SecurityFocus Bugtraq
By Thread

357 messages sorted by: [ author ] [ date ] [ subject ] [ attachment ]

---

Starting: 03/01/04
Ending: 03/31/04

• Re: cdp buffer overflow vulnerability - updated details Shaun Colley (03/31/04)
• [CLA-2004:833] Conectiva Security Announcement - mc Conectiva Updates (03/31/04)
• NOT GOOD: Outlook Express 6 + Internet Explorer 6 http-equiv_at_excite.com (03/31/04)
• RogerWilco: new funny bugs Luigi Auriemma (03/31/04)
• Followup: vuln in WinBlox monitor for winnt Oliver Lavery (03/30/04)
  • RE: Followup: vuln in WinBlox monitor for winnt Drew Copley (03/31/04)
• Re: new internet explorer exploit (was new worm) roozbeh afrasiabi (03/31/04)
• [ GLSA 200403-11 ] Squid ACL [url_regex] bypass vulnerability Kurt Lieber (03/31/04)
• cdp buffer overflow vulnerability Shaun Colley (03/31/04)
• [RHSA-2004:137-01] Updated Ethereal packages fix security issues bugzilla_at_redhat.com (03/31/04)
• [ GLSA 200403-13 ] Remote buffer overflow in MPlayer Kurt Lieber (03/31/04)
• [ GLSA 200403-10 ] Fetchmail 6.2.5 fixes a remote DoS Kurt Lieber (03/31/04)
• [ GLSA 200403-12 ] OpenLDAP DoS Vulnerability Joshua J. Berry (03/31/04)
• [ GLSA 200403-14 ] Multiple Security Vulnerabilities in Monit Aida Escriva-Sammer (03/31/04)
• CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities S-Quadra Security Research (03/31/04)
• MDKSA-2004:025 - Updated squid packages fix vulnerability Mandrake Linux Security Team (03/31/04)
• MDKSA-2004:024 - Updated ethereal packages fix multiple vulnerabilities Mandrake Linux Security Team (03/31/04)
• White Paper - Web Application Worms: Myth or Reality? Imperva Application Defense Center (03/30/04)
  • Re: White Paper - Web Application Worms: Myth or Reality? Nicholas Weaver (03/31/04)
• phpkit suffers (reale stupid) XSS vuln. Yanosz (03/30/04)
• NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Paul (03/30/04)
  • Re: NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Joe Stewart (03/31/04)
    • IPv4 fragmentation --> The Rose Attack gandalf_at_digital.net (03/31/04)
      • Re: IPv4 fragmentation --> The Rose Attack stanislav shalunov (03/31/04)
• R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities advisory_at_rapid7.com (03/30/04)
• Linbit linbox Multiple Vulnerabilities Martin Eiszner (03/30/04)
• Problem with customized login pages for Oracle SSO advisories_at_madison-gurkha.com (03/30/04)
• MPlayer Security Advisory #002 - HTTP parsing vulnerability Gabucino (03/30/04)
• Heap overflow in MPlayer blexim (03/30/04)
• TSLSA-2004-0017 - apache Trustix Security Advisor (03/30/04)
• clamd - NEVER use "%f" in your "VirusEvent" Rene (03/30/04)
• TSLSA-2004-0015 - tcpdump Trustix Security Advisor (03/30/04)
• Exensive cPanel Cross Site Scripting sullo_at_cirt.net (03/30/04)
• security enforcement - new monitor for winnt Liu Die Yu (03/30/04)
  • Re: security enforcement - new monitor for winnt Amir Mohammadkhani-Aminabadi (03/30/04)
    • Re: security enforcement - new monitor for winnt Liu Die Yu (03/31/04)
  • Re: security enforcement - new monitor for winnt http-equiv_at_excite.com (03/30/04)
  • RE: security enforcement - new monitor for winnt Oliver Lavery (08/09/02)
    • RE: security enforcement - new monitor for winnt Liu Die Yu (03/31/04)
• Re: new internet explorer exploit (was new worm) Void (03/29/04)
  • Re: new internet explorer exploit (was new worm) Jelmer (03/30/04)
  • Re: new internet explorer exploit (was new worm) Nick FitzGerald (03/30/04)
• RE: new internet explorer exploit (was new worm) Drew Copley (03/29/04)
  • RE: new internet explorer exploit (was new worm) Thor Larholm (03/30/04)
  • Re: new internet explorer exploit (was new worm) Berend-Jan Wever (03/30/04)
• IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (03/28/04)
  • Re: IE ms-its: and mk:@MSITStore: vulnerability Lise Moorveld (03/30/04)
  • Re: IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (03/31/04)
• Addressing Cisco Security Issues Geo. (03/29/04)
  • Re: Addressing Cisco Security Issues Jason Dodson (03/29/04)
  • Re: Addressing Cisco Security Issues Clayton Kossmeyer (03/30/04)
• [ GLSA 200403-09 ] Buffer overflow in Midnight Commander Kurt Lieber (03/29/04)
• [ GLSA 200403-06 ] Multiple remote buffer overflow vulnerabilities in Courier Kurt Lieber (03/29/04)
• [SECURITY] [DSA 469-1] New libpam-pgsql packages fix SQL injection Martin Schulze (03/29/04)
• [ GLSA 200403-07 ] Multiple remote overflows and vulnerabilities in Ethereal Kurt Lieber (03/29/04)
• LNSA-#2004-0007: Multiple security problems in Ethereal Vincenzo Ciaglia (03/29/04)
• [ GLSA 200403-08 ] oftpd DoS vulnerability Kurt Lieber (03/29/04)
• vuln Q?=ShelzZQ=20?= (03/28/04)
• WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Simon Boulet (03/29/04)
• FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6 FreeBSD Security Advisories (03/29/04)
• [ GLSA 200403-05 ] UUDeview MIME Buffer Overflow Tim Yamin (03/28/04)
• A-CART Pro & A-CART 2.0 Input Validation Holes Manuel Lopez (03/29/04)
• [RHSA-2004:134-01] Updated squid package fixes security vulnerability bugzilla_at_redhat.com (03/29/04)
• Multiple Vulnerabilities in Cloisterblog web blog/journal Dotho (03/29/04)
• PhotoPost PHP Pro Multiple Vulnerabilities JeiAr (03/29/04)
• phpBB 2.0.8 Exploit JeiAr (03/28/04)
• [ GLSA 200403-05 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (03/28/04)
• iss_pam1.dll remote exploits Sam (03/28/04)
• Ethereal(v0.10.0-0.10.2) IGAP Dissector Message Overflow Exploit Eye on Security India (03/28/04)
• systrace silently patches full local bypass vulnerability on Linux spender_at_grsecurity.net (03/27/04)
  • Re: systrace silently patches full local bypass vulnerability on Linux stealth (03/29/04)
• New worm? Karousel (03/27/04)
  • Re: New worm? Gadi Evron (03/27/04)
  • re: New worm? http-equiv_at_excite.com (03/29/04)
• Another ISS BlackIce & RealSecure Update ? Jeff (03/27/04)
• Another ISS BlackIce & RealSecure Update ? K-OTiK Security (03/27/04)
• Strange traffic - Outgoing TCP 3127/3198 (Not mydoom) New worm? Steve Browning (03/27/04)
• Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] JeiAr (03/26/04)
  • Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Benjamin Tolman (03/28/04)
• bblog 0.7.2 cross site scripting penfold_at_dlofnep.com (03/26/04)
• freshmeat.net: XSS Attack due to improper comment filtering. Steve Kemp (03/26/04)
• LNSA-#2004-0006: bug workaround for Apache 2.0.48 Vincenzo Ciaglia (03/25/04)
• Nstxd vulnerability laurent oudot (03/26/04)
• phpBB2 2.0.8 privmsg.php SQL injection patch (critical). Shaun Colley (03/26/04)
• MS Outlook/Outlook Express Preview Pane Security Issue Jeff Uslan (03/26/04)
  • RE: MS Outlook/Outlook Express Preview Pane Security Issue Drew Copley (03/26/04)
  • Re: MS Outlook/Outlook Express Preview Pane Security Issue Nexus (03/26/04)
• RE: MS Word - password protection vulnerabilty C Ryll (03/26/04)
• Blogger XSS Vulnerability Ferruh Mavituna (03/26/04)
• [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Janek Vind (03/26/04)
• [waraxe-2004-SA#012 - Multiple vulnerabilities in XMB Forum 1.8 SP3 and 1.9 beta] Janek Vind (03/26/04)
• Tomcat 5.0.14: remote DoS WU Fei Liang (03/26/04)
• NetSupport School Pro: Password Encryption Weaknesses spiffomatic 64 (03/26/04)
• SGI Advanced Linux Environment security update #16 SGI Security Coordinator (03/26/04)
• SGI Advanced Linux Environment security update #15 SGI Security Coordinator (03/26/04)
• OpenLinux: mc Updated packages resolve local buffer overflow vulnerability please_reply_to_security_at_sco.com (03/26/04)
• OpenLinux: mutt remote buffer overflow please_reply_to_security_at_sco.com (03/26/04)
• eSignal v7 remote buffer overflow (exploit) Vizzy (03/25/04)
• UPDATED: MS Word - password protection vulnerabilty Andrew Barkley (03/25/04)
• UPDATED: MS Word - password protection vulnerabilty Andrew W Barkley (03/25/04)
  • R: UPDATED: MS Word - password protection vulnerabilty s.zdrojewski_at_itvirtualcommunity.net (03/26/04)
• Remote crash in Etherlords I 1.07 and II 1.03 Luigi Auriemma (03/25/04)
• GLSA200403-04 Multiple security vulnerabilities in Apache 2 Aida Escriva-Sammer (03/25/04)
• New Adventures In Phishing Jim Halfpenny (03/25/04)
• [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Matt Zimmerman (03/24/04)
  • Re: [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Ulf Härnhammar (03/25/04)
• Check Point SmartDashboard Buffer Overflow Andreas Constantinides (MegaHz) (03/25/04)
• mysqlbug tmpfile/symlink vulnerability. Shaun Colley (03/24/04)
• Dark Age of Camelot login client vulnerability to man in the middle attack Todd Chapman (03/24/04)
• Dameware Passes Weak File Encryption Key in the Clear ax09001h (03/23/04)
• Broadcast client buffer-overflow in Terminator 3 1.0 Luigi Auriemma (03/23/04)
• Buffer overflow in PicoPhone 1.63 Luigi Auriemma (03/24/04)
• HP Web JetAdmin vulnerabilities. wirepair (03/24/04)
  • Re: HP Web JetAdmin vulnerabilities. H D Moore (03/24/04)
• TrendMacro Interscan Viruswall Directory Traversal Tri Huynh (03/24/04)
  • Re: TrendMacro Interscan Viruswall Directory Traversal Brian Keefer (03/24/04)
    • Re: TrendMicro (not Macro) Interscan Viruswall Directory Traversal Tri Huynh (03/25/04)
• [SECURITY] [DSA 467-1] New ecartis packages fix several vulnerabilities Matt Zimmerman (03/24/04)
• Immunity Advisory: Solaris local kernel root Dave Aitel (03/23/04)
  • Re: Immunity Advisory: Solaris local kernel root Casper Dik (03/24/04)
    • Re: Immunity Advisory: Solaris local kernel root Dave Aitel (03/25/04)
      • Re: Immunity Advisory: Solaris local kernel root Casper Dik (03/25/04)
      • Re: Immunity Advisory: Solaris local kernel root Dave Aitel (03/25/04)
• R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities advisory_at_rapid7.com (03/23/04)
• Immunity Advisory: dtlogin remote root Dave Aitel (03/23/04)
  • Re: Immunity Advisory: dtlogin remote root Johan A.van Zanten (03/24/04)
    • Re: Immunity Advisory: dtlogin remote root Dave Aitel (03/24/04)
• Advisory 03/2004: Multiple (13) Ethereal remote overflows Stefan Esser (03/23/04)
• How to crash a harddisk - the Ipswitch WS_FTP Server way Hugh Mann (03/23/04)
• Think of the buffers! Won't somebody think of the buffers?! Hugh Mann (03/23/04)
• Server freeze in The Rage 1.01 Luigi Auriemma (03/23/04)
• More Cpanel Vuls (cross site scripting) Fable (03/23/04)
• Open the WS_FTP Server backdoor to SYSTEM Hugh Mann (03/23/04)
  • Re: Open the WS_FTP Server backdoor to SYSTEM Todd C. Campbell (03/23/04)
• ALLO ALLO WS_FTP Server Hugh Mann (03/23/04)
• Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) GreyMagic Software (03/23/04)
• Sarca rainbow tables on-line cracking service Inode (03/22/04)
• [waraxe-2004-SA#009 - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c] Janek Vind (03/22/04)
• [waraxe-2004-SA#008 - easy way to get superadmin rights in PhpNuke 6.x-7.1.0] Janek Vind (03/22/04)
• Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration Manuel Lopez (03/22/04)
• Vulnerabilities in Member Management System 2.1 Manuel Lopez (03/22/04)
• Mod_Survey security advisory: Script injection bug Joel Palmius (03/22/04)
• directory traversal in xweb 1.0 Donato Ferrante (03/22/04)
• Invision Power Top Site List SQL Injection Vulnerability JeiAr (03/22/04)
• xine-check/xine-bugreport symlink vulnerability. Shaun Colley (03/20/04)
• Invision Gallery SQL Injection Vulnerabilities JeiAr (03/22/04)
• Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (03/22/04)
  • Re: Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (03/25/04)
• DSL Modem Ericsson HM220dp Exploit Roberto Dapino (03/21/04)
• phpBB profile.php Cross Site Scripting Vulnerability Cheng Peng Su (03/21/04)
  • RE: Fw: phpBB profile.php Cross Site Scripting Vulnerability micheal_at_michealcottingham.com (03/22/04)
• [waraxe-2004-SA#011 - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke] Janek Vind (03/22/04)
• Apache mod_disk_cache stores client authentication credentials on disk Andreas Steinmetz (03/20/04)
• The witty worm Gadi Evron (03/20/04)
  • Re: The witty worm Gadi Evron (03/20/04)
  • Re: The witty worm Gadi Evron (03/20/04)
• Concerning The Recent Invision power Board Issues GulfTech Security (03/20/04)
• Any dissasemblies of the Witty worm yet? Nicholas Weaver (03/20/04)
  • Re: Any dissasemblies of the Witty worm yet? Kostya Kortchinsky (03/20/04)
• Ref: NGSSoftware Advisories NISR19042004a and NISR19042004b Sym Security (03/19/04)
• XP SP2 is out Gadi Evron (03/20/04)
• [Full-Disclosure] iDEFENSE Security Advisory 03.19.04: Borland Interbase admin.ib Administrative Access Vulnerability idlabs-advisories_at_idefense.com (03/19/04)
• [ANNOUNCE] Apache HTTP Server 2.0.49 Released (fwd) je_at_sekure.net (03/19/04)
• Samba 'smbprint' script tmpfile vulnerability. Shaun Colley (03/19/04)
  • Re: Samba 'smbprint' script tmpfile vulnerability. Gerald (Jerry) Carter (03/20/04)
• Internet Explorer Causing Explorer.exe - Null Pointer Crash Rafel Ivgi, The-Insider (03/19/04)
• Winamp 5.02 Long Filename Buffer Overflow Vulnerability Tobias Welter (03/19/04)
  • Re: Winamp 5.02 Long Filename Buffer Overflow Vulnerability b0f www.b0f.net (03/20/04)
• Eudora 6.0.3 attachment spoof, LaunchProtect Paul Szabo (03/19/04)
• Norton Internet Security Remote Command Execution (#NISR19042004b) NGSSoftware Insight Security Research (03/19/04)
• Norton AntiSpam Remote Buffer Overrun (#NISR19042004a) NGSSoftware Insight Security Research (03/19/04)
• EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability Marc Maiffret (03/19/04)
• mac osx- admin service buffer overflow programming_rocks1_at_hotmail.com (03/19/04)
  • Re: mac osx- admin service buffer overflow programming_rocks1_at_hotmail.com (03/19/04)
    • Re: mac osx- admin service buffer overflow Mathias Wegner (03/19/04)
• TSLSA-2004-0011 - sysstat Trustix Security Advisor (03/18/04)
• TSLSA-2004-0012 - openssl Trustix Security Advisor (03/18/04)
• Chrome 1.2.0.0 server crash Luigi Auriemma (03/18/04)
• HOTMAIL / PASSPORT: phishing expedition http-equiv_at_excite.com (03/18/04)
• [waraxe-2004-SA#010 - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke] Janek Vind (03/18/04)
• ptl-2004-02: RealNetworks Helix Server 9 Administration Server Buffer Overflow Pentest Security Alerts (03/18/04)
• [OpenPKG-SA-2004.007] OpenPKG Security Advisory (openssl) OpenPKG (03/18/04)
• RE: [RHSA-2004:112-01] Updated Mozilla packages fix security issu es John.Airey_at_rnib.org.uk (03/18/04)
• [SECURITY] [DSA 466-1] New Linux 2.2.10 packages fix local root exploit (powerpc/apus) Martin Schulze (03/18/04)
• [RHSA-2004:112-01] Updated Mozilla packages fix security issues bugzilla_at_redhat.com (03/18/04)
• Vcard 2.8 uninstall script problem saudi linux (03/17/04)
• [RHSA-2004:121-01] Updated OpenSSL packages fix vulnerabilities bugzilla_at_redhat.com (03/17/04)
• [SECURITY] [DSA 465-1] New openssl packages fix multiple vulnerabilities Matt Zimmerman (03/17/04)
• FreeBSD Security Advisory FreeBSD-SA-04:05.openssl FreeBSD Security Advisories (03/17/04)
• [ESA-20040317-003] 'openssl' Denial of Service vulnerabilities. EnGarde Secure Linux (03/17/04)
• MDKSA-2004:023 - Updated openssl packages fix multiple vulnerabilities Mandrake Linux Security Team (03/17/04)
• SUSE Security Announcement: openssl (SuSE-SA:2004:007) Thomas Biege (03/17/04)
• Cisco Security Advisory: Cisco OpenSSL Implementation Vulnerability Cisco Systems Product Security Incident Response Team (03/17/04)
• New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (03/17/04)
  • Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (03/17/04)
    • Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (03/17/04)
      • Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (03/17/04)
  • Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Dave Markham (03/17/04)
• PHPX 2.x - 3.2.4 gdayworld_at_hotmail.com (03/16/04)
• new security alert #66 issued in Oracle web cache Pete Finnigan (03/16/04)
• Fw: Bilbao Method Exposed FraMe (03/16/04)
  • Re: Fw: Bilbao Method Exposed Mark J Cox (03/16/04)
• Crafty Game Stack Overflow & Exploit Angelo Rosiello (03/16/04)
• ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow S-Quadra Security Research (03/16/04)
• Mambo Open Source Multiple Vulnerabilities JeiAr (03/16/04)
• JelSoft vBulletin Multiple XSS Vulnerabilities JeiAr (03/16/04)
• [SECURITY] [DSA 464-1] New gdk-pixbuf packages fix denial of service Martin Schulze (03/16/04)
• Phorum 5.0.3 Beta && Earlier XSS Issues JeiAr (03/15/04)
• Follow-up: Major hack attack on the U.S. Senate eric (03/15/04)
• [waraxe-2004-SA#006 - Multiple vulnerabilities in 4nalbum module for PhpNuke] Janek Vind (03/15/04)
• [waraxe-2004-SA#005 - XSS in Php-Nuke 7.1.0 - part 2] Janek Vind (03/15/04)
• [waraxe-2004-SA#007 - XSS and SQL injection bugs in 4nguestbook module for PhpNuke] Janek Vind (03/15/04)
• Opera Array Allocation Managment Exploit d3thStaR (03/14/04)
• YaBB/YaBBse Cross Site Scripting Vulnerability Cheng Peng Su (03/14/04)
  • RE: YaBB/YaBBse Cross Site Scripting Vulnerability Frog Man (03/16/04)
• [SCAN Associates Sdn Bhd Security Advisory] phpBB 2.0.6 and below sql injection pokley (03/14/04)
• Multiple Immunity Advisories Dave Aitel (03/14/04)
• ws_ftp overflow john layman (03/14/04)
  • Re: ws_ftp overflow nesumin_at_softhome.net (03/16/04)
    • Re[2]: ws_ftp overflow (WS_FTP Pro 8.0.3 is vulnerable) nesumin (03/19/04)
• Rosiello Security's exploit for MDaemon Angelo Rosiello (03/14/04)
• VocalTec Gateway 8 Reverse Directory Transversal + Authorization Bypass Rafel Ivgi, The-Insider (03/15/04)
  • spamblocker turns into mail denial of service Dana Hudes (03/15/04)
    • Re: spamblocker turns into mail denial of service Chris Fuhrman (03/15/04)
• Multiple Vendor SOAP server array DoS Amit Klein (03/15/04)
• phpBB 2.0.6d && Earlier Security Issues JeiAr (03/13/04)
• [SECURITY] [DSA 463-1] New samba packages fix privilege escalation in smbmnt Matt Zimmerman (03/13/04)
• PLAXO: is that a cure or a disease? http-equiv_at_excite.com (03/12/04)
  • Re: PLAXO: is that a cure or a disease? Stacy Martin (03/18/04)
• SGI Advanced Linux Environment security update #14 SGI Security Coordinator (03/12/04)
• Cpanel 9.1.0 have a problem ? Arab VieruZ (03/12/04)
• Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities S-Quadra Security Research (03/12/04)
• Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks Fable (03/12/04)
• MS Security Response is a bunch of half-witted morons Nick FitzGerald (03/12/04)
  • Re: MS Security Response is a bunch of half-witted morons Walter Wart (03/12/04)
  • Re: MS Security Response is a bunch of half-witted morons Kim Scarborough (03/12/04)
• Metamail 'extcompose' script Symlink Vulnerability Shaun Colley (03/12/04)
• [OpenPKG-SA-2004.006] OpenPKG Security Advisory (uudeview) OpenPKG (03/12/04)
• cPanel Secuirty Advisory CPANEL-2004:01-01 J. Nick Koston (03/12/04)
• Multiple vulnerabilities in Hushmail.com Calum Power (03/11/04)
• Announcing full functional adore-ng rootkit for 2.6 Kernel stealth (03/11/04)
• Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED] Message-ID: 20040306040833.28300 Sym Security (03/11/04)
• Cpanel 8.*.* have a problem ? Arab VieruZ (03/11/04)
• Re: Outlook mailto: URL argument injection vulnerability MS04-009 (Now CRITICAL) ! K-OTiK Security (03/11/04)
• [SECURITY] [DSA 461-1] New calife packages fix buffer overflow Matt Zimmerman (03/11/04)
• XSS in MyProxy 20030629 Donato Ferrante (03/11/04)
• Multiple Vulnerabilities in PWS 0.2.2 Donato Ferrante (03/11/04)
  • Re: Multiple Vulnerabilities in PWS 0.2.2 Jan De Luyck (03/14/04)
• Unreal engine updates and Battle Mages advisory Luigi Auriemma (03/11/04)
  • Re: Unreal engine updates and Battle Mages advisory Todd Chapman (03/11/04)
• [RHSA-2004:093-01] Updated sysstat packages fix security vulnerabilities bugzilla_at_redhat.com (03/10/04)
• [SECURITY] [DSA 460-1] New sysstat packages fix insecure temporary file creation Matt Zimmerman (03/10/04)
• [SECURITY] [DSA 459-1] New kdelibs, kdelibs-crypto packages fix cookie traversal bug Matt Zimmerman (03/10/04)
• Re: HP printers and currency anti-copying measures Dan Harkless (03/10/04)
  • Re: HP printers and currency anti-copying measures Dana Hudes (03/10/04)
• With regards to the Adobe Acrobat Reader advisory (#NISR03022004) NGSSoftware Insight Security Research (03/10/04)
• Re: LAN SUITE Web Mail 602Pro Multiple Vulnerabilities Brandon Sturgeon (03/10/04)
• [RHSA-2004:102-01] Updated gdk-pixbuf packages fix denial of service vulnerability bugzilla_at_redhat.com (03/10/04)
• [RHSA-2004:075-01] Updated kdelibs packages resolve cookie security issue bugzilla_at_redhat.com (03/10/04)
• DoS in wMCam server 2.1.348 Donato Ferrante (03/10/04)
• GNU Anubis 3.6.2 remote root exploit Claes M Nyberg (03/10/04)
• MDKSA-2004:020 - Updated gdk-pixbuf packages fix BMP-handling vulnerability Mandrake Linux Security Team (03/10/04)
• MDKSA-2004:022 - Updated kdelibs packages fix cookie theft vulnerability Mandrake Linux Security Team (03/10/04)
• Format string bug in EpicGames Unreal engine Luigi Auriemma (03/10/04)
  • Re: Format string bug in EpicGames Unreal engine Sebastian (03/11/04)
• MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities Mandrake Linux Security Team (03/10/04)
• [SECURITY] [DSA 458-1] New python2.2 packages fix buffer overflow Matt Zimmerman (03/10/04)
• Outlook mailto: URL argument injection vulnerability Jouko Pynnonen (03/10/04)
  • RE: Outlook mailto: URL argument injection vulnerability Shaun Colley (03/11/04)
• MDKSA-2004:019 - Updated python packages fix buffer overflow vulnerability Mandrake Linux Security Team (03/10/04)
• Ghost users in Chat Anywhere 2.72 Luigi Auriemma (03/09/04)
• Establishing contact with Nullsoft Peter Winter-Smith (03/09/04)
• [SECURITY] [DSA 457-1] New wu-ftpd packages fix multiple vulnerabilities Matt Zimmerman (03/09/04)
• IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research (03/09/04)
  • Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) Marc Bejarano (03/09/04)
• Invision Power Board v1.3 Final Cross Site Scripting 2 - Addon Rafel Ivgi, The-Insider (03/09/04)
• [OpenPKG-SA-2004.005] OpenPKG Security Advisory (mutt) OpenPKG (03/09/04)
• RE: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Amit Klein (03/07/04)
• Antivir for Freebsd doesn't work on 5.X George Swentek (03/05/04)
• Z***ING EMAILS ! http-equiv_at_excite.com (03/06/04)
• [ GLSA 200403-02 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (03/07/04)
• [ GLSA 200403-01 ] Libxml2 URI Parsing Buffer Overflow Vulnerabilities Tim Yamin (03/07/04)
• RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (03/07/04)
• directory traversal in PWebServer 0.3.3 Donato Ferrante (03/08/04)
• [OpenPKG-SA-2004.004] OpenPKG Security Advisory (libtool) OpenPKG (03/08/04)
• Symlink Vulnerability in GNU automake <1.8.3 Stefan Nordhausen (03/08/04)
• Safari javascript array overflow kang (03/06/04)
• TSLSA-2004-0010 - libxml2 Trustix Security Advisor (03/06/04)
• TSLSA-2004-0009 - nfs-utils Trustix Security Advisor (03/06/04)
• [SECURITY] [DSA 456-1] New Linux 2.2.19 packages fix local root exploit (arm) Martin Schulze (03/06/04)
• Re: Norton Antivirus 2002 fails to scan files with ... [2'nd... UPDATED] Bipin Gautam. (03/06/04)
• O-088: Sun passwd(1) Command Vulnerability Cy Schubert (03/05/04)
• Norton Antivirus 2002 fails to scan files with special character(s) properly. Bipin Gautam. (03/05/04)
  • Re: Norton Antivirus 2002 fails to scan files with special character(s) properly. Marco Marabelli (03/06/04)
• [OpenPKG-SA-2004.003] OpenPKG Security Advisory (libxml) OpenPKG (03/05/04)
• Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (03/05/04)
  • Re: Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity JeiAr (03/05/04)
• Infosecdaily.net: Expanding our blogging community. Ejovi Nuwere (03/05/04)
• Re: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Jeremiah Grossman (03/05/04)
  • Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Peter Watkins (03/05/04)
• VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (03/05/04)
  • RE: VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Ravish (03/08/04)
• Desert Rats vs. Afrika Korps (Haegemonia bug) Luigi Auriemma (03/05/04)
  • RE: Desert Rats vs. Afrika Korps (Haegemonia bug) Drew Copley (03/05/04)
• E-mail account disabling warning. staff_at_der-keiler.de (03/05/04)
• NetScreen Advisory 58412: XSS Bug in NetScreen-SA SSL VPN NetScreen Security Response Team (03/04/04)
• IEEE Security & Privacy CFP Sharif Torpis (03/04/04)
• Invision Power Board 1.3 Final Path Disclosure Vulnerability Shaun Colley (03/05/04)
  • Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability JeiAr (03/05/04)
• [FLSA-2004:1256] Updated util-linux resolves security vulnerability Jesse Keating (03/05/04)
• SLMail Pro Supervisor Report Center Buffer Overflow (#NISR05022004a) NGSSoftware Insight Security Research (03/05/04)
• SLWebMail Multiple Buffer Overflow Vulnerabilities (#NISR05022004b) NGSSoftware Insight Security Research (03/05/04)
• GNU Anubis buffer overflows and format string bugs Ulf Härnhammar (03/04/04)
• LNSA-#2004-0004: libxml2 buffer overflow Vincenzo Ciaglia (03/04/04)
• Abobe Reader 5.1 XFDF Buffer Overflow Vulnerability NGSSoftware Insight Security Research (03/04/04)
• OpenLinux: cups denial of service vulnerability please_reply_to_security_at_sco.com (03/04/04)
• Nokia 3410 cell phones software flaw David Arranz (03/04/04)
  • Re: [bugtraq] Nokia 3410 cell phones software flaw Erwann Abalea (03/04/04)
• Re: Multiple issues with Mac OS X AFP client Marukka (03/04/04)
• SHOUTcast v1.9.2 remote connect back exploit 0seen security team (03/04/04)
• MDKSA-2004:017 - Updated pwlib packages fix vulnerability Mandrake Linux Security Team (03/04/04)
• Serv-U Real Target and Search ASM Code Tool for Overflow Exploit. lion (03/04/04)
• MDKSA-2004:018 - Updated libxml2 packages fix vulnerability Mandrake Linux Security Team (03/04/04)
• [SECURITY] [DSA 455-1] New libxml packages fix arbitrary code execution Martin Schulze (03/04/04)
• A new white paper by Sanctum: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (03/04/04)
• Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team (03/04/04)
• RE: SonicWall Firewall DoS, ARP Flood, Network Mapping Robert C. Auch (03/03/04)
• SGI Advanced Linux Environment security update #13 SGI Security Coordinator (03/03/04)
• Coreutils 'dir' integer overflow vulnerability. Shaun Colley (03/02/04)
• OpenLinux: Gnupg (gpg) severe bug could compromise almost all ElGamal keys please_reply_to_security_at_sco.com (03/03/04)
• OpenLinux: screen buffer overflow please_reply_to_security_at_sco.com (03/03/04)
• OpenLinux: rsync heap based overflow please_reply_to_security_at_sco.com (03/03/04)
• directory traversal in GWeb 0.6 Donato Ferrante (03/03/04)
• The non-apreciated world of full-disclosure Davide Del Vecchio (03/03/04)
• Wftpd stat Command Remote Vulnerability Exploit security team 0seen (03/03/04)
  • RE: Wftpd stat Command Remote Vulnerability Exploit Alun Jones (03/04/04)
• Spider Sales shopping cart software multiple security vulnerabilities S-Quadra Security Research (03/03/04)
• New Internet Explorer Cross Zone/Site Scripting Vulnerability Cheng Peng Su (03/03/04)
  • RE: New Internet Explorer Cross Zone/Site Scripting Vulnerability Thor Larholm (03/03/04)
• 03-02-04 XSS Bug in NetScreen-SA 5000 Series of SSL VPN appliance Lachniet, Mark (03/02/04)
• [FLSA-2004:1284] Updated kernel resolves security vulnerabilities Jesse Keating (03/02/04)
• [SECURITY] [DSA 454-1] New Linux 2.2.22 packages fix local root exploit (alpha) Martin Schulze (03/02/04)
• OpenLinux: Integer overflow may allow local users to cause a denial of service or possibly execute arbitrary code please_reply_to_security_at_sco.com (03/02/04)
• Format String vuln in Inktomi Search4.0 Blurred Vision (03/02/04)
• SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno_at_hush.ai (03/02/04)
  • RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability Dennis M. Callan (03/02/04)
  • RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno_at_hush.ai (03/03/04)
• The Cult of a Cardinal Number Phantasmal Phantasmagoria (03/02/04)
  • Re: The Cult of a Cardinal Number Phantasmal Phantasmagoria (03/04/04)
• Re: New phpBB ViewTopic.php Cross Site Scripting Vulnerability t4c [Founder of GHCIF] (03/02/04)
• Motorola T720 cell phone DoS vulnerability. Shaun Colley (03/01/04)
  • Re: Motorola T720 cell phone DoS vulnerability. John T. Larkin (03/01/04)
• mremap(2) full details available Paul Starzetz (03/01/04)
• Clients broadcast buffer overflow in Red Faction <= 1.20 Luigi Auriemma (03/01/04)
• [SECURITY] [DSA 452-1] New libapache-mod-python packages fix denial of service Matt Zimmerman (03/01/04)
• YabbSE (3 on 1) backspace (03/01/04)
  • Re: YabbSE (3 on 1) David (03/17/04)

Last message date: 03/31/04
Archived on: 03/31/04 CEST

---

357 messages sorted by: [ author ] [ date ] [ subject ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)