PDA

Bekijk Volledige Versie : Bugtraq mailing lijst


Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 [28] 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98
  1. Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  2. Extreme PHPBB2 Remote File Inclusion
  3. RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  4. Re: [Full-disclosure] A Botted Fortune 500 a Day
  5. FullyModdedphpBB2 Remote File Inclusion
  6. Re: Internet Explorer Crash
  7. Oracle Database Buffer overflow vulnerabilities in package DBMS_SNAP_INTERNAL
  8. MediaBeez Sql query Execution .. Wear isn't ?? :)
  9. rPSA-2007-0074-1 dovecot
  10. rPSA-2007-0073-1 php php-mysql php-pgsql
  11. [ GLSA 200704-13 ] File: Denial of Service
  12. [ GLSA 200704-15 ] MadWifi: Multiple vulnerabilities
  13. rPSA-2007-0072-1 lighttpd
  14. iDefense Security Advisory 04.17.07: McAfee E-Business Admin Server
  15. Analysis of the Oracle April 2007 Critical Patch Update
  16. Advisory: Shutdown unprotected Oracle TNS Listener via Oracle
  17. Advisory: XSS Vulnerability in Oracle Secure Enterprise Search
  18. Reminder: HITBSecConf2007 - Malaysia: Call for Papers closing in
  19. Advisory: SQL Injection in package SYS.DBMS_UPGRADE_INTERNAL
  20. iDefense Security Advisory 04.17.07: McAfee VirusScan On-Access Scanner
  21. Advisory: SQL Injection in package SYS.DBMS_AQADM_SYS
  22. Re: Internet Explorer Crash
  23. Advisory: Bypass Oracle Logon Trigger
  24. NukeSentinel Bypass SQL Injection & Nuke Evolution <= 2.0.3 SQL
  25. [ GLSA 200704-14 ] FreeRADIUS: Denial of Service
  26. Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  27. Cross Domain XMLHttpRequest
  28. Mambo/Joomla Component New Article Component RFI
  29. Re: [Full-disclosure] A Botted Fortune 500 a Day
  30. Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  31. Re: [Full-disclosure] A Botted Fortune 500 a Day
  32. Re: [Full-disclosure] A Botted Fortune 500 a Day
  33. Re: [Full-disclosure] A Botted Fortune 500 a Day
  34. Re: [Full-disclosure] A Botted Fortune 500 a Day
  35. n.runs-SA-2007.007 - Sun Solaris 10 - Format string vulnerability
  36. WASC-Articles: 'The Importance of Application Classification in Secure Application Development'
  37. Re: Internet Explorer Crash
  38. ShoutPro 1.5.2 - arbitrary code execution
  39. Re: Internet Explorer Crash
  40. Re: [Full-disclosure] Cross Domain XMLHttpRequest
  41. SYMSA-2007-003 Macrovision InstallAnywhere Password and Serial
  42. BlueArc Firmware 4.2.944b FTP bounce
  43. Gizzar <= (basePath) Remote File Include Vulnerability
  44. Re[2]: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  45. Multiple Ask IE Toolbar denial of service vulnerabilities
  46. [security bulletin] HPSBTU02207 SSRT061213, SSRT061239, SSRT071304 rev.1 - HP Tru64 UNIX SSL and BIND Remote Arbitrary Code Execution or Denial of Service (DoS)
  47. Internet Explorer Crash
  48. Re: bloofoxCMS 0.2.2 Remote File Include Vulnerabilitiy
  49. RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  50. webMethods Security Advisory: Glue console directory traversal vu
  51. Re: [WEB SECURITY] Persistent CSRF and The Hotlink Hell
  52. Re: Netsprint Toolbar 1.1 arbitrary remote code vulnerability
  53. RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  54. Re: [Full-disclosure] [WEB SECURITY] Persistent CSRF and The Hotlink
  55. my little forum 1.7 Remote File Include Vulnerabilitiy
  56. my little weblog Cross Site Scripting
  57. Wabbit PHP Gallery v0.9 Cross Site Scripting
  58. Remot File Include In Script phphd_downloads
  59. Remot File Include download_engine_V1.4.3
  60. PHP Nuke <= 8.0.0.3.3b SQL Injections and Bypass SQL Injection
  61. Netsprint Toolbar 1.1 arbitrary remote code vulnerability
  62. iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX
  63. [ MDKSA-2007:085 ] - Updated freeradius packages fix DoS vulnerability
  64. [ GLSA 200704-12 ] OpenOffice.org: Multiple vulnerabilities
  65. [ MDKSA-2007:084 ] - Updated ipsec-tools packages fix DoS vulnerability
  66. [ MDKSA-2007:086 ] - Updated cups packages fix DoS vulnerability
  67. Akamai Technologies Security Advisory 2007-0001
  68. rPSA-2007-0071-1 kernel
  69. [ GLSA 200704-11 ] Vixie Cron: Denial of Service
  70. Ivan Gallery Script V.0.1 (index.php) Remote File Include Exploit
  71. iDefense Security Advisory 04.16.07: ClamAV CAB File Unstore Buffer
  72. Persistent CSRF and The Hotlink Hell
  73. [ GLSA 200704-10 ] Inkscape: Two format string vulnerabilities
  74. Re: Critical phpwiki c99shell exploit
  75. Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  76. Re: phpMyChat-0.14.5
  77. Microsoft DNS Server Remote Code execution: Analysis and exploit
  78. MyBlog <= 0.9.8 Remote Command Execution Exploit
  79. ActionPoll Script (actionpoll.php) Remote File Include //
  80. ZoneAlarm Multiple insufficient argument validation of hooked SSDT
  81. [MajorSecurity Advisory #45]oe2edit CMS - Cross Site Scripting
  82. Joomla/Mambo Jambook v1.0 beta7 Rfi Vuln.
  83. LS simple guestbook - arbitrary code execution
  84. Re: [exploits] RPC vuln in DNS Server (fwd)
  85. Sitebar 3.3.5 (index.php writerFile)Remote File Include Vulnerabilities
  86. [ GLSA 200704-09 ] xine-lib: Heap-based buffer overflow
  87. Re: Maian Search v1.1
  88. Re: sitex multiple vulnerabilities
  89. Re: Maian Gallery v1.0
  90. Pixaria Gallery 1.0 (class.Smarty.php) Remote File Include
  91. Re: VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
  92. bloofoxCMS 0.2.2 Remote File Include Vulnerabilitiy
  93. phpMyChat-0.14.5
  94. Maian Weblog v3.1
  95. Flip-search-add-on 2.0
  96. MySpeach v1.9
  97. Back-End CMS Database Tables v0.4.7 Remote File Include
  98. B2evolution 1.6 RFi
  99. Maian Gallery v1.0
  100. Maian Search v1.1
  101. MobilePublisherphp v1.1.2 Remote File Include Vulnerabilities
  102. FloweRS v2.0 Cross Site Scripting
  103. Back-End CMS Database Tables v0.4.7 Cross Site Scripting
  104. Re: Steganos Encrypted Safe NOT so safe
  105. VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
  106. Re: Vbulletin 3.6.5 Sql Injection ! [misc.php]
  107. bloofoxCMS 0.2.2 Cross Site Scripting
  108. Vbulletin 3.6.5 Sql Injection ! [misc.php]
  109. TSRT-07-04: LANDesk Management Suite Alert Service Stack Overflow
  110. [waraxe-2007-SA#048] - Multiple vulnerabilities in Virtual War
  111. [MajorSecurity Advisory #44]MailBee WebMail Pro - Cross Site
  112. [OPENADS-SA-2007-004] Max Media Manager v0.1.29-rc and v0.3.31-alpha-pr2
  113. [OPENADS-SA-2007-003] Openads 2.0.11 vulnerability fixed
  114. [Argeniss] Hacking Databases for owning your data (paper)
  115. [USN-452-1] KDE library vulnerability
  116. iDefense Security Advisory 04.12.07: Hewlett Packard HP-UX Remote
  117. FAC GuestBook v2.0 remote database disclosure vulnerability
  118. Aircrack-ng (airodump-ng) remote buffer overflow vulnerability
  119. RE: Critical phpwiki c99shell exploit
  120. Chatness <= 2.5.3 - Arbitrary Code Execution
  121. Re: Cross site scripting in mephisto 0.7.3
  122. phpwebnews v.1 Multiple Cross Site Scripting Vulnerabilites
  123. TuMusika Evolution 1.6 Cross Site Scripting Vulnerabilitiy
  124. [security bulletin] HPSBUX02203 SSRT071339 rev.1 - HP-UX Running Portable File System (PFS), Remote Increase in Privilege
  125. Cross site scripting in mephisto 0.7.3
  126. Re: Critical phpwiki c99shell exploit
  127. [security bulletin] HPSBGN02199 SSRT071312 rev.1 - Mercury Quality Center ActiveX, Remote Unauthorized Arbitrary Code Execution
  128. Cisco Security Advisory: Multiple Vulnerabilities in the Cisco Wireless Control System
  129. [ GLSA 200704-08 ] DokuWiki: Cross-site scripting vulnerability
  130. Cisco Security Advisory: Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points
  131. [security bulletin] HPSBUX01137 SSRT5954 rev.9 - HP-UX Running TCP/IP (IPv4), Remote Denial of Service (DoS)
  132. [security bulletin] HPSBST02206 SSRT071354 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-014
  133. Critical phpwiki c99shell exploit
  134. CVE-2007-1872: Cross site scripting in toendaCMS 1.5.3
  135. INFIGO-2007-04-05: Enterprise Security Analyzer server remote
  136. CVE-2007-1871: Cross site scripting in chcounter 3.1.3
  137. HPSBUX02205 SSRT061120 rev.1 - HP-UX Running ARPA Transport, Local Denial of Service (DoS)
  138. E107 - (v0.7.8) Access Escalation Vulnerbility - PoC
  139. libpng compilation issue
  140. [ MDKSA-2007:082 ] - Updated madwifi-source, wpa_supplicant packages fix vulnerabilities
  141. iDefense Security Advisory 04.11.07: Apache HTTPD suEXEC Multiple
  142. [ MDKSA-2007:075-1 ] - Updated qt4 packages to address utf8 decoder bug
  143. [ MDKSA-2007:083 ] - Updated apache-mod_perl packages fix DoS vulnerability
  144. [ MDKSA-2007:079-1 ] - Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities
  145. Steganos Encrypted Safe NOT so safe
  146. PunBB <= 1.2.14 Multiple Vulnerabilities (Advisory)
  147. PunBB <= 1.2.14 Remote Code Execution (Exploit)
  148. Re: On-going Internet Emergency and Domain Names
  149. Re: Latinchat Denial Of Service
  150. Cosign SSO Authentication Bypass
  151. CodeBreak (codebreak.php process_method) - Remote File Inclusion
  152. [MajorSecurity Advisory #43]Calacode ATMail 5.0 - Cross Site
  153. New bug :)
  154. pL-PHP beta 0.9 - Multiple Vulnerabilities
  155. nEw Bug :D
  156. [ MDKSA-2007:080-1 ] - Updated tightvnc packages fix integer overflow vulnerabilities
  157. webMethods Glue Management Console Directory Traversal
  158. [USN-451-1] Linux kernel vulnerabilities
  159. Re: vbulletin admincp sql injection
  160. [ MDKSA-2007:081-1 ] - Updated freetype2 packages fix vulnerability
  161. [ MDKSA-2007:077-1 ] - Updated krb5 packages fix vulnerabilities
  162. iDefense Security Advisory 04.10.07: Microsoft Windows Universal
  163. Secunia Research: Microsoft Agent URL Parsing Memory Corruption
  164. PhpOpenChat <= 3.0.1 (poc.php) Multiple Remote File Include
  165. EEYE: Windows Vista CSRSS Dangling Process Pointer Privilege Escalation
  166. EEYE: Windows VDM Zero Page Race Condition Privilege Escalation
  167. phpGalleryScript 1.0 - File Inclusion Vulnerabilities
  168. DEF CON One Five CfP in effect!
  169. [USN-450-1] ipsec-tools vulnerability
  170. iDefense Security Advisory 04.09.07: AOL AIM and ICQ File Transfer
  171. rPSA-2007-0070-1 openoffice.org
  172. Re: Re: Mybb Hot Editor Plugin Local File Inclusion
  173. xodagallery Remote Code Execution Vulnerability
  174. Re: Mybb Hot Editor Plugin Local File Inclusion
  175. Hot Editor v4.0 Local File Inclusion
  176. QuizShock 1.6.1 - Cross-Site Scripting Vulnerability
  177. Mybb Hot Editor Plugin Local File Inclusion
  178. Request It : Song Request System 1.0b - remote file inclusion
  179. DeskPRO v2.0.1 - Cross-Site Scripting Vulnerability
  180. Gsylvain35 Portail Web Remote File Include Vulnerabilities
  181. Remot File Include In Script Lore v1
  182. Take Control In Script Jeebles Directory
  183. phpMyAdmin 2.6.1 Local Cross Site Scripting
  184. Scorp Book <== v1.0 (smilies.php) Remote File Include Exploit
  185. UBB.threads (<= 6.1.1) SQL Injection Vulnerability
  186. CmailServer WebMail <= V.5.3.4 (signup) Remote XSS Exploit
  187. witshare 0.9 Remote File Include Vulnerabilitiy
  188. Re: Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation
  189. [MajorSecurity Advisory #42]webblizzard CMS - Cross Site
  190. [ GLSA 200704-07 ] libwpd: Multiple vulnerabilities
  191. PHP <= 5.2.1 wbmp file handling integer overflow
  192. [ GLSA 200704-06 ] Evince: Stack overflow in included gv code
  193. LayerOne 2007 - Speaker Line up Announced
  194. AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption
  195. [SECURITY] [DSA 1278-1] New man-db packages fix arbitrary code execution
  196. AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption
  197. AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off
  198. livor 2.5 Cross-Site Scripting Vulnerability
  199. [MajorSecurity Advisory #40]onelook oboShop - Session fixation Issue
  200. [MajorSecurity Advisory #41]onelook courts online - Session
  201. ZDI-07-013: Kaspersky AntiVirus Engine ARJ Archive Parsing Heap Overflow
  202. [MajorSecurity Advisory #39]onelook onebyone CMS - Session
  203. phpContact Multiple Remote File Inclusion Vulnerabilities
  204. Re: Nine Vista CVEs, including Microsoft inaccurate Teredo use
  205. ZDI-07-014: Kaspersky Anti-Virus ActiveX Control Unsafe Method Exposure
  206. ACLS ineffective in SQL-Ledger and LedgerSMB
  207. Re: Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug
  208. FLEA-2007-0010-1: evolution
  209. [security bulletin] HPSBUX02204 SSRT071341 rev.1 - HP-UX Running CIFS Server (Samba), Remote Denial of Service (DoS)
  210. FLEA-2007-0009-1: xorg-x11 freetype
  211. Wserve HTTP Server 4.6 Version (Long Directory Name) Buffer
  212. FLEA-2007-0008-1: krb5
  213. iDefense Security Advisory 04.04.07: ESRI ArcSDE Buffer Overflow
  214. Microsoft .NET request filtering bypass vulnerability (BID 20753)
  215. iDefense Security Advisory 04.04.07: Kaspersky Internet Security
  216. [ MDKSA-2007:081 ] - Updated freetype2 packages fix vulnerability
  217. iDefense Security Advisory 04.04.07: Kaspersky AntiVirus SysInfo
  218. [ MDKSA-2007:080 ] - Updated tightvnc packages fix integer overflow vulnerabilities
  219. LedgerSMB 1.2.0 finally released, fixes CVE-2006-5589
  220. MyBlog: PHP and MySQL Blog/CMS software Remote File Include
  221. [ MDKSA-2007:078 ] - Updated kernel packages fix multiple vulnerabilities and bugs
  222. VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates
  223. Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug
  224. Gazi Okul Sitesi 2007(tr)(fotokategori.asp) Remote SQL Injection
  225. [ MDKSA-2007:077 ] - Updated krb5 packages fix vulnerabilities
  226. [SECURITY] [DSA 1277-1] New XMMS packages fix arbitrary code execution
  227. Re: More information on ZERT patch for ANI 0day
  228. Re: More information on ZERT patch for ANI 0day
  229. Re: More information on ZERT patch for ANI 0day
  230. High Risk Vulnerability in OpenOffice
  231. Several Windows image viewers vulnerabilities
  232. Re: Denial of Service Vulnerabilities in TrueCrypt 4.3 Linux (re.
  233. rPSA-2007-0062-1 firefox
  234. Mozilla Firefox Insecure Element Stealth Injection Vulnerability
  235. [ MDKSA-2007:076 ] - Updated kdelibs packages to address UTF8 issue in KJS
  236. rPSA-2007-0065-1 freetype xorg-x11 xorg-x11-fonts xorg-x11-tools
  237. MyBlog: PHP and MySQL Blog/CMS software Cross-Site Scripting
  238. phpechocms2 Remote File Include Vulnerabilities
  239. iDefense Security Advisory 04.03.07: Multiple Vendor X Server BDF
  240. Monkey CMS v0.0.3 Remote File Include Vulnerabilitiy
  241. phpechocms v.2 Cross-Site Scripting Vulnerabilitiy
  242. rPSA-2007-0066-1 kdelibs qt-x11-free
  243. K-CMS v1.0 Remote File Include Vulnerabilities
  244. iXon_CMS 0.30 Remote File Include Vulnerabilities
  245. rPSA-2007-0067-1 nas
  246. [USN-448-1] X.org vulnerabilities
  247. [MajorSecurity Advisory #38]eXV2 CMS - Session fixation and
  248. Remot File Include In phpexplorator_2_0
  249. [ MDKSA-2007:074 ] - Updated qt3 packages to address utf8 decoder bug
  250. rPSA-2007-0064-1 ImageMagick