bugtraq 2000/01
By Thread
Most recent messages
448 messages sorted by:
[ author ]
[ date ]
[ subject ]
Other mail archives
Starting: Sat Jan 01 2000 - 01:43:30 PST
Ending: Thu Jul 04 2002 - 09:19:48 PDT
- Re: irix-soundplayer.sh pdaat_private (Wed Dec 31 1969 - 15:59:59 PST)
- Re: irix-soundplayer.sh... NOT Irix 6.4 pdaat_private (Wed Dec 31 1969 - 15:59:59 PST)
- Happy New Year from BUGTRAQ and Security Focus Elias Levy (Sat Jan 01 2000 - 01:16:21 PST)
- UT DDoS risk bugtestat_private (Sat Jan 01 2000 - 01:43:30 PST)
- HP's Security Bulletins Digest (fwd) Justin Tripp (Sat Jan 01 2000 - 06:25:23 PST)
- Re: strace can lie Pavel Machek (Sat Jan 01 2000 - 12:26:17 PST)
- Re: majordomo local exploit John Archie (Sat Jan 01 2000 - 20:45:20 PST)
- Re: More info on MS99-061 (IIS escape character vulnerability) Joakim Karlmark (Sun Jan 02 2000 - 03:51:50 PST)
- HPUX Aserver revisited. Justin Tripp (Sun Jan 02 2000 - 12:49:49 PST)
- Y2K bug in Shadow IDS Alfred Huger (Sun Jan 02 2000 - 13:00:52 PST)
- Re: Y2K bug in Shadow IDS (fwd) Alfred Huger (Sun Jan 02 2000 - 14:13:38 PST)
- Hotmail security hole - injecting JavaScript using <IMG Georgi Guninski (Mon Jan 03 2000 - 05:34:13 PST)
- FW: Patch issued for AltaVista Search Engine Directory AVsearch (Mon Jan 03 2000 - 06:58:09 PST)
- compartment Marc Heuse (Mon Jan 03 2000 - 11:34:20 PST)
- Symlinks and Cryogenic Sleep Olaf Kirch (Mon Jan 03 2000 - 12:24:43 PST)
- PHP3 safe_mode and popen() Kristian Koehntopp (Mon Jan 03 2000 - 13:47:40 PST)
- First Telecom E-conso service totally insecure Thomas Quinot (Mon Jan 03 2000 - 15:10:30 PST)
- Subscription bomb tracing - feature request. Alan Brown (Mon Jan 03 2000 - 18:15:22 PST)
- Re: Hotmail security hole - injecting JavaScript using <IMG LOWSR Microsoft Product Security Response Team (Mon Jan 03 2000 - 18:41:54 PST)
- Another search.cgi vulnerability k0ad k1d (Mon Jan 03 2000 - 18:52:23 PST)
- SHADOW and Y2K Problems Bill Ralph (Tue Jan 04 2000 - 05:41:20 PST)
- Flaw in 3c59x.c or in Kernel? Sonny Parlin (Tue Jan 04 2000 - 06:21:36 PST)
- Yet another Hotmail security hole - injecting JavaScript in IE Georgi Guninski (Tue Jan 04 2000 - 06:22:37 PST)
- Fw: [CERT Advisory CA-2000-01] Guy Cohen (Tue Jan 04 2000 - 10:46:56 PST)
- FWD: Redhat advisory Alfred Huger (Tue Jan 04 2000 - 12:43:39 PST)
- The WebTV Email Exploit Dale E. Chulhan (Tue Jan 04 2000 - 13:07:05 PST)
- [petrilliat_private: [Zope] SECURITY ALERT] George Lewis (Tue Jan 04 2000 - 14:22:19 PST)
- Re: Hotmail security hole - injecting JavaScript using Philip Stoev (Tue Jan 04 2000 - 14:29:10 PST)
- Security problem with Solstice Backup/Legato Networker recover Chris Siebenmann (Tue Jan 04 2000 - 14:37:04 PST)
- [rootshell] Security Bulletin #27 Kit Knox (Tue Jan 04 2000 - 15:16:49 PST)
- Microsoft Security Bulletin (MS00-001) Microsoft Product Security (Tue Jan 04 2000 - 16:12:52 PST)
- L0pht Advisory: RH Linux 6.0/6.1, PAM and userhelper Dildog (Tue Jan 04 2000 - 17:09:05 PST)
- New Allaire Security Zone Bulletins and KB Article Aleph One (Tue Jan 04 2000 - 18:45:45 PST)
- Re: Yet another Hotmail security hole - injecting JavaScript in Nick FitzGerald (Tue Jan 04 2000 - 19:58:33 PST)
- Re: FWD: Redhat advisory (RPM --upgrade/-U vs. --freshen/-F) Peter W (Tue Jan 04 2000 - 20:03:04 PST)
- userhelper/PAM exploit Derek Callaway (Tue Jan 04 2000 - 21:21:26 PST)
- Local / Remote D.o.S Attack in IMail IMONITOR Server for WinNT Ussr Labs (Wed Jan 05 2000 - 01:07:15 PST)
- CuteFTP saved password 'encryption' weakness Nick FitzGerald (Wed Jan 05 2000 - 01:39:02 PST)
- Re: vibackup.sh Kris Kennaway (Wed Jan 05 2000 - 02:22:40 PST)
- SECURITY ALERT - WAR FTP DAEMON ALL VERSIONS Jarle Aase (Wed Jan 05 2000 - 03:41:05 PST)
- JS problem in NS4.5 - known? Nick Phillips (Wed Jan 05 2000 - 05:46:05 PST)
- "SANS Flash Alert For Solaris" Chok Poh (Wed Jan 05 2000 - 10:23:32 PST)
- [Hackerslab bug_paper] Solaris chkperm buffer overflow ±è¿ëÁØ KimYongJun (99Á¹¾÷) (Wed Jan 05 2000 - 11:36:18 PST)
- Sun Security Bulletin #00193 (fwd) Jay D. Dyson (Wed Jan 05 2000 - 16:50:37 PST)
- Handspring Visor Network HotSync Security Hole Jay C Austad (Wed Jan 05 2000 - 17:55:45 PST)
- Re: Netscape Communicator 4.7 exploit [NT/win2k]. Thompson, Zach, CPG (Thu Jan 06 2000 - 06:05:41 PST)
- Re: Announcement: Solaris loadable kernel module backdoor der Mouse (Thu Jan 06 2000 - 08:20:46 PST)
- Security Bulletins Digest Aleph One (Thu Jan 06 2000 - 10:11:46 PST)
- Phorum 3.0.7 exploits and IDS signatures Max Vision (Thu Jan 06 2000 - 16:48:03 PST)
- Stack Shield 0.7 beta vendicatorat_private (Thu Jan 06 2000 - 19:15:08 PST)
- IE 5 security vulnerablity - circumventing Cross-frame security Georgi Guninski (Fri Jan 07 2000 - 06:32:22 PST)
- PalmCrack - The password testing tool for the Palm Computing swlodinat_private (Fri Jan 07 2000 - 09:41:24 PST)
- [RHSA-2000:002] New lpr packages available Bill Nottingham (Fri Jan 07 2000 - 15:14:49 PST)
- Stack Sheild 0.7 and SFP Overwrites vendicatorat_private (Fri Jan 07 2000 - 16:21:27 PST)
- L0pht Advisory: LPD, RH 4.x,5.x,6.x Dildog (Sat Jan 08 2000 - 09:40:51 PST)
- Buffer overflow with WinAmp 2.10 Transfer Interrupted (Sun Jan 09 2000 - 02:21:31 PST)
- Altavista followup rudi carell (Sun Jan 09 2000 - 07:37:04 PST)
- secure-programs howto Signal 11 (Sun Jan 09 2000 - 10:08:18 PST)
- strace can lie ... but LTT might be handy Karim Yaghmour (Sun Jan 09 2000 - 11:01:17 PST)
- 2nd attempt: AIX techlibss follows links Klaus.Kuscheat_private (Mon Jan 10 2000 - 00:20:46 PST)
- Yet another Hotmail security hole - injecting JavaScript using Georgi Guninski (Mon Jan 10 2000 - 06:31:59 PST)
- IIS still revealing paths for web directories Vanja Hrustic (Mon Jan 10 2000 - 11:42:31 PST)
- Serious bug in MySQL password handling. Viktor Fougstedt (Tue Jan 11 2000 - 08:34:54 PST)
- NIS2k Bacano (Tue Jan 11 2000 - 09:18:16 PST)
- ICQ Buffer Overflow Exploit drew copley (Tue Jan 11 2000 - 10:30:43 PST)
- PowerScripts PlusMail Vulnerablity YT Cracker (Tue Jan 11 2000 - 13:43:13 PST)
- SRS (Secure Remote Streaming): a secure Unix syslog Matt Conover (Tue Jan 11 2000 - 19:25:54 PST)
- Re: Analysis of "stacheldraht" Dave Dittrich (Tue Jan 11 2000 - 20:38:17 PST)
- Anyone can take over virtually any domain on the net... Thomas Reinke (Tue Jan 11 2000 - 21:27:18 PST)
- Serious Bug in Corel Linux.(Local root exploit) tasconat_private (Wed Jan 12 2000 - 00:26:49 PST)
- Blinding BIND to a moving domain D. J. Bernstein (Wed Jan 12 2000 - 00:28:07 PST)
- IE 5.0 vs. XML-files David Komanek (Wed Jan 12 2000 - 07:16:29 PST)
- Multiple WebMail Vendor Vulnerabilities CDI (Wed Jan 12 2000 - 08:48:56 PST)
- CyberCash MCK 3.2.0.4: Large /tmp hole Sheldon Young (Wed Jan 12 2000 - 10:00:38 PST)
- Administrivia: ORBS Elias Levy (Wed Jan 12 2000 - 11:09:22 PST)
- SRS Addendum Matt Conover (Wed Jan 12 2000 - 14:36:49 PST)
- Password issue in Axent ESM 5.0.1 Console Todd (Wed Jan 12 2000 - 16:04:14 PST)
- WebSitePro/2.3.18 is revealing Webdirectories Lark Lizerman (Wed Jan 12 2000 - 19:35:25 PST)
- SV: IIS still revealing paths for web directories Kristoffer Ustad (Thu Jan 13 2000 - 00:09:02 PST)
- Local / Remote D.o.S Attack in Super Mail Transfer Package (SMTP) Ussr Labs (Thu Jan 13 2000 - 00:25:27 PST)
- Info on some security holes reported against SCO Unixware. Aaron Sigel (Thu Jan 13 2000 - 05:07:49 PST)
- Re: XML in IE 5.0 Mike Brown (Thu Jan 13 2000 - 07:12:17 PST)
- mSQL and not MySQL exploit Tonu Samuel (Thu Jan 13 2000 - 07:18:27 PST)
- ssh-proxy, a new approach to firewall software Magosanyi Arpad (Thu Jan 13 2000 - 09:10:05 PST)
- Re: procmail / Sendmail - five bugs Gregory Neil Shapiro (Thu Jan 13 2000 - 09:14:55 PST)
- Misleading sense of security in Netscape Craig Ruefenacht (Thu Jan 13 2000 - 11:15:40 PST)
- New MySQL Available Scott (Thu Jan 13 2000 - 11:47:33 PST)
- BindView Security Advisory: Local Promotion Vulnerability in BindView Security Advisory (Thu Jan 13 2000 - 12:45:36 PST)
- Microsoft Security Bulletin (MS00-003) Microsoft Product Security (Thu Jan 13 2000 - 13:06:24 PST)
- Re: CyberCash MCK 3.2.0.4: Large /tmp hole (fwd) Dave G. (Thu Jan 13 2000 - 14:33:36 PST)
- MS IIS 5.0 Access Violation on handling URL String Lark Lizerman (Thu Jan 13 2000 - 19:05:53 PST)
- Re: WebSitePro/2.3.18 + 2.4.9 is revealing Webdirectories Lark Lizerman (Thu Jan 13 2000 - 22:23:45 PST)
