bugtraq 2001/05
By Thread

Most recent messages
319 messages sorted by: [ author ] [ date ] [ subject ]
Other mail archives

Starting: Mon Apr 30 2001 - 10:17:06 PDT
Ending: Sat Jun 02 2001 - 19:55:50 PDT

Re: x86 vulnerability ? Thomas Dullien (Tue May 01 2001 - 01:21:56 PDT)
Re: Proof of concept DoS against novell border manager enterprise edition 3.5 Matthew Firth (Tue May 01 2001 - 03:52:12 PDT)
Re: iplanet calendar server 5.0p2 exposes Netscape Admin Servermaster password Adam Laurie (Tue May 01 2001 - 02:40:12 PDT)
Announcing ptyfix Paul Szabo (Mon Apr 30 2001 - 13:58:52 PDT)
- Re: Announcing ptyfix Florian Weimer (Wed May 02 2001 - 01:43:47 PDT)
  - Re: Announcing ptyfix Casper Dik (Wed May 02 2001 - 09:41:01 PDT)
Microsoft Security Bulletin MS01-023 Microsoft Product Security (Tue May 01 2001 - 08:50:05 PDT)
Windows 2000 IIS 5.0 Remote buffer overflow vulnerability (Remote SYSTEM Level Access) Marc Maiffret (Tue May 01 2001 - 13:15:10 PDT)
- Re: Windows 2000 IIS 5.0 Remote buffer overflow vulnerability (Remote SYSTEM Level Access) Lincoln Yeoh (Tue May 01 2001 - 18:57:42 PDT)
  - Re: Windows 2000 IIS 5.0 Remote buffer overflow vulnerability (Remote SYSTEM Level Access) Wanderley J. Abreu Jr. (Wed May 02 2001 - 08:55:34 PDT)
Microsoft Media Player ASX Parser buffer overflow vulnerability Pauli Ojanpera (Wed May 02 2001 - 03:57:12 PDT)
- Re: Microsoft Media Player ASX Parser buffer overflow vulnerability ByteRage (Sun May 06 2001 - 11:13:15 PDT)
Re: [SECURITY] [DSA 052-1] New sendfile packages fix root exploit Florian Weimer (Wed May 02 2001 - 02:24:01 PDT)
[ESA-20010426-01] openssl vulnerabilities EnGarde Secure Linux (Wed May 02 2001 - 06:38:12 PDT)
Permanently remove iis printer mapping railwayclubposseat_private (Tue May 01 2001 - 15:34:33 PDT)
- Re: Permanently remove iis printer mapping Phillip Renouf (Wed May 02 2001 - 09:10:45 PDT)
- Re: Permanently remove iis printer mapping Todd Ransom (Wed May 02 2001 - 11:15:07 PDT)
- Re: Permanently remove iis printer mapping railwayclubposseat_private (Thu May 03 2001 - 07:53:16 PDT)
- Re: Permanently remove iis printer mapping David LeBlanc (Wed May 02 2001 - 20:04:43 PDT)
Predictable Initial Sequence Numbers Elias Levy (Wed May 02 2001 - 09:27:10 PDT)
Windows 2000 .printer remote overflow proof of concept exploit Marc Maiffret (Wed May 02 2001 - 12:54:45 PDT)
- Re: Windows 2000 .printer remote overflow proof of concept exploit Matt Power (Wed May 02 2001 - 21:28:58 PDT)
  - Re: Windows 2000 .printer remote overflow proof ofconcept exploit Nobuo Miwa (Wed May 02 2001 - 23:33:45 PDT)
  - Re: Windows 2000 .printer remote overflow proof of concept exploit David Litchfield (Wed May 02 2001 - 06:23:31 PDT)
[RHSA-2001:058-04] Updated mount package available bugzillaat_private (Wed May 02 2001 - 13:51:00 PDT)
Solaris mailx Vulnerability Pablo Sor (Wed May 02 2001 - 09:30:45 PDT)
COMPAQ Security Advisory SSRT1-85U Tru64 UNIX - xntpd overflow Elias Levy (Wed May 02 2001 - 19:46:53 PDT)
SSRT0716-01 Security Advisory - Compaq Presario & Active-X Elias Levy (Wed May 02 2001 - 22:34:06 PDT)
IIS 5 remote exploit. dark spyrit (Thu May 03 2001 - 04:08:38 PDT)
minicom exploit zenith parsec (Thu May 03 2001 - 06:17:01 PDT)
Re: Windows 2000 IIS 5.0 Remote buffer overflow vulnerability (Re mote SYSTEM Level Access) Dehner, Ben (Wed May 02 2001 - 13:55:18 PDT)
Several Misbehaviors with the ICMP implementation (and the 'ping' utility) with MS based operating systems Ofir Arkin (Thu May 03 2001 - 06:51:26 PDT)
How to remove .printer mapping (WAS RE: Permanently remove IIS pr inter mapping) Turner, Keith (Thu May 03 2001 - 05:09:07 PDT)
Re: Windows 2000 .printer remote overflow proof of concept exploi t Russ (Thu May 03 2001 - 07:01:50 PDT)
.printer vulnerability needs execute perms? mark (Thu May 03 2001 - 10:04:35 PDT)
