PDA

Bekijk Volledige Versie : Bugtraq mailing lijst


Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 [41] 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98
  1. [eVuln] 427BB Multiple Vulnerabilities (Cookie-based
  2. MDKSA-2006:009 - Updated apache2-mod_auth_pgsql packages fix several vulnerabilities
  3. MDKSA-2006:005 - Updated xpdf packages fix several vulnerabilities
  4. MDKSA-2006:006 - Updated gpdf packages fix several vulnerabilities
  5. MDKSA-2006:008 - Updated koffice packages fix several vulnerabilities
  6. MDKSA-2006:003 - Updated poppler packages fix several vulnerabilities
  7. Research: Malware Action Detection and Protection
  8. industry standards - current status [was: what we REALLY learned
  9. [SECURITY] [DSA 933-1] New hylafax packages fix arbitrary command execution
  10. [SECURITY] [DSA 934-1] New pound packages fix multiple vulnerabilities
  11. [SECURITY] [DSA 930-2] New smstools packages fix format string vulnerability
  12. [SECURITY] [DSA 935-1] New libapache2-mod-auth-pgsql packages fix arbitrary code execution
  13. Multiple Vulnerabilities in Hummingbird Collaboration
  14. iDefense Security Advisory 01.10.06: Sun Solaris uustat Buffer Overflow
  15. [USN-239-1] libapache2-mod-auth-pgsql vulnerability
  16. [security bulletin] SSRT051058 rev.1 - HP-UX Secure Shell Remote Denial of Service (DoS)
  17. [USN-236-2] xpdf vulnerabilities in kword, kpdf
  18. [FLSA-2006:136323] Updated gettext package fixes security issues
  19. [FLSA-2006:152907] Updated htdig packages fix security issues
  20. Time modification flaw in BSD securelevels on NetBSD and Linux
  21. [FLSA-2006:152922] Updated ethereal packages fix security issues
  22. [FLSA-2006:168375] Updated mozilla packages fix security issues
  23. Malware - future trends
  24. New PEAR / Apache2Triad Exploit
  25. MDKSA-2006:004 - Updated pdftohtml packages fix several vulnerabilities
  26. Microsoft Exchange Critical Vulnerability
  27. Microsoft Outlook Critical Vulnerability
  28. Updated Advisories - Incorrect CVE Information
  29. Cisco Security Advisory: Default Administrative Password in Cisco Security Monitoring, Analysis and
  30. [EEYEB-20051031] Apple QuickTime Malformed GIF Heap Overflow
  31. [EEYEB-20051220] Apple QuickTime QTIF Stack Overflow
  32. PostgreSQL security releases 8.0.6 and 8.1.2
  33. FreeBSD Security Advisory FreeBSD-SA-06:01.texindex [REVISED]
  34. eStara Softphone SIP stack Buffer Overflow Vulnerability
  35. Advisory:XSS vulnerability on WebWiz Forums <= 6.34
  36. [eVuln] MyPhPim Arbitrary File Upload
  37. FreeBSD Security Advisory FreeBSD-SA-06:01.texindex
  38. [ GLSA 200601-06 ] xine-lib, FFmpeg: Heap-based buffer overflow
  39. [EEYEB-20051117A] Apple QuickTime STSD Atom Heap Overflow
  40. [RHSA-2006:0157-01] Low: struts security update for Red Hat Application Server
  41. MDKSA-2006:010 - Updated cups packages fix several vulnerabilities
  42. Advisory: XSS attack on Superonline.com email service.
  43. [FLSA-2006:167803] Updated mysql packages fix security issues
  44. BSD Securelevels: Circumventing protection of files flagged immutable
  45. [Full-disclosure] [USN-236-2] xpdf vulnerabilities in kword, kpdf
  46. Easy MONEY with PAYPAL in 2 weeks
  47. SUSE Security Announcement: xpdf,kpdf,gpdf,kword
  48. [USN-235-2] sudo vulnerability
  49. H-Sphere Security Vulnerability
  50. Advisory 02/2006: PHP ext/mysqli Format String Vulnerability
  51. Advisory 01/2006: PHP ext/session HTTP Response Splitting Vulnerability
  52. Cisco Security Advisory: Access Point Memory Exhaustion from ARP Attacks
  53. [SECURITY] [DSA 938-1] New koffice packages fix arbitrary code execution
  54. EUSecWest papers and CanSecWest CFP
  55. [USN-241-1] Apache vulnerabilities
  56. Session data pollution vulnerabilities in web applications
  57. Re: [Full-disclosure] Session data pollution vulnerabilities in
  58. Advisory: MiniNuke CMS System <= 1.8.2 (news.asp) SQL Injection
  59. Cisco, haven't we learned anything? (technician reset)
  60. Interspire TrackPoint NX XSS Vulnerability
  61. Multiple PHP Toolkit for PayPal Vulnerabilities
  62. FogBugz Cross Site Scripting Vulnerability
  63. [SECURITY] [DSA 937-1] New tetex-bin packages fix arbitrary code execution
  64. [SECURITY] [DSA 903-2] New unzip packages fix unauthorised permissions modification
  65. ZDI-06-001: Clam AntiVirus UPX Unpacking Code Execution Vulnerability
  66. [eVuln] TankLogger SQL Injection Vulnerability
  67. [eVuln] ACal Authentication Bypass & PHP Code Insertion
  68. [eVuln] Wordcircle Authentication Bypass
  69. Advisory: MiniNuke CMS System <= 1.8.2 (news.asp) SQL Injection
  70. [eVuln] Wordcircle Multiple SQL Injection & XSS Vulnerabilities
  71. Advisory: MiniNuke CMS System <= 1.8.2 (membership.asp) remote
  72. [USN-240-1] bogofilter vulnerability
  73. Re: industry standards - current status [was: what we REALLY learned from WMF]
  74. Fortinet Advisory - Apple QuickTime Player ImageWidth Denial of
  75. [SECURITY] [DSA 939-1] New fetchmail packages fix denial of service
  76. [SECURITY] [DSA 940-1] New gpdf packages fix arbitrary code execution
  77. [ GLSA 200601-09 ] Wine: Windows Metafile SETABORTPROC vulnerability
  78. SUSE Security Announcement: novell-nrm remote heap overflow
  79. MDKSA-2006:012 - Updated kdegraphics packages fix several vulnerabilities
  80. [ GLSA 200601-07 ] ClamAV: Remote execution of arbitrary code
  81. [ GLSA 200601-08 ] Blender: Heap-based buffer overflow
  82. Fortinet Advisory - Apple QuickTime Player StripOffsets Improper
  83. iDefense Security Advisory 01.13.06: Novell SUSE Linux Enterprise
  84. mysec.org Security Advisory : Xmame buffer overflow, with a
  85. FreeBSD Security Advisory FreeBSD-SA-06:03.cpio
  86. [FLSA-2006:152803] Updated lesstif packages fix security issues
  87. MDKSA-2006:011 - Updated tetex packages fix several vulnerabilities
  88. Serial Line Sniffer 0.4.4 Buffer Overflow
  89. FreeBSD Security Advisory FreeBSD-SA-06:04.ipfw
  90. PayPal Phishing Site Exploits Google XSS Vulnerability
  91. [Full-disclosure] [USN-236-2] xpdf vulnerabilities in kword, kpdf
  92. [eVuln] MyPhPim Multiple SQL Injection and XSS Vulnerabilities
  93. Fortinet Advisory - Apple QuickTime Player StripByteCounts Buffer
  94. Helm XSS Vulnerability
  95. ezDatabase 2.0 and below
  96. FullPath disclosure in Xaraya 1.0.1
  97. [KAPDA::#21] - HomeFtp v1.1 Denial of Service
  98. MyBB 1.0.2 SQL injection in usercp.php
  99. Hacking With The Google Search Engine
  100. [NMRC Advisory] Microsoft Windows Wireless Exposure on Laptops
  101. FreeBSD Security Advisory FreeBSD-SA-06:02.ee
  102. [SECURITY] [DSA 936-1] New libextractor packages fix arbitrary code execution
  103. [EEYEB-2000801] - Windows Embedded Open Type (EOT) Font Heap Overflow Vulnerability
  104. WMF vulnerability was a deliberate backdoor?
  105. MyBB 1.0.2 SQL injection
  106. DCP Portal Cross-Site Scripting Vulnerability
  107. AlstraSoft Template Seller Pro Cross-Site Scripting Vulnerability
  108. [eVuln] Light Weight Calendar PHP Code Execution
  109. Linksys VPN Router (BEFVP41) DoS Vulnerability
  110. DIMVA 2006 Call for Papers
  111. TSLSA-2006-0002 - multi
  112. TSL-2006-0001 - postgresql
  113. DDSN CMS Admin Panel SQL Injection Vulnerability
  114. [ISecAuditors Advisories] Arbitrary remote file creation in 123flashchat
  115. Visual Studio Remote Code Execution
  116. MDKSA-2006:013 - Updated kolab packages fix vulnerability
  117. DMA[2006-0112a] - 'Toshiba Bluetooth Stack Directory Transversal'
  118. [SECURITY] [DSA 943-1] New Perl packages fix arbitrary code execution
  119. Apache Geronimo 1.0 - CSS and persistent HTML-Injection
  120. Directory traversal in phpXplorer
  121. [SECURITY] [DSA 941-1] New tuxpaint packages fix insecure temporary file creation
  122. [eVuln] Bit 5 Blog JavaScript Insertion Vulnerability
  123. CounterPath eyeBeam Handing SIP header Vulnerabilities
  124. WehnTrust - When you have to trust Wehntrust
  125. Homeftp r1.0.7 Denial of Service
  126. [USN-242-1] mailman vulnerabilities
  127. iWar 0.07 PSTN auditing tool released...
  128. Reverse Proxy Cross Site Scripting
  129. Re: [Full-disclosure] WehnTrust - When you have to trust Wehntrust
  130. [eVuln] Benders Calendar SQL Injection
  131. [eVuln] Bit 5 Blog SQL Injection & Authentication Bypass
  132. Veritas NetBackup "Volume Manager Daemon" Module Stack Overflow -
  133. Microsoft knew about the WMF flaw for years
  134. EZDatabase Directory Transversal, XSS and Path Disclosure Vulnerability
  135. PunBB BBCode URL Tag Script Injection Vulnerability
  136. Announcement: The Web Application Firewall Evaluation Criteria v1 Released
  137. Digital Armaments Security Advisory 01.16.2006: CMU SNMP
  138. MDKSA-2006:014 - Updated wine packages fix WMF vulnerability
  139. MDKSA-2006:015 - Updated hylafax packages fix eval injection vulnerabilities
  140. MDKSA-2006:016 - Updated clamav packages fix vulnerability
  141. IndonesiaHack Advisory HTML injection in PHP Fusebox
  142. ERRATA: [ GLSA 200601-09 ] Wine: Windows Metafile SETABORTPROC vulnerability
  143. XSS in WBNews < = v1.1.0
  144. [eVuln] BlogPHP Authentication Bypass
  145. [eVuln] microBlog SQL Injection Vulnerability
  146. [eVuln] microBlog BBCode XSS Vulnerability
  147. Secunia Research: Mozilla Thunderbird Attachment Spoofing
  148. PowerPortal Cross-Site Scripting Vulnerability
  149. [SECURITY] [DSA 944-1] New mantis packages fix several vulnerabilities
  150. Re: Veritas NetBackup "Volume Manager Daemon" Module Stack Overflow - Exploit
  151. [SECURITY] [DSA 945-1] New antiword packages fix insecure temporary file creation
  152. [SECURITY] [DSA 942-1] New albatross packages fix arbitrary code execution
  153. White Album Sql &#304;njection biyosecurity.be
  154. [USN-243-1] tuxpaint vulnerability
  155. Microsoft(R) Internet Explorer 5 & 6 Remote Denial of Service
  156. Voip Learning and Translating Tutorial
  157. [HSC Security Group] Multiple SQL injection/XSS in SimpleBlog 2.1
  158. Attacking Automatic Wireless Network Selection
  159. Oracle DBMS Access Control Bypass in Login
  160. Oracle Database 10g Rel. 2 - Event 10053 logs TDE wallet password
  161. Oracle Reports - Read parts of files via desname (fixed after 874
  162. Oracle Reports - Overwrite any application server file via
  163. Oracle Critical Patch Update - January 2006
  164. Oracle Reports - Read parts of files via customize(fixed after
  165. Oracle Database 10g Rel. 2- Transparent Data Encryption plaintext
  166. [ TZO-012006 ] Checkpoint VPN-1 SecureClient insecure usage of CreateProcess()
  167. Cerberus FTP Server 2.32 Denial of Service
  168. Phpclanwebsite BBCode IMG Tag XSS Vulnerability
  169. [eVuln] CaLogic Calendars Multiple XSS Vulnerabilities
  170. [eVuln] Flog Information Disclosure Vulnerability
  171. [eVuln] aoblogger Multiple Vulnerabilities
  172. Cisco Security Advisory: IOS Stack Group Bidding Protocol Crafted Packet DoS
  173. WEP-Client-Communication-Dumbdown (WCCD) Vulnerability
  174. Cisco Security Advisory: Cisco Call Manager Denial of Service
  175. ICQ Cross Site Scripting Vulnerability
  176. XMB Forum HTML Code Injection
  177. [USN-244-1] Linux kernel vulnerabilities
  178. MyBB Signature HTML Code Injection
  179. HITBSecConf2005 Videos Released
  180. IRM 015: File system path disclosure on TYPO3 Web Content Manager
  181. Fortinet Advisory: BitComet URI Buffer Overflow Vulnerability
  182. [eVuln] WebspotBlogging Authentication Bypass Vulnerability
  183. Land Down Under Signature HTML Code Injection
  184. Cisco Security Advisory: Cisco Call Manager Privilege Escalation
  185. CAID 33756 - DM Deployment Common Component Vulnerabilities
  186. -2- [XSS] in ar-blog v 5.2
  187. Google's Blogger.com classic HTTP response splitting vulnerability
  188. Phpclanwebsite BBCode IMG Tag XSS Vulnerability
  189. [security bulletin] SSRT5971 rev.1 - HP-UX Running ftpd Remote Denial of Service (DoS)
  190. FreeBSD Security Advisory FreeBSD-SA-06:05.80211
  191. MDKSA-2006:017 - Updated mod_auth_ldap packages fix vulnerability
  192. Change passwd 3.1 (SquirrelMail plugin )
  193. Oracle Database 10g Rel. 1 - SQL Injection in SYS.KUPV$FT
  194. Oracle Database 10g Rel. 1 - SQL Injection in SYS.KUPV$FT_INT
  195. iDefense Security Advisory 01.17.06: EMC Legato Networker nsrd.exe
  196. iDefense Security Advisory 01.17.06: EMC Legato Networker nsrexecd.exe
  197. iDefense Security Advisory 01.17.06: Cisco Systems IOS 11 Web Service
  198. phpXplorer file inclusion biyosecurity.be
  199. [KDE Security Advisory] kjs encodeuri/decodeuri heap overflow
  200. MDKSA-2006:018 - Updated kernel packages fix several vulnerabilities
  201. DMA[2006-0115a] - 'AmbiCom Bluetooth Object Push Overflow'
  202. Claroline 1.7.2, sso identification vulnerability
  203. BlogPHP config.php SQL injection login bypass
  204. BlogPHP config.php SQL injection login bypass
  205. Re: Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulner
  206. [SECURITY] [DSA 948-1] New kdelibs packages fix buffer overflow
  207. MySQL 5.0 information leak?
  208. [SECURITY] [DSA 947-1] New ClamAV packages fix heap overflow
  209. [SECURITY] [DSA 946-1] New sudo packages fix privilege escalation
  210. [eVuln] RCBlog Directory Traversal & Sensitive Information Disclosure
  211. [eVuln] eggblog Multiple SQL Injection & XSS Vulnerabilities
  212. [eVuln] SaralBlog XSS & Multiple SQL Injection Vulnerabilities
  213. SUSE Security Announcement: kdelibs3 (SUSE-SA:2006:003)
  214. [eVuln] geoBlog SQL Injection Vulnerability
  215. [ GLSA 200601-10 ] Sun and Blackdown Java: Applet privilege escalation
  216. MyBB 1.0.2 Sniffing table perfix bug in search.php
  217. MyBB Signature HTML Code Injection
  218. Re: Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulner
  219. MDKSA-2006:019 - Updated kdelibs packages fix vulnerability
  220. Tumbleweed EMF 6.x Processing Issues
  221. Critical security advisory #006 tftpd32 Format string
  222. BlogPHP config.php SQL injection login bypassed
  223. [SECURITY] [DSA 949-1] New crawl packages fix potential group games execution
  224. CodeCon program announced, early registration deadline nearing
  225. [USN-245-1] KDE library vulnerability
  226. High Risk Vulnerability in Red Hat Directory Server and Red Hat Certificate Server
  227. fetchmail security announcement fetchmail-SA-2006-01
  228. [eVuln] e-moBLOG SQL Injection Vulnerability
  229. [eVuln] Note-A-Day Weblog Sensitive Information Disclosure
  230. Re: Announcement: The Web Application Firewall Evaluation Criteria
  231. ANN: New release of CORE FORCE free endpoint security package
  232. [ GLSA 200601-11 ] KDE kjs: URI heap overflow vulnerability
  233. [SECURITY] [DSA 954-1] New wine packages fix arbitrary code execution
  234. Call For Paper - SyScan'06 Singapore
  235. [SECURITY] [DSA 955-1] New mailman packages fix denial of service
  236. Workaround for unpatched Oracle PLSQL Gateway flaw
  237. HYSA-2006-001 phpBB 2.0.19 search.php and profile.php DOS
  238. Technical Note by Amit Klein: "XST Strikes Back"
  239. [eVuln] CheesyBlog XSS Vulnerability
  240. [SECURITY] [DSA 947-2] New clamav packages fix heap overflow
  241. FreeBSD Security Advisory FreeBSD-SA-06:07.pf
  242. Updated ipsec-tools packages fix vulnerability
  243. [eVuln] ExpressionEngine 'Referer' XSS Vulnerability
  244. ezmlm warning
  245. Rosiello Security - Eterm-LibAST Advisory
  246. FreeBSD Security Advisory FreeBSD-SA-06:06.kmem
  247. [security bulletin] SSRT061099 rev.1 - HP-UX Local Increased Privilege
  248. [eVuln] miniBloggie Authentication Bypass
  249. [SECURITY] [DSA 953-1] New flyspray packages fix cross-site scripting
  250. [KAPDA::#25] - MyBB 1.x Cross_Site_Scripting