bugtraq 2002/01
By Date
Most recent messages
357 messages sorted by:
[ author ]
[ thread ]
[ subject ]
Other mail archives
Starting: Mon Dec 31 2001 - 10:46:09 PST
Ending: Wed Feb 06 2002 - 17:13:36 PST
- audiogalaxy...little problem.... josx (Mon Dec 31 2001 - 19:00:30 PST)
- IE GetObject() problems Georgi Guninski (Tue Jan 01 2002 - 11:02:41 PST)
- [Announce] SECURITY: mutt-1.2.5.1 and mutt-1.3.25 released. Thomas Roessler (Tue Jan 01 2002 - 12:40:31 PST)
- w00w00 on AOL Instant Messenger (serious vulnerability) Matt Conover (Wed Jan 02 2002 - 01:18:46 PST)
- [RHSA-2001:170-06] Updated Mailman packages available bugzillaat_private (Wed Jan 02 2002 - 07:24:05 PST)
- AIM addendum Matt Conover (Wed Jan 02 2002 - 10:17:26 PST)
- RE: w00w00 on AOL Instant Messenger (serious vulnerability) Moorhouse, Walt P (Wed Jan 02 2002 - 08:03:26 PST)
- Re: AIM addendum Paul Schmehl (Wed Jan 02 2002 - 11:42:08 PST)
- Re: AIM addendum Matt Conover (Wed Jan 02 2002 - 12:00:40 PST)
- Razor Warning: SPAM/UBE/UCE the Pull (Wed Jan 02 2002 - 00:20:40 PST)
- Vulnerability in encrypted loop device for linux Jerome Etienne (Wed Jan 02 2002 - 11:57:54 PST)
- BSCW: Vulnerabilities and Problems SQEHXLLBQUJXat_private (Wed Jan 02 2002 - 15:13:32 PST)
- Re: Vulnerability in encrypted loop device for linux Alfonso De Gregorio (Wed Jan 02 2002 - 20:58:40 PST)
- Mail.com Cross Site Scripting Vulnerability Digital Shadow (Thu Jan 03 2002 - 09:15:33 PST)
- [CLA-2002:447] Conectiva Linux Security Announcement - glibc secureat_private (Thu Jan 03 2002 - 05:46:29 PST)
- [CLA-2002:448] Conectiva Linux Security Announcement - libgtop secureat_private (Thu Jan 03 2002 - 11:04:00 PST)
- Heap overflow in snmpnetstat Juan M. de la Torre (Thu Jan 03 2002 - 07:11:24 PST)
- Re: IE GetObject() problems Michael Fellows (Thu Jan 03 2002 - 07:35:18 PST)
- Razor Warning: SPAM/UBE/UCE Tom Micklovitch (Thu Jan 03 2002 - 04:08:31 PST)
- Re: AIM addendum Mark Coleman (Thu Jan 03 2002 - 13:41:22 PST)
- Stunnel: Format String Bug update Brian Hatch (Wed Jan 02 2002 - 22:38:53 PST)
- Re: AIM addendum Paul Schmehl (Thu Jan 03 2002 - 13:10:54 PST)
- [AP] awhttpd v2.2 local DoS methodic (Thu Jan 03 2002 - 15:13:48 PST)
- Re: AIM addendum austin naremore (Thu Jan 03 2002 - 13:56:48 PST)
- Mail.com Cross Site Scripting Vulnerability Keith Dallara (Fri Jan 04 2002 - 07:18:17 PST)
- Re: IE GetObject() problems Georgi Guninski (Fri Jan 04 2002 - 07:05:00 PST)
- Re: AIM addendum Tyler (Thu Jan 03 2002 - 21:06:13 PST)
- Vulnerability in new user creation in Geeklog 1.3 Woody Hughes (Thu Jan 03 2002 - 20:37:14 PST)
- Vulnerability in user posting in Nick.com forums Danny Ricci (Fri Jan 04 2002 - 12:37:37 PST)
- More reading of local files in MSIE jelmer (Fri Jan 04 2002 - 12:24:49 PST)
- VERISIGN "PAYFLOW LINK" PAYMENT SERVICE SECURITY FAILURE keith royster (Fri Jan 04 2002 - 12:24:07 PST)
- Re: More reading of local files in MSIE Dave Ahmad (Fri Jan 04 2002 - 16:47:52 PST)
- Security Advisory for Bugzilla v2.15 (cvs20020103) and older Dave Miller (Sat Jan 05 2002 - 15:45:29 PST)
- Savant Webserver Buffer Overflow Vulnerability Tamer Sahin (Sat Jan 05 2002 - 10:40:36 PST)
- BOOZT! Standard 's administration cgi vulnerable to buffer overflow rsanmcarat_private (Sat Jan 05 2002 - 10:04:48 PST)
- Pine 4.33 (at least) URL handler allows embedded commands. zen-parse (Fri Jan 04 2002 - 18:17:16 PST)
- Razor Warning: SPAM/UBE/UCE Daryl (Sat Jan 05 2002 - 00:49:23 PST)
- Razor Warning: SPAM/UBE/UCE Phuong Nguyen (Sat Jan 05 2002 - 07:06:49 PST)
- Razor Warning: SPAM/UBE/UCE the Pull (Fri Jan 04 2002 - 17:19:57 PST)
- Re: gzip bug w/ patch.. Jonathan A. Zdziarski (Sat Jan 05 2002 - 15:43:01 PST)
- Re: VERISIGN "PAYFLOW LINK" PAYMENT SERVICE SECURITY FAILURE David Frascone (Sat Jan 05 2002 - 17:21:53 PST)
- Format string bug in awhttpd (Re: [AP] awhttpd v2.2 local DoS) 3APA3A (Fri Jan 04 2002 - 04:07:13 PST)
- Buffer overflow in awhttpd (Re: Format string bug in awhttpd (Re: [AP] awhttpd v2.2 local DoS)) 3APA3A (Fri Jan 04 2002 - 04:54:09 PST)
- AW: IE https certificate attack K.J.Muellerat_private (Thu Jan 03 2002 - 06:04:17 PST)
- Re: [AP] awhttpd v2.2 local DoS D. (Sun Jan 06 2002 - 21:11:45 PST)
- CrossSiteScripting PostNuke. rolphin (Sun Jan 06 2002 - 09:38:38 PST)
