SecurityFocus Vuln-Dev
By Subject

Starting: 11/04/00
Ending: 11/30/01

• .NET Passport: WALLET SERVICE
  • http-equiv@excite.com (11/14/01)
  • Marc Slemko (11/13/01)
  • http-equiv@excite.com (11/13/01)
  • http-equiv@excite.com (11/07/01)
  • Baron Samedi (11/08/01)
  • http-equiv@excite.com (11/07/01)
• [ALERT] Remote File Execution By Web or Mail: Internet Explor er
  • Kayne Ian (Softlab) (11/23/01)
• [ALERT] Remote File Execution By Web or Mail: Internet Explorer
  • terry white (11/27/01)
  • Thomas Schweikle (11/27/01)
  • Bill Weiss (11/26/01)
  • Mariusz Mazur (11/23/01)
  • Glenn Valenta (11/24/01)
  • Mariusz Mazur (11/23/01)
  • Markus Kern (11/23/01)
  • Bill Weiss (11/23/01)
  • Ben Smee (11/23/01)
  • Robert Collins (11/23/01)
  • Mariusz Mazur (11/22/01)
  • Steve (11/21/01)
  • hush.little.baby@hushmail.com (11/21/01)
• [Cooker] Nothing about Linux, but it's too nice!!! [WAS: weird Windows 2000/XP bug]
  • David Durham (11/02/01)
• [NetGuard Security] NSI Rwhoisd another Remote Format String Vulnerability
  • alert7 (11/25/01)
  • Ron DuFresne (11/23/01)
  • Ron DuFresne (11/23/01)
  • alert7 (11/22/01)
• aix ftpd
  • alex medvedev (11/30/01)
  • David Barroso (11/30/01)
  • Peter Kovacs (11/30/01)
  • alex medvedev (11/29/01)
  • alex medvedev (11/30/01)
• another fatal bug in NT/2000 "Command Prompt" I/O
  • Peter Gründl (11/05/01)
• another fatal bug in NT/2000 "Command Prompt" I/O [more info]
  • F.Vigo - L.Girardi (11/03/01)
• Apache HTTPD's magical behavior
  • Russell Handorf (11/30/01)
  • Golden_Eternity (11/30/01)
  • Doru Petrescu (11/30/01)
  • Ryan Yagatich (11/30/01)
  • Russell Handorf (11/30/01)
• ARP hole in Windows NT/2000
  • ALoR (11/25/01)
  • Chris (11/25/01)
  • Grzegorz Flak (11/24/01)
  • Nelson Brito (11/24/01)
  • Keith Simonsen (11/24/01)
  • Gigi Sullivan (11/24/01)
  • Chris Green (11/23/01)
  • Tomas Nybrand IT (11/23/01)
  • Grzegorz Flak (11/22/01)
• Audiogalaxy again (Cross Site Scripting Vuln)
  • John Scimone (11/28/01)
• Black Hat Windows Sec. Briefings CFP - Deadline 12/15
  • B.K. DeLong (11/28/01)
• Buffer overflow in Python code
  • Florian Weimer (11/26/01)
  • Ryan Permeh (11/26/01)
  • Chris Ess (11/25/01)
  • Giorgio (11/25/01)
• Bug in bash ?
  • Caiaphas Pechorin (11/12/01)
  • walter valenti (11/12/01)
  • Syzop (11/12/01)
  • Vasisht Tadigotla (11/12/01)
  • Patryk Chmielewski (11/11/01)
  • Ryan Sweat (11/12/01)
  • Steve Micallef (11/12/01)
  • VeNoMouS (11/12/01)
  • kEndE iS tHe bESt (11/12/01)
• Bug in fetchmail.
  • Robert Jaroszuk (11/29/01)
  • Damieon Stark (11/26/01)
  • Robert Jaroszuk (11/25/01)
• Call to arms - INFORMATION ANARCHY
  • Blue Boar (11/02/01)
  • hellNbak (11/02/01)
• Cgisecurity.com Advisory #6: thttpd and mini_http Permission bypass vuln
  • zeno (11/13/01)
• Cgisecurity.com Advisory #7: Mailman Email Archive Cross Site Scripting
  • zeno (11/28/01)
• Cgisecurity.com Paper #3: Fingerprinting Port 80 Attacks: A look into web server, and web application attack signatures
  • zeno (11/05/01)
  • zeno (11/05/01)
• Does anybody knows how to find out
  • H C (11/27/01)
  • Ryan Permeh (11/27/01)
  • Minchu Mo (11/26/01)
• Editor Overflows / Format Issues (pico)
  • Matthew S. Hallacy (11/16/01)
  • elguapo (11/12/01)
• Ellison: Oracle Database is 'Unbreakable'
  • Lincoln Yeoh (11/21/01)
  • dreamwvr@dreamwvr.com (11/18/01)
  • Pete Finnigan (11/17/01)
  • aleph1@securityfocus.com (11/16/01)
• Errors in IE - are they exploitable?
  • Franklin DeMatto (11/02/01)
• ezmlm warning
  • vuln-dev-help@securityfocus.com (11/24/01)
• Forwarded mail....
  • Kaneda Akira (11/22/01)
  • Paul Rogers (11/22/01)
• grc.com
  • Blue Boar (11/29/01)
  • Anonymous (11/29/01)
• hardware protection for format string attacks
  • Juliano Rizzo (11/29/01)
  • Mariusz Woloszyn (11/28/01)
• help: raw_ip socket and system implication
  • Dmitriy Kropivnitskiy (11/30/01)
  • Dom De Vitto (11/21/01)
  • Izik (11/21/01)
  • Dug Song (11/20/01)
  • Brian O'Berry (11/20/01)
  • Mordechai Ovits (11/20/01)
  • Marc Soda (11/20/01)
  • qgiorgi@respublica.fr (11/20/01)
• IE and favicon.ico
  • Steve Micallef (11/12/01)
• ie6 input overflow
  • Kayne Ian (Softlab) (11/19/01)
  • Josh Burns (11/16/01)
  • the last priest (11/16/01)
  • Joe Lyman (11/16/01)
  • sksksk sksks (11/16/01)
  • Peter Kovacs (11/16/01)
  • Emre Yildirim (11/16/01)
  • Philip Wagenaar (11/16/01)
• Ie6 password input problem
  • Philip Wagenaar (11/19/01)
• IMPORTANT FOLLOW UP ie6 input overflow
  • Philip Wagenaar (11/16/01)
• Infected jpeg files?
  • Pete Simpson (11/12/01)
  • Rob Salmond (11/11/01)
  • Brad (11/11/01)
  • Oliver Bleutgen (11/11/01)
  • Chan, Stephen (TIS, Singapore) (11/09/01)
  • Mathias Dybvik (11/09/01)
  • Blue Boar (11/09/01)
  • J Edgar Hoover (11/09/01)
  • Oliver Petruzel (11/09/01)
  • jove@gaza.halo.nu (11/06/01)
  • Chris D. Sloan (11/09/01)
  • OBrien, Brennan (11/09/01)
  • rginski@co.pinellas.fl.us (11/07/01)
• Infected jpeg files? (viruses)
  • Jonathas Diogenes Castello Branco (11/10/01)
• Information Leak Bug Discovered in Netscape Mail!
  • Markus Kern (11/22/01)
  • 3APA3A (11/22/01)
  • vuln-dev (11/22/01)
• Insecure Password Authentication in Yahoo! Messenger
  • Emre Yildirim (11/23/01)
  • vuln-dev (11/22/01)
• issues with an Oracle8i parameter fixed_date
  • Pete Finnigan (11/19/01)
• kernel panic [linux 2.2.19-7] on UDP scan CP4.1-SP5
  • Scott Walker Register (11/27/01)
  • Ron DuFresne (11/27/01)
  • Scott Walker Register (11/27/01)
  • Yanek Korff (11/19/01)
  • Yanek Korff (11/14/01)
  • Blue Boar (11/14/01)
  • Scott Walker Register (11/14/01)
  • Yanek Korff (11/14/01)
  • Blue Boar (11/14/01)
  • Olaf Kirch (11/14/01)
  • Yanek Korff (11/14/01)
  • ed.rolison@power.alstom.com (11/14/01)
  • Yanek Korff (11/14/01)
• Killing Thread (New bugs discovered!)
  • Claes Nyberg (11/20/01)
  • Blue Boar (11/19/01)
• luser beeing able to kill random root owned procs (linux 2.2.20) ?
  • Samu (11/10/01)
• Malicious use of grc.com
  • H C (11/28/01)
  • Nicko Demeter (11/28/01)
  • H C (11/28/01)
  • Everhart, Glenn (FUSA) (11/28/01)
  • Aussie (11/28/01)
  • Chris (11/28/01)
  • Thor@HammerofGod.com (11/27/01)
  • H C (11/27/01)
  • H C (11/27/01)
  • Nicolas Gregoire (11/27/01)
  • Festive (11/27/01)
  • fredl@dutchie.org (11/27/01)
  • hellNbak (11/27/01)
  • netscience@hushmail.com (11/27/01)
  • Brad (11/27/01)
  • Blue Boar (11/27/01)
  • Thorsten Droigk (11/26/01)
  • Magni@HammerofGod.com (11/26/01)
• Microsoft IE cookies readable via about: URLS
  • Oliver Petruzel (11/12/01)
• NetCraft Site/Banner HTML Insertion Vulnerability
  • Felipe Moniz (11/24/01)
• New bugs discovered !
  • Baba Bogdan (11/20/01)
• New bugs discovered!
  • Alex Butcher (vuln-dev) (11/20/01)
  • sy4n (11/20/01)
  • Ron DuFresne (11/19/01)
  • Syzop (11/19/01)
  • DePriest, Jason R. (11/19/01)
  • Valdis.Kletnieks@vt.edu (11/19/01)
  • Bernhard Rosenkraenzer (11/19/01)
  • The Itch (11/19/01)
  • Chris Ess (11/19/01)
  • Mariusz Mazur (11/19/01)
  • Naseer Bhatti (11/19/01)
  • Joep Vesseur (11/19/01)
  • Ciprian Csordas (11/19/01)
  • Croquette Friskies (11/19/01)
  • Syzop (11/19/01)
  • dave.goldsmith@intelsat.com (11/19/01)
  • Roger Burton West (11/19/01)
  • Respect (11/19/01)
  • X (11/19/01)
  • jnf (11/19/01)
  • GomoR (11/19/01)
  • Fabio Roccatagliata (11/19/01)
  • Ferdinand herve (11/19/01)
  • Alex Butcher (vuln-dev) (11/19/01)
  • Baba Bogdan (11/20/01)
  • Robert Jaroszuk (11/19/01)
  • Brent Wrisley (11/19/01)
  • Cabezon Aurélien (11/19/01)
  • Meritt James (11/19/01)
  • Crist J. Clark (11/19/01)
  • InterceptiX Security (11/19/01)
  • Bernhard Rosenkraenzer (11/19/01)
  • Caiaphas Pechorin (11/19/01)
  • Nate Amsden (11/19/01)
  • c0n (11/18/01)
  • Chris D. Sloan (11/19/01)
  • Larry W. Cashdollar (11/19/01)
  • Yaroslav Klyukin (11/18/01)
  • Alex Butcher (vuln-dev) (11/19/01)
  • vuln-dev (11/18/01)
• New bugs, old bugs
  • Bernhard Rosenkraenzer (11/20/01)
  • Pavel Kankovsky (11/20/01)
• New Remote Hole found in Berkeley Fingerd!
  • 3APA3A (11/21/01)
  • Olaf Kirch (11/21/01)
  • Graeme Fowler (11/21/01)
  • vuln-dev (11/21/01)
• New Roxen Webserver Library Issues
  • vuln-dev (11/26/01)
• Off-by-one overflow discovered in thttpd!!1
  • vuln-dev (11/20/01)
• Other Web Servers vulnerable to %3f.jsp directory listing
  • Slow2Show (11/30/01)
• PERL based MS-SQL username/password checker
  • RT (11/09/01)
• PGP sign highlight on mutt
  • Jason Kohles (11/01/01)
  • Damieon Stark (11/01/01)
• PGPMail.pl possible remote command execution
  • Joseph S. Testa II (11/30/01)
  • John Scimone (11/30/01)
• PhpNuke Admin password can be stolen !
  • Cabezon Aurélien (11/22/01)
• Pine, Pico, Pilot Program Overflow bug.
  • U dong-houn (11/29/01)
  • Larry W. Cashdollar (11/28/01)
  • KF (11/28/01)
  • uexploit xeightwo (11/28/01)
• Possible security exploit on Yahoo! Messenger : permits disclosure of any logged party's authentication and profile information
  • CheetaChat Security Group (11/18/01)
• ppc asm
  • Andersen, Thomas Bjoern (11/30/01)
  • KF (11/30/01)
• R: Synaptics TouchPad, strange packets.
  • Valerio B. (11/28/01)
  • Valerio B. (11/28/01)
  • Valerio B. (11/28/01)
• remote overflow detail
  • ghandi (11/07/01)
• RES: New bugs discovered!
  • Renato Araújo Ferreira (11/19/01)
• Revised Advisory on Hewlett Packard Issue
  • vuln-dev (11/24/01)
• Segfault in seejpeg 1.10
  • TripleDES (11/10/01)
  • Giuseppe Dani (11/11/01)
  • Patryk Chmielewski (11/10/01)
• Severe Vuln. in "secure" webserver.
  • Larry W. Cashdollar (11/27/01)
  • Renaud Deraison (11/27/01)
  • vuln-dev (11/27/01)
• Shutting down windows NT remotely (without winnt toolkit)?
  • Lincoln Yeoh (11/06/01)
  • Robert Freeman (11/06/00)
  • Robert Freeman (11/05/00)
  • Lincoln Yeoh (11/05/01)
• Solaris 7 /usr/dt/bin/dtmail and /usr/dt/bin/dtmailpr "-f" option buffer overflow
  • ARAI Yuu (11/09/01)
• static dll's for windows buffer overflows
  • Oscar Batyrbaev (11/10/01)
• strange thing happend to me
  • Sould3mon (11/12/01)
  • Oliver Petruzel (11/12/01)
  • shawn_harris@tjx.com (11/12/01)
• Subversive Dynamic Linking on UNIX Platforms
  • Shaun Clowes (11/09/01)
  • grugq (11/05/01)
• Synaptics TouchPad, strange packets.
  • Jason Kohles (11/28/01)
  • Zen (11/28/01)
  • Anthony Kim (11/28/01)
  • Marcus Blankenship (11/27/01)
  • Valerio B. (11/27/01)
• the joke continue
  • Izik (11/12/01)
• twlc advisory: possible overflow in ms ftp client
  • whitehat@altern.org (11/06/01)
  • supergate@twlc.net (11/02/01)
  • supergate@twlc.net (11/01/01)
  • Syzop (11/01/01)
  • supergate@twlc.net (11/01/01)
• twlc advisory: possible overflow in ms ftp client)
  • Robert Freeman (11/04/00)
  • Lincoln Yeoh (11/03/01)
  • supergate@twlc.net (11/02/01)
  • foob@return0.net (11/02/01)
• UUCP
  • Enchanter tim (11/30/01)
  • Iván Arce (11/30/01)
  • Bob Howard (11/30/01)
  • Ziggy (11/30/01)
  • Izik (11/29/01)
• Vi buffer overflow
  • Rob Paisley (11/14/01)
  • Hubert Pasternak (11/13/01)
  • Piyush Agarwal (11/12/01)
  • Kaneda Akira (11/09/01)
  • Jose Nazario (11/09/01)
  • KF (11/06/01)
• vim bufferoverflow
  • Izik (11/11/01)
  • elguapo (11/12/01)
• Weakness in default.asp [Hackemate.com Research]
  • KeRoZeNe [Hackemate] (11/12/01)
  • Thor@HammerofGod.com (11/13/01)
• Weird shellcode issues.
  • KF (11/26/01)
  • Marc Soda (11/26/01)
• weird Windows 2000/XP bug
  • Lincoln Yeoh (11/01/01)
  • surya (11/01/01)
  • GomoR (11/01/01)
• Where else?
  • Hung Vu (11/20/01)
  • Mariusz Woloszyn (11/19/01)
  • Pavel Kankovsky (11/18/01)
  • dullien@gmx.de (11/17/01)
  • Justin Lundy (11/17/01)
  • Michel Arboi (11/17/01)
  • Hung Vu (11/17/01)
• xmalloc buffer overflow?
  • Robert Freeman (11/10/01)
• xor encoding / decoding of shellcode
  • blitzkrieg (11/28/01)
  • Ryan Permeh (11/28/01)
  • KF (11/28/01)
• Zone Alarm Pro and Private IP Addresses
  • Philip Wagenaar (11/12/01)

Last message date: 11/30/01
Archived on: 11/30/01 CET

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint