SecurityFocus Bugtraq
By Author

278 messages sorted by: [ date ] [ thread ] [ subject ] [ attachment ]

Starting: 12/01/02
Ending: 12/31/02

0x90
- Re: adelphia vulnerability within subnets (12/17/02)
- Adelphia Powerlink service vulnerable to man in the middle attacks by cable modem users. (12/12/02)
3APA3A
- SECURITY.NNOV: more Ikonboard 3.1.1 crossite scriptings (12/09/02)
advisories@texonet.com
- Unchecked buffer in PC-cillin (12/10/02)
alias@securityfocus.com
- Apache/Tomcat Denial Of Service And Information Leakage Vulnerability (12/04/02)
Alun Jones
- Re: KunaniFTP-Server v.1.0.10 allows dictionary traversal (12/11/02)
Amit Klein
- Multiple vendors XML parser (and SOAP/WebServices server) Denial of Service attack using DTD (12/16/02)
Andreas Borchert
- Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/18/02)
Andreas Tscharner
- Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/26/02)
Andrew Daviel
- junkbuster 2.0-1 proxy relaying spam (12/23/02)
Andrew Kopp
- RE: Directory traversal vulnerabilities in several archivers processing .tar (12/18/02)
Antonomasia
- Re: export LD_LIBRARY_PATH in /etc/profile.d/* files (12/18/02)
Axis Product Security
- Web server vulnerability in Axis Network Cameras, Video Servers and DVRs (12/20/02)
Ben Bucksch
- Re: [Full-Disclosure] Netscape Problems. (12/01/02)
Ben Laurie
- Re: CITIBANK [CANADA]: INTERNET EXPLORER BROWSERS (12/30/02)
Bharat Mediratta
- Gallery v1.3.2 allows remote exploit (fixed in 1.3.3) (12/28/02)
Brian Carpenter
- Password Hole Found In Webshots (12/12/02)
bugzilla@redhat.com
- [RHSA-2002:293-09] Updated Fetchmail packages fix security vulnerability (12/17/02)
- [RHSA-2002:228-11] Updated Net-SNMP packages fix security and other bugs (12/17/02)
- [RHSA-2002:222-21] Updated apache, httpd, and mod_ssl packages available (12/12/02)
- [RHSA-2002:229-10] Updated wget packages fix directory traversal bug (12/10/02)
- [RHSA-2002:246-18] Updated Canna packages fix vulnerabilities (12/10/02)
- [RHSA-2002:254-05] Updated Webalizer packages fix vulnerability (12/04/02)
- [RHSA-2002:220-40] Updated KDE packages fix security issues (12/04/02)
- [RHSA-2002:196-19] Updated xinetd packages fix denial of service vulnerability (12/02/02)
Carl Livitt
- RE: Exploit for traceroute-nanog overflow (12/02/02)
Carlos Sarraute
- CORE-20021005: Vulnerability Report For Linksys Devices (12/03/02)
Casper Aleva
- Potential DOS attack with Web-CyrAdm. (12/30/02)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco Security Advisory: SSH Malformed Packet Vulnerabilities (12/20/02)
- Cisco Security Advisory: OSM Line Card Header Corruption Vulnerability (12/11/02)
Colin Watson
- Re: Zeus Admin Server v4.1r2 index.fcgi XSS bug (12/11/02)
CORREIA, PATRICK
- RE: Cross-site scripting vulnerability in CF 5.0 (12/16/02)
Curator at Security Digest Archives
- [securitydigest.org]: Changes for December 2002 (12/14/02)
Damir Rajnovic
- Re: Cisco IOS EIGRP Network DoS (12/19/02)
Dan Rowles
- [Fwd: [RHSA-2002:196-09] Updated xinetd packages fix denial of service vulnerability] (12/04/02)
Daniel Ahlberg
- GLSA: cups (12/29/02)
- GLSA: openldap (12/28/02)
- GLSA: cyrus-sasl (12/27/02)
- GLSA: kde-3.0.x (12/22/02)
- GLSA: canna (12/20/02)
- GLSA: wget (12/20/02)
- GLSA: perl (12/20/02)
- GLSA: exim (12/16/02)
- GLSA: mysql (12/15/02)
- GLSA: squirrelmail (12/15/02)
- GLSA: fetchmail (12/15/02)
- GLSA: mysql (12/15/02)
- GLSA: pine (12/02/02)
Daniel Alcántara de la Hoz
- [IPS] PUTTY SSH-Client Exploit (12/28/02)
Dave Ahmad
- Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd) (12/19/02)
- Foundstone Research Labs Advisory - Exploitable Windows XP Media Files (fwd) (12/19/02)
David Endler
- RE: iDefense Security Advisory (12/13/02)
David F. Skoll
- Buffer overflow in PHP "wordwrap" function (12/27/02)
David Howe
- Re: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd) (12/19/02)
David Laganière
- Lag Security Advisory - Com21 cable modem configuration file feeding vulnerability (11/29/02)
David Wheeler
- Updated "Secure Programming for Linux and Unix HOWTO" now available. (12/30/02)
Dennis Rand
- Multiple vulnerabilities found in PlatinumFTPserver V1.0.6 (12/30/02)
der Mouse
- Re: Directory traversal vulnerabilities in several archivers processing .tar (12/17/02)
- Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/16/02)
- Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/17/02)
Derek Luce
- [RHSA-2002:196-19] Updated xinetd packages fix denial of service vulnerability (12/09/02)
Dirk Mueller
- KDE Security Advisory: Multiple vulnerabilities in KDE (12/21/02)
Dmitry Guyvoronsky
- [Fix] Openwebmail 1.71 remote root compromise (12/19/02)
- Openwebmail 1.71 remote root compromise (12/18/02)
DNA ESC
- APBoard-Bug (12/06/02)
dong-h0un U
- Remote multiple vulnerability in apt-www-proxy. (12/08/02)
- Directory traversing bug in 'myServer' webserver. (12/11/02)
- Remote multiple vulnerability in apt-www-proxy. (12/10/02)
Dorin Balanica
- Input Validation Error in vbulletin 2.2.x (12/08/02)
Dr. Peter Bieringer
- Re: Proxy vulnerability in TrendMicro InterScan-VirusWall V3.6 - and 3.7 Build 1190 (12/09/02)
Dr.Tek
- 'printenv' XSS vulnerability (12/22/02)
eflorio@edmaster.it
- Telindus 112x ADSL Router - Weak Password Encryption (12/28/02)
Eitan Caspi
- RE: Sygate Personal Firewall can be shut down without a need to supply a password - although one is required (12/09/02)
- RE: Sygate Personal Firewall can be shut down without a need to supply (12/05/02)
- Sygate Personal Firewall can be shut down without a need to supply a password - although one is required (12/04/02)
- RE: User downgraded from Administrator to User retains the ability to list other user's running tasks (11/29/02)
EnGarde Secure Linux
- [ESA-20021213-033] Several MySQL vulnerabilities. (12/13/02)
euronymous
- Multiple Mambo Site Server sec-weaknesses (12/12/02)
- XSS and Path Disclosure in UPB (12/07/02)
- SquirrelMail v1.2.9 XSS bugs (12/03/02)
Fabricio Angeletti
- Cross-site Scripting Vulnerability in phpBB 2.0.3 (12/03/02)
- Cross-site Scripting Vulnerability in YaBB 1 Gold - SP1! (12/02/02)
Florian Schafferhans
- Directory traversal vulnerabilities in several archivers processing .tar (12/17/02)
Florian Weimer
- Re: KDE Security Advisory: Multiple vulnerabilities in KDE (12/23/02)
FORENSICS.ORG Security Coordinator
- Full Disclosure: Windows File Protection Old Security Catalog Vulnerability (12/26/02)
- Full Disclosure: Windows File Protection Arbitrary Certificate Chain Vulnerability (12/26/02)
fozzy@dmpfrance.com
- Re: KDE Security Advisory: Multiple vulnerabilities in KDE (12/23/02)
Frog Man
- PEEL (PHP) (12/31/02)
- SPGpartenaires (PHP) (12/20/02)
- WAnewsletter (PHP) (12/19/02)
- Security Patchs for PHP Products (12/15/02)
- PHP-Nuke 6.0 : Path Disclosure & Cross Site Scripting (12/15/02)
- MyPHPLinks (PHP) : SQL Injection (12/14/02)
- Re: XSS and Path Disclosure in UPB (12/09/02)
- Thatware (PHP) (12/01/02)
FX
- Cisco IOS EIGRP Network DoS (12/19/02)
Gianni Tedesco
- Multiple vulnerabilities in akfingerd (12/05/02)
Global InterSec Research
- [GIS 2002101601] SkyStream Admin Shell Privilege Escalation. (12/27/02)
gobbles@hushmail.com
