California court posting personal data in documents, privacy advocates charge

 ( 111 days 22 hours ago)

A court in California's Riverside County is openly posting sensitive personal data on its Web site, according to privacy watchdogs. But the court's IT director compared searching for that information to "finding a needle in a haystack."

Nigerian gets 18 months for cyber attack on NASA employee

 ( 111 days 22 hours ago)

A Nigerian man was sentenced to 18 months in prison for infecting the computer of a NASA worker with malware and stealing personal information.

php-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)

 ( 112 days ago)

Script : php-addressbook v2.0 Type : Multiple Remote Vulnerabilities (LFI/XSS) Discovered by : IRCRASH (Dr.Crash Or Khashayar Fereidani) Our Site : IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr DORK : "php-addressbook v2.0 - Refreshed" #XSS Address : =" ...

[SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities

 ( 112 days ago)

- Debian Security Advisory DSA-1565-1 securityatdebian.org dann frazier May 1, 2008 - Package : linux-2.6 Vulnerability : several vulnerabilities Problem type : local Debian-specific: no CVE Id(s) : CVE-2007-6694 CVE-2008-0007 CVE-2008-1294 CVE-2008-1375 Several local vulnerabilities have been discovered in the Linux kernel ...

Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (DB11)

 ( 112 days ago)

Team SHATTER Security Advisory Oracle Database Buffer Overflow in SYS.KUPF$FILEINT.GETFULLFILENAME (DB11) April 28, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes (Authentication to Database Server is needed) Credits: ...

Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_UTILITY.LOCK_CHANGE_SET (DB02)

 ( 112 days ago)

Team SHATTER Security Advisory Oracle Database SQL Injection in SYS.DBMSCDCUTILITY.LOCKCHANGESET (DB02) April 28, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes (Authentication to Database Server is needed) Credits: ...

vlBook 1.21 (ALL VERSION)

 ( 112 days ago)

Script : vlBook 1.21 (ALL VERSION) Type : Multiple Remote Vulnerabilities (LFI/XSS) Discovered by : IRCRASH (Dr.Crash Or Khashayar Fereidani) Our Site : IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr Script Download : DORK : "Powered by vlBook 1.21" ...

mjguest 6.7 (ALL VERSION) Xss & Redirection Vuln

 ( 112 days ago)

Script : mjguest 6.7 (ALL VERSION) Type : Multiple Remote Vulnerabilities (XSS/REDIRECTION) Discovered by : IRCRASH (Dr.Crash Or Khashayar Fereidani) Our Site : IRCRASH Bugtraq : IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr Script Download : ...

Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.DBMS_AQJMS_INTERNAL (DB15)

 ( 112 days ago)

Team SHATTER Security Advisory Oracle Database Buffer Overflow in SYS.DBMSAQJMSINTERNAL (DB15) April 28, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR1, 9iR2 (9.2.0.7 and previous patchsets) and 10gR1 Remote exploitable: Yes (Authentication to Database Server is needed) Credits: ...

[SECURITY] [DSA 1564-1] New wordpress packages fix several vulnerabilities

 ( 112 days ago)

- Debian Security Advisory DSA-1564-1 securityatdebian.org Thijs Kinkhorst May 01, 2008 - Package : wordpress Vulnerability : multiple Problem type : remote Debian-specific: no CVE Id(s) : CVE-2007-3639 CVE-2007-4153 CVE-2007-4154 CVE-2007-0540 Several remote vulnerabilities have been discovered in wordpress, ...

iDefense Security Advisory 04.30.08: Akamai Download Manager Arbitrary Program Execution Vulnerability

 ( 112 days ago)

iDefense Security Advisory 04.30.08 Apr 30, 2008 I. BACKGROUND Akamai Download Manager is an integral component of Akamai's global distribution service. It is used to deliver big files quickly and reliably to users around world. It has been used by vendors such as ...

XSS in AstroCam

 ( 112 days ago)

XSS in AstroCam 2.5.x/2.6.x/2.7.[123] Software:AstroCam Vulnerable:2.5.0-2.7.3 Not vulnerable:2.7.4 Class:Input Validation Error Remote: Yes Local:Yes Credit: This issue was announced by the vendor. Anouncement: Project URL: Description: It was possibly to execute HTML embedded script code in pic.php. Patch/URL can be found here: regards Steffen Wendzel ...

Q&A: Olympics cyberattack not a major threat, says Interpol official

 ( 112 days 4 hours ago)

Interpol's executive director for police services says his organization's greatest concern with the upcoming Olympic Games in Beijing is terrorism rather than cyberattacks.

Debian: New asterisk packages fix denial of service

 ( 112 days 7 hours ago)

LinuxSecurity.com: Joel R. Voss discovered that the IAX2 module of Asterisk, a free software PBX and telephony toolkit performs insufficient validation of IAX2 protocol messages, which may lead to denial of service.

RedHat: Moderate: thunderbird security update

 ( 112 days 7 hours ago)

LinuxSecurity.com: Updated thunderbird packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team.