BugTraq@security-focus.com List Archive

Date Index

[ MDKSA-2006:191 ] - Updated screen packages fix vulnerability, security
[ MDKSA-2006:192 ] - Updated ruby packages fix DoS vulnerability, security
[ MDKSA-2006:190 ] - Updated mutt packages fix multiple vulnerabilities, security
[ MDKSA-2006:188 ] - Updated mono packages fix vulnerability, security
[ MDKSA-2006:189 ] - Updated xsupplicant fixes possible remote root stack smash vulnerability, security
Microsoft .NET request filtering bypass vulnerability, research
Hosting Controller 6.1 Hotfix <= 3.2 Vulnerability, playpacific . emulacaid
Thepeak File Upload v1.3 : Read file vulneability, loveha
Ban v0.1 (bannieres.php) File Include, mahmood ali
- Re: Ban v0.1 (bannieres.php) File Include, Francesco Laurita
phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include, zooz_998
- <Possible follow-ups>
- Re: phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include, emme0032
[funsec] Haxdoor: UK Police Count 8, 500 Victims in Data Theft (So Far) (fwd), Gadi Evron
phpLedAds 2.0(dir) File Include, mahmood ali
PLS-Bannieres 1.21 (bannieres.php) File Include, mahmood ali
RFID enabled e-passport skimming proof of concept code released (RFIDIOt), Adam Laurie
GestArt <= vbeta 1 Remote File Include Vulnerabilities, ip . 123 . 456 . 78 . 90
ArticleBeach Script <= 2.0 Remote File Inclusion Vulnerability, Bithedz
PHP-Nuke <= 7.9 Search module "author" SQL Injection vulnerability, paisterist . nst
UNISOR CMS sql injection, fireboy2006
IE7 status: 8 days after release, 3 unfixed issues, Moritz Naumann
SMF fgets off-by-one issue and filter size evasion, josecarlos . norte
TextPattern <=1.19 Remote File Inclusion Vulnerability, Bithedz
vulnerability in Symantec products, security
[ GLSA 200610-13 ] Cheese Tracker: Buffer Overflow, Raphael Marichez
ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability, zdi-disclosures
iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LFO Count Integer Overflow Vulnerability, iDefense Labs
iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LVL Count Integer Overflow Vulnerability, iDefense Labs
phpFaber CMS Cross Site Scripting, security
Directory Traversal in TorrentFlux 2.1, Christopher
Joomla extended_registration mod Remote File Include Vulnerabilities, crackers_child
Insecure storage of passwords in Axalto Protiva, nnposter
MiniBILL v2006-10-10 (config[page_dir] Remote File Include Vulnerability, xorontr
MHL-2006-003 Public Advisory: "ezOnlineGallery" Multiple Security Issues, Mayhemic Labs Security
TSLSA-2006-0059 - postgresql, Trustix Security Advisor
IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006, LIUDIEYU dot COM
- Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006, Reversemode
- Re: [Full-disclosure] IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006, HASEGAWA Yosuke
rPSA-2006-0198-1 screen, rPath Update Announcements
[OpenPKG-SA-2006.026] OpenPKG Security Advisory (screen), OpenPKG
rPSA-2006-0195-2 kdelibs qt-x11-free, rPath Update Announcements
[security bulletin] HPSBMA02133 SSRT061201 rev.2 - HP Oracle for OpenView (OfO) Critical Patch Update, security-alert
iDefense Security Advisory 10.25.06: AOL Nullsoft Winamp Ultravox Lyrics3 v2.00 tags Heap Overflow Vulnerability, iDefense Labs
Web-style Wireless IDS attacks, noreply
iDefense Security Advisory 10.25.06: AOL YGPPDownload AddPictureNoAlbum ActiveX Control Heap Corruption Vulnerability, iDefense Labs
Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability, erreale
- Re: Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability, Christian Kalkhoff
iDefense Security Advisory 10.25.06: AOL YGPPDownload downloadFileDirectory ActiveX Control Heap Corruption Vulnerability, iDefense Labs
iDefense Security Advisory 10.25.06: AOL Nullsoft Winamp Ultravox 'ultravox-max-msg' Header Heap Overflow Vulnerability, iDefense Labs
[ MDKSA-2006:187 ] - Updated Qt packages fix vulnerability, security
phpMyConferences_8.0.2 Remote File Inclusion, Outlaw
- Re: phpMyConferences_8.0.2 Remote File Inclusion, Tamriel
[KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities, farhadkey
Re: Yahoo! Messenger Service 18 Remote Buffer Overflow Vulnerability, Gadi Evron
Cisco Security Advisory: Cisco Security Agent for Linux Port Scan Denial of Service, Cisco Systems Product Security Incident Response Team
[ GLSA 200610-12 ] Apache mod_tcl: Format string vulnerability, Raphael Marichez
InteliEditor (sys_path) Remote File Include Vulnerability, xorontr
adobe php sdk Remote File Include Vulnerabilities, crackers_child
- Re: adobe php sdk Remote File Include Vulnerabilities, Mailinglists Address
CSLH2.9.9 Remote File Include Vulnerabilities, crackers_child
who needs a server ..., auto113922
[vuln.sg] CruiseWorks Directory Traversal and Buffer Overflow Vulnerabilities, vulnpost-remove
ProgSys verion 0.151 XSS vulnerability, security
[SECURITY] [DSA 1199-1] New webmin packages fix input validation problems, Noah Meyerhans
Month of Kernel Bugs and fsfuzzer release (0.6), L . M . H .
[ GLSA 200610-11 ] OpenSSL: Multiple vulnerabilities, Raphael Marichez
[ GLSA 200610-10 ] ClamAV: Multiple Vulnerabilities, Raphael Marichez
Symantec Product Security: Symantec Device Driver Elevation of Privileg, secure
[SECURITY] [DSA 1198-1] New python2.3 packages fix arbitrary code execution, Moritz Muehlenhoff
WikiNi Multiple Cross Site Scripting Vulnerabilities, raphael . huck
Application orders Linux in WebAPP v0.9.9.2.1, the_free_kernel
- <Possible follow-ups>
- Re: Application orders Linux in WebAPP v0.9.9.2.1, nicolascamino
Multiple HTTP response splitting vulnerabilities in SHOP-SCRIPT, Debasis Mohanty
SQL Injection in Oracle package MDSYS.SDO_LRS, ak
SQL Injection in package SYS.DBMS_CDC_IMPDP, ak
INCA IM-204 Dsl several vulnerabilities, crackers_child
SQL Injection in package XDB.DBMS_XDBZ0, ak
SQL Injection in package SYS.DBMS_SQLTUNE_INTERNAL, ak
Modify Data via Inline Views, ak
hack.lu Bluetooth demo, K F (lists)
- Re: [Full-disclosure] hack.lu Bluetooth demo, Thierry Zoller
Various Cross-Site-Scripting Vulnerabilities in Oracle Reports, ak
http://www.red-database-security.com/advisory/oracle_apex_css_notification_msg.html, ak
Cross-Site-Scripting Vulnerability in Oracle APEX WWV_FLOW_ITEM_HELP, ak
SQL Injection Vulnerability in Oracle WWV_FLOW_UTILITIES, ak
Smarty-2.6.1 Remote File Include Vulnerabilities, crackers_child
- Re: Smarty-2.6.1 Remote File Include Vulnerabilities, J. Carlos Nieto
Flaw in Firefox 2.0 Final, mike
D-Link DSL-G624T several vulnerabilities, jose . palanco
[PHPADSNEW-SA-2006-002] phpAdsNew and phpPgAds 2.0.8-pr1 fix XSS vulnerability, Matteo Beccati
-==PHP Nuke <= 7.9 SQL Injection and Bypass SQL Injection Protection vulnerabilities==-, paisterist . nst
[SECURITY] [DSA 1197-1] New python2.4 packages fix arbitrary code execution, Moritz Muehlenhoff
Re: Simple Machines Forum (SMF) XSS issue, RSnake
AROUNDMe 0.6.9 remonte file inclusion, noislet . nospam
PHP Generator of Object SQL Database (path) Remote File Include Vulnerability, xorontr
WHM 10.8.0 cPanel 10.9.0 R50 CentOS 4.4 i686 WHM X v3.1.0 Xss Vulnerability, crackers_child
speedberg <= 1.2beta1 Remote File Inclusion, k1tk4t
XSS in Zwahlen Online Shop, MC Iglo
iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Invalid Free Vulnerability, iDefense Labs
iDefense Security Advisory 10.21.06: Novell eDirectory NCP over IP length Heap Overflow Vulnerability, iDefense Labs
iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Heap Overflow Vulnerability, iDefense Labs
IPEER Remote file inclusion, navairum
trawler <= 1.8.1 Remote File Inclusion, k1tk4t
RMSOFT Cross Site Scripting, FREAK_PR
[ GLSA 200610-09 ] libmusicbrainz: Multiple buffer overflows, Matthias Geerdsen
[USN-368-1] Qt vulnerability, Martin Pitt

Mail converted by MHonArc

This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.
The main JSW4.NET technical listserv archive and search page.
The main archive page for this list.