PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 [39] 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98

  1. [security bulletin] SSRT5979 - HP-UX Running IPSec Remote Denial of Service (DoS)
  2. [SECURITY] [DSA 898-1] New phpgroupware packages fix several vulnerabilities
  3. iDEFENSE Security Advisory 11.17.05: Qualcomm WorldMail IMAP Server
  4. ShmooCon 2006 - Washington DC
  5. MDKSA-2005:213 - Updated php packages fix multiple vulnerabilities
  6. [SECURITY] [DSA 899-1] New egroupware packages fix several vulnerabilities
  7. [KAPDA::#13] - XMB HTML Injection & Path Disclosure.
  8. [SECURITY] [DSA 900-1] New fetchmail packages fix potential information leak
  9. Snagging Security Tokens to Elevate Privileges
  10. PHP-Fusion <= 6.00.206 Multiple Vulnerabilities
  11. Secunia Research: MailEnable Buffer Overflow and Directory
  12. Google Base
  13. Secunia Research: Winmail Server Multiple Vulnerabilities
  14. Mambo 0day Exploit out in the wild - mambo/skype hacked
  15. MDKSA-2005:214 - Updated gdk-pixbuf/gtk+2.0 packages fix vulnerability
  16. [SECURITY] [DSA 901-1] New gnump3d packages fix several vulnerabilities
  17. [security - exponentcms]
  18. [ GLSA 200511-15 ] Smb4k: Local unauthorized file access
  19. [TKADV2005-11-004] Multiple Cross Site Scripting vulnerabilities in phpMyFAQ
  20. Security Advisory: Struts Error Message Cross Site Scripting
  21. APBoard v [all] ---> [SQL injection]
  22. cracking safes with thermal imaging
  23. Your One-Stop Site For Sony Lawsuit Info
  24. Re: Work in Progress: FileZilla Server Terminal V0.9.4d Buffer
  25. [SECURITY] [DSA 811-2] New common-lisp-controller packages fix arbitrary code injection
  26. [SECURITY] [DSA 902-1] New xmail packages fix arbitrary code execution
  27. Google Search Appliance proxystylesheet Flaws
  28. Metro Olografix Crypto Meeting 2006 CFP
  29. [SECURITY] [DSA 903-1] New unzip packages fix unauthorised permissions modification
  30. [SECURITY] [DSA 904-1] New netpbm packages fix arbitrary code execution
  31. [SECURITY] [DSA 900-2] New fetchmail packages fix potential information leak
  32. Gadu-Gadu several vulnerabilities (version <= 7.20)
  33. Computer Terrorism Security Advisory (Reclassification) -
  34. IE BUG, Mozilla DOS?
  35. [SECURITY] [DSA 905-1] New mantis packages fix several vulnerabilities
  36. [SECURITY] [DSA 906-1] New sylpheed packages fix arbitrary code execution
  37. [ GLSA 200511-16 ] GNUMP3d: Directory traversal and insecure temporary
  38. [USN-217-1] Inkscape vulnerability
  39. [USN-190-2] ucs-snmp vulnerability
  40. PmWiki 2.0.12 Cross Site Scripting
  41. [KAPDA::#14] - PHPPost XSS and HTML Injection
  42. VHCS 2.x HTTP Error Cross Site Scripting
  43. Horde MIME Viewer vulnerability
  44. Exploiting the Stack (Part I-IV)
  45. [ GLSA 200511-17 ] FUSE: mtab corruption through fusermount
  46. [SECURITY] [DSA 900-3] New fetchmail-ssl packages fix potential information leak
  47. Secunia Research: Opera Command Line URL Shell Command Injection
  48. [USN-218-1] netpbm vulnerabilities
  49. Cisco PIX TCP Connection Prevention
  50. [USN-219-1] Linux kernel vulnerabilities
  51. OTRS 1.x/2.x Multiple Security Issues
  52. [security bulletin] SSRT051074 Revised - HP-UX Running xterm Local Unauthorized Access
  53. [SECURITY] [DSA 909-1] New horde3 packages fix cross-site scripting
  54. GeSWall Intrusion Prevention System 2.1 Released (Freeware)
  55. [SECURITY] [DSA 908-1] New sylpheed-claws packages fix arbitrary code execution
  56. [SECURITY] [DSA 907-1] New ipmenu packages fix insecure temporary file creation
  57. Google Talk Denial of Service - BenjiBug
  58. [ GLSA 200511-20 ] Horde Application Framework: XSS vulnerability
  59. [ GLSA 200511-19 ] eix: Insecure temporary file creation
  60. [ GLSA 200511-18 ] phpSysInfo: Multiple vulnerabilities
  61. XSS on Yahoo Mail
  62. MDKSA-2005:215 - Updated binutils packages fix vulnerabilities
  63. MailEnable IMAP DOS
  64. freeFTPd 1.0.10 (Dos,Exploit)
  65. Advisory 23/2005: vTiger multiple vulnerabilities
  66. [SECURITY] [DSA 910-1] New zope2.7 packages fix arbitrary file inclusion
