Sitemap

Main Menu

• SpamAlerts | Windows | Linux | Tutorials | Excell | WhitePapers | News | Spam | Virus.
• Windows Focus.
• VNews.
• Vulnerability.
• Hacking.
• Sql Injection.
• map.
• Downloads.

Top Menu

• VNews.
• Vulnerability.
• Hacking.
• Sql Injection.
• Windows Focus.
• Tips.

Content

Alert

Buffer overflow

• FreeBSD i386_set_ldt Integer Overflow Vulnerability.
• HP-UX Kerberos Client Remote Unauthenticated Execution of Code.
• worm W32.Areses.Q@mm.

Exploits

• 3 unfixed issues in Internet Explorer7.
• ASPintranet SQL Injection.
• AttackAPI 2.0 alpha.
• Backdooring MP3 files (plus QuickTime issues and Cross-context Scripting) Sep 20 2006.
• Because of 0Day Tech Support is Flooded.
• BPG Content Management System SQL Injection.
• DoS in Microsoft Windows Live Messenger 8.0.
• Dr.Web 4.33 antivirus LHA long directory name heap overflow.
• ECommerce Store Shop Builder.
• Exploit-CVE2006-3944.
• Exploit-CVE2006-5758.
• Image gallery with Access Database SQL Injection.
• More Vulnerable ATM Models Sep 22 2006.
• New Windows tool - PWDumpX v1.0.
• NVIDIA nView (keystone) local Denial Of service.
• Password Flaw in Firefox 1.5.08 and 2.0.
• Phpbb XS remote file include exploit – phpbb_root_path 23-sep-2006.
• phpQuestionnaire 3.12 (GLOBALS[phpQRootDir]) Remote File Inclusion Sep 21.
• RED Blog Remote File Include Vulnerability Exploit.
• Typo3 v4.x: XSS in extension "Indexed Search" v2.9.0.

Latest Hacking News

• Eavesdroppers must now sort through bits.
• Einstein Provides Key for Stopping Hackers.
• Firewall Puts Harrison Ford Back On Top.
• Hacker Compromises Personal Info At UCCS.
• Hacking Xboxes For Fun And Profit.
• Man who hacked into Naval computer gets probation.
• Middle Eastern Hackers Attack Over 500 Danish Websites, Put Up Messages Hailing Islam....
• New laser may stop computer hackers.
• States server hacked.
• Access Intelligence Editor Uncovers First Major VoIP Hacking Scheme.
• Advanced Hacking?.
• AMD Hack Points to Widespread Web Forum Flaws, Attacks.
• Attacks Target XML-RPC Flaws in PHP Blogging Apps.
• Black Hat show yields another Cisco bug.
• Bot Herder Pleads Guilty to Fraudulent Adware Installs and Selling Zombies to Hackers and Spammers.
• Brazilian Hacker Smash.
• Browser developers team up to thwart hackers.
• China suspected of using hackers to spy on the UK.
• Computer Hacker Did Not Find Military Secrets.
• Cupids (Possibly) Poison Arrow.
• CyberGuard provides secure VPN access to TOYS R US Intranet in Scandinavia.
• Dog Hacker Gets 7 Months.
• Hacker jailed for bringing down millions of PCs.
• Hacker jailed for bringing down millions of PCs.
• Hacker Suspected In Cal State East Bay Break-In.
• Hackers could exploit Windows error.
• Hackers follow Microsoft patches with malware.
• Hackers shift their focus to new programs.
• Hackers Shifting Targets.
• Is Having A Hacker Break Into Diebold Machines A Bad Idea?.
• Microsoft France is been Hacked!.
• Millionaire accused of being part of hacker gang.
• MS hacked by Dimitri again. Perhaps.
• New hack cracks secure Bluetooth devices.
• Notre Dame probes hack of computer system.
• Office hackers.
• Pentagon hacker wants to see Bushs John Hancock.
• Police Blotter: Best Buy hacker loses in court.
• Regency’s website attacked by hackers.
• Report: Hackers Break Into UCSD Server.
• Security experts lift lid on Chinese hack attacks.
• Skype ideal vehicle for hackers, scientists warn.
• Spanish Hacker Cracked Defense Department.
• Staff, Students Warned After USD Server Hacked.
• Trojan kit found.
• TrueNorth IA eMailserver 5.3.4 buffer overflow vulnerability.
• Windows 2000 vulnerability could allow hackers to launch remote denial-of-service.
• Young hacker pleads guilty.
• Zombie master pleads guilty to PC hijacking.