- Fwd: Crash identified in Notes, Domino, Xander Teunissen (Fri Jan 14 2000 - 11:00:36 PST)
- Re: Anyone can take over virtually any domain... Brian Mueller (Fri Jan 14 2000 - 20:33:13 PST)
- Altavista Free Internet Security Plex Inphiniti (Fri Jan 14 2000 - 22:58:24 PST)
- Re: HOTMAIL is revealing Webdirectories Gushterul (Sat Jan 15 2000 - 05:37:11 PST)
- Announce: BOF on Distributed DoS, San Jose 1/18/00 David Kennedy CISSP (Sat Jan 15 2000 - 23:37:57 PST)
- Re: Password Issue in Axent ESM 5.0.1 Console Todd Hathaway (Sun Jan 16 2000 - 00:31:38 PST)
- TB2 Pro sending NT passwords cleartext David Masten (Sun Jan 16 2000 - 13:16:50 PST)
- Yahoo Pager/Messanger Buffer Overflow Jaynus Jaynus (Sun Jan 16 2000 - 22:55:44 PST)
- [support_feedback@us-support.external.hp.com: Security Bulletins Patrick Oonk (Mon Jan 17 2000 - 05:23:38 PST)
- Security hole in mail2web web-based emailservice Patrick Oonk (Mon Jan 17 2000 - 05:43:53 PST)
- usual iploggers miss some variable stealth scans vecna (Mon Jan 17 2000 - 11:26:10 PST)
- Nortel Contivity Vulnerability foo (Mon Jan 17 2000 - 16:21:03 PST)
- Microsoft Security Bulletin (MS00-005) Microsoft Product Security (Mon Jan 17 2000 - 16:49:11 PST)
- Re: problem with SNMPc John Comeau (Mon Jan 17 2000 - 17:22:11 PST)
- Updated PalmCrack 1.1 Distribution Noncon Inc (Mon Jan 17 2000 - 17:38:26 PST)
- Re: tcpdump under RedHat 6.1 John Comeau (Mon Jan 17 2000 - 19:33:55 PST)
- More Interscan Viruswall stuff john lampe (Tue Jan 18 2000 - 06:17:18 PST)
- AW: usual iploggers miss some variable stealth scans Tobi (Tue Jan 18 2000 - 06:21:24 PST)
- Warning: VCasel security hole. bob mare (Tue Jan 18 2000 - 06:45:10 PST)
- Administrivia Elias Levy (Tue Jan 18 2000 - 08:21:36 PST)
- Trusted process on an untrusted machine? Mike Frantzen (Tue Jan 18 2000 - 09:47:20 PST)
- stream.c - new FreeBSD exploit? The Tree of Life (Tue Jan 18 2000 - 14:44:38 PST)
- Some discussion in http-wg ... FW: webmail vulnerabilities: a new Eric D. Williams (Wed Jan 19 2000 - 09:19:28 PST)
- FW: FreeBSD Security Advisory: FreeBSD-SA-00:01.make FreeBSD Security Officer (Wed Jan 19 2000 - 11:05:24 PST)
- Graphiciizing su for NT WAS: RE: XML in IE 5.0 SanMillan, Todd (Wed Jan 19 2000 - 14:48:09 PST)
- SubSeven 2.1a (trojan) Andrew Griffiths (Wed Jan 19 2000 - 14:58:41 PST)
- Unixware ppptalk what's your style? (Wed Jan 19 2000 - 15:57:17 PST)
- Security Issues with HIGHSPEEDWEB.NET leased servers Brian Mueller (Wed Jan 19 2000 - 17:42:09 PST)
- connlogd update Alec Kosky (Wed Jan 19 2000 - 18:25:00 PST)
- Crafted Packets Handling by Firewalls - FW-1 case Ofir Arkin (Wed Jan 19 2000 - 22:33:38 PST)
- Worldsecure/Mail 4.3 vulnerability Andreas Küchler (Thu Jan 20 2000 - 01:26:39 PST)
- Re: Some discussion in http-wg ... FW: webmail vulnerabilities: a Ryan Russell (Thu Jan 20 2000 - 11:44:06 PST)
- Microsoft Security Bulletin (MS00-002) Microsoft Product Security (Thu Jan 20 2000 - 11:51:00 PST)
- FW: Security Vulnerability with SMS 2.0 Remote Control Brandon Eisenmann (Thu Jan 20 2000 - 13:53:23 PST)
- Rh 6.1 initial root password encryption Ken Barber (Thu Jan 20 2000 - 15:57:45 PST)
- AusCERT Advisory AA-2000.01 Majordomo open() call Vulnerability Christopher P. Lindsey (Thu Jan 20 2000 - 16:21:23 PST)
- Quick remedy for stream.c Brett Glass (Thu Jan 20 2000 - 19:01:33 PST)
- Microimages X Server for Win - Vulnerability Mike Wilson (Thu Jan 20 2000 - 23:16:21 PST)
- (no subject) Morris, Joseph L. (Fri Jan 21 2000 - 05:57:19 PST)
- Nortel Contivity Vulnerability: typo foo (Fri Jan 21 2000 - 06:17:13 PST)
- Vulnerabilities in Checkpoint FW-1 version 3.x and maybe 4.x root (Fri Jan 21 2000 - 06:31:38 PST)
- explanation and code for stream.c issues Tim Yardley (Fri Jan 21 2000 - 09:25:26 PST)
- *BSD procfs vulnerability FEAR Advisories (Fri Jan 21 2000 - 12:10:06 PST)
- stream.c/raped.c tests (just for stats) Vanja Hrustic (Fri Jan 21 2000 - 13:01:37 PST)
- Microsoft Security Bulletin (MS00-004) Microsoft Product Security (Fri Jan 21 2000 - 13:31:28 PST)
- stream.c Dino Amato (Fri Jan 21 2000 - 14:40:08 PST)
- RDISK registry enumeration file vulnerability in Windows NT 4.0 Arne Vidstrom (Fri Jan 21 2000 - 15:04:23 PST)
- NIS security advisory : password method downgrade Stefan Laudat (Fri Jan 21 2000 - 15:15:07 PST)
- Windows 2000 Run As... Feature David Terrell (Fri Jan 21 2000 - 15:49:07 PST)
- Fwd: Re: Fwd: Re: explanation and code for stream.c issues Tim Yardley (Fri Jan 21 2000 - 16:52:54 PST)
- S/Key & OPIE Database Vulnerability harikiri (Fri Jan 21 2000 - 17:15:20 PST)
- Solaris 7 and solaris 8 file permissions Steve Dispensa (Sat Jan 22 2000 - 11:52:21 PST)
- RFPoison is not a trojan, and the source will prove it .rain.forest.puppy. (Sat Jan 22 2000 - 13:44:52 PST)
- remote root qmail-pop with vpopmail advisory and exploit with what's your style? (Sat Jan 22 2000 - 16:04:51 PST)
- The 200 trusted .com servers D. J. Bernstein (Sun Jan 23 2000 - 03:49:46 PST)
- Re: vpopmail/vchkpw remote root exploit D. J. Bernstein (Sun Jan 23 2000 - 14:54:27 PST)
- VMware 1.1.2 Symlink Vulnerability harikiri (Mon Jan 24 2000 - 06:48:43 PST)
- Re: RDISK registry enumeration file vulnerability in Windows NT Andy Polyakov (Mon Jan 24 2000 - 07:26:46 PST)
- majordomo 1.94.5 does not fix all vulnerabilities Brock Sides (Mon Jan 24 2000 - 12:55:42 PST)
- Re: VMware 1.1.2 Symlink Vulnerability (not) Peter W (Mon Jan 24 2000 - 21:19:41 PST)
- New Security Paradigms Workshop 2000: Call For Papers Crispin Cowan (Mon Jan 24 2000 - 21:35:03 PST)
- Lotus Notes Local Replicated Database Problem Matt Storey (Tue Jan 25 2000 - 01:02:59 PST)
- Stream.c needs more clarification Vanja Hrustic (Tue Jan 25 2000 - 07:25:40 PST)
- multicasts from hell Tim Yardley (Tue Jan 25 2000 - 07:39:47 PST)
- Qpopper security bug Zhodiac (Wed Jan 26 2000 - 05:55:11 PST)
- SAS behavior in Windows NT - RE: Windows 2000 Run As... Feature jdglaser (Wed Jan 26 2000 - 07:14:03 PST)
- Re: SAS behavior in Windows NT - RE: Windows 2000 Run As... David LeBlanc (Wed Jan 26 2000 - 13:08:45 PST)
- Microsoft Security Bulletin (MS00-006) Microsoft Product Security (Wed Jan 26 2000 - 21:52:49 PST)
- Future of s/key (Re: S/Key & OPIE Database Vulnerability) Frasnelli, Dan (Wed Jan 26 2000 - 21:59:35 PST)
- Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory CISADV000126) Mnemonix (Wed Jan 26 2000 - 22:00:12 PST)
- Multicast from hell John Watkins (Thu Jan 27 2000 - 08:12:47 PST)
- ANNOUNCE: CIS 5.0.0 Mnemonix (Thu Jan 27 2000 - 09:48:45 PST)
- New SCO patches... Aaron Sigel (Thu Jan 27 2000 - 10:46:46 PST)
- Cobalt RaQ2 - a user of mine changed my admin password.. Chuck Pitre - Technical Support (Thu Jan 27 2000 - 16:29:56 PST)
- FW: Undocumented back door NHCTC (Thu Jan 27 2000 - 19:08:33 PST)
- [FreeBSD Security Advisory: FreeBSD-SA-00:02.procfs] Patrick Oonk (Fri Jan 28 2000 - 01:22:08 PST)
- FTPPro has weird features - Fwd: Important matter for your abuse Cedric Amand (Fri Jan 28 2000 - 07:26:52 PST)
- Re: Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory Mnemonix (Fri Jan 28 2000 - 07:51:32 PST)
- SyGate 3.11 Port 7323 / Remote Admin hole jalertaat_private (Fri Jan 28 2000 - 16:08:46 PST)
- "Strip Script Tags" in FW-1 can be circumvented Arne Vidstrom (Sat Jan 29 2000 - 05:51:46 PST)
- Re: Cobalt RaQ2 - and QUBE2 Nir Simionovich (Rin Solo) (Sat Jan 29 2000 - 07:44:43 PST)
- rzsz emails usage stats without user consent Kris Kennaway (Sat Jan 29 2000 - 16:14:13 PST)
- [LoWNOISE] Rightfax web client 5.2 ET LoWNOISE (Sat Jan 29 2000 - 16:32:55 PST)
- RedHat 6.1 /and others/ PAM Michal Zalewski (Sun Jan 30 2000 - 03:12:16 PST)
- Tempfile vulnerabilities foo (Sun Jan 30 2000 - 14:58:14 PST)
- Bypass Virus Checking Neil Bortnak (Sun Jan 30 2000 - 21:39:59 PST)
- Disable Parent Paths Robert Zachary (Mon Jan 31 2000 - 07:37:47 PST)
- Re: Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory CISADV0001 Cave, Glynis (Mon Jan 31 2000 - 09:20:26 PST)
- [ Cobalt ] Security Advisory -- 01.31.2000 Jeff Bilicki (Mon Jan 31 2000 - 09:43:04 PST)
- New Allaire Security Zone Bulletin Aleph One (Mon Jan 31 2000 - 14:43:34 PST)
- Re: UT DDoS risk (possible solution) Auriemma Luigi (Sat Jan 01 2000 - 17:01:23 PST)
Last message date: Thu Jul 04 2002 - 09:19:48 PDT
Archived on: Thu Jul 04 2002 - 09:19:49 PDT
448 messages sorted by:
[ author ]
[ date ]
[ subject ]
Other mail archives
This archive was generated by hypermail 2b30
: Thu Jul 04 2002 - 09:19:49 PDT