|
|
Colapse all |
Post message
[OpenPKG-SA-2006.005] OpenPKG Security Advisory (tin) 2006-02-19 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] [OpenPKG-SA-2006.004] OpenPKG Security Advisory (postgresql) 2006-02-19 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] Re: Internet Explorer remotely exploitable vulnerability in JScript's document.write() method 2006-02-17 temp mihopahost com Vulnerability in WinRAR - Phishing based 2006-02-16 preben watchcom no (1 replies) Phishing through WinRAR 3.51 ---------------------------- Credit to: Preben Nyløkken Tested on version: 3.51 Vendors site: www.rarlabs.com Vendor status: Tried contacting without luck. Description: Due to the build-up of WinRAR, some vital parts of the programs functions and url's are visible [ more ] [ reply ] Re: Vulnerability in WinRAR - Phishing based 2006-02-19 Andreas Beck (becka-list-bugtraq bedatec de) RE: Vulnerabilites in new laws on computer hacking 2006-02-15 Anthony Cicalla (Anthony Cicalla BankServ com) I would have to say that I agree with you in what you have said. I am a young security professional with a cissp, but growing up I did not have the $ to be able to purchase vmware and all the software to setup a test environment. I also bet that most of you between ages 12 - 16 had the minimum 500. [ more ] [ reply ] Malware that breaks SSL via Pharming {Emerging Threat} 2006-02-15 Lance James (bugtraq securescience net) [operational update] Looking behind the smoke screen of the Internet 2006-02-18 Gadi Evron (ge linuxbox org) In the following (quick & dirty) write-up (which is too big for sending into bugtraq) I start by discussing some recent threats network operators should be aware of, such as recursive DNS attacks. Also, a bit on the state of the Internet, cooperation across different fields and how these latest th [ more ] [ reply ] [FLSA-2006:175406] Updated Apache httpd packages fix security issues 2006-02-18 Marc Deslauriers (marcdeslauriers videotron ca) [FLSA-2006:152809] Updated squid package fixes security issues 2006-02-18 Marc Deslauriers (marcdeslauriers videotron ca) [FLSA-2006:168935] Updated openssh packages fix security issues 2006-02-18 Marc Deslauriers (marcdeslauriers videotron ca) [ GLSA 200602-10 ] GnuPG: Incorrect signature verification 2006-02-18 Thierry Carrez (koon gentoo org) SLQ Injection vulnerability in WPCeasy 2006-02-18 murfie gmail com My first vulnerability report :) Description: "WPC.easy" is a database generated website with a dynamic on-line administration suite which allows for product updates, editing, deleting, image upload and price changes. "WPC.easy" is powered by a Secure Database. vendor: http://www.webpagecity.com/ [ more ] [ reply ] ADOdb Library Cross Site Scripting 2006-02-18 GulfTech Security Research (security gulftech org) ########################################################## # GulfTech Security Research February 18, 2006 ########################################################## # Vendor : John Lim # URL : http://adodb.sourceforge.net/ # Version : ADOdb <= 4.71 # Risk : Cross Site Scripting ########## [ more ] [ reply ] RCblog exploit [fun] 2006-02-18 hessam hessamx net #!/usr/bin/perl # # RCBlog 1.0.3 / 1.0.2 # Exploit by Hessam-x (www.hessamx.net) # Name : RCBlog (www.fluffington.com # version : 1.0.3 / 1.0.2 # manual exploiting: # index.php?%20post=../config/password # use LWP::Simple; print "-------------------------------------------\n"; print "= [ more ] [ reply ] [OpenPKG-SA-2006.003] OpenPKG Security Advisory (openssh) 2006-02-18 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] [OpenPKG-SA-2006.002] OpenPKG Security Advisory (sudo) 2006-02-18 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] Coppermine Photo Gallery <=1.4.3 remote code execution 2006-02-18 rgod autistici org - Coppermine Photo Gallery <= 1.4.3 arbitrary local/remote inclusion: --------- - 18/02/2006 5.09.55 ----------------------------------------------------------- ------------------------------------------------------------------------ -------- software: site: http://coppermine-gallery.net/index.php d [ more ] [ reply ] |
|
Privacy Statement |
Wild).
Chas Tomlin (http://www.ecs.soton.ac.uk/~cet/) provided Shadowserver
(http://www.shadowserver.org/) and Nicholas Alright who notified the
relevant operational communities, with the information on the binaries.
He cap
[ more ] [ reply ]