-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
APPLE-SA-2006-01-05 AirPort firmware update
The following AirPort firmware updates are available:
AirPort Express Firmware Update 6.3 for Mac OS X
AirPort Express Firmware Update 6.3 for Windows
AirPort Extreme Firmware Update 5.7 for Mac OS X
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c0016
Version: 3
HPSBUX02075 SSRT051074 rev.3 - HP-UX Running xterm Local
Unauthorized Access
NOTICE: The information in this Security Bulletin should be acted
upon as soon as possible.
Now that the official patch is out, I feel better about wondering
a few things in public.
The unofficial patch from Ilfak Guilfanov was a great service, I think.
I did not apply it. I got too paranoid, for good reason. People who
should have known better did a lot of questionable things
New eVuln Advisory:
TheWebForum Script Insertion and Authentication Bypass
Summary
Vendor: TheWebForum Group
Software: TheWebForum
Sowtware's Web Site: http://sourceforge.net/projects/twf/
Versions: 1.2.1
Critical Level: Moderate
Type: Multiple Vulnerabilities
Ren and Stimpy do it again. You can find their post here:
http://blogs.securiteam.com/index.php/archives/184
Gadi.
Unfortunately, they didn't release a patch for 98, SE, or ME. :-(
Tony
Duran, Jason IT0 wrote:
Microsoft released a patch for the WMF vulnerability this afternoon.
KB912919
http://www.microsoft.com/technet/security/bulletin/ms06-001.mspx
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDKSA-2006:006
http://www.mandriva.com/security/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDKSA-2006:004
http://www.mandriva.com/security/
[EMAIL PROTECTED] wrote in
news:[EMAIL PROTECTED]
Just n' update:
DAP searches for all its mirrors from mirrorsearch.speedbit.com
I have no knowledge about HOW the mirrors are gathered.
Then your report should have been titled Maybe DAP can be tricked to
download malicious file, maybe not,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDKSA-2006:007
http://www.mandriva.com/security/
===
Ubuntu Security Notice USN-238-1 January 06, 2006
blender vulnerability
CVE-2005-3354
===
A security issue affects the following Ubuntu releases:
Ubuntu 5.10 (Breezy
What we really learn from this all WMF thingie, is that when Microsoft
wants to, it can.
Microsoft released the WMF patch ahead of schedule
( http://blogs.securiteam.com/index.php/archives/181 )
Yep, THEY released the PATCH ahead of schedule.
What does that teach us?
We? Us? Just who are
===
Ubuntu Security Notice USN-237-1 January 06, 2006
nbd vulnerability
CVE-2005-3354
===
A security issue affects the following Ubuntu releases:
Ubuntu 5.10 (Breezy Badger)
New eVuln Advisory:
Proyecto Domus 'email' XSS Vulnerability
Summary
Software: Proyecto Domus
Sowtware's Web Site: http://domus.sourceforge.net/
Versions: 2.10
Critical Level: Harmless
Type: Cross-Site Scripting
Class: Remote
Status: Unpatched
Exploit:
On a side note, this managed to b0rk my Firefox aswell.
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/2005
Firefox/1.5
--
Kim Christensen
[EMAIL PROTECTED]
On 31 Dec 2005 18:13:12 -, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Wow, a simple big jpeg completely crashes
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDKSA-2006:003
http://www.mandriva.com/security/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200601-02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200601-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - -
===
Ubuntu Security Notice USN-238-2 January 06, 2006
blender vulnerability
CVE-2005-4470
===
A security issue affects the following Ubuntu releases:
Ubuntu 5.10 (Breezy
19 matches
Mail list logo
