bugtraq April 2010 archive
| Main Archive Page > Month Archives > bugtraq archives |
bugtraq By Subject
| Subject | Author | Date |
| 60cycleCMS (DOCUMENT_ROOT) Multiple Local File Inclusion Vulnerability | ||
| eidelweiss_at_nospam | 14 Apr 2010 | |
| [ MDVSA-2009:332-1 ] gimp | ||
| security_at_nospam | 28 Apr 2010 | |
| [ MDVSA-2010:069 ] nss | ||
| security_at_nospam | 07 Apr 2010 | |
| [ MDVSA-2010:070 ] firefox | ||
| security_at_nospam | 13 Apr 2010 | |
| [ MDVSA-2010:070-1 ] firefox | ||
| security_at_nospam | 20 Apr 2010 | |
| [ MDVSA-2010:071 ] krb5 | ||
| security_at_nospam | 13 Apr 2010 | |
| [ MDVSA-2010:071 ] mozilla-thunderbird | ||
| security_at_nospam | 23 Apr 2010 | |
| [ MDVSA-2010:072 ] cups | ||
| security_at_nospam | 14 Apr 2010 | |
| [ MDVSA-2010:073 ] cups | ||
| security_at_nospam | 14 Apr 2010 | |
| [ MDVSA-2010:073-1 ] cups | ||
| security_at_nospam | 14 Apr 2010 | |
| [ MDVSA-2010:074 ] kdebase | ||
| security_at_nospam | 15 Apr 2010 | |
| [ MDVSA-2010:075 ] openoffice.org | ||
| security_at_nospam | 15 Apr 2010 | |
| [ MDVSA-2010:076 ] openssl | ||
| security_at_nospam | 17 Apr 2010 | |
| [ MDVSA-2010:076-1 ] openssl | ||
| security_at_nospam | 19 Apr 2010 | |
| [ MDVSA-2010:077 ] nss_db | ||
| security_at_nospam | 17 Apr 2010 | |
| [ MDVSA-2010:078 ] sudo | ||
| security_at_nospam | 17 Apr 2010 | |
| [ MDVSA-2010:078-1 ] sudo | ||
| security_at_nospam | 28 Apr 2010 | |
| [ MDVSA-2010:079 ] irssi | ||
| security_at_nospam | 17 Apr 2010 | |
| [ MDVSA-2010:080 ] brltty | ||
| security_at_nospam | 17 Apr 2010 | |
| [ MDVSA-2010:081 ] apache-mod_auth_shadow | ||
| security_at_nospam | 18 Apr 2010 | |
| [ MDVSA-2010:082 ] clamav | ||
| security_at_nospam | 18 Apr 2010 | |
| [ MDVSA-2010:083 ] emacs | ||
| security_at_nospam | 20 Apr 2010 | |
| [ MDVSA-2010:084 ] java-1.6.0-openjdk | ||
| security_at_nospam | 28 Apr 2010 | |
| [ MDVSA-2010:085 ] pidgin | ||
| security_at_nospam | 28 Apr 2010 | |
| [ MDVSA-2010:086 ] kdegraphics | ||
| security_at_nospam | 29 Apr 2010 | |
| [ MDVSA-2010:087 ] poppler | ||
| security_at_nospam | 29 Apr 2010 | |
| [ MDVSA-2010:088 ] kernel | ||
| security_at_nospam | 30 Apr 2010 | |
| [#OUF-273299]: AVTECH Software (AVC781Viewer.dll) ActiveX Multiple Remote Vulnerabilities | ||
| sinner | 20 Apr 2010 | |
| [CVE-2010-0432] Apache OFBiz Multiple XSS Vulnerabilities | ||
| Jacopo Cappellato | 14 Apr 2010 | |
| [DSECRG-09-049] IBM BladeCenter Management Module - DoS vulnerability | ||
| Alexandr Polyakov | 15 Apr 2010 | |
| [DSecRG-09-053] VMware Remoute Console - format string | ||
| Alexandr Polyakov | 15 Apr 2010 | |
| [HITB-Announce] FINAL CALL - CFP for HITBSecConf2010 Amsterdam | ||
| Hafez Kamal | 08 Apr 2010 | |
| [HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! | ||
| Hafez Kamal | 23 Apr 2010 | |
| [HITB-Announce] HITBSecConf2010 - Dubai - Presentation Materials | ||
| Hafez Kamal | 23 Apr 2010 | |
| [security bulletin] HPSBMA02488 SSRT100013 rev.2 - HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure | ||
| security-alert_at_nospam | 26 Apr 2010 | |
| [security bulletin] HPSBMA02490 SSRT090222 rev.2 - HP SOA Registry Foundation, Remote Unauthorized Access to Data, Cross Site Scripting (XSS), Privilege Escalation | ||
| security-alert_at_nospam | 02 Apr 2010 | |
| [security bulletin] HPSBMA02491 SSRT100060 rev.1 - HP Operations Manager for Windows, Remote Execution of Arbitrary Code | ||
| security-alert_at_nospam | 20 Apr 2010 | |
| [security bulletin] HPSBMA02492 SSRT100079 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access | ||
| security-alert_at_nospam | 22 Apr 2010 | |
| [security bulletin] HPSBMA02494 SSRT090168 rev.1 - HP Virtual Machine Manager (VMM) for Windows, Remote Unauthorized Access, Privilege Elevation | ||
| security-alert_at_nospam | 22 Apr 2010 | |
| [security bulletin] HPSBMA02525 SSRT100083 rev.1 - HP System Insight Manager Running on HP-UX, Linux, and Windows , Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), Privilege Elevation | ||
| security-alert_at_nospam | 27 Apr 2010 | |
| [security bulletin] HPSBPI02398 SSRT080166 rev.5 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files | ||
| security-alert_at_nospam | 13 Apr 2010 | |
| [security bulletin] HPSBUX02508 SSRT100007 rev.2 - HP-UX Running sendmail with STARTTLS Enabled, Remote Unauthorized Access | ||
| Morris, John R. (SSRT) | 26 Apr 2010 | |
| security-alert_at_nospam | 20 Apr 2010 | |
| [security bulletin] HPSBUX02517 SSRT100058 rev.1 - HP-UX Running OpenSSL, Remote Unauthorized Information Disclosure, Unauthorized Data Modification, Denial of Service (DoS) | ||
| security-alert_at_nospam | 13 Apr 2010 | |
| [security bulletin] HPSBUX02517 SSRT100058 rev.2 - HP-UX Running OpenSSL, Remote Unauthorized Information Disclosure, Unauthorized Data Modification, Denial of Service (DoS) | ||
| security-alert_at_nospam | 19 Apr 2010 | |
| [security bulletin] HPSBUX02518 SSRT100051 rev.1 - HP-UX, Local Denial of Service (DoS) | ||
| security-alert_at_nospam | 19 Apr 2010 | |
| [security bulletin] HPSBUX02519 SSRT100004 rev.1 - HP-UX Running BIND, Remote Compromise of NXDOMAIN Responses | ||
| security-alert_at_nospam | 22 Apr 2010 | |
| [SECURITY] [DSA 2021-2] New spamass-milter packages fix regression | ||
| Giuseppe Iuculano | 26 Apr 2010 | |
| [SECURITY] [DSA 2026-1] New netpbm-free packages fix denial of service | ||
| Giuseppe Iuculano | 02 Apr 2010 | |
| [SECURITY] [DSA 2027-1] New xulrunner packages fix several vulnerabilities | ||
| Moritz Muehlenhoff | 03 Apr 2010 | |
| [SECURITY] [DSA 2028-1] New xpdf packages fix several vulnerabilities | ||
| Luciano Bello | 05 Apr 2010 | |
| [SECURITY] [DSA 2029-1] New imlib2 packages fix arbitrary code execution | ||
| Nico Golde | 05 Apr 2010 | |
| [SECURITY] [DSA 2030-1] New mahara packages fix sql injection | ||
| Nico Golde | 06 Apr 2010 | |
| [SECURITY] [DSA 2031-1] New krb5 packages fix denial of service | ||
| Giuseppe Iuculano | 11 Apr 2010 | |
| [SECURITY] [DSA 2032-1] New libpng packages fix several vulnerabilities | ||
| Giuseppe Iuculano | 11 Apr 2010 | |
| [SECURITY] [DSA 2033-1] New ejabberd packages fix denial of service | ||
| Sébastien Delafond | 15 Apr 2010 | |
| [SECURITY] [DSA 2034-1] New phpmyadmin packages fix several vulnerabilities | ||
| Thijs Kinkhorst | 17 Apr 2010 | |
| [SECURITY] [DSA 2036-1] New jasper packages fix denial of service | ||
| Thijs Kinkhorst | 17 Apr 2010 | |