- iDefense Security Advisory (12/13/02)
grazer@digit-labs.org
- Cobalt RaQ4 Remote root exploit (12/05/02)
Hacknisty
- Re: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd) (12/23/02)
http-equiv@excite.com
- CITIBANK [CANADA]: INTERNET EXPLORER BROWSERS (12/29/02)
Ian Nguyen
- Re: Password Hole Found In Webshots (12/12/02)
iDEFENSE Labs
- iDEFENSE Security Advisory 12.23.02: Integer Overflow in pdftops (12/23/02)
- iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS) (12/19/02)
Ing. Bernardo Lopez
- PHPNuke 6.0 path disclosure [again] (12/22/02)
James Morris
- Re: Local Netfilter / IPTables IP Queue PID Wrap Flaw (12/03/02)
- Local Netfilter / IPTables IP Queue PID Wrap Flaw (12/03/02)
Jan Rutkowski
- Bypassing Integrity Protection Driver (time vulnerability) (12/02/02)
jari.helenius@mawaron.com
- Potential Vuln in McAfee VirusScan 451 (11/29/02)
Jason Coombs
- RE: Kerberos login sniffer and cracker for Windows 2000/XP (12/02/02)
Jay Beale
- Re: Solaris priocntl exploit (12/02/02)
Jim Knoble
- Re: Fw: CERT Advisory CA-2002-34 Buffer Overflow in Solaris X Window Font Service (12/04/02)
Joe Testa
- Re: iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS) (12/21/02)
Joel Maslak
- Visual SourceSafe - Preliminary Observations (12/29/02)
John Eisenschmidt
- Advisory: Lawson Financials RDBMS Insecurity (12/02/02)
John Tolmachofft
- RE: User downgraded from Administrator to User retains the ability to list other user's running tasks (11/29/02)
Jonathan Angliss
- Re: SquirrelMail v1.2.9 XSS bugs (12/03/02)
jrodriga@retevision.es
- Proxy vulnerability in TrendMicro InterScan-VirusWall V3.6 (12/23/02)
K. K. Mookhey
- Password Disclosure in Cryptainer (12/16/02)
KF
- SAP database local root via symlink (12/04/02)
KiLL CoLe
- Cross-site scripting vulnerability in CF 5.0 (12/16/02)
konto mailingowe
- RE: Directory traversal vulnerabilities in several archivers processing .tar (12/20/02)
Kurt Seifried
- Re: [VulnWatch] Password Disclosure in Cryptainer (12/17/02)
- Re: [VulnWatch] proftpd <=1.2.7rc3 DoS (12/11/02)
- Re: [VulnWatch] proftpd <=1.2.7rc3 DoS (12/10/02)
Liu Die Yu
- (MSIE)A rather old trick for web server is now played on MSIE. (12/26/02)
- XSS flaw found at "https://www.e-gold.com" (12/10/02)
- Poisonous Style for Dialog window turns the zone off. (12/03/02)
Louie Conceicao
- FW: SQL Injection Solved (12/13/02)
luca.ercoli@inwind.it
- Enceladus Server Suite traversal directory vulnerability (12/08/02)
- WebReflex Directory Traversal Vulnerability (12/06/02)
Mandrake Linux Security Team
- MDKSA-2002:068-1 - Updated apache packages fix multiple vulnerabilities (12/18/02)
- MDKSA-2002:087 - Updated MySQL packages fix multiple vulnerabilities (12/18/02)
- MDKSA-2002:086 - Updated wget packages fix directory traversal vulnerability (12/12/02)
- MDKSA-2002:082-1 - Updated python packages fix local arbitrary code execution vulnerability (12/09/02)
- MDKSA-2002:085 - Updated WindowMaker packages fix buffer overflow vulnerability (12/03/02)
- MDKSA-2002:084 - Updated pine packages fix buffer overflow vulnerability (12/03/02)
Marc Druilhe
- Re: XSS and PHP include bug in W-Agora (12/20/02)
Marc Maiffret
- Macromedia Shockwave Flash Malformed Header Overflow #2 (12/17/02)
- PNG (Portable Network Graphics) Deflate Heap Corruption Vulnerability (12/12/02)
Marc Ruef
- Missing admin sql password in Okena StormWatch (12/18/02)
Marc Slemko
- Re: 'printenv' XSS vulnerability (12/23/02)
Marcus Gavel
- RE: Missing admin sql password in Okena StormWatch (12/19/02)
Martin Schulze
- [SECURITY] [DSA 219-1] New dhcpcd packages fix remote command execution vulnerability (12/31/02)
- [SECURITY] [DSA 218-1] New bugzilla packages fix cross site scripting problem (12/30/02)
- [SECURITY] [DSA 217-1] New typespeed packages fix buffer overflow (12/27/02)
- [SECURITY] [DSA 216-1] New fetchmail packages fix buffer overflow (12/24/02)
- [SECURITY] [DSA 215-1] New cyrus-imapd packages fix remote command execution (12/23/02)
- [SECURITY] [DSA 214-1] New kdentwork packages fix buffer overflows (12/20/02)
- [SECURITY] [DSA 213-1] New libpng packages fix buffer overflow (12/19/02)
- [SECURITY] [DSA 211-1] New mICQ packages fix denial of service (12/13/02)
- [SECURITY] [DSA 208-1] New Perl packages correct Safe handling (12/12/02)
- [SECURITY] [DSA 207-1] New tetex-lib packages fix arbitrary command execution (12/11/02)
- [SECURITY] [DSA 202-2] New IM packages correct hidden architecture dependency (12/06/02)
- [SECURITY] [DSA 192-2] New html2ps packages correct fix against arbitrary code execution (12/06/02)
- [SECURITY] [DSA 204-1] New kdlibs packages fix arbitrary program execution (12/05/02)
- [SECURITY] [DSA 203-1] New smb2www packages fix arbitrary command execution (12/04/02)
- [SECURITY] [DSA 202-1] New IM packages fix insecure temporary file creation (12/03/02)
- [SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service (12/02/02)
Matthew Murphy
- Multiple pServ Remote Buffer Overflow Vulnerabilities (12/01/02)
- Advisory: Webster HTTP Server (12/01/02)
Matthias Andree
- Leafnode security announcement SA:2002:01 (12/29/02)
- gfxboot allows boot password circumvention, SuSE 8.1 GRUB (12/14/02)
- Re: Cyrus SASL library buffer overflows (12/10/02)
Michael S. Scheidell
- [VU#317417] Denial of Service condition in vxworks ftpd/3com nbx (12/02/02)
Michal Zalewski
- [RAZOR] Problems with mkstemp() (12/20/02)
- RAZOR advisory: Linux 2.2.xx /proc/<pid>/mem mmap() vulnerability (12/17/02)
Mike Cramp
- Zeroo Webserver remote directory traversal exploit (12/03/02)
Mischa Krilov
- Re: Foundstone Research Labs Advisory - Multiple Exploitable Buff er Overflows in Winamp (fwd) (12/20/02)
Mitja Kolsek (ACROS Lists)
- Security Paper: Session Fixation Vulnerability in Web-based Applications (12/18/02)
mlh@zip.com.au
- Re: export LD_LIBRARY_PATH in /etc/profile.d/* files (12/17/02)
Muhammad Faisal Rauf Danka
- Fwd: CERT Advisory CA-2002-36 Multiple Vulnerabilities in SSH Implementations (12/17/02)
- CERT Advisory CA-2002-35 Vulnerability in RaQ 4 Servers (fwd) (12/12/02)
- Fw: CERT Advisory CA-2002-34 Buffer Overflow in Solaris X Window Font Service (12/02/02)
nCipher Support
- nCipher Advisory #6: Access control defects in PKCS#11 keys (12/20/02)
NGSSoftware Insight Security Research
- RealNetworks HELIX Server Buffer Overflow Vulnerabilities (#NISR20122002) (12/20/02)
- zkfingerd 0.9.1 format string vulnerabilities (#NISR16122002A) (12/16/02)
- PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/16/02)
OpenPKG
- [OpenPKG-SA-2002.016] OpenPKG Security Advisory (fetchmail) (12/17/02)
- [OpenPKG-SA-2002.015] OpenPKG Security Advisory (tetex) (12/16/02)
- [OpenPKG-SA-2002.014] OpenPKG Security Advisory (perl) (12/16/02)
- [OpenPKG-SA-2002.013] OpenPKG Security Advisory (mysql) (12/16/02)
Ory Segal
- VisNetic WebSite XSS vulnerability through HTTP referer header (12/12/02)
Paul Szabo
- Matlab /tmp usage (12/22/02)
Pavel Kankovsky
- Re: Solaris priocntl exploit (12/23/02)
Pedram Amini
- Captaris (Infinite) WebMail XSS (12/17/02)
Peter Kruse
- Denial of Service vulnerability in VisNetic Website (12/11/02)
ph33r
- Advisory Title: iASP Remote Console Applet Allows Remote (12/13/02)
