-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 972-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
February 15th, 2006

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

The circumstance highlighted by this report has been addressed.

For future reference, reports of this nature should also be sent to
feedback (at) everyone (dot) net. [email concealed]

Thank you.

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.0.5 (Build 5050)

iQA/A

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 973-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
February 15th, 2006

[ more ]  [ reply ]

===========================================================
Ubuntu Security Notice USN-249-1 February 13, 2006
xpdf, poppler, kdegraphics vulnerabilities
CVE-2006-0301
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10

[ more ]  [ reply ]

\>>>>>>>>ORIGINAL ADVISORY<<<<<<<<<<</
http://myimei.com/security/2006-02-11/mybb-103privatephpmultiple-sqlinje
ction.html

Vendor Credit:http://community.mybboard.net/showthread.php?tid=6777

??????-Summary?????-
Software: MyBB
Sowtware?s Web Site: http://www.mybboard.com
Versions: 1.0.3
Class: Remo

[ more ]  [ reply ]

New eVuln Advisory:
M. Blom HTML::BBCode perl module XSS Vulnerabilities
http://evuln.com/vulns/80/summary.html

--------------------Summary----------------
eVuln ID: EV0080
Software: M. Blom HTML::BBCode
Sowtware's Web Site: http://menno.b10m.net/perl/
Versions: 1.04 1.03 and earlier
Critical Level

[ more ]  [ reply ]

Honeyd Security Advisory 2006-001
=================================

Topic: Remote Detection Via Multiple Probe Packets

Version: All versions prior to Honeyd 1.5

Severity: Identification of Honeyd installations allows an
adversary to launch attacks specifically against
Honeyd. No

[ more ]  [ reply ]

>>>>>>>>originnal advisory<<<<<<<<<<<<<
http://myimei.com/security/2006-02-10/mybb103managegroupphpmultiple-sqli
njection-xss.html
-------------------Summary----------------
Software: MyBB
Sowtware?s Web Site: http://www.mybboard.com
Versions: 1.0.3
Class: Remote
Status: Unpatched
Exploit: Available

[ more ]  [ reply ]

===========================================================
Ubuntu Security Notice USN-248-1 February 13, 2006
unzip vulnerability
CVE-2005-4667
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)

[ more ]  [ reply ]

New eVuln Advisory:
2200net Calendar system SQL Injection and Authentication Bypass Vulnerabilities
http://evuln.com/vulns/62/summary.html

--------------------Summary----------------
eVuln ID: EV0062
CVE: CVE-2006-0610
Software: 2200net Calendar system
Sowtware's Web Site: http://calendar.2200net.c

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 974-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
February 15th, 2006

[ more ]  [ reply ]

New eVuln Advisory:
My Blog BBCode XSS Vulnerabilities
http://evuln.com/vulns/79/summary.html

--------------------Summary----------------
eVuln ID: EV0079
Software: My Blog
Sowtware's Web Site: http://fuzzymonkey.net/cgi-bin/download.cgi?file=blog
Versions: My Blog 1.63
Critical Level: Harmless
Typ

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c00597967
Version: 3

HPSBMA02096 SSRT061108 rev.3 - HP Systems Insight Manager Remote
Unauthorized Access via Directory Traversal

NOTICE: The information in this Security Bulletin should be acted

[ more ]  [ reply ]

##########################################################
# GulfTech Security Research February 12, 2006
##########################################################
# Vendor : XMB Software
# URL : http://www.xmbforum.com/
# Version : XMB Forums <= 1.9.3
# Risk : Multiple Vulnerabilities
#

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c00599840
Version: 2

HPSBUX02097 SSRT051045 rev.2 - HP-UX Running DNS BIND4/BIND8 as
Forwarders: Remote Unauthorized Privileged Access

NOTICE: The information in this Security Bulletin should be

[ more ]  [ reply ]

===========================================================
Ubuntu Security Notice USN-248-2 February 15, 2006
unzip regression fix
https://launchpad.net/bugs/31457
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4

[ more ]  [ reply ]

Mirabiliz ICQ 2002/2003/ LITE 4.0/4.1 LONG (DIRECTORY + FILENAME) EXPLOIT

Found this 'bug' about 1 year n a half ago.

If u drag and drop a folder containing 1 or more file from your computer into the nick of someone in your contact
list it is possible to send a full directory... The possibility to

[ more ]  [ reply ]

===========================================================
Ubuntu Security Notice USN-250-1 February 13, 2006
linux-source-2.6.12 vulnerability
CVE-2006-0454
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 5.10 (Breezy B

[ more ]  [ reply ]

Gallery web-based photo gallery remote file execution

Digital Armaments advisory is 02.14.2006
http://www.digitalarmaments.com/2006140293402395.html

I. Background

Gallery is a slick Web-based photo album written using PHP. It is easy to install, includes a config wizard, and provides users with t

[ more ]  [ reply ]

Hi
I sent him an email about his bugs and exploits.
He asked me to add him in his ICQ.
I told him I dont have and I gave him my msn and he added me.
He asked me if I want the exploits I have to pay 500$.
I said how and he gave me a site for transfring money.
I told him I cant. I said if you want me

[ more ]  [ reply ]

(The following advisory is also available in PDF format for download at:
http://www.cybsec.com/vuln/CYBSEC_Security_Pre-Advisory_Phishing_Vector_
in_SAP_BC.pdf )

CYBSEC S.A.
www.cybsec.com

Pre-Advisory Name: Phishing Vector in SAP BC (Business Connector)

Vulnerability Class: Phishing Vector / Impr

[ more ]  [ reply ]

It'd be interesting to see if this post gets approved by the moderators of bugtraq.

As all of you know, this forum (bugtraq) is constantly monitored not only by crackers and infosec professionals, but also by government and law-enforcement agencies.

The reason why I'm posting this message is becau

[ more ]  [ reply ]

iDefense Labs is pleased to announce the launch of our quarterly hacking
challenge. Going forward, on a quarterly basis, we will select a new
focus for the challenge and outline the rules for vulnerability
discoveries that will qualify for the monetary rewards.

For the current quarter, iDefense Lab

[ more ]  [ reply ]