Bugtraq
[Prev Page][Next Page]
- VUBB XSS & path disclosure Vulnerabilities,
alireza hassani
- [tool] multispoof - parallel spoofing for throughput increase,
Pawel Pokrywka
- APPLE-SA-2005-10-31 Mac OS X v10.4.3,
noreply
- SQL IN FORUM.PHP,
ABDUCTER_MINDS
- mwcollect v3.0.0 Release,
Georg Wicherski
- SQL In Invision Gallery 2.0.3,
almaster
- [ GLSA 200510-25 ] Ethereal: Multiple vulnerabilities in protocol dissectors,
Sune Kloppenborg Jeppesen
- [ GLSA 200510-26 ] XLI, Xloadimage: Buffer overflow,
Sune Kloppenborg Jeppesen
- Advisory 17/2005: phpBB Multiple Vulnerabilities,
Stefan Esser
- OpenVPN[v2.0.x]: foreign_option() formart string vulnerability.,
v9
Advisory 18/2005: PHP Cross Site Scripting (XSS) Vulnerability in phpinfo(),
Stefan Esser
Advisory 19/2005: PHP register_globals Activation Vulnerability in parse_str(),
Stefan Esser
Advisory 20/2005: PHP File-Upload $GLOBALS Overwrite Vulnerability,
Stefan Esser
[USN-212-1] libgda2 vulnerability,
Martin Pitt
New List,
David Ahmad
[USN-151-3] zlib vulnerabilities,
Martin Pitt
[USN-213-1] sudo vulnerability,
Martin Pitt
[USN-206-2] Fixed lynx packages for USN-206-1,
Martin Pitt
Trend Micro's Response to the Magic Byte Bug,
Auri Rahimzadeh
uplod phpshell in PHP Advanced Transfer Manager,
sQl
Mirabilis ICQ 2003a Buffer Overflow Download Shellcoded Exploit,
atmaca
Vulnerability in MG2 php based Image Gallery - bypass security, view password protected images,
preben
Remote MySQL User on Cpanel Default installation with blank password,
sup3r_linux
Re: Multiple Vendor Anti-Virus Software Detection Evasion Vulnerability through forged magic byte,
Williams, James K
Remote File Inclusion in vCard :),
[AT]
Multiple vulnerabilities within RockLiffe MailSite Express WebMail,
Paul Craig
File Including In PBLang,
abducter_minds
iDefense Security Advisory 10.28.05: Multiple Vendor chmlib CHM File Handling Buffer Overflow Vulnerability,
iDEFENSE Labs
[ GLSA 200510-24 ] Mantis: Multiple vulnerabilities,
Thierry Carrez
MDKSA-2005:200 - Updated apache-mod_auth_shadow packages fix security restriction bypass issues.,
Mandriva Security Team
[SECURITY] [DSA 877-1] New gnump3d packages fix several vulnerabilities,
Martin Schulze
[ GLSA 200510-22 ] SELinux PAM: Local password guessing attack,
Thierry Carrez
MDKSA-2005:201 - Updated sudo packages fix vulnerability,
Mandriva Security Team
[ GLSA 200510-23 ] TikiWiki: XSS vulnerability,
Thierry Carrez
[SECURITY] [DSA 878-1] New netpbm-free packages fix arbitrary code execution,
Martin Schulze
[CIRT.DK] - Novell ZENworks Patch Management Server 6.0.0.52 - SQL injection,
CIRT.DK Advisory
Secunia Research: ATutor Multiple Vulnerabilities,
Secunia Research
[SECURITY] [DSA 876-1] New lynx-ssl packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 875-1] New OpenSSL packages fix cryptographic weakness,
Martin Schulze
fetchmail security announcement 2005-02 (CVE-2005-3088),
ma+nomail
[SECURITY] [DSA 874-1] New lynx packages fix arbitrary code execution,
Martin Schulze
MDKSA-2005:199 - Updated netpbm packages fix pnmtopng vulnerabilities,
Mandriva Security Team
PHP-Nuke Cross-Site Scripting Vulnerability,
bhfh01
[SECURITY] [DSA 872-1] New koffice packages fix arbitrary code execution,
Martin Schulze
MDKSA-2005:196 - Updated perl-Compress-Zlib packages fix vulnerabilities,
Mandriva Security Team
MDKSA-2005:194 - Updated php-imap packages fix buffer overflow vulnerabilities.,
Mandriva Security Team
MDKSA-2005:186-1 - Updated lynx packages fix remote buffer overflow,
Mandriva Security Team
MDKSA-2005:197 - Updated unzip packages fix suid, permissions vulnerabilities.,
Mandriva Security Team
MDKSA-2005:195 - Updated squid packages fix vulnerabilities,
Mandriva Security Team
MDKSA-2005:198 - Updated uim packages fix suid linking vulnerabilities.,
Mandriva Security Team
MDKSA-2005:193-1 - Updated ethereal packages fix multiple vulnerabilities,
Mandriva Security Team
Update for the magic byte bug,
Andrey Bayora
[SECURITY] [DSA 873-1] New net-snmp packages fix denial of service,
Martin Schulze
Re: [Full-disclosure] Multiple Vendor Anti-Virus Software DetectionEvasion Vulnerability through forged magic byte,
Andrey Bayora
[KAPDA::#9] Techno Dreams Scripts Vulnerabilities,
advisory
Looking for security contacts at Sony and Lenovo (FKA IBM),
Richard M. Smith
SQL-Injection in MyBulletinBoard allows attacker to become a board admin.,
Animal
Woltlab Burning Board info_db.php multiple SQL injection,
admin
Secunia Research: Mantis "t_core_path" File Inclusion Vulnerability,
Secunia Research
Looking for a security contact at Macrovision/InstallShield,
Richard M. Smith
MDKSA-2005:193 - Updated ethereal packages fix multiple vulnerabilities,
Mandriva Security Team
[SECURITY] [DSA 548-2] New imlib packages fix arbitrary code execution,
Martin Schulze
SparkleBlog Journal.php HTML Injection Vulnerability =>v2.1 (all versions vulnerable),
sikikmail
SEC-Consult SA 20051025-1 :: RSA ACE Web Agent XSS,
Bernhard Mueller
iDEFENSE Security Advisory 10.24.05: SCO Openserver authsh 'Home' Buffer Overflow Vulnerability,
iDEFENSE Labs
SEC-Consult SA 20051025-0 :: Snoopy Remote Code Execution Vulnerability,
Bernhard Mueller
[SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution,
Martin Schulze
Network Appliance iSCSI Authentication Bypass,
advisories
Mozilla Thunderbird SMTP down-negotiation weakness,
Thomas Henlich
