Secunia Research: UltraISO Image Name Parsing Format String Vulnerabilities

== Secunia Research 01/04/2009 - UltraISO Image Name Parsing Format String Vulnerabilities - == Table of Contents Affected

[security bulletin] HPSBUX02418 SSRT090002 rev.1 - HP-UX Running OpenSSL, Remote Unauthorized Access

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01706219 Version: 1 HPSBUX02418 SSRT090002 rev.1 - HP-UX Running OpenSSL, Remote Unauthorized Access NOTICE: The information in this Security Bulletin should be acted upon as soon as

VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - VMware Security Advisory Advisory ID: VMSA-2009-0004 Synopsis: ESX Service Console updates for openssl, bind, and vim

[ MDVSA-2009:084 ] firefox

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2009:084 http://www.mandriva.com/security/

Microsoft Internet Explorer 8 - Anti Spoofing is a Myth

Hi With the new features implemented in IE 8, the status address bar has been transformed too. The new step taken by Microsoft IE team that is not to show the address of selected link in a status bar can have a serious impact. A user will not be able to see the active link in the status bar.

Massive exploitation of instant messaging applications proved feasible

Yoann Guillot and myself have been assessing the security of instant communication applications for a couple of years. For quite some time now, we have both suspected that it was possible to conduct both stealth and massive attacks on popular chat clients such as MSN, AIM, Trillian or mIRC.

[SecNiche Whitepaper] Evading Web XSS Filters with Microsoft Word - WAPT Perspective

Hi This paper exposes a new attack vector of testing web applications having upload functionality. It enhances the web application penetration testing perspective by demonstrating a new way to produce XSS in the web applications when a word document is rendered directly in the browser. This

[ MDVSA-2009:083 ] mozilla-thunderbird

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2009:083 http://www.mandriva.com/security/

Secunia Research: UltraISO Image Parsing Buffer Overflow Vulnerabilities

== Secunia Research 01/04/2009 - UltraISO Image Parsing Buffer Overflow Vulnerabilities - == Table of Contents Affected

Re: Microsoft Internet Explorer 8 - Anti Spoofing is a Myth

Browsers like MOZILLA, Chrome etc are having well designed and effective status address bars. None of which had ever served, nor is meant to serve, as a security indicator. /mz

OpenX 2.6.4 multiple vulnerabilities

__ OpenX multiple vulnerabilities __ An advisory by EnableSecurity in collaboration with Acunetix. Advisory URL: