SecurityFocus Bugtraq
By Thread
411 messages sorted by:
[ author ]
[ date ]
[ subject ]
[ attachment ]
Starting: 03/01/02
Ending: 03/31/02
- More Office XP problems Georgi Guninski (03/31/02)
- Security Update: [CSSA-2002-010.0] Linux: ftp vulnerability in squid security@caldera.com (03/29/02)
- Security Update: [CSSA-2002-009.0] Linux: X server allows access to any shared memory on the system security@caldera.com (03/29/02)
- Security Update: [CSSA-2002-008.0] Linux: CUPS buffer overflow when reading names of attributes security@caldera.com (03/29/02)
- Security Update: [CSSA-2002-012.0] Linux: OpenSSH channel code vulnerability security@caldera.com (03/29/02)
- privacy issues in metor.com (a search engine) Tom Micklovitch (03/27/02)
- Local Security Vulnerability in Windows NT and Windows 2000 Ashot Oganesyan K. (03/27/02)
- Team Asylum: Online renewal sites susceptible to spammer "harvesting" Mailer (03/28/02)
- Security Update: [CSSA-2002-007.0] Linux: Updated Caldera Public Keys security@caldera.com (03/29/02)
- Anonymizer, MSIE, images ... Alexander K. Yezhov (03/29/02)
- IRIX rpc/HOSTALIASES vulnerability SGI Security Coordinator (03/28/02)
- IRIX TCP/IP Denial-of-Service attacks SGI Security Coordinator (03/28/02)
- [CLA-2002:470] Conectiva Linux Security Announcement - imlib secure@conectiva.com.br (03/28/02)
- IRIX FTP Bounce vulnerability SGI Security Coordinator (03/28/02)
- A possible buffer overflow in libnewt Wu Tao (03/28/02)
- Oracle9i TSN DoS Attack Andrey Gordienko (03/28/02)
- Authentication with RSA SecurID and Outlook web access Scalise, Marzio (03/28/02)
- [SECURITY] [DSA 125-1] New analog packages fix cross-site scripting vulnerability Martin Schulze (03/28/02)
- squirrelmail 1.2.5 email user can execute command pokleyzz sakamaniaka (03/28/02)
- JS embedding @ yahoo.com Alan McCaig (03/28/02)
- vuln in wwwisis: remote command execution and get files Klaus Ripke (03/28/02)
- OpenSSH channel_lookup() off by one exploit Morgan (03/28/02)
- postnuke v 0.7.0.3 remote command execution pokleyzz sakamaniaka (03/28/02)
- HELP.dropper: IE6, OE6, Outlook...lookOut http-equiv@excite.com (03/28/02)
- Citrix Nfuse directory traversal with boilerplate.asp Eric Budke (03/27/02)
- A buffer overflow study - generic protections Vincent (03/27/02)
- Format String Bug in Posadis DNS Server nick (03/27/02)
- [Advisory] phpBB 1.4.4 still suffers from Cross Site Scripting Vulnerability Florian Hobelsberger / BlueScreen (03/27/02)
- RCA cable modem Deny of Service Gabriel A. Maggiotti (03/27/02)
- NFuse Cross Site Scripting vulnerability Eric Detoisien (03/27/02)
- Cisco Security Advisory: LDAP Connection Leak in CTI when User Authentication Fails Cisco Systems Product Security Incident Response Team (03/27/02)
- Xchat /dns command execution vulnerability SpaceWalker (03/27/02)
- Retrieving information on local files in IE (GM#003-IE) GreyMagic Software (03/27/02)
- Root compromise through LogWatch 2.1.1 Spybreak (03/27/02)
- JS embedding @ www.reed.co.uk elaborate ruse (03/27/02)
- Re: [RHEA-2002:024-23] Updated rpm packages available helmut g. katzgraber (03/26/02)
- DoS in debian (potato) proftpd Joe Dollard (03/25/02)
- CGIscript.net - csSearch.cgi - Remote Code Execution (up to 17,000 sites vulnerable) Steve Gustin (03/25/02)
- SouthWest Telnet talker server. DoS (Denial of Service Attack). Alex Hernandez (03/26/02)
- FreeBSD Ports Security Advisory FreeBSD-SA-02:19.squid FreeBSD Security Advisories (03/26/02)
- [SECURITY] [DSA 124-1] New mtr packages fix buffer overflow Martin Schulze (03/26/02)
- d_path() truncating excessive long path name vulnerability Wojciech Purczynski (03/26/02)
- Etnus TotalView 5. Andrew Griffiths (03/26/02)
- Security contact for Network Associates? Anton Rager (03/26/02)
- updated squid advisory Adrian Chadd (03/26/02)
- Instant Web Mail additional POP3 commands and mail headers Ulf Harnhammar (03/23/02)
- [IMG] tag vulnerability in vBulletin frog frog (03/22/02)
- secureinc.com Vulnerability Jason Giglio (03/23/02)
- Re: memberlist.php of vBulletin John Percival (03/25/02)
- New Bill attempts to regulate hardware, software development Jon O. (03/22/02)
- Cross-site scripting. Berend-Jan Wever (03/23/02)
- re: Tomcat Security Exposure Adam Manock (03/25/02)
- Apache 1.3.24 Released! (fwd) Jonas Eriksson (03/25/02)
- 1024-bit RSA keys in danger of compromise Lucky Green (03/24/02)
- WebSight Directory System: cross-site-scripting bug ppp-design (03/25/02)
- Cookie vulnerability in Alguest guestbook (PHP) MOD (03/24/02)
- dcshop.cgi anybody can delete *.setup for database pokleyzz sakamaniaka (03/25/02)
- RE: NMRC Advisory: RealSecure KeyManager Issue - Further Explanation Marc Maiffret (03/23/02)
- [RHSA-2002:035-18] Updated PHP packages are available [updated 2002-Mar-11] bugzilla@redhat.com (03/22/02)
- [RHSA-2002:026-43] Vulnerability in zlib library bugzilla@redhat.com (03/22/02)
- Xpede passwords exposed (2 vuln.) Gregory Duchemin (03/22/02)
- Automatically opening IE + Executing attachments GreyMagic Software (03/22/02)
- How Outlook 2002 can still execute JavaScript in an HTML email message Richard M. Smith (03/21/02)
- [RHSA-2002:048-06] New imlib packages available bugzilla@redhat.com (03/21/02)
- Vulnerability in Apache for Win32 batch file processing - Remote command execution Ory Segal (03/21/02)
- Re: NMRC Advisory - KeyManager Issue in ISS RealSecure hellNbak (03/21/02)
- RE: [VulnWatch] NMRC Advisory - KeyManager Issue in ISS RealSecur e on Nokia Appliances hellNbak (03/21/02)
- Fw: PHPNuke 5.4 Path Disclosure Vulnerability? godminus (03/20/02)
- Questionable security policies in Outlook 2002 Richard M. Smith (03/21/02)
- PHP script: Penguin Traceroute, Remote Command Execution paul jenkins (03/21/02)
- MDKSA-2002:025 - fix for insecure default kdm configuration Mandrake Linux Security Team (03/21/02)
- Security Update: [CSSA-2002-SCO.12] Open UNIX, UnixWare 7: rpc.cmsd can be remotely exploited security@caldera.com (03/21/02)
- [Bug 131761] Buffer Overflow in Geck/Netscape 5.0/6.0? Jonathan A. Zdziarski (03/19/02)
- CSS in ikonboard 3.0.1,3.0.2,3.0.3 Max Speed (03/20/02)
- [img]-vulnerability in vBulletin Version 2.2.2 & 2.2.1 & maybe olders Cano2 (03/20/02)
- [Mozilla Bug #131761] Buffer Overflow in Geck/Netscape 5.0/6.0? Jonathan A. Zdziarski (03/18/02)
- LilHTTP Web Server Protected File Access Vulnerability (Solution) Tamer Sahin (03/20/02)
- Bypassing libsafe format string protection Wojciech Purczynski (03/20/02)
- NMRC Advisory - KeyManager Issue in ISS RealSecure on Nokia Appliances hellNbak (03/21/02)
- Citrix contacts Eric Budke (03/20/02)
- Default SNMP configuration issue with Foundry Networks EdgeIron 4802F advisory@prophecy.net.nz (03/20/02)
- Local privalege escalation issues with Webmin 0.92 advisory@prophecy.net.nz (03/20/02)
- move_uploaded_file breaks safe_mode restrictions in PHP Tozz (03/17/02)
- Javascript loop causes IE to crash Patrik Birgersson (03/18/02)
- Additional IRIX CDE and CDE ToolTalk Vulnerabilities update SGI Security Coordinator (03/20/02)
- More SWF vulnerabilities? Drew Daniels (03/19/02)
- IRIX TCP/IP Initial Sequence Numbers SGI Security Coordinator (03/20/02)
- Potential vulnerabilities of the Microsoft RVP-based Instant Messaging Dimitrios Petropoulos (03/19/02)
- phpBB2 remote execution command nullbyte (03/18/02)
- Excite Email Disclosure Vulnerability Jan Schaumann (03/19/02)
- [SECURITY] [DSA-123-1] listar buffer overflow Wichert Akkerman (03/19/02)
- Identifying Kernel 2.4.x based Linux machines using UDP Ofir Arkin (03/19/02)
- Re: Identifying Kernel 2.4.x based Linux machines using UDP Crist J. Clark (03/20/02)
- Re: Identifying Kernel 2.4.x based Linux machines using UDP Crist J. Clark (03/20/02)
- RE: Identifying Kernel 2.4.x based Linux machines using UDP Fletcher, Stephen J (03/21/02)
- Re: Identifying Kernel 2.4.x based Linux machines using UDP Charles-Edouard Ruault (03/19/02)
- Re: Identifying Kernel 2.4.x based Linux machines using UDP Fyodor (03/23/02)
- Re: phpBB2 remote execution command (fwd) Jose Romeo Vela (03/19/02)
- SOLARIS LOGIN remote via telnetd Morgan (03/14/02)
- [ARL02-A11] Big Sam (Built-In Guestbook Stand-Alone Module) Multiple Vulnerabilities Ahmet Sabri ALPER (03/19/02)
- Hosting Directory Traversal madness... Phuong Nguyen (03/18/02)
- TCP Connections to a Broadcast Address on BSD-Based Systems Crist J. Clark (03/17/02)
- FreeBSD Ports Security Advisory FreeBSD-SA-02:18.zlib FreeBSD Security Advisories (03/18/02)
- [ARL02-A09] Board-TNK Cross Site Scripting Vulnerability Ahmet Sabri ALPER (03/17/02)
- [ARL02-A08] BG Guestbook Cross Site Scripting Vulnerability Ahmet Sabri ALPER (03/17/02)
- [ARL02-A10] News-TNK Cross Site Scripting Vulnerability Ahmet Sabri ALPER (03/17/02)
- KPMG-2002005: BitVise WinSSH Denial of Service Peter Gründl (03/18/02)
- [ARL02-A07] ARSC Really Simple Chat System Information Path Disclosure Vulnerability Ahmet Sabri ALPER (03/17/02)
- TSLSA-2002-0040 - zlib Trustix Secure Linux Advisor (03/18/02)
- Buffer Overflow in Geck/Netscape 5.0/6.0? Jonathan A. Zdziarski (03/16/02)
- [Mozilla Bug #131761] Buffer Overflow in Geck/Netscape 5.0/6.0? Jonathan A. Zdziarski (03/18/02)
- PHP-Nuke & Post-Nuke account hijacking. Handle Nopman (03/17/02)
- PHP Net Toolpack: input validation error ppp-design (03/18/02)
- Apache vulnerabilities on IRIX SGI Security Coordinator (03/15/02)
- [RHSA-2002:032-12] Updated cups packages are available bugzilla@redhat.com (03/15/02)
- MSIE vulnerability exploitable with IncrediMail Eric Detoisien (03/15/02)
- RE: MSIE vulnerability exploitable with IncrediMail Thor Larholm (03/15/02)
- RE: MSIE vulnerability exploitable with IncrediMail Eric Detoisien (03/16/02)
- MSIE vulnerability exploitable with Eudora (was: IncrediMail) Magnus Bodin (03/16/02)
- RE: MSIE vulnerability exploitable with IncrediMail Thor Larholm (03/16/02)
- RE: MSIE vulnerability exploitable with IncrediMail Joachim Thuau (03/19/02)
- Bug in QPopper (All Versions?) Dustin Childers (03/15/02)
- RE: [Whitehat] about zlib vulnerability Peter Mueller (03/15/02)
- [CSS] Cross Site Scripting in the translation and infoplease services of lycos.com possible tsr@it-checkpoint.net (03/14/02)
- Fwd: DebPloit (exploit) Mike Tone (03/15/02)
- Account Lockout Vulnerability in Oblix NetPoint v5.2 Bill Canning (03/14/02)
- ZLib double free bug: Windows NT potentially unaffected KJK::Hyperion (03/14/02)
- about zlib vulnerability tele (03/14/02)
- [CLA-2002:469] Conectiva Linux Security Announcement - zlib secure@conectiva.com.br (03/14/02)
- MDKSA-2002:024 - rsync update Mandrake Linux Security Team (03/14/02)
- MDKSA-2002:023-1 - packages containing zlib update Mandrake Linux Security Team (03/14/02)
- Foundry Networks ServerIron don't decode URIs Jedi/Sector One (03/13/02)
- MDKSA-2002:023 - packages containing zlib update Mandrake Linux Security Team (03/13/02)
- [RHSA-2002:026-35] Vulnerability in zlib library bugzilla@redhat.com (03/11/02)
- Security Update: [CSSA-2002-004.1] REVISED: Linux: Various security problems in ucd-snmp Support Info (03/13/02)
- Many, many, many Sql Server 7 & 2000 Buffer Overflows c c (03/12/02)
- Xerver Free Web Server 2.10 file Disclosure & DoS PATCH (update version) Alex Hernandez (03/13/02)
- [RHSA-2002:042-12] Updated secureweb packages available bugzilla@redhat.com (03/13/02)
- Security Update: [CSSA-2002-SCO.11] Open UNIX, UnixWare: OpenSSH channel code vulnerability security@caldera.com (03/13/02)
- [ARL02-A06] Black Tie Project System Information Path Disclosure Vulnerability Ahmet Sabri ALPER (03/12/02)
- Command execution in phprojekt. b0iler _ (03/13/02)
- 2nd Buffer Overflow in Talentsoft's Web+ (#NISR13032002) NGSSoftware Insight Security Research (03/13/02)
- Cgisecurity.com Paper #5: Fingerprinting Port 80 Attacks: A look into web server, and web application attack signatures: Part Two zeno (03/11/02)
- Re: Alteon ACEdirector signature/security bug Mike Rogers (03/12/02)
- Security Update: [CSSA-2002-SCO.9] OpenServer: IPFilter may incorrectly pass packets security@caldera.com (03/12/02)
- SunSolve CD cgi scripts... Fyodor (03/11/02)
- zlibscan : script to find suid binaries possibly affected by zlib vulnerability hologram (03/12/02)
- Re: zlibscan : script to find suid binaries possibly affected by zlib vulnerability Adam (03/13/02)
- Re: zlibscan : script to find suid binaries possibly affected by zlib vulnerability Guy Poizat (03/13/02)
- Re: zlibscan : script to find suid binaries possibly affected by zlib vulnerability Dimitry Andric (03/13/02)
- Re: zlibscan : script to find suid binaries possibly affected by zlib vulnerability Florian Weimer (03/13/02)
- Re: zlibscan : script to find suid binaries possibly affected by zlib vulnerability Bernd Jendrissek (03/13/02)
- Re: zlibscan : script to find suid binaries possibly affected by zlib vulnerability Jean-loup Gailly (03/13/02)
- [OpenPKG-SA-2002.003] OpenPKG Security Advisory (zlib) OpenPKG (03/12/02)
- FreeBSD Ports Security Advisory FreeBSD-SA-02:17.mod_frontpage FreeBSD Security Advisories (03/12/02)
- Security Update: [CSSA-2002-SCO.10] OpenServer: OpenSSH channel code vulnerability security@caldera.com (03/12/02)
- Marcus S. Xenakis "directory.php" allows arbitrary code execution Florian Hobelsberger / BlueScreen (03/10/02)
- NetBSD Security Advisory 2002-002: gzip buffer overrun with long filename NetBSD Security Officer (03/12/02)
- NetBSD Security Advisory 2002-004: Off-by-one error in openssh session NetBSD Security Officer (03/12/02)
- MDKSA-2002:022 - zlib update Mandrake Linux Security Team (03/12/02)
- FreeBSD Ports Security Advisory FreeBSD-SA-02:14.pam-pgsql FreeBSD Security Advisories (03/12/02)
- FreeBSD Ports Security Advisory FreeBSD-SA-02:16.netscape FreeBSD Security Advisories (03/12/02)
- Re: [VulnWatch] exploiting the zlib bug in openssh Michal Zalewski (03/12/02)
- FreeBSD Ports Security Advisory FreeBSD-SA-02:15.cyrus-sasl FreeBSD Security Advisories (03/12/02)
- exploiting the zlib bug in openssh H D Moore (03/12/02)
- OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Michael Leo (03/13/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Christopher X. Candreva (03/13/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Brent J. Nordquist (03/13/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Lisa Bogar (03/14/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Thomas Insel (03/15/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Casper Dik (03/15/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris John D Groenveld (03/15/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Casper Dik (03/29/02)
- Re: OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Christopher X. Candreva (03/13/02)
- OpenSSH rebuild warning: problems avoiding zlib problems in Solaris Michael Leo (03/13/02)
- Security Update: [CSSA-2002-SCO.8] OpenServer: dlvr_audit: exploitable buffer overflow security@caldera.com (03/12/02)
- zlib & java Darren Reed (03/12/02)
- [ARL02-A05] PHP FirstPost System Information Path Disclosure Vulnerability Ahmet Sabri ALPER (03/12/02)
- ADVISORY: Windows Shell Overflow Marc Maiffret (03/12/02)
- TSLSA-2002-0039 - openssh Trustix Secure Linux Advisor (03/11/02)
- [ESA-20020311-008] Double free() in zlib may lead to buffer overflow. EnGarde Secure Linux (03/11/02)
- [RHSA-2002:027-22] Vulnerability in zlib library (powertools) bugzilla@redhat.com (03/11/02)
- Directory traversal vulnerability in phpimglist Jason DiCioccio (03/11/02)
- CaupoShop: cross-site-scripting bug ppp-design (03/11/02)
- Ecartis/Listar multiple vulnerabilities Janusz Niewiadomski (03/11/02)
- security problem fixed in zlib 1.1.4 Jean-loup Gailly (03/11/02)
- [SECURITY] [DSA 122-1] New zlib & other packages fix buffer overflow Michael Stone (03/11/02)
- SuSE Security Announcement: libz/zlib (SuSE-SA:2002:010) (tandem-announcement, first part) Roman Drahtmueller (03/11/02)
- SuSE Security Announcement: packages containing libz/zlib (SuSE-SA:2002:011) (tandem-announcement, second part) Roman Drahtmueller (03/11/02)
- [SECURITY] [DSA 121-1] New xtell packages fix several vulnerabilities Martin Schulze (03/11/02)
- SMStools vulnerabilities in release before 1.4.8 Marcello Magnifico [fabbricadigitale] (03/11/02)
- Suspect 'advisory' from someone claiming to be from Microsoft (was Fwd: Internet Security Update) Marlon Borba (03/10/02)
- IMail Account hijack through the Web Interface Obscure (03/10/02)
- [SECURITY] [DSA 120-1] New mod_ssl and Apache/SSL packages fix buffer overflow Martin Schulze (03/10/02)
- VirusWall HTTP proxy content scanning circumvention Boris Wesslowski (03/11/02)
- OpenSSH 2.9.9p2 packages for Immunix 6.2 with latest fix Greg KH (03/10/02)
- GNU fileutils - recursive directory removal race condition Wojciech Purczynski (03/11/02)
- Citadel/UX Server Remote DoS attack Vulnerability xperc (03/10/02)
- xtux server DoS. b0iler _ (03/09/02)
- Pi3Web/2.0.0 File-Disclosure/Path Disclosure vuln Tekno pHReak (03/10/02)
- ZyXEL ZyWALL10 DoS Knud Erik Hĝjgaard (03/11/02)
- Linksys BEFVP41 VPN Server does not follow proper VPN standards pschlesinger@teltechplus.com (03/08/02)
- Xerver-2.10-File-Disclousure&DoS-attack Alex Hernandez (03/09/02)
- MDKSA-2002:020 - mod_ssl update Mandrake Linux Security Team (03/08/02)
- MDKSA-2002:019 - openssh update Mandrake Linux Security Team (03/08/02)
- Windows 2000 password policy bypass possibility Leonid Mamtchenkov (03/07/02)
- [RHSA-2002:041-08] Updated mod_ssl packages available bugzilla@redhat.com (03/08/02)
- Re: Edvice Security Services <support@edvicesecurity.com, 000701c1c5fb$c168f970$5a01010a@mic2000 Sym Security (03/08/02)
- [SECURITY] [DSA 119-1] ssh channel bug Michael Stone (03/08/02)
- Checkpoint FW1 SecuRemote/SecureClient "re-authentication" (client side hacks of users.C) Cedric Amand (03/08/02)
- MDKSA-2002:021 - mod_frontpage update Mandrake Linux Security Team (03/08/02)
- Subversion of Information Vulnerabilities on Major News Sites Jeremiah J. Jacks (03/08/02)
- Remote Cobalt Raq XTR vulns W. ter Maat - Digit-Labs Information Security (03/08/02)
- [OpenPKG-SA-2002.002] OpenPKG Security Advisory (openssh) OpenPKG (03/08/02)
- linux <=2.4.18 x86 traps.c problem Avery Buffington (03/08/02)
- [RHSA-2002:043-10] Updated openssh packages available bugzilla@redhat.com (03/08/02)
- [CLA-2002:468] Conectiva Linux Security Announcement - php secure@conectiva.com.br (03/08/02)
- Vulnerability Details for MS02-012 H D Moore (03/07/02)
- [ESA-20020307-007] Local vulnerability in OpenSSH's channel code. EnGarde Secure Linux (03/07/02)
- SuSE Security Announcement: openssh (SuSE-SA:2002:009) Roman Drahtmueller (03/07/02)
- [CLA-2002:467] Conectiva Linux Security Announcement - openssh secure@conectiva.com.br (03/07/02)
- OpenSSH Security Advisory (adv.channelalloc) Markus Friedl (03/07/02)
- Various Vulnerabilities in Norton Anti-Virus 2002 Edvice Security Services (03/07/02)
- mIRC DCC Server Security Flaw James Evans (03/06/02)
- [PINE-CERT-20020301] OpenSSH off-by-one Joost Pol (03/07/02)
- PureTLS Security Announcement: Upgrade to 0.9b2 Eric Rescorla (03/06/02)
- mtr 0.45, 0.46 Przemyslaw Frasunek (03/06/02)
- [CLA-2002:466] Conectiva Linux Security Announcement - radiusd-cistron secure@conectiva.com.br (03/06/02)
- Mistype a URL? M$N knows what you typed. Darren Reed (03/06/02)
- efingerd remote buffer overflow and a dangerous feature Spybreak (03/06/02)
- NT user (who is locked changing his/her password by administrator ) can bypass the security policy and Change the password. Syed Mohamed A (03/06/02)
- cansecwest/core02 Dragos Ruiu (03/05/02)
- On the ultimate futility of server-based mail scanning David F. Skoll (03/04/02)
- SECURITY.NNOV: few vulnerabilities in multiple RADIUS implementations 3APA3A (03/05/02)
- Apache+php Proof of Concept Exploit Gabriel A. Maggiotti (03/04/02)
- Buffer Overflows in sh39.com's mailserver 1.21 Rense Buijen (03/05/02)
- IIS Internal IP Address Disclosure (#NISR05032002B) David Litchfield (03/05/02)
- [SECURITY] [DSA 117-1] New CVS packages fix potential security problems Martin Schulze (03/05/02)
- Two new white papers David Litchfield (03/05/02)
- Considerations for IIS Authentication (#NISR05032002C) David Litchfield (03/05/02)
- Another Sql Server 7 Buffer Overflow c c (03/05/02)
- Endymion SakeMail and MailMan File Disclosure Vulnerability rudi carell (03/05/02)
- Buffer Overrun in Talentsoft's Web+ (#NISR01032002A) David Litchfield (03/05/02)
- Java HTTP proxy vulnerability Harmen van der Wal (03/05/02)
- mutants! - spp_fnord.c (It can see the FNORDs! :-) Dragos Ruiu (03/02/02)
- [H20020304]: Remotely exploitable format string vulnerability in ntop hologram (03/04/02)
- [RHSA-2002:030-08] Updated radiusd-cistron packages are available bugzilla@redhat.com (03/05/02)
- BSD: IPv4 forwarding doesn't consult inbound SPD in KAME-derived IPsec Greg Troxel (03/04/02)
- SuSE Security Announcement: squid (SuSE-SA:2002:008) Sebastian Krahmer (03/04/02)
- Re: "Peter Miller" pcmiller61@yahoo.com, 02/26/2002 03:48 AM RE: Symantec LiveUpdate Sym Security (03/01/02)
- Apache-SSL 1.3.22+1.47 - update to security fix Ben Laurie (03/04/02)
- Security Update: [CSSA-2002-SCO.7] OpenServer: multiple vulnerabilities in squid security@caldera.com (03/04/02)
- ReBB javascripts vulnerability skizzik@imail.ru (03/04/02)
- [CLA-2002:465] Conectiva Linux Security Announcement - apache secure@conectiva.com.br (03/04/02)
- iBuySpy store hole Tom Gilder (03/03/02)
- AeroMail multiple vulnerabilities Ulf Harnhammar (03/03/02)
- Denial of Service in Sphereserver iphantomi@web.de (03/02/02)
- RealPlayer bug §ome1 (03/02/02)
- Apache-SSL buffer overflow (fix available) Ben Laurie (03/01/02)
- Phorum Discussion Board Security Bug (Email Disclosure) Agricola (03/02/02)
- [SECURITY] [DSA 115-1] New PHP packages fix security problems Martin Schulze (03/02/02)
- [SECURITY] [DSA 116-1] New CFS packages fix security problems Martin Schulze (03/02/02)
- Open Security Testing Meth 2.0 released pete (03/01/02)
- [matt@zope.com: [Zope-Annce] Zope Hotfix 2002-03-01 (Ownership Roles Enforcement)] George Lewis (03/01/02)
- AOL Instant Messenger Servers Patched and...Un-Patched? Brendan Butts (03/01/02)
- nCipher Security Advisory #2: SNMP vulnerabilities nCipher Support (02/27/02)
- IIS SMTP component allows mail relaying via Null Session Todd Sabin (03/01/02)
- IE execution of arbitrary commands without Active Scripting or ActiveX (GM#001-IE) GreyMagic Software (02/27/02)
- Re: IE execution of arbitrary commands without Active Scripting or ActiveX (GM#001-IE) the Pull (03/01/02)
- Re: IE execution of arbitrary commands without Active Scripting or ActiveX (GM#001-IE) Stefan Osterlitz (03/01/02)
- RE: IE execution of arbitrary commands without Active Scripting or ActiveX (GM#001-IE) Thomas Thornbury (03/01/02)
- Re: mod_ssl Buffer Overflow Condition (Update Available) Ben Laurie (03/01/02)
- [ESA-20020301-006] 'php, mod_php' MIME parsing vulnerabilities EnGarde Secure Linux (03/01/02)
- [ESA-20020301-005] 'apache' (mod_ssl) session caching buffer overflow EnGarde Secure Linux (03/01/02)
- DoS on HP ProCurve 4000M switch (possibly others) Jon Snyder (03/01/02)
- Cobalt-RAQ-4-Bugs&Vulnerabilities Alex Hernandez (03/01/02)
- RE: UPDATE: [wcolburn@nmt.edu: SMTP relay through checkpoint fire wall] Corey J. Steele (02/26/02)
- Re: BUG: Kmail client DoS Valden Longhurst (02/28/02)
- TSLSA-2002-0033 - mod_php Trustix Secure Linux Advisor (02/28/02)
- Commercial stack fragility (Was RE: Cert Advisory 2002-03 and HP JetDirect) Brewis, Mark (02/27/02)
- TSLSA-2002-0034 - apache Trustix Secure Linux Advisor (02/28/02)
- SuSE Security Announcement: mod_php/mod_php4 (SuSE-SA:2002:007) Roman Drahtmueller (02/28/02)
- UPDATE: Cert Advisory 2002-03 and Ethereal Information Security (02/27/02)
- Re: "Javier Sanchez" jsanchez157@hotmail.com 02/25/2002 11:14 AM, Symantec LiveUpdate Sym Security (02/28/02)
- PCFriendly DVD Backchannel Matt Curtin (02/28/02)
- Colbalt-RAQ-v4-Bugs&Vulnerabilities Alex Hernandez (02/28/02)
- [RHSA-2002:035-13] Updated PHP packages are available bugzilla@redhat.com (02/28/02)
- MDKSA-2002:017 - php update Mandrake Linux Security Team (03/01/02)
- 2K, with RealPlayer Installed 100 % CPU utilization Adonis.No.Spam (02/27/02)
- [SECURITY] [DSA-111-2] Update for SNMP security fix Wichert Akkerman (02/28/02)
- RE: Windows Media Player executes WMF content in .MP3 files. Menashe Eliezer (02/27/02)
- Re: Anti Virus Mailscanners DOS David F. Skoll (02/26/02)
- [CLA-2002:464] Conectiva Linux Security Announcement - squid secure@conectiva.com.br (02/27/02)
- Hotline Client Plain password vuln. Rense Buijen (02/28/02)
- NAI Gauntlet Firewall 5.5 for NT (Multiple Vendor HTTP CONNECT TCP Tunnel Vulnerability (bugtraq id 4131) Rashed Alabbar (02/28/02)
- RE: Open Bulletin Board javascript bug. Nate Pinchot (02/28/02)
- MDKSA-2002:018 - cyrus-sasl update Mandrake Linux Security Team (03/01/02)
- Remote exploit against xtelld and other fun Spybreak (02/27/02)
- SecurityOffice Security Advisory:// Novell GroupWise Web Access Path Disclosure Vulnerability Tamer Sahin (02/28/02)
- Re: Anonymous Mail Forwarding Vulnerabilities in FormMail 1.9 David Cantrell (02/28/02)
- Old (and fixed) Windows bug - was Re: BPM STUDIO PRO 4.2 DOS DEVICE PATH VULNERABILITY Alun Jones (02/28/02)
- Resend: SuSE Security Announcement: cups (SuSE-SA:2002:006) Thomas Biege (02/28/02)
- ... Tiny Personal Firewall ... Andrew Barkley (03/01/02)
- Snitz 2000 Code Patch (was RE: Open Bulletin Board javascript bug.) Joshua_Hiller@aeanet.org (02/28/02)
- Re: Why is Microsoft watching us watch DVD movies? Scott Christopher Dodson (02/25/02)
- [ARL02-A04] DCP-Portal System Information Path Disclosure Vulnerability Ahmet Sabri ALPER (02/28/02)
- RE: Symantec LiveUpdate Peter Miller (02/28/02)
- the dangers of disclosing vulnerabilities when the guilty party is ignorant of industry standards Brian Rea (02/28/02)
Last message date: 03/31/02
Archived on: 03/31/02 CEST
411 messages sorted by: [ author ] [ date ] [ subject ] [ attachment ]
