Security RSS

Security news, and notes, from security at Tipsdr and from all corners of the Internet.
Registry Mechanic

Optimize your pcs performance

Free Performance scan
Windows Support
Remote Desktop Access
Sep
29th
Tue
permalink
[MajorSecurity Advisory #59]PHP <=5.3 - mysqli_real_escape_string() full path disclosure

[MajorSecurity Advisory #59]PHP
permalink
[SECURITY] [DSA 1897-1] New horde3 packages fix arbitrary code execution

Debian Security Advisory DSA-1897-1 securityatdebian.org Nico Golde September 28th, 2009 Package : horde3 Vulnerability : insufficient input sanitization Problem type : remote Debian-specific: no…
permalink
[MajorSecurity Advisory #57]PHP <=5.3 - preg_match() full path disclosure

[MajorSecurity Advisory #57]PHP
permalink
[ MDVSA-2009:249 ] newt

Mandriva Linux Security Advisory MDVSA-2009:249 Package : newt Date : September 27, 2009 Affected: 2008.1, 2009.0, 2009.1, Corporate 3.0, Corporate 4.0, Enterprise Server 5.0, Multi Network Firewall…
permalink
Re: Regular Expression Denial of Service

permalink
(edited) [DSECRG-09-044] SAP GUI 7.1 Insecure Methods

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-044 Application: EnjoySAP, SAP GUI for Windows 6.4 and 7.1 Versions Affected: Tested on 7100.2.7.1038 PL 7 Vendor URL: Bugs: insecure…
permalink
[USN-838-1] Dovecot vulnerabilities

Ubuntu Security Notice USN-838-1 September 28, 2009 dovecot vulnerabilities CVE-2008-4577, CVE-2008-5301, CVE-2009-2632, CVE-2009-3235 A security issue affects the following Ubuntu releases: Ubuntu…
permalink
[security bulletin] HPSBMA02461 SSRT090187 rev.1 - HP Remote Graphics Software (RGS) Sender, Remote Unauthorized Access

SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01859457 Version: 1 HPSBMA02461 SSRT090187 rev.1 - HP Remote Graphics Software (RGS) Sender, Remote Unauthorized Access NOTICE: The information…
permalink
[SECURITY] [DSA 1896-1] New Shibboleth 1.x packages fix potential code execution

Debian Security Advisory DSA-1896-1 securityatdebian.org Florian Weimer September 28, 2009 Package : opensaml, shibboleth-sp Vulnerability : several Problem type : remote Debian-specific: no Several…
permalink
Local privilege escalation vulnerability in Trustport security software

ShineShadow Security Report 28092009-10 TITLE Local privilege escalation vulnerability in Trustport security software BACKGROUND …
permalink
Cross-Site Scripting vulnerability in eCaptcha

Hello Bugtraq! I want to warn you about Cross-Site Scripting vulnerability in eCaptcha 25.09.2008. XSS: POST query at page in field: Type Here. Working key (ecaptchakey) is…
permalink
[DSECRG-09-043] SAP GUI 7.1 Insecure Method

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-043 Application: EAI WebViewer2D (EnjoySAP, SAP GUI for Windows 6.4 and 7.1) Versions Affected: Tested on 7100.2.7.1038 PL 7 Vendor URL:…
Sep
28th
Mon
permalink
Largest Privately Funded Library Chooses SonicWALL to Consolidate Its Network Security

SonicWALL, Inc. , a leading secure network infrastructure company, today announced that Linda Hall Library, the world’s largest privately funded library of science, engineering and technology open…
permalink
US man charged in massive credit card theft scheme

A 28-year-old man was charged with the largest credit card theft ever in the United States, in which more than 130 million card numbers were stolen, the Justice Department said.
permalink
Secret teen hacker army ridiculed

Wayward minister making stuff up again? Posted in Enterprise Security , 24th September 2009 09:14A GMT The UK government’s reported decision to employ ex-hackers to work at a newly-established Cyber…