  67. 2nd CFP: Workshops at the 1st Int. Conf. on Availability, Reliability & Security
  68. Secunia Research: SpeedProject Products ZIP/UUE File Extraction
  69. MDKSA-2005:216 - Updated fuse packages fix vulnerability
  70. SEC Consult SA-20051125-0 :: More Vulnerabilities in vTiger CRM
  71. Mandriva Security
  72. Advisory 23/2005: vTiger multiple vulnerabilities
  73. eFiction <= 2.0 multiple vulnerabilities
  74. [ GLSA 200511-21 ] Macromedia Flash Player: Remote arbitrary code
  75. XSS in PBLang 4.65 Profile.php/UCP.php
  76. Webistanbul Control Panel Sql Injection
  77. Remote file include in Athena
  78. Remote file include in Q-News
  79. Remote file include in phpgreetz
  80. DBTECH.ORG and SecuriyTracker.org Found to be linked to Extortion Incidents Involving Online Softwar
  81. [ GLSA 200511-23 ] chmlib, KchmViewer: Stack-based buffer overflow
  82. [ GLSA 200511-22 ] Inkscape: Buffer overflow
  83. ANN: Free endpoint security software released (Core FORCE 070.105)
  84. Guppy <= 4.5.9 Remote code execution
  85. WebCalendar Multiple Vulnerabilities
  86. Php Web Statistik Multiple Vulnerabilities
  87. Free Web Stat Multiple XSS Vulnerabilities
  88. APC Security Advisory - PowerChute Network Shutdown's Web
  89. ZRCSA-200503 - ktools Buffer Overflow Vulnerability
  90. DNS query spam
  91. Randshop all versiyon Sql &#304;njection
  92. - Cisco IOS HTTP Server code injection/execution vulnerability-
  93. Kadu remote DoS
  94. Google Talk cleartext credentials in process memory
  95. What is wrong with these people?
  96. Flaw in Syn Attack Protection on non-updated Microsoft OSes can
  97. Core FORCE and OpenBSD PF's
  98. Cisco Security Advisory: Cisco Security Agent Vulnerable to Privilege Escalation
  99. [SECURITY] [DSA 911-1] New gtk+2.0 packages fix several vulnerabilities
  100. [Full-disclosure] [ GLSA 200511-23 ] chmlib,
  101. [Full-disclosure] [ GLSA 200511-22 ] Inkscape: Buffer overflow
  102. [Full-disclosure] [ GLSA 200511-23 ] chmlib,
  103. [Full-disclosure] [ GLSA 200511-21 ] Macromedia Flash Player:
  104. [FLSA-2005:166943] Updated php packages fix security issues
  105. Re: Re: - Cisco IOS HTTP Server code injection/execution
  106. ASP-Rider Default.asp SQL Injection
  107. Webmin miniserv.pl format string vulnerability
  108. Xaraya <= 1.0.0 RC4 D.O.S / file corruption
  109. APPLE-SA-2005-11-29 Security Update 2005-009
  110. Panda Remote Heap Overflow
  111. N-13 News Remote SQL/PHP Shell injection
  112. possible privilege escalation on QNX Neutrino 6.3.0
  113. [SECURITY] [DSA 912-1] New centericq packages fix denial of service
  114. Gallery 2.x Security Advisory
  115. Opera 8.50 DoS with simple java applet
  116. MDKSA-2005:219 - Updated kernel packages fix numerous vulnerabilities
  117. MDKSA-2005:218 - Updated kernel packages fix numerous vulnerabilities
  118. MDKSA-2005:217 - Updated netpbm packages fix pnmtopng vulnerabilities
  119. MDKSA-2005:220 - Updated kernel packages fix numerous vulnerabilities
  120. PhpX <= 3.5.9 SQL Injection -> login bypass -> remote
  121. Sunbelt set to acquire Kerio Personal Firewall
  122. [security bulletin] SSRT4787 Revised - HP Systems Insight Manager (SIM) for HP-UX Remote Denial of S
  123. WebCalendar Multiple Vulnerabilities.
  124. Microsoft Windows CreateRemoteThread Exploit
  125. [SECURITY] [DSA 914-1] New horde2 packages fix cross-site scripting
  126. [DRUPAL-SA-2005-008] Drupal 4.6.4 / 4.5.6 fixes XSS and HTTP header injection issue
  127. [DRUPAL-SA-2005-007] Drupal 4.6.4 / 4.5.6 fixes XSS issue
  128. Edgewall Trac SQL Injection Vulnerability
  129. [USN-220-1] w3c-libwww vulnerability
  130. Perl format string integer wrap vulnerability
  131. [SECURITY] [DSA 913-1] New gdk-pixbuf packages fix several vulnerabilities
  132. [DRUPAL-SA-2005-009] Drupal 4.6.4 / 4.5.6 fixes minor access control issue
  133. Cisco Security Advisory: IOS HTTP Server Command Injection Vulnerability
  134. [SECURITY] [DSA 915-1] New helix-player packages fix arbitrary code execution
  135. phpMyChat Multiple XSS vulnerabilities.
  136. PHP-Fusion v6.00.109 SQL Injection and Info. Disclosure
  137. MDKSA-2005:223 - Updated webmin package fixes format string vulnerability
  138. [OpenPKG-SA-2005.026] OpenPKG Security Advisory (lynx)
  139. MDKSA-2005:221 - Updated spamassassin packages fixes vulnerability
  140. eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities
  141. [OpenPKG-SA-2005.025] OpenPKG Security Advisory (perl)
  142. Alisveristr E-Commerce Admin Login SQL &#304;njection
  143. MDKSA-2005:222 - Updated mailman packages fix various vulnerabilities
  144. [OpenPKG-SA-2005.027] OpenPKG Security Advisory (php)
  145. Zen-Cart <= 1.2.6d blind SQL injection / remote commands execution:
  146. [Updated] [FLSA-2005:166943] Updated php packages fix security issues
  147. DMA[2005-1202a] - 'sobexsrv - Scripting/Secure OBEX Server format
  148. eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities
  149. more MD5 colliding examples
  150. [USN-223-1] Inkscape vulnerability
  151. [scip_Advisory] e107 v0.6 rate.php manipulation
  152. have you ever been BluePIMped?
  153. [USN-180-2] MySQL 4.1 vulnerability
  154. [security bulletin] HPSBUX01059 SSRT4704 Revised - HP-UX Running wu-ftpd Local Unauthorized Access
  155. Blog System v1.2 Multiple SQL Injection Vulnerabilities
  156. Outpost24 Public Security Note: Linux/Elxbot
  157. Buffer Overflow in MultiTech VoIP Implementations
  158. SUSE Security Announcement: kernel various security and bugfixes
  159. Horde IMP Webmail Client XSS all versions
  160. iDefense Security Advisory 12.05.05: Multiple Vendor xpdf DCTStream Baseline Heap Overflow Vulnerabi
  161. iDefense Security Advisory 12.05.05: Multiple Vendor xpdf DCTStream Progressive Heap Overflow
  162. iDefense Security Advisory 12.05.05: Multiple Vendor xpdf JPX Stream Reader Heap Overflow Vulnerabil
  163. iDefense Security Advisory 12.05.05: Multiple Vendor xpdf StreamPredictor Heap Overflow Vulnerabilit
  164. [USN-224-1] Kerberos vulnerabilities
  165. [USN-225-1] Apache 2 vulnerability
  166. Critical Myspace.com Vulnerabilites
  167. [KAPDA::#15] - ThWboard multiple vulnerabilities
  168. SimpleBBS <= v1.1 remote commands execution in c by: unitedasia
  169. SugarSuite Open Source <= 4.0beta Remote code execution
  170. [SECURITY] [DSA 916-1] New Inkscape packages fix arbitrary code execution
  171. Advisory 25/2005: phpMyAdmin Variables Overwrite Vulnerability
  172. Advisory 24/2005: libcurl URL parsing vulnerability
  173. Mobile Antivirus Researchers Assoc. Call for White Papers
  174. DRZES HMS XSS and SQL Injection Vulnerabilities
  175. Journal of Computer Virology-Call for Papers
  176. [security bulletin] SSRT4884 HP-UX TCP/IP Remote Denial of Service (DoS)
  177. [KDE Security Advisory] multiple buffer overflows in kpdf/koffice
  178. [ GLSA 200512-02 ] Webmin, Usermin: Format string vulnerability
  179. [ GLSA 200512-01 ] Perl: Format string errors can lead to code execution
  180. [security bulletin] SSRT5954 Revised - HP-UX TCP/IP Remote Denial of Service (DoS)
  181. [security bulletin] SSRT051037 HP-UX Running IPSec Remote Unauthorized Access
  182. iDefense Security Advisory 12.07.05: Dell TrueMobile 2300 Wireless
  183. Airscanner Mobile Security Advisory: Remote Hard Reset Data Wipe
  184. -Exploiting Freelist[0] On Windows XP Service Pack 2-
  185. [SECURITY] [DSA 917-1] New courier packages fix unauthorised access
  186. 3com product security hole
  187. Website Baker <=2.6.0 SQL Injection -> Login bypass -> remote
  188. = 1.2.6d blind SQL injection / remote commands execution:
  189. [security bulletin] SSRT051069 - HP Tru64 Unix Secure Web Server (SWS 6.4.1 and earlier) PHP/XMLRPC
  190. [TKPN2005-12-001] Multiple critical vulnerabilities in MyBB
  191. [KAPDA::#16] - SMF SQL Injection
  192. Milliscript 1.4 Multiple Vulnerabilities
  193. [USN-226-1] Courier vulnerability
  194. MDKSA-2005:224 - Updated curl package fixes format string vulnerability
  195. [SECURITY] [DSA 918-1] New osh packages fix privilege escalation
  196. iDefense Security Advisory 12.09.05: Ethereal OSPF Protocol Dissector
  197. Motorola SB5100E Cable Modem DoS
  198. PGP Wipe Free Space, Lyris ListManager Flaws, Windows Timestamps, Sam Juicer
  199. MDKSA-2005:225 - Updated perl package fixes format string vulnerability
  200. TSLSA-2005-0070 - multi
  201. Apani Network Response to ISAKMP cert-fi:7710 Alert
  202. Flatnuke 2.5.6 privilege escalation / remote commands execution
  203. MDKSA-2005:206-1 - Updated openvpn packages fix multiple vulnerabilities
  204. DEFCON London group - DC4420 - inaugural meeting and Christmas Drinks!
  205. Torrential 1.2 Directory Traversal
  206. [SECURITY] [DSA 919-1] New curl packages fix potential security problem
  207. BTGrup Admin WebController Script SQL injection
  208. IMOEL CMS Sql password discovery
  209. [ GLSA 200512-03 ] phpMyAdmin: Multiple vulnerabilities
  210. Guestserver guestbook system vulnerabilities
  211. Re: [Full-disclosure] [scip_Advisory] NetGear RP114 Flooding Denial ofService
  212. oracle not only offeder - researchers NOT responsible?
  213. [USN-227-1] xpdf vulnerabilities
  214. SEC Consult SA-20051211-0 :: Several XSS issues in Horde Framework,
  215. iDEFENSE Security Advisory 12.12.05: SCO Unixware Setuid 'uidadmin'
  216. [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAKMP
  217. Re: Re: [Full-disclosure] Kerio Personal Firewall and Kerio
  218. Re: [DCG] DEFCON London group - DC4420 - inaugural meeting and Christmas
  219. SEC Consult SA-20051211-0 :: Nortel SSL VPN Cross Site
  220. Arab Portal v2 Beta2 SQL Injections
  221. [PHP-CHECKER] 99 potential SQL injection vulnerabilities
  222. Status on PGP NTFS File Wipe issue, 11 Dec 2005
  223. [OpenPKG-SA-2005.028] OpenPKG Security Advisory (curl)
  224. [USN-228-1] curl library vulnerability
  225. [scip_Advisory] NetGear RP114 Flooding Denial of Service
  226. [USN-222-2] Perl vulnerability
  227. [USN-229-1] Zope vulnerability
  228. [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability
  229. [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK
  230. phpCOIN 1.2.2 multiple vulnerabilities
  231. MDKSA-2005:226 - Updated mozilla-thunderbird package fix vulnerability in enigmail
  232. Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in
  233. Secunia Research: Internet Explorer Suppressed "Download Dialog"
  234. [SECURITY] [DSA 920-1] New ethereal packages fix arbitrary code execution
  235. ADP Forum 2.0,ADP Forum 2.0.1,ADP Forum 2.0.2,ADP Forum 2.0.3
  236. RE: [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-FreeLocal Privilege Escalation Vulner
  237. LIMBO CMS <= v1.0.4.2 _SERVERarray overwrite / remote code
  238. Re: [Full-disclosure] Re: [EEYEB-20050523] Windows Kernel APC
  239. iDefense Security Advisory 12.14.05: Trend Micro ServerProtect isaNVWRequest.dll
  240. Re: [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulne
  241. iDefense Security Advisory 12.14.05: Trend Micro ServerProtect relay.dll
  242. iDefense Security Advisory 12.14.05: Trend Micro ServerProtect EarthAgent
  243. [PHP-CHECKER] 99 potential SQL injection vulnerabilities
  244. [OpenPKG-SA-2005.029] OpenPKG Security Advisory (apache)
  245. Disclosure timelines from vendors - a promising practice?
  246. Bypass XSS filter in PHPNUKE 7.9=>x
  247. iDefense Security Advisory 12.14.05: Trend Micro ServerProtect Crystal
  248. DIMVA 2006 - 2nd Call for Papers
  249. [ GLSA 200512-05 ] Xmail: Privilege escalation through sendmail
  250. [SECURITY] [DSA 921-1] New Linux 2.4.27 packages fix several vulnerabilities