MajorSecurity Advisory #41]onelook courts online - Session fixation Issue, Securityaudit, 2007/04/06
[MajorSecurity Advisory #40]onelook oboShop - Session fixation Issue, Securityaudit, 2007/04/06
[MajorSecurity Advisory #39]onelook onebyone CMS - Session fixation Issue, Securityaudit, 2007/04/06
phpContact Multiple Remote File Inclusion Vulnerabilities, rko . thelegendkiller, 2007/04/06
ACLS ineffective in SQL-Ledger and LedgerSMB, Chris Travers, 2007/04/06
[Full-disclosure] AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption, Piotr Bania, 2007/04/06
[Full-disclosure] AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero), Piotr Bania, 2007/04/06
[Full-disclosure] AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption, Piotr Bania, 2007/04/06
[Full-disclosure] ZDI-07-014: Kaspersky Anti-Virus ActiveX Control Unsafe Method Exposure Vulnerablity, zdi-disclosures, 2007/04/05
[Full-disclosure] ZDI-07-013: Kaspersky AntiVirus Engine ARJ Archive Parsing Heap Overflow Vulnerability, zdi-disclosures, 2007/04/05
[security bulletin] HPSBUX02204 SSRT071341 rev.1 - HP-UX Running CIFS Server (Samba), Remote Denial of Service (DoS), security-alert, 2007/04/05
Wserve HTTP Server 4.6 Version (Long Directory Name) Buffer Overflow - Denial Of Service, UniquE, 2007/04/05
Microsoft .NET request filtering bypass vulnerability (BID 20753), research, 2007/04/05
[ MDKSA-2007:081 ] - Updated freetype2 packages fix vulnerability, security, 2007/04/05
[ MDKSA-2007:080 ] - Updated tightvnc packages fix integer overflow vulnerabilities, security, 2007/04/05
LedgerSMB 1.2.0 finally released, fixes CVE-2006-5589, Chris Travers, 2007/04/05
[ MDKSA-2007:079 ] - Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities, security, 2007/04/05
[Full-disclosure] iDefense Security Advisory 04.04.07: ESRI ArcSDE Buffer Overflow Vulnerability, iDefense Labs, 2007/04/05
[Full-disclosure] iDefense Security Advisory 04.04.07: Kaspersky Internet Security Suite klif.sys Heap Overflow Vulnerability, iDefense Labs, 2007/04/05
[ MDKSA-2007:078 ] - Updated kernel packages fix multiple vulnerabilities and bugs, security, 2007/04/05
[Full-disclosure] iDefense Security Advisory 04.04.07: Kaspersky AntiVirus SysInfo ActiveX Control Information Disclosure Vulnerability, iDefense Labs, 2007/04/05
Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug, pdp (architect), 2007/04/05
- Re: [Full-disclosure] [WEB SECURITY] Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug, Daniel Veditz, 2007/04/05
- Re: Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug, Thor Larholm, 2007/04/06
[ MDKSA-2007:077 ] - Updated krb5 packages fix vulnerabilities, security, 2007/04/05
Gazi Okul Sitesi 2007(tr)(fotokategori.asp) Remote SQL Injection, r00t-balance, 2007/04/05
[SECURITY] [DSA 1277-1] New XMMS packages fix arbitrary code execution, Noah Meyerhans, 2007/04/05
Several Windows image viewers vulnerabilities, Ivan Fratric, 2007/04/04
High Risk Vulnerability in OpenOffice, NGSSoftware Insight Security Research, 2007/04/04
[Full-disclosure] VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates, VMware Security team, 2007/04/04
[ MDKSA-2007:076 ] - Updated kdelibs packages to address UTF8 issue in KJS, security, 2007/04/04
MyBlog: PHP and MySQL Blog/CMS software Remote File Include Vulnerabilitiy, the_3dit0r, 2007/04/04
MyBlog: PHP and MySQL Blog/CMS software Cross-Site Scripting Vulnerabilitiy, the_3dit0r, 2007/04/04
phpechocms2 Remote File Include Vulnerabilities, the_3dit0r, 2007/04/04
phpechocms v.2 Cross-Site Scripting Vulnerabilitiy, the_3dit0r, 2007/04/04
Monkey CMS v0.0.3 Remote File Include Vulnerabilitiy, the_3dit0r, 2007/04/04
rPSA-2007-0067-1 nas, rPath Update Announcements, 2007/04/04
