The Zero Day Initiative advisory ZDI-08-088 has several inaccuracies.
Oracle actually fixed this vulnerability as part of the April 2007 Critical
Patch Update and subsequently in ATG_PF.H RUP5 and later. The vulnerability
is a serious SQL injection bug in a Self-Service Web Application database
pac
Hmm,
Why not link the bug posting itself, why not wait until patched?
ch> New unpatched security flaw found in Firefox 3.0.4
ch> PoC here: https://bugzilla.mozilla.org/attachment.cgi?id=302699
nsHTMLFramesetFrame::Reflow(nsPresContext*, nsHTMLReflowMetrics&,
nsHTMLReflowState const&, unsigned int
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200812-18
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -
Joomla: Session hijacking vulnerability, CVE-2008-4122
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4122
http://int21.de/cve/CVE-2008-4122-joomla.html
http://enablesecurity.com/2008/08/11/surf-jack-https-will-not-save-you/
https://www.defcon.org/html/defcon-16/dc-16-speakers.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200812-17
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -
New unpatched security flaw found in Firefox 3.0.4
PoC here: https://bugzilla.mozilla.org/attachment.cgi?id=302699
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - ht
ZDI-08-088: Oracle E-Business Suite Business Intelligence SQL Injection
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-088
December 16, 2008
-- Affected Vendors:
Oracle
-- Affected Products:
Oracle Database Server
-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS c
On Tue, Dec 16, 2008 at 11:59 AM, n3td3v wrote:
> On Tue, Dec 16, 2008 at 4:16 PM, jose achada wrote:
>> no phisical barriers are imposed and nor the big media can hide you.
>
> The intelligence services have been in control of the "big media" and
> have been for some time.
ill agree there.
>
"I still get emails from the intelligence services trying to give me
advice on the path of n3td3v, but I reject all advice."
[snip]
"I fear this won't last forever, there are people trying to control
what "n3td3v" is doing behind the scene"
LMFAO, dude you're a real joke
2008/12/16 n3td3v
> On
On Tue, Dec 16, 2008 at 4:16 PM, jose achada wrote:
> no phisical barriers are imposed and nor the big media can hide you.
The intelligence services have been in control of the "big media" and
have been for some time.
When I started full-disclosure I was innocent and pure, then I met
various peo
@ Bill Reyor
Is that comment for me?
I WILL NOT do like N3td3v does in keep the talk on an on. I WILL NOT
discuse politics or whatever subject may appear here in the mailing
list. Aside from this msg & disclosures that i do my presence in FD IS
almost invisible and i am watching it for sometime.
===
Ubuntu Security Notice USN-691-1 December 16, 2008
ruby1.9 vulnerability
CVE-2008-3443, CVE-2008-3790
===
A security issue affects the following Ubuntu releases:
Ubuntu 8.1
nzerozerop is a long term friend of the n3td3v group, and he won't be
baited by you and neither will I.
On Tue, Dec 16, 2008 at 3:12 PM, Ureleet wrote:
> nzerozerop, n00p.. i get it.
>
> give it up. u r reasoning with fail.
>
> On Tue, Dec 16, 2008 at 9:59 AM, nzerozero p wrote:
>> That's all
nzerozerop, n00p.. i get it.
give it up. u r reasoning with fail.
On Tue, Dec 16, 2008 at 9:59 AM, nzerozero p wrote:
> That's all fine. You were mentioned on pauldotcom. Well enough.
>
> On Tue, Dec 16, 2008 at 3:07 AM, n3td3v wrote:
>>
>> On Tue, Dec 16, 2008 at 3:24 AM, nzerozero p wrot
That's all fine. You were mentioned on pauldotcom. Well enough.
On Tue, Dec 16, 2008 at 3:07 AM, n3td3v wrote:
> On Tue, Dec 16, 2008 at 3:24 AM, nzerozero p wrote:
> > It appears from the gratuitous posts on the n3td3v mailing list, sir,
> that
> > you think you are just as, or more importan
On Tue, Dec 16, 2008 at 3:24 AM, nzerozero p wrote:
> It appears from the gratuitous posts on the n3td3v mailing list, sir, that
> you think you are just as, or more importantly, more important than Mr.
> Ranum.
> Obviously it appears that neither one of you are aware of who each other
> are. I s
16 matches
Mail list logo