Secunia Security Advisory - Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.
e6b8d7d52bb5a612604c036c4daef144fb575693a04217747ea995f2518cbff4
FRHACK 01 Call For Papers - FRHACK is the First International IT Security Conference, by hackers - for hackers, in France! The FRHACK Team (TFT) encourages speakers to present new and interesting projects for FRHACK 01 and will give preferential treatment to submissions that have not been presented at other conferences. The conference takes place September 7th and 8th, 2009.
c408ea73d97f4d934de600fe6fd3b5d93c7d32d52e6b2ace522117b027162d81
RSA EnVision suffers from a remote password hash retrieval vulnerability. Versions 3.5.0, 3.5.1, 3.5.2, and 3.7.0 are all affected.
72e46b59121bc7ea00a364a1c584cbeac02a4baf980212ce21c793f634d4b25b
Orablock allows a forensic investigator the ability to dump data from a "cold" Oracle data file.There is no need to load up the data file in the database which would cause the data file to be modified, so using orablock preserves the evidence.Orablock can also be used to locate "stale" data - data that has been deleted or updated.
c27a3adbdc20b162d44045a32dee98aa4c8cc3e34d7b97443c808d75c9a898ef
Oracle Forensics Part 7: Using the Oracle System Change Number in Forensic Examinations.
051ce7024ae89d5e1b9b1e94a3bf3171e5efbdd0947cbd1832b4846b9d8611cf
SimpleBlog version 3.0 suffers from a database disclosure vulnerability that allows for the retrieval of simpleBlog.mdb.
8455f486862b7dd2220437bbc6ecdfc7be3742e614756c5a2075f403b13c31e9
WebStudio eHotel suffers from a blind SQL injection vulnerability.
d76059f2c80e1a0fa23b64dc093f0e98fef58cd278024424755a80ec55742a51
WebStudio eCatalogue suffers from a blind SQL injection vulnerability.
1831e4b0a5850f3a129eb95d9d908986e3af252dfc943bcdb59f2cafb61867e0
Fuzzylime CMS version 3.03 suffers from a local file inclusion vulnerability in track.php.
4604588eb2a33d48d82d2c2d84a4965d2a7743f8a8e11dadfc12f165fc11a664
HP Security Bulletin - A potential security vulnerability has been identified in PHP running on the HP Secure Web Server for Tru64 UNIX or Internet Express for Tru64 UNIX. The vulnerability could be exploited remotely to cause a Denial of Service (DoS) or to execute arbitrary code.
18322b34a01c2a6482bcbd48c4253e54e78eb70953586d7d4b0c8e4293563aba
WordPress versions below 2.6.5 suffer from a stored cross site scripting vulnerability via the RSS Feed Generator.
a96a9de2febd6493265d41274b4ca418a8c2f6e71f2af0621f2067b46cb3230c
CanSecWest 2009 Call For Papers - The tenth annual CanSecWest applied technical security conference - where the eminent figures in the international security industry will get together share best practices and technology - will be held in downtown Vancouver at the the Sheraton Wall Centre on March 18-20, 2009.
c05747b0a321804261de3f56dba6a20fe34d35f70de444cd27124db262cb858f
Anehta is a PHP/Javascript based platform to make cross site scripting and other web attacks easier.
83a687fcc34e13a9a681cb1719f3c457660f3bb6a4e649890ca6fdcbbb3972d7
Clean CMS version 1.5 blind SQL injection exploit that makes use of full_txt.php.
1d07d146274956fc37c78422fdbbf53a198a778bc4080777929e0555bbbfa213
Clean CMS version 1.5 suffers from blind SQL injection and cross site scripting vulnerabilities.
f6963b1d656e1b74b140bce29ae3425f3041c4c2ce7050adc841d4ad4f0a9f85
Chipmunk Topsites suffers from a remote SQL injection vulnerability that allows for authentication bypass. It also suffers from a cross site scripting vulnerability.
045ce710c91423252ec5acb7752050b54043e9e8cf7016cd5e28c22680594623
MyBB versions 1.4.3 suffers from a disclosure vulnerability relating to my_post_key that allows for cross site request forgery attacks.
bbd51fd8de68880f401879ce82e52bce95c0b71beebf2e4ab4daf8aa6e7816af
Pie Web M{a,e}sher RSS module version 0.1 suffers from a remote file inclusion vulnerability.
e00b2de4c11b33850ea725538d5389dacaa28e2b74dfd19a209f7d8791aed403
An implementation of the A5/1 cipher written in C#. A5/1 is the current encryption cipher used in Telstra GSM phones.
d37e849ea29aaedf216357024b5e10bbb8b8f3c612ad613fb974907be687a51c
An implementation of the A5/1 cipher written in PHP. A5/1 is the current encryption cipher used in Telstra GSM phones.
cadba26324b0e9e4f121129c2086166c670cbe02cdd5d75890fa68d5a1f16653
FAQ Manager version 1.2 suffers from a remote SQL injection vulnerability in categorie.php.
fbfe26dc686355e0b46d58694faa8c4f4bb39e0213834539ebdb75521450d35b
TagFuzzer is a fuzzing utility that edits tag information for a supplied file. Supports MP3, M4A, M4P, MP4, M4B, 3GP, OGG, and FLAC formats.
6ea8345c7e60081071fe0e6685179fd102ae6f0146579fee5e456e407fd59f99
Secunia Security Advisory - Ubuntu has issued an update for gaim. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise a user's system.
bd65e0b16914f3bef074f75106aaf758d25c76b62c53b8c71cc2d1c3aefb6e48
Secunia Security Advisory - A security issue has been reported in VirtualBox, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
f4f389628395208d8e7f5a8a28fcc2fefff0f4f35d3fd55629443a6af6c4d982
Secunia Security Advisory - Ubuntu has issued an update for webkit. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
06b48a9fbd83a6c585b467a48d1b0a2ea299d3f564b1460d745af7fc0c756074