|
|
Colapse all |
Post message
RE: [funsec] Microsoft's Real Test with Vista is Vulnerabilities 2006-06-28 Larry Seltzer (larry larryseltzer com) SyScan'06 Highlight - Is Phone Banking Safe? 2006-06-28 thomas48 (thomas48 singnet com sg) This is a brand new presentation and its going public for the very first time in SyScan'06. Marek Bialowlowy is a Polish security researcher based in Southeast Asia whose expertise is researching into mobile technologies like phone banking, wifi and bluetooth etc. In this presentation in SyScan [ more ] [ reply ] BLOG:CMS <= 4.0.0k sql injection 2006-06-28 rgod autistici org #!/usr/bin/php -q -d short_open_tag=on <? echo "BLOG:CMS <= 4.0.0k sql injection/admin credentials disclosure exploit\n"; echo "by rgod rgod (at) autistici (dot) org [email concealed]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork: \"Powered by BLOG:CMS\"|\"Powered by blogcms.com\"|\"2003-2004, Radek Hulán\" [ more ] [ reply ] [USN-307-1] mutt vulnerability 2006-06-28 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-307-1 June 28, 2006 mutt vulnerability http://secunia.com/advisories/20810 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu [ more ] [ reply ] Secunia Research: DeluxeBB SQL Injection and File InclusionVulnerabilities 2006-06-28 Secunia Research (remove-vuln secunia com) [ MDKSA-2006:114 ] - Updated libwmf packages fixes embedded GD vulnerability 2006-06-28 security mandriva com Cisco Security Advisory: Multiple Vulnerabilities in Wireless Control System 2006-06-28 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Wireless Control System Advisory ID: cisco-sa-20060628-wcs http://www.cisco.com/warp/public/707/cisco-sa-20060628-wcs.shtml Revision 1.0 For Public Release 2006 June 28 1600 UTC (GMT) - --------- [ more ] [ reply ] vCard PRO SQL Injection 2006-06-28 CrAzY CrAcKeR hotmail com ================================ Discovered By: CrAzY CrAcKeR ================================ Example:- /gbrowse.php?cat_id=[SQL] /rating.php?card_id=[SQL] /create.php?card_id=[SQL] /search.php?event_id=[SQL] ================================ Email:CrAzY.CrAcKeR (at) hotmail (dot) com [email concealed] [ more ] [ reply ] [KAPDA]MyBB 1.1.4~function_post.php~XSS Attack In URL tag 2006-06-28 addmimistrator gmail com ORIGINAL ADVISORY: http://kapda.ir/page-advisory.html http://myimei.com/security/2006-06-22/mybb-114-function_postphpxss-attac k-in-url-tag.html ???????Summary?????- Software: MyBB Sowtware?s Web Site: http://www.mybboard.com Versions: 1.1.3 Class: Remote Status: Patched Exploit: Available [ more ] [ reply ] Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...) 2006-06-27 Luigi Auriemma (aluigi autistici org) CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability 2006-06-27 Williams, James K (James Williams ca com) Title: CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability CA Vulnerability ID: 34325 CA Advisory Date: 2006-06-26 Discovered By: Deral Heiland (www.layereddefense.com) Impact: Attackers can cause a denial of service condition or possibly execute arbitrary co [ more ] [ reply ] [Kurdish Security # 10 ] MF Piadas 1.0 Remote File Include Vulnerability 2006-06-27 botan linuxmail org ################################################# # Kurdish Security Advisory # MF Piadas 1.0 Remote File Include Vulnerability # "Ey Tarih ya sana basarilar atfedecegiz ya da seni yasanmamis sayacagiz ." Abdullah Ocalan # STOP THE MASSACRE IN THE TURKEY! FREEDOM FOR KURDISTAN ! # C [ more ] [ reply ] Re: Is Windows TCP/IP source routing PoC code available? 2006-06-27 3APA3A (3APA3A SECURITY NNOV RU) Dear Denis Jedig, Simple PoC and original message from Andrey Minaev, dated February, 2006 in Russian with short translation to English) are available from http://www.security.nnov.ru/Fnews753.html This is his original post regarding this issue as it was in his first report to MS and it may [ more ] [ reply ] Re: Re: PHP security (or the lack thereof) 2006-06-27 nabiy hotmail com > You may be making some erroneous assumptions about who, or what, PHP > quantifies a "web developer" as. As the manual notes, PHP scales, > security wide, from extremely rigid to extremely flexible, as needed. > It is simultaneously being used as a multi-million-users piece of core > softw [ more ] [ reply ] |
|
Privacy Statement |
(http://theinvisiblethings.blogspot.com/2006/06/introducing-blue-pill.ht
ml)
"I would like to make it clear, that the Blue Pill technology does not rely
on any bug of the underlying operating system. I have implemented a working
prototype for Vista x64, but I see no reaso
[ more ] [ reply ]