- Re: .printer vulnerability needs execute perms? Bronek Kozicki (Mon May 07 2001 - 01:50:19 PDT)
Cisco HSRP Weakness/DoS bashis (Thu May 03 2001 - 10:57:41 PDT)
- Re: Cisco HSRP Weakness/DoS Steven M. Bellovin (Thu May 03 2001 - 19:53:01 PDT)
- Re: Cisco HSRP Weakness/DoS bashis (Sat May 05 2001 - 09:12:16 PDT)
Vulnerabilities in CrushFTP Server joetestaat_private (Thu May 03 2001 - 14:13:40 PDT)
Potential DOS Vulnerability in WFTPD joetestaat_private (Thu May 03 2001 - 23:37:37 PDT)
Re: Winamp 2.6x / 2.7x buffer overflow Tom Laermans (Thu May 03 2001 - 13:03:32 PDT)
- Re: Winamp 2.6x / 2.7x buffer overflow ByteRage (Sun May 06 2001 - 04:33:32 PDT)
Cisco Catalyst 2900XL crashes with empty UDP packet when SNMP is disabled. bashis (Thu May 03 2001 - 11:00:47 PDT)
- Re: Cisco Catalyst 2900XL crashes with empty UDP packet when SNMP is disabled. Stefan Laudat (Sat May 05 2001 - 12:25:24 PDT)
IIS 5.0 PROPFIND DOS #2 Georgi Guninski (Sun May 06 2001 - 07:31:51 PDT)
Oracle's ADI 7.1.1.10.1 Major security hole Melanie Abbas (Mon May 07 2001 - 06:12:23 PDT)
Fun with IP Identification Field Values (Identifying Older MS Based OSs) Ofir Arkin (Sat May 05 2001 - 23:21:55 PDT)
- Re: Fun with IP Identification Field Values (Identifying Older MS Based OSs) marvinat_private (Tue May 08 2001 - 00:46:59 PDT)
- Re: Fun with IP Identification Field Values (Identifying Older MS Based OSs) Denis Ducamp (Mon May 07 2001 - 19:23:02 PDT)
  - Re: Fun with IP Identification Field Values (Identifying Older MSBased OSs) Crist Clark (Fri May 11 2001 - 10:58:31 PDT)
- Re: Fun with IP Identification Field Values (Identifying Older MS Based OSs) Aaron Campbell (Mon May 07 2001 - 13:01:26 PDT)
Advisory for MP3Mystic neme-dhcat_private (Mon May 07 2001 - 17:32:44 PDT)
Advisory for A1Stats neme-dhcat_private (Mon May 07 2001 - 17:31:12 PDT)
Vixie cron vulnerability Cade Cairns (Mon May 07 2001 - 15:08:49 PDT)
- Re: Vixie cron vulnerability Edwin Chiu (Tue May 08 2001 - 10:44:39 PDT)
  - Re: Vixie cron vulnerability Jay D. Dyson (Tue May 08 2001 - 14:01:21 PDT)
    - Re: Vixie cron vulnerability Kris Kennaway (Tue May 08 2001 - 15:07:52 PDT)
    - Re: Vixie cron vulnerability Wichert Akkerman (Tue May 15 2001 - 05:44:25 PDT)
- Re: Vixie cron vulnerability Michal Zalewski (Tue May 08 2001 - 08:30:55 PDT)
- Re: Vixie cron vulnerability Olaf Kirch (Tue May 08 2001 - 08:37:39 PDT)
Advisory for Electrocomm 2.0 neme-dhcat_private (Mon May 07 2001 - 17:33:18 PDT)
Advisory for Vdns neme-dhcat_private (Mon May 07 2001 - 17:35:37 PDT)
Advisory for Spynet Chat neme-dhcat_private (Mon May 07 2001 - 17:36:05 PDT)
- Re: Advisory for Spynet Chat Amaury Jacquot (Tue May 08 2001 - 12:01:21 PDT)
MDKSA-2001:047 - pine update Linux Mandrake Security Team (Mon May 07 2001 - 22:24:03 PDT)
[ESA-20010508-01] glibc local vulnerability EnGarde Secure Linux (Tue May 08 2001 - 09:14:10 PDT)
def-2001-24: Windows 2000 Kerberos DoS Peter Gründl (Wed May 09 2001 - 01:41:37 PDT)
Administrivia: Mail Problems Elias Levy (Wed May 09 2001 - 17:29:41 PDT)
Immunix OS Security update for samba Greg KH (Tue May 08 2001 - 17:24:25 PDT)
Samba 2.0.9 released - 2.0.8 did NOT fix the hole Andrew Tridgell (Tue May 08 2001 - 16:59:17 PDT)
PROGENY-SA-2001-13: gFTP client potentially vulnerable to attack Progeny Security Team (Tue May 08 2001 - 06:54:44 PDT)
[RHSA-2001:061-02] Updated nedit packages available bugzillaat_private (Tue May 08 2001 - 07:08:00 PDT)
[SECURITY] [DSA-055-1] gftp remote exploit debian-security-announceat_private (Tue May 08 2001 - 07:11:31 PDT)
Re: Windows 2000 .printer remote overflow proof of concept exploit.... Shawn Kleinart (Mon May 07 2001 - 18:37:29 PDT)
- Re: Windows 2000 .printer remote overflow proof of concept exploit.... Joshua Dodds (Fri May 11 2001 - 02:04:31 PDT)
