SANS Database 7

SANS Database - Úvod  1  2  3  4  5  6  7  8

Poslední aktualizace v 06.07.2017 15:51:23

 

US CEO Says French Workers Have Three-Hour Work Day
US congress wants a word with ZTE, Huawei
US Department of Homeland Security Looking For a Few Good Drones
US DHS banking alert 
US DOJ Claims It Did Not Entrap Megaupload
US Educational Scores Not So Abysmal
US Election's Only VP Debate Tonight: Weigh In With Your Reactions
US Freezes Nuclear Power Plant Permits Because of Waste Issues
US Government Monitoring Associated Press Phone Records
US government wants security research on car-to-car nets
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
US Is Finally Cleaning Up Agent Orange In Vietnam
US ISPs commit to new cybersecurity measures
US Justice Dept. Sues eBay For Anti-Competitive Hiring Practices
US legislation to strengthen mobile data protection proposed
US Looks For Input On "The Next Big Things"
US Military Tested the Effects of a Nuclear Holocaust On Beer
US Mining Data Directly From 9 Silicon Valley Companies
US national vulnerability database hacked
US options exchange reopens after half-day outage
US parents quit Singapore inquest into son's death
US power grid the target of 'numerous and daily' cyber-attacks
US President Ford Dies 
US Presidential Debate #2 Tonight: Discuss Here
US software firm hacked for years after suing China
US Suspects Iran Was Behind a Wave of Cyberattacks
US warning reflects fears of Iranian cyberattack
USA Calling For the Extradition of Snowden
USB cleaning device for the masses
USB Storage Drive Loaded With Malware Shuts Down Power Plant
Use The Privilege
User Awareness and Education, (Sat, Jul 14th)
User Group Notice: July 11, 2012 Houston Area DB2 User Group meeting has been scheduled
User Group Reminder: This Wednesday (July 11, 2012) is the next meeting of the Houston Area DB2 User Group
User Help: Operations Manual
User Help: The User Manual
User questions new WindowsUpdate Fix 
Users Abandon Ship If Online Video Quality Is Not Up To Snuff, Says Study
Users give Facebook's privacy changes a thumbs down
Users still double clicking email attachments, MSJVM Removal Tool 1.0, Upcoming ISC Webcast 
Using daemonlogger as a Software Tap
Using ISA to help block VML exploit 
Using Security Tools to Compromize a Network
Using Solr/Lucene to Surface the Big Data of Social Media
Using the Center for Internet Security (CIS) Benchmarks to Support an Information Security Management System
Using Truth Serum To Confirm Insanity
USPS Discriminates Against 'Atheist' Merchandise
Utah breach may have compromised over 25,000 Social Security numbers
Utah: 750K more victims in health dept data breach
V$process, V$session: FULL OUTER Curiosity
Vacation Rental Property Scam 
Valve Blog Announces Dates For Steam Linux External Beta
Valve Officially Launches Steam For Linux
Vastly Improved Raspberry Pi Performance With Wayland
VBA and P-code
VBA Shellcode and Windows 10
VBS.Pub Worm, RTT Measurement Probes, ARIN in-addr.arpa, IE Exploits 
VCE: Driving the Velocity of Change within the IT industry
Vendors Take Note, Mark II, DHS Cyber Chief Departure 
Vendors: More Patch-Release Options Please, (Sat, Aug 4th)
Venezuela prosecutor to open probe over leaked recording
Verifying SSL/TLS certificates manually
Verisign Site Seal Update 
Veritas Exploit on the web 
VERITAS NetBackup (tm) Enterprise Server/Server 5.0 and 5.1 BO 
VERITAS NetBackup Vulnerability - remote 
Veritas pulls (some) patches for Backup Exec 
Veritas 'Sploits, MS05-002 PoCs, Phishin' through the hoops, Microsoft vs. Porn 
Verizon Data Breach Report Offers Scary Truths About Security
Verizon Ordered To Provide All Customer Data To NSA
VIA Unveils $79 Rock and $99 Paper ARM PCs
Victim of its own success and (ab)used by malwares
Victory For Apple In "Patent Trial of the Century," To the Tune of $1 Billion
Video Inpainting Software Deletes People From HD Video Footage
Virnetx Loses Court Battle To Cisco Over VPN Patent
Virtual Backup Challenges Enterprise IT
Virtual Bitlocker Containers
Virtual Machine Detection in Malware via Commercial Tools 
Virus Alphabet, War!, Port 3389 Spike, WinZip Issues 
Virus could black out nearly 250,000 PCs on Monday
Virus scanning recommendations for Enterprise computers (Revision 53)
Virus spreads from Asus Server 
Virus Tuesday: New Bagels, New Mytob. ; qmail pop3 64bit issues 
Virut Botnet Crippled in Multinational Takedown Effort
Visa Sued for Fines Stemming from Genesco Data Breach
Vista reviewed by Symantec 
Vista: better security [Y/N] ? 
Visual Studio 2005 Remote Code Exploit, Actively Being Exploited 
Visualization of Dasher worm 
VML exploits with OS version detection 
VML vuln being actively exploited 
vMotions a Killer App for 10GbE at Vonage
VMware Acquires Virsto To Enhance Virtual Storage Performance
VMWare Browser 
VMware Hybrid Cloud Plans: Time For Amazon Answer
VMware Patches DoS Vulnerability in Virtualization Software
VMWare Security Advisories VMSA-2016-0005
VMWare Security Advisory
VMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/VMSA-2012-0014.html, (Fri, Oct 5th)
VMware Security Bulletins
VMware security update
VMware VMSA-2015-0007.3 has been Re-released
VMware VMSA-2016-0002
VMware's SDN Dilemma: VXLAN or Nicira?
