[ Normal Mode ] [ تماس ]

Security Tracker Archive : Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code Blackboard Transact Suite Discloses Passwords to Local Users Linux Kernel GFS2 Rename Null Pointer Dereference May Let Local Users Gain Elevated Privileges HP Operations Agent Flaws Let Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges Linux Kernel Null Pointer Dereference in keyctl_session_to_parent() May Let Local Users Gain Elevated Privileges cPanel Error in 'autoinstallhome.php' Lets Local Users Bypass PHP Restrictions Linux Kernel Null Pointer Dereference in irda_bind() May Let Local Users Gain Elevated Privileges HP Insight Diagnostics Online Edition Input Validation Hole Permits Cross-Site Scripting Attacks Novell NetWare SFTP/SCP Buffer Overflow Lets Remote Authenticated Users Execute Arbitrary Code Apple QuickTime Flaw in QTPlugin.ocx ActiveX Control Lets Remote Users Execute Arbitrary Code Novell Identity Manager Lets Local Users Obtain Passwords TANDBERG MXP Videoconferencing System SNMP Processing Error Lets Remote Users Deny Service Cisco IOS XR BGP Attribute Processing Flaw Permits Denial of Service Attacks RealPlayer Bugs Let Remote Users Obtain Files and Execute Arbitrary Code NetBSD Buffer Length Check Error in CODA File System Lets Local Users Read Kernel Memory IBM AIX Buffer Overflow in ftpd Lets Remote Authenticated Users Execute Arbitrary Code HP Software Distributor Lets Local Users Gain Elevated Privileges Trend Micro Internet Security Pro Memory Access Error in 'UfPBCtrl.dll' ActiveX Control Lets Remote Users Execute Arbitrary Code Cisco Unified Communications Manager SIP Processing Flaws Let Remote Users Interrupt Voice Services Cisco Unified Presence SIP Processing Flaws Let Remote Users Disrupt Presence Services Adobe Shockwave Player Has Multiple Flaws That Let Remote Users Execute Arbitrary Code or Deny Service MySQL Multiple Flaws Let Remote Authenticated Users Deny Service Mac OS X Bugs Let Remote Users Intercept TLS/SSL Connections, Impersonate Domain Names, and Execute Arbitrary Code Windows TCP/IP Stack IcmpSendEcho2Ex() Bug Lets Local Users Deny Service HP MagCloud Lets Remote Users Gain Read and Write Access to Application Data Bugtraq Posts : VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249) nullcon Goa dwitiya (2.0) Call For Papers [security bulletin] HPSBMA02572 SSRT100082 rev.1 - HP Operations Agent Running on Windows, Local Elevation of Privileges and Remote Execution of Arbitrary Code Rooted CON 2011 - Call for Papers [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution [ MDVSA-2010:170 ] wget [ MDVSA-2010:168 ] openssl [ MDVSA-2010:169 ] mozilla-thunderbird Vulnerabilities in CMS WebManager-Pro {PRL} Novell Netware OpenSSH Remote Stack Overflow XSS vulnerability in ArtGK CMS XSS vulnerability in Rumba CMS tags XSS vulnerability in ArtGK CMS forum Tortoise SVN DLL Hijacking Vulnerability XSS vulnerability in Rumba CMS XSS vulnerability in Amiro.CMS FAQ [ MDVSA-2010:167 ] perl-libwww-perl [SECURITY] [DSA 2101-1] New wireshark packages fix several vulnerabilities ApPHP Calendar XSS - CSRF [ MDVSA-2010:166 ] libgdiplus InfoSec News : Cross-subdomain Session Fixation Snoop Dogg joins cybercrime fight because 'hack is wack' Botnet takedown may yield valuable data Russian Trojan blamed for credit card losses at US diner Secunia Weekly Summary - Issue: 2010-35 News of the World faces fresh phone hacking charge Russian government email servers hacked DARPA Soliciting Bids On Insider Threat Prevention Iran's Cyber Army Hacks 1, 000 US, British, French Gov't Websites Darpa’s Star Hacker Looks to WikiLeak-Proof Pentagon State retiree data breached Full Disclosure : Microsoft Internet explorer 8 DLL Hijacking(IESHIMS.DLL) Internet Explorer 8 PoC: Twitter forced-tweet demo Tuscl.net SQL injection with 30k Plain TextPasswords & 80k Email list Virus submission site [SECURITY] [DSA-2102-1] New barnowl packages fixarbitrary code execution Security vulnerabilities in Pligg CMS version1.0.4 [ MDVSA-2010:170 ] wget [ GLSA 201009-01 ] wxGTK: User-assisted executionof arbitrary code Bug in vde_plug, remote exploitation possible? Verizon Wireless security contact? [ MDVSA-2010:169 ] mozilla-thunderbird Vulnerabilities in CMS WebManager-Pro [USN-982-1] Wget vulnerability Moovida Media Player version 2.0.0.15 Insecure DLL Hijacking Vulnerability (libc.dll, quserex.dll) DLL hijacking POC (failed, see for yourself) DLL hijacking with ZIP files in email? [ MDVSA-2010:168 ] openssl LDAP NULL Bind being picked up,making non PCI compliant [SecurityArchitect-008]: Xterm Local BufferOverflow Vulnerability Online Binary Planting Exposure Test Secunia Advisories : Error in connection ! Daily Dave : Cracking video is up ColdFusion Directory Traversal nullcon Goa dwitiya (2.0) Call For Papers Rooted CON 2011 - Call for Papers SILICAU Lightning Demo (Wireless key cracking) Commission on Cybersecurity for the 44th Presidency and your right to cyber (security) SILICAU Movie Ekoparty classes! t2′10 Challenge to be released 2010-08-28 10:00 EEST SOURCE Barcelona 2010 Speaker List White Phosphorus Jane Holl Lute's Blackhat Keynote X11 -> Root? SILICAU Lightning Demo (Passive Session Hijacking) RELEASE: SMB2 REMOTE EXPLOIT (VISTA SP1/SP2) + HACKTRO Penetration Testing : IBWAS10 Pentest Criteria nullcon Goa dwitiya (2.0) Call For Papers Pentestn ASP website with tinymce Focus IDS : CFP: Deadline Extended: SLAML'10 Announcement: xtractr updates Performance measurement tool for IDS/IPS Honeypots : nullcon Goa dwitiya (2.0) Call For Papers [HITB-Announce] HITB2010 SIGNINT Sessions honeypot needed for waf testing Ruxcon 2010 Final Call For Papers [HITB-Ann] Reminder: HITB2010 Malaysia Call for Papers Closing August 9th [HITB-Announce] HITB Magazine Issue 003 + HITBSecConf2010 - Amsterdam CFP: Deadline Extended: SLAML'10 [HITB-Announce] HITBSecConf2010 - Malaysia Call for Papers info reg Zeus bot detection and analysis [HITB-Announce] HITB eZine Issue 002 out now! [HITB-Announce] FINAL CALL - CFP for HITBSecConf2010 Amsterdam

CVE Compatible : CVE-2010-3197 (db2) CVE-2010-3196 (db2) CVE-2010-3195 (db2) CVE-2010-3194 (db2) CVE-2010-3193 (db2) CVE-2010-2365 (moobbs2) CVE-2010-2364 (moobbs) CVE-2010-3191 (captivate) CVE-2010-3190 (visual_studio) CVE-2010-3189 (internet_security) CVE-2010-3188 (bugtracker.net) CVE-2010-1818 (quicktime) CVE-2010-3035 (ios_xr) CVE-2010-2712 (hp-ux) CVE-2010-2575 (kde_sc) CVE-2010-3187 (aix) CVE-2010-3186 (websphere_application_server) CVE-2010-3002 (realplayer) CVE-2010-3001 (realplayer, realplayer_sp) CVE-2010-3000 (realplayer, realplayer_sp) Packetstorm Archive : ie8-forcedtweet.txt smbind-sql.txt pligg104-sql.txt moaub03-trendmicro.pdf moaub03-visinia.pdf googlechrome-corruption.txt moaub-visinia.txt moaub-trendmicro.txt dsa-2102-1.txt HPSBMA02572-SSRT100082.txt MDVSA-2010-170.txt glsa-201009-01.txt onecms-xss.txt path-attacks.txt moaub02-apple.pdf moaub02-rainbow.pdf webmanagerpro-sql.txt suricata-1.0.2.tar.gz checksum-shellcode.txt USN-982-1.txt PRL-2010-07.txt MDVSA-2010-169.txt moovida-dllhijack.tgz cvechecker-0.5.tar.gz moaub-quicktime.txt vbshout-rfilfi.txt moaub-rainbowportal.txt shopalacart-sqlxss.txt accton-backdoor.txt nullconGoa2011-CFP.txt amirocmsfaq-xss.txt advanced-xss.pdf moaub01-cpanel.pdf moaub01-adobe.pdf MDVSA-2010-168.txt Distro Watch News : Distribution Release: UberStudent 1.0 "LXDE" Distribution Release: Legacy OS 2010 Development Release: Ubuntu 10.10 Beta Development Release: openSUSE 11.4 Milestone 1 Distribution Release: Kiwi Linux 10.08 Distribution Release: Element 1.4 Distribution Release: Zentyal 2.0 DistroWatch Weekly, Issue 369 Distribution Release: Chakra GNU/Linux 0.2.0 Distribution Release: ArtistX 0.9 Latest Packages From DW : 09/03 apt 0.8.1 09/03 git 1.7.2.3 09/03 udev 162 09/02 kdevelop 4.0.2 09/01 kaffeine 1.1 09/01 rpm 5.3.3 09/01 lftp 4.0.10 08/31 m4 1.4.15 08/31 ImageMagick 6.6.3-10 08/31 NVIDIA 256.53 08/31 kdewebdev 4.5.1 08/31 kdebase 4.5.1 InfoSec Writers : Experimental Review of IPSec Features to Enhance IP Security Cloud Computing – Storm Clouds or is it Smooth Flying? The Evolving World of Computer Security and Laws Web Access Management and Single Sign-On Reverse Honey Trap The Phishing Guide Shedding Light on Quantum Cryptography Securing a Virtual Environment Investigating the SANS/CWE Top 25 Most Dangerous Programming Errors List Hacking Tools & Techniques and How to Protect Your Network from Them Internet Storm Center : Infocon: green What's not to Like about "Like?", (Sat, Sep 4th) Investigating Malicious Website Reports, (Sat, Sep 4th) Apple Releases Two Security Updates (One for OSX, One for iTunes) : http://support.apple.com/kb/HT4312 and http://support.apple.com/kb/HT4328, (Fri, Sep 3rd) Microsoft EMETv2 released, (Thu, Sep 2nd) SDF, please!, (Thu, Sep 2nd) Month of Undisclosed 0-day Bugs, (Wed, Sep 1st) Microsoft issues updates to sysinternals ProcDump and Process Monitor: http://blogs.technet.com/b/sysinternals/archive/2010/08/30/updates-procdump-process-monitor-and-a-new-mark-s-blog-post.aspx, (Wed, Sep 1st) VMWARE releases 2 security advisories for ESX Service Console: http://lists.vmware.com/pipermail/security-announce/2010/000103.html and http://lists.vmware.com/pipermail/security-announce/2010/000104.html, (Wed, Sep 1st) Interesting PHP injection, (Tue, Aug 31st) Microsoft Bulletins : MS10-060 - Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime and in Microsoft Silverlight Could Allow Remote Code Execution (2265906) MS10-059 - Important: Vulnerabilities in the Tracing Feature for Services Could Allow Elevation of Privilege (982799) MS10-058 - Important: Vulnerabilities in TCP/IP Could Allow Elevation of Privilege (978886) MS10-057 - Important: Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707) MS10-056 - Critical: Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638) MS10-055 - Critical: Vulnerability in Cinepak Codec Could Allow Remote Code Execution (982665) MS10-054 - Critical: Vulnerabilities in SMB Server Could Allow Remote Code Execution (982214) MS10-053 - Critical: Cumulative Security Update for Internet Explorer (2183461) MS10-052 - Critical: Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (2115168) MS10-051 - Critical: Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (2079403) OS News : * Game Review: Mafia 2 * Stack & Tile Project Reworked Duke Nukem Forever Returns, Will Really Be Released in 2011 iTunes 10: Snappier Performance, Questionable UI Choices Ping: Why Bother? Apple Violated Facebook's Terms of Service Chrome Celebrates Second Birthday with Sixth Release Samsung Unveils Galaxy Tab Windows Phone 7: Done Commodore USA Threatens OSNews with Legal Action Apple Shows iOS 4.1, 4.2 Patent Troll or Not, Paul Allen Finds a Friend in Steve Wozniak Commodore Gets Rights to Amiga, Hyperion Takes Legal Action KDE Software Compilation 4.5.1 Released Autodesk Reintroduces Its AutoCAD Design Software for Macs نظرات Ùˆ پیشنهادات :   نام : ایمیل : پیام : Your Message

Copyright 2008, Sepehr S. T. Co. Ltd. .