another exploit for cfingerd. venomous (Sun May 06 2001 - 22:37:57 PDT)
Denicomp REXECD/RSHD Denial of Service Vulnerability SNS Research (Thu May 03 2001 - 12:27:42 PDT)
[SECURITY] [DSA-054-1] cron local root exploit debian-security-announceat_private (Mon May 07 2001 - 05:25:39 PDT)
Windows 2000 .printer remote overflow - webexplt.pl problem! Crussaider (Sun May 06 2001 - 04:35:53 PDT)
- Re: [BUGTRAQ] Windows 2000 .printer remote overflow - webexplt.plproblem! Paul Cardon (Fri May 11 2001 - 11:32:15 PDT)
Vulnerabilty in TYPsoft FTP server SosPiro (Mon May 07 2001 - 06:13:38 PDT)
[eyeonsecurity.net] Incredimail allows automatic over writing offiles on your hard disk Obscure - (Fri May 11 2001 - 10:15:37 PDT)
Solaris /usr/bin/mailx exploit (SPARC) Pablo Sor (Fri May 11 2001 - 07:51:59 PDT)
- Re: Solaris /usr/bin/mailx exploit (SPARC) Casper Dik (Mon May 14 2001 - 01:24:10 PDT)
- Re: Solaris /usr/bin/mailx exploit (SPARC) Andrew Hilborne (Tue May 15 2001 - 06:15:45 PDT)
RH7.0: man local gid 15 (man) exploit zenith parsec (Sun May 13 2001 - 13:07:34 PDT)
- Re: RH7.0: man local gid 15 (man) exploit Olaf Kirch (Mon May 14 2001 - 03:40:59 PDT)
- Re: RH7.0: man local gid 15 (man) exploit [UNCONFIRMED] Sylwester (Mon May 14 2001 - 12:21:47 PDT)
- Re: RH7.0: man local gid 15 (man) exploit solarat_private (Mon May 14 2001 - 18:00:28 PDT)
MDKSA-2001:050 - vixie-cron update Linux Mandrake Security Team (Thu May 10 2001 - 22:08:49 PDT)
MDKSA-2001:048 - cups update Linux Mandrake Security Team (Thu May 10 2001 - 22:07:39 PDT)
security hole in os groupware suite PHProjekt Albrecht Guenther (Tue May 08 2001 - 06:45:17 PDT)
- security hole in os groupware suite PHProjekt Albrecht Guenther (Thu May 10 2001 - 03:26:22 PDT)
MDKSA-2001:049 - Zope update Linux Mandrake Security Team (Thu May 10 2001 - 22:08:11 PDT)
Hexyn / Securax Advisory #15,16,17,18,19 Tom Tom (Sat May 05 2001 - 14:15:39 PDT)
Advisory for Jana server neme-dhcat_private (Mon May 07 2001 - 17:31:58 PDT)
RH 7.0:/usr/bin/man exploit: gid man + more zenith parsec (Sun May 13 2001 - 13:17:22 PDT)
IIS5 .printer exploit ported to perl and win32 Cyrus The Great (Sun May 13 2001 - 06:12:02 PDT)
Becky! 2.00.05 Buffer Overflow Ichinose Sayo (Mon May 14 2001 - 01:01:31 PDT)
iPlanet Web Server 4.1 SP 4-7 Product Alert Santi Claus (Mon May 14 2001 - 05:50:29 PDT)
def-2001-25: Carello E-Commerce Arbitrary Command Execution Peter Gründl (Mon May 14 2001 - 04:13:24 PDT)
Corsaire Limited Security Advisory - Symantec/Axent NetProwler 3. 5.x password restrictions Martin O'Neal (Thu May 10 2001 - 02:25:29 PDT)
Personal Web Sharing remote stop Jass Seljamaa (Wed May 09 2001 - 22:32:43 PDT)
NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error Vulnerability Nsfocus Security Team (Mon May 14 2001 - 19:19:08 PDT)
Corsaire Limited Security Advisory - Symantec/Axent NetProwler 3. 5.x database configuration Martin O'Neal (Thu May 10 2001 - 02:25:34 PDT)
- Re: Corsaire Limited Security Advisory - Symantec/Axent NetProwler 3. 5.x database configuration Sym Security (Tue May 15 2001 - 13:56:37 PDT)
[RHSA-2001:065-05] New Zope packages are available bugzillaat_private (Mon May 14 2001 - 16:41:24 PDT)
[RHSA-2001:044-08] New samba packages available to fix /tmp races bugzillaat_private (Mon May 14 2001 - 19:20:34 PDT)
Re: Administrivia: Move to EZMLM aleph1at_private (Tue May 15 2001 - 09:44:50 PDT)
RE: NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error V ulnerability Andrew Thomas (Tue May 15 2001 - 04:58:55 PDT)
3COM OfficeConnect DSL router vulneratibilities inc (Tue May 15 2001 - 05:56:08 PDT)
- Re: 3COM OfficeConnect DSL router vulneratibilities James Renken (Tue May 15 2001 - 14:01:25 PDT)
ISS Advisory: Remote Buffer Overflow Vulnerability in IRIX Embedded Support Partner Infrastructure X-Force (Tue May 15 2001 - 06:13:51 PDT)
SuSE Security Announcement: cron Sebastian Krahmer (Tue May 15 2001 - 05:54:00 PDT)
IIS Exploit Filip Maertens (Tue May 15 2001 - 08:11:11 PDT)
Sendfile daemon bugs psheepat_private (Tue May 15 2001 - 09:10:49 PDT)
Rumpus FTP DoS Jass Seljamaa (Tue May 15 2001 - 10:22:38 PDT)
DCForum Password File Manipukation Vulnerability (qDefense Advisory Number QDAV-5-2000-2) Franklin DeMatto (Tue May 15 2001 - 11:52:33 PDT)
Sun Security Bulletin #00202 (i386 syscalls) Jay D. Dyson (Tue May 15 2001 - 14:02:15 PDT)
Cable-Router AR220e Portmapper Security-Flaw Axel Hammer (Mon May 14 2001 - 02:03:54 PDT)
PHPSlash : potential vulnerability in URL blocks tobozo tagada (Tue May 15 2001 - 04:46:13 PDT)
SuSE Security Announcement: cron (SuSE-SA:2001:17) Roman Drahtmueller (Tue May 15 2001 - 06:53:15 PDT)
OmniHTTPd Pro Denial of Service Vulnerability SNS Research (Tue May 15 2001 - 14:27:59 PDT)
iPlanet - Netscape Enterprise Web Publisher Buffer Overflow Marc Maiffret (Tue May 15 2001 - 16:08:54 PDT)
iis exploit (fixed) Hux Flux (Tue May 15 2001 - 19:53:42 PDT)
MDKSA-2001:047-1 - pine update Linux Mandrake Security Team (Tue May 15 2001 - 20:03:18 PDT)
Re: RH7.0: man local gid 15 (man) exploit Colin Watson (Tue May 15 2001 - 12:16:14 PDT)
Re: Cisco HSRP Weakness/DoS Damir Rajnovic (Tue May 15 2001 - 23:42:10 PDT)
Test for last IIS-escape vulnerability Leif Jakob (Tue May 15 2001 - 08:01:28 PDT)
RE: Microsoft IIS CGI Filename Decode Error Vulnerability d0gman ! (Tue May 15 2001 - 04:27:39 PDT)
Re: Solaris /usr/bin/mailx exploit (SPARC) Tobias J. Kreidl (Tue May 15 2001 - 14:47:02 PDT)
[RE: NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error V ulnerability] e-Security Chap (Tue May 15 2001 - 15:42:10 PDT)
RE: Windows 2000 .printer remote overflow proof of concept exploit.... Christopher Gerg (Tue May 15 2001 - 06:08:02 PDT)
Microsoft IIS CGI Filename Decode Error Vulnerability Adriano Maia (Tue May 15 2001 - 17:29:19 PDT)
Fingerprinting Linux Kernel 2.4.x based machines using ICMP (and IPID) Ofir Arkin (Tue May 15 2001 - 22:07:15 PDT)
MUAs that delete spoolfiles (was Solaris /usr/bin/mailx exploit (SPARC)) Rich Lafferty (Tue May 15 2001 - 14:00:43 PDT)
About the new IIS %252c bug. neme-dhcat_private (Tue May 15 2001 - 16:16:11 PDT)
Re: RH7.0: man local gid 15 (man) exploit aleph1at_private (Wed May 16 2001 - 01:27:18 PDT)
IIS4/5 CGI decode hole, [patched] perl exploit for win32/unix Cyrus The Great (Tue May 15 2001 - 17:06:59 PDT)
MS01-026 - proof of concept - Followup Filip Maertens (Wed May 16 2001 - 00:57:19 PDT)
Re: iis exploit (fixed) A.Ramos (Wed May 16 2001 - 04:03:32 PDT)
Re: Personal Web Sharing remote stop Terje Bless (Wed May 16 2001 - 11:23:37 PDT)
Remote Desktop DoS altomoat_private (Wed May 16 2001 - 09:09:45 PDT)
RE: About the new IIS %252c bug. Matt Rudge (Wed May 16 2001 - 09:39:38 PDT)
Re: RH7.0: man local gid 15 (man) exploit Stephen Shirley (Wed May 16 2001 - 10:06:12 PDT)
RE: NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error V ulnerability] Adriano Dias (Wed May 16 2001 - 08:17:19 PDT)
logitech wireless devices: man-in-the-middle attack Axel Hammer (Wed May 16 2001 - 12:40:21 PDT)
[RHSA-2001:060-04] Updated Kerberos 5 packages available bugzillaat_private (Wed May 16 2001 - 18:35:43 PDT)
Re: Personal Web Sharing remote stop Peter Bierman (Wed May 16 2001 - 14:41:20 PDT)
Re: Personal Web Sharing remote stop Terje Bless (Wed May 16 2001 - 15:10:06 PDT)
Re: Solaris /usr/bin/mailx exploit (SPARC) Greg A. Woods (Wed May 16 2001 - 12:07:34 PDT)
Re: RH7.0: man local gid 15 (man) exploit PJ (Wed May 16 2001 - 16:55:07 PDT)
UNICODE2 (2708) Security COnfera (Wed May 16 2001 - 12:55:49 PDT)
