PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 [61] 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98

  1. [ MDKSA-2006:216 ] - Updated links packages fix smb vulnerability
  2. The Classified Ad System [multiple xss & injection sql]
  3. [Full-disclosure] [ GLSA 200611-11 ] TikiWiki: Multiple
  4. New Correction: Re: Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  5. [ GLSA 200611-15 ] qmailAdmin: Buffer overflow
  6. Which is more secure? Oracle vs. Microsoft
  7. Re: [ MDKSA-2006:217 ] - Updated proftpd packages fix vulnerabilities
  8. [ GLSA 200611-16 ] Texinfo: Buffer overflow
  9. Re: [ GLSA 200611-11 ] TikiWiki: Multiple vulnerabilities
  10. Secunia Research: My Firewall Plus Privilege Escalation
  11. [KAPDA]::Security analysis of cutenews 1.4.5
  12. [SECURITY] [DSA 1218-1] New proftpd packages fix denial of service
  13. aBitWhizzy [local file include]
  14. ContentNow CMS 1.39 Sql Injection + Path Disclosure Vulnerabilities
  15. Re: Re: Phpjobscheduler 3.0 - Multiple Remote File Include
  16. [USN-384-1] OpenLDAP vulnerability
  17. [USN-382-1] Thunderbird vulnerabilities
  18. Re: Correction: Re: Serious crypto problem fixed by envelope HMAC method insteadof currently used prefix
  19. LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer
  20. Link Exchange Lite [injection sql]
  21. creadirectory [injection sql & xss]
  22. JiRos Links Manager[injection sql & xss permanent]
  23. Advisory: LDU <= 8.x Remote SQL Injection Vulnerability.
  24. Clarifying integer overflows vs. signedness errors
  25. Vulnerability in PostNuke
  26. RE: [Reversemode advisory] Computer Associates HIPS Drivers - multiple local privilege escalation vulnerabilities.
  27. Advisory: Seditio <= 1.10 Remote SQL Injection Vulnerability.
  28. [USN-381-1] Firefox vulnerabilities
  29. Re: [ GLSA 200611-11 ] TikiWiki: Multiple vulnerabilities
  30. VMSA-2006-0010 - SSL sessions not authenticated by VC Clients
  31. RE: LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability
  32. Secunia Research: PassGo SSO Plus Insecure Default Directory
  33. Re: *BSD banner INT overflow vulnerability
  34. *BSD banner INT overflow vulnerability
  35. Re: Clarifying integer overflows vs. signedness errors
  36. Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  37. "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  38. Re: [ECHO_ADV_53$2006] QnECMS <= 2.5.6 (adminfolderpath) Remote
