Hacker News
- AMD PSP: Firmware TPM Remote Code Execution via Crafted EK Certificate http://seclists.org/fulldisclosure/2018/Jan/12 90 comments
- GNU tar extract pathname bypass http://seclists.org/fulldisclosure/2016/Oct/96 7 comments
- Matasano hacked. A humbling lesson, even the pros are vulnerable. http://seclists.org/fulldisclosure/2009/Jul/0388.html 30 comments
Lobsters
- Docker (all versions) is vulnerable to a symlink-race attack https://seclists.org/oss-sec/2019/q2/131 75 comments linux
- CVE-2019-5736: runc container breakout https://seclists.org/oss-sec/2019/q1/119 17 comments kubernetes
- [SYSS-2018-041] Mozilla Firefox - Information Exposure (found an exploit where an attacker can upload files trough malicious downloaded HTML file in the same folder) https://seclists.org/bugtraq/2019/jan/20 18 comments firefox
- Another systemd vulnerability http://seclists.org/oss-sec/2019/q1/54 8 comments debian
- Welp, back to Slackware it is, then https://seclists.org/bugtraq/2019/Jan/3 11 comments slackware
- Linux kernel: CVE-2017-6074: DCCP double-free vulnerability (local root) http://seclists.org/oss-sec/2017/q1/471 28 comments netsec
- Full Disclosure: Hacking Printers Advisory 1/6: PostScript printers vulnerable to print job capture http://seclists.org/fulldisclosure/2017/jan/89 17 comments netsec
- Deep Dive: Certificate pinning vuln in Firefox and Tor Browser http://seclists.org/dailydave/2016/q3/51 5 comments netsec
- opensshd - user enumeration http://seclists.org/fulldisclosure/2016/jul/51 47 comments netsec
- oss-sec: server and client side remote code execution through a buffer overflow in all git versions before 2.7.1 (unpublished ᴄᴠᴇ-2016-2324 and ᴄᴠᴇ‑2016‑2315) http://seclists.org/oss-sec/2016/q1/645 3 comments linux
- Cisco ASA VPN - Zero Day Exploit http://seclists.org/fulldisclosure/2016/feb/82 12 comments netsec
- Sourceforge Hijacks the Nmap Sourceforge Account http://seclists.org/nmap-dev/2015/q2/194 61 comments programming
- Linux kernel: multiple x86_64 vulnerabilities http://seclists.org/oss-sec/2014/q4/1052 63 comments netsec
- on Linux, less can probably get you owned http://seclists.org/fulldisclosure/2014/nov/74 125 comments linux
- CVE-2014-7911: Android <5.0 Privilege Escalation using ObjectInputStream http://seclists.org/fulldisclosure/2014/nov/51 36 comments netsec
- OpenSSH <=6.6 SFTP misconfiguration exploit for 64bit Linux http://seclists.org/fulldisclosure/2014/oct/35 9 comments linux
- Full Disclosure: NRPE - Nagios Remote Plugin Executor <= 2.15 Remote Command Execution http://seclists.org/fulldisclosure/2014/Apr/240 3 comments sysadmin
- nginx 1.3.9/1.4.0 x86 brute force remote exploit (CVE-2013-2028) http://seclists.org/fulldisclosure/2013/jul/90 17 comments netsec
- Skype for Android Lockscreen Bypass http://seclists.org/fulldisclosure/2013/jul/6 4 comments netsec
- Plesk Apache Remote 0 Day - King Cope http://seclists.org/fulldisclosure/2013/jun/21 23 comments netsec
- Galaxy S III bug bypasses lockscreen, allowing access to all personal data http://seclists.org/fulldisclosure/2013/mar/50 2 comments technology
- CVE 2013-1763 - Linux Kernel local root exploit http://seclists.org/oss-sec/2013/q1/420 26 comments netsec
- ZDI-12-197: Oracle Java java.beans.Statement Remote Code Execution Vulnerability http://seclists.org/fulldisclosure/2012/dec/213 15 comments netsec
- How are you dealing with this Java debacle? http://seclists.org/fulldisclosure/2012/Aug/388 28 comments sysadmin
- Local privilege escalation exploit for Linux systems that use nVidia's driver http://seclists.org/fulldisclosure/2012/aug/4 30 comments netsec
- "Please don't take down the Sality Botnet" http://seclists.org/fulldisclosure/2012/mar/315 5 comments netsec
- Nmap script to test for servers vulnerable to ms12-020 without triggering the BSoD. http://seclists.org/nmap-dev/2012/q1/att-662/rdp-ms12-020.nse 7 comments netsec
- p0f v3 release candidate http://seclists.org/bugtraq/2012/jan/56 4 comments netsec
- Nmap Hackers: C|Net Download.Com is now bundling Nmap with malware! http://seclists.org/nmap-hackers/2011/5 30 comments sysadmin
- Where should I post my exploit code? http://seclists.org/fulldisclosure/ 25 comments netsec
- SSH scans, i caught one http://seclists.org/fulldisclosure/2010/nov/228 13 comments netsec
- duck and cover? http://seclists.org/fulldisclosure/2010/sep/268 7 comments linux
- Open letter to Uncle Sam http://seclists.org/fulldisclosure/2010/jul/340 3 comments netsec
- Safari browser port blocking bypassed by integer overflow http://seclists.org/fulldisclosure/2010/mar/447 12 comments netsec
- T-Mobile US Hacked http://seclists.org/fulldisclosure/2009/jun/0062.html 21 comments netsec
- Full Disclosure: World's most powerful supercomputer goes online: And it's not what you expect http://seclists.org/fulldisclosure/2007/aug/0520.html 108 comments programming