security.bugtraq (date)

security.bugtraq (date)

July 23, 2003

Drivial Pursuit: Internet Explorer Browser & Your Files and Folders !, http-equiv@xxxxxxxxxx
[CLA-2003:703] Conectiva Security Announcement - phpgroupware, Conectiva Updates
MDKSA-2003:077 correction, Vincent Danen
[RHSA-2003:234-01] Updated semi packages fix vulnerability, bugzilla
[RHSA-2003:234-01] Updated semi packages fix vulnerability, bugzilla
[RHSA-2003:234-01] Updated semi packages fix vulnerability, bugzilla
MDKSA-2003:077 - Updated phpgroupware packages fix multiple vulnerabilities, Mandrake Linux Security Team
Re: Apache 1.3.27 mod_proxy security issue, William A. Rowe, Jr.
R7-0015: Multiple Vulnerabilities Apple QuickTime/Darwin Streaming Server, advisory
NOVL-2003-2966549 - Enterprise Web Server PERL Buffer Overflow, Ed Reed
Denial of service in 3COM 812 DSL routers, David F.Madrid
[SECURITY] [DSA-352-1] New fdclone packages fix insecure temporary directory usage, Matt Zimmerman
Re: CGI.pm vulnerable to Cross-site Scripting, Erwann CORVELLEC
Vulnerability in the mail client in Opera 7.20 beta 1., Arve Bersvendsen
Buffer Overflow in Netware Web Server PERL Handler, Uffe Nielsen
Re: [scip_Advisory 2003-01] MSN search results.aspx Cross Site Scripting, morning_wood
[scip_Advisory 2003-01] MSN search results.aspx Cross Site Scripting, Marc Ruef

July 22, 2003

ODBC Login information saved as plain text... :(, hanez
IIS 6.0 Web Admin Multiple vulnerabilities, Vázquez
phpMyAdmin: updated reply to vulnerability report of 2003-06-18, Marc Delisle
Cracking windows passwords in 5 seconds, bugtraq
[CLA-2003:702] Conectiva Security Announcement - cups, Conectiva Updates
[CLA-2003:701] Conectiva Security Announcement - kernel, Conectiva Updates
Re: Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability, benjurry
Apache 1.3.27 mod_proxy security issue, Jason Robertson
Re: CGI.pm vulnerable to Cross-site Scripting, Lincoln Stein
RE: Disclosure-for-pay?, Rikhardur . EGILSSON
Re: Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability, flashsky fangxing
Re: Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability, voleur
Security Update: [ CSSA-2003-SCO.12 ] OpenServer 5.0.6, OpenServer 5.0.7 : Security vulnerability in Merge prior to Release 5.3.23a, security
[CLA-2003:700] Conectiva Security Announcement - nfs-utils, Conectiva Updates
sorry, wrong file, phil dunn
Re: [LSD] Critical security vulnerability in Microsoft Operating Systems, Last Stage of Delirium
exploitlabs.com XSS hole someone better beware!, dnv
Re: Re: Fw: Fake Advisory, Remko Lodder
Re: Fw: Fake Advisory, Franks and Beans

July 21, 2003

[CLA-2003:698] Conectiva Security Announcement - apache, Conectiva Updates
RE: Cisco IOS exploit (44020), Jerry Shenk
Re: CGI.pm vulnerable to Cross-site Scripting, Erwann CORVELLEC
ActiveX security resources, Michael Howard
RE: Re: FW: Windows Update - Unsafe ActiveX control (fwd), liudieyuinchina
RE: Cisco IOS exploit (44020), Donahue, Pat
Path disclosure and file retrieving in AtomicBoard-0.6.2, gr00vy
[RHSA-2003:162-02] Updated Mozilla packages fix security vulnerability., bugzilla
RE: Disclosure-for-pay?, Martin Walker
Drupal XSS Vulnerability (main page and sub pages), Ferruh Mavituna
Cisco IOS exploit (44020), Martin Kluge
CGI.pm vulnerable to Cross-site Scripting, obscure
Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability, benjurry
[RHSA-2003:238-01] Updated 2.4 kernel fixes vulnerabilities, bugzilla
[RHSA-2003:162-02] Updated Mozilla packages fix security vulnerability., bugzilla
[RHSA-2003:238-01] Updated 2.4 kernel fixes vulnerabilities, bugzilla
[RHSA-2003:162-02] Updated Mozilla packages fix security vulnerability., bugzilla
[RHSA-2003:238-01] Updated 2.4 kernel fixes vulnerabilities, bugzilla
WebCalendar Include File, noconflic

July 20, 2003

Fw: Fake Advisory, morning_wood
Netterm netftpd - Remote DoS, morning_wood

July 19, 2003

Simpnews include file Vulnerability, pupet cahyo
Re: [LSD] Critical security vulnerability in Microsoft Operating Systems, Todd Sabin
Re: Microsoft ISA Server HTTP error handler XSS (TL#007), http-equiv@xxxxxxxxxx
RE: [LSD] Critical security vulnerability in Microsoft Operating Systems, Russ
Buffer overflow in MSN Messenger 6.0, Bahaa Naamneh

July 18, 2003

[VulnDiscuss] Re: SRT2003-07-16-0358 - bru has buffer overflow and format issues, Knud Erik Højgaard
Re: Disclosure-for-pay?, Josh Daymont
New information regarding CERT Advisory CA-2003-15, CERT Advisory
Fw: SC Signature and HPING Signature, james
Re: Microsoft ISA Server HTTP error handler XSS (TL#007), http-equiv@xxxxxxxxxx
Re: FW: Windows Update - Unsafe ActiveX control (fwd), Cesar
TSLSA-2003-0027 - nfs-utils, Trustix Secure Linux Advisor
CERT Advisory CA-2003-17 Exploit available for for the Cisco IOS Interface, CERT Advisory
Witango & Tango 2000 Application Server Remote System Buffer Overrun, Next Generation Insight Security Reseach Team
Re: possible open relay hole in qmail-smtpd-auth patch, John Simpson
[VulnDiscuss] Cisco IOS vulnerability detection tool by Foundstone, Matt Ploessel
RAV Antivirus : Buffer Overflow in Online Scanning ActiveX, Tri Huynh

July 17, 2003

[VulnDiscuss] RE: Re: [LSD] Critical security vulnerability in Microsoft Operating Systems, Kirby Kuehl
Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 Packet, Cisco Systems Product Security Incident Response Team
Bypassing ServerLock protection on Windows 2000, Jan Rutkowski
Re: ZH2003-3SA (security advisory): Storefront sql injection: users info disclosure, Bob LaGarde
FW: Windows Update - Unsafe ActiveX control (fwd), Dave Ahmad
Re: [LSD] Critical security vulnerability in Microsoft Operating Systems, Todd Sabin
Administrivia: Summer vacation/bounce troll, Dave Ahmad
RE: Windows Update - Unsafe ActiveX control, Drew Copley
RE: Windows Update - Unsafe ActiveX control, Jackson, Chris
ZH2003-11SA (security advisory): Elite News Ver. 1.0.0.0-1.0.0.3 Beta, Jim Pangalos
Windows Update - Unsafe ActiveX control, Siddhartha Jain(IT)
Re: PHP safe mode broken?, Michal Krause
eStore SQL Injection Vulnerability & Path Disclosure, Bosen
[SECURITY] [DSA-351-1] New php4 packages fix cross-site scripting vulnerability, Matt Zimmerman
Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 Packet, Cisco Systems Product Security Incident Response Team
Re: possible open relay hole in qmail-smtpd-auth patch, Uwe Ohse
CERT Advisory CA-2003-15 Cisco IOS Interface Blocked by IPv4 Packet (fwd), Muhammad Faisal Rauf Danka
[RHSA-2003:196-02] Updated Xpdf packages fix security vulnerability., bugzilla
Login Vulnerabilities on IRIX, SGI Security Coordinator

July 16, 2003

Multiple Vulnerabilities in Name Service Daemon (nsd) on IRIX, SGI Security Coordinator
SRT2003-07-16-0358 - bru has buffer overflow and format issues, KF
Changing UBB cookie allows account hijack, anti_acid
Disclosure-for-pay?, Talley, Brooks
ZH2003-9SA (security advisory): .netCart information disclusure, G00db0y
Re: Asus AAM6000EV ADSL Router Wide Open, cw
PHP safe mode broken?, Michal Krause
MDKSA-2003:074 - Updated kernel packages fix multiple vulnerabilities, Mandrake Linux Security Team
Immunix Secured OS 7+ nfs-utils update -- bugtraq, Immunix Security Team
Auction Works XXS Vulnerability, Bosen
Re: possible open relay hole in qmail-smtpd-auth patch, Valdis . Kletnieks
Re: Asus AAM6000EV ADSL Router Wide Open, Michael Renzmann
ZH2003-10SA (security advisory): Mail System Ver. 0.9 Beta, G00db0y
[CLA-2003:697] Conectiva Security Announcement - phpgroupware, Conectiva Updates
ISA Server - Error Page Cross Site Scripting, Brett Moore
CERT Advisory CA-2003-14 Buffer Overflow in Microsoft Windows HTML (fwd), Muhammad Faisal Rauf Danka
[LSD] Critical security vulnerability in Microsoft Operating Systems, Last Stage of Delirium
Microsoft ISA Server HTTP error handler XSS (TL#007), Thor Larholm
Digi-news and Digi-ads version 1.1 admin access without password, scrap
Re: Odd Behavior - Windows Messenger Service, morning_wood
Re: possible open relay hole in qmail-smtpd-auth patch, Jonathan de Boyne Pollard
Re: Odd Behavior - Windows Messenger Service, Ken Pfeil
Re: possible open relay hole in qmail-smtpd-auth patch, Uwe Ohse
Odd Behavior - Windows Messenger Service, morning_wood
SRT2003-07-07-0831 - IBM U2 UniVerse cci_dir creates hard links as root, KF
SRT2003-07-07-0913 - Abnormal suid behavior in several applications, KF
SRT2003-07-07-0833 - IBM U2 UniVerse users with uvadm rights can take root via uvadmsh, KF
SRT2003-07-08-1223 - IBM U2 UniVerse uvadm can take root via buffer overflows, KF

July 15, 2003

CreateFile exploit, (working), wirepair
CALEA electonic wiretapping on unsecured Solaris boxes, Dan Harkless
[slackware-security] nfs-utils packages replaced (SSA:2003-195-01b), Slackware Security Team
Re: Asus AAM6000EV ADSL Router Wide Open, Ben Wheeler
Re: Asus AAM6000EV ADSL Router Wide Open, cw
FIXED: MacOSX - crash screensaver locked with password and get thedesktop back, t4
[SECURITY] [DSA-350-1] New falconseye packages fix buffer overflow, Matt Zimmerman
DSL- Router Teledat 530 DoS, Dr. Markus a Campo
Splatt Forum html injection code in post icon, Lethalman
Re: Asus AAM6000EV ADSL Router Wide Open, Michael Renzmann
SuSE Security Announcement: nfs-utils (SuSE-SA:2003:031), Sebastian Krahmer
Multiple vulnerabilites in Citadel/UX, Carl Livitt
[CLA-2003:696] Conectiva Security Announcement - ucd-snmp, Conectiva Updates
[CLA-2003:695] Conectiva Security Announcement - mpg123, Conectiva Updates
xfstt-1.4 vulnerability, ruben unteregger
Internet Explorer Full-Screen mode threats, Marek Bialoglowy
possible open relay hole in qmail-smtpd-auth patch, John Simpson
[RHSA-2003:162-01] Updated Mozilla packages fix security vulnerability, bugzilla
[RHSA-2003:162-01] Updated Mozilla packages fix security vulnerability, bugzilla

July 14, 2003

Reality of the rpc.mountd bug, tb0b
RE: IE chromeless window vulnerabilities, Jason Sloderbeck
@stake exploit code (oops), wirepair
RE: StarSiege: Tribes DoS, Aeloria Resa
Re: StarSiege: Tribes DoS, Davis Ray Sickmon, Jr
Asus AAM6000EV ADSL Router Wide Open, cw
Re: StarSiege: Tribes DoS, Mascot
[SECURITY] [DSA-349-1] New nfs-utils package fixes buffer overflow, Matt Zimmerman
RE: Website to (Safely) Check Content Filtering S/W for Malicious Code???, Menashe Eliezer
RE: IE chromeless window vulnerabilities, Drew Copley
Re: WDAV exploit without netcat and with pretty magic number, Roman Medina
ImageMagick's Overflow, Angelo Rosiello
TA-2003-07 Denial of Service Attack against Twilight WebServer v1.3.3.0, Rushjo@xxxxxxxxxxx
[SECURITY] [DSA-348-1] New traceroute-nanog packages fix integer overflow, Matt Zimmerman
StarSiege: Tribes DoS, st0ic
[sec-labs] Remote Denial of Service vulnerability in NeoModus Direct Connect 1.0 build 9, sec-labs team
@stake named pipe exploit, wirepair
IE chromeless window vulnerabilities, Andrew Clover
Netscape 7.02 Client Detection Tool plug-in buffer overrun, martin rakhmanoff
[RHSA-2003:206-01] Updated nfs-utils packages fix denial of service vulnerability, bugzilla
Linux nfs-utils xlog() off-by-one bug, Janusz Niewiadomski

July 13, 2003

[VulnDiscuss] Re: Buffer Overflow Vulnerability Found in IMAP4 MDaemon 6 - [SELECT], Hal Flynn
Grub Distributed Client - Cleartext Passwords, morning_wood
Buffer Overflow Vulnerability Found in IMAP4 MDaemon 6 - [EXAMINE], Dennis Rand
Buffer Overflow Vulnerability Found in IMAP4 MDaemon 6 - [SELECT], Dennis Rand
BlackBook - Multiple Vunerabilities, morning_wood

July 12, 2003

[CLA-2003:694] Conectiva Security Announcement - gnupg, Conectiva Updates
Re: iDEFENSE Security Advisory 07.11.03: Win32 Message Vulnerabilities Redux, David A . Pérez
Samba Remote Exploit with connect back method and bruteforce mode, XNUXER RESEARCH
Re: iDEFENSE Security Advisory 07.11.03: Win32 Message Vulnerabilities Redux, Chris Paget
Announcement: New Security Vulnerability List, support
ZH2003-4SA (security advisory): ASP-DEV Discussion Forum V2.0, G00db0y
RE: New trojan turns home PCs into porno Web site hosts, ge
ZH2003-3SA (security advisory): Storefront sql injection: users info disclosure, G00db0y
cross site scripting htmltonuke, jocanor jocanor
DoS - Polycom MGC 25 Control Port, ident
Re: Email marketing company gives out questionable security advice, D. J. Bernstein
Re: ServU FTP Service (Win32) is able to relay email, Nick FitzGerald
MSIE:patched&undisclosed XSS vuln, Liu Die Yu
UMN gopherd[2.x.x/3.x.x]: ftp gateway, and GSisText() buffer overflow exploits., Vade 79
Shattering SEH, Brett Moore
Yahoo Messenger 5.5 exploit for win2k, bob

July 11, 2003

Re: Red Hat 9: free tickets, Jon Hart
Re: Red Hat 9: free tickets, Stephen Samuel
RE: Generic way to exploit an insecure /tmp file creation - Red Hat 7,8,9 (Re: Red Hat 9: free tickets), Paul Vet
LeapFTP remote buffer overflow exploit, drG4njubas
Invision Power Board v1.1.2, Martin Eiszner
TSLSA-2003-0025 - apache, Trustix Secure Linux Advisor
W-Agora 4.1.5, Martin Eiszner
iDEFENSE Security Advisory 07.11.03: Win32 Message Vulnerabilities Redux, iDEFENSE Labs
New trojan turns home PCs into porno Web site hosts, Richard M. Smith

July 10, 2003

Re: ServU FTP Service (Win32) is able to relay email, Hal Flynn
[CLA-2003:693] Conectiva Security Announcement - pam, Conectiva Updates
PHP-Include-Hack-Possibility in phpforum 2 RC-1, theblacksheep
[SCSA-019] Gattaca Server 2003 Vulnerable to Multiple vulnerabilities, Gregory LEBRAS
[OpenPKG-SA-2003.033] OpenPKG Security Advisory (infozip), OpenPKG
[OpenPKG-SA-2003.034] OpenPKG Security Advisory (imagemagick), OpenPKG
Re: The incredible gayness of antivirus-vendors and their products (in this case, NAV corp. ed.), morning_wood
Re: PalmOS Memo Record Hiding Vulnerability., Goetz Bock
The incredible gayness of antivirus-vendors and their products (in this case, NAV corp. ed.), Knud Højgaard

July 09, 2003

Acroread 5.0.7 buffer overflow, Paul Szabo
Re: xpdf vulnerability - CAN-2003-0434, Andries . Brouwer
PalmOS Memo Record Hiding Vulnerability., Shaun Moore
Website to (Safely) Check Content Filtering S/W for Malicious Code???, scott Stevens
Re: xpdf vulnerability - CAN-2003-0434, stanislav shalunov
Pipe Filename Local Privilege Escalation FAQ, @stake Advisories
xpdf vulnerability - CAN-2003-0434, Andries . Brouwer
Cisco Security Advisory: Denial-of-Service of TCP-based Services in CatOS, Cisco Systems Product Security Incident Response Team
Re: Generic way to exploit an insecure /tmp file creation - Red Hat 7,8,9 (Re: Red Hat 9: free tickets), Stephen Samuel
Microsoft Utility Manager Local Privilege Escalation, NGSSoftware Insight Security Research
Information Disclosure Vulnerability in bitboard2, Marc Bromm
Re: ProductCart XSS Vulnerability, Massimo Arrigoni
Re: Another ProductCart SQL Injection Vulnerability, Massimo Arrigoni
Re: ICQ 2003a Password Bypass, Seva Gluschenko
[SECURITY] [DSA-345-1] New xbl packages fix buffer overflow, Matt Zimmerman
Re: Unrealircd & Anope services - join segmentation fault in operserv.c, Rob
[SECURITY] [DSA-343-1] New skk, ddskk packages fix insecure temporary file creation, Matt Zimmerman
Re[2]: ICQ 2003a Password Bypass, Cauг Moura Prado
[SECURITY] [DSA-346-1] New phpsysinfo packages fix directory traversal, Matt Zimmerman
Re: zkfingerd-2.0.2(the last version)Format String Vulnerabilities, Vade 79
Tomcat Dangerous Documentation/Tomcat Default Plaintext Password Storage, Mike Bommarito
ZH2003-2SA (security advisory): QShop priviledge escalation, G00db0y
Fwd: RE: Contact information for Microsoft Security Response Center [tf], keepitsecret
[SECURITY] [DSA-347-1] New teapop packages fix SQL injection, Matt Zimmerman
Black Box Voting, Joshua Jore
Coda RPC2 Denial of Serviec, andrewg
[ANNOUNCE][SECURITY] Apache 2.0.47 released, Apache HTTP Server Project
[SNS Advisory No.66] Apache HTTP Server v2 Causes a DoS When Parsing a Type-Map File, Secure Net Service(SNS) Security Advisory
TerminatorX local root, andrewg
Re: [sec-labs] Adobe Acrobat Reader <=5.0.7 Buffer Overflow Vulnerability + PoC code, sec-labs team
[SECURITY] [DSA-344-1] New unzip packages fix directory traversal, Matt Zimmerman
IE Object Type Overflow Exploit, ash

July 08, 2003

Re: Red Hat 9: free tickets, Stephen Samuel
xchar crash after 3 continually server call, tupac sakur
Re: rundll32.exe buffer overflow, Curt Wilson
Re: Contact information for Microsoft Security Response Center [tf], David A . Pérez
Re: Email marketing company gives out questionable security advice, Roland Dowdeswell
Re: Contact information for Microsoft Security Response Center [tf], Nexus
Domain User Credentials access via OWA XSS, Vázquez
[SECURITY] [DSA-342-1] New mozart packages fix unsafe mailcap configuration, Matt Zimmerman
Re: rundll32.exe buffer overflow, wirepair
RE: Contact information for Microsoft Security Response Center [t f], Francis Favorini
Multiple Buffer Overflows in IglooFTP PRO, Peter Winter-Smith
Re: Email marketing company gives out questionable security advice, Richard Rager
Re: MacOSX - crash screensaver locked with password and get the desktop back, KF
[SECURITY] [DSA-341-1] New liece packages fix insecure temporary file creation, Matt Zimmerman
[CLA-2003:691] Conectiva Security Announcement - php4, Conectiva Updates
Information Disclosure Vulnerability in board51, forum51 and news51, Marc Bromm
zkfingerd-2.0.2(the last version)Format String Vulnerabilities, yan feng
MDKSA-2003:073 - Updated unzip packages fix vulnerability, Mandrake Linux Security Team
Qt temporary files race condition in Knoppix 3.1, Vázquez
Re: Unrealircd & Anope services - join segmentation fault in operserv.c, Sean Kelly
ZH2003-1SA (security advisory): Rockliffe Mailsite Express - mail attachments retrievable without proper authentication, tizio caio
Named Pipe Filename Local Privilege Escalation, @stake Advisories
[CLA-2003:690] Conectiva Security Announcement - imp, Conectiva Updates
What Win2k SP4 doesn't fix (security), but says it does..., m_a_s2mp
Internet Explorer Crash, Digital Scream
Unrealircd & Anope services - join segmentation fault in operserv.c, Lethalman
Re: Trillian Remote DoS, Erik Jacobson
WDAV exploit without netcat and with pretty magic number, XNUXER RESEARCH
Adobe Acrobat and PDF security: no improvements for 2 years, Vladimir Katalov
Re: Re: [sec-labs] Adobe Acrobat Reader <=5.0.7 Buffer Overflow Vulnerability + PoC code, Paul Szabo

July 07, 2003

Re: Re: [sec-labs] Adobe Acrobat Reader <=5.0.7 Buffer Overflow Vulnerability + PoC code, KF
Re: [sec-labs] Adobe Acrobat Reader <=5.0.7 Buffer Overflow Vulnerability + PoC code, KF
ProductCart XSS Vulnerability, atomix atomix
[VulnDiscuss] RE: MacOSX - crash screensaver locked with password and get thedesktop back, Tim Yardley
Re: Contact information for Microsoft Security Response Center [tf], keepitsecret
Re: Bypassing ZoneAlarm (limited), Dan Harkless
Re: MacOSX - crash screensaver locked with password and get the desktop back, Bill Moran
Re: Email marketing company gives out questionable security advice, Gadgeteer
ICQ 2003a Password Bypass, Cauă
Re: Another ProductCart SQL Injection Vulnerability, Massimo Arrigoni
Re: Script Injection to Custom HTTP Errors in Local Zone (GM#014-IE), Marek Blahus
[OpenPKG-SA-2003.032] OpenPKG Security Advisory (php), OpenPKG
[SECURITY] [DSA-339-1] New semi, wemi packages fix insecure temporary file creation, Matt Zimmerman
rundll32.exe buffer overflow, Rick
XSS in OWA allows stealing windows domain user credentials, Vázquez
[SECURITY] [DSA-337-1] New semi, wemi packages fix insecure temporary file creation, Matt Zimmerman
Vulneralbility in aplication Billing Explorer, XNUXER RESEARCH
[SECURITY] [DSA-338-1] New x-face-el packages fix insecure temporary file creation, Matt Zimmerman
Re: MacOSX - crash screensaver locked with password and get the desktop back, Adam H. Pendleton
Remote DoS on Canon GP300, DOUHINE Davy
Re: Email marketing company gives out questionable security advice, D. J. Bernstein
[CLA-2003:685] Conectiva Security Announcement - openldap, Conectiva Updates

July 06, 2003

[VulnDiscuss] rundll32.exe buffer overflow, Rick
myServer - Remote Denial of Service, morning_wood
cPanel Malicious HTML Tags Injection Vulnerability, Ory Segal
cPanel Malicious HTML Tags Injection Vulnerability, Ory Segal

July 05, 2003

[Vulnerability] : ProductCart database file can be downloaded remotely, Tri Huynh
Re: MacOSX - crash screensaver locked with password and get the desktop back, Scott Menor
Re: MacOSX - crash screensaver locked with password and get the desktop back, Scott Menor

July 04, 2003

Re: MacOSX - crash screensaver locked with password and get the desktop back, H. G. Katzgraber
Re: MacOSX - crash screensaver locked with password and get the desktop back, petard
Trillian Remote DoS, flur
[CLA-2003:675] Conectiva Security Announcement - ml85p, Conectiva Updates
Re: Email marketing company gives out questionable security advice, stonewall
Re: MacOSX - crash screensaver locked with password and get the desktop back, Brent J. Nordquist
Email marketing company gives out questionable security advice, Richard M. Smith
MacOSX - crash screensaver locked with password and get the desktop back, Delfim Machado
Generic way to exploit an insecure /tmp file creation - Red Hat 7,8,9 (Re: Red Hat 9: free tickets), Spybreak
[CLA-2003:674] Conectiva Security Announcement - xpdf, Conectiva Updates
VPASP SQL Injection Vulnerability & Exploit CODE, aresu
MacOSX - crash screensaver locked with password and get the desktop back, Delfim Machado
Another ProductCart SQL Injection Vulnerability, Bosen
When full disclosure is the only way..., se

July 03, 2003

[VulnDiscuss] Contact information for Microsoft Security Response Center [tf], Microsoft Security Response Center
[STX] Multiple Security Vulnerabilities, ace
[SNS Advisory No.65] Windows 2000 ShellExecute() API Let Applications to Cause Buffer Overflow, Secure Net Service(SNS) Security Advisory
[CLA-2003:672] Conectiva Security Announcement - unzip, Conectiva Updates
Immunix Secured OS 7+ unzip update -- bugtraq, Immunix Security Team
[RHSA-2003:203-01] Updated Ethereal packages fix security issues, bugzilla
Software vendors just don't "get" ActiveX security, Richard M. Smith
[VulnDiscuss] Serious Rediffmail.com Vulnerabilities, Viper
[RHSA-2003:203-01] Updated Ethereal packages fix security issues, bugzilla
[RHSA-2003:203-01] Updated Ethereal packages fix security issues, bugzilla

July 02, 2003

Greymatter v1.21d: Remote PHP command injection/execution., FraMe
OpenBSD PF :: "rdr" information leakage, Ed3f
phpMyAdmin: reply to vulnerability report (2003-06-18), Marc Delisle
URLMON.DLL buffer overflow - technical details, Jouko Pynnonen
Re: Red Hat 9: free tickets, Michal Zalewski
Re: Red Hat 9: free tickets, Carlos Villegas
Re: [SECURITY] Remote roster manipulation bug in various Jabber clients, Julian Missig
Re: [SECURITY] Remote roster manipulation bug in various Jabber clients, Jamin W. Collins
[SECURITY] Remote roster manipulation bug in various Jabber clients, Jacek Konieczny
Re: OptiSwitch remote root compromise - Wrong ifnormation, Zeev Dr
[KSA-003] Cross Site Scripting Vulnerability in Phpgroupware, Francois SORIN
[RHSA-2003:204-01] Updated PHP packages are now available, bugzilla
CORE-2003-0305-04: NetMeeting Directory Traversal Vulnerability, CORE Security Technologies Advisories
CORE-2003-0305-03: Active Directory Stack Overflow, CORE Security Technologies Advisories
Re: Re: Red Hat 9: free tickets, KF
Broadcast BoF and server freeze in RogerWilco (2001), Auriemma Luigi
Re: Red Hat 9: free tickets, bob
Red Hat 9: free tickets, Michal Zalewski
[RHSA-2003:067-02] Updated XFree86 packages provide security and bug fixes, bugzilla

July 01, 2003

VisNetic WebSite Path Disclosure Vulnerability, Peter Kruse
[sec-labs] Adobe Acrobat Reader <=5.0.7 Buffer Overflow Vulnerability + PoC code, sec-labs team
[CLA-2003:668] Conectiva Security Announcement - kde, Conectiva Updates
[Opera 7] Five DoS codes on general web sites, :: Operash ::
Re: [Symantec Security Advisor] Symantec Security Check ActiveX Buffer Overflow, J . Warren
CyberStrong Shopping Cart - Advisory & Exploit Code, aresu
[SECURITY] [DSA-336-2] Factual correction for DSA-336-1, Matt Zimmerman
[RHSA-2003:199-01] Updated unzip packages fix trojan vulnerability, bugzilla
ezbounce[v1.0-(1.04a/1.50pre6)]: remote format string exploit., Vade 79
Re: Bypassing ZoneAlarm (limited), Te Smith
Re: PoC for Internet Explorer >=5.0 buffer overflow (trivial exploit for hard case)., morning_wood
PoC for Internet Explorer >=5.0 buffer overflow (trivial exploit for hard case)., 3APA3A
[RHSA-2003:199-01] Updated unzip packages fix trojan vulnerability, bugzilla
[RHSA-2003:199-01] Updated unzip packages fix trojan vulnerability, bugzilla

Recently Viewed:
qnx.openqnx.dev... gcc.libstdc++.c... solaris.opensol... information-ret... misc.misterhous... web.catalyst.ge... apache.webservi... redhat.release.... hardware.lirc/2... kernel.autofs/2... technology.sust... linux.vdr/2003-... editors.lyx.gen... org.user-groups... netbsd.devel.pk... xdg.devel/2004-... version-control... jakarta.slide.d... debian.packages... creativecommons... ports.ppc.embed... bug-tracking.bu...

Home | blog view | USPTO Patent Archive | advertise | OSDir is an inevitable website. super tiny logo

Free Magazines

Cisco News
Receive a free quarterly e-newsletter with exclusive articles on how Cisco IT uses its own products and solutions to enable the business.
subscribe

Systems Management News, the newspaper for IT systems administration and data center managers! Each issue of Systems Management News is chock-full of news and analysis to help you understand what's happening in your field.
subscribe

The Enterprise Newsweekly eWeek is the essential technology information source for builders of e-business.
subscribe

Oracle Magazine Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Oracle (NASDAQ: ORCL) is the world's largest enterprise software company.
subscribe

Total Telecom Total Telecom is "The Economist of the communications industry".
subscribe

Navigation