BugTraq@security-focus.com List Archive
- [OpenPKG-SA-2007.005] OpenPKG Security Advisory (wordpress),
OpenPKG GmbH
- FON Router allows anonymous web access,
l . friedrichs
- shopstorenow (orange.asp) sql injection,
emel_gw_ini
- Fix & Chips CMS v1.0,
luny
- [OpenPKG-SA-2007.004] OpenPKG Security Advisory (fetchmail),
OpenPKG GmbH
- [OpenPKG-SA-2007.003] OpenPKG Security Advisory (drupal),
OpenPKG GmbH
- Yet Another Link Directory v1.0,
lunY
- ohhASP Remote Password Disclosure,
Advisory
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Access Control Server,
Cisco Systems Product Security Incident Response Team
- fetchmail security announcement 2006-02 (CVE-2006-5867),
Matthias Andree
- fetchmail security announcement 2006-03 (CVE-2006-5974),
Matthias Andree
- iDefense Security Advisory 01.05.07: Kaspersky Antivirus Scan Engine PE File Denial of Service Vulnerability,
iDefense Labs
- ZDI-07-001: QUALCOMM Eudora WorldMail Remote Management Heap Overflow Vulnerability,
zdi-disclosures
- [OpenPKG-SA-2007.002] OpenPKG Security Advisory (bzip2),
OpenPKG GmbH
- Kolayindir Download (Yenionline) (tr) SqL Injection Vuln.,
ShaFuq31
- iDefense Security Advisory 01.05.07: Opera Software Opera Web Browser JPG Image DHT Marker Heap Corruption Vulnerability,
iDefense Labs
- Flog 1.1.2 Remote Admin Password Disclosure,
corrado . liotta
- [USN-402-1] Avahi vulnerability,
Kees Cook
- Multiple bugs in EditTag,
nj
- Advisory 01/2007: WordPress CSRF Protection XSS Vulnerability,
Stefan Esser
- [DRUPAL-SA-2007-002] Drupal 4.6.11 / 4.7.5 fixes DoS issue,
Uwe Hermann
- RI Blog 1.3 XSS Vuln.,
ShaFuq31
- [DRUPAL-SA-2007-001] Drupal 4.6.11 / 4.7.5 fixes XSS issue,
Uwe Hermann
- iDefense Security Advisory 01.05.07: Opera Software Opera Web Browser createSVGTransformFromMatrix Object Typecasting Vulnerability,
iDefense Labs
- Coppermine Photo Gallery <= 1.4.10 SQL Injection Exploit,
gmdarkfig
- Advisory 02/2007: WordPress Trackback Charset Decoding SQL Injection Vulnerability,
Stefan Esser
- Intranet Open Source Remote Password Disclosure "intranet.mdb",
Advisory
- Uber Uploader 4.2 Arbitrary File Upload Vulnerability,
null_hack
- IG Calendar SQL Injection,
asdfj38
- IG Shop remote code execution,
asdfj38
- MkPortal Admin XSS,
info
- [USN-400-1] Thunderbird vulnerabilities,
Kees Cook
- [USN-401-1] D-Bus vulnerability,
Kees Cook
- CMS Made Simple non-permanent XSS,
nanoymaster
- SAP Security,
Mark Litchfield
- Perforce client: security hole by design,
Ben Bucksch
- [USN-398-3] Firefox theme regression,
Kees Cook
- DMA[2007-0104a] - 'iLife iPhoto Photocasing Format String Vulnerability',
K F (lists)
- Concurrency strikes MSIE (potentially exploitable msxml3 flaws),
Michal Zalewski
- High Risk Vulnerability in the OpenOffice and StarOffice Suites,
NGSSoftware Insight Security Research
- [ GLSA 200701-03 ] Mozilla Thunderbird: Multiple vulnerabilities,
Raphael Marichez
- Correction (High Risk Vulnerability in the OpenOffice and StarOffice Suites),
NGSSoftware Insight Security Research
- [ GLSA 200701-02 ] Mozilla Firefox: Multiple vulnerabilities,
Raphael Marichez
- Wordpress <= 2.x dictionnary & Bruteforce attack,
kadaj-diabolik
- [ GLSA 200701-01 ] DenyHosts: Denial of Service,
Raphael Marichez
- SAP Security Contact,
Mark Litchfield
- Universal PDF XSS After Party,
pdp (architect)
- [vuln.sg] PowerArchiver PAISO.DLL Buffer Overflow Vulnerability,
vulnpost-remove
- Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous,
pdp (architect)
- MkPortal "All Guests are Admin" Exploit,
info
- LS-20061102 - Business Objects Crystal Reports XI Professional Stack Overflow Vulnerability,
advisories
- 23C3 - Bluetooth hacking revisted [Summary and Code],
Thierry Zoller
- Re: SMS handling OpenSER remote code executing,
bogdan
- Re: OpenSER OSP Module remote code execution,
bogdan
- CFP for RAID 2007,
Jeffrey Horton
- Re: [Full-disclosure] Universal XSS with PDF files: highly dangerous,
Juha-Matti Laurio
- a cheesy Apache / IIS DoS vuln (+a question),
Michal Zalewski
- jgbbs,
dr . t3rr0r1st
- [USN-398-2] Firefox vulnerabilities,
Kees Cook
- Simple Web Content Management System SQL Injection Exploit,
gmdarkfig
- [USN-398-1] Firefox vulnerabilities,
Kees Cook
- Cisco Security Advisory: Multiple Vulnerabilities in Cisco Clean Access,
Cisco Systems Product Security Incident Response Team
- Black Hat New Years Updates (Free Stuff, too!),
Jeff Moss
- OpenPinboard <= Remote File Include,
zooz_998
- WineGlass "data.mdb" Remote Password Disclosure,
Advisory
- Hacking AJAX DWR Applications,
shulman
- Adobe Acrobat Reader Plugin - Multiple Vulnerabilities,
Stefano Di Paola
- [USN-399-1] w3m vulnerabilities,
Kees Cook
- openmedia local read file,
exe_crack
- Universal XSS with PDF files: highly dangerous,
pdp (architect)
Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous,
sven . vetsch
Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous,
Jean-Jacques Halans
Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous,
HASEGAWA Yosuke
GuestBook v0.3a Remote Password Disclosure,
Advisory
Whos Johny Pwnerseed?,
K F
Re: SoftArtisans FileUp(TM) viewsrc.asp remote script source disclosure exploit,
wihl
[ MDKSA-2007:002 ] - Updated kernel packages fix multiple vulnerabilities and bugs,
security
Windows NT Message Compiler 1.00.5239 arbitrary code execution,
sapheal
rPSA-2006-0234-2 firefox thunderbird,
rPath Update Announcements
Nuked Klan <= 1.7 Remote Cookie Disclosure Exploit,
kadaj-diabolik
[ MDKSA-2007:001 ] - Update libmodplug packages fix buffer overflow vulnerabilities,
security
Windows Vista 64bits and unexported kernel symbols,
Matthieu Suiche
AspBB Remote Password Disclosure,
Advisory
Openforum Remote password Disclosure,
Advisory
lblog Remote Password Disclosure,
Advisory
FreeRadius 1.1.3 SMB_Handle_Type SMB_Connect_Server arbitrary code execution,
sapheal
Re: [Full-disclosure] simplog 0.9.3.2 SQL injection,
str0ke
Welcome to Pwndertino...,
K F (lists)
Dailymotion password reset vulnerability,
daftrix
Re: XSS with Vbulletin (new idea !),
marco . van . herwaarden
Mozilla Firefox 2.0 denial of service vulnerability,
sapheal
AShop Shopping Cart Multiple XSS Vulnerabilities,
DoZ
[OpenPKG-SA-2007.001] OpenPKG Security Advisory (cacti),
OpenPKG GmbH
Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Kevin Waterson
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Bill Nash
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Tino Wildenhain
- RE: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Jim Harrison
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Dana Hudes
- RE: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Jim Harrison
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Darren Reed
- RE: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Jim Harrison
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Darren Reed
- RE: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Jim Harrison
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Bill Nash
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Ronald Chmara
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Dana Hudes
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Lawrence Paul MacIntyre
- Re: PHP as a secure language? PHP worms?,
Duncan Simpson
- RE: PHP as a secure language? PHP worms?,
Jim Harrison
- <Possible follow-ups>
- Re: PHP as a secure language? PHP worms? [was: Re: new linux malware],
Chad Maron
ATMEL Linux PCI PCMCIA USB Drivers arbitrary code execution,
sapheal
rblog Database Download Vulnerability,
Advisory
golden book XSS,
sn0oPy . team
Kerio Fake 'iphlpapi' DLL injection Vulnerability,
Matousec - Transparent security Research
BattleBlog Database Download Vulnerability,
Advisory
[NGSEC] ngGame #3 - BrainStorming,
suppressed
Re: PlatinumFTP 1.0.18 remote DoS,
info
vBulletin vCard PRO XSS,
exexp
PHPIrc_bot <= Remote File Include,
zooz_998
WinZip FileView ActiveX controls CreateNewFolderFromName Method Buffer Overflow Vulnerability,
76693223
Rediff Bol Downloader Allows Downloading and Spawning Arbitary Files,
gregory_panakkal
Re: PocketPC MMS - Remote Code Injection/Execution Vulnerability and Denial-of-Service,
Collin R. Mulliner
WinZip10.0 FileView ActiveX Controls CreateNewFolderFromName Method Buffer overflow,
76693223
Spooky Login Multiple HTML Injection Vulnerability,
DoZ
Mail converted by MHonArc
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.
The main JSW4.NET technical listserv archive and search page.
The main archive page for this list.