PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98

  1. MDKSA-2005:163 - Updated MySQL packages fix vulnerability
  2. Serious Security issue with broken - Microsoft's .Net XML Serialization API
  3. iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration Fixed Encryption Ke
  4. iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'restore.cgi' Configuration Modification Design
  5. iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Management Interface DoS Vulnerability
  6. iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'upgrade.cgi' Firmware Upload Design Error Vulne
  7. iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration apply.cgi Buffer Ov
  8. Re: [Snort-users] Snort DoS Fallacies
  9. Mozilla / Mozilla Firefox authentication weakness
  10. Secunia Research: AVIRA Antivirus ACE Archive Handling Buffer
  11. ATutor 1.5.1 SQL Injection / Admin credentials disclosure /
  12. [SECURITY] [DSA 814-1] New lm-sensors packages fix insecure temporary file
  13. Secunia Research: Ahnlab V3 Antivirus Multiple Vulnerabilities
  14. Digital Scribe v1.4 Login Bypass / SQL injection / remote code
  15. [SECURITY] [DSA 813-1] New centericq packages fix several vulnerabilities
  16. [SECURITY] [DSA 812-1] New turqstat packages fix buffer overflow
  17. Airscanner Mobile Security Advisory #05081203: vxTftpSrv 1.7.0
  18. DriverStudio Remote Control Authentication Bypass Vulnerability
  19. Airscanner Mobile Security Advisory #05081102: vxFtpSrv 0.9.7
  20. TWiki Remote Command Execution Vulnerability
  21. SQL injection & XSS in phpoutsourcing Noah's classifieds
  22. Avocent CCM: Port Access Control Bypass Vulnerability
  23. Character Manipulation in Online Systems.
  24. gtkdiskfree insecure temporary file creation
  25. Is netcraft publishing URL of your intranet sites?
  26. Remote File Inclusion in MyGuestbook
  27. Re: [Full-disclosure] Mozilla / Mozilla Firefox authentication
  28. 404 error XSS
  29. CastleCops ramps up fight against CoolWebSearch/HomeSearch
  30. Online Dating Software by AEwebworks - aeDating Script <= 4.0
  31. Oracle Reports: Generic SQL Injection Vulnerability via Lexical
  32. Re: [Full-disclosure] Mozilla / Mozilla Firefox authentication weakness
  33. RE: [Snort-devel] Re: [Snort-users] Snort DoS Fallacies
  34. Anti Arp Poisoning Daemon (OpenAAPD) PS: Link corrected
  35. Re: Re: Serious Security issue with broken - Microsoft's .Net XML
  36. RE: [Full-disclosure] FireFox Host: Buffer Overflow is not justexploitable on FireFox
  37. [SECURITY] [DSA 811-1] New common-lisp-controller packages fix arbitrary code injection
