PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 [44] 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98

  1. =?windows-1251?Q?NSA_Group_Security_Advisory_NSAG-=B9202-25.02.2006_Vulnerability_WEBSITE?=
  2. [FLSA-2006:138098] Updated nfs-utils package fixes security issues
  3. [FLSA-2006:158543] Updated gaim package fixes security issues
  4. [FLSA-2006:176731] Updated perl packages fix security issue
  5. ArGoSoft FTP server remote heap overflow
  6. [waraxe-2006-SA#047] - Evading sql-injection filters in phpNuke 7.8
  7. PwsPHP Injection SQL on Index.php
  8. SQL Injection in DCI-Taskeen
  9. Re: Amazon phishing scam on Yahoo servers
  10. announcement: reporting and mitigating botnets
  11. Re: DarkStarlings.com XSS Vulnerability
  12. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  13. Re: H&R Block contact
  14. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  15. Re: Amazon phishing scam on Yahoo servers
  16. Re: Amazon phishing scam on Yahoo servers
  17. Re: Vulnerabilites in new laws on computer hacking
  18. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  19. Research paper on covert channels
  20. Re: [Full-disclosure] Quarantine your infected users spreading malware
  21. [ GLSA 200602-13 ] GraphicsMagick: Format string vulnerability
  22. [ GLSA 200602-14 ] noweb: Insecure temporary file creation
  23. [USN-258-1] PostgreSQL vulnerability
  24. Archive_Zip (Zip file management class) Directory traversal
  25. Norton Monitoring Systems funny problems
  26. Re: PwsPHP Injection SQL on Index.php
  27. Archangel Weblog 0.90.02 Admin Authentication Bypass & Remote
  28. Thomson SpeedTouch 500 modems vulnerable to XSS
  29. [eVuln] Quirex Arbitrary File Disclosure Vulnerability
  30. phpRPC Library Remote Code Execution
  31. Mail Transport System Professional--Open Relay Hole
  32. 2 SQL Injection in Fantastic News
  33. [SECURITY] [DSA 982-1] New gpdf packages fix several vulnerabilities
  34. CGI Calendar XSS Vulnerability
  35. Re: [eVuln] Vanilla Guestbook Multiple XSS & SQL Injection
  36. Secunia Research: ArGoSoft Mail Server Pro viewheaders Script
  37. Knowledgebases Remote Command Exucetion
  38. [ISecAuditors Advisories] IMAP/SMTP Injection in SquirrelMail
  39. 2 SQL Injection in d3jeeb
  40. PixelArtKingdom TopSites Remote Command Exucetion
  41. directory traversal in DirectContact 0.3b
  42. Re: Bypass Fortinet anti-virus using FTP
  43. [ MDKSA-2006:049 ] - Updated squirrelmail packages fix vulnerabilities
  44. NETGEAR WGT624 Wireless DSL router default user name/password
  45. NETGEAR WGT624 Wireless DSL Firewall/Router vulnerability
  46. Re: URL filter bypass in Fortinet
  47. RE: Vulnerabilites in new laws on computer hacking
  48. [eVuln] PerlBlog Multiple Vulnerabilities
  49. [FLSA-2006:177326] Updated mod_auth_pgsql package fixes security issue
  50. [ MDKSA-2005:050 ] - Updated unzip packages fix vulnerabilities
  51. [FLSA-2006:177694] Updated auth_ldap package fixes security issue
  52. [SECURITY] [DSA 983-1] New pdftohtml packages fix several vulnerabilities
  53. [FLSA-2006:157366] Updated PostgreSQL packages fix security issues
  54. WordPress 2.0.1 Multiple Vulnerabilities
  55. [FLSA-2006:175818] Updated udev packages fix a security issue
  56. Sourceforge XSS
  57. Re: NETGEAR WGT624 Wireless DSL router default user name/password
  58. Fedex Kinkos Smart Card Authentication Bypass
  59. [FLSA-2006:181014] Updated gnutls packages fix a security issue
  60. FarsiNews 2.5Pro Exploit
  61. EJ3 TOPo - Cross Site Scripting Vulnerability
  62. MyBB 1.3 NewSQL Injection
  63. QwikiWiki v1.4 XSS Vulnerability
  64. (PHP) imap functions bypass safemode and open_basedir restrictions
  65. (PHP) mb_send_mail security bypass
  66. [security bulletin] SSRT061118 rev.1 - HP System Management Homepage (SMH) Running on Windows: Remote Unauthorized Access
  67. Re: NETGEAR WGT624 Wireless DSL router default user name/password
  68. Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities
  69. Virex on-access scanning unreliable
  70. [ MDKSA-2006:051 ] - Updated gettext packages fix temporary file vulnerabilities
  71. PEHEPE Membership Management System Multiple Vulnerabilities
  72. Re: [Full-disclosure] Mozilla Thunderbird : Multiple Information
  73. recursive DNS servers DDoS as a growing DDoS problem
  74. bttlxeForum 2.* XSS Vulnerability
  75. Re: Bypass Fortinet anti-virus using FTP
  76. Re: [Full-disclosure] Mozilla Thunderbird : Multiple Information
  77. Re: [Full-disclosure] Mozilla Thunderbird : Multiple Information
  78. FreeBSD Security Advisory FreeBSD-SA-06:09.openssh
  79. Limbo CMS code execution
  80. Re: ArGoSoft FTP server remote heap overflow
  81. FreeBSD Security Advisory FreeBSD-SA-06:10.nfs
  82. Updated Noah Classifieds Component for Joomla!/Mambo
  83. FreeBSD Security Advisory FreeBSD-SA-06:09.openssh [REVISED]
  84. Re: Fedex Kinkos Smart Card Authentication Bypass
  85. Re: [Full-disclosure] Mozilla Thunderbird : Multiple Information
  86. Re: Knowledgebases Remote Command Exucetion
  87. [eVuln] Leif M. Wright's Blog Multiple Vulnerabilities
  88. SAP Web Application Server http request url parsing vulnerability
  89. Re: Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities
  90. Secunia Research: Lighttpd Script Source Disclosure Vulnerability
  91. Re: WordPress 2.0.1 Multiple Vulnerabilities
  92. Evolution Emailer DoS
  93. Re: ArGoSoft FTP server remote heap overflow
  94. Evil side of Firefox extensions
  95. Re: NETGEAR WGT624 ? Wireless DSL router default user
  96. Re: Evil side of Firefox extensions
  97. 4images <=1.7.1 remote code execution
  98. Re: recursive DNS servers DDoS as a growing DDoS problem
  99. Re: Evil side of Firefox extensions
  100. Re: Evil side of Firefox extensions
  101. Re: Evil side of Firefox extensions
  102. Re: Evil side of Firefox extensions
  103. Secunia Research: NetworkActiv Web Server Script Source Disclosure
  104. Re: [Full-disclosure] Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities
  105. NCP VPN/PKI Client - various Bugs
  106. Fwd: APPLE-SA-2006-03-01 Security Update 2006-001
  107. Re: (PHP) mb_send_mail security bypass
  108. SMBlog Remote Command Exucetion
  109. Re: [Full-disclosure] Quarantine your infected users spreading
  110. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  111. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  112. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  113. Re: PHP as a secure language? PHP worms? [was: Re: new linux malware]
  114. FW: WordPress 2.0.1 Multiple Vulnerabilities
  115. RE: Evil side of Firefox extensions
  116. Re: WordPress 2.0.1 Multiple Vulnerabilities
  117. Re: WordPress 2.0.1 Multiple Vulnerabilities
  118. Re: Evil side of Firefox extensions
  119. Advisory: ICQmail.com & Mail2World.com (ms_inbox.asp
  120. [USN-259-1] irssi vulnerability
  121. [FLSA-2006:178989] Updated perl-DBI package fixes security issue
  122. Re: [KAPDA::#27] - Runcms 1.x Cross_Site_Scripting vulnerability
  123. [OSX]: /usr/bin/passwd local root exploit.
  124. Re: recursive DNS servers DDoS as a growing DDoS problem
  125. [KAPDA::#26]vBulletin.3.5.3~3.0.12-XSS
  126. [SECURITY] [DSA 980-1] New tutos package fixes several vulnerabilities
  127. [SECURITY] [DSA 984-1] New xpdf packages fix several problems
  128. Re: FW: WordPress 2.0.1 Multiple Vulnerabilities
  129. PluggedOut Nexus SQL injection
  130. JOOMLA CMS 1.0.7 DoS & path disclosing
  131. Re: NETGEAR WGT624 Wireless DSL router default user name/password
  132. Re: Fedex Kinkos Smart Card Authentication Bypass
  133. ProtoVer Sample IMAP testsuite release
  134. [eVuln] E-Blah Platinum 'Referer' XSS Vulnerability
  135. [SECURITY] [DSA 981-1] new bmv packages fix arbitrary code execution
  136. Woltlab Burning Board 2.x (Datenbank MOD fileid) Multiple
  137. [ MDKSA-2006:052 ] - Updated mozilla-thunderbird packages fix vulnerability
  138. Re: recursive DNS servers DDoS as a growing DDoS problem
  139. iDefense Security Advisory 03.02.06: Apple MacOS X BOMArchiveHelper
  140. vBulletin3.0.12&3.5.3~is_valid_email()~XSS Attack
  141. MyBB 1.0.4 New SQL Injection
  142. sql in Dawaween V 1.03
  143. RE: [Full-disclosure] Mozilla Thunderbird : Multiple Information
  144. iDefense Security Advisory 03.02.06: Apple Mac OS X passwd Arbitrary
  145. iDefense Security Advisory 03.02.06: EMC Dantz Retrospect 7 Backup
  146. MyBB 1.04 Perl Exploit
  147. Gallery 2 Multiple Vulnerabilities
  148. Gregarius 0.5.2 XSS and SQL Injection Vulnerabilities
  149. [eVuln] Skate Board Multimple Vulnerabilities
  150. XST-Strikes-Back vulnerability in Netcache
  151. AZTEK forums 4.0 multiple vulnerabilities (PoC)
  152. Re: Guestbox XSS/an admin bypass
  153. Re: Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities
  154. Gregarius 0.5.2 XSS and SQL Injection Vulnerabilities
  155. Kaspersky Memory/CPU Usage Leak by design
  156. [ GLSA 200603-02 ] teTeX, pTeX, CSTeX: Multiple overflows in included
  157. phpArcadeScript XSS Injections
  158. Various router DoS
  159. [ GLSA 200603-01 ] WordPress: SQL injection vulnerability
  160. [eVuln] Easy Forum XSS Vulnerability
  161. phpBB <= 2.0.19 Multiple DoS vulnerabilities
  162. Pixel Post Multiple Vulnerabilities
  163. AVG 7 granting Everyone Full Control to updated files... even its
  164. [KAPDA::#30] - CuteNews1.4.1 Cross_Site_Scripting Vulnerability
  165. Advisory: TotalECommerce (index.asp id) Remote SQL Injection
  166. PHP-Stats <= 0.1.9.1 remote commands execution
  167. Wbb 2.3. xss
  168. Visual Studio 6.0 Buffer Overflow Vulnerability
  169. Re: Kaspersky Memory/CPU Usage Leak by design
  170. linksys router + irc DoS
  171. Simplog <= 1.0.2 Vulnerabilities
  172. DSplit - Tiny AV signatures Detector
  173. Critical Risk Vulnerability in L-Soft Listserv
  174. [ GLSA 200603-03 ] MPlayer: Multiple integer overflows
  175. ezmlm warning
  176. [SECURITY] [DSA 985-1] New libtasn1-2 packages fix arbitrary code execution
  177. [SECURITY] [DSA 986-1] New gnutls11 packages fix arbitrary code execution
  178. [OpenPKG-SA-2006.006] OpenPKG Security Advisory (tar)
  179. Re: Wbb 2.3. xss
  180. vulnerability in the IE Java applet initialization engine
  181. Game-Panel <= 2.1.6 XSS
  182. evoBlog Remote Name tag Script injection
  183. Re: linksys router + irc DoS
  184. [KAPDA::#31] - Runcms 1.x Cross_Site_Scripting vulnerability in
  185. [eVuln] Simple Machines Forum - SMF 'X-Forwarded-For' XSS
  186. Announcement: WASC Threat Classification in German
  187. FTPoed Blog Engine =>v1.1 HTML Injection Vulnerability
  188. SyScan'06 Call For Papers
  189. Microsoft Visual Studio 6.0 Sp6 Malformed .dbp File BoF Exploit
  190. htpasswd bufferoverflow and command execution in thttpd-2.25b.
