http://www.soldierx.com/aggregator SOLDIERX.COM - aggregated feeds en http://www.securityfocus.com/bid/51392 JBoss Cache 'NonManagedConnectionFactory.java' Local Information Disclosure Vulnerability Sun, 30 Dec 2012 00:00:00 -0500 http://www.securityfocus.com/bid/51273 Pligg CMS 'status' Parameter SQL Injection Vulnerability Sat, 29 Dec 2012 00:00:00 -0500 http://www.securityfocus.com/archive/1/522757 FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability Thu, 17 May 2012 09:30:03 -0400 http://www.securityfocus.com/archive/1/522753 CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0 Thu, 17 May 2012 09:30:03 -0400 http://www.securityfocus.com/archive/1/522752 CVE-2012-2149 OpenOffice.org memory overwrite vulnerability Thu, 17 May 2012 09:30:03 -0400 http://www.securityfocus.com/archive/1/522751 CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object Thu, 17 May 2012 09:30:03 -0400 http://www.securityfocus.com/rss/index.shtml News, Infocus, Columns, Vulnerabilities, Bugtraq ... Thu, 17 May 2012 09:30:03 -0400 http://seclists.org/fulldisclosure/2012/May/171 <p>Posted by Adam Zabrocki on May 17</p>Dnia 2012-05-16, śro o godzinie 23:09 +0200, Tavis Ormandy pisze:<br> <br> Again I wasn&apos;t clear (mail sent from mobile phone so I was lazy to type<br> on this small keyboard), I was refering to VSYSCALL not VDSO. My<br> mistake ;p<br> <br> Best regards,<br> Adam<br> Thu, 17 May 2012 09:29:10 -0400 http://seclists.org/fulldisclosure/2012/May/170 <p>Posted by Adam Zabrocki on May 17</p>Hi Tavis,<br> <br> Yes this is stock kernels and yes you must believe it is so simple mistake ;)<br> All systems was installed as VM in default installation using official ISOs.<br> <br> And of course this is configuration mistake not kernel problem(!) - my mistake<br> if I wasn&apos;t clear in the write-up.<br> <br> Anyway Suse ISO which I used:<br> <br> $ md5sum /media/pi3/openSUSE-12.1-DVD-x86_64.iso <br> 4cfe8229111ef723ae7aa541fd2c87b7 /media/pi3/openSUSE-12.1-DVD-x86_64.iso<br> $ md5sum...<br> Thu, 17 May 2012 09:27:25 -0400 http://seclists.org/fulldisclosure/2012/May/169 <p>Posted by ddivulnalert on May 17</p>Title<br> -----<br> DDIVRT-2012-44 Epicor Returns Management SOAP-Based Blind SQL Injection<br> <br> Severity<br> --------<br> High<br> <br> Date Discovered<br> ---------------<br> April 12, 2012<br> <br> Discovered By<br> -------------<br> Digital Defense, Inc. Vulnerability Research Team<br> Credit: Chris Graham and r () b13$<br> <br> Vulnerability Description<br> -------------------------<br> Digital Defense, Inc. (DDI) has discovered a blind SQL injection vulnerability in the Epicor Returns Management <br> software SOAP...<br> Thu, 17 May 2012 09:25:53 -0400