PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 [91] 92 93 94 95 96 97 98

  1. [SECURITY] [DSA 1555-1] New iceweasel packages fix arbitrary code execution
  2. [ GLSA 200804-25 ] VLC: User-assisted execution of arbitrary code
  3. [ GLSA 200804-26 ] Openfire: Denial of Service
  4. Re: NetClassifieds Sql Injection
  5. PR07-43: Cross-domain redirect on RSA Authentication Agent
  6. PR07-44: XSS on RSA Authentication Agent login page
  7. PR07-43: Cross-domain redirect on RSA Authentication Agent
  8. PR07-44: XSS on RSA Authentication Agent login page
  9. PR07-44: XSS on RSA Authentication Agent login page
  10. [W01-0408] Realtek HD Audio Codec Drivers (Vista) - Local Privilege
  11. xine-lib NES Sound Format Demuxer Buffer Overflow
  12. PR07-44: XSS on RSA Authentication Agent login page
  13. LayerOne 2008 - Final Pre-Con Update
  14. Re: xine-lib NES Sound Format Demuxer Buffer Overflow
  15. [ GLSA 200804-28 ] JRockit: Multiple vulnerabilities
  16. Trillian 3.1 basic nick crash
  17. DDIVRT-2008-11 BadBlue uninst.exe DoS
  18. [ GLSA 200804-27 ] SILC: Multiple vulnerabilities
  19. A New Class of Vulnerability in Oracle: Lateral SQL Injection
  20. HPSBGN02333 SSRT080031 rev.1 - HP Software Update HPeDiag Running on Windows, Remote Disclosure of Information and Execution of Arbitrary Code
  21. [SECURITY] [DSA 1557-1] New phpmyadmin packages fix several vulnerabilities
  22. [SECURITY] [DSA 1556-1] New perl packages fix denial of service
  23. [SECURITY] [DSA 1534-2] New iceape packages fix regression
  24. [SECURITY] [DSA 1558-1] New xulrunner packages fix arbitrary code execution
  25. [ MDVSA-2008:091 ] - Updated wireshark packages fix denial of service
  26. Lotus expeditor rcplauncher uri handler vulnerability
  27. R.I.P. rgod
  28. [ GLSA 200804-29 ] Comix: Multiple vulnerabilities
  29. Re: Firefox 3.0 beta 5 crash
  30. Curious vulnerability in Excel 2007
  31. Re: Curious vulnerability in Excel 2007
  32. GroupWise 7 attached bugs
  33. Wordpress 2.5 Cookie Integrity Protection Vulnerability
  34. Re: Firefox 3.0 beta 5 crash (Slightly unrelated)
  35. rPSA-2008-0149-1 idle python
  36. IMF 2008 - 2nd Call for Papers
  37. Re: Simple Machines Forum "SMF Shoutbox" Mod Persistent XSS
  38. Re: Simple Machines Forum "SMF Shoutbox" Mod Persistent XSS
  39. Re: R.I.P. rgod
  40. [SECURITY] [DSA 1556-2] New perl packages fix denial of service
  41. [SECURITY] [DSA 1560-1] New kronolith2 packages fix cross site scripting
  42. GroupWise 7.0 mailto: scheme buffer overflow
  43. bug report
  44. [SECURITY] [DSA 1561-1] New ldm packages fix information disclosure
  45. Minibb 2.2a XSS Vulnerability
  46. London DEFCON meet - Thursday 1st May - DC4420
  47. Microsoft SWI blog inaccuracies
  48. [SECURITY] [DSA 1562-1] New iceape packages fix arbitrary code execution
  49. [ECHO_ADV_88$2008] Prozilla Hosting Index (directory.php cat_id)
  50. [ECHO_ADV_89$2008] Softbiz Web Host Directory Script
  51. CORE-2008-0320 - Insufficient argument validation of hooked SSDT
  52. Re: h2desk helpdesk path disclosure vulnerability
  53. [ GLSA 200804-30 ] KDE start_kdeinit: Multiple vulnerabilities
  54. SugarCRM Community Edition Local File Disclosure Vulnerability
  55. rPSA-2008-0151-1 libpng
  56. Re: Yourfreeworld Styleish Text Ads Script
  57. XSS Attack
  58. Re: R.I.P. rgod
  59. [ MDVSA-2008:092 ] - Updated gstreamer-plugins-good packages fix
  60. [ MDVSA-2008:093 ] - Updated vorbis-tools packages fix vulnerabilities
  61. [security bulletin] HPSBMA02331 SSRT080000 rev.1 - HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges
  62. Critical Vulnerability in SNMPc
  63. Re: rPSA-2008-0151-1 libpng
  64. CFP: Workshop on Open Source Software for Computer and Network Forensics
  65. heanet.dl.sourceforge.net hacked?
  66. Re: heanet.dl.sourceforge.net hacked?
  67. Re: heanet.dl.sourceforge.net hacked?
  68. Re: heanet.dl.sourceforge.net hacked?
  69. [SECURITY] [DSA 1563-1] New asterisk packages fix denial of service
  70. Re: heanet.dl.sourceforge.net hacked?
  71. Re: Re: heanet.dl.sourceforge.net hacked?
  72. Re: R.I.P. rgod
  73. XSS in AstroCam
  74. iDefense Security Advisory 04.30.08: Akamai Download Manager Arbitrary
  75. [SECURITY] [DSA 1564-1] New wordpress packages fix several vulnerabilities
  76. Team SHATTER Security Advisory: Oracle Database Buffer Overflow in
  77. mjguest 6.7 (ALL VERSION) Xss & Redirection Vuln
  78. vlBook 1.21 (ALL VERSION)
  79. Team SHATTER Security Advisory: Oracle Database SQL Injection in
  80. Team SHATTER Security Advisory: Oracle Database Buffer Overflow in
  81. [SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
  82. [SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
  83. Team SHATTER Security Advisory: Oracle Database Buffer Overflow in
  84. Team SHATTER Security Advisory: Oracle Database SQL Injection in
  85. mjguest 6.7 (ALL VERSION) Xss & Redirection Vuln
  86. php-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)
  87. Re: netOffice Dwins 1.3 Remote code execution.
  88. [SECURITY] [DSA 1566-1] New cpio packages fix denial of service
  89. BlackBook v1.0 Multiple XSS Vulnerabilities
  90. Lifetype 1.2.7 XSS Vulnerability
  91. project alumni v1.0.9 (info.php) SQL Injection Vulnerability
  92. Zomplog 3.8.2 XSS Vulnerability
  93. project alumni v1.0.9 (info.php) SQL Injection Vulnerability
  94. Zomplog 3.8.2 XSS Vulnerability
  95. Zomplog 3.8.2 XSS Vulnerability
  96. [ MDVSA-2008:095 ] - Updated OpenOffice.org packages fix
  97. chicomas.2.0.4
  98. Denial of Service in Call of Duty 4 1.5
  99. rPSA-2008-0157-1 kernel
  100. blur6ex-0.3.462 LOCAL FILE INCLUSION Vulnerbility
  101. Fixed: LiveCart SQL injection vulnerability fixed since version 1.1.2
  102. SiteXS CMS Remote File Upload Vulnerability
  103. Re: GroupWise 7.0 mailto: scheme buffer overflow
  104. Photos and Presentation Materials from HITBSecConf2008 - Dubai Released
  105. Photos and Presentation Materials from HITBSecConf2008 - Dubai Released
  106. SiteXS CMS Remote File Upload Vulnerability
  107. Photos and Presentation Materials from HITBSecConf2008 - Dubai Released
  108. SiteXS CMS Remote File Upload Vulnerability
  109. Maian Cart v1.1 XSS Vulnerabilities
  110. Maian Gallery v2.0 XSS Vulnerability
  111. Maian Search v1.1 Multiple Vulnerabilities (XSS/SQL INJECTION)
  112. Maian Guestbook v3.2 XSS Vulnerabilities
  113. Maian Gallery v2.0 XSS Vulnerability
  114. Maian Greeting v2.1 Multiple Vulnerabilities (XSS/SQL INJECTION)
  115. Maian Support v1.3 Xss Vulnerabilities
  116. Maian Recipe v1.2 Xss Vulnerabilities
  117. Maian Weblog v4.0 XSS Vulnerabilities
  118. Maian Links v3.1 XSS Vulnerabilities
  119. Multiple vulnerabilities in WebMod 0.48
  120. Maian Music v1.1 Multiple Vulnerabilities (Xss/SQL Injection)
  121. Microsot DID DISCLOSE potential Backdoor
  122. [USN-606-1] CUPS vulnerability
  123. Novell eDirectory unauthenticated access to SOAP interface
  124. [SECURITY] [DSA 1568-1] New b2evolution packages fix cross site scripting
  125. [ECHO_ADV_94$2008] Kmita Mail <= 3.0 (file) Remote File
  126. [ECHO_ADV_90$2008] PostNuke Module pnEncyclopedia <= 0.2.0 (id)
  127. Novell eDirectory DoS via HTTP headers
  128. LifeType 1.2.8
  129. Scout Portal Toolkit <= 1.4.0 (ParentId) Remote SQL Injection Exploit
  130. Maian Uploader v4.0 XSS Vulnerabilities
  131. [ECHO_ADV_93$2008] Kmita Tellfriend <= 2.0 (file) Remote File
  132. CORE-2008-0129 - Wonderware SuiteLink Denial of Service vulnerability
  133. Computer Internet Security Software
  134. [ECHO_ADV_95$2008] BackLinkSpider (cat_id) Blind Sql Injection
  135. [ GLSA 200805-01 ] Horde Application Framework: Multiple vulnerabilities
  136. Re: Re: GroupWise 7.0 mailto: scheme buffer overflow
  137. Security Advisory for Bugzilla 3.0.3, 3.1.3, 2.22.3, and 2.20.5
  138. Advisory SE-2008-02: PHP GENERATE_SEED() Weak Random Number Seed Vulnerability
  139. [ GLSA 200805-02 ] phpMyAdmin: Information disclosure
  140. [SECURITY] [DSA 1569-2] New cacti packages fix regression
  141. [SECURITY] [DSA 1569-1] New cacti packages fix multiple vulnerabilities
  142. Advisory SE-2008-03: PHP Multibyte Shell Command Escaping Bypass Vulnerability
  143. [ECHO_ADV_91$2008] Online Rental Property Script <= 4.5 (pid)
  144. [SECURITY] [DSA 1554-2] New roundup packages fix regression
  145. [SECURITY] [DSA 1567-1] New blender packages fix arbitrary code execution
  146. [ECHO_ADV_92$2008] Anserv Auction XL (viewfaqs.php cat) Blind Sql
  147. [tool announcement] tmin - a handy fuzzing test case optimizer
  148. HPSBUX02324 SSRT080034 rev.1 - HP-UX Running Netscape Directory Server (NDS), Local Gain Extended Privileges
  149. RE: Microsot DID DISCLOSE potential Backdoor
  150. HPSBUX02332 SSRT080056 rev.1 - HP-UX running Apache with PHP, Remote Denial of Service (DoS), Gain Extended Privileges
  151. [security bulletin] HPSBMA02331 SSRT080000 rev.2 - HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges
  152. [USN-608-1] KDE vulnerability
  153. Invitation - OWASP AppSec Europe May 19-22 2008 - Belgium
  154. QTOFileManager V 1.0<== Remote File Upload Vulnerability
  155. [USN-607-1] Emacs vulnerabilities
  156. Re: Lifetype 1.2.7 XSS Vulnerability
  157. Power Editor LOCAL FILE INCLUSION Vulnerbility
  158. [SECURITY] [DSA 1570-1] New kazehakase packages fix execution of arbitrary
  159. [USN-605-1] Thunderbird vulnerabilities
  160. Sphider 1.3.4 Cross Site Scripting
  161. mvnForum 1.1 Cross Site Scripting
  162. [ MDVSA-2008:097 ] - Updated kdelibs packages fix vulnerability in
  163. [ MDVSA-2008:096 ] - Updated emacs packages fix vulnerability in vcdiff
  164. [ MDVSA-2008:098 ] - Updated openssh packages fix vulnerability
  165. [Advisory Update]Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability
  166. rPSA-2008-0157-1 kernel
  167. Adobe Acrobat Professional Javascript For PDF Security Feature Bypass and Memory Corruption Vulnerabilities
  168. rPSA-2008-0162-1 kernel
  169. [USN-609-1] OpenOffice.org vulnerabilities
  170. [USN-610-1] LTSP vulnerability
  171. [ GLSA 200805-03 ] Multiple X11 terminals: Local privilege escalation
  172. Multiple XSS In TuxCMS All Version
  173. Re: QTOFileManager V 1.0<== Remote File Upload Vulnerability
  174. VBZooM <=V1.11 "reply.php" SQL Injection Vulnerability
  175. RE: Microsot DID DISCLOSE potential Backdoor
  176. Re: Microsot DID DISCLOSE potential Backdoor
  177. Re: Microsot DID DISCLOSE potential Backdoor
  178. Vulnerability in Multiple Web Application
  179. Exploiting Google MX servers as Open SMTP Relays
  180. Re: After 6 months - fix available for Microsoft DNS cache poisoning
  181. Novell Client <= 4.91 SP4 Local Stack overflow / B.S.O.D
  182. Re: [ECHO_ADV_91$2008] Online Rental Property Script <= 4.5 (pid)
  183. [ GLSA 200805-04 ] eGroupWare: Multiple vulnerabilities
  184. [USN-611-1] Speex vulnerability
  185. FLEA-2008-0008-1 firefox
  186. [USN-611-2] vorbis-tools vulnerability
  187. iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop process_redirect_pdu()
  188. iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop channel_process()
  189. iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop iso_recv_msg()
  190. ezContents CMS Version 2.0.0 SQL Injection Vulnerabilities
  191. Re: After 6 months - fix available for Microsoft DNS cache
  192. ZYWALL Referer Header XSS Vulnerability
  193. [USN-611-3] GStreamer Good Plugins vulnerability
  194. Apache Server HTML Injection and UTF-7 XSS Vulnerability
  195. XSS and CSRF vulnerability on Cpanel 11
  196. [ GLSA 200805-08 ] InspIRCd: Denial of Service
  197. Oracle Application Server 10G ORA_DAV Basic Authentication Bypass Vulnerability
  198. [ GLSA 200805-06 ] Firebird: Data disclosure
  199. FInal EUSecWest 2008 Speakers
  200. [ MDVSA-2008:099 ] - Updated ImageMagick packages fix vulnerabilities
  201. [ GLSA 200805-07 ] Linux Terminal Server Project: Multiple vulnerabilities
  202. SazCart <= 1.5.1 (prodid) Remote SQL Injection Exploit
  203. Re: Apache Server HTML Injection and UTF-7 XSS Vulnerability
  204. Re: Exploiting Google MX servers as Open SMTP Relays
  205. OtherLogic[vocourse.php]SQL Injection Exploit
  206. Re: Exploiting Google MX servers as Open SMTP Relays
  207. [USN-612-2] OpenSSH vulnerability
  208. TPTI-08-04: Microsoft Office Jet Database Engine Column Parsing Stack Overflow Vulnerability
  209. iDefense Security Advisory 05.13.08: Microsoft Word CSS ProcessingMemory Corruption Vulnerability
  210. [ GLSA 200805-14 ] Common Data Format library: User-assisted executionof arbitrary code
  211. Cisco BBSM Captive Portal Cross-site Scripting
  212. Microsoft Office Publisher PUB File Parsing Remote Memory Corruption Vulnerability
  213. Malformed Acrobat Distiller 8 .joboptions
  214. CFP: European Conference on Computer Network Defense
  215. Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities
  216. [ GLSA 200805-15 ] libid3tag: Denial of Service
  217. Cisco Security Advisory: Cisco Content Switching Module Memory Leak Vulnerability
  218. Cisco Security Advisory: Cisco Unified Presence Denial of Service Vulnerabilities
  219. Correction to BID 29112 "Apache Server HTML Injection and UTF-7 XSSVulnerability"
  220. [ GLSA 200805-16 ] OpenOffice.org: Multiple vulnerabilities
  221. Re: Re: Re: Apache Server HTML Injection and UTF-7 XSS Vulnerability
  222. Kostenloses Linkmanagementscript SQL Injection Vulnerabilities
  223. Debian generated SSH-Keys working exploit
  224. Aruba Mobility Controller TACACS User Authentication and Cross Site
  225. Re: Re: Re: Apache Server HTML Injection and UTF-7 XSS Vulnerability
  226. SunShop Version 3.5.1 Remote Blind Sql Injection
  227. Symantec Altiris Client Service Local Exploit (0day)
  228. Debian OpenSSL Predictable Random Number Generator and Update
  229. Pet Grooming Management System "useradded.php" Security Bypass
  230. Pet Grooming Management System "useradded.php" Security Bypass
  231. Oracle Application Server Portal Authentication Bypass
  232. Hack.lu 2008 CfP
  233. [ MDVSA-2008:102 ] - Updated libvorbis packages fix vulnerabilities
  234. [ MDVSA-2008:101 ] - Updated rdesktop packages fix vulnerabilities
  235. StanWeb.CMS (default.asp id) Remote SQL Injection Exploit
  236. IOS rootkits
  237. CFP for HITBSecConf2008 - Malaysia now open
  238. PHP-Nuke Module KuraniKerim [sid] SQL Injection
  239. Re: Re: Re: Re: Apache Server HTML Injection and UTF-7 XSSVulnerability
  240. Cpanel all version >> root access with a reseller account.
  241. Re: Apple iPhone 1.1.3 remote DoS exploit
  242. Smeego CMS vulnerability
  243. Re: Re: Re: Re: Re: Apache Server HTML Injection and UTF-7 XSSVulnerability
  244. Wordpress Malicious File Execution Vulnerability
  245. DoS attacks using SQL Wildcards - White Paper
  246. Microsoft word javascript execution
  247. Re: Cpanel all version >> root access with a reseller account.
  248. [ MDVSA-2008:103 ] - Updated libid3tag packages fix denial of servicevulnerability
  249. [security bulletin] HPSBST02336 SSRT080071 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-026 to MS08-029
  250. Mtr - remote and local stack overflow - uncomment situation inlibresolv.