Apple Directory Services Memory Corruption - CVE-2010-1840

Dear List, I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability. Check Point Software Technologies - Vulnerability Discovery Team (VDT) http://www.checkpoint.com/defense/ Apple Directory Services Memory Corruption CVE-2010-1840

Secunia Research: QuickTime Sorenson Video 3 Array-Indexing Vulnerability

== Secunia Research 11/11/2010 - QuickTime Sorenson Video 3 Array-Indexing Vulnerability - == Table of Contents Affected

[USN-1017-1] MySQL vulnerabilities

=== Ubuntu Security Notice USN-1017-1 November 11, 2010 mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities CVE-2010-2008, CVE-2010-3677, CVE-2010-3678, CVE-2010-3679, CVE-2010-3680, CVE-2010-3681, CVE-2010-3682, CVE-2010-3683,

CORE-2010-1018 - Landesk OS command injection

Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Landesk OS command injection 1. *Advisory Information* Title: Landesk OS command injection Advisory Id: CORE-2010-1018 Advisory URL:

[TEHTRI-Security] CVE-2010-1752: Update your MacOSX

Gents, During the 1st HITB Amsterdam 2010, TEHTRI-Security made advisories about security issues on handled devices (iPhone, HTC, iPad, BlackBerry, etc). As we made penetration tests for more than 15 years on highly sensitive networks, we were luckily able to find vulnerabilities working on

Additional information on the Microsoft Office 2010 binary planting bugs

Microsoft patched three binary planting bugs in Office 2010 yesterday: PowerPoint: http://www.acrossecurity.com/aspr/ASPR-2010-11-10-1-PUB.txt Word: http://www.acrossecurity.com/aspr/ASPR-2010-11-10-2-PUB.txt Excel: http://www.acrossecurity.com/aspr/ASPR-2010-11-10-3-PUB.txt We're making some

iDefense Security Advisory 11.11.10: Apple Mobile OfficeImport Framework Excel Parsing Memory Corruption Vulnerability

iDefense Security Advisory 11.11.10 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 11, 2010 I. BACKGROUND The OfficeImport framework is an API used by Apple's mobile devices, including the iPod Touch, iPhone, and iPad. The framework is used to parse and display Microsoft Office file

FreeBSD Security Advisory FreeBSD-SA-10:09.pseudofs

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 = FreeBSD-SA-10:09.pseudofs Security Advisory The FreeBSD Project Topic:

[HITB-Announce] HITB Magazine #5 Call for Articles

Good Day! As you already know, we have released 4 issues in 2010 and gained a lot of experiences working on them. For 2011, we have some great plans for our readers. Our main focus for next year is to publish more high quality articles and for that reason, we are now announcing a Call for

[USN-1016-1] libxml2 vulnerability

=== Ubuntu Security Notice USN-1016-1 November 10, 2010 libxml2 vulnerability CVE-2010-4008 === A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu

[ MDVSA-2010:227 ] proftpd

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:227 http://www.mandriva.com/security/

Re: D-Link DIR-300 authentication bypass

Hello, this bug is also in the product D-Link DIR-600 Firmware Version : 2.02. Greetings. Marcelo.

[ MDVSA-2010:229 ] kdegraphics

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:229 http://www.mandriva.com/security/

[ MDVSA-2010:228 ] xpdf

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:228 http://www.mandriva.com/security/

[ MDVSA-2010:231 ] poppler

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:231 http://www.mandriva.com/security/

[ MDVSA-2010:230 ] poppler

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:230 http://www.mandriva.com/security/