[Full-disclosure] [USN-494-1] Gimp vulnerability

=== Ubuntu Security Notice USN-494-1August 02, 2007 gimp vulnerability CVE-2006-4519 === A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 6.10

[Full-disclosure] HORDE VULNERABILITIES

Hello everybody The Horde Mail is any have Vulnerability?? I use to Horde Mail i want to test my email system.. Thanks.. M.E. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and spon

[Full-disclosure] Baidu Soba Remote Code Execute Vulnerability(FGA-2007-10)

hi full-disclosure, Baidu Soba Remote Code Execute Vulnerability by cocoruder of Fortinet Security Research Team http://ruder.cdut.net Summary: Baidu Soba is a popular browser toolbar which developed by Baidu, a Chinese web search engine company, like Google, more informations can be foun

[Full-disclosure] [ MDKSA-2007:152 ] - Updated Firefox packages fix multiple vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2007:152 http://www.mandriva.com/security/ ___

[Full-disclosure] n3td3v shuts down mailing list as mirror

"we have stopped all feeds from other mailing lists as from july 31st 2007. the group now has no *new* security related content. the list is in your hands, the choice is: a) start posting anything related to computer security to the list. b) post nothing and leave the list to die of natural cau

[Full-disclosure] [ MDKSA-2007:151 ] - Updated qt3 packages fix multiple vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2007:151 http://www.mandriva.com/security/ ___

Re: [Full-disclosure] "debug k" freezing Cisco routers?

Hi Shawn, On Wed, 1 Aug 2007 10:14:47 -0600 "Shawn Merdinger" <[EMAIL PROTECTED]> wrote: > At level 15 permissions, when I enter "debug k" on the CLI the router > freezes immediately, requiring a manual reboot. > > While not a vulnerability per se, perhaps something to keep in mind > from the fat

[Full-disclosure] FLEA-2007-0039-1 firefox

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Foresight Linux Essential Advisory: 2007-0039-1 Published: 2007-08-01 Rating: Moderate Updated Versions: firefox=/[EMAIL PROTECTED]:1-devel//1/2.0.0.6-1-1 group-dist=/[EMAIL PROTECTED]:1-devel//1/1.3.2-0.7-2 References: http://cve.mitre.

Re: [Full-disclosure] Firefox 2.0.0.6 Java Pop-Up DoS flaw

@Daniel Veditz IE6 SP2 and IE7 are not affected! ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] FLEA-2007-0038-1 gimp

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Foresight Linux Essential Advisory: 2007-0038-1 Published: 2007-08-01 Rating: Minor Updated Versions: gimp=/[EMAIL PROTECTED]:1-devel//1/2.3.19-1-1 group-dist=/[EMAIL PROTECTED]:1-devel//1/1.3.2-0.6-5 References: http://cve.mitre.org/cgi

Re: [Full-disclosure] "debug k" freezing Cisco routers?

Hi Leif, Please see FX's excellent coverage on this issue. Sure, I could/should post what version I'm working on, but this is private, personal research, hence the vaugue description. Plus, I _know_ there are plenty of folks out there _much_ smarter than myself on this kind of research, so I'm j

Re: [Full-disclosure] Firefox 2.0.0.6 Java Pop-Up DoS flaw

a plagiarist wrote: > PoC here: > http://carl-hardwick.googlegroups.com/web/Firefox2.0.0.6JavaPopUpDoS.htm In your haste to get this important warning out to full-disclosure you forgot to credit Ronald van den Heetkamp as your source: http://www.0x00.com/index.php?i=408 Re-written an an appl

Re: [Full-disclosure] "debug k" freezing Cisco routers?

You didn't mention what version of IOS, nor what type of router. InetSadcLabGw-1>ena Password: InetSadcLabGw-1#debug k? kerberos kron InetSadcLabGw-1#debug k % Ambiguous command: "debug k" InetSadcLabGw-1#sho ver Cisco Internetwork Operating System Software IOS (tm) s6523_rp Software (s65

[Full-disclosure] "debug k" freezing Cisco routers?

Hi All, At level 15 permissions, when I enter "debug k" on the CLI the router freezes immediately, requiring a manual reboot. While not a vulnerability per se, perhaps something to keep in mind from the fat-finger risk? Anyone else seeing this? Kindest regards, --scm Shawn Merdinger Independe

Re: [Full-disclosure] [WEB SECURITY] *****SPAM***** New Wordpress 2.2.1 Vulnerabilities and the First Weblog XSS Worm

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1   While in no way do I wish to take away from the value of your finding these problems (and providing such a convenient fix), your claims of having written "the first weblog worm" seem incorrect. See http://it.slashdot.org/it/05/10/14/126233.shtml

[Full-disclosure] Bug on web site of Italian Bank

-=[ADVISORY---]=- Italian Bank Author: CorryL[EMAIL PROTECTED] -=[---]=- -=[+] Bug type:

[Full-disclosure] Firefox 2.0.0.6 Java Pop-Up DoS flaw

A flaw in Firefox 2.0.0.6 allows to open multiple java pop-up windows, without having the possibility to close them. This could cause a DoS and the user have to close the browser in order to continue browsing in peace. PoC here: http://carl-hardwick.googlegroups.com/web/Firefox2.0.0.6JavaPopUpDoS

[Full-disclosure] *****SPAM***** New Wordpress 2.2.1 Vulnerabilities and the First Weblog XSS Worm

Hey Guys, this another one of my FD Releases! I found several critical Wordpress 2.2.1 Vulnerabilities, in detail explained here: http://mybeni.rootzilla.de/mybeNi/2007/wordpress_zeroday_vulnerability_roundhouse_kick_and_why_i_nearly_wrote_the_first_blog_worm/ Plus I made - by using the Exploits