| [SECURITY] [DSA 2037-1] New kdm packages fix privilege escalation | ||
| Thijs Kinkhorst | 17 Apr 2010 | |
| [SECURITY] [DSA 2038-1] New pidgin packages fix denial of service | ||
| Thijs Kinkhorst | 18 Apr 2010 | |
| [SECURITY] [DSA 2039-1] New cacti packages fix missing input sanitising | ||
| Thijs Kinkhorst | 23 Apr 2010 | |
| [SECURITY] [DSA-2035-1] New apache2 packages fix several issues | ||
| Stefan Fritsch | 17 Apr 2010 | |
| [SECURITY] CVE-2010-1157: Apache Tomcat information disclosure vulnerability | ||
| Mark Thomas | 21 Apr 2010 | |
| [Suspected Spam]New vulnerabilities in CMS SiteLogic | ||
| Salvatore Fresta aka Drosophila | 19 Apr 2010 | |
| MustLive | 18 Apr 2010 | |
| [USN-624-2] Erlang vulnerability | ||
| Jamie Strandboge | 09 Apr 2010 | |
| [USN-890-6] CMake vulnerabilities | ||
| Jamie Strandboge | 15 Apr 2010 | |
| [USN-920-1] Firefox 3.0 and Xulrunner vulnerabilities | ||
| Jamie Strandboge | 10 Apr 2010 | |
| [USN-921-1] Firefox 3.5 and Xulrunner vulnerabilities | ||
| Jamie Strandboge | 09 Apr 2010 | |
| [USN-923-1] OpenJDK vulnerabilities | ||
| Kees Cook | 07 Apr 2010 | |
| [USN-924-1] Kerberos vulnerabilities | ||
| Kees Cook | 07 Apr 2010 | |
| [USN-925-1] MoinMoin vulnerabilities | ||
| Jamie Strandboge | 08 Apr 2010 | |
| [USN-926-1] ClamAV vulnerabilities | ||
| Jamie Strandboge | 08 Apr 2010 | |
| [USN-927-1] NSS vulnerability | ||
| Jamie Strandboge | 09 Apr 2010 | |
| [USN-927-2] NSS regression | ||
| Jamie Strandboge | 11 Apr 2010 | |
| [USN-927-3] Thunderbird regression | ||
| Jamie Strandboge | 11 Apr 2010 | |
| [USN-928-1] Sudo vulnerability | ||
| Jamie Strandboge | 15 Apr 2010 | |
| [USN-929-1] irssi vulnerabilities | ||
| Jamie Strandboge | 16 Apr 2010 | |
| [USN-929-2] irssi regression | ||
| Jamie Strandboge | 20 Apr 2010 | |
| [USN-931-1] FFmpeg vulnerabilities | ||
| Marc Deslauriers | 19 Apr 2010 | |
| [USN-931-2] FFmpeg regression | ||
| Marc Deslauriers | 26 Apr 2010 | |
| [USN-932-1] KDM vulnerability | ||
| Jamie Strandboge | 19 Apr 2010 | |
| [USN-933-1] PostgreSQL vulnerability | ||
| Jamie Strandboge | 29 Apr 2010 | |
| [USN-934-1] Netpbm vulnerability | ||
| Jamie Strandboge | 30 Apr 2010 | |
| A XSS in User_ChkLogin.asp of PowerEasy 2006 | ||
| lis cker | 24 Apr 2010 | |
| ACROS Security: Local Binary Planting in VMware Tools for Windows (ASPR #2010-04-12-2) | ||
| ACROS Lists | 12 Apr 2010 | |
| ACROS Security: Remote Binary Planting in VMware Tools for Windows (ASPR #2010-04-12-1) | ||
| ACROS Lists | 12 Apr 2010 | |
| Adobe viewer plugin can be made to crash IE or FF | ||
| Angus Mann | 28 Apr 2010 | |
| Advisory 01/2010: MyBB Password Reset Email BCC: Injection Vulnerability | ||
| Stefan Esser | 13 Apr 2010 | |
| Advisory 02/2010: MyBB Password Reset Weak Random Numbers Vulnerability | ||
| Stefan Esser | 13 Apr 2010 | |
| AneCMS Multiple Vulnerabilities | ||
| admin_at_nospam | 12 Apr 2010 | |
| Apache ActiveMQ is prone to source code disclosure vulnerability. | ||
| research_at_nospam | 22 Apr 2010 | |
| Apache ActiveMQ XSS Vulnerability | ||
| arun.gnyan_at_nospam | 29 Apr 2010 | |
| BPstyle - Graphic studio SQL Injection Vulnerabilities | ||
| md.r00t.defacer_at_nospam | 30 Apr 2010 | |
| CA20100406-01: Security Notice for CA XOsoft | ||
