Bekijk Volledige Versie : Bugtraq mailing lijst
- [ MDKSA-2007:213 ] - Updated pcre packages fix vulnerability
- [ MDKSA-2007:212 ] - Updated pcre packages fix vulnerability
- [SECURITY] [DSA 1404-1] New gallery2 packages fix privilege escalation
- [SECURITY] [DSA 1403-1] New phpmyadmin packages fix cross-site scripting
- AST-2007-024 - Fallacious security advisory spread on the Internet
- CanSecWest 2008 CFP (deadline Nov 30, conf Mar 26-28) and PacSec Dojo's
- [ MDKSA-2007:215 ] - Updated openldap packages fix vulnerability
- Re: Re: SiteMinder Agent: Cross Site Scripting
- li-guestbook sql inj
- [ MDKSA-2007:214 ] - Updated flac packages fix vulnerability
- Re: Simple Machine Forum - Private section/posts/info disclosure
- xoops mylinks module - sql injection
- Re: Simple Machine Forum - Private section/posts/info
- [SECURITY] [DSA 1405-1] New zope-cmfplone packages fix arbitrary code
- SQL injection bug found in TBSource.
- iDefense Security Advisory 11.09.07: IBM Informix Dynamic Server
- [SECURITY] [DSA 1406-1] New horde3 packages fix several vulnerabilities
- iDefense Security Advisory 11.09.07: AOL AmpX ActiveX Control Multiple
- [48Bits Advisory] QuickTime Panorama Sample Atom Heap Overflow
- [SECURITY] [DSA 1405-2] New zope-cmfplone packages fix regression
- Eggblog v3.1.0 XSS Vulnerability
- FLEA-2007-0066-1 ImageMagick
- Oracle 0-day to get SYSDBA access
- Standing Up Against German Laws - Project HayNeedle
- Re: Re: Simple Machine Forum - Private section/posts/info disclosure
- Re: [Full-disclosure] Standing Up Against German Laws - Project HayNeedle
- PHP-Nuke Module Advertising Blind SQL Injection
- CVE-2007-3694: Cross site scripting (XSS) in broadcast machine
- Aria-Security.Net Research: Rapid Classified HotList Image
- PeopleAggregatory security advisory - re CVE-2007-5631
- FLEA-2007-0064-1 pcre
- FLEA-2007-0068-1 ruby
- FLEA-2007-0063-1 perl
- iDefense Security Advisory 11.12.07: WinPcap NPF.SYS bpf_filter_init
- FLEA-2007-0069-1 perl
- FLEA-2007-0065-1 libpng
- FLEA-2007-0067-1 pidgin
- Cisco IOS Shellcode
- Re: Standing Up Against German Laws - Project HayNeedle
- Re: Standing Up Against German Laws - Project HayNeedle
- RFID: Security Briefings
- HPSBUX02287 SSRT071485 rev.1 - HP-UX Running HP Secure Shell, Remotely Gain Extended Privileges
- AutoIndex <= 2.2.2 Cross Site Scripting and Denial of Service
- [ GLSA 200711-14 ] Mozilla Firefox, SeaMonkey, XULRunner: Multiple
- Re: Standing Up Against German Laws - Project HayNeedle
- [ MDKSA-2007:204-1 ] - Updated cups packages fix vulnerability
- [ GLSA 200711-15 ] FLAC: Buffer overflow
- [ GLSA 200711-16 ] CUPS: Memory corruption
- PR07-13: Cross-site Scripting / HTML injection on F5 FirePass
- [ISecAuditors Security Advisories] VTLS.web.gateway cgi is vulnerable
- ATC-08 Call for papers (repost)
- Re: Bosdev Multiple vulnerabilities
- [ MDKSA-2007:216 ] - Updated kernel packages fix multiple
- After 6 months - fix available for Microsoft DNS cache poisoning
- PHP <= 5.2.5 stream_wrapper_register() denial of service
- PHP <= 5.2.5 Gettext Lib Multiple Denial of service
- Re: [Full-disclosure] Standing Up Against German Laws - =?iso-8859-1?q?Project=09HayNeedle?=
- Oracle 11g/10g Installation Vulnerability
- Re: Standing Up Against German Laws - Project HayNeedle
- iDefense Security Advisory 11.12.07: Novell NetWare Client Local
- Re: Standing Up Against German Laws - Project HayNeedle
- [ MDKSA-2007:217 ] - Updated libpng packages fix multiple
- Re: [Full-disclosure] Standing Up Against German Laws - Project HayNeedle
- Re: Standing Up Against German Laws - Project HayNeedle
- Re: Standing Up Against German Laws - Project HayNeedle
- Re: [Full-disclosure] Standing Up Against German Laws - Project
- Re: Standing Up Against German Laws - Project HayNeedle
- [USN-540-1] flac vulnerability
- [USN-541-1] Emacs vulnerability
- ExoPHPdesk user profile XSS / profile SQL injection
- Aria-Security.Net: MetaCart SQL Injection
- Predictable DNS transaction IDs in Microsoft DNS Server
- Free Forums "search" Sql Injection
- DocuSafe "Search" SQL Injection
- [USN-542-1] poppler vulnerabilities
- Konqueror Remote Denial Of Service
- [USN-541-1] Emacs vulnerability
- Six Remote Memory Corruption Vulnerabilities in IBM WebSphere MQ 6.0
- [ MDKSA-2007:218 ] - Updated mono packages fix arbitrary code
- [security bulletin] HPSBMA02288 SSRT071465 rev.1 - HP OpenView Operations (OVO) Running on HP-UX and Solaris, Remote Unauthorized Access, Denial of Service (DoS)
- Re: Standing Up Against German Laws - Project HayNeedle
- [ GLSA 200711-17 ] Ruby on Rails: Multiple vulnerabilities
- Re: Standing Up Against German Laws - Project HayNeedle
- [ GLSA 200711-18 ] Cpio: Buffer overflow
- TPTI-07-20: Apple Quicktime Movie Stack Overflow Vulnerability
- [ GLSA 200711-19 ] TikiWiki: Multiple vulnerabilities
- Breaking RSA: Totient indirect factorization
- [ GLSA 200711-20 ] Pioneers: Denial of Service
- Re: Standing Up Against German Laws - Project HayNeedle
- iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk mbuf
- Re: Breaking RSA: Totient indirect factorization
- iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance
- Some hashes for the record
- iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk ASP
- [security bulletin] HPSBUX02284 SSRT071483 rev.2 - HP-UX Running Java JRE and JDK, Remote Unauthorized Access
- [SAMBA] CVE-2007-4572 - GETDC mailslot processing buffer overrun
- [SAMBA] CVE-2007-5398 - Remote Code Execution in Samba's nmbd
- Secunia Research: Samba "reply_netbios_packet()" Buffer Overflow
- iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk Socket
- Re: Breaking RSA: Totient indirect factorization
- Re: HPSBUX02287 SSRT071485 rev.1 - HP-UX Running HP Secure Shell, Remotely Gain Extended Privileges
- Aida-Web Information Exposure
- [TKADV2007-001] Mac OS X TIOCSETD IOCTL Kernel Memory Corruption Vulnerability
- [ MDKSA-2007:219 ] - Updated xpdf packages fix vulnerabilities
- EEYE: Multiple Vulnerabilities In .FLAC File Format and Various Media Applications
- [USN-542-2] KOffice vulnerabilities
- PR07-26: Persistent XSS on Aruba 800 Mobility Controller's login page
- Re: Breaking RSA: Totient indirect factorization
- PR07-02: XSS on Liferay Portal Enterprise 4.1.1 login page
- [USN-543-1] VMWare vulnerabilities
- [ MDKSA-2007:220 ] - Updated gpdf packages fix vulnerabilities
- [RISE-2007004] Apple Mac OS X 10.4.x Kernel i386_set_ldt() Integer
- [USN-544-1] Samba vulnerabilities
- [ MDKSA-2007:221 ] - Updated kdegraphics packages fix vulnerabilities
- AhnLab AntiVirus Remote Kernel Memory Corruption
- Javamail login username and password same email problem
- Re: Breaking RSA: Totient indirect factorization
- Re: Breaking RSA: Totient indirect factorization
- JiRos Upload Manager SQL Injection
- rPSA-2007-0241-1 samba samba-swat
- [USN-544-2] Samba regression
- RE: Standing Up Against German Laws - Project HayNeedle
- net-finity (links.php) Remote SQL Injection Vulnerability
- Black Lily 2007 (products.php class) Remote SQL Injection
- Myspace Clone Script (index.php) Remote File Inclusion Vulnerability
- Re: Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability
- security contact for mitsubishi electric?
- Sciurus Hosting Panel Code İnjection
- [ MDKSA-2007:222 ] - Updated koffice packages fix vulnerabilities
- [ MDKSA-2007:223 ] - Updated pdftohtml packages fix vulnerabilities
- [ MDKSA-2007:224 ] - Updated samba packages fix vulnerabilities
- [ECHO_ADV_84$2007] ProfileCMS <= 1.0 Remote SQL Injection
- [ GLSA 200711-24 ] Mozilla Thunderbird: Multiple vulnerabilities
- [ GLSA 200711-26 ] teTeX: Multiple vulnerabilities
- Vulnerability Hash Database - Maillist
- Re: [Full-disclosure] Microsoft Jet Engine MDB File Parsing Stack
- Re: Microsoft Jet Engine MDB File Parsing Stack Overflow
- [ GLSA 200711-25 ] MySQL: Denial of Service
- [ GLSA 200711-27 ] Link Grammar: User-assisted execution of arbitrary
- [ GLSA 200711-23 ] VMware Workstation and Player: Multiple vulnerabilities
- [ GLSA 200711-21 ] Bochs: Multiple vulnerabilities
- VigileCMS 1.4 Multiple Remote Vulnerabilities
- [ MDKSA-2007:225 ] - Updated net-snmp packages fix remote denial of
- IceBB 1.0rc6 <= Remote SQL Injection
- [ GLSA 200711-22 ] Poppler, KDE: User-assisted execution of arbitrary
- [SECURITY] [DSA 1407-1] New cupsys packages fix arbitrary code execution
- [Aria-Secutiy Net] Click&BaneX SQL Injection
- Re: IceBB 1.0rc6 <= Remote SQL Injection
- Citrix NetScaler Web Management XSS
- Wordpress Cookie Authentication Vulnerability
- Certificate spoofing issue with Mozilla, Konqueror, Safari 2
- Crash in LIVE555 Media Server 2007.11.01
- Belkin Wireless G Router DoS
- Alcatel OmniPCX Enterprise VoIP Vulnerability
- rPSA-2007-0242-1 php5 php5-cgi php5-mysql php5-pear php5-pgsql
- [ GLSA 200711-28 ] Perl: Buffer overflow
- Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
- Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
- Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
- [ MDKSA-2007:226 ] - Updated kernel packages fix multiple
- Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
- Banks (Wellsfargo.com) using CDNs to deliver Javascript: enables
- [ MDKSA-2007:227 ] - Updated poppler packages fix vulnerabilities
- [security bulletin] HPSBUX02289 SSRT071461 rev.1 - HP-UX Running BIND 8, Remote DNS Cache Poisoning
- [ MDKSA-2007:228 ] - Updated cups packages fix vulnerabilities
- EEYE: BitDefender Online Scanner 8 Double Decode Heap Overflow
- [ GLSA 200711-29 ] Samba: Execution of arbitrary code
- [ GLSA 200711-30 ] PCRE: Multiple vulnerabilities
- [ GLSA 200711-31 ] Net-SNMP: Denial of Service
- Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
- [ GLSA 200711-32 ] Feynmf: Insecure temporary file creation
- Several persistent XSS and CSRF on Wireless-G ADSL Gateway with SpeedBooster (WAG54GS)
- [ MDKSA-2007:229 ] - Updated phpMyAdmin packages fix multiple
- Re: Banks (Wellsfargo.com) using CDNs to deliver Javascript: enables password theft by anyone compromising or controlling the CDN
- rPSA-2007-0243-1 flac
- Re: [Full-disclosure] Warning: Hackers hijacking unused IP
- rPSA-2007-0245-2 kernel
- [Aria-Security.Net] VU Case Manager "Username/Password" SQL
- [ MDKSA-2007:230 ] - Updated tetex packages fix vulnerabilities
- Aria-Security.Net: VU Mailer (Mass Mail) "Password" SQL Injection
- rPSA-2007-0245-1 kernel
- Re: [Full-disclosure] Warning: Hackers hijacking unused IP Addresses
- E-vanced Solutions Multiple Vulnerabilites
- GWextranet Multiple Vulnerabilites
- [SECURITY] [DSA 1408-1] New kdegraphics packages fix arbitrary code execution
- TalkBack 2.2.7 Multiple Remote File Inclusion Vulnerabilities
- Ucms <= 1.8 Backdoor Remote Command Execution Exploit
- SkyPortal vRC6 Multiple Remote Vulnerabilities
- [ MDKSA-2007:224-1 ] - Updated samba packages fix vulnerabilities
- Wheatblog (wB) Remote File inclusion ..
- Aria-Security.net: NetAuctionHelp SQL Injection
- [ECHO_ADV_85$2007] alstrasoft E-Friends <= 4.98 (seid) Multiple
- GetBlog local File inclusion ..
- Remote Shell Command Execution in "KB-Bestellsystem" (amensa-soft.de)
- [Argeniss] Data0: Next generation malware for stealing databases (Paper)
- Re: Simple Machines Forum multiple sql injection flaws with
- MyBlog (MyCMS) Remote PHP Code execution / PHP Code injection ..
- VigileCMS <= 1.8 Stealth Remote Command Execution Exploit
- MySpace Scripts - Poll Creator JavaScript Injection Vulnerability
- Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Using CSRF to Attack Mobile Phones
- [ MDKSA-2007:231 ] - Updated cacti packages fix SQL injection
- [SECURITY] [DSA 1409-1] New samba packages fix several vulnerabilities
- Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Aria-Security.net: Irola My-Time v3.5 SQL Injection
- [0day Remote Command Execution] VigileCMS <= 1.8 Stealth
- Re: MyBlog (MyCMS) Remote PHP Code execution / PHP Code injection ..
- Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Re: Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Re: Re: Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Mp3 ToolBox 1.0 beta 5 Remote File İnclude Vulnerability
- Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
- Re: Re: Re: Re: Re: Gadu-Gadu Local/Remote Buffer Overflow
- [ MDKSA-2007:224-2 ] - Updated samba packages fix vulnerabilities
- Bitcomet Resource Browser v1.1 XSS
- Aria-Security.net: CoolShot E-Lite POS 1.0
- Re: Aria-Security.net: NetAuctionHelp SQL Injection
- PBLang <= 4.99.17.q Remote File Rewriting / Remote Command Execution
- [ISecAuditors Security Advisories] Cygwin buffer overflow due incorrect
- Amber Script 1.0 (show_content.php id) Local File Inclusion
- vBTube v1.1 - Beta ( Vbulletin Tube) Xss Vulnerable
- Re: Re: Aria-Security.net: NetAuctionHelp SQL Injection
- NetAuctionHelp Classified Ads v1.0 SQL Injection
- [SECURITY] [DSA 1410-1] New ruby1.8 packages fix insecure SSL certificate
- Aria-Security.Net: Gouae DWD Realty SQL Injection
- [SECURITY] [DSA 1411-1] New libopenssl-ruby packages fix insecure SSL
- [SECURITY] [DSA 1409-2] New samba packages fix several vulnerabilities
- [SECURITY] [DSA 1412-1] New ruby1.9 packages fix insecure SSL certificate
- HPSBST02291 SSRT071498 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-061 and MS07-062
- PHP 5.2.4 mail.force_extra_parameters unsecure
- two bytehoard 2.1 bugs
- Skype DoS
- PHPSlideShow (toonchapter8.php) Cross-Site Scripting Vulnerability
- Calendar Proverbs <=1.1 (caladmin.php) Remote SQL Injection
- FMDeluxe (index.php) Cross-Site Scripting Vulnerability
- Citrix NetScaler Web Management Cookie Weakness
- GWExtranet Script Injections & Privilege Escalation Vulnerability
- [ GLSA 200711-33 ] nss_ldap: Information disclosure
- 2007-06 Sentinel Protection Server Directory Traversal
- [ GLSA 200711-34 ] CSTeX: Multiple vulnerabilities
- [SECURITY] [DSA 1413-1] New mysql packages fix multiple vulnerabilities
- DeluxeBB E-Mail Address Change Security Bypass
- Tilde CMS <= v. 4.x "aarstal" parameter of "yeardetail" SQL Injection
- SimpleGallery v0.1.3 (index.php) Cross-Site Scripting Vulnerability
- PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source / DB
- JLMForo System (modificarPerfil.php) Cross-Site Scripting
- Re: PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source
- FIGIS (FILogin.do) Bypass SQL Injection Vulnerability
- CONFidence 2008 CfP