|
|
Prev week |
Colapse all |
Post message
MDKSA-2005:114 - Updated leafnode packages fix multiple vulnerabilities 2005-07-12 Mandriva Security Team (security mandriva com) MDKSA-2005:115 - Updated mplayer packages fix vulnerabilities 2005-07-12 Mandriva Security Team (security mandriva com) MDKSA-2005:116 - Updated cpio packages fix vulnerabilities 2005-07-12 Mandriva Security Team (security mandriva com) Re: Problems with the Oracle Critical Patch Update for April 2005 2005-07-12 David Litchfield (davidl ngssoftware com) Hi Cesar, > We always test Oracle patches against the bugs we have > reported to them just to be sure the patches work. <SNIP> > (10.1.0.4) applied (we tested the patch on this system > after April CPU relase) Yep; that's why at NGSSoftware we're absolutely thorough about testing these things. By [ more ] [ reply ] Re: a new sql injection for aspjar guestbook 2005-07-12 security curmudgeon (jericho attrition org) : hello , my name is: (arash setayeshi) & my yahoo id is : arash_pc0 : I found a new vulnerability in aspjar guestbook that we can control : website & go to admin control panel by (sql injection). : sql injection : in login page(guestbook/admin/login.asp) , username : should be blank & password [ more ] [ reply ] [ GLSA 200507-11 ] MIT Kerberos 5: Multiple vulnerabilities 2005-07-12 Sune Kloppenborg Jeppesen (jaervosz gentoo org) Advisory 10/2005: Yawp/YaWiki Remote URL Include Vulnerability 2005-07-12 Stefan Esser (sesser hardened-php net) SoftiaCom MailServer - Local Password Disclosure Vulnerability 2005-07-12 unsecure writeme com Software: SoftiaCom MailServer Corporation: DarWeb Version: v1.0 (v2.0 is a fake) Vulnerability: Local Password Disclosure ------------------------------- BACKGROUND __________ SoftiaCom design and build software utilities in communication and network server. WMailserver is an internet email [ more ] [ reply ] [SECURITY] [DSA 753-1] New gedit packages fix denial of service 2005-07-12 joey infodrom org (Martin Schulze) MA[2005-0712b] - 'Nokia Affix Bluetooth btsrv/btobex poor use of system()' 2005-07-12 KF (lists) (kf_lists digitalmunition com) Cisco Security Advisory: Cisco CallManager Memory Handling Vulnerabilities 2005-07-12 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ======================================================================== Cisco Security Advisory: Cisco CallManager Memory Handling Vulnerabilities Revision 1.0 For Public Release 2005 July 12 1500 UTC (GMT) ===================================== [ more ] [ reply ] [SECURITY] [DSA 752-1] New gzip packages fix several vulnerabilities 2005-07-11 joey infodrom org (Martin Schulze) Re: SiteMinder Multiple Vulnerabilities 2005-07-11 Tero Hänninen (tero betabyte net) On Fri, 2005-07-08 at 14:03 +0000, c0ntexb (at) gmail (dot) com [email concealed] wrote: > /* > ************************************************************************ ***************************************** > $ An open security advisory #10 - Siteminder v5.5 Vulnerabilities > ****************************************** [ more ] [ reply ] blogtorrent remote/local user password disclosure 2005-07-11 Emanuele Gentili (emanuele orvietolug org) WASC-Articles: 'DOM Based Cross Site Scripting or XSS of the Third Kind: A look at an overlooked flavor of XSS' 2005-07-11 contact webappsec org The Web Application Security Consortium is proud to present 'DOM Based Cross Site Scripting or XSS of the Third Kind: A look at an overlooked flavor of XSS ' written by Amit Klein. In this article Amit focuses on a little known variant of Cross Site Scripting which attacks a user's client without se [ more ] [ reply ] [SECURITY] [DSA 745-1] New drupal package fixes multiple vulnerabilities 2005-07-10 Michael Stone (mstone klecker debian org) [ GLSA 200507-07 ] phpWebSite: Multiple vulnerabilities 2005-07-10 Matthias Geerdsen (vorlon gentoo org) [SECURITY] [DSA 747-1] New egroupware packages fix remote command execution 2005-07-10 Michael Stone (mstone klecker debian org) [SECURITY] [DSA 749-1] New ettercap packages fix arbitrary code execution 2005-07-10 Michael Stone (mstone klecker debian org) [ GLSA 200507-08 ] phpGroupWare, eGroupWare: PHP script injection vulnerability 2005-07-10 Matthias Geerdsen (vorlon gentoo org) [ Suresec Advisories ] - Linux kernel ia32 compatibility (ia64/x86-64) race condition 2005-07-11 Suresec Advisories (advisories suresec org) Suresec Security Advisory - #00004 10/07/05 Linux kernel ia32 compatibility race condition Advisory: http://www.suresec.org/advisories/adv4.pdf <http://www.suresec.org/advisories/adv3.pdf> Description: A race condition vulnerability has been found in the ia32 compatibility execve() systemcall. [ more ] [ reply ] Bug Hosting Controller New (v6.1 - Hotfix 2.1) 2005-07-11 kehieuhoc yahoo com -= KeHieuHoc ? HCE GROUP =- Information ------------------------- Software Package : Hosting Controller Vendor Homepage : http://www.hostingcontroller.com Platforms : Windows based servers Vulnerability : Multiple Unauthenticated information disclose Risk : high Vulnerable Versions: All versio [ more ] [ reply ] McAfee Intrushield IPS Abuse Update is available 2005-07-11 AsTriXs (astrixs gmail com) HI, The IntruShield Manager version 2.1.9.17 contains several updates that correct the vulnerable components that were targeted. IntruShield customers may download the new manager version from: http://www.mcafeesecurity.com/us/downloads/default.asp?wt.mc_n=us_update s&wt.mc_t=ext_li_con&cid=10373 [ more ] [ reply ] [SECURITY] [DSA 750-1] New dhcpcd packages fix denial of service 2005-07-11 joey infodrom org (Martin Schulze) [SECURITY] [DSA 748-1] New ruby1.8 packages fix arbitrary command execution 2005-07-11 Michael Stone (mstone klecker debian org) Re: [Full-disclosure] [ Suresec Advisories ] - Linux kernel ia32 compatibility (ia64/x86-64) race condition 2005-07-11 Juergen Schmidt (ju heisec de) On Mon, 11 Jul 2005, Suresec Advisories wrote: > Suresec Security Advisory - #00004 > 10/07/05 > > Linux kernel ia32 compatibility race condition > Advisory: http://www.suresec.org/advisories/adv4.pdf <http://www.suresec.org/advisories/adv3.pdf> > > Description: > > A race condition vulnerability [ more ] [ reply ] [ GLSA 200507-09 ] Adobe Acrobat Reader: Buffer overflow vulnerability 2005-07-11 Matthias Geerdsen (vorlon gentoo org) [SECURITY] [DSA 751-1] New squid packages fix IP spoofing vulnerability 2005-07-11 joey infodrom org (Martin Schulze) |
|
Privacy Statement |
English url: http://pacsec.jp/speakers.html?LANG=ENGLISH
Japanese url: http://pacsec.jp/speakers.html?LANG=JAPANESE
PacSec/core05 CALL FOR PAPERS
World Security Pros To Converge on Japan November 15/16
TOKYO, Japan -- To address the increasing importance of information
security in Japan, the b
[ more ] [ reply ]