Securiteam
By Date

128 messages sorted by: [ author ] [ thread ] [ subject ] [ attachment ]

---

Starting: 12/01/04
Ending: 12/29/04

• [UNIX] NetBSD Binary Compatibility Code Insufficient Argument Validation SecuriTeam (12/29/04)
• [NEWS] Browsers' FTP Client can be Used to Send Mail SecuriTeam (12/29/04)
• [UNIX] Multiple Vulnerabilities in Moodle (view.php, file.php) SecuriTeam (12/29/04)
• [UNIX] Stack Overflow in AIFF Demultiplexer SecuriTeam (12/29/04)
• [NT] Microsoft Internet Explorer XP SP2 Fully Automated Remote Compromise SecuriTeam (12/29/04)
• [UNIX] kpdf Buffer Overflow Vulnerability SecuriTeam (12/29/04)
• [UNIX] Multiple WHM AutoPilot Vulnerabilities SecuriTeam (12/29/04)
• [UNIX] Advanced Guestbook XSS SecuriTeam (12/29/04)
• [NT] Netcat for Windows '-e' Buffer Overflow SecuriTeam (12/29/04)
• [UNIX] WebLibs File Disclosure SecuriTeam (12/28/04)
• [UNIX] phpBB Attachment Mod Directory Traversal HTTP POST Injection SecuriTeam (12/28/04)
• [UNIX] SugarSales Multiple Vulnerabilities SecuriTeam (12/28/04)
• [UNIX] Multiple Extensions Vulnerability in phpBB Attachment Mod SecuriTeam (12/28/04)
• [UNIX] JSBoard Multiple Extensions Vulnerability SecuriTeam (12/28/04)
• [UNIX] UseModWiki XSS SecuriTeam (12/28/04)
• [EXPL] PHP openlog() Buffer Overflow SecuriTeam (12/28/04)
• [UNIX] Multiple Extensions Vulnerability in MediaWiki SecuriTeam (12/28/04)
• [UNIX] 2Bgal SQL Injection Vulnerability SecuriTeam (12/28/04)
• [NEWS] Lycos Free Email Cross-Site Scripting Vulnerability SecuriTeam (12/28/04)
• [UNIX] Multiple XSS Vulnerabilities in WordPress SecuriTeam (12/27/04)
• [NEWS] Scripting Vulnerabilities in Indian Email Providers SecuriTeam (12/27/04)
• [NT] Microsoft Windows Kernel ANI File Parsing Crash and DOS Vulnerability SecuriTeam (12/27/04)
• [UNIX] SHOUTcast Remote Format String Vulnerability SecuriTeam (12/27/04)
• [UNIX] Cross Site Scripting in PsychoStats SecuriTeam (12/27/04)
• [UNIX] Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation SecuriTeam (12/27/04)
• [NT] Microsoft Windows LoadImage API Integer Buffer Overflow SecuriTeam (12/27/04)
• [EXPL] PHP Scripts Automated Arbitrary File Inclusion (Worm) SecuriTeam (12/27/04)
• [NEWS] Multiple Vulnerabilities in Oracle Database (Trigger, Extproc, Wrapped Procedures, PL/SQL Injection) SecuriTeam (12/27/04)
• [UNIX] ZeroBoard PHP Code Injection and XSS SecuriTeam (12/27/04)
• [EXPL] Missing DAC controls in sys_chown() on Linux. SecuriTeam (12/27/04)
• [NT] Microsoft Windows winhlp32.exe Heap Overflow Vulnerability SecuriTeam (12/27/04)
• [EXPL] Crystal FTP Pro Client LIST Proof of Concept SecuriTeam (12/27/04)
• [NEWS] IBM DB2 Buffer Overflow Vulnerabilities (rec2xml, generate_distfile) SecuriTeam (12/27/04)
• [NEWS] Multiple Vulnerabilities in Oracle Database (Character Conversion, Extproc, Password Disclosure, ISQLPlus,TNS Listener) SecuriTeam (12/27/04)
• [EXPL] Snort Malformed TCP Options DoS SecuriTeam (12/27/04)
• [UNIX] PHProxy Cross Site Scripting SecuriTeam (12/27/04)
• [NEWS] Cross Site Scripting in Yacy SecuriTeam (12/27/04)
• [NT] Remote Script Execution in Tlen.pl SecuriTeam (12/27/04)
• [EXPL] FirstClass HTTP Large Request Handling DoS SecuriTeam (12/27/04)
• [EXPL] Mercury/32 Exploit Code (14 Targets) SecuriTeam (12/27/04)
• [EXPL] MySQL UDF Dynamic Library Exploit SecuriTeam (12/27/04)
• [EXPL] Local Privilege Escalation in Solaris Passwd SecuriTeam (12/27/04)
• [EXPL] Buffer overflow in Solaris CDE libDtHelp (Executable and Non-Executable Stack) SecuriTeam (12/27/04)
• [EXPL] Stack-Based Buffer Overflow in Solaris Runtime Linker SecuriTeam (12/27/04)