- Re: Pine 4.33 (at least) URL handler allows embedded commands. Michal Zalewski (Sun Jan 06 2002 - 14:37:43 PST)
- Denial of Service flaw in Apache Tozz (Sat Jan 05 2002 - 20:35:15 PST)
- Re: AW: IE https certificate attack George Staikos (Sun Jan 06 2002 - 09:11:14 PST)
- RE: Re : Fw: VERISIGN "PAYFLOW LINK" PAYMENT SERVICE SECURITY FAI LURE (#5947-000093-7546\939465) vps-support (Sat Jan 05 2002 - 20:26:15 PST)
- Inproper input validation in Bugzilla <=2.14 - exploit funkysh (Sun Jan 06 2002 - 03:34:01 PST)
- Cross Site Scripting in microsoft.com frog frog (Sun Jan 06 2002 - 08:28:54 PST)
- AOLserver 3.4.2 Unauthorized File Disclosure Vulnerability Tamer Sahin (Sat Jan 05 2002 - 23:41:19 PST)
- HP Secure OS Software for Linux security bulletins digest IT Resource Center (Sat Jan 05 2002 - 03:48:18 PST)
- Re: AW: IE https certificate attack Florian Weimer (Sun Jan 06 2002 - 00:04:23 PST)
- Re: IE https certificate attack Helmut Springer (Sun Jan 06 2002 - 01:04:23 PST)
- Internet Explorer Javascript Modeless Popup Local Denial of Service Vulnerability Lance Hitchcock Jr. (Sun Jan 06 2002 - 02:44:34 PST)
- Re: AW: IE https certificate attack Ben Laurie (Sun Jan 06 2002 - 12:25:50 PST)
- Re: Security Advisory for Bugzilla v2.15 (cvs20020103) and older David Miller (Sat Jan 05 2002 - 20:34:11 PST)
- Linksys 'routers', SNMP issues Matthew S. Hallacy (Sun Jan 06 2002 - 04:55:17 PST)
- Aftpd core dump vulnerability Nu Omega Tau (Mon Jan 07 2002 - 06:08:08 PST)
- Re: Linksys 'routers', SNMP issues John Duksta (Mon Jan 07 2002 - 06:07:31 PST)
- [PTL-2002-01] Vulnerabilities in Oracle9iAS Web Cache Mark A. Rowe (PenTest) (Mon Jan 07 2002 - 05:50:28 PST)
- Faqmanager.cgi file read vulnerability Nu Omega Tau (Mon Jan 07 2002 - 06:30:05 PST)
- ICQ remote buffer overflow vulnerability Daniel Tan (Sun Jan 06 2002 - 11:59:39 PST)
- Re: Denial of Service flaw in Apache Marc Slemko (Mon Jan 07 2002 - 07:14:24 PST)
- TSLSA-2002-0003 - mutt Trustix Secure Linux Advisor (Mon Jan 07 2002 - 05:10:36 PST)
- SuSE Security Announcement: mutt (SuSE-SA:2002:001) Roman Drahtmueller (Mon Jan 07 2002 - 11:35:17 PST)
- Re: ICQ remote buffer overflow vulnerability Daniel Tan (Sun Jan 06 2002 - 13:09:44 PST)
- [CLA-2002:449] Conectiva Linux Security Announcement - mutt secureat_private (Mon Jan 07 2002 - 10:49:24 PST)
- C2IT.com Cross Site Scripting Vulnerability securityat_private (Mon Jan 07 2002 - 08:07:50 PST)
- [RHSA-2002:003-10] New mutt packages available to fix security problem bugzillaat_private (Mon Jan 07 2002 - 14:00:22 PST)
- [RHSA-2002:002-10] Updated stunnel packages available. bugzillaat_private (Mon Jan 07 2002 - 14:01:07 PST)
- KPMG-2002003: Bea Weblogic DOS-device Denial of Service Peter Gründl (Tue Jan 08 2002 - 07:33:26 PST)
- Re: Pine 4.33 (at least) URL handler allows embedded commands. zen-parse (Mon Jan 07 2002 - 00:05:15 PST)
- Re: Pine 4.33 (at least) URL handler allows embedded commands. Roman Drahtmueller (Mon Jan 07 2002 - 05:01:05 PST)
- [RHSA-2001:176-05] Updated exim packages fix security problem bugzillaat_private (Tue Jan 08 2002 - 03:47:05 PST)
- Re: Stunnel: Format String Bug update Roman Drahtmueller (Tue Jan 08 2002 - 07:52:34 PST)
- Re: Linksys 'routers', SNMP issues The Cyberiad (Mon Jan 07 2002 - 07:05:29 PST)
- Re: ICQ remote buffer overflow vulnerability Daniel Tan (Mon Jan 07 2002 - 15:41:11 PST)
- w00w00 on AIM Filter (Backdoors & SpyWare) Jordan Ritter (Tue Jan 08 2002 - 12:43:01 PST)
- Re: Aftpd core dump vulnerability Neeko Oni (Mon Jan 07 2002 - 12:46:02 PST)
- Re: Aftpd core dump vulnerability Nu Omega Tau (Mon Jan 07 2002 - 14:13:04 PST)
- Re: ICQ remote buffer overflow vulnerability elijah wright (Mon Jan 07 2002 - 13:33:44 PST)
- Re: ICQ remote buffer overflow vulnerability Nick FitzGerald (Mon Jan 07 2002 - 19:18:10 PST)
- Re: IE https certificate attack Jim Knoble (Mon Jan 07 2002 - 15:22:02 PST)
- svindel.net security advisory - web admin vulnerability in CacheOS Bjorn Djupvik (Tue Jan 08 2002 - 14:14:59 PST)
- Re: ICQ remote buffer overflow vulnerability 'ken'@FTU (Tue Jan 08 2002 - 14:06:24 PST)
- RE: w00w00 on AIM Filter (Backdoors & SpyWare) Tim Yardley (Tue Jan 08 2002 - 14:05:03 PST)
- Allaire Forums Vulnerability John Cantu (Tue Jan 08 2002 - 15:06:00 PST)
- CSS vulnerabilities in YaBB and UBB allow account hijack [Multiple Vendor] Obscure (Tue Jan 08 2002 - 15:11:59 PST)
- xchat IRC session hijacking vulnerability (versions 1.4.1, 1.4.2) zen-parse (Wed Jan 09 2002 - 01:45:13 PST)
- MDKSA-2002:001 - bind update Mandrake Linux Security Team (Tue Jan 08 2002 - 21:20:44 PST)
- [CLA-2002:450] Conectiva Linux Security Announcement - proftpd secureat_private (Wed Jan 09 2002 - 09:06:57 PST)
- Paper: Unicode overflow technique Chris Anley (Wed Jan 09 2002 - 08:23:20 PST)
- xterm exploit in Unixware 7.0.1 jG gM (Mon Jan 07 2002 - 22:08:40 PST)
- Announcing a new DNS server implementation bugtraqat_private (Wed Jan 09 2002 - 12:36:31 PST)
- [RHSA-2001:179-05] Updated namazu packages are available bugzillaat_private (Wed Jan 09 2002 - 02:58:03 PST)
- CDE bug in Unixware 7.1 jG gM (Mon Jan 07 2002 - 22:13:59 PST)
- Re: Linksys 'routers', SNMP issues Ken.Williamsat_private (Wed Jan 09 2002 - 08:22:44 PST)
- dtterm exploit in Unixware 7.1.1 jG gM (Mon Jan 07 2002 - 22:12:56 PST)
- MDKSA-2002:002 - mutt update Mandrake Linux Security Team (Tue Jan 08 2002 - 21:22:07 PST)
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco SN 5420 Storage Router Cisco Systems Product Security Incident Response Team (Wed Jan 09 2002 - 12:08:46 PST)
- LIDS Security Advisory 1 Huagang Xie (Wed Jan 09 2002 - 11:26:48 PST)
- Security flaws in tinc Jerome Etienne (Wed Jan 09 2002 - 11:08:39 PST)
- HP-UX security bulletins digest IT Resource Center (Tue Jan 08 2002 - 03:49:09 PST)
- File Transversal Vulnerability in Dino's WebServer Franc Ruiz Arenas (Wed Jan 09 2002 - 15:15:04 PST)
- Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability Tamer Sahin (Wed Jan 09 2002 - 15:28:46 PST)
- FWD: Sun Microsystems, Inc. Security Bulletin Dave Ahmad (Wed Jan 09 2002 - 16:31:26 PST)
- BOOZT! Standard CGI Vulnerability : Exploit Released NIKEBOYat_private (Wed Jan 09 2002 - 15:19:43 PST)
- myvoicestream.com vulnerability Trey Valenta (Wed Jan 09 2002 - 14:30:38 PST)
- MiraMail 1.04 can give POP account access and details Chris Lathem (Wed Jan 09 2002 - 13:45:42 PST)
- Re: myvoicestream.com vulnerability Scott Dier (Wed Jan 09 2002 - 19:06:34 PST)
- UPNP Denial of Service Gabriel Maggiotti (Wed Jan 09 2002 - 05:56:51 PST)
- Re: Announcing a new DNS server implementation D. J. Bernstein (Wed Jan 09 2002 - 20:05:05 PST)
- Security weaknesses of VTun Jerome Etienne (Wed Jan 09 2002 - 20:13:26 PST)
- Details on the updated namazu packages that are available KF (Wed Jan 09 2002 - 15:15:10 PST)
- [SA-2002:00] Slashcode login vulunerability Chris Nandor (Thu Jan 10 2002 - 08:01:58 PST)
- Unixware 7.1.1 rpc.cmsd remote exploit code. jGgM. (Wed Jan 09 2002 - 20:40:54 PST)
- Re: Unixware 7.1.1 rpc.cmsd remote exploit code. Dave Ahmad (Thu Jan 10 2002 - 09:54:34 PST)
- Cookie modification allows unauthenticated user login in Geeklog 1.3 Adrian Chung (Thu Jan 10 2002 - 09:22:02 PST)
- Re: UPNP Denial of Service Patrick Chambet (Thu Jan 10 2002 - 09:43:59 PST)
- Handspring Visor D.O.S Jason Lutz (Thu Jan 10 2002 - 06:31:05 PST)
- Legato Vulnerable Venkatesh babu Sira (Thu Jan 10 2002 - 10:00:00 PST)
- Security Update: [CSSA-2002-SCO.1] OpenServer: wu-ftpd ftpglob() vulnerability securityat_private (Thu Jan 10 2002 - 11:34:39 PST)
- Re: Legato Vulnerable Wolfgang Fischer (Thu Jan 10 2002 - 14:05:19 PST)
- Re: Handspring Visor D.O.S Roger H. Goun (Thu Jan 10 2002 - 15:08:09 PST)
- Re: Handspring Visor D.O.S arkat_private (Thu Jan 10 2002 - 15:58:06 PST)
- MDKSA-2001:095-1 - glibc update Mandrake Linux Security Team (Tue Jan 08 2002 - 17:53:45 PST)
- Re: Snort core dumped KF (Thu Jan 10 2002 - 12:35:10 PST)
- RE: CSS vulnerabilities in YaBB and UBB allow account hijack [Multiple Vendor] Obscure (Thu Jan 10 2002 - 09:44:37 PST)
- autoresponder program could be tricked by spamers to send unsolicited mail to victim's address userat_private (Thu Jan 10 2002 - 18:51:55 PST)
- Shockwave Flash player issue Peter Santangeli (Tue Jan 08 2002 - 17:44:47 PST)
- Re: Details on the updated namazu packages that are available NOKUBI Takatsugu (Thu Jan 10 2002 - 17:07:52 PST)
- address.com: email vulnerability wannabe anonymousplease (Tue Jan 08 2002 - 18:52:31 PST)
- cgiaudit release information Derek Callaway (Thu Jan 10 2002 - 17:53:52 PST)
- Re: Snort core dumped Martin Roesch (Thu Jan 10 2002 - 21:00:49 PST)
- Novell Netware Login "bypass" to execute programs Philip Wagenaar (Fri Jan 11 2002 - 10:45:15 PST)
- Security Update: [CSSA-2001-039.0] Linux - IMP/HORDE cross site scripting vulnerability Support Info (Fri Jan 11 2002 - 01:46:35 PST)
- Re: CSS vulnerabilities in YaBB and UBB allow account hijack [Multiple Vendor] Andrew Clover (Fri Jan 11 2002 - 09:13:36 PST)
- Announce: NGSSniff David Litchfield (Fri Jan 11 2002 - 07:13:44 PST)
- Kerberos 5 ftp client Core Dump Replugge [Rod] (Fri Jan 11 2002 - 00:58:18 PST)
- Re: Handspring Visor D.O.S Simon Dick (Fri Jan 11 2002 - 02:36:26 PST)
- Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability (Solution) Tamer Sahin (Fri Jan 11 2002 - 06:30:48 PST)
- Re: autoresponder program could be tricked by spamers to send unsolicitedmail to victim's address (fwd) Rodent of Unusual Size (Fri Jan 11 2002 - 04:48:52 PST)
- Automated remote CGI vulnerability discovery Samy Kamkar (Thu Jan 10 2002 - 22:44:55 PST)
- Bug in alcatel speed touch home adsl modem Hacknisty (Fri Jan 11 2002 - 09:52:04 PST)
- ASP Application Security: CDONTS.NEWMAIL David Litchfield (Fri Jan 11 2002 - 07:21:35 PST)
- Re: Handspring Visor D.O.S Raistlin (Fri Jan 11 2002 - 04:03:02 PST)
- RE: address.com: email vulnerability Robert Ellis (Fri Jan 11 2002 - 12:27:10 PST)
- cdrdao insecure filehandling Jens Steube (Sat Jan 12 2002 - 15:09:20 PST)
- Palm Desktop 4.0b76-77 for Mac OS X Victor Kruger (Sat Jan 12 2002 - 16:52:57 PST)
- [RHSA-2002:004-06] New groff packages available to fix security problems bugzillaat_private (Mon Jan 14 2002 - 08:18:38 PST)
- Sudo version 1.6.4 now available (fwd) Jonas Eriksson (Mon Jan 14 2002 - 07:49:51 PST)
- Pi3Web Webserver v2.0 Buffer Overflow Vulnerability Tamer Sahin (Sun Jan 13 2002 - 15:00:39 PST)
- Internet Explorer Pop-Up OBJECT Tag Bug the Pull (Sun Jan 13 2002 - 01:03:27 PST)
- SuSE Security Announcement: sudo (SuSE-SA:2002:002) Sebastian Krahmer (Mon Jan 14 2002 - 04:36:13 PST)
- PHP 4.x session spoofing Daniel Lorch (Sun Jan 13 2002 - 09:56:27 PST)
- [ESA-20020114-003] Several local LIDS vulnerabilities EnGarde Secure Linux (Mon Jan 14 2002 - 13:50:36 PST)
- IE Clipboard Stealing Vulnerability Tom Gilder (Sat Jan 12 2002 - 07:06:29 PST)
- Web Server 4D/eCommerce 3.5.3 DoS Vulnerability Tamer Sahin (Mon Jan 14 2002 - 14:35:59 PST)
- [ESA-20020114-001] 'sudo' can invoke the system MTA as root EnGarde Secure Linux (Mon Jan 14 2002 - 13:49:35 PST)
- Web Server 4D/eCommerce 3.5.3 Directory Traversal Vulnerability Tamer Sahin (Mon Jan 14 2002 - 14:36:26 PST)
- MSIE may download and run programs automatically - details Jouko Pynnonen (Mon Jan 14 2002 - 05:58:01 PST)
- [ESA-20020114-002] 'pine' URL handling vulnerability EnGarde Secure Linux (Mon Jan 14 2002 - 13:50:04 PST)
- Razor warning (SPAM/UBE/UCE) TAKAGI, Hiromitsu (Mon Jan 14 2002 - 17:26:05 PST)
- Razor warning (SPAM/UBE/UCE) Tom Micklovitch (Tue Jan 15 2002 - 05:55:28 PST)
- Razor warning (SPAM/UBE/UCE) Richard M. Smith (Tue Jan 15 2002 - 06:59:40 PST)
- ZBServer Pro DoS Vulnerability Tamer Sahin (Mon Jan 14 2002 - 18:44:37 PST)
- Vulnerability Netgear RP-114 Router - nmap causes DOS Omkhar Arasaratnam (Tue Jan 15 2002 - 00:49:28 PST)
- Re: cdrdao insecure filehandling Guillaume PELAT (Tue Jan 15 2002 - 01:45:46 PST)
- Authorize.Net Plain Text Login Transmission Brian Gallagher (Tue Jan 15 2002 - 09:18:29 PST)
- [RHSA-2002:011-06] Updated sudo packages are available bugzillaat_private (Tue Jan 15 2002 - 00:54:23 PST)
- Sambar Webserver v5.1 DoS Vulnerability Tamer Sahin (Tue Jan 15 2002 - 15:57:17 PST)
- FWD: IRIX nsd Vulnerability Dave Ahmad (Tue Jan 15 2002 - 16:26:39 PST)
- BlackMoon FTPd Buffer Overflow Vulnerability Strumpf Noir Society (Tue Jan 15 2002 - 10:17:02 PST)
- Update on the SuperCookie issue Richard M. Smith (Tue Jan 15 2002 - 11:08:25 PST)
- [CLA-2002:451] Conectiva Linux Security Announcement - sudo secureat_private (Tue Jan 15 2002 - 11:50:04 PST)
- Serious privacy leak in Python for Windows Richard M. Smith (Tue Jan 15 2002 - 11:48:05 PST)
- MDKSA-2002:003 - sudo update Mandrake Linux Security Team (Tue Jan 15 2002 - 17:15:49 PST)
- Re: cdrdao insecure filehandling Anthony DeRobertis (Tue Jan 15 2002 - 04:12:02 PST)
- NMRC Advisory: OpenFile Win32 API Log Overwriting/Rewriting Information Anarchy 2K01 (Mon Jan 14 2002 - 18:08:33 PST)
- MSIE 6.0 will rollback during XP Pro Install -- Ref: MSIE may download and run programs automatically - details Jeffrey W. Dronenburg (Tue Jan 15 2002 - 00:07:07 PST)
- Re: FW: PHP 4.x session spoofing Gunzour (Tue Jan 15 2002 - 05:17:12 PST)
- IE FORM DOS Ivan Sergio Borgonovo (Mon Jan 14 2002 - 16:11:10 PST)
- [RHSA-2002:005-09] Updated xchat packages are available bugzillaat_private (Tue Jan 15 2002 - 08:08:09 PST)
- RE: Authorize.Net Plain Text Login Transmission Robert Brewer (Tue Jan 15 2002 - 14:25:04 PST)
- Re: Vulnerability Netgear RP-114 Router - nmap causes DOS Zoid (Tue Jan 15 2002 - 14:55:42 PST)
- [RHSA-2002:013-03] Updated sudo package is available bugzillaat_private (Tue Jan 15 2002 - 00:55:32 PST)
- SuSE Security Announcement: at (SuSE-SA:2002:003) Roman Drahtmueller (Wed Jan 16 2002 - 07:47:41 PST)
- Re: ZBServer Pro DoS Vulnerability Steven M. Christey (Tue Jan 15 2002 - 17:33:56 PST)
- Addendum Re: Internet Explorer Pop-Up OBJECT Tag Bug the Pull (Wed Jan 16 2002 - 10:32:01 PST)
- Re: [RHSA-2002:004-06] New groff packages available to fix security problems Colin Watson (Tue Jan 15 2002 - 21:47:31 PST)
- Breakable Kevin L. Poulsen (Wed Jan 16 2002 - 10:12:22 PST)
- PHP-Nuke allows Command Execution & Much more Handle Nopman (Wed Jan 16 2002 - 10:30:53 PST)
- Re: Serious privacy leak in Python for Windows Alan Caulkins (Wed Jan 16 2002 - 03:06:52 PST)
- NetBSD Security Advisory 2002-001 Close-on-exec, SUID and ptrace(2) NetBSD Security Officer (Wed Jan 16 2002 - 10:04:32 PST)
- Re: efax Wodahs Latigid (Wed Jan 16 2002 - 01:03:23 PST)
- Chinput Buffer Overflow Vulnerability xperc (Wed Jan 16 2002 - 07:43:42 PST)
- Re: cdrdao insecure filehandling martin f krafft (Wed Jan 16 2002 - 05:49:13 PST)
- Cisco Security Advisory: Hardening of Solaris OS for MGC Cisco Systems Product Security Incident Response Team (Wed Jan 16 2002 - 09:15:20 PST)
- Re: cdrdao insecure filehandling Luciano Miguel Ferreira Rocha (Wed Jan 16 2002 - 17:22:28 PST)
- '/usr/bin/at 31337 + vuln' problem + exploit zen-parse (Wed Jan 16 2002 - 16:19:08 PST)
- Re: BOOZT! Standard CGI Vuln : fixed in 0.9.9 _kiss_at_private (Thu Jan 17 2002 - 11:11:54 PST)
- MDKSA-2002:004 - stunnel update Mandrake Linux Security Team (Wed Jan 16 2002 - 14:20:53 PST)
- Avirt Proxy Buffer Overflow Vulnerabilities Strumpf Noir Society (Thu Jan 17 2002 - 11:23:28 PST)
- Avirt Gateway Suite Remote SYSTEM Level Compromise Strumpf Noir Society (Thu Jan 17 2002 - 11:21:08 PST)
- [Immunix-announce] ImmunixOS 7.0 sudo update Immunix Security Team (Thu Jan 17 2002 - 20:32:37 PST)
- RE: Breakable Jonathan A. Zdziarski (Thu Jan 17 2002 - 10:47:16 PST)
- uucp --config patch -- not sufficient zen-parse (Fri Jan 18 2002 - 06:38:50 PST)
- Vulnerability in hellbent joetestaat_private (Fri Jan 18 2002 - 09:41:37 PST)
- RE: Breakable bugtraq@t-swat.com (Fri Jan 18 2002 - 11:30:43 PST)
- [CLA-2002:455] Conectiva Linux Security Announcement - MySQL secureat_private (Fri Jan 18 2002 - 10:17:54 PST)
- RE: Breakable Jonathan A. Zdziarski (Fri Jan 18 2002 - 12:21:31 PST)
- MDKSA-2002:007 - at update Mandrake Linux Security Team (Fri Jan 18 2002 - 17:54:14 PST)
- USPS Online Bill Pay - Cleartext Password Leakage Matthew Dent (Fri Jan 18 2002 - 20:52:48 PST)
- remote memory reading through tcp/icmp Andrew Griffiths (Sun Jan 20 2002 - 01:17:22 PST)
- Maelstrom 1.4.3 abartity file overwrite Andrew Griffiths (Sun Jan 20 2002 - 01:16:30 PST)
- Bounce vulnerability in SpoonFTP 1.1.0.1 Arne Vidstrom (Sat Jan 19 2002 - 18:05:32 PST)
- [resend] Avirt Gateway Telnet Vulnerability (and more?) Strumpf Noir Society (Mon Jan 21 2002 - 06:07:03 PST)
- Re: remote memory reading through tcp/icmp Fyodor (Mon Jan 21 2002 - 04:45:15 PST)
- [resend] Strumpf Noir Society on BadBlue Strumpf Noir Society (Mon Jan 21 2002 - 06:07:15 PST)
- Re: Breakable Pete Finnigan (Mon Jan 21 2002 - 07:55:20 PST)
- Re: Pi3Web Webserver v2.0 Buffer Overflow Vulnerability Holger Zimmermann (Mon Jan 21 2002 - 11:08:32 PST)
- Timbuktu 6.0.1 and Older DoS Advisory Tekno pHReak (Thu Jan 17 2002 - 17:22:23 PST)
- RE: [RHSA-2001:165-08] The uuxqt utility can be used to execute a rbitrary commands as uucp.uucp John.Aireyat_private (Fri Jan 18 2002 - 03:39:20 PST)
- sltrib.com, using nacorp.com's web forms are submitted insecurely, and are clearly promoted as being secure Jon Zobrist (Mon Jan 21 2002 - 14:59:49 PST)
- Re: Breakable uid0at_private (Fri Jan 18 2002 - 12:29:43 PST)
- dnrd 2.10 dos Andrew Griffiths (Sun Jan 20 2002 - 01:15:27 PST)
- Re: PHP-Nuke allows Command Execution & Much more truff (Mon Jan 21 2002 - 05:43:29 PST)
- Cross-Site Vulnerabilities (Still) Found in Major Web Sites Watung Arif (Sun Jan 20 2002 - 23:40:38 PST)
- Re: Maelstrom 1.4.3 abartity file overwrite Chris Gragsone (Mon Jan 21 2002 - 08:26:43 PST)
- Re: cdrdao insecure filehandling Pavel Kankovsky (Sat Jan 19 2002 - 16:03:31 PST)
- Shoutcast server 1.8.3 win32 Brian Dittmer (Sat Jan 19 2002 - 10:16:49 PST)
- Re: uucp --config patch -- not sufficient Charles 'core' Stevenson (Sun Jan 20 2002 - 03:22:53 PST)
- Re: IE FORM DOS SkyLinedat_private (Sat Jan 19 2002 - 11:56:33 PST)
- remote buffer overflow in sniffit g_463at_private (Sat Jan 19 2002 - 10:57:03 PST)
- Re: uucp --config patch -- not sufficient zen-parse (Mon Jan 21 2002 - 00:38:54 PST)
- Re: remote buffer overflow in sniffit Edwin Groothuis (Mon Jan 21 2002 - 21:33:00 PST)
- Re: remote buffer overflow in sniffit Brad (Tue Jan 22 2002 - 09:52:11 PST)
- (Repost) CwpApi : GetRelativePath() returns invalid paths (security advisory) ACD Incorporated Support (Tue Jan 22 2002 - 05:40:10 PST)
- Unixware 7.1.1 scoadminreg.cgi local exploit jGgM. (Sun Jan 20 2002 - 15:30:16 PST)
- Re: remote memory reading through tcp/icmp Andi Kleen (Sun Jan 20 2002 - 14:46:12 PST)
- Re: Maelstrom file overwrite Andrew Griffiths (Tue Jan 22 2002 - 03:03:09 PST)
- Citrix NFuse 1.6 Tom.Lyneat_private (Tue Jan 22 2002 - 07:57:56 PST)
- Re: Cross-Site Vulnerabilities (Still) Found in Major Web Sites Andrew Wason (Tue Jan 22 2002 - 06:10:58 PST)
- RE: remote memory reading through tcp/icmp David LeBlanc (Sun Jan 20 2002 - 16:26:30 PST)
- Mozilla Cookie Exploit Marc Slemko (Mon Jan 21 2002 - 21:10:37 PST)
- security vulnerability in chuid Scott Parish (Mon Jan 21 2002 - 12:24:59 PST)
- psyBNC 2.3 Beta - encrypted text "spoofable" in others' irc terminal Brian Rea (Tue Jan 22 2002 - 09:36:10 PST)
- The "Lunch Break Hole" Frank Heyne (Mon Jan 21 2002 - 04:27:34 PST)
- More information on alcatel speed touch home modem Hacknisty (Tue Jan 22 2002 - 11:07:05 PST)
- Macinosh IE file execuion vulerability Jass Seljamaa (Tue Jan 22 2002 - 03:02:47 PST)
- "Dec. 6: Oracle server vulnerable on Unix" Elan Hasson (Tue Jan 22 2002 - 07:12:28 PST)
- RE: Citrix NFuse 1.6 Jeff Mills (Tue Jan 22 2002 - 13:43:11 PST)
- RE: remote memory reading through tcp/icmp Michael Wojcik (Tue Jan 22 2002 - 14:20:13 PST)
- Re: remote memory reading through tcp/icmp (linux) Martin Mačok (Tue Jan 22 2002 - 14:59:38 PST)
- psyBNC2.3 Beta - encrypted text spoofable in others irc terminal psychoidat_private (Tue Jan 22 2002 - 15:12:22 PST)
- Re: Shoutcast server 1.8.3 win32 ellipse (Tue Jan 22 2002 - 14:35:11 PST)
- CyberStop-Server-DoS-remote-attacks al3x hernandez (Tue Jan 22 2002 - 15:01:57 PST)
- [RHSA-2002:015-13] Updated at package available bugzillaat_private (Wed Jan 23 2002 - 07:39:17 PST)
- RE: Citrix NFuse 1.6 steven.sporenat_private (Tue Jan 22 2002 - 23:23:49 PST)
- MDKSA-2002:008 - jmcce update Mandrake Linux Security Team (Tue Jan 22 2002 - 14:41:22 PST)
- [RHSA-2002:014-07] Updated OpenLDAP packages available bugzillaat_private (Wed Jan 23 2002 - 08:56:07 PST)
- Re: USPS Online Bill Pay - Cleartext Password Leakage (resolved) Matthew Dent (Tue Jan 22 2002 - 18:19:01 PST)
- Re: D-Link DWL-1000AP can be compromised because of SNMP configuration Jim (Wed Jan 23 2002 - 11:15:38 PST)
- Vulnerabilty in PaintBBS v1.2 John Bissell (Tue Jan 22 2002 - 20:45:01 PST)
- Re: Shoutcast server 1.8.3 win32 Austin Ensminger (Mon Jan 21 2002 - 22:04:58 PST)
- [RHSA-2002:007-16] Updated 2.4 kernel available bugzillaat_private (Wed Jan 23 2002 - 19:56:32 PST)
- squirrelmail bug appelastat_private (Thu Jan 24 2002 - 07:55:57 PST)
- Re: PHP-Nuke allows Command Execution & Much more RoMaNSoFt (Thu Jan 24 2002 - 08:18:08 PST)
- gnuchess buffer overflow vulnerabilty Bernhard Kuemel (Thu Jan 24 2002 - 05:42:08 PST)
- For European and Asian Knowledge Seekers Nathan Andrew Carter (Thu Jan 24 2002 - 13:02:18 PST)
- Plumtree Corporate Portal Cross-Site Scripting (Patch Available) Ed Moyle (Thu Jan 24 2002 - 06:20:56 PST)
- Re: Agoracgi v3.3e Cross Site Scripting Vulnerability Steve Kneizys (Thu Jan 24 2002 - 09:47:30 PST)
- Cross-Site Scripting Vuln... InterWN Labs (Thu Jan 24 2002 - 05:01:03 PST)
- Re: D-Link DWL-1000AP can be compromised because of SNMP configuration David (Wed Jan 23 2002 - 23:50:14 PST)
- ISSTW Security Advisory Tarantella Enterprise 3.11.903 Directory Index Disclosure Vulnerability advisory (Wed Jan 23 2002 - 23:33:02 PST)
- [NGSEC] Whitepaper Released: Polymorphic shellcodes vs. Application IDSs NGSEC Research Team (Thu Jan 24 2002 - 09:50:05 PST)
- Re: squirrelmail bug Konstantin Riabitsev (Thu Jan 24 2002 - 13:20:44 PST)
- Anonymous Mail Forwarding Vulnerabilities in FormMail 1.9 Ronald F. Guilmette (Wed Jan 23 2002 - 20:13:00 PST)
- Re: squirrelmail bug Adam Herscher (Thu Jan 24 2002 - 13:31:26 PST)
- Vulnerabilities in squirrelmail Tom McAdam (Thu Jan 24 2002 - 14:53:02 PST)
- BindView NetInventory NetRC hostcfg_ni password passed in clear t ext Barker, Brent (Thu Jan 24 2002 - 13:53:39 PST)
- Security Update: [CSSA-2001-SCO.35.2] REVISED: OpenServer: setcontext and sysi86 vulnerabilities securityat_private (Tue Jan 22 2002 - 17:43:23 PST)
- HP-UX security bulletins digest IT Resource Center (Fri Jan 25 2002 - 08:26:11 PST)
- HP Secure OS Software for Linux security bulletins digest IT Resource Center (Thu Jan 24 2002 - 18:01:09 PST)
- SuSE Security Announcement: rsync (SuSE-SA:2002:004) Sebastian Krahmer (Fri Jan 25 2002 - 08:05:48 PST)
- [CLA-2002:458] Conectiva Linux Security Announcement - rsync secureat_private (Fri Jan 25 2002 - 10:32:06 PST)
- [ESA-20020125-004] rsync signed integer handling vulnerability EnGarde Secure Linux (Fri Jan 25 2002 - 08:19:37 PST)
- Potential RealPlayer 8 Vulnerability Dave Cotter (Thu Jan 24 2002 - 23:04:08 PST)
- Re: Agoracgi v3.3e Cross Site Scripting Vulnerability Steve Kneizys (Thu Jan 24 2002 - 22:38:28 PST)
- Security Update: [CSSA-2002-SCO.2] Open UNIX, UnixWare 7: sort creates temporary files insecurely securityat_private (Thu Jan 24 2002 - 15:59:49 PST)
- RealPlayer Buffer Overflow [Sentinel Chicken Networks Security Advisory #01] tmorgan-securityat_private (Thu Jan 24 2002 - 19:17:41 PST)
- Identifying PGP Corporate Desktop 7.1 with PGPfire Personal Desktop Firewall Installed (no need to be enabled) on Microsoft Windows Based OSs Ofir Arkin (Fri Jan 25 2002 - 11:47:36 PST)
- [RHSA-2002:018-05] New rsync packages available bugzillaat_private (Fri Jan 25 2002 - 13:33:47 PST)
- Alteon ACEdirector signature/security bug Dave Plonka (Fri Jan 25 2002 - 14:09:40 PST)
- TSLSA-2002-0025 - rsync Trustix Secure Linux Advisor (Mon Jan 28 2002 - 06:13:21 PST)
- [ Hackerslab bug_paper ] Xkas application vulnerability s96192at_private (Mon Jan 28 2002 - 01:06:16 PST)
- Intel WLAN Driver storing 128bit WEP-Key in plain text! dario luethi (Mon Jan 28 2002 - 02:06:43 PST)
- bru backup program Andrew Griffiths (Sat Jan 26 2002 - 02:00:55 PST)
- rsync-2.5.2 has security fix (was: Re: [RHSA-2002:018-05] New rsync packages available) Jim Knoble (Sun Jan 27 2002 - 01:45:41 PST)
- RE: The "Lunch Break Hole" David LeBlanc (Sun Jan 27 2002 - 00:55:32 PST)
- Sapgui 4.6D for Windows Falk Siemonsmeier (Mon Jan 28 2002 - 10:00:55 PST)
- SECURITY.NNOV: stream3 Windows NT/2000 DoS (Q280446) 3APA3A (Mon Jan 28 2002 - 03:14:24 PST)
- Full path disclosure vulnerabilty in Sun's Web site J_Bourdeauat_private (Sat Jan 26 2002 - 13:02:31 PST)
- [CLA-2002:459] Conectiva Linux Security Announcement - openldap secureat_private (Mon Jan 28 2002 - 06:17:55 PST)
- user-mode-linux problems Andrew Griffiths (Sun Jan 27 2002 - 18:16:57 PST)
- [ARL02-A01] Vulnerability in Hosting Controller Ahmet Sabri ALPER (Sat Jan 26 2002 - 10:20:18 PST)
- MDKSA-2002:009 - rsync update Mandrake Linux Security Team (Mon Jan 28 2002 - 13:27:06 PST)
- Re: Sapgui 4.6D for Windows Falk Siemonsmeier (Mon Jan 28 2002 - 11:39:52 PST)
- MDKSA-2002:010 - enscript update Mandrake Linux Security Team (Mon Jan 28 2002 - 13:28:06 PST)
- [SUPERPETZ ADVISORY #001 - agora.cgi Secret Path Disclosure Vulnerability] superpetzat_private (Mon Jan 28 2002 - 17:28:02 PST)
- Cisco Security Advisory: Cisco CatOS Telnet Buffer Vulnerability PSIRT (Product Security Incident Response Team) (Tue Jan 29 2002 - 07:15:57 PST)
- Xoops Private Message System Script injection Cabezon Aurélien (Tue Jan 29 2002 - 08:00:17 PST)
- Xoops SQL fragment disclosure and SQL injection vulnerability Cabezon Aurélien (Tue Jan 29 2002 - 08:03:32 PST)
- Re: [VulnWatch] sastcpd Buffer Overflow and Format String Vulnerabilities William D. Colburn (aka Schlake) (Tue Jan 29 2002 - 09:54:57 PST)
- Re: sastcpd Buffer Overflow and Format String Vulnerabilities elliptic (Tue Jan 29 2002 - 09:54:38 PST)
- Xoops topics : One more time Cabezon Aurélien (Tue Jan 29 2002 - 09:09:01 PST)
- sastcpd Buffer Overflow and Format String Vulnerabilities Wodahs Latigid (Tue Jan 29 2002 - 01:59:41 PST)
- Vulnerabilities in EServ 2.97 Arne Vidstrom (Tue Jan 29 2002 - 13:33:00 PST)
- Long path exploit on NTFS hans.somersat_private (Wed Jan 30 2002 - 00:33:33 PST)
- Compaq Tru64 patches for CERT VU#10277 Roberts Ross (Wed Jan 30 2002 - 08:27:26 PST)
- DoS bug on Tru64 Jason Johns - SAS(IT) (Wed Jan 30 2002 - 08:27:21 PST)
- RE: Long path exploit on NTFS Leif Sawyer (Wed Jan 30 2002 - 09:42:22 PST)
- Betr.: Long path exploit on NTFS Remko Catersels (Wed Jan 30 2002 - 08:40:53 PST)
- Re: DoS bug on Tru64 ellipse (Wed Jan 30 2002 - 09:48:18 PST)
- [RHSA-2002:018-10] New rsync packages available bugzillaat_private (Wed Jan 30 2002 - 13:10:59 PST)
- RE: DoS bug on Tru64 Roberts Ross (Wed Jan 30 2002 - 10:56:43 PST)
- [ WWWThreads, UBBThreads ] Security Hole in upload system Root Extractor (Wed Jan 30 2002 - 14:12:17 PST)
- sastcpd 8.0 'authprog' local root vulnerability rpc (Wed Jan 30 2002 - 22:40:58 PST)
- RE: Long path exploit on NTFS Gavin Lowe (Wed Jan 30 2002 - 10:39:12 PST)
- Re: DoS bug on Tru64 Dennis Jenkins (Wed Jan 30 2002 - 11:40:17 PST)
- Re: DoS bug on Tru64 Bob Dog (Wed Jan 30 2002 - 11:55:58 PST)
- Fairly serious vulnerability in vBulletin 2.2.0 HarryM (Wed Jan 30 2002 - 20:18:23 PST)
- Microsoft Security Bulletin MS02-001 Microsoft (Wed Jan 30 2002 - 17:47:43 PST)
- RE: Long path exploit on NTFS Moorhouse, Walt P (Thu Jan 31 2002 - 05:37:51 PST)
- Re: DoS bug on Tru64 UCX Foe (Wed Jan 30 2002 - 17:29:22 PST)
- Script for find domino's users Gabriel A. Maggiotti (Thu Jan 31 2002 - 08:52:16 PST)
- tac_plus version F4.0.4.alpha on at least Solaris 8 sparc Kevin A. Nassery (Wed Jan 30 2002 - 15:42:03 PST)
- Re: DoS bug on Tru64 Matt Chapman (Wed Jan 30 2002 - 21:32:39 PST)
- Re: DoS bug on Tru64 Chris Adams (Wed Jan 30 2002 - 17:32:08 PST)
- Re: tac_plus version F4.0.4.alpha on at least Solaris 8 sparc ellipse (Thu Jan 31 2002 - 09:53:57 PST)
- Re: remote memory reading through tcp/icmp Casper Dik (Thu Jan 31 2002 - 01:35:40 PST)
- Re: DoS bug on Tru64 Scott Brewster (Wed Jan 30 2002 - 15:33:08 PST)
- RE: Long path exploit on NTFS David LeBlanc (Thu Jan 31 2002 - 09:12:38 PST)
- Re: tac_plus version F4.0.4.alpha on at least Solaris 8 sparc Jarno Huuskonen (Thu Jan 31 2002 - 11:01:00 PST)
- Re: user-mode-linux problems Ajax (Thu Jan 31 2002 - 07:13:25 PST)
- [CLA-2002:460] Conectiva Linux Security Announcement - pine secureat_private (Thu Jan 31 2002 - 06:04:16 PST)
- New SQL Injection Whitepaper Chris Anley (Thu Jan 31 2002 - 07:37:42 PST)
- Semi-serious vulnerability in vBulletin 2.2.0 John Percival (Thu Jan 31 2002 - 14:02:16 PST)
- msdtc on 3372 palanteat_private (Wed Jan 30 2002 - 19:14:48 PST)
- Re: Script for find domino's users Simon Delicata (Thu Jan 31 2002 - 12:03:10 PST)
- MDKSA-2002:011 - gzip update Mandrake Linux Security Team (Thu Jan 31 2002 - 14:30:46 PST)
- Possible privilege escalation with NDS for NT nobody (Thu Jan 31 2002 - 10:21:32 PST)
- Re: Script for find domino's users Chad Loder (Thu Jan 31 2002 - 16:56:36 PST)
- Sambar Webserver Sample Script v5.1 DoS Vulnerability Exploit Tamer Sahin (Tue Jan 01 2002 - 13:51:33 PST)
Last message date: Wed Feb 06 2002 - 17:13:36 PST
Archived on: Wed Feb 06 2002 - 17:13:40 PST
357 messages sorted by:
[ author ]
[ thread ]
[ subject ]
Other mail archives
This archive was generated by hypermail 2b30
: Wed Feb 06 2002 - 17:13:40 PST