|
FasterSlasher is a Perl script that displays a list of articles or headlines taken from a remote RSS or RDF file. Basically, you feed FasterSlasher the URL of an RSS file on the web & it will fetch the file, interpret the XML coding & display a nicely formatted list.
Output can be formatted for full-page display or SSI use. Other controls include the number of headlines/articles shown & whether descriptions are displayed in addition to titles.
XML parsing is handled by the Perl module XML::RSSLite. This is not a "standard" Perl module & your ISP may not support it. But it's easy to install locally in your own cgi-bin. (Details included in the download file.)
- Example A: Headline listing embedded in this page using SSI. Display of item descriptions is enabled. The number of titles is set to allow this site's RSS list to "max out"...
Bugtraq
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability
<p>Posted by lament on Mar 10</p>=========================================<br> Yaniv Miron aka "Lament" Advisory March 7, 2010<br> Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability<br> =========================================<br> <br> =====================<br> I. BACKGROUND<br> =====================<br> Based on the company s technical expertise and a decade of hands-on experience<br> in the telecom industry, Friendly s solution is a ROBUST, SCALABLE, SECURED,<br> TELCO...<br>
CVE-2010-0624: Heap-based buffer overflow in GNU Tar and GNU Cpio
<p>Posted by Jakob Lell on Mar 10</p>I. BACKGROUND<br> <br> GNU Tar and GNU Cpio are popular programs for managing archive<br> files. Both programs are included in many linux distributions. GNU Tar<br> is commonly used for exchanging source code archives.<br> <br> Both programs include a client implementation for the remote mag tape<br> protocol (rmt). This protocol allows accessing a tape device attached<br> to a remote system via a rsh/ssh. It can also be used to<br> extract/create archive files on another system...<br>
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
<p>Posted by dann frazier on Mar 10</p>------------------------------------------------------------------------<br> Debian Security Advisory DSA-2010 security () debian org<br> <a rel="nofollow" href="http://www.debian.org/security/">http://www.debian.org/security/</a> Dann Frazier<br> March 10, 2010 <a rel="nofollow" href="http://www.debian.org/security/faq">http://www.debian.org/security/faq</a><br> ------------------------------------------------------------------------<br> <br> Package : kvm<br> Vulnerability : privilege escalation/denial of service<br> Problem type...<br>
[SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting
<p>Posted by Steffen Joeris on Mar 10</p>------------------------------------------------------------------------<br> Debian Security Advisory DSA-2009-1 security () debian org<br> <a rel="nofollow" href="http://www.debian.org/security/">http://www.debian.org/security/</a> Steffen Joeris<br> March 09, 2010 <a rel="nofollow" href="http://www.debian.org/security/faq">http://www.debian.org/security/faq</a><br> ------------------------------------------------------------------------<br> <br> Package : tdiary<br> Vulnerability : insufficient input sanitising<br> Problem type...<br>
[USN-908-1] Apache vulnerabilities
<p>Posted by Marc Deslauriers on Mar 10</p>===========================================================<br> Ubuntu Security Notice USN-908-1 March 10, 2010<br> apache2 vulnerabilities<br> CVE-2010-0408, CVE-2010-0434<br> ===========================================================<br> <br> A security issue affects the following Ubuntu releases:<br> <br> Ubuntu 6.06 LTS<br> Ubuntu 8.04 LTS<br> Ubuntu 8.10<br> Ubuntu 9.04<br> Ubuntu 9.10<br> <br> This advisory also applies to the corresponding versions of<br> Kubuntu, Edubuntu, and...<br>
Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability
<p>Posted by Secunia Research on Mar 10</p>====================================================================== <br> <br> Secunia Research 10/03/2010<br> <br> - XnView DICOM Parsing Integer Overflow Vulnerability -<br> <br> ====================================================================== <br> Table of Contents<br> <br> Affected Software....................................................1<br> Severity.............................................................2<br> Vendor's Description of...<br>
[ MDVSA-2010:059 ] virtualbox
<p>Posted by security on Mar 10</p> _______________________________________________________________________<br> <br> Mandriva Linux Security Advisory MDVSA-2010:059<br> <a rel="nofollow" href="http://www.mandriva.com/security/">http://www.mandriva.com/security/</a><br> _______________________________________________________________________<br> <br> Package : virtualbox<br> Date : March 10, 2010<br> Affected: 2008.0, 2009.0, 2009.1, 2010.0<br> _______________________________________________________________________<br> <br> Problem Description:<br> <br> A...<br>
iDefense Security Advisory 03.09.10: Microsoft Excel MDXSET Record Heap Overflow Vulnerability
<p>Posted by iDefense Labs on Mar 10</p>iDefense Security Advisory 03.09.10<br> <a rel="nofollow" href="http://labs.idefense.com/intelligence/vulnerabilities/">http://labs.idefense.com/intelligence/vulnerabilities/</a><br> Mar 09, 2010<br> <br> I. BACKGROUND<br> <br> Excel is the spreadsheet application included with Microsoft Corp.'s<br> Office productivity software suite. More information is available at<br> the following website:<br> <br> <a rel="nofollow" href="http://office.microsoft.com/excel/">http://office.microsoft.com/excel/</a><br> <br> II. DESCRIPTION<br> <br> Remote exploitation of a heap overflow vulnerability in Microsoft<br> Corp.'s Excel could allow an attacker to execute...<br>
Secunia Research: Employee Timeclock Software Backup Information Disclosure
<p>Posted by Secunia Research on Mar 10</p>====================================================================== <br> <br> Secunia Research 10/03/2010<br> <br> - Employee Timeclock Software Backup Information Disclosure -<br> <br> ====================================================================== <br> Table of Contents<br> <br> Affected Software....................................................1<br> Severity.............................................................2<br> Vendor's Description of...<br>
iDefense Security Advisory 03.09.10: Microsoft Excel MDXTUPLE Record Heap Overflow Vulnerability
<p>Posted by iDefense Labs on Mar 10</p>iDefense Security Advisory 03.09.10<br> <a rel="nofollow" href="http://labs.idefense.com/intelligence/vulnerabilities/">http://labs.idefense.com/intelligence/vulnerabilities/</a><br> Mar 09, 2010<br> <br> I. BACKGROUND<br> <br> Excel is the spreadsheet application included with Microsoft Corp.'s<br> Office productivity software suite. More information is available at<br> the following website:<br> <br> <a rel="nofollow" href="http://office.microsoft.com/excel/">http://office.microsoft.com/excel/</a><br> <br> II. DESCRIPTION<br> <br> Remote exploitation of a heap overflow vulnerability in Microsoft<br> Corp.'s Excel could allow an attacker to execute...<br>
iDefense Security Advisory 03.09.10: Microsoft Excel Sheet Object Type Confusion Vulnerability
<p>Posted by iDefense Labs on Mar 10</p>iDefense Security Advisory 03.09.10<br> <a rel="nofollow" href="http://labs.idefense.com/intelligence/vulnerabilities/">http://labs.idefense.com/intelligence/vulnerabilities/</a><br> Mar 09, 2010<br> <br> I. BACKGROUND<br> <br> Excel is the spreadsheet application included with Microsoft Corp.'s<br> Office productivity software suite. More information is available at<br> the following website:<br> <br> <a rel="nofollow" href="http://office.microsoft.com/excel/">http://office.microsoft.com/excel/</a><br> <br> II. DESCRIPTION<br> <br> Remote exploitation of a type confusion vulnerability in Microsoft<br> Corp.'s Excel could allow an attacker to execute...<br>
[ MDVSA-2010:058 ] php
<p>Posted by security on Mar 10</p> _______________________________________________________________________<br> <br> Mandriva Linux Security Advisory MDVSA-2010:058<br> <a rel="nofollow" href="http://www.mandriva.com/security/">http://www.mandriva.com/security/</a><br> _______________________________________________________________________<br> <br> Package : php<br> Date : March 9, 2010<br> Affected: 2008.0, 2009.0, 2009.1, 2010.0, Corporate 4.0,<br> Enterprise Server 5.0...<br>
Vulnerabilities in Hydra Engine
<p>Posted by MustLive on Mar 10</p>Hello Bugtraq!<br> <br> I want to warn you about vulnerabilities in Hydra Engine. It's commercial<br> Ukrainian CMS.<br> <br> -----------------------------<br> Advisory: Vulnerabilities in Hydra Engine<br> -----------------------------<br> URL: <a rel="nofollow" href="http://websecurity.com.ua/3453/">http://websecurity.com.ua/3453/</a><br> -----------------------------<br> Timeline:<br> <br> 26.08.2009 - found the vulnerabilities.<br> 28.08.2009 - announced at my site.<br> 09.09.2009 - informed developers.<br> 30.01.2010 - disclosed at my site....<br>
VUPEN Security Research - Microsoft Office Excel Record Processing Code Execution Vulnerability
<p>Posted by VUPEN Security Research on Mar 10</p>VUPEN Security Research - Microsoft Office Excel Record Processing Code <br> Execution Vulnerability<br> <br> <a rel="nofollow" href="http://www.vupen.com/english/research.php">http://www.vupen.com/english/research.php</a><br> <br> I. BACKGROUND<br> ---------------------<br> <br> "Microsoft Office Excel is a powerful tool you can use to create and<br> format spreadsheets, and analyze and share information to make more<br> informed decisions. With the Microsoft Office Fluent user interface,<br> rich data visualization, and PivotTable views,...<br>
Secunia Research: Employee Timeclock Software "mysqldump" Password Disclosure
<p>Posted by Secunia Research on Mar 10</p>====================================================================== <br> <br> Secunia Research 10/03/2010<br> <br> - Employee Timeclock Software "mysqldump" Password Disclosure -<br> <br> ====================================================================== <br> Table of Contents<br> <br> Affected Software....................................................1<br> Severity.............................................................2<br> Vendor's...<br>
View the last 25 posts.
- Example B: The link below will open a full-page display for kuro5hin.org & descriptions are provided in addition to titles...
Open a full page listing with descriptions (kuro5hin.org uses verbose descriptions!).
- Example C: The same headlines but without the descriptions & constrained to 8 headlines.
Open a full page listing without descriptions
In general, the SSI method is easier for most folks to use, since style sheets & other markups can be set conventionally. The full-page method requires some editing of the Perl source in order to incorporate style sheets or fancy formatting.
DOWNLOAD
|
