[HITB-Announce] HITB Magazine Issue 003 + HITBSecConf2010 - Amsterdam

Our first ever HITBSecConf in Europe is over! A big big thank you to all our sponsors, speakers, crew, volunteers and of course attendees who made it over to join us!!! We're already planning for 2011 and the tentative timing for the HITB Europe is mid May (stay tuned to our @hitbsecconf twitter

Editran editcp V4.1 R7 - Remote buffer overflow

=== - Advisory - === Tittle: Editran editcp V4.1 R7 - Remote buffer overflow Risk: High Date: 25.Jun.2010 Author: Pedro Andujar .: [ INTRO ] :. EDItran Communi

Hiding Backdoors in plain sight

The CoreTex Team from Core Security is happy to announce the *1st Open Backdoor Hiding & Finding Contest* to be held at DEFCON 0x12 this year! Hiding a backdoor in open source code that will be subjected to the scrutiny of security auditors by the hundredths may not be an easy task. Positively and

Secunia Research: Joomla BookLibrary From Same Author Module "id" SQL Injection

== Secunia Research 05/07/2010 - Joomla BookLibrary From Same Author Module "id" SQL Injection - == Table of Contents Affected Softwar

[Suspected Spam]File Download and DoS vulnerabilities in Firefox, Internet Explorer, Chrome and Opera

Hello Bugtraq! I want to warn you about File Download and Denial of Service vulnerabilities in Mozilla Firefox, Internet Explorer, Google Chrome and Opera. Earlier I already wrote about DoS vulnerabilities in different browsers via different protocol handlers. And now I'll tell about research con

TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow

iSCSI target Multiple Implementations iSNS Stack Buffer Overflow TSL ID: FSC20100701-01 1. Affected Software iSCSI Enterprise Project iscsitarget 1.4.20.1 and prior SCST project iscsi-scst 1.0.1.1 and prior tgt project tgt 1.0.5 and prior References: http://iscsitarget.sourceforge.ne

Security Advisories from TEHTRI-Security at HITB Europe

Gents, TEHTRI-Security was invited to give a talk called "Web In The Middle, Attacking Clients", at the first Hack In The Box Europe, Amsterdam ( http://conference.hackinthebox.org/hitbsecconf2010ams/ ). During our talk, we released multiple advisories and we explained many issues related to

Canteen Joomla Component 1.0 Multiple Remote Vulnerabilities

Canteen Joomla Component 1.0 Multiple Remote Vulnerabilities Name Canteen Vendorhttp://www.miniwork.eu Versions Affected 1.0 AuthorSalvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta [at] gm

[ MDVSA-2010:127 ] imlib2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:127 http://www.mandriva.com/security/

iScripts MultiCart 2.2 Multiple SQL Injection Vulnerability

iScripts MultiCart 2.2 Multiple SQL Injection Vulnerability Name iScripts MultiCart Vendorhttp://www.iscripts.com Versions Affected 2.2 AuthorSalvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefre

iScripts SocialWare 2.2.x Multiple Remote Vulnerability

iScripts SocialWare 2.2.x Multiple Remote Vulnerability Name iScripts SocialWare Vendorhttp://www.iscripts.com Versions Affected 2.2.x AuthorSalvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefres

IrcDelphi DCA-00010 Vulnerability Report

[DCA-0010] [Software] - IrcDelphi Daemon Server [Vendor Product Description] - IRC Daemon (IRCd, IRC Server) coded in Delphi/Kylix using Indy components. Easy to use and light irc daemon. [Bug Description] - The IRC Daemon does not sanitize the variable NICK correctly leading to a Denial-of-Serv

[SECURITY] [DSA-2067-1] New mahara packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-2067-1 secur...@debian.org http://www.debian.org/security/ Raphael Geissert Jul 02, 2010