Voice Message Notifications Deliver Ransomware
Volatility Bot: Automated Memory Analysis
Volunteer Response 
Volunteer Response; OpenSSH issues; Bluetooth delay 
Vote On What the Very Large Telescope Observes
Voter Data: What the Candidates Know About You
Voting Machine Problem Reports Already Rolling In
VPN ban makes for nervy times behind Great Firewall
Vsmons.exe / Port 6112 / USBank phishing / MS04-22 Update 
vSphere 5.0 Hardening Guide Officially Released, (Mon, Jun 4th)
Vuln: 389 Directory Server CVE-2013-0312 Remote Denial of Service Vulnerability
Vuln: ActFax Server Multiple Remote Buffer Overflow Vulnerabilities
Vuln: activeCollab Chat Module Arbitrary PHP Code Execution Vulnerability
Vuln: Adobe Acrobat and Reader APSB13-15 Multiple Security Vulnerabilities
Vuln: Adobe Acrobat and Reader CVE-2013-0603 Remote Heap Based Buffer Overflow Vulnerability
Vuln: Adobe Acrobat and Reader CVE-2013-0604 Remote Heap Based Buffer Overflow Vulnerability
Vuln: Adobe Acrobat and Reader CVE-2013-0610 Remote Stack Based Buffer Overflow Vulnerability
Vuln: Adobe Acrobat and Reader CVE-2013-2730 Remote Buffer Overflow Vulnerability
Vuln: Adobe Flash Player and AIR APSB13-14 Multiple Memory Corruption Vulnerabilities
Vuln: Adobe Flash Player and AIR CVE-2012-5275 Buffer Overflow Vulnerability
Vuln: Adobe Flash Player and AIR CVE-2012-5279 Memory Corruption Vulnerability
Vuln: Adobe Flash Player and AIR CVE-2012-5280 Buffer Overflow Vulnerability
Vuln: Adobe Flash Player and AIR CVE-2013-0647 Memory Corruption Vulnerability
Vuln: Adobe Flash Player and AIR CVE-2013-1374 Use After Free Remote Code Execution Vulnerability
Vuln: Adobe Flash Player and AIR CVE-2013-3343 Remote Memory Corruption Vulnerability
Vuln: Adobe Reader Unspecified Remote Code Execution Vulnerability
Vuln: Anacrypt '.tuz' Configuraton File Information Disclosure Vulnerability
Vuln: Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
Vuln: Apache Struts 'ParameterInterceptor' Class OGNL (CVE-2011-3923) Security Bypass Vulnerability
Vuln: Apache Struts2 Skill Name Remote Code Execution Vulnerability
Vuln: Apache Subversion CVE-2013-1968 Remote Denial of Service Vulnerability
Vuln: Apache Tomcat CVE-2012-2733 Denial of Service Vulnerability
Vuln: Apache Tomcat CVE-2012-4431 Cross-Site Request Forgery Vulnerability
Vuln: Apache Tomcat CVE-2012-4534 Denial of Service Vulnerability
Vuln: Apache Tomcat DIGEST Authentication Multiple Security Weaknesses
Vuln: A-PDF All to MP3 Converter '.wav' File Remote Buffer Overflow Vulnerability
Vuln: Apple iOS User Space Stack Cookies CVE-2013-3951 Local Security Bypass Vulnerability
Vuln: Attachmate Reflection DLL Loading Arbitrary Code Execution Vulnerability
Vuln: BackupPC 'index.cgi' Multiple Cross Site Scripting Vulnerabilities
Vuln: Bind DynDB LDAP CVE-2012-3429 Package Remote Denial of Service Vulnerability
Vuln: Broadcom UPnP Stack 'SetConnectionType()' Function Format String Vulnerability
Vuln: Bugzilla Multiple Information Disclosure Vulnerabilities
Vuln: Call of Duty: Modern Warfare 3 Remote Denial of Service Vulnerability
Vuln: Cisco VPN Client for Windows CVE-2012-5429 Local Denial of Service Vulnerability
Vuln: CoDeSys Access Security Bypass Vulnerability
Vuln: CoolPDF Reader CVE-2012-4914 Remote Stack Buffer Overflow Vulnerability
Vuln: Coppermine Photo Gallery 'keywords' Field HTML Injection Vulnerability
Vuln: CryENGINE Remote Code Execution Vulnerability
Vuln: CyberLink PowerProducer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
Vuln: CyberLink StreamAuthor Insecure Library Loading Multiple Arbitrary Code Execution Vulnerabilities
Vuln: Cyclope Employee Surveillance Solution 'username' Parameter SQL Injection Vulnerability
Vuln: Django 'HttpRequest.get_host()' Information Disclosure Vulnerability
Vuln: Django Multiple Security Vulnerabilities
Vuln: DM FileManager 'album.php' Remote File Include Vulnerability
Vuln: Dnsmasq Multiple Remote Denial of Service Vulnerabilities
Vuln: Dokuwiki 'url' HTML Injection Vulnerability
Vuln: Drupal CDN Module Information Disclosure Vulnerability
Vuln: Drupal Core Multiple Access Bypass and Cross Site Scripting Vulnerabilities
Vuln: Drupal Faster Permissions Module Access Security Bypass Vulnerability
Vuln: Drupal Node Parameter Control Module Access Bypass Vulnerability
Vuln: Drupal Printer, email and PDF versions Cross Site Scripting Vulnerability
Vuln: EC Software Help & Manual 'ijl15.dll' DLL Loading Arbitrary Code Execution Vulnerability
Vuln: Effective File Search (EFS) DLL Loading Arbitrary Code Execution Vulnerability
Vuln: Elxis CMS Multiple Cross Site Scripting Vulnerabilities
Vuln: EMC AlphaStor CVE-2013-0930 Buffer Overflow Vulnerability
Vuln: EMC Avamar Backup Client Insecure File Permissions Vulnerability
Vuln: ERDAS ER Viewer 'ERM_convert_to_correct_webpath()' Function Stack Buffer Overflow Vulnerability
Vuln: FreeIPA CVE-2012-4546 Certificate Revocation List Security Vulnerability
Vuln: Gajim SQL Injection and Code Execution Vulnerabilities
Vuln: Ganglia Unspecified PHP Code Execution Vulnerability
Vuln: gdk-pixbuf 'read_bitmap_file_data()' Remote Integer Overflow Vulnerability
Vuln: GIMP CVE-2012-3402 Buffer Overflow Vulnerability
Vuln: GIMP Multiple Buffer Overflow Vulnerabilities
Vuln: GnuPG CVE-2012-6085 Multiple Remote Memory Corruption Vulnerabilities
Vuln: Google Chrome for Android Prior to 18.0.1025308 Multiple Security Vulnerabilities
Vuln: Google Chrome Prior to 15.0.874.102 Multiple Security Vulnerabilities
Vuln: Google Chrome Prior to 17.0.963.56 Multiple Security Vulnerabilities
Vuln: Google Chrome Prior to 17.0.963.65 Multiple Security Vulnerabilities
Vuln: Google Chrome Prior to 20.0.1132.57 Multiple Security Vulnerabilities
Vuln: HP Insight Diagnostics CVE-2013-3574 Remote Code Injection Vulnerability
Vuln: HP Intelligent Management Center 'FaultDownloadServlet' Information Disclosure Vulnerability
Vuln: HP Intelligent Management Center 'IctDownloadServlet' Information Disclosure Vulnerability
Vuln: HP Intelligent Management Center 'mibFileUpload' Servlet Remote Code Execution Vulnerability
Vuln: HT Editor File Open Remote Stack Buffer Overflow Vulnerability
Vuln: IBM WebSphere Application Server Administrative Access Security Bypass Vulnerability
