BugTraq@security-focus.com List Archive
- [Aria-Security Team] DuWare DuPaypal SQL Injection Vuln,
Advisory
- [Aria-Security Team] DuWare DuForum SQL Injection Vuln,
Advisory
- CuteNews 1.3.6 XSS,
emulamex
- [Aria-Security Team] DuWare DuDownloads SQL Injection Vuln,
Advisory
- [ MDKSA-2006:222 ] - Updated koffice packages fixes integer overflow vulnerability,
security
- KhaledMuratList mdb,
blasterim
- PHPNews 1.3.0 XSS,
emulamex
- [Aria-Security Team] DuWare DuPortal SQL Injection Vuln,
Advisory
- [Aria-Security Team] DuWare DuClassMate SQL Injection Vuln,
Advisory
- [Aria-Security Team] DuWare DuNews SQL Injection Vuln,
Advisory
- [ MDKSA-2006:223 ] - Updated ImageMagick packages fixes vulnerability,
security
- freeqboard <= 1.1 (qb_path) Remote File Include Vulnerability,
-= SHELL =- -= SHELL =-
- rPSA-2006-0222-1 tar,
rPath Update Announcements
- TSLSA-2006-0068 - multi,
Trustix Security Advisor
- rPSA-2006-0224-1 gnupg,
rPath Update Announcements
- iDefense Security Advisory 12.01.06: Novell ZENworks Asset Management Msg.dll Heap Overflow Vulnerability,
iDefense Labs
- iDefense Security Advisory 12.01.06: Novell ZENworks Asset Management Collection Client Heap Overflow Vulnerability,
iDefense Labs
- [SECURITY] [DSA 1222-2] New proftpd packages fix several vulnerabilities,
Moritz Muehlenhoff
- Aspee Ziyareti Defteri (tr) Sql injection Vuln.,
ShaFuq31
- rPSA-2006-0220-1 dovecot,
rPath Update Announcements
- deV!L`z Clanportal - SQL Injection [061124a],
Tim Weber
- Outpost Bypassing Self-Protection via Advanced DLL injection with handle stealing Vulnerability,
Matousec - Transparent security Research
- [SECURITY] [DSA 1223-1] New tar packages fix arbitrary file overwrite,
Noah Meyerhans
- Layered Defense Advisory: Novell Client 4.91 Format String Vulnerability,
dh
- deV!L`z Clanportal - Arbitrary File Upload [061124b],
Tim Weber
- [Aria-Security.Net] Web Hosting Control Panel - cPanel 11 Multiple Cross-Site Scripting Vulnerabilites,
Advisory
- rPSA-2006-0221-1 openldap openldap-clients openldap-servers,
rPath Update Announcements
- [ MDKSA-2006:221 ] - Updated gnupg packages fix vulnerability,
security
- [ MDKSA-2006:220 ] - Updated libgsf packages fix heap buffer overflow vulnerability,
security
- [SECURITY] [DSA 1205-2] New thttpd packages fix insecure temporary file creation,
Steve Kemp
- Invision Gallery 2.0.7 SQL Injection Vulnerability,
infection
- LifeType version 1.1.2 Multiple Path Disclosure Vulnerabilities,
jesper . jurcenoks
- iDefense Security Advisory 11.30.06: Multiple Vendor libgsf Heap Overflow Vulnerability,
iDefense Labs
- LDU <= 8.x (polls.php) Remote SQL Injection Vulnerability,
ajannhwt
- contentserv 4.x,
capt . nem0
- [ GLSA 200611-26 ] ProFTPD: Remote execution of arbitrary code,
Raphael Marichez
- Invision Community Blog Mod 1.2.4 .PHP SQL Injection Vulnerability,
infection
- Seditio <= 1.10 (pollid) Remote SQL Injection Vulnerability,
ajannhwt
- @lex Guestbook 4.0.1 : Full Path Disclosure & XSS,
mr_kaliman
- Woltlab Burning Board 2.3.X XSS Vulnerability (0-Day) FIXED VERSION,
blueshisha
- [USN-390-1] evince vulnerability,
Kees Cook
- [security bulletin] HPSBUX02153 SSRT061181 rev.2 - HP-UX Running Firefox, Remote Unauthorized Access or Elevation of Privileges or Denial of Service (DoS),
security-alert
- Secunia Research: MailEnable IMAP Service Two Vulnerabilities,
Secunia Research
- [ MDKSA-2006:217-1 ] - Updated proftpd packages fix vulnerabilities,
security
- [SECURITY] [DSA 1222-1] New proftpd packages fix several vulnerabilities,
Moritz Muehlenhoff
- [SECURITY] [DSA 1221-1] New libgsf packages fix arbitrary code execution,
Martin Schulze
- [USN-389-1] GnuPG vulnerability,
Kees Cook
- Potentially OT: AJAX article,
clappymonkey
- [USN-388-1] KOffice vulnerability,
Kees Cook
- [Aria-Security Team] FipsSHOP SQL Injection,
Advisory
- Monkey Boards version 0.3.5 Multiple Path Disclosure Vulnerabilities,
jesper . jurcenoks
