full-disclosure-uk January 2010 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: By Subject

full-disclosure-uk By Subject

SubjectAuthor Date
[Full-disclosure] (no subject)
 CodeScan Labs Advisories 19 Jan 2010
[Full-disclosure] 0xdeadbeef attack on gpg
 Sens0r The real 17 Jan 2010
[Full-disclosure] [ GLSA 201001-01 ] NTP: Denial of Service
 Stefan Behte 03 Jan 2010
[Full-disclosure] [ GLSA 201001-02 ] Adobe Flash Player: Multiple vulnerabilities
 Alex Legler 03 Jan 2010
[Full-disclosure] [ GLSA 201001-03 ] PHP: Multiple vulnerabilities
 Tobias Heinlein 05 Jan 2010
[Full-disclosure] [ GLSA 201001-04 ] VirtualBox: Multiple vulnerabilities
 Stefan Behte 13 Jan 2010
[Full-disclosure] [ GLSA 201001-05 ] net-snmp: Authorization bypass
 Stefan Behte 13 Jan 2010
[Full-disclosure] [ GLSA 201001-06 ] aria2: Multiple vulnerabilities
 Stefan Behte 13 Jan 2010
[Full-disclosure] [ GLSA 201001-07 ] Blender: Untrusted search path
 Stefan Behte 13 Jan 2010
[Full-disclosure] [ GLSA 201001-08 ] SquirrelMail: Multiple vulnerabilities
 Stefan Behte 13 Jan 2010
[Full-disclosure] [ GLSA 201001-09 ] Ruby: Terminal Control Character Injection
 Alex Legler 14 Jan 2010
[Full-disclosure] [ MDVSA-2009:220-1 ] davfs
 security_at_nospam 05 Jan 2010
[Full-disclosure] [ MDVSA-2009:227-1 ] freeradius
 security_at_nospam 11 Jan 2010
[Full-disclosure] [ MDVSA-2009:241-1 ] squid
 security_at_nospam 11 Jan 2010
[Full-disclosure] [ MDVSA-2009:293-1 ] squidGuard
 security_at_nospam 11 Jan 2010
[Full-disclosure] [ MDVSA-2009:300-1 ] apache-conf
 security_at_nospam 07 Jan 2010
[Full-disclosure] [ MDVSA-2009:300-2 ] apache-conf
 security_at_nospam 07 Jan 2010
[Full-disclosure] [ MDVSA-2009:316-1 ] expat
 security_at_nospam 08 Jan 2010
[Full-disclosure] [ MDVSA-2009:316-2 ] expat
 security_at_nospam 09 Jan 2010
[Full-disclosure] [ MDVSA-2009:316-3 ] expat
 security_at_nospam 10 Jan 2010
[Full-disclosure] [ MDVSA-2010:000 ] firefox
 security_at_nospam 11 Jan 2010
[Full-disclosure] [ MDVSA-2010:001 ] pidgin
 security_at_nospam 12 Jan 2010
[Full-disclosure] [ MDVSA-2010:002 ] pidgin
 security_at_nospam 12 Jan 2010
[Full-disclosure] [ MDVSA-2010:003 ] sendmail
 security_at_nospam 12 Jan 2010
[Full-disclosure] [ MDVSA-2010:004 ] bash
 security_at_nospam 13 Jan 2010
[Full-disclosure] [ MDVSA-2010:005 ] krb5
 security_at_nospam 14 Jan 2010
[Full-disclosure] [ MDVSA-2010:006 ] krb5
 security_at_nospam 14 Jan 2010
[Full-disclosure] [ MDVSA-2010:007 ] php
 security_at_nospam 15 Jan 2010
[Full-disclosure] [ MDVSA-2010:008 ] php
 security_at_nospam 15 Jan 2010
[Full-disclosure] [ MDVSA-2010:009 ] php
 security_at_nospam 15 Jan 2010
[Full-disclosure] [ MDVSA-2010:010 ] libthai
 security_at_nospam 16 Jan 2010
[Full-disclosure] [ MDVSA-2010:011 ] mysql
 security_at_nospam 17 Jan 2010
[Full-disclosure] [ MDVSA-2010:012 ] mysql
 security_at_nospam 17 Jan 2010
[Full-disclosure] [ MDVSA-2010:013 ] transmission
 security_at_nospam 18 Jan 2010
[Full-disclosure] [ MDVSA-2010:014 ] transmission
 security_at_nospam 18 Jan 2010
[Full-disclosure] [ MDVSA-2010:015 ] roundcubemail
 security_at_nospam 19 Jan 2010
[Full-disclosure] [ MDVSA-2010:016 ] wireshark
 security_at_nospam 19 Jan 2010
[Full-disclosure] [ MDVSA-2010:017 ] ruby
 security_at_nospam 19 Jan 2010
[Full-disclosure] [ MDVSA-2010:018 ] phpMyAdmin
 security_at_nospam 19 Jan 2010
[Full-disclosure] [ MDVSA-2010:019 ] gzip
 security_at_nospam 20 Jan 2010
[Full-disclosure] [ MDVSA-2010:020 ] gzip