  39. Windows Media ASX PlayList File Denial Of Service Vulnerability
  40. [ MDKSA-2006:208-1 ] - Updated openldap packages fixes Bind vulnerability
  41. Lack of environment sanitization in the FreeBSD, OpenBSD, NetBSD dynamic loaders.
  42. Re: Re: *BSD banner INT overflow vulnerability
  43. Lack of environment sanitization in the FreeBSD, OpenBSD, NetBSD dynamic loaders.
  44. Re: *BSD banner INT overflow vulnerability
  45. CONFidence 2007 CFP
  46. Perl proxy checker using samair.ru
  47. XSS in scriptat support InverseFlow Help Desk v2.31
  48. Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords
  49. Re: Lack of environment sanitization in the FreeBSD, OpenBSD, NetBSD dynamic loaders.
  50. NVIDIA nView (keystone) local Denial Of service
  51. CFP - VII National Computer and Information Security Conference
  52. [ECHO_ADV_61_2006] a-ConMan <= v3.2beta Remote File Inclusion
  53. Password Flaw also in Firefox 1.5.08. Was: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords
  54. Re: tikiwiki 1.9.5 mysql password disclosure & xss
  55. Re: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords
  56. Re: Password Flaw also in Firefox 1.5.08. Was: Big Flaw in Firefox
  57. Re: SolpotCrew Advisory #10 - phpBB XS (phpbb_root_path) Remote
  58. [ MDKSA-2006:218 ] - Updated apache-mod_auth_kerb packages fixes DoS vulnerability
  59. Re: *BSD banner INT overflow vulnerability
  60. LS-20061102 - Business Objects Crystal Reports Stack Overflow
  61. [ GLSA 200611-17 ] fvwm: fvwm-menu-directory fvwm command injection
  62. Active PHP Bookmarks (apb.php) Remote file include
  63. Cracking String Encryption in Java Obfuscated Bytecode
  64. Re: Cracking String Encryption in Java Obfuscated Bytecode
  65. mmgallery Multiple vulnerabilities
  66. [ GLSA 200611-18 ] TIN: Multiple buffer overflows
  67. Wolflab Burning Board Lite 1.0.2 two sql injections
  68. [Aria-Security Team] MidiCart ASP Plus Shopping Cart SQL Injection
  69. PHP-Nuke <= 7.9 News module "sid" SQL Injection vulnerabilities
  70. Re: Cracking String Encryption in Java Obfuscated Bytecode
  71. ezContents 2.0.3 Remote File Inclusion
  72. Cross site scripting & fullpath disclosure
  73. Re: Active PHP Bookmarks (apb.php) Remote file include
  74. [Aria-Security Team] Fixit iDMS Pro Image Gallery SQL Injection
  75. [Aria-Security Team] ASP ListPics 5.0 SQL Injection
  76. [Aria-Security Team] MidiCart ASP Shopping Cart SQL Injection
  77. [Aria-Security Team] iNews News Manager SQL Injection
  78. Re: Digipass Go3 Token Dumper (at least for 2006)
  79. [ GLSA 200611-19 ] ImageMagick: PALM and DCM buffer overflows
  80. Cahier de texte V2.0 SQL Code Execution Exploit
  81. [Aria-Security Team] Ultimate Survey Pro SQL Injection
  82. PHP-Nuke Mermaid Module V1.2 (formdisp.php) Remote File Include
  83. CPanel 11 Multiple Cross-Site Scription
  84. [ GLSA 200611-20 ] GNU gv: Stack overflow
  85. WebHost Manager (WHM) Multiple Cross-Site Scripting
  86. DoS in Microsoft Windows Live Messenger <= 8.0
  87. New Windows tool - NBTEnum 3.3
  88. Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a
  89. Re: tikiwiki 1.9.5 mysql password disclosure & xss
  90. Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair
  91. Siap Cms Sql Injection (login.asp)
  92. Wisi Portal [Sql Injection By Jesus Tovar]
  93. AttackAPI 2.0 alpha
  94. Free tool for pattern identification (for researchers)
  95. Re: Re: Digipass Go3 Token Dumper (at least for 2006)
  96. Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  97. Re: Clarifying integer overflows vs. signedness errors
  98. Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair
  99. mAlbum v0.3 local file inclusion
  100. Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair
  101. rPSA-2006-0219-1 info install-info texinfo
  102. TFTP Server 3CTftpSvc Buffer Overflow Vulnerability (Long
  103. Re: New Flaw in Firefox 2.0: DoS and possible remote code execution
  104. [Aria-Security Team] General Shopping Cart SQL Injection
  105. [ GLSA 200611-21 ] Kile: Incorrect backup file permission
  106. RE: Cracking String Encryption in Java Obfuscated Bytecode
  107. 2nd European Conference on Computer Network Defense (EC2ND)
  108. iDefense Security Advisory 11.26.06: Qbik WinGate Compressed Name
  109. CuteNews v1.4.5 (search.php) Remote file include vulnerability
  110. Re: CuteNews v1.4.5 (search.php) Remote file include vulnerability
  111. MHL-2006-003 Public Advisory: "mboard" file creation issue
  112. TFTP Server AT-TFTP Server v 1.9 Buffer Overflow Vulnerability
  113. Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  114. iDefense Security Advisory 11.26.06: GNU Radius Format String Vulnerability
  115. PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity
  116. Re: VMware 5.5.1 Local Buffer Overflow (HTML Exploit)
  117. Cursor snarfing - a new class of vulnerability and attack in Oracle
  118. where are wombats?
  119. AIDE problem handling symlinks
  120. ClickContact SQL Injection
  121. [SECURITY] [DSA 1219-1] New texinfo packages fix multiple vulnerabilities
  122. SYMSA-2006-011: JBoss Java Class DeploymentFileRepository
  123. are wombats good?
  124. GnuPG 1.4 and 2.0 buffer overflow
  125. CVE-2006-5815: remote code execution in ProFTPD
  126. Clickblog Sql Injection
  127. ClickGallery Sql Injection
  128. [SECURITY] [DSA 1220-1] New pstotext packages fix arbitrary shell command execution
  129. [ GLSA 200611-22 ] Ingo H3: Folder name shell command injection
  130. uPhotoGallery (v 1.1) SQL Injection
  131. [Aria-Security Team] Evolve shopping cart SQL Injection Vulnerability
  132. VMware 5.5.1 Local Buffer Overflow (HTML Exploit)
  133. rPSA-2006-0218-1 ImageMagick
  134. MI5 Persecution: the BBC, television and radio
  135. MI5 Persecution: bugging and counter-surveillance
  136. MI5 Persecution: Capital Radio - Chris Tarrant
  137. MI5 Persecution: cost of the operation
  138. MI5 Persecution: how and why did it start?
  139. MI5 Persecution: who knows about it?
  140. MI5 Persecution: Bernard Levin expresses his views
  141. MI5 Persecution: Bernard Levin expresses his views
  142. MI5 Persecution: abuse in set-up situations and in public
  143. MI5 Persecution: my response to the harassment
  144. Re: SYMSA-2006-011: JBoss Java Class DeploymentFileRepository Directory Traversal
  145. MI5 Persecution: their methods and tactics
  146. Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  147. MI5 Persecution: their methods and tactics
  148. MI5 Persecution: harassment at work
  149. [USN-386-1] ImageMagick vulnerability
  150. Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  151. evince buffer overflow exploit (gv)
  152. TSLSA-2006-0066 - multi
  153. ProFTPD mod_tls pre-authentication buffer overflow
  154. Re: PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity
  155. b2evolution XSS Vulnerabilities
  156. [USN-387-1] Dovecot vulnerability
  157. MI5 Persecution: BBC h2g2 online
  158. MI5 Persecution: Bizarre magazine
  159. MI5 Persecution: Financial Times
  160. MI5 Persecution: .net magazine article
  161. MI5 Persecution: Observer article
  162. MI5 Persecution: Lander on C4
  163. [ GLSA 200611-23 ] Mono: Insecure temporary file creation
  164. [ GLSA 200611-25 ] OpenLDAP: Denial of Service vulnerability
  165. [ GLSA 200611-24 ] LHa: Multiple vulnerabilities
  166. Re: PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity
  167. [USN-385-1] tar vulnerability
  168. New report on Teredo security
  169. Re: [Full-disclosure] New report on Teredo security
  170. b2evolution Remote File inclusion Vulnerability
  171. Re: ProFTPD mod_tls pre-authentication buffer overflow
  172. Re: [WEB SECURITY] The state of JavaScript Hacking
  173. Re: CuteNews v1.4.5 (search.php) Remote file include vulnerability
  174. iDefense Security Advisory 11.29.06: Horde Kronolith Arbitrary Local
  175. ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow
  176. PHP Event Calendar 1.5.1 (index.php) Remote File Include Vulnerability
  177. Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  178. MI5 Persecution: Gagged by BBC Ariels editor
  179. [ MDKSA-2006:219 ] - Updated tar packages fix vulnerability
  180. Secunia Research: Borland Products idsql32.dll Buffer Overflow
  181. MI5 Persecution: Buerk and Lewis deny their spying
  182. Multiple Vulnerabilities in AlternC version 0.9.5
  183. SYM06-023, Symantec NetBackup PureDisk: PHP update to Address Reported Security Vulnerability
  184. REMLAB Web Mech Designer 2.0.5 Path Disclosure Vulnerability
  185. MI5 Persecution: Buerk and Lewis deny their spying
  186. OWASP JBroFuzz 0.3 Fuzzer Released!
  187. MI5 Persecution: Buerk and Lewis deny their spying
  188. RE: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?)
  189. New Windows tool - PWDumpX v1.0
  190. Monkey Boards version 0.3.5 Multiple Path Disclosure Vulnerabilities
  191. MI5 Persecution: Bindman and Partners, Solicitors
  192. MI5 Persecution: A letter from MI5
  193. [Aria-Security Team] FipsSHOP SQL Injection
  194. Potentially OT: AJAX article
  195. MI5 Persecution: Home Office MI5 Liaison won't comment
  196. Re: PHP Event Calendar 1.5.1 (index.php) Remote File Include Vulnerability
  197. MI5 Persecution: Interception of Communications Tribunal Denies
  198. [USN-388-1] KOffice vulnerability
  199. [USN-389-1] GnuPG vulnerability
  200. MI5 Persecution: Correspondence with Keith Hill MP, 1997-2001
  201. MI5 Persecution: Data Protection application to Keith Hill MP, 2002
  202. MI5 Persecution: Counter-surveillance sweep by Nationwide Investigations Group
  203. MI5 Persecution: Eye Say, and Lord Gnome Answers
  204. [SECURITY] [DSA 1221-1] New libgsf packages fix arbitrary code execution
  205. [SECURITY] [DSA 1222-1] New proftpd packages fix several vulnerabilities
  206. [ MDKSA-2006:217-1 ] - Updated proftpd packages fix vulnerabilities
  207. [ISecAuditors Advisories] BlueSocket web administration is vulnerable
  208. listpics v5
  209. [ISecAuditors Security Advisories] IMAP/SMTP Injection in Hastymail
  210. Metyus Okul Ynetim Sistemi V.1.0 (tr) Sql injection Vuln.
  211. [ISecAuditors Security Advisories] XSS vulnerability in error page
  212. fl0p - passive L7 flow fingerprinting
  213. Online BookMarks Multiple SQL Injection/XSS Vulnerabilities
  214. [SECURITY] [DSA 1224-1] New Mozilla packages fix several vulnerabilities
  215. [SECURITY] [DSA 1225-1] New Mozilla Firefox packages fix several vulnerabilities
  216. SMF upload XSS vulnerability
  217. 2[xss]Vulnerabilities in Script Mobile Ac4p.com
  218. PhpMyAdmin 2.7.0-pl2 Path Disclosure | Multiple CRLF/Http
  219. MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit
  220. [SECURITY] [DSA 1226-1] New links packages fix arbitrary shell command execution
  221. Vt-Forum Lite System V.1.3 Xss Vuln.
  222. Re: UPublisher Exploit - Superfreaker
  223. [Aria-Security Team] uGestBook SQL Injection Vuln
  224. Re: Invision Gallery 2.0.7 SQL Injection Vulnerability
  225. [SECURITY] [DSA 1227-1] New Mozilla Thunderbird packages fix several vulnerabilities
  226. Multiple bugs in TFT-Gallery
  227. F-Prot Antivirus for Unix: heap overflow and Denial of Service
  228. Re: aBitWhizzy [local file include]
  229. [USN-391-1] libgsf vulnerability
  230. [ MDKSA-2006:214-1 ] - Updated gv packages fix buffer overflow vulnerability
  231. Symantec LiveState Agent for Windows vulnerability - Local Privilege Escalation
  232. [USN-392-1] xine-lib vulnerability
  233. XSS in JAB Guest Book
  234. rPSA-2006-0211-2 doxygen libpng
  235. Re: Multiple bugs in TFT-Gallery
  236. new xss in modbb forum
  237. [SECURITY] [DSA 1225-2] New Mozilla Firefox packages fix several vulnerabilities
  238. TSRT-06-14: IBM Tivoli Storage Manager Mutiple Buffer Overflow
  239. SNORT Covered channels detector patch
  240. RE: Symantec LiveState Agent for Windows vulnerability - Local Privilege Escalation
  241. [KOffice security advisory] KOffice OLEfilter integer overflow
  242. Re: MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit
  243. Re: GnuPG 1.4 and 2.0 buffer overflow
  244. Re: Evolve Merchant[ injection sql ]
  245. URL Rdirecction Bug Yahoo
  246. Re: [Aria-Security Team] uGestBook SQL Injection Vuln
  247. CYBSEC - Security Pre-Advisory: SAP Internet Graphics Service (IGS)
  248. CYBSEC - Security Pre-Advisory: SAP Internet Graphics Service (IGS)
  249. DistrRTgen 1.0 launched!
  250. Re: Symantec LiveState Agent for Windows vulnerability - Local Privilege Escalation