bugtraq 2002/05
By Thread

Most recent messages
286 messages sorted by: [ author ] [ date ] [ subject ]
Other mail archives

Starting: Wed May 01 2002 - 08:23:11 PDT
Ending: Sun Jun 02 2002 - 17:37:35 PDT

Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerability Charles M. Richmond (Wed May 01 2002 - 05:34:13 PDT)
- Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerability rogerskat_private (Wed May 01 2002 - 09:34:59 PDT)
[RHSA-2002:062-08] Insecure DocBook stylesheet option bugzillaat_private (Wed May 01 2002 - 05:17:44 PDT)
FW: Fscan advisory (fwd) Dave Ahmad (Wed May 01 2002 - 09:46:39 PDT)
Classic Cross Site Scripting: Gibson Research Corporation http-equivat_private (Wed May 01 2002 - 09:34:47 PDT)
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerability Ken.Williamsat_private (Wed May 01 2002 - 13:51:15 PDT)
Security Update: [CSSA-2002-SCO.17] OpenServer 5.0.5 : sar -o buffer overflow securityat_private (Wed May 01 2002 - 18:03:15 PDT)
[RHSA-2002:070-06] Updated mod_python packages available bugzillaat_private (Thu May 02 2002 - 01:59:52 PDT)
Honeynet Project -> The Reverse Challenge Lance Spitzner (Wed May 01 2002 - 13:10:51 PDT)
- RE: Honeynet Project -> The Reverse Challenge REAVA, JEFFREY [IT/0200] (Thu May 02 2002 - 10:43:14 PDT)
KPMG-2002017: Snapgear Lite+ Firewall Denial of Service Peter Gründl (Thu May 02 2002 - 04:56:53 PDT)
[RHSA-2002:064-12] Updated Nautilus for symlink vulnerability writing metadata files bugzillaat_private (Thu May 02 2002 - 11:58:04 PDT)
R7-0003: Nautilus Symlink Vulnerability Joe Testa (Thu May 02 2002 - 13:13:50 PDT)
Logitech Keyboard Insecurity keyboardhackerat_private (Thu May 02 2002 - 11:27:51 PDT)
- Re: Logitech Keyboard Insecurity Paul Cardon (Thu May 02 2002 - 15:15:54 PDT)
  - Re: Logitech Keyboard Insecurity KJK::Hyperion (Fri May 03 2002 - 18:35:14 PDT)
- Re: Logitech Keyboard Insecurity richard.fuserat_private (Thu May 02 2002 - 16:41:16 PDT)
- Re: Logitech Keyboard Insecurity big bon (Fri May 03 2002 - 07:01:54 PDT)
Macromedia Flash Activex Buffer overflow Marc Maiffret (Thu May 02 2002 - 17:17:22 PDT)
iXsecurity.20020404.4d_webserver.a Jonas Ländin (Thu May 02 2002 - 17:37:45 PDT)
Announcing DEF CON 10! The Dark Tangent (Thu May 02 2002 - 21:25:25 PDT)
Fix for Mozilla XMLHttpRequest file disclosure vulnerability Frank Hecker (Thu May 02 2002 - 20:58:55 PDT)
Re: Intel D845HV/WN/PT series motherboard vulnerability Dave Oliver (Fri May 03 2002 - 06:22:37 PDT)
[CLA-2002:477] Conectiva Linux Security Announcement - mod_python secureat_private (Fri May 03 2002 - 13:37:11 PDT)
Re: trusting user-supplied data (was Re: FreeBSD Security Advisory FreeBSD-SA-02:23.stdio) Paul Starzetz (Thu May 02 2002 - 10:35:02 PDT)
Beonex Communicator 0.8-pre based on Mozilla 1.0-branch released Ben Bucksch (Fri May 03 2002 - 18:59:15 PDT)
UPDATE (1-May-2002): Reading local files in Netscape 6 and Mozilla (GM#001-NS) GreyMagic Software (Sat May 04 2002 - 02:43:59 PDT)
Windows 2000 Server IIS 5.0 .ASP Overflow Exploit CHINANSL Security Team (Sat May 04 2002 - 08:42:52 PDT)
Administrivia Dave Ahmad (Sun May 05 2002 - 19:27:55 PDT)
Reverse Challenge - Binary released Lance Spitzner (Sun May 05 2002 - 19:05:23 PDT)
b2 php remote command execution Frank (Mon May 06 2002 - 03:13:37 PDT)
Misformated message header causes msn messenger to crash underdocat_private (Mon May 06 2002 - 08:04:13 PDT)
- Re: Misformated message header causes msn messenger to crash Beck Mr.R (Thu May 23 2002 - 13:58:12 PDT)
w00w00 on AOL Instant Messenger remote overflow #2 Matt Conover (Mon May 06 2002 - 08:50:37 PDT)
SuSE Security Announcement: imlib (SuSE-SA:2002:015) Thomas Biege (Tue May 07 2002 - 05:05:54 PDT)