 security_at_nospam 20 Jan 2010
[Full-disclosure] [ MDVSA-2010:021 ] bind
 security_at_nospam 20 Jan 2010
[Full-disclosure] [ MDVSA-2010:022 ] openssl
 security_at_nospam 21 Jan 2010
[Full-disclosure] [ MDVSA-2010:023 ] phpldapadmin
 security_at_nospam 21 Jan 2010
[Full-disclosure] [ MDVSA-2010:024 ] coreutils
 security_at_nospam 23 Jan 2010
[Full-disclosure] [ MDVSA-2010:025 ] php-pear-Mail
 security_at_nospam 25 Jan 2010
[Full-disclosure] [ MDVSA-2010:026 ] openldap
 security_at_nospam 26 Jan 2010
[Full-disclosure] [CORE-2009-1209] Google SketchUp 'lib3ds' 3DS Importer Memory Corruption
 CORE Security Advisories 13 Jan 2010
[Full-disclosure] [CORELAN-10-001] Audiotran 1.4.1 buffer overflow
 Security 09 Jan 2010
[Full-disclosure] [CORELAN-10-006] BOF Vulnerability in S.O.M.P.L. Player
 Security 19 Jan 2010
[Full-disclosure] [funsec] Corporate espionage in the news: Hilton and the Oil industry
 Benjamin Brown 26 Jan 2010
[Full-disclosure] [funsec] Corporate espionage in the news: Hilton and theOil industry
 David Harley 26 Jan 2010
[Full-disclosure] [Onapsis Security Advisory 2010-001] SAP WebAS Integrated ITS Remote Command Execution
 Onapsis Research Labs 19 Jan 2010
[Full-disclosure] [OOT] VPN Benchmark
 Fajar Edisya Putera 05 Jan 2010
[Full-disclosure] [SECURITY] CVE-2009-2693 Apache Tomcat unexpected file deletion and/or alteration
 Mark Thomas 24 Jan 2010
[Full-disclosure] [SECURITY] CVE-2009-2901 Apache Tomcat insecure partial deploy after failed undeploy
 Mark Thomas 24 Jan 2010
[Full-disclosure] [SECURITY] CVE-2009-2902 Apache Tomcat unexpected file deletion in work directory
 Mark Thomas 24 Jan 2010
[Full-disclosure] [Tool] DeepToad 1.1.0
 Dan Kaminsky 05 Jan 2010
 Joxean Koret 05 Jan 2010
 T Biehn 05 Jan 2010
 Dan Kaminsky 05 Jan 2010
 T Biehn 05 Jan 2010
 Joxean Koret 03 Jan 2010
[Full-disclosure] [UPDATE] NSOADV-2010-001: Panda Security Local Privilege Escalation
 NSO Research 20 Jan 2010
[Full-disclosure] [USN-877-1] Firefox 3.0 and Xulrunner 1.9 regression
 Jamie Strandboge 08 Jan 2010
[Full-disclosure] [USN-878-1] Firefox 3.5 and Xulrunner 1.9.1 regression
 Jamie Strandboge 08 Jan 2010
[Full-disclosure] [USN-879-1] Kerberos vulnerability
 Kees Cook 06 Jan 2010
[Full-disclosure] [USN-880-1] GIMP vulnerabilities
 Marc Deslauriers 07 Jan 2010
[Full-disclosure] [USN-881-1] Kerberos vulnerability
 Kees Cook 12 Jan 2010
[Full-disclosure] [USN-882-1] PHP vulnerabilities
 Marc Deslauriers 13 Jan 2010
[Full-disclosure] [USN-883-1] network-manager-applet vulnerabilities
 Marc Deslauriers 13 Jan 2010
[Full-disclosure] [USN-884-1] OpenSSL vulnerability
 Kees Cook 14 Jan 2010
[Full-disclosure] [USN-885-1] Transmission vulnerabilities
 Jamie Strandboge 14 Jan 2010
[Full-disclosure] [USN-887-1] LibThai vulnerability
 Marc Deslauriers 18 Jan 2010
[Full-disclosure] [USN-888-1] Bind vulnerabilities
 Marc Deslauriers 20 Jan 2010
[Full-disclosure] a:Schwachstelle: Durzosploit v0.1 alpha
 Joris Heinrich 11 Jan 2010
[Full-disclosure] Adobe Acrobat Script Injection
 stratsec Research 14 Jan 2010
[Full-disclosure] All China, All The Time
 Ivan . 20 Jan 2010
 Densmore, Todd 19 Jan 2010
 omg wtf 19 Jan 2010
 Christian Sciberras 18 Jan 2010
 Bipin Gautam 18 Jan 2010
 Christian Sciberras 18 Jan 2010
 Bipin Gautam 18 Jan 2010
 Christian Sciberras 18 Jan 2010
 Anders Klixbull 18 Jan 2010
 Marc Maiffret 16 Jan 2010
 Dan Kaminsky 16 Jan 2010
 Marc Maiffret 16 Jan 2010
 r00t 15 Jan 2010
 Densmore, Todd 15 Jan 2010
 Christian Sciberras 15 Jan 2010
 Benji 15 Jan 2010
 Benji 15 Jan 2010
 Christian Sciberras 15 Jan 2010
 Christian Sciberras 15 Jan 2010
 Peter Besenbruch 15 Jan 2010
 Thor (Hammer of God) 15 Jan 2010
 Christian Sciberras 15 Jan 2010
 James Matthews 15 Jan 2010
 Ivan . 15 Jan 2010
 Michael Holstein 14 Jan 2010
 NOC 14 Jan 2010
 Thor (Hammer of God) 14 Jan 2010
 Stuart Dunkeld 13 Jan 2010
 Thor (Hammer of God) 13 Jan 2010
 Thor (Hammer of God) 13 Jan 2010
[Full-disclosure] ALPHA3 released
 Berend-Jan Wever 10 Jan 2010
[Full-disclosure] Antisec for lulz - exposed (anti-sec.com)
 Christian Sciberras 05 Jan 2010
 phrack-ru_at_nospam 05 Jan 2010
 james_at_nospam 04 Jan 2010
 Gichuki John Chuksjonia 04 Jan 2010
 netinfinity 04 Jan 2010
 Adriel T. Desautels 03 Jan 2010
 Gichuki John Chuksjonia 02 Jan 2010
 Benji 02 Jan 2010
 Glafkos Charalambous 02 Jan 2010
 tonybrown_at_nospam 01 Jan 2010
 Thor (Hammer of God) 01 Jan 2010
 Christian Sciberras 01 Jan 2010
 Andrew A 01 Jan 2010
[Full-disclosure] AOL ActiveX - Hail to The Francis
 phc_at_nospam 18 Jan 2010
[Full-disclosure] avi crashes explorer.exe if samsung pc studio fun_avcodec.dll present
 auto489361_at_nospam 15 Jan 2010
[Full-disclosure] BETA3 released
 Berend-Jan Wever 02 Jan 2010
[Full-disclosure] Browser Fuzzer 3
 Jeff Williams 16 Jan 2010
 Krakow Labs 16 Jan 2010
[Full-disclosure] bugs for sale
 bughunter_at_nospam 09 Jan 2010
[Full-disclosure] CCCCC
 Kingcope 09 Jan 2010
[Full-disclosure] Cisco Security Advisory: Cisco IOS XR Software SSH Denial of Service Vulnerability
 Cisco Systems Product Security Incident Response Team 20 Jan 2010
[Full-disclosure] Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor CORBA GIOP Overflow Vulnerability
 Cisco Systems Product Security Incident Response Team 19 Jan 2010
[Full-disclosure] Context App Tool - New Web Application Testing Tool Released
 Context IS - Disclosure 04 Jan 2010
[Full-disclosure] CORELAN-10-003 - Udisk FTP Basic Edition Remote pre-auth DOS Advisory
 Steven Seeley 12 Jan 2010
[Full-disclosure] Corporate espionage in the news: Hilton and the Oil industry
 Gadi Evron 26 Jan 2010
[Full-disclosure] Countslide alphanumeric GetPC
 Berend-Jan Wever 02 Jan 2010
[Full-disclosure] Cross Site Identification (CSID) attack. Description and demonstration.
 Christian Sciberras 16 Jan 2010
 Ronen Z 16 Jan 2010
 Benji 13 Jan 2010
 Christian Sciberras 13 Jan 2010
 Christian Sciberras 13 Jan 2010
 Ronen Z 13 Jan 2010
[Full-disclosure] Cross site scriping Vulnerabilites in Testlink TestManagement and Execution System
 Prashant 15 Jan 2010
 Jeff Williams 15 Jan 2010
 Prashant 15 Jan 2010
[Full-disclosure] Cross-Site Scripting vulnerability in JVClouds3D for Joomla
 MustLive 08 Jan 2010
[Full-disclosure] CVE-2010-0071 (Oracle TNS Listener) PoC
 Dennis Yurichev 21 Jan 2010
[Full-disclosure] CVE-2010-0249
 exploit dev 15 Jan 2010
[Full-disclosure] CVE-2010-0249 in the wild
 exploit dev 23 Jan 2010
 Marc Maiffret 23 Jan 2010
 exploit dev 22 Jan 2010
 exploit dev 20 Jan 2010
[Full-disclosure] CYBSEC Advisory#2010-0101-FreePBX 2.5.x Information disclosure
 CYBSEC Labs 18 Jan 2010
[Full-disclosure] CYBSEC Advisory#2010-0102-FreePBX 2.5.x-2.6 Permanent XSS
 CYBSEC Labs 18 Jan 2010
[Full-disclosure] CYBSEC Advisory#2010-0103-FreePBX 2.5.1 SQL Injection
 CYBSEC Labs 18 Jan 2010
[Full-disclosure] DDIVRT-2009-27 F2L-3000 files2links SQL Injection Vulnerability
 ddivulnalert_at_nospam 25 Jan 2010
[Full-disclosure] Disk wiping -- An alternate approach?