Latest Virus News

• ADW_SLAGENT.A.
• ADW_TBARWIN32.A.
• HTML_NETSKY.P.
• JS_PSYME.ANT.
• New Virus Alert on 3rd FEB - KamaSutra.
• SA companies are not prepared for the next wave of threats.
• SYMBOS_CARDTRP.B.
• Trojan.Spamlia.
• TROJ_CONHOOK.CR.
• TROJ_DROPPER.LZ.
• TROJ_PERLOVGA.A.
• W32.Cleevix.
• W32.Dabora.B@mm.
• W32.Kelvir.FJ.
• W32.Meetot.
• W32.Neshuta.
• W97M.Enife.
• W97M/Kukudro.t.
• Warning over unpatched IE bug.
• Winrar 3.30 Local Buffer Overflow.
• WORM_AGENT.PWC.
• WORM_LOVELETER.A.
• WORM_NETSKY.AL.
• WORM_NETSKY.P.
• WORM_RJUMP.A.
• WORM_SDBOT.FOB.
• WORM_VB.CYC.

Mobile Threat

• Arkansas lawyer claims company charged for free ring tones.
• Careless Users Challenge Mobile Security.
• Companies Partner for Wireless Filtering.
• Denial-of-Service Bug Bites BlackBerry.
• Ericsson Offers Mobile Antivirus Solution.
• Nokia Taps Symantec for Smart-Phone Security.
• PocketPC MMS - Remote Code Injection/Execution Vulnerability andDenial-of-Service.
• SYMBOS.SKUDOO.A (Low Risk).

PHP Vulnerability

• Php-Nuke Pool and News Module IMG Tag Cross Site.
• Addressing VMwares problem.
• AngelineCMS Multiple Vulnerabilities.
• Archangel Weblog 0.90.02 Admin Authentication Bypass & Remote File Inclusion.
• Asterisk Local and Remote Denial of Service vulnerability.
• Authenticated EIGRP DoS / Information leak.
• Buffer overflow" term considered overloaded Sep 23 2006.
• Calendar Module <= 1.5.7 Remote File Include Vulnerabilities.
• Captivate 1.0 - XSS Vuln.
• Change passwd 3.1 (SquirrelMail plugin ).
• Confixx 3.1.2 <= Code Injection.
• cPanel OpenBaseDir Bypass.
• Critical SQL Injection PHPNuke <= 7.8 - Your_Account module.
• CuteNews 1.4.1 Multiple vulnerabilities.
• Did Microsoft deliberately RootKit everyones computer to allow spying by the NSA, CIA and FBI ? Stev.
• eBay pulls vulnerability auction.
• Firefox 1.5.0.3 Flaw - Page can obtain path to Mozilla installation or profile by examining JavaScri.
• HTML injection and XSS (Cross Site Scripting).
• Html Injection in vBulletin 3.5.2.
• HylaFAX: Multiple vulnerabilities.
• Invision Power Board 2.1 <= 2.1.6 sql injection.
• Invision Power Board Multiple Vulnerabilities Oct 04 2006 06:58PM.
• Invision Power Board v2.1.4 - session hijacking.
• IwebNegar v1.1 Multiple vulnerabilities.
• Joomla 1.0.11 Remote File Include.
• JOOMLA CMS 1.0.7 DoS & path disclosing.
• libapache2-mod-auth-pgsql vulnerability.
• MBT, VeriSign Team Up.
• Mozilla Firefox: Potential remote code execution.
• Multiple Vulnerabilities - Mambo.
• New York faces DOJ suit over voter accessibility law.
• oaBoard PHP Code Execution.
• osCommerce one 2 060817 POC Exploit.
• PhotoPost PHP 4.6 - 4.5 Remote File Include Vulnerability.
• phpArcadeScript XSS Injections.
• phpBB "charts.php" XSS and SQL-Injection.
• phpBB "Upload Avatar from a URL" Remote HTTP Request Weakness.
• phpBB - 2.0.19 Multiple DoS vulnerabilities.
• phpBB 2.0.20 Full Path Disclosure and SQL Errors.
• phpBB 2.0.21 Full Path Disclosure.
• PHPBB 3 Memberlist.PHP SQL Injection Vulnerability.
• phpBB User Viewed Posts Tracker Version Vulnerability.
• phpBB XS Remote File Include Vulnerability.
• PHPenpals SQL Injection Vulnerabilit.
• PhpMyAdmin all version [multiples vulnerability].
• phpMyAdmin server_privileges.php SQL Injection Vulnerabilities..
• phpRPC Library Remote Code Execution.
• phpWebSite 0.10.2 Remote File Include Vulnerabilities.
• PluggedOut Nexus SQL injection.
• PNews v1.1.0 (nbs) Remote File Inclusion.
• Portail PHP v1.7 <- (chemin) Remote Inclusion Vulnerability.
• Postnuke pnPHPBB remote file include vulnerability.
• Proof of concept that PGP AUTHENTICATION CAN BE BYPASSED WITHOUT PATCHING.
• ReviewPost version 2.5 vulnerability - Remote File Inclusion (RP_PATH).
• rPSA-2006-0084-1 fetchmail.
• Scout Portal Toolkit "forumid" Parameter SQL Injection.
• Shoutcast Status Full (VB3.5).
• Simple Machines Forum 1.1RC2 unset vulnerabilities.
• TinyPHPForum Multiple Vulnerabilities.
• Tivoli Identity Manager slimmed down for small and midsize firms.
• txtForum: Script Injection Vulnerability.
• vbulletin 3.5.x xross site explolite.
• vBulletin 3.6.1 Data Loss Issue (With Patch).
• vbulletin security Alert.
• vBulletin3.0.12&3.5.3~is_valid_email()~XSS Attack.
• Veritas NetBackup "Volume Manager Daemon" Module Stack Overflow - Exploit.
• vulnerability has been reported in Invision Power Board.
• vulnerability in Ralf Image Gallery.
• vulnerability in SmartSiteCMS.
• Webmin / Usermin Arbitrary File Disclosure Vulnerability Perl.
• WordPress 2.0.3 SQL Error and Full Path Disclosure.
• X7Chat <= 2.0.2 avatar XSS injection.
• XOOPS <= 2.0.13.2 xoopsOption[nocommon] exploit.
• Xoops Pool Module IMG Tag Cross Site Scripting.
• XSS in Vbulletin 3.6.0 in IE 0nly.
• YapBB <= 1.2 Beta2 find.php SQL Injection Vulnerability.
• [myimei]WordPress2.0.0~autorswebsite~XSS attack.