phrackstaff@phrack.org
- PHRACK #60 HAS BEEN RELEASED (12/28/02)
Pry
- Historic blackhat archives exposed (12/18/02)
Rapid 7 Security Advisories
- R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors (12/16/02)
rich@annexia.org
- export LD_LIBRARY_PATH in /etc/profile.d/* files (12/17/02)
Richard M. Smith
- Wired.com: So Many Holes, So Few Hacks (12/30/02)
Richard Stanway
- RE: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd) (12/19/02)
Richard van den Berg
- ShopFactory shopping cart price manipulation (12/02/02)
Rob klein Gunnewiek
- Re: [VulnWatch] proftpd <=1.2.7rc3 DoS (12/11/02)
- proftpd <=1.2.7rc3 DoS (12/08/02)
Robert Tracz
- Re: CAIS-ALERT: Vulnerability in the sending requests control of BIND (12/02/02)
Russ
- RE: Sygate Personal Firewall can be shut down without a need to supply a password - although one is required (12/06/02)
Russell Garrett
- RE: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd) (12/19/02)
Ryan Cleary
- Re: [Fwd: [RHSA-2002:196-09] Updated xinetd packages fix denial of service vulnerability] (12/05/02)
Scott Howard
- Re: Solaris priocntl exploit - Sol8 patches available (12/27/02)
Sebastian Krahmer
- SuSE Security Announcement: cyrus-imapd (SuSE-SA:2002:048) (12/20/02)
- SuSE Security Announcement: OpenLDAP2 (SuSE-SA:2002:047) (12/06/02)
secure@conectiva.com.br
- [CLA-2002:557] Conectiva Linux Security Announcement - cyrus-imapd (12/27/02)
- [CLA-2002:556] Conectiva Linux Security Announcement - openldap (12/19/02)
- [CLA-2002:555] Conectiva Linux Security Announcement - MySQL (12/17/02)
- [CLA-2002:553] Conectiva Linux Security Announcement - kernel 2.4 (12/16/02)
- [CLA-2002:554] Conectiva Linux Security Announcement - fetchmail (12/16/02)
- [CLA-2002:552] Conectiva Linux Security Announcement - wget (12/13/02)
- [CLA-2002:551] Conectiva Linux Security Announcement - pine (12/04/02)
security
- zkfingerd remote exploit (12/22/02)
security@caldera.com
- Security Update: [CSSA-2002-059.0] Linux: multiple vulnerabilities in BIND (CERT CA-2002-31) (12/20/02)
- Security Update: [CSSA-2002-SCO.44] UnixWare 7.1.1 Open UNIX 8.0.0 : uudecode performs inadequate checks on user-specified output files (12/11/02)
- Security Update: [CSSA-2002-058.0] Linux: buffer overflow in nss_ldap DNS SRV (12/11/02)
- Security Update: [CSSA-2002-SCO.43] UnixWare 7.1.1 Open UNIX 8.0.0 : closed file descriptor race vulnerability (12/09/02)
- Security Update: [CSSA-2002-057.0] Linux: groff pic buffer overflow (12/07/02)
- Security Update: [CSSA-2002-056.0] Linux: apache vulnerabilities in shared memory, DNS, and ApacheBench (12/06/02)
- Security Update: [CSSA-2002-055.0] Linux: RPC XDR buffer overflow (12/04/02)
- Security Update: [CSSA-2002-054.0] Linux: exploitable memory leak in ypserv (12/04/02)
SecurityFocus@cubesearch.com
- Re: Cross-site scripting vulnerability in CF 5.0 (12/16/02)
securma massine
- Hyperion FTP Server buffer overflow (12/23/02)
- Multiple vulnerability in Enceladus Server (12/19/02)
- Eserv remote denial of service (12/13/02)
- TFTP32 DOS (12/10/02)
Seth Knox
- RE: Sygate Personal Firewall can be shut down without a need to s upply a password - although one is required (12/09/02)
- Sygate Personal Firewall can be shut down without a need to suppl y (12/05/02)
SGI Security Coordinator
- Directory Traversal Vulnerability in FTP Client on IRIX (12/13/02)
- Samba Security Vulnerability on IRIX (12/05/02)
- BIND Name Server DNS Spoofing Vulnerability on IRIX (12/05/02)
- Buffer Overflow Vulnerability in X Font Server on IRIX (12/04/02)