K-CMS v1.0 Remote File Include Vulnerabilities, the_3dit0r, 2007/04/04
iXon_CMS 0.30 Remote File Include Vulnerabilities, the_3dit0r, 2007/04/04
Remot File Include In phpexplorator_2_0, RaeD, 2007/04/04
[MajorSecurity Advisory #38]eXV2 CMS - Session fixation and Cross-Site-Scripting Issues, Securityaudit, 2007/04/04
[ MDKSA-2007:074 ] - Updated qt3 packages to address utf8 decoder bug, security, 2007/04/04
CYBSEC Release: SAP Security - Paper & Tool release, Mariano Nuñez Di Croce, 2007/04/04
CYBSEC Security Pre-Advisory: SAP RFC_SET_REG_SERVER_PROPERTY RFC Function Denial Of Service, CYBSEC Advisories, 2007/04/04
CYBSEC Security Pre-Advisory: SAP SYSTEM_CREATE_INSTANCE RFC Function Buffer Overflow, CYBSEC Advisories, 2007/04/04
CYBSEC Security Pre-Advisory: SAP RFC_START_GUI RFC Function Buffer Overflow, CYBSEC Advisories, 2007/04/04
lite-cms-0.2.1 Remote File Include Vulnerabilities, the_3dit0r, 2007/04/04
CYBSEC Security Pre-Advisory: SAP RFC_START_PROGRAM RFC Function Multiple Vulnerabilities, CYBSEC Advisories, 2007/04/04
CYBSEC Pre-Advisory: SAP TRUSTED_SYSTEM_SECURITY RFC Function Information Disclosure, CYBSEC Advisories, 2007/04/04
[ MDKSA-2007:075 ] - Updated qt4 packages to address utf8 decoder bug, security, 2007/04/04
[Full-disclosure] Three New Papers on Oracle Forensics, David Litchfield, 2007/04/04
[Full-disclosure] rPSA-2007-0066-1 kdelibs qt-x11-free, rPath Update Announcements, 2007/04/04
[Full-disclosure] Mozilla Firefox Insecure Element Stealth Injection Vulnerability, Michal Majchrowicz, 2007/04/04
- Re: [Full-disclosure] Mozilla Firefox Insecure Element Stealth Injection Vulnerability, 3APA3A, 2007/04/04
[Full-disclosure] rPSA-2007-0065-1 freetype xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs, rPath Update Announcements, 2007/04/04
[Full-disclosure] rPSA-2007-0063-1 krb5 krb5-server krb5-services krb5-test krb5-workstation, rPath Update Announcements, 2007/04/04
[Full-disclosure] rPSA-2007-0064-1 ImageMagick, rPath Update Announcements, 2007/04/04
[Full-disclosure] rPSA-2007-0062-1 firefox, rPath Update Announcements, 2007/04/04
[Full-disclosure] [USN-449-1] krb5 vulnerabilities, Kees Cook, 2007/04/04
[Full-disclosure] [USN-448-1] X.org vulnerabilities, Kees Cook, 2007/04/04
[Full-disclosure] iDefense Security Advisory 04.03.07: Multiple Vendor X Server XC-MISC Extension Memory Corruption Vulnerability, iDefense Labs, 2007/04/04
[Full-disclosure] iDefense Security Advisory 04.03.07: Multiple Vendor X Server fonts.dir File Parsing Integer Overflow Vulnerability, iDefense Labs, 2007/04/04
[Full-disclosure] iDefense Security Advisory 04.03.07: Multiple Vendor X Server BDF Font Parsing Integer Overflow Vulnerability, iDefense Labs, 2007/04/04
[Full-disclosure] [ GLSA 200704-04 ] OpenPBS: Multiple vulnerabilities, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200704-03 ] OpenAFS: Privilege escalation, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200704-05 ] zziplib: Buffer Overflow, Raphael Marichez, 2007/04/04
Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation, Jim Hoagland, 2007/04/04
- Re: Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation, Jim Hoagland, 2007/04/06
- Re: Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation, GomoR, 2007/04/07
[SECURITY] [DSA 1276-1] New krb5 packages fix several vulnerabilities, Moritz Muehlenhoff, 2007/04/04
[Full-disclosure] [ GLSA 200704-02 ] MIT Kerberos 5: Arbitrary remote code execution, Sune Kloppenborg Jeppesen, 2007/04/04
[Full-disclosure] ZDI-07-012: Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow, zdi-disclosures, 2007/04/04
Re: On-going Internet Emergency and Domain Names, Bob Fiero, 2007/04/04
- Re: On-going Internet Emergency and Domain Names, Alexander Klimov, 2007/04/11
MITKRB5-SA-2007-001: telnetd allows login as arbitrary user [CVE-2007-0956], Tom Yu, 2007/04/04
MITKRB5-SA-2007-003: double-free vulnerability in kadmind (via GSS-API library) [CVE-2007-1216], Tom Yu, 2007/04/04
[Full-disclosure] iDefense Security Advisory 04.03.07: Multiple Vendor Kerberos kadmind Buffer Overflow Vulnerability, iDefense Labs, 2007/04/04
MITKRB5-SA-2007-002: KDC, kadmind stack overflow in krb5_klog_syslog [CVE-2007-0957], Tom Yu, 2007/04/04
[Full-disclosure] iDefense Security Advisory 04.03.07: Microsoft Windows WMF Triggerable Kernel Design Error DoS Vulnerability, iDefense Labs, 2007/04/04
Remote File Include In Script stat12, RaeD, 2007/04/04
MyBulletinBoard (MyBB) <= 1.2.3 Remote Code Execution Exploit, gmdarkfig, 2007/04/04
[MajorSecurity Advisory #37]HolaCMS - Cross Site Scripting Issue, SecurityAudit, 2007/04/04
TWOVB][ The Week Of Vista Bugs: the truth is out there, TWOVB Team, 2007/04/04
[ GLSA 200704-01 ] Asterisk: Two SIP Denial of Service vulnerabilities, Sune Kloppenborg Jeppesen, 2007/04/04
[CFP] VNSECON 07 - Call for Papers / HCMC - August 03-04, 2007, rd, 2007/04/04
[Full-disclosure] iDefense Security Advisory 03.31.07: IBM Tivoli Provisioning Manager for OS Deployment Multiple Vulnerabilities, iDefense Labs, 2007/04/04
[Full-disclosure] iDefense Security Advisory 04.02.07: Hewlett-Packard Mercury Quality Center ActiveX Control ProgColor Buffer Overflow Vulnerability, iDefense Labs, 2007/04/04
APOP vulnerability, Gaëtan LEURENT, 2007/04/04
- Re: APOP vulnerability, 3APA3A, 2007/04/04
  - Re: APOP vulnerability, Gaëtan LEURENT, 2007/04/04
    - Re[2]: APOP vulnerability, 3APA3A, 2007/04/04
WOVB #01: Bypassing Vista Firewall, Flying over obstructive line, TWOVB Team, 2007/04/04
Maplab <= 2.2.1 (gszAppPath) Remote File Inclusion Vulnerability, mufti . rizal, 2007/04/04
- Re: Maplab <= 2.2.1 (gszAppPath) Remote File Inclusion Vulnerability, jasus, 2007/04/04
  - Re: Maplab <= 2.2.1 (gszAppPath) Remote File Inclusion Vulnerability, str0ke, 2007/04/04
Windows XP/Vista (.ANI) Remote Exploit (bypass eeye patch), jamikazu, 2007/04/04
Norton Multiple insufficient argument validation of hooked SSDT function Vulnerability, Matousec - Transparent security Research, 2007/04/04
DirectAdmin persistant XSS [takeover an Administrator`s account], Kanedaaa Bohater, 2007/04/04
[security bulletin] HPSBMA02198 SSRT061177 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Access, security-alert, 2007/04/04
[Full-disclosure] More information on ZERT patch for ANI 0day, Gadi Evron, 2007/04/04
- Re: [Full-disclosure] More information on ZERT patch for ANI 0day, James (njan) Eaton-Lee, 2007/04/04
  - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Gadi Evron, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, James (njan) Eaton-Lee, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Gadi Evron, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, James (njan) Eaton-Lee, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Gadi Evron, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, James (njan) Eaton-Lee, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Gadi Evron, 2007/04/04
- Re: [Full-disclosure] More information on ZERT patch for ANI 0day, wac, 2007/04/04
- Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Stefan Kelm, 2007/04/04
  - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Matthew Murphy, 2007/04/04
  - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP], 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Jason Frisvold, 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP], 2007/04/04
    - Re: [Full-disclosure] More information on ZERT patch for ANI 0day, Jason Frisvold, 2007/04/04