Scams and Hoaxes

• Firewall Puts Harrison Ford Back On Top.
• Islamic Messages Defacing Danish Websites.
• New Feebs trojan variant hides elaborate eBay fraud.
• S&P changes makeup of indices.
• Symantec set for higher profit, revenue on Veritas.
• Winamp exploit found in the wild.
• 180Solutions Drops Lawsuit Against Zone Labs.
• A Moment Of Silence Hoax.
• Attention online shoppers: Be careful.
• Attention online shoppers: Be careful.
• Bank Customers Hit For €1 Million.
• Blackmal deletion day appears a dud.
• Blackmal down, but may not be out.
• Campus killer avoids death penalty, family of victim satisfied.
• CBC-MAC IV misleading programming interface.
• CSU East Bay employees may have had data breached.
• Data leaks already inundating 2006.
• Differing worm names causing confusion, concern.
• E-Trade offers customers new fraud coverage, payment protection.
• EHOVE adds various trades, enrichment classes to schedule.
• FBI center to concentrate on computer crimes.
• FBI publishes 2005 computer crime survey.
• Federal flaw database commits to grading system.
• Forum urges flu pandemic preparations.
• Fraud Spam Baits with Russian Billions.
• FTC May Wage Shame Campaign Against Adware.
• Gary Mckinnon fights US extradition.
• Geeks On Call PCs : 5-Minute Fixes.
• Giving newspaper readers some credit.
• IE7 bug reports stack up.
• Industry finally begins to can the spam.
• Is Your Website Hackable? Find Vulnerabilities with a Free Acunetix Security Audit.
• New Industry Helping Banks Fight Back.
• Newspapers lose readers information.
• Nineteen accused of digital piracy.
• Nineteen accused of digital piracy.
• Nobody better bet against Ford to outfox, outfight clever villains.
• Online scammers go spear-phishin.
• Phishing for your money.
• Researcher: Sony BMG "rootkit" still widespread.
• Romanian Election Enters Net Battleground.
• Santa IM Worm Installs Rootkit Payload.
• Search Terms Are a Witness for the Prosecution.
• Secret Service Investigates Phony, Offensive E-mail.
• Sex and the Silver Years.
• Silicon Valley Sleuth, an insiders view from Silicon Valley.
• Sophos scoffs at Bill Gates ‘death-of-spam’ prophecy.
• South African ISP ups security after hacker attack.
• StopBadware backed by Google, Lenovo, and Sun.
• Sunbelt Tracks DIY Trojan Builder Program.
• Symantec Roadmap Includes Massive "Genesis" Suite.
• Symantec shares slump on results, financial outlook.
• Symantecs harsh warning.
• Targeted cybercrime, threats increase by 48% in 2005.
• Teen photos & a policemans story.
• The True Computer Parasite.
• Three charged with wiretapping, racketeering.
• Two Years Later, Blaster Worm Still Squirming.
• U.S. government sued over NSA spying.
• UNAVAILABLE!? Mobile Phone Hoax.
• Vistas encryption could vex investigators.
• Zero-day details underscore criticism of Oracle.
• Zero-day exploit exposes Winamp users.

Security

• SecureWorks Ranks 79th on Inc. Magazines 500 Fastest Growing Private Companies List.
• Bit 5 Blog SQL Injection & Authentication Bypass Vulnerability.
• Blue Coat Reporter multiple remote vulnerabilities.
• From Hacker to Protector.
• Qpopper Privilege Escalation Vulnerabilities.
• The Death Of A Firewall.
• ?6.5m phishing duo jailed.
• Adobe Reader 7 XML External Entity (XXE) Attack.
• Adobe Version Cue VCNative Multiple Vulnerabilities (Privileges Escalation, Symlink Attack).
• ADOdb PostgreSQL SQL Injection Vulnerability.
• ADOdb Server.PHP SQL Injection Vulnerability.
• Advisory: dForum <= 1.5 Multiple Remote File Inclusion Vulnerabilities..
• Anti spammers are downed by Spammers.
• AOblogger Multiple Input Validation Vulnerabilities.
• Apache ssl_callback_SSLVerify_CRL DoS.
• Apache: Multiple vulnerabilities.
• Apple Mac OS X Multiple Vulnerabilities.
• Apple OSX dsidentity Privileges Escalation.
• Apple QuickTime/iTunes Integer And Heap Overflow Vulnerabilities.
• Apple QuickTime/iTunes Integer And Heap Overflow Vulnerabilities.
• Apple Safari Web Browser Rowspan Denial Of Service Vulnerability.
• Asia: Spam factory of the world!.
• AWebBB Multiple Input Validation Vulnerabilities.
• B&S Insider Locks Down.
• Backup Doesnt Matter.
• Barracuda Spam Firewall Appliance.
• BetaParticle Database Disclosure and Arbitrary File Inclusion.
• Blacklist of Internet Advertisers.
• Blogger.com classic HTTP response splitting vulnerability.
• Boosting Embedded Application Security.
• Calyptix Secures Intellectual Property Rights; UNC Charlotte Partners with Security Company.
• Canada Combats "Cyberhate".
• Cashing In on Cyber Crime.
• Cerberus FTP Server 2.32 Denial of Service.
• Cisco CallManager Multiple Vulnerabilities (DoS, Memory Leak, Buffer Overflow).
• Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow.
• Cisco Secure ACS Insecure Password Storage Vulnerability.
• Clam AntiVirus Multiple DoS (MS-Expand File Handling, Cabinet File Handling).
• Cool Cafe SQL Injection and Disclosure of Sensitive Information.
• CoolMenus Index.PHP Remote File Include Vulnerability.
• CPIO CHMod File Permission Modification Race Condition Weakness.
• CPIO File Size Stack Buffer Overflow Vulnerability.
• Cross-Site Scripting (CSS) in Hosting Controller.
• CrossFire Denial Of Service Vulnerability.
• Crown Prosecution Service tackles hi-tech crime.
• CutePHP CuteNews Editnews Module Cross-Site Scripting Vulnerability.
• Cybercrime Being Fought in New Ways.
• Details of Lotus Notes Java Applet vulnerabilities Oct 06 2006 04:36PM.
• Download.Fullalc.
• Downloader-Iframe136.
• Drupal Arbitrary PHP Code Execution Vulnerability.
• Dzip is vulnerable to a directory traversal attack..
• eEye Advisory - EEYEB-20050316 - HTML Help File Parsing Buffer Overflow.
• Encrypt the Hard(ware) Way.
• Error logging buffer overflow in Informix.
• Fake Microsoft security alert includes Trojan patch.
• Fall fundraisers burst with color.
• Feds Target Internet Piracy Organizations.
• FileProtection Express Authentication Bypass Vulnerability.
• Flaw finders score loyalty rewards from iDefense.
• FTPshell Server DoS.
• Gekco Browsers DoS.
• Get An Account On AntiOnline - Its FREE!.
• GNOME Foundation GDM .ICEauthority Improper File Permissions Vulnerability.
• GNU Mailutils is vulnerable to SQL command injection attacks..
• GNU Strings Denial Of Service Vulnerability.
• Hacker May Have Accessed University Applicants Records.
• Hacker Protection for Your Web Applications.
• Hackers, Spammers Partner Up To Wreak Havoc.
• HOCR Local Buffer Overflows.
• Horde Help Viewer Remote PHP Code Execution Vulnerability.
• I-RATER Platinum Config_settings.TPL.PHP Remote File Include Vulnerability.
• ICQ Client Cross-Application Scripting (XAS).
• Informix Long Username Buffer Overflow Vulnerability.
• Internet Security Systems Beats Estimates.
• Ipswitch IMail IMAP Vulnerabilities (Multiple Buffer Overflow, Multiple DoS, Directory Traversal).
• JAWS Glossary Cross-Site Scripting Vulnerability.
• Keeping net users safe from harm.
• Lack of environment sanitization in the FreeBSD, OpenBSD, NetBSD dynamic loaders..
• Latest Bluetooth attack makes short work of weak passwords.
• Linksys WRT54G Router Multiple Vulnerabilities.
• Linux Advisory Watch: October 21st 2005.
• Linux Kernel Elf Binary Loading Local Denial of Service Vulnerability.
• Linux Kernel EXT2 File System Information Leak Vulnerability.
• Linux Kernel Multiple SCTP Remote Denial of Service Vulnerabilities.
• Linux Kernel Multiple Vulnerabilities.
• Linux Kernel SMBFS CHRoot Security Restriction Bypass Vulnerability.
• Linux Orinoco Driver Remote Information Disclosure Vulnerability.
• Log4sh Insecure Temporary File Creation Vulnerability.
• Mac OSX Ping and Traceroute Local Buffer Overflow.
• Mambo Open Source Mambo.PHP User Name SQL Injection Vulnerability.
• McAfee Intrushield IPS Privilege Escalation and Cross Site Scripting.
• Medal Of Honor Allied Assault Remote Buffer Overflow Vulnerability.
• Meteor FTP Server v1.5 Buffer Overflow.
• Microsoft Defends Claria Adware Changes.
• Microsoft Draws Criticism For Changing AntiSpyware Definitions.
• Microsoft Excel Malformed Record Remote Code Execution Vulnerability.
• Microsoft Infotech Storage library Heap Corruption.
• Microsoft Internet Explorer COM Object Instantiation Code Execution Vulnerability.
• Microsoft Internet Explorer Popup Cross-Domain Information Disclosure Vulnerability.
• Microsoft to reward informants after Sasser conviction.
• Microsoft Windows MSDTC Invalid Memory Access Denial Of Service Vulnerability.
• Microsoft Windows NTFS Failure To Initialize File Block Vulnerability.
• Mini-NUKE Pages.ASP SQL Injection Vulnerability.
• Misleading e-mail.
• Mozilla / Mozilla Firefox Authentication Weakness.
• Mozilla Firefox HTML Parsing Null Pointer Dereference Denial of Service Vulnerability.
• Mozilla XPCOM Library Race Condition.
• Multiple Mozilla Products Memory Corruption/Code Injection/Access Restriction Bypass Vulnerabilities.
• Multiple Vendor Web Vulnerability Scanner Arbitrary DHTML Injection.
• Netscape update fixes Firefox bugs.
• Networking Device: Settlement reached in Cisco flaw dispute with Black Hats.
• No Ones Safe.
• Nokia PC Suite CDDBControl ActiveX Control Buffer Overflow.
• Nortel, Websense Join Forces on Wireless Security.
• Novell NDPS Remote Vulnerability (Server & Client).
• NTLM HTTP Authentication is Insecure By DesignSummary.
• Old software weakening Nets backbone, survey says.
• One password to rule them all.
• Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation.
• Papoo Multiple Cross-Site Scripting Vulnerabilities.
• PayPal Phishing Site Exploits Google XSS Vulnerability.
• PHP Calendar Buffer Overflow.
• PHP Radia Notify Daemon: Multiple Buffer Overflow Vulnerabilitie.
• PHPList Index.PHP Local File Include Vulnerability.
• PhpListPro 2.01 Remote File Include Vulnerability.
• PWSteal.Tarno.S.
• Quake 3 Engine remapShader Command Remote Buffer Overflow Vulnerability.
• Reverse engineering patches making disclosure a moot choice?.
• RSA Hits Tough Times.
• RSync Receive_XATTR Integer Overflow Vulnerability.
• Russcom Network LoginPHP Open EMail Relay Vulnerability.
• SA government site hacked.
• Scirus to Index Caltech Digital Archives.
• Scry Gallery Directory Traversal Vulnerability.
• SEC-CONSULT SA20050602-1 :: Arbitrary File Inclusion in phpCMS 1.2..
• SEC-CONSULT SA20050602-2 :: Exhibit Engine Blind SQL Injectio.
• Siemens Santis 50 Information Disclosure.
• SIRE Lire.PHP Remote File Include Vulnerability.
• SmoothWall Announces International Partner Program with 40 New Resellers; Security Specialist Plans.
• SmoothWall Kick Starts New Programme With 40 New Resellers In First Two Months.
• Soldier of Fortune II DoS Vulnerability (/ignore command).
• SpamAssassin Malformed Email Header Remote Denial Of Service Vulnerability.
• SPI Dynamics Participates in SYSTEMS Show.
• SquirrelMail Multiple Unspecified Cross-Site Scripting Vulnerabilities.
• SYMANTEC PROVIDES CONTINUOUS DATA PROTECTION AND SYSTEM RECOVERY WITH NORTON SYSTEMWORKS 2006.
• Symantec Scan Engine File Disclosure Vulnerability.
• Symantec Secures Its Future.
• Tech Bits.
• The eScan Electronic Voting System.
• Three critical patches for MS July Patch Tuesday.
• Trapeze, AirDefense Partner.
• Trapeze, AirDefense Partner.
• UK Is Facing A Cyber War.
• vBulletin Calendar Script SQL Injection Vulnerability.
• vbulletin security Alert.
• Ventrilo Denial of Service.
• Virtual card offers online security blanket.
• Vizra A_Login.PHP Cross-Site Scripting Vulnerability.
• VWar Admin.PHP Remote File Include Vulnerability.
• WatchGuard Technologies Firebox SSL Core.
• Windows Genuine Advantage 1.0 Hacked After 2 Days.
• WLAN Session Containment DoS.
• WORM_MYTOB.JX.
• WORM_REATLE.F.
• WORM_ZOTOB.H.
• Worry Watch: A second wave of banking protection.
• XBL Implementation Allows Script Execution (Gecko).
• Xmail: Privilege escalation through sendmail.
• XML-RPC for PHP Remote Code Injection Vulnerability.
• XPDF StreamPredictor Remote Heap Buffer Overflow Vulnerability.
• XZGV Image Viewer JPEG File Remote Heap Buffer Overflow Vulnerability.
• Yahoo fixes Web mail security flaw.
• Yahoo!, youve got worms.
• Yaws Source Code Disclosure Vulnerability.
• [ GLSA 200507-01 ] PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability.

