PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 [97] 98

  1. SecurityReason : PHP 5.2.6 dba_replace() destroying file
  2. [tool] Exomind v0.2 is out!
  3. [SECURITY] [DSA 1672-1] New imlib2 packages fix arbitrary code execution
  4. [SECURITY] [DSA 1673-1] New wireshark packages fix several vulnerabilities
  5. [SECURITY] [DSA 1674-1] New jailer packages fix denial of service
  6. [SECURITY] [DSA 1675-1] New phpmyadmin packages fix cross site scripting
  7. [TKADV2008-013] VLC media player RealMedia Processing Integer OverflowVulnerability
  8. /bin/login gives root to group utmp
  9. Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability
  10. Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability
  11. [BMSA 2008-09] Two buffer overflow vulnerabilities in Rumpus v6.0
  12. [USN-681-1] ImageMagick vulnerability
  13. [USN-682-1] libvorbis vulnerabilities
  14. [SECURITY] [DSA 1676-1] New flamethrower packages fix denial of service
  15. Dates for SyScan'09
  16. Cpanel fantastico Privilege Escalation "ModSec and PHP
  17. Re: /bin/login gives root to group utmp
  18. [USN-683-1] Imlib2 vulnerability
  19. [ GLSA 200812-01 ] OptiPNG: User-assisted execution of arbitrary code
  20. [ GLSA 200812-05 ] libsamplerate: User-assisted execution of arbitrary code
  21. [ GLSA 200812-06 ] libxml2: Multiple vulnerabilities
  22. [ GLSA 200812-03 ] IPsec-Tools: racoon Denial of Service
  23. [ GLSA 200812-04 ] lighttpd: Multiple vulnerabilities
  24. [ GLSA 200812-02 ] enscript: User-assisted execution of arbitrary code
  25. [ GLSA 200812-07 ] Mantis: Multiple vulnerabilities
  26. [SECURITY] [DSA 1677-1] New CUPS packages fix arbitrary code execution
  27. VMSA-2008-0019 VMware Hosted products and patches for ESX and ESXi
  28. Re: Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability
  29. [HACKATTACK Advisory 20081203]Pro Clan Manager 0.4.2 - Session
  30. [USN-684-1] ClamAV vulnerability
  31. [SECURITY] [DSA 1678-1] New perl packages fix privilege escalation
  32. [SECURITY] [DSA 1679-1] New awstats packages fix cross-site scripting
  33. [SVRT-06-08] MULTI SECURITY VULNERABILITIES IN MVNFORUM
  34. [security bulletin] HPSBUX02389 SSRT080141 rev.1 - HP-UX, Local Denial of Service (DoS)
  35. Re: [HACKATTACK Advisory 20081127]Social Impress CMS 1.1 -
  36. Re: VMSA-2008-0019 VMware Hosted products and patches for ESX and
  37. [USN-685-1] Net-SNMP vulnerabilities
  38. [USN-686-1] AWStats vulnerability
  39. Re: [USN-684-1] ClamAV vulnerability
  40. Joomla Component GameQ
  41. [ MDVSA-2008:236 ] vim
  42. Advisory 06/2008: PHP ZipArchive::extractTo() Directory Traversal Vulnerability
  43. DDIVRT-2008-18 Orb Denial of Service
  44. [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
  45. CVE-2008-2086: Java Web Start File Inclusion via System Properties
  46. [UPRSN] Ubuntu Privacy Remix 8.04r1 fixes security issues
  47. Re: XSS in Internet Explorer 6 and 7
  48. [SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities
  49. iDefense Security Advisory 12.04.08: Sun Java JRE TrueType Font Parsing
  50. Joomla Component mydyngallery
  51. iDefense Security Advisory 12.04.08: Sun Java Web Start GIF Decoding
  52. iDefense Security Advisory 12.04.08: Sun Java JRE Pack200 Decompression
  53. Re: Joomla Component GameQ
  54. [ MDVSA-2008:237 ] apache2
  55. [USN-687-1] nfs-utils vulnerability
  56. iDefense Security Advisory 12.04.08: Sun Java JRE TrueType Font Parsing
  57. ESOA CONFERENCE by digiBlitz Technologies
  58. [ MDVSA-2008:238 ] libsamplerate
  59. CVE-2008-5079: multiple listen()s on same socket corrupts the vcc
  60. RE: DDIVRT-DDIVRT-2008-15 iPhone Configuration Web Utility 1.0
  61. Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file
  62. Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file
  63. [ MDVSA-2008:239 ] clamav
  64. Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file
  65. [ GLSA 200812-08 ] Mgetty: Insecure temporary file usage
  66. SecurityReason: PHP 5.2.6 SAPI php_getuid() overload
  67. love love love love love :))
  68. [SECURITY] [DSA 1682-1] New squirrelmail packages fix cross site scripting
  69. Two XSS Flaws in PrestaShop 1.1.0.3
  70. XSS in PHPepperShop v 1.4
  71. RadAsm <=2.2.1.5 Local Command Execution
  72. Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload
  73. Multiple Vendor Anti-Virus Software Malicious WebPage Detection
  74. [DSECRG-08-040] Multiple Local File Include Vulnerabilities in Xoops 2.3.x
  75. [DSECRG-08-041] Stored XSS Vulnerability in Xoops 2.3.x
  76. Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload
  77. Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload
  78. [SVRT-07-08] Vulnerability in Face Recognition Authentication Mechanism of Lenovo-Asus-Toshiba Laptops
  79. Re: RadAsm <=2.2.1.5 Local Command Execution
  80. Neostrada Livebox Remote Network Down PoC Exploit
  81. [security bulletin] HPSBMA02391 SSRT071481 rev.1 - HP OpenView Reporter and HP Reporter Running on Windows, Remote Denial of Service (DoS)
  82. [SECURITY] [DSA 1683-1] New streamripper packages fix potential code execution
  83. [security bulletin] HPSBMA02390 SSRT071481 rev.1 - HP OpenView Performance Agent, HP Performance Agent, Remote Denial of Service (DoS)
  84. DoS Vulnerability in Aruba Mobility Controller Caused by Malformed
  85. Multiple XSRF in DD-WRT (Remote Root Command Execution)
  86. Re: [Full-disclosure] MS OWA 2003 Redirection Vulnerability - [MSRC 7368br]
  87. DoS attacks on MIME-capable software via complex MIME emails
  88. [ MDVSA-2008:236-1 ] vim
  89. PHP safe_mode can be bypassed via proc_open() and custom environment.
  90. SEC Consult SA-20081109-0 :: Microsoft SQL Server 2000
  91. rPSA-2008-0332-1 kernel
  92. Re: DoS attacks on MIME-capable software via complex MIME emails
  93. Multiple Vendor Anti-Virus Software Malicious WebPage Detection
  94. Secunia Research: Microsoft Word RTF Polyline/Polygon Integer Overflow
  95. Secunia Research: Microsoft Excel NAME Record Array Indexing Vulnerability
  96. CORE-2008-1127 - Vinagre show_error() format string vulnerability
  97. Secunia Research: Microsoft Hierarchical FlexGrid Control Integer Overflows
  98. iDefense Security Advisory 12.09.08: Microsoft Internet Explorer
  99. iDefense Security Advisory 12.09.08: Microsoft Windows Graphics Device
  100. Insomnia : ISVA-081209.1 - IE Webdav Request Parsing Heap Corruption Vulnerability
  101. ISOI 6, Dallas, TX - January 29, 30
  102. [USN-689-1] Vinagre vulnerability
  103. [USN-678-2] GnuTLS regression
  104. [SECURITY] [DSA 1684-1] New lcms packages fix multiple vulnerabilities
  105. [IVIZ-08-011] ClamAV lzh unpacking segmentation fault
  106. [IVIZ-08-012] Bitdefender antivirus for Linux multiple vulnerabilities
  107. [IVIZ-08-013] Avast antivirus for Linux multiple vulnerabilities
  108. [IVIZ-08-014] AVG antivirus for Linux vulnerability
  109. [IVIZ-08-015] Sophos Antivirus for Linux vulnerability
  110. [IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted ELF header Security Bypass
  111. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  112. Microsoft SQL Server 2005 sp_replwritetovarbin memory overwrite
  113. CORE-2008-0228: Microsoft Word Malformed FIB Arbitrary Free Vulnerability
  114. [security bulletin] HPSBUX02393 SSRT080057 rev.1 - HP-UX Running DCE, Remote Denial of Service (DoS)
  115. [ GLSA 200812-09 ] OpenSC: Insufficient protection of smart card PIN
  116. [ GLSA 200812-10 ] Archive::Tar: Directory traversal vulnerability
  117. iDefense Security Advisory 12.10.08: Microsoft Excel Malformed Object
  118. Max's Guestbook (XSS) Remote Vulnerability
  119. [ MDVSA-2008:240 ] vinagre
  120. CA ARCserve Backup LDBserver Vulnerability
  121. [ GLSA 200812-11 ] CUPS: Multiple vulnerabilities
  122. Browser Security Handbook
  123. AST-2008-012: Remote crash vulnerability in IAX2
  124. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  125. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  126. aspProductCatalog Sql Injection
  127. Meta Cart Free Database Disclosure
  128. facto Database Disclosure
  129. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  130. Re[2]: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  131. Secunia Research: CA ARCserve Backup RPC "handle_t" Argument Vulnerability
  132. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  133. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  134. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  135. Aspect9: Internet Explorer 8.0 Beta 2 Anti-XSS Filter Vulnerabilities
  136. Black Hat: New Webinar, Japan audio now on-line.
  137. Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  138. Re: Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  139. ASP-CMS v.1.0 Sql Injection/Database Disclosure
  140. rPSA-2008-0336-1 tshark wireshark
  141. Nokia N70/N73 Bluetooth Stack OBEX Implementation Denial of Service
  142. [SECURITY] [DSA 1685-1] New uw-imap packages fix multiple vulnerabilities
  143. Moodle 1.9.3 Remote Code Execution
  144. [ GLSA 200812-12 ] Honeyd: Insecure temporary file creation
  145. =?utf-8?B?V2VibWFpbCBIZWxwZGVza+KAjw==?=
  146. 93 tjxzs.com.cn.. 61
  147. 87 tjxzs.com.cn tjxzs tjxzs@hotmail.com http tjxzs.com.cn13802174064 55
  148. 99 tjxzs.com.cn 55
  149. [ GLSA 200812-13 ] OpenOffice.org: Multiple vulnerabilities
  150. [ GLSA 200812-14 ] aview: Insecure temporary file usage
  151. [SECURITY] [DSA 1686-1] New no-ip packages fix arbitrary code execution
  152. [ GLSA 200812-15 ] POV-Ray: User-assisted execution of arbitrary
  153. [ GLSA 200812-16 ] Dovecot: Multiple vulnerabilities
  154. CFAGCMS Remote File Inclusion
  155. [TKADV2008-014] MPlayer TwinVQ Processing Stack Buffer Overflow Vulnerability
  156. Re: Moodle 1.9.3 Remote Code Execution
  157. Multiple XSS Vulnerabilities in World Recipe 2.11
  158. phpList vulnerability
  159. Re: Moodle 1.9.3 Remote Code Execution
  160. TmaxSoft JEUS Alternate Data Streams Vulnerability
  161. Re: Re: Multiple XSRF in DD-WRT (Remote Root Command Execution)
  162. 27 tjxzs.com.cn 54
  163. [ MDVSA-2008:242 ] wireshark
  164. Fwd: TmaxSoft JEUS Alternate Data Streams Vulnerability
  165. [SECURITY] [DSA 1687-1] New Linux 2.6.18 packages fix several vulnerabilities
  166. [ MDVSA-2008:243 ] enscript
  167. Re: Re: Moodle 1.9.3 Remote Code Execution
  168. Re: Moodle 1.9.3 Remote Code Execution
  169. [USN-691-1] Ruby vulnerability
  170. [ GLSA 200812-17 ] Ruby: Multiple vulnerabilities
  171. CVE-2008-1094 - Barracuda Span Firewall SQL Injection Vulnerability
  172. CVE-2008-0971 - Barracuda Networks products Multiple Cross-Site
  173. Joomla: Session hijacking vulnerability, CVE-2008-4122
  174. [ GLSA 200812-18 ] JasPer: User-assisted execution of arbitrary code
  175. Re: [IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted
  176. Re: ooVoo 1.7.1.35 (URL Protocol) remote unicode buffer overflow poc
  177. 70 tjxzs.com.cn 46
  178. 01 tjxzs.com.cn 68
  179. RE: [Full-disclosure] ZDI-08-088: Oracle E-Business Suite Self-Service Web Applications SQL Injection Vulnerability
  180. n.runs-SA-2008.010 - Opera HTML parsing Code Execution
  181. Network Security Scanner OpenVAS 2.0.0 Released
  182. [ MDVSA-2008:244 ] mozilla-firefox
  183. 74 tjxzs.com.cn 31
  184. 12 tjxzs.com.cn 79
  185. [USN-690-1] Firefox and xulrunner vulnerabilities
  186. [TKADV2008-015] Sun Solaris SIOCGTUNPARAM IOCTL Kernel NULL pointer
  187. Firefox cross-domain text theft (CESA-2008-011)
  188. Re: Joomla: Session hijacking vulnerability, CVE-2008-4122
  189. [USN-692-1] Gadu vulnerability
  190. EasySiteNetwork (joke.php?id) Remote SQL injection Vulnerability
  191. [USN-693-1] LittleCMS vulnerability
  192. [SECURITY] CVE-2008-2938 - Apache Tomcat information disclosure vulnerability
  193. [USN-690-2] Firefox vulnerabilities
  194. [USN-690-3] Firefox vulnerabilities
  195. [USN-694-1] libvirt vulnerability
  196. [USN-695-1] shadow vulnerability
  197. php python extension safe_mode bypass
  198. [ MDVSA-2008:245 ] firefox
  199. CONFidence 2009, CFP
  200. [USN-696-1] Avahi vulnerabilities
  201. 70 tjxzs.com.cn 36
  202. 85 tjxzs.com.cn 42
  203. Re: CONFidence 2009, CFP
  204. SEC Consult SA-20081219-0 :: Fujitsu-Siemens WebTransactions
  205. [security bulletin] HPSBST02394 SSRT080183 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-070 to MS08-077
  206. HTC Touch vCard over IP Denial of Service
  207. PHP APC vulnerable to local attacks
  208. rPSA-2008-0338-1 cups
  209. [ GLSA 200812-19 ] PowerDNS: Multiple vulnerabilities
  210. [SECURITY] [DSA 1688-1] New courier-authlib packages fix SQL injection
  211. chicomas <=2.0.4 Multiple Vulnerabilities
  212. Re: chicomas <=2.0.4 Multiple Vulnerabilities
  213. 64 tjxzs.com.cn 21
  214. [SECURITY] [DSA 1678-2] New perl packages fix regression
  215. [USN-699-1] Blender vulnerabilities
  216. [USN-698-1] Nagios vulnerability
  217. Secunia Research: Trend Micro HouseCall "notifyOnLoadNative()" Vulnerability
  218. [USN-698-2] Nagios3 vulnerabilities
  219. POC for CVE-2008-5619 (roundcubemail PHP arbitrary code injection)
  220. [UPRSN] Ubuntu Privacy Remix 8.04r2 introduces "noexec"-mounting
  221. [SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities
  222. FreeSSHd Multiple Remote Stack Overflow Vulnerabilities
  223. Secunia Research: Trend Micro HouseCall ActiveX Control Arbitrary Code Execution
  224. [USN-697-1] Imlib2 vulnerability
  225. CoolPlayer 2.19 (Skin File) Local Buffer Overflow Exploit
  226. [USN-698-1] Nagios vulnerability
  227. CORE-2008-1210: Qemu and KVM VNC server remote DoS
  228. [SECURITY] [DSA 1689-1] New proftpd-dfsg packages fix Cross-Site Request Forgery
  229. [SECURITY] [DSA 1690-1] New avahi packages fix denial of service
  230. [ISecAuditors Security Advisories] Wordpress is vulnerable to an
  231. [ISecAuditors Security Advisories] Multiple vulnerabilities in WiFi
  232. rPSA-2008-0341-1 dovecot
  233. Re: [IVIZ-08-016] F-Secure f-prot Antivirus for Linux corrupted
  234. [ GLSA 200812-20 ] phpCollab: Multiple vulnerabilities
  235. [ MDVA-2008:241 ] mailscanner
  236. 76 tjxzs.com.cn 33
  237. 26 tjxzs.com.cn 83
  238. 73 tjxzs.com.cn 39
  239. 32 tjxzs.com.cn 99
  240. [security bulletin] HPSBST02397 SSRT080187 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-078
  241. FreeBSD Security Advisory FreeBSD-SA-08:13.protosw
  242. Re: rPSA-2008-0341-1 dovecot
  243. [USN-677-2] OpenOffice.org Internationalization update
  244. [ISecAuditors Security Advisories] PSI remote integer overflow DoS
  245. [SECURITY] [DSA 1688-2] New courier-authlib packages fix regression
  246. DDIVRT-2008-16 Citrix Broadcast Server 6.0 login.asp SQL
  247. [USN-700-1] Perl vulnerabilities
  248. [USN-698-3] Nagios vulnerabilities
  249. [ GLSA 200812-23 ] Imlib2: User-assisted execution of arbitrary code
  250. Personal Sticky Threads v1.0.3c vbulletin Add-on problem