Bekijk Volledige Versie : Bugtraq mailing lijst
- iDEFENSE Security Advisory 12.16.04: Samba smbd Security Descriptor Integer Overflow Vulnerability
- iDEFENSE Security Advisory 12.16.04: Veritas Backup Exec Agent Browser Registration Request Buffer O
- iDEFENSE Security Advisory 12.16.04: MPlayer Remote RTSP HeapOverflow Vulnerability
- [USN-39-1] Linux amd64 kernel vulnerability
- [USN-40-1] PHP vulnerabilities
- iDEFENSE Security Advisory 12.16.04: MPlayer MMST Streaming Stack Overflow Vulnerability
- Yahoo! Mail Cross-Site Scripting Vulnerability
- iDEFENSE Security Advisory 12.16.04: MPlayer Bitmap Parsing Remote Heap Overflow Vulnerability
- Hotmail Cross-Site Scripting Vulnerability #2
- Hotmail Cross-Site Scripting Vulnerability #1
- Discussion: Microsoft(R) PowerPoint “Action Settings” feature
- [OpenPKG-SA-2004.053] OpenPKG Security Advisory (php)
- [ GLSA 200412-11 ] Cscope: Insecure creation of temporary files
- [SIG^2 G-TEC] singapore Image Gallery Web Application v0.9.10
- RE: STG Security Advisory: [SSA-20041215-17] Vulnerability of uploading files with multiple exten
- Unchecked returns from kernel_read() in linux-2.6.10-rc2 kernel
- [OpenPKG-SA-2004.054] OpenPKG Security Advisory (samba)
- Gadu-Gadu, another two bugs
- NetBSD Security Advisory 2004-010: Insufficient argument validation in compat code
- [ GLSA 200412-12 ] Adobe Acrobat Reader: Buffer overflow vulnerability
- phphpbb2 + php version < 4.3.10 unserialize() memory dump sql
- 4 Vulnerabilities in GamePort
- [Full-Disclosure] Re: Linux kernel scm_send local DoS
- NetBSD kernel local vulnerabilities
- 4 Vulnerabilities in GamePort
- [OpenPKG-SA-2004.056] OpenPKG Security Advisory (cvstrac)
- Internet Explorer Code Execution Bypass Vulnerability
- [SECURITY] [DSA 610-1] New cscope packages fix insecure temporary file creation
- Bug in Crypt::ECB perl module
- [ GLSA 200412-13 ] Samba: Integer overflow
- Multiple Vulnerabilities In Kayako eSupport v2.x
- MS Windows Media Player 9 Vulns (2)
- MDKSA-2004:151 - Updated php packages fix multiple vulnerabilities
- Re: Patch available for multiple critical flaws in Oracle
- [USN-41-1] Samba vulnerability
- [ GLSA 200412-14 ] PHP: Multiple vulnerabilities
- AIX 5.1/5.2/5.3 local root exploits
- [SECURITY] [DSA 611-1] New htget packages fix arbitrary code execution
- PHP shmop.c module permits write of arbitrary memory.
- TSLSA-2004-0068 - kernel
- Security Bulletin SSRT4687 rev.0 HP-UX newgrp(1) local privilege elevation
- [ GLSA 200412-15 ] Ethereal: Multiple vulnerabilities
- Crystal FTP Pro Client Buffer Overflow
- KDE Security Advisory: Konqueror Java Vulnerability
- TSLSA-2004-0066 - multi
- Exploit for Ultrix 4.5 dxterm
- [ GLSA 200412-16 ] kdelibs, kdebase: Multiple vulnerabilities
- UPDATE: [ GLSA 200410-12 ] WordPress: HTTP response splitting and XSS vulnerabilities
- Internet Explorer Help ActiveX Control Local Zone Security
- [ GLSA 200412-17 ] kfax: Multiple overflows in the included TIFF library
- [ GLSA 200412-20 ] NASM: Buffer overflow vulnerability
- [ GLSA 200412-18 ] abcm2ps: Buffer overflow vulnerability
- [USN-42-1] Xine library vulnerabilities
- [Full-Disclosure] [ GLSA 200412-19 ] phpMyAdmin: Multiple
- [ GLSA 200412-21 ] MPlayer: Multiple overflows
- Gadu-Gadu Remote DoS (all versions)
- [ GLSA 200412-19 ] phpMyAdmin: Multiple vulnerabilities
- MDKSA-2004:153 - Updated aspell packages fix vulnerability
- MDKSA-2004:152 - Updated ethereal packages fix multiple vulnerabilities
- [SECURITY] [DSA 612-1] New a2ps packages fix arbitrary command execution
- Updated: TSLSA-2004-0068 - kernel
- [USN-43-1] groff utility vulnerabilities
- Re: [Full-Disclosure] Re: Gadu-Gadu, another two bugs
- MITKRB5-SA-2004-004: heap overflow in libkadm5srv
- TSLSA-2004-0069 - kerberos5
- [SECURITY] [DSA 614-1] New xzgv packages fix arbitrary code execution
- Re: AIX 5.1/5.2/5.3 local root exploits (diag issue)
- Xprobe 0.2.1 Released
- Re: DJB's students release 44 *nix software vulnerability
- iDEFENSE Security Advisory 12.21.04: Multiple Vendor xpdf PDF Viewer Buffer Overflow Vulnerability
- Re: phpBB Worm
- iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler Negative Read L
- iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Ov
- iDEFENSE Security Advisory 12.21.04: libtiff Directory Entry Count Integer Overflow Vulnerability
- iDEFENSE Security Advisory 12.21.04: libtiff STRIPOFFSETS Integer Overflow Vulnerability
- iDEFENSE Security Advisory 12.21.04: Hewlett Packard HP-UX ftpd Remote Buffer Overflow Vulnerability
- Re: Wordpress 1.2.2 is still vulnerable
- Re: Windows Explorer TGA Crash is a DoS bug in Internet Explorer.
- WebWorm using PHPBB vulnerability in the wild!
- Re: AIX 5.1/5.2/5.3 local root exploits (paginit issue)
- [SECURITY] [DSA 613-1] New ethereal packages fix denial of service
- [SECURITY] [DSA 615-1] New debmake package fixes insecure temporary directories
- Local versus remote security holes
- MDKSA-2004:154 - Updated kdelibs packages fix multiple vulnerability
- Sybase ASE 12.5.2 vulnerabilities
- Re: DJB's students release 44 *nix software vulnerability advisories
- malware effecting broadband users in Israel
- Java Runtime Environment Remote Denial-of-Service (DoS) Vulnerability
- MDKSA-2004:156 - Updated krb5 packages fix buffer overflow vulnerability
- Permission problem in Skype BETA for linux
- PHP v4.3.x exploit for Windows.
- Realone2.0 "pnxr3260.dll" Lets Remote Users IE Browser Crash
- [ GLSA 200412-23 ] Zwiki: XSS vulnerability
- stick with "anonymous" or "authenticated" when describing
- possible local exploit via sendmail with procmail on solaris
- Webmin BruteForce + Command execution - By Di42lo <DiAblo_2@012.net.il>
- MDKSA-2004:155 - Updated logcheck packages fix temporary file vulnerability
- MDKSA-2004:157 - Updated mplayer packages fix multiple vulnerabilities
- Security Advisory for ALL forum services with client-set images
- 2Bgal : 2.4 & 2.5.1 SQL injection Vulnerability
- Oracle Trigger Abuse (#NISR2122004I)
- Oracle ISQLPlus file access vulnerability (#NISR2122004E)
- Oracle Character Conversion Bugs (#NISR2122004G)
- Oracle extproc buffer overflow (#NISR23122004A)
- Oracle extproc directory traversal (#NISR23122004B)
- Oracle clear text passwords (#NISR2122004D)
- Oracle extproc local command execution (#NISR23122004C)
- IBM DB2 generate_distfile buffer overflow vulnerability (#NISR2122004L)
- Oracle TNS Listener DoS (#NISR2122004F)
- Oracle wrapped procedure overflow (#NISR2122004J)
- Oracle multiple PL/SQL injection vulnerabilities (#NISR2122004H)
- [OpenPKG-SA-2004.055] OpenPKG Security Advisory (gettext)
- IBM DB2 rec2xml buffer overflow vulnerability (#NISR2122004J)
- [SECURITY] [DSA 616-1] New telnetd-ssl packages fix arbitrary code execution
- Microsoft Windows Kernel ANI File Parsing Crash and DOS Vulnerability
- SHOUTcast remote format string vulnerability
- Crystal FTP Pro 2.8 PoC
- [USN-47-1] Linux kernel vulnerabilities
- Cross Site Scripting In PsychoStats 2.2.4 Beta && Earlier
- Inexcusable weakness in Kmail / GnuPG
- Re: [webmin-l] Re: Webmin BruteForce + Command execution - By
- [USN-48-1] xpdf, tetex-bin vulnerabilities
- [USN-49-1] debmake vulnerability
- [USN-51-1] teTeX auxiliary script vulnerability
- [USN-52-1] vim vulnerability
- [ Security Bulletin ] SSRT4699 rev.0 HP-UX SAM local privilege increase
- [Security Bulletin] SSRT4867 rev.0 Netscape Directory Server on HP-UX LDAP remote buffer overflow
- Microsoft Windows winhlp32.exe Heap Overflow Vulnerability
- [Security Bulletin] SSRT4876 rev.0 HP Tru64 UNIX SWS (Apache) Secure Web Server Remote
- WPkontakt message parsing error
- Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation
- [Security Bulletin] SSRT4883 rev.3 HP-UX ftp and ftpd remote unauthorized access
- [USN-50-1] CUPS vulnerabilities
- [Security Bulletin] SSRT4696 rev.0 - HP Tru64 UNIX TCP Stack Remote Denial of Service (DoS)
- [SECURITY] [DSA 618-1] New imlib packages fix arbitrary code execution
- STG Security Advisory: [SSA-20041220-16] PHP source injection and
- XSS in yacy 0.31
- [SECURITY] [DSA 617-1] New libtiff packages fix arbitrary code execution
- Final Call for Papers & Workshops - BCS Asia 2005
- New Santy-Worm attacks *all* PHP-skripts
- New Winhlp32.exe vuln
- Microsoft Internet Explorer SP2 Fully Automated Remote Compromise
- Multiple Vulnerabilities in Moodle
- MDKSA-2004:158 - Updated samba packages fix integer overflow vulnerabilities
- possible error in latest NGS realplayer advisory
- Multiple WHM Autopilot Vulnerabilities
- Did a 16-bit counter overflow shut down Comair?
- Remote code execution with parameters withoutu ser interaction, even with XP SP2
- [HAT-SQUAD] NetCat Remote Critical Vulnerability, Poc included
- Netcat v1.11 For Windows , New fixed version
- [Full-Disclosure] Java Runtime Environment Remote Denial-of-Service
- XSA-2004-7: stack overflow in AIFF demultiplexer
- KDE Security Advisory: kpdf Buffer Overflow Vulnerability
- Re: Microsoft Windows LoadImage API IntegerBuffer overflow
- QNX crrtrap arbitrary file read/write vulnerability [RLSA_06-2004]
- Sanity Worm Concepts
- php-Calendar File Include Vulnerability [ Command Exec ]
- [CLA-2004:909] Conectiva Security Announcement - netpbm
- [ GLSA 200412-26 ] ViewCVS: Information leak and XSS vulnerabilities
- [ GLSA 200412-25 ] CUPS: Multiple vulnerabilities
- Heap overflow in Mozilla Browser <= 1.7.3 NNTP code.
- [ GLSA 200412-24 ] Xpdf, GPdf: New integer overflows
- [SECURITY] [DSA 620-1] New perl packages fix several vulnerabilities
- MDKSA-2004:160 - Updated kdelibs packages fix konqueror email vulnerability
- MDKSA-2004:161 - Updated xpdf packages fix buffer overflow vulnerability
- KorWeblog php injection Vulnerability
- NetCat V 1.11 Multiple Bugs
- [SECURITY] [DSA 619-1] New xpdf packages fix arbitrary code execution
- MDKSA-2004:164 - Updated cups packages fix buffer overflow vulnerability
- MDKSA-2004:159 - Updated glibc packages fix temporary file vulnerability
- MDKSA-2004:163 - Updated kdegraphics packages fix buffer overflow vulnerability
- MDKSA-2004:165 - Updated koffice packages fix multiple vulnerabilities
- Re: Strange Java Loader (not so strange - Trojan.ByteVerify)
- MDKSA-2004:162 - Updated gpdf packages fix buffer overflow vulnerability
- MDKSA-2004:166 - Updated tetex packages fix multiple vulnerabilities
- SQL Injection Vulnerability In IBProArcade
- [EXPL] (MS04-031) NetDDE buffer overflow vulnerability PoC
- ArGoSoft FTP Server reveals valid usernames and allows for brute
- Bluetooth: BlueSnarf and BlueBug Full Disclusore
- [SECURITY] [DSA 621-1] New CUPS packages fix arbitrary code execution
- Cross Site Scripting DOS (Zyxel B-420 Ethernet Bridge)
- WHM AutoPilot Security Release [ Plus Upgrade Instructions ]
- Jacks FormMail.php remote file access vulnerability
- Windows Media files allow opening any url in Internet Explorer
- Windows LoadImage API Heapoverflow exploit
- 7a69Adv#17 - Internet Explorer FTP download path disclosure
- Various Vulnerabilities in OWL Intranet Engine
- ^ want to be an affiliate? ^iHt8qCc
- [SECURITY] [DSA 622-1] New htmlheadline package fixes insecure temporary files
- Remote DoS in GFI MailEssentials due to a bug in Microsoft HTML parser
- STG Security Advisory: [SSA-20041224-21] File extensions
- Multiple Vulnerabilities in FlatNuke