 Michael Holstein 26 Jan 2010
 Kurt Buff 26 Jan 2010
 T Biehn 26 Jan 2010
 Kurt Buff 26 Jan 2010
 T Biehn 26 Jan 2010
 Michael Holstein 26 Jan 2010
 Stefan Weimar 26 Jan 2010
 Valdis.Kletnieks_at_nospam 26 Jan 2010
 T Biehn 26 Jan 2010
 E. Prom 26 Jan 2010
 Christian Sciberras 26 Jan 2010
 T Biehn 26 Jan 2010
 T Biehn 26 Jan 2010
 T Biehn 26 Jan 2010
 Christian Sciberras 26 Jan 2010
 Michael Holstein 26 Jan 2010
 Michael Holstein 26 Jan 2010
 Charles Skoglund 26 Jan 2010
 Nick FitzGerald 26 Jan 2010
 Bipin Gautam 26 Jan 2010
 E. Prom 26 Jan 2010
 Tracy Reed 26 Jan 2010
 Bipin Gautam 26 Jan 2010
 Bipin Gautam 26 Jan 2010
 Rohit Patnaik 26 Jan 2010
 Rohit Patnaik 26 Jan 2010
 Thor (Hammer of God) 26 Jan 2010
 Bipin Gautam 26 Jan 2010
 Rohit Patnaik 26 Jan 2010
 Rohit Patnaik 26 Jan 2010
 Bipin Gautam 26 Jan 2010
 E. Prom 26 Jan 2010
 Bipin Gautam 26 Jan 2010
 Rohit Patnaik 26 Jan 2010
 Valdis.Kletnieks_at_nospam 25 Jan 2010
 Bipin Gautam 25 Jan 2010
 Michael Holstein 25 Jan 2010
 Michael Holstein 25 Jan 2010
 Bipin Gautam 25 Jan 2010
 Bipin Gautam 25 Jan 2010
 Valdis.Kletnieks_at_nospam 25 Jan 2010
 Bipin Gautam 25 Jan 2010
 Michael Holstein 25 Jan 2010
 Bipin Gautam 25 Jan 2010
 Valdis.Kletnieks_at_nospam 24 Jan 2010
 Bipin Gautam 24 Jan 2010
[Full-disclosure] dotProject 2.1.3 Multiple Vulnerabilities
 Justin C. Klein Keane 07 Jan 2010
[Full-disclosure] Download and LoadLibrary shellcode released
 Berend-Jan Wever 11 Jan 2010
[Full-disclosure] e107 latest download link is backdoored
 David Sopas 26 Jan 2010
 Gregor Schneider 26 Jan 2010
 Carsten Eilers 26 Jan 2010
 Bogdan Calin 26 Jan 2010
 Christian Sciberras 26 Jan 2010
 Christian Sciberras 25 Jan 2010
 Michael Holstein 25 Jan 2010
 Christian Sciberras 25 Jan 2010
 Chris Travers 25 Jan 2010
 Valery Marchuk 25 Jan 2010
 Bogdan Calin 25 Jan 2010
[Full-disclosure] Facebook Query Language (FQL) security issue
 Carlos 08 Jan 2010
[Full-disclosure] FortiGuard Advisory: Microsoft Internet Explorer Remote Memory Corruption Vulnerability
 Pastor Kornell 24 Jan 2010
 James Birk 22 Jan 2010
[Full-disclosure] FortiGuard Advisory: Now you can eat all the Chipotle you want and still have underwear that sparkles and shines!
 Fortinet Labs 24 Jan 2010
[Full-disclosure] FREE STEPHEN WATT !!!
 Bipin Gautam 24 Jan 2010
 Bipin Gautam 24 Jan 2010
 sunjester 23 Jan 2010
 BMF 22 Jan 2010
 Valdis.Kletnieks_at_nospam 21 Jan 2010
 Rohit Patnaik 21 Jan 2010
 netinfinity 21 Jan 2010
 Christian Sciberras 21 Jan 2010
 netinfinity 21 Jan 2010
 Christian Sciberras 21 Jan 2010
 netinfinity 21 Jan 2010
 Christian Sciberras 21 Jan 2010
 netinfinity 21 Jan 2010
 Christian Sciberras 21 Jan 2010
 Thor (Hammer of God) 21 Jan 2010
 Benji 21 Jan 2010
 Jeff Williams 21 Jan 2010
 phc_at_nospam 21 Jan 2010
[Full-disclosure] Full Disclosure report ethical HACKERS site www.sec-r1z.com
 Bad Guys 17 Jan 2010
[Full-disclosure] Fwd: All China, All The Time
 Christian Sciberras 14 Jan 2010
 Gregor Schneider 14 Jan 2010
 Christian Sciberras 13 Jan 2010
[Full-disclosure] GDT and LDT in Windows kernel vulnerability exploitation (paper)
 Gynvael Coldwind 17 Jan 2010
[Full-disclosure] Geolocation Question
 Daniel Veditz 14 Jan 2010
 Michael Holstein 08 Jan 2010
 mrx 08 Jan 2010
 Paul Schmehl 07 Jan 2010
 Dan Kaminsky 07 Jan 2010
 Valdis.Kletnieks_at_nospam 07 Jan 2010
 mrx 07 Jan 2010
 Dan Kaminsky 07 Jan 2010
 Valdis.Kletnieks_at_nospam 07 Jan 2010
 Dan Kaminsky 07 Jan 2010
 Valdis.Kletnieks_at_nospam 07 Jan 2010
 Dan Kaminsky 07 Jan 2010
 McGhee, Eddie 07 Jan 2010
[Full-disclosure] Google Maps XSS (currently unpatched)
 Rafal Los 14 Jan 2010
 Christian Sciberras 13 Jan 2010
 Michal 13 Jan 2010
 Christian Sciberras 13 Jan 2010
 Guy 13 Jan 2010
 sunjester 12 Jan 2010
 Valdis.Kletnieks_at_nospam 12 Jan 2010
 sunjester 12 Jan 2010
 zprian 12 Jan 2010
 McGhee, Eddie 12 Jan 2010
 dramacrat 12 Jan 2010
 Robin Sage 12 Jan 2010
 NSO Research 12 Jan 2010
 Christian Sciberras 12 Jan 2010
 Juan Galiana 12 Jan 2010
 Michael Lenz 12 Jan 2010
 gaurav baruah 12 Jan 2010
[Full-disclosure] Google today
 McGhee, Eddie 16 Jan 2010
 Mark Jeanmougin 16 Jan 2010
 Juha-Matti Laurio 16 Jan 2010
 netinfinity 16 Jan 2010
 Thor (Hammer of God) 15 Jan 2010
[Full-disclosure] HTTP Digest Integrity: Another look, in light of recent attacks
 Dan Kaminsky 07 Jan 2010
 Timothy D. Morgan 07 Jan 2010
 Dan Kaminsky 06 Jan 2010
 Timothy D. Morgan 06 Jan 2010
[Full-disclosure] iAWACS 2010 : Rules of the PWN2KILL contest
 Valdis.Kletnieks_at_nospam 11 Jan 2010
 Thierry Zoller 11 Jan 2010
 Sergio 'shadown' Alvarez 11 Jan 2010
 Anthony Desnos 11 Jan 2010
[Full-disclosure] iDefense Security Advisory 01.12.10: Adobe Reader and Acrobat JpxDecode Memory Corruption Vulnerability
 iDefense Labs 13 Jan 2010
[Full-disclosure] IE 8 remote code execution exploit to sell
 omg wtf 25 Jan 2010
 Orn Roswell 24 Jan 2010
[Full-disclosure] IE8 Crash
 omg wtf 18 Jan 2010
 Christian Sciberras 18 Jan 2010
 Tim Kunschke 18 Jan 2010
 Stack Smasher 18 Jan 2010
[Full-disclosure] iiScan
 Adrian 08 Jan 2010
 mrx 07 Jan 2010
 Michael Holstein 07 Jan 2010
 Benji 07 Jan 2010
 Jeffrey Walton 07 Jan 2010
 Robin Sage 07 Jan 2010
 Cody Robertson 07 Jan 2010
 auto454357_at_nospam 07 Jan 2010
[Full-disclosure] iiScan - Full-function web application
 Saladino Patrick 06 Jan 2010
[Full-disclosure] iiScan - Full-function web application security scanning platform for free
 Cody Robertson 07 Jan 2010
 Adrian liu 07 Jan 2010
 Ulises2k 06 Jan 2010
 p8x 06 Jan 2010
 Guilherme Scombatti 06 Jan 2010
 Yejin Liang 06 Jan 2010
 Vincent Chao 06 Jan 2010
 Guilherme Scombatti 06 Jan 2010
 Vincent Chao 06 Jan 2010
 Adriel T. Desautels 05 Jan 2010
 mrx 05 Jan 2010
 Manu Quintans 05 Jan 2010
 Guilherme Scombatti 05 Jan 2010
 McGhee, Eddie 05 Jan 2010
 iiScan support 05 Jan 2010
[Full-disclosure] iiScan - Full-function web application securityscanning platform for free
 netinfinity 06 Jan 2010
 list 06 Jan 2010
[Full-disclosure] iiScan invite codes
 mrx 06 Jan 2010
 McGhee, Eddie 06 Jan 2010
[Full-disclosure] iiscan results
 Robin Sage 07 Jan 2010
 mrx 07 Jan 2010
 mrx 07 Jan 2010
 Jardel Weyrich 07 Jan 2010
 p8x 07 Jan 2010
 Jan G.B. 07 Jan 2010
 p8x 07 Jan 2010
 mrx 07 Jan 2010
 Vincent Chao 07 Jan 2010
 mrx 06 Jan 2010
[Full-disclosure] iiscan results - a closer look
 Gregor Schneider 22 Jan 2010
 The Security Community 19 Jan 2010
 Gregor Schneider 19 Jan 2010
 Beatyou Man 18 Jan 2010
 jack mannino 10 Jan 2010
 dd_at_nospam 08 Jan 2010
[Full-disclosure] Infected google.com, yahoo.com and blogspot.com
 MustLive 05 Jan 2010
[Full-disclosure] Insufficient User Input Validation in VP-ASP 6.50 Demo Code
 CodeScan Labs Advisories 20 Jan 2010
[Full-disclosure] J 6.02.023 Array Overrun (code execution)
