PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 [82] 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98

  1. [ MDKSA-2007:213 ] - Updated pcre packages fix vulnerability
  2. [ MDKSA-2007:212 ] - Updated pcre packages fix vulnerability
  3. [SECURITY] [DSA 1404-1] New gallery2 packages fix privilege escalation
  4. [SECURITY] [DSA 1403-1] New phpmyadmin packages fix cross-site scripting
  5. AST-2007-024 - Fallacious security advisory spread on the Internet
  6. CanSecWest 2008 CFP (deadline Nov 30, conf Mar 26-28) and PacSec Dojo's
  7. [ MDKSA-2007:215 ] - Updated openldap packages fix vulnerability
  8. Re: Re: SiteMinder Agent: Cross Site Scripting
  9. li-guestbook sql inj
  10. [ MDKSA-2007:214 ] - Updated flac packages fix vulnerability
  11. Re: Simple Machine Forum - Private section/posts/info disclosure
  12. xoops mylinks module - sql injection
  13. Re: Simple Machine Forum - Private section/posts/info
  14. [SECURITY] [DSA 1405-1] New zope-cmfplone packages fix arbitrary code
  15. SQL injection bug found in TBSource.
  16. iDefense Security Advisory 11.09.07: IBM Informix Dynamic Server
  17. [SECURITY] [DSA 1406-1] New horde3 packages fix several vulnerabilities
  18. iDefense Security Advisory 11.09.07: AOL AmpX ActiveX Control Multiple
  19. [48Bits Advisory] QuickTime Panorama Sample Atom Heap Overflow
  20. [SECURITY] [DSA 1405-2] New zope-cmfplone packages fix regression
  21. Eggblog v3.1.0 XSS Vulnerability
  22. FLEA-2007-0066-1 ImageMagick
  23. Oracle 0-day to get SYSDBA access
  24. Standing Up Against German Laws - Project HayNeedle
  25. Re: Re: Simple Machine Forum - Private section/posts/info disclosure
  26. Re: [Full-disclosure] Standing Up Against German Laws - Project HayNeedle
  27. PHP-Nuke Module Advertising Blind SQL Injection
  28. CVE-2007-3694: Cross site scripting (XSS) in broadcast machine
  29. Aria-Security.Net Research: Rapid Classified HotList Image
  30. PeopleAggregatory security advisory - re CVE-2007-5631
  31. FLEA-2007-0064-1 pcre
  32. FLEA-2007-0068-1 ruby
  33. FLEA-2007-0063-1 perl
  34. iDefense Security Advisory 11.12.07: WinPcap NPF.SYS bpf_filter_init
  35. FLEA-2007-0069-1 perl
  36. FLEA-2007-0065-1 libpng
  37. FLEA-2007-0067-1 pidgin
  38. Cisco IOS Shellcode
  39. Re: Standing Up Against German Laws - Project HayNeedle
  40. Re: Standing Up Against German Laws - Project HayNeedle
  41. RFID: Security Briefings
  42. HPSBUX02287 SSRT071485 rev.1 - HP-UX Running HP Secure Shell, Remotely Gain Extended Privileges
  43. AutoIndex <= 2.2.2 Cross Site Scripting and Denial of Service
  44. [ GLSA 200711-14 ] Mozilla Firefox, SeaMonkey, XULRunner: Multiple
  45. Re: Standing Up Against German Laws - Project HayNeedle
  46. [ MDKSA-2007:204-1 ] - Updated cups packages fix vulnerability
  47. [ GLSA 200711-15 ] FLAC: Buffer overflow
  48. [ GLSA 200711-16 ] CUPS: Memory corruption
  49. PR07-13: Cross-site Scripting / HTML injection on F5 FirePass
  50. [ISecAuditors Security Advisories] VTLS.web.gateway cgi is vulnerable
  51. ATC-08 Call for papers (repost)
  52. Re: Bosdev Multiple vulnerabilities
  53. [ MDKSA-2007:216 ] - Updated kernel packages fix multiple
  54. After 6 months - fix available for Microsoft DNS cache poisoning
  55. PHP <= 5.2.5 stream_wrapper_register() denial of service
  56. PHP <= 5.2.5 Gettext Lib Multiple Denial of service
  57. Re: [Full-disclosure] Standing Up Against German Laws - =?iso-8859-1?q?Project=09HayNeedle?=
  58. Oracle 11g/10g Installation Vulnerability
  59. Re: Standing Up Against German Laws - Project HayNeedle
  60. iDefense Security Advisory 11.12.07: Novell NetWare Client Local
  61. Re: Standing Up Against German Laws - Project HayNeedle
  62. [ MDKSA-2007:217 ] - Updated libpng packages fix multiple
  63. Re: [Full-disclosure] Standing Up Against German Laws - Project HayNeedle
  64. Re: Standing Up Against German Laws - Project HayNeedle
  65. Re: Standing Up Against German Laws - Project HayNeedle
  66. Re: [Full-disclosure] Standing Up Against German Laws - Project
  67. Re: Standing Up Against German Laws - Project HayNeedle
  68. [USN-540-1] flac vulnerability
  69. [USN-541-1] Emacs vulnerability
  70. ExoPHPdesk user profile XSS / profile SQL injection
  71. Aria-Security.Net: MetaCart SQL Injection
  72. Predictable DNS transaction IDs in Microsoft DNS Server
  73. Free Forums "search" Sql Injection
  74. DocuSafe "Search" SQL Injection
  75. [USN-542-1] poppler vulnerabilities
  76. Konqueror Remote Denial Of Service
  77. [USN-541-1] Emacs vulnerability
  78. Six Remote Memory Corruption Vulnerabilities in IBM WebSphere MQ 6.0
  79. [ MDKSA-2007:218 ] - Updated mono packages fix arbitrary code
  80. [security bulletin] HPSBMA02288 SSRT071465 rev.1 - HP OpenView Operations (OVO) Running on HP-UX and Solaris, Remote Unauthorized Access, Denial of Service (DoS)
  81. Re: Standing Up Against German Laws - Project HayNeedle
  82. [ GLSA 200711-17 ] Ruby on Rails: Multiple vulnerabilities
  83. Re: Standing Up Against German Laws - Project HayNeedle
  84. [ GLSA 200711-18 ] Cpio: Buffer overflow
  85. TPTI-07-20: Apple Quicktime Movie Stack Overflow Vulnerability
  86. [ GLSA 200711-19 ] TikiWiki: Multiple vulnerabilities
  87. Breaking RSA: Totient indirect factorization
  88. [ GLSA 200711-20 ] Pioneers: Denial of Service
  89. Re: Standing Up Against German Laws - Project HayNeedle
  90. iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk mbuf
  91. Re: Breaking RSA: Totient indirect factorization
  92. iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance
  93. Some hashes for the record
  94. iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk ASP
  95. [security bulletin] HPSBUX02284 SSRT071483 rev.2 - HP-UX Running Java JRE and JDK, Remote Unauthorized Access
  96. [SAMBA] CVE-2007-4572 - GETDC mailslot processing buffer overrun
  97. [SAMBA] CVE-2007-5398 - Remote Code Execution in Samba's nmbd
  98. Secunia Research: Samba "reply_netbios_packet()" Buffer Overflow
  99. iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk Socket
  100. Re: Breaking RSA: Totient indirect factorization
  101. Re: HPSBUX02287 SSRT071485 rev.1 - HP-UX Running HP Secure Shell, Remotely Gain Extended Privileges
  102. Aida-Web Information Exposure
  103. [TKADV2007-001] Mac OS X TIOCSETD IOCTL Kernel Memory Corruption Vulnerability
  104. [ MDKSA-2007:219 ] - Updated xpdf packages fix vulnerabilities
  105. EEYE: Multiple Vulnerabilities In .FLAC File Format and Various Media Applications
  106. [USN-542-2] KOffice vulnerabilities
  107. PR07-26: Persistent XSS on Aruba 800 Mobility Controller's login page
  108. Re: Breaking RSA: Totient indirect factorization
  109. PR07-02: XSS on Liferay Portal Enterprise 4.1.1 login page
  110. [USN-543-1] VMWare vulnerabilities
  111. [ MDKSA-2007:220 ] - Updated gpdf packages fix vulnerabilities
  112. [RISE-2007004] Apple Mac OS X 10.4.x Kernel i386_set_ldt() Integer
  113. [USN-544-1] Samba vulnerabilities
  114. [ MDKSA-2007:221 ] - Updated kdegraphics packages fix vulnerabilities
  115. AhnLab AntiVirus Remote Kernel Memory Corruption
  116. Javamail login username and password same email problem
  117. Re: Breaking RSA: Totient indirect factorization
  118. Re: Breaking RSA: Totient indirect factorization
  119. JiRos Upload Manager SQL Injection
  120. rPSA-2007-0241-1 samba samba-swat
  121. [USN-544-2] Samba regression
  122. RE: Standing Up Against German Laws - Project HayNeedle
  123. net-finity (links.php) Remote SQL Injection Vulnerability
  124. Black Lily 2007 (products.php class) Remote SQL Injection
  125. Myspace Clone Script (index.php) Remote File Inclusion Vulnerability
  126. Re: Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability
  127. security contact for mitsubishi electric?
  128. Sciurus Hosting Panel Code &#304;njection
  129. [ MDKSA-2007:222 ] - Updated koffice packages fix vulnerabilities
  130. [ MDKSA-2007:223 ] - Updated pdftohtml packages fix vulnerabilities
  131. [ MDKSA-2007:224 ] - Updated samba packages fix vulnerabilities
  132. [ECHO_ADV_84$2007] ProfileCMS <= 1.0 Remote SQL Injection
  133. [ GLSA 200711-24 ] Mozilla Thunderbird: Multiple vulnerabilities
  134. [ GLSA 200711-26 ] teTeX: Multiple vulnerabilities
  135. Vulnerability Hash Database - Maillist
  136. Re: [Full-disclosure] Microsoft Jet Engine MDB File Parsing Stack
  137. Re: Microsoft Jet Engine MDB File Parsing Stack Overflow
  138. [ GLSA 200711-25 ] MySQL: Denial of Service
  139. [ GLSA 200711-27 ] Link Grammar: User-assisted execution of arbitrary
  140. [ GLSA 200711-23 ] VMware Workstation and Player: Multiple vulnerabilities
  141. [ GLSA 200711-21 ] Bochs: Multiple vulnerabilities
  142. VigileCMS 1.4 Multiple Remote Vulnerabilities
  143. [ MDKSA-2007:225 ] - Updated net-snmp packages fix remote denial of
  144. IceBB 1.0rc6 <= Remote SQL Injection
  145. [ GLSA 200711-22 ] Poppler, KDE: User-assisted execution of arbitrary
  146. [SECURITY] [DSA 1407-1] New cupsys packages fix arbitrary code execution
  147. [Aria-Secutiy Net] Click&BaneX SQL Injection
  148. Re: IceBB 1.0rc6 <= Remote SQL Injection
  149. Citrix NetScaler Web Management XSS
  150. Wordpress Cookie Authentication Vulnerability
  151. Certificate spoofing issue with Mozilla, Konqueror, Safari 2
  152. Crash in LIVE555 Media Server 2007.11.01
  153. Belkin Wireless G Router DoS
  154. Alcatel OmniPCX Enterprise VoIP Vulnerability
  155. rPSA-2007-0242-1 php5 php5-cgi php5-mysql php5-pear php5-pgsql
  156. [ GLSA 200711-28 ] Perl: Buffer overflow
  157. Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
  158. Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
  159. Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
  160. [ MDKSA-2007:226 ] - Updated kernel packages fix multiple
  161. Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
  162. Banks (Wellsfargo.com) using CDNs to deliver Javascript: enables
  163. [ MDKSA-2007:227 ] - Updated poppler packages fix vulnerabilities
  164. [security bulletin] HPSBUX02289 SSRT071461 rev.1 - HP-UX Running BIND 8, Remote DNS Cache Poisoning
  165. [ MDKSA-2007:228 ] - Updated cups packages fix vulnerabilities
  166. EEYE: BitDefender Online Scanner 8 Double Decode Heap Overflow
  167. [ GLSA 200711-29 ] Samba: Execution of arbitrary code
  168. [ GLSA 200711-30 ] PCRE: Multiple vulnerabilities
  169. [ GLSA 200711-31 ] Net-SNMP: Denial of Service
  170. Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2
  171. [ GLSA 200711-32 ] Feynmf: Insecure temporary file creation
  172. Several persistent XSS and CSRF on Wireless-G ADSL Gateway with SpeedBooster (WAG54GS)
  173. [ MDKSA-2007:229 ] - Updated phpMyAdmin packages fix multiple
  174. Re: Banks (Wellsfargo.com) using CDNs to deliver Javascript: enables password theft by anyone compromising or controlling the CDN
  175. rPSA-2007-0243-1 flac
  176. Re: [Full-disclosure] Warning: Hackers hijacking unused IP
  177. rPSA-2007-0245-2 kernel
  178. [Aria-Security.Net] VU Case Manager "Username/Password" SQL
  179. [ MDKSA-2007:230 ] - Updated tetex packages fix vulnerabilities
  180. Aria-Security.Net: VU Mailer (Mass Mail) "Password" SQL Injection
  181. rPSA-2007-0245-1 kernel
  182. Re: [Full-disclosure] Warning: Hackers hijacking unused IP Addresses
  183. E-vanced Solutions Multiple Vulnerabilites
  184. GWextranet Multiple Vulnerabilites
  185. [SECURITY] [DSA 1408-1] New kdegraphics packages fix arbitrary code execution
  186. TalkBack 2.2.7 Multiple Remote File Inclusion Vulnerabilities
  187. Ucms <= 1.8 Backdoor Remote Command Execution Exploit
  188. SkyPortal vRC6 Multiple Remote Vulnerabilities
  189. [ MDKSA-2007:224-1 ] - Updated samba packages fix vulnerabilities
  190. Wheatblog (wB) Remote File inclusion ..
  191. Aria-Security.net: NetAuctionHelp SQL Injection
  192. [ECHO_ADV_85$2007] alstrasoft E-Friends <= 4.98 (seid) Multiple
  193. GetBlog local File inclusion ..
  194. Remote Shell Command Execution in "KB-Bestellsystem" (amensa-soft.de)
  195. [Argeniss] Data0: Next generation malware for stealing databases (Paper)
  196. Re: Simple Machines Forum multiple sql injection flaws with
  197. MyBlog (MyCMS) Remote PHP Code execution / PHP Code injection ..
  198. VigileCMS <= 1.8 Stealth Remote Command Execution Exploit
  199. MySpace Scripts - Poll Creator JavaScript Injection Vulnerability
  200. Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  201. Using CSRF to Attack Mobile Phones
  202. [ MDKSA-2007:231 ] - Updated cacti packages fix SQL injection
  203. [SECURITY] [DSA 1409-1] New samba packages fix several vulnerabilities
  204. Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  205. Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  206. Aria-Security.net: Irola My-Time v3.5 SQL Injection
  207. [0day Remote Command Execution] VigileCMS <= 1.8 Stealth
  208. Re: MyBlog (MyCMS) Remote PHP Code execution / PHP Code injection ..
  209. Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  210. Re: Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  211. Re: Re: Re: Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  212. Mp3 ToolBox 1.0 beta 5 Remote File &#304;nclude Vulnerability
  213. Re: Gadu-Gadu Local/Remote Buffer Overflow vulnerability
  214. Re: Re: Re: Re: Re: Gadu-Gadu Local/Remote Buffer Overflow
  215. [ MDKSA-2007:224-2 ] - Updated samba packages fix vulnerabilities
  216. Bitcomet Resource Browser v1.1 XSS
  217. Aria-Security.net: CoolShot E-Lite POS 1.0
  218. Re: Aria-Security.net: NetAuctionHelp SQL Injection
  219. PBLang <= 4.99.17.q Remote File Rewriting / Remote Command Execution
  220. [ISecAuditors Security Advisories] Cygwin buffer overflow due incorrect
  221. Amber Script 1.0 (show_content.php id) Local File Inclusion
  222. vBTube v1.1 - Beta ( Vbulletin Tube) Xss Vulnerable
  223. Re: Re: Aria-Security.net: NetAuctionHelp SQL Injection
  224. NetAuctionHelp Classified Ads v1.0 SQL Injection
  225. [SECURITY] [DSA 1410-1] New ruby1.8 packages fix insecure SSL certificate
  226. Aria-Security.Net: Gouae DWD Realty SQL Injection
  227. [SECURITY] [DSA 1411-1] New libopenssl-ruby packages fix insecure SSL
  228. [SECURITY] [DSA 1409-2] New samba packages fix several vulnerabilities
  229. [SECURITY] [DSA 1412-1] New ruby1.9 packages fix insecure SSL certificate
  230. HPSBST02291 SSRT071498 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-061 and MS07-062
  231. PHP 5.2.4 mail.force_extra_parameters unsecure
  232. two bytehoard 2.1 bugs
  233. Skype DoS
  234. PHPSlideShow (toonchapter8.php) Cross-Site Scripting Vulnerability
  235. Calendar Proverbs <=1.1 (caladmin.php) Remote SQL Injection
  236. FMDeluxe (index.php) Cross-Site Scripting Vulnerability
  237. Citrix NetScaler Web Management Cookie Weakness
  238. GWExtranet Script Injections & Privilege Escalation Vulnerability
  239. [ GLSA 200711-33 ] nss_ldap: Information disclosure
  240. 2007-06 Sentinel Protection Server Directory Traversal
  241. [ GLSA 200711-34 ] CSTeX: Multiple vulnerabilities
  242. [SECURITY] [DSA 1413-1] New mysql packages fix multiple vulnerabilities
  243. DeluxeBB E-Mail Address Change Security Bypass
  244. Tilde CMS <= v. 4.x "aarstal" parameter of "yeardetail" SQL Injection
  245. SimpleGallery v0.1.3 (index.php) Cross-Site Scripting Vulnerability
  246. PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source / DB
  247. JLMForo System (modificarPerfil.php) Cross-Site Scripting
  248. Re: PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source
  249. FIGIS (FILogin.do) Bypass SQL Injection Vulnerability
  250. CONFidence 2008 CfP