| Kotas, Kevin J | 06 Apr 2010 | |
| Call for participation -- Eth0:2010 Summer | ||
| Mark Janssen | 21 Apr 2010 | |
| Cert-Lexsi - Microsoft Windows Media Services MMS Buffer Overflow Vulnerability | ||
| Fabien PERIGAUD | 14 Apr 2010 | |
| CfP: GameSec 2010 - Deadline is 3 weeks away! | ||
| Albert Levi | 22 Apr 2010 | |
| Cisco Security Advisory: Cisco Secure Desktop ActiveX Control Code Execution Vulnerability | ||
| Cisco Systems Product Security Incident Response Team | 14 Apr 2010 | |
| Cisco Security Advisory: Cisco Small Business Video Surveillance Cameras and Cisco 4-Port Gigabit Security Routers Authentication Bypass Vulnerability | ||
| Cisco Systems Product Security Incident Response Team | 21 Apr 2010 | |
| CompleteFTP v3.3.0 - Remote Memory Consumption DoS | ||
| Mehdi Mahdjoub [SYSDREAM] | 19 Apr 2010 | |
| Conference on Cyber Conflict: speakers selected! | ||
| k g | 26 Apr 2010 | |
| CONFidence 2010, 25-26th May - Call For Participation | ||
| Andrzej Targosz | 28 Apr 2010 | |
| CORE-2010-0323: XSS Vulnerability in NextGEN Gallery Wordpress Plugin | ||
| CORE Security Technologies Advisories | 06 Apr 2010 | |
| CORE-2010-0406 - User Invoices Persistent XSS Vulnerability in CactuShop | ||
| CORE Security Technologies Advisories | 20 Apr 2010 | |
| CSRF in e107 | ||
| advisory_at_nospam | 20 Apr 2010 | |
| CSRF Vulnerability in OSSIM 2.2.1 | ||
| nicolas.grandjean_at_nospam | 01 Apr 2010 | |
| CVE-2009-4509: TANDBERG VCS Authentication Bypass | ||
| Timothy D. Morgan | 10 Apr 2010 | |
| CVE-2009-4510: TANDBERG VCS Static SSH Host Keys | ||
| VSR Advisories | 10 Apr 2010 | |
| CVE-2009-4511: TANDBERG VCS Arbitrary File Retrieval | ||
| VSR Advisories | 10 Apr 2010 | |
| DeepSec 2010 - Call for Papers and Experts | ||
| DeepSec Conference | 07 Apr 2010 | |
| DynPG CMS v4.1.0 Multiple Remote File Inclusion Vulnerability | ||
| eidelweiss_at_nospam | 04 Apr 2010 | |
| eidelweiss_at_nospam | 01 Apr 2010 | |
| EUSecWest Amsterdam 2010 Call For Papers (short deadline May 5 - conf June 16/17) | ||
| Dragos Ruiu | 30 Apr 2010 | |
| Fun with FORTIFY_SOURCE | ||
| Dan Rosenberg | 27 Apr 2010 | |
| Hack.lu 2010 CfP | ||
| info | 06 Apr 2010 | |
| Hackproofing Oracle Financials 11i & R12 | ||
| Joxean Koret | 15 Apr 2010 | |
| hashdays 2010 - Call for Papers (#days CFP) | ||
| hashdays CFP | 24 Apr 2010 | |
| HITBSecConf DUBAI 2010: Learn more about web attacks and stealth hacking | ||
| Laurent OUDOT at TEHTRI-Security | 12 Apr 2010 | |
| iDefense Security Advisory 04.09.10: VMware VMnc Codec Heap Overflow Vulnerability | ||
| iDefense Labs | 09 Apr 2010 | |
| iDefense Security Advisory 04.15.10: Multiple Vendor AgentX++ Integer Overflow Vulnerability | ||
| iDefense Labs | 16 Apr 2010 | |
| iDefense Security Advisory 04.15.10: Multiple Vendor AgentX++ Stack Buffer Overflow Vulnerability | ||
| iDefense Labs | 16 Apr 2010 | |
| Imperva SecureSphere Web Application Firewall and Database Firewall Bypass Vulnerability | ||
| Clear Skies Security | 13 Apr 2010 | |
| In-portal 5.0.3 Remote Arbitrary File Upload Exploit | ||
| eidelweiss_at_nospam | 23 Apr 2010 | |
| Insufficient Anti-automation and Denial of Service vulnerabilities in multiple systems | ||
