PDA

Bekijk Volledige Versie : Bugtraq mailing lijst



Pagina's : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 [90] 91 92 93 94 95 96 97 98

  1. [SECURITY] [DSA 1537-1] New xpdf packages fix multiple vulnerabilities
  2. [ GLSA 200804-02 ] bzip2: Denial of Service
  3. Webwasher Denial of Service Vulnerability
  4. [USN-598-1] CUPS vulnerabilities
  5. Vulnerabilities in kses-based HTML filters
  6. Joomla Component com_lms SQL Injection
  7. Parallels virtuozzo's VZPP multiple csrf vulnerabilities
  8. [USN-588-2] MySQL regression
  9. Recon 2008 CFP last call, early registration open
  10. iDefense Security Advisory 04.02.08: Symantec Internet Security 2008
  11. Medium security hole affecting Festival on Debian unstable/testing and Ubuntu Hardy Heron
  12. KwsPHP Module ConcoursPhoto XSS
  13. POC2008 call for papers
  14. CORE-2008-0314 - Orbit Downloader "Download failed" buffer overflow
  15. [security bulletin] HPSBMA02323 SSRT080032 rev.1 - HP USB Floppy Drive Key (Option) for ProLiant Servers, Local Virus Infection
  16. iDefense Security Advisory 04.02.08: Symantec Norton Internet Security
  17. iDefense Security Advisory 04.03.08: SCO UnixWare pkgadd Directory
  18. Cisco Security Advisory: Cisco Unified Communications Disaster Recovery Framework Command Execution Vulnerability
  19. iDefense Security Advisory 04.03.08: Computer Associates Alert Notification
  20. [SECURITY] [DSA 1539-1] New mapserver packages fix multiple vulnerabilities
  21. [SECURITY] [DSA 1538-1] New alsaplayer packages fix arbitrary code execution
  22. rPSA-2008-0136-1 cups
  23. rPSA-2008-0138-1 tshark wireshark
  24. rPSA-2008-0139-1 gnome-ssh-askpass openssh openssh-client
  25. rPSA-2008-0139-1 gnome-ssh-askpass openssh openssh-client
  26. rPSA-2008-0138-1 tshark wireshark
  27. rPSA-2008-0138-1 tshark wireshark
  28. rPSA-2008-0139-1 gnome-ssh-askpass openssh openssh-client
  29. rPSA-2008-0138-1 tshark wireshark
  30. rPSA-2008-0139-1 gnome-ssh-askpass openssh openssh-client
  31. F5 BIG-IP Management Interface Perl Injection
  32. TheGreenBowVPN, Login Credentials Disclosure
  33. Blogator-script 0.95 Change User Password Vulnerbility
  34. [ GLSA 200804-03 ] OpenSSH: Privilege escalation
  35. Alkacon OpenCms sessions.jsp searchfilter XSS
  36. Blogator-script 0.95 SQL Injection Vulnerbility
  37. [ GLSA 200804-05 ] NX: User-assisted execution of arbitrary code
  38. openMosix userspace library stack-based buffer overflow
  39. [ GLSA 200804-06 ] UnZip: User-assisted execution of arbitrary code
  40. Attack Technique: File Download Injection
  41. Wikepage Opus 13 2007.2 Directory Traversal Vulnerbility
  42. [SECURITY] [DSA 1540-1] New lighttpd packages fix denial of service
  43. Multiple vulnerabilities in HP OpenView NNM 7.53
  44. [ GLSA 200804-04 ] MySQL: Multiple vulnerabilities
  45. No Subject
  46. Re: Wikepage Opus 13 2007.2 Directory Traversal Vulnerbility
  47. WoltLab(R) Community Framework XSS and Full Path Disclosure Vulnerability
  48. Wayport Public Access PC Authentication Bypass Weakness
  49. [security bulletin] HPSBMA02327 SSRT071455 rev.1 - HP Integrity Servers iLO-2 Management Processors (iLO-2 MP), Denial of Service (DoS)
  50. licq remote DoS?
  51. New tool released : Syslog Fuzzer
  52. Microsoft Windows DNS Stub Resolver Cache Poisoning (MS08-020)
  53. [security bulletin] [security bulletin] HPSBST02318 SSRT080018 rev.1 - HP Storage Essentials Software, Remote Unauthorized Access to Data
  54. [security bulletin] HPSBMA02242 SSRT061260 rev.3 - HP OpenView Network Node Manager (OV NNM) Running Shared Trace Service, Remote Arbitrary Code Execution
  55. Re: Multiple vulnerabilities in HP OpenView NNM 7.53
  56. iDefense Security Advisory 04.08.08: Microsoft HxTocCtrl ActiveX
  57. [SECURITY] [DSA 1541-1] New openldap2.3 packages fix denial of service
  58. CAU-2008-0002: Microsoft Windows SharePoint Services Picture
  59. SAP Netweaver 6.40-7.0 Cross-Site-Scripting
  60. Pu Arcade component for Joomla - SQL injection
  61. [ GLSA 200804-07 ] PECL APC: Buffer Overflow
  62. iDefense Security Advisory 04.08.08: Microsoft Windows Graphics Rendering
  63. [SECURITY] [DSA 1542-1] New libcairo packages fix arbitrary code execution
  64. [CVE-2007-5301] alsaplayer PoC - exploit
  65. [SECURITY] [DSA 1543-1] New vlc packages fix several vulnerabilities
  66. [ MDVSA-2008:082 ] - Updated php-apc packages fix vulnerability
  67. [USN-599-1] Ghostscript vulnerability
  68. [SECURITY] [DSA 1544-1] New pdns-recursor packages fix cache poisoning vulnerability
  69. IOActive Security Advisory: Buffer overflow in Python zlib extension module
  70. Re: Alkacon OpenCms sessions.jsp searchfilter XSS
  71. paFileDB 3.1 Remote SQL Injection
  72. Re: licq remote DoS?
  73. [ MDVSA-2008:083 ] - Updated audit packages fix vulnerability
  74. [ GLSA 200804-08 ] lighttpd: Multiple vulnerabilities
  75. Re: openMosix userspace library stack-based buffer overflow
  76. Re: Re: licq remote DoS?
  77. EUSecWest CFP Closes April 14th (conf May 21/22 2008)
  78. [SECURITY] [DSA 1545-1] New rsync packages fix arbitrary code execution
  79. [ GLSA 200804-10 ] Tomcat: Multiple vulnerabilities
  80. [ GLSA 200804-09 ] am-utils: Insecure temporary file creation
  81. Protection Specialist's Summit
  82. w2b.ru multiple products SQL Injection
  83. [USN-600-1] rsync vulnerability
  84. iDefense Security Advisory 04.09.08: EMC DiskXtender File System
  85. Borland InterBase 2007 "ibserver.exe" Buffer Overflow Vulnerability POC
  86. [SECURITY] [DSA 1546-1] New gnumeric packages fix arbitrary code execution
  87. iDefense Security Advisory 04.09.08: EMC DiskXtender MediaStor Format
  88. iDefense Security Advisory 04.09.08: EMC DiskXtender Authentication
  89. iDefense Security Advisory 04.09.08: EMC DiskXtender File System
  90. iDefense Security Advisory 04.09.08: EMC DiskXtender MediaStor Format
  91. WiKID wClient-PHP <= 3.0-2 Multiple XSS Vulnerabilities
  92. [ GLSA 200804-12 ] gnome-screensaver: Privilege escalation
  93. [ GLSA 200804-11 ] policyd-weight: Insecure temporary file creation
  94. [ GLSA 200804-11 ] policyd-weight: Insecure temporary file creation
  95. Directory traversal and multiple Denials of Service in HP OpenView
  96. No Subject
  97. IOActive Security Advisory: Incorrect input validation in PyString_FromStringAndSize() leads to multiple buffer overflows
  98. [ MDVSA-2008:084 ] - Updated rsync packages fix vulnerability
  99. DEF CON 16 Retro Announcement! Back to Bang!
  100. DEF CON 16 Retro Announcement! Back to Bang!
  101. Re: WoltLab(R) Community Framework WCF 1.0.6
  102. Re: WoltLab(R) Community Framework WCF 1.0.6
  103. [oCERT-2008-003] libpng zero-length chunks incorrect handling
  104. OneSecurityDay 2008 - Web application auditing challenge
  105. DOINGSOFT-2008-03-10-001 - XSS issue in BOXiR2
  106. Secunia Research: Lotus Notes EML Reader Buffer Overflows
  107. Secunia Research: Autonomy Keyview Applix Graphics Parsing
  108. Secunia Research: Internet Explorer Data Stream Handling
  109. DEF CON 16 Retro Announcement! Back to Bang!
  110. project announcement - oCERT - Open Source CERT
  111. Secunia Research: Lotus Notes kvdocve.dll Path Processing Buffer
  112. OneSecurityDay 2008 - Web application auditing challenge
  113. Secunia Research: activePDF DocConverter Folio Flat File Parsing
  114. Secunia Research: Adobe Flash Player "Declare Function (V7)" Heap
  115. Secunia Research: Lotus Notes htmsr.dll Buffer Overflows
  116. Secunia Research: Symantec Mail Security Folio Flat File Parsing
  117. Secunia Research: Lotus Notes Applix Graphics Parsing
  118. Secunia Research: Lotus Notes Folio Flat File Parsing Buffer
  119. Secunia Research: Autonomy Keyview Folio Flat File Parsing Buffer
  120. Secunia Research: HP OpenView Network Node Manager OpenView5.exe
  121. Secunia Research: Autonomy Keyview EML Reader Buffer Overflows
  122. OneSecurityDay 2008 - Web application auditing challenge
  123. Secunia Research: Symantec Mail Security Applix Graphics Parsing
  124. Secunia Research: activePDF DocConverter Applix Graphics Parsing
  125. S21SEC-042-en:Cezanne SW Cross-Site Scripting (login required)
  126. Fones Clinic Mart SQL
  127. [USN-601-1] Squid vulnerability
  128. S21SEC-041-en:Cezanne SW Cross-Site Scripting
  129. S21SEC-043-en:Cezanne SW Blind SQL Injection
  130. [ GLSA 200804-15 ] libpng: Execution of arbitrary code
  131. [ GLSA 200804-13 ] Asterisk: Multiple vulnerabilities
  132. BosNews v4.0 Remote add user admin
  133. clamav: Endless loop / hang with crafter arj, CVE-2008-1387
  134. BosNews 2002-2006 Remote add user admin
  135. clamav: Endless loop / hang with crafter arj, CVE-2008-1387
  136. clamav: Endless loop / hang with crafter arj, CVE-2008-1387
  137. BosNews 2002-2006 Remote add user admin
  138. BosNews 2002-2006 Remote add user admin
  139. Re: Secunia Research: Lotus Notes Folio Flat File Parsing Buffer
  140. [ MDVSA-2008:086 ] - Updated kernel packages fix vulnerability
  141. BosNews v4.0 Remote add user admin
  142. Koobi Pro 6.25 poll Remote SQL Injection Vulnerability
  143. Troopers08 Security Conference, April 23/24 (Munich/Germany)
  144. [ GLSA 200804-14 ] Opera: Multiple vulnerabilities
  145. Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability
  146. BosNews v4.0 Remote add user admin
  147. KwsPHP (Upload) Remote Code Execution Exploit
  148. [ MDVSA-2008:085 ] - Updated python packages fix arbitrary code
  149. Koobi CMS 4.2.4/4.2.5/4.3.0 Multiple Remote SQL Injection
  150. Oracle - SQL Injection in package SDO_GEOM [DB06]
  151. Carbon Communities forum Multiple Vulnerabilities.
  152. VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp,
  153. Oracle - SQL Injection Vulnerability in SDO_UTIL [DB05]
  154. remote file include
  155. iDefense Security Advisory 04.14.08: ClamAV libclamav PE WWPack Heap
  156. [INFIGO-2008-04-08]: ICQ 6 remote buffer overflow vulnerability
  157. [SECURITY] [DSA 1540-2] New lighttpd packages fix denial of service
  158. remote file include
  159. WordPress 2.5 - Salt cracking vulnerability
  160. Oracle - Hardcoded Password and Password Reset of OUTLN User [DB13]
  161. DIVX Player <= 6.7.0 Buffer Overflow PoC ( .SRT )
  162. [ MDVSA-2008:086 ] - Updated kernel packages fix vulnerability
  163. Cisco Security Advisory: Cisco Network Admission Control Shared Secret Vulnerability
  164. iDefense Security Advisory 04.09.08: IBM DB2 Universal Database Administration
  165. iDefense Security Advisory 04.15.08: Oracle Application Express Privilege
  166. Classifieds Caffe (index.php cat_id) Remote SQL Injection
  167. Classifieds Caffe (index.php cat_id) Remote SQL Injection
  168. Classifieds Caffe (index.php cat_id) Remote SQL Injection
  169. BigAnt Server 2.2 PreAuth Remote SEH Overflow Exploit (0day)
  170. Oracle - SQL Injection in package SDO_IDX [DB07]
  171. iDefense Security Advisory 04.09.08: IBM DB2 Universal Database db2dasStartStopFMDaemon
  172. Re: PHPSlideShow (toonchapter8.php) Cross-Site Scripting
  173. FreeBSD Security Advisory FreeBSD-SA-08:05.openssh
  174. [ MDVSA-2008:087 ] - Updated policykit package fixes format string
  175. [oCERT-2008-004] multiple speex implementations insufficient
  176. [ GLSA 200804-16 ] rsync: Execution of arbitrary code
  177. [ GLSA 200804-17 ] Speex: User-assisted execution of arbitrary code
  178. [ GLSA 200804-18 ] Poppler: User-assisted execution of arbitrary code
  179. [security bulletin] HPSBMA02133 SSRT061201 rev.8 - HP Oracle for OpenView (OfO) Critical Patch Update
  180. [security bulletin] HPSBST02329 SSRT080048 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-018 to MS08-025
  181. Microsoft Works 7 WkImgSrv.dll crash POC
  182. [security bulletin] HPSBMA02328 SSRT071293 rev.2 - HP OpenView Network Node Manager (OV NNM) Running Apache, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execute Arbitrary Code
  183. [SECURITY] [DSA 1547-1] New OpenOffice.org packages fix arbitrary code execution
  184. [SECURITY] [DSA 1548-1] New xpdf packages fix arbitrary code exitution
  185. [USN-603-1] poppler vulnerability
  186. Re: BigAnt Server 2.2 PreAuth Remote SEH Overflow Exploit (0day)
  187. [USN-603-2] KOffice vulnerability
  188. [SECURITY] [DSA 1549-1] New clamav packages fix several vulnerabilities
  189. Re: [Full-disclosure] Secunia Research: Lotus Notes Folio Flat File
  190. [SECURITY] [DSA 1550-1] New suphp packages fix local privilege escalation
  191. iDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice OLE
  192. iDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice EMF
  193. iDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice QPRO
  194. iDefense Security Advisory 04.17.08: Multiple Vendor OpenOffice QPRO
  195. [ GLSA 200804-19 ] PHP Toolkit: Data disclosure and Denial of Service
  196. [ MDVSA-2008:088 ] - Updated clamav packages fix multiple
  197. [ MDVSA-2008:089 ] - Updated poppler packages fix vulnerability
  198. Wikepage Wiki v.2007-2 Cross-Site Scripting
  199. BitTorrent Clients and CSRF
  200. 5th avenue Shopping Cart SQL Injection
  201. [ GLSA 200804-21 ] Adobe Flash Player: Multiple vulnerabilities
  202. Team SHATTER Security Advisory: Multiple DoS in JAR files manipulation
  203. Team SHATTER Security Advisory: IBM DB2 UDB Arbitrary code execution
  204. [ GLSA 200804-20 ] Sun JDK/JRE: Multiple vulnerabilities
  205. LightNEasy v.1.2.2 flat Multiple Vulnerabilities
  206. Team SHATTER Security Advisory: IBM DB2 UDB Arbitrary file overwrite
  207. [ GLSA 200804-22 ] PowerDNS Recursor: DNS Cache Poisoning
  208. ANNOUNCE: RFIDIOt-0.1s release (now available for Windows)
  209. [SECURITY] [DSA 1551-1] New python2.4 packages fix several vulnerabilities
  210. [SECURITY] [DSA 1552-1] New mplayer packages fix arbitrary code execution
  211. Token Kidnapping (Microsoft Security Advisory 951306) presentation available
  212. IRM Security Advisory : RedDot CMS SQL injection vulnerability
  213. Deciphering the Simple Machines Forum audio Captcha
  214. SyScan'08 Singapore - Call for Paper
  215. Deciphering the PHP-Nuke Capthca
  216. Acidcat CMS Multiple Vulnerabilities
  217. [SECURITY] [DSA 1553-1] New ikiwiki packages fix cross-site request forgery
  218. Powered by gCards v1.46 SQL
  219. Re: Re: Smf 1.1.4 Remote File Inclusion Vulnerabilities
  220. ANNOUNCE: Security Implications of Windows Access Tokens Whitepaper
  221. [ GLSA 200804-23 ] CUPS: Integer overflow vulnerability
  222. Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection
  223. [ GLSA 200804-24 ] DBmail: Data disclosure
  224. Sea-Surfing on the Motorola Surfboard
  225. [ MDVSA-2008:090 ] - Updated OpenOffice.org packages fix
  226. Re: Powered by gCards v1.46 SQL
  227. [USN-602-1] Firefox vulnerabilities
  228. Correcting CVEs (was Re: [Full-disclosure] Cross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387))
  229. [USN-604-1] Gnumeric vulnerability
  230. [USN-602-1] Firefox vulnerabilities
  231. [USN-604-1] Gnumeric vulnerability
  232. Cross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387)
  233. Correcting CVEs (was Re: [Full-disclosure] Cross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387))
  234. [USN-602-1] Firefox vulnerabilities
  235. Cross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387)
  236. Correcting CVEs (was Re: [Full-disclosure] Cross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387))
  237. [USN-602-1] Firefox vulnerabilities
  238. Safari 3.1.1 Multiple Vulnerabilities for windows
  239. Firefox 3.0 beta 5 crash
  240. Re: Firefox 3.0 beta 5 crash
  241. [SECURITY] [DSA 1554-1] New roundup packages fix cross-site scripting vulnerability
  242. Re: Default key algorithm in Thomson and BT Home Hub routers
  243. AST-2008-006 - 3-way handshake in IAX2 incomplete
  244. Horde Webmail XSS [Aria-Security]
  245. LayerOne 2008 - Final Pre-Con Update
  246. LayerOne 2008 - Final Pre-Con Update
  247. NetClassifieds Sql Injection
  248. NetClassifieds Sql Injection
  249. Zune software - arbitrary file overwrite
  250. Horde Webmail XSS [Aria-Security]