SecurityFocus Bugtraq
By Thread

466 messages sorted by: [ author ] [ date ] [ subject ] [ attachment ]

Starting: 09/01/04
Ending: 09/30/04

• Samba Security Announcement -- Potential Arbitrary File Access Gerald (Jerry) Carter (09/30/04)
• Unicornscan 0.4.2 robert_at_dyadsecurity.com (09/30/04)
• Multiple Vulnerabilities in Silent Storm Portal R00tCr4ck (09/30/04)
• TSL-2004-0050 - multi Trustix Security Advisor (09/30/04)
• [SECURITY] [DSA 555-1] New frenet6 packages fix potential information leak Martin Schulze (09/30/04)
• Multiple vulnerabilities in w-agora forum Alexander Antipov (09/30/04)
• [FLSA-2004:1468] Updated tcpdump packages that fix multiple security vulnerabilities Dominic Hargreaves (09/29/04)
• directory traversal in ParaChat Server 5.5 Donato Ferrante (09/28/04)
  • Re: directory traversal in ParaChat Server 5.5 Donato Ferrante (09/30/04)
• Crash in Alpha Black Zero 1.04 Luigi Auriemma (09/29/04)
• Re: Default username/password pairs in ON Command CCM 5.x database backend, Sep 20 2004 2:24PM Sym Security (09/29/04)
• [ GLSA 200409-35 ] Subversion: Metadata information leak Sune Kloppenborg Jeppesen (09/29/04)
• Php RFC1867 Upload Vuln. POC Released Stefano Di Paola (09/27/04)
• MSSQL 7.0 DoS securma_at_caramail.com (09/28/04)
• [FLSA-2004:1552] Updated cadaver packages that fix security vulnerabilities Dominic Hargreaves (09/29/04)
• Possible GDI Exploit Vector james_love_at_agilent.com (09/29/04)
• Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Gareth Humphries (09/29/04)
• Php RFC1867 Upload Vuln. POC Released Stefano Di Paola (09/29/04)
• [CLA-2004:870] Conectiva Security Announcement - imlib Conectiva Updates (09/28/04)
• [security bulletin] SSRT4794 rev.0 HPStorageWorks Command View XP access restriction bypass Boren, Rich (SSRT) (09/29/04)
• directory traversal in ParaChat Server 5.5 Donato Ferrante (09/29/04)
• Re: iDEFENSE Security Advisory 09.22.04 - Sophos Small Business Suite Reserved D Lise Moorveld (09/29/04)
• Yahoo! Store Security Advisory Stuart Moore (09/28/04)
• MDKSA-2004:011-1 - Updated NetPBM packages fix a number of temporary file bugs. Mandrake Linux Security Team (09/28/04)
• Multiple XSS Vulnerabilities in Wordpress 1.2 Thomas Waldegger (09/28/04)
• Vignette Application Portal Unauthenticated Diagnostics Advisories (09/28/04)
• MDKSA-2004:103 - Updated OpenOffice.org packages fix temporary file vulnerabilities Mandrake Linux Security Team (09/28/04)
• Code execution in Icecast 2.0.1 Luigi Auriemma (09/28/04)
• RE: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes Jeremy Epstein (09/27/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes David Brodbeck (09/28/04)
• @lex Guestbook (PHP) Include file Himeur Nourredine (09/26/04)
• [ GLSA 200409-34 ] X.org, XFree86: Integer and stack overflows in libXpm Thierry Carrez (09/27/04)
• RE: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes David Brodbeck (09/27/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes Adam Jacob Muller (09/28/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes David F. Skoll (09/28/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes Craig Paterson (09/29/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Acc ount Allows Authenticated Users to Modify Votes Aleksandar Milivojevic (09/28/04)
• iDEFENSE Security Advisory 09.27.04 - IBM AIX ctstrtcasd Local File Corruption Vulnerability customer service mailbox (09/27/04)
• Broadcast crash in Chatman 1.5.1 RC1 Luigi Auriemma (09/27/04)
• [SECURITY] [DSA 554-1] New sendmail packages fix potential open relay Martin Schulze (09/27/04)
• Re: HTTP Response Splitting and SQL injection in megabbs forum PD9 Software (09/26/04)
• GDI Virus in the wild. Ben (09/27/04)
  • Re: GDI Virus in the wild. Gerry Eisenhaur (09/27/04)
    • Re: GDI Virus in the wild. GuidoZ (09/28/04)
• SQL injection in BroadBoard Instant ASP Message Board pigrelax (09/26/04)
• [Hat-Squad] Remote Buffer overflow Vulnerability in YahooPOPS Hat-Squad Security Team (09/27/04)
• IPv4 fragmentation --> The Rose Attack Gandalf The White (09/27/04)
• MyWebServer 1.0.3 nekd0 (09/27/04)
• [CLA-2004:869] Conectiva Security Announcement - kernel Conectiva Updates (09/27/04)
• New Macromedia Security Zone Bulletins Posted Macromedia Security Zone (09/24/04)
• Motorola Wireless Router WR850G Authentication Circumvention Daniel Fabian (09/23/04)
• RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jeremy Epstein (09/23/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Mike Healan (09/26/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Tracy Bost (09/28/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Casper Dik (09/28/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Coleman (09/28/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Yoav Nir (09/26/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Paul Wouters (09/27/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Crispin Cowan (09/28/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Adam Shostack (09/28/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Greg A. Woods (09/27/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Nicholas Knight (09/26/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Matthew Keller (09/28/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Casper Dik (09/29/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Colm MacCarthaigh (09/28/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Bob Toxen (09/27/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes trh (09/28/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Kurt Seifried (09/26/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Reed, Phillip C. (LNG-DAY) (09/28/04)
• Motorola Wireless Router WR850G Authentication Circumvention Daniel Fabian (09/24/04)
• New XSS vulnerabilities in paFileDB 3.1 final alireza hassani (09/25/04)
• Re:[3] Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue advisories (09/24/04)
  • Re:[3] Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David F. Skoll (09/26/04)
    • Re: Re:[3] Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David Wilson (09/27/04)
      • Re: Re:[3] Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David F. Skoll (09/27/04)
• New Macromedia Security Zone Bulletins Postede Macromedia Security Zone (09/24/04)
• NEW GDI+ JPEG Remote Exploit John Bissell (09/23/04)
• [ GLSA 200409-31 ] jabberd 1.x: Denial of Service vulnerability Sune Kloppenborg Jeppesen (09/23/04)
• Microsoft's GDI Detetection Tool faults albatross_at_tim.it (09/24/04)
  • Re: Microsoft's GDI Detetection Tool faults John Bissell (09/25/04)
    • Re: Microsoft's GDI Detetection Tool faults Gadi Evron (09/25/04)
      • Re: Microsoft's GDI Detetection Tool faults Andreas Marx (09/26/04)
  • RE: Microsoft's GDI Detetection Tool faults Dowling, Gabrielle (09/26/04)
    • RE: Microsoft's GDI Detetection Tool faults mgotts_at_2roads.com (09/28/04)
  • Re: Microsoft's GDI Detetection Tool faults albatross_at_tim.it (09/27/04)
    • Re: Microsoft's GDI Detetection Tool faults the rxmr (09/28/04)
    • RE: Microsoft's GDI Detetection Tool faults Scott Jacobson (09/29/04)
• Buffer overflow in Zinf 2.2.1 for Win32 Luigi Auriemma (09/24/04)
  • Re: Buffer overflow in Zinf 2.2.1 for Win32+exploit iggy popal (09/27/04)
• TSLSA-2004-0049 - apache Trustix Security Advisor (09/23/04)
• aspWebCalendar /aspWebAlbum: SQL injection Pedro Sanches (09/23/04)
  • Re: aspWebCalendar /aspWebAlbum: SQL injection Steven (09/25/04)
• [ GLSA 200409-32 ] getmail: Filesystem overwrite vulnerability Sune Kloppenborg Jeppesen (09/23/04)
• Promiscuous email printing in Canon imageRunner Andrew Daviel (09/24/04)
  • Re: Promiscuous email printing in Canon imageRunner Chip Mefford (09/24/04)
  • RE: Promiscuous email printing in Canon imageRunner Matthew E. Lauterbach (09/27/04)
  • RE: Promiscuous email printing in Canon imageRunner Eric McCarty (09/29/04)
    • Re: Promiscuous email printing in Canon imageRunner Felix Lindner (09/30/04)
• Example of JPG Exploit & Shellcode javier falbo (09/23/04)
• Multiple vulnerabilities in ActivePost Standard 3.1 Luigi Auriemma (09/23/04)
• [CLA-2004:868] Conectiva Security Announcement - apache Conectiva Updates (09/23/04)
• MDKSA-2004:102 - Updated ImageMagick packages fix arbitray code execution vulnerabilities Mandrake Linux Security Team (09/22/04)
• Symantec Enterprise Firewall/VPN and Gateway Security 300 Series Appliances Multiple Issues Sym Security (09/22/04)
• MDKSA-2004:100 - Updated mpg123 packages fix vulnerabilities Mandrake Linux Security Team (09/22/04)
• [ GLSA 200409-30 ] xine-lib: Multiple vulnerabilities Thierry Carrez (09/22/04)
• MDKSA-2004:101 - Updated webmin packages fix vulnerabilities Mandrake Linux Security Team (09/22/04)
• Remote buffer overflow in MDaemon IMAP and SMTP server pigrelax (09/22/04)
• Macromedia Products Not Affected by MS JPEG/GDIPlus Issue Macromedia Security Zone (09/22/04)
• [CLA-2004:866] Conectiva Security Announcement - qt3 Conectiva Updates (09/22/04)
• [ GLSA 200409-29 ] FreeRADIUS: Multiple Denial of Service vulnerabilities Sune Kloppenborg Jeppesen (09/22/04)
• Pinnacle ShowCenter 1.51 possible DoS Jérôme (09/22/04)
• [CLA-2004:867] Conectiva Security Announcement - spamassassin Conectiva Updates (09/22/04)
• Multiple Vulnerabilities in Symantec Enterprise Firewall/Gateway Security Products Mike Sues (09/22/04)
• iDEFENSE Security Advisory 09.22.04 - Sophos Small Business Suite Reserved Device Name Handling Vulnerability customer service mailbox (09/22/04)
• [SECURITY] [DSA 552-1] New imlib2 packages fix potential arbitrary code execution Martin Schulze (09/22/04)
• Pinnacle ShowCenter Skin Denial of Service Marc Ruef (09/21/04)
• New whitepaper "The Phishing Guide" Gunter Ollmann (NGS) (09/22/04)
  • Re: New whitepaper "The Phishing Guide" Aleksandar Milivojevic (09/23/04)
    • Re: New whitepaper "The Phishing Guide" Seth Arnold (09/23/04)
      • Re: New whitepaper "The Phishing Guide" Aleksandar Milivojevic (09/27/04)
      • Re: New whitepaper "The Phishing Guide" Greg A. Woods (09/27/04)
      • Re: New whitepaper "The Phishing Guide" Crispin Cowan (09/28/04)
    • Re: New whitepaper "The Phishing Guide" Daniel Veditz (09/24/04)
      • Re: New whitepaper "The Phishing Guide" Chip Andrews (09/27/04)
      • Re: New whitepaper "The Phishing Guide" Philip Stoev (09/29/04)
      • Re: New whitepaper "The Phishing Guide" Juraj Bednar (09/27/04)
      • Re: New whitepaper "The Phishing Guide" Brian Dessent (09/27/04)
    • Re[2]: New whitepaper "The Phishing Guide" Karsten Heidrich (09/26/04)
  • RE: New whitepaper "The Phishing Guide" Dehner, Benjamin T. (09/24/04)
• RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Polazzo Justin (09/22/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Polazzo Justin (09/22/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Gene Cronk (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Gene Cronk (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes steve menard (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Barry Fitzgerald (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jose Rey (09/25/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Polazzo Justin (09/23/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes ERACC (09/26/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Polazzo Justin (09/28/04)
• [ GLSA 200409-27 ] glFTPd: Local buffer overflow vulnerability Thierry Carrez (09/21/04)
• And More Advanced SQL Injection... Stefano Di Paola (09/21/04)
• Possible DoS attack against jabberd 1.4.3 and jadc2s 0.9.0 Matthias Wimmer (09/20/04)
• Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes pressinfo_at_diebold.com (09/21/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Craig Paterson (09/22/04)
  • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jaeson Schultz (09/22/04)
    • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Lorne J. Leitman (09/22/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jaeson Schultz (09/22/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Ryan_Ward_at_Dell.com (09/27/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Brian Kirkbride (09/28/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes gandalf_at_digital.net (09/28/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jason T. Miller (09/29/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Bruce Barnett (09/28/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Heikki Korpela (09/24/04)
    • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes David Querin (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jay Hennigan (09/22/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jacob Appelbaum (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Homer (09/22/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Hollis Johnson (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Rainer Duffner (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Mike Ely (09/22/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Claudius Li (09/24/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Seth Breidbart (09/27/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes David Schwartz (09/28/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Adam Shostack (09/29/04)
      • RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes David Schwartz (09/29/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Seth Breidbart (09/29/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Enrique A. Chaparro (09/28/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Dana Hudes (09/29/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Patrick J. Kobly (09/28/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Marvin Bellamy (09/22/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Atom 'Smasher' (09/22/04)
• Netscape NSS Library Vulnerability Affects Sun Java Enterprise System Jérôme (09/21/04)
• Broadcast crash in Popmessenger 1.60 (before 20 Sep 2004) Luigi Auriemma (09/21/04)
• ICMP spoofed source tunneling Max Tulyev (09/21/04)
  • Re: ICMP spoofed source tunneling fenfire_at_abwesend.de (09/22/04)
    • Re: ICMP spoofed source tunneling Tim Newsham (09/22/04)
      • Re: ICMP spoofed source tunneling fenfire_at_abwesend.de (09/22/04)
    • Re: ICMP spoofed source tunneling Calum (09/28/04)
  • Re: ICMP spoofed source tunneling Dave Paris (09/22/04)
  • Re: ICMP spoofed source tunneling sin (09/23/04)
  • Re: ICMP spoofed source tunneling raiblehugo_at_hotmail.com (09/24/04)
• [SECURITY] [DSA 551-1] New lukemftpd packages fix arbitrary code execution Martin Schulze (09/21/04)
• [ GLSA 200409-28 ] GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities Thierry Carrez (09/21/04)
• CA UniCenter Management Portal Username Enumeration Vulnerability thomas adams (09/21/04)
• Multiple Vulnerabilities In EmuLive Server4 GulfTech Security (09/21/04)
• Multiple Full Disclosure Path in postnuke 0.750 phoenix FAiN182 (09/18/04)
• [ GLSA 200409-26 ] Mozilla, Firefox, Thunderbird, Epiphany: New releases fix vulnerabilities Thierry Carrez (09/20/04)
• Multiple Full Disclosure Path in postnuke 0.750 phoenix Jérôme (09/19/04)
• [ GLSA 200409-24 ] Foomatic: Arbitrary command execution in foomatic-rip filter Joshua J. Berry (09/20/04)
• [ GLSA 200409-25 ] CUPS: Denial of service vulnerability Thierry Carrez (09/20/04)
• Re: Posible security bug in phpMyWebhosting Udo Mueller (09/20/04)
• glFTPd local stack buffer overflow CoKi (09/19/04)
  • Re: glFTPd local stack buffer overflow Bloody_A (09/21/04)
• Local root compromise possible with getmail David Watson (09/19/04)
• Vulnerabilities in TUTOS Joxean Koret (09/18/04)
• [SECURITY] [DSA 550-1] New wv packages fix arbitrary command execution Martin Schulze (09/20/04)
• Serious Security Issue in Windows XP SP2's Firewall Andreas Marx (09/19/04)
• CoD United Offensive boom boom Luigi Auriemma (09/18/04)
• FreeBSD Security Advisory FreeBSD-SA-04:14.cvs FreeBSD Security Advisories (09/20/04)
• Default username/password pairs in ON Command CCM 5.x database backend Jonas Olsson (09/20/04)
• Vulnerabilities in TUTOS Joxean Koret (09/18/04)
• Debian netkit telnetd vulnerability Michal Zalewski (09/18/04)
  • Re: Debian netkit telnetd vulnerability Solar Designer (09/21/04)
    • Re: Debian netkit telnetd vulnerability Matt Zimmerman (09/27/04)
• Tool announcement: fakebust Michal Zalewski (09/20/04)
• AOL Groups/AIM Information Disclosure Link Linkovich (09/15/04)
• wp-04-0001: Multiple Browser Cookie Injection Vulnerabilities Paul Johnston (09/15/04)
• Microsoft WordPerfect 5.x Converter Heap Overflow NGSSoftware Insight Security Research Advisory (09/14/04)
• RhinoSoft DNS4ME HTTP Server Vulnerabilities GulfTech Security (09/18/04)
• Virus exploits workaround in Windows Mobile/Pocket PC architecture (Includes Source Code) kers0r (09/18/04)
• Sudo Exploit by Rosiello Security Angelo Rosiello (09/18/04)
• Mambo Portal lasted version 4.5.1 (1.09) and lower vesion : SQL injection Vulnerability. khoaimi (09/18/04)
  • Re: Mambo Portal lasted version 4.5.1 (1.09) and lower vesion : SQL injection Vulnerability. Tim Broeker (09/19/04)
• Re:[2] Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue advisories (09/17/04)
  • Re:[2] Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David F. Skoll (09/18/04)
• Important message to Bugtraq Subscribers! Daniel Bertrand (09/17/04)
• [exploitwatch.org] ALERT: Windows XP JPEG Buffer Overflow POC Exploit admin_at_exploitwatch.org (09/17/04)
• MDKSA-2004:095-1 - Updated gdk-pixbuf and gtk+2 packages fix image loading vulnerabilities Mandrake Linux Security Team (09/17/04)
• GoogleToolbar:About -- Allows Script Injection ViPeR (09/17/04)
  • Re: GoogleToolbar:About -- Allows Script Injection Rafel Ivgi, The-Insider (09/18/04)
• FreeBSD kernel buffer overflow gerarra_at_tin.it (09/16/04)
  • Re: FreeBSD kernel buffer overflow Tim Newsham (09/18/04)
  • Re: FreeBSD kernel buffer overflow Wesley Shields (09/17/04)
• RsyncX vulnerabilities Matt Johnston (09/17/04)
• [security bulletin] SSRT4739 rev.0 HP WebJetadmin arbitrary command execution Boren, Rich (SSRT) (09/16/04)
• Freeze in Pigeon Server 3.02.0143 Luigi Auriemma (09/16/04)
• [ GLSA 200409-21 ] Apache 2, mod_dav: Multiple vulnerabilities Thierry Carrez (09/16/04)
• [ GLSA 200409-20 ] mpg123: Buffer overflow vulnerability Thierry Carrez (09/16/04)
• IE6 + XP SP2 Vulnerability cns (09/16/04)
• XSA-2004-4: multiple string overflows Michael Roitzsch (09/07/04)
• XSA-2004-5: heap overflow in DVD subpicture decoder Michael Roitzsch (09/06/04)
• MDKSA-2004:099 - Updated XFree86 packages fix libXpm overflow vulnerabilities Mandrake Linux Security Team (09/16/04)
• iDEFENSE Security Advisory 09.16.04: Ipswitch WhatsUp Gold Remote Denial of Service Vulnerability customer service mailbox (09/16/04)
• [ GLSA 200409-19 ] Heimdal: ftpd root escalation Sune Kloppenborg Jeppesen (09/16/04)
• [sudo-announce] Sudo version 1.6.8p1 now available (fwd) je_at_sekure.net (09/16/04)
• Microsoft WordPerfect 5.x Converter Heap Overflow NGSSoftware Insight Security Research (09/16/04)
• JPEG Processing BOF Proof Of Concept GulfTech Security (09/16/04)
  • RE: JPEG Processing BOF Proof Of Concept Cassidy Macfarlane (09/17/04)
• ADVISORY: security hole (http response splitting) in snitz forums 2000 Maestro De-Seguridad (09/16/04)
• Fwd: Theo's presentation on exploit prevention Bas Alberts (09/16/04)
• MDKSA-2004:098 - Updated libxpm4 packages fix libXpm overflow vulnerabilities Mandrake Linux Security Team (09/16/04)
• TSLSA-2004-0047 - multi Trustix Security Advisor (09/16/04)
• [SECURITY] [DSA 548-1] New imlib packages fix arbitrary code execution Martin Schulze (09/16/04)
• [SECURITY] [DSA 546-1] New gdk-pixbuf packages fix several vulnerabilities Martin Schulze (09/16/04)
• www.proboards.com / YaBB XSS Vuln admin_at_leetflash.com (09/16/04)
  • Re: www.proboards.com / YaBB XSS Vuln Patrick Clinger (09/17/04)
  • RE: www.proboards.com / YaBB XSS Vuln GulfTech Security (09/16/04)
• wp-04-0001: Multiple Browser Cookie Injection Vulnerabilities Paul Johnston (09/16/04)
• [SECURITY] [DSA 547-1] New Imagemagic packages fix buffer overflows Martin Schulze (09/16/04)
• [OpenPKG-SA-2004.041] OpenPKG Security Advisory (spamassassin) OpenPKG (09/15/04)
• MDKSA-2004:097 - Updated cups packages fix DoS vulnerability Mandrake Linux Security Team (09/15/04)
• Php Vulnerability N. 2 Stefano Di Paola (09/15/04)
• iDEFENSE Security Advisory 09.15.04: GNU Radius SNMP String Length Integer Overflow Denial of Service Vulnerability customer service mailbox (09/15/04)
• CESA-2004-004: libXpm chris_at_scary.beasts.org (09/15/04)
• [ANNOUNCE] Apache HTTP Server 2.0.51 Released Sander Striker (09/15/04)
• CESA-2004-005: gtk+ XPM decoder chris_at_scary.beasts.org (09/15/04)
• MDKSA-2004:096 - Updated apache2 packages fix multiple vulnerabilities Mandrake Linux Security Team (09/15/04)
• Re: [Bugtraq] McAfee VirusScan Privilege Escalation Vulnerability [iDEFENSE] bashis (09/15/04)
• Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Scheidell (09/16/04)
  • Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Harrison Gladden (09/16/04)
  • Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Chris Norton (09/17/04)
    • RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Wilson, Contractor (09/17/04)
• SUSE Security Announcement: cups (SUSE-SA:2004:031) Sebastian Krahmer (09/15/04)
• [SECURITY] [DSA 545-1] New cupsys packages fix denial of service Martin Schulze (09/15/04)
• PHP Vulnerability N. 1 Stefano Di Paola (09/15/04)
• MDKSA-2004:095 - Updated gdk-pixbuf packages fix image loading vulnerabilities Mandrake Linux Security Team (09/15/04)
• MDKSA-2004:094 - Updated printer-drivers packages fix vulnerability in foomatic Mandrake Linux Security Team (09/15/04)
• SUSE Security Announcement: apache2 (SUSE-SA:2004:032) Ludwig Nussel (09/15/04)
• MDKSA-2004:093 - Updated squid packages fix DoS vulnerability Mandrake Linux Security Team (09/15/04)
• SA04-002 - Apache config file env variable buffer overflow jonas.thambert_at_pts.se (09/15/04)
• [OpenPKG-SA-2004.042] OpenPKG Security Advisory (aspell) OpenPKG (09/15/04)
• McAfee VirusScan Privilege Escalation Vulnerability [iDEFENSE] Jérôme (09/15/04)
• [OpenPKG-SA-2004.040] OpenPKG Security Advisory (samba) OpenPKG (09/15/04)
• SMC7004VWBR / SMC7008ABR "spoofing" vulnerability. Jimmy Scott (09/15/04)
• New Mozilla, Firefox and Thunderbird releases fix critical security issues Gaël Delalleau (09/15/04)
• Corsaire Security Advisory - Multiple vendor MIME field whitespace issue advisories (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME RFC2231 encoding issue advisories (09/14/04)
• Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Nick D. (09/15/04)
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Polazzo Justin (09/15/04)
    • Re: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow sheep explode (09/16/04)
    • Re: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Gary Warner (09/16/04)
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Polazzo Justin (09/16/04)
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Angelidis, Fotis(NSASOUDABAY) (09/16/04)
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Parks, Matt (09/16/04)
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow Polazzo Justin (09/16/04)
• [ GLSA 200409-18 ] cdrtools: Local root vulnerability in cdrecord if set SUID root Sune Kloppenborg Jeppesen (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME field quoting issue advisories (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue advisories (09/14/04)
  • Re: Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David F. Skoll (09/15/04)
    • Re: Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David Covin (09/15/04)
      • Re: Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue David F. Skoll (09/15/04)
      • Re: Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue Borja Marcos (09/17/04)
      • Re: Corsaire Security Advisory - Multiple vendor MIME RFC2047 encoding issue Greg A. Woods (09/18/04)
• Microsoft Office WordPerfect Converter Buffer Overflow Vulnerability Jérôme (09/14/04)
• [ GLSA 200409-17 ] SUS: Local root vulnerability Sune Kloppenborg Jeppesen (09/14/04)
• Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution [MS04-028] Jérôme (09/14/04)
• ADVISORY: http response splitting in snipsnap Maestro De-Seguridad (09/14/04)
• Rainbow tables for LM/NTLMv1 authentication Hidenobu Seki (09/14/04)
• Correction to latest Colsaire advisories 3APA3A (09/13/04)
  • Re: Correction to latest Colsaire advisories advisories (09/15/04)
    • RE: Correction to latest Colsaire advisories David Litchfield (09/15/04)
  • Re: Correction to latest Colsaire advisories Andreas Marx (09/15/04)
  • RE: Correction to latest Colsaire advisories advisories (09/16/04)
  • RE: Correction to latest Colsaire advisories advisories (09/24/04)
• [XSS]/SQL Injection PHP-Nuke Edit/Save Message(s) Bug bima tampan (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME Content-Transfer-Encoding mechanism issue advisories (09/14/04)
• SUS 2.0.2 local root vulnerability LSS Security (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME field multiple occurrence issue advisories (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME separator issue advisories (09/14/04)
• [SECURITY] [DSA 544-1] New webmin packages fix insecure temporary directory Martin Schulze (09/14/04)
• Corsaire Security Advisory - Multiple vendor MIME RFC822 comment issue advisories (09/14/04)
• Inkra 1504GX DoS vulnerability in conducting IP protocol felix zhou (09/14/04)
• TSL-2004-0046 - multi Trustix Security Advisor (09/14/04)
• The ArpSucker is b0rn! Be yourself, be the net. Alpt (09/13/04)
• MDKSA-2004:092 - Updated samba packages fix multiple vulnerabilities Mandrake Linux Security Team (09/13/04)
• @stake advisory: Pingtel Xpressa Denial of Service Advisories (09/13/04)
• QNX crrtrap possible race condition vulnerability Jérôme (09/13/04)
• [RLSA_04-2004] QNX crrtrap possible race condition vulnerability Julio Cesar Fort (09/13/04)
• [RLSA_03-2004] QNX ftp client format string bug Julio Cesar Fort (09/13/04)
• Zyxel Prestige 681 SDSL router information leak Przemyslaw Frasunek (09/13/04)
• Samba nmbd Invalid Length Denial of Service Vulnerability [iDEFENSE] Jérôme (09/13/04)
• [RLSA_02-2004] QNX Photon multiple buffer overflows Julio Cesar Fort (09/13/04)
• Insecure file permissions in the Firefox browser for Linux >= v0.9 Max (09/13/04)
• @stake advisory: Lexar JumpDrive Secure Password Extraction Chris Wysopal (09/13/04)
• Samba 3.0 DoS Vulberabilities (CAN-2004-0807 & CAN-2004-0808) Gerald (Jerry) Carter (09/13/04)
• [ GLSA 200409-16 ] Samba: Denial of Service vulnerabilities Sune Kloppenborg Jeppesen (09/13/04)
• Directory Traversal Vulnerability in TwinFTP Server allows overwriting Jérôme (09/13/04)
• [ GLSA 200409-15 ] Webmin, Usermin: Multiple vulnerabilities in Usermin Dan Margolis (09/12/04)
• Posible Inclusion File in Perl Desk Nikyt0x Argentina (09/12/04)
• [CLA-2004:865] Conectiva Security Announcement - zlib Conectiva Updates (09/13/04)
• [OpenPKG-SA-2004.039] OpenPKG Security Advisory (kerberos) OpenPKG (09/13/04)
• Gadu-Gadu (all versions with image-send feature) Heap Overflow Sec-Labs Team (09/12/04)
• [CLA-2004:864] Conectiva Security Announcement - kde Conectiva Updates (09/13/04)
• Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service Wolfpaw - Dale Corse (09/11/04)
  • Re: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service David S. Miller (09/12/04)
  • RE: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service Wolfpaw - Dale Corse (09/12/04)
    • Re: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service David S. Miller (09/12/04)
    • RE: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service Ron DuFresne (09/13/04)
• problem in voip environment Pasquiet Loic (M.) (09/11/04)
• CAU-EX-2004-0002: cdrecord-suidshell.sh I)ruid (09/10/04)
• Remote buffer overflow in Apache mod_ssl when reverse proxying SSL Jérôme (09/11/04)
  • Re: Remote buffer overflow in Apache mod_ssl when reverse proxying SSL 3APA3A (09/13/04)
• Serv-U up to 5.2 Denial of Service Patrick (09/11/04)
• [CLA-2004:863] Conectiva Security Announcement - wv Conectiva Updates (09/10/04)
• cdrecord local root exploit newbug Tseng (09/10/04)
  • Re: cdrecord local root exploit Sean Davis (09/12/04)
    • Re: cdrecord local root exploit Volker Kuhlmann (09/14/04)
      • Re: cdrecord local root exploit Marcus Meissner (09/15/04)
      • Re: cdrecord local root exploit Coleman (09/15/04)
      • Re: cdrecord local root exploit Jason T. Miller (09/16/04)
      • Re: cdrecord local root exploit Dr Andrew C Aitchison (09/27/04)
      • Re: cdrecord local root exploit Jason T. Miller (09/28/04)
  • Re: cdrecord local root exploit Sean Davis (09/13/04)
