- ASP.NET __VIEWSTATE crypto validation prone to replay attacks
- [SECURITY] [DSA 720-1] New smartlist packages fix unauthorised un/subscription
- [HSC Security Group] ASP Inline Corporate Calendar SQL injection
- Advisories for 4 vulnerabilities addressed by Apple SU 2005-005
- Multiple SQL injections and XSS in FishCart 3.1
- Authentication bypass, sql injections and xss in ArticleLive 2005
- Golden Ftp Server Pro - Directory Traversal Vuln
- iDEFENSE Security Advisory 05.03.05: Mac OS X Server NeST -target Buffer Overflow Vulnerability
- Gossamer Threads Links SQL login XSS Vulnerability
- Multiple vulnerabilities in Merak Mail Server 8.0.3 with Icewarp
- leafnode security announcement leafnode-SA-2005-01
- Local file detection bug found through Adobe SVG Viewer
- iDEFENSE Security Advisory 05.04.05: Apple Mac OS X vpnd Server_id Buffer Overflow Vulnerability
- directory traversal in SimpleCam 1.2
- MRO Maximo v4 & v5
- MegaBook V2.0 - Cross Site Scripting Exploit
- Oracle 9i / 10g Fine Grained Auditing Issue
- Oracle 10g DBMS_SCHEDULER SESSION_USER issue
- dSMTP - SMTP Mail Server 3.1b Linux Remote Root Format String Exploit
- Multiple vulnerabilities in myBloggie 2.1.1
- Multiple Vulnerabilities In SitePanel2
- Local root vuln in VPN daemon on MacOS X
- [USN-116-1] gzip vulnerabilities
- [USN-118-1] PostgreSQL vulnerabilities
- DMA[2005-0502a] - 'Apple OSX multiple Bluetooth vulnerabilities'
- [hackgen-2005-#004] - Multiple bugs in MidiCart PHP Shopping Cart
- [USN-114-1] kimgio vulnerability
- [USN-117-1] cvs vulnerability
- [USN-115-1] Kommander vulnerability
- Mac OS 10.4: new-account-wizzard in Mail 2.0 sends clear-text passwords
- Multiple vulnearabilities in e107 cms
- [ GLSA 200505-02 ] Oops!: Remote code execution
- Sql Injection in CJ Ultra Plus v1.0.3-1.0.4
- MDKSA-2005:082 - Updated OpenOffice.org packages fix heap overflow vulnerability
- Gamespy cd-key validation system: Cd-key never in use
- Multiple Vulnerabilities In Invision Power Board
- MDKSA-2005:081 - Updated XFree86/XOrg packages fix libXpm vulnerabilities
- FreeBSD Security Advisory FreeBSD-SA-05:06.iir
- FreeBSD Security Advisory FreeBSD-SA-05:07.ldt
- FreeBSD Security Advisory FreeBSD-SA-05:08.kmem
- PHP Advanced Transfer Manager v1.21
- [SEC-1 LTD] RSA SecurID Web Agent Heap Overflow
- [USN-119-1] tcpdump vulnerabilities
- [USN-122-1] Squid vulnerability
- [USN-121-1] OpenOffice.org vulnerability
- [USN-120-1] Apache 2 vulnerability
- Secure Science Corporation Advisory CSA-056
- [USN-123-1] Xine library vulnerabilities
- [ GLSA 200505-03 ] Ethereal: Numerous vulnerabilities
- 4d WebSTAR 5.x Web Server Mac OS X Buffer Overflow
- firefox 1.0.3 spoof+auto dl
- [ GLSA 200505-04 ] GnuTLS: Denial of Service vulnerability
- [SECURITY] [DSA 723-1] New XFree86 packages fix arbitrary code execution
- PwsPHP v1.2.2 Final - Multiples vulnerabilities
- Firefox Remote Compromise Technical Details
- [SECURITY] [DSA 722-1] New smail packages fix arbitrary code execution
- NISCC Vulnerability Advisory IPSEC - 004033
- Announcement: The Web Security Mailing List
- Firefox Remote Compromise Leaked
- Re: Can't trust COMODO - An Update
- [SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow
- phpbb 2.0.15 released - patches high critical vuln
- Advanced Guestbook 2.3.1
- Easy Message Board Directory Traversal and Remote Command
- Viruses can evade Sophos Anti-Virus
- [ GLSA 200505-05 ] gzip: Multiple vulnerabilities
- [ GLSA 200505-06 ] TCPDump: Decoding routines Denial of Service vulnerability
- Esqo advisory: GeoVision Digital Video Surveillance System - Multiple
- Crash in Zoidcom 1.0 beta 4
- New Macromedia Security Zone Bulletin Posted
- TSLSA-2005-0021 - squid
- TCP/IP implementations do not adequately validate ICMP error messages
- Firefox Crash??
- [ GLSA 200505-08 ] HT Editor: Multiple buffer overflows
- Gamespy cd-key validation system: "Cd-key in use" DoS versus many
- CAIF 1.2 released
- [ GLSA 200505-07 ] libTIFF: Buffer overflow
- WowBB view_user.php SQL Injection Vulnerability
- MDKSA-2005:083 - Updated ethereal packages fix multiple vulnerabilities
- Metasploit Framework v2.4
- Cisco Security Advisory: FWSM URL Filtering Solution TCP ACL Bypass Vulnerability
- Linux kernel ELF core dump privilege elevation
- [HSC Security Group] MaxWebPortal - Multiple SQL injection/XSS
- Re: TCP/IP implementations do not adequately validate ICMP error
- [Scan Associates Advisory] Neteyes Nexusway multiple vulnerability
- Commonly used disk imaging and wiping tools can be tricked to miss
- Guesbook Pro XSS & HTML Injection
- Ethereal <= 0.10.10 SIP dissector stack overflow DoS exploit
- BakBone NetVault last warning
- OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison.
- Re: SPAM-HIGH: TCP/IP implementations do not adequately validate
- Yappa-NG Multiple Vulnerabilities
- [DR018] Quartz Composer / QuickTime 7 information leakage
- Firefox 1.0.4 released. Several vulnerabilities fixed
- Security Advisory for Bugzilla 2.18, 2.19.2, and 2.16.8
- Re: Commonly used disk imaging and wiping tools can be tricked to
- Directtopics Multiple Vulnerabilities (Security Advisory)
- MDKSA-2005:087 - Updated tcpdump packages fix multiple vulnerabilities
- MDKSA-2005:086 - Updated gaim packages fix multiple vulnerabilities
- MDKSA-2005:085 - Updated kdelibs packages fix vulnerabilities
- MDKSA-2005:084 - Updated gnutls packages fix vulnerabilities
- [ GLSA 200505-09 ] Gaim: Denial of Service and buffer overflow vulnerabilties
- Re: Linux kernel ELF core dump privilege elevation (kernel module workaround)
- [USN-124-1] Mozilla and Firefox vulnerabilities
- [USN-125-1] Gaim vulnerabilities
- [USN-124-2] Fixed packages for USN-124-1
- htdigest exploit code [bid 13537]
- [FLSA-2005:152763] Updated qt packages fixes security issues
- [FLSA-2005:152768] Updated ruby package fixes security issues
- MDKSA-2005:088 - Updated mozilla packages fix multiple vulnerabilities
- [FLSA-2005:152856] Updated sudo packages fix security issue
- [ GLSA 200505-10 ] phpBB: Cross-Site Scripting Vulnerability
- [FLSA-2005:152804] Updated openmotif packages fix image vulnerability
- [ GLSA 200505-12 ] PostgreSQL: Multiple vulnerabilities
- [ GLSA 200505-11 ] Mozilla Suite, Mozilla Firefox: Remote compromise
- Multiple Vulnerabilities in MetaCart e-Shop
- Postnuke 0.750 - 0.760rc4 local file inclusion
- DotNetNuke (Multiple XSS)
- Woltlab Burning Board SQL Injection Vulnerability
- Pico Server (pServ) Local Information Disclosure
- Pico Server (pServ) Information Disclosure Of CGI Sources
- Pico Server (pServ) Remote Command Injection
- Mac OS X - Adobe Version Cue local root exploit [c version exploit]
- [SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple
- cdrdao exploit for mandrake 10.2 ( Mandriva 2005)
- Linux kernel pktcdvd and rawdevice ioctl break user space limit vulnerability
- [CLA-2005:953] Conectiva Security Announcement - kde
- [ GLSA 200505-13 ] FreeRADIUS: Buffer overflow and SQL injection vulnerability
- OpenServer 5.0.6 OpenServer 5.0.7 : telnet client multiple issues
- MDKSA-2005:088-1 - Updated mozilla-firefox packages re-enable extensions
- Linux kernel pktcdvd ioctl break user space limit vulnerability [corrected]
- Yahoo! Messenger may be storing all session data 'Unencoded' on
- Re: Windows image size crash
- Help Center Live Vulnerabilities
- [USN-127-1] bzip2 vulnerabilities
- [SECURITY] [DSA 724-1] New phpsysinfo packages fix cross site scripting
- [USN-128-1] nasm vulnerability
- Windows (XP, 2k3, Longhorn) is vulnerable to IpV6 Land attack.
- [USN-129-1] Squid vulnerability
- Re: [SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple Vulnerabilities (09.05.05)
- Re: Yahoo! Messenger may be storing all session data 'Unencoded'
- Re: Mac OS X - Adobe Version Cue local root exploit [c version
- NOVELL ZENWORKS MULTIPLE REMØTE STACK & HEAP OVERFLOWS
- [FLSA-2005:152883] Updated mozilla packages fix security issues
- [FLSA-2005:152771] Updated pam packages fix security issue
- Security issue in Microsoft Outlook
- UnixWare 7.1.4 : Updated mozilla fixes many security issues
- MDKSA-2005:089 - Updated cdrdao packages fix local root vulnerability
- MDKSA-2005:090 - Updated nasm packages fix vulnerability
- MDKSA-2005:091 - Updated bzip2 packages fix multiple vulnerabilities
- MDKSA-2005:092 - Updated gzip packages fix several vulnerabilities
- D-Link DSL routers authentication bypass
- [SECURITY] [DSA 725-1] New ppxp packages fix local root exploit
- [ GLSA 200505-14 ] Cheetah: Untrusted module search path
- JavaMail Information Disclosure (msgno)
- UNICODE BUFFER OVERFLOW IN MS-WORD
- phpATM arbitrary PHP code inclusion
- [FLSA-2005:152815] Updated libtiff packages fix security issues
- [USN-130-1] TIFF library vulnerability
- [SECURITY] [DSA 726-1] New oops packages fix format string vulnerability
- UPDATE: [ GLSA 200504-23 ] Kommander: Insecure remote script execution
- ERRATA: [ GLSA 200505-13 ] FreeRADIUS: SQL injection and Denial of Service vulnerability
- [ GLSA 200505-15 ] gdb: Multiple vulnerabilities
- pst.advisory: gedit fun. opensource is god .lol windows
- [SECURITY] [DSA 727-1] New libconvert-uulib-perl packages fix arbitrary code execution
- picasm error handling stack overflow vulnerability
- worm "postcard" e-mail issue
- episodex guestbook security bypass & html injection
- Security contact for Trillian
- [BuHa Security] Wordpress SQL-Injection
- [UPDATE] UNICODE BUFFER OVERFLOW IN MS-WORD
- [SECURITYREASON.COM] PostNuke XSS 0.760{RC2,RC3}
- [SECURITYREASON.COM] PostNuke XSS and Full path disclosure
- [SECURITYREASON.COM] PostNuke Non Critical SQL Injection and
- pst.advisory 2005-21: gxine remote exploitable . opensource is
- [SECURITYREASON.COM] PostNuke SQL Injection 0.750=>x
- Computer Associates Vet Antivirus Library Remote Heap Overflow
- SQL injections in PortailPHP
- Cookie Cart Default Installation Multiple Vulnerabilities
- Format string and crash in Warrior Kings 1.3 and Battles 1.23
- Meteor FTP Server v1.5 Buffer Overflow
- [ GLSA 200505-17 ] Qpopper: Multiple Vulnerabilities
- [ GLSA 200505-18 ] Net-SNMP: fixproc insecure temporary file creation
- CAID 32896 - Computer Associates Vet Antivirus engine heap overflow vulnerability
- Blue Coat Reporter multiple remote vulnerabilities
- Gforge - viewFile.php security flaw
- ACROS Security: HTML Injection in BEA WebLogic Server Console (2)
- ACROS Security: HTML Injection in BEA WebLogic Server Console (1)
- Endless loop in Halo 1.06
- iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP STATUS Remote Buffer Overflow Vulnerability
- iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LSUB DoS Vulnerability
- iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LOGIN Remote Buffer Overflow Vulnerabilitie
- iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerabilit
- iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP SELECT Command DoS Vulnerability
- Javamail Multiple Information Disclosure Vulnerabilities
- [ GLSA 200505-16 ] ImageMagick, GraphicsMagick: Denial of Service
- [USN-131-1] Linux kernel vulnerabilities
- [USN-132-1] ImageMagick vulnerabilities
- [SECURITY] [DSA 728-1] New qpopper packages fix arbitrary file overwriting
- exim 4.40 exploit
- iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d Format String Vulnerability
- iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 mail header_get_field_name() Buffer Overflow
- iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d fetch_io Heap overflow Vulnerability
- iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d FETCH Command Resource Consumption DoS
- PHP Injection in PHP Poll Creator
- shtool insecure temporary file creation
- High Risk Vulnerability in L-Soft's LISTSERV Server
- OpenServer 5.0.6 OpenServer 5.0.7 : nwprint privilege escalation
- Zone Labs ZoneAlarm Vet anti-virus engine OLE processing vulnerability
- davfs2 does not honour Unix permissions
- [SECURITY] [DSA 728-2] New qpopper packages fix arbitrary file overwriting
- [SECURITY] [DSA 729-1] New PHP4 packages fix denial of service
- Alwil Software Avast Antivirus Device Driver Memory Overwrite Vulnerability
- Invision Power Board 1.* and 2.* Exploit (BID 13529)
- [ GLSA 200505-19 ] gxine: Format string vulnerability
- [USN-133-1] Apache utility vulnerability
- Buffer-overflow and crash in Terminator 3: War of the Machines 1.16
- [security bulletin] SSRT5899 rev.0 - HP-UX trusted system remote unauthorized access
- Buffer-overflow in C'Nedra 0.4.0
- [USN-134-1] Firefox vulnerabilities
- Meteor FTP Server: PoC Exploit
- Re: [Full-disclosure] iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary
- Re: ACROS Security: HTML Injection in BEA WebLogic Server Console
- [security bulletin] SSRT5954 rev.1 - HP-UX TCP/IP Remote Denial of Service (DoS)
- [security bulletin] SSRT4884 rev.0 - HP-UX TCP/IP Remote Denial of Service (DoS)
- ezmlm warning
- PHP Stat Administrative User Authentication Bypass
- PostNuke Critical SQL Injection and XSS 0.750=>x
- [USN-114-2] Fixed packages for USN-114-1
- [USN-135-1] gdb vulnerabilities
- [ GLSA 200505-20 ] Mailutils: Multiple vulnerabilities in imap4d
- [USN-136-1] binutils vulnerability
- [USN-136-2] Fixed packages for USN-136-1
- User32.dll Icon Size Crash
- [AppSecInc Advisory BEA05-V0100] BEA WebLogic Administration Console
- [AppSecInc Advisory BEA05-V0101] BEA WebLogic Administration Console
- DSL-504T (and maybe many other) remote access without password bug
- Citrix security contact
- [SECURITY] [DSA 730-1] New bzip2 packages fix file unauthorised permissions modification
- SQL Injection Exploit for myBloggie 2.1.1 - 2.1.2
- Microsoft Internet Explorer - Crash on adding sites to restricted zone (05/28/2005)
- PicoWebServer Remote Unicode Stack Overflow
- Microsoft Internet Explorer - Crash on processing embedded files with endless loop (05/28/2005)
- Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005)
- Microsoft Internet Explorer - Crash on to many stack overflows (05/28/2005)
- Format String Vulnerability In Peercast 0.1211 And Earlier
- Compuware Softice (DbgMsg driver) Local Denial Of Service
- Uk Shoppers - Discount Vouchers and Promotional Codes -
- Crash in Stronghold 2 1.2
- CYBSEC - PHPMailer Infinite Loop Denial of Service