prev · 14.05.2008 · next 
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 | 31 | |
[USN-612-6] OpenVPN regression
( 115 days ago)
Ubuntu Security Notice USN-612-6 May 14, 2008 openvpn regression A security issue affects the following Ubuntu releases: Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ...
[ GLSA 200805-16 ] OpenOffice.org: Multiple vulnerabilities
( 115 days ago)
- - Gentoo Linux Security Advisory GLSA 200805-16 - - - - Severity: Normal Title: OpenOffice.org: Multiple vulnerabilities Date: May 14, 2008 Bugs: #218080 ID: 200805-16 - - Synopsis Multiple vulnerabilities have been reported in OpenOffice.org, ...
Correction to BID 29112 "Apache Server HTML Injection and UTF-7 XSS Vulnerability"
( 115 days ago)
HTTP User and Desktop Security Communities; With respect to Per 3.7.1 Canonicalization and Text Defaults [...] The "charset" parameter is used with some media types to define the character set (section 3.4) of the data. When no explicit charset ...
Re: Cisco BBSM Captive Portal Cross-site Scripting
( 115 days ago)
Hello, This is the Cisco PSIRT response to an issue that was discovered and reported to Cisco by Brad Antoniewicz from Mcafee/Foundstone Professional Services regarding a cross-site scripting (XSS) vulnerability in Cisco's Building Broadband Service Manager (BBSM). ...
Cisco Security Advisory: Cisco Unified Presence Denial of Service Vulnerabilities
( 115 days ago)
Cisco Security Advisory: Cisco Unified Presence Denial of Service Vulnerabilities Advisory ID: cisco-sa-20080514-cup Revision 1.0 Summary Cisco Unified Presence contains three denial of service (DoS) vulnerabilities that may cause an interruption in presence services. These vulnerabilities were discovered internally by Cisco, and there ...
Cisco Security Advisory: Cisco Content Switching Module Memory Leak Vulnerability
( 115 days ago)
Cisco Security Advisory: Cisco Content Switching Module Memory Leak Vulnerability Advisory ID: cisco-sa-20080514-csm Revision 1.0 For Public Release 2008 May 14 1600 UTC (GMT) Summary The Cisco Content Switching Module (CSM) and Cisco Content Switching ...
[ GLSA 200805-15 ] libid3tag: Denial of Service
( 115 days ago)
- - Gentoo Linux Security Advisory GLSA 200805-15 - - - - Severity: Normal Title: libid3tag: Denial of Service Date: May 14, 2008 Bugs: #210564 ID: 200805-15 - - Synopsis A Denial of Service vulnerability was found in libid3tag. Background ...
[USN-612-5] OpenSSH update
( 115 days ago)
Ubuntu Security Notice USN-612-5 May 14, 2008 openssh update A security issue affects the following Ubuntu releases: Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ...
Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities
( 115 days ago)
Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities Advisory ID: cisco-sa-20080514-cucmdos Revision 1.0 Summary Cisco Unified Communications Manager, formerly Cisco CallManager, contains multiple denial of service (DoS) vulnerabilities that may cause an interruption in voice services, if exploited. These ...
CFP: European Conference on Computer Network Defense
( 115 days ago)
CALL FOR PAPERS: EC2ND 2008 European Conference on Computer Network Defense (in cooperation with ENISA) December 11th & 12th 2008, Dublin City University, Dublin, Ireland. Call for Papers The fourth annual EC2ND conference will take place on December 11th & 12th ...
[SECURITY] [DSA 1576-1] New openssh packages fix predictable randomness
( 115 days ago)
- Debian Security Advisory DSA-1576-1 securityatdebian.org Florian Weimer May 14, 2008 - Package : openssh Vulnerability : predictable random number generator Problem type : remote Debian-specific: yes CVE Id(s) : CVE-2008-0166 The recently announced vulnerability in Debian's openssl package ...
[USN-612-4] ssl-cert vulnerability
( 115 days ago)
Ubuntu Security Notice USN-612-4 May 14, 2008 ssl-cert vulnerability CVE-2008-0166, A security issue affects the following Ubuntu releases: Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ...
Malformed Acrobat Distiller 8 .joboptions
( 115 days ago)
= Malformed Acrobat Distiller 8 .joboptions = = Vendor Website: = = = Affected Version: = Adobe Acrobat Reader, Acrobat Professional 7, Acrobat Professional 8 = = Vendor Notified - February 2007 = Public Disclosure - May 2008 = istillerMalformedjoboptionsFile.pdf == Overview == ...
Microsoft Office Publisher PUB File Parsing Remote Memory Corruption Vulnerability
( 115 days ago)
/******************************************************************************************** Please join us to pray for the people still in the huge earthquake in eastern Sichuan, China. *********************************************************************************************/ Microsoft Office Publisher PUB File Parsing Remote Memory Corruption Vulnerability by cocoruder(frankruderathotmail.com) Summary: A memory corruption vulnerability exists in Microsoft Office ...
Phishing botnet expands by hacking legit sites
( 115 days 6 hours ago)
The Asprox botnet is now using a SQL injection attack tool aimed at hacking legitimate Web sites to try to add more hijacked PCs to its collection, a security researcher said today.
Web Security SaaS: The Next Generation of Web Security
( 115 days 6 hours ago)
(Source: Webroot Software) The Web is the new threat vector of choice for hackers and cybercriminals to distribute malware and perpetrate identity theft, financial fraud, and corporate espionage. This paper outlines the challenges facing many SMBs and provides solutions for overall security effectiveness and reducing the burden on IT departments.
[SECURITY] [DSA 1577-1] New gforge packages fix insecure temporary files
( 115 days 10 hours ago)
- Debian Security Advisory DSA-1577-1 securityatdebian.org Thijs Kinkhorst May 14, 2008 - Package : gforge Vulnerability : insecure temporary files Problem type : local Debian-specific: no CVE Id(s) : CVE-2008-0167 Stephen Gran and Mark Hymers discovered that some scripts run by GForge, ...
Debian: New openssh packages fix predictable randomness
( 115 days 11 hours ago)
LinuxSecurity.com: Jan Pechanec discovered that ssh fails back to creating a trusted X11 cookie if creating an untrusted cookie fails, potentially exposing the local display to a malicious remote server when using X11 forwarding.
Ubuntu: ssl-cert vulnerability
( 115 days 11 hours ago)
LinuxSecurity.com: A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH, OpenVPN and SSL certificates.
RedHat: Important: libvorbis security update
( 115 days 11 hours ago)
LinuxSecurity.com: Updated libvorbis packages that fix various security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team.
RedHat: Important: libvorbis security update
( 115 days 11 hours ago)
LinuxSecurity.com: Updated libvorbis packages that fix various security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team.
Ubuntu: OpenSSH vulnerability
( 115 days 11 hours ago)
LinuxSecurity.com: A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH.
Restaurant chain served up payment card data to hackers
( 115 days 21 hours ago)
Dave & Buster's disclosed that credit and debit card numbers were stolen last year from systems at 11 restaurants — allegedly by three hackers who have been indicted by a federal grand jury.
prev · 14.05.2008 · next
