-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2008:034
http://www.mandriva.com/security/
___
This is obviously a bug in the newest beta release and should be
reported there.Why the OP chose not to do this is a matter for speculation.
Regards,
Scott
steve menard wrote:
I get a warning on 2.0.0.11 Linux Ubuntu
You are about to log into the site "google" with the username
"[EMAIL PROTEC
LOLOLOLOLOL GLORYHOLES
On Mon, 04 Feb 2008 11:42:13 -0500 Derek Buelna <[EMAIL PROTECTED]>
wrote:
>It's been hard to fill all those positions in Oregon since we have
>manned gas stations.
>
>-Original Message-
>From: [EMAIL PROTECTED]
>[mailto:[EMAIL PROTECTED] On Behalf Of
>North,
>Quin
Confirmed on emacs on freebsd running on an alpha.
J
On Mon, 04 Feb 2008 18:49:59 -0500 Larry Seltzer
<[EMAIL PROTECTED]> wrote:
>I get this same warning on FF 3.0 beta 2 on Vista.
>
>Larry Seltzer
>eWEEK.com Security Center Editor
>http://security.eweek.com/
>http://blogs.pcmag.com/securitywatc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
| The most recent Firefox 2.0.0.12 version is RC4 still:
| http://www.mozilla.com/en-US/firefox/2.0.0.12/releasenotes/
|
| You can't download Firefox 2.0.12 Final yet.
So if that's the case, did the author of this thread repor
I get this same warning on FF 3.0 beta 2 on Vista.
Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.pcmag.com/securitywatch/
Contributing Editor, PC Magazine
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Be
===
Ubuntu Security Notice USN-575-1 February 04, 2008
apache2 vulnerabilities
CVE-2006-3918, CVE-2007-3847, CVE-2007-4465, CVE-2007-5000,
CVE-2007-6388, CVE-2007-6421, CVE-2007-6422, CVE-2008-0005
===
The most recent Firefox 2.0.0.12 version is RC4 still:
http://www.mozilla.com/en-US/firefox/2.0.0.12/releasenotes/
You can't download Firefox 2.0.12 Final yet.
Juha-Matti
carl hardwick <[EMAIL PROTECTED]> wrote:
> Firefox seems to have trouble with defining the proper hostname when
> requesting
###
Luigi Auriemma
Application: SAPlpd
http://www.sap.com
Versions: <= 6.28 (included in SAP GUI 7.10)
Platforms:Windows
Bugs: various vulnerabilities
Exploitation: rem
###
Luigi Auriemma
Application: WinCom LPD Total - Line Printer Daemon
http://clientsoftware.com.au/lpd.html
Versions: <= 3.0.2.623
Platforms:Windows
Bugs: A] buffer-ov
###
Luigi Auriemma
Application: FTP Log Server
http://www.wsftp.com
Versions: <= 7.9.14.0
Platforms:Windows
Bug: socket termination
Exploitation: remote
Date:
I am not sure the intended point of the exploit since you have @roguehost
and not a proper POC, but I believe all you have triggered is normal
behavior for auto logging into .htaccess protected folders in the form
username:[EMAIL PROTECTED]
http://forum.sambarserver.info/viewtopic.php?p=288
http:/
I get a warning on 2.0.0.11 Linux Ubuntu
You are about to log into the site "google" with the username
"[EMAIL PROTECTED]", but the website does not require
authentication. this may be an attempt to trick you
Is "google" the site you want to visit.?
is this a 2.0.0.12 issue?
Steve
carl hardwick
I only see that FF is current to version 2.0.0.11. Are you sure that
you are finding this in 2.0.0.12? If so, where are you getting this
version from?
On Feb 4, 2008 12:10 PM, carl hardwick <[EMAIL PROTECTED]> wrote:
> Firefox seems to have trouble with defining the proper hostname when
> reques
Firefox seems to have trouble with defining the proper hostname when
requesting a ssl connection. I was able to trick Firefox in thinking
the hostname behind the at-sign is legit and the same as the URI that
requested an ssl connection, and this without a warning.
PoC: https://[EMAIL PROTECTED]
Y
iDefense Security Advisory 01.31.08
http://labs.idefense.com/intelligence/vulnerabilities/
Jan 31, 2008
I. BACKGROUND
IBM Corp.'s Informix Dynamic Server is an online transaction processing
data server. For more information, visit the product's homepage at the
following URL.
http://www-306.ibm.c
iDefense Security Advisory 01.31.08
http://labs.idefense.com/intelligence/vulnerabilities/
Jan 31, 2008
I. BACKGROUND
IBM Corp.'s Informix Dynamic Server is an online transaction processing
data server. For more information, visit the product's homepage at the
following URL.
http://www-306.ibm.c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs
MPlayer 1.0rc2 buffer overflow vulnerability
*Advisory Information*
Title: MPlayer 1.0rc2 buffer overflow vulnerability
Advisory ID: CORE-20
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs
MPlayer arbitrary pointer dereference
*Advisory Information*
Title: MPlayer arbitrary pointer dereference
Advisory ID: CORE-20
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Immunity is proud to announce: Immunity Debugger v1.4 "veni, vidi, pwn"
We would like to express our appreciation for the enormous amount of
contributions, feedback and requests we receive daily from the Immunity
Debugger community at http://forum.imm
Openads security advisoryOPENADS-SA-2008-001
Advisory ID: OPENADS-SA-2008-001
Date: 2008-Feb-04
Se
It's been hard to fill all those positions in Oregon since we have
manned gas stations.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of North,
Quinn
Sent: Monday, February 04, 2008 7:33 AM
To: coderman; Adam Chesnutt
Cc: full-disclosure@lists.grok.org.uk
S
I thought TSA stood for Thousands Standing Around.
Yet another super informative TLA (Three Letter Acronym).
--=Q=--
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of coderman
Sent: Friday, February 01, 2008 4:37 AM
To: Adam Chesnutt
Cc: full-disclosure
23 matches
Mail list logo