- Re: [Full-disclosure] More information on ZERT patch for ANI 0day, neal.krawetz, 2007/04/04
[Full-disclosure] iDefense Security Advisory 03.31.07: Multiple Vendor ImageMagick DCM and XWD Buffer Overflow Vulnerabilities, iDefense Labs, 2007/04/04
2BGal 3.1.1 <= (admin/index.php) Remote File Include Vulnerability, BorN To K!LL BorN To K!LL, 2007/04/04
MS announces out-of-band patch for ANI 0day, Gadi Evron, 2007/04/04
[Full-disclosure] 0day Oracle 10g exploit - dbms_aq.enqueue - become DBA, Andrea \"bunker\" Purificato, 2007/04/04
- Re: [Full-disclosure] 0day Oracle 10g exploit - dbms_aq.enqueue - become DBA, Gadi Evron, 2007/04/04
  - Re: [Full-disclosure] 0day Oracle 10g exploit - dbms_aq.enqueue - become DBA, Andrea Purificato - bunker, 2007/04/04
- Re: [Full-disclosure] [RECTIFY] Oracle 10g exploit - dbms_aq.enqueue - become DBA, Andrea \"bunker\" Purificato, 2007/04/04
[Full-disclosure] CAU-2007-0001: Window Transparency Information Disclosure, I)ruid, 2007/04/04
[Full-disclosure] [ GLSA 200703-28 ] CUPS: Denial of Service, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200703-27 ] Squid: Denial of Service, Raphael Marichez, 2007/04/04
Remot File Include In Aardvark Topsites PHP 5, RaeD Hasadya, 2007/04/04
Remot File Include In Shop-SCRIPT FREE, RaeD Hasadya, 2007/04/04
Remot File Include In SLAED_CMS_2, RaeD Hasadya, 2007/04/04
PHP-Fusion 'Calendar_Panel' Module show_event.PHP (m_month) SQL Injection Exploit And PoC, UniquE, 2007/04/04
Windows .ANI Stack Overflow Exploit, devcode29, 2007/04/04
CA BrightStor ARCserve Backup Mediasvr.exe vulnerability, Williams, James K, 2007/04/04
[Full-disclosure] On-going Internet Emergency and Domain Names, Gadi Evron, 2007/04/04
[Full-disclosure] TSRT-07-03: America Online SuperBuddy ActiveX Control Code Execution Vulnerability, TSRT, 2007/04/04
Busting The Bluetooth Myth, Max Moser, 2007/04/04
[Full-disclosure] [ GLSA 200703-26 ] file: Integer underflow, Raphael Marichez, 2007/04/04
ANI Zeroday, Third Party Patch, Marc Maiffret, 2007/04/04
[ECHO_ADV_80$2007] Softerra Time-Assistant <= 6.2 (inc_dir) Remote File Inclusion Vulnerability, erdc, 2007/04/04
The Week Of Vista Bugs [TWOVB], TWOVB Team, 2007/04/04
AIX 4.3 lsmcode local root command execution, pr1nce_empire, 2007/04/04
- Re: AIX 4.3 lsmcode local root command execution, Shiva Persaud, 2007/04/04
DrakeCMS multiple vulerabilities, security, 2007/04/04
Mybb Change Password Vulnerability, security, 2007/04/04
[Full-disclosure] 0-day ANI vulnerability in Microsoft Windows (CVE-2007-0038), Alexander Sotirov, 2007/04/04
- Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows (CVE-2007-0038), James Rankin, 2007/04/04
  - Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows (CVE-2007-0038), James Matthews, 2007/04/04
- Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows (CVE-2007-0038), Jan Wrobel, 2007/04/04
  - Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows (CVE-2007-0038), Alexander Sotirov, 2007/04/04
    - Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows(CVE-2007-0038), Eric Sites, 2007/04/04
- Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows (CVE-2007-0038), Alexander Sotirov, 2007/04/04
[Full-disclosure] VMSA-2007-0002 VMware ESX security updates, VMware Security team, 2007/04/04
[Full-disclosure] CA Brightstor Backup Mediasvr.exe Remote Code Vulnerability, M. Shirk, 2007/04/04
[ MDKSA-2007:073 ] - Updated openoffice.org packages to address vulnerabilities, security, 2007/04/04
[ GLSA 200703-25 ] Ekiga: Format string vulnerability, Raphael Marichez, 2007/04/04
[ MDKSA-2007:072 ] - Updated kdelibs packages to address FTP PASV issue in konqueror, security, 2007/04/04
[ MDKSA-2007:071 ] - Updated xmms packages to address integer vulnerabilities, security, 2007/04/04
[Full-disclosure] iDefense Security Advisory 03.29.07: IBM Lotus Sametime JNILoader Arbitrary DLL Load Vulnerability, iDefense Labs, 2007/04/04
AOL 9.0 Deskbar.dll/Toolbar.dll DoS Vulnerability, Justin Seitz, 2007/04/04
Windows Live Spaces logged user NetworkSetup.aspx cross site scripting, paolo . difebbo, 2007/04/04
Widespread vulnerabilities in Libero.it/Infostrada.it web portals, rosario . valotta, 2007/04/04
Advanced Login <= 0.7 (root) Remote File Inclusion Vulnerability, bithedz, 2007/04/04
Xoops Module Friendfinder <= 3.3 (view.php id) BLIND SQL Injection Exploit, ajannhwt, 2007/04/04
[Full-disclosure] rPSA-2007-0061-1 inkscape, rPath Update Announcements, 2007/04/04
[VulnWatch] Microsoft Windows Vista Slideshow Unspecified Blue Screen Of Death Vulnerability, Michał Majchrowicz, 2007/04/04
- Re: [VulnWatch] Microsoft Windows Vista Slideshow Unspecified Blue Screen Of Death Vulnerability, 3APA3A, 2007/04/04
- [Full-disclosure] Microsoft Windows Vista Slideshow Unspecified Blue Screen Of Death Vulnerability, Michal Majchrowicz, 2007/04/04
[Full-disclosure] [USN-447-1] KDE library vulnerabilities, Kees Cook, 2007/04/04
Arbitrary Command Execution in DataDomain Administrator Interface, Elliot Kendall, 2007/04/04
[SECURITY] [DSA 1270-2] New OpenOffice.org packages fix several vulnerabilities, Martin Schulze, 2007/04/04
Denial of Service Vulnerabilities in TrueCrypt 4.3 Linux (re. bid 23180), Tim Rees, 2007/04/04
- Re: Denial of Service Vulnerabilities in TrueCrypt 4.3 Linux (re. bid 23180), Pavel Kankovsky, 2007/04/04
- Re: Denial of Service Vulnerabilities in TrueCrypt 4.3 Linux (re. bid 23180), Marco Ivaldi, 2007/04/04
[Full-disclosure] [Full-Disclosure] Another XSS vulnerability in italian Libero.it, Matteo G.P. Flora, 2007/04/04
Re: [SECURITY ALERT] osTicket bugs, eticket, 2007/04/04
[Full-disclosure] ZDI-07-011: IBM Lotus Domino IMAP Server CRAM-MD5 Authentication Buffer Overflow Vulnerability, zdi-disclosures, 2007/04/04
Re: Multiple Vulnerabilities In osTicket, eticket, 2007/04/04
Re: [Full-disclosure] SecurityVulns.com: Microsoft Visual C++ 8.0 standard library time functions invalid assertion DoS (Problem 3000)., William A. Rowe, Jr., 2007/04/04
Corel Wordperfect Office X3 Stack Overflow, jonny, 2007/04/04
Bypass phishing protection in Firefox / Opera, zonafirefox, 2007/04/04
- Re: Bypass phishing protection in Firefox / Opera, Anonymous, 2007/04/04
- Re: Re: Bypass phishing protection in Firefox / Opera, bob, 2007/04/04
- Re: Re: Bypass phishing protection in Firefox / Opera, zonafirefox, 2007/04/04
- Re: Bypass phishing protection in Firefox / Opera, Åukasz Pilorz, 2007/04/04
[Full-disclosure] iDefense Security Advisory 03.28.07: IBM Lotus Domino Server LDAP Request Invalid DN Message Heap Overflow Vulnerability, iDefense Labs, 2007/04/04
[Full-disclosure] iDefense Security Advisory 03.28.07: IBM Lotus Domino Web Access Cross Site Scripting Vulnerability, iDefense Labs, 2007/04/04
[Full-disclosure] [USN-446-1] NAS vulnerabilities, Kees Cook, 2007/04/04
[Full-disclosure] [USN-445-1] XMMS vulnerabilities, Kees Cook, 2007/04/04
[Full-disclosure] [USN-444-1] OpenOffice.org vulnerabilities, Kees Cook, 2007/04/04
[USN-443-1] Firefox vulnerability, Kees Cook, 2007/04/04
[SECURITY] [DSA 1273-1] New nas packages fix multiple remote vulnerabilities, Noah Meyerhans, 2007/04/04
[ MDKSA-2007:070 ] - Updated evolution packages to address vulnerability, security, 2007/04/04
Buffer Overflow in InterVetions' NaviCopa HTTP server 2.01, skillTube.com, 2007/04/04
Yahoo! Messenger Auth Bypass Vulnerability, kishor . tech, 2007/04/04
[KDE Security Advisory] KDE ioslave PASV port scanning vulnerability, Dirk Mueller, 2007/04/04
[ECHO_ADV_78$2007] C-Arbre <= 0.6PR7 (root_path) Remote File Inclusion Vulnerability, erdc, 2007/04/04
[KAPDA::#64] - Flexbb Sql Injection, alireza hassani, 2007/04/04
Metasploit Framework 3.0 RELEASED!, H D Moore, 2007/04/04
Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC, UniquE, 2007/04/04
- Re: Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC, andy, 2007/04/04
- Re: Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC, vaughan . montgomery, 2007/04/04
[Full-disclosure] Linux Kernel DCCP Memory Disclosure Vulnerability, Robert Święcki, 2007/04/04
- Re: [Full-disclosure] Linux Kernel DCCP Memory Disclosure Vulnerability, Robert Święcki, 2007/04/04
- Re: Re: [Full-disclosure] Linux Kernel DCCP Memory Disclosure Vulnerability, acme, 2007/04/04
[Full-disclosure] SignKorea's ActiveX Buffer Overflow Vulnerability, Alex Park, 2007/04/04
[Full-disclosure] [ GLSA 200703-24 ] mgv: Stack overflow in included gv code, Raphael Marichez, 2007/04/04
[Full-disclosure] [USN-442-1] Evolution vulnerability, Kees Cook, 2007/04/04
[USN-441-1] Squid vulnerability, Kees Cook, 2007/04/04
Libero.it (italian ISP) XSS vulnerability, rosario . valotta, 2007/04/04
Playstation 3 "Remote Play" Remote DoS Exploit, mak0b, 2007/04/04
PHP 5.2.1 with PECL phpDOC local buffer overflow, retrog, 2007/04/04
Multiple XSS in IronMail, Javier Olascoaga, 2007/04/04
Satel Lite for PhpNuke (Satellite.php) <= Local File Inclusion, stormhacker, 2007/04/04
Mephisto blog is vulnerable to XSS, Sergey Tikhonov, 2007/04/04
Horde Webmail Multiple HTML Injection vulnerability, DoZ, 2007/04/04
- Re: Horde Webmail Multiple HTML Injection vulnerability, Jan Schneider, 2007/04/04
Path Disclosure - Wordpress 2.1.2, lj, 2007/04/04
- Re: Path Disclosure - Wordpress 2.1.2, jm, 2007/04/04
CcCounter 2.0 cross-site scripting vulnerability, localexploit, 2007/04/04
[Full-disclosure] Redirection vulnerability in oracle entreprise manager, handrix cobra, 2007/04/04
[Full-disclosure] Fizzle : Firefox Extension Vulnerability, CrYpTiC MauleR, 2007/04/04
- [Full-disclosure] Fizzle : Firefox Extension Vulnerability, CrYpTiC MauleR, 2007/04/04
- [Full-disclosure] Fizzle : Firefox Extension Vulnerability, CrYpTiC MauleR, 2007/04/04
Remote File Include In phpBB-2.0.19, RaeD Hasadya, 2007/04/04
- BOGUS: Remote File Include In phpBB-2.0.19, Cornelius Riemenschneider, 2007/04/04
- Re: Remote File Include In phpBB-2.0.19, neothermic, 2007/04/04
File Upload System V1.0 (AD_BODY_TEMP) multiple file include, ngevedBangetAsli, 2007/04/04
Joomla com_joomlaboard 1.1.x Branch (sbp) Multiple Remote File Include Vulnerabi, Cold - Zero, 2007/04/04
iDefense Security Advisory 03.23.07: Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability, iDefense Labs, 2007/04/04
[Full-disclosure] iDefense Security Advisory 03.23.07: DataRescue IDA Pro Remote Debugger Server Authentication Bypass Vulnerability, iDefense Labs, 2007/04/04
[ MDKSA-2007:069 ] - Updated inkscape packages to format string vulnerability, security, 2007/04/04
CRLF injection in PHP ftp function, fangxiaodun, 2007/04/04
[ MDKSA-2007:068 ] - Updated squid packages fix DoS vulnerability, security, 2007/04/04
[NB07-10] Multiple vulnerabilities in Takebishi Electric DeviceXplorer MODBUS OPC server, Lluis Mora, 2007/04/04
[NB07-09] Multiple vulnerabilities in Takebishi Electric DeviceXplorer FA-M3 OPC server, Lluis Mora, 2007/04/04
[SECURITY] [DSA 1272-1] New tcpdump packages fix denial of service, Moritz Muehlenhoff, 2007/04/04
[NB07-08] Multiple vulnerabilities in Takebishi Electric DeviceXplorer MELSEC OPC server, Lluis Mora, 2007/04/04
[NB07-07] Multiple vulnerabilities in Takebishi Electric DeviceXplorer HIDIC OPC server, Lluis Mora, 2007/04/04
[NB07-17] Multiple vulnerabilities in Takebishi Electric DeviceXplorer SYSMAC OPC server, Lluis Mora, 2007/04/04
[NB07-22] Multiple vulnerabilities in NETxEIB OPC server, Lluis Mora, 2007/04/04
[ MDKSA-2007:067 ] - Updated file packages fix heap-based buffer overflow vulnerability, security, 2007/04/04
Remote File Include In Coppermine Photo Gallery, RaeD Hasadya, 2007/04/04
Remote File Include In copyright © James Coyle; JCcorp, RaeD Hasadya, 2007/04/04
ManageEngine Firewall Analyzer arbitrary file disclosure to authorized user, yearsilent, 2007/04/04
- Re: ManageEngine Firewall Analyzer arbitrary file disclosure to authorized user, support, 2007/04/04
- Re: ManageEngine Firewall Analyzer arbitrary file disclosure to authorized user, support, 2007/04/04
CFP for RAID 2007: Extended due date for papers: April 8th, jeffh, 2007/04/04
[ECHO_ADV_77$2007] Study planner (Studiewijzer) <= 0.15 Remote File Inclusion Vulnerability, erdc, 2007/04/04
**SubHub v2.3.0**, anon, 2007/04/04
- Re: **SubHub v2.3.0**, webmaster, 2007/04/04
[Full-disclosure] Exploiting Microsoft dynamic Dns updates, Andres Tarasco, 2007/04/04
- Re: [Full-disclosure] Exploiting Microsoft dynamic Dns updates, Denis Jedig, 2007/04/04
  - Re: [Full-disclosure] Exploiting Microsoft dynamic Dns updates, Andres Tarasco, 2007/04/04
[Full-disclosure] rPSA-2007-0059-1 file, rPath Update Announcements, 2007/04/04
[Full-disclosure] [USN-439-1] file vulnerability, Kees Cook, 2007/04/04
[Full-disclosure] [USN-440-1] MySQL vulnerability, Kees Cook, 2007/04/04
Two new DoS Vulnerabilities in Asterisk Fixed, Matt Riddell (NZ), 2007/04/04
[security bulletin] HPSBUX02156 SSRT061236 rev.2 - HP-UX Running Thunderbird, Remote Unauthorized Access or Elevation of Privileges or Denial of Service (DoS), security-alert, 2007/04/04
HPSBGN02189 SSRT071297 rev.2 - ServiceGuard for Linux, Remote Unauthorized Access, security-alert, 2007/04/04
Secunia Research: XMMS Integer Overflow and Underflow Vulnerabilities, Secunia Research, 2007/04/04
Secunia Research: Evolution Shared Memo Categories Format String Vulnerability, Secunia Research, 2007/04/04
Secunia Research: InterActual Player / CinePlayer IASystemInfo.dll ActiveX Control Buffer Overflow, Secunia Research, 2007/04/04
[ MDKSA-2007:066 ] - Updated OpenAFS packages address vulnerability, security, 2007/04/04
[ MDKSA-2007:065 ] - Updated nas packages address multiple vulnerabilities, security, 2007/04/04
[Full-disclosure] [USN-438-1] Inkscape vulnerability, Kees Cook, 2007/04/04
[ GLSA 200703-23 ] WordPress: Multiple vulnerabilities, Raphael Marichez, 2007/04/04
[SECURITY] [DSA 1270-1] New OpenOffice.org packages fix several vulnerabilities, Martin Schulze, 2007/04/04
[Full-disclosure] [ GLSA 200703-22 ] Mozilla Network Security Service: Remote execution of arbitrary code, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200703-21 ] PHP: Multiple vulnerabilities, Raphael Marichez, 2007/04/04
Linksys WAG200G - Information disclosure, dniggebrugge, 2007/04/04
- Re: Linksys WAG200G - Information disclosure, Shawn Merdinger, 2007/04/04
- Re: Linksys WAG200G - Information disclosure, Bartłomiej Ochman, 2007/04/04
- Re: Linksys WAG200G - Information disclosure, no-mail, 2007/04/18
[SECURITY] [DSA 1271-1] New openafs packages fix remote privilege escalation bug, Noah Meyerhans, 2007/04/04
Helix Server heap overflow, research, 2007/04/04
Microsoft coverup ? Stolen Xbox live accounts list of known victims - Please Help, Kevin Finisterre (lists), 2007/04/04
w-agora [multiples file upload,xss,full path disclosure,error sql], none, 2007/04/04
Advisory - Redirection Vulnerability in wp-login.php., Metaeye SG, 2007/04/04
Web Wiz Forums 8.05 (MySQL version) SQL Injection, Ivan Fratric, 2007/04/04
