New User, Welcome!     Login

Next Page >>

technology

LayerOne 2008 - CFP Released

LayerOne 2008 Information Technology Conference
Call for Papers

May 17 & 18, 2008
Los Angeles, California (Pasadena Hilton)
http://layerone.info/

The fifth annual LayerOne information technology conference is now
accepting submissions for topic and speaker selection. As always, we
are interested seeing a broad range of pertinent topics, and encourage

CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

   Virtual PC Hypervisor Memory Protection Vulnerability

[CORE-2010-0819] LibSMI smiGetNode Buffer Overflow When Long OID Is Given In Numerical Form

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
                Core Security Technologies - CoreLabs Advisory
                            http://corelabs.coresecurity.com/

LibSMI smiGetNode Buffer Overflow When Long OID Is Given In Numerical Form

CORE-2009-0814: HP Openview NNM 7.53 Invalid DB Error Code vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

  HP Openview NNM 7.53 Invalid DB Error Code vulnerability

CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

  Sun xVM VirtualBox Privilege Escalation Vulnerability


*Advisory Information*

[CORE-2010-1001] Cisco WebEx .atp and .wrf Overflow Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

    Core Security Technologies - Corelabs Advisory
         http://corelabs.coresecurity.com/

    Cisco WebEx .atp and .wrf Overflow Vulnerabilities

CORE-2009-0401 - StoneTrip S3DPlayers remote command injection

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

       StoneTrip S3DPlayers remote command injection

CORE-2008-0314 - Orbit Downloader "Download failed" buffer overflow

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

    Orbit Downloader "Download failed" buffer overflow


*Advisory Information*

[CORE-2009-1126] Corel Paint Shop Pro Photo X2 FPX Heap Overflow

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

     Corel Paint Shop Pro Photo X2 FPX Heap Overflow


1. *Advisory Information*

CORE-2008-0320 - Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

  Insufficient argument validation of hooked SSDT functions
          on multiple Antivirus and Firewalls

CORE-2008-0122: MPlayer arbitrary pointer dereference

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

          Core Security Technologies - CoreLabs Advisory
               http://www.coresecurity.com/corelabs

              MPlayer arbitrary pointer dereference

*Advisory Information*

CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs

       MPlayer 1.0rc2 buffer overflow vulnerability


*Advisory Information*

CORE-2009-0625: Internet Explorer Dynamic OBJECT tag and URLMON sniffing vulnerabilities

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

                Core Security Technologies - CoreLabs Advisory
                    http://www.coresecurity.com/corelabs/


Internet Explorer Dynamic OBJECT tag and URLMON sniffing vulnerabilities

CORE-2010-0323: XSS Vulnerability in NextGEN Gallery Wordpress Plugin

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
                     Core Security Technologies - CoreLabs Advisory
                            http://www.coresecurity.com/corelabs/

XSS Vulnerability in NextGEN Gallery Wordpress Plugin


1. *Advisory Information*

CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

          Core Security Technologies - CoreLabs Advisory
               http://www.coresecurity.com/corelabs/

HTTP Response Splitting vulnerability in Sun Delegated Administrator

CORE-2009-1027: IBM SolidDB invalid error code vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

       IBM SolidDB invalid error code vulnerability

CORE-2007-0930 Path Traversal vulnerability in VMware's shared folders implementation

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


~      Core Security Technologies - CoreLabs Advisory
~           http://www.coresecurity.com/corelabs

Path Traversal vulnerability in VMware's shared folders implementation

*Advisory Information*

CORE-2009-1013: Multiple XSS and Injection Vulnerabilities in TestLink Test Management and Execution System

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
                                Core Security Technologies - CoreLabs
Advisory
                                        
http://www.coresecurity.com/corelabs/

Multiple XSS and Injection Vulnerabilities in TestLink Test Management
and Execution System

CORE-2009-0827: Microsoft Office Excel / Word OfficeArtSpgr Container Pointer Overwrite Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

Microsoft Office Excel / Word OfficeArtSpgr Container Pointer Overwrite
Vulnerability

CORE-2010-0104 - LANDesk OS command injection

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

                 LANDesk command injection


1. *Advisory Information*

[CORE-2009-1209] Google SketchUp 'lib3ds' 3DS Importer Memory Corruption

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

Google SketchUp 'lib3ds' 3DS Importer Memory Corruption

CORE-2009-01515 - WordPress Privileges Unchecked in admin.php and Multiple Information

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

WordPress Privileges Unchecked in admin.php and Multiple Information
Disclosures

(CORE-2010-0701) Adobe Acrobat Reader Acrord32.dll Use After Free Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://corelabs.coresecurity.com/

Adobe Acrobat Reader Acrord32.dll Use After Free Vulnerability

CORE-2010-1018 - Landesk OS command injection

      Core Security Technologies - CoreLabs Advisory
                 http://corelabs.coresecurity.com/

                 Landesk OS command injection


1. *Advisory Information*

Title: Landesk OS command injection
Advisory Id: CORE-2010-1018

CORE-2009-0909: Autodesk 3DS Max Application Callbacks Arbitrary Command Execution

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

Autodesk 3DS Max Application Callbacks Arbitrary Command Execution

RE: CORE-2007-0817: Remote Command execution, HTML and JavaScript injection vulnerabilities in AOL's Instant Messaging software

Ready, AIM, fire! http://aviv.raffon.net/2007/09/25/ReadyAIMFire.aspx 

--Aviv.

-----Original Message-----
From: Core Security Technologies Advisories [mailto:advisories@coresecurity.com] 
Sent: Tuesday, September 25, 2007 6:21 PM
To: bugtraq@securityfocus.com; full-disclosure@lists.grok.org.uk; vulnwatch@vulnwatch.org; NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: CORE-2007-0817: Remote Command execution, HTML and JavaScript injection vulnerabilities in AOL's Instant Messaging software

-----BEGIN PGP SIGNED MESSAGE-----

CORE-2010-0316 - Novell iManager Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
      Core Security Technologies - CoreLabs Advisory
            http://corelabs.coresecurity.com/

        Novell iManager Multiple Vulnerabilities

CORE-2009-0910: Autodesk Maya Script Nodes Arbitrary Command Execution

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

Autodesk Maya Script Nodes Arbitrary Command Execution

CORE-2008-0103: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

~      Core Security Technologies - CoreLabs Advisory
~           http://www.coresecurity.com/corelabs/

Internet Explorer Zone Elevation Restrictions Bypass and Security Zone
Restrictions Bypass

CORE-2009-0813: Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap Overflow

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

      Core Security Technologies - CoreLabs Advisory
           http://www.coresecurity.com/corelabs/

Windows Movie Maker and Microsoft Producer IsValidWMToolsStream() Heap
Overflow
Next Page>>

Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!