PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 [31] 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98

  1. ASP.NET __VIEWSTATE crypto validation prone to replay attacks
  2. [SECURITY] [DSA 720-1] New smartlist packages fix unauthorised un/subscription
  3. [HSC Security Group] ASP Inline Corporate Calendar SQL injection
  4. Advisories for 4 vulnerabilities addressed by Apple SU 2005-005
  5. Multiple SQL injections and XSS in FishCart 3.1
  6. Authentication bypass, sql injections and xss in ArticleLive 2005
  7. Golden Ftp Server Pro - Directory Traversal Vuln
  8. iDEFENSE Security Advisory 05.03.05: Mac OS X Server NeST -target Buffer Overflow Vulnerability
  9. Gossamer Threads Links SQL login XSS Vulnerability
  10. Multiple vulnerabilities in Merak Mail Server 8.0.3 with Icewarp
  11. leafnode security announcement leafnode-SA-2005-01
  12. Local file detection bug found through Adobe SVG Viewer
  13. iDEFENSE Security Advisory 05.04.05: Apple Mac OS X vpnd Server_id Buffer Overflow Vulnerability
  14. directory traversal in SimpleCam 1.2
  15. MRO Maximo v4 & v5
  16. MegaBook V2.0 - Cross Site Scripting Exploit
  17. Oracle 9i / 10g Fine Grained Auditing Issue
  18. Oracle 10g DBMS_SCHEDULER SESSION_USER issue
  19. dSMTP - SMTP Mail Server 3.1b Linux Remote Root Format String Exploit
  20. Multiple vulnerabilities in myBloggie 2.1.1
  21. Multiple Vulnerabilities In SitePanel2
  22. Local root vuln in VPN daemon on MacOS X
  23. [USN-116-1] gzip vulnerabilities
  24. [USN-118-1] PostgreSQL vulnerabilities
  25. DMA[2005-0502a] - 'Apple OSX multiple Bluetooth vulnerabilities'
  26. [hackgen-2005-#004] - Multiple bugs in MidiCart PHP Shopping Cart
  27. [USN-114-1] kimgio vulnerability
  28. [USN-117-1] cvs vulnerability
  29. [USN-115-1] Kommander vulnerability
  30. Mac OS 10.4: new-account-wizzard in Mail 2.0 sends clear-text passwords
  31. Multiple vulnearabilities in e107 cms
  32. [ GLSA 200505-02 ] Oops!: Remote code execution
  33. Sql Injection in CJ Ultra Plus v1.0.3-1.0.4
  34. MDKSA-2005:082 - Updated OpenOffice.org packages fix heap overflow vulnerability
  35. Gamespy cd-key validation system: Cd-key never in use
  36. Multiple Vulnerabilities In Invision Power Board
  37. MDKSA-2005:081 - Updated XFree86/XOrg packages fix libXpm vulnerabilities
  38. FreeBSD Security Advisory FreeBSD-SA-05:06.iir
  39. FreeBSD Security Advisory FreeBSD-SA-05:07.ldt
  40. FreeBSD Security Advisory FreeBSD-SA-05:08.kmem
  41. PHP Advanced Transfer Manager v1.21
  42. [SEC-1 LTD] RSA SecurID Web Agent Heap Overflow
  43. [USN-119-1] tcpdump vulnerabilities
  44. [USN-122-1] Squid vulnerability
  45. [USN-121-1] OpenOffice.org vulnerability
  46. [USN-120-1] Apache 2 vulnerability
  47. Secure Science Corporation Advisory CSA-056
  48. [USN-123-1] Xine library vulnerabilities
  49. [ GLSA 200505-03 ] Ethereal: Numerous vulnerabilities
  50. 4d WebSTAR 5.x Web Server Mac OS X Buffer Overflow
  51. firefox 1.0.3 spoof+auto dl
  52. [ GLSA 200505-04 ] GnuTLS: Denial of Service vulnerability
  53. [SECURITY] [DSA 723-1] New XFree86 packages fix arbitrary code execution
  54. PwsPHP v1.2.2 Final - Multiples vulnerabilities
  55. Firefox Remote Compromise Technical Details
  56. [SECURITY] [DSA 722-1] New smail packages fix arbitrary code execution
  57. NISCC Vulnerability Advisory IPSEC - 004033
  58. Announcement: The Web Security Mailing List
  59. Firefox Remote Compromise Leaked
  60. Re: Can't trust COMODO - An Update
  61. [SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow
  62. phpbb 2.0.15 released - patches high critical vuln
  63. Advanced Guestbook 2.3.1
  64. Easy Message Board Directory Traversal and Remote Command
  65. Viruses can evade Sophos Anti-Virus
  66. [ GLSA 200505-05 ] gzip: Multiple vulnerabilities
  67. [ GLSA 200505-06 ] TCPDump: Decoding routines Denial of Service vulnerability
  68. Esqo advisory: GeoVision Digital Video Surveillance System - Multiple
  69. Crash in Zoidcom 1.0 beta 4
  70. New Macromedia Security Zone Bulletin Posted
  71. TSLSA-2005-0021 - squid
  72. TCP/IP implementations do not adequately validate ICMP error messages
  73. Firefox Crash??
  74. [ GLSA 200505-08 ] HT Editor: Multiple buffer overflows
  75. Gamespy cd-key validation system: "Cd-key in use" DoS versus many
  76. CAIF 1.2 released
  77. [ GLSA 200505-07 ] libTIFF: Buffer overflow
  78. WowBB view_user.php SQL Injection Vulnerability
  79. MDKSA-2005:083 - Updated ethereal packages fix multiple vulnerabilities
  80. Metasploit Framework v2.4
  81. Cisco Security Advisory: FWSM URL Filtering Solution TCP ACL Bypass Vulnerability
  82. Linux kernel ELF core dump privilege elevation
  83. [HSC Security Group] MaxWebPortal - Multiple SQL injection/XSS
  84. Re: TCP/IP implementations do not adequately validate ICMP error
  85. [Scan Associates Advisory] Neteyes Nexusway multiple vulnerability
  86. Commonly used disk imaging and wiping tools can be tricked to miss
  87. Guesbook Pro XSS & HTML Injection
  88. Ethereal <= 0.10.10 SIP dissector stack overflow DoS exploit
  89. BakBone NetVault last warning
  90. OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison.
  91. Re: SPAM-HIGH: TCP/IP implementations do not adequately validate
  92. Yappa-NG Multiple Vulnerabilities
  93. [DR018] Quartz Composer / QuickTime 7 information leakage
  94. Firefox 1.0.4 released. Several vulnerabilities fixed
  95. Security Advisory for Bugzilla 2.18, 2.19.2, and 2.16.8
  96. Re: Commonly used disk imaging and wiping tools can be tricked to
  97. Directtopics Multiple Vulnerabilities (Security Advisory)
  98. MDKSA-2005:087 - Updated tcpdump packages fix multiple vulnerabilities
  99. MDKSA-2005:086 - Updated gaim packages fix multiple vulnerabilities
  100. MDKSA-2005:085 - Updated kdelibs packages fix vulnerabilities
  101. MDKSA-2005:084 - Updated gnutls packages fix vulnerabilities
  102. [ GLSA 200505-09 ] Gaim: Denial of Service and buffer overflow vulnerabilties
  103. Re: Linux kernel ELF core dump privilege elevation (kernel module workaround)
  104. [USN-124-1] Mozilla and Firefox vulnerabilities
  105. [USN-125-1] Gaim vulnerabilities
  106. [USN-124-2] Fixed packages for USN-124-1
  107. htdigest exploit code [bid 13537]
  108. [FLSA-2005:152763] Updated qt packages fixes security issues
  109. [FLSA-2005:152768] Updated ruby package fixes security issues
  110. MDKSA-2005:088 - Updated mozilla packages fix multiple vulnerabilities
  111. [FLSA-2005:152856] Updated sudo packages fix security issue
  112. [ GLSA 200505-10 ] phpBB: Cross-Site Scripting Vulnerability
  113. [FLSA-2005:152804] Updated openmotif packages fix image vulnerability
  114. [ GLSA 200505-12 ] PostgreSQL: Multiple vulnerabilities
  115. [ GLSA 200505-11 ] Mozilla Suite, Mozilla Firefox: Remote compromise
  116. Multiple Vulnerabilities in MetaCart e-Shop
  117. Postnuke 0.750 - 0.760rc4 local file inclusion
  118. DotNetNuke (Multiple XSS)
  119. Woltlab Burning Board SQL Injection Vulnerability
  120. Pico Server (pServ) Local Information Disclosure
  121. Pico Server (pServ) Information Disclosure Of CGI Sources
  122. Pico Server (pServ) Remote Command Injection
  123. Mac OS X - Adobe Version Cue local root exploit [c version exploit]
  124. [SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple
  125. cdrdao exploit for mandrake 10.2 ( Mandriva 2005)
  126. Linux kernel pktcdvd and rawdevice ioctl break user space limit vulnerability
  127. [CLA-2005:953] Conectiva Security Announcement - kde
  128. [ GLSA 200505-13 ] FreeRADIUS: Buffer overflow and SQL injection vulnerability
  129. OpenServer 5.0.6 OpenServer 5.0.7 : telnet client multiple issues
  130. MDKSA-2005:088-1 - Updated mozilla-firefox packages re-enable extensions
  131. Linux kernel pktcdvd ioctl break user space limit vulnerability [corrected]
  132. Yahoo! Messenger may be storing all session data 'Unencoded' on
  133. Re: Windows image size crash
  134. Help Center Live Vulnerabilities
  135. [USN-127-1] bzip2 vulnerabilities
  136. [SECURITY] [DSA 724-1] New phpsysinfo packages fix cross site scripting
  137. [USN-128-1] nasm vulnerability
  138. Windows (XP, 2k3, Longhorn) is vulnerable to IpV6 Land attack.
  139. [USN-129-1] Squid vulnerability
  140. Re: [SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple Vulnerabilities (09.05.05)
  141. Re: Yahoo! Messenger may be storing all session data 'Unencoded'
  142. Re: Mac OS X - Adobe Version Cue local root exploit [c version
  143. NOVELL ZENWORKS MULTIPLE REMØTE STACK & HEAP OVERFLOWS
  144. [FLSA-2005:152883] Updated mozilla packages fix security issues
  145. [FLSA-2005:152771] Updated pam packages fix security issue
  146. Security issue in Microsoft Outlook
  147. UnixWare 7.1.4 : Updated mozilla fixes many security issues
  148. MDKSA-2005:089 - Updated cdrdao packages fix local root vulnerability
  149. MDKSA-2005:090 - Updated nasm packages fix vulnerability
  150. MDKSA-2005:091 - Updated bzip2 packages fix multiple vulnerabilities
  151. MDKSA-2005:092 - Updated gzip packages fix several vulnerabilities
  152. D-Link DSL routers authentication bypass
  153. [SECURITY] [DSA 725-1] New ppxp packages fix local root exploit
  154. [ GLSA 200505-14 ] Cheetah: Untrusted module search path
  155. JavaMail Information Disclosure (msgno)
  156. UNICODE BUFFER OVERFLOW IN MS-WORD
  157. phpATM arbitrary PHP code inclusion
  158. [FLSA-2005:152815] Updated libtiff packages fix security issues
  159. [USN-130-1] TIFF library vulnerability
  160. [SECURITY] [DSA 726-1] New oops packages fix format string vulnerability
  161. UPDATE: [ GLSA 200504-23 ] Kommander: Insecure remote script execution
  162. ERRATA: [ GLSA 200505-13 ] FreeRADIUS: SQL injection and Denial of Service vulnerability
  163. [ GLSA 200505-15 ] gdb: Multiple vulnerabilities
  164. pst.advisory: gedit fun. opensource is god .lol windows
  165. [SECURITY] [DSA 727-1] New libconvert-uulib-perl packages fix arbitrary code execution
  166. picasm error handling stack overflow vulnerability
  167. worm "postcard" e-mail issue
  168. episodex guestbook security bypass & html injection
  169. Security contact for Trillian
  170. [BuHa Security] Wordpress SQL-Injection
  171. [UPDATE] UNICODE BUFFER OVERFLOW IN MS-WORD
  172. [SECURITYREASON.COM] PostNuke XSS 0.760{RC2,RC3}
  173. [SECURITYREASON.COM] PostNuke XSS and Full path disclosure
  174. [SECURITYREASON.COM] PostNuke Non Critical SQL Injection and
  175. pst.advisory 2005-21: gxine remote exploitable . opensource is
  176. [SECURITYREASON.COM] PostNuke SQL Injection 0.750=>x
  177. Computer Associates Vet Antivirus Library Remote Heap Overflow
  178. SQL injections in PortailPHP
  179. Cookie Cart Default Installation Multiple Vulnerabilities
  180. Format string and crash in Warrior Kings 1.3 and Battles 1.23
  181. Meteor FTP Server v1.5 Buffer Overflow
  182. [ GLSA 200505-17 ] Qpopper: Multiple Vulnerabilities
  183. [ GLSA 200505-18 ] Net-SNMP: fixproc insecure temporary file creation
  184. CAID 32896 - Computer Associates Vet Antivirus engine heap overflow vulnerability
  185. Blue Coat Reporter multiple remote vulnerabilities
  186. Gforge - viewFile.php security flaw
  187. ACROS Security: HTML Injection in BEA WebLogic Server Console (2)
  188. ACROS Security: HTML Injection in BEA WebLogic Server Console (1)
  189. Endless loop in Halo 1.06
  190. iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP STATUS Remote Buffer Overflow Vulnerability
  191. iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LSUB DoS Vulnerability
  192. iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LOGIN Remote Buffer Overflow Vulnerabilitie
  193. iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerabilit
  194. iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP SELECT Command DoS Vulnerability
  195. Javamail Multiple Information Disclosure Vulnerabilities
  196. [ GLSA 200505-16 ] ImageMagick, GraphicsMagick: Denial of Service
  197. [USN-131-1] Linux kernel vulnerabilities
  198. [USN-132-1] ImageMagick vulnerabilities
  199. [SECURITY] [DSA 728-1] New qpopper packages fix arbitrary file overwriting
  200. exim 4.40 exploit
  201. iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d Format String Vulnerability
  202. iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 mail header_get_field_name() Buffer Overflow
  203. iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d fetch_io Heap overflow Vulnerability
  204. iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d FETCH Command Resource Consumption DoS
  205. PHP Injection in PHP Poll Creator
  206. shtool insecure temporary file creation
  207. High Risk Vulnerability in L-Soft's LISTSERV Server
  208. OpenServer 5.0.6 OpenServer 5.0.7 : nwprint privilege escalation
  209. Zone Labs ZoneAlarm Vet anti-virus engine OLE processing vulnerability
  210. davfs2 does not honour Unix permissions
  211. [SECURITY] [DSA 728-2] New qpopper packages fix arbitrary file overwriting
  212. [SECURITY] [DSA 729-1] New PHP4 packages fix denial of service
  213. Alwil Software Avast Antivirus Device Driver Memory Overwrite Vulnerability
  214. Invision Power Board 1.* and 2.* Exploit (BID 13529)
  215. [ GLSA 200505-19 ] gxine: Format string vulnerability
  216. [USN-133-1] Apache utility vulnerability
  217. Buffer-overflow and crash in Terminator 3: War of the Machines 1.16
  218. [security bulletin] SSRT5899 rev.0 - HP-UX trusted system remote unauthorized access
  219. Buffer-overflow in C'Nedra 0.4.0
  220. [USN-134-1] Firefox vulnerabilities
  221. Meteor FTP Server: PoC Exploit
  222. Re: [Full-disclosure] iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary
  223. Re: ACROS Security: HTML Injection in BEA WebLogic Server Console
  224. [security bulletin] SSRT5954 rev.1 - HP-UX TCP/IP Remote Denial of Service (DoS)
  225. [security bulletin] SSRT4884 rev.0 - HP-UX TCP/IP Remote Denial of Service (DoS)
  226. ezmlm warning
  227. PHP Stat Administrative User Authentication Bypass
  228. PostNuke Critical SQL Injection and XSS 0.750=>x
  229. [USN-114-2] Fixed packages for USN-114-1
  230. [USN-135-1] gdb vulnerabilities
  231. [ GLSA 200505-20 ] Mailutils: Multiple vulnerabilities in imap4d
  232. [USN-136-1] binutils vulnerability
  233. [USN-136-2] Fixed packages for USN-136-1
  234. User32.dll Icon Size Crash
  235. [AppSecInc Advisory BEA05-V0100] BEA WebLogic Administration Console
  236. [AppSecInc Advisory BEA05-V0101] BEA WebLogic Administration Console
  237. DSL-504T (and maybe many other) remote access without password bug
  238. Citrix security contact
  239. [SECURITY] [DSA 730-1] New bzip2 packages fix file unauthorised permissions modification
  240. SQL Injection Exploit for myBloggie 2.1.1 - 2.1.2
  241. Microsoft Internet Explorer - Crash on adding sites to restricted zone (05/28/2005)
  242. PicoWebServer Remote Unicode Stack Overflow
  243. Microsoft Internet Explorer - Crash on processing embedded files with endless loop (05/28/2005)
  244. Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005)
  245. Microsoft Internet Explorer - Crash on to many stack overflows (05/28/2005)
  246. Format String Vulnerability In Peercast 0.1211 And Earlier
  247. Compuware Softice (DbgMsg driver) Local Denial Of Service
  248. Uk Shoppers - Discount Vouchers and Promotional Codes -
  249. Crash in Stronghold 2 1.2
  250. CYBSEC - PHPMailer Infinite Loop Denial of Service