[SECURITY] CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability

CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache CouchDB 0.8.0 to 0.10.1 Description: Apache CouchDB versions prior to version 0.11.0 are vulnerable to timing attacks, also known as side-channel

Secunia Research: Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow

== Secunia Research 31/03/2010 - Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow - == Table of Contents Affected

[SECURITY] [DSA 2025-1] New icedove packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-2025-1 secur...@debian.org http://www.debian.org/security/ Steffen Joeris March 31, 2010

[SECURITY] [DSA 2024-1] New moin packages fix cross-site scripting

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-2024-1 secur...@debian.org http://www.debian.org/security/Giuseppe Iuculano March 31, 2010

OpenDcHub 0.8.1 Remote Code Execution Exploit

#!/usr/bin/python # # OpenDcHub 0.8.1 Remote Code Execution Exploit # Pierre Nogues - http://www.indahax.com # # Description: # OpenDcHub is a direct connect hub for Linux # # OpenDcHub doesn't handle specially crafted MyINFO message which lead to a stack overflow. # # Affected versions

Secunia Research: Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow

== Secunia Research 31/03/2010 - Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow - == Table of Contents Affected

[Suspected Spam]Vulnerabilities in NoCMS

Hello Bugtraq! I want to warn you about security vulnerabilities in NoCMS (in both versions for work with Ascent and Mangos). - Advisory: Vulnerabilities in NoCMS - URL: http://websecurity.com.ua/4065/ -

iDefense Security Advisory 03.30.10: Oracle Java Runtime Environment Image FIle Buffer Overflow Vulnerability

iDefense Security Advisory 03.30.10 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 30, 2010 I. BACKGROUND The Java Runtime Environment (JRE) is the Sun Microsystems implementation of the Java run-time. For more information, visit the link shown below. http://www.sun.com/java/ II.

BitComet = 1.19 Remote DOS Exploit

#!/bin/sh # # BitComet = 1.19 Remote DOS Exploit # Pierre Nogues - http://www.indahax.com/ # # Description: # BitComet is a torrent client # # BitComet doesn't handle malicious DHT packet with an invalid bencoded message. # # Affected versions : # BitComet = 1.19 # # Plateforms : #

[SECURITY] CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability

My sincere apologies, I mixed up the CVE number. Here is the update report. Cheers Jan -- CVE-2010-0009: Apache CouchDB Timing Attack Vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache CouchDB 0.8.0 to 0.10.1 Description: Apache CouchDB