Security Reviews

• Exploiting kmalloc Based Buffer Overflows.
• Exploiting The XmlHttpRequest Object In IE.
• Exploring Windows CE Shellcode.
• Understanding and Preventing DNS-related Attacks by Phishers.
• XSS Virus Whitepaper.

SQL Injection

• ADP Forum 2.0 script njection.
• Drupal 4.6.6 / 4.5.8 fixes access control issue.
• Hazir Site v2.0 Admin SQL Injection.
• Invision Community Blog .. Bugs.
• Linux Kernel Radionet Open Source Environment Unspecified Vulnerability.
• Multiple Translation websites Cross Site Scripting.
• MyPhPim Multiple SQL Injection and XSS Vulnerabilities.
• PwsPHP Injection SQL on Index.php.
• SQL injection - 4images.
• SQL injection - moodle.
• SQL Injection in DCI-Taskeen.
• Sql Injection SMS 1.1 RC3 Admin section.
• The latest version of iSearch is V2.16.
• Tons of SQL-injections and XSS in Eichhorn Portal and vendor page.
• Venom Board SQL Injection Vulnerability.
• Virtual War "war.php" SQL Injection Vulnerabilities.
• WebWiz Products SQL Injection.
• WebWiz Products SQL Injection.
• Y.A.N.S sql injection.
• [MajorSecurity #21] phpFaber TopSites <=2.0.9 - SQL Injection Vulnerability.

Tools

• Napster shares make noise early.
• Peter OKellys Reality Check.
• Spyware Makers Aiming For Enterprises.
• Analysis of a win32 Userland Rootkit.
• Apple QuickTime udta ATOM Heap Overflow.
• Arbor Networks Honored with Hot Companies Award.
• Buffer Overflow - Winamp 5.13 m3u Playlist.
• Buffer Overflow Vulnerability in Winlpd.
• Check Point Targets Enterprise Spyware.
• CodeScan Advisory: Multiple Vulnerabilities In ASPPortal.net.
• Company requires RFID injection.
• Copy protected CDs land Sony in hot water.
• Detect attacks with network monitoring techniques.
• difficulties of detecting complex viruses.
• Directory traversal - SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1.
• Directory traversal - WinAce Archiver v2.6.
• Do Web filters protect your child?.
• DoS Vulnerability in Firefox <= 1.0.7.
• Exploit code targets unpatched Windows flaw.
• FileFuzz - Windows Based File Format Fuzzing Tool.
• flaws in IE 7.0 beta.
• Help! My box has been owned....
• I-RATER Platinum Remote File Inclusion exploit Cod3d by R@1D3N.
• IBM Acquisition Accelerates SOAs.
• IndieVolume 1.2.
• Internet Explorer Beta 7.0 a Must Download!.
• Invision Power Board v2.1.5 Remote SQL Injection.