- Multiple Firewall Products Bypass Vulnerability
- 3Com 3CDaemon Multiple Vulnerabilities
- [SECURITY] [DSA 623-1] New nasm packages fix arbitrary code execution
- Serious Vulnerabilities In PhotoPost ReviewPost
- Multiple PhotoPost Pro Vulnerabilities
- [KDE Security Advisory] ftp kioslave command injection
- MyBB SQL Injection
- Socket termination, format string and XSS in Soldner Secret Wars
- QWikiwiki directory traversal vulnerability
- [SECURITY] [DSA 624-1] New zip packages fix arbitrary code execution
- [CLA-2005:910] Conectiva Security Announcement - mplayer
- [ GLSA 200501-04 ] Shoutcast Server: Remote code execution
- [ GLSA 200501-01 ] LinPopUp: Buffer overflow in message reply
- [ GLSA 200501-02 ] a2ps: Insecure temporary files handling
- [ GLSA 200501-03 ] Mozilla, Firefox, Thunderbird: Various vulnerabilities
- [SECURITY] [DSA 625-1] New pcal packages fix arbitrary code execution
- DMA[2005-0103a] - 'William LeFebvre "top" format string vulnerability'
- IBM DB2 db2fmp buffer overflow (#NISR05012005A)
- Paper: SQL Injection Attacks by Example
- IBM DB2 libdb2.so buffer overflow (#NISR05012005B)
- IBM DB2 call buffer overflow (#NISR05012005C)
- IBM DB2 JDBC Applet Server buffer overflow (#NISR05012005D)
- IBM DB2 SATADMIN.SATENCRYPT buffer overflow (#NISR05012005E)
- IBM DB2 Windows Permission Problems (#NISR05012005F)
- IBM DB2 to_char and to_date Denial Of Service (#NISR05012005G)
- IBM DB2 XML functions overflows (#NISR05012005H)
- IBM DB2 XML functions file creation vulnerabilities (#NISR05012005I)
- [ GLSA 200501-05 ] mit-krb5: Heap overflow in libkadm5srv
- [ GLSA 200501-06 ] tiff: New overflows in image decoding
- All Symantec Products All Versions Until 2005 - Remote Stack Buffer
- [SECURITY] [DSA 627-1] New namazu2 packages fix cross-site scripting vulnerability
- [SECURITY] [DSA 626-1] New tiff packages fix denial of service
- [SECURITY] [DSA 628-1] New imlib2 packages fix arbitrary code execution
- RE: All Symantec Products All Versions Until 2005 - Remote Stack Buffer Overflow
- [USN-54-1] TIFF library tool vulnerability
- Socket unreacheable in Amp II engine
- [USN-55-1] imlib2 vulnerabilities
- [ GLSA 200501-07 ] xine-lib: Multiple overflows
- [CLA-2005:913] Conectiva Security Announcement - samba
- MDKSA-2005:001 - Updated libtiff packages fix multiple vulnerabilities
- MDKSA-2005:002 - Updated wxGTK2 packages fix vulnerabilities
- MDKSA-2005:003 - Updated vim packages fix modeline vulnerabilities
- MDKSA-2005:004 - Updated nasm packages fix buffer overflow vulnerability
- [ GLSA 200501-08 ] phpGroupWare: Various vulnerabilities
- [ GLSA 200501-09 ] xzgv: Multiple overflows
- [ GLSA 200501-10 ] Vilistextum: Buffer overflow vulnerability
- WinAc AND WinHKI ZIP File Directory Transversal
- Santy and SSL
- grsecurity 2.1.0 release / 5 Linux kernel advisories
- Mozilla XBM Image Vulnerability
- Simple PHP Blog directory traversal vulnerability
- [SECURITY] [DSA 629-1] New kerberos packages fix arbitrary code execution
- Linux kernel uselib() privilege elevation, corrected
- iDEFENSE Security Advisory [IDEF0725] Exim host_aton() Buffer Overflow Vulnerability
- Troj/Winser-A malware analysis
- iDEFENSE Security Advisory [IDEF0731] Exim auth_spa_server() Buffer Overflow Vulnerability
- GeoVision Video Capture Card Quotation
- Security Advisory: Woltlab Burning Board Lite formmail.php XSS