• Multiple vulnerabilities in Icewarp Web Mail 5.2.7 ShineShadow (09/10/04)
• Axis Network Camera and Video Server Security Advisory product-security_at_axis.com (09/07/04)
• ERRATA: [ GLSA 200409-14 ] Samba: Remote printing non-vulnerability Sune Kloppenborg Jeppesen (09/10/04)
• [CLA-2004:860] Conectiva Security Announcement - krb5 Conectiva Updates (09/10/04)
• Bug XSS in PsNews 1.1 Michal Blaszczak (09/05/04)
• New Data Wipe Tools Thomas C. Greene (09/09/04)
  • Re: New Data Wipe Tools Thomas C. Greene (09/10/04)
    • Re: New Data Wipe Tools Derek Martin (09/12/04)
  • Re: New Data Wipe Tools Jake Appelbaum (09/10/04)
  • Re: New Data Wipe Tools Brendan Murray (09/11/04)
  • RE: New Data Wipe Tools Altheide, Cory B. (IARC) (09/13/04)
• BlackJumboDog FTP Server version 3.6.1 Buffer Overflow [Exploit included] Jérôme (09/10/04)
• OpenOffice World-Readable Temporary Files Disclose Files to Local Users Jérôme (09/10/04)
• F-Secure Internet Gatekeeper Content Scanning Server Denial of Service [iDEFENSE] Jérôme (09/10/04)
• SQL-Injection in Subjects 2.0 for Postnuke Criolabs (09/10/04)
• Off-by-one bug in Halo 1.04 Luigi Auriemma (09/09/04)
• Multiple vulnerabilities 1n BBS E-Market Professional Ahmad Muammar (09/09/04)
• [ GLSA 200409-14 ] Samba: Remote printing vulnerability Sune Kloppenborg Jeppesen (09/09/04)
• [ GLSA 200409-12 ] ImageMagick, imlib, imlib2: BMP decoding buffer overflows Thierry Carrez (09/08/04)
• [ GLSA 200409-13 ] LHa: Multiple vulnerabilities Sune Kloppenborg Jeppesen (09/08/04)
• MDKSA-2004:091 - Updated cdrecord packages fix local root vulnerability Mandrake Linux Security Team (09/08/04)
• MDKSA-2004:089 - Updated imlib/imlib2 packages fix BMP crash vulnerability Mandrake Linux Security Team (09/08/04)
• [XSS]/SQL Injection PHP-Nuke Delete Message(s) Bug bima tampan (09/08/04)
• Re: Apple, Apple Remote Desktop client [Multiple vulnerabilities] Jérôme (09/08/04)
• Insecure Temporary File Creation Vulnerability in Net-Acct Jérôme (09/08/04)
• Cerulean Studios Trillian 0.74i Buffer Overflow in MSN module exploit Jérôme (09/08/04)
• MDKSA-2004:090 - Updated zlib packages fix DoS vulnerability Mandrake Linux Security Team (09/08/04)
• [ GLSA 200409-11 ] star: Suid root vulnerability Kurt Lieber (09/08/04)
• [SNS Advisory No.77] Usermin Remote Arbitrary Shell Command Execution Vulnerability snsadv (09/07/04)
• mpg123 buffer overflow vulnerability Davide Del Vecchio (09/07/04)
• Site News Authentication Error May Let Local Users Add Messages Jérôme (09/05/04)
• Bug XSS in PsNews 1.1 Michal Blaszczak (09/05/04)
• PHP-Nuke 7.4 Multiple XSS Vulnerabilities Patch Pierquinto Manco (09/05/04)
• [XSS] PHP-Nuke 7.4 AddMsg Bug Pierquinto Manco (09/05/04)
• Good Patch to Multiple [XSS] Vulnerabilities in PHP-Nuke 7.4 Pierquinto Manco (09/06/04)
• [XSS] PHP-Nuke 7.4 Newsletter Injection Bug Pierquinto Manco (09/05/04)
• [ GLSA 200409-10 ] multi-gnome-terminal: Information leak Thierry Carrez (09/06/04)
• Apple, Apple Remote Desktop client Adam Shostack (09/05/04)
• cdrdao local root exploit Jérôme (09/05/04)
  • Re: cdrdao local root exploit 3APA3A (09/07/04)
• [RLSA_01-2004] QNX PPPoEd local root vulnerabilities Julio Cesar Fort (09/05/04)
• serverview 3.0 - insecure file permissions Rene (09/06/04)
• Broadcast shutdown in Call of Duty 1.4 Luigi Auriemma (09/05/04)
• [ GLSA 200409-09 ] MIT krb5: Multiple vulnerabilities Thierry Carrez (09/06/04)
• SUSE Security Announcement: apache2 (SUSE-SA:2004:030) Sebastian Krahmer (09/06/04)
• OpenCA Security Advisory: Cross Site Scripting vulnerability Martin Bartosch (09/06/04)
• Cross-Site Scripting Vulnerability in Newtelligence DasBlog Dominick Baier (09/01/04)
• Patch available for multiple critical flaws in Oracle NGSSoftware Insight Security Research (09/01/04)
• FUll Path Disclosure in YABBSE Ahmad Muammar (09/04/04)
• [ GLSA 200409-08 ] Ruby: CGI::Session creates files insecurely Sune Kloppenborg Jeppesen (09/03/04)
• [XSS] PHP-Nuke 7.4 DelAdmin Bug Pierquinto Manco (09/04/04)
• [XSS] PHP-Nuke 7.4 ViewAdmin Bug Pierquinto Manco (09/04/04)
  • Re: [XSS] PHP-Nuke 7.4 Bugs Blaine Elzey (09/05/04)
    • Re: [XSS] PHP-Nuke 7.4 Bugs Peter Lowe (09/08/04)
• Engenio/LSI Logic controllers denial of service/data corruption Jedi/Sector One (09/04/04)
  • Denial of service in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption) Jedi/Sector One (09/05/04)
• FW: [Unpatched] Shell and Drag'n'Drop vulnerabilities Thor Larholm (09/04/04)
  • Re: FW: [Unpatched] Shell and Drag'n'Drop vulnerabilities http-equiv_at_excite.com (09/09/04)
• MailWorks Professional - Authentication Bypass headpimp_at_pimp-industries.com (09/02/04)
• [ GLSA 200409-07 ] xv: Buffer overflows in image handling Sune Kloppenborg Jeppesen (09/03/04)
• Dynalink routers backdoor? fabio (09/03/04)
• [XSS] PHP-Nuke 7.4 Remote Privilege Escalation Pierquinto Manco (09/03/04)
• UPDATE: [ GLSA 200408-22 ] Mozilla, Firefox, Thunderbird, Galeon, Epiphany: New releases fix vulnerabilities Sune Kloppenborg Jeppesen (09/03/04)
• Kerio Personal Firewall's Application Launch Protection Can Be Disabled by Direct Service Table Restoration Jérôme (09/02/04)
• Patch available for IBM DB2 Universal Database flaws NGSSoftware Insight Security Research (09/01/04)
• MailWorks Professional - Authentication bypass headpimp_at_pimp-industries.com (09/02/04)
• [ GLSA 200409-04 ] Squid: Denial of service when using NTLM authentication Thierry Carrez (09/02/04)
• SUSE Security Announcement: zlib (SUSE-SA:2004:029) Thomas Biege (09/02/04)
• [ GLSA 200409-05 ] Gallery: Arbitrary command execution Sune Kloppenborg Jeppesen (09/02/04)
• WinZip Unspecified Buffer Overflows May Let Remote or Local Users Execute Arbitrary Code Jérôme (09/02/04)
• [SHATTER Team Security Alert] Multiple vulnerabilities in Oracle Database Server SHATTER (Application Security, Inc.) (09/02/04)
• [ GLSA 200409-06 ] eGroupWare: Multiple XSS vulnerabilities Sune Kloppenborg Jeppesen (09/02/04)
• [ GLSA 200409-03 ] Python 2.2: Buffer overflow in getaddrinfo() Thierry Carrez (09/02/04)
• TSL-2004-0045 - kerberos5 Trustix Security Advisor (09/02/04)
• [hackgen-2004-#001] - Non-critacal Cross-Site Scripting bug in CuteNews Exoduks (09/02/04)
• Password Protect XSS and SQL-Injection vulnerabilities. Criolabs (08/31/04)
• Re: Linux OpenExchange - cleartext rootpw in swap Valdis.Kletnieks_at_vt.edu (09/02/04)
  • Re: Linux OpenExchange - cleartext rootpw in swap Joshua Goodall (09/03/04)
• MDKSA-2004:088 - Updated krb5 packages fix multiple vulnerabilities Mandrake Linux Security Team (09/01/04)
• Exploit: AIM Exploit (Ignore Previous Post) John Bissell (09/01/04)
• [ GLSA 200409-01 ] vpopmail: Multiple vulnerabilities Sune Kloppenborg Jeppesen (09/01/04)
• SSHD / AnonCVS Nastyness Dragos Ruiu (09/01/04)
• Opera DOS Stevo (09/01/04)
• Multiple Vulnerabilities In phpWebsite GulfTech Security (09/01/04)
• MSInfo Buffer Overflow E.Kellinis (08/31/04)
• MITKRB5-SA-2004-002: double-free vulnerabilities Tom Yu (08/31/04)
• RE: CuteNews News.txt writable to world Albert Puigsech Galicia (08/31/04)
• [nisr@nextgenss.com: Patch available for multiple critical flaws in Oracle] David Ahmad (09/01/04)
• RE: Security Center and Windows XP clients in domain, 20040831062712.31317.qmail@www.securityfocus.com Sym Security (09/01/04)
• [security bulletin] SSRT3657 rev.3 HP-UX CDE libDtHelp buffer overflow Boren, Rich (SSRT) (09/01/04)
• New security tools and papers released shadown (09/01/04)
• Re: Security Center and Windows XP clients in domain Thor (09/01/04)
• ADVISORY: http response splitting hole in Comersus shopping cart Maestro De-Seguridad (09/01/04)
• Cross-Site Scripting Vulnerability in Newtelligence DasBlog Dominick Baier (09/01/04)
• [ GLSA 200409-02 ] MySQL: Insecure temporary file creation in mysqlhotcopy Thierry Carrez (09/01/04)
• SUSE Security Announcement: kernel (SUSE-SA:2004:028) Thomas Biege (09/01/04)
  • Re: SUSE Security Announcement: kernel (SUSE-SA:2004:028) Paul Starzetz (09/02/04)
• Samba FindNextPrintChangeNotify() Error Lets Remote Authenticated Users Crash smbd Jérôme (08/31/04)
• OpenServer 5.0.6 OpenServer 5.0.7 : apache mod_digest Incorrect Client Response Verification Vulnerability please_reply_to_security_at_sco.com (08/31/04)
• Cisco Security Advisory: Vulnerabilities in Kerberos 5 Implementation Cisco Systems Product Security Incident Response Team (08/31/04)
• RE: Security Center and Windows XP clients in domain David Webster (09/01/04)
• Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Jérôme (08/31/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Nick Knouf (09/26/04)
  • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Marco S Hyman (09/28/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Simon (09/28/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes Colm Buckley (09/29/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes David F. Skoll (09/29/04)
      • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes float_at_lefant.net (09/29/04)
    • Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes David F. Skoll (09/28/04)
• Multiple Vulnerabilities in phpScheduleIt Joxean Koret (08/31/04)
  • Re: Multiple Vulnerabilities in phpScheduleIt Nick Korbel (09/18/04)
• OpenServer 5.0.6 OpenServer 5.0.7 : squid %-encoded characters in a URL please_reply_to_security_at_sco.com (08/31/04)
• UPDATED OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSL Multiple Vulnerabilities please_reply_to_security_at_sco.com (08/31/04)

Last message date: 09/30/04
Archived on: 09/30/04 CEST

466 messages sorted by: [ author ] [ date ] [ subject ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint