Security Hero » Email

3339 (email_and_web_security_appliance)

invalid string — Sat, 26 Sep 2009 17:56:40 +0000

CVE-2009-3339 (email_and_web_security_appliance)

Unspecified vulnerability in McAfee Email and Web Security Appliance 5.1 VMtrial allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.9 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3339

computer crime statistics

invalid string — Mon, 27 Jul 2009 21:48:29 +0000

RE: computer crime statistics

Envelope-to: email@address
Delivery-date: Mon, 27 Jul 2009 22:22:29 +0100
Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com)
by lt.network5.net with esmtp (Exim 4.43)
id 1MVXeP-0004ru-8D
for email@address; Mon, 27 Jul 2009 22:22:29 +0100
Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20])
by outgoing3.securityfocus.com (Postfix) with QMQP
id 7CBE42371F8; Mon, 27 Jul 2009 15:19:13 -0600 (MDT)
Mailing-List: contact href=”mailto:bugtraq-help@securityfocus.com”>bugtraq-help@securityfocus.com; run by ezmlm
Precedence: bulk
List-Id: <bugtraq.list-id.securityfocus.com>
List-Post: <mailto:bugtraq@securityfocus.com>
List-Help: <mailto:bugtraq-help@securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
List-Subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
Delivered-To: mailing list href=”mailto:bugtraq@securityfocus.com”>bugtraq@securityfocus.com
Delivered-To: moderator for href=”mailto:bugtraq@securityfocus.com”>bugtraq@securityfocus.com
Received: (qmail 10596 invoked from network); 27 Jul 2009 21:15:21 -0000
Content-class: urn:content-classes:message
MIME-Version: 1.0
Subject: RE: computer crime statistics
X-MimeOLE: Produced By Microsoft Exchange V6.5
Date: Mon, 27 Jul 2009 15:15:13 -0600
Content-Type: multipart/signed;
micalg=SHA1;
protocol="application/x-pkcs7-signature";
boundary="—-=_NextPart_000_057C_01CA0ECD.09DC2F70"
Message-ID: <631BA9640B7F2246936CD03153E2F92E20F909@Libmail2.ualibrary.ualberta.ca>
In-Reply-To: <001a01ca0dfa$d7dde8b0$8799ba10$@com>
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
Thread-Topic: computer crime statistics
Thread-Index: AcoN+oX+xKj011IHRImdAYPfW8fNdQAADRdwAEEC6NA=
References: <001a01ca0dfa$d7dde8b0$8799ba10$@com>
From: "McDonnell, Michael" <michael.mcdonnell@ualberta.ca>
To: "Choon Ming" <choonming2002@gmail.com>,
<bugtraq@securityfocus.com>,
<full-disclosure-bounces@lists.grok.org.uk>
X-IMAPbase: 1176125385 9714
Status: O
X-UID: 9714
Content-Length: 5925
X-Keywords:

AntiSec is DEAD

invalid string — Sat, 25 Jul 2009 15:48:26 +0000

Re: AntiSec is DEAD

Posted by srshaxsir_at_hushmail.com on Jul 25

You are an idiot.

anti-sec never threatened to show any 0day, it is against the point

you moron.. unless you believe anyone that signs his email with

‘anti-sec’.

We are still online, we are still auditing and hacking your code on

a daily basis, you just won’t know about it anymore until you…

URL: http://seclists.org/fulldisclosure/2009/Jul/0390.html

Major spam campaign abusing Yahoo Groups

invalid string — Thu, 23 Jul 2009 21:48:11 +0000

Major spam campaign abusing Yahoo Groups

About one million spam emails per hour are being sent to Yahoo Groups and other free web services, including Google Groups and LiveJournal, containing bogus pharmaceutical advertising content.

URL: http://feedproxy.google.com/~r/SCMagazineHome/~3/Hhgm3VDE7z4/

SonicWALL SSL-VPN Appliance Format String Vulnerability

invalid string — Fri, 29 May 2009 18:50:02 +0000

SonicWALL SSL-VPN Appliance Format String Vulnerability

outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1MA72n-0005qs-Te for email@address; Fri, 29 May 2009 19:43:06 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id B755D14408F; Fri, 29 May 2009 11:35:15 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 23829 invoked from network); 29 May 2009 05:14:40 -0000 MIME-Version: 1.0 Message-ID: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-IMAPbase: 1176125385 9237 Status: O X-UID: 9237 Content-Length: 3083 X-Keywords:

Novell Groupwise fails to properly sanitize emails.

invalid string — Thu, 28 May 2009 23:00:02 +0000

Novell Groupwise fails to properly sanitize emails.

outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9oWv-0000ZN-8y for email@address; Thu, 28 May 2009 23:56:57 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id BE38C1439D6; Thu, 28 May 2009 15:16:51 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 1293 invoked from network); 28 May 2009 19:46:58 -0000 Message-Id: <200905281946.n4SJkwUC010061@www3.securityfocus.com> Content-Type: text/plain Content-Disposition: inline MIME-Version: 1.0 X-Mailer: MIME-tools 5.420 (Entity 5.420) Content-Transfer-Encoding: quoted-printable X-IMAPbase: 1176125385 9230 Status: O X-UID: 9230 Content-Length: 3792 X-Keywords:

Achievo 1.3.4 – XSS Vulnerability

invalid string — Thu, 28 May 2009 21:50:01 +0000

[InterN0T] Achievo 1.3.4 – XSS Vulnerability

outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9nRn-0007×5-Lo for email@address; Thu, 28 May 2009 22:47:35 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 8866D237224; Thu, 28 May 2009 15:20:46 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 7077 invoked from network); 28 May 2009 20:52:13 -0000 Message-Id: <200905282052.n4SKqCnd019701@www3.securityfocus.com> Content-Type: text/plain Content-Disposition: inline MIME-Version: 1.0 X-Mailer: MIME-tools 5.420 (Entity 5.420) Content-Transfer-Encoding: quoted-printable X-IMAPbase: 1176125385 9229 Status: O X-UID: 9229 Content-Length: 3042 X-Keywords:

Firefox Denial of Service (Keygen)

invalid string — Thu, 28 May 2009 19:50:01 +0000

[TZO-27-2009] Firefox Denial of Service (Keygen)

outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9lZ1-0004Rq-7A for email@address; Thu, 28 May 2009 20:46:55 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id AB551143D35; Thu, 28 May 2009 13:43:40 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 29137 invoked from network); 28 May 2009 01:15:04 -0000 Reply-To: Thierry Zoller X-Priority: 3 (Normal) Message-ID: <1251971057.20090528031438@Zoller.lu> full-disclosure , , , , , MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-15 X-Originating-IP: 91.50.116.121 Content-Transfer-Encoding: quoted-printable X-IMAPbase: 1176125385 9221 Status: O X-UID: 9221 Content-Length: 4981 X-Keywords:

utils

invalid string — Thu, 28 May 2009 15:20:01 +0000

rPSA-2009-0092-1 ntp ntp-utils

outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9hJp-0006Wx-Lx for email@address; Thu, 28 May 2009 16:14:57 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id 065D81439E1; Thu, 28 May 2009 09:05:18 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 25867 invoked from network); 27 May 2009 22:03:58 -0000 X-Authentication-Warning: logo.rdu.rpath.com: johnsonm set sender to rPath Update Announcements using -r security-announce@lists.rpath.com, update-announce@lists.rpath.com, product-announce@lists.rpath.com, security-announce@lists.rpath.com, update-announce@lists.rpath.com Cc: full-disclosure@lists.grok.org.uk, vulnwatch@vulnwatch.org, bugtraq@securityfocus.com, lwn@lwn.net, full-disclosure@lists.grok.org.uk, vulnwatch@vulnwatch.org, bugtraq@securityfocus.com, lwn@lwn.net Message-ID: <4a1db8c9.47zXLoDa67xXF+g3%announce-noreply@rpath.com> User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-IMAPbase: 1176125385 9214 Status: O X-UID: 9214 Content-Length: 1111 X-Keywords:

Dutch cat skinner publishes critics’ personal details

invalid string — Thu, 28 May 2009 09:27:35 +0000

Dutch cat skinner publishes critics’ personal details

The Dutch “artist” who in 2004 turned her pussy into a handbag under the performance art title “My dearest cat Pinkeltje (2004)” has published personal details of those who emailed her expressing their disgust.

Tinkebell’s My dearest catKatinka Simonse, aka Tinkebell, copped a veritable shitstorm of e-abuse for the feline fashion accessory stunt (pictured), and she and fellow artist Coralie Vogelaar decided to track down the senders, sniff out their intimate online secrets and present the whole thing for public consumption.

Source – The Register

Reddit It | Digg This | Add to del.icio.us

URL: http://www.pogowasright.org/article.php?story=20090528052735729

Understanding Microsoft’s KB971492 IIS WebDAV Vuln

invalid string — Wed, 27 May 2009 21:30:02 +0000

New paper: Understanding Microsoft’s KB971492 IIS WebDAV Vuln

outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9Qg8-0000My-E2 for email@address; Wed, 27 May 2009 22:28:52 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id E968C236F94; Wed, 27 May 2009 15:25:07 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 6030 invoked from network); 27 May 2009 19:51:57 -0000 Message-ID: <20090527195150.GA15167@dcent.unixwiz.lan> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.2i X-IMAPbase: 1176125385 9212 Status: O X-UID: 9212 Content-Length: 871 X-Keywords:

[TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)

invalid string — Wed, 27 May 2009 19:50:02 +0000

Re[2]: Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)

outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9P8G-000753-Ez for email@address; Wed, 27 May 2009 20:49:48 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 7EB3723716A; Wed, 27 May 2009 13:17:11 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 7506 invoked from network); 27 May 2009 19:00:00 -0000 Reply-To: "Vladimir '3APA3A' Dubrovin" <3APA3A@SECURITY.NNOV.RU> Organization: www.security.nnov.ru X-Priority: 3 (Normal) Message-ID: <1582074288.20090527225918@SECURITY.NNOV.RU> Cc: cert@cert.org, info@circl.etat.lu, "full-disclosure" , , , , "bugtraq" , "Thierry Zoller" In-Reply-To: <4A1D1C77.1761.009C.3@dot.state.tx.us> References: <10310049168.20090526201321@Zoller.lu> <4A1D1C77.1761.009C.3@dot.state.tx.us> MIME-Version: 1.0 Content-Type: text/plain; charset=Windows-1251 Content-Transfer-Encoding: quoted-printable X-IMAPbase: 1176125385 9208 Status: O X-UID: 9208 Content-Length: 1537 X-Keywords:

User-assisted execution of arbitrary code

invalid string — Wed, 27 May 2009 19:20:01 +0000

[ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code

outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9Oew-0006Yj-QS for email@address; Wed, 27 May 2009 20:19:30 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 9BD6F236FF8; Wed, 27 May 2009 13:16:26 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 5683 invoked from network); 27 May 2009 18:37:25 -0000 arbitrary code Cc: bugtraq@securityfocus.com, full-disclosure@lists.grok.org.uk, security-alerts@linuxsecurity.com Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="=-qKcs3BrUY+SMIGtTngxH" Message-Id: <1243449441.4200.1.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.26.2 X-IMAPbase: 1176125385 9205 Status: O X-UID: 9205 Content-Length: 3703 X-Keywords:

3rd Call – Deadline Extended

invalid string — Wed, 27 May 2009 15:50:01 +0000

[IMF 2009] 3rd Call – Deadline Extended

outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9LMD-0001y2-Mw for email@address; Wed, 27 May 2009 16:47:57 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 0470A2370CE; Wed, 27 May 2009 09:37:49 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 7111 invoked from network); 26 May 2009 19:03:31 -0000 Message-ID: <20090526190320.GB23806@cert.uni-stuttgart.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: RUS-CERT, Universitaet Stuttgart User-Agent: Mutt/1.5.18 (2008-05-17) X-IMAPbase: 1176125385 9198 Status: O X-UID: 9198 Content-Length: 8364 X-Keywords:

[TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)

invalid string — Wed, 27 May 2009 15:40:01 +0000

Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)

outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9LDV-0001oD-En for email@address; Wed, 27 May 2009 16:38:57 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 697C7236FAE; Wed, 27 May 2009 09:35:51 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Unsubscribe: List-Subscribe: Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 5952 invoked from network); 26 May 2009 18:14:32 -0000 Resent-Cc: recipient list not shown: ; Resent-Date: Tue, 26 May 2009 12:14:23 -0600 Resent-Message-Id: <200905261814.n4QIEM6m010234@mx2.securityfocus.com> X-Priority: 3 (Normal) Message-ID: <10310049168.20090526201321@Zoller.lu> full-disclosure , , , , , Resent-From: Thierry Zoller MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-15 X-Originating-IP: 91.50.116.240 Content-Transfer-Encoding: quoted-printable X-IMAPbase: 1176125385 9197 Status: O X-UID: 9197 Content-Length: 91 X-Keywords: