Mail Index
- Re: Office 10 applications & flashdrives can be used to browse restricted drives
- From: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]
- Re: Office 10 applications & flashdrives can be used to browse restricted drives
- 7a69Adv#22 - UNIX unzip keep setuid and setgid files
- From: Albert Puigsech Galicia
- Re: iDEFENSE Security Advisory 02.25.05: WU-FTPD File Globbing Denial of Service Vulnerability
- WASC-Articles: 'The Insecure Indexing Vulnerability - Attacks Against Local Search Engines' By Amit Klein
- iDEFENSE Security Advisory 02.28.05: Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error
- iDEFENSE Security Advisory 02.28.05: KPPP Privileged File Descriptor Leak Vulnerability
- [Hat-Squad] GFI L.N.S.S 5.0 Insecure Credential Storage
- From: Hat-Squad Security Team
- [SECURITYREASON.COM] PostNuke SQL Injection 0.760-RC2=>x cXIb8O3.3
- From: Maksymilian Arciemowicz
- [SECURITYREASON.COM] PostNuke Critical XSS 0.760-RC2=>x cXIb8O3.2
- From: Maksymilian Arciemowicz
- [SECURITYREASON.COM] PostNuke Critical SQL Injection 0.760-RC2=>x cXIb8O3.1
- From: Maksymilian Arciemowicz
- Re: iDEFENSE Security Advisory 02.28.05: Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error
- Firefox Software Update
- Badblue HTTP Server Exploit
- From: Miguel Tarascó Acuña
- Re: 7a69Adv#22 - UNIX unzip keep setuid and setgid files
- [ Postnuke all versions + pnphpbb <=1.2 sql injection - jocanor ]
- From: JoCaNoR SeCuRiTy TeaM
- Re: BizMail 2.1 Spam Exploit
- Re: 7a69Adv#22 - UNIX unzip keep setuid and setgid files
- Re: iDEFENSE Security Advisory 02.28.05: Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error
- [SIG^2 G-TEC] RaidenHTTPD Server Buffer Overflow and CGI Source Disclosure Vulnerabilities
- Kernelpanik Labs Digest 2005-2
- From: Kernelpanik Labs - Security Lists
- IObjectSafety and Internet Explorer
- phpBB <= 2.0.12 UID Exploit
- OpenServer 5.0.6 OpenServer 5.0.7 : A vulnerability in TCP
- From: please_reply_to_security
- Re: Firefox Software Update
- 427BB profile.php XSS vulnerability.
- [KDE Security Advisory] kppp Privileged fd Leak Vulnerability
- Re: Firefox Software Update
- Re: Firefox Software Update
- Software PBLang 4.63 delpm.php authentication vulnerability
- Re: Firefox Software Update
- Re: Firefox Software Update
- 427BB profile.php XSS vulnerability.
- Software PBLang 4.63 sendpm.php reply file read vulnerability
- Forumwa search.php xss vulnerability
- Re: [ Postnuke all versions + pnphpbb <=1.2 sql injection - jocanor ]
- From: Maksymilian Arciemowicz
- [ Postnuke all versions + pnphpbb <=1.2 sql injection - jocanor ]
- [ GLSA 200503-01 ] Qt: Untrusted library search path
- From: Sune Kloppenborg Jeppesen
- Re: 7a69Adv#22 - UNIX unzip keep setuid and setgid files
- iDEFENSE Security Advisory 03.01.05: RealNetworks RealPlayer .smil Buffer Overflow Vulnerability
- PHP News <= 1.2.4 - Remote File Inclusion (VXSfx)
- Re: Firefox Software Update
- Re: 7a69Adv#22 - UNIX unzip keep setuid and setgid files
- Re: Firefox Software Update
- [ GLSA 200503-03 ] Gaim: Multiple Denial of Service issues
- From: Sune Kloppenborg Jeppesen
- [ GLSA 200503-04 ] phpWebSite: Arbitrary PHP execution and path disclosure
- [ GLSA 200503-02 ] phpBB: Multiple vulnerabilities
- Re: Firefox Software Update
- [ GLSA 200502-33 ] MediaWiki: Multiple vulnerabilities
- [USN-89-1] XML library vulnerabilities
- [USN-88-1] reportbug information disclosure
- [USN-86-1] cURL vulnerability
- [USN-87-1] Cyrus IMAP server vulnerability
- iDEFENSE Security Advisory 03.02.05: Computer Associates License Client/Server GCR Checksum Buffer Overflow
- iDEFENSE Security Advisory 03.02.05: Computer Associates License Client/Server GCR Network Buffer Overflow
- iDEFENSE Security Advisory 03.02.05: Computer Associates License Client/Server GETCONFIG Buffer Overflow
- iDEFENSE Security Advisory 03.02.05: Computer Associates License Client PUTOLF Directory Traversal
- iDEFENSE Security Advisory 03.02.05: Computer Associates License Client PUTOLF Buffer Overflow
- iDEFENSE Security Advisory 03.02.05: Computer Associates License Client and Server Invalid Command Buffer Overflow
- License Patches Are Now Available To Address Buffer Overflows
- [CLA-2005:926] Conectiva Security Announcement - mod_python
- RealOne Player / Real .WAV Heap Overflow File Format Vulnerability
- Foxmail server "USER" command Multiple remote buffer overflow
- [FLSA-2005:2314] Updated XFree86 packages fix security flaws
- Vulnerabilities in Aura CMS
- [ GLSA 200503-05 ] xli, xloadimage: Multiple vulnerabilities
- Re: Firefox Software Update
- Golden Ftp server 1.29 Username remote Buffer Overflow
- Security Advisory: Computalynx CProxy Server Multiple Remote Vulnerabilities
- Re: phpBB <= 2.0.12 UID Exploit
- iDEFENSE Labs Releases IDA Sync
- EEYE: Computer Associates License Manager Remote Vulnerabilities
- [SECURITY BULLETIN] SSRT4866 rev.0 MUP HP OpenVMS V6.x and V7.x privileged file access
- Advisory #08 - phpBB 2.0.13 Bad filtered in usercp_register.php
- [USN-90-1] Imagemagick vulnerability
- Re: SHA-1 broken
- Microsoft AntiSpyware Beta and Windows Scripting Host
- [XSS] paBox 1.6
- [CLA-2005:928] Conectiva Security Announcement - clamav
- TYPO3 SQL Injection vunerabilitie
- Microsoft Antispyware Beta window docking issue
- My-forum.org cookies vulnerability - data bug
- Re: Advisory #08 - phpBB 2.0.13 Bad filtered in usercp_register.php
- [ GLSA 200503-06 ] BidWatcher: Format string vulnerability
- From: Sune Kloppenborg Jeppesen
- Re: TYPO3 SQL Injection vunerabilitie
- [ GLSA 200503-07 ] phpMyAdmin: Multiple vulnerabilities
- From: Sune Kloppenborg Jeppesen
- Re: Microsoft Antispyware Beta window docking issue
- From: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]
- PHP News <= 1.2.4 - Remote File Inclusion Exploit
- Re: TYPO3 SQL Injection vunerabilitie
- From: Sebastian Wolfgarten
- RE: TYPO3 SQL Injection vunerabilitie
- From: GulfTech Security Research
- GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability
- Download Center Lite (DCL) - Arbitrary File Inclusion (VXSfx)
- Re: GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability
- From: Frank Denis (Jedi/Sector One)
- Re: TYPO3 SQL Injection vunerabilitie
- RE: Microsoft AntiSpyware Beta and Windows Scripting Host
- Re: TYPO3 3rd party extension (cmw_linklist) SQL Injection vunerability
- Re: TYPO3 SQL Injection vunerabilitie
- PHP Form Mail Script (2.3) - Arbitrary File Inclusion (VXSfx)
- Re: TYPO3 SQL Injection vunerabilitie
- -==phpBB 2.0.13 Full path disclosure==-
- [ GLSA 200503-08 ] OpenMotif, LessTif: New libXpm buffer overflows
- [ GLSA 200503-09 ] xv: Filename handling vulnerability
- [ GLSA 200503-10 ] Mozilla Firefox: Various vulnerabilities
- Bypass of 22 Antivirus software with GDI+ bug exploit Mutations - part 2
- phpBB 2.0.12 Session Handling Administrator Authentication Bypass -SIMPLIFIED-
- LOOKNMEET HTML INJECT EXPLOIT
- PaX privilege elevation security bug
- MDKSA-2005:048 - Updated curl packages fix vulnerability
- From: Mandrakelinux Security Team
- MDKSA-2005:049 - Updated gaim packages fix multiple vulnerabilities
- From: Mandrakelinux Security Team
- MDKSA-2005:051 - Updated cyrus-imapd packages fix vulnerabilities
- From: Mandrakelinux Security Team
- MDKSA-2005:052 - Updated kdegraphics packages fix vulnerabilities
- From: Mandrakelinux Security Team
- MDKSA-2005:050 - Updated gftp packages fix vulnerability
- From: Mandrakelinux Security Team
- Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: Advisory #08 - phpBB 2.0.13 Bad filtered in usercp_register.php
- [ GLSA 200503-13 ] mlterm: Integer overflow vulnerability
- [SECURITY] [DSA 691-1] New abuse packages fix local root exploit
- Remote Command Execution
- [ GLSA 200503-11 ] ImageMagick: Filename handling vulnerability
- [ GLSA 200503-12 ] Hashcash: Format string vulnerability
- [FLSA-2005:1748] Updated subversion packages fix security issues
- [Hat-Squad] Computer-Associates, License Manager POC Exploit
- From: Hat-Squad Security Team
- [FLSA-2005:2344] Updated php packages fix security issues
- Real Realplayer 10 .smil local buffer overflow POC
- CIRT.DK Advisory - SafeNet Inc Sentinel License Manager 7.2.0.2 Buffer Overflow
- Re: [Full-Disclosure] Bypass of 22 Antivirus software with GDI+ bug exploit Mutations - part 2
- [USN-91-1] EXIF library vulnerability
- phpBB 2.0.12 Session Handling Administrator Authentication Bypass Exploit
- thoughts and a possible solution on homograph attacks
- Re: phpBB 2.0.12 Session Handling Administrator Authentication Bypass -SIMPLIFIED-
- Gene6 FTP Server Local Privilege Escalation Vulnerability
- Re: GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability
- Lingo VoIP ATA / UTStarcom iAN-02EX remote access vulnerability
- Remote Testing SocialMPN Remote File Inclusion by y3dips
- PHP Form Mail Script <= 2.3 arbitrary file inclusion exploit exploit
- vBulletin Worm - perl.Santy variant
- phpBB 2.0.13 - user level exploit
- PHP-FUSION 5.* XSS VULNERABILITY
- drone armies C&C report - Feb/2005
- Re: phpGiftReq SQL Injection
- See-security advisory: Trillian Basic 3.0 PNG Processing Buffer overflow
- - Argeniss - Oracle Database Server Directory transversal
- [CLA-2005:930] Conectiva Security Announcement - kernel
- PHP mcNews <= 1.3 arbitrary file inclusion (VXSfx)
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- phpWebLog <= 0.5.3 arbitrary file inclusion (VXSfx)
- [USN-92-1] LessTif vulnerabilities
- [ GLSA 200503-14 ] KDE dcopidlng: Insecure temporary file creation
- From: Sune Kloppenborg Jeppesen
- Re: [ GLSA 200503-12 ] Hashcash: Format string vulnerability
- UnixWare 7.1.4 : Samba multiple security issues
- From: please_reply_to_security
- Hosting Controller Multiple Unauthenticated information disclose
- Re: thoughts and a possible solution on homograph attacks
- Re: thoughts and a possible solution on homograph attacks
- Re: thoughts and a possible solution on homograph attacks
- Re: phpBB 2.0.12 Session Handling Administrator Authentication Bypass Exploit
- Re: thoughts and a possible solution on homograph attacks
- UnixWare 7.1.4 : squid updated package fixes several security issues
- From: please_reply_to_security
- Re: thoughts and a possible solution on homograph attacks
- RE: thoughts and a possible solution on homograph attacks
- From: Scovetta, Michael V
- iDEFENSE Labs Releases IDA RPC Enumerator
- Re: Gene6 FTP Server Local Privilege Escalation Vulnerability
- Re: phpBB 2.0.12 Session Handling Administrator Authentication Bypass Exploit
- Multiples Vulnerabilities
- Re: [Full-Disclosure] Bypass of 22 Antivirus software with GDI+ bug exploit Mutations - part 2
- PE Multiple Remote Access Validation Vulnerabilities (Participate Systems Inc. / Outstart Inc.)
- Re: Remote Command Execution
- RE: Avaya IP Office Phone Manager - Sensitive Information Cleartext Vulnerability
- From: Walton, John Michael (John)
- [SCAN Associates Security Advisory] xoops 2.0.9.2 and below weak file extension validation
- Re: thoughts and a possible solution on homograph attacks
- From: Dmitry Yu. Bolkhovityanov
- Re: Lingo VoIP ATA / UTStarcom iAN-02EX remote access vulnerability
- Re: thoughts and a possible solution on homograph attacks
- From: Dmitry Yu. Bolkhovityanov
- Re: Remote Command Execution
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: thoughts and a possible solution on homograph attacks
- Re: thoughts and a possible solution on homograph attacks
- Re: thoughts and a possible solution on homograph attacks
- [CLA-2005:931] Conectiva Security Announcement - squid
- Multiple vulnerabilities in paFileDB
- ArGoSoft FTP Server 1.4.2.8 Buffer Overflow
- failles dans ProjectBB v0.4.5.1
- From: [hacktinium]@securityfocus.com@www.securityfocus.com
- [SECURITY] [DSA 692-1] New kppp packages fix privileged file descriptor leak
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: houghts and a possible solution on homograph attacks
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- From: killer_loop@xxxxxxxx
- Ethereal remote buffer overflow
- [FLSA-2005:2404] Updated less package fixes security issue
- [USN-93-1] Squid vulnerability
- RE: Ethereal remote buffer overflow - addon
- Re: Ethereal remote buffer overflow
- Re: Ethereal remote buffer overflow
- [USN-94-1] Perl vulnerability
- [Security Bulletin] SSRT4891 rev.0 HP Tru64 UNIX message queue local denial of service (DoS)
- Update: MS05-011 EEYE: Windows SMB Client Transaction Response Handling Vulnerability
- [Updated][FLSA-2005:2344] Updated php packages fix security issues
- Multiple AV Vendor Incorrect CRC32 Bypass Vulnerability.
- XCode 1.5 and distcc 2.x Exploit
- iDEFENSE Security Advisory 03.10.05: Ipswitch Collaboration Suite IMAP EXAMINE Buffer Overflow Vulnerability
- Wfsection 1.07 vulnerabilities
- RE: Windows Server 2003 and XP SP2 LAND attack vulnerability
- From: Detection Services - IS Security
- RE: Windows Server 2003 and XP SP2 LAND attack vulnerability
- iDownload/iSearch responds to Spyware Critics
- Re: houghts and a possible solution on homograph attacks
- Re: Lingo VoIP ATA / UTStarcom iAN-02EX remote access vulnerability
- UBB.threads 6 SQL Injection
- Security Masters Dojo
- Re: Lingo VoIP ATA / UTStarcom iAN-02EX remote access vulnerability
- Re: Lingo VoIP ATA / UTStarcom iAN-02EX remote access vulnerability
- [SECURITYREASON.COM][phpBB 2.0.13 SQL error in session cXIb8O3.8]
- From: Maksymilian Arciemowicz
- Re: Multiple AV Vendor Incorrect CRC32 Bypass Vulnerability.
- [ GLSA 200503-16 ] Ethereal: Multiple vulnerabilities
- [SECURITYREASON.COM] SQL injection and XSS in paFileDB
- [badroot.org] The Includer remote commands execution exploit
- PhotoPost PHP 5.0 RC3, and later, multiple vulnerabilities
- [badroot.org] The Includer remote commands execution exploit
- Mysql CREATE FUNCTION mysql.func table arbitrary library injection
- summercon looking for speakers
- Re: Thoughts and a possible solution on homograph attacks
- Mysql CREATE FUNCTION libc arbitrary code execution.
- [ GLSA 200503-15 ] X.org: libXpm vulnerability
- RE: Windows Server 2003 and XP SP2 LAND attack vulnerability
- PlatinumFTP 1.0.18 remote DoS
- [SECURITYREASON.COM] Mass Full Path Disclosure in paFileDB
- Virginity Security Advisory 2005-001 : Hola CMS - File destruction and System access
- RE: Windows Server 2003 and XP SP2 LAND attack vulnerability
- From: Miguel Angel Rodríguez Jódar
- aeNovo Database Content Disclosure Vulnerability
- KnowledgeBase
- Av issues
- Re: [SECURITYREASON.COM] PostNuke Critical SQL Injection 0.760-RC2=>x cXIb8O3.1
- Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
- Re: iDownload/iSearch responds to Spyware Critics
- Ethereal remote buffer overflow #2
- [ GLSA 200503-17 ] libexif: Buffer overflow vulnerability
- [SECURITY] [DSA 662-2] New squirrelmail package fixes regression
- [CLA-2005:933] Conectiva Security Announcement - gaim
- SUSE Security Announcement: openslp (SUSE-SA:2005:015)
- [HAT-SQUAD] SafeNet Sentinel LM, UDP License Manager Exploit
- [SECURITY] [DSA 693-1] New luxman packages fix local root exploit
- LimeWire Gnutella client two vulnerabilities
- New Version of WinBlox is Available
- [ZH2005-02SA] Insecure tmp file creation in Wine
- From: Giovanni Delvecchio
- Master RPC program number data base (/etc/rpc)
- SimpGB SQL Injection Vulnerability
- [XSS] paBox 2.0
- ...::: hotforum.nl XSS exploit :::...
- Ethereal 0.10.9 and below remote root exploit
- 3 XSS Vulnerabilities in Phorum <= 5.0.14
- [SECURITYREASON.COM] phpAdsNew 2.0.4-pr1 Multiple vulnerabilities cXIb8O3.9
- From: Maksymilian Arciemowicz
- YaBB2 rc1 XSS
- "Drop to STARTUP Folder II" published on 2005/02/08
- DMA[2005-0310a] - 'Frank McIngvale LuxMan buffer overflow'
- iDEFENSE Security Advisory 03.14.05: MySQL MaxDB Web Agent Multiple Denial of Service Vulnerabilities
- Not SQL injection and XSS in paFileDB?
- RE: Av issues
- html code include in phpnuke news crash IE 6
- PlantinumFTP server <= 1.0.18 Remote DOS exploit
- Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- From: Dr. Peter Bieringer
- phpbb <= 2.0.12 uid vuln + admin_styles.php php code injection exploit
- Re: html code include in phpnuke news crash IE 6
- Re: Av issues
- phpbb cookie admin access
- SAV9 Functionality Hole - misses virus files
- Re: PlantinumFTP server <= 1.0.18 Remote DOS exploit
- Few remote bugs in zPanel
- Virginity Security Advisory 2005-002 : Hola CMS - Another File destruction and System access
- [ISR] - Novell iChain Mini FTP Server Valid User Disclosure Vulnerability
- [ISR] - Novell iChain Mini FTP Server Unauthorized Remote Path Disclosure Vulnerability
- [ISR] Insecure communication and Reproduce the Session authentication
- Re: SAV9 Functionality Hole - misses virus files
- Denial of Service Vulnerability in MySQL Server for Windows
- Re: Av issues
- [ GLSA 200503-18 ] Ringtone Tools: Buffer overflow vulnerability
- [USN-95-1] Linux kernel vulnerabilities
- UPDATE: [ GLSA 200501-38 ] Perl: rmtree and DBI tmpfile vulnerabilities
- [ISR] - Novell iChain Mini FTP Server Bruteforce Problem
- RE: SAV9 Functionality Hole - misses virus files
- Re: SAV9 Functionality Hole - misses virus files
- Re: [Full-disclosure] Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- Re: [Full-disclosure] Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- From: Dr. Peter Bieringer
- Re: [Full-disclosure] Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- Re: Thoughts and a possible solution on homograph attacks
- GoodTech Telnet Server Buffer Overflow Vulnerability
- RE: SAV9 Functionality Hole - misses virus files
- From: Dewyngaert Brian Contr ANG/C4
- Re: Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- From: Dr. Peter Bieringer
- Re: Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- Re: Thoughts and a possible solution on homograph attacks
- MDKSA-2005:053 - Updated ethereal packages fix multiple vulnerabilities
- From: Mandrakelinux Security Team
- MDKSA-2005:054 - Updated cyrus-sasl packages fix vulnerability
- From: Mandrakelinux Security Team
- MDKSA-2005:055 - Updated openslp packages fix multiple vulnerabilities
- From: Mandrakelinux Security Team
- ADVISORY: DataRescue Interactive Disassembler Pro Debugger Format String Vulnerability
- Multiple KDE Security Advisories (2005-03-16)
- PlatinumFTPserver format string vulnerability ( IHSTeam )
- SUSE Security Announcement: multiple Mozilla Firefox vulnerabilities (SUSE-SA:2005:016)
- MDKSA-2005:056 - Updated koffice packages fix vulnerabilities on 64 bit platforms
- From: Mandrakelinux Security Team
- Re: Thoughts and a possible solution on homograph attacks
- MDKSA-2005:057 - Updated gnupg packages fix vulnerability
- From: Mandrakelinux Security Team
- Re: Thoughts and a possible solution on homograph attacks
- [CLA-2005:934] Conectiva Security Announcement - kdenetwork
- [USN-97-1] libxpm vulnerability
- Re: [Full-disclosure] Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- SAV9 Functionality Hole - misses virus files
- ASPjar Tell-a-Friend
- Servers Alive: Local Privilege Escalation
- [ GLSA 200503-20 ] curl: NTLM response buffer overflow
- From: Sune Kloppenborg Jeppesen
- RE: SAV9 Functionality Hole - misses virus files
- [ GLSA 200503-19 ] MySQL: Multiple vulnerabilities
- From: Sune Kloppenborg Jeppesen
- [USN-96-1] mySQL vulnerabilities
- RE: Denial of Service Vulnerability in MySQL Server for Windows
- Re: Av issues
- Re: GoodTech Telnet Server Buffer Overflow Vulnerability [EXPLOIT]
- LLSSRV Clarifications <Immunity>
- MDKSA-2005:059 - Updated evolution packages fix crasher
- From: Mandrakelinux Security Team
- [ GLSA 200503-21 ] Grip: CDDB response overflow
- See-security Advisory: Format string vulnerability in MailEnable 1.8
- [CLA-2005:937] Conectiva Security Announcement - cyrus-imapd
- Re: [Full-disclosure] Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
- Windows 2000 GDI32.DLL GetEnhMetaFilePaletteEntries() API specially crafted EMF file DOS vulnerability
- XSS in ACS blog
- PHP mcNews arbitrary file inclusion
- MDKSA-2005:058 - Updated kdelibs packages fix multiple vulnerabilities
- From: Mandrakelinux Security Team
- Re: PlatinumFTPserver format string vulnerability ( IHSTeam )
- Another includer.cgi problem?
- [USN-98-1] OpenSLP vulnerabilities
- LLSSRV Redux
- Kevin Walsh: LimeWire Gnutella client two vulnerabilities
- Linux ISO9660 handling flaws
- Re: Windows Security Checklists - 10 Parts
- Cain & Abel PSK Sniffer Heap overflow
- From: Gary O'leary-Steele
- Re: [Full-disclosure] Social Engineering: You Have Been A Victim
- Security Contact at RSA?
- From: Gary O'leary-Steele
- [PersianHacker.NET 200503-09]PHPOpenChat v3.x XSS Multiple Vulnerability
- Social Engineering: You Have Been A Victim
- myPHP Forum v1, 2 & 3
- From: Terencentanio Enache
- possible SQL injection in Subdreamer
- Re: Linux ISO9660 handling flaws
- Re: SAV9 Functionality Hole - misses virus files
- [USN-99-1] PHP4 vulnerabilities
- runcms installation path
- runcms highlight.php hole
- PHP-Post Exploit
- From: Terencentanio Enache
- Java Web Start argument injection vulnerability
- [phpbb <= 2.0.13 full path disclosure & directory listing]
- From: JoCaNoR SeCuRiTy TeaM
- Re: SAV9 Functionality Hole - misses virus files
- IceCast up to v2.20 multiple vulnerabilities
- RE: [phpbb <= 2.0.13 full path disclosure & directory listing]
- [ GLSA 200503-22 ] KDE: Local Denial of Service
- From: Sune Kloppenborg Jeppesen
- Ciamos Installation path(IHS)
- Ciamos Highlight.php Security Hole(IHS)
- [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection Vulnerability
- OllyDbg long process Module debug Vulnerability
- [ GLSA 200503-23 ] rxvt-unicode: Buffer overflow
- From: Sune Kloppenborg Jeppesen
- [ GLSA 200503-24 ] LTris: Buffer overflow
- From: Sune Kloppenborg Jeppesen
- Symantec Antivirus client locally created scheduled scan is not running if the local console is logged off
- Re: Few remote bugs in zPanel
- [ GLSA 200503-26 ] Sylpheed, Sylpheed-claws: Message reply overflow
- -==CoolForum Path Disclosure & Possible SQL Injection==-
- [CLA-2005:940] Conectiva Security Announcement - curl
- 2 vulnerabilities in BetaParticle
- TSL-2005-0009 - multi
- From: Trustix Security Advisor
- [SECURITY] [DSA 695-1] New xli packages fix several vulnerabilities
- Fw: [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection Vulnerability
- Fw: [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection Vulnerability
- -==PVDasm Long Name Debug Vulnerability==-
- Re: [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection Vulnerability
- phpMyFamily 1.4.0 SQL vulnerabilities
- Re: Thoughts and a possible solution on homograph attacks
- [ GLSA 200503-27 ] Xzabite dyndnsupdate: Multiple vulnerabilities
- [ GLSA 200503-25 ] OpenSLP: Multiple buffer overflows
- Details of Sybase ASE bugs withheld
- From: NGSSoftware Insight Security Research
- phpMyFamily 1.4.0 SQL vulnerabilities
- New Whitepaper: Anti Brute Force Resource Metering
- From: Gunter Ollmann (NGS)
- Re: [VulnWatch] Details of Sybase ASE bugs withheld
- Re: [VulnWatch] Details of Sybase ASE bugs withheld
- iDEFENSE Security Advisory 03.21.05: Mac OS X CF_CHARSET_PATH Buffer Overflow Vulnerability
- From: iDefense Customer Service
- Re: [VulnWatch] Details of Sybase ASE bugs withheld
- Re: [ISN] How To Save The Internet
- SecurityForest Exploitation Framework Beta has been released!
- Re: Thoughts and a possible solution on homograph attacks
- MDKSA-2005:060 - Updated MySQL packages fix multiple vulnerabilities
- From: Mandrakelinux Security Team
- Kayako eSupport Cross Site Scripting
- From: GulfTech Security Research
- Mac OSX[CF_CHARSET_PATH]: local root exploit.
- RUXCON 2005 Call for Papers
- From: RUXCON Call for Papers
- Re: Symantec Antivirus client locally created scheduled scan is not running if the local console is logged off
- [SECURITY] [DSA 696-1] New perl packages fix privilege escalation
- Nortel VPN Client Issue: Clear-text password stored in memory
- Possible windows+python bug
- [ Positive Technologies #SA] Phorum "location" HTTP Response Splitting Vulnerability
- Re: New Whitepaper: Anti Brute Force Resource Metering
- From: Amit Klein (AKsecurity)
- Black Hat Briefings & Trainings: Registration now open!
- osCommerce File Manager Directory Traversal Vulnerability
- RE: [VulnWatch] Details of Sybase ASE bugs withheld
- RE: [ISN] How To Save The Internet
- Re: [VulnWatch] Details of Sybase ASE bugs withheld
- RE: [VulnWatch] Details of Sybase ASE bugs withheld
- Re: Possible windows+python bug
- RE: [VulnWatch] Details of Sybase ASE bugs withheld
- Re: Possible windows+python bug
- root-equivalent groups
- Re: [ISN] How To Save The Internet
- Re: Re: Symantec Antivirus client locally created scheduled scan is not running if the local console is logged off
- Security Development Lifecycle Whitepaper Available
- [SIG^2 G-TEC] SurgeMail Webmail Attachment Upload and XSS Vulnerabilities
- Re: [VulnWatch] Details of Sybase ASE bugs withheld
- Re: New Whitepaper: Anti Brute Force Resource Metering
- RE: [VulnWatch] Details of Sybase ASE bugs withheld
- From: http-equiv@xxxxxxxxxx
- Re: [VulnWatch] Details of Sybase ASE bugs withheld
- Re: Possible windows+python bug
- Backdoors in AS/400 emulations allow the server to attack connected PC workstations
- Re: Details of Sybase ASE bugs withheld
- SUSE Security Announcement: ImageMagick problems (SUSE-SA:2005:017)
- Notacon: Apr. 8-10, 2005 in Cleveland, OH
- Re: Possible windows+python bug
- Re: [ISN] How To Save The Internet
- From: Thor (Hammer of God)
- Interspire ArticleLive 2005 (php version) is vulnerable to XSS
- Re: New Whitepaper: Anti Brute Force Resource Metering
- Re: osCommerce File Manager Directory Traversal Vulnerability
- Vortex Portal
- RE: Possible windows+python bug
- RE: Java Web Start argument injection vulnerability
- [SECURITYREASON.COM] phpSysInfo 2.3 Multiple vulnerabilities cXIb8O3.11
- From: Maksymilian Arciemowicz
- RE: [ISN] How To Save The Internet
- RE: Details of Sybase ASE bugs withheld
- Re: [ISN] How To Save The Internet
- RE: Re: Symantec Antivirus client locally created scheduled scan is not running if the local console is logged off
- Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB
- Black Hat Briefings & Trainings: Registration now open!
- Oracle Reports Server 10g Vulnerable to XSS
- Hashcash in mail (was: New Whitepaper: Anti Brute Force Resource Metering)
- Firescrolling 2 [Firefox 1.0.1]
- SUSE Security Announcement: several kernel security problems (SUSE-SA:2005:018)
- SUSE Security Announcement: MySQL vulnerabilities (SUSE-SA:2005:019)
- Re: New Whitepaper: Anti Brute Force Resource Metering
- [USN-100-1] cdrecord vulnerability
- [USN-99-2] Fixed php4 packages for USN-99-1
- Secure Science issues preview of their upcoming block cipher
- Re: Firescrolling 2 [Firefox 1.0.1]
- [ GLSA 200503-29 ] GnuPG: OpenPGP protocol attack
- [ GLSA 200503-28 ] Sun Java: Web Start argument injection vulnerability
- LogicLibrary BugScan VSR,Trillian 2.0, 3.0 and 3.1
- Which anti-spyware cleaner is the best?
- Security Flaw with Digital signatures in Microsoft Outlook
- From: Roberto Franceschetti
- Re: New Whitepaper: Anti Brute Force Resource Metering
- Re: Secure Science issues preview of their upcoming block cipher
- phpMyDirectory 10.1.3-rel Cross site scripting
- RX250305 - OpenMosixView : Multiple Race conditions - advisory and exploit
- Re: New Whitepaper: Anti Brute Force Resource Metering
- From: Amit Klein (AKsecurity)
- smail remote and local root holes
- Netcomm 1300NB DSL Modem Denial of Service
- Re: Secure Science issues preview of their upcoming block cipher
- Re: Secure Science issues preview of their upcoming block cipher
- RE: Security Flaw with Digital signatures in Microsoft Outlook
- Re: [bugtraq] Security Flaw with Digital signatures in Microsoft Outlook
- [FLSA-2005:2155] Updated sharutils package fixes security issues
- [FLSA-2005:2129] Updated mysql packages fix security issues
- [FLSA-2005:2268] Updated spamassassin package fixes security issues
- Re: [FLSA-2005:2129] Updated mysql packages fix security issues
- Re: [FLSA-2005:2129] Updated mysql packages fix security issues
- [ GLSA 200503-30 ] Mozilla Suite: Multiple vulnerabilities
- [ GLSA 200503-33 ] IPsec-Tools: racoon Denial of Service
- Re: Secure Science issues preview of their upcoming block cipher
- From: Ralf-Philipp Weinmann
- TCP timestamp & advanced fingerprinting
- ZH2005-03SA -- multiple vulnerabilities in NukeBookmarks .6
- From: Gerardo Astharot Di Giacomo
- AS/400 LDAP user accounts disclosure
- QuickTime malformed JPEG buffer overflow
- RE: [bugtraq] Security Flaw with Digital signatures in Microsoft Outlook
- Re: New Whitepaper: Anti Brute Force Resource Metering
- File inclusion and XSS vulnerability in E-Store Kit-2 PayPal Edition
- Re: Security Flaw with Digital signatures in Microsoft Outlook
- From: Anthony G. Atkielski
- Re: Secure Science issues preview of their upcoming block cipher
- Re: smail remote and local root holes (no, not really ;-)
- RE: TCP timestamp & advanced fingerprinting
- Brute-Force scanning the entire 32-bit IP space using Javascript.
- Re: smail remote and local root holes (no, really ;-)
- FreeBSD Security Advisory FreeBSD-SA-05:01.telnet
- From: FreeBSD Security Advisories
- iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client env_opt_add() Buffer Overflow Vulnerability
- iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability
- [CLA-2005:942] Conectiva Security Announcement - ethereal
- [ GLSA 200503-34 ] mpg321: Format string vulnerability
- From: Sune Kloppenborg Jeppesen
- Buffer-overflow in Tincat 2 minor than 2.0.28 (Sacred, Settlers 5 and others)
- Re: ZH2005-03SA -- multiple vulnerabilities in NukeBookmarks .6
- Multiple sql injection, and xss vulnerabilities in Vladersoft Shopping Cart v.3.0
- Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software.
- local root security bug in linux >= 2.4.6 <= 2.4.30-rc1 and 2.6.x.y <= 2.6.11.5
- Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS)
- Re: smail remote and local root holes (really, it is exploitable)
- [USN-101-1] telnet vulnerabilities
- Multiple XSS vulnerabilities in ACS Blog
- Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software
- Re: iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability
- RE: Re: Symantec Antivirus client locally created scheduled scan is not running if the local console is logged off
- Multiple XSS issues in Sun AnswerBook2
- phishing sites report - March/2005
- Re: iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability
- DoS of LAN via D-Link switches
- Re: phishing sites report - March/2005
- [SECURITY] [DSA 698-1] New mc packages fix buffer overflow
- Re: phishing sites report - March/2005
- THai's Shoutbox XSS (Spoofing URL) BUG
- [SECURITY] [DSA 699-1] New netkit-telnet-ssl packages fix arbitrary code execution
- [USN-102-1] shar vulnerabilities
- Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS)
- MITKRB5-SA-2005-001: buffer overflows in telnet client
- RE: DoS of LAN via D-Link switches
- Re: TCP timestamp & advanced fingerprinting
- directory traversal in FastStone 4in1 Browser 1.2
- Multiple sql injection, and xss vulnerabilities in AspApp
- Invision Power Board v2.0.3 XSS vulnerabilities
- Multiple sql injection, and xss vulnerabilities in PortalApp
- Code insertion in Blogger comments
- [SECURITY] [DSA 697-1] New netkit-telnet packages fix arbitrary code execution
- Re: iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability
- Re: Security Flaw with Digital signatures in Microsoft Outlook
- [PersianHacker.NET 200503-12]Chatness 2.5.1 and prior XSS Vulnerabilities
- RE: Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software.
- From: GulfTech Security Research
- Code insertion in Blogger comments
- abuse & security issues > Israel
- Multiple XSS vulnerabilities in ACS Blog
- Re: DoS of LAN via D-Link switches
- Multiple phpCoin Vulnerabilities
- From: GulfTech Security Research
- [PersianHacker.NET 200503-11]Ublog reload 1.0.4 and prior Multiple Vulnerbilities
- Portcullis Security Advisory 05-011 ACPI 1.6 BIOS
- MDKSA-2005:061 - Updated krb5 packages fix telnet client vulnerability
- From: Mandrakelinux Security Team
- Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted SSL Attack
- From: Cisco Systems Product Security Incident Response Team
- [ GLSA 200503-35 ] Smarty: Template vulnerability
- RE: Portcullis Security Advisory 05-011 ACPI 1.6 BIOS
- Re: DoS of LAN via D-Link switches
- Re: Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software.
- [SECURITY] [DSA 700-1] New mailreader packages fix cross-site scripting vulnerability
- Re: Portcullis Security Advisory 05-011 ACPI 1.6 BIOS
- PaFileDB Version 3.1 and below are exploitable via a XSS and a SQL injection vulnerability
- Multiple sql injection, and xss vulnerabilities in Pay pal Storefront
Mail converted by MHonArc 2.6.10