[SNS Advisory No.85] XOOPS Multiple Cross-site Scripting Vulnerabilities,
snsadv
[SECURITY] [DSA 870-1] New sudo packages fix arbitrary command execution,
Martin Schulze
iDEFENSE Security Advisory 10.24.05: SCO Unixware Setuid ppp prompt Buffer Overflow Vulnerability,
iDEFENSE Labs
[ GLSA 200510-21 ] phpMyAdmin: Local file inclusion and XSS vulnerabilities,
Thierry Carrez
[ GLSA 200510-20 ] Zope: File inclusion through RestructuredText,
Thierry Carrez
[ GLSA 200510-19 ] cURL: NTLM username stack overflow,
Thierry Carrez
Multiple Vendor Anti-Virus Software Detection Evasion Vulnerability through,
Andrey Bayora
[SECURITY] [DSA 871-1] New libgda2 packages fix arbitrary code execution,
Martin Schulze
DboardGear - uncorrect import themes (SQL-inject),
poizon
Skype security advisory,
. EADS CCR DCR/STI/C
PHP iCalendar CSS,
ascii
iDEFENSE Security Advisory 10.24.05: SCO Openserver backupsh 'Home' Buffer Overflow Vulnerability,
iDEFENSE Labs
Flat Nuke Cross Site Scripting,
alex
Nuked klan 1.7: SQL vulnerability,
papipsycho
php < 4.4.1 htaccess apache dos,
Eric Romang / ZATAZ.com
Nuked klan 1.7: Remote Exploit,
papipsycho
Zomplog Script Injection Vulnerability =>3.4 (all versions vulnerable),
sikikmail
File Including In FLAT NUKE,
abducter_minds
SQL saphp Lesson,
almaster
Revised draft on ICMP attacks,
Fernando Gont
[KAPDA::#8] Domain Manager Pro Vulnerability,
advisory
aRCHILLES Newsworld < 1.5.0-rc1 Multiple Vulnerabilities,
chburchert
Possible Bug in PHP-Fusion 6.0.204,
peanut
Insecure Temporary Files in BMC/Control-M Agent,
Scott Cromar
[security bulletin] SSRT051055 rev.0 - HP Oracle for OpenView (OfO) Critical Patch Update October 2005,
security-alert
Nuked klan 1.7: Bypassed level admin on forum(corrected),
papipsycho
TSLSA-2005-0059 - multi,
Trustix Security Advisor
Remote File Inclusion in forum PunBB,
rod hedor
Advisory 16/2005: phpMyAdmin Local File Inclusion Vulnerability,
Stefan Esser
phpBB 2.0.17 (and other BB systems as well) Cookie disclosure exploit.,
alphakgen
Re: phpBB 2.0.17 (and other BB systems as well) Cookie disclosure exploit.,
Paul Laudanski
PhpNuke 7.8 with all security fixes/patches "Your_Account", "Downloads", "Web Links" SQL Injection / Remote commans execution,
retrogod
DCP - portal XSS & SQL attacks,
alex
SUSE Security Announcement: permissions (SUSE-SA:2005:062),
Ludwig Nussel
DBoardGear SQL Injection,
almaster
Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability PoC,
ppwd25
[security bulletin] SSRT051052 rev.1 - HP OpenView Operations and OpenView VantagePoint Java Runtime Environment (JRE) Remote Privileged Access,
security-alert
SEC-CONSULT-SA-20051021-0: Yahoo/MSIE XSS,
Bernhard Mueller
Secunia Research: ZipGenius Multiple Archive Handling Buffer Overflow,
Secunia Research
[SNS Advisory No.84] Oracle Application Server HTTP Response Splitting Vulnerability,
snsadv
MDKSA-2005:192 - Updated xli packages fix buffer overflow vulnerabilities.,
Mandriva Security Team
MDKSA-2005:191 - Updated ruby packages fix safe level and taint flag protections vulnerability,
Mandriva Security Team
MDKSA-2005:190 - Updated nss_ldap/pam_ldap packages fix privilege vulnerabilities.,
Mandriva Security Team
MDKSA-2005:189 - Updated imap packages fix buffer overflow vulnerabilities.,
Mandriva Security Team
F.E.A.R. 1.01 likes lithsock,
Luigi Auriemma
MDKSA-2005:188 - Updated graphviz packages fix temporary file vulnerability.,
Mandriva Security Team
Nuked klan 1.7: XSS vulnerability,
papipsycho
MDKSA-2005:187 - Updated dia packages fix python SVG import vulnerability.,
Mandriva Security Team
[SECURITY] [DSA 869-1] New eric packages fix arbitrary code execution,
Martin Schulze
OpenServer 5.0.7 : authsh and backupsh buffer overflow,
please_reply_to_security
UnixWare 7.1.4 UnixWare 7.1.3 : ppp buffer overflow,
please_reply_to_security
[Argeniss] Story of a dumb patch (Paper advisoryabout CSRSS and Windows Explorer vulnerabilities),
Cesar
iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus DiskMountNotify Local Privilege Escalation,
iDEFENSE Labs
iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus LiveUpdate Local Privilege Escalation,
iDEFENSE Labs
iDEFENSE Security Advisory 10.20.05: Multiple Vendor Ethereal srvloc Buffer Overflow Vulnerability,
iDEFENSE Labs
[USN-211-1] Enigmail vulnerability,
Martin Pitt
[ GLSA 200510-18 ] Netpbm: Buffer overflow in pnmtopng,
Thierry Carrez
[ GLSA 200510-17 ] AbiWord: New RTF import buffer overflows,
Thierry Carrez
Vulnerabilities in Oracle E-Business Suite 11i - Critical Patch Update October 2005,
Integrigy Security
Oracle Workflow CSS Vulnerability wf_route,
ak
[SECURITY] [DSA 867-1] New module-assistant package fixes insecure temporary file,
Martin Schulze
Oracle Workflow CSS Vulnerability wf_monitor,
ak
[SECURITY] [DSA 866-1] New Mozilla packages fix several vulnerabilities,
Martin Schulze
Oracle 10g - emagent.exe Stack-Based Overflow,
SPI Labs
XSS & Path Disclosure in Chipmunk's products,
alireza hassani
[SECURITY] [DSA 868-1] New Mozilla Thunderbird packages fix several vulnerabilities,
Martin Schulze
[security bulletin] SSRT051052 rev.0 - HP OpenView Operations and OpenView VantagePoint Java Runtime Environment (JRE) Remote Privileged Access,
security-alert
Cisco Security Advisory:Cisco 11500 Content Services Switch SSL Malformed Client Certificate Vulnerability,
Cisco Systems Product Security Incident Response Team
cacam_logsecurity_win32 exploit published on 20051018 by Metasploit,