| MustLive | 12 Apr 2010 | |
| IP address spoofing in e107 | ||
| advisory_at_nospam | 20 Apr 2010 | |
| IWD Group SQL Injection Vulnerabilities | ||
| md.r00t.defacer_at_nospam | 22 Apr 2010 | |
| JAVA web start arbitrary command-line injection - "-XXaltjvm" arbitrary dll loading (0day) | ||
| Reversemode | 09 Apr 2010 | |
| Juniper SRX Critical Denial of Service Vulnerability | ||
| J. Oquendo | 01 Apr 2010 | |
| London DEFCON April meet - DC4420 - Wed 28th April 2010 | ||
| Major Malfunction | 21 Apr 2010 | |
| Madirish Webmail 2.01 (basedir) RFI/LFI Vulnerability | ||
| eidelweiss_at_nospam | 24 Apr 2010 | |
| Micropoint Proactive Denfense Mp110013.sys <= 1.3.10123.0 Local Privilege Escalation Exploit | ||
| dlrow1991_at_nospam | 14 Apr 2010 | |
| Miranda TLS MitM with XMPP/Jabber protocol | ||
| Jan Schejbal | 06 Apr 2010 | |
| MITKRB5-SA-2010-003 [CVE-2010-0629] denial of service in kadmind in older krb5 releases | ||
| Tom Yu | 06 Apr 2010 | |
| MITKRB5-SA-2010-004 [CVE-2010-1320] double free in KDC | ||
| Tom Yu | 20 Apr 2010 | |
| New vulnerabilities in CMS SiteLogic | ||
| Salvatore Fresta aka Drosophila | 26 Apr 2010 | |
| MustLive | 26 Apr 2010 | |
| NovaStor NovaNet <= 13.0 issues | ||
| mu-b | 26 Apr 2010 | |
| Nucleus CMS v.3.51 (DIR_LIBS) Multiple Vulnerability | ||
| eidelweiss_at_nospam | 14 Apr 2010 | |
| phpegasus 'config.php' Arbitrary File Upload Vulnerability | ||
| eidelweiss_at_nospam | 25 Apr 2010 | |
| RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities | ||
| wsn1983_at_nospam | 14 Apr 2010 | |
| Secunia Research: e107 Avatar/Photograph Image File Upload Vulnerability | ||
| Secunia Research | 19 Apr 2010 | |
| Secunia Research: e107 Content Management Plugin Script Insertion Vulnerability | ||
| Secunia Research | 19 Apr 2010 | |
| Secunia Research: imlib2 "IMAGE_DIMENSIONS_OK()" Logic Error | ||
| Secunia Research | 21 Apr 2010 | |
| Secunia Research: Internet Download Manager FTP Buffer Overflow Vulnerability | ||
| Secunia Research | 30 Apr 2010 | |
| Secunia Research: Pulse CMS Arbitrary File Upload Vulnerability | ||
| Secunia Research | 09 Apr 2010 | |
| Secunia Research: Pulse CMS Cross-Site Request Forgery | ||
| Secunia Research | 09 Apr 2010 | |
| Secunia Research: Visualization Library DAT File Parsing Vulnerabilities | ||
| Secunia Research | 14 Apr 2010 | |
| Secunia Research: VMWare VMnc Codec HexTile Encoding Buffer Overflow | ||
| Secunia Research | 09 Apr 2010 | |
| Secunia Research: VMWare VMnc Codec HexTile Encoding Two Integer Truncation Vulnerabilities | ||
| Secunia Research | 09 Apr 2010 | |
| Security-Assessment.com WhitePaper/Addendum: Cross Context Scripting with Firefox & Exploiting Cross Context Scripting vulnerabilities in Firefox | ||
| Roberto Suggi Liverani | 21 Apr 2010 | |
| SmodCMS 'config.php' Arbitrary File Upload Vulnerability | ||
| eidelweiss_at_nospam | 24 Apr 2010 | |
| SQL Injection in MS Access with backslash escaped input | ||
| gheibi_at_nospam | 30 Apr 2010 | |
| STP mitm attack idea | ||
| Williams, Dan | 30 Apr 2010 | |
| Ivan Jager | 29 Apr 2010 | |
| Joel Maslak | 29 Apr 2010 | |
| Jean-Christophe Baptiste | 29 Apr 2010 | |
| Jason T. Masker | 28 Apr 2010 | |
| Stefan Laudat | 29 Apr 2010 | |
