Securiteam
By Subject
128 messages sorted by: [ author ] [ date ] [ thread ] [ attachment ]
Starting: 12/01/04
Ending: 12/29/04
- [EXPL] Ability FTP APPE Buffer Overflow
- [EXPL] AIX paginit, lsmcode and invscout Local Exploits
- [EXPL] Aspell word-list-compress Command Line Stack Overflow
- [EXPL] Buffer overflow in Solaris CDE libDtHelp (Executable and Non-Executable Stack)
- [EXPL] Crystal FTP Pro Client LIST Proof of Concept
- [EXPL] FirstClass HTTP Large Request Handling DoS
- [EXPL] Linux Kernel Multiple Local DoS (vc_resize, ip_options_get)
- [EXPL] Local Privilege Escalation in Solaris Passwd
- [EXPL] Mercury/32 Exploit Code (14 Targets)
- [EXPL] Missing DAC controls in sys_chown() on Linux.
- [EXPL] MySQL UDF Dynamic Library Exploit
- [EXPL] PHP openlog() Buffer Overflow
- [EXPL] PHP Scripts Automated Arbitrary File Inclusion (Worm)
- [EXPL] phpBB highlight Arbitrary File Upload (Santy.A)
- [EXPL] phpBB2 Information Leak due to Unserializer
- [EXPL] Snort Malformed TCP Options DoS
- [EXPL] Stack-Based Buffer Overflow in Solaris Runtime Linker
- [EXPL] Ultrix dxterm -setup Buffer Overflow
- [EXPL] wget Directory Traversal (Exploit)
- [NEWS] Adobe Reader .ETD File Format String
- [NEWS] Browsers' FTP Client can be Used to Send Mail
- [NEWS] Content-Type Spoofing in Mozilla Firefox and Opera Allows Users to Bypass Security Restrictions
- [NEWS] Cross Site Scripting in Yacy
- [NEWS] Default Administrative Password in Cisco Guard and Traffic Anomaly Detector
- [NEWS] Gamespy SDK Cd-Key Validation Toolkit Buffer Overflow
- [NEWS] Hotmail Cross Site Scripting Vulnerability (Malformed Tags)
- [NEWS] Hotmail Cross-Site Scripting Vulnerability (IE gte)
- [NEWS] IBM DB2 Buffer Overflow Vulnerabilities (rec2xml, generate_distfile)
- [NEWS] Lycos Free Email Cross-Site Scripting Vulnerability
- [NEWS] Mac OS X / Adobe Version Cue Local Root
- [NEWS] MPlayer Multiple Remote Overflows (RTSP, MMST, BMP)
- [NEWS] Multiple Vulnerabilities in Oracle Database (Character Conversion, Extproc, Password Disclosure, ISQLPlus,TNS Listener)
- [NEWS] Multiple Vulnerabilities in Oracle Database (Trigger, Extproc, Wrapped Procedures, PL/SQL Injection)
- [NEWS] Roxio Toast Format String Vulnerability
- [NEWS] Scripting Vulnerabilities in Indian Email Providers
- [NEWS] Yahoo! Mail Cross-Site Scripting Vulnerability
- [NT] ASP-rider SQL Injection Vulnerability
- [NT] Battlefield 1942 and Vietnam Broadcast Client Crash
- [NT] Buffer Overflow in HyperTerminal's .ht Files (MS04-043)
- [NT] Computer Associates eTrust EZ Antivirus Insecure File Permission
- [NT] Crystal FTP Pro Client LIST Buffer Overflow
- [NT] Cumulative Security Update for Internet Explorer (889293, MS04-040)
- [NT] F-Secure Policy Manager Path Disclosure Vulnerability
- [NT] Insecure Credential Storage on Kerio Software
- [NT] Insecure Default File System Permissions n Microsoft Versions of Kerio Software
- [NT] Local Privileges Elevation via Symantec LiveUpdate
- [NT] Microsoft Internet Explorer XP SP2 Fully Automated Remote Compromise
- [NT] Microsoft PowerPoint "Action Settings" Allows Invocation of Default Browser
- [NT] Microsoft Windows Kernel ANI File Parsing Crash and DOS Vulnerability
- [NT] Microsoft Windows LoadImage API Integer Buffer Overflow
- [NT] Microsoft Windows winhlp32.exe Heap Overflow Vulnerability
- [NT] Microsoft Windows XP Firewall Default Configuration Vulnerability (SP2, Local Subnet)
- [NT] Microsoft Word 6.0/95 Document Converter Buffer Overflow (MS04-041)
- [NT] Multiple Vulnerabilities in w3who ISAPI DLL
- [NT] Multiple Vulnerabilities in WinAMP (MP4 and NSV files)
- [NT] My Firewall Plus Privilege Escalation Vulnerability
- [NT] Netcat for Windows '-e' Buffer Overflow
- [NT] PHP Input Validation Vulnerabilities (addslashes, Windows Only)
- [NT] Remote Execute DoS Attack Leads to Client Crash
- [NT] Remote Script Execution in Tlen.pl
- [NT] Spy Sweeper Enterprise Client Privilege Escalation Vulnerability
- [NT] Unreachable Socket in Lithtech Engine (New Protocol)
- [NT] Veritas Backup Exec Agent Browser Registration Request Buffer Overflow
- [NT] Vulnerabilities in Windows Kernel and LSASS Allows Elevation of Privilege (MS04-044)
- [NT] Vulnerability in DHCP Allows Remote Code Execution and DoS (MS04-042, Logging, Request)
- [NT] Vulnerability In HyperTerminal Allows Code Execution (MS04-043)
- [NT] Vulnerability in WINS Allows Remote Code Execution (MS04-045, Name Validation, Association Context)
- [NT] Vulnerability in WordPad Allow Code Execution (MS04-041)
- [NT] Winmail Server Information Disclosure
- [REVS] Multiple Collisions attack on MD5 and other Hashing Algorithms
- [REVS] Security Deficiencies of Automated Windows Installations
- [TOOL] Absinthe - Blind SQL Injection Tool
- [TOOL] AIRT - Advanced Incident Response Tool
- [UNIX] 2Bgal SQL Injection Vulnerability
- [UNIX] Adobe Reader mailListIsPdf() Buffer Overflow Vulnerability
- [UNIX] Advanced Guestbook XSS
- [UNIX] AHG EZshopper loadpage.cgi Directory Traversal (.|./ Attack)
- [UNIX] Blog Torrent Arbitrary File Downloading
- [UNIX] ChangePassword Unsafe Command Execution (make)
- [UNIX] Citadel/UX Remote Format String
- [UNIX] Cleartext SMB Passwords in Novell Desktop Linux using KDE
- [UNIX] Cross Site Scripting in PsychoStats
- [UNIX] Crypt::ECB Block Zero Truncation
- [UNIX] FTP Client Command Injection
- [UNIX] GNUBoard PHP Injection Vulnerability
- [UNIX] Hewlett Packard HP-UX ftpd Remote Buffer Overflow
- [UNIX] IBM AIX chcod Local Privilege Escalation Vulnerability
- [UNIX] IPCop proxylog.dat Cross Site Scripting Vulnerability
- [UNIX] JSBoard Multiple Extensions Vulnerability
- [UNIX] Konqueror SMB Share Shortcuts Password Disclosure
- [UNIX] kpdf Buffer Overflow Vulnerability
- [UNIX] libkadm5srv Heap Buffer Overflow
- [UNIX] Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation
- [UNIX] Linux Kernel IGMP Vulnerabilities
- [UNIX] Linux Kernel scm_send Local DoS Vulnerability
- [UNIX] Local Off-By-One in Mtr
- [UNIX] MoniWiki Arbitrary File Uploading
- [UNIX] Multiple Extensions Vulnerability in MediaWiki
- [UNIX] Multiple Extensions Vulnerability in phpBB Attachment Mod
- [UNIX] Multiple phpGroupWare Vulnerabilities (Path Disclosure, XSS, SQL Injection)
- [UNIX] Multiple Remote Vulnerabilities in NFS-Utils (64bit, SIGPIPE)
- [UNIX] Multiple Vendor xpdf PDF Viewer Buffer Overflow Vulnerability
- [UNIX] Multiple Vendor xzgv PRF Parsing Integer Overflow Vulnerability
- [UNIX] Multiple Vulnerabilities in Kayako eSupport
- [UNIX] Multiple Vulnerabilities in MaxDB WebTools
- [UNIX] Multiple Vulnerabilities in Moodle (view.php, file.php)
- [UNIX] Multiple Vulnerabilities in phpMyAdmin (External Transformations)
- [UNIX] Multiple Vulnerabilities within PHP 4/5 (pack, unpack, safe_mode_exec_dir, safe_mode, realpath, unserialize)
- [UNIX] Multiple WHM AutoPilot Vulnerabilities
- [UNIX] Multiple XSS Vulnerabilities in WordPress
- [UNIX] NetBSD Binary Compatibility Code Insufficient Argument Validation
- [UNIX] Opera Remote Command Execution with Kfmclient
- [UNIX] PHP Shmop Write of Arbitrary Memory (Exploit)
- [UNIX] phpBB Attachment Mod Directory Traversal HTTP POST Injection
- [UNIX] phpMyChat Improper File Permissions
- [UNIX] PHProxy Cross Site Scripting
- [UNIX] Rssh and Scponly Arbitrary Command Execution
- [UNIX] Samba smbd Security Descriptor Integer Overflow Vulnerability
- [UNIX] SHOUTcast Remote Format String Vulnerability
- [UNIX] singapore Image Gallery Web Application Multiple Vulnerabilities
- [UNIX] SQL Injections in Ikonboard (st, keywords)
- [UNIX] Stack Overflow in AIFF Demultiplexer
- [UNIX] SugarSales Multiple Vulnerabilities
- [UNIX] Tom's IPX Tunneling Daemon Config File Format String Vulnerability
- [UNIX] UseModWiki XSS
- [UNIX] vBulletin Unofficial lastten SQL Injection (ftitle)
- [UNIX] WebLibs File Disclosure
- [UNIX] ZeroBoard PHP Code Injection and XSS
Last message date: 12/29/04
Archived on: 12/29/04 CET
128 messages sorted by: [ author ] [ date ] [ thread ] [ attachment ]
