[ MDKSA-2007:244 ] - Updated samba packages fix vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2007:244 http://www.mandriva.com/security/

[SECURITY] [DSA 1428-2] New Linux 2.6.18 packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 1428-2[EMAIL PROTECTED] http://www.debian.org/security/ dann frazier December 11th, 2007

Re: TCP Port randomization paper

Hello, Amit, However, it seems that your proposal only attempts to address one consequence of predictable TCP source ports, namely blind TCP attacks (in all fairness, it appears that the object of your proposal is to solve the blind TCP attacks, rather than the issue of predictable TCP

Re: Cpanel Vulnerability?

Trying this again since the lists apparently do not like me. This would sound more like an issue in frontpage extensions than cpanel itself. On Dec 12, 2007 8:16 AM, Francisco Pecorella [EMAIL PROTECTED] wrote: Folks, I have been seen some phishings installed in servers with

MS Office 2007: Digital Signature does not protect Meta-Data

Affects: Microsoft Office 2007 (12.0.6015.5000) MSO (12.0.6017.5000) possibly older versions I. Background Microsoft Office is a suite containing several programs to handle Office documents like text documents or spreadsheets. The latest version uses an XML based

Re: Media Player Classic 6.4.9 MP4 Stack Overflow 0-day

Just to rehash this for my own clarity, and perhaps that of others, this is not a defect in Media Player Classic so much as a defect in the 3ivx codec. If one were to use a different codec to decode MP4 content this defect would not exist. This is similar to a defect in Adobe Acrobat Reader

iDefense Security Advisory 12.11.07: Microsoft Internet Explorer JavaScript setExpression Heap Corruption Vulnerability

iDefense Security Advisory 12.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 11, 2007 I. BACKGROUND Internet Explorer is a graphical web browser developed by Microsoft Corp. and included as part of Microsoft Windows since 1995. The setExpression method is commonly used to

rPSA-2007-0264-1 mod_dav_svn subversion

rPath Security Advisory: 2007-0264-1 Published: 2007-12-12 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Remote User Deterministic Information Exposure Updated Versions: [EMAIL PROTECTED]:1/1.2.3-8.1-1 [EMAIL PROTECTED]:1/1.2.3-8.1-1 rPath Issue Tracking

iDefense Security Advisory 12.11.07: Microsoft DirectX 7 and 8 DirectShow Stack Buffer Overflow Vulnerability

iDefense Security Advisory 12.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 11, 2007 I. BACKGROUND Microsoft DirectShow, part of Microsoft DirectX, is used for the capture and playback of multimedia streams on Microsoft Windows systems. Synchronized Accessible Media

Re: Re: Cpanel Vulnerability?

I would guess someone is trying to hide a phishing page in a frontpage looking folder rather than it actually being a frontpage issue.