Debian Security Advisory 1560-1 – The-0utl4w discovered that the Kronolith, calendar component for the Horde Framework, didn’t properly sanitize URL input, leading to a cross-site scripting vulnerability in the add event screen.

continue reading.....

Debian Security Advisory 1561-1 – Christian Herzog discovered that within the Linux Terminal Server Project, it was possible to connect to X on any LTSP client from any host on the network, making client windows and keystrokes visible to that host.

continue reading.....

Debian Security Advisory 1562-1 – It was discovered that crashes in the Javascript engine of Iceape, an unbranded version of the Seamonkey internet suite could potentially lead to the execution of arbitrary code.

continue reading.....

The mailto: functionality in GroupWise 7.0 appears susceptible to a buffer overflow vulnerability.

continue reading.....

continue reading.....

These days, effective document management means accessibility from anywhere on the planet, electronic storage, reliable backup, and instant document modification updates. KnowledgeTree offers all that and more. It’s available in several editions, incl…

continue reading.....

McCain denounced a Republican ad painting Obama as extremist yet continues to perform the live version on the campaign trail.

continue reading.....

McCain denounced a Republican ad painting Obama as extremist yet continues to perform the live version on the campaign trail.

continue reading.....

KnowledgeTree produces document management software that is available either under GPLv3 or, for commercial use, under a proprietary license that restricts code redistribution. In this video, KnowledgeTree co-founders John Thorne and Daniel Chalef exp…

continue reading.....

The interest in the Ubuntu Server is directly related to the interest in the Ubuntu Desktop. How does this impact the deployment and use of the Ubuntu Server?

continue reading.....

[security bulletin] HPSBMA02331 SSRT080000 rev.1 – HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges

continue reading.....

Re: rPSA-2008-0151-1 libpng

continue reading.....

CFP: Workshop on Open Source Software for Computer and Network Forensics

continue reading.....

heanet.dl.sourceforge.net hacked?

continue reading.....

general has discovered a vulnerability in www.lpmusic.com, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

kInGoFcHaOs has discovered a vulnerability in www.military.cibmedia.com, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

S_e_YM_e_N has discovered a vulnerability in www.culver.edu, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

CCC has discovered a vulnerability in www.in.gov, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

tenest has discovered a vulnerability in www.radio3net.ro, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

CCC has discovered a vulnerability in www.ride.ri.gov, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

McCain’s age matters; especially if he picks his running mate from the crazy wing of the Republican Party.

continue reading.....

McCain’s age matters; especially if he picks his running mate from the crazy wing of the Republican Party.

continue reading.....

This tip shows how to add logging to your PHP script and how to add configuration so you have basic, configurable logging. The PHP script requires two PEAR packages, Log and Config. To use the code in shown in this tip, you’ll need to PEAR installed along with PHP and you’ll need to install both the Log and the Config PEAR packages.

continue reading.....

There are two kinds of Linux people in the world, those that will help people fix their Windows spyware problems, and those that will not. I land squarely in the former camp, and I think that it’s important for us all to consider doing the same.

read more

continue reading.....

With vncthumbnailviewer you can see many VNC desktops at once and jump in to control any of them with a double click. vncthumbnailviewer acts like many VNC clients, so it can help you monitor many VNC servers. vncthumbnailviewer was created for monitoring desktops in a computer lab environment. It uses the TightVNC Java code, and is thus fairly stable and glitch-free. There are no vncthumbnailviewer packages for Ubuntu, openSUSE, or Fedora. vncthumbnailviewer is written in Java, so you need a Java Runtime Environment (JRE) installed in order to run it. For this article I used version 1.4.1 of vncthumbnailviewer with IcedTea Runtime Environment (build 1.7.0-b21) 64-bit as my Java runtime.

continue reading.....

Enabling Compiz Fusion On An Ubuntu 8.04 LTS Desktop (ATI Mobility Radeon 9200)

This tutorial shows how you can enable Compiz Fusion on an Ubuntu
8.04 LTS (Hardy Heron) desktop (the system must have a 3D-capable
graphics card – I’m using an ATI Mobility Radeon 9200 here). With
Compiz Fusion you can use beautiful 3D effects like wobbly windows or a
desktop cube on your desktop.

Read more…

continue reading.....

PaPPy has discovered a vulnerability in rubyforge.org, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

mox has discovered a vulnerability in www.eu.org, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

C1c4Tr1Z has discovered a vulnerability in ssl.omnihotels.com, which could be exploited by malicious people to conduct XSS attacks.

continue reading.....

XSS Attack

continue reading.....