prev · 13.05.2008 · next 
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 | 31 | |
Cisco BBSM Captive Portal Cross-site Scripting
( 3 hours 15 mins ago)
Title: Cisco BBSM Captive Portal Cross-site Scripting Vendor: Cisco Systems Vendor URL: www.cisco.com Vendor Response: Vendor has been notified and has since addressed the issue in the latest software release. Description: A non-persistent XSS vulnerability is present within the AccessCodeStart.asp page. A ...
[ GLSA 200805-14 ] Common Data Format library: User-assisted execution of arbitrary code
( 3 hours 15 mins ago)
- Gentoo Linux Security Advisory GLSA 200805-14 - - Severity: Normal Title: Common Data Format library: User-assisted execution of arbitrary code Date: May 13, 2008 Bugs: #220391 ID: 200805-14 - Synopsis ...
iDefense Security Advisory 05.13.08: Microsoft Word CSS Processing Memory Corruption Vulnerability
( 3 hours 15 mins ago)
iDefense Security Advisory 05.13.08 May 13, 2008 I. BACKGROUND Microsoft Word is a word processing application that is distributed with Microsoft Office. Cascading Style Sheets (CSS) is a stylesheet language used to describe the presentation of a document written in a markup ...
ZDI-08-023: Microsoft Office RTF Parsing Engine Memory Corruption Vulnerability
( 3 hours 15 mins ago)
ZDI-08-023: Microsoft Office RTF Parsing Engine Memory Corruption Vulnerability August 14, 2007 -- CVE ID: CVE-2008-1091 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Excel Microsoft Office Word -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability by Digital Vaccine protection filter ID 6099. ...
TPTI-08-04: Microsoft Office Jet Database Engine Column Parsing Stack Overflow Vulnerability
( 3 hours 15 mins ago)
TPTI-08-04: Microsoft Office Jet Database Engine Column Parsing Stack Overflow Vulnerability May 13, 2008 -- CVE ID: CVE-2007-6026 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Word Microsoft Office Access -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this ...
[USN-612-2] OpenSSH vulnerability
( 3 hours 15 mins ago)
Ubuntu Security Notice USN-612-2 May 13, 2008 openssh vulnerability CVE-2008-0166, A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they ...
[USN-612-1] OpenSSL vulnerability
( 3 hours 15 mins ago)
Ubuntu Security Notice USN-612-1 May 13, 2008 openssl vulnerability CVE-2008-0166 A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they ...
[SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
( 3 hours 15 mins ago)
- Debian Security Advisory DSA-1571-1 securityatdebian.org Florian Weimer May 13, 2008 - Package : openssl Vulnerability : predictable random number generator Problem type : remote Debian-specific: yes CVE Id(s) : CVE-2008-0166 Luciano Bello discovered that the random number generator in Debian's ...
Ubuntu: OpenSSL vulnerability
( 3 hours 32 mins ago)
LinuxSecurity.com: A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH, OpenVPN and SSL certificates.
RedHat: Important: xen security and bug fix update
( 3 hours 32 mins ago)
LinuxSecurity.com: Daniel P. Berrange discovered that the hypervisor's para-virtualized framebuffer (PVFB) backend failed to validate the format of messages serving to update the contents of the framebuffer. This could allow a malicious user to cause a denial of service, or compromise the privileged domain (Dom0). (CVE-2008-1944)
Debian: New openssl packages fix predictable random number generator
( 3 hours 32 mins ago)
LinuxSecurity.com: Luciano Bello discovered that the random number generator in Debian's openssl package is predictable. This is caused by an incorrect Debian-specific change to the openssl package (CVE-2008-0166). As a result, cryptographic key material may be guessable.
iDefense Security Advisory 05.12.08: Microsoft Windows I2O Filter Utility Driver (i2omgmt.sys) Local Privilege Escalation Vulnerability
( 9 hours 50 mins ago)
iDefense Security Advisory 05.12.08 May 12, 2008 I. BACKGROUND Intelligent Input/Output (I2O) is a defunct computer input/output (I/O) specification. i2omgmt.sys is a Windows driver for the I2O Utility Filter. For more background information about I2O, see following website. II. DESCRIPTION ...
[SECURITY] [DSA 1575-1] New Linux 2.6.18 packages fix denial of service
( 9 hours 50 mins ago)
- Debian Security Advisory DSA-1575-1 securityatdebian.org dann frazier May 12, 2008 - Package : linux-2.6 Vulnerability : denial of service Problem type : local Debian-specific: no CVE Id(s) : CVE-2008-1669 A vulnerability has been discovered in the Linux kernel that may lead ...
[MajorSecurity Advisory #52]ActualAnalyzer family - Cross Site Scripting Issues
( 9 hours 50 mins ago)
[MajorSecurity Advisory #52]ActualAnalyzer family - Cross Site Scripting Issues Details Product: Actual Analyzer Security-Risk: moderated Remote-Exploit: yes Vendor-URL: Vendor-Status: informed Advisory-Status: published Credits Discovered by: David Vieira-Kurz Affected Products: ActualAnalyzer Server 8.37 and prior ActualAnalyzer Gold 7.74 and prior ActualAnalyzer Pro 6.95 and prior ...
[ GLSA 200805-13 ] PTeX: Multiple vulnerabilities
( 9 hours 50 mins ago)
- Gentoo Linux Security Advisory GLSA 200805-13 - - Severity: Normal Title: PTeX: Multiple vulnerabilities Date: May 12, 2008 Bugs: #196673 ID: 200805-13 - Synopsis Multiple vulnerabilities were discovered in PTeX, possibly allowing the ...
[ GLSA 200805-12 ] Blender: Multiple vulnerabilities
( 9 hours 50 mins ago)
- Gentoo Linux Security Advisory GLSA 200805-12 - - Severity: Normal Title: Blender: Multiple vulnerabilities Date: May 12, 2008 Bugs: #219008 ID: 200805-12 - Synopsis Multiple vulnerabilities in Blender might result in the remote execution of arbitrary code. Background ...
[ GLSA 200805-11 ] Chicken: Multiple vulnerabilities
( 9 hours 50 mins ago)
- Gentoo Linux Security Advisory GLSA 200805-11 - - Severity: Normal Title: Chicken: Multiple vulnerabilities Date: May 12, 2008 Bugs: #198979 ID: 200805-11 - Synopsis Multiple vulnerabilities in Chicken could result in the execution of arbitrary code. Background ...
Debian: New Linux 2.6.18 packages fix denial of service
( 10 hours 21 mins ago)
LinuxSecurity.com: Alexander Viro discovered a race condition in the fcntl code that may permit local users on multi-processor systems to execute parallel code paths that are otherwise prohibited and gain re-ordered access to the descriptor table.
Debian: New icedove packages fix several vulnerabilities
( 10 hours 21 mins ago)
LinuxSecurity.com: Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client. The Common Vulnerabilities and Exposures project identifies the following problems:
Hacker posts Chilean government data on 6 million
( 15 hours 46 mins ago)
Chile's remarkably lax data and privacy protections are in the spotlight as a hacker -- looking to do exactly that -- posts personal data on around six million Chileans.
Hackers create their own social network
( 15 hours 46 mins ago)
Anyone who has been to a hacker con(vention) knows that the denizens are intensely social. Now, thanks to GnuCitizen, they've got a social network to call their own.
prev · 13.05.2008 · next