Oracle 10g Dynamic Monitoring Services XSS /servlet/Spy, Sea Shark, 2007/04/04
[Full-disclosure] [USN-437-1] libwpd vulnerability, Kees Cook, 2007/04/04
[Full-disclosure] ZynOS v3.40 One packet killer, Joxean Koret, 2007/04/04
w-agora version 4.2.1 Information Disclosure Vulnerability, jesper . jurcenoks, 2007/04/04
w-agora version 4.2.1 Multiple Path Disclosure Vulnerabilities, jesper . jurcenoks, 2007/04/04
[Reversemode Advisory] Microsoft Windows Ndistapi.sys IRQL escalation, Reversemode, 2007/04/04
Conflict of Interest - My summary, Mark Litchfield, 2007/04/04
- Re: Conflict of Interest - My summary, crazy frog crazy frog, 2007/04/04
CCleaguePro_V1.0.1RC1 Directory Traversal Vulnerability, snakeapollon, 2007/04/04
- Re: CCleaguePro_V1.0.1RC1 Directory Traversal Vulnerability, str0ke, 2007/04/04
phpx 3.5.15 multiples vulnerabilities, none, 2007/04/04
Layered Defense Research Advisory: F-Secure Anti-Virus Client Security 6.02 Format String Vulnerability, dh, 2007/04/04
Unclassified NewsBoard 1.6.3 multiples logs disclosure, none, 2007/04/04
MetaForum <= 0.513 Beta - Remote file upload Vulnerability, aeroxteam------nospam-----, 2007/04/04
Full Disclosure: Arbitrary execution vulnerability in SQL-Ledger and LedgerSMB, Chris Travers, 2007/04/04
Net Portal Dynamic System (NPDS) <= 5.10 Remote Code Execution 0day, gmdarkfig, 2007/04/04
[Full-disclosure] [ GLSA 200703-20 ] LSAT: Insecure temporary file creation, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200703-19 ] LTSP: Authentication bypass in included LibVNCServer code, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200703-18 ] Mozilla Thunderbird: Multiple vulnerabilities, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200703-17 ] ulogd: Remote execution of arbitrary code, Raphael Marichez, 2007/04/04
[SECURITY] [DSA 1268-1] New libwpd packages fix arbitrary code execution, Martin Schulze, 2007/04/04
Rhapsody IRC 0.28b (NICK) Multiple fs and bof vulnerability, starcadi, 2007/04/04
Your Opinion +, Mark Litchfield, 2007/04/04
- Re: Your Opinion +, Alex Belits, 2007/04/04
- Re: Your Opinion +, Thor (Hammer of God), 2007/04/04
CLBOX <= (signup.php header) Remote File Include Vulnerability, BorN To K!LL BorN To K!LL, 2007/04/04
[ GLSA 200703-15 ] PostgreSQL: Multiple vulnerabilities, Raphael Marichez, 2007/04/04
Bypassing Mcafee Entreprise Password Protection, thesinoda, 2007/04/04
- Re: Bypassing Mcafee Entreprise Password Protection, 3APA3A, 2007/04/04
  - RE: Bypassing Mcafee Entreprise Password Protection, Rogheden Anders, 2007/04/04
[Full-disclosure] [ GLSA 200703-16 ] Apache JK Tomcat Connector: Remote execution of arbitrary code, Raphael Marichez, 2007/04/04
[Full-disclosure] [ GLSA 200703-14 ] Asterisk: SIP Denial of Service, Raphael Marichez, 2007/04/04
[Full-disclosure] Call For Papers - IT Underground Dublin, Marcin Tkaczyk, 2007/04/04
[NETRAGARD-20070316 SECURITY ADVISORY][FrontBase Database <= 4.2.7 ALL PLATFORMS][REMOTE BUFFER OVERFLOW CONDITION][LEVEL: EASY][RISK:MEDIUM], Netragard Security Advisories, 2007/04/04
[ MDKSA-2007:064 ] - Updated openoffice.org packages to address libwpd heap overflow vulnerabilities, security, 2007/04/04
[ MDKSA-2007:063 ] - Updated libwpd packages to address heap overflow vulnerabilities, security, 2007/04/04
Re: [Bogus] Lazarus Guestbook (admin.php)Remote File Include Expliot, Steven M. Christey, 2007/04/04
rPSA-2007-0057-1 libwpd, rPath Update Announcements, 2007/04/04
rPSA-2007-0056-1 gnupg, rPath Update Announcements, 2007/04/04
Your Opinion, Mark Litchfield, 2007/04/04
- Re: Your Opinion, bugtraq, 2007/04/04
- Re: Your Opinion, Jonathan Glass (GM), 2007/04/04
- RE: Your Opinion, Mario Contestabile, 2007/04/04
- Re: Your Opinion, Crispin Cowan,