[Full-disclosure] Assurent VR - Microsoft Windows Graphics Rendering Engine WMF Parsing Buffer Overflow

Microsoft Windows Graphics Rendering Engine WMF Parsing Buffer Overflow Assurent ID: FSC20080909-12 1. Affected Software Digital Image Suite 2006 Forefront Client Security 1.0 Microsoft Office 2003 SP2, SP3 Microsoft Office PowerPoint Viewer 2003 Microsoft Windows XP prior to SP3 Mic

[Full-disclosure] [SECURITY] CVE-2008-2938 - Apache Tomcat information disclosure vulnerability - Updated

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 CVE-2008-2938: Apache Tomcat information disclosure vulnerability - Updated Severity: Important (was moderate) Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.1.0 to 4.1.37 Tomcat 5.5.0 to 5.5.26 Tomcat 6.0.0 to 6.0.16 The unsuppo

[Full-disclosure] Insomnia : ISVA-080910.1 - MS Office OneNote URL Handling Vulnerability

__ Insomnia Security Vulnerability Advisory: ISVA-080910.1 ___ Name: MS Office OneNote URL Handling Vulnerability Released: 10 September 2008 Vendor Link: ht

[Full-disclosure] Don't Let Your Kids Go Online Unsupervised

RJ Carter discusses online predators, child safety, and parent resources in regards to the online activity of unsupervised children on YouTube and other sites. For more info: http://therjcarter.wordpress.com/youtube-pedophile-playground/ http://rjcarter.blogspot.com

[Full-disclosure] Hack.lu 2008 update

Hi all, Hack.lu 2008 is getting closer and closer. Find hereafter the line-up of speakers and talks for this year's event: Saumil Shah - Browser Exploits - A new model for Browser security Roelof Temmingh - Investigating individuals and groups using open source intelligence Paul Craig - Hacking

[Full-disclosure] DeepSec 2008 - Conference Schedule

The DeepSec In Depth Security Conference is happy to announce the preliminary schedule for this year's event from November 11th to 14th in Vienna, Austria. The schedule which can be found at https://depsec.net/schedule offers bleeding edge talks from international speakers on topics including botn

[Full-disclosure] [ MDVSA-2008:190 ] postfix

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2008:190 http://www.mandriva.com/security/

[Full-disclosure] [SECURITY] [DSA 1635-1] New freetype packages fix multiple vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-1635-1 [EMAIL PROTECTED] http://www.debian.org/security/ Steve Kemp September 10, 2008

[Full-disclosure] [USN-642-1] Postfix vulnerabilities

=== Ubuntu Security Notice USN-642-1 September 10, 2008 postfix vulnerabilities CVE-2008-3889 === A security issue affects the following Ubuntu releases: Ubuntu 7.10 Ubuntu 8.0

[Full-disclosure] Donate to help the MySQL engineer , Andrii Nikitin's son Ivan for bone marrow transplantation

Hi all: I would like to make this post to reference one of posts published on mysql.com website. I thought none of family hopes suffer from such thing, but Andrii Nikitin did. I hope we would do something to help them. Here are the details: Donations are requested to help Andrii Nik

[Full-disclosure] News from Black Hat: Upcoming Events and a New Webcast

Full Disclosure Ninjas, This year's USA show is now in the books and I want to thank everyone for helping Black Hat grow and become better over the years. We think it might have been our best event ever with record attendance both in training and briefings. In addition to the attendance records, o

Re: [Full-disclosure] News from Black Hat: Upcoming Events and a New Webcast

its good to see the usual whores - mcfeters, whitehat security, and 'deputy' dan on the list to talk about the same non-technical stuff they have been on about for years. jmoss wrote: > Full Disclosure Ninjas, > > This year's USA show is now in the books and I want to thank everyone for > helpin