[ CALL FOR PAPERS ]

Papers and presentations are now being accepted for PAKCON II, Pakistan's
Underground Hacking Convention.

WHAT: PAKCON II Call for Papers.

WHEN: Starting today, 17 April, 2005, and closing on 15 August, 2005.

WHO: If you want to speak at PAKCON, you know who you are.

HOW

[ more ]  [ reply ]

A N N O U N C I N G P A K C O N II
The Pakistan's Underground Hacking Convention
http://www.pakcon.org

[ theme ]

We are proud to PAKCON II, an underground hacking convention held annually
in Pakistan.

In an age where information is treasure and the treasure house is the
virtual network, securi

[ more ]  [ reply ]

Vulnerability Details
=====================
The vulnerability is a heap overflow in SvrAppendReceivedChunk function
which is located in xlsasink.dll.
When transmitting large chunks with X-LINK2STATE verb it is possible to
overflow the heap and perform arbitrary memory write in RtlAllocateHeap
functi

[ more ]  [ reply ]

IBM WebSphere Widespread configuration JSP disclosure

Release Date: 04/13/2005
Severity: High

[Systems Affected]
* IBM WebSphere Application 6 and prior.

[Description]

The practice of sharing the document root of the app server within the
document
root of the web server creates a security exposu

[ more ]  [ reply ]

Hi,

Does anybody know any userland tool, Linux kernel module,
iptables/netfilter module, or whatever mechanism to change arbitrary
headers of IP packets on-the-fly as long as they traverse the IP
stack? Is there any known paper regarding this subject?

The whole story is that I'm doing some r

[ more ]  [ reply ]

OSVDB Recognized as 501(c)3 Non-Profit Organization

The Open Source Vulnerability Database, a project to catalog and
describe the world's security vulnerabilities, has continued to focus on
improving database content and increasing services offered to the
security community.

Since the official

[ more ]  [ reply ]

[posting to vuln-dev as while the program isn't setuid, other programs
which rely on it may be running as root may inherit it's
vulnerability. A patch for this vuln has been submited to the
maintainer of the Procps package.]

================================
pwdx argv buffer overflow vulnerability
=

[ more ]  [ reply ]

Bugger The Debugger
- Pre Interaction Debugger Code Execution

The use of debuggers to analyse malicious or otherwise unknown binaries
has become a requirement for reverse engineering executables to help
determine their purpose.

While researchers in places such as anti-virus laboratories have alwa

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----

========================================================================

Computer Security Mexico 2005

Palacio de Mineria
May 26th - May 27th, 2005

Mexico City, Mexico

====================

[ more ]  [ reply ]

PullThePlug.org is a community aimed at nurturing the growth and
development of the information security field through community-wide
research and development projects, lectures and wargame servers.

Rather than taking the usual approach of hands-off documentation,
PullThePlug emphasizes education a

[ more ]  [ reply ]

comments in-line:

Matt wrote:
> So let me get this straight...
>
> So what you want to do is go through someone's SOA (Start of
> Authority) and search for just keywords that you choose in order to
> find all sites containing those keywords?
-----------------
i just want to search for domain name

[ more ]  [ reply ]

Yesterday I claimed the off-by-one vulnerability is not remotely
exploitable. It is. Anyone that leases from dnsmasq can take advantage
of two off-by-ones. Then when the lease file is read dnsmasq may
crash.

[ more ]  [ reply ]

I don't know if I follow your logic. You want to find a list of all the
sites with a certain keyword in the domain name to block them with a
filter application? A better approach might be to analyze the requested
URL and see if it contains any "bad" keywords. Well, for whatever reason
you want to do

[ more ]  [ reply ]

Call For Papers

RUXCON would like to announce the call for papers for the third annual RUXCON
conference.

Breaking from the RUXCON tradition of having the conference in winter months,
this year the conference will be ran during the 1st and 2nd of October.

As with previous years, RUXCON will be

[ more ]  [ reply ]

Dear past Black Hat attendee,

I would like to make some brief announcements regarding upcoming Black Hat events.

Our European show is coming to Amsterdam, March 31-April 1. Our on-line registration will be closing this Thursday, March 24. If you wish to register after March 24, you must register o

[ more ]  [ reply ]

Kyle, the big answer is: [comments inline]

> -----Original Message-----
> From: Kyle Quest [mailto:Kyle.Quest (at) networkengines (dot) com [email concealed]]
> Sent: Sunday, March 13, 2005 2:04 PM
> To: Evans, Arian; secprog (at) securityfocus (dot) com [email concealed];
> Subject: RE: calling all software security tool vendors/freeware/open
>
> the bi

[ more ]  [ reply ]

On Friday my admittedly small mind produced the email included below,
which has resulted in a lot of well-meaning replies not in the area I
am looking for. The problem is that I declined to provide a translation
key for my ambiguous terminology.

"Software Security Tools" = "Software tools to test o

[ more ]  [ reply ]

If you are a vendor of a software security tool, fault injection,
binary analysis, source code analysis, blah-foo, etc., please
contact me if we haven't spoken already.

I am finalizing a comprehensive list and doing a final check
to make sure I've accounted for all the software security
tool vendor

[ more ]  [ reply ]

(The registration for this training is now
on-line. I thought it would be of interest to
readers of this list. --dr)

CanSecWest Security Masters Dojo
----------------------------------------

Dates: Morning/Afternoon May 3 and Morning May 4
(Immediately preceeding CanSecWest/core05)

Venu

[ more ]  [ reply ]

-= Security Advisory =-

Advisory Information
-------------------------

Software Package : Hosting Controller
Vendor Homepage : http://www.hostingcontroller.com
Platforms : Windows based servers
Vulnerability : Multiple Unauthenticated informati

[ more ]  [ reply ]

Hi there,

Just wondering if there is any way I could use a scanner (I have a home
grown script for this) that would go thru the DNS registries from some
public source, scan for keywords in the domain name.

Will appreciate if someone can point me in the right direction.

regards,
/vicky

[ more ]  [ reply ]

The Web Application Security Consortium is proud to present 'The Insecure Indexing
Vulnerability - Attacks Against Local Search Engines' written by Amit Klein. In
this article Amit discusses the risks associated with using a local search engine
that indexes its content locally.

This document can

[ more ]  [ reply ]

In-Reply-To: <421971E1.4030107 (at) gmail (dot) com [email concealed]>

>that it does something like this
>
>pointer_array[unsigned_int] = malloc(....);

that is a bit vague, do you have complete control of the "unsigned_int" or is it an incremental-style control?...what is pointer_array?...what is the code leading up to this?.

[ more ]  [ reply ]