bugtraq 2003/05
By Thread
Most recent messages
405 messages sorted by:
[ author ]
[ date ]
[ subject ]
Other mail archives
Starting: Wed Apr 30 2003 - 16:26:44 PDT
Ending: Sat May 31 2003 - 13:44:24 PDT
- Re: April appeared to be a month of IE bugs. Here's another one. ERRor (Wed Apr 30 2003 - 18:26:34 PDT)
- [Full-Disclosure] [RHSA-2003:133-01] Updated man packages fix minor vulnerability bugzillaat_private (Thu May 01 2003 - 00:47:55 PDT)
- Re: Portable OpenSSH: Dangerous AIX linker behavior (aixgcc.adv) Dan Harkless (Thu May 01 2003 - 04:25:07 PDT)
- [SECURITY] [DSA 297-1] New snort packages fix remote root exploits Martin Schulze (Thu May 01 2003 - 06:12:58 PDT)
- Cisco Security Advisory: Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 Nessus Vulnerabilities Cisco Systems Product Security Incident Response Team (Thu May 01 2003 - 09:00:00 PDT)
- SILLY BEHAVIOR Part II : Internet Explorer 5.5 - 6.0 http-equivat_private (Thu May 01 2003 - 09:02:09 PDT)
- [Full-Disclosure] eBay Security Contact mattmurphyat_private (Thu May 01 2003 - 10:25:41 PDT)
- eBay Security Contact mattmurphyat_private (Thu May 01 2003 - 10:25:41 PDT)
- Multiple Vulnerabilities in Splatt Forum 4.0 Frame4 Security Systems (Thu May 01 2003 - 11:58:36 PDT)
- Integer Manipulation Attacks Michael Howard (Thu May 01 2003 - 13:59:36 PDT)
- re:Latest MS SQL Server vulnerabilities revealed Cesar (Thu May 01 2003 - 14:41:23 PDT)
- Dynamic DNS "Spoofing" & IRC Intel Nop (Thu May 01 2003 - 14:47:59 PDT)
- Re: OpenSSH/PAM timing attack allows remote users identification Nicolas Couture (Thu May 01 2003 - 15:18:44 PDT)
- [SECURITY] [DSA 298-1] New EPIC4 packages fix DoS and arbitrary code execution Martin Schulze (Thu May 01 2003 - 23:26:23 PDT)
- GLSA: openssh (200305-01) Daniel Ahlberg (Fri May 02 2003 - 03:03:12 PDT)
- [Full-Disclosure] [RHSA-2003:113-01] Updated mod_auth_any packages available bugzillaat_private (Fri May 02 2003 - 04:57:45 PDT)
- [Full-Disclosure] (no subject) btat_private (Fri May 02 2003 - 09:47:43 PDT)
- HP-UX 11.0 /usr/bin/kermit btat_private (Fri May 02 2003 - 09:49:03 PDT)
- [Full-Disclosure] HP- btat_private (Fri May 02 2003 - 10:11:09 PDT)
- [Full-Disclosure] HP-UX 11.0 /usr/lbin/rwrite btat_private (Fri May 02 2003 - 10:16:53 PDT)
- HP-UX 11.0 /usr/lbin/rwrite btat_private (Fri May 02 2003 - 10:16:53 PDT)
- [Full-Disclosure] Slow Internet? Jonathan Grotegut (Fri May 02 2003 - 11:28:51 PDT)
- Code Injection Vulnerabilities in WebcamXP Chat Feature Frame4 Security Systems (Fri May 02 2003 - 12:03:09 PDT)
- Security Update: [CSSA-2003-017.0] OpenLinux: Various serious Samba vulnerabilities securityat_private (Fri May 02 2003 - 14:18:42 PDT)
- Security Update: [CSSA-2003-018.0] OpenLinux: file command buffer overflow securityat_private (Fri May 02 2003 - 14:20:32 PDT)
- rwrite buffer overflow in hp-ux John Morris (Fri May 02 2003 - 17:27:03 PDT)
- Microsoft IIS Authentication Manager Account Conformation Vuln? JeiAr (Sat May 03 2003 - 00:58:08 PDT)
- Key validity bug in GnuPG 1.2.1 and earlier David Shaw (Sat May 03 2003 - 18:35:26 PDT)
- CommuniGatePro 4.0.6 [EXPLOIT] Yaroslav Polyakov (Sat May 03 2003 - 20:27:32 PDT)
- SILLY BEHAVIOR Part III : Internet Explorer 5.5 - 6.0 http-equivat_private (Sun May 04 2003 - 14:12:57 PDT)
- Mod_Survey SYSBASE vulnerability Joel Palmius (Sun May 04 2003 - 14:14:53 PDT)
- kermit buffer overflow on hp-ux John Morris (Mon May 05 2003 - 04:23:26 PDT)
- Security Update: [CSSA-2003-019.0] OpenLinux: tcp SYN with FIN packets are not discarded securityat_private (Mon May 05 2003 - 11:01:07 PDT)
- [CLA-2003:639] Conectiva Security Announcement - krb5 Conectiva Updates (Mon May 05 2003 - 12:25:23 PDT)
- [VulnWatch] CORE-2003-0303: Multiple Vulnerabilities in Mirabilis ICQ client CORE Security Technologies Advisories (Mon May 05 2003 - 12:44:47 PDT)
- CORE-2003-0303: Multiple Vulnerabilities in Mirabilis ICQ client CORE Security Technologies Advisories (Mon May 05 2003 - 12:44:47 PDT)
- Microsoft Biztalk Server ISAPI HTTP Receive function buffer overflow Cesar (Mon May 05 2003 - 13:40:12 PDT)
- [Full-Disclosure] Microsoft Biztalk Server ISAPI HTTP Receive function buffer overflow Cesar (Mon May 05 2003 - 13:40:12 PDT)
- Microsoft Biztalk Server DTA vulnerable to SQL injection Cesar (Mon May 05 2003 - 13:43:22 PDT)
- [Full-Disclosure] Microsoft Biztalk Server DTA vulnerable to SQL injection Cesar (Mon May 05 2003 - 13:43:22 PDT)
- [CLA-2003:640] Conectiva Security Announcement - vnc Conectiva Updates (Mon May 05 2003 - 14:14:04 PDT)
- Crash in Internet Explorer 6.0 Sp1 David F. Madrid (Mon May 05 2003 - 14:41:03 PDT)
- Siemens Mobile Phone - Buffer Overflow subj (Tue May 06 2003 - 00:28:10 PDT)
- [SECURITY] [DSA 300-1] New Balsa packages fix buffer overflow Martin Schulze (Tue May 06 2003 - 01:40:18 PDT)
- [Full-Disclosure] youbin local root exploit + advisory Knud Erik Højgaard (Tue May 06 2003 - 05:16:11 PDT)
- youbin local root exploit + advisory Knud Erik Højgaard (Tue May 06 2003 - 05:16:11 PDT)
- [VulnWatch] youbin local root exploit + advisory Knud Erik Højgaard (Tue May 06 2003 - 05:16:11 PDT)
- Multiple Buffer Overflow Vulnerabilities Found in FTGate Pro Mail Server v. 1.22 (1328) Dennis Rand (Tue May 06 2003 - 06:57:42 PDT)
- [SECURITY] [DSA 299-1] New leksbot packages fix improper setuid-root execution Matt Zimmerman (Tue May 06 2003 - 07:22:56 PDT)
- [Full-Disclosure] ALERT WEBDAV worm on the loose Michael Scheidell (Wed May 07 2003 - 04:27:35 PDT)
- [SECURITY] [DSA-301-1] New libgtop packages fix buffer overflow Matt Zimmerman (Wed May 07 2003 - 08:27:56 PDT)
- [SECURITY] [DSA-302-1] New fuzz packages fix buffer overflow Matt Zimmerman (Wed May 07 2003 - 08:32:52 PDT)
- Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerabilities Cisco Systems Product Security Incident Response Team (Wed May 07 2003 - 09:00:00 PDT)
- SAP database local root vulnerability during installation. (fwd) Larry W. Cashdollar (Wed May 07 2003 - 09:06:48 PDT)
- Multiple Buffer Overflow Vulnerabilities in SLMail (#NISR07052003A) NGSSoftware Insight Security Research (Wed May 07 2003 - 09:44:22 PDT)
- [VulnWatch] Multiple Buffer Overflow Vulnerabilities in SLMail (#NISR07052003A) NGSSoftware Insight Security Research (Wed May 07 2003 - 09:44:22 PDT)
- Multiple Vulnerabilities in SLWebmail NGSSoftware Insight Security Research (Wed May 07 2003 - 10:05:18 PDT)
- [VulnWatch] Multiple Vulnerabilities in SLWebmail NGSSoftware Insight Security Research (Wed May 07 2003 - 10:05:18 PDT)
- Problem: Multiple Web Browsers do not do not validate CN on certificates. Simson L. Garfinkel (Wed May 07 2003 - 10:06:56 PDT)
- Windows Media Player directory traversal vulnerability Jouko Pynnonen (Wed May 07 2003 - 10:33:37 PDT)
- Happymall E-Commerce Remote Command Execution SecurityTracker (Wed May 07 2003 - 14:55:01 PDT)
- why i love xs4all + mediaplayer thingie jelmer (Wed May 07 2003 - 17:57:19 PDT)
- [VulnWatch] Hotmail & Passport (.NET Accounts) Vulnerability Muhammad Faisal Rauf Danka (Wed May 07 2003 - 19:52:24 PDT)
- Hotmail & Passport (.NET Accounts) Vulnerability Muhammad Faisal Rauf Danka (Wed May 07 2003 - 19:52:24 PDT)
- Remote Stack Overflow exploit for Personal FTPD subj (Thu May 08 2003 - 01:11:23 PDT)
- Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! [CRITICAL] Marek Bialoglowy (Thu May 08 2003 - 02:05:38 PDT)
- Multiple Vulnerabilities found in Microsoft .Net Passport Services Qazi Ahmed (Thu May 08 2003 - 03:17:20 PDT)
- Fw: [rt-users] [rt-announce] RT 1.0.7 vulnerable to Cross Site Scripting attacks Chris Knipe (Thu May 08 2003 - 04:38:14 PDT)
- miniPortail (PHP) : Admin Access Frog Man (Thu May 08 2003 - 08:35:46 PDT)
- [CLA-2003:643] Conectiva Security Announcement - slocate Conectiva Updates (Thu May 08 2003 - 08:47:55 PDT)
- SRT2003-05-08-1137 - ListProc mailing list ULISTPROC_UMASK overflow KF (Thu May 08 2003 - 10:15:41 PDT)
- [VulnWatch] SRT2003-05-08-1137 - ListProc mailing list ULISTPROC_UMASK overflow KF (Thu May 08 2003 - 10:15:41 PDT)
- [Full-Disclosure] SRT2003-05-08-1137 - ListProc mailing list ULISTPROC_UMASK overflow KF (Thu May 08 2003 - 10:15:41 PDT)
- MDKSA-2003:055 - Updated kopete packages fix vulnerability with GnuPG plugin Mandrake Linux Security Team (Thu May 08 2003 - 13:26:58 PDT)
- s0h: Kerio Personal Firewall and Tiny Personal Firewall remote exploit/patch. descript (Thu May 08 2003 - 13:40:20 PDT)
- [Full-Disclosure] ltris-and-slashem-tty possible trouble Knud Erik Højgaard (Thu May 08 2003 - 16:14:14 PDT)
- ltris-and-slashem-tty possible trouble Knud Erik Højgaard (Thu May 08 2003 - 16:14:14 PDT)
- Netbus 1.x exploit sKyZ (Fri May 09 2003 - 06:52:27 PDT)
- II-Labs Advisory: Remote code execution in YaBBse 1.5.2 (php version) DownBload (Fri May 09 2003 - 08:54:48 PDT)
- TOP 75 Security Tools Translated Pablo Sabbatella (Fri May 09 2003 - 09:40:07 PDT)
- ttcms and ttforum exploits Charles Reinold (Fri May 09 2003 - 09:58:36 PDT)
- A Phorum's bug... WiciU (Fri May 09 2003 - 10:37:09 PDT)
- PowerLink WAN Aggregator - Vunerability morning_wood (Fri May 09 2003 - 10:52:45 PDT)
- [Full-Disclosure] Firebird local root compromise bob (Fri May 09 2003 - 14:37:51 PDT)
- [VulnWatch] Firebird local root compromise bob (Fri May 09 2003 - 14:37:51 PDT)
- unzip directory traversal revisited jelmer (Fri May 09 2003 - 15:39:24 PDT)
- Firebird Local exploit bob (Fri May 09 2003 - 16:57:11 PDT)
- Multiple Buffer Overflow Vulnerabilities Found in CMailServer 4.0 Dennis Rand (Sat May 10 2003 - 01:53:41 PDT)
- [VulnWatch] Multiple Buffer Overflow Vulnerabilities Found in CMailServer 4.0 Dennis Rand (Sat May 10 2003 - 01:53:41 PDT)
- BitchX: Crash when channel modes change Rob Andrews (Sat May 10 2003 - 11:40:07 PDT)
- Opera 7.11 java.util.zip.* Vulnerability Marc Schoenefeld (Sat May 10 2003 - 16:28:59 PDT)
- re: II-Labs Advisory: Remote code execution in YaBBse 1.5.2 (php version) Frog Man (Sat May 10 2003 - 16:51:20 PDT)
- Detailed analysis: Buffer overflow in Explorer.exe on Windows XP SP1 Executable Security (Sun May 11 2003 - 01:28:54 PDT)
- PHPNuke "Your Account" XSS Vulnerability Ferruh Mavituna (Sun May 11 2003 - 08:28:59 PDT)
- [Full-Disclosure] eServ Memory Leak Enables Denial of Service Attacks Matthew Murphy (Sun May 11 2003 - 09:21:43 PDT)
- [VulnWatch] eServ Memory Leak Enables Denial of Service Attacks Matthew Murphy (Sun May 11 2003 - 09:21:43 PDT)
- eServ Memory Leak Enables Denial of Service Attacks Matthew Murphy (Sun May 11 2003 - 09:21:43 PDT)
- [Drug and Zip] Buffer Overflow subj (Mon May 12 2003 - 02:57:58 PDT)
- [Full-Disclosure] Secunia Research: Opera browser filename extension buffer overflows Jakob Balle (Mon May 12 2003 - 06:21:10 PDT)
- [VulnWatch] Secunia Research: Opera browser filename extension buffer overflows Jakob Balle (Mon May 12 2003 - 06:21:10 PDT)
- [Full-Disclosure] [VulnWatch] Secunia Research: Opera browser filename extension buffer overflows Jakob Balle (Mon May 12 2003 - 06:21:10 PDT)
- makeunicode2.py release daveat_private (Mon May 12 2003 - 07:51:59 PDT)
- Unix Version of the Pi3web DoS Angelo Rosiello (Mon May 12 2003 - 08:49:45 PDT)
- Apple AirPort Administrative Password Obfuscation (a051203-1) @stake Advisories (Mon May 12 2003 - 08:57:01 PDT)
- One more flaw in Happymall Julio Cesar (Mon May 12 2003 - 09:19:49 PDT)
- [Full-Disclosure] Paper: Spamdoors Vision Through Sound (Mon May 12 2003 - 10:04:52 PDT)
- Lot of SQL injection on PHP-Nuke 6.5 (secure weblog!) Albert Puigsech Galicia (Mon May 12 2003 - 10:11:54 PDT)
- [Full-Disclosure] [RHSA-2003:002-01] Updated KDE packages fix security issues bugzillaat_private (Mon May 12 2003 - 10:16:49 PDT)
- Security Update: [CSSA-2003-020.0] OpenLinux: kernel kmod/ptrace root exploit securityat_private (Mon May 12 2003 - 11:11:01 PDT)
- CSS found in Movable Type DarkHunter (Mon May 12 2003 - 11:26:59 PDT)
- Snitz Forum 3.3.03 Remote Command Execution sharpiemarkerat_private (Mon May 12 2003 - 13:53:40 PDT)
- XSS In Neoteris IVE Allows Session Hijacking Dave Palumbo (Mon May 12 2003 - 20:49:58 PDT)
- [SNS Advisory No.64] IP Messenger for Win Buffer Overflow Vulnerability Secure Net Service(SNS) Security Advisory (Mon May 12 2003 - 21:10:53 PDT)
- Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! - UPDATED Marek Bialoglowy (Tue May 13 2003 - 00:02:52 PDT)
- Phorum Vulnerabilities webmasterat_private (Tue May 13 2003 - 00:17:37 PDT)
- fake location bar Liu Die Yu (Tue May 13 2003 - 04:56:05 PDT)
- Re: CSS found in Movable Type -- Nope crysat_private (Tue May 13 2003 - 06:34:36 PDT)
- [Full-Disclosure] eServ Memory Leak Solution mattmurphyat_private (Tue May 13 2003 - 09:38:00 PDT)
- eServ Memory Leak Solution mattmurphyat_private (Tue May 13 2003 - 09:38:00 PDT)
- AIX sendmail open relay Tom Perrine (Tue May 13 2003 - 09:53:53 PDT)
- [Full-Disclosure] [RHSA-2003:160-01] Updated xinetd packages fix a denial-of-service attack and other bugs bugzillaat_private (Tue May 13 2003 - 10:15:30 PDT)
- UT2003 client passive DoS exploit Auriemma Luigi (Tue May 13 2003 - 13:19:18 PDT)
- Security Update: [CSSA-2003-021.0] OpenLinux: mgetty caller ID buffer overflow and spool perm vulnerabilities securityat_private (Tue May 13 2003 - 13:23:52 PDT)
- Cdrecord local root exploit. yjm01 (Tue May 13 2003 - 13:52:01 PDT)
- More and More SQL injection on PHP-Nuke 6.5. Albert Puigsech Galicia (Tue May 13 2003 - 14:11:48 PDT)
- [Full-Disclosure] Memory leak in 3COM 812 DSL routers David F. Madrid (Tue May 13 2003 - 17:49:20 PDT)
- Memory leak in 3COM 812 DSL routers David F. Madrid (Tue May 13 2003 - 17:49:20 PDT)
- VBulletin Preview Message - XSS Vuln Ferruh Mavituna (Wed May 14 2003 - 02:11:11 PDT)
- Inktomi Traffic-Server XSS: man-in-the-middle XSS ! Hugo (Wed May 14 2003 - 02:42:57 PDT)
- BEA WebLogic Server and Express 7.x Passwords Disclosure K-Otik.com (Wed May 14 2003 - 03:06:08 PDT)
- [VULNERABILITY] PHP 'poster version.two' Peter Winter-Smith (Wed May 14 2003 - 03:45:28 PDT)
- Cisco ACL bug when using VPN crypto engine accelerator, PPPoE dialer or ip route-cache Olivier (Wed May 14 2003 - 07:52:44 PDT)
- PalmOS ICMP flood DoS. Shaun Moore (Wed May 14 2003 - 09:14:14 PDT)
- php-proxima Remote File Access Vulnerability Mind Warper (Wed May 14 2003 - 10:43:40 PDT)
- Buffer overflows in multiple IMAP clients Timo Sirainen (Wed May 14 2003 - 11:49:20 PDT)
- [Full-Disclosure] Buffer overflows in multiple IMAP clients Timo Sirainen (Wed May 14 2003 - 11:49:20 PDT)
- [Full-Disclosure] [RHSA-2003:172-00] Updated 2.4 kernel fixes security vulnerabilities and various bugs bugzillaat_private (Wed May 14 2003 - 11:51:19 PDT)
- [CLA-2003:648] Conectiva Security Announcement - evolution Conectiva Updates (Wed May 14 2003 - 12:11:03 PDT)
- [Full-Disclosure] Multiple Security Vulnerabilities in OpenSSL on IRIX 6.5.19 SGI Security Coordinator (Wed May 14 2003 - 15:33:14 PDT)
- RE : Memory leak in 3COM DSL routers David F. Madrid (Wed May 14 2003 - 16:27:10 PDT)
- MDKSA-2003:056 - Updated xinetd packages fix DoS vulnerability Mandrake Linux Security Team (Wed May 14 2003 - 16:31:56 PDT)
- MDKSA-2003:057 - Updated MySQL packages fix vulnerability Mandrake Linux Security Team (Wed May 14 2003 - 16:33:53 PDT)
- [Full-Disclosure] [ESA-20030515-015] 'sudo' heap corruption vulnerability EnGarde Secure Linux (Wed May 14 2003 - 22:12:06 PDT)
- [ESA-20030515-015] 'sudo' heap corruption vulnerability EnGarde Secure Linux (Wed May 14 2003 - 22:12:06 PDT)
- [Full-Disclosure] [ESA-20030515-016] 'gnupg' key validation bug. EnGarde Secure Linux (Wed May 14 2003 - 22:12:22 PDT)
- [ESA-20030515-016] 'gnupg' key validation bug. EnGarde Secure Linux (Wed May 14 2003 - 22:12:22 PDT)
- [Full-Disclosure] [ESA-20030515-017] 'kernel' several bug and security-related fixes. EnGarde Secure Linux (Wed May 14 2003 - 22:12:40 PDT)
- [ESA-20030515-017] 'kernel' several bug and security-related fixes. EnGarde Secure Linux (Wed May 14 2003 - 22:12:40 PDT)
- [Full-Disclosure] [RHSA-2003:174-01] Updated tcpdump packages fix privilege dropping error bugzillaat_private (Thu May 15 2003 - 01:03:58 PDT)
- [VulnWatch] OneOrZero Security Problems (PHP) Frog Man (Thu May 15 2003 - 10:06:40 PDT)
- OneOrZero Security Problems (PHP) Frog Man (Thu May 15 2003 - 10:06:40 PDT)
- Cisco Security Advisory: Cisco IOS Software Processing of SAA Packets Cisco Systems Product Security Incident Response Team (Thu May 15 2003 - 11:04:43 PDT)
- Re: Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! - UPDATED http-equivat_private (Thu May 15 2003 - 14:05:54 PDT)
- MDKSA-2003:058 - Updated cdrecord packages fix local root compromise Mandrake Linux Security Team (Thu May 15 2003 - 15:22:43 PDT)
- [SECURITY] [DSA-304-1] New lv packages fix local privilege escalation Matt Zimmerman (Thu May 15 2003 - 17:02:36 PDT)
- [SECURITY] [DSA-303-1] New mysql packages fix multiple vulnerabilities Matt Zimmerman (Thu May 15 2003 - 17:13:30 PDT)
- [SECURITY] [DSA-305-1] New sendmail packages fix insecure temporary file creation Matt Zimmerman (Thu May 15 2003 - 17:21:33 PDT)
- EzPublish Directory XSS Vulnerability Ferruh Mavituna (Thu May 15 2003 - 20:22:20 PDT)
- Microsoft Solution for Securing Wireless LANs now available Michael Howard (Thu May 15 2003 - 20:50:29 PDT)
- PDF Available: IIS Security and Programming Countermeasures e-book Jason Coombs (Fri May 16 2003 - 00:56:46 PDT)
- [OpenPKG-SA-2003.029] OpenPKG Security Advisory (gnupg) OpenPKG (Fri May 16 2003 - 02:41:59 PDT)
- [Full-Disclosure] [RHSA-2003:169-01] Updated lv packages fix vulnerability bugzillaat_private (Fri May 16 2003 - 03:14:49 PDT)
- Hersmen Contact Chris Knipe (Fri May 16 2003 - 09:52:52 PDT)
- Snowblind Web Server: multiple issues euronymous (Fri May 16 2003 - 11:30:35 PDT)
- Immunix Secured OS 7+ fileutils update Immunix Security Team (Fri May 16 2003 - 12:37:06 PDT)
- Venturi Client 2.1 confirmed as open relay [Verizon Wireless Mobile Office] Josh Steinhurst (Fri May 16 2003 - 12:49:47 PDT)
- Automatic Harvesting of AOL Instant Messenger Screen Names! cyber_flashat_private (Fri May 16 2003 - 13:45:50 PDT)
- Re: bsdbsdftpd-6.0-ssl-0.6.1-1 attack allows remote users identification Mika Boström (Fri May 16 2003 - 23:32:06 PDT)
- PHP-Nuke code injection in Yearly Stats at Statistics module Lorenzo Manuel Hernandez Garcia-Hierro (Sat May 17 2003 - 03:33:39 PDT)
- [VulnWatch] Buffer overflow vulnerability found in MailMax version 5 0x36 (Sat May 17 2003 - 05:31:14 PDT)
- Buffer overflow vulnerability found in MailMax version 5 0x36 (Sat May 17 2003 - 05:31:14 PDT)
- Path Disclosure in Turba of Horde Lorenzo Manuel Hernandez Garcia-Hierro (Sat May 17 2003 - 06:18:59 PDT)
- Remote code execution in ttCMS <=v2.3 ScriptSlaveat_private (Sat May 17 2003 - 12:02:04 PDT)
- PHP-Nuke Denial of Service attack and more SQL Injections Lorenzo Manuel Hernandez Garcia-Hierro (Sun May 18 2003 - 03:01:30 PDT)
- PHP-Nuke module PHP-Banner-Exchange path disclosure Lorenzo Manuel Hernandez Garcia-Hierro (Sun May 18 2003 - 03:14:12 PDT)
- Maelstrom Buffer Overflow Luca Ercoli (Sun May 18 2003 - 06:52:04 PDT)
- [Full-Disclosure] Editing Info morning_wood (Sun May 18 2003 - 11:59:17 PDT)
- [SECURITY] [DSA 306-1] New BitchX packages fix DoS and arbitrary code execution Martin Schulze (Mon May 19 2003 - 05:38:59 PDT)
- bazarr slocate bazarrat_private (Mon May 19 2003 - 12:16:19 PDT)
- [Full-Disclosure] Security Vulnerabilities in MediaBase Apache and PHP on IRIX SGI Security Coordinator (Mon May 19 2003 - 13:12:16 PDT)
- [VulnWatch] Plaintext Password in Settings.ini of CesarFTP Andreas Constantinides (Tue May 20 2003 - 00:15:59 PDT)
- Plaintext Password in Settings.ini of CesarFTP Andreas Constantinides (Tue May 20 2003 - 00:25:56 PDT)
- [Fwd: 127 Research and Development: 127 Day!] northern snowfall (Tue May 20 2003 - 01:46:10 PDT)
- ntoskrnl crashing hard via isqlw.exe wirepair (Tue May 20 2003 - 07:43:56 PDT)
- Maelstrom Local Buffer Overflow Exploit akcess . (Tue May 20 2003 - 08:15:43 PDT)
- ntoskrnl.exe and isql.exe hard crash (update) NetWare the root cause wirepair (Tue May 20 2003 - 09:53:50 PDT)
- More vulnerabilities in ttForum/ttCMS -> SQL injection ScriptSlaveat_private (Tue May 20 2003 - 10:36:33 PDT)
- [Full-Disclosure] Maelstrom Local Buffer Overflow Exploit, FreeBSD 4.8 edition Knud Erik Højgaard (Tue May 20 2003 - 10:51:55 PDT)
- Maelstrom Local Buffer Overflow Exploit, FreeBSD 4.8 edition Knud Erik Højgaard (Tue May 20 2003 - 10:51:55 PDT)
- Blue screen in Windows David F. Madrid (Tue May 20 2003 - 13:04:54 PDT)
- BadBlue Remote Administrative Interface Access Vulnerability mattmurphyat_private (Tue May 20 2003 - 13:43:53 PDT)
- [VulnWatch] BadBlue Remote Administrative Interface Access Vulnerability mattmurphyat_private (Tue May 20 2003 - 13:43:53 PDT)
- [Full-Disclosure] BadBlue Remote Administrative Interface Access Vulnerability mattmurphyat_private (Tue May 20 2003 - 13:43:53 PDT)
- [[ TH 026 Inc. ]] SA #4 - Blackmoon FTP Server cleartext passwords and User enumeration Daniel Nyström (Tue May 20 2003 - 16:30:07 PDT)
- [Full-Disclosure] [RHSA-2003:175-01] Updated gnupg packages fix validation bug bugzillaat_private (Tue May 20 2003 - 20:46:21 PDT)
- [Full-Disclosure] Verity/Search'97 ObjectStoreSearch morning_wood (Wed May 21 2003 - 03:02:46 PDT)
- Restricted Zone: the OUTLOOK EXPRESS http-equivat_private (Wed May 21 2003 - 04:55:34 PDT)
- [Full-Disclosure] [INetCop Security Advisory] WsMP3d Directory Traversing Vulnerability. dong-h0un U (Wed May 21 2003 - 07:13:09 PDT)
- [VulnWatch] [INetCop Security Advisory] WsMP3d Directory Traversing Vulnerability. dong-h0un U (Wed May 21 2003 - 07:13:09 PDT)
- [INetCop Security Advisory] WsMP3d Directory Traversing Vulnerability. dong-h0un U (Wed May 21 2003 - 07:13:09 PDT)
- [Full-Disclosure] [INetCop Security Advisory] Remote Heap Corruption Overflow vulnerability in WsMp3d. dong-h0un U (Wed May 21 2003 - 07:14:58 PDT)
- [INetCop Security Advisory] Remote Heap Corruption Overflow vulnerability in WsMp3d. dong-h0un U (Wed May 21 2003 - 07:14:58 PDT)
- [VulnWatch] [INetCop Security Advisory] Remote Heap Corruption Overflow vulnerability in WsMp3d. dong-h0un U (Wed May 21 2003 - 07:14:58 PDT)
- [AP] Owl Intranet Engine CSS Bug methodicat_private (Wed May 21 2003 - 07:22:11 PDT)
- Compaq Insight Manager - related to Bugtraq ID 2500 Brewis, Mark (Wed May 21 2003 - 10:40:06 PDT)
- MDKSA-2003:058-1 - Updated cdrecord packages fix local root compromise Mandrake Linux Security Team (Wed May 21 2003 - 12:10:54 PDT)
- Demarc Puresecure v1.6 - Plaintext password issue - Ryan Purita (Wed May 21 2003 - 12:17:57 PDT)
- [CLA-2003:653] Conectiva Security Announcement - bugzilla Conectiva Updates (Wed May 21 2003 - 13:05:14 PDT)
- MDKSA-2003:059 - Updated lpr packages fix local root vulnerability Mandrake Linux Security Team (Wed May 21 2003 - 13:22:50 PDT)
- MDKSA-2003:060 - Updated LPRng packages fix insecure temporary file vulnerability Mandrake Linux Security Team (Wed May 21 2003 - 16:12:03 PDT)
- EServ/2.99: problems D4rkGr3y (Wed May 21 2003 - 19:40:00 PDT)
- Prishtina FTP v.1.*: remote DoS D4rkGr3y (Wed May 21 2003 - 20:58:51 PDT)
- [Full-Disclosure] Eudora 5.2.1 attachment spoof Paul Szabo (Wed May 21 2003 - 21:54:13 PDT)
- Eudora 5.2.1 attachment spoof Paul Szabo (Wed May 21 2003 - 21:54:13 PDT)
- [Full-Disclosure] WsMp3d remote exploit. dong-h0un U (Thu May 22 2003 - 07:04:33 PDT)
- WsMp3d remote exploit. dong-h0un U (Thu May 22 2003 - 07:04:33 PDT)
- [Full-Disclosure] QuickTime/Darwin Streaming Server security issues Sir Mordred (Thu May 22 2003 - 12:11:05 PDT)
- QuickTime/Darwin Streaming Server security issues Sir Mordred (Thu May 22 2003 - 12:11:05 PDT)
- [Full-Disclosure] XMB 1.8 Partagium cross site scripting vulnerability Marc Ruef (Thu May 22 2003 - 12:41:04 PDT)
- MDKSA-2003:061 - Updated gnupg packages fix validation bug Mandrake Linux Security Team (Thu May 22 2003 - 13:17:14 PDT)
- Potential security vulnerability in Nessus jeat_private (Thu May 22 2003 - 13:44:59 PDT)
- XMB 1.8 Partagium cross site scripting vulnerability Marc Ruef (Thu May 22 2003 - 14:04:22 PDT)
- Bug found in: Polymorph 0.4.0 Ceq (Thu May 22 2003 - 15:55:26 PDT)
- [Full-Disclosure] Eudora 5.2.1 buffer overflow DoS Paul Szabo (Thu May 22 2003 - 18:56:28 PDT)
- Eudora 5.2.1 buffer overflow DoS Paul Szabo (Thu May 22 2003 - 18:56:28 PDT)
- [Full-Disclosure] nessus NASL scripting engine security issues Sir Mordred (Thu May 22 2003 - 19:43:01 PDT)
- Outlook Web Access authentication bypass Chris Robertson (Fri May 23 2003 - 01:03:17 PDT)
- [Full-Disclosure] iisPROTECT SQL injection in admin interface Gyrniff (Fri May 23 2003 - 05:15:42 PDT)
- iisPROTECT SQL injection in admin interface Gyrniff (Fri May 23 2003 - 05:15:42 PDT)
- [Full-Disclosure] Re: QuickTime/Darwin Streaming Server security issues Joe Testa (Fri May 23 2003 - 07:38:52 PDT)
- Re: Options Parsing Tool library buffer overflows. Julien Lanthea (Fri May 23 2003 - 07:41:39 PDT)
- bazarr CALL POLICE bazarrat_private (Fri May 23 2003 - 11:50:49 PDT)
- TextPortal Default Password Vulnerability bugtracklist.fm (Fri May 23 2003 - 15:15:52 PDT)
- uml_net bug Ktha (Fri May 23 2003 - 18:10:07 PDT)
- Some problems in Privatefirewall 3.0 UkR security team™ (Fri May 23 2003 - 19:33:35 PDT)
- ST FTP Service v3.0: directory traversal D4rkGr3y (Fri May 23 2003 - 22:27:09 PDT)
- PHP source code injection in BLNews Over_G (Sat May 24 2003 - 04:27:54 PDT)
- UPB: Discussion Board/Web-Site Takeover euronymous (Sat May 24 2003 - 07:21:37 PDT)
- Magic Winmail Server v.2.*: format string D4rkGr3y (Sat May 24 2003 - 15:33:53 PDT)
- ATM on linux Exploit(les,local) axis ph4nt0m (Sat May 24 2003 - 22:19:32 PDT)
- The PACKET 0' DEATH FastTrack network vulnerability random nut (Sun May 25 2003 - 21:52:18 PDT)
- Buffer Overflow? Local Malformed URL attack on D-Link 704p router Chris R (Sun May 25 2003 - 22:53:41 PDT)
- S21SEC-016 - Vignette SSI Injection S21SEC (Mon May 26 2003 - 07:07:22 PDT)
- S21SEC-017 - Vignette /vgn/legacy/save SQL access S21SEC (Mon May 26 2003 - 07:09:14 PDT)
- S21SEC-018 - Vignette memory leak AIX Platform S21SEC (Mon May 26 2003 - 07:10:01 PDT)
- S21SEC-019 - Vignette /vgn/style internal information leak S21SEC (Mon May 26 2003 - 07:11:01 PDT)
- [Full-Disclosure] NII Advisory - Buffer Overflow in Analogx Proxy K. K. Mookhey (Mon May 26 2003 - 07:11:38 PDT)
- [VulnWatch] NII Advisory - Buffer Overflow in Analogx Proxy K. K. Mookhey (Mon May 26 2003 - 07:11:38 PDT)
- NII Advisory - Buffer Overflow in Analogx Proxy K. K. Mookhey (Mon May 26 2003 - 07:11:38 PDT)
- S21SEC-020 - Vignette user enumeration S21SEC (Mon May 26 2003 - 07:11:46 PDT)
- S21SEC-021 - Vignette License access and modification S21SEC (Mon May 26 2003 - 07:12:28 PDT)
- S21SEC-023 - Vignette multiple Cross Site Scripting vulnerabilities S21SEC (Mon May 26 2003 - 07:13:36 PDT)
- S21SEC-024 - Vignette TCL Injection S21SEC (Mon May 26 2003 - 07:14:17 PDT)
- [CLA-2003:655] Conectiva Security Announcement - BitchX Conectiva Updates (Mon May 26 2003 - 10:36:26 PDT)
- PalmVNC 1.40 Insecure Records flur (Mon May 26 2003 - 12:17:35 PDT)
- [Priv8security Advisory] Batalla Naval remote overflow wsxz (Mon May 26 2003 - 12:41:09 PDT)
- [Full-Disclosure] Re: Eudora 5.2.1 attachment spoof Paul Szabo (Mon May 26 2003 - 19:27:22 PDT)
- NuxAcid#002 - Buffer Overflow in UpClient Gino Thomas (Tue May 27 2003 - 01:23:48 PDT)
- [Full-Disclosure] [RHSA-2003:171-01] Updated CUPS packages fix denial of service attack bugzillaat_private (Tue May 27 2003 - 02:42:09 PDT)
- BRS WebWeaver: POST and HEAD Overflaws euronymous (Tue May 27 2003 - 03:45:31 PDT)
- Possible XSS on iPlanet Messaging Server Hugo (Tue May 27 2003 - 06:54:40 PDT)
- SuSE Security Announcement: glibc (SuSE-SA:2003:027) Thomas Biege (Tue May 27 2003 - 09:02:02 PDT)
- [CLA-2003:656] Conectiva Security Announcement - netpbm Conectiva Updates (Tue May 27 2003 - 10:58:29 PDT)
- CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass CORE Security Technologies Advisories (Tue May 27 2003 - 11:19:04 PDT)
- [VulnWatch] CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass CORE Security Technologies Advisories (Tue May 27 2003 - 11:19:04 PDT)
- [Full-Disclosure] CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass CORE Security Technologies Advisories (Tue May 27 2003 - 11:19:04 PDT)
- Security Update: [CSSA-2003-SCO.9] OpenServer 5.0.5 OpenServer 5.0.6 : Buffer overflows and other security vulnerabilities in Squid securityat_private (Tue May 27 2003 - 11:20:23 PDT)
- Exploit: Quake 3 engine, con\con and heartbeats (just for fun) Auriemma Luigi (Tue May 27 2003 - 12:43:16 PDT)
- [Full-Disclosure] Exploit: Quake 3 engine, con\con and heartbeats (just for fun) Auriemma Luigi (Tue May 27 2003 - 12:43:16 PDT)
- [VulnWatch] Multiple Vulnerabilities in Sun-One Application Server SPI Labs (Tue May 27 2003 - 15:48:04 PDT)
- [Full-Disclosure] Multiple Vulnerabilities in Sun-One Application Server SPI Labs (Tue May 27 2003 - 15:48:04 PDT)
- Multiple Vulnerabilities in Sun-One Application Server SPI Labs (Tue May 27 2003 - 15:48:04 PDT)
- Postnuke: path disclosure (0.7.2.3 and prior) rkc (Tue May 27 2003 - 21:15:20 PDT)
- [Full-Disclosure] [RHSA-2003:177-01] Updated up2date and rhn_register clients available bugzillaat_private (Wed May 28 2003 - 01:03:35 PDT)
- [Full-Disclosure] [RHSA-2003:145-01] Updated kernel fixes security vulnerabilities and updates drivers bugzillaat_private (Wed May 28 2003 - 01:04:15 PDT)
- Remote PC Access Server 2.2 Vulnerability postmasterat_private (Wed May 28 2003 - 04:31:48 PDT)
- [Full-Disclosure] [SECURITY] [ANNOUNCE] Apache 2.0.46 released Apache HTTP Server Project (Wed May 28 2003 - 09:29:03 PDT)
- [SECURITY] [ANNOUNCE] Apache 2.0.46 released Apache HTTP Server Project (Wed May 28 2003 - 09:29:03 PDT)
- [Full-Disclosure] [RHSA-2003:186-01] Updated httpd packages fix Apache security vulnerabilities bugzillaat_private (Wed May 28 2003 - 09:30:47 PDT)
- Bandmin 1.4 XSS Exploit silent needel (Wed May 28 2003 - 09:38:40 PDT)
- [VulnWatch] SECNAP Security Advisory: Invalid HTML processing in GoldMine(tm) scheidellat_private (Wed May 28 2003 - 16:46:05 PDT)
- [Full-Disclosure] SECNAP Security Advisory: Invalid HTML processing in GoldMine(tm) scheidellat_private (Wed May 28 2003 - 16:46:05 PDT)
- gcc (<3.2.3) implicit struct copy exploit Luke Hutchison (Wed May 28 2003 - 16:51:47 PDT)
- [SECURITY] [DSA-307-1] New gps packages fix multiple vulnerabilities Matt Zimmerman (Wed May 28 2003 - 19:01:36 PDT)
- [VulnWatch] Webfroot Shoutbox 2.32 directory traversal and code injection. pokleyzz (Wed May 28 2003 - 20:52:54 PDT)
- Webfroot Shoutbox 2.32 directory traversal and code injection. pokleyzz (Wed May 28 2003 - 20:52:54 PDT)
- BAZARR CODE NINER PINK TEAM GO GO GO bazarrat_private (Wed May 28 2003 - 21:24:21 PDT)
- [VulnWatch] Geeklog 1.3.7sr1 and below multiple vulnerabilities. pokleyzz (Wed May 28 2003 - 22:02:55 PDT)
- Geeklog 1.3.7sr1 and below multiple vulnerabilities. pokleyzz (Wed May 28 2003 - 22:02:55 PDT)
- Multiple Vulnerabilities In P-Synch Password Management JeiAr (Wed May 28 2003 - 22:26:21 PDT)
- [VulnWatch] b2 cafelog 0.6.1 remote command execution. pokleyzz (Thu May 29 2003 - 00:22:38 PDT)
- b2 cafelog 0.6.1 remote command execution. pokleyzz (Thu May 29 2003 - 00:22:38 PDT)
- Philboard Forum Vulnerability aresuat_private (Thu May 29 2003 - 01:48:45 PDT)
- ICQLite executable trojaning 3APA3A (Thu May 29 2003 - 04:22:47 PDT)
- PHRACK MAGAZINE Call for Papers (#61) phrack staff (Thu May 29 2003 - 05:51:52 PDT)
- New php release with security fixes jeat_private (Thu May 29 2003 - 06:32:10 PDT)
- Activity Monitor 2002 remote Denial of Service Luca Ercoli (Thu May 29 2003 - 08:22:03 PDT)
- Another ZEUS Server web admin XSS! Hugo (Thu May 29 2003 - 10:48:30 PDT)
- IIS WEBDAV Denial of Service attacks Mark Litchfield (Thu May 29 2003 - 11:51:11 PDT)
- [Full-Disclosure] Proxy - Cookie - PhP - .htaccess Questions morning_wood (Thu May 29 2003 - 12:41:39 PDT)
- MDKSA-2003:062 - Updated cups packages fix Denial of Service vulnerability Mandrake Linux Security Team (Thu May 29 2003 - 13:25:43 PDT)
- Algorimic Complexity Attacks Scott A Crosby (Thu May 29 2003 - 13:33:06 PDT)
- PAFileDB SQL Injection Vulnerability & Ratings Cheat Fix JeiAr (Thu May 29 2003 - 15:17:10 PDT)
- Tornado www-server v1.2: directory traversal, buffer overflow D4rkGr3y (Thu May 29 2003 - 16:09:45 PDT)
- Son hServer v0.2: directory traversal D4rkGr3y (Thu May 29 2003 - 16:10:50 PDT)
- conexant adsl router backdoor Luca Bartolomai (Fri May 30 2003 - 01:32:29 PDT)
- [Full-Disclosure] [RHSA-2003:181-01] Updated ghostscript packages fix vulnerability bugzillaat_private (Fri May 30 2003 - 01:36:32 PDT)
- Re: Pi3Web 2.0.1 DoS Holger Zimmermann (Fri May 30 2003 - 02:51:57 PDT)
- Remote DoS in Desktop Orbiter Luca Ercoli (Fri May 30 2003 - 06:08:25 PDT)
- [Full-Disclosure] NSFOCUS SA2003-05: Microsoft IIS ssinc.dll Over-long Filename Buffer Overflow Vulnerability NSFOCUS Security Team (Fri May 30 2003 - 07:01:17 PDT)
- [VulnWatch] NSFOCUS SA2003-05: Microsoft IIS ssinc.dll Over-long Filename Buffer Overflow Vulnerability NSFOCUS Security Team (Fri May 30 2003 - 07:01:17 PDT)
- NSFOCUS SA2003-05: Microsoft IIS ssinc.dll Over-long Filename Buffer Overflow Vulnerability NSFOCUS Security Team (Fri May 30 2003 - 07:01:17 PDT)
- IIS Web DAV exploit new release Alumni Alumni (Fri May 30 2003 - 07:34:56 PDT)
- Internet Explorer URL spoofing threat M. Burnett (Fri May 30 2003 - 10:01:34 PDT)
- Php-Nuke:users and admins password hashes vulnerability bugsman (Fri May 30 2003 - 10:18:50 PDT)
- JBOSS 3.2.1: JSP source code disclosure Marc Schoenefeld (Fri May 30 2003 - 10:59:08 PDT)
- iDEFENSE Security Advisory 05.30.03: Apache Portable Runtime Denial of Service and Arbitrary Code Execution Vulnerability Dave Ahmad (Fri May 30 2003 - 14:26:46 PDT)
- Yahoo! Security Advisory: Yahoo! Voice Chat Yahoo!Security Contact (Fri May 30 2003 - 15:39:03 PDT)
- Windows Media Services Remote Command Execution Brett Moore (Fri May 30 2003 - 17:27:41 PDT)
- MDKSA-2003:063 - Updated apache2 packages fix vulnerabilities Mandrake Linux Security Team (Fri May 30 2003 - 17:47:52 PDT)
- [Full-Disclosure] Antigen Path Disclosure morning_wood (Fri May 30 2003 - 18:35:35 PDT)
- URLScan detection Stephen Cope (Fri May 30 2003 - 18:58:58 PDT)
- iisCart2000 Administration Security Leak Bosen (Fri May 30 2003 - 21:18:50 PDT)
- [Full-Disclosure] Additional Details of Apache 2.x Security Flaw (Attack Vectors) Matthew Murphy (Fri May 30 2003 - 22:54:15 PDT)
- xmame gain root exploit Gabriel A. Maggiotti (Sat May 31 2003 - 07:36:41 PDT)
Last message date: Sat May 31 2003 - 13:44:24 PDT
Archived on: Fri Jun 20 2003 - 03:43:04 PDT
405 messages sorted by:
[ author ]
[ date ]
[ subject ]
Other mail archives
This archive was generated by hypermail 2b30
: Fri Jun 20 2003 - 03:43:04 PDT