Vuln: IBM WebSphere Application Server for z/OS Multiple Security Vulnerabilities
Vuln: ICCLIB CVE-2012-4405 Out-of-Bounds Memory Write Remote Code Execution Vulnerability
Vuln: Intel CPU Hardware Local Privilege Escalation Vulnerability
Vuln: IRCD-Hybrid 'try_parse_v4_netmask()' Denial of Service Vulnerability
Vuln: ISC BIND 9 'libdns' Remote Denial of Service Vulnerability
Vuln: ISC DHCP IPv6 Lease Expiration Handling Denial of Service Vulnerability
Vuln: JBoss Enterprise Application Platform Cross Site Request Forgery Vulnerability
Vuln: JBoss Enterprise BRMS Platform JGroups Diagnostics Service Information Disclosure Vulnerability
Vuln: JBoss 'twiddle.sh' Local Information Disclosure Vulnerability
Vuln: Joomla! JCE Component Multiple Directory Traversal Vulnerabilities
Vuln: jPlayer 'Jplayer.swf' Script 'id' Parameter Cross Site Scripting Vulnerability
Vuln: JW Player 'logo.link' Parameter Cross Site Scripting Vulnerability
Vuln: JW Player Multiple Cross Site Scripting Vulnerabilities
Vuln: KDE Plasma Paste Applet Local Password Generation Vulnerability
Vuln: libgdata SSL Certificate Validation Security Bypass Vulnerability
Vuln: LibRaw CVE-2013-2126 Multiple Memory Corruption Vulnerabilities
Vuln: librdmacm 'ib_acm' Service Port Connection Security Vulnerability
Vuln: LibreOffice and OpenOffice Multiple Heap Based Buffer Overflow Vulnerabilities
Vuln: libssh Multiple Buffer Overflow and Denial of Service Vulnerabilities
Vuln: libupnp Multiple Buffer Overflow Vulnerabilities
Vuln: libvirt CVE-2013-1766 Local Security Bypass Vulnerability
Vuln: libxml2 CVE-2012-2807 Multiple Integer Overflow Vulnerabilities
Vuln: libxml2 Hash Collision Denial Of Service Vulnerability
Vuln: lighttpd 'http_request_split_value()' Function Remote Denial of Service Vulnerability
Vuln: Linux GNU Debugger 'debug_gdb_scripts' Loading Arbitrary Code Execution Vulnerability
Vuln: Linux Kernel CVE-2013-0914 Local Information Disclosure Vulnerability
Vuln: Linux Kernel CVE-2013-1763 Local Privilege Escalation Vulnerability
Vuln: Linux Kernel CVE-2013-1826 NULL Pointer Dereference Local Denial of Service Vulnerability
Vuln: Linux Kernel CVE-2013-1827 Multiple NULL Pointer Dereference Local Denial of Service Vulnerability
Vuln: Linux Kernel CVE-2013-3228 Local Information Disclosure Vulnerability
Vuln: Linux Kernel CVE-2013-3232 Local Information Disclosure Vulnerability
Vuln: Linux Kernel CVE-2013-3234 Local Information Disclosure Vulnerability
Vuln: Linux Kernel EXT4 'ext4_fill_flex_info()' Local Denial of Service Vulnerability
Vuln: Linux Kernel ext4 Local Denial of Service Vulnerability
Vuln: Linux Kernel hypervkvpd 'hv_kvp_daemon.c' Netlink Packet Processing Denial of Service Vulnerability
Vuln: Linux Kernel KVM CVE-2013-1798 Denial of Service Vulnerability
Vuln: Linux Kernel 'mmc_ioctl_cdrom_read_data()' Function Local Information Disclosure Vulnerability
Vuln: Linux Kernel 'MSR' Driver Local Privilege Escalation Vulnerability
Vuln: Linux Kernel Netlink Interface CVE-2013-1873 Multiple Information Disclosure Vulnerabilities
Vuln: Linux Kernel 'request_module() OOM' Local Denial Of Service Vulnerability
Vuln: Linux Kernel 'tg3.c' Integer Overflow Vulnerability
Vuln: Linux Kernel XFS Filesystem 'fs/xfs/xfs_acl.c' Integer Overflow Vulnerability
Vuln: Mahara Multiple Cross Site Scripting and HTML Injection Vulnerabilities
Vuln: MantisBT 'match_type' Parameter Cross Site Scripting Vulnerability
Vuln: MantisBT SOAP API Security Bypass Vulnerability
Vuln: MediaWiki CVE-2012-5391 Session Fixation Vulnerability
Vuln: Microsoft Internet Explorer CVE-2012-1876 Col Element Remote Code Execution Vulnerability
Vuln: Microsoft Internet Explorer CVE-2013-1309 Use-After-Free Remote Code Execution Vulnerability
Vuln: Microsoft Internet Explorer CVE-2013-1311 Use-After-Free Remote Code Execution Vulnerability
Vuln: Microsoft Internet Explorer JSON Array CVE-2013-1297 Information Disclosure Vulnerability
Vuln: Microsoft Internet Explorer Time Element Uninitialized Memory Remote Code Execution Vulnerability
Vuln: Microsoft Windows CVE-2013-2554 Security Bypass Vulnerability
Vuln: Microsoft Windows CVE-2013-2556 ASLR Security Bypass Vulnerability
Vuln: Microsoft Windows Kernel 'Win32k.sys' Integer Overflow Privilege Escalation Vulnerability
Vuln: Microsoft Windows Kernel 'Win32k.sys' Local Privilege Escalation Vulnerability
Vuln: Microsoft Windows Object Linking and Embedding (OLE) Automation Remote Code Execution Vulnerability
Vuln: Microsoft Windows 'Win32k.sys' CVE-2013-1271 Local Privilege Escalation Vulnerability
Vuln: Microsoft Windows 'Win32k.sys' CVE-2013-1274 Local Privilege Escalation Vulnerability
Vuln: MIT Kerberos 5 kadmind CVE-2002-2443 Remote Denial of Service Vulnerability
Vuln: ModSecurity POST Parameters Security Bypass Vulnerability
Vuln: Monkey HTTP Daemon Multiple Denial of Service Vulnerabilities
Vuln: Movable Type Multiple SQL Injection and Command Injection Vulnerabilities
Vuln: Mozilla Firefox and SeaMonkey CVE-2013-0751 Information Disclosure Vulnerability
Vuln: Mozilla Firefox and Thunderbird CVE-2013-0801 Memory Corruption Vulnerability
Vuln: Mozilla Firefox and Thunderbird CVE-2013-1678 Memory Corruption Vulnerability
Vuln: Mozilla Firefox and Thunderbird CVE-2013-1680 Use After Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox and Thunderbird CVE-2013-1681 Use After Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox 'app_tmp' Directory Insecure Permissions Vulnerability
Vuln: Mozilla Firefox CVE-2012-1950 Address Bar URI Spoofing Vulnerability
Vuln: Mozilla Firefox CVE-2012-3979 '__android_log_print' Remote Code Execution Vulnerability
Vuln: Mozilla Firefox CVE-2012-4210 Style Inspector Remote Code Execution Vulnerability
Vuln: Mozilla Firefox CVE-2012-5837 Developer Toolbar Cross Site Scripting Vulnerability
Vuln: Mozilla Firefox, SeaMonkey, and Thunderbird Information Disclosure Vulnerability
Vuln: Mozilla Firefox/SeaMonkey CVE-2013-0794 Information Disclosure Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1959 Security Bypass Vulnerability
Vuln: Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1961 Clickjacking Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1972 Use-After-Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1973 Use-After-Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3959 Use-After-Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3962 Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3966 Multiple Memory Corruption Vulnerabilities
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3967 Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3970 Use-After-Free Memory CorruptionVulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3971 Multiple Memory Corruption Vulnerabilities
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3978 Security Bypass Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4179 Use After Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5836 Denial of Service Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-0757 Security Bypass Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-0761 Use After Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-0763 Use After Free Memory Corruption Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-0771 Heap Buffer Overflow Vulnerability
Vuln: Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2012-91 through -106 Multiple Vulnerabilities
Vuln: M-Player '.mp3' File Denial Of Service Vulnerability
Vuln: Multiple Asterisk Products CVE-2012-5977 Denial of Service Vulnerability
Vuln: Multiple Honeywell Products 'HscRemoteDeploy.dll' Activex Remote Code Execution Vulnerability
Vuln: Multiple Horde Products Multiple Unspecified HTML Injection Vulnerabilities
Vuln: Multiple Products Cookie Authentication Bypass Vulnerability
Vuln: Multiple SonicWALL Products CVE-2013-1359 Authentication Bypass Vulnerability
Vuln: Multiple Symantec Products CAB Files Handling Memory Corruption Vulnerability
Vuln: Mutiny CVE-2012-3001 Command Injection Vulnerability
Vuln: MySQL MyISAM Table Symbolic Link CVE-2012-4452 Local Privilege Escalation Vulnerability
Vuln: Naxsi 'naxsi_unescape_uri()' Function Security Bypass Vulnerability
Vuln: NetIQ Privileged User Manager 'ldapagnt_eval()' Remote Code Execution Vulnerability
Vuln: Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
Vuln: nfs-utils 'rpc.gssd' DNS Spoofing Vulnerability
Vuln: nspluginwrapper Private Browsing Flash Player Storage Local Information Disclosure Vulnerability
Vuln: NTR ActiveX control Buffer Overflow and Remote Code Execution Vulnerabilities
Vuln: NVIDIA Graphics Driver for Windows CVE-2013-0109 Local Privilege Escalation Vulnerability
Vuln: NVIDIA Graphics Driver for Windows CVE-2013-0110 Local Privilege Escalation Vulnerability
Vuln: NVIDIA Graphics Driver for Windows CVE-2013-0111 Local Privilege Escalation Vulnerability
Vuln: Open Handset Alliance Android Dailer Remote Denial of Service Vulnerability
Vuln: OpenCart 'filemanager.php' Multiple Directory Traversal Vulnerabilities
Vuln: OpenPLI Shell Command Execution and Multiple HTML Injection Vulnerabilities
Vuln: OpenStack Nova CVE-2012-3361 Memory Corruption Vulnerability
Vuln: OpenStack Nova CVE-2012-3447 Memory Corruption Vulnerability
Vuln: OpenVPN 'openvpn_decrypt()' Function Information Disclosure Vulnerability
Vuln: Oracle Business Transaction Management Server Arbitrary File Write Vulnerability
Vuln: Oracle Database Mobile/Lite Server CVE-2013-0363 Remote Vulnerability
Vuln: Oracle E-Business Suite CVE-2012-3190 Remote Security Vulnerability
Vuln: Oracle E-Business Suite CVE-2013-0376 Remote Security Vulnerability
Vuln: Oracle Java Runtime Environment CVE-2012-1682 Remote Code Execution Vulnerability
Vuln: Oracle Java Runtime Environment CVE-2013-2423 Security Bypass Vulnerability
Vuln: Oracle Java SE CVE-2012-0506 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2012-0547 Remote Java Runtime Environment Weakness
Vuln: Oracle Java SE CVE-2012-1533 Remote Code Execution Vulnerability
Vuln: Oracle Java SE CVE-2012-1541 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2012-1713 Remote Code Execution Vulnerability
Vuln: Oracle Java SE CVE-2012-5070 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2012-5074 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2012-5085 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2012-5088 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2013-0351 Java Runtime Environment Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2013-0409 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2013-0423 Java Runtime Environment Remote Security Vulnerability
Vuln: Oracle Java SE CVE-2013-0426 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2013-0433 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2013-0443 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2013-1489 Remote Java Runtime Environment Vulnerability
Vuln: Oracle Java SE CVE-2013-2429 Remote Java Runtime Environment Vulnerability
Vuln: Oracle JD Edwards EnterpriseOne Tools CVE-2012-1678 Remote Security Vulnerability
Vuln: Oracle MySQL CVE-2012-2122 User Login Security Bypass Vulnerability
Vuln: Oracle MySQL CVE-2013-1531 Remote MySQL Server Vulnerability
Vuln: Oracle MySQL CVE-2013-1552 Remote MySQL Server Vulnerability
Vuln: Oracle MySQL CVE-2013-2375 Remote MySQL Server Vulnerability
Vuln: Oracle MySQL Server CVE-2013-0367 Remote Security Vulnerability
Vuln: Oracle MySQL Server CVE-2013-0389 Remote Security Vulnerability
Vuln: Oracle MySQL Server CVE-2013-1544 Remote Security Vulnerability
Vuln: Oracle MySQL Server Heap Overflow Vulnerability
Vuln: Oracle Outside In Technology CVE-2012-1768 Remote Code Execution Vulnerability
Vuln: Oracle Outside In Technology CVE-2012-3106 Remote Code Execution Vulnerability
Vuln: Oracle Solaris CVE-2012-3187 Local Security Vulnerability
Vuln: Oracle Solaris CVE-2012-3209 Local Security Vulnerability
Vuln: Oracle Solaris CVE-2012-3211 Local Security Vulnerability
Vuln: Oracle Sun Products Suite CVE-2012-3126 Local Solaris Cluster Vulnerability
Vuln: OTRS 'Body' Field HTML Injection Vulnerability
Vuln: Perl Config::IniFiles Module Insecure Temporary File Creation Vulnerability
Vuln: Perl Dancer.pm CVE-2012-5572 HTTP Header Injection Vulnerability
Vuln: PHP '_php_stream_scandir()' Buffer Overflow Vulnerability
Vuln: PHP 'header()' HTTP Header Injection Vulnerability
Vuln: PHP 'main/SAPI.c' CVE-2012-4388 HTTP Header Injection Vulnerability
Vuln: phpMyAdmin 'server_sync.php' Backdoor Vulnerability
Vuln: Pidgin 'mxit_show_message()' Function Stack-Based Buffer Overflow Vulnerability
Vuln: Pixman CVE-2013-1591 Stack-Based Buffer Overflow Vulnerability
Vuln: PostgreSQL 'SECURITY DEFINER' and 'SET' Attributes Remote Denial of Service Vulnerability
Vuln: Privoxy Proxy Authentication Information Disclosure Vulnerabilities
Vuln: ProFTPD Race Condition Local Privilege Escalation Vulnerability
Vuln: Python CGIHTTPServer Module Information Disclosure Vulnerability
Vuln: Python pip CVE-2013-1888 Insecure Temporary File Creation Vulnerability
Vuln: QEMU KVM QXL Local Denial of Service Vulnerability
Vuln: QEMU KVM 'virtio-blk' Driver Local Privilege Escalation Vulnerability
Vuln: QNX Qconn Remote Arbitrary Command Execution Vulnerability
Vuln: Qt 'QSslSocket::sslErrors()' Certificate Validation Security Weakness
Vuln: Quick Post Widget Plugin Cross Site Scripting and Cross Site Request Forgery Vulnerabilities
Vuln: Rack Multiple Denial of Service Vulnerabilities
Vuln: Rack 'Rack::File()' Insecure Temporary File Creation Vulnerability
Vuln: Rack Timing Attack Remote Code Execution Vulnerability
Vuln: Real Networks RealPlayer Write Access Violation Arbitrary Code Execution Vulnerability
Vuln: Red Hat Certificate System CVE-2013-1885 Multiple Cross Site Scripting Vulnerabilities
Vuln: Red Hat Certificate System CVE-2013-1886 Format String Vulnerability
Vuln: Resource Hacker Heap Based Buffer Overflow Vulnerability
Vuln: RETIRED: Adobe Reader and Acrobat APSB13-15 Prenotification Multiple Vulnerabilities
Vuln: RETIRED: Apple QuickTime Prior To 7.7.3 Multiple Arbitrary Code Execution Vulnerabilities
Vuln: RETIRED: BackupPC 'RestoreFile.pm' Cross Site Scripting Vulnerability
Vuln: RETIRED: MantisBT SOAP API CVE-2012-2691 Security Bypass Vulnerability
Vuln: RETIRED: Microsoft August 2012 Advance Notification Multiple Vulnerabilities
Vuln: RETIRED: Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2012-88/89 Multiple Vulnerabilities
Vuln: RETIRED: Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2013-01 through -20 Multiple Vulnerabilities
Vuln: RETIRED: Open Realty 'select_users_lang' Parameter Local File Include Vulnerability
Vuln: RETIRED: Oracle Java Runtime Environment Multiple Security Vulnerabilities
Vuln: RETIRED:Microsoft Internet Explorer CVE-2013-1313 Use-After-Free Remote Code Execution Vulnerability
Vuln: Ruby '#to_s' Method Incomplete Fix Security Bypass Vulnerability
Vuln: Ruby multi_xml CVE-2013-0175 Remote Arbitrary Command Execution Vulnerability
Vuln: Ruby Phusion Passenger Gem CVE-2013-2119 Insecure Temporary File Creation Vulnerability
Vuln: RubyGems SSL Certificate Validation Security Bypass Vulnerability
Vuln: RubyGems 'thumbshooter' Remote Command Execution Vulnerability
Vuln: Samba CVE-2013-0172 Remote Security Bypass Vulnerability
Vuln: Samba SWAT Cross Site Request Forgery and Clickjacking Vulnerabilities
Vuln: Samsung Kies Air Denial of Service and Security Bypass Vulnerabilities
Vuln: Serva CVE-2013-0145 Remote Buffer Overflow Vulnerability
Vuln: sflog! 'section' Parameter Local File Include Vulnerability
Vuln: sflog! 'uploadContent.inc.php' Arbitrary File Upload Vulnerability
Vuln: Schneider Electric Accutech Manager Heap Buffer Overflow Vulnerability
Vuln: Siemens SIMATIC WinCC Multiple Security Vulnerabilities
Vuln: Spree 'spree_auth_devise' Security Bypass Vulnerability
Vuln: SquidClamav URL Parsing Denial of Service Vulnerability
Vuln: Symantec Messaging Gateway CVE-2012-0308 Cross Site Request Forgery Vulnerability
Vuln: TCExam Prior 11.3.008 Multiple SQL Injection Vulnerabilities
Vuln: TeeChart Professional ActiveX Remote Integer Overflow Vulnerability
Vuln: Telepathy-Gabble CVE-2013-1769 NULL Pointer Dereference Denial of Service Vulnerability
Vuln: TomatoCart 'json.php' Security Bypass Vulnerability
Vuln: Tor Remote Denial of Service Vulnerability
Vuln: TrouSerS CVE-2012-0698 Denial Of Service Vulnerability
Vuln: Twig Templates Directory Traversal Vulnerability
Vuln: TYPO3 Core TYPO3-CORE-SA-2012-001 Multiple Remote Security Vulnerabilities
Vuln: Ushahidi Multiple Security Vulnerabilities
Vuln: Vanilla Forums AboutMe Plugin HTML Injection Vulnerabilities
Vuln: Vanilla Forums LatestComment Plugin Discussion Title HTML Injection Vulnerability
Vuln: Vino CVE-2012-4429 Information Disclosure Vulnerability
Vuln: VLC Media Player HTML Subtitle Multiple Buffer Overflow Vulnerabilities
Vuln: VMware OVF Tool OVF File CVE-2012-3569 Format String Vulnerability
Vuln: VxWorks CVE-2013-0715 Remote Denial of Service Vulnerability
Vuln: VxWorks SSH Server CVE-2013-0711 Denial of Service Vulnerability
Vuln: VxWorks SSH Server CVE-2013-0712 Denial of Service Vulnerability
Vuln: VxWorks Web Server CVE-2013-0716 Remote Denial of Service Vulnerability
Vuln: WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
Vuln: WebKit Cross Site Scripting Filter 'XSSAuditor.cpp' Security Bypass Vulnerability
Vuln: WeeChat Color Decoding Heap Buffer Overflow Vulnerability
Vuln: WellinTech KingView CVE-2012-4711 Memory Corruption Vulnerability
Vuln: Wind River Systems VxWorks CVE-2013-0713 Denial of Service Vulnerability
Vuln: Wind River Systems VxWorks CVE-2013-0714 Denial of Service Vulnerability
Vuln: Wireshark ASN.1 BER Dissector CVE-2013-3556 Denial of Service Vulnerability
Vuln: Wireshark Buffer Underflow and Denial of Service Vulnerabilities
Vuln: Wireshark DCP ETSI Dissector NULL Pointer Dereference Denial of Service Vulnerability
Vuln: Wireshark DTLS Dissector Denial of Service Vulnerability
Vuln: Wireshark DTN Dissector Denial of Service Vulnerability
Vuln: Wireshark ETCH Dissector Denial of Service Vulnerability
Vuln: Wireshark Information Disclosure and Denial of Service Vulnerabilities
Vuln: Wireshark MS-MMC Dissector Denial of Service Vulnerability
Vuln: Wireshark NTLMSSP Dissector Buffer Overflow Vulnerability
Vuln: Wireshark PER Dissector Denial of Service Vulnerability
Vuln: Wireshark Websocket Dissector Denial of Service Vulnerability
Vuln: Wireshark Websocket Dissector 'packet-websocket.c' Denial of Service Vulnerability
Vuln: WordPress BuddyPress 'page' Parameter SQL Injection Vulnerability
