[ MDKSA-2007:181 ] - Updated librpcsecgss packages fix vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2007:181 http://www.mandriva.com/security/

[ MDKSA-2007:180 ] - Updated id3lib packages fix vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2007:180 http://www.mandriva.com/security/

NDSS 2008 CfP Papers Due September 21

NDSS (Network and Distributed Systems Security) is a traditional academic scholarly conference, with an emphasis on practical security matters. This year we are continuing our theme of cross-over between the academic security research community and the hacker security research community, and so we

WinSCP 4.04 url protocol handler flaw

-Affected products: WinSCP 4.03 and older -Details: By default WinSCP installs url protocol handlers for the scp:// and sftp:// protocols. These could be used by malicious web content to automatically upload any file from the local system to a remote server, or automatically download files

Next generation malware: Windows Vista's gadget API

A paper has just been released on the Windows Vista's gadget API. The abstract is as follows: Windows has had the ability to embed HTML into it’s user interface for many years. Right back to and including Windows NT 4.0, it has been possible to embed HTML into the task bar, but the OS has

Re: Next generation malware: Windows Vista's gadget API

On Sep 13, 2007, at 04:16 AM, Tim Brown wrote: A paper has just been released on the Windows Vista's gadget API. The abstract is as follows: Windows has had the ability to embed HTML into it’s user interface for many years. Right back to and including Windows NT 4.0, it has been possible

[ GLSA 200709-02 ] KVIrc: Remote arbitrary code execution

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200709-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - -

[ MDKSA-2007:182 ] - Updated quagga packages fix vulnerability and bugs

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2007:182 http://www.mandriva.com/security/

[ GLSA 200709-04 ] po4a: Insecure temporary file creation

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200709-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - -

[ GLSA 200709-03 ] Streamripper: Buffer overflow

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200709-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - -