bugtraq 2003/03
By Subject
517 messages sorted by:
[ author ]
[ date ]
[ thread ]
Other mail archives
Starting: Tue Feb 18 2003 - 06:31:58 PST
Ending: Tue Apr 01 2003 - 20:40:14 PST
- .MHT Buffer Overflow in Internet Explorer
- 3com RAS 1500 Remote vulnerabilities.
- 3Com SuperStack 3 Firewall Content Filter Exploitable Via Telnet
- 802.11b DoS exploit
- @(#)Mordred Labs advisory - Integer overflow in PHP memory allocator
- @(#)Mordred Labs advisory - Integer overflow in PHP socket_iovec_alloc() function
- @(#)Mordred Labs advisory - PHP for Win32: buffer overflow in openlog() function
- @(#)Mordred Labs advisory - Remote DoS in PostgreSQL <= 7.2.2
- @(#)Mordred Labs advisory - Texis sensitive information leak
- @(#)Mordred Security Labs - RSA ClearTrust Cross Site Scripting issues
- [ADVISORY] Timing Attack on OpenSSL
- [blaqhatz] - Pastel Accounting application security issues
- [CLA-2003:571] Conectiva Linux Security Announcement - sendmail
- [DDI-1012] Malformed request causes denial of service in HP Instant TopTools
- [EC-SA-01.2003] Windows XP "welcome screen" exposes the names of all the members of the local administrators group
- [ESA-20030307-007] 'snort' RPC preprocessor buffer overflow.
- [ESA-20030307-008] 'file' ELF parsing routine buffer overflow vulnerability.
- [ESA-20030318-009] Several 'kernel' vulnerabilities
- [ESA-20030320-010] Several vulnerabilities in the OpenSSL toolkit.
- [ESA-20030321-010] 'glibc' RPC XDR decoder vulnerability
- [ESA-20030324-012] 'MySQL' root exploit.
- [Full-Disclosure] (no subject)
- [Full-Disclosure] [] New samba packages fix security vulnerabilities
- [Full-Disclosure] [ADVISORY] Timing Attack on OpenSSL
- [Full-Disclosure] [ESA-20030307-007] 'snort' RPC preprocessor buffer overflow.
- [Full-Disclosure] [ESA-20030307-008] 'file' ELF parsing routine buffer overflow vulnerability.
- [Full-Disclosure] [ESA-20030318-009] Several 'kernel' vulnerabilities
- [Full-Disclosure] [ESA-20030320-010] Several vulnerabilities in the OpenSSL toolkit.
- [Full-Disclosure] [ESA-20030321-010] 'glibc' RPC XDR decoder vulnerability
- [Full-Disclosure] [ESA-20030324-012] 'MySQL' root exploit.
- [Full-Disclosure] [OpenSSL Advisory] Klima-Pokorny-Rosa attack on PKCS #1 v1.5 padding
- [Full-Disclosure] [RHSA-2003:034-01] Updated dhcp packages fix possible packet storm
- [Full-Disclosure] [RHSA-2003:039-06] Updated im packages fix insecure handling of temporary files
- [Full-Disclosure] [RHSA-2003:042-07] Updated squirrelmail packages close cross-site scripting vulnerabilities
- [Full-Disclosure] [RHSA-2003:051-01] Updated kerberos packages fix various vulnerabilities
- [Full-Disclosure] [RHSA-2003:054-00] Updated rxvt packages fix various vulnerabilites
- [Full-Disclosure] [RHSA-2003:062-11] Updated OpenSSL packages fix timing attack
- [Full-Disclosure] [RHSA-2003:072-08] Updated Gnome-lokkit packages fix vulnerability
- [Full-Disclosure] [RHSA-2003:073-06] Updated sendmail packages fix critical security issues
- [Full-Disclosure] [RHSA-2003:086-07] Updated file packages fix vulnerability
- [Full-Disclosure] [RHSA-2003:088-01] New kernel 2.2 packages fix vulnerabilities
- [Full-Disclosure] [RHSA-2003:089-00] Updated glibc packages fix vulnerabilities in RPC XDR decoder
- [Full-Disclosure] [RHSA-2003:095-02] New samba packages fix security vulnerabilities
- [Full-Disclosure] [RHSA-2003:098-00] Updated 2.4 kernel fixes vulnerability
- [Full-Disclosure] [RHSA-2003:108-01] Updated Evolution packages fix multiple vulnerabilities
- [Full-Disclosure] [RHSA-2003:120-01] Updated sendmail packages fix vulnerability
- [Full-Disclosure] A response to Bruce Schneier on MS patch management and Sapphire
- [Full-Disclosure] AOL's Billion SPAM March on Cyberspace
- [Full-Disclosure] CERT: Vulnerability in web redirectors
- [Full-Disclosure] Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog daemon possible
- [Full-Disclosure] Fwd: CERT Advisory CA-2003-08 Increased Activity Targeting Windows Shares
- [Full-Disclosure] Fwd: CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino
- [Full-Disclosure] Fwd: CERT Advisory CA-2003-12 Buffer Overflow in Sendmail
- [Full-Disclosure] gid games via toppler
- [Full-Disclosure] Java Security Fixes on IRIX
- [Full-Disclosure] Mail Header Buffer Overflow In Sendmail
- [Full-Disclosure] Multiple Vulnerabilities and Enhancements in ftpd on IRIX
- [Full-Disclosure] NII Advisory - Buffer Overflow in SQLBase (Revised)
- [Full-Disclosure] Security Update: [CSSA-2003-008.0] Linux: php bypass safe_mode and injected control chars vulnerabilities
- [Full-Disclosure] Security Update: [CSSA-2003-009.0] Linux: slocate command line buffer overflows
- [Full-Disclosure] Security Update: [CSSA-2003-SCO.3] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames
- [Full-Disclosure] Security Update: [CSSA-2003-SCO.4] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : Lax permissions on /dev/X
- [Full-Disclosure] Sendmail: -1 gone wild
- [Full-Disclosure] SMB/CIFS Security Vulnerability in Samba on IRIX
- [Full-Disclosure] SOHO Routefinder 550 VPN, DoS and Buffer Overflow
- [Full-Disclosure] SRT2003-03-31-1219 - SAP world writable server binaries
- [Full-Disclosure] Timing attack against RSA private keys.
- [Full-Disclosure] Vulnerabilities in the Kerberos version 4 protocol
- [Immunix-announce] Immunix Secured OS 7+ openssl update
- [Immunix-announce] Immunix Secured OS 7+ samba update
- [INetCop Security Advisory #2002-0x82-013] Kebi Academy 2001 Web Solution Directory Traversing Vulnerability.
- [INetCop Security Advisory] ++Danger++ Outblaze Web based e-mail that is exposed in very dangerous state !!!
- [IPS] osCommerce multiple XSS vulnerabilities
- [logs] Fate Research Labs Presents: Analysis of the NTDLL.DLL Exploit
- [LSD] Technical analysis of the remote sendmail vulnerability
- [New Research Paper] Bound by Tradition: A sampling of the security posture of the Internet's DNS servers
- [OpenPKG-SA-2003.014] OpenPKG Security Advisory (tcpdump)
- [OpenPKG-SA-2003.015] OpenPKG Security Advisory (zlib)
- [OpenPKG-SA-2003.016] OpenPKG Security Advisory (sendmail)
- [OpenPKG-SA-2003.017] OpenPKG Security Advisory (file)
- [OpenPKG-SA-2003.018] OpenPKG Security Advisory (qpopper)
- [OpenPKG-SA-2003.019] OpenPKG Security Advisory (openssl)
- [OpenPKG-SA-2003.020] OpenPKG Security Advisory (modssl)
- [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)
- [OpenPKG-SA-2003.022] OpenPKG Security Advisory (mysql)
- [OpenPKG-SA-2003.023] OpenPKG Security Advisory (delegate)
- [OpenPKG-SA-2003.024] OpenPKG Security Advisory (ircii)
- [OpenPKG-SA-2003.025] OpenPKG Security Advisory (mutt)
- [OpenPKG-SA-2003.026] OpenPKG Security Advisory (openssl)
- [OpenPKG-SA-2003.027] OpenPKG Security Advisory (sendmail)
- [OpenSSL Advisory] Klima-Pokorny-Rosa attack on PKCS #1 v1.5 padding
- [Opera 7/6] Long Filename Buffer Overflow Vulnerability in Download
- [RHSA-2003:062-11] Updated OpenSSL packages fix timing attack
- [SCSA-008] Cross Site Scripting & Script Injection Vulnerability in PY-Livredor
- [SCSA-009] Remote Command Execution Vulnerability in PHP Ping
- [SCSA-010] Path Disclosure & Cross Site Scripting Vulnerability in MyABraCaDaWeb
- [SCSA-011] Path Disclosure Vulnerability in XOOPS
- [SCSA-012] Multiple vulnerabilities in Sambar Server
- [SCSA-013] Cross Site Scripting vulnerability in testcgi.exe
- [SCSA-014] Remote Denial of Service Vulnerability in EZ Server
- [security bulletin] SSRT0845U HP Tru64 UNIX, HP-UX stdio Potential Security Vulnerability
- [securityat_private: [slackware-security] Samba buffer overflow fixed]
- [securityat_private: [slackware-security] Sendmail buffer overflow fixed]
- [SECURITY] [DSA 258-1] New ethereal packages fix arbitrary code execution
- [SECURITY] [DSA 261-1] New tcpdump packages fix denial of service vulnerability
- [SECURITY] [DSA 263-1] New tcpdump packages fix denial of service vulnerability
- [SECURITY] [DSA 264-1] New lxr packages fix information disclosure
- [SECURITY] [DSA 265-1] New bonsai packages fix several vulnerabilities
- [SECURITY] [DSA 266-1] New krb5 packages fix several vulnerabilities
- [SECURITY] [DSA 267-1] New lpr packages fix local root exploit
- [SECURITY] [DSA 268-1] New mutt packages fix arbitrary code execution
- [SECURITY] [DSA 269-1] New heimdal packages fix authentication failure
- [SECURITY] [DSA 270-1] New Linux kernel packages (mips + mipsel) fix local root exploit
- [SECURITY] [DSA 271-1] New ecartis and listar packages fix password change vulnerability
- [SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution
- [SECURITY] [DSA 273-1] New krb4 packages fix authentication failure
- [SECURITY] [DSA 274-1] New mutt packages fix arbitrary code execution
- [SECURITY] [DSA-257-1] sendmail remote exploit
- [SECURITY] [DSA-260-1] New file package fixes buffer overflow
- [SECURITY] [DSA-262-1] samba security fix
- [SecurityOffice] Netcharts XBRL Server v4.0.0 Information Leakage Vulnerability
- [Snort-2003-001] Buffer overflow in Snort RPC preprocessor (fwd)
- [SNS Advisory No.63] DeleGate Pointer Array Overflow May Let Remote Users Execute Arbitrary Code
- [sorcerer-spells] BIND-SORCERER2003-03-06
- [Sorcerer-spells] GLIBC-SORCERER2003-03-20
- [Sorcerer-spells] KRB5-SORCERER2003-03-20
- [Sorcerer-spells] LINUX-SORCERER2003-03-20
- [sorcerer-spells] MAN-SORCERER2003-03-11
- [sorcerer-spells] MUTT-SORCERER2003-03-19
- [Sorcerer-spells] OPENSSL-SORDCERER2003-03-21
- [Sorcerer-spells] SAMBA-SORCERER2003-03-17
- [sorcerer-spells] SNORT-SORCERER2003-03-06-1
- [Summary of Responses] Bound by Tradition: A sampling of the security posture of the Internet's DNS servers
- [VulnWatch] 3com RAS 1500 Remote vulnerabilities.
- [VulnWatch] [DDI-1012] Malformed request causes denial of service in HP Instant TopTools
- [VulnWatch] CORE-2003-03-04-01: Multiple vulnerabilities in Ximian 's Evolution Mail User Agent
- [VulnWatch] CORE-2003-0304-03: Vulnerability in GNOME's Eye of Gnome
- [VulnWatch] CORE-2003-0306: RealPlayer PNG deflate heap corruption vulnerability
- [VulnWatch] CORE-20030304-02: Vulnerability in Mutt Mail User Agent
- [VulnWatch] GTcatalog (PHP)
- [VulnWatch] New attack vectors and a vulnerability dissection of MS03-007
- [VulnWatch] NSFOCUS SA2003-01: Microsoft Windows XP Redirector Local Buffer Overflow Vulnerability
- [VulnWatch] NSFOCUS SA2003-02: Solaris lpq Stack Buffer Overflow Vulnerability
- [VulnWatch] NSFOCUS SA2003-03: Solaris dtsession Heap Buffer Overflow Vulnerability
- [VulnWatch] pgp4pine stack overflow vulnerability
- [VulnWatch] PHP-Nuke 6.0 & 6.5RC2 SQL Injection Again
- [VulnWatch] PHP-Nuke 6.0 (& 6.5?) : Serious SQL Injection Security Holes
- [VulnWatch] PHP-Nuke : banners.php
- [VulnWatch] PHP-Nuke, 'News' module : Big Security Holes
- [VulnWatch] sendmail 8.12.9 available
- [VulnWatch] Sendmail: -1 gone wild
- [VulnWatch] SOHO Routefinder 550 VPN, DoS and Buffer Overflow
- [VulnWatch] WebChat (PHP)
- A response to Bruce Schneier on MS patch management and Sapphire
- AOL's Billion SPAM March on Cyberspace
- Axis Video and Camera Servers - System log access and file access/overwrite via HTTP/CGI
- axis2400 webcams
- Beanwebb Guestbook v1.0 vulnerabilities
- BIND 9.2.2 Vulnerabilities?
- BRS WebWeaver: full disclosure
- Buffer Overflow in Broker FTP Server
- Buffer overflows in ircII-based clients
- CERT Advisory CA-2003-09 Buffer Overflow in Microsoft IIS 5.0 (fwd)
- CGI Citys CCLOG and CCGuestbook Script Injection Vulns Fixed!!!
- CGI-City's CCGuestBook Script Injection Vulns
- CGI-City's CCLOG Script Injection Vulns
- Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog daemon possible
- Check Point FW-1: attack against syslog daemon possible
- Clearswift MAILsweeper hotfix
- Cobalt RaQ server appliances
- Contact for Palm Computing
- CORE-2003-03-04-01: Multiple vulnerabilities in Ximian 's Evolution Mail User Agent
- CORE-2003-0304-03: Vulnerability in GNOME's Eye of Gnome
- CORE-2003-0306: RealPlayer PNG deflate heap corruption vulnerability
- CORE-20030304-02: Vulnerability in Mutt Mail User Agent
- Corsaire Security Advisory - Clearswift MAILsweeper MIME atta chment evasion issue
- Corsaire Security Advisory - Clearswift MAILsweeper MIME attachme nt evasion issue
- Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue
- Cross-Referencing Linux vulnerability
- CSS in PHP WEB CHAT
- D-Link DI-614 wiresless router crash/reboots
- DBTools' DBManager Information Leak Vulnerability
- DEF CON Announcement: CFP, Media now on line!
- Denial-Of-Service holes in JDK 1.4.1_01
- Easy DoS on Kaspersky Anti-Hacker v1.0
- Easy obtaining User+Pass+More on CoffeeCup Password Wizard All Versions
- Ecardis Password Reseting Vulnerability
- Edonkey and Overnet resources consumption
- EEYE: XDR Integer Overflow
- Emule 0.27b remote crash
- Ericsson Mobile Phones Security Contact?
- Fate Research Labs Presents: Analysis of the NTDLL.DLL Exploit
- file(1) exploit code
- FreeBSD Security Advisory FreeBSD-SA-03:04.sendmail
- FreeBSD Security Advisory FreeBSD-SA-03:05.xdr
- FreeBSD Security Advisory FreeBSD-SA-03:06.openssl
- FreeBSD Security Advisory FreeBSD-SA-03:07.sendmail
- FUD-ALARM: @(#)Mordred Labs advisory - Integer overflow in PHP memory allocator
- Fwd: APPLE-SA-2003-03-03 sendmail
- Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL
- Fwd: CERT Advisory CA-2003-07 Remote Buffer Overflow in Sendmail
- Fwd: CERT Advisory CA-2003-08 Increased Activity Targeting Windows Shares
- Fwd: CERT Advisory CA-2003-10 Integer overflow in Sun RPC XDR library routines
- Fwd: CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino
- Fwd: QuickTime 6.1 for Windows is available
- GiantRat Mailer exposes PoP password
- gid games via toppler
- GLSA: bitchx (200303-21)
- GLSA: dietlibc (200303-29)
- GLSA: eterm (200303-1)
- GLSA: ethereal (200303-10)
- GLSA: evolution (200303-18)
- GLSA: glibc (200303-22)
- GLSA: kernel (200303-17)
- GLSA: krb5 & mit-krb5 (200303-28)
- GLSA: man (200303-13)
- GLSA: mod_ssl (200303-23)
- GLSA: mutt (200303-19)
- GLSA: mysql (200303-14)
- GLSA: mysqlcc (200303-7)
- GLSA: openafs (200303-26)
- GLSA: openssl (200303-15)
- GLSA: openssl (200303-20)
- GLSA: qpopper (200303-12)
- GLSA: rxvt (200303-16)
- GLSA: samba (200303-11)
- GLSA: sendmail (200303-27)
- GLSA: sendmail (200303-4)
- GLSA: snort (200303-6)
- GLSA: snort (200303-6.1)
- GLSA: stunnel (200303-24)
- GLSA: tcpdump (200303-5)
- GLSA: vte (200303-2)
- GLSA: zlib (200303-25)
- GTcatalog (PHP)
- Guestbook tr3.a
- Guestbook v1.1.3 CSS Vuln
- HP-UX security bulletins digest [Fwd/sendmail issue]
- IBM Tivoli Firewall Security Toolbox buffer overflow vulnerability
- iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1)
- iDEFENSE Security Advisory 03.19.03: Heap Overflow in Windows Script Engine
- iDEFENSE Security Advisory 03.31.03: Buffer Overflow in Windows QuickTime Player
- IE - reading local files
- IIS 5.0 WebDAV -Proof of concept-. Fully documented.
- ILLC
- Immunix Secured OS 7+ openssl update
- Immunix Secured OS 7+ samba update
- Implementation flaws in Adobe Document Server for Reader Extensions
- IRM 004: ActiveSync Version 3.5 Denial of Service Vulnerability
- IRM 005: JWalk Application Server Version 3.2c9 Directory Traversal Vulnerability
- Justice Guestbook 1.3 vulnerabilities
- linux kmod/ptrace bug - details
- Log corruption on multiple webservers, log analyzers,...
- McAfee ePolicy Orchestrator Format String Vulnerability (a031703-1)
- MDKSA-2003:027 - Updated tcpdump packages fix denial of service vulnerabilities
- MDKSA-2003:028 - Updated sendmail packages fix remotely exploitable buffer overflow vulnerability
- MDKSA-2003:029 - Updated snort packages fix buffer overflow vulnerability
- MDKSA-2003:030 - Updated file packages fix stack overflow vulnerability
- MDKSA-2003:031 - Updated usermode packages remove insecure shutdown command
- MDKSA-2003:032 - Updated samba packages fix remote root vulnerability
- MDKSA-2003:033 - Updated zlib packages fix buffer overrun vulnerability
- MDKSA-2003:034 - Updated rxvt packages fix escape sequence insecurities
- MDKSA-2003:035 - Updated openssl packages fix RSA-related insecurities
- MDKSA-2003:036 - Updated netpbm packages fix math overflow errors
- MDKSA-2003:037 - Updated glibc packages fix vulnerabilities in RPC XDR decoder
- MDKSA-2003:038 - Updated 2,4 kernel packages fix ptrace vulnerability
- MDKSA-2003:039 - Updated kernel22 packages fix multiple vulnerabilities
- Microsoft Security Advisory MS 03-007
- Microsoft Security Bulletin MS03-009: Flaw In ISA Server DNS Intrusion Detection Filter Can Cause Denial Of Service (331065) (fwd)
- MiniPortal
- Mod_Survey ENV tag vulnerability
- Mordred Security Labs now online
- mutt-1.4.1 fixes a buffer overflow.
- MySQL user can be changed to root
- NetBSD Security Advisory 2003-001: Encryption weakness in OpenSSL code
- NetBSD Security Advisory 2003-002: Malformed header Sendmail Vulnerability
- NetBSD Security Advisory 2003-003 Buffer Overflow in file(1)
- NetBSD Security Advisory 2003-004: Format string vulnerability in zlib gzprintf()
- NetBSD Security Advisory 2003-005: RSA timing attack in OpenSSL code
- NetBSD Security Advisory 2003-007: (Another) Encryption weakness in OpenSSL code
- NetBSD Security Advisory 2003-008: faulty length checks in xdrmem_getbytes
- nethack C340-137: security issue fixed
- Netscape and Opera crash via java
- Netscape Communicator 4.x sensitive informations in configuration file
- New attack vectors and a vulnerability dissection of MS03-007
- New HP Jetdirect SNMP password vulnerability when using Web JetAdmin
- NII Advisory - Buffer Overflow in SQLBase (Revised)
- Nokia SGSN (DX200 Based Network Element) SNMP issue
- NSFOCUS SA2003-01: Microsoft Windows XP Redirector Local Buffer Overflow Vulnerability
- NSFOCUS SA2003-02: Solaris lpq Stack Buffer Overflow Vulnerability
- NSFOCUS SA2003-03: Solaris dtsession Heap Buffer Overflow Vulnerability
- NT Service Killer
- Obfuscating sensitive data? (was: response to tax software not encrypting tax info)
- Opara 6.06 Released, Security-Hole Left
- OpenBSD lprm(1) exploit
- OpenSSH 3.6 released (fwd)
- Oracle JDBC: Inconsistent handling of timestamps
- paFileDB 3.x SQL Injection Vulnerability
- Personal FTP Server
- pgp4pine stack overflow vulnerability
- PHP Message Board/Guestbook
- PHP-Nuke 5.5 and 6.0: Path Disclosure
- PHP-Nuke 6.0 & 6.5RC2 SQL Injection Again
- PHP-Nuke 6.0 (& 6.5?) : Serious SQL Injection Security Holes
- PHP-Nuke : config.php reveled with php uploaded file.(Affect all uploads implementations in phpnuke).SECURING PHP-NUKE.
- PHP-Nuke block-Forums.php subject vulnerabilities
- PHPNuke viewpage.php allows Remote File retrieving
- PHPNuke viewpage.php and another SQL injections
- PivX Advisory MK002A Intuit TurboTax Information Disclosure V ulnerability
- PivX Advisory MK002A Intuit TurboTax Information Disclosure Vulnerability
- PivX Advisory MK002B H&R Block TaxCut Information Disclosure Vulnerability
- Positive Technologies Security Advisory 2003-0307: DoS-attack in Kerio WinRoute Firewall
- PostNuke Sensitive Information Disclosure
- potential buffer overflow in lprm (fwd)
- Potential PGP signature verification problem?
- PROBLEMS WITH WINDOWS SHORTCUTS
- Protegrity buffer overflow
- ProtWare "HTML Guardian" has pathetic "encryption"
- QPopper 4.0.x buffer overflow vulnerability
- qpopper timing analysis on to determine if a username exists on a system
- R7-0010: Buffer Overflow in Lotus Notes Protocol Authentication
- R7-0011: Lotus Notes/Domino Web Retriever HTTP Status Buffer Overflow
- R7-0012: Lotus Notes/Domino R6-beta PROTOS LDAP Denial of Service Regression
- Remote Exploit in Business::OnlinePayment::WorldPay::Junior
- response to tax software not encrypting tax info
- S21SEC-011 - Multiple vulnerabilities in BEA WebLogic Server
- SA-03:04.sendmail Bin Update
- Safeboot PC Security User Emuneration Vulnerability
- Sambar Server "Buffer OverFlow" Vulnerabilities
- ScozBook BETA 1.1 vulnerabilities
- Security Advisory - MyTaxexpress 2003
- Security Bugfix for Samba - Samba 2.2.8 Released
- Security issues in D-Link DSL-300/DSL-300G+ Broadband Modem/Router
- Security responsible at AOL
- Security Update: [CSSA-2003-009.0] Linux: slocate command line buffer overflows
- Security Update: [CSSA-2003-010.0] Linux: remote buffer overflow in sendmail (CERT CA-2003-07)
- Security Update: [CSSA-2003-011.0] Linux: format string vulnerability in zlib (gzprintf)
- Security Update: [CSSA-2003-012.0] Linux: KDE rlogin.protocol and telnet.protocol url kio Vulnerability
- Security Update: [CSSA-2003-013.0] Linux: integer overflow vulnerability in XDR/RPC routines
- Security Update: [CSSA-2003-014.0] Linux: several recently discovered openssl vulnerabilities
- Security Update: [CSSA-2003-015.0] Linux: apcupsd remote root vulnerability and buffer overflows
- Security Update: [CSSA-2003-SCO.3] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames
- Security Update: [CSSA-2003-SCO.4.1] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : REVISED: Lax permissions on /dev/X
- Security Update: [CSSA-2003-SCO.4] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : Lax permissions on /dev/X
- Security Update: [CSSA-2003-SCO.5] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : remote buffer overflow in sendmail (CERT CA-2003-07)
- Security Update: [CSSA-2003-SCO.6] OpenServer 5.0.5 OpenServer 5.0.6 OpenServer 5.0.7 : remote buffer overflow in sendmail (CERT CA-2003-07)
- Security Update: [CSSA-2003-SCO.7] UnixWare 7.1.1 Open UNIX 8.0.0 : Several vulnerabilities in XDR/RPC routines
- Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part II -.zipper
- sendmail 8.12.8 available
- sendmail 8.12.9 available
- Sendmail buffer overflow vulnerability in AIX.
- Sendmail exploit released???
- Sendmail testing tool.
- Sendmail: -1 gone wild
- shopfactory shopping cart
- Siemens *35 and 45 series phones SMS Danial of Service
- Simple WebDAV method validator (PERL code)
- SimpleBBS 1.0.6 Default Permissions Vuln
- SimpleChat
- SIPS (PHP)
- Smoothwall Firewall SNORT buffer overflow
- SNMP security issues in D-Link DSL Broadband Modem/Router
- Snort RPC Vulnerability (fwd)
- SOHO Routefinder 550 VPN, DoS and Buffer Overflow
- Some XSS vulns
- SPI ADVISORY: Remote Administration of BEA WebLogic Server and Express
- SRT2003-03-31-1219 - SAP world writable server binaries
- Stunnel: RSA timing attacks / key discovery
- Sun ONE (iPlanet) Application Server Connector Module Overflow
- SuSE Security Announcement: apcupsd (SuSE-SA:2003:022)
- SuSE Security Announcement: file (SuSE-SA:2003:017)
- SuSE Security Announcement: kernel (SuSE-SA:2003:021)
- SuSE Security Announcement: lprold (SuSE-SA:2003:0014)
- SuSE Security Announcement: mutt (SuSE-SA:2003:020)
- SuSE Security Announcement: samba (SuSE-SA:2003:016)
- SuSE Security Announcement: sendmail (SuSE-SA:2003:013)
- SuSE Security Announcement: tcpdump (SuSE-SA:2003:0015)
- Sygate Security Bulletin SS20030221-0001
- Terminal Emulator Security Issues
- The U.S. should not invade Iraq at this time
- TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit
- TSLSA-2003-0007 - kernel
- TSLSA-2003-0009 - mysql
- TSLSA-2003-0010 - openssl
- TSLSA-2003-0011 - samba
- TSLSA-2003-0013 - openssl
- TSLSA-2003-0014 - glibc
- TYPSoft FTP Server
- Unknown trust error when downloading ocget.dll
- uploader.php script
- uploader.php vulnerability
- VChat
- VPOPMail Account Administration (squirrel mail) version 0.9.7
- Vulnerability (critical): Digital signature for Adobe Acrobat/Reader plug-in can be forged
- Vulnerability in man < 1.5l
- Vulnerability in News/îÏ×ÏÓÔ
- Vulnerability in OpenSSL
- Vulnerability in Upload Lite 3.22 that could allow somebody to upload/execute code on a remote host.
- WebChat (PHP)
- WebDav Exploit ffs
- WebDAV exploit: using wide character decoder scheme
- Webserver CVS (In)Security
- WF-Chat
- Win32: Postmessage API security flaw
- Win32hlp exploit for : ":LINK overflow"
- Wordit Logbook Version 0.98b3
- xscreensaver exploit for Redhat 7.3
Last message date: Tue Apr 01 2003 - 20:40:14 PST
Archived on: Tue Apr 01 2003 - 20:40:16 PST
517 messages sorted by:
[ author ]
[ date ]
[ thread ]
Other mail archives
This archive was generated by hypermail 2b30
: Tue Apr 01 2003 - 20:40:16 PST