Ascii for Breakfast

Register here Blog about Xen, IT-Security, Linux and other stuff.


valentin@xenuser.org

Recent Posts

• Xen ported to ARM architecture
• New articles published in the German Linux Magazine and Android User
• XCP 1.1 released
• Comments are now open for everyone
• Real-time system monitoring with Dag Wieers’ dstat

Active projects

• Xen Admin

Blogroll

• Bionix' Blog
• h4ckb0x.org
• Jonas
• Official Xen Blog
• Robert
• RTFM (romanian blog)

Archives

• November 2011
• October 2011
• September 2011
• August 2011
• July 2011
• June 2011
• May 2011
• April 2011
• March 2011
• February 2011
• January 2011
• December 2010
• November 2010
• October 2010
• September 2010
• August 2010
• July 2010
• June 2010
• May 2010
• April 2010
• March 2010

Tag cloud

Files ≈ Packet Storm

• DNS Service Oriented DoS / DDoS Attacks
• Analysis Of A MIDI Remote Code Execution Vulnerability
• PHP 5.4.0RC6 Denial Of Service
• Edraw Diagram Component 5 Active-X Buffer Overflow
• Mobile Based MITM Attack
• ObjectLabs Forum Systems SQL Injection
• Conduit Wibiya Toolbar Persistent Cross Site Scripting
• XWiki Enterprise 3.4 Cross Site Scripting
• InsideChannel Web Design SQL Injection
• Viper Network Sniffer Script
• Zanjan Azad University SQL Injection
• Debian Security Advisory 2384-2
• Mandriva Linux Security Advisory 2012-013
• Ubuntu Security Notice USN-1355-1
• Ubuntu Security Notice USN-1355-2
• Ubuntu Security Notice USN-1355-3
• Conduit Wibiya Login Toolbar Cross Site Scripting
• Conduit Wibiya Password Recovery Toolbar Cross Site Scripting
• Conduit Image Search Engine Cross Site Scripting
• EMC Documentum xPlore Information Disclosure

Exploit-DB updates

• [dos] - PDF Viewer Component ActiveX DoS
• [webapps] - GAzie <= 5.20 Cross Site Request Forgery
• [papers] - [Turkish] Analysis of a Browser Exploit
• [dos] - Edraw Diagram Component 5 ActiveX buffer overflow DoS
• [dos] - PHP 5.4.0RC6 64bit Denial of Service
• [papers] - [Turkish] DoS/DDoS Attacks Agains DNS
• [dos] - PHP 5.4SVN-2012-02-03 htmlspecialchars/entities Buffer Overflow
• [dos] - torrent-stats httpd.c Denial of Service
• [webapps] - Achievo v1.4.3 - Multiple Web Vulnerabilities
• [webapps] - OSCommerce v3.0.2 - Persistent Cross Site Vulnerability
• [remote] - Icona SpA C6 Messenger DownloaderActiveX Control Arbitrary File Download and Execute - [CVE: 2008-2551]
• [remote] - Sunway Forcecontrol SNMP NetDBServer.exe Opcode 0x57
• [dos] - NetSarang Xlpd Printer Daemon 4 Denial of Service Vulnerability
• [dos] - OfficeSIP Server 3.1 Denial Of Service Vulnerability
• [webapps] - Apache Struts Multiple Persistent Cross-Site Scripting Vulnerabilities
• [webapps] - Sphinix Mobile Web Server 3.1.2.47 Multiple Persistent XSS Vulnerabilities
• [papers] - [French] Votre première exploitation de BOF
• [webapps] - MailEnable Webmail Cross-Site Scripting Vulnerability - [CVE: 2012-0389]
• [remote] - Webkit normalize bug for android 2.2 (CVE-2010-1759) - [CVE: 2010-1759]
• [papers] - [Hebrew] Digital Whisper Security Magazine #29

blog.xen.org

• Give us input for the new Xen.org website
• XenSummit 2012: Dates, Location, PMC & CFP
• Please welcome Ian Campbell as Committer for Xen Hypervisor Project (ARMv7+VE)
• Xen 3.4.4 Update Release
• Xen in Linux 3.2, 3.3 and Beyond
• 2012 Xen Event Calendar
• Oracle hosted Xen Hackathon
• Xen.org 2011 Year in Review
• Xen @ Build a Cloud Day Boston
• Xen Day Boston

Author Links