| wlet_at_nospam | 29 Apr 2010 | |
| news | 29 Apr 2010 | |
| Jann Horn | 28 Apr 2010 | |
| Przemyslaw Borkowski | 27 Apr 2010 | |
| sudoedit local privilege escalation through PATH manipulation | ||
| Agazzini Maurizio | 22 Apr 2010 | |
| Ansgar Wiechers | 20 Apr 2010 | |
| Agazzini Maurizio | 19 Apr 2010 | |
| t2'10: Call for Papers 2010 (Helsinki / Finland) | ||
| Tomi Tuominen | 25 Apr 2010 | |
| TCPDF Library Remote Code Execution Vulnerability | ||
| Matthias -apoc- Hecker | 08 Apr 2010 | |
| Unauthenticated Filesystem Access in iomega Home Media Network Hard Drive | ||
| fizix610_at_nospam | 13 Apr 2010 | |
| Vana CMS Remote File Download | ||
| info_at_nospam | 13 Apr 2010 | |
| vBulletin - Insecure Custom BBCode Tags | ||
| advisories_at_nospam | 29 Apr 2010 | |
| Vbulletin - Two-Step External Link XSS | ||
| edgard.chammas_at_nospam | 20 Apr 2010 | |
| VMSA-2010-0006 ESX Service Console updates for samba and acpid | ||
| VMware Security Team | 01 Apr 2010 | |
| VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues | ||
| VMware Security team | 09 Apr 2010 | |
| Vulnerabilities in CCMS | ||
| MustLive | 29 Apr 2010 | |
| Vulnerabilities in CMS SiteLogic | ||
| MustLive | 10 Apr 2010 | |
| MustLive | 08 Apr 2010 | |
| Vulnerabilities in Dunia Soccer | ||
| Susan Bradley | 09 Apr 2010 | |
| MustLive | 09 Apr 2010 | |
| Susan Bradley | 08 Apr 2010 | |
| MustLive | 07 Apr 2010 | |
| Vulnerabilities in HoloCMS | ||
| MustLive | 02 Apr 2010 | |
| Vulnerabilities in NovaBoard | ||
| terry white | 22 Apr 2010 | |
| MustLive | 21 Apr 2010 | |
| Vulnerabilities in phpCOIN | ||
| Susan Bradley | 09 Apr 2010 | |
| MustLive | 09 Apr 2010 | |
| Vulnerabilities in TAK cms | ||
| MustLive | 05 Apr 2010 | |
| Vulnerability Centreon IT & Network Monitoring v2.1.5 | ||
| Mehdi Mahdjoub - Sysdream IT Security Services | 02 Apr 2010 | |
| Vulnerability in CB Captcha for Joomla and Mambo | ||
| MustLive | 28 Apr 2010 | |
| none_at_nospam | 19 Apr 2010 | |
| MustLive | 16 Apr 2010 | |
| Matteo Valenza | 16 Apr 2010 | |
| nant_at_nospam | 18 Apr 2010 | |
| James Martin | 16 Apr 2010 | |
| Susan Bradley | 16 Apr 2010 | |
| Susan Bradley | 15 Apr 2010 | |
| nant_at_nospam | 16 Apr 2010 | |
| MustLive | 15 Apr 2010 | |
| Vulnerability in Referer for DataLife Engine | ||
| MustLive | 23 Apr 2010 | |
| VUPEN Security Research - Adobe Acrobat and Reader BMP Data Buffer Overflow Vulnerability | ||
| VUPEN Web Research | 14 Apr 2010 | |
| VUPEN Security Research - Adobe Acrobat and Reader GIF Data Buffer Overflow Vulnerability | ||
| VUPEN Web Research | 14 Apr 2010 | |
| VUPEN Security Research - Adobe Acrobat and Reader JPEG Data Buffer Overflow Vulnerability | ||
| VUPEN Web Research | 14 Apr 2010 | |
| VUPEN Security Research - Adobe Acrobat and Reader PNG Data Buffer Overflow Vulnerability | ||
| VUPEN Web Research | 14 Apr 2010 | |
| VUPEN Security Research - VMware Products Movie Decoder Heap Overflow Vulnerability | ||
| VUPEN Security Research | 12 Apr 2010 | |
| VUPEN Web Security Research - WebAsyst Shop-Script Multiple Input Validation Vulnerabilities | ||
| VUPEN Web Research | 14 Apr 2010 | |
| Widnows XP TCP/IP Stack Security Issue (ARP for non RFC 1918 addresses) | ||
| Paul Schmehl | 26 Apr 2010 | |
| wborskey_at_nospam | 25 Apr 2010 | |
| Widnows XP TCP/IP Stack Security Issue (ARP for non RFC 1918addresses) | ||
| Dominik George | 27 Apr 2010 | |
| r.st_at_nospam | 26 Apr 2010 | |
| Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability | ||
| th_decoder_at_nospam | 22 Apr 2010 | |
| Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY local kernel Denial of Service Vulnerability | ||
| th_decoder_at_nospam | 22 Apr 2010 | |
| WinMount MOU File Handling Overflow Vulnerability | ||
| lilf | 17 Apr 2010 | |
| WinSoftMagic Photo Editor .PNG File Buffer Overflow | ||
| eidelweiss_at_nospam | 09 Apr 2010 | |
| XSS and Content Injection in HTC Windows Mobile SMS Preview PopUp | ||
| michael.mueller_at_nospam | 22 Apr 2010 | |
| XSS in Microsoft SharePoint Server 2007 | ||
| advisory_at_nospam | 28 Apr 2010 | |
| XSS vulnerability in Zikula Application Framework | ||
| advisory_at_nospam | 27 Apr 2010 | |
| advisory_at_nospam | 27 Apr 2010 | |
| Zabbix <= 1.8.1 SQL Injection | ||
| Dawid Golunski | 01 Apr 2010 | |
| ZDI-10-033: Microsoft Internet Explorer TIME2 Behavior Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-034: Microsoft Internet Explorer Tabular Data Control ActiveX Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-035: Apple QuickTime genl Atom Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-036: Apple QuickTime H.263 PictureHeader Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-037: Apple QuickTime MJPEG Sample Dimensions Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-038: Apple QuickTime QDMC/QDM2 Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-039: Apple OS X Internet Enabled Disk Image Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-040: Apple QuickTime RLE Bit Depth Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-041: Apple QuickTime QDM2/QDCA Atom Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-042: Apple QuickTime MediaVideo Compressor Name Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-043: Apple QuickTime FlashPix NumberOfTiles Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-044: Apple QuickTime FLI LinePacket Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-045: Apple QuickTime MPEG-1 genl Atom Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-046: Mozilla Firefox Web Worker Array Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-047: Mozilla Firefox libpr0n imgContainer Bits-Per-Pixel Change Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-048: Mozilla Firefox nsTreeContentView Dangling Pointer Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-049: Mozilla Firefox PluginArray nsMimeType Dangling Pointer Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-050: Mozilla Firefox nsTreeSelection EventListener Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 02 Apr 2010 | |
| ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-052: Sun Java Runtime Environment XNewPtr Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-053: Sun Java Runtime Environment MIDI File metaEvent Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-054: Sun Java Runtime Environment JPEGImageReader stepX Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-055: Sun Java Runtime Environment Mutable InetAddress Socket Policy Violation Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-056: Sun Java Runtime Environment Trusted Methods Chaining Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-057: Sun Java Runtime Environment JPEGImageDecoderImpl Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-058: Apple Mac OS X ImageIO Framework JPEG2000 Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-059: Sun Java Runtime Environment JPEGImageEncoderImpl Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-060: Sun Java Runtime Environment MixerSequencer Invalid Array Index Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-061: Sun Java Runtime CMM readMabCurveData Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-062: Novell Netware NWFTPD RMD/RNFR/DELE Argument Parsing Remote Code Execution Vulnerabilities | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-063: Mozilla Firefox Cross Document DOM Node Moving Code Execution Vulnerability | ||
| ZDI Disclosures | 05 Apr 2010 | |
| ZDI-10-065: CA XOsoft xosoapapi.asmx Multiple Remote Code Execution Vulnerabilities | ||
| ZDI Disclosures | 06 Apr 2010 | |
| ZDI-10-066: CA XOsoft Control Service entry_point.aspx Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 06 Apr 2010 | |
| ZDI-10-067: Apple QuickTime Pict BkPixPat Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 06 Apr 2010 | |
| ZDI-10-068: Apple QuickTime H.263 Array Index Parsing Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 09 Apr 2010 | |
| ZDI-10-069: Microsoft Office Publisher File Conversion TextBox Processing Buffer Overflow Vulnerability | ||
| ZDI Disclosures | 13 Apr 2010 | |
| ZDI-10-070: Microsoft Windows Media Player Codec Retrieval Dangling Pointer Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 13 Apr 2010 | |
| ZDI-10-071: Adobe Reader TrueType Font Handling Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 13 Apr 2010 | |
| ZDI-10-072: Cisco Secure Desktop CSDWebInstaller ActiveX Control Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 14 Apr 2010 | |
| ZDI-10-073: Sun Microsystems Directory Server DSML-over-HTTP Username Search Denial of Service Vulnerability | ||
| ZDI Disclosures | 13 Apr 2010 | |
| ZDI-10-074: Sun Microsystems Directory Server Enterprise ASN.1 Parsing Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 13 Apr 2010 | |
| ZDI-10-075: Sun Microsystems Directory Server Enterprise DSML UTF-8 Denial of Service Vulnerability | ||
| ZDI Disclosures | 13 Apr 2010 | |
| ZDI-10-076: Apple Preview libFontParser SpecialEncoding Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 15 Apr 2010 | |
| ZDI-10-077: Adobe Download Manager Atlcom.get_atlcom ActiveX Control Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 21 Apr 2010 | |
| ZDI-10-078: Novell ZENworks Configuration Management UploadServlet Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 23 Apr 2010 | |
| ZDI-10-079: Realnetworks Helix Server NTLM Authentication Invalid Base64 Remote Code Execution Vulnerability | ||
| ZDI Disclosures | 28 Apr 2010 | |
| Ziggurat CMS Multiple Vulnerabilities | ||
| info_at_nospam | 15 Apr 2010 | |
- Last message date: 30 Apr 2010
- Archived on: 01 May 2010 GMT