Vuln: WordPress Cimy User Manager Plugin Arbitrary File Disclosure Vulnerability
Vuln: WordPress FireStorm Professional Real Estate Plugin 'id' Parameter SQL Injection Vulnerability
Vuln: WordPress User Photo '$_SERVER['REQUEST_URI']' Parameter Cross Site Scripting Vulnerability
Vuln: WordPress WP Cleanfix Plugin Cross Site Request Forgery Vulnerability
Vuln: WordPress WP cleanfix Plugin 'eval()' Function Cross Site Request Forgery Vulnerability
Vuln: X.Org libX11 CVE-2013-1981 Multiple Remote Code Execution Vulnerabilities
Vuln: X.Org libX11 CVE-2013-1997 Multiple Remote Code Execution Vulnerabilities
Vuln: X.Org libX11 CVE-2013-2004 Multiple Denial of Service Vulnerabilities
Vuln: X.Org libXfixes 'XFixesGetCursorImage()' Function Remote Code Execution Vulnerability
Vuln: X.Org libXtst CVE-2013-2063 Remote Code Execution Vulnerability
Vuln: X.Org libXxf86dga CVE-2013-1991 Multiple Remote Code Execution Vulnerabilities
Vuln: X.Org libXxf86dga CVE-2013-2000 Multiple Remote Code Execution Vulnerabilities
Vuln: X.Org X11 File Enumeration Information Disclosure Vulnerability
Vuln: Xen 'ELF' Parser Multiple Security Vulnerabilities
Vuln: Xen PV Domain Builder Kernel Decompression Local Denial Of Service Vulnerability
Vuln: Xfig and Transfig '.fig' File Buffer Overflow Vulnerability
Vuln: YUI 'SWF' File Unspecified Security Vulnerability
Vuln: ZEN Load Balancer Multiple Security Vulnerabilities
Vuln: ZeroClipboard 'ZeroClipboard10.swf' Cross Site Scripting Vulnerability
Vulnerabilities in L-Soft's LISTSERV and Microsoft's Visual Studio 
Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution (913433) 
Vulnerabilities in phpMyAdmin, Dell's TrueMobile 2300 Wireless Router and couple of PoC exploits. 
Vulnerabilities in RFID-enabled credit cards 
Vulnerabilities in Symantec Products, Dabber Worm, Empty .zip File Attachments 
Vulnerability Assessment Program - Discussions, (Sat, May 5th)
Vulnerability Exploit for Snow Leopard, (Sat, May 5th)
Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (913580) 
Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (916803) 
Vulnerability in proprietary NVIDIA driver for Linux
Vulnerability in tcpdump, Increase in UDP/1027 activity, Save Your Ship article 
w00tw00t 
W32.Netsky.Q@mm Code indicates a DoS attack 
W32/Feebs again 
W32/HLLP.Phillis.bq - Early release of McAfee DAT file 
Walgreens To Build First Self-Powered Retail Store
Wal-Mart To Join Amazon In Providing In-Store Locker Service
Want To Buy a Used Spaceport?
Wanted: Hackers For Large-Scale Attacks On American Banks
Warp Drive Might Be Less Impossible Than Previously Thought
Was the Brazilian version of Google hijacked two days ago?
Wash. officials say state courts office was hacked
Washington's Exploding Manholes Explained?
Water Bottle Fills Itself From the Air
Watchdog "Not Ready" To Probe Cookie Complaints
WD Builds High-Capacity, Helium-Filled HDDs
WD Explains Its Windows-Only Software-Based SSHD Tech
We Didn't Need Google's Schmidt To Tell Us Android and Chrome Wouldn't Merge
We Gonna Do What They Say Can't Be Done
We The People</em> Petition Signature Requirement Bumped To 100,000
Weak Passwords Still Subvert IT Security
Weakened password hashing found in Cisco devices
Web attacks use smart redirection to evade URL security scanners
Web based GDI Vulnerability Scanner; Yet even more fun with bots; Spybot.Worm and Gaobot; MSN Chat access troubles 
Web Log Analysis and Defense with Mod_Rewrite
WebCalendar Exploitation 
Webcast archive available 
WEBDAV Exploits on the rise 
Website of North Korea human rights group also hacked
Website Pitches Scientific Solutions In Search of Problems
Website vulnerabilities fall, but hackers become more skilled
Website with Malware 
Week of Oracle 0-Day 
Week of Oracle bugs cancelled 
Weekend blues 
Weekend Predictions. 
Weekend Vulnerability Roundup 
Weev gets 41 months in prison for exposing iPad strokers' privates
Welcome New Users; SANSFIRE; Webcast Date Change; Emerging Threats 
Well, it has always worked well, even in Production . . . until just recently.
Wells Fargo website hit by access issues amid cyber threats
We're Phull... Article about Bank Fraud. Google Strangeness. SSH Probe Reveals Big-Time Hack. 
WFTPD Patch available, Dell Open Manager vulnerability 
WFTPD unpatched exploit and potential DDoS against anti-spyware forums 
What Appsec can learn from Devops
What are my plans for the IOD 2012 Conference next week in Las Vegas
What Are the Unwritten Rules of Deleting Code?
What are you Concerned the Most in 2016?
What are YOU doing to give back to the security community?
What are your 2017 infosec predictions?
What Birds Know About Fractal Geometry
What can I say?
What can IT learn from CE?
What Can You Find Out From Metadata?
What crime is this? 
What do the bad guys do with WMF? 
What do you do Matt?
What Does a Pentest Look Like?
What Early Software Was Influential Enough To Deserve Acclaim?
What Happened To Diaspora, the Facebook Killer? It's Complicated
What Happens To Google Employees When They Die?
What I should have said today at IDUG about EXPLAIN and DB2 10 for z/OS
What if..... 
What I'm reading today 
What is Cloud? Infrastructure as a Service
What is Cloud? Platform as a Service
What is Cloud? Software as a Service
What is DB2 for z/OS Accounting Class 2 Not Accounted Time? - - A follow-up
What is Normal? Fake RedHat Advisory; JPEG Repair Utility 
What is the purpose of canonical data model?
What is this "/smoke/" about?
What should I do with these gift cards? 
What Signs Are You Missing?
What the new IBM PureData System for Analytics N2001 could do for the DB2 Analytics Accelerator
What To Do After You Fire a Bad Sysadmin Or Developer
What To Do When an Advised BIOS Upgrade Is Bad?
What To Do With Those First Generation Photo Frames?
What to watch out For on Election Day, (Tue, Nov 6th)
What to watch with your FIM?
What WAN Optimization Can Teach SDN about Tunneling
What Was Old is New Again: Honeypots!
What will 2006 have in store? 
What will the big security stories of 2007 be? 
What You Can Do About the Phone Unlocking Fiasco
What You Need To Know About Phone Unlocking
What? No URL? 
What’s the point of application pen testing?