KPMG-2002018: Pointsec for PalmOS PIN disclosure Binken, Rens (Tue May 07 2002 - 02:41:19 PDT)
[CLA-2002:480] Conectiva Linux Security Announcement - tcpdump secureat_private (Tue May 07 2002 - 14:23:51 PDT)
Multiple Vulnerabilities in MDaemon + WorldClient Obscure (Tue May 07 2002 - 14:56:58 PDT)
- RE: Multiple Vulnerabilities in MDaemon + WorldClient Terry Lavoie (Wed May 08 2002 - 12:53:59 PDT)
Lysias Lidik Webserver suffers from a Directory Traversal Vulnerability Florian Hobelsberger / BlueScreen (Tue May 07 2002 - 18:27:19 PDT)
[SNS Advisory No.52] Webmin/Usermin Cross-site Scripting Vulnerability snsadvat_private (Tue May 07 2002 - 22:20:26 PDT)
[SNS Advisory No.53] Webmin/Usermin Session ID Spoofing Vulnerability snsadvat_private (Tue May 07 2002 - 22:20:32 PDT)
cqure.net.20020412.netware_sdmr.a Patrik Karlsson (Wed May 08 2002 - 03:02:34 PDT)
cqure.net.20020412.bordermanager_36_mv1.a Patrik Karlsson (Wed May 08 2002 - 03:03:11 PDT)
- Re: cqure.net.20020412.bordermanager_36_mv1.a Corey J. Steele (Fri May 10 2002 - 11:05:26 PDT)
cqure.net.20020412.netware_client.a Patrik Karlsson (Wed May 08 2002 - 03:02:01 PDT)
cqure.net.20020408.netware_nwftpd.a Patrik Karlsson (Wed May 08 2002 - 03:01:15 PDT)
- Re: cqure.net.20020408.netware_nwftpd.a Brian Eckman (Wed May 08 2002 - 11:54:43 PDT)
SuSE Security Announcement: sysconfig (SuSE-SA:2002:016) Sebastian Krahmer (Wed May 08 2002 - 03:35:35 PDT)
Cisco Security Advisory: NTP vulnerability Cisco Systems Product Security Incident Response Team (Wed May 08 2002 - 09:38:48 PDT)
CRLF Injection Ulf Harnhammar (Mon May 06 2002 - 15:12:10 PDT)
[CARTSA-20020402] Linux Netfilter NAT/ICMP code information leak Philippe Biondi (Wed May 08 2002 - 06:35:27 PDT)
[CLA-2002:481] Conectiva Linux Security Announcement - imlib secureat_private (Wed May 08 2002 - 09:26:44 PDT)
NTFS and PGP interact to expose EFS encrypted data Ry Jones (Wed May 08 2002 - 12:34:11 PDT)
[NGSEC-2002-2] ISC DHCPDv3, remote root compromise NGSEC Research Team (Wed May 08 2002 - 10:04:35 PDT)
Security Update: [CSSA-2002-SCO.18] Open UNIX 8.0.0 UnixWare 7.1.1 : CDE /var/dt and subdirectories are writable by world securityat_private (Wed May 08 2002 - 13:01:25 PDT)
ADVISORY: MSN Messenger OCX Buffer Overflow Marc Maiffret (Wed May 08 2002 - 16:00:03 PDT)
Unfortunate interaction between EZMLM and MessageLabs virus scanning Ben Laurie (Tue May 07 2002 - 09:17:02 PDT)
- Re: Unfortunate interaction between EZMLM and MessageLabs virus scanning Alun Jones (Thu May 09 2002 - 06:13:51 PDT)
  - Re: Unfortunate interaction between EZMLM and MessageLabs virus scanning der Mouse (Fri May 10 2002 - 20:23:45 PDT)
  - Re: Unfortunate interaction between EZMLM and MessageLabs virus scanning Stephen Cope (Fri May 10 2002 - 21:14:51 PDT)
[RHSA-2002:070-08] Updated mod_python packages available bugzillaat_private (Wed May 08 2002 - 11:09:36 PDT)
Re: Patrol security bugs Mike Crane (Tue May 07 2002 - 14:07:01 PDT)
Summercon 2002 Announce Summercon Admin (Wed May 08 2002 - 10:00:54 PDT)
Nearly undocumented NT security feature - the solution to executable attachments? KJK::Hyperion (Tue May 07 2002 - 13:28:33 PDT)
- Re: Nearly undocumented NT security feature - the solution to executable attachments? Keary Suska (Thu May 09 2002 - 11:37:36 PDT)
- Re: Nearly undocumented NT security feature - the solution to executable attachments? Vanja Hrustic (Thu May 09 2002 - 13:41:50 PDT)
- Re: Nearly undocumented NT security feature - the solution to executable attachments? 3APA3A (Fri May 10 2002 - 05:28:54 PDT)
[RHSA-2002:086-05] Netfilter information leak bugzillaat_private (Thu May 09 2002 - 06:46:09 PDT)
[CLA-2002:483] Conectiva Linux Security Announcement - dhcp secureat_private (Thu May 09 2002 - 07:53:28 PDT)
OpenBSD local DoS and root exploit fozzyat_private (Thu May 09 2002 - 06:11:31 PDT)
- Re: OpenBSD local DoS and root exploit Dave Ahmad (Thu May 09 2002 - 08:27:40 PDT)
  - Re: OpenBSD local DoS and root exploit Jonas Eriksson (Thu May 09 2002 - 09:54:31 PDT)
Re: Cisco Security Advisory: NTP vulnerability (fwd) Tina Bird (Thu May 09 2002 - 08:19:19 PDT)
1st Linux and Free Software Festival - Ankara 2002 Burc Yildirim (Thu May 09 2002 - 01:47:34 PDT)
wu-imap buffer overflow condition Marcell Fodor (Fri May 10 2002 - 08:27:13 PDT)
- Re: wu-imap buffer overflow condition Jeff Franklin (Fri May 10 2002 - 17:34:58 PDT)
GOBBLES SECURITY ADVISORY #33 Dave Ahmad (Fri May 10 2002 - 11:44:48 PDT)
- Re: GOBBLES SECURITY ADVISORY #33 Blue Boar (Fri May 10 2002 - 20:31:06 PDT)
- Re: GOBBLES SECURITY ADVISORY #33 Andrew Clover (Sat May 11 2002 - 08:04:46 PDT)
[RHSA-2002:081-06] perl-Digest-MD5 UTF8 bug results in incorrect MD5 sums bugzillaat_private (Fri May 10 2002 - 10:33:24 PDT)
Flaw caused by default rulesets in many desktop firewalls under windows Christian decoder Holler (Fri May 10 2002 - 11:44:15 PDT)
- Re: Flaw caused by default rulesets in many desktop firewalls under windows Frank Knobbe (Fri May 10 2002 - 20:34:45 PDT)
Possible Buffer Overflow in ACDSee 4.0 Markus Arndt (Fri May 10 2002 - 14:10:28 PDT)
SafeWeb Vulnerability - Fingerprinting Websites Using Traffic Analysis Andrew Hintz (Drew) (Thu May 09 2002 - 22:56:37 PDT)
Cisco ATA-186 admin password can be trivially circumvented Patrick Michael Kane (Thu May 09 2002 - 10:30:11 PDT)
Two (2) Critical Path inJoin V4.0 Directory Server Issues Information Anarchy 2K01 (Fri May 10 2002 - 11:55:24 PDT)
MDKSA-2002:030 - temporary fix for netfilter information leak Mandrake Linux Security Team (Thu May 09 2002 - 09:41:48 PDT)
Hole in AOL Instant Messenger InterWN Labs (Wed May 08 2002 - 16:01:26 PDT)
FW: New Macromedia Security Zone Bulletins Posted Benjamin Keller (Thu May 09 2002 - 18:31:05 PDT)
FIRST 2002 reminder Roger Safian (Thu May 09 2002 - 07:58:59 PDT)
Linux kernel 2.4 "weak end host" issue (previously discussed here as "arp problem") Felix von Leitner (Thu May 09 2002 - 11:03:05 PDT)
- Re: Linux kernel 2.4 "weak end host" issue (previously discussed here as "arp problem") Dax Kelson (Sat May 11 2002 - 01:31:47 PDT)
- Re: Linux kernel 2.4 "weak end host" issue Explained Matthew G. Marsh (Tue May 14 2002 - 07:47:22 PDT)
Bug in mnogosearch-3.1.19 qitest1 (Sat May 11 2002 - 10:08:15 PDT)
Re: Flaw caused by default rulesets in many desktop firewalls under windows Christian decoder Holler (Sat May 11 2002 - 07:43:23 PDT)
Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version") gobblesat_private (Sat May 11 2002 - 21:08:08 PDT)
- Re: Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version") 3APA3A (Tue May 14 2002 - 00:47:01 PDT)
  - Re: Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version") Georgi Guninski (Tue May 14 2002 - 08:38:51 PDT)
ATMSNMPD Vulnerable but not Addressed Ross Coppage (Mon May 13 2002 - 08:55:22 PDT)
- ATMSNMPD Vulnerable but not Addressed Coppage, Ross (Mon May 13 2002 - 11:10:32 PDT)
- Re: ATMSNMPD Vulnerable but not Addressed Emre Yildirim (Mon May 13 2002 - 11:01:25 PDT)
Gaim abritary Email Reading Scott Mackenzie (Sat May 11 2002 - 21:52:56 PDT)
nCipher Security Advisory #3: MSCAPI CSP Install Wizard nCipher Support (Mon May 13 2002 - 08:44:29 PDT)
Security Update: [CSSA-2002-020.0] Linux: icecast buffer overflows and denial-of-service securityat_private (Mon May 13 2002 - 14:28:15 PDT)
NOCC: cross-site-scripting bug ppp-design (Tue May 14 2002 - 06:33:29 PDT)
LevCGI.coms NetPad 1.0.2 multiple vulnerabilities BrainRawt . (Mon May 13 2002 - 18:44:28 PDT)
dH team & SECURITY.NNOV: A variant of "Word Mail Merge" vulnerability ERRor (Tue May 14 2002 - 01:26:30 PDT)
[RHSA-2002:065-13] Updated sharutils package fixes uudecode issue bugzillaat_private (Tue May 14 2002 - 07:44:59 PDT)
NetPad eq MALWARE, was: LevCGI.coms NetPad 1.0.2 multiple vulnerabilities superpetzat_private (Tue May 14 2002 - 10:02:14 PDT)
Security Update: [CSSA-2002-018.1] Linux: REVISED: Race condition in fileutils securityat_private (Tue May 14 2002 - 13:28:29 PDT)
(SSRT0822) Security Bulletin - Compaq & Java Proxy/VM Potential Security Vulnerabilities (fwd) Dave Ahmad (Tue May 14 2002 - 18:49:44 PDT)
Opera javascript protocoll vulnerability [Sandblad advisory #6] Andreas Sandblad (Wed May 15 2002 - 09:57:59 PDT)
Remote quake 2 3.2x server cvar leak Richard Stanway (Mon May 13 2002 - 19:48:05 PDT)
swatch bug in throttle SUZUKI Yasuhiro (Wed May 15 2002 - 05:48:40 PDT)
dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express ERRor (Wed May 15 2002 - 04:11:32 PDT)
- Re: dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express Chad Loder (Fri May 17 2002 - 02:38:16 PDT)
  - Re[2]: dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express 3APA3A (Fri May 17 2002 - 10:23:42 PDT)
Cisco Security Advisory: Transparent Cache Engine and Content Engine TCP Relay Vulnerability Cisco Systems Product Security Incident Response Team (Wed May 15 2002 - 12:30:00 PDT)
Security Update: [CSSA-2002-021.0] Linux: imapd buffer overflow when fetching partial mailbox attributes securityat_private (Wed May 15 2002 - 13:02:30 PDT)
Cisco Security Advisory: Content Service Switch HTTP Processing Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed May 15 2002 - 12:30:00 PDT)
[RHSA-2002:079-13] Updated Mozilla packages fix a security issue bugzillaat_private (Wed May 15 2002 - 12:15:59 PDT)
Security Update: [CSSA-2002-022.0] Linux: OpenSSH ticket and token passing buffer overflow securityat_private (Wed May 15 2002 - 16:53:33 PDT)
[SNS Advisory No.48] Microsoft Internet Explorer Still Download And Execute ANY Program Automatically snsadvat_private (Wed May 15 2002 - 23:20:37 PDT)
SuSE Security Announcement: lukemftp, nkitb, nkitserv (SuSE-SA:2002:018) Thomas Biege (Thu May 16 2002 - 05:05:46 PDT)
MS02-023 does not patch actual issue! GreyMagic Software (Thu May 16 2002 - 01:55:32 PDT)
- Re: MS02-023 does not patch actual issue! .-=D3FC0N/=-. (Thu May 16 2002 - 08:46:18 PDT)
  - Re: MS02-023 does not patch actual issue! Tom Gilder (Thu May 16 2002 - 10:56:33 PDT)
- RE: MS02-023 does not patch actual issue! David McKenzie (Thu May 16 2002 - 10:54:07 PDT)
- RE: MS02-023 does not patch actual issue! John.Aireyat_private (Fri May 17 2002 - 06:34:59 PDT)
- RE: MS02-023 does not patch actual issue! John.Aireyat_private (Fri May 17 2002 - 01:05:11 PDT)
Update and comments on the MS02-023 patch, holes still remain Thor Larholm (Thu May 16 2002 - 07:20:08 PDT)
- RE: Update and comments on the MS02-023 patch, holes still remain Thor Larholm (Fri May 17 2002 - 05:36:00 PDT)
- Re: Update and comments on the MS02-023 patch, holes still remain Andrew Clover (Fri May 17 2002 - 02:27:37 PDT)
[RHSA-2002:078-04] Updated mpg321 packages available bugzillaat_private (Thu May 16 2002 - 11:21:51 PDT)
SuSE Security Announcement: shadow (SuSE-SA:2002:017) Sebastian Krahmer (Thu May 16 2002 - 03:49:00 PDT)
MDKSA-2002:031 - fileutils update Mandrake Linux Security Team (Thu May 16 2002 - 13:08:19 PDT)
Re: [security-intern] [securityat_private] FWD - GNU rm fileutils race condition problems on SuSE Thomas Biege (Thu May 16 2002 - 05:03:02 PDT)
GNU rm fileutils race condition problems on SuSE Paul Starzetz (Thu May 16 2002 - 04:43:25 PDT)
MDKSA-2002:032 - tcpdump update Mandrake Linux Security Team (Thu May 16 2002 - 13:09:19 PDT)
*****SPAM***** Hosting Controller still have dangerous bugs! hdlkhaat_private (Fri May 17 2002 - 02:10:51 PDT)
Security Update: [CSSA-2002-023.0] Linux: PHP multipart/form-data vulnerabilities securityat_private (Fri May 17 2002 - 11:20:54 PDT)
Grsecurity problem - modifying "read-only kernel" Guillaume PELAT (Fri May 17 2002 - 01:07:31 PDT)
Phorum 3.3.2a remote command execution Markus Arndt (Fri May 17 2002 - 11:26:40 PDT)
- Re: Phorum 3.3.2a remote command execution Gabriel A. Maggiotti (Sat May 18 2002 - 11:58:19 PDT)
  - Re: Phorum 3.3.2a remote command execution Thomas Seifert (Sat May 18 2002 - 17:12:51 PDT)
OpenSSH 3.2.2 released (fwd) Jonas Eriksson (Thu May 16 2002 - 23:42:42 PDT)
14+ CGIscript.net scripts - Path Disclosure Steve Gustin (Fri May 17 2002 - 14:31:23 PDT)
Phorum 3.3.2a has another bug for remote command execution Markus Arndt (Sat May 18 2002 - 03:32:56 PDT)
Re: Xerox DocuTech problems kikaijuat_private (Fri May 17 2002 - 18:26:45 PDT)
- Re: Xerox DocuTech problems uid0at_private (Fri May 17 2002 - 16:11:57 PDT)
- Re: Xerox DocuTech problems Ken Weaverling (Sat May 18 2002 - 19:04:19 PDT)
ps under FreeBSD Jakub Filonik (Sat May 18 2002 - 11:40:38 PDT)
- Re: ps under FreeBSD Yuri A. Kabaenkov (Sat May 18 2002 - 12:50:03 PDT)
  - Re: ps under FreeBSD Crist J. Clark (Sun May 19 2002 - 01:18:38 PDT)
- Re: ps under FreeBSD Torbjorn Kristoffersen (Sun May 19 2002 - 19:29:37 PDT)
- Re: ps under FreeBSD Guillaume PELAT (Sun May 19 2002 - 02:51:08 PDT)
- Re: ps under FreeBSD Crist J. Clark (Sun May 19 2002 - 01:14:38 PDT)
Verisign PKI: anyone to subordinate CA Pidgorny, Slav (Sat May 18 2002 - 23:01:03 PDT)
- Re: Verisign PKI: anyone to subordinate CA Muller Zsolt (Sun May 19 2002 - 03:03:57 PDT)
- RE: Verisign PKI: anyone to subordinate CA John Howie (Sun May 19 2002 - 14:56:06 PDT)
- Re: Verisign PKI: anyone to subordinate CA George Capehart (Sun May 19 2002 - 07:52:55 PDT)
cross-site scripting bug of ViewCVS office (Sat May 18 2002 - 17:32:24 PDT)
FreeBSD Security Advisory FreeBSD-SA-02:24.k5su FreeBSD Security Advisories (Mon May 20 2002 - 09:08:02 PDT)
FreeBSD Security Advisory FreeBSD-SA-02:25.bzip2 FreeBSD Security Advisories (Mon May 20 2002 - 09:08:14 PDT)
IE dot bug - Sandblad advisory #7 Andreas Sandblad (Sun May 19 2002 - 07:45:15 PDT)
Another vulnerability in hosting controller Bao Dai Nhan (Sun May 19 2002 - 03:10:50 PDT)
Plain Text Password Vulnerability in Winamp 2.80 isoxat_private (Sat May 18 2002 - 21:41:33 PDT)
- Re: Plain Text Password Vulnerability in Winamp 2.80 Muhammad Faisal Rauf Danka (Mon May 20 2002 - 18:49:35 PDT)
Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and prior (fwd) Dave Ahmad (Mon May 20 2002 - 13:46:26 PDT)
CAPZLOCK SECURITY ADVISORY NO. 1 capzlockat_private (Mon May 20 2002 - 07:29:32 PDT)
[SecurityOffice] Stronghold Secure Webserver Sample Script Path Disclosure Vulnerability Tamer Sahin (Mon May 20 2002 - 22:00:31 PDT)
Security Update: [CSSA-2002-SCO.19] OpenServer 5.0.5 OpenServer 5.0.6 : yppasswdd remotely exploitable buffer overflow securityat_private (Mon May 20 2002 - 17:55:25 PDT)
"The Cross Site Scripting FAQ" zeno (Tue May 21 2002 - 04:50:25 PDT)
eSecurityOnline advisory 5063 - Sun AnswerBook2 gettransbitmap buffer overflow vulnerability researchteamat_private (Mon May 20 2002 - 15:20:59 PDT)
route of #phrack is a funny man! gobblesat_private (Tue May 21 2002 - 08:49:47 PDT)
- Re: route of #phrack is a funny man! George Staikos (Thu May 23 2002 - 19:09:22 PDT)
Evolution of Cross-Site Scripting Attacks David Endler (Mon May 20 2002 - 09:52:34 PDT)
Cisco IOS ICMP redirect DoS FX (Tue May 21 2002 - 03:37:09 PDT)
[RHSA-2002:047-10] Updated fetchmail packages available bugzillaat_private (Tue May 21 2002 - 06:16:21 PDT)
- Re: [RHSA-2002:047-10] Updated fetchmail packages available Florian Weimer (Fri May 31 2002 - 06:39:41 PDT)
  - Re: [RHSA-2002:047-10] Updated fetchmail packages available Nate Eldredge (Fri May 31 2002 - 13:27:37 PDT)
    - Re: [RHSA-2002:047-10] Updated fetchmail packages available Olaf Kirch (Fri May 31 2002 - 14:16:58 PDT)
Cisco IOS ICMP redirect DoS - Cisco's response Damir Rajnovic (Tue May 21 2002 - 10:45:40 PDT)
Catalyst 4000 COULOMBE, TROY (Mon May 20 2002 - 09:38:25 PDT)
YoungZSoft CMailServer overflow, PATCH + WAREZ!@#! 2c79cbe14ac7d0b8472d3f129fa1df55at_private (Tue May 21 2002 - 14:49:54 PDT)
ISS Alert: Microsoft SQL Spida Worm Propagation X-Force (Tue May 21 2002 - 14:31:24 PDT)
[DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpd david evlis reign (Tue May 21 2002 - 19:06:43 PDT)
MatuFtpServer Remote Buffer Overflow and Possible DoS Kanatoko (Tue May 21 2002 - 21:13:00 PDT)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IP Telephones Cisco Systems Product Security Incident Response Team (Wed May 22 2002 - 09:00:00 PDT)
Multiple vulnerabilities in NewAtlanta ServletExec ISAPI 4.1 Matt Moore (Wed May 22 2002 - 09:11:57 PDT)
MDKSA-2002:033 - webmin update Mandrake Linux Security Team (Tue May 21 2002 - 18:50:11 PDT)
Opty-Way Enterprise includes MSDE with sa <blank> Philippe de Brito (Wed May 22 2002 - 10:07:38 PDT)
SuSE Security Announcement: dhcp/dhcp-server (SuSE-SA:2002:019) Thomas Biege (Wed May 22 2002 - 10:01:58 PDT)
Multiple Vulnerabilities in CISCO VoIP Phones Johnathan Nightingale (Wed May 22 2002 - 08:50:50 PDT)
Efficient Networks Contact info Shea, Tim (Thu May 23 2002 - 06:37:00 PDT)
- Re: Efficient Networks Contact info Pedro Paulo Ferreira Bueno (Thu May 23 2002 - 08:51:23 PDT)
Microsoft Active Directory security vulnerability Jonathan Lamberson (Thu May 23 2002 - 07:55:46 PDT)
[Fwd: Updated version of SSH Secure Shell available] Stephanie Schiebert (Thu May 23 2002 - 10:22:29 PDT)
Cisco Security Advisory: ATA-186 Password Disclosure Vulnerability Cisco Systems Product Security Incident Response Team (Thu May 23 2002 - 13:25:00 PDT)
Cisco Security Advisory: CBOS - Improving Resilience to DoS Attacks Cisco Systems Product Security Incident Response Team (Thu May 23 2002 - 13:20:00 PDT)
Netstd 3.07-17 multiple remote buffer overflows Spybreak (Fri May 24 2002 - 01:39:23 PDT)
- Re: Netstd 3.07-17 multiple remote buffer overflows Lupe Christoph (Sat May 25 2002 - 02:01:47 PDT)
Security Update: [CSSA-2002-SCO.20] OpenServer 5.0.5 OpenServer 5.0.6 : popper buffer overflow and denial-of-service securityat_private (Thu May 23 2002 - 16:53:09 PDT)
[CLA-2002:487] Conectiva Linux Security Announcement - imap secureat_private (Fri May 24 2002 - 07:33:06 PDT)
[SecurityOffice] LocalWeb2000 Web Server Protected File Access Vulnerability Tamer Sahin (Fri May 24 2002 - 06:20:19 PDT)
File Locking Local Denial of Service; Impact on sendmail Gregory Neil Shapiro (Thu May 23 2002 - 16:42:27 PDT)
Cisco IDS Device Manager 3.1.1 Advisory Andrew.Lopackiat_private (Fri May 24 2002 - 11:42:07 PDT)
[CLA-2002:489] Conectiva Linux Security Announcement - mailman secureat_private (Fri May 24 2002 - 14:36:20 PDT)
[GOBBLES] reflections on talkd hole gobblesat_private (Thu May 23 2002 - 21:31:33 PDT)
Security-risk on gridscan.com Michael Metz [SpeedPartner] (Fri May 24 2002 - 15:01:34 PDT)
[RHSA-2002:092-11] Buffer overflow in UW imap daemon bugzillaat_private (Fri May 24 2002 - 12:00:57 PDT)
pks public key server DOS and remote execution Max (Fri May 24 2002 - 15:39:06 PDT)
irssi backdoored. Martin Östlund (Sat May 25 2002 - 07:58:05 PDT)
TrendMicro Interscan VirusWall security problem Pedro Quintanilha (Fri May 24 2002 - 11:05:05 PDT)
- RE: TrendMicro Interscan VirusWall security problem Pedro Quintanilha (Mon May 27 2002 - 07:09:20 PDT)
Re: XSS And Headers... zeno (Sat May 25 2002 - 13:21:50 PDT)
Re: [DER ADV#8] - Local off by one in CVSD Larry Jones (Sun May 26 2002 - 12:23:16 PDT)
- Re: [DER ADV#8] - Local off by one in CVSD Tollef Fog Heen (Sat May 25 2002 - 13:30:05 PDT)
- Re: [DER ADV#8] - Local off by one in CVSD Larry Jones (Sun May 26 2002 - 12:23:16 PDT)
Re: addition: CVS off by one Michal Zalewski (Sat May 25 2002 - 14:24:39 PDT)
Reading ANY local file in Opera (GM#001-OP) GreyMagic Software (Mon May 27 2002 - 04:33:38 PDT)
[SecurityOffice] Falcon Web Server Unauthorized File Disclosure Vulnerability #2 Tamer Sahin (Mon May 27 2002 - 02:53:13 PDT)
AMANDA security issues zillion (Mon May 27 2002 - 02:49:55 PDT)
- AMANDA security issues zillion (Mon May 27 2002 - 02:49:55 PDT)
Yahoo Messenger - Multiple Vulnerabilities Phuong Nguyen (Mon May 27 2002 - 08:20:54 PDT)
- Re: Yahoo Messenger - Multiple Vulnerabilities Ben Laurie (Mon May 27 2002 - 12:48:04 PDT)
VP-ASP shopping cart software. hkvrg thdftghr (Mon May 27 2002 - 01:54:00 PDT)
- VP-ASP shopping cart software. hkvrg thdftghr (Mon May 27 2002 - 01:54:00 PDT)
- Re: VP-ASP shopping cart software. Noam Rathaus (Mon May 27 2002 - 11:38:46 PDT)
Vulnerability in 3Com® OfficeConnect® Remote 812 ADSL Router Ismael Briones (Mon May 27 2002 - 09:02:29 PDT)
Netscreen 25 unauthorised reboot issue quentynat_private (Mon May 27 2002 - 10:33:31 PDT)
Cross Site Scripting Vulnerability in phpBB2's [IMG] tag and remote avatar Martijn Boerwinkel (Sun May 26 2002 - 08:59:33 PDT)
OpenSSH 3.2.3 released (fwd) Jonas Eriksson (Mon May 27 2002 - 11:19:29 PDT)
wbbboard 1.1.1 registration _new_users_vulnerability_ SeazoN (Sun May 26 2002 - 07:11:17 PDT)
[SecurityOffice] Falcon Web Server Unauthorized File Disclosure Vulnerability Tamer Sahin (Sun May 26 2002 - 09:32:15 PDT)
More ELF buggery... the grugq (Sun May 26 2002 - 09:59:54 PDT)
- Re: More ELF buggery... Julien Vanegue (Fri May 31 2002 - 09:02:46 PDT)
[RHSA-2002:084-17] Updated nss_ldap packages fix pam_ldap vulnerability bugzillaat_private (Mon May 27 2002 - 00:56:21 PDT)
Re: Problems with various windows FTP servers ByteRage (Tue May 28 2002 - 00:32:03 PDT)
- Re: Problems with various windows FTP servers Stephen Cope (Tue May 28 2002 - 03:13:01 PDT)
MDKSA-2002:035 - perl-Digest-MD5 update Mandrake Linux Security Team (Tue May 28 2002 - 11:56:57 PDT)
Information Disclosure Vulnerability in IDS 0.8x isoxat_private (Tue May 28 2002 - 13:21:20 PDT)
MDKSA-2002:036 - fetchmail update Mandrake Linux Security Team (Tue May 28 2002 - 11:57:58 PDT)
SuSE Security Announcement: tcpdump/libpcap (SuSE-SA:2002:020) Sebastian Krahmer (Wed May 29 2002 - 05:40:32 PDT)
Macromedia JRUN Buffer overflow vulnerability (#NISR29052002) NGSSoftware Insight Security Research (Tue May 28 2002 - 22:33:23 PDT)
Re: Scanners and unpublished vulnerabilities - Full Disclosure Muhammad Faisal Rauf Danka (Wed May 29 2002 - 04:13:20 PDT)
Potential security issues in Ethereal Jonas Eriksson (Wed May 29 2002 - 07:54:35 PDT)
Vulnerability in Apache Tomcat v3.23 & v3.24 (part 3) webmasterat_private (Wed May 29 2002 - 06:33:42 PDT)
FreeBSD Security Advisory FreeBSD-SA-02:27.rc FreeBSD Security Advisories (Wed May 29 2002 - 09:36:35 PDT)
Addendum to advisory #NISR29052002 (JRun buffer overflow) NGSSoftware Insight Security Research (Wed May 29 2002 - 09:37:28 PDT)
FreeBSD Security Advisory FreeBSD-SA-02:26.accept FreeBSD Security Advisories (Wed May 29 2002 - 09:36:31 PDT)
Vulnerability in Apache Tomcat v3.23 & v3.24 (part 2) webmasterat_private (Wed May 29 2002 - 06:32:29 PDT)
Gafware's CFXImage vulnerability webmasterat_private (Wed May 29 2002 - 07:21:32 PDT)
[CLA-2002:490] Conectiva Linux Security Announcement - mozilla secureat_private (Wed May 29 2002 - 13:05:00 PDT)
CGIscript.net - csPassword.cgi - Multiple Vulnerabilities Steve Gustin (Wed May 29 2002 - 15:16:28 PDT)
Security Update: [CSSA-2002-SCO.21] OpenServer 5.0.5 OpenServer 5.0.6 : sort command creates temporary files insecurely securityat_private (Tue May 28 2002 - 16:05:40 PDT)
Security Update: [CSSA-2002-SCO.22] OpenServer 5.0.5 OpenServer 5.0.6 : scoadmin command creates temporary files insecurely securityat_private (Tue May 28 2002 - 16:07:42 PDT)
Vulnerability in Novell Netware 5.0 (part 2) webmasterat_private (Wed May 29 2002 - 06:29:59 PDT)
Vulnerability in Novell Netware 5.0 (part1) webmasterat_private (Wed May 29 2002 - 06:27:45 PDT)
MDKSA-2002:037 - dhcp update Mandrake Linux Security Team (Wed May 29 2002 - 12:06:59 PDT)
Vulnerability in Apache Tomcat v3.23 & v3.24 webmasterat_private (Wed May 29 2002 - 06:31:27 PDT)
To Provide a Patch or to Service Pack? David Litchfield (Wed May 29 2002 - 10:39:14 PDT)
- Re: To Provide a Patch or to Service Pack? Georgi Guninski (Thu May 30 2002 - 07:31:53 PDT)
  - Re: To Provide a Patch or to Service Pack? ellipse (Thu May 30 2002 - 01:16:21 PDT)
2 security problem Quantum SNAP server awacs (Thu May 30 2002 - 01:45:09 PDT)
SECURITY vulnerability in ECS-K7S5A(L) boards Guy Van Sanden (Thu May 30 2002 - 00:27:17 PDT)
Informix SE-7.25 /lib/sqlexec Vulnerability paskat_private (Wed May 29 2002 - 16:32:51 PDT)
Security Implications of Novell eDirectory. steven.sporenat_private (Thu May 30 2002 - 01:56:30 PDT)
[RHSA-2002:094-08] Updated tcpdump packages fix buffer overflow bugzillaat_private (Thu May 30 2002 - 05:52:01 PDT)
MDKSA-2002:034 - imap update Mandrake Linux Security Team (Mon May 27 2002 - 15:55:21 PDT)
FW: HP-UX security bulletins digest Boyce, Nick (Thu May 30 2002 - 06:24:43 PDT)
Fwd: [EXPL] Remote Exploit for UW-IMAPd Capability (IMAP4) nexus-mailat_private (Wed May 29 2002 - 23:15:07 PDT)
US TurboLinux Security Severely Out of Date David Endler (Thu May 30 2002 - 11:40:01 PDT)
Security Update: [CSSA-2002-SCO.23] Open UNIX 8.0.0 UnixWare 7.1.1 : ftpd allows data connection hijacking via PASV mode securityat_private (Thu May 30 2002 - 11:30:43 PDT)
MDKSA-2002:037-1 - dhcp update Mandrake Linux Security Team (Thu May 30 2002 - 11:30:02 PDT)
Trojan/backdoor in fragroute 1.2 source distribution Anders Nordby (Fri May 31 2002 - 00:55:21 PDT)
- Re: Trojan/backdoor in fragroute 1.2 source distribution uid0at_private (Fri May 31 2002 - 08:48:29 PDT)
- Re: Trojan/backdoor in fragroute 1.2 source distribution Dug Song (Fri May 31 2002 - 09:34:49 PDT)
[[ TH 026 Inc. ]] SA #3 - Shambala Server 4.5, Directory Traversal and DoS Daniel Nyström (Thu May 30 2002 - 15:21:30 PDT)
SRT Security Advisory (SRT2002-04-31-1159): Mnews zillion (Fri May 31 2002 - 11:59:41 PDT)
AIM+ SpyWare Pedram Amini (Fri May 31 2002 - 11:54:49 PDT)
Multiple vulnerabilities in QNX Simon Ouellette (Fri May 31 2002 - 14:42:17 PDT)
- Re: Multiple vulnerabilities in QNX Kris Warkentin (Fri May 31 2002 - 19:23:35 PDT)
Mnews 1.22 PoC exploit zillion (Fri May 31 2002 - 16:37:42 PDT)
- Mnews 1.22 PoC exploit zillion (Fri May 31 2002 - 16:37:42 PDT)

Last message date: Sun Jun 02 2002 - 17:37:35 PDT
Archived on: Sun Jun 02 2002 - 17:37:38 PDT

286 messages sorted by: [ author ] [ date ] [ subject ]
Other mail archives

This archive was generated by hypermail 2b30 : Sun Jun 02 2002 - 17:37:38 PDT

bugtraq 2002/05By Thread

bugtraq 2002/05
By Thread