[RHSA-2001:063-02] Updated gnupg packages available bugzillaat_private (Wed May 16 2001 - 18:35:11 PDT)
def-2001-26: IIS WebDav Lock Method Memory Leak DoS Peter Gründl (Thu May 17 2001 - 06:14:41 PDT)
Re: NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error Vulnerability Nsfocus Security Team (Thu May 17 2001 - 04:29:24 PDT)
Re: Solaris /usr/bin/mailx exploit (SPARC) Casper Dik (Thu May 17 2001 - 03:24:41 PDT)
IIS CGI Filename decode error = financial industry server vulnerability Curt Wilson (Thu May 17 2001 - 00:34:52 PDT)
Microsoft IIS CGI Filename Decode Error V - How to Adriano Dias (Thu May 17 2001 - 05:01:59 PDT)
IIS Decode Michael Vassiliadis (Wed May 16 2001 - 20:52:15 PDT)
SuSE Security Announcement: kernel (SuSE-SA:2001:18) Roman Drahtmueller (Thu May 17 2001 - 07:44:59 PDT)
Cisco Security Advisory: Cisco Content Service Switch 11000 Series FTP Vulnerability Cisco Systems Product Security Incident Response Team (Thu May 17 2001 - 09:58:35 PDT)
Immunix OS Security update for minicom Greg KH (Thu May 17 2001 - 13:59:26 PDT)
IIS Decode Aldo Albuquerque - Segurança de Sistemas (Thu May 17 2001 - 14:22:39 PDT)
Re: Solaris /usr/bin/mailx exploit (SPARC) Greg A. Woods (Thu May 17 2001 - 08:57:38 PDT)
Re: IIS Decode Brian (Thu May 17 2001 - 09:12:46 PDT)
Security update: [CSSA-2001-17.0] gnupg - private key retrieval vulnerability Caldera Support Information (Thu May 17 2001 - 10:53:16 PDT)
Turbolinux Security Advisories TurboLinux Security Team (Thu May 17 2001 - 13:15:49 PDT)
tmp-races in ARCservIT Unix Client Jonas Eriksson (Fri May 18 2001 - 02:10:31 PDT)
ASLabs-2001-01: Multiple Security Problems in eEye SecureIIS Alliance Security Labs (Fri May 18 2001 - 10:15:20 PDT)
TrendMicro Interscan VirusWall RegGo.dll BOf Nobuo Miwa (Fri May 18 2001 - 10:15:54 PDT)
Tamersahin.net Security Announcement: Debian 2.2 is 2.2r3 Ftpd Daemon Buffer Owerflow Vulnerability Tamer Sahin (Fri May 18 2001 - 03:03:22 PDT)
Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Wietse Venema (Fri May 18 2001 - 08:18:51 PDT)
Security Update: [CSSA-2001-018.0] samba /tmp problems Caldera Support Information (Fri May 18 2001 - 14:43:45 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Greg A. Woods (Fri May 18 2001 - 13:35:08 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Olaf Kirch (Fri May 18 2001 - 14:34:04 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Steven M. Bellovin (Fri May 18 2001 - 18:04:33 PDT)
dqs 3.2.7 local root exploit. dex dex (Fri May 18 2001 - 17:09:11 PDT)
Re: Personal Web Sharing remote stop Erik Neuenschwander (Fri May 18 2001 - 18:40:43 PDT)
Re: dqs 3.2.7 local root exploit. Roman Drahtmueller (Fri May 18 2001 - 20:26:40 PDT)
Re: dqs 3.2.7 local root exploit. Drake Diedrich (Fri May 18 2001 - 21:09:39 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Wietse Venema (Fri May 18 2001 - 17:10:48 PDT)
Re: Mail delivery privileges Peter W (Fri May 18 2001 - 18:04:37 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Dan Stromberg (Fri May 18 2001 - 18:16:09 PDT)
RE: ASLabs-2001-01: Multiple Security Problems in eEye SecureIIS Marc Maiffret (Sat May 19 2001 - 00:43:39 PDT)
Unsafe assumptions (Re: Mail delivery...) Olaf Titz (Sat May 19 2001 - 05:07:47 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Greg A. Woods (Fri May 18 2001 - 19:16:56 PDT)
Netscape Enterprise Server 4 Method and URI overflow Robert Cardona (Sat May 19 2001 - 12:27:14 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Cy Schubert - ITSD Open Systems Group (Sat May 19 2001 - 12:03:26 PDT)
Re: Mail delivery privileges (was: Solaris /usr/bin/mailx exploit) Lyle Seaman (Sat May 19 2001 - 12:59:17 PDT)
Re: Mail delivery privileges Henrik Nordstrom (Sat May 19 2001 - 13:10:46 PDT)
Re: Unsafe assumptions (Re: Mail delivery...) Marcus Meissner (Sat May 19 2001 - 13:14:51 PDT)
