[Full-disclosure] [ GLSA 200612-01 ] wv library: Multiple integer overflows

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

[Full-disclosure] Joke, Full Version, 0 day exploit for “PING”

Hi, Something to share with everyone :) Still remember the the last post that i have posted ? Sometimes script kiddies is always a script kiddies. They never want to read, i guess that is the reason why they can't code. After the ping exploit post

[Full-disclosure] Orkut Email Address Disclosure Vulnerability

Orkut Email Address Disclosure Vulnerability # XDisclose Advisory : XD100097 Vulnerability Discovered: November 30th 2006 Advisory Released: December 8th 2006 Credit : Rajesh Sethumad

[Full-disclosure] Some Thoughts about Office Open XML and Malware Detection

Hi Last week I have been googling around for comments and reactions from my report "Malware Detection Rate in Alternative Word Formats" (http://www.iplosion.com/archives/3) which was posted in the ISC diary on August 23rd, 2006 (http://isc.sans.org/diary.php?storyid=1630). To sum it up there has n

[Full-disclosure] [USN-393-2] GnuPG2 vulnerabilities

=== Ubuntu Security Notice USN-393-2 December 07, 2006 gnupg2 vulnerabilities CVE-2006-6169, CVE-2006-6235 === A security issue affects the following Ubuntu releases: Ubuntu 6

[Full-disclosure] EEYE: Intel Network Adapter Driver Local Privilege Escalation

eEye Research - http://research.eeye.com Intel Network Adapter Driver Local Privilege Escalation Release Date: December 7, 2006 Date Reported: July 10, 2006 Severity: Medium (Local Privilege Escalation to Kernel) Systems Affected: Windows 2000, XP, 2003, Vista Intel PRO 10/100 - 8.0.27.0

Re: [Full-disclosure] Orkut Email Address Disclosure Vulnerability

Hi Rajesh, > Description: > A remote attacker can get the email address of anyone in the orkut as > demonstrated below. The victim interaction is not required at all. > > Demonstration: > Note: Demonstration leads to email address information disclosure > - Login to your orkut account > - Add any

[Full-disclosure] Microsoft Word 0-day Vulnerability FAQ (CVE-2006-5994) written

I have posted Frequently Asked Questions document about the unpatched Microsoft Word zero-day vulnerability. The document entitled as Microsoft Word 0-day Vulnerability FAQ - December 2006, CVE-2006-5994 is located at my SecuriTeam Blogs section, http://blogs.securiteam.com/?p=759 The document

Re: [Full-disclosure] Orkut Email Address Disclosure Vulnerability

> It's not an 'exploit' but a 'feature' of the portal that orkut uses on > its website, and is no more serious than posting your email address on > a mailing list. While it's certainly not an exploit, it probably is a bug as well as a feature (like all email disclosure). Matt signature.asc Des

Re: [Full-disclosure] Hail list!

have you written a book? you write like an author. - I'd read it - Original Message - From: "Eliah Kagan" <[EMAIL PROTECTED]> To: Sent: Thursday, December 07, 2006 12:20 AM Subject: Re: [Full-disclosure] Hail list! > On 12/6/06, aNub15 wrote: >> 2. Looking for a low footprint windows f

Re: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash fromNmap scan

"The crash > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > operating system." "Let me take a look at that screenshot again..." http://www.flickr.com/photos/metalmijn/295348294/ "Heck buddy, you appear correct" ~p - Original Message - From: "Shawn Merdin

Re: [Full-disclosure] Hail list!

that's not to say that there aren't "winblows" boxes internally. but netcraft only does the webserver right? Hell that webserver could even be hosted by a hosting company externally. rather obvious stuff - Original Message - From: "aNub15" <[EMAIL PROTECTED]> To: Sent: Wednesday, Decem

Re: [Full-disclosure] Some Thoughts about Office Open XML and Malware Detection

Jan, Does full-disclosure need a digg.com style social news and voting site? lemme know.. i'd be happy to build one for your community. see: http://digg.com and http://wimax-coverage.com and http://iptv-coverage.com On 12/7/06, Jan P. Monsch <[EMAIL PROTECTED]> wrote: > Hi > > Last week I have b

[Full-disclosure] [USN-394-1] Ruby vulnerability

=== Ubuntu Security Notice USN-394-1 December 08, 2006 ruby1.8 vulnerability CVE-2006-6303 === A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06

[Full-disclosure] Orkut Multiple Cross Site Scripting Vulnerabilities

Orkut Multiple Cross Site Scripting Vulnerabilities # XDisclose Advisory : XD100092 Vulnerability Discovered: November 18th 2006 Advisory Released: December 08th 2006 Credit : Rajesh S