|
|
Colapse all |
Post message
Re: [funsec] Internet attacks against Georgian web sites 2008-08-11 Paul Ferguson (fergdawg netzero net) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -- "Paul Ferguson" <fergdawg (at) netzero (dot) net [email concealed]> wrote: >-- Gadi Evron <ge (at) linuxbox (dot) org [email concealed]> wrote: > >>In the last days news and government web sites in Georgia suffered DDoS >>attacks. While these attacks seem to affect the Georgian Internet, it is >>still t [ more ] [ reply ] Re: [funsec] Internet attacks against Georgian web sites 2008-08-11 Paul Ferguson (fergdawg netzero net) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -- Gadi Evron <ge (at) linuxbox (dot) org [email concealed]> wrote: >In the last days news and government web sites in Georgia suffered DDoS attacks. While these attacks seem to affect the Georgian Internet, it is still there. > Also, I wish to say: "It is clear that there a [ more ] [ reply ] CA Host-Based Intrusion Prevention System SDK kmxfw.sys Multiple Vulnerabilities 2008-08-12 Williams, James K (James Williams ca com) VMSA-2008-0013 Updated ESX packages for OpenSSL, net-snmp, perl 2008-08-12 VMware Security Team (security vmware com) Internet attacks against Georgian web sites 2008-08-11 Gadi Evron (ge linuxbox org) In the last days news and government web sites in Georgia suffered DDoS attacks. While these attacks seem to affect the Georgian Internet, it is still there. Facts: 1. There are botnet attacks against .ge websites. 2. These attacks affect the .ge Internet infrastructure, but it's reachable. 3. It [ more ] [ reply ] VMSA-2008-0012 Updated VirtualCenter addresses User Account Disclosure Vulnerability 2008-08-12 VMware Security Team (security vmware com) Re: OpenID/Debian PRNG/DNS Cache poisoning advisory 2008-08-08 hal finney org (\"Hal Finney\") (1 replies) [I feel a little uncomfortable replying with such a wide distribution!] Getting browsers, or OpenID installations, to check CRLs or use OCSP to check for freshness is likely to be slow going. At this point I think the momentum still favors fixing the remaining DNS systems that are vulnerable to cac [ more ] [ reply ] [AJECT] hMailServer 4.4.1 DoS vulnerability 2008-08-12 João Antunes (jantunes di fc ul pt) ---------------------------------------- Synopsis ---------------------------------------- hMailServer is vulnerable to resource exhaustion attacks that can cause a denial-of-service (DoS). The IMAP server crashes when processing too many IMAP commands as it quickly exhaust its resources. Produ [ more ] [ reply ] iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Format String Vulnerabilities 2008-08-12 iDefense Labs (labs-no-reply idefense com) iDefense Security Advisory 08.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 04, 2008 I. BACKGROUND The snoop command line utility is installed by default on Solaris. It is used to capture and display network traffic, similar to the widely used tcpdump program. Server Message Blo [ more ] [ reply ] iDefense Security Advisory 08.04.08: Solaris snoop SMB Decoding Multiple Stack Buffer Overflow Vulnerabilities 2008-08-12 iDefense Labs (labs-no-reply idefense com) iDefense Security Advisory 08.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 04, 2008 I. BACKGROUND The snoop command line utility is installed by default on Solaris. It is used to capture and display network traffic, similar to the widely used tcpdump program. Server Message Blo [ more ] [ reply ] Layered Defense Research Advisory: Alcatel-Lucent OmniSwitch products, Stack Buffer Overflow 2008-08-12 dh layereddefense com ================================================== Layered Defense Research Advisory 12 August 2008 ================================================== 1) Affected Product Alcatel-Lucent OmniSwitch products OS7000 OS6600 OS6800 OS6850 OS9000 ============================================= [ more ] [ reply ] Re: Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN) 2008-08-11 Team SHATTER (shatter appsecinc com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The DBA role in Oracle Database is not the same as SYSDBA privilege, which is granted to SYS. There are many things that a user granted the DBA role can't do - the most important being the ability to alter SYS owned objects. This is true on databases wh [ more ] [ reply ] [ GLSA 200808-11 ] UUDeview: Insecure temporary file creation 2008-08-11 Pierre-Yves Rofes (py gentoo org) rPSA-2008-0249-1 openldap openldap-clients openldap-servers 2008-08-11 rPath Update Announcements (announce-noreply rpath com) rPSA-2008-0247-1 gvim vim vim-minimal 2008-08-11 rPath Update Announcements (announce-noreply rpath com) Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability 2008-08-11 emericboit yahoo fr Title: Apache Tomcat Directory Traversal Vulnerability Author: Simon Ryeo(bar4mi (at) gmail.com, barami (at) ahnlab.com) Severity: High Impact: Remote File Disclosure Vulnerable Version: prior to 6.0.18 Solution: - Best Choice: Upgrade to 6.0.18 (http://tomcat.apache.org) - Hot fix: Disable [ more ] [ reply ] Re: [DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3 2008-08-10 o_0 iahumeil yahoo com not vulnerable define ("LOADED_AS_MODULE","1"); $phpbb_root_path = "./"; // connect to phpbb include_once($phpbb_root_path . 'extension.inc'); include_once($phpbb_root_path . 'common.'.$phpEx); include_once($phpbb_root_path . 'includes/functions.'.$phpEx); $phpEX is defined in extension.i [ more ] [ reply ] |
|
Privacy Statement |
Tool: http://surfjack.googlecode.com/
Short pape
[ more ] [ reply ]