[Full-disclosure] [ MDVSA-2013:202 ] bind

2013-07-28 Thread security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2013:202 http://www.mandriva.com/en/support/security/ __

[Full-disclosure] [SECURITY] [DSA 2729-1] openafs security update

2013-07-28 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2729-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff July 28, 2013

[Full-disclosure] WebDisk 3.0.2 PhotoViewer iOS - Command Execution Vulnerability

2013-07-28 Thread Vulnerability Lab
Title: == WebDisk 3.0.2 PhotoViewer iOS - Command Execution Vulnerability Date: = 2013-07-27 References: === http://www.vulnerability-lab.com/get_content.php?id=1035 VL-ID: = 1035 Common Vulnerability Scoring System: 8.8 Introductio

[Full-disclosure] Private Photos v1.0 iOS - Persistent Path Web Vulnerability

2013-07-28 Thread Vulnerability Lab
Title: == Private Photos v1.0 iOS - Persistent Path Web Vulnerability Date: = 2013-07-25 References: === http://www.vulnerability-lab.com/get_content.php?id=1034 VL-ID: = 1034 Common Vulnerability Scoring System: 3.5 Introduction: =

[Full-disclosure] Private Photos v1.0 iOS - Persistent Path Web Vulnerability

2013-07-28 Thread Vulnerability Lab
Title: == Private Photos v1.0 iOS - Persistent Path Web Vulnerability Date: = 2013-07-25 References: === http://www.vulnerability-lab.com/get_content.php?id=1034 VL-ID: = 1034 Status: Published Disclaimer: === The information provided in this advisory

[Full-disclosure] Defense in depth -- the Microsoft way (part 5): sticky, persistent vulnerabilities

2013-07-28 Thread Stefan Kanthak
Hi, with Windows XP (about 12 years ago) Microsoft introduced the so-called "side-by-side" technology to overcome "DLL hell". With "side-by-side" technology several versions of a DLL can be installed on a system at the same time, for global use by any application; the "side-by-side" store is loca