SecurityFocus Bugtraq
By Author

527 messages sorted by: [ date ] [ thread ] [ subject ] [ attachment ]

Starting: 04/01/05
Ending: 04/29/05

3APA3A
- Internet Explorer wininet.dll URL parsing memory corruption technical details (04/14/05)
Adam Back
- Re: [ GLSA 200503-12 ] Hashcash: Format string vulnerability (04/07/05)
Adam Baldwin
- Neslo Desktop Rover Remote DoS Vulnerability (04/20/05)
Adam n30n Simuntis
- artmedic_links5 remote file access exploit (04/23/05)
admin_at_batznet.com
- WoltLab Burning Board <= 2.3.1 PL2 - XSS Vulnerability (24.04.05) (04/24/05)
alex
- RE: Invision Power Board v2.0.3 XSS vulnerabilities (03/31/05)
Alex Garrett
- APG Classmaster Workstation Windows SMB share access vulnerability (04/21/05)
Alexander Kornbrust
- Cross Site Scripting in BEA Admin Console (04/28/05)
- Cross Site Scripting in Oracle Webcache 9i Adminstrator Application (04/28/05)
- File appending vulnerability in Oracle Webcache 9i (04/28/05)
- Webcache Client Requests Bypass OHS mod_access Restrictions (04/28/05)
Allen Parker
- Re: Capital One's website inadvertently assists phishing (04/20/05)
Amit Klein (AKsecurity)
- Re: HTTP RESPONSE SPLITTING by Diabolic Crab (04/17/05)
- Re: Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below (04/17/05)
Andreas Constantinides
- zOOM Media Gallery - Simple SQL Injection discovery (04/13/05)
Andrew
- Microsoft Windows image rendering DoS vuln (04/11/05)
Anthony Zboralski
- BCS Asia 2005 Slides and pictures (04/14/05)
Antoine Martin
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted (04/23/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/22/05)
Antonio Varni
- Re: Security Contact for NetApp ? (04/14/05)
Arkoon Security Team
- Information leak in the Linux kernel ext2 implementation (04/01/05)
Ayaz Ahmed Khan
- Announcing PAKCON II (2005)! (04/19/05)
- PAKCON II: Call for Papers (CfP - 2005) (04/19/05)
Bahaa Naamneh
- NetManage RUMBA 7.4 Profile Handling Multiple Buffer Overflow Vulnerabilities (04/13/05)
- Buffer Overflow within the RUMBA product (04/01/05)
Beau Henderson
- Re: cPanel/WHM demo account problems (04/01/05)
Berend-Jan Wever
- Details and PoC for MS05-020 MSIE DHTML Object handling vulnerabilities (04/12/05)
bert_at_adbas.net
- OSX - trojan apps can bypass authentication controls and gain root privilages (04/06/05)
Boren, Rich (SSRT)
- [Security Bulletin] SSRT5958 rev.0 - HP OpenView Radia Mgmt. Portal (RMP) Radia Mgmt. Agent Remote unauthorized Privileged Access and (DoS) (04/28/05)
- [security bulletin] SSRT5954 rev.0 HP-UX TCP/IP Remote Denial of Service (DoS) (04/25/05)
Boyce, Nick
- RE: iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability (04/20/05)
Braden Thomas
- Re: Safari HTTPS Overflow (04/29/05)
Brett Moore
- [WHITEPAPER] Bugger The Debugger (04/11/05)
Bruce Momjian
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
Bruno Wolff III
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/22/05)
byte_jump
- Re: Discovering and Stopping Phishing/Scam Attacks (04/26/05)
c0d3r_at_ihsteam.com
- Golden FTP Server Pro remote stack BOF exploit (IHSTeam) (04/29/05)
- PMsoftware mini http server remote stack overflow exploit (IHSTeam) (04/20/05)
- Ecommerce-Carts SQL injection vulnerability ( IHSTeam ) (04/19/05)
- ArGoSoft FTP Server is still vuln + PoC exploit code (IHSTeam) (04/03/05)
CENSORED
- SQL-injections in koobi-cms (04/27/05)
- SQL-injections in Invision Power Board v2.0.1 (04/25/05)
Cesar
- - Argeniss - Oracle exploits and workarounds (04/19/05)
Charles M. Hannum
- Security holes in the iTunes Music Store (03/31/05)
chewkeong_at_security.org.sg
- [SIG^2 G-TEC] SurgeFTP LEAK Command Denial-Of-Service Vulnerability (04/07/05)
CIRT.DK Advisory
- [CIRT.DK - Advisory] Novell Nsure Audit 1.0.1 Denial of Service (04/24/05)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Vulnerabilities in Cisco IOS Secure Shell Server (04/06/05)
- Cisco Security Advisory: Vulnerabilities in the Internet Key Exchange Xauth Implementation (04/06/05)
Clad Strife
- Linux vsyscalls may be used as attack vectors (04/20/05)
- Linux vsyscalls may be used as attack vectors (04/20/05)
class101_at_HAT-SQUAD.com
- Microsoft Windows Internet Name Service (WINS) Remote Heap Overflow Exploit (04/04/05)
Clorox
- Centra 7 XSS Exploit (04/12/05)
Conectiva Updates
- [CLA-2005:948] Conectiva Security Announcement - squid (04/27/05)
- [CLA-2005:949] Conectiva Security Announcement - gaim (04/27/05)
- [CLA-2005:950] Conectiva Security Announcement - evolution (04/27/05)
- [CLA-2005:947] Conectiva Security Announcement - MySQL (04/20/05)
- [CLA-2005:946] Conectiva Security Announcement - MySQL (04/04/05)
CorryL
- MailEnable HTTPS Buffer Overflow [x0n3-h4ck] (04/24/05)
- Shoutbox SCRIPT <= 3.0.2 Administrative MD5 Username and Password Retrieval [x0n3-h4ck] (04/19/05)
- TowerBlog <= 0.6 Admin Account View [x0n3-h4ck] (04/10/05)
- MailEnable Smtpd remote Dos [x0n3-h4ck] (04/05/05)
Crispin Cowan
- Re: Discovering and Stopping Phishing/Scam Attacks (04/27/05)
cybertronic_at_gmx.net
- Snmppd SNMP proxy daemon format string exploit (04/29/05)
- Yager <= 5.24 Remote Buffer Overflow Exploit (04/26/05)
- RE: ERNW Security Advisory 01/2005 [ EXPLOIT ] (04/19/05)
D.C. van Moolenbroek
- Re: index.cgi script XSS + file show (04/25/05)
Damian Put
- [Overflow.pl] ImageMagick ReadPNMImage() Heap Overflow (04/25/05)
Darren
- Re: cPanel/WHM demo account problems (04/01/05)
Darren Reed
- Re: Solaris 10 Containers / Zones Security Flaw (04/04/05)
Dave Aitel
- Re: [Full-disclosure] [VulnDiscuss] Re: -==phpBB 2.0.14 Multiple Vulnerabilities==-[Scanned] (04/24/05)
Dave Armstrong
- Borland Security Contact (04/28/05)
David F. Russell
- Re: AW: PayPal "security" measures (04/04/05)
David F. Skoll
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/20/05)
David Malone
- Re: crontab from vixie-cron allows read other users crontabs (04/06/05)
David Remahl
- [DR001] AppleWebKit XMLHttpRequest arbitrary file disclosure vulnerability (04/16/05)
David Riley
- Re: Safari HTTPS Overflow (04/29/05)
dcrab
- Multiple Sql injections in phpCoin v1.2.2 and below (04/28/05)
- Multiple SQL Injections in MetaBid Auctions (04/26/05)
- MetaCart2 for PayFlow Multiple Sql Injection Vulnerabilities (04/26/05)
- Multiple SQL Injections in MetaCart2 for SQL Server Special Edition U.K (04/26/05)
- Multiple SQL Injections in MetaCart2 for PayPal (04/26/05)
- Multiple SQL Injections in MetaCart e-Shop V-8 (04/26/05)
- Multiple SQL Injections in StorePortal 2.63 (04/24/05)
- Multiple Sql injection and XSS in CartWIZ ASP Cart (04/24/05)
- Multiple Sql injection vulnerabilities in BK Forum v.4 (04/23/05)
- Multiple Sql injection and XSS in Asp Nuke 0.80 (Working exploits included) (04/22/05)
- DUportal Pro 3.4 has MANY Sql injection and Sql Errors. (04/20/05)
- Require many large corporate emails for contact regarding vulnerability. (04/16/05)
- Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below (04/16/05)
- Multiple multiple sql injection/errors and xss vulnerabilities in OneWorldStore (04/14/05)
- Multiple Sql injection and XSS vulnerabilities in phpBB Plus v.1.52 and below and some of its modules. (04/14/05)
- HTTP RESPONSE SPLITTING by Diabolic Crab (04/13/05)
- Directory transversal, sql injection and xss vulnerabilities in RadBids Gold v2 (04/09/05)
- Invision board 1.3.1 and below are vulnerable to a sql injection vulnerability [PATCH INCLUDED] (04/11/05)
- Sql injection, xss and path disclosure vulnerabilities in PostNuke 0.760-RC3 (04/08/05)
- LiteCommerce Sql injection and reveling errors vulnerability (04/07/05)
- Active Auction House has multiple Sql injection, error and XSS vulnerabilities (04/06/05)
- Authenticaion bypass, Directory transversal and XSS vulnerabilities in PayProCart 3.0 - Profitcode Software (04/05/05)
- AlstraSoft EPay Pro v2.0 has file include and multiple xss vulnerabilities (04/02/05)
deluxe_at_security-project.org
- [SePro Bugtraq] WBB - WoltLab Burning Board <= 2.3.1 - XSS Vulnerability (22.04.05) (04/22/05)
- phpBB - Knowledge Base MOD - SQL-Injection and Full Path Disclosure (04/18/05)
Denis Jedig
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities (04/02/05)
Derek Martin
- Re: gzip TOCTOU file-permissions vulnerability (04/14/05)
- Re: gzip TOCTOU file-permissions vulnerability (04/14/05)
- Re: gzip TOCTOU file-permissions vulnerability (04/13/05)
Des Ward
- Re: Microsoft Explorer Denial of Service (04/06/05)
devnull_at_Rodents.Montreal.QC.CA
- Re: gzip TOCTOU file-permissions vulnerability (04/15/05)
dila
- OpenText FirstClass 8.0 Client Arbitrary File Execution (04/08/05)
Dionysios G. Synodinos
- Re: Sql injection, xss and path disclosure vulnerabilities in PostNuke 0.760-RC3 (04/09/05)
Dirk Mueller
- [KDE Security Advisory]: Kommander untrusted code execution (04/22/05)
- [KDE Security Advisory]: kimgio input validation errors (04/22/05)
Dmitry Yu. Bolkhovityanov
- Re: gzip TOCTOU file-permissions vulnerability (04/16/05)
Donato Ferrante
- directory traversal in Yawcam 0.2.5 (04/21/05)
dong-hun you
- [INetCop Security Advisory] Snmppd potentially format string vulnerability. (04/25/05)
- GLD (Greylisting daemon for Postfix) multiple vulnerabilities. (04/12/05)
echo staff
- [ECHO_ADV_12$2005] Vulnerabilities in sphpblog (04/15/05)
- Vulnerabilities in sphpblog (04/15/05)
Eiji James Yoshida
- RE: Microsoft Windows Server 2003 "Shell Folders" Directory Traversal Vulnerability (04/02/05)
Emanuele \
- E-Cart E-Commerce Software EXPLOIT (04/26/05)
- E-Cart v1.1 Remote Command Execution Vulnerability (04/24/05)
Erich Klaus
- Sql Injection in Confixx 3.06 & 3.08 & 3.?? ? (04/25/05)
Evgeny Pinchuk
- MS05-021 Microsoft Exchange X-LINK2STATE Heap Overflow PoC (04/19/05)
exploits_at_nopiracy.de
- PunBB <= 1.2.4 - change email to become admin exploit (04/08/05)
Fabrice Marie
- Security Contact for NetApp ? (04/14/05)
farhad koosha
- ACSblog bug (04/23/05)
fireboy fireboy
- remote command execution in ad.cgi script (04/24/05)
- remote command execution in forum.pl script (04/24/05)
- index.cgi script XSS + file show (04/24/05)
- remote command execution in text.cgi script (04/25/05)
- remote command execution in includer.cgi script (04/24/05)
- remote command execution in citat.pl script (04/24/05)
- hyper.cgi script file show bug (04/24/05)
- remote command execution in include.cgi script (04/25/05)
- remote command execution in inserter.cgi script (04/25/05)
Francisco Alisson
- Mafia Blog (04/15/05)
- myBloggie 2.1.1 (04/15/05)
- All4WWW-Homepagecreator Remote Command Execution (04/14/05)
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-05:05.cvs (04/22/05)
- FreeBSD Security Advisory FreeBSD-SA-05:04.ifconf (04/15/05)
- FreeBSD Security Advisory FreeBSD-SA-05:03.amd64 (04/06/05)
- FreeBSD Security Advisory FreeBSD-SA-05:02.sendfile (04/05/05)
Gadi Evron
- Re: crontab from vixie-cron allows read other users crontabs (04/06/05)
- drone armies C&C report - March/2005 (04/06/05)
Gandalf The White
- New auto download / install / exploit URL? (04/23/05)
Geoff Vass
- RE: New auto download / install / exploit URL? (04/24/05)
Gerald Quakenbush
- eGroupWare Leaks Files (04/12/05)
Gerardo Astharot Di Giacomo
- Zone-H 2004 statistics are ready to be downloaded (04/12/05)
GHC team
- Vulnerability in Coppermine Photo Gallery 1.3.* (04/18/05)
gilbert nzeka
- The first open source spyware (04/18/05)
Gilbert Verdian
- Safari HTTPS Overflow (04/28/05)
GomoR
- MS05-019 Windows IP options DoS exploit (04/24/05)
Greg Roelofs
- XV multiple buffer overflows (update) (04/11/05)
GreyMagic Security
- File Selection May Lead to Command Execution (GM#015-IE) (04/19/05)
GulfTech Security Research
- phpBB Notes Mod SQL Injection Vulnerability (04/28/05)
- Multiple Security Issues Found In AZBB (04/20/05)
- Multiple eGroupware Vulnerabilities (04/20/05)
- RE: Portcullis Security Advisory 05-012 Ebay Session Riding Vulnerability (04/19/05)
- Multiple ModernBill 4.3.0 And Earlier Vulnerabilities (04/10/05)
Gunter Ollmann (NGS)
- New Whitepaper: Stopping Automated Attack Tools (04/26/05)
G�ran Sandahl
- Re: RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Overflow (04/21/05)
HaCkZaTaN
- -==phpBB 2.0.14 Multiple Vulnerabilities==- (04/24/05)
Hat-Squad Security Team
- [Hat-Squad Advisory] Bakbone NetVault Heap overflow Vulnerabilities (04/01/05)
Hermann Arens
- Re: New auto download / install / exploit URL? (04/27/05)
Hillel Himovich
- UBB Thread printthread.php SQL Injection (04/19/05)
houseofdabus HOD
- ICMP attacks against TCP (Proof-of-Concept code) (MS05-019, CISCO:20050412) (04/20/05)
Hyperdose Security
- Local file detection found through Adobe Reader ActiveX control (04/23/05)
- Arbitrary file overwrite possible by Musicmatch ActiveX control (04/15/05)
- Improper log file storage in Musicmatch software (04/15/05)
- Trusted Site Cross Site Scripting Elevation of Privilege in Musicmatch (04/14/05)
- Trojan file issue in Musicmatch software (04/14/05)
I)ruid
- CAU - New Tool: hcraft - HTTP Vuln Request Crafter (04/19/05)
iDEFENSE Labs
- iDEFENSE Labs Releases dltrace (04/27/05)
- iDEFENSE Security Advisory 04.25.05: MySQL MaxDB Webtool Remote Lock-Token Stack Overflow Vulnerability (04/26/05)
- iDEFENSE Security Advisory 04.25.05: MySQL MaxDB Webtool Remote Stack Overflow Vulnerability (04/26/05)
- iDEFENSE Security Advisory 04.26.05: MySQL MaxDB Webtool Remote 'If' Stack Overflow Vulnerability (04/26/05)
- iDEFENSE Security Advisory 04.26.05: Citrix Program Neighborhood Agent Arbitrary Shortcut Creation Vulnerability (04/26/05)
- iDEFENSE Security Advisory 04.26.05: Citrix Program Neighborhood Agent Buffer Overflow (04/26/05)
- iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability (04/19/05)
- iDEFENSE Security Advisory 04.12.05: Microsoft Internet Explorer DHTML Engine Race Condition Vulnerability (04/12/05)
- iDEFENSE Security Advisory 04.12.05: Microsoft Windows Internet Explorer Long Hostname Heap Corruption Vulnerability (04/12/05)
- iDEFENSE Security Advisory 04.12.05: Microsoft MSHTA Script Execution Vulnerability (04/12/05)
- iDEFENSE Security Advisory 04.12.05: Microsoft Windows CSRSS.EXE Stack Overflow Vulnerability (04/12/05)
- iDEFENSE Security Advisory 04.11.05: Computer Associates BrightStor ARCserve Backup UniversalAgent Buffer Overflow (04/11/05)
- iDEFENSE Security Advisory 04.08.05: Microsoft Multiple E-Mail Client Address Spoofing Vulnerability (04/08/05)
- iDEFENSE Security Advisory 04.07.05: SGI IRIX gr_osview File Overwrite Vulnerability (04/07/05)
- iDEFENSE Security Advisory 04.07.05: SGI IRIX gr_osview Information Disclosure Vulnerability (04/07/05)
- iDEFENSE Security Advisory 04.06.05: IBM Lotus Domino Server Web Service DoS Vulnerability (04/06/05)
- iDEFENSE Security Advisory 04.05.05: Computer Associates eTrust Intrusion Detection System CPImportKey DoS (04/05/05)
- iDEFENSE Labs Releases OllyDbg Breakpoint Manager (04/05/05)
- iDEFENSE Security Advisory 03.31.05: PHP getimagesize() Multiple Denial of Service Vulnerabilities (04/01/05)
Imran Ghory
- cpio directory traversal vulnerability (04/20/05)
- gzip directory traversal vulnerability (04/20/05)
- cpio TOCTOU file-permissions vulnerability (04/13/05)
- rpdump TOCTOU file-permissions vulnerability (04/10/05)
- ================================ GNU Core Utilities race condition file-permissions vulnerability ================================ Software: mkdir, mknod, mkfifo Version: Part of GNU Core Utilities 5.2.1 Software URL: <http://www.gnu.org/software/cor (04/07/05)
- gzip TOCTOU file-permissions vulnerability (04/04/05)
IRM Advisories
- IRM 011: Sygate,Security Agent (Sygate Secure Enterprise) Fail Open DoS (04/12/05)
J B
- RE: AW: PayPal "security" measures (04/04/05)
jaguar
- Annuaire Netref v4.2 [ fwrite php ] vulnerability (04/20/05)
Janek Vind
- [waraxe-2005-SA#042] - Multiple vulnerabilities in Coppermine Photo Gallery 1.3.2 (04/20/05)
- [waraxe-2005-SA#041] - Critical Sql Injection in PhpNuke 6.x-7.6 Top module (04/07/05)
Jason Coombs
- DHS Security Contact (04/29/05)
Jason Dodson
- Re: Vulnerability kali's tagboard (04/21/05)
Jason V. Miller
- Re: bzip2 TOCTOU file-permissions vulnerability (04/02/05)
Jean-Yves Lefort
- multiple remote denial of service vulnerabilities in Gaim (04/01/05)
Jeff Moss
- Black Hat USA 2005 Reminder CFP closing soon! (04/27/05)
JeiAr
- Re: Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below (04/15/05)
- Double Choco Latte Remote Code Execution (04/08/05)
Jeremy Rasmussen
- PayPal "security" measures (04/01/05)
Jesse Morgan
- Re: Microsoft Windows image rendering DoS vuln (04/21/05)
Jesus
- Re: Vulnerability kali's tagboard (04/28/05)
jim allan
- Re: Solaris 10 Containers / Zones Security Flaw (04/04/05)
- Solaris 10 Containers / Zones Security Flaw (04/01/05)
Jim C. Nasby
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/20/05)
Jim Knoble
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
Joey Hess
- Re: gzip TOCTOU file-permissions vulnerability (04/13/05)
John Cobb
- RE: [NOBYTES.COM: #6] CubeCart 2.0.6 - Information Disclosure (02/06/05)
- [NOBYTES.COM: #6] CubeCart 2.0.6 - Information Disclosure (02/06/05)
joke0
- Re: New auto download / install / exploit URL? (04/26/05)
Jonathan Katz
- Re: Solaris 10 Containers / Zones Security Flaw (04/02/05)
Jordi Corrales
- Dameware NT Utilities and MiniRemote Control <= 4.9 vulnerability (04/15/05)
Joseph Barillari
- Re: Capital One's website inadvertently assists phishing (04/20/05)
- Capital One's website inadvertently assists phishing (04/19/05)
Josh Berkus
- Re: Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
Joshua D. Drake
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
Joxean Koret
- Security contact at sourceforge? (04/27/05)
Karol Wi�sek
- crontab from vixie-cron allows read other users crontabs (04/06/05)
KF (lists)
- Re: Borland Security Contact (04/28/05)
- DMA[2005-0423a] - 'Nokia Affix Bluetooth Integer Underflow' (04/24/05)
- 'Widcomm BTW (Microsoft Windows BT stack) Directory Transversal' (04/13/05)
- Re: OSX - trojan apps can bypass authentication controls and gain root privilages (04/06/05)
- DMA[2005-0401a] - 'IVT BlueSoleil Directory Transversal' (04/01/05)
Kold
- GrayCMS php code injection (04/26/05)
Kozan
- Miranda IM and Miranda Installer Let Local Users Execute Arbitrary Code (04/08/05)
kre0n_at_mail.ru
- AzDGDatingPlatinum multiple vulnerabilities (04/09/05)
kreon
- serendipity SQL Injection vulnerability (04/13/05)
- DoKuWiki file-upload vulnerabilities (04/12/05)
lacertosum_at_yahoo.com
- WebCT 4.1 vulnerable to XSS attacks (04/11/05)
Lance James
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
Larry Seltzer
- RE: iDEFENSE Security Advisory 04.08.05: Microsoft Multiple E-Mail Client Address Spoofing Vulnerability (04/09/05)
- RE: Microsoft Explorer Denial of Service (04/06/05)
lee xiaojun
- OpenOffice DOC document Heap Overflow (04/12/05)
liquid_at_cyberspace.org
- QuickTime for Windows malformed GIF DoS (04/13/05)
- WindowsXP malformed .wmf files DoS (03/31/05)
Luca Ercoli
- LG U8120 Mobile Phone Denial of Service (04/13/05)
- Re: Microsoft Explorer Denial of Service (04/07/05)
- Microsoft Explorer Denial of Service (04/06/05)
Luigi Auriemma
- Multiple vulnerabilities in Yager 5.24 (04/14/05)
- In-game server crash in Call of Duty 1.5b and United Offensive 1.51b (04/02/05)
- In-game server buffer-overflow in Jedi Academy 1.011 (04/02/05)
- In-game players kicking in the Quake 3 engine (04/02/05)
Luis Alberto Cortes Zavala
- Microsoft Windows image rendering DoS vuln (04/22/05)
Luis Fernando
- Multiples Full Path Disclosure in php-nuke 7.6 (and below) (04/29/05)
Luke Macken
- [ GLSA 200504-08 ] phpMyAdmin: Cross-site scripting vulnerability (04/11/05)
- [ GLSA 200504-06 ] sharutils: Insecure temporary file creation (04/07/05)
- [ GLSA 200504-05 ] Gaim: Denial of Service issues (04/06/05)
Macromedia Security Zone
- Macromedia Security Bulletin - ColdFusion MX 6.1 (04/07/05)
Mailinglists
- ERNW Security Advisory 01/2005 (04/18/05)
Maksymilian Arciemowicz
- Re: Sql injection, xss and path disclosure vulnerabilities in PostNuke 0.760-RC3 (04/08/05)
- [SECURITYREASON.COM] phpnuke 7.6 Multiple vulnerabilities in Web_Links Module cXIb8O3.14 (04/07/05)
- [SECURITYREASON.COM] phpnuke 7.6 Multiple vulnerabilities in Downloads Module cXIb8O3.13 (04/07/05)
- [SECURITYREASON.COM] PhpNuke 7.6=>x Multiple vulnerabilities cXIb8O3.12 (04/04/05)
Mandrakelinux Security Team
- MDKSA-2005:070 - Updated MySQL packages fix vulnerability (04/13/05)
- MDKSA-2005:069 - Updated gdk-pixbuf packages fix vulnerability (04/08/05)
- MDKSA-2005:068 - Updated gtk+2.0 packages fix vulnerability (04/08/05)
- MDKSA-2005:067 - Updated sharutils packages fix multiple vulnerabilities (04/08/05)
- MDKSA-2005:065 - Updated ImageMagick packages fix multiple vulnerabilities (04/02/05)
- MDKSA-2005:066 - Updated grip packages fix vulnerability (04/02/05)
Mandriva Security Team
- MDKSA-2005:078 - Updated squid packages fix vulnerability (04/29/05)
- MDKSA-2005:079 - Updated perl packages to fix rmtree vulnerability (04/29/05)
- MDKSA-2005:080 - Updated libxpm4 packages fix libXpm vulnerabilities (04/29/05)
- MDKSA-2005:077 - Updated cdrecord packages fix vulnerability (04/21/05)
- MDKSA-2005:075 - Updated libcdaudio1 packages fix vulnerability (04/21/05)
- MDKSA-2005:073 - Updated cvs packages fix vulnerability (04/21/05)
- MDKSA-2005:074 - Updated gnome-vfs2 packages fix vulnerability (04/21/05)
- MDKSA-2005:076 - Updated xli packages fix multiple vulnerabilities (04/21/05)
- MDKSA-2005:072 - Updated php packages fix multiple vulnerabilities (04/19/05)
- MDKSA-2005:071 - Updated gaim packages fix multiple vulnerabilities (04/14/05)
Marc Schoenefeld
- MacOSX Java Runtime Environment Remote Denial-of-Service (DoS) Vulnerability (04/08/05)
Marcin \
- Sql injection in jPortal version 2.3.1 (module banner) (04/12/05)
- Sql injection in jPortal version 2.3.1 (module banner) (04/11/05)
Marcus Meissner
- SUSE Security Announcement: Mozilla Firefox, Mozilla various security problems (SUSE-SA:2005:028) (04/27/05)
- SUSE Security Announcement: RealPlayer buffer overflow in RAM file handling (SUSE-SA:2005:026) (04/20/05)
- SUSE Security Announcement: PostgreSQL buffer overflow problems (SUSE-SA-2005:027) (04/20/05)
- SUSE Security Announcement: various KDE security problems (SUSE-SA:2005:022) (04/11/05)
- SUSE Security Announcement: kernel local privilege escalation (SUSE-SA:2005:021) (04/04/05)
Mark Senior
- RE: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- RE: gzip TOCTOU file-permissions vulnerability (04/14/05)
Markus Stenzel
- Re: [bugtraq] Re: Borland Security Contact (04/29/05)
Martin Pitt
- [USN-112-1] PHP4 vulnerabilities (04/14/05)
- [USN-111-1] Squid vulnerability (04/14/05)
- Re: gzip TOCTOU file-permissions vulnerability (04/12/05)
- [USN-110-1] Linux kernel vulnerabilities (04/11/05)
- [USN-108-1] GDK vulnerability (04/05/05)
- [USN-109-1] MySQL vulnerability (04/06/05)
- [USN-107-1] racoon vulnerability (04/05/05)
- [USN-106-1] Gaim vulnerabilities (04/05/05)
- [USN-105-1] PHP4 vulnerabilities (04/05/05)
- [USN-104-1] unshar vulnerability (04/04/05)
- [USN-103-1] Linux kernel vulnerabilities (04/01/05)
Martin Schulze
- [SECURITY] [DSA 718-1] New ethereal packages fix buffer overflow (04/28/05)
- [SECURITY] [DSA 719-1] New prozilla packages fix arbitrary code execution (04/28/05)
- [SECURITY] [DSA 718-2] New ethereal packages fix buffer overflow (04/28/05)
- [SECURITY] [DSA 716-1] New gaim packages fix denial of service (04/27/05)
- [SECURITY] [DSA 717-1] New lsh packages fix several vulnerabilities (04/27/05)
- [SECURITY] [DSA 715-1] New cvs packages fix unauthorised repository access (04/27/05)
- [SECURITY] [DSA 714-1] New kdelibs packages fix arbitrary code execution (04/26/05)
- [SECURITY] [DSA 713-1] New junkbuster packages fix several vulnerabilities (04/21/05)
- [SECURITY] [DSA 701-2] New samba packages fix correct sporadic crash (04/21/05)
- [SECURITY] [DSA 661-2] New f2c packages fix insecure temporary files (04/20/05)
- [SECURITY] [DSA 712-1] New geneweb packages fix insecure file operations (04/19/05)
- [SECURITY] [DSA 711-1] New info2www packages fix cross-site scripting vulnerability (04/19/05)
- [SECURITY] [DSA 710-1] New gtkhtml packages fix denial of service (04/18/05)
- [SECURITY] [DSA 708-1] New PHP3 packages fix denial of service (04/15/05)
- [SECURITY] [DSA 709-1] New libexif packages fix arbitrary code execution (04/15/05)
- [SECURITY] [DSA 706-1] New axel packages fix arbitrary code execution (04/13/05)
- [SECURITY] [DSA 707-1] New mysql packages fix several vulnerabilities (04/13/05)
- [SECURITY] [DSA 704-1] New remstats packages fix several vulnerabilities (04/04/05)
- [SECURITY] [DSA 705-1] New wu-ftpd packages fix denial of service (04/04/05)
- [SECURITY] [DSA 702-1] New ImageMagick packages fix several vulnerabilities (04/01/05)
- [SECURITY] [DSA 703-1] New krb5 packages fix arbitrary code execution (04/01/05)
Matthias Geerdsen
- [ GLSA 200504-24 ] eGroupWare: XSS and SQL injection vulnerabilities (04/25/05)
- [ GLSA 200504-19 ] MPlayer: Two heap overflow vulnerabilities (04/20/05)
maty siman
- Yet Another Forum.net XSS vulnerabilities (04/02/05)
Max Cerny
- [exploits] phpMyVisites 1.3 local file retrieval (04/26/05)
Max Moser
- Sanboxed browsing and authentication credentials (04/05/05)
McAllister, Andrew
- RE: PayPal "security" measures (04/06/05)
- RE: PayPal "security" measures (04/04/05)
Michael Brennen
- Re: Bay Technical Associates telnet server logon bypass (03/31/05)
Michael Roitzsch
- xine security announcement: multiple heap overflows in MMS and Real RTSP streaming clients (04/21/05)
Michael Rueve
- AW: PayPal "security" measures (04/04/05)
Michael Samuel
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted (04/22/05)
Microsoft Security Response Center
- How to Report a Security Vulnerability to Microsoft (04/08/05)
Mike Fratto
- RE: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- RE: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- RE: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
mike_at_genxweb.net
- Re: AW: PayPal 'security' measures (04/04/05)
mikx
- Firesearching 1 + 2 [Firefox 1.0.2] (04/18/05)
- Firelinking [Firefox 1.0.2] (04/18/05)
Mohit Muthanna
- OT: Two Factor Authentication on Linux / Mac / Windows (04/28/05)
msdarkflyer_at_linuxmail.org
- Directoy Traversal Attack in apexec.pl (.%00./-Bug) (04/19/05)
Next Generation Insight Security Research (NGS Software)
- Remote Buffer Overflow in Lotus Domino (04/12/05)
NGSSoftware Insight Security Research
- High risk flaw in HP OpenView Radia Management Agent (04/28/05)
- Windows kernel overflow fixed (04/13/05)
- Multiple High Risk flaws fixed in Oracle (04/13/05)
- Multiple medium risk flaws fixed in new version of PHP (late advisory) (04/13/05)
- Patch available for critical Veritas i3 Server vulnerability (04/13/05)
- Sybase ASE Multiple Security Issues (#NISR05042005) (04/05/05)
nibbler999_at_users.sf.net
- Re: Vulnerability in Coppermine Photo Gallery 1.3.* (04/21/05)
Nicob
- Re: New auto download / install / exploit URL? (04/28/05)
Nicolas Montoza
- Possible XSS in User-Agent (04/25/05)
- E-Cart v1.1 Remote Command Execution (04/23/05)
- WordPress XSS and HTML injection (04/12/05)
Oliver Karow
- SonicWALL SOHO/10 - XSS vulnerability (04/04/05)
OpenPKG
- [OpenPKG-SA-2005.006] OpenPKG Security Advisory (mysql) (04/20/05)
- [OpenPKG-SA-2005.005] OpenPKG Security Advisory (imapd) (04/05/05)
Oriol Torrent Santiago
- phpMyAdmin Cross-site Scripting Vulnerability (04/04/05)
Overflow.pl
- [Overflow.pl] Libsafe - Safety Check Bypass Vulnerability (04/15/05)
- [Overflow.pl] GOCR - Multiple vulnerabilities (04/15/05)
Ovidiu Constantin
- Re: BitDefender 8 - Race condition vulnerability (04/25/05)
pak_ml
- RE: Netflix Site may assist Phishing (04/28/05)
pasquale minervini
- possible privilege escalation on Sco OpenServer 5.0.7 (04/04/05)
patr0n_at_nm.ru
- Local buffer overflow on Aeon<=0.2a (04/04/05)
patrick
- Re: Microsoft Windows image rendering DoS vuln (04/21/05)
- Re: Microsoft Windows image rendering DoS vuln (04/20/05)
Paul J Docherty
- Portcullis Security Advisory 05-012 Ebay Session Riding Vulnerability (04/19/05)
Paul Laudanski
- NY sues Spyware Intermix, funded by Tiaa-Cref (04/28/05)
- Re: -==phpBB 2.0.14 Multiple Vulnerabilities==- (04/24/05)
- Re: Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below (04/16/05)
- Re: [SECURITYREASON.COM] PhpNuke 7.6=>x Multiple vulnerabilities cXIb8O3.12 (04/09/05)
Pavel Kankovsky
- Re: ================================ GNU Core Utilities race condition file-permissions vulnerability ================================ Software: mkdir, mknod, mkfifo Version: Part of GNU Core Utilities 5. (04/16/05)
Peachtree Linux Security Team
- [PLSN-0005] new cvs package available (04/26/05)
- [PLSN-0006] new libexif package available (04/26/05)
- [PLSN-0007] new libcdaudio package available (04/26/05)
- [PLSN-0001] - Multiple vulnerabilities in Gaim (04/21/05)
- [PLSN-0003] - Remote exploits in MPlayer (04/21/05)
- [PLSN-0002] - Multiple vulnerabilities in Gaim (04/21/05)
- [PLSN-0003] - Remote exploits in mplayer (04/22/05)
- [PLSN-0002] - Multiple vulnerabilities in Gaim (04/21/05)
- [PLSN-0001] - Multiple PHP vulnerabilities (04/21/05)
- [PLSN-0004] - Buffer overflow in PostgreSQL (04/21/05)
Peter J. Holzer
- Re: gzip TOCTOU file-permissions vulnerability (04/15/05)
- Re: gzip TOCTOU file-permissions vulnerability (04/13/05)
Philippe Oechslin
- windux-linux-gui-rainbow-lanman-cracker released (04/15/05)
piker piker
- Vulnerability kali's tagboard (04/22/05)
Piotr Bania
- RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Overflow (04/20/05)
- (PAPER) "Vision of danger: The Firefox Greasemonkey" (03/31/05)
please_reply_to_security_at_sco.com
- UnixWare 7.1.4 UnixWare 7.1.3 UnixWare 7.1.1 : telnet client multiple issues (04/08/05)
- OpenServer 5.0.6 OpenServer 5.0.7 : cscope local attacker can remove arbitrary files (04/07/05)
- UnixWare 7.1.4 : cdrecord local root exploit (04/07/05)
- UnixWare 7.1.4 : libtiff Multiple vulnerabilities (04/07/05)
- UnixWare 7.1.4 UnixWare 7.1.3 UnixWare 7.1.1 : CDE dtlogin unspecified double free (04/07/05)
- OpenServer 5.0.6 OpenServer 5.0.7 : termsh atcronsh auditsh environment buffer overflows (04/07/05)
Pluf
- 7a69Adv#23 - Jar tool directory transversal vulnerability (04/12/05)
pokley
- runcms/e-xoops 1.1A and below file upload vulnerability (04/06/05)
psz_at_maths.usyd.edu.au
- Re: gzip TOCTOU file-permissions vulnerability (04/14/05)
Rafael San Miguel Carrasco
- JavaMail allows directory traversal in attachments (04/12/05)
Rager, Anton (Anton)
- RE: Capital One's website inadvertently assists phishing (04/27/05)
- RE: eBay Account Phishing with eBay Redirect - Ebay fixed this + related XSS hole (03/31/05)
Rainer Duffner
- Re: AW: PayPal "security" measures (04/04/05)
Randy
- Re: Microsoft Windows image rendering DoS vuln (04/21/05)
Ravish Ahuja
- RE: [NOBYTES.COM: #6] CubeCart 2.0.6 - Information Disclosure (04/06/05)
Reed Arvin
- Buffer overflow in KMiNT21 Software Golden FTP Server Pro v2.52 (10.04.2005) (04/27/05)
- Privilege escalation in BulletProof FTP Server v2.4.0.31 (04/27/05)
- Privilege escalation in BakBone NetVault 7.1 (04/27/05)
Richard Moore
- Re: crontab from vixie-cron allows read other users crontabs (04/06/05)
Richard Stanway
- RE: Miranda IM and Miranda Installer Let Local Users Execute Arbitrary Code (04/11/05)
Robert Escue
- Re: Solaris 10 Containers / Zones Security Flaw (04/02/05)
rock master
- SQL INJECTION in DLMan Pro. PHPBB Mod. (04/05/05)
- SQL INJECTION in LinksLinks Pro. PHPBB Mod. (04/05/05)
Rod Taylor
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted (04/21/05)
Romain Francoise
- Re: tcpdump[v3.8.x/v3.9.1]: ISIS, BGP, and LDP infinite loop DOS exploits. (04/27/05)
- Re: tcpdump(/ethereal)[]: (RSVP) rsvp_print() infinite loop DOS. (04/27/05)
Rom�n Ram�rez
- Logics Software BS2000 Host to Web Client ALL PLATFORMS (04/05/05)
Salim Gasmi
- Gld 1.5 released (security fix) (04/13/05)
Sara Togian
- Netflix Site may assist Phishing (04/28/05)
Scott Gifford
- Re: gzip TOCTOU file-permissions vulnerability (04/15/05)
Scott Grayban
- Re: Security contact at sourceforge? (04/28/05)
- insecure user account lam-runtime-7.0.6-2mdk rpm (04/28/05)
Scott Nelson
- Re: DoS of LAN via D-Link switches (03/31/05)
Scovetta, Michael V
- RE: Possible XSS in User-Agent (04/25/05)
Sebastian Krahmer
- SUSE Security Announcement: cvs (SUSE-SA:2005:024) (04/18/05)
sebastian_at_nohn.net
- Re: serendipity SQL Injection vulnerability (04/14/05)
SecuBox fRoGGz
- dBpowerAMP Auxiliary - Abnormal execution (04/26/05)
- BitDefender 8 - Race condition vulnerability (04/23/05)
Secure Computer Group
- [CAN-2005-1062] Administration protocol abuse allows local/remote password cracking (04/29/05)
- [CAN-2005-1063] Administration protocol abuse leads to Service and System Denial of Service (04/29/05)
security curmudgeon
- Re: Vulnerability kali's tagboard (04/28/05)
security_at_rsnapshot.org
- rsnapshot Security Advisory 001 (04/10/05)
SecurityReason
- Full path disclosure and XSS in PHPNuke (04/03/05)
sh0rtie
- Re: PayPal "security" measures (04/06/05)
shadown
- ADV: NetTerm's NetFtpd 4.2.2 Buffer Overflow + PoC Exploit (04/26/05)
Shalom Carmel
- Canonicalization and directory traversal in iSeries FTP security products (04/21/05)
- Enumeration of AS/400 users and their status via POP3 (04/15/05)
- Disclosure of AS/400 user accounts via the FTP server (04/04/05)
- Reverse shell using netcat on AS/400 (04/01/05)
ShineShadow
- Multiple vulnerabilities in Argosoft Mail Server 1.8.7.6 (04/22/05)
Sieg Fried
- ZRCSA-200501 - Multiple vulnerabilities in Claroline (04/28/05)
snsadv
- [SNS Advisory No.80] nProtect:Netizen Arbitrary File Download Vulnerability (04/25/05)
Son SonOfLilit
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities (04/04/05)
sonderling
- Mac OS X Cocktail 3.5.4 admin password disclosure (04/29/05)
sp3x
- [SECURITYREASON.COM] Full path disclosure and XSS in PHPNuke part 3 (04/05/05)
SPI Labs
- IBM WebSphere Widespread configuration JSP disclosure (04/13/05)
SSC Advisory Notice
- Secure Science Corporation Application Software Advisory 055 (04/20/05)
Status-x
- phpBB Upload Script "up.php" Arbitrary File Upload (04/08/05)
Stephen Frost
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted (04/23/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/22/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/20/05)
- Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/20/05)
Steve G
- Re: cpio TOCTOU file-permissions vulnerability (04/19/05)
Steve Grubb
- Re: bzip2 TOCTOU file-permissions vulnerability (04/14/05)
- Re: gzip TOCTOU file-permissions vulnerability (04/14/05)
- Re: bzip2 TOCTOU file-permissions vulnerability (04/03/05)
Steve Shockley
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities (04/03/05)
Steven M. Christey
- Re: SQL-injections in Invision Power Board v2.0.1 (04/27/05)
steven_at_lovebug.org
- Discovering and Stopping Phishing/Scam Attacks (04/26/05)