Williams, James K
SecurityAlert SA025 : PHPNuke Remote Directory Traversal,
sp3x
SUSE Security Announcement: openSSL protocol downgrade attack (SUSE-SA:2005:061),
Marcus Meissner
Metasploit Framework v2.5,
H D Moore
Multiple Critical and High Vulnerabilities in Oracle Database Server,
NGSSoftware Insight Security Research
Re: Require many large corporate emails for contact regarding vulnerability.,
dcrab
Windows host based firewall tester,
Tim
Linksys WRT54G/S Directory Traversal,
Shell
e107 remote commands execution,
retrogod
NetFlow Analyzer 4 XSS Vulnerability,
why
SECURECon 2006 Call for papers!,
Will Belcher
Secunia Research: MySource Cross-Site Scripting and File Inclusion Vulnerabilities,
Secunia Research
MDKSA-2005:186 - Updated lynx packages fix remote buffer overflow,
Mandriva Security Team
[USN-210-1] netpbm vulnerability,
Martin Pitt
winrar 3.50 Exploit,
edward11
Re: Aenovo Multiple Vulnerabilities (Patch),
ali202
[ GLSA 200510-16 ] phpMyAdmin: Local file inclusion vulnerability,
Sune Kloppenborg Jeppesen
[ GLSA 200510-15 ] Lynx: Buffer overflow in NNTP processing,
Sune Kloppenborg Jeppesen
PHP local safedir restriction bypass,
slythers
Yahoo RSS XSS Vulnerability,
alljer
Lynx Remote Buffer Overflow,
Ulf Harnhammar
[OpenPKG-SA-2005.022] OpenPKG Security Advisory (openssl),
OpenPKG
flexbackup default config insecure temporary file creation,
ZATAZ Audits
ie7 will have more mechanisms,
liudieyu
SUSE Security Announcement: OpenWBEM (SUSE-SA:2005:060),
Sebastian Krahmer
Yahoo RSS XSS Vulnerability (Correction),
alljer
Ciscos VPN-Client-Passwords can be decrypted,
Thierry Zoller
Exploiting Windows Device Drivers Whitepaper,
Piotr Bania
[USN-208-1] graphviz vulnerability,
Martin Pitt
[USN-207-1] PHP vulnerability,
Martin Pitt
[USN-208-1] SSH server vulnerability,
Martin Pitt
[USN-206-1] Lynx vulnerability,
Martin Pitt
[ GLSA 200510-14 ] Perl, Qt-UnixODBC, CMake: RUNPATH issues,
Thierry Carrez
[ GLSA 200510-13 ] SPE: Insecure file permissions,
Thierry Carrez
MDKSA-2005:185 - Updated koffice packages fix KWord RTF import overflow vulnerability,
Mandriva Security Team
Security Contacr for Mycall,
Fixer
[KAPDA::#6] Punbb SQL Injection Vulnerability,
advisory
MDKSA-2005:184 - Updated cfengine packages fix temporary file vulnerabilities,
Mandriva Security Team
[USN-204-1] SSL library vulnerability,
Martin Pitt
[ GLSA 200510-12 ] KOffice, KWord: RTF import buffer overflow,
Sune Kloppenborg Jeppesen
Trusted Digital, Trusted Mobility Suite Authorization Bypass Vulnerability,
none
CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability,
Williams, James K
MDKSA-2005:183 - Updated wget packages fix NTLM authentication vulnerability,
Mandriva Security Team
Gallery 2.x Remote File Access Vulnerability,
Bharat Mediratta
Airscanner Mobile Security Advisory #05101001: iTunes Shared Music Denial of Service/Spoofing/Flooding/Abuse,
Seth Fogie
MDKSA-2005:182 - Updated curl packages fix NTLM authentication vulnerability,
Mandriva Security Team
RTasarim WebAdmin modul SQL injection,
khc
[USN-205-1] Curl and wget vulnerabilities,
Martin Pitt
Google Talk cleartext proxy credentials vulnerability,
m123303
iDEFENSE Security Advisory 10.13.05: Multiple Vendor wget/curl NTLM Username Buffer Overflow Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 10.13.05: Multiple Vendor XMail 'sendmail' Recipient Buffer Overflow Vulnerability,
iDEFENSE Labs
[security bulletin] SSRT5975 HP-UX Running on Itanium Platforms Local Denial of Service (DoS),
Security Alert
[security bulletin] SSRT051041 rev.1 - HP-UX Mozilla Remote Unauthorized Execution of Privileged Code or Denial of Service (DoS),
security-alert
Secunia Research: AhnLab V3 Antivirus ALZ/UUE/XXE Archive Handling Buffer Overflow,
Secunia Research
[USN-203-1] Abiword vulnerabilities,
Martin Pitt
Yapig: XSS / Code Injection Vulnerability,
enji
Kerio Personal Firewall and Kerio Server Firewall FWDRV driver Local Denial of Service,
Piotr Bania
[SECURITY] [DSA 864-1] New Ruby 1.8 packages fix safety bypass,
Martin Schulze
[SECURITY] [DSA 865-1] New hylafax packages fix insecure temporary files,
Martin Schulze
Secunia Research: Novell NetMail NMAP Agent "USER" Buffer Overflow Vulnerability,
Secunia Research
ZDI-05-001: VERITAS NetBackup Remote Code Execution,
zdi-disclosures
VERITAS NetBackup: Java User-Interface, format string vulnerability,
secure
[SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability,
Gary Oleary-Steele
Research for network security news article,
lgreenem
Linux Orinoco drivers information leakage,
Meder Kydyraliev
MDKSA-2005:181 - Updated squid packages fix vulnerabilities,
Mandriva Security Team
[USN-201-1] SqWebmail vulnerabilities,
Martin Pitt
[SEC-1 Advisory] GFI MailSecurity 8.1 Web Module Buffer Overflow,
Gary Oleary-Steele
[ GLSA 200510-11 ] OpenSSL: SSL 2.0 protocol rollback,
Thierry Carrez
[SECURITY] [DSA 863-1] New xine-lib packages fix arbitrary code execution,
Martin Schulze
[USN-202-1] KOffice vulnerability,
Martin Pitt
[ GLSA 200510-10 ] uw-imap: Remote buffer overflow,
Thierry Carrez
MDKSA-2005:178 - Updated squirrelmail packages fixes XSS vulberability,
Mandriva Security Team
MDKSA-2005:179 - Updated openssl packages fix vulnerabilities,
Mandriva Security Team
MDKSA-2005:180 - Updated xine-lib packages fixes cddb vulnerability,
Mandriva Security Team
using php local file include vulnerabilities for command execution,
Andreas Zeidler
[USN-200-1] Thunderbird vulnerabilities,
Martin Pitt
[SECURITY] [DSA 850-1] New tcpdump packages fix denial of service,
Martin Schulze
[SECURITY] [DSA 851-1] New openvpn packages fix denial of service,
Martin Schulze
[SECURITY] [DSA 852-1] New up-imapproxy packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 853-1] New ethereal packages fix several vulnerabilities,
Martin Schulze
[SECURITY] [DSA 854-1] New tcpdump packages fix denial of service,
Martin Schulze
Announcement: The Web Application Firewall Evaluation Criteria v1,
contact
[SECURITY] [DSA 855-1] New weex packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 856-1] New py2play packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 857-1] New graphviz packages fix insecure temporary file,
Martin Schulze
PullThePlug Contest: Call For Papers,
announcements
[SECURITYREASON.COM] phpMyAdmin Local file inclusion 2.6.4-pl1,
max
[SECURITY] [DSA 858-1] New xloadimage packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 859-1] New xli packages fix arbitrary code execution,
Martin Schulze
iDEFENSE Security Advisory 10.10.05: SGI IRIX runpriv Design Error Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 10.10.05: Kaspersky Anti-Virus Engine CHM File Parser Buffer Overflow Vulnerability,
iDEFENSE Labs
versatileBulletinBoard V1.0.0 RC2 (possibly prior versions) multiple SQL injection vulnerabilities / login bypass / board takeover,
rgod
[SECURITY] [DSA 860-1] New Ruby packages fix safety bypass,
Martin Schulze
[SECURITY] [DSA 861-1] New uw-imap packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 862-1] New Ruby 1.6 packages fix safety bypass,
Martin Schulze
FreeBSD Security Advisory FreeBSD-SA-05:21.openssl,
FreeBSD Security Advisories
XSS vulnerability in Zeroblog,
alireza hassani
[KDE Security Advisory] KOffice/KWord RTF import buffer overflow,
Dirk Mueller
Secunia Research: WinRAR Format String and Buffer Overflow Vulnerabilities,
Secunia Research
The Malloc Maleficarum,
Phantasmal Phantasmagoria
iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller Packet Relay DoS Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller TIP DoS Vulnerability,
iDEFENSE Labs
[EEYEB20050510] - Microsoft DirectShow Remote Code Vulnerability,
Advisories
[EEYEB20050708] Microsoft Distributed Transaction Coordinator Memory Modification Vulnerability,
Advisories
[EEYEB20050915] - MDT2DD.DLL COM Object Uninitialized Heap Memory Vulnerability,
Advisories
[EEYEB20050803] - Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability,
Advisories
CodeCon 2006 Call For Papers,
Len Sassaman
[USN-197-1] Shorewall vulnerability,
Martin Pitt
[USN-195-1] Ruby vulnerability,
Martin Pitt
[USN-199-1] Linux kernel vulnerabilities,
Martin Pitt
[USN-196-1] Xine library vulnerability,
Martin Pitt
[USN-198-1] cfengine vulnerabilities,
Martin Pitt
Antivirus detection bypass by special crafted archive.,
unsecure
gnome-pty-helper writes arbitrary utmp records,
Paul Szabo
MDKSA-2005:176 - Updated webmin package fixes authentication bypass vulnerability,
Mandriva Security Team
MDKSA-2005:177 - Updated hylafax packages fix temporary file vulnerability,
Mandriva Security Team
Cyphor 0.19 SQL Injection / Board takeover / cross site scripting,
retrogod
[SECURITY] [DSA 847-1] New dia packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 848-1] New masqmail packages fix several vulnerabilities,
Martin Schulze
[SECURITY] [DSA 849-1] New shorewall packages fix firewall bypass,
Martin Schulze
[ GLSA 200510-08 ] xine-lib: Format string vulnerability,
Sune Kloppenborg Jeppesen
[ GLSA 200510-09 ] Weex: Format string vulnerability,
Sune Kloppenborg Jeppesen
MailEnable W3C Logging Remote Buffer Overflow Proof of Concept,
advisory
Re: Security contact for ...,
Williams, James K
Utopia News Pro 1.1.3 SQL Injection / cross site scripting,
retrogod
[ GLSA 200510-07 ] RealPlayer, Helix Player: Format string vulnerability,
Thierry Carrez
Re: [Dailydave] Security contact for ...,
security curmudgeon
Aenovo Multiple Vulnerabilities,
advisory
MDKSA-2005:175 - Updated texinfo packages fix temporary file vulnerability,
Mandriva Security Team
MDKSA-2005:174 - Updated mozilla-thunderbird packages fix multiple vulnerabilities,
Mandriva Security Team
MDKSA-2005:173 - Updated mozilla-firefox packages fix vulnerabilities,
Mandriva Security Team
MDKSA-2005:172 - Updated openssh packages fix GSSAPI credentials vulnerability,
Mandriva Security Team
Shutdown TNS Listener via Oracle Forms Servlet,
ak
Shutdown TNS Listener via Oracle iSQL*Plus,
ak
Cross-Site-Scripting Vulnerability in Oracle XMLDB,
ak
Cross-Site-Scripting Vulnerability in Oracle iSQL*Plus,
ak
Plaintext Password Vulnerabilitiy during Installation of Oracle HTMLDB,
ak
Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB,
ak
[security bulletin] SSRT051003 rev.1 - HP-UX Java Web Start remote unauthorized privileged access,
security-alert
[security bulletin] SSRT051043 rev.0 - Apache Remote Unauthorized access,
security-alert
[SECURITY] [DSA 846-1] New cpio packages fix several vulnerabilities,
Martin Schulze
xloadimage buffer overflow.,
Ariel Berkman
[ GLSA 200510-05 ] Ruby: Security bypass vulnerability,
Sune Kloppenborg Jeppesen
[USN-194-1] texinfo vulnerability,
Martin Pitt
[SECURITY] [DSA 845-1] New mason packages fix missing init script,
Martin Schulze
Opinion: Complete failure of Oracle security response and utter neglect of their responsibility to their customers,
David Litchfield
High Risk Vulnerability in Sun Directory Server,
NGSSoftware Insight Security Research
[ GLSA 200510-06 ] Dia: Arbitrary code execution through SVG import,
Sune Kloppenborg Jeppesen
aspReady FAQ - open for SQL-injections,
preben
[security bulletin] SSRT051004 rev.1 - HP-UX Java Runtime Environment (JRE) Untrusted Applet Elevates Privilege,
security-alert
Secunia Research: Webroot Desktop Firewall Two Vulnerabilities,
Secunia Research
WASC Threat Classification in 4 languages,
contact
Planet Technology Corp FGSW2402RS switch default password / "backdoor",
lms
[security bulletin] SSRT4743, SSRT4884 rev.1 - HP Tru64 UNIX TCP/IP remote Denial of Service (DoS),
security-alert
Secunia Research: PHP-Fusion Two SQL Injection Vulnerabilities,
Secunia Research
PAKCON II: Call for Paper (CfP), Final Call!,
Ayaz Ahmed Khan
Secunia Research: ALZip Multiple Archive Handling Buffer Overflow,
Secunia Research
Some new whitepapers ...,
David Litchfield
[SECURITY] [DSA 844-1] New mod-auth-shadow packages fix authentication bypass,
Martin Schulze
Patches available for critical flaws in HP Openview,
NGSSoftware Insight Security Research
[SECURITY] [DSA 843-1] New arc packages fix insecure temporary files,
Martin Schulze
iDEFENSE Security Advisory 10.04.05: Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 10.04.05: UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability,
iDEFENSE Labs
[ GLSA 200510-04 ] Texinfo: Insecure temporary file creation,
Thierry Carrez
[security bulletin] SSRT051023 rev.5 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access,
security-alert
[security bulletin] SSRT051030 rev.1 - HP OpenView Event Correlation Services (OV ECS) Remote Unauthorized Privileged Access,
security-alert
[security bulletin] SSRT5940 rev.2 - HP-UX Mozilla remote, unauthorized user may execute privileged code,
security-alert
[security bulletin] SSRT051040 rev.0 - HP-UX Mozilla Remote Unauthorized Execution of Privileged Code,
security-alert
A common researcher diagnosis error: misreading error messages,
Steven M. Christey
[ GLSA 200510-03 ] Uim: Privilege escalation vulnerability,
Sune Kloppenborg Jeppesen
[security bulletin] SSRT051041 rev.0 - HP-UX Mozilla Remote Unauthorized Execution of Privileged Code or Denial of Service (DoS),
security-alert
[SECURITY] [DSA 833-2] New mysql-dfsg-4.1 package fixes arbitrary code execution,
Martin Schulze
[ GLSA 200510-02 ] Berkeley MPEG Tools: Multiple insecure temporary files,
Thierry Carrez
[ GLSA 200510-01 ] gtkdiskfree: Insecure temporary file creation,
Thierry Carrez
[USN-193-1] dia vulnerability,
Martin Pitt
[USN-155-3] Fixed mozilla locale packages,
Martin Pitt
Advisory: WZCS vulnerabilities,
donctl
[SECURITY] [DSA 839-1] New apachetop packages fix insecure temporary file,
Martin Schulze
[SECURITY] [DSA 842-1] New egroupware packages fix arbitrary code execution,
Martin Schulze
Call for Papers - DIMVA 2006,
Thomas Biege
[SECURITY] [DSA 840-1] New drupal packages fix remote command execution,
Martin Schulze
MDKSA-2005:171 - Updated kernel packages fix multiple vulnerabilities,
Mandriva Security Team
Kaspersky Antivirus Remote Heap Overflow,
list
Trillian remote crashable,
philipp
[SECURITY] [DSA 837-1] New Mozilla Firefox packages fix denial of service,
Martin Schulze
[SECURITY] [DSA 838-1] New mozilla-firefox packages fox multiple vulnerabilities,
Michael Stone
RE: Careless Law Enforcement Computer Forensics Lacking InfoSec Expertise Causes Suicides,
Lachniet, Mark
Security Advisory for Bugzilla 2.18.3, 2.20rc2, and 2.21,
mkanat
[SECURITY] [DSA 833-1] New mysql-dfsg-4.1 packages fix arbitrary code execution,
Martin Schulze
[SECURITY] [DSA 834-1] New prozilla packages fix arbitrary code execution,
Martin Schulze
[Information Disclosure] NetForce v4.02 Sends NIS Password Maps with passwords hashes over sendmail,
bambenek
[SECURITY] [DSA 835-1] New cfengine packages fix arbitrary file overwriting,
Martin Schulze
MyBloggie 2.1.3beta null char + SQL Injection -> Login Bypass,
retrogod
[SECURITY] [DSA 836-1] New cfengine2 packages fix arbitrary file overwriting,
Martin Schulze
[SECURITY] [DSA 827-1] New backupninja packages fix insecure temporary file,
Michael Stone
[SECURITY] [DSA 828-1] New squid packages fix denial of service,
Martin Schulze
[ GLSA 200509-20 ] AbiWord: RTF import stack-based buffer overflow,
Thierry Carrez
[SECURITY] [DSA 809-2] New squid packages fix denial of service,
Martin Schulze
BID #14752 update,
Josh Zlatin-Amishav
[SECURITY] [DSA 829-1] New mysql packages fix arbitrary code execution,
Martin Schulze
UPDATE: [ GLSA 200509-11 ] Mozilla Suite, Mozilla Firefox: Multiple vulnerabilities,
Thierry Carrez
TSLSA-2005-0053 - unzip,
Trustix Security Advisor
Buffer-overflow and directory traversal bugs in Virtools Web Player 3.0.0.100,
Luigi Auriemma
[SECURITY] [DSA 831-1] New mysql-dfsg packages fix arbitrary code execution,
Martin Schulze
iDEFENSE Security Advisory 09.30.05: RealNetworks RealPlayer/HelixPlayer RealPix Format String Vulnerability,
iDEFENSE Labs
Announce: Bluetooth mailing list - Bluetraq,
Adam Laurie
[USN-192-1] Squid vulnerability,
Martin Pitt
Citrix Metaframe Presentation Server bypassing policies,
gustavog
[SECURITY] [DSA 826-1] New helix-player packages fix multiple vulnerabilities,
Michael Stone
[ GLSA 200509-21 ] Hylafax: Insecure temporary file creation in xferfaxstats script,
Thierry Carrez
Multiple vulnerabilities in Merak Mail Server 8.2.4r with Icewarp Web Mail 5.5.1,
ss_contacts
[SECURITY] [DSA 830-1] New ntlmaps packages fix information leak,
Martin Schulze
apachetop insecure temporary file creation,
ZATAZ Audits
[SECURITY] [DSA 832-1] New gopher packages fix several buffer overflows,
Martin Schulze
Zone Labs response to "Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC",
Zone Labs Security Team
Lucid CMS 1.0.11 SQL Injection / Login Bypass / remote code execution,
retrogod
[USN-191-1] unzip vulnerability,
Martin Pitt
[USN-190-1] SNMP vulnerability,
Martin Pitt
[USN-189-1] cpio vulnerabilities,
Martin Pitt
[USN-188-1] AbiWord vulnerability,
Martin Pitt
[SECURITY] [DSA 822-1] New gtkdiskfree packages fix insecure temporary file,
Martin Schulze
[SECURITY] [DSA 825-1] New loop-aes-utils packages fix privilege escalation,
Martin Schulze
SquirrelMail Address Add Plugin XSS,
Moritz Naumann
[SECURITY] [DSA 823-1] New util-linux packages fix privilege escalation,
Martin Schulze
Serendipity: Account Hijacking / CSRF Vulnerability,
enji
[SECURITY] [DSA 797-2] Updated zsync i386 packages fix build error,
Michael Stone
[SECURITY] [DSA 824-1] New ClamAV packages fix denial of service,
Martin Schulze
OpenServer 5.0.7 OpenServer 6.0.0 : UnZip File Permissions Change Vulnerability,
please_reply_to_security
PHP-Fusion v6.00.109 SQL Injection / admin|users credentials disclosure,
retrogod
Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC,
Debasis Mohanty
[SECURITY] [DSA 821-1] New python2.3 packages fix arbitrary code execution,
Martin Schulze
Is the Bottom Line Impacted by Security Breaches?,
Kenneth F. Belva
Mantis Bugtracker - Remote Database Scanner and XSS Vulnerabilities,
Joxean Guay del Paraguay
[ GLSA 200509-19 ] PHP: Vulnerabilities in included PCRE and XML-RPC libraries,
Thierry Carrez
MDKSA-2005:169 - Updated mozilla-firefox packages fix multiple vulnerabilities,
Mandriva Security Team
PacSec 05,
Dragos Ruiu
RealPlayer && HelixPlayer Remote Format String Exploit,
c0ntexb
CMS Made Simple 0.10 is susceptible to a cross site scripting attack.,
X1ngBox
FreeBSD GNU Mailutils 0.6 imap4d exploit,
angelo
Nokia 7610, 3210 denial of service in OBEX.,
A. Ramos
SEO borad: SQL injection,
ghc
ElseNot project,
layne
lucidCMS 1.0.11 is susceptible to a cross site scripting attack,
x1ngbox
Announce: RSBAC v1.2.5 released,
Amon Ott
MDKSA-2005:170 - Updated mozilla packages fix multiple vulnerabilities,
Mandriva Security Team
[ISR] - Novell GroupWise Client Integer Overflow,
Francisco Amato
[USN-187-1] Linux kernel vulnerabilities,
Martin Pitt
[USN-186-2] Ubuntu 4.10 packages for USN-186-1 Firefox security update,
Martin Pitt
[ GLSA 200509-18 ] Qt: Buffer overflow in the included zlib library,
Sune Kloppenborg Jeppesen
SUSE Security Announcement: XFree86-server,xorg-x11-server (SUSE-SA:2005:056),
Thomas Biege
FL Studio 5 (.flp file processing) Heap Overflow,
varunuppal
Server crash and motd deletion in MultiTheftAuto 0.5 patch 1,
Luigi Auriemma
[ GLSA 200509-16 ] Mantis: XSS and SQL injection vulnerabilities,
Thierry Carrez
[USN-186-1] Mozilla and Firefox vulnerabilities,
Martin Pitt
[SECURITY] [DSA 820-1] New courier packages fix cross-site scripting,
Martin Schulze
MailGust 1.9 SQL Injection,
retrogod
[ GLSA 200509-17 ] Webmin, Usermin: Remote code execution through PAM authentication,
Thierry Carrez
AlstraSoft E-Friends Remote Command Exucetion,
khc
Hijacking Bluetooth Headsets for Fun and Profit?,
KF (lists)
"Exploiting the XmlHttpRequest object in IE" - paper by Amit Klein,
Amit Klein (AKsecurity)
Rita Scams Call to Arms - Update,
Gadi Evron
PhpMyFAQ 1.5.1 multiple vulnerabilities,
retrogod
Secunia Research: 7-Zip ARJ Archive Handling Buffer Overflow,
Secunia Research
[SECURITY] [DSA 819-1] New python2.1 packages fix arbitrary code execution,
Martin Schulze
TSLSA-2005-0051 - clamav,
Trustix Security Advisor
Sql injection in jPortal version 2.3.1 (module download),
krasza
Secunia Research: PowerArchiver ACE/ARJ Archive Handling Buffer Overflow,
Secunia Research
[scip_Advisory 1746] Microsoft Internet Explorer 6.0 embedded content cross site scripting,
Marc Ruef
[security bulletin] SSRT5998 Rev.2 HP System Management Homepage (v2.0.x) Denial of Service (DoS) and XSS,
security-alert
Hack Dot AE v2,
SpyHat
My Little Forum 1.5 / 1.6beta SQL Injection,
retrogod
[SECURITY] [DSA 817-1] New python2.2 packages fix arbitrary code execution,
Martin Schulze
HTTP Request Smuggling - ERRATA (the IIS 48K buffer phenomenon),
Amit Klein (AKsecurity)
OpenServer 6.0.0 : TCP Remote ICMP Denial Of Service Vulnerabilities,
please_reply_to_security
Platinum Secure smartcard security bypass,
acidemon
[SECURITY] [DSA 818-1] New kdeedu packages fix insecure temporary files,
Martin Schulze
Protty v.01A (beta) - shellcode execution protection library for Windows NT based systems,
Piotr Bania
FireFox exploit updated,
Berend-Jan Wever
[security bulletin] SSRT5988 rev.1 - HP Tru64 Unix libXpm Remote Denial of Service (DoS) or Execute Privileged Code,
security-alert
Upcoming Black Hat events announcement,
Jeff Moss
UnixWare 7.1.4 : LibTIFF < 3.72 malformed data code exec,
please_reply_to_security
PocketPC exploitation,
Jose Morales
[SNS Advisory No.83] Webmin/Usermin PAM Authentication Bypass Vulnerability,
snsadv
[BuHa-Security] Multiple vulnerabilities in (admincp/modcp of) vBulletin 3.0.7,
bugtraq
MDKSA-2005:167 - Updated util-linux packages fix umount vulnerability,
Mandriva Security Team
MDKSA-2005:166 - Updated clamv packages fix vulnerabilities,
Mandriva Security Team
MDKSA-2005:168 - Updated masqmail packages fix vulnerabilities,
Mandriva Security Team
Paper - How It's Difficult to Ruin a Good Name: An Analysis of Reputational Risk,
Kenneth F. Belva
[ GLSA 200509-15 ] util-linux: umount command validation error,
Thierry Carrez
[ GLSA 200509-14 ] Zebedee: Denial of Service vulnerability,
Thierry Carrez
mercury imap4 remote BOF exploit ( IHSTeam ),
c0d3r
[USN-185-1] CUPS vulnerability,
Martin Pitt
MDKSA-2005:138-1 - Updated cups packages fix vulnerability,
Mandriva Security Team
Hesk Session ID Validation Vulnerability,
os2a . bto
Secunia Research: Opera Mail Client Attachment Spoofing and Script Insertion,
Secunia Research
phpBB 2.0.17 remote avatar size bug,
SmOk3
bacula insecure temporary file creation,
Eric Romang / ZATAZ.com
MDKSA-2005:165 - Updated cups packages fix vulnerability,
Mandriva Security Team
Debian Security Host Bandwidth Saturation,
Martin Schulze
[security bulletin] SSRT5971 rev.0 - HP Tru64 Unix FTP Daemon (ftpd) Remote Denial of Service (DoS),
security-alert
[security bulletin] SSRT5999 rev.0 HP OpenVMS Secure Web Browser Mozilla Application Node Spoofing,
security-alert
[ GLSA 200509-13 ] Clam AntiVirus: Multiple vulnerabilities,
Thierry Carrez
@System Security Conference,
Giorgio Zoppi
Whitepaper - Writing small shellcode,
Dafydd Stuttard
[USN-184-1] umount vulnerability,
Martin Pitt
[ GLSA 200509-09 ] Py2Play: Remote execution of arbitrary Python code,
Thierry Carrez
Possible memory corruption problems in Apple Safari,
Jonathan Rockway
[BuHa-Security] Multiple vulnerabilities in (admincp/modcp of) vBulletin 3.0.8/9,
bugtraq
Alstrasoft Epay Pro 2.0 and prior Directory Traversal Vulnerability,
h4cky0u
Dumb Question,
Sean Warnock
[ GLSA 200509-12 ] Apache, mod_ssl: Multiple vulnerabilities,
Thierry Carrez
ERRATA: [ GLSA 200507-20 ] Shorewall: Security policy bypass,
Thierry Carrez
Web Application Security Analyzer for PHP-Nuke/phpBB CMS,
Paul Laudanski
[Full-disclosure] killbits? should have named them kibbles and bits,
Ill will
router worms and International Infrastructure [was: Re: IOS exploit],
Gadi Evron
Antigen 8.0 for Exchange/SMTP Rule Vulnerability,
Alan Monaghan
[ GLSA 200509-11 ] Mozilla Suite, Mozilla Firefox: Buffer overflow,
Thierry Carrez
CuteNews 1.4.0 remote code execution,
retrogod
[ GLSA 200509-10 ] Mailutils: Format string vulnerability in imap4d,
Thierry Carrez
Cisco IOS hacked?,
ciscoioshehehe
CDMA1X Security,
pen-test
Greyhats Security back online,
pvnick
Re: [Full-disclosure] FireFox Host: Buffer Overflow is not just exploitable on FireFox,
Juha-Matti Laurio
TSLSA-2005-0049 - multi,
Trustix Security Advisor
[FLSA-2005:152919] Updated grip package fixes security issue,
Marc Deslauriers
(TOOL) TAPiON ver 0.1c,
Piotr Bania
[SECURITY] [DSA 815-1] New kdebase packages fix local root vulnerability,
Martin Schulze
gwcc insecure temporary file creation,
ZATAZ Audits
PHP SESSION MODIFICATION,
unknow
SUSE Security Announcement: evolution (SUSE-SA:2005:054),
Ludwig Nussel
ncompress insecure temporary file creation,
ZATAZ Audits
SUSE Security Announcement: squid (SUSE-SA:2005:053),
Thomas Biege
arc insecure temporary file creation,
ZATAZ Audits
worring about YaST in SuSE 9.3 and maybe lower,
innate
FF IDN buffer overflow workaround works in Netscape too,
Juha-Matti Laurio
[FLSA-2005:163274] Updated CUPS packages fix security issue,
Marc Deslauriers
[FLSA-2005:163047] Updated squirrelmail package fixes security issues,
Marc Deslauriers
[FLSA-2005:162680] Updated Zlib packagea fix security issues,
Marc Deslauriers
[FLSA-2005:160202] Updated mozilla packages fix security issues,
Marc Deslauriers
PTL Advisory 050825 - HP LaserJet Network Username and Information Enumeration,
Pinion Lab
Airscanner Mobile Security Advisory #05082201: File Transfer Anywhere v3.01 Local Server Password Disclosure,
contact
XSS Vulnerability in MIVA Merchant 5 - Includes Fix,
admin
MDKSA-2005:164 - Updated XFree86/x.org packages fix vulnerability,
Mandriva Security Team
[SECURITY] [DSA 811-1] New common-lisp-controller packages fix arbitrary code injection,
Martin Schulze
RE: [Full-disclosure] FireFox Host: Buffer Overflow is not justexploitable on FireFox,
Peter Kruse
Anti Arp Poisoning Daemon (OpenAAPD) PS: Link corrected,
Andrea Di Pasquale
RE: [Snort-devel] Re: [Snort-users] Snort DoS Fallacies,
Steven Sturges
Oracle Reports: Generic SQL Injection Vulnerability via Lexical References,
ak
Online Dating Software by AEwebworks - aeDating Script <= 4.0 Version Vulnerability,
alexsrb
CastleCops ramps up fight against CoolWebSearch/HomeSearch,
Paul Laudanski
404 error XSS,
Josh Zlatin-Amishav
Re: [Full-disclosure] Mozilla / Mozilla Firefox authentication weakness,
Juha-Matti Laurio
Remote File Inclusion in MyGuestbook,
rod hedor
Is netcraft publishing URL of your intranet sites?,
Saqib Ali
gtkdiskfree insecure temporary file creation,
ZATAZ Audits
Character Manipulation in Online Systems.,
hackology
Avocent CCM: Port Access Control Bypass Vulnerability,
spam
SQL injection & XSS in phpoutsourcing Noah's classifieds,
alireza hassani
TWiki Remote Command Execution Vulnerability,
Sap .
Airscanner Mobile Security Advisory #05081102: vxFtpSrv 0.9.7 Remote Code Execution Buffer Overflow Vulnerability,
contact
DriverStudio Remote Control Authentication Bypass Vulnerability,
cocoruder
Airscanner Mobile Security Advisory #05081101: vxWeb v.1.1.4 Denial of Service Vulnerability,
contact
Airscanner Mobile Security Advisory #05081203: vxTftpSrv 1.7.0 Remote Code Execution Buffer Overflow Vulnerability,
contact
[SECURITY] [DSA 812-1] New turqstat packages fix buffer overflow,
Martin Schulze
[SECURITY] [DSA 813-1] New centericq packages fix several vulnerabilities,
Martin Schulze
Digital Scribe v1.4 Login Bypass / SQL injection / remote code execution,
retrogod
Secunia Research: Ahnlab V3 Antivirus Multiple Vulnerabilities,
Secunia Research
[SECURITY] [DSA 814-1] New lm-sensors packages fix insecure temporary file,
Martin Schulze
ATutor 1.5.1 SQL Injection / Admin credentials disclosure / remote code execution,
retrogod
Secunia Research: AVIRA Antivirus ACE Archive Handling Buffer Overflow,
Secunia Research
Mozilla / Mozilla Firefox authentication weakness,
3APA3A
Re: [Snort-users] Snort DoS Fallacies,
Martin Roesch
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration apply.cgi Buffer Overflow Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'upgrade.cgi' Firmware Upload Design Error Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Management Interface DoS Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'restore.cgi' Configuration Modification Design Error Vulnerability,
iDEFENSE Labs
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration Fixed Encryption Key Vulnerability,
iDEFENSE Labs
Serious Security issue with broken - Microsoft's .Net XML Serialization API,
Rohit
MDKSA-2005:163 - Updated MySQL packages fix vulnerability,
Mandriva Security Team
MDKSA-2005:162 - Updated squid packages fix vulnerabilities,
Mandriva Security Team
[SECURITY] [DSA 809-1] New squid packages fix several vulnerabilities,
Martin Schulze
Subscribe Me Pro 2.044.09P and prior Directory Traversal Vulnerability,
h4cky0u
AzDGDatingLite V 2.1.3 remote code execution,
retrogod
[SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities,
Martin Schulze
[USN-181-1] Mozilla products vulnerability,
Martin Pitt
[USN-83-2] LessTif 1 vulnerabilities,
Martin Pitt
[ GLSA 200509-07 ] X.Org: Heap overflow in pixmap allocation,
Thierry Carrez
[OpenPKG-SA-2005.021] OpenPKG Security Advisory (squid),
OpenPKG
[ GLSA 200509-08 ] Python: Heap overflow in the included PCRE library,
Thierry Carrez
util-linux: unintentional grant of privileges by umount,
David Watson
PHP Nuke <= 7.8 Multiple SQL Injections,
r . verton
Re: [Full-disclosure] (TOOL) TAPiON (Polymorphic Decryptor Generator) Engine,
Piotr Bania
[SECURITY] [DSA 808-1] New tdiary packages fix Cross Site Request Forgery,
Martin Schulze
SUSE Security Announcement: apache2 (SUSE-SA:2005:051),
Thomas Biege
Security Flaw in pam_per_user Module,
Mark D. Roth
Sawmill XSS vuln,
Mark Terry
[SECURITY] [DSA 807-1] New mod_ssl packages fix acl restriction bypass,
Martin Schulze
FreeBSD Security Advisory FreeBSD-SA-05:20.cvsbug [REVISED],
FreeBSD Security Advisories
[USN-179-1] openssl weak default configuration,
Martin Pitt
[USN-178-1] Linux kernel vulnerabilities,
Martin Pitt
class-1 Forum Software v 0.24.4 Remote code execution,
retrogod
Zebedee DoS Vulnerability,
Shiraishi.M
Cj Desing Three Aplications One Bug,
psymera
KillProcess 2.20 and priors "FileDescription" Local Buffer Overflow Issue,
fRoGGz
(TOOL) TAPiON (Polymorphic Decryptor Generator) Engine,
Piotr Bania
iDEFENSE Security Advisory 09.09.05: GNU Mailutils 0.6 imap4d 'search' Format String Vulnerability,
iDEFENSE Labs
TSLSA-2005-0047 - multi,
Trustix Security Advisor
[SECURITY] [DSA 806-1] New cvs packages fix insecure temporary files,
Martin Schulze
MDKSA-2005:161 - Updated apache2 packages to address multiple vulnerabilities,
Mandriva Security Team
[SECURITY] [DSA 805-1] New Apache2 packages fix several vulnerabilities,
Martin Schulze
Secunia Research: NOD32 Anti-Virus ARJ Archive Handling Buffer Overflow,
Secunia Research
Secunia Research: ALZip ACE Archive Handling Buffer Overflow,
Secunia Research
[SECURITY] [DSA 804-1] New kdelibs packages fix backup file information leak,
Martin Schulze
[SECURITY] [DSA 803-1] New Apache packages fix HTTP request smuggling,
Martin Schulze
anti Windows XP SP2 firewall trick,
crusoe
[Index of Archives]
[Netfilter]
[Security]
[PHP]
[Linux Kernel]