 Maksymilian Arciemowicz 08 Jan 2010
[Full-disclosure] JunOS malformed TCP options vulnerability
 Jeremy L. Gaddis 10 Jan 2010
[Full-disclosure] Linkedin shared complete "personally identifiable data" to third party websites
 Bipin Gautam 18 Jan 2010
[Full-disclosure] List Charter
 John Cartwright 11 Jan 2010
[Full-disclosure] Locked fasync file descriptors can be referenced after free in >= 2.6.28
 Tavis Ormandy 14 Jan 2010
[Full-disclosure] London DEFCON January meet - DC4420 - Wed 27th Jan 2010
 Major Malfunction 25 Jan 2010
[Full-disclosure] Looking at SSH scans passwords (honeypot analysis)
 Elliot Fernandes 14 Jan 2010
 dd_at_nospam 14 Jan 2010
[Full-disclosure] MacOS X 10.5/10.6 libc/strtod(3) buffer overflow
 Joshua Levitsky 12 Jan 2010
 Maksymilian Arciemowicz 11 Jan 2010
 Maksymilian Arciemowicz 11 Jan 2010
 Joshua Levitsky 11 Jan 2010
 Maksymilian Arciemowicz 08 Jan 2010
[Full-disclosure] Magento eCommerce Multiple XSS Vulnerabilities
 Justin C. Klein Keane 04 Jan 2010
[Full-disclosure] Matlab R2009b Array Overrun (code execution)
 Maksymilian Arciemowicz 08 Jan 2010
[Full-disclosure] Microsoft arithmetic
 Bipin Gautam 20 Jan 2010
 psz_at_nospam 20 Jan 2010
[Full-disclosure] Microsoft Windows NT #GP Trap Handler Allows Users to Switch Kernel Stack
 Tavis Ormandy 19 Jan 2010
[Full-disclosure] MouseOverJacking attacks
 T Biehn 19 Jan 2010
 Chris Evans 06 Jan 2010
 Christian Sciberras 06 Jan 2010
 MustLive 05 Jan 2010
 T Biehn 05 Jan 2010
 Jeff Williams 04 Jan 2010
 MustLive 03 Jan 2010
[Full-disclosure] Multiple D-Link Routers Vulnerable to Authentication Bypass
 Full Disclosure 10 Jan 2010
[Full-disclosure] Multiple Directory traversal Vulnerabilites in Testlink Test Management and Execution System
 Prashant Khandelwal 15 Jan 2010
[Full-disclosure] Need a invitation code of the IIScan.com for test.
 Adrian liu 07 Jan 2010
[Full-disclosure] Network flaw causes scary Web error
 Ivan . 18 Jan 2010
[Full-disclosure] Nginx, Varnish, Cherokee, thttpd, mini-httpd, WEBrick, Orion, AOLserver, Yaws and Boa log escape sequence injection
 Paul Schmehl 11 Jan 2010
 Benji 11 Jan 2010
 Jef Poskanzer 10 Jan 2010
 ascii 10 Jan 2010
[Full-disclosure] NSOADV-2010-001: Panda Security Local Privilege Escalation
 NSO Research 09 Jan 2010
[Full-disclosure] NSOADV-2010-002: Google Wave Design Bugs
 sunjester 23 Jan 2010
 dramacrat 21 Jan 2010
 bugtraq_at_nospam 21 Jan 2010
 Rohit Patnaik 20 Jan 2010
 Christian Sciberras 20 Jan 2010
 omg wtf 20 Jan 2010
 Valdis.Kletnieks_at_nospam 20 Jan 2010
 Rohit Patnaik 20 Jan 2010
 omg wtf 19 Jan 2010
 dramacrat 19 Jan 2010
 NSO Research 19 Jan 2010
[Full-disclosure] Paper: Weaning the Web off of Session Cookies
 Timothy D. Morgan 26 Jan 2010
[Full-disclosure] pdp petkov files still available?
 excuseme_at_nospam 07 Jan 2010
[Full-disclosure] Perhaps it's time to regulate Microsoft as Critical Infrastructure?
 Christian Sciberras 26 Jan 2010
 Rafael Moraes 26 Jan 2010
 Georgi Guninski 26 Jan 2010
 Christian Sciberras 25 Jan 2010
 Valdis.Kletnieks_at_nospam 25 Jan 2010
 Rafael Moraes 25 Jan 2010
 Rafael Moraes 25 Jan 2010
 omg wtf 25 Jan 2010
 Bipin Gautam 24 Jan 2010
 Christian Sciberras 24 Jan 2010
 Bipin Gautam 24 Jan 2010
 Christian Sciberras 24 Jan 2010
 Bipin Gautam 24 Jan 2010
 Rohit Patnaik 24 Jan 2010
 Gadi Evron 23 Jan 2010
[Full-disclosure] PHC is _NOT_ DEAD !!!!
 phc_at_nospam 22 Jan 2010
 Christian Sciberras 22 Jan 2010
 dramacrat 22 Jan 2010
 Rohit Patnaik 21 Jan 2010
 john hale 21 Jan 2010
 netinfinity 21 Jan 2010
 Christian Sciberras 21 Jan 2010
 phc_at_nospam 21 Jan 2010
[Full-disclosure] Re [2]: iiscan results - a closer look
 Vladimir Vorontsov 11 Jan 2010
[Full-disclosure] Reminder: Campus Party EU 2010 Call For Participants
 Campus Party EU Spain 18 Jan 2010
[Full-disclosure] REWTERZ-20100101 - n.player Local Heap Overflow Vulnerability
 rewterz security team 05 Jan 2010
[Full-disclosure] REWTERZ-20100102 - Nemesis Player (NSP) Local Denial of Service (DoS) Vulnerability
 rewterz security team 05 Jan 2010
[Full-disclosure] REWTERZ-20100103 - Ofilter Player Local Denial of Service (DoS) Vulnerability
 rewterz security team 05 Jan 2010
[Full-disclosure] rPSA-2010-0004-1 openssl openssl-scripts
 rPath Update Announcements 14 Jan 2010
[Full-disclosure] SEC Consult SA-20100115-0 :: Local file inclusion/execution and multiple CSRF vulnerabilities in LetoDMS (formerly MyDMS)
 Lukas Weichselbaum 15 Jan 2010
[Full-disclosure] Secunia Research: Adobe Illustrator Encapsulated Postscript Parsing Vulnerability
 Secunia Research 08 Jan 2010
[Full-disclosure] Secunia Research: Adobe Shockwave Player 3D Model Buffer Overflow
 Secunia Research 20 Jan 2010
[Full-disclosure] Secunia Research: Adobe Shockwave Player 3D Model Two Integer Overflows
 Secunia Research 20 Jan 2010
[Full-disclosure] Secunia Research: Adobe Shockwave Player Four Integer Overflow Vulnerabilities
 Secunia Research 20 Jan 2010
[Full-disclosure] Secunia Research: Adobe Shockwave Player Integer Overflow Vulnerability
 Secunia Research 20 Jan 2010
[Full-disclosure] Secunia Research: Google Chrome Pop-Up Block Menu Handling Vulnerability
 Secunia Research 26 Jan 2010
[Full-disclosure] Secunia Research: HP Power Manager "formExportDataLogs" Buffer Overflow
 Secunia Research 20 Jan 2010
[Full-disclosure] Secunia Research: HP Power Manager "formExportDataLogs" Directory Traversal
 Secunia Research 20 Jan 2010
[Full-disclosure] Secunia Research: Microsoft Windows Flash Player Movie Unloading Vulnerability
 Secunia Research 12 Jan 2010
[Full-disclosure] Secunia Research: PDF-XChange Viewer Content Parsing Memory Corruption Vulnerability
 Secunia Research 04 Jan 2010
[Full-disclosure] Security app
 Joshua Levitsky 06 Jan 2010
 James Matthews 05 Jan 2010
 Christian Sciberras 05 Jan 2010
 Will McAfee 05 Jan 2010
[Full-disclosure] Silverstripe <= v2.3.4: two XSS vulnerabilities
 Moritz Naumann 22 Jan 2010
[Full-disclosure] simply classifieds v0.2 XSS and CSRF Vulnerabilities
 Steven Seeley 10 Jan 2010
[Full-disclosure] Some SQL inj and including hints
 Vladimir Vorontsov 14 Jan 2010
[Full-disclosure] Sprint / Verizon MiFi CSRF+CSS Gives up GPS info to attacker
 Adam Baldwin 16 Jan 2010
 A. Ramos 16 Jan 2010
 Adam Baldwin 15 Jan 2010
[Full-disclosure] Surge in Skype Spam activity
 Jacob Taylor 11 Jan 2010
 dd_at_nospam 11 Jan 2010
 Thor (Hammer of God) 11 Jan 2010
 Michael Holstein 11 Jan 2010
 Chen Levkovich 11 Jan 2010
 Daniele Stanzani 11 Jan 2010
 Nick FitzGerald 11 Jan 2010
 mrx 11 Jan 2010
 Benji 11 Jan 2010
 Larry Seltzer 11 Jan 2010
 dramacrat 11 Jan 2010
[Full-disclosure] Testival released
 Berend-Jan Wever 11 Jan 2010
[Full-disclosure] The future of XSS attacks
 MustLive 22 Jan 2010
[Full-disclosure] Trying to analyze VISPA ISP Outage
 exploit dev 08 Jan 2010
[Full-disclosure] TSA Logo Contest - Schneier
 Ivan . 11 Jan 2010
[Full-disclosure] Two MSIE 6.0/7.0 NULL pointer crashes
 Dan Kaminsky 24 Jan 2010
 Pavel Kankovsky 24 Jan 2010
 Christian Sciberras 23 Jan 2010
 Valdis.Kletnieks_at_nospam 22 Jan 2010
 Jeffrey Walton 22 Jan 2010
 Jeffrey Walton 22 Jan 2010
 Rohit Patnaik 21 Jan 2010
 Christian Sciberras 21 Jan 2010
 Dan Kaminsky 21 Jan 2010
 mrx 21 Jan 2010
 ☣ frank^2 21 Jan 2010
 Michal Zalewski 21 Jan 2010
 Yigit Turgut 20 Jan 2010
 Jeffrey Walton 20 Jan 2010