Re: Mail delivery privileges David Wagner (Sat May 19 2001 - 17:37:11 PDT)
Aladdin eSafe Gateway script filter bypass eDvice Security Services (Sun May 20 2001 - 10:06:11 PDT)
ANNOUNCEMENT: RATS-0.9 (C/C++ Security Scanner) RATS Development Team (Sun May 20 2001 - 23:26:19 PDT)
ANNOUNCEMENT: RATS-0.9 (C/C++ Security Scanner) RATS Development Team (Sun May 20 2001 - 23:26:19 PDT)
[Security Announce] MDKSA-2001:040-1 - samba update Linux Mandrake Security Team (Mon May 21 2001 - 11:06:05 PDT)
[Security Announce] MDKSA-2001:033-2 - openssh update Linux Mandrake Security Team (Mon May 21 2001 - 11:05:18 PDT)
[RHSA-2001:069-02] Updated man package fixing security problems available bugzillaat_private (Mon May 21 2001 - 11:40:31 PDT)
[RHSA-2001:070-02] Updated mktemp packages available bugzillaat_private (Mon May 21 2001 - 11:35:03 PDT)
"Flawfinder" available for use David Wheeler (Mon May 21 2001 - 09:01:19 PDT)
ANNOUNCEMENT: RATS-0.9 (C/C++ Security Scanner) RATS Development Team (Sun May 20 2001 - 23:26:19 PDT)
[Announce] Apache 1.3.20 Released Jonas Eriksson (Mon May 21 2001 - 23:46:37 PDT)
Cisco Security Advisory: More multiple vulnerabilities in CBOS Cisco Systems Product Security Incident Response Team (Tue May 22 2001 - 10:06:07 PDT)
SpyAnywhere Authentication Bypassing Vulnerabilities SNS Research (Tue May 22 2001 - 08:32:53 PDT)
[SRT2001-09] - vi and crontab -e /tmp issues Richard Johnson (Tue May 22 2001 - 11:15:16 PDT)
[SRT2001-10] - scoadmin /tmp issues Richard Johnson (Tue May 22 2001 - 11:18:54 PDT)
[SRT2001-10] - scoadmin /tmp issues Richard Johnson (Tue May 22 2001 - 11:21:00 PDT)
Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator Oracle Security Alerts (Tue May 22 2001 - 12:04:54 PDT)
Logitech vulnerability (DoS, man-in-the-middle-attack) - Resend Axel Hammer (Tue May 22 2001 - 02:52:08 PDT)
security bulletins digest IT Resource Center (Wed May 23 2001 - 06:05:27 PDT)
HP OpenView NNM v6.1 buffer overflow Jonas Eriksson (Wed May 23 2001 - 09:00:57 PDT)
Tektronix (Xerox) PhaserLink 850 Webserver Vulnerability (NEW) Loggins, Ron G (Wed May 23 2001 - 09:18:47 PDT)
Re: [SRT2001-10] - scoadmin /tmp issues Matt Schalit (Wed May 23 2001 - 10:39:54 PDT)
Re: [SRT2001-10] - scoadmin /tmp issues KRFinisterreat_private (Wed May 23 2001 - 10:56:35 PDT)
undocumented 3Com Netbuilder II SNMP ILMI commnity Juan Manuel Pascual Escriba (Wed May 23 2001 - 09:59:11 PDT)
Vulnerability in viewsrc.cgi joetestaat_private (Wed May 23 2001 - 13:45:37 PDT)
Elevation of privileges with debug registers on Win2K Georgi Guninski (Thu May 24 2001 - 06:24:38 PDT)
IPC@Chip Security Siberian (Thu May 24 2001 - 08:10:40 PDT)
in.fingerd follows sym-links on Solaris 8 Lukasz Luzar (Thu May 24 2001 - 09:14:59 PDT)
Nortan Antivirus 2000 Poproxy.exe problem bugtraq@blue-ferret.com.au (Thu May 24 2001 - 04:59:25 PDT)
Cisco Security Advisory: IOS Reload after Scanning Vulnerability Cisco Systems Product Security Incident Response Team (Thu May 24 2001 - 08:30:00 PDT)
Re: in.fingerd follows sym-links on Solaris 8 Matthew R. Potter (Thu May 24 2001 - 10:47:18 PDT)
RE: Nortan Antivirus 2000 Poproxy.exe problem Matthew Connor (Thu May 24 2001 - 10:38:49 PDT)
Re: in.fingerd follows sym-links on Solaris 8 Lyndon Nerenberg (Thu May 24 2001 - 10:23:36 PDT)
Re: in.fingerd follows sym-links on Solaris 8 Lukasz Luzar (Fri May 25 2001 - 00:19:59 PDT)
Advisory for Freestyle Chat server neme-dhcat_private (Fri May 25 2001 - 06:07:32 PDT)
TSLSA-2001-0006: Samba tslat_private (Fri May 25 2001 - 06:05:35 PDT)
Re: Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator Pavel Machek (Wed May 23 2001 - 10:43:22 PDT)
Security Bug in InoculateIT for Linux (fwd) Chris Wilson (Fri May 25 2001 - 10:54:13 PDT)
Remote vulnerabilities in OmniHTTPd astral@403-security.org (Fri May 25 2001 - 17:00:32 PDT)
MDKSA-2001:046-1 - kdelibs update Linux Mandrake Security Team (Fri May 25 2001 - 11:47:47 PDT)
MDKSA-2001:052 - ncurses update Linux Mandrake Security Team (Fri May 25 2001 - 11:48:36 PDT)
WFTPD 32-bit (X86) 3.00 R5 Directory Traversal / Buffer Overflow / DoS ByteRage (Sat May 26 2001 - 01:24:25 PDT)
GuildFTPD v0.97 Directory Traversal / Weak password encryption ByteRage (Sat May 26 2001 - 09:44:47 PDT)
FormatGuard Crispin Cowan (Sun May 27 2001 - 02:50:43 PDT)
Re: FormatGuard Markus Friedl (Sun May 27 2001 - 07:48:26 PDT)
FormatGuard Crispin Cowan (Sun May 27 2001 - 02:50:43 PDT)
FormatGuard Crispin Cowan (Sun May 27 2001 - 02:50:43 PDT)
TWIG SQL query bugs Luki Rustianto (Mon May 28 2001 - 07:00:55 PDT)
Re: FormatGuard Horst von Brand (Mon May 28 2001 - 08:06:23 PDT)
CesarFTP v0.98b triple dot Directory Traversal / Weak password encryption ByteRage (Sun May 27 2001 - 10:33:08 PDT)
[ESA-20010509-01] pine temporary file handling vulnerabilities EnGarde Secure Linux (Sun May 27 2001 - 13:22:17 PDT)
def-2001-27: GuildFTPD Buffer Overflow and Memory Leak DoS andreas junestam (Sun May 27 2001 - 13:37:06 PDT)
Netscape Security Contact? Crispin Cowan (Sun May 27 2001 - 23:42:40 PDT)
Vulnerability discovered in SpearHead NetGap eDvice Security Services (Mon May 28 2001 - 01:20:14 PDT)
undocumented 3com Netbuilder II SNMP ILMI vulnerability Juan Manuel Pascual Escriba (Mon May 28 2001 - 01:06:51 PDT)
[synnergy] - Solaris mailtool(1) buffer overflow vulnerability dethy (Mon May 28 2001 - 02:46:13 PDT)
Re: in.fingerd follows sym-links on Solaris 8 J. Bol (Mon May 28 2001 - 05:57:40 PDT)
Webmin Doesn't Clean Env (root exploit) J. Nick Koston (Sat May 26 2001 - 13:55:35 PDT)
Microsoft Windows Media Player Buffer Overflow Vulnerability Pauli Ojanpera (Sat May 26 2001 - 17:32:35 PDT)
Re: Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator David Howe (Fri May 25 2001 - 09:42:25 PDT)
Re: in.fingerd follows sym-links on Solaris 8 Joep Vesseur (Fri May 25 2001 - 09:40:01 PDT)
Re: in.fingerd follows sym-links on Solaris 8 Darren Moffat (Fri May 25 2001 - 12:54:33 PDT)
RE: Nortan Antivirus 2000 Poproxy.exe problem Franklin DeMatto (Fri May 25 2001 - 00:02:39 PDT)
RE: Nortan Antivirus 2000 Poproxy.exe problem Tom Laermans (Thu May 24 2001 - 13:14:36 PDT)
Re: Nortan Antivirus 2000 Poproxy.exe problem gattacaat_private (Thu May 24 2001 - 14:18:03 PDT)
Re: Nortan Antivirus 2000 Poproxy.exe problem Eric Chien (Thu May 24 2001 - 14:04:36 PDT)
Re: Nortan Antivirus 2000 Poproxy.exe problem Craig Bernstein (Thu May 24 2001 - 14:18:00 PDT)
Unsafe Signal Handling in Sendmail Michal Zalewski (Mon May 28 2001 - 15:16:57 PDT)
Re: Netscape Security Contact? Kevin Fu (Mon May 28 2001 - 10:14:31 PDT)
solaris 2.6, 7 yppasswd vulnerability Jose Nazario (Mon May 28 2001 - 11:14:23 PDT)
insecure signal handler design Michal Zalewski (Mon May 28 2001 - 15:10:16 PDT)
Unsafe Signal Handling in Sendmail Michal Zalewski (Mon May 28 2001 - 15:16:57 PDT)
sendmail 8.11.4 and 8.12.0.Beta10 available (fwd) Jonas Eriksson (Mon May 28 2001 - 15:10:03 PDT)
feeble.hey!dora.exploit part.II http-equivat_private (Mon May 28 2001 - 19:48:42 PDT)
FormatGuard Crispin Cowan (Sun May 27 2001 - 02:50:43 PDT)
DynFX POPd Denial of Service Vulnerability SNS Research (Sat May 26 2001 - 09:26:10 PDT)
FormatGuard Crispin Cowan (Sun May 27 2001 - 02:50:43 PDT)
Re: FormatGuard Horst von Brand (Mon May 28 2001 - 08:06:23 PDT)
Re: Webmin Doesn't Clean Env (root exploit) Marcus Meissner (Tue May 29 2001 - 07:14:06 PDT)
insecure signal handler design Michal Zalewski (Mon May 28 2001 - 15:10:16 PDT)
Re: FormatGuard Horst von Brand (Mon May 28 2001 - 08:06:23 PDT)
Re: FormatGuard Markus Friedl (Sun May 27 2001 - 07:48:26 PDT)
FormatGuard Crispin Cowan (Sun May 27 2001 - 02:50:43 PDT)
[synnergy] - GnuPG remote format string vulnerability fish stiqz (Tue May 29 2001 - 10:58:48 PDT)
SuSE Security Announcement: man (SuSE-SA:2001:019) Roman Drahtmueller (Tue May 29 2001 - 11:53:16 PDT)
Aladdin eSafe Gateway Script-filtering Bypass through HTML tags eDvice Security Services (Tue May 29 2001 - 14:42:43 PDT)
Aladdin eSafe Gateway Script-filtering Bypass through Unicode Vulnerability eDvice Security Services (Tue May 29 2001 - 14:58:51 PDT)
Aladdin eSafe Gateway Filter Bypass - Updated Advisory eDvice Security Services (Tue May 29 2001 - 14:41:39 PDT)
NetBSD Security Advisory 2001-007: IP Filter may incorrectly pass packets security-officerat_private (Tue May 29 2001 - 23:25:50 PDT)
NetBSD Security Advisory 2001-006: Denial of service using bogus fragmented IPv4 packets security-officerat_private (Tue May 29 2001 - 23:23:26 PDT)
NetBSD Security Advisory 2001-008: Processes can gain "Supervisor" privileges on sh3. security-officerat_private (Tue May 29 2001 - 23:26:52 PDT)
'unicode' vs URL encoding. Cris Bailiff (Wed May 30 2001 - 06:46:20 PDT)
Re: TrendMicro Interscan VirusWall RegGo.dll BOf Nobuo Miwa (Tue May 29 2001 - 21:19:05 PDT)
RE: [synnergy] - Solaris mailtool(1) buffer overflow vulnerability SChoe (Tue May 29 2001 - 16:03:49 PDT)
Re: insecure signal handler design Magosányi (Tue May 29 2001 - 12:28:42 PDT)
Re: TWIG SQL query bugs Ben Efros (Mon May 28 2001 - 12:53:58 PDT)
Re: Webmin Doesn't Clean Env (root exploit) Eugene Tsyrklevich (Mon May 28 2001 - 12:43:13 PDT)
Re: Returned post for bugtraqat_private Dan Stromberg (Tue May 29 2001 - 11:24:12 PDT)
SpoonFTP Buffer Overflow Vulnerabilities SNS Research (Wed May 30 2001 - 12:55:58 PDT)
Immunix OS Security update for man Immunix Security Team (Wed May 30 2001 - 16:38:18 PDT)
Immunix OS Security update for kerberos Immunix Security Team (Wed May 30 2001 - 16:44:32 PDT)
Immunix OS Security Advisory Procedures Crispin Cowan (Wed May 30 2001 - 16:51:32 PDT)
Immunix OS Security update for GnuPG Immunix Security Team (Wed May 30 2001 - 16:52:59 PDT)
MDKSA-2001:053 - gnupg update Linux Mandrake Security Team (Wed May 30 2001 - 19:10:48 PDT)
Re: solaris 2.6, 7 yppasswd vulnerability Matt Power (Wed May 30 2001 - 20:49:30 PDT)
Imp-2.2.4 temporary files Jarno Huuskonen (Thu May 31 2001 - 03:15:26 PDT)
Apache Software Foundation Server compromised, resecured. (fwd) Jonas Eriksson (Wed May 30 2001 - 23:54:12 PDT)
Yahoo/Hotmail scripting vulnerability, worm propagation mparcensat_private (Wed May 30 2001 - 17:18:08 PDT)
Re: TWIG SQL query bugs Ryan Fox (Wed May 30 2001 - 12:51:59 PDT)
Re: TWIG SQL query bugs Ben Laurie (Thu May 31 2001 - 11:12:31 PDT)
Cisco Security Advisory: Cisco Content Service Switch 11000 Series Web Management Vulnerability Cisco Systems Product Security Incident Response Team (Thu May 31 2001 - 11:09:15 PDT)
RE: TWIG SQL query bugs Jeff Dafoe (Thu May 31 2001 - 08:42:56 PDT)
Re: Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator Oracle Security Alerts (Thu May 31 2001 - 16:28:47 PDT)
Re: TWIG SQL query bugs kj (Thu May 31 2001 - 09:48:37 PDT)
Acme.Server v1.7 of 13nov96 Directory Browsing Adnan Rahman (Thu May 31 2001 - 13:34:16 PDT)
RE: Yahoo/Hotmail scripting vulnerability, worm propagation Microsoft Security Response Center (Thu May 31 2001 - 16:24:14 PDT)
WFTPD 32-bit (X86) 3.00 R5 Directory Traversal / Buffer Overflow / DoS ByteRage (Thu May 24 2001 - 12:03:11 PDT)

Last message date: Sat Jun 02 2001 - 19:55:50 PDT
Archived on: Sat Jun 02 2001 - 19:55:53 PDT

319 messages sorted by: [ author ] [ date ] [ subject ]
Other mail archives

This archive was generated by hypermail 2b30 : Sat Jun 02 2001 - 19:55:53 PDT

bugtraq 2001/05By Thread

bugtraq 2001/05
By Thread