• [UNIX] FTP Client Command Injection SecuriTeam (12/22/04)
• [UNIX] Cleartext SMB Passwords in Novell Desktop Linux using KDE SecuriTeam (12/22/04)
• [UNIX] Multiple Vulnerabilities in phpMyAdmin (External Transformations) SecuriTeam (12/22/04)
• [UNIX] ChangePassword Unsafe Command Execution (make) SecuriTeam (12/22/04)
• [NT] Winmail Server Information Disclosure SecuriTeam (12/22/04)
• [UNIX] vBulletin Unofficial lastten SQL Injection (ftitle) SecuriTeam (12/22/04)
• [UNIX] phpMyChat Improper File Permissions SecuriTeam (12/22/04)
• [UNIX] Opera Remote Command Execution with Kfmclient SecuriTeam (12/22/04)
• [UNIX] Hewlett Packard HP-UX ftpd Remote Buffer Overflow SecuriTeam (12/22/04)
• [EXPL] phpBB highlight Arbitrary File Upload (Santy.A) SecuriTeam (12/22/04)
• [UNIX] Multiple phpGroupWare Vulnerabilities (Path Disclosure, XSS, SQL Injection) SecuriTeam (12/21/04)
• [NT] Unreachable Socket in Lithtech Engine (New Protocol) SecuriTeam (12/21/04)
• [UNIX] Multiple Vendor xpdf PDF Viewer Buffer Overflow Vulnerability SecuriTeam (12/21/04)
• [NT] PHP Input Validation Vulnerabilities (addslashes, Windows Only) SecuriTeam (12/21/04)
• [EXPL] AIX paginit, lsmcode and invscout Local Exploits SecuriTeam (12/21/04)
• [EXPL] Ultrix dxterm -setup Buffer Overflow SecuriTeam (12/21/04)
• [UNIX] Crypt::ECB Block Zero Truncation SecuriTeam (12/21/04)
• [NT] Spy Sweeper Enterprise Client Privilege Escalation Vulnerability SecuriTeam (12/21/04)
• [NT] My Firewall Plus Privilege Escalation Vulnerability SecuriTeam (12/21/04)
• [UNIX] IBM AIX chcod Local Privilege Escalation Vulnerability SecuriTeam (12/21/04)
• [UNIX] libkadm5srv Heap Buffer Overflow SecuriTeam (12/21/04)
• [NT] Microsoft PowerPoint "Action Settings" Allows Invocation of Default Browser SecuriTeam (12/20/04)
• [UNIX] PHP Shmop Write of Arbitrary Memory (Exploit) SecuriTeam (12/20/04)
• [NEWS] Hotmail Cross-Site Scripting Vulnerability (IE gte) SecuriTeam (12/20/04)
• [NEWS] Hotmail Cross Site Scripting Vulnerability (Malformed Tags) SecuriTeam (12/20/04)
• [UNIX] SQL Injections in Ikonboard (st, keywords) SecuriTeam (12/20/04)
• [NT] Multiple Vulnerabilities in WinAMP (MP4 and NSV files) SecuriTeam (12/20/04)
• [NEWS] Yahoo! Mail Cross-Site Scripting Vulnerability SecuriTeam (12/20/04)
• [UNIX] singapore Image Gallery Web Application Multiple Vulnerabilities SecuriTeam (12/20/04)
• [UNIX] Multiple Vulnerabilities in Kayako eSupport SecuriTeam (12/20/04)
• [NEWS] MPlayer Multiple Remote Overflows (RTSP, MMST, BMP) SecuriTeam (12/19/04)
• [NT] Crystal FTP Pro Client LIST Buffer Overflow SecuriTeam (12/19/04)
• [NT] Veritas Backup Exec Agent Browser Registration Request Buffer Overflow SecuriTeam (12/19/04)
• [EXPL] phpBB2 Information Leak due to Unserializer SecuriTeam (12/19/04)
• [UNIX] Samba smbd Security Descriptor Integer Overflow Vulnerability SecuriTeam (12/16/04)
• [NEWS] Roxio Toast Format String Vulnerability SecuriTeam (12/16/04)
• [NEWS] Content-Type Spoofing in Mozilla Firefox and Opera Allows Users to Bypass Security Restrictions SecuriTeam (12/16/04)
• [UNIX] Blog Torrent Arbitrary File Downloading SecuriTeam (12/16/04)
• [UNIX] Rssh and Scponly Arbitrary Command Execution SecuriTeam (12/16/04)
• [NT] Microsoft Windows XP Firewall Default Configuration Vulnerability (SP2, Local Subnet) SecuriTeam (12/16/04)
• [NT] Insecure Default File System Permissions n Microsoft Versions of Kerio Software SecuriTeam (12/16/04)
• [UNIX] GNUBoard PHP Injection Vulnerability SecuriTeam (12/16/04)
• [UNIX] MoniWiki Arbitrary File Uploading SecuriTeam (12/16/04)
• [NT] Local Privileges Elevation via Symantec LiveUpdate SecuriTeam (12/16/04)