- Multiple Vulnerabilities in BIND Name Service Daemon on IRIX (12/04/02)
Shutters, Mike
- RE: Foundstone Research Labs Advisory - Multiple Exploitable Buff er Overflows in Winamp (fwd) (12/20/02)
- RE: Password Hole Found In Webshots - (Webshots Confirmed) (12/18/02)
snsadv@lac.co.jp
- [SNS Advisory No.60 rev.2] Windows XP Disclosure of Registered AP Information (12/24/02)
- Windows XP Disclosure of Registered AP Information (12/04/02)
- [SNS Advisory No.59] Buffalo Wireless LAN Access Point Denial of Service Vulnerability (was Re: Buffalo AP Denial of Service) (12/03/02)
Stefan Esser
- Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/17/02)
- RE: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/16/02)
- Advisory 05/2002: Another Fetchmail Remote Vulnerability (12/13/02)
- Advisory 04/2002: Multiple MySQL vulnerabilities (12/12/02)
Stephan Sachweh
- Antwort: Openwebmail 1.71 remote root compromise (12/23/02)
Stephen Samuel
- Re: Directory traversal vulnerabilities in several archivers processing .tar (12/19/02)
- Re: Directory Traversal Vulnerabilities in FTP Clients (12/12/02)
Steven M. Christey
- Directory Traversal Vulnerabilities in FTP Clients (12/11/02)
Tabor J. Wells
- Re: Local root vulnerability found in exim 4.x (and 3.x) (12/05/02)
- Re: Local root vulnerability found in exim 4.x (and 3.x) (12/05/02)
Tamer Sahin
- [SecurityOffice] Polycom Video Conference System Management Server Authentication Bypass Vulnerability (12/19/02)
- [SecurityOffice] Enceladus Server Suite v3.9 Buffer Overflow Vulnerability (12/09/02)
Thomas Biege
- Re: TracerouteNG - never ending story (12/04/02)
Thor Larholm
- Notes on MS02-068, extensive downplaying of severity (12/05/02)
tigerblue@puzzleapuma.de
- possible virus break in german exchange option of Inoculate IT 6.0 (12/02/02)
Timo Sirainen
- Cyrus SASL library buffer overflows (12/09/02)
- pre-login buffer overflow in Cyrus IMAP server (12/02/02)
- Cyrus Sieve / libSieve buffer overflow (12/02/02)
Trustix Secure Linux Advisor
- TSLSA-2002-0085 - lynx-ssl (12/19/02)
- TSLSA-2002-0086 - mysql (12/19/02)
- TSLSA-2002-0087 - perl (12/19/02)
- TSLSA-2002-0083 - kernel (12/19/02)
- TSLSA-2002-0089 - wget (12/19/02)
- TSLSA-2002-0084 - tcpdump (12/19/02)
UkR security team™
- MTPSR1-120 Firewall Proxy configuration software (12/11/02)
Ulf Harnhammar
- PHP-Nuke mail CRLF Injection vulnerabilities (12/20/02)
- PHP-Nuke code execution and XSS vulnerabilities (12/16/02)
Vagner Sacramento
- RE: CAIS-ALERT: Vulnerability in the sending requests control of BIND (11/30/02)
Val Deux
- Anyone can read all XOOPS private messages (12/13/02)
Valdis.Kletnieks@vt.edu
- Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B) (12/17/02)
Volker Tanger
- Proxy vulnerability in TrendMicro InterScan-VirusWall V3.6 (12/05/02)
Wana Thomas
- Local root vulnerability found in exim 4.x (and 3.x) (12/04/02)
Wichert Akkerman
- [SECURITY] [DSA-212-1] Multiple MySQL vulnerabilities (12/17/02)
- [SECURITY] [DSA-210-1] lynx CRLF injection (12/13/02)
- [SECURITY] [DSA-209-1] two wget problems (12/12/02)
- [SECURITY] [DSA-206-1] tcpdump BGP decoding error (12/10/02)
- [SECURITY] [DSA-205-1] gtetrinet buffer overflows (12/10/02)
xatr0z
- XSS and PHP include bug in W-Agora (12/19/02)
zen-parse
- Re: iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS) (12/22/02)
Zero-X www.lobnan.de Team
- KunaniFTP-Server v.1.0.10 allows dictionary traversal (12/10/02)

Last message date: 12/31/02
Archived on: 12/31/02 CET

278 messages sorted by: [ date ] [ thread ] [ subject ] [ attachment ]

SecurityFocus BugtraqBy Author

SecurityFocus Bugtraq
By Author