Recent Vulnerabilities
09 May 08: Yahoo! Assistant "yNotifier.dll" ActiveX Control Remote Memory Corruption Vulnerability
09 May 08: TFTP Server SP Long Error Message Remote Buffer Overflow Vulnerability
09 May 08: OpenKM Remote Document Export Vulnerability
09 May 08: SazCart Multiple Parameter Handling Remote File Inclusion Vulnerabilities
09 May 08: Cyberfolio "rep" Parameter Handling Remote File Inclusion Vulnerability
09 May 08: vShare YouTube Clone "tid" Parameter Handling Remote SQL Injection Vulnerability
09 May 08: Zarafa Multiple Remote Cross-Site Scripting Vulnerabilities
09 May 08: InfoBiz Server "keywords" Parameter Handling Remote Cross-Site Scripting Vulnerability
08 May 08: SAP Internet Transaction Server "wgate.dll" Remote Cross-Site Scripting Vulnerability
08 May 08: HP-UX LDAP-UX Unspecified Local Privilege Escalation Vulnerability
Recent Exploits
21 Mar 08: xine-lib <= 1.1.11 Remote Heap Overflow PoC (xinehof.zip)
21 Mar 08: Microsoft Office Excel Code Execution Exploit (MS08-014) (zha0_ms08_014.rar)
20 Mar 08: Sun Solaris <= 10 rpc.ypupdated Remote Root Exploit (ypk2008.tar.gz)
17 Mar 08: Home FTP Server 1.4.5 Passive Mode Remote Denial of Service Exploit (HomeFTP_DoS.py)
17 Mar 08: Apple Safari (webkit) Remote Denial of Service Exploit (iphone/osx/win) (Safari_dos.html)
14 Mar 08: Dovecot IMAP 1.0.10 <= 1.1rc2 Remote Email Disclosure Exploit (DovecotIMAP.py)
14 Mar 08: VLC <= 0.8.6e Subtitle Parsing Local Buffer Overflow Exploit (VLC_Subtitle_BoF.c)
14 Mar 08: SunOS 5.10 Sun Cluster rpc.metad Denial of Service PoC (SunOS_rpc.metad.c)
[ Exploit Archive ]
Recent Internet / Security News and Events
SecurityFocus: News: Groups warn travelers to limit laptop data
SecurityFocus: News: Patches pose significant risk, researchers say
SecurityFocus: News: U.S. gov't pushes cybersecurity at con
SecurityFocus: News: Web developers, fix thy Flash
SecurityFocus: Brief: Proposed cybersecurity bill to pressure DHS
Slashdot: VIA Releases 16K-Line FOSS Framebuffer Driver
Slashdot: What Is the Oldest Code Written Still Running?
Slashdot: DDR3 RAM Explained
Slashdot: Developing New Materials With Space Science
Slashdot: How the NSA Took Linux To the Next Level
Slashdot: The 25-Year-Old BSD Bug
Slashdot: Creating Designer Isotopes
Slashdot: NSA Takes On West Point In Security Exercise
Slashdot: Spam Filtering For Small/Medium Business?
Slashdot: Zeppelins Over California
The Register: Vista security credentials tarnished in malware survey
The Register: India and Belgium decry Chinese cyber attacks
The Register: I Was A Teenage Bot Master
The Register: Facebook agrees to child-safety measures
The Register: Interpol appeal unmasks US actor as child abuse suspect
The Network Administrator: Hiding Your Files Made Easy
The Network Administrator: Without Internet Neutrality
The Network Administrator: The Tin Men fo Africa
The Network Administrator: An Interview with Linus Torvalds
The Network Administrator: Adware / Spyware Extortion
LinuxSecurity: The Computer Security Paradox
LinuxSecurity: A Guide to Cryptography in PHP
LinuxSecurity: Firefox Infects Vietnamese Users With Trojan Code
LinuxSecurity: Computer Forensics Procedures, Tools, and Digital Evidence Bags: What They Are and Who Should Use
LinuxSecurity: sshpass - Non-Interactive SSH Password Authentication
Help Net Security: Off the wire: FBI says the military had bogus computer gear
Help Net Security: Security World: Discovery of a crimeserver with over 1.4 gb of stolen data
Help Net Security: Security World: Compromised file found inside a localized Firefox 2.0 language pack
Help Net Security: Webcast: Understanding the Payment Application Data Security Standard
Help Net Security: Security World: Free kits for launching phishing attacks
[ News Portal ]