  38. MDKSA-2005:164 - Updated XFree86/x.org packages fix vulnerability
  39. XSS Vulnerability in MIVA Merchant 5 - Includes Fix
  40. Airscanner Mobile Security Advisory #05082201: File Transfer
  41. Airscanner Mobile Security Advisory #05081101: vxWeb v.1.1.4
  42. PTL Advisory 050825 - HP LaserJet Network Username and Information
  43. [FLSA-2005:160202] Updated mozilla packages fix security issues
  44. [FLSA-2005:162680] Updated Zlib packagea fix security issues
  45. [FLSA-2005:163047] Updated squirrelmail package fixes security issues
  46. [FLSA-2005:163274] Updated CUPS packages fix security issue
  47. FF IDN buffer overflow workaround works in Netscape too
  48. worring about YaST in SuSE 9.3 and maybe lower
  49. arc insecure temporary file creation
  50. SUSE Security Announcement: squid (SUSE-SA:2005:053)
  51. ncompress insecure temporary file creation
  52. SUSE Security Announcement: evolution (SUSE-SA:2005:054)
  53. PHP SESSION MODIFICATION
  54. gwcc insecure temporary file creation
  55. [SECURITY] [DSA 815-1] New kdebase packages fix local root vulnerability
  56. (TOOL) TAPiON ver 0.1c
  57. [FLSA-2005:152919] Updated grip package fixes security issue
  58. TSLSA-2005-0049 - multi
  59. Re: [Full-disclosure] FireFox Host: Buffer Overflow is not just
  60. Greyhats Security back online
  61. RE: [Full-disclosure] FireFox Host: Buffer Overflow is not
  62. Re: [Full-disclosure] FireFox Host: Buffer Overflow is not just exploitable on FireFox
  63. CDMA1X Security
  64. Cisco IOS hacked?
  65. [ GLSA 200509-10 ] Mailutils: Format string vulnerability in imap4d
  66. CuteNews 1.4.0 remote code execution
  67. CuteNews 1.4.0 remote code execution
  68. [ GLSA 200509-11 ] Mozilla Suite, Mozilla Firefox: Buffer overflow
  69. Antigen 8.0 for Exchange/SMTP Rule Vulnerability
  70. router worms and International Infrastructure [was: Re: IOS exploit]
  71. [Full-disclosure] killbits? should have named them kibbles and bits
  72. Alstrasoft Epay Pro 2.0 and prior Directory Traversal Vulnerability
  73. Web Application Security Analyzer for PHP-Nuke/phpBB CMS
  74. ERRATA: [ GLSA 200507-20 ] Shorewall: Security policy bypass
  75. [ GLSA 200509-12 ] Apache, mod_ssl: Multiple vulnerabilities
  76. Dumb Question
  77. [BuHa-Security] Multiple vulnerabilities in (admincp/modcp of)
  78. [ GLSA 200509-09 ] Py2Play: Remote execution of arbitrary Python
  79. [USN-184-1] umount vulnerability
  80. @System Security Conference
  81. [ GLSA 200509-13 ] Clam AntiVirus: Multiple vulnerabilities
  82. Alstrasoft Epay Pro 2.0 and prior Directory Traversal Vulnerability
  83. Re: [Full-disclosure] Cisco IOS hacked?
  84. [security bulletin] SSRT5999 rev.0 HP OpenVMS Secure Web Browser Mozilla Application Node Spoofing
  85. [security bulletin] SSRT5971 rev.0 - HP Tru64 Unix FTP Daemon (ftpd) Remote Denial of Service (DoS)
  86. Debian Security Host Bandwidth Saturation
  87. MDKSA-2005:165 - Updated cups packages fix vulnerability
  88. bacula insecure temporary file creation
  89. phpBB 2.0.17 remote avatar size bug
  90. Secunia Research: Opera Mail Client Attachment Spoofing and Script
  91. Hesk Session ID Validation Vulnerability
  92. MDKSA-2005:138-1 - Updated cups packages fix vulnerability
  93. [USN-185-1] CUPS vulnerability
  94. mercury imap4 remote BOF exploit ( IHSTeam )
  95. [ GLSA 200509-14 ] Zebedee: Denial of Service vulnerability
  96. [ GLSA 200509-15 ] util-linux: umount command validation error
  97. Paper - How It's Difficult to Ruin a Good Name: An Analysis of Reputational
  98. MDKSA-2005:168 - Updated masqmail packages fix vulnerabilities
  99. MDKSA-2005:166 - Updated clamv packages fix vulnerabilities
  100. MDKSA-2005:167 - Updated util-linux packages fix umount vulnerability
  101. [BuHa-Security] Multiple vulnerabilities in (admincp/modcp of)
  102. [SNS Advisory No.83] Webmin/Usermin PAM Authentication Bypass Vulnerability
  103. PocketPC exploitation
  104. UnixWare 7.1.4 : LibTIFF < 3.72 malformed data code exec
  105. Upcoming Black Hat events announcement
  106. Re: Paper - How It's Difficult to Ruin a Good Name: An Analysis
  107. [security bulletin] SSRT5988 rev.1 - HP Tru64 Unix libXpm Remote Denial of Service (DoS) or Execute
  108. FireFox exploit updated
  109. Protty v.01A (beta) - shellcode execution protection library for
  110. OpenServer 6.0.0 : TCP Remote ICMP Denial Of Service Vulnerabilities
  111. [SECURITY] [DSA 818-1] New kdeedu packages fix insecure temporary files
  112. Platinum Secure smartcard security bypass
  113. HTTP Request Smuggling - ERRATA (the IIS 48K buffer phenomenon)
  114. [SECURITY] [DSA 817-1] New python2.2 packages fix arbitrary code execution
  115. My Little Forum 1.5 / 1.6beta SQL Injection
  116. Hack Dot AE v2
  117. [security bulletin] SSRT5998 Rev.2 HP System Management Homepage (v2.0.x) Denial of Service (DoS) an