• [NT] Insecure Credential Storage on Kerio Software SecuriTeam (12/16/04)
• [UNIX] Multiple Vulnerabilities within PHP 4/5 (pack, unpack, safe_mode_exec_dir, safe_mode, realpath, unserialize) SecuriTeam (12/16/04)
• [NEWS] Default Administrative Password in Cisco Guard and Traffic Anomaly Detector SecuriTeam (12/16/04)
• [EXPL] Ability FTP APPE Buffer Overflow SecuriTeam (12/16/04)
• [EXPL] Linux Kernel Multiple Local DoS (vc_resize, ip_options_get) SecuriTeam (12/16/04)
• [REVS] Security Deficiencies of Automated Windows Installations SecuriTeam (12/16/04)
• [NT] Buffer Overflow in HyperTerminal's .ht Files (MS04-043) SecuriTeam (12/15/04)
• [NT] Microsoft Word 6.0/95 Document Converter Buffer Overflow (MS04-041) SecuriTeam (12/15/04)
• [UNIX] Multiple Vendor xzgv PRF Parsing Integer Overflow Vulnerability SecuriTeam (12/15/04)
• [NEWS] Adobe Reader .ETD File Format String SecuriTeam (12/15/04)
• [NT] ASP-rider SQL Injection Vulnerability SecuriTeam (12/15/04)
• [NT] Computer Associates eTrust EZ Antivirus Insecure File Permission SecuriTeam (12/15/04)
• [EXPL] wget Directory Traversal (Exploit) SecuriTeam (12/15/04)
• [UNIX] Linux Kernel scm_send Local DoS Vulnerability SecuriTeam (12/15/04)
• [NT] Vulnerabilities in Windows Kernel and LSASS Allows Elevation of Privilege (MS04-044) SecuriTeam (12/15/04)
• [NT] Vulnerability in WINS Allows Remote Code Execution (MS04-045, Name Validation, Association Context) SecuriTeam (12/15/04)
• [NT] Vulnerability in DHCP Allows Remote Code Execution and DoS (MS04-042, Logging, Request) SecuriTeam (12/15/04)
• [NT] Vulnerability In HyperTerminal Allows Code Execution (MS04-043) SecuriTeam (12/15/04)
• [UNIX] Multiple Remote Vulnerabilities in NFS-Utils (64bit, SIGPIPE) SecuriTeam (12/15/04)
• [UNIX] Linux Kernel IGMP Vulnerabilities SecuriTeam (12/15/04)
• [UNIX] Adobe Reader mailListIsPdf() Buffer Overflow Vulnerability SecuriTeam (12/15/04)
• [NT] Vulnerability in WordPad Allow Code Execution (MS04-041) SecuriTeam (12/15/04)
• [UNIX] Multiple Vulnerabilities in MaxDB WebTools SecuriTeam (12/13/04)
• [NEWS] Gamespy SDK Cd-Key Validation Toolkit Buffer Overflow SecuriTeam (12/13/04)
• [UNIX] Citadel/UX Remote Format String SecuriTeam (12/13/04)
• [UNIX] Tom's IPX Tunneling Daemon Config File Format String Vulnerability SecuriTeam (12/13/04)
• [NT] F-Secure Policy Manager Path Disclosure Vulnerability SecuriTeam (12/12/04)
• [UNIX] Local Off-By-One in Mtr SecuriTeam (12/12/04)
• [REVS] Multiple Collisions attack on MD5 and other Hashing Algorithms SecuriTeam (12/12/04)
• [NT] Remote Execute DoS Attack Leads to Client Crash SecuriTeam (12/12/04)
• [NT] Battlefield 1942 and Vietnam Broadcast Client Crash SecuriTeam (12/12/04)
• [NEWS] Mac OS X / Adobe Version Cue Local Root SecuriTeam (12/12/04)
• [TOOL] Absinthe - Blind SQL Injection Tool SecuriTeam (12/08/04)
• [NT] Multiple Vulnerabilities in w3who ISAPI DLL SecuriTeam (12/08/04)
• [TOOL] AIRT - Advanced Incident Response Tool SecuriTeam (12/07/04)
• [NT] Cumulative Security Update for Internet Explorer (889293, MS04-040) SecuriTeam (12/02/04)
• [UNIX] AHG EZshopper loadpage.cgi Directory Traversal (.|./ Attack) SecuriTeam (12/01/04)
• [EXPL] Aspell word-list-compress Command Line Stack Overflow SecuriTeam (12/01/04)
• [UNIX] Konqueror SMB Share Shortcuts Password Disclosure SecuriTeam (12/01/04)
• [UNIX] IPCop proxylog.dat Cross Site Scripting Vulnerability SecuriTeam (12/01/04)

Last message date: 12/29/04
Archived on: 12/29/04 CET

---

128 messages sorted by: [ author ] [ thread ] [ subject ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > Securiteam  > 2004-12