BugTraq@security-focus.com List Archive
- Allied Telesis AT-9000/24 Ethernet switch management can be accessed from all VLANs.,
Pasi Sjoholm
- [HSC Security Group] SiteCatalyst Web Login Cross Site Vulrnabilities,
DoZ
- Contra Haber Sistemi v1.0 SqL Injection Vuln.,
ShaFuq31
- Odysseus 2.0 / Telemachus 1.0 (Beta),
Dave
- Doğantepe Ziyareti Defteri (tr) Sql Injection Vuln.,
ShaFuq31
- XSS in gmial google,
gamr-14
- Drone Armies C&C Report - 15 Dec 2006,
c2report
- [OpenPKG-SA-2006.039] OpenPKG Security Advisory (proftpd),
OpenPKG GmbH
- [ MDKSA-2006:206 ] - Updated Thunderbird packages fix multiple vulnerabilities,
security
- Bypassing process identification of several personal firewalls and HIPS,
Matousec - Transparent security Research
- Flaw in OpenOffice.org 2.1: OpenOffice 2.1 is vulnerable to MS Word 0 day vulnerability!!!,
gplit
- Project Server 2003 - Credential Disclosure,
Brett Moore
- [security bulletin] HPSBMA02173 SSRT061230 rev. 1 - HP Integrated Lights Out (iLO & iLO 2) Running SSH Key Based Authentication Remote Unauthorized Access,
security-alert
- Windows Media MID File Denial Of Service Vulnerability,
sehato
- [USN-396-1] gdm vulnerability,
Kees Cook
- Windows Explorer WMV File Denial Of Service Vulnerability,
sehato
- TSLSA-2006-0072 - clamav,
Trustix Security Advisor
- BitDefender AV Packed PE File Parsing Engine Heap Overflow,
security
- [ MDKSA-2006:231 ] - Updated gdm packages fix string vulnerability,
security
- Top 10 Real Computer Crimes for 2007,
Pete Herzog
- [ GLSA 200612-15 ] McAfee VirusScan: Insecure DT_RPATH,
Sune Kloppenborg Jeppesen
- CanSecWest 2007 (April 18-20) Call For Papers (Deadline January 7th),
Dragos Ruiu
- Kerio MailServer < 6.3.1 remote Denial of Service,
research
- [ GLSA 200612-17 ] GNU Radius: Format string vulnerability,
Raphael Marichez
- Re: [fuzzing] NOT a 0day! Re: [Full-disclosure] OWASP Fuzzing page,
Juha-Matti Laurio
- iDefense Security Advisory 12.14.06: GNOME Foundation Display Manager gdmchooser Format String Vulnerability,
iDefense Labs
- [ MDKSA-2006:164-2 ] - Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities,
security
- [CAID 34870]: CA Anti-Virus vetfddnt.sys, vetmonnt.sys Local Denial of Service Vulnerabilities,
Williams, James K
- [ MDKSA-2006:230 ] - Updated clamav packages fix vulnerability,
security
- [ MDKSA-2006:229 ] - Updated evince packages fix buffer overflow vulnerability,
security
- Re: Microsoft 0-day word vulnerability - Secunia - Extremely critical,
schafer_jeffrey
- rPSA-2006-0232-1 libgsf,
rPath Update Announcements
- [USN-380-2] avahi regression,
Martin Pitt
- [ GLSA 200612-16 ] Links: Arbitrary Samba command execution,
Raphael Marichez
- HyperAccess - Multiple Vulnerabilities,
Brett Moore
- GenesisTrader v1.0 - Multiple Vulnerabilities,
mr_kaliman
- The (in)security of Xorg and DRI,
Darren Reed
- Call for papers and presenters - Dec. 15th deadline,
Mike Allgeier
- CORE-2006-1127: ProFTPD Controls Buffer Overflow,
CORE Security Technologies Advisories
- ZDI-06-049: Symantec Veritas NetBackup Long Request Buffer Overflow Vulnerability,
zdi-disclosures
- ZDI-06-050: Symantec Veritas NetBackup CONNECT_OPTIONS Buffer Overflow Vulnerability,
zdi-disclosures
- IBM DB2 Remote DoS during CONNECT processing,
Team SHATTER
- ASP Cmd Shell On IIS 5.1,
Brett Moore
- [SECURITY] [DSA-1236-1] New enemies-of-carlotta package fix missing sanity checks,
Steve Kemp
- [SECURITY] [DSA-1235-1] New ruby1.8 package fix denial of service,
Steve Kemp
- Re: worksystem => Remote File Include Vulnerability Exploit,
Laurent . van_den_reysen
- [SECURITY] [DSA-1234-1] New ruby1.6 package fix denial of service,
Steve Kemp
- iDefense Security Advisory 12.12.06: Sun Microsystems Solaris ld.so Directory Traversal Vulnerability,
iDefense Labs
- iDefense Security Advisory 12.12.06: Sun Microsystems Solaris ld.so 'doprf()' Buffer Overflow Vulnerability,
iDefense Labs
- ZDI-06-046: Sophos Anti-Virus SIT Archive Parsing Buffer Overflow Vulnerability,
zdi-disclosures
- [ GLSA 200612-14 ] Trac: Cross-site request forgery,
Sune Kloppenborg Jeppesen
- [ GLSA 200612-13 ] libgsf: Buffer overflow,
Sune Kloppenborg Jeppesen
- ZDI-06-048: Microsoft Internet Explorer normalize() Function Memory Corruption Vulnerability,
zdi-disclosures
- [ GLSA 200612-12 ] F-PROT Antivirus: Multiple vulnerabilities,
Sune Kloppenborg Jeppesen
- Re: Internet Explorer 6 CSS "expression" Denial of Service Exploit (P.o.C.),
chinese soup
- Secunia Research: Internet Explorer Script Error Handling Memory Corruption,
Secunia Research
- BLOG:CMS Remote file include Vulnerability,
security
- ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability,
zdi-disclosures
- Re: PHP 5.2.0 session.save_path safe_mode and open_basedir bypass,
Ismail Donmez
- Re: [fuzzing] OWASP Fuzzing page,
Joxean Koret
- ZDI-06-045: Sophos Anti-Virus CPIO Archive Parsing Buffer Overflow Vulnerability,
zdi-disclosures
- rPSA-2006-0231-1 squirrelmail,
rPath Update Announcements
- rPSA-2006-0230-1 evince,
rPath Update Announcements
- [SBDA] SiteKiosk - FileSystem Access,
Brett Moore
- Web Apps- Rad Upload Version 3.02 Remote File Include Vulnerability,
rko . thelegendkiller
- OpenLDAP kbind authentication buffer overflow,
Solar Eclipse
- [ MDKSA-2006:228 ] - Updated gnupg packages fix vulnerability,
security
- [ MDKSA-2006:227 ] - Updated kdegraphics packages fix EXIF vulnerability,
security
- [ GLSA 200612-05 ] KOffice shared libraries: Heap corruption,
Sune Kloppenborg Jeppesen
- Secunia Research: AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow,
Secunia Research
- [ GLSA 200612-07 ] Mozilla Firefox: Multiple vulnerabilities,
Raphael Marichez
- RFID access control tokens widely open to cloning,
Adam Laurie
- [ GLSA 200612-03 ] GnuPG: Multiple vulnerabilities,
Raphael Marichez
- Re: LS-20060908 - Computer Associates BrightStor ARCserve Backup,
Williams, James K
- The newest Word flaw is due to malformed data structure handling,
Juha-Matti Laurio
- [ GLSA 200612-10 ] Tar: Directory traversal vulnerability,
Matthias Geerdsen
- Re: LS-20061001 - Computer Associates BrightStor ARCserve Backup,
Williams, James K
- [ GLSA 200612-04 ] ModPlug: Multiple buffer overflows,
Raphael Marichez
- Secunia Research: MailEnable IMAP Service Buffer Overflow Vulnerability,
Secunia Research
- [ GLSA 200612-06 ] Mozilla Thunderbird: Multiple vulnerabilities,
Raphael Marichez
- shopsite advisory,
DoZ
- looking for security community input,
Gadi Evron
- Another, different MS Word 0-day vulnerability reported,
Juha-Matti Laurio
- Several updates in Microsoft Word 0-day (CVE-2006-5994) FAQ document,
Juha-Matti Laurio
- [ GLSA 200612-08 ] SeaMonkey: Multiple vulnerabilities,
Raphael Marichez
- Multiple vulnerabilities in Winamp Web Interface 7.5.13,
Luigi Auriemma
- ERRATA: [ GLSA 200612-03 ] GnuPG: Multiple vulnerabilities,
Raphael Marichez
- Firefox 2.0 security bug: Extensions can hide themself,
azurIt
- RFIDIOt release - version 0.1i,
Adam Laurie
- [ MDKSA-2006:226 ] - Updated squirrelmail packages fix vulnerabilities,
security
- D-LINK DWL-2000AP+ remote DoS,
poplix
- Unauthenticated access to IBM Host On-Demand administration pages,
Ferguson, David (Kansas City)
- [SBDA] - ColdFusion MX7 - Multiple Vulnerabilities,
Brett Moore
- [ GLSA 200612-09 ] MadWifi: Kernel driver buffer overflow,
Raphael Marichez
- WASC-Announcement: MX Injection - Capturing and Exploiting Hidden Mail Servers By Vicente Aguilera Diaz,
robert
- [SECURITY] [DSA 1233-1] New Linux 2.6.8 packages fix several vulnerabilities,
Dann Frazier
Mail converted by MHonArc
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.
The main JSW4.NET technical listserv archive and search page.
The main archive page for this list.