Whatever Happened to tmUnblock.cgi ("Moon Worm")
What's a super.proxy.scanner and why is it in my logs? 
What's Cool at #MC13LV and Why You Should Care
What's important on your network?, (Sun, Nov 4th)
What's In Store For 2004! 
What's in your DB2 for z/OS library?
What�s Running on Your Network?
What's the situation this week for Neutrino and Angler EK?
What's the threat? And who is noticing it? Nyxem_e versus CME 508 
What's up on Port 139? 
What's up with Oracle and Sun?
When encoding saves the day
When Google Got Flu Wrong
When Hotel Alarms Sound, (Fri, Jun 14th)
When Hunting BeEF, Yara rules (Part 2)
When Hunting BeEF, Yara rules.
When solid state drives should be part of your enterprise storage strategy
Where are all of the articles? 
Where does all the data come from? 
Where Have All the Gadgets Gone?
Where the Candidates Stand On Net Neutrality
Which Debian-based Linux distributions work best for me and why
While working for spies, Snowden was secretly prolific online
White House launches coordinated effort to battle botnets
White House Pulls Down TSA Petition
White House pushes for stalled cybersecurity bill
White House raises concerns over CISPA bill
White House review reportedly clears Huawei of spy charges
White House said to plan executive order on cybersecurity
White House threatens veto of CISPA bill
White House: Use Metric If You Want, We Don't Care
White House-ordered review found no evidence of Huawei spying: sources
Who Holds the Keys?
Who is' your friend! 
Who needs .info/.biz, anyway ? ; Cisco IPV6 vuln ; NIST minimum security requirements 
Who ya gonna contact?, (Sun, Aug 26th)
WHO: Intellectual Property Claims Hindering Research On Deadly Novel Coronavirus
Whole Rack Servers
Who's Attacking Me?
Who's tracking phone calls that target your computer? Stay Tuned to the ISC, (Sun, Apr 29th)
WHSmith Putting DRM In EBooks Without Permission From the Authors
Why America Is Losing the War Against China's Hacker Spies
Why America's School "Lag" Has Never Mattered
Why Apple Is Suing Every Android Manufacturer In Sight
Why are Syrian hackers targeting Western media Twitter accounts?
Why Bad Directors Aren't Thrown Out
Why Big Data Could Sink Europe's 'Right To Be Forgotten'
Why Can't We Be Friends?
Why Corporate File Sharing Services Can't Compete
Why DOJ Didn't Need a "Super Search Warrant" To Snoop On Fox News' E-mail
Why Everyone Gets It Wrong About BYOD
Why I Hate Synonyms, Part II: NON-EXISTENT Issues
Why I think you should try Bro, (Mon, Feb 25th)
Why Iron Dome Might Only Work For Israel
WHY IT MATTERS: Cybersecurity
Why It's Bad That Smartphones Have Banished Boredom
Why JavaScript Is the New Perl
Why Mars Is Not the Limit For Human Space Flight
Why Microsoft Got Into the Console Business
Why Microsoft Office For iOS Will Likely Never See the Light of Day
Why Ray Kurzweil's Google Project May Be Doomed To Fail
Why risk management can succeed in IT
Why shy away from Volunteering Opportunities
Why Social Media is not CNN or BBC or The Times of Lithuania
Why Ultrabooks Are Falling Well Short of Intel's Targets
Why Users Fall For Ransomware
Why We'll Never Meet Aliens
Why Working Remotely Needs To Make a Comeback
Why Worms In the Toilet Might Be a Good Idea
Why Would a Mouse Need To Connect To the Internet?
Why Your Next Phone Will Include Biometric Security
wicd Local Privilege Esclation Exploit
Widespread Compromise Of Yahoo-Backed Email In New Zealand
Widespread Routing Outages 
Widespread use of RPC DCOM Exploit 
WiFi Device Driver Issues 
Wi-Fi Enabled Digital Cameras Easily Exploitable
WiFi Still Remains a Good Attack Vector
Wi-Fi Worm Rumors 
WikiLeaks Party Launching This Week
Wikileaks Releases Docs Before Trial of TPB Founder Warg
WikiLeaks' secrets weren't, says former MI5 chief
WikiLeaks to publish security think tank emails (Reuters)
Wikimedia Foundation Launches Wikivoyage
Wikipedia Scandal: High Profile Users Allegedly Involved In Paid-Editing
Will Developers Finally Start Coding On the iPad?
Will Legitimacy Spoil Bitcoin?
Will Obama preside over the coming of Big Brother?
Will the <em>Star Citizen</em> Project Fund Linux and Mac Ports For CryENGINE 3?
Will Your Next iPhone Be Built By Robots?
Willpower
Wilma Lessons Learned 
Win XP SP 2 and You 
Winamp 5.x Remote Code Execution via Playlists 
Winamp buffer overflow 
Winamp Vulnerability / IFrame - more info / Following the Bouncing Malware - IV 
Window Injection Vulnerability in Browsers/Request for Specific UDP Fragment Data 
Window Size 55808 packets 
Windows "Atom Bombing" Attack
Windows 0 day exploit? ; Yet another trojan; .US resolution response; How to identify when your DNS is not poisoned; and a last minute query tcp port 7393 
Windows 10 and System Protection for DATA Default is OFF
Windows 10 Anniversary Update Available
Windows 7 Still Being Sold On Up To 93% of British PCs
Windows 8 Defeats 85% of Malware Detected In the Past 6 Months
Windows 8 Changes Host File Blocking
Windows 8 Security: What's New
Windows 8 will require immediate activation
Windows 98 support extended. Reports of SQL Slammer, Solaris TTYPROMPT compromises 
Windows Alternate Data Streams Revisited 
Windows Blue 9364 Screenshots Show Feature Enhancements
Windows buffer overflow protection 
Windows Command-Line Kung Fu with WMIC 
Windows Defender expires today 
Windows Events log for IR/Forensics ,Part 1
Windows Events log for IR/Forensics ,Part 2
Windows Firewall Article; Hardware Firewall; Follow up on Previous Diaries 
Windows HIDS; Port 80, IP-hopping scan;Why old exploits are still popular; A Simple Phishing Investigation Tip 
Windows local privilege escalation - Windows access control 
Windows Media Player - ASX Playlist Buffer Overflow 
Windows Phone 8 Users Hit Some Snags
Windows Phone Actually Gaining Market Share In Some Countries
Windows RT Jailbreak Tool Released
Windows Service Accounts - Why They're Evil and Why Pentesters Love them!
Windows Service Trusted Path Privilege Escalation
Windows Source Code; How to Detect ASN.1 Exploits 
Windows Vista Firewall 
Windows Vista security patches 
Windows WMIObjectBroker 0-Day Exploit 
Windows XP SP2 Experience Forum / Exchange 5.5 Security Bulletin / Mac OS X Bulletins 
Windows XP SP2 Patch released; New phpBB Release; Apple Java Update; Wireless Standards 
Windows XP Support Extended 
WinGate HTTP proxy vulnerability, remote DoS & Code Execution 
WinGate Update 
Winners of Bonus Points from Yesterday’s FTBM 
WinRAR and RAR 3.51 Released 
WINS increase, UDP Mystery Solved(?), Black Tuesday Teaser 
WINS Server Vulnerability - Password Aging 
winsnort defaced - use caution 
Winternals/SysInternals acquired by Microsoft 
WinZip 10.0 build 7245 released 
WinZip Vulnerabilities Highlight User Threat 
Wipe the drive! Stealthy Malware Persistence - Part 2, (Thu, Mar 14th)
Wipe the drive! Stealthy Malware Persistence - Part 4, (Fri, Mar 22nd)
Wipe the drive! Stealthy Malware Persistence Mechanism - Part 1, (Wed, Mar 13th)
Wireless security? 
Wireless Thoughts - Part II; Netgear Vulnerabilties;Phishing Creativity 
Wireshark (ex Ethereal) multiple vulnerabilities 
Wireshark 1.10.0rc2 is now available http://www.wireshark.org/download.html, (Thu, May 23rd)
Wireshark Fixes Several Bugs and Vulnerabilities
Wireshark releases v1.8.5 and 1.6.13 - http://www.wireshark.org/download.html and http://www.wireshark.org/docs/relnotes/, (Wed, Jan 30th)
Wireshark Vulnerability 
With Customers, Emotion, not Reason, the Key to Buying Decisions
With Every Patch Tuesday there is a Black Wednesday, Juniper Update, COAST (adware-spyware) is toast, Virus Spreading through MSN?, Comcast downtime 
With troops and techies, U.S. prepares for cyber warfare
Witty Traffic Request / Mailbag 
Witty Worm Wrap-up 
WMF and Indexing 
WMF FAQ 
WMF Generator 
WMF mitigation may cause printer problems. 
WMF: patches and workarounds explained 
WMF: Status of Windows 98 and Windows ME ? 
Word 0-day, recommended defenses. 
Word macro trojan dropper and (another) downloader 
Word Zero-Day, So Sayeth Microsoft 
Wordpress 3.5.1
Wordpress Plugin spider calendar Multiple Vulnerabilities
WordPress security update patches external libraries, several vulnerabilities
Wordpress to accept Bitcoin without confirmations
Working with base64
World of Warcraft Character Becomes Campaign Issue
World of Warcraft Loses 1.3 Million Players in First Quarter of 2013
worldnic DNS servers down 
Worldnic outage 
World's First Bitcoin ATM
World's First Linux Powered Rifle Announced
World's Oldest Tumor Found In a Neanderthal Bone
Worldwide Shortage of Barium
Worm manipulates databases in Iran
Worth Reading: Bypassing Windows' Address Space Layout Randomisation
Worth Reading: Confessions of a botnet operator
Worth Reading: Dropbox is "quite secure"
Would Charles Darwin Have Made a Good Congressman?
WoW cities wiped out by 'exploit'
Woz Applying For Australian Citizenship Because of the NBN
Woz Worries Microsoft Is Now More Innovative Than Apple
Wozniak On the Samsung Patent Verdict
Wrap-up: What? No Link? 
Wrong Fuel Chokes Presidential Limo
WS domain, audio applications, and IP addressing 
WS_FTP buffer overflow, DomainKeys effective?, Phishing explained 
WTFM: Write the Freaking Manual
www.sco.com unreachable 
x86_64 Linux bind TCP port shellcode 
XBMC 12.0 'Frodo' Released: PVR-Support, HD Audio and More
Xbox 360 credit card slurp alert under fire
Xbox 720 Could Require Always-On Connection, Lock Out Used Games
Xbox Originator: "Stupid, Stupid Xbox!!"
Xen-Based Secure OS Qubes Hits 1.0
Xirrus Primes the 802.11ac Pump
xkcd on a Bad Threat Model
Xkcd's Long-running "Time" Comic: Work of Art Or Nerd Sniping?
XML RPC worm - New Variant - ELF_LUPPER.B 
XML-RPC for PHP Vulnerability Attack 
xmlrpc.php - Are you patched? 
XP local privilege escalation demonstated 
XP SP2 Preview, Apache Update,Don't click on that attachment 
XP SP2 Release to manufacturing, and Continued Scanning Trends 
X-Ray Laser For Creating Supercharged Particles
xt:Commerce <= v3.04 SP2.1 Time Based Blind SQL Injection
Xtreme RAT 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
YAFP (Yet Another Flash Patch)
Yahoo Board Approves a $1.1B Pricetag For Tumblr
Yahoo Buys UK Teen's Smartphone News App
Yahoo debuts trailer for Anthony Zuiker's "Cybergeddon"
Yahoo Messenger critical update 
Yahoo Messenger worm?; exploited.lsass.cc bot traffic 
Yahoo! et al Status 
Yahoo! Japan says 22 MEELLION User IDs may have been nabbed
Yahoo! Login Server Problems 
Yahoo! mass-mailer 
Yahoo! user account phishing 
Yahoo's Code Verification; Prevalent of Malcodes; Hidden File Finding Problem in XP Pro and Home 
Yatze telnet worm; InfoCon update; rlogin link to telnet maybe? 
Year End Poll 
Year End Surveys
Yellow: MSIE VML exploit spreading 
Yellow: WebViewFolderIcon setslice exploit spreading 
Yes Virginia, Stored XSS's Do Exist!
Yet another Adobe Flash Player Update
Yet Another Bagle 
Yet another hacked web site–This time it’s NVidia
Yet Another IE Flaw (YAIEF) 
Yet another MSIE 0-day: VML 
Yet another OSX/Java Trojan spotted in the wild
You dirty RAT: Trend Micro spots new Asia-wide attack
You Have Got a New Audio Message - Guest Diary by Pasquale Stirparo
You know about XSS. How about XSRF/CSRF? 
You never know...; Exploit for MS04-038 
Young Students Hiding Academic Talent To Avoid Bullying
Your Bill Is Not Overdue today!
Your Security Policy Is So Lame
Your SSH Server On Port 8080 Is No Longer "Hidden" Or "Safe"
You're not cool enough for some malware
YouTube Alters Copyright Algorithms, Will 'Manually' Review Some Claims
YouTube is 8 years old. Here’s the first video ever uploaded to the site!
YYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update, (Tue, Aug 21st)
YYABCAU - Yes Yet Another Bleeping Critical Adobe Flash Update, (Tue, Aug 21st)
Zen approach to backups 
Zero Day MySQL Buffer Overflow, (Sun, Dec 2nd)
Zeroday Emergency Response Team (ZERT) 
ZIP With Comment
zlib Security Vulnerability; Protecting Your Privacy 
ZoneAlarm shutdown problem update, MS Black Tuesday 
ZoneAlarm Update, RoadRunner Email, Network Monitoring, Mailbag 
ZTE drops spy tech subsidiary
ZTE posts a first quarterly loss, margins bleed
ZTE sharpens focus on high-end smartphones to boost margins