Bekijk Volledige Versie : Bugtraq mailing lijst
- [security bulletin] SSRT5979 - HP-UX Running IPSec Remote Denial of Service (DoS)
- [SECURITY] [DSA 898-1] New phpgroupware packages fix several vulnerabilities
- iDEFENSE Security Advisory 11.17.05: Qualcomm WorldMail IMAP Server
- ShmooCon 2006 - Washington DC
- MDKSA-2005:213 - Updated php packages fix multiple vulnerabilities
- [SECURITY] [DSA 899-1] New egroupware packages fix several vulnerabilities
- [KAPDA::#13] - XMB HTML Injection & Path Disclosure.
- [SECURITY] [DSA 900-1] New fetchmail packages fix potential information leak
- Snagging Security Tokens to Elevate Privileges
- PHP-Fusion <= 6.00.206 Multiple Vulnerabilities
- Secunia Research: MailEnable Buffer Overflow and Directory
- Google Base
- Secunia Research: Winmail Server Multiple Vulnerabilities
- Mambo 0day Exploit out in the wild - mambo/skype hacked
- MDKSA-2005:214 - Updated gdk-pixbuf/gtk+2.0 packages fix vulnerability
- [SECURITY] [DSA 901-1] New gnump3d packages fix several vulnerabilities
- [security - exponentcms]
- [ GLSA 200511-15 ] Smb4k: Local unauthorized file access
- [TKADV2005-11-004] Multiple Cross Site Scripting vulnerabilities in phpMyFAQ
- Security Advisory: Struts Error Message Cross Site Scripting
- APBoard v [all] ---> [SQL injection]
- cracking safes with thermal imaging
- Your One-Stop Site For Sony Lawsuit Info
- Re: Work in Progress: FileZilla Server Terminal V0.9.4d Buffer
- [SECURITY] [DSA 811-2] New common-lisp-controller packages fix arbitrary code injection
- [SECURITY] [DSA 902-1] New xmail packages fix arbitrary code execution
- Google Search Appliance proxystylesheet Flaws
- Metro Olografix Crypto Meeting 2006 CFP
- [SECURITY] [DSA 903-1] New unzip packages fix unauthorised permissions modification
- [SECURITY] [DSA 904-1] New netpbm packages fix arbitrary code execution
- [SECURITY] [DSA 900-2] New fetchmail packages fix potential information leak
- Gadu-Gadu several vulnerabilities (version <= 7.20)
- Computer Terrorism Security Advisory (Reclassification) -
- IE BUG, Mozilla DOS?
- [SECURITY] [DSA 905-1] New mantis packages fix several vulnerabilities
- [SECURITY] [DSA 906-1] New sylpheed packages fix arbitrary code execution
- [ GLSA 200511-16 ] GNUMP3d: Directory traversal and insecure temporary
- [USN-217-1] Inkscape vulnerability
- [USN-190-2] ucs-snmp vulnerability
- PmWiki 2.0.12 Cross Site Scripting
- [KAPDA::#14] - PHPPost XSS and HTML Injection
- VHCS 2.x HTTP Error Cross Site Scripting
- Horde MIME Viewer vulnerability
- Exploiting the Stack (Part I-IV)
- [ GLSA 200511-17 ] FUSE: mtab corruption through fusermount
- [SECURITY] [DSA 900-3] New fetchmail-ssl packages fix potential information leak
- Secunia Research: Opera Command Line URL Shell Command Injection
- [USN-218-1] netpbm vulnerabilities
- Cisco PIX TCP Connection Prevention
- [USN-219-1] Linux kernel vulnerabilities
- OTRS 1.x/2.x Multiple Security Issues
- [security bulletin] SSRT051074 Revised - HP-UX Running xterm Local Unauthorized Access
- [SECURITY] [DSA 909-1] New horde3 packages fix cross-site scripting
- GeSWall Intrusion Prevention System 2.1 Released (Freeware)
- [SECURITY] [DSA 908-1] New sylpheed-claws packages fix arbitrary code execution
- [SECURITY] [DSA 907-1] New ipmenu packages fix insecure temporary file creation
- Google Talk Denial of Service - BenjiBug
- [ GLSA 200511-20 ] Horde Application Framework: XSS vulnerability
- [ GLSA 200511-19 ] eix: Insecure temporary file creation
- [ GLSA 200511-18 ] phpSysInfo: Multiple vulnerabilities
- XSS on Yahoo Mail
- MDKSA-2005:215 - Updated binutils packages fix vulnerabilities
- MailEnable IMAP DOS
- freeFTPd 1.0.10 (Dos,Exploit)
- Advisory 23/2005: vTiger multiple vulnerabilities
- [SECURITY] [DSA 910-1] New zope2.7 packages fix arbitrary file inclusion
- 2nd CFP: Workshops at the 1st Int. Conf. on Availability, Reliability & Security
- Secunia Research: SpeedProject Products ZIP/UUE File Extraction
- MDKSA-2005:216 - Updated fuse packages fix vulnerability
- SEC Consult SA-20051125-0 :: More Vulnerabilities in vTiger CRM
- Mandriva Security
- Advisory 23/2005: vTiger multiple vulnerabilities
- eFiction <= 2.0 multiple vulnerabilities
- [ GLSA 200511-21 ] Macromedia Flash Player: Remote arbitrary code
- XSS in PBLang 4.65 Profile.php/UCP.php
- Webistanbul Control Panel Sql Injection
- Remote file include in Athena
- Remote file include in Q-News
- Remote file include in phpgreetz
- DBTECH.ORG and SecuriyTracker.org Found to be linked to Extortion Incidents Involving Online Softwar
- [ GLSA 200511-23 ] chmlib, KchmViewer: Stack-based buffer overflow
- [ GLSA 200511-22 ] Inkscape: Buffer overflow
- ANN: Free endpoint security software released (Core FORCE 070.105)
- Guppy <= 4.5.9 Remote code execution
- WebCalendar Multiple Vulnerabilities
- Php Web Statistik Multiple Vulnerabilities
- Free Web Stat Multiple XSS Vulnerabilities
- APC Security Advisory - PowerChute Network Shutdown's Web
- ZRCSA-200503 - ktools Buffer Overflow Vulnerability
- DNS query spam
- Randshop all versiyon Sql İnjection
- - Cisco IOS HTTP Server code injection/execution vulnerability-
- Kadu remote DoS
- Google Talk cleartext credentials in process memory
- What is wrong with these people?
- Flaw in Syn Attack Protection on non-updated Microsoft OSes can
- Core FORCE and OpenBSD PF's
- Cisco Security Advisory: Cisco Security Agent Vulnerable to Privilege Escalation
- [SECURITY] [DSA 911-1] New gtk+2.0 packages fix several vulnerabilities
- [Full-disclosure] [ GLSA 200511-23 ] chmlib,
- [Full-disclosure] [ GLSA 200511-22 ] Inkscape: Buffer overflow
- [Full-disclosure] [ GLSA 200511-23 ] chmlib,
- [Full-disclosure] [ GLSA 200511-21 ] Macromedia Flash Player:
- [FLSA-2005:166943] Updated php packages fix security issues
- Re: Re: - Cisco IOS HTTP Server code injection/execution
- ASP-Rider Default.asp SQL Injection
- Webmin miniserv.pl format string vulnerability
- Xaraya <= 1.0.0 RC4 D.O.S / file corruption
- APPLE-SA-2005-11-29 Security Update 2005-009
- Panda Remote Heap Overflow
- N-13 News Remote SQL/PHP Shell injection
- possible privilege escalation on QNX Neutrino 6.3.0
- [SECURITY] [DSA 912-1] New centericq packages fix denial of service
- Gallery 2.x Security Advisory
- Opera 8.50 DoS with simple java applet
- MDKSA-2005:219 - Updated kernel packages fix numerous vulnerabilities
- MDKSA-2005:218 - Updated kernel packages fix numerous vulnerabilities
- MDKSA-2005:217 - Updated netpbm packages fix pnmtopng vulnerabilities
- MDKSA-2005:220 - Updated kernel packages fix numerous vulnerabilities
- PhpX <= 3.5.9 SQL Injection -> login bypass -> remote
- Sunbelt set to acquire Kerio Personal Firewall
- [security bulletin] SSRT4787 Revised - HP Systems Insight Manager (SIM) for HP-UX Remote Denial of S
- WebCalendar Multiple Vulnerabilities.
- Microsoft Windows CreateRemoteThread Exploit
- [SECURITY] [DSA 914-1] New horde2 packages fix cross-site scripting
- [DRUPAL-SA-2005-008] Drupal 4.6.4 / 4.5.6 fixes XSS and HTTP header injection issue
- [DRUPAL-SA-2005-007] Drupal 4.6.4 / 4.5.6 fixes XSS issue
- Edgewall Trac SQL Injection Vulnerability
- [USN-220-1] w3c-libwww vulnerability
- Perl format string integer wrap vulnerability
- [SECURITY] [DSA 913-1] New gdk-pixbuf packages fix several vulnerabilities
- [DRUPAL-SA-2005-009] Drupal 4.6.4 / 4.5.6 fixes minor access control issue
- Cisco Security Advisory: IOS HTTP Server Command Injection Vulnerability
- [SECURITY] [DSA 915-1] New helix-player packages fix arbitrary code execution
- phpMyChat Multiple XSS vulnerabilities.
- PHP-Fusion v6.00.109 SQL Injection and Info. Disclosure
- MDKSA-2005:223 - Updated webmin package fixes format string vulnerability
- [OpenPKG-SA-2005.026] OpenPKG Security Advisory (lynx)
- MDKSA-2005:221 - Updated spamassassin packages fixes vulnerability
- eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities
- [OpenPKG-SA-2005.025] OpenPKG Security Advisory (perl)
- Alisveristr E-Commerce Admin Login SQL İnjection
- MDKSA-2005:222 - Updated mailman packages fix various vulnerabilities
- [OpenPKG-SA-2005.027] OpenPKG Security Advisory (php)
- Zen-Cart <= 1.2.6d blind SQL injection / remote commands execution:
- [Updated] [FLSA-2005:166943] Updated php packages fix security issues
- DMA[2005-1202a] - 'sobexsrv - Scripting/Secure OBEX Server format
- eXtreme Styles mod <= 2.2.1 Multiple Vulnerabilities
- more MD5 colliding examples
- [USN-223-1] Inkscape vulnerability
- [scip_Advisory] e107 v0.6 rate.php manipulation
- have you ever been BluePIMped?
- [USN-180-2] MySQL 4.1 vulnerability
- [security bulletin] HPSBUX01059 SSRT4704 Revised - HP-UX Running wu-ftpd Local Unauthorized Access
- Blog System v1.2 Multiple SQL Injection Vulnerabilities
- Outpost24 Public Security Note: Linux/Elxbot
- Buffer Overflow in MultiTech VoIP Implementations
- SUSE Security Announcement: kernel various security and bugfixes
- Horde IMP Webmail Client XSS all versions
- iDefense Security Advisory 12.05.05: Multiple Vendor xpdf DCTStream Baseline Heap Overflow Vulnerabi
- iDefense Security Advisory 12.05.05: Multiple Vendor xpdf DCTStream Progressive Heap Overflow
- iDefense Security Advisory 12.05.05: Multiple Vendor xpdf JPX Stream Reader Heap Overflow Vulnerabil
- iDefense Security Advisory 12.05.05: Multiple Vendor xpdf StreamPredictor Heap Overflow Vulnerabilit
- [USN-224-1] Kerberos vulnerabilities
- [USN-225-1] Apache 2 vulnerability
- Critical Myspace.com Vulnerabilites
- [KAPDA::#15] - ThWboard multiple vulnerabilities
- SimpleBBS <= v1.1 remote commands execution in c by: unitedasia
- SugarSuite Open Source <= 4.0beta Remote code execution
- [SECURITY] [DSA 916-1] New Inkscape packages fix arbitrary code execution
- Advisory 25/2005: phpMyAdmin Variables Overwrite Vulnerability
- Advisory 24/2005: libcurl URL parsing vulnerability
- Mobile Antivirus Researchers Assoc. Call for White Papers
- DRZES HMS XSS and SQL Injection Vulnerabilities
- Journal of Computer Virology-Call for Papers
- [security bulletin] SSRT4884 HP-UX TCP/IP Remote Denial of Service (DoS)
- [KDE Security Advisory] multiple buffer overflows in kpdf/koffice
- [ GLSA 200512-02 ] Webmin, Usermin: Format string vulnerability
- [ GLSA 200512-01 ] Perl: Format string errors can lead to code execution
- [security bulletin] SSRT5954 Revised - HP-UX TCP/IP Remote Denial of Service (DoS)
- [security bulletin] SSRT051037 HP-UX Running IPSec Remote Unauthorized Access
- iDefense Security Advisory 12.07.05: Dell TrueMobile 2300 Wireless
- Airscanner Mobile Security Advisory: Remote Hard Reset Data Wipe
- -Exploiting Freelist[0] On Windows XP Service Pack 2-
- [SECURITY] [DSA 917-1] New courier packages fix unauthorised access
- 3com product security hole
- Website Baker <=2.6.0 SQL Injection -> Login bypass -> remote
- = 1.2.6d blind SQL injection / remote commands execution:
- [security bulletin] SSRT051069 - HP Tru64 Unix Secure Web Server (SWS 6.4.1 and earlier) PHP/XMLRPC
- [TKPN2005-12-001] Multiple critical vulnerabilities in MyBB
- [KAPDA::#16] - SMF SQL Injection
- Milliscript 1.4 Multiple Vulnerabilities
- [USN-226-1] Courier vulnerability
- MDKSA-2005:224 - Updated curl package fixes format string vulnerability
- [SECURITY] [DSA 918-1] New osh packages fix privilege escalation
- iDefense Security Advisory 12.09.05: Ethereal OSPF Protocol Dissector
- Motorola SB5100E Cable Modem DoS
- PGP Wipe Free Space, Lyris ListManager Flaws, Windows Timestamps, Sam Juicer
- MDKSA-2005:225 - Updated perl package fixes format string vulnerability
- TSLSA-2005-0070 - multi
- Apani Network Response to ISAKMP cert-fi:7710 Alert
- Flatnuke 2.5.6 privilege escalation / remote commands execution
- MDKSA-2005:206-1 - Updated openvpn packages fix multiple vulnerabilities
- DEFCON London group - DC4420 - inaugural meeting and Christmas Drinks!
- Torrential 1.2 Directory Traversal
- [SECURITY] [DSA 919-1] New curl packages fix potential security problem
- BTGrup Admin WebController Script SQL injection
- IMOEL CMS Sql password discovery
- [ GLSA 200512-03 ] phpMyAdmin: Multiple vulnerabilities
- Guestserver guestbook system vulnerabilities
- Re: [Full-disclosure] [scip_Advisory] NetGear RP114 Flooding Denial ofService
- oracle not only offeder - researchers NOT responsible?
- [USN-227-1] xpdf vulnerabilities
- SEC Consult SA-20051211-0 :: Several XSS issues in Horde Framework,
- iDEFENSE Security Advisory 12.12.05: SCO Unixware Setuid 'uidadmin'
- [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAKMP
- Re: Re: [Full-disclosure] Kerio Personal Firewall and Kerio
- Re: [DCG] DEFCON London group - DC4420 - inaugural meeting and Christmas
- SEC Consult SA-20051211-0 :: Nortel SSL VPN Cross Site
- Arab Portal v2 Beta2 SQL Injections
- [PHP-CHECKER] 99 potential SQL injection vulnerabilities
- Status on PGP NTFS File Wipe issue, 11 Dec 2005
- [OpenPKG-SA-2005.028] OpenPKG Security Advisory (curl)
- [USN-228-1] curl library vulnerability
- [scip_Advisory] NetGear RP114 Flooding Denial of Service
- [USN-222-2] Perl vulnerability
- [USN-229-1] Zope vulnerability
- [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability
- [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK
- phpCOIN 1.2.2 multiple vulnerabilities
- MDKSA-2005:226 - Updated mozilla-thunderbird package fix vulnerability in enigmail
- Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in
- Secunia Research: Internet Explorer Suppressed "Download Dialog"
- [SECURITY] [DSA 920-1] New ethereal packages fix arbitrary code execution
- ADP Forum 2.0,ADP Forum 2.0.1,ADP Forum 2.0.2,ADP Forum 2.0.3
- RE: [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-FreeLocal Privilege Escalation Vulner
- LIMBO CMS <= v1.0.4.2 _SERVERarray overwrite / remote code
- Re: [Full-disclosure] Re: [EEYEB-20050523] Windows Kernel APC
- iDefense Security Advisory 12.14.05: Trend Micro ServerProtect isaNVWRequest.dll
- Re: [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulne
- iDefense Security Advisory 12.14.05: Trend Micro ServerProtect relay.dll
- iDefense Security Advisory 12.14.05: Trend Micro ServerProtect EarthAgent
- [PHP-CHECKER] 99 potential SQL injection vulnerabilities
- [OpenPKG-SA-2005.029] OpenPKG Security Advisory (apache)
- Disclosure timelines from vendors - a promising practice?
- Bypass XSS filter in PHPNUKE 7.9=>x
- iDefense Security Advisory 12.14.05: Trend Micro ServerProtect Crystal
- DIMVA 2006 - 2nd Call for Papers
- [ GLSA 200512-05 ] Xmail: Privilege escalation through sendmail
- [SECURITY] [DSA 921-1] New Linux 2.4.27 packages fix several vulnerabilities