[Full-disclosure] Symark PowerBroker: Local Privilege Escalation vulnerability

Michael Ligh (of MNIN.org) and Greg Sinclair (of NNL-Labs) have identified a vulnerability in Symark's PowerBroker suite that allows an attacker with local access to gain root access. For complete details, please refer to the full advisory located at http://www.mnin.org/advisories/2008_symarkpb.pdf

[Full-disclosure] XSS Vulnerability in AuthentiX

Description: "Form-based or 100% cookie-free "Basic Authentication" website protection while keeping your NT Users Names and Passwords private. Protect all files, not just ASP pages. Validate against internal database, text file or external ODBC datasource." - www.flicks.com Summary: The Authen

[Full-disclosure] rtpbreak 1.3 is out!

hi all, I would like to announce you that rtpbreak 1.3 is out! documentation: http://xenion.antifork.org/rtpbreak/doc/rtpbreak_en.html download: http://xenion.antifork.org/rtpbreak/index.html basic description: With rtpbreak you can detect, reconstruct and analyze any RTP session. It doesn't req

[Full-disclosure] CFP - ekoparty 4th edition

ekoparty 4th edition - www.ekoparty.com.ar Information Security/Insecurity Conference. October 2 and 3, 2008 Argentina - Ciudad Autonoma de Buenos Aires Ekoparty 4th edition is recruiting everyone who is interested in showing their researches and/or develops in the field of Information Security/In

[Full-disclosure] [SECURITY] [DSA 1510-1] New ghostscript packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-1510-1 [EMAIL PROTECTED] http://www.debian.org/security/ Thijs Kinkhorst February 27, 2008

[Full-disclosure] Buffer-overflow in the passwords handling of Trend Micro OfficeScan 8.0 and possibly other products

### Luigi Auriemma Application: Trend Micro OfficeScan Corporate Edition http://us.trendmicro.com/us/products/enterprise/officescan-client-server-edition/ other Trend Mi

[Full-disclosure] CORE-2008-0130: VLC media player chunk context validation error

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs VLC media player chunk context validation error *Advisory Information* Title: VLC media player chunk context validation error Advisory ID: CORE-200

[Full-disclosure] [ MDVSA-2008:052 ] - Updated cacti packages fix multiple vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2008:052 http://www.mandriva.com/security/ ___

[Full-disclosure] [ MDVSA-2008:053 ] - Updated pcre packages fix vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2008:053 http://www.mandriva.com/security/ ___

[Full-disclosure] Fwd: Home Office Laptop 'Bought On Ebay'

-- Forwarded message -- From: worried security <[EMAIL PROTECTED]> Date: Wed, Feb 27, 2008 at 11:01 PM Subject: Home Office Laptop 'Bought On Ebay' To: [EMAIL PROTECTED] Sky sources understand that counter terrorism police are investigating the discovery of a Home Office laptop an

Re: [Full-disclosure] Home Office Laptop 'Bought On Ebay'

On Wed, Feb 27, 2008 at 11:07 PM, worried security <[EMAIL PROTECTED]> wrote: > > -- Forwarded message -- > From: worried security <[EMAIL PROTECTED]> > Date: Wed, Feb 27, 2008 at 11:01 PM > Subject: Home Office Laptop 'Bought On Ebay' > To: [EMAIL PROTECTED] > > > Sky sources under