RE: [VulnWatch] iDefense Security Advisory 03.14.07: Trend Micro Antivirus UPX Parsing Kernel Divide by Zero Vulnerability

As stated by the email below, Trend recommends updating to pattern file 4.335.00 or higher. MSA is currently at 4.347.00 on the Trend Scanmail for Exchange product. Trend's web site also indicates the affected Scan Engine of v8.300. We are currently running 8.310-1002. Thanks. -Original

[ GLSA 200703-15 ] PostgreSQL: Multiple vulnerabilities

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200703-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - -

Re: Your Opinion

On Fri, Mar 16, 2007 at 06:48:30PM -, Mark Litchfield wrote: I have heard the comment It's a huge conflict of interest for one company to provide both an operating platform and a security platform made by John Thompson (CEO Symantec) many times from many different people. [...] My take

[ GLSA 200703-14 ] Asterisk: SIP Denial of Service

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200703-14 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - -

Your Opinion +

A common comment being made is that a Vendor who creates and sells and OS, and then sells security applications to protect their OS is a conflict of interest. Consider the Anti-Trust law suits filed against MS by AOL regarding IE and RealNetworks regarding Windows Media Player back in 2003,

Bypassing Mcafee Entreprise Password Protection

Date : 03/16/2007 URL: http://homepage.mac.com/adonismac/Advisory/bypass_mcafee_entreprise_password.html Affected Product / OS = Product Name and Version: McAfee VirusScan Entreprise 8.5.0.i maybe older version too. Tested on OS: Windows XP, 2003 Bug Type Type:

RE: Your Opinion

Thanx, Mark One phrase; consider the source. The expert participant in this interview is (catch me before I faint) - Symantec CEO John Thompson. Symantec and other security vendors have had more than ample opportunity to get in this game and it wasn't until Vista hit the Beta track that

Rhapsody IRC 0.28b (NICK) Multiple fs and bof vulnerability

Rhapsody IRC 0.28b (NICK) Multiple fs and bof vulnerability Description: Rhapsody is a text console IRC client for Unix operating systems. It is small, fast, portable, easy to use and full featured. An intuitive menu-driven user interface makes rhapsody ideal for beginner to intermediate users.

[SECURITY] [DSA 1268-1] New libwpd packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 1268-1[EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 17th, 2007

Re: Bypassing Mcafee Entreprise Password Protection

Dear [EMAIL PROTECTED], Unprivileged user has no write access to HKEY_LOCAL_MACHINE\Software. This should not be an issue unless Mcafee weakens default permissions. -- ~/ZARAZA http://securityvulns.com/ One of the striking differences between a cat and a lie is that a cat has only nine

CLBOX = (signup.php header) Remote File Include Vulnerability

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= CLBOX = (signup.php header) Remote File Include Vulnerability Script: CLBOX Version: 1.01 Download: http://clbox.8m.com/clbox.ZIP Discover: BorN To K!LL =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= Bug in: signup.php Code:

Re: Your Opinion

I have heard the comment It's a huge conflict of interest for one company to provide both an operating platform and a security platform made by John Thompson (CEO Symantec) many times from many different people. See article below. There goes our business model., said John Thompson. The