  191. [ GLSA 200603-04 ] IMAP Proxy: Format string vulnerabilities
  192. [ GLSA 200603-05 ] zoo: Stack-based buffer overflow
  193. Multiple vulnerabilities in Cube engine 2005_08_29
  194. Re: linksys router + irc DoS
  195. Multiple vulnerabilities in Sauerbraten engine 2006_02_28
  196. Out of memory crash in Freeciv 2.0.7
  197. Multiple vulnerabilities in Liero Xtreme 0.62b
  198. SQL injection & XSS IN vbzoom v1.11
  199. SQL injection in Invision Power Board v2.1.5
  200. [USN-260-1] flex vulnerability
  201. histhost v1.0.0 xss and possible rmdir
  202. RE: linksys router + irc DoS
  203. link bank code execution and xss
  204. phpBannerExchange 2.0 Directory Traversal Vulnerability
  205. PHP-based CMS mass-exploitation
  206. [SECURITY] [DSA 987-1] New tar packages fix arbitrary code execution
  207. Re: SQL injection in Invision Power Board v2.1.5
  208. IM Lock 2006 - Insecure Registry Permission Vulnerability
  209. Re: Various router DoS
  210. Cpanel Path Disclosure Vulnerability
  211. Re: [Full-disclosure] Mozilla Thunderbird : Multiple Information
  212. Purple Paper: Exegesis Of Virtual Hosts Hacking
  213. Loudblog 0.41 SQL Injection, Local file read/include
  214. Multiple vulnerabilities in Alien Arena 2006 GE 5.00
  215. [eVuln] ShoutLIVE PHP Code Execution & Multiple XSS Vulnerabilities
  216. IE iFrame + Sun JVM + JS bug. Exploitable?
  217. Cisco PIX embryonic state machine 1b data DoS
  218. Cisco PIX embryonic state machine TTL(n-1) DoS
  219. [FLSA-2006:168264-1] Updated XFree86 packages fix security issues
  220. [FLSA-2006:168264-2] Updated X.org packages fix security issue
  221. Dropbear SSH server Denial of Service
  222. [FLSA-2006:168516] Updated pcre packages fix a security issue
  223. Re: Various router DoS
  224. RE: Cisco PIX embryonic state machine 1b data DoS
  225. [FLSA-2006:176751] Updated gpdf package fixes security issues
  226. [ MDKSA-2006:053 ] - Updated freeciv packages fix DoS vulnerabilities
  227. CanSecWest/core06 Vancouver April 3-7
  228. [security bulletin] HPSBTU02100 SSRT050979 rev.1 - HP Tru64 UNIX IPSEC/ISAKMP Remote Denial of Service (DoS)
  229. [eVuln] EKINboard 'img' BBCode XSS & Cookie 'username' SQL
  230. Re: [CORRECTIONS AND ADDITIONS ]Azbb v1.1.00 Cross-Site Scripting
  231. Re: AVG 7 granting Everyone Full Control to updated files... even its drivers
  232. textfileBB <= 1.0 Multiple XSS
  233. Re: PHP-based CMS mass-exploitation
  234. [KAPDA::#32] - d2kBlog 1.0.3 Multiple Vulnerabilities
  235. [SECURITY] [DSA 988-1] New squirrelmail packages fix several vulnerabilities
  236. a worm for mediaWiki??
  237. Re: a worm for mediaWiki??
  238. 18 ways to escalate privileges in Zone Labs ZoneAlarm Security Suite build 6.1.744.000
  239. [ MDKSA-2006:054 ] - Updated kdegraphics packages fixes overflow vulnerabilities
  240. H&R Block contact - SOLVED
  241. capi4hylafax insecure manipulation with tmp files
  242. Re: 18 ways to escalate privileges in Zone Labs ZoneAlarm Security Suite build 6.1.744.000
  243. nCipher Advisory #12: Insecure Generation of Diffie-Hellman keys
  244. nCipher Advisory #13: CBC-MAC IV misleading programming interface
  245. nCipher Advisory #14: Presence of flaws in firmware security
  246. [SECURITY] [DSA 989-1] New zoph packages fix SQL injection
  247. Easy File Sharing Web Server Multiple Vulnerablilities
  248. HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit
  249. INFIGO-2006-03-01: PeerCast streaming server remote buffer
  250. Remote access to NeuSecure/Netcool backend database via web interface credentials leakage