  118. [scip_Advisory 1746] Microsoft Internet Explorer 6.0 embedded content
  119. Re: [Full-disclosure] [scip_Advisory 1746] Microsoft Internet Explorer
  120. IT training
  121. Sql injection in jPortal version 2.3.1 (module download)
  122. TSLSA-2005-0051 - clamav
  123. [SECURITY] [DSA 819-1] New python2.1 packages fix arbitrary code execution
  124. Secunia Research: 7-Zip ARJ Archive Handling Buffer Overflow
  125. PhpMyFAQ 1.5.1 multiple vulnerabilities
  126. Rita Scams Call to Arms - Update
  127. Secunia Research: PowerArchiver ACE/ARJ Archive Handling Buffer
  128. My Little Forum 1.5 / 1.6beta SQL Injection
  129. "Exploiting the XmlHttpRequest object in IE" - paper by Amit Klein
  130. Hijacking Bluetooth Headsets for Fun and Profit?
  131. [ GLSA 200509-17 ] Webmin, Usermin: Remote code execution through
  132. AlstraSoft E-Friends Remote Command Exucetion
  133. MailGust 1.9 SQL Injection
  134. [SECURITY] [DSA 820-1] New courier packages fix cross-site scripting
  135. [SECURITY] [DSA 817-1] New python2.2 packages fix arbitrary code execution
  136. [USN-186-1] Mozilla and Firefox vulnerabilities
  137. [ GLSA 200509-16 ] Mantis: XSS and SQL injection vulnerabilities
  138. Server crash and motd deletion in MultiTheftAuto 0.5 patch 1
  139. FL Studio 5 (.flp file processing) Heap Overflow
  140. SUSE Security Announcement: XFree86-server,xorg-x11-server
  141. [ GLSA 200509-18 ] Qt: Buffer overflow in the included zlib library
  142. [USN-186-2] Ubuntu 4.10 packages for USN-186-1 Firefox security update
  143. [USN-187-1] Linux kernel vulnerabilities
  144. Re: "Exploiting the XmlHttpRequest object in IE" - paper by Amit
  145. [ISR] - Novell GroupWise Client Integer Overflow
  146. MDKSA-2005:170 - Updated mozilla packages fix multiple vulnerabilities
  147. Announce: RSBAC v1.2.5 released
  148. lucidCMS 1.0.11 is susceptible to a cross site scripting attack
  149. ElseNot project
  150. SEO borad: SQL injection
  151. Nokia 7610, 3210 denial of service in OBEX.
  152. FreeBSD GNU Mailutils 0.6 imap4d exploit
  153. CMS Made Simple 0.10 is susceptible to a cross site scripting attack.
  154. RealPlayer && HelixPlayer Remote Format String Exploit
  155. PacSec 05
  156. MDKSA-2005:169 - Updated mozilla-firefox packages fix multiple vulnerabilities
  157. [ GLSA 200509-19 ] PHP: Vulnerabilities in included PCRE and XML-RPC
  158. Mantis Bugtracker - Remote Database Scanner and XSS Vulnerabilities
  159. Is the Bottom Line Impacted by Security Breaches?
  160. [SECURITY] [DSA 821-1] New python2.3 packages fix arbitrary code execution
  161. Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC
  162. PHP-Fusion v6.00.109 SQL Injection / admin|users credentials
  163. OpenServer 5.0.7 OpenServer 6.0.0 : UnZip File Permissions Change Vulnerability
  164. [SECURITY] [DSA 824-1] New ClamAV packages fix denial of service
  165. [SECURITY] [DSA 797-2] Updated zsync i386 packages fix build error
  166. Serendipity: Account Hijacking / CSRF Vulnerability
  167. [SECURITY] [DSA 823-1] New util-linux packages fix privilege escalation
  168. SquirrelMail Address Add Plugin XSS
  169. [SECURITY] [DSA 825-1] New loop-aes-utils packages fix privilege escalation
  170. [SECURITY] [DSA 822-1] New gtkdiskfree packages fix insecure temporary file
  171. [USN-188-1] AbiWord vulnerability
  172. [USN-189-1] cpio vulnerabilities
  173. AV == parasites? (was: PocketPC exploitation)
  174. [USN-190-1] SNMP vulnerability
  175. [USN-191-1] unzip vulnerability
  176. Lucid CMS 1.0.11 SQL Injection / Login Bypass / remote code execution
  177. Zone Labs response to "Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC"
  178. [SECURITY] [DSA 832-1] New gopher packages fix several buffer overflows
  179. apachetop insecure temporary file creation
  180. [SECURITY] [DSA 830-1] New ntlmaps packages fix information leak
  181. Multiple vulnerabilities in Merak Mail Server 8.2.4r with Icewarp
  182. [ GLSA 200509-21 ] Hylafax: Insecure temporary file creation in xferfaxstats
  183. [SECURITY] [DSA 826-1] New helix-player packages fix multiple vulnerabilities
  184. Citrix Metaframe Presentation Server bypassing policies
  185. [SECURITY] [DSA 831-1] New mysql-dfsg packages fix arbitrary code execution
  186. [USN-192-1] Squid vulnerability
  187. Announce: Bluetooth mailing list - Bluetraq
  188. iDEFENSE Security Advisory 09.30.05: RealNetworks RealPlayer/HelixPlayer RealPix Format String Vulne
  189. Buffer-overflow and directory traversal bugs in Virtools Web Player
  190. TSLSA-2005-0053 - unzip
  191. UPDATE: [ GLSA 200509-11 ] Mozilla Suite, Mozilla Firefox: Multiple
  192. [SECURITY] [DSA 829-1] New mysql packages fix arbitrary code execution
  193. BID #14752 update
  194. [SECURITY] [DSA 809-2] New squid packages fix denial of service
  195. [ GLSA 200509-20 ] AbiWord: RTF import stack-based buffer overflow
  196. [SECURITY] [DSA 828-1] New squid packages fix denial of service
  197. [SECURITY] [DSA 827-1] New backupninja packages fix insecure temporary file
  198. [SECURITY] [DSA 836-1] New cfengine2 packages fix arbitrary file overwriting
  199. MyBloggie 2.1.3beta null char + SQL Injection -> Login Bypass
  200. [SECURITY] [DSA 835-1] New cfengine packages fix arbitrary file overwriting
  201. [Information Disclosure] NetForce v4.02 Sends NIS Password Maps
  202. [SECURITY] [DSA 833-1] New mysql-dfsg-4.1 packages fix arbitrary code execution
  203. [SECURITY] [DSA 834-1] New prozilla packages fix arbitrary code execution
  204. Security Advisory for Bugzilla 2.18.3, 2.20rc2, and 2.21
  205. RE: Careless Law Enforcement Computer Forensics Lacking InfoSec Expertise Causes Suicides
  206. [SECURITY] [DSA 837-1] New Mozilla Firefox packages fix denial of service
  207. [SECURITY] [DSA 838-1] New mozilla-firefox packages fox multiple vulnerabilities
  208. Careless Law Enforcement Computer Forensics Lacking InfoSec Expertise
  209. Trillian remote crashable
  210. Kaspersky Antivirus Remote Heap Overflow
  211. RE: Careless Law Enforcement Computer Forensics Lacking InfoSec
  212. MDKSA-2005:171 - Updated kernel packages fix multiple vulnerabilities
  213. [SECURITY] [DSA 840-1] New drupal packages fix remote command execution
  214. [SECURITY] [DSA 842-1] New egroupware packages fix arbitrary code execution
  215. Call for Papers - DIMVA 2006
  216. [SECURITY] [DSA 839-1] New apachetop packages fix insecure temporary file
  217. Advisory: WZCS vulnerabilities
  218. [USN-155-3] Fixed mozilla locale packages
  219. [USN-193-1] dia vulnerability
  220. [ GLSA 200510-01 ] gtkdiskfree: Insecure temporary file creation
  221. [ GLSA 200510-02 ] Berkeley MPEG Tools: Multiple insecure temporary
  222. [SECURITY] [DSA 833-2] New mysql-dfsg-4.1 package fixes arbitrary code execution
  223. [security bulletin] SSRT051041 rev.0 - HP-UX Mozilla Remote Unauthorized Execution of Privileged Cod
  224. [ GLSA 200510-03 ] Uim: Privilege escalation vulnerability
  225. A common researcher diagnosis error: misreading error messages
  226. [security bulletin] SSRT051040 rev.0 - HP-UX Mozilla Remote Unauthorized Execution of Privileged Cod
  227. [security bulletin] SSRT5940 rev.2 - HP-UX Mozilla remote, unauthorized user may execute privileged
  228. [security bulletin] SSRT051030 rev.1 - HP OpenView Event Correlation Services (OV ECS) Remote Unauth
  229. [security bulletin] SSRT051023 rev.5 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized
  230. [ GLSA 200510-04 ] Texinfo: Insecure temporary file creation
  231. iDEFENSE Security Advisory 10.04.05: UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability
  232. iDEFENSE Security Advisory 10.04.05: Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vuln
  233. RE: iDEFENSE Security Advisory 10.04.05: Symantec AntiVirus Scan Engine Web Service Buffer Overflow
  234. [SECURITY] [DSA 843-1] New arc packages fix insecure temporary files
  235. Patches available for critical flaws in HP Openview
  236. [SECURITY] [DSA 844-1] New mod-auth-shadow packages fix authentication bypass
  237. Some new whitepapers ...
  238. Secunia Research: ALZip Multiple Archive Handling Buffer Overflow
  239. PAKCON II: Call for Paper (CfP), Final Call!
  240. Announcement : Core Banking Application Security List
  241. Secunia Research: PHP-Fusion Two SQL Injection Vulnerabilities
  242. [security bulletin] SSRT4743, SSRT4884 rev.1 - HP Tru64 UNIX TCP/IP remote Denial of Service (DoS)
  243. WASC Threat Classification in 4 languages
  244. Secunia Research: Webroot Desktop Firewall Two Vulnerabilities
  245. [security bulletin] SSRT051004 rev.1 - HP-UX Java Runtime Environment (JRE) Untrusted Applet Elevate
  246. aspReady FAQ - open for SQL-injections
  247. [ GLSA 200510-06 ] Dia: Arbitrary code execution through SVG import
  248. High Risk Vulnerability in Sun Directory Server
  249. Opinion: Complete failure of Oracle security response and utter neglect of their responsibility to t
  250. [SECURITY] [DSA 845-1] New mason packages fix missing init script