 dramacrat 20 Jan 2010
 Dan Kaminsky 20 Jan 2010
 mrx 20 Jan 2010
 Chris Evans 20 Jan 2010
 Michael Holstein 20 Jan 2010
 Christian Sciberras 20 Jan 2010
 Dan Kaminsky 20 Jan 2010
 T Biehn 20 Jan 2010
 Valdis.Kletnieks_at_nospam 20 Jan 2010
 omg wtf 20 Jan 2010
 James Matthews 20 Jan 2010
 Christian Sciberras 20 Jan 2010
 Berend-Jan Wever 20 Jan 2010
[Full-disclosure] un-SafeCentral
 mu-b 15 Jan 2010
[Full-disclosure] Virus "JS.Dropper-33" gefunden
 Stack Smasher 16 Jan 2010
[Full-disclosure] VMSA-2010-0001 ESX Service Console updates for nss and nspr
 VMware Security team 07 Jan 2010
[Full-disclosure] VMware server (2.0.2) insecure file creation
 Valdis.Kletnieks_at_nospam 07 Jan 2010
 dd_at_nospam 06 Jan 2010
[Full-disclosure] Web Issue phpinfo.php
 Pablo Roberto 07 Jan 2010
[Full-disclosure] Windows Account Password Guessing with WinScanX
 Reed Arvin 05 Jan 2010
[Full-disclosure] XSS in Zoneedit
 discloser_at_nospam 04 Jan 2010
[Full-disclosure] XSS vulnerabilities in 34 millions flash files
 Michele Orru 12 Jan 2010
 Valdis.Kletnieks_at_nospam 12 Jan 2010
 Marko Jakovljevic 12 Jan 2010
 Jeff Williams 11 Jan 2010
[Full-disclosure] XSS vulnerabilities via errors at requests to DB
 MustLive 06 Jan 2010
[Full-disclosure] XSS Vulnerability in Active Calendar 1.2.0
 Marty Barbella 11 Jan 2010
[Full-disclosure] XSS Vulnerability in Drupal's Node Blocks contributed module (6.x-1.3 and 5.x-1.1)
 Marty Barbella 14 Jan 2010
[Full-disclosure] Yoono Firefox Extension - Privileged Code Injection
 Nick Freeman 13 Jan 2010
[Full-disclosure] ZDI-10-001: Novell iManager eDirectory Plugin Remote Code Execution Vulnerability
 ZDI Disclosures 07 Jan 2010
[Full-disclosure] ZDI-10-002: Oracle Secure Backup observiced.exe Remote Code Execution Vulnerability
 ZDI Disclosures 12 Jan 2010
[Full-disclosure] ZDI-10-003: Novell ZENworks Asset Management docfiledownload Remote SQL Injection Vulnerability
 ZDI Disclosures 20 Jan 2010
[Full-disclosure] ZDI-10-004: Cisco CiscoWorks IPM GIOP getProcessName Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-005: RealNetworks RealPlayer ASMRulebook Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-006: RealNetworks RealPlayer GIF Handling Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-007: RealNetworks RealPlayer SMIL getAtom Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-008: RealNetworks RealPlayer SIPR Codec Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-010: RealNetworks RealPlayer Skin Parsing Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-011: Microsoft Internet Explorer Table Layout Col Tag Cache Update Remote Code Execution Vulnerability
 Christian Sciberras 25 Jan 2010
 Berend-Jan Wever 25 Jan 2010
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-012: Microsoft Internet Explorer Baseline Tag Rendering Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-013: Microsoft Internet Explorer Table Layout Reuse Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] ZDI-10-014: Microsoft Internet Explorer item Object Memory Corruption Remote Code Execution Vulnerability
 ZDI Disclosures 21 Jan 2010
[Full-disclosure] Zenoss getJSONEventsInfo SQL Injection
 Adam Baldwin 14 Jan 2010
[Full-disclosure] Zenoss Multiple Admin CSRF
 Adam Baldwin 16 Jan 2010
[USN-885-1] LibThai vulnerability
 Marc Deslauriers 18 Jan 2010
[USN-886-1] Pidgin vulnerabilities
 Marc Deslauriers 18 Jan 2010
[USN-889-1] gzip vulnerabilities
 Marc Deslauriers 20 Jan 2010
[USN-890-1] Expat vulnerabilities
 Jamie Strandboge 20 Jan 2010
[USN-890-2] Python 2.5 vulnerabilities
 Jamie Strandboge 21 Jan 2010
[USN-890-3] Python 2.4 vulnerabilities
 Jamie Strandboge 22 Jan 2010
[USN-890-4] PyXML vulnerabilities
 Jamie Strandboge 26 Jan 2010
] XSS vulnerabilities in 34 millions flash files
 sunjester 12 Jan 2010
Looking at SSH scans passwords (honeypot analysis)
 Michal 15 Jan 2010
MacOS X 10.5/10.6 libc/strtod(3) buffer overflow
 Joshua Levitsky 12 Jan 2010