- New Windows tool - PWDumpX v1.0,
Reed Arvin
- OWASP JBroFuzz 0.3 Fuzzer Released!,
subere
- SYM06-023, Symantec NetBackup PureDisk: PHP update to Address Reported Security Vulnerability,
Mike Prosser
- Secunia Research: Borland Products idsql32.dll Buffer Overflow Vulnerability,
Secunia Research
- [ MDKSA-2006:219 ] - Updated tar packages fix vulnerability,
security
- REMLAB Web Mech Designer 2.0.5 Path Disclosure Vulnerability,
jesper . jurcenoks
- iDefense Security Advisory 11.29.06: Horde Kronolith Arbitrary Local File Inclusion Vulnerability,
iDefense Labs
- ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability,
zdi-disclosures
- PHP Event Calendar 1.5.1 (index.php) Remote File Include Vulnerability,
philip anselmo
- Re: [WEB SECURITY] The state of JavaScript Hacking,
bugtraq
- b2evolution Remote File inclusion Vulnerability,
tarkus
- Multiple Vulnerabilities in AlternC version 0.9.5,
Vincent A . Menard
- New report on Teredo security,
Jim Hoagland
- [USN-385-1] tar vulnerability,
Kees Cook
- [ GLSA 200611-24 ] LHa: Multiple vulnerabilities,
Raphael Marichez
- [ GLSA 200611-25 ] OpenLDAP: Denial of Service vulnerability,
Raphael Marichez
- [ GLSA 200611-23 ] Mono: Insecure temporary file creation,
Raphael Marichez
- [USN-387-1] Dovecot vulnerability,
Kees Cook
- b2evolution XSS Vulnerabilities,
tarkus
- ProFTPD mod_tls pre-authentication buffer overflow,
research
- TSLSA-2006-0066 - multi,
Trustix Security Advisor
- evince buffer overflow exploit (gv),
kspecial
- [USN-386-1] ImageMagick vulnerability,
Kees Cook
- uPhotoGallery (v 1.1) SQL Injection,
Advisory
- [ GLSA 200611-22 ] Ingo H3: Folder name shell command injection,
Sune Kloppenborg Jeppesen
- GnuPG 1.4 and 2.0 buffer overflow,
Werner Koch
- SYMSA-2006-011: JBoss Java Class DeploymentFileRepository Directory Traversal,
research
- CVE-2006-5815: remote code execution in ProFTPD,
John Morrissey
- ClickContact SQL Injection,
Advisory
- AIDE problem handling symlinks,
fryxar fryxar
- Cursor snarfing - a new class of vulnerability and attack in Oracle,
David Litchfield
- 2nd European Conference on Computer Network Defense (EC2ND),
Blyth A J C (AT)
- RE: Cracking String Encryption in Java Obfuscated Bytecode,
Jeremy Epstein
- Re: New Flaw in Firefox 2.0: DoS and possible remote code execution,
sflist
- [ GLSA 200611-21 ] Kile: Incorrect backup file permission,
Sune Kloppenborg Jeppesen
- iDefense Security Advisory 11.26.06: GNU Radius Format String Vulnerability,
iDefense Labs
- MHL-2006-003 Public Advisory: "mboard" file creation issue,
Mayhemic Labs Security
- PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity,
x___ . _
- rPSA-2006-0219-1 info install-info texinfo,
rPath Update Announcements
- TFTP Server 3CTftpSvc Buffer Overflow Vulnerability (Long transporting mode),
liuqx
- rPSA-2006-0218-1 ImageMagick,
rPath Update Announcements
- CuteNews v1.4.5 (search.php) Remote file include vulnerability,
philip anselmo
- [SECURITY] [DSA 1219-1] New texinfo packages fix multiple vulnerabilities,
Noah Meyerhans
- VMware 5.5.1 Local Buffer Overflow (HTML Exploit),
NormandiaN_MailID
- TFTP Server AT-TFTP Server v 1.9 Buffer Overflow Vulnerability (Long filename),
liuqx
- iDefense Security Advisory 11.26.06: Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability,
iDefense Labs
- ClickGallery Sql Injection,
Advisory
- Clickblog Sql Injection,
Advisory
- Re: Re: "Which is more secure? Oracle vs. Microsoft" (is it a fair comparison?),
Tim Newsham
- [SECURITY] [DSA 1220-1] New pstotext packages fix arbitrary shell command execution,
Moritz Muehlenhoff
- [Aria-Security Team] General Shopping Cart SQL Injection Vulnerability,
Advisory
- [Aria-Security Team] Evolve shopping cart SQL Injection Vulnerability,
Advisory
Mail converted by MHonArc
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.
The main JSW4.NET technical listserv archive and search page.
The main archive page for this list.