Stuart Pearson
- Microsoft Jet (msjet40.dll) Exploit (04/11/05)
Sumy
- How to write remote exploits ( V. 1.1) (04/02/05)
- (Paper) Programming: The Heart of Web Security (04/01/05)
Sune Kloppenborg Jeppesen
- [ GLSA 200504-28 ] Heimdal: Buffer overflow vulnerabilities (04/28/05)
- [ GLSA 200504-26 ] Convert-UUlib: Buffer overflow (04/26/05)
- [ GLSA 200504-25 ] Rootkit Hunter: Insecure temporary file creation (04/26/05)
- [ GLSA 200504-23 ] Kommander: Insecure remote script execution (04/22/05)
- [ GLSA 200504-22 ] KDE kimgio: PCX handling buffer overflow (04/22/05)
- UPDATE: [ GLSA 200410-10 ] gettext: Insecure temporary file handling (04/22/05)
- UPDATE: [ GLSA 200504-16 ] CVS: Multiple vulnerabilities (04/22/05)
- [Full-disclosure] [ GLSA 200504-17 ] XV: Multiple vulnerabilities (04/19/05)
- [ GLSA 200504-17 ] XV: Multiple vulnerabilities (04/19/05)
- [ GLSA 200504-16 ] CVS: Multiple vulnerabilities (04/18/05)
- [ GLSA 200504-14 ] monkeyd: Multiple vulnerabilities (04/15/05)
- [ GLSA 200504-13 ] OpenOffice.Org: DOC document Heap Overflow (04/15/05)
- [ GLSA 200504-11 ] JunkBuster: Multiple vulnerabilities (04/13/05)
- [ GLSA 200504-10 ] Gld: Remote execution of arbitrary code (04/13/05)
Team SHATTER
- [AppSecInc Team SHATTER Security Advisory] SQL Injection in ALTER_MANUALLOG_CHANGE_SOURCE procedure (04/18/05)
- [AppSecInc Team SHATTER Security Advisory] Multiple SQL Injection vulnerabilities in DBMS_METADATA package (04/18/05)
- [AppSecInc Team SHATTER Security Advisory] Denial of Service in Oracle interMedia (04/18/05)
- [AppSecInc Team SHATTER Security Advisory] SQL Injection in CREATE_SCN_CHANGE_SET procedure (04/18/05)
- [AppSecInc Team SHATTER Security Advisory] Multiple SQL Injection vulnerabilities in DBMS_CDC_SUBSCRIBE and DBMS_CDC_ISUBSCRIBE packages (04/18/05)
Terencentanio Enache
- myPHP Forum v3 (possible v1 & 2 also) Identification 'spoof' (04/26/05)
The Dark Tangent
- DEF CON - New CTF Organizers chosen! (04/29/05)
Theodor Milkov
- Re: gzip TOCTOU file-permissions vulnerability (04/14/05)
Thierry Carrez
- [ GLSA 200504-27 ] xine-lib: Two heap overflow vulnerabilities (04/26/05)
- [ GLSA 200504-21 ] RealPlayer, Helix Player: Buffer overflow vulnerability (04/22/05)
- [ GLSA 200504-20 ] openMosixview: Insecure temporary file creation (04/21/05)
- [ GLSA 200504-18 ] Mozilla Firefox, Mozilla Suite: Multiple vulnerabilities (04/19/05)
- [ GLSA 200504-15 ] PHP: Multiple vulnerabilities (04/18/05)
- [ GLSA 200504-12 ] rsnapshot: Local privilege escalation (04/13/05)
- UPDATE: [ GLSA 200503-35 ] Smarty: Template vulnerability (04/10/05)
- [ GLSA 200504-07 ] GnomeVFS, libcdaudio: CDDB response overflow (04/08/05)
- [ GLSA 200504-04 ] mit-krb5: Multiple buffer overflows in telnet client (04/06/05)
- [ GLSA 200504-03 ] Dnsmasq: Poisoning and Denial of Service vulnerabilities (04/04/05)
- [ GLSA 200504-02 ] Sylpheed, Sylpheed-claws: Buffer overflow on message display (04/02/05)
- [ GLSA 200504-01 ] telnet-bsd: Multiple buffer overflows (04/01/05)
Thor (Hammer of God)
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities (04/03/05)
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities (04/01/05)
Tino Wildenhain
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
tom cruise
- phpBB datenbank mod has XSS/SQL Injection in the id variable (04/16/05)
- Pafiledb ACTION Parameter XSS (04/08/05)
Tom Lane
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/21/05)
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords (04/20/05)
Trustix Security Advisor
- TSLSA-2005-0015 - postgresql (04/25/05)
- TSLSA-2005-0013 - cvs (04/21/05)
- TSLSA-2005-0011 - kernel (04/05/05)
Vade 79
- tcpdump[v3.8.x/v3.9.1]: ISIS, BGP, and LDP infinite loop DOS exploits. (04/26/05)
- tcpdump(/ethereal)[]: (RSVP) rsvp_print() infinite loop DOS. (04/26/05)
- sumus[v0.2.2]: (httpd) remote buffer overflow exploit. (04/14/05)
ViPeR
- RE: IE - cross site click detection? (04/27/05)
- IE - cross site click detection? (04/26/05)
vorlon_at_gentoo.org
- [ GLSA 200504-09 ] Axel: Vulnerability in HTTP redirection handling (04/12/05)
vuln_at_hexview.com
- [HV-HIGH] Microsoft Jet DB engine vulnerabilities (03/31/05)
WBG Links
- Window Washer 6.0: False Sense of Security (04/11/05)
Williams, James K
- Computer Associates BrightStor ARCserve Backup and BrightStor Enterprise Backup UniversalAgent buffer overflow vulnerability (04/14/05)
Yuri Gushin
- [ECL] Windows IP Options DoS POC [ECL] (04/17/05)
Zinho
- [HSC Security Group] Ocean12 Mailing List Manager Pro SQL injection (04/29/05)
- [HSC Security Group] Comersus v6 Script injection (04/26/05)
- [Hackers Center Security Group] Sqwebmail Http Splitting Vulnerability (04/25/05)
- [HSC Security Group] Ocean12 Calendar manager 1.01 SQL injection (04/20/05)
zwell zwell
- ms05016 POC (04/13/05)

Last message date: 04/29/05
Archived on: 04/29/05 CEST

527 messages sorted by: [ date ] [ thread ] [ subject ] [ attachment ]

SecurityFocus BugtraqBy Author

SecurityFocus Bugtraq
By Author