Security Hero

Security Hero http://sechero.com If it's about security, you heard it here first Sat, 16 Jan 2010 17:48:01 +0000 http://backend.userland.com/rss092 en Libpurple MSN-SLP Emoticon Directory Traversal Vulnerability Vuln: Libpurple MSN-SLP Emoticon Directory Traversal Vulnerability Libpurple MSN-SLP Emoticon Directory Traversal VulnerabilityURL: http://www.securityfocus.com/bid/37524 http://sechero.com/libpurple-msn-slp-emoticon-directory-traversal-vulnerability/ [ MDVSA-2010:000 ] firefox Bugtraq: [ MDVSA-2010:000 ] firefox [ MDVSA-2010:000 ] firefoxURL: http://www.securityfocus.com/archive/1/508835 http://sechero.com/mdvsa-2010000-firefox/ Achievo Scheduler Category HTML Injection Vulnerability Vuln: Achievo Scheduler Category HTML Injection Vulnerability Achievo Scheduler Category HTML Injection VulnerabilityURL: http://www.securityfocus.com/bid/37220 http://sechero.com/achievo-scheduler-category-html-injection-vulnerability/ Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability Bugtraq: ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution VulnerabilityURL: http://www.securityfocus.com/archive/1/508358 http://sechero.com/symantec-multiple-products-vrtsweb-exe-remote-code-execution-vulnerability/ HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability Bugtraq: TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow VulnerabilityURL: http://www.securityfocus.com/archive/1/508357 http://sechero.com/hp-openview-nnm-ovwebsnmpsrv-exe-ovwselection-stack-overflow-vulnerability/ HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability Bugtraq: TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow VulnerabilityURL: http://www.securityfocus.com/archive/1/508355 http://sechero.com/hp-openview-nnm-ovalarm-exe-cgi-accept-language-stack-overflow-vulnerability/ HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability Bugtraq: TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow VulnerabilityURL: http://www.securityfocus.com/archive/1/508356 http://sechero.com/hp-openview-nnm-snmpviewer-exe-cgi-host-header-stack-overflow-vulnerability/ ffmpeg [ MDVSA-2009:297-1 ] ffmpeg Posted by security on Dec 05 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2009:297-1 http://www.mandriva.com/security/ _______________________________________________________________________ Package : ffmpeg Date : December 5, 2009 Affected: 2008.0 _______________________________________________________________________ Problem Description: Vulnerabilities have been...URL: http://seclists.org/fulldisclosure/2009/Dec/133 http://sechero.com/ffmpeg/ out of box scanner Re: out of box scanner Posted by Nathan Grandbois on Dec 04John Bennett wrote: John, You might want to take a look at the WASC list here: http://projects.webappsec.org/Web-Application-Security-Scanner-List The thread is still under discussion on the webappsec mailing list. _nathanURL: http://seclists.org/pen-test/2009/Dec/5 http://sechero.com/out-of-box-scanner/ [ MDVSA-2009:224-1 ] postfix Bugtraq: [ MDVSA-2009:224-1 ] postfix [ MDVSA-2009:224-1 ] postfixURL: http://www.securityfocus.com/archive/1/508238 http://sechero.com/mdvsa-2009224-1-postfix/ [ MDVSA-2009:218-1 ] w3c-libwww Bugtraq: [ MDVSA-2009:218-1 ] w3c-libwww [ MDVSA-2009:218-1 ] w3c-libwwwURL: http://www.securityfocus.com/archive/1/508230 http://sechero.com/mdvsa-2009218-1-w3c-libwww/ PHP Versions Prior to 5.3.1 Multiple Vulnerabilities Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities PHP Versions Prior to 5.3.1 Multiple VulnerabilitiesURL: http://www.securityfocus.com/bid/37079 http://sechero.com/php-versions-prior-to-5-3-1-multiple-vulnerabilities/ Dovecot Insecure ‘base_dir’ Permissions Local Privilege Escalation Vulnerability Vuln: Dovecot Insecure 'base_dir' Permissions Local Privilege Escalation Vulnerability Dovecot Insecure 'base_dir' Permissions Local Privilege Escalation VulnerabilityURL: http://www.securityfocus.com/bid/37084 http://sechero.com/dovecot-insecure-base_dir-permissions-local-privilege-escalation-vulnerability/ Wireshark 1.2.2 and 1.0.9 Multiple Vulnerabilities Vuln: Wireshark 1.2.2 and 1.0.9 Multiple Vulnerabilities Wireshark 1.2.2 and 1.0.9 Multiple VulnerabilitiesURL: http://www.securityfocus.com/bid/36846 http://sechero.com/wireshark-1-2-2-and-1-0-9-multiple-vulnerabilities/ TCP/IP Protocol Stack Multiple Remote Denial Of Service Vulnerabilities Vuln: TCP/IP Protocol Stack Multiple Remote Denial Of Service Vulnerabilities TCP/IP Protocol Stack Multiple Remote Denial Of Service VulnerabilitiesURL: http://www.securityfocus.com/bid/31545 http://sechero.com/tcpip-protocol-stack